-
Welcome
-
Subscribe to
Proposals
Why network namespace sucks and how to make it suck faster
*Excerpt
The talk outlines various ways of establishing a networking
communication between a network namespace (a container)
and the outer world, compares their performance and features.
Description
Each namespace implements its own isolated network stack.
Network packets comes to a network stack from network device.
Five different device types that can be used as a packets
sources for containers are demonstrated. Their properties
(mostly performance and maintainability) and features are
compared.
In addition, one more device type is described — the one that is currently only implemented in the OpenVZ containers. Its pros and cons, and ways it can be implemented in the mainline kernel are discussed.
Tags
containers, openvz, linux, kernel, networking, performance, development
Speaker
-
- Website: http://openvz.org/
Biography
Pavel Emelyanov is a core PVC/OpenVZ kernel developer working in the project for the last five years. He participates in development of all subsystems and features and maintains development OpenVZ kernel branches. Pavel is also a prolific mainstream kernel contributor. He holds a PhD in Computer Science from the Moscow Institute of Physics and Technology.