Even if you are not familiar with Docker, chances are you know about virtual machines. When you order a server hosted in a cloud, in most cases you get a virtual machine instance (a guest) running on a physical server (a host) in your cloud provider’s data center. There are many advantages in getting a virtual machine (as opposed to a physical server) from a cloud provider and arguably the top one is quicker delivery. Getting access to a physical server hosted in a data center usually takes hours while you can get a virtual machine in a matter of minutes. However, many workloads like databases and analytics engines are still running on physical servers because virtual machine hypervisors introduce a non-trivial penalty on I/O operations in guest instances.
Enter Linux Containers(LXC) and Docker. Instead of virtualizing the hardware (as the case with traditional virtual machines) containers virtualize the operating system. Start up time for containers is as good or better (think seconds not minutes) than for virtual machines and the I/O overhead all but disappears. In addition, Docker makes it easier to manage both containers and their contents. Containers are not a panacea and there are situations where virtual machines make more sense but that’s a topic for another post.
In this post, you can follow along with the examples to learn whether I/O performance of Docker containers in IBM Bluemix matches your application’s needs. Before starting, make sure that you have access to Bluemix[3] and to the Container Service[4]. In short, once you have provisioned an instance of the Container Service, you should have received an email notifying you that you have been approved for access and you should be able to see an API key as described in the example here[1].
Getting Started
The instructions below describe how to use boot2docker[5] for access to a Docker installation. boot2docker deploys a VirtualBox guest with Tiny Core Linux to OSX and you’ll ssh into this guest to access docker CLI. The same approach should also work on Windows although I am yet to try it.
Start of boot2docker specific instructions
Install boot2docker as described here[5]. Make sure that the following commands work correctly
boot2docker init
boot2docker start
$(boot2docker shellinit)
boot2docker ssh
Install python and the ice tool in your boot2docker guest to interface to the IBM Container Environment. The approach used in these steps to install python is specific to TinyCore Linux and shouldn’t be used on other distros.
tce-load -wi python
curl https://bootstrap.pypa.io/get-pip.py -o - | sudo python
curl https://bootstrap.pypa.io/ez_setup.py -o - | sudo python
curl -O https://static-ice.ng.bluemix.net/icecli-1.0.zip
sudo pip install icecli-1.0.zipEnd of boot2docker specific instructions
If you are not using boot2docker, you should follow the standard ice CLI installation instructions[6]
Before proceeding, create a public/private key pair which you’ll use to connect to your container. Replace the email address below with yours. The examples below assume that you’ll save your public key file to ~/.ssh/id_rsa.pub
ssh-keygen -t rsa -C "<your_email@example.com>"
ice login -k <api_key> -H https://api-ice.ng.bluemix.net/v1.0/containers -R registry-ice.ng.bluemix.net
Next, you will pull one of the base IBM Docker images and customize it with your own Docker file:
ice --local pull registry-ice.ng.bluemix.net/ibmnode
Create a Dockerfile using your favorite editor and the following contents:
FROM registry-ice.ng.bluemix.net/ibmnode:latest
MAINTAINER Carl Osipov
COPY .ssh/id_rsa.pub /root/.ssh/
RUN cat /root/.ssh/id_rsa.pub >> /root/.ssh/authorized_keys
ADD *.sh /bench/
RUN apt-get install -y sysbench
Next, create io.sh with the following contents
#!/bin/sh
SIZE="$1"
sysbench --test=fileio --file-total-size=$SIZE prepare
sysbench --test=fileio --file-total-size=$SIZE --file-test-mode=rndrw --init-rng=on --max-time=30 --max-requests=0 run
sysbench --test=fileio --file-total-size=$SIZE cleanup#!/bin/sh
PRIME="$1"
sysbench --test=cpu --cpu-max-prime=$PRIME runchmod +x *.shice --local build -t example/sysbench .Push your custom Docker image to Bluemix
When you got access to the Container Service, you should have noticed a registry URL which is shown right above your API key. For an example, see here[1]. The registry URL should end with a postfix which you specified when provisioning the Containers service . In the commands below, replace <registry_id> to ensure you are specifying your registry URL.
ice --local tag example/sysbench registry-ice.ng.bluemix.net/<registry_id>/sysbench
ice --local push registry-ice.ng.bluemix.net/<registry_id>/sysbench
ice run -n sysbench registry-ice.ng.bluemix.net/<registry_id>/sysbench
ice psRequest a public IP address from the Container Service and note its value.
ice ip requestBind the provided public IP address to your container instance with
ice ip bind <public_ip_address> sysbenchNow you can go ahead and ssh into the container using
ssh -i ~/.ssh/id_rsa root@<public_ip_address>Once there, notice it is running Ubuntu 14.04
lsb_release -aon a 32 core server with Intel(R) Xeon(R) CPU E5-2650 v2 @ 2.60GHz CPUs
cat /proc/cpuinfo
...
processor : 31
vendor_id : GenuineIntel
cpu family : 6
model : 62
model name : Intel(R) Xeon(R) CPU E5-2650 v2 @ 2.60GHz. /bench/io.sh 100MJust for a comparison, I ordered a Softlayer virtual machine (running on a Xen hypervisor) and ran the same Docker container and the benchmark there. In my experience, the I/O benchmark results were roughly twice better on the Container Service than on a Softlayer VM.You can also get a sense of relative CPU performance using
. /bench/cpu.sh 5000
Conclusions
Benchmarks are an artificial way of measuring performance and better benchmark results don’t always mean that your application will necessarily run better or faster. However, benchmarks help understand if there exists potential for better performance and help you design or redesign your code accordingly.
In case of the Containers Service on IBM Bluemix, I/O benchmark performance results are significantly superior to those from a Softlayer virtual machine. This shouldn’t be surprising since Containers runs on bare metal Softlayer servers. However, unlike the hardware servers, Containers can be delivered to you in seconds compared to hours for bare metal. This level of responsiveness and workload flexibility enable Bluemix application designers to create exciting web applications built on novel and dynamic architectures.
References
[1] https://developer.ibm.com/bluemix/2014/12/04/ibm-containers-beta-docker/
[2] https://console.ng.bluemix.net
[3] http://cloud.foundry.guru/?p=14
[4] https://console.ng.bluemix.net/#/store/orgGuid=5b4b9dfb-8537-48e9-91c9-d95027e2ed77&spaceGuid=c9e6fd6b-088d-4b2f-b47f-9ee229545c09&cloudOEPaneId=store&serviceOfferingGuid=3a79bdf2-a8d3-4b72-b70d-db1650124c73&fromCatalog=true
[5] http://docs.docker.com/installation/mac/
[6] https://www.ng.bluemix.net/docs/#services/Containers/index.html#container
[7] https://www.ibm.com/developerworks/community/blogs/1ba56fe3-efad-432f-a1ab-58ba3910b073/entry/ibm_containers_on_bluemix_quickstart?lang=en&utm_content=buffer894a7&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer
Congratulation for the great post. Those who come to read your Information will find lots of helpful and informative tips. Course AZ-801: Configuring Windows Server Hybrid Advanced Services
ReplyDelete