Name Linux objects and manage them as one object with the same name
You can build the following 6 independent environments by naming Linux objects.
PID namespace --Points to the unique ID given to the process. This can be used to isolate the process. --If the namespace is different, access is not possible.
Network namespace --Network resources (IP address, port number, Routing Table, etc.) are given independently for each namespace. --By using this function, you can use the same port in the container even if there is a port in use on the OS.
UID namespace --User ID (UID) and group ID (GID) are separated by namespace (can be taken independently) --A function to isolate a container so that it does not have post management authority even if it has root authority. --You can have different UIDs and GIDs in the namespace and on the host OS.
MOUNT namespace --A mount is required to recognize the device on Linux. --Mount: Make the OS recognize the devices and storage devices connected to the computer and make them usable. --Isolate mounted devices such as file systems by namespace. --You can have a tree with different filesystems for the host OS and namespace.
UTS namespace --Each namespace can have its own host name and domain name. (Can be set independently)
IPC namespace --Inter Process Communication (IPC) objects can be held independently for each namespace. --Shared Memory, Semaphore, Message Queue, etc. are used independently.
Recommended Posts