EN

Datadog presents: Container monitoring challenges: isolation vs instrumentation

Xavier Vello

Containers provide increased security through isolation and rule-based access control. While this is a great improvement, this proved to be a challenge at Datadog for effectively instrumenting and monitoring containerised workloads. In this talk, we will go through several of the technical issues we encountered while developing container-aware instrumentation, and how what we learned can be leveraged to improve your deployment’s security and performance.

  • Cgroup hierarchies: limits and accounting

  • Kernel namespacing: what do –net, –pid, –privileged imply?

  • Host-local traffic through Unix Domain Sockets: performance gains and origin detection thanks to ancillary data

  • How to secure you Docker socket?

track icon Containers
duration icon 45 min
language icon English
level icon All

Video

This talk video is not yet available, but we upload new videos and slides every month.

What is LinuxLab?

LinuxLab - how to build the Cloud - is the conference on Linux, kernel, embedded, cloud, containers, virtualization technologies and open source. LinuxLab is organized by Develer, the company who launched events like Better Software, Better Embedded, QtDay, PyCon and EuroPython.

Our conferences in numbers

conferences icon

20

Conferences

speakers icon

400

Speakers

attendees icon

5000

Attendees

countries icon

45

Countries

Talk slides

The talk slides are not yet available.