Skip to content
Slim: OS Kernel Support for a Low-Overhead Container Overlay Network
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
kern_module Slim 1.0 Feb 14, 2019
router Slim 1.0 Feb 14, 2019
socket Slim 1.0 Feb 14, 2019
.gitignore Slim 1.0 Feb 14, 2019
LICENSE MIT License Feb 14, 2019
README.md add a pointer to NSDI19 paper Feb 14, 2019

README.md

Slim: OS Kernel Support for a Low-Overhead Container Overlay Network

Slim is a low-overhead container overlay networking solution. Unlike traditional container overlay networks that rely on packet encapsulation (e.g., VXLAN), Slim virtualizes the network at a per-connection level, significantly improving throughput, latency, and CPU utilization.

Slim has two modes: secure mode and non-secure mode. Non-secure mode does not require kernel modifications and is easy to deploy. However, non-secure mode should be used only when a container is trusted because the container gets access to its host network. Secure mode addresses this security issue via a Linux kernel module.

Our NSDI 2019 paper (https://danyangzhuo.com/papers/NSDI19-Slim.pdf) describes the technical details of Slim.

Requirement

We have tested on:

  • Ubuntu 16.04
  • Docker
  • Weave Overlay Network

We have tested the following applications:

  • Memcached
  • Nginx
  • Postgres
  • Apache Kafka
You can’t perform that action at this time.