LXC (Linux Containers)

  • Support in mainline kernel
    • relevant options enabled in default Ubuntu kernel
  • tap-style virtual interfaces, can be bridged
  • interfaces
    • userspace tool
    • raw syscalls
    • libvirt


Fully isolated kernel-level networking. Fits into VDE framework with bridging:

example of LXC networking architecture

Architecture alternatives:

  • one bridge per VLAN (pictured above)
    • reduces number of bridges
    • VLAN becomes hub-style broadcast domain (con)
  • one bridge per node
    • switch-style broadcast domain thanks to VDE switch
    • same interface as other vnodes
    • one bridge, one vde_plug2tap process, and one tap interface per vnode (con)
Last modified 10 years ago Last modified on Apr 14, 2011 11:11:44 AM

Attachments (2)

Download all attachments as: .zip