stackoom
  简体   繁体   中英

Deploying Containers on Compute Engine VMs

 原文  2017-11-04 16:10:40       google-cloud-platform/ google-compute-engine/ google-container-os

Question

I'm a little bit confused, GCP has this new feature Deploying Containers on VMs and Managed Instance Groups which is currently marked as an Alpha release of Containers on Compute Engine and you actually need to request to be whitelisted for this feature.

What I'm struggling with is to understand how is it different from simply choosing Container-Optimized OS in the list of OS images when creating a new CE instance and then running your docker container on that instance? What are the benefits of the new approach?

1 answers

solution1
 0  2018-01-18 09:06:13

Container-Optimized OS images have a number of benefits if all you want to do is run containers on your Compute Engine instance.

  • There is less configuration involved as they come pre-installed and configured with Docker which will already be running as a service when the machine starts.
  • There is a tick box in the Console when creating a new Container-Optimized OS instance labelled "Deploy a container image to this VM instance". Checking this provides a method of deploying containers/adding images via the Console/Gui and adding settings for commands to be issued to the container, restart policies, environmental variables, host mounts and other mount paths. This essentially allows you to bring up a container at the same time you create your VM.
  • In general it's more secure as it has a smaller attack surface than a standard VM, as the OS has a smaller footprint. It also includes a 'locked down' firewall and other security settings.
  • Due to the fact the OS is based on Chromium OS project, and not a full Linux OS, it benefits from automatic updates and comes configured to automatically download weekly updates (a reboot is necessary to install these updates).

So if you want to run containers with minimal setup on a simple operating system with high security, Container-Optimized OS may be suitable.

It should also be said that there are some use cases where these images are not suitable. For example, if you require the flexibility of a full Linux OS (for example, Container-Optimized OS doesn't include a package manager) or if your containers depends on Linux/kernel modules that may not be available in Container-Optimized OS. It would also not be suitable if you wanted your image and OS application to be supported outside of Google Cloud Platform. You would be better off considering public images other than Container-Optimized OS images in these scenarios.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Nested virtualisation for VMs on Google Compute engine Delayed sequential restart of Compute Engine VMs in Managed Instance Groups Google Cloud Compute Engine API Key To Manage VMs List VMs - Google Compute Engine Node.js Client Library Which Google Compute Engine Server is least likely to preempt my vms? Google Compute Engine - Default behavior for Compute Engine Nested VMs will change on January 31, 2020 Deploying App Engine Flex from Compute Engine with service account Terraform failing to set some attributes for GCP Compute Engine during deploying Gcloud Compute - VMs keeps terminating GCP: Can't get Compute Engine VMs to contact a specific public DNS name server after applying a DNS outbound forwarding policy
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM