Learning Docker networking : become a proficient Linux administrator by learning the art of container networking with elevated efficiency using Docker / Rajdeep Dua, Santosh Kumar Konduri, Vaibhav Kohli.

Description based on online resource; title from cover (Safari, viewed March 10, 2016).

Includes index.

Cover; Copyright; Credits; About the Authors; About the Reviewer; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Docker Networking Primer; Networking and Docker; Linux bridges; Open vSwitch; NAT; IPtables; AppArmor/SELinux; The docker0 bridge; The -- net default mode; The -- net=none mode; The -- net=container:container2 mode; The -- net=host mode; Port mapping in Docker container; Docker OVS; Unix domain socket; Linking Docker containers; Links; What's new in Docker networking?; Sandbox; Endpoint; Network; The Docker CNM model; Summary; Chapter 2: Docker Networking Internals

Configuring the IP stack for DockerIPv4 support; IPv6 support; Configuring a DNS server; Communication between containers and external networks; Restricting SSH access from one container to another; Configuring the Docker bridge; Overlay networks and underlay networks; Summary; Chapter 3: Building Your First Docker Network; Introduction to Pipework; Multiple containers over a single host; Weave your containers; Open vSwitch; Single host OVS; Creating an OVS bridge; Multiple host OVS; Networking with overlay networks -- Flannel; Summary; Chapter 4: Networking in a Docker Cluster

Docker SwarmDocker Swarm setup; Docker Swarm networking; Kubernetes; Deploying Kubernetes on AWS; Kubernetes networking and its differences to Docker networking; Deploying the Kubernetes pod; Mesosphere; Docker containers; Deploying a web app using Docker; Deploying Mesos on AWS using DCOS; Summary; Chapter 5: Security and QoS for Docker Containers; Filesystem restrictions; Read-only mount points; sysfs; procfs; /dev/pts; /sys/fs/cgroup; Copy-on-write; Linux capabilities; Securing containers in AWS ECS; Understanding Docker security I -- kernel namespaces; pid namespace; net namespace

User namespaceCreating a new user namespace; Understanding Docker security II -- cgroups; Defining cgroups; Why are cgroups required?; Creating a cgroup manually; Attaching processes to cgroups; Docker and cgroups; Using AppArmor to secure Docker containers; AppArmor and Docker; Docker security benchmark; Audit Docker daemon regularly; Create a user for the container; Do not mount sensitive host system directories on containers; Do not use privileged containers; Summary; Chapter 6: Next Generation Networking Stack for Docker: libnetwork; Goal; Design; CNM objects; Sandbox; Endpoint; Network

Network controllerCNM attributes; CNM lifecycle; Driver; Bridge driver; Overlay network driver; Using overlay network with Vagrant; Overlay network deployment Vagrant setup; Overlay network with Docker Machine and Docker Swarm; Prerequisites; Key-value store installation; Create a Swarm cluster with two nodes; Creating an overlay network; Creating containers using an overlay network; Container network interface; CNI plugin; Network configuration; IP allocation; IP address management interface; Project Calico's libnetwork driver; Summary; Index

Become a proficient Linux administrator by learning the art of container networking with elevated efficiency using Docker About This Book Set up, configure, and monitor a virtual network of containers using a bridge network and virtual switches Master the skill of networking Docker Containers using frameworks such as Kubernetes, Docker Swarm, and Mesosphere Acquire hands-on experience through practical examples of Docker networking spanning multiple containers, over multiple hosts, clubbed with various frameworks Who This Book Is For If you are a Linux administrator who wants to learn networking using Docker to ensure the efficient administration of core elements and applications, then this book is for you. Basic knowledge of LXC/Docker is assumed. What You Will Learn Get to know the basics of networking and see how Docker networking works Expose the strengths and weaknesses of the current Docker network implementation and third party landscape Understand Docker networking spanning multiple containers over multiple hosts through practical examples Observe the pitfalls of Docker networking and how to overcome them Learn how Docker networking works for Docker Swarm and Kubernetes Configure Networking using Docker's container network model (CNM) Explore OpenvSwitch to connect contain In Detail Docker is a Linux container implementation that enables the creation of light weight portable development and production environments. These environments can be updated incrementally. Docker achieves this by leveraging containment principles like cgroups and Linux namespaces along with Overlay filesystem based portable images. Docker provides the networking primitives that allow administrators to specify how different containers network with each application and connect each of its components, then distribute them across a large number of servers and ensure coordination between them irrespective of the host or VM they are running in. This book will show you how to create, deploy, and manage a virtual network for connecting containers spanning single or multiple hosts. Style and approach This step-by-step guide covers the fundamentals relating to typical applications with a practical approach. There is a focus on providing the practical skills required to develop applications, with a summary of the key concepts where necessary.

eBooks on EBSCOhost EBSCO eBook Subscription Academic Collection - Worldwide