Cgroups, namespaces, and beyond: what are containers made from?

with Jérôme Petazzoni, Tinkerer Extraordinaire, Docker

Linux containers are different from Solaris Zones or BSD Jails: they use discrete kernel features like cgroups, namespaces, SELinux, and more. We will describe those mechanisms in depth, as well as demo how to put them together to produce a container. We will also highlight how different container runtimes compare to each other.

  1. For anyone want to know why the final demo failed connecting the internet, it just because the default gateway is wrong, so just replace `ip route add default via` with `ip route add default via`, then you're good to go. 🐱

