Containers
- Containers are why we use Docker
- Simply puts a thin read-write layer on top of the images (see figure below)
- Lightweight & portable encapsulation of runtime environment
- environment in which to run our application
- Our container, has all the binaries & dependencies needed to run our application
- Isolation - docker uses functionality in Linux to achieve isolation
- Name Space: Information from one container not viable in others
- Control Groups or “C Groups”: (CPU, memory, I/O, network, etc)