Containers or VMs?

Containers will replace virtual machines. They said so, but looking at the statistics and, for example, the Kata-containers project, I think that these entities coexist very well.

Currently, 2/3 of OpenStack, Docker, and Kubernetes users are the same users. What happened that after the initial enthusiasm for containers, a moment of reflection came and virtual machines returned to favor?

Security. It's no secret that the biggest advantage of containers is also their biggest disadvantage. Containers are lightweight and start up quickly because they share access to the host operating system. But therefore, having access to one container, it is quite easy to hack into the others on the same operating system. Virtual machines at this layer provide much better hypervisor separation and are therefore more secure. What if we could connect these two worlds?

Great idea. A common approach is to pack K8s clusters into virtual machines so that each project or application has its own container cluster. This way with the use of OpenStack as a layer to run K8s improves the situation, although it is also not ideal, because we already have to manage two intermediate layers. And the situation becomes even more complicated. OpenStack is extremely flexible but also complicated environment to manage. Currently, the most popular way to implement and maintain it is Kolla Ansible - nothing but OpenStack services in containers. Can you see where this is going?

Exactly - Kata-containers. The idea has been developed by OpenInfra for over 3 years, and it was born in Intel and Hyper labs. Even though big companies like IBM and Oracle are joining it, it is an open source project with very dynamic community support. What is going on? Kata-containers allow you to pack containers into lightweight virtual machines, each of which has its own kernel, but very truncated. The only job of this machine is to run the container. So the pods are separated by server virtualizer mechanisms, but the orchestration is done with a K8s, for example, and the container orchestrator doesn't even know it's dealing with a VM. This is because a specially created communication channel and an agent on the host server are used. Such Kata-containers start slower than the native container, but they ensure the safety of virtual machines. And it is extremely important that both containers and virtual machines can coexist in one OpenStack environment, which was to be proved.

SOLUTION

 

CloudOval - MultiCloud Management Platform allows you to manage complex cloud environments, on-board your users and assures accountability for resources used by your users in different clouds - all in one place. 

Cloudoval solution

 

NEXT GENERATION INFRASTRUCTURE ENGINEERING

kreska

 CloudOval provides the tools and technologies to abstract the underlying infrastructure in an easy and standardized consumption model. CloudOval use open source projects to manage virtual or physical Compute, Network and Storage technologies and provides the APIs and tools to access these resources in an agile and programmatic manner. This standardized abstraction helps prevent customers from being locked into a specific technology or tool. CloudOval provides additional services such as identity management, orchestration, and metering.

PARTNERS

kreska

Sardina red logo no backgroud trademark

Sardina Systems is an award-winning developer of OpenSource Cloud Management Solutions headquartered in the UK and operating globally. FishOS® by Sardina Systems is a cutting-edge cloud management platform that provides a reliable, efficient, and highly scalable cloud infrastructure powered by OpenStack, Kubernetes, and Ceph. Sardina Systems technologies offer the market an all-in-one cloud solution across various industries, emphasizing optimized resource utilization and zero-downtime operations.

SUSE logo

SUSE, now with Rancher, offers the industry’s most adaptable Linux operating system and the only open Kubernetes management platform. Together with our Edge solutions, you can innovate fast and transform according to your own priorities. SUSE puts the ‘open’ back in ‘open source’ software—giving you the choice to evolve your IT strategy based upon business requirements and innovation needs, not contractual obligations.

Docker logo

Docker is a set of platform as a service (PaaS) products that use OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries and configuration files; they can communicate with each other through well-defined channels. Because all of the containers share the services of a single operating system kernel, they use fewer resources than virtual machines. Premium service support is delivered by Mirantis.

Openstack logo

The Most Widely Deployed Open Source Cloud Software in the World serving in 2021 over 25 milion cores. It is proven in production at scale with 7 companies exceeding 1 milion cores deployment. OpenStack is a set of software components that provide common services for cloud infrastructure. OpenStack is developed by the community and commercially supported by many service providers worldwide.

 

SERVICES