Note: Code snippets and notes are based on "Containerization and Virtualization with Docker and Kubernetes" track from DataCamp. Also some contents are AI generated.

# Part 1: Foundations of Containerization and Virtualization

## Foundations of Containerization and Virtualization
### Limitations of physical machines

Things get a little tricky when we need our computers to do more than one thing at a time. That's where physical machines have the following limitations: They can be expensive. More tasks often mean more hardware, which means a bigger investment in buying and maintaining the equipment. Maintaining multiple physical machines can be a hassle. Updates or repairs require downtime, which can interrupt important work. Physical machines can be inflexible, especially when it comes to scaling. When a machine needs more resources, you have to replace entire hardware components, which can be a complex and time-consuming process.

This is where virtual machines come in. Instead of adding more physical hardware, we can create virtual machines. A virtual machine (or short: VM) is a simulated computer system inside another computer that has its own operating system and applications. Multiple VMs can run on the same host machine (this is the physical computer that hosts multiple VMs), and each virtual machine operates independently without interfering with other VMs.

### Benefits of virtual machines
VMs offer advantages over physical machines: We can get the most out of our hardware by running multiple VMs on a single host machine. This maximizes resource utilization, resulting in cost efficiencies and sustainable usage. VMs can upgrade their hardware without having to purchase additional physical hardware, as long as the host machine has sufficient resources. VMs on the same host are completely isolated from each other, preventing the spread of potential threats between them and increasing security and stability. With VMs, different operating systems can run seamlessly on the same host machine.

### Definition of virtualization
Simply put, virtualization is the process of creating a virtual version of a computing resource. There are different levels of virtualization. The most advanced level is the virtualization of an entire computer system, including both hardware and software. This results in a VM and is also called full virtualization. Other levels of virtualization include virtualizing a specific computer component, such as the operating system or storage, which does not result in a virtual machine.

## Introduction to Containerization
Virtualization at the operating system level is known as containerization.

![image.png](attachment:image.png)

OS-level virtualization involves virtualizing the operating system itself, rather than the entire computer.

![image-2.png](attachment:image-2.png)

![image-3.png](attachment:image-3.png)

The definition of containerization is twofold: First, containerization is virtualization at the operating system level. Second, containerization is the process of packaging an application and its dependencies into a container with its own environment managed by the OS kernel.

### Characteristics when using containers
Let's consider the characteristics of containers! Containers allow multiple applications to run reliably on a single host operating system without requiring a dedicated operating system for each application. Each application is packaged in its own container, which means that each application has its own environment and does not interfere with the dependencies of another application. Developing applications in containers also makes it easy to keep track of which dependencies are needed for an application and which are not.

### Benefits of containers
When comparing application development in containers to physical machines, containers offer the following advantages: First, they provide isolation, meaning they do not interfere with other processes running on the same host machine. For example, if one application crashes, it won't affect others running in separate containers on the same host. Second, containers are highly portable and reproducible. Because they contain everything needed for the application, they're easy to move and behave identically when run on different host machines. Finally, containers have fast startup times. Unlike applications running on physical machines, containers don't need to load an entire operating system. This is critical for highly available applications or deployments that need to scale quickly.

## Containerization and Virtualization

![image.png](attachment:image.png)

### Software tools for containerization
There are several software tools available for both technologies. One of the most popular tools for building, distributing, and running containers is the Docker platform. For orchestrating containers, that is, automatically managing and coordinating multiple containers, Kubernetes is a common choice.

### 🚢 Docker – Containerization Platform
Purpose: Docker is used to create, run, and manage containers.

Main Tasks:

Packaging applications and their dependencies into lightweight containers.

Running containers on a single machine.

Building images from Dockerfile.

Scope: Focuses on single-node container lifecycle management.

🔹 Think of Docker as: A way to run isolated application environments.

### ☸️ Kubernetes – Container Orchestration System
Purpose: Kubernetes is used to orchestrate (deploy, manage, scale, and monitor) containers across a cluster of machines.

Main Tasks:

Scheduling containers across multiple machines.

Scaling containers up or down based on demand.

Rolling updates and rollbacks.

Health monitoring and self-healing of containers.

Scope: Manages containerized apps across multiple nodes in a cluster.

🔹 Think of Kubernetes as: A control plane for managing distributed containerized apps.

### 🧩 How They Work Together
Docker is typically used to build and run containers.

Kubernetes can use Docker (or other container runtimes like containerd) to deploy those containers at scale.


### Software tools for virtualization
Virtualization software such as Oracle VM VirtualBox or VMware helps create and manage virtual machines.

Full virtualization is often used to make better use of existing servers by running multiple virtual machines on a single physical server.

Organizations have a variety of reasons for keeping legacy applications alive. With virtualization, legacy hardware and software can be emulated by virtual machines, even when running on modern infrastructure.

### Use cases for containerization
Containers provide a way to isolate an application from its environment by packaging the application in a container. In addition to packaging an application, an organization may be interested in packaging each service or component of an application into its own container. Structuring an application as a collection of services is known as a microservices architecture. The benefits of microservices include the ability to use different technology stacks for each service and to scale services independently.

### Benefits of containers vs. virtual machines
Because virtual machines emulate the entire hardware, a VM provides stronger & more secure isolation than a container that shares the host OS kernel with other containers. In the event of an attack, access to the host OS kernel results in access to all containers on that host. Because containers share the same operating system and therefore take up less space than virtual machines, containers can result in lower overhead costs. Because of their light weight, containers are more portable and scalable than virtual machines. On the other hand, virtual machines provide the flexibility to run multiple operating systems on the same host machine and even support legacy applications on modern hardware.

![image-2.png](attachment:image-2.png)

# Part 2: Applications of Containerization

## Containerization with Docker
![image.png](attachment:image.png)

### Docker Desktop
To get started with Docker, you'll want to install Docker Desktop. It's a desktop application available for Mac, Linux, and Windows. Docker Desktop provides a simple graphical user interface (also called a GUI) for managing your containers, applications, and images. It also includes the Docker Engine.

### Docker engine
The Docker Engine acts as a client-server application. Users can trigger Docker actions through the Docker Client. The most common way to do this is through the command line interface (also called the CLI). Certain commands can also be invoked through Docker Desktop. Client requests are received by the Docker Daemon.

### Docker Daemon
The Docker Daemon is the core service responsible for building, running, and managing Docker objects. It needs to be running whenever you're using Docker!

### Docker objects
There are two main Docker objects: images and containers. To build an image, you start by writing a text file called a Dockerfile. Like a recipe, it contains a series of instructions for building a container. You use the Dockerfile to build the blueprint for your container. This blueprint is called a Docker image. Once you have a Docker image, you can use it to create a container.

### Docker Registries
Docker Registries are centralized locations for storing and managing container images. For example, Docker Hub is a popular public registry provided by Docker.

![image-2.png](attachment:image-2.png)

## Container orchestration
Orchestration is the automated management and coordination of multiple components or services, such as containers. The tool used for orchestration is called an orchestrator. And container orchestration is the orchestration of containers. 

![image.png](attachment:image.png)

### Declarative programming in container orchestration
Container orchestration uses declarative programming, a style in which we define the desired output rather than describing the steps to achieve it. Developers write a configuration file that specifies details such as where to locate container images, how to establish communication between containers, and how to allocate container storage. The container orchestrator uses this config file to automatically achieve the desired setup.

![image-2.png](attachment:image-2.png)

![image-3.png](attachment:image-3.png)

There are several tools available for container orchestration, including Kubernetes, Nomad, Red Hat OpenShift, and Docker Swarm mode. Each tool has its strengths and is suited to different use cases, so it's essential to choose wisely based on specific requirements.

## Container Orchestration with Kubernetes
Kubernetes, often abbreviated as K8s (with 8 letters between K and s), is a software platform that simplifies and automates the deployment, scaling, and management of containerized applications. Originally developed by Google and later open-sourced in 2014, it is now maintained by the Cloud Native Computing Foundation.

Kubernetes groups the containers that make up an application into logical units. It's also important to note that Kubernetes operates as a distributed system, meaning that its various components are spread across different machines. These machines can be virtual or physical, hosted either in the cloud or on-premise.

![image.png](attachment:image.png)

### Pods
A pod is the smallest deployable unit in Kubernetes, consisting of one or more containers that share the same computing resources. Each pod serves as a unique environment in which applications run.

### Nodes
One or more pods are grouped into a node, and each node serves as the host on which the pods run. Nodes are the smallest unit of computing hardware in Kubernetes, representing a pool of computing resources, whether virtual or physical, hosted in the cloud or on-premise. Rather than being actual custom machines, nodes abstract machines, so any node can be easily replaced with another node and everything will work the same.

### Control plane
A specific pod does not always run on the same node. This is where the Control Plane comes in. The Control Plane manages nodes and pods and ensures efficient resource allocation by smartly assigning pods to available nodes. The Control Plane is also known as the brain of the cluster.

### Cluster
A Kubernetes cluster includes all previously mentioned components and is a group of up to multiple thousands of nodes. In a cluster, the resources of individual nodes are pooled together and form a more powerful super-machine - this super-machine is the cluster! One benefit of the Kubernetes architecture is the convenience of not having to worry about which specific "machine" (or "node" in Kubernetes) is running a particular application. Kubernetes takes care of that for you!

![image-2.png](attachment:image-2.png)

While Docker is the go-to containerization platform for developers, Kubernetes actually uses a slimmer container engine, such as containerd, to efficiently orchestrate large numbers of containers. Why is that? While Docker is optimized for developer experience and ease of use, Kubernetes is optimized for efficiency and scalability. So while Docker shines with its user experience when dealing with one or a few containers, Kubernetes is optimized for speed when dealing with many containers.

## Reading Docker files and running Containers
### Docker instructions vs. Docker commands
To avoid confusion, let's distinguish between Docker instructions and commands. Docker instructions are the building blocks of a Dockerfile that detail how to build a Docker image. In contrast, Docker commands are executed through the CLI. They are sent to the Docker Daemon to manage Docker objects.

### Format of a Dockerfile
Let's examine the format of a Dockerfile. Each instruction in a Dockerfile can begin with a comment describing the details of the instruction....., followed by the instruction itself.
The instruction starts with its command and is conventionally written in uppercase.
Then follows the argument that is conventionally written in lowercase.

![image.png](attachment:image.png)

![image-2.png](attachment:image-2.png)

![image-3.png](attachment:image-3.png)

![image-4.png](attachment:image-4.png)

![image-5.png](attachment:image-5.png)

![image-6.png](attachment:image-6.png)

![image-7.png](attachment:image-7.png)

![image-8.png](attachment:image-8.png)

