chapter 14 - virtual machines Flashcards
(38 cards)
what does virtualization do?
allows a PC or server to simultaneously run more than 1 OS or more than 1 session of the same OS
what is the history of virtualization?
was used during 1970s in IBM, became mainstream in early 2000s when it became commercially available on x86 platform
what is the software for virtualization called?
a virtual machine monitor AKA hypervisor
what does a VMM do?
acts as layer between hardware and the VMs to act as as resource broker
allows multiple VMs to coexist on single host
what is consolidation ratio?
the number of VMs that can run on a host
8 reasons for virtualization
legacy hardware, rapid development, versatility, consolidation, aggregating, dynamics, ease of management, increased availability
how does a virtual machine work?
configured with a number of processors, RAM, storage resources, and network connectivity.
powered on like a physical server, loaded with an OS, and utilized like a physical server
it is limited to seeing only the resources it has configured
5 hypervisor functions
execution management of VMs, devices emulation and access control, execution of privileged operations, management of VMs, administration (hypervisor platform and software administration activities.)
What is a Type 1 hypervisor?
runs directly on host hardware like OS would, directly controls host resources
Examples of Type 1 hypervisor
VMware ESXI, Microsoft Hyper-V, Xen variants
What is a Type 2 hypervisor?
runs on host’s OS, relies on host OS for hardware interactions
Examples of type 2 hypervisor
VMware workstation, Oracle virtual box
Type 1 vs Type 2 hypervisors
type 1 performs better
type 2 is more secure, can run on a system being used for other things like user’s workstation
what is paravirtualization?
software-assisted virtualization technique
OS is modified so that calls to the hardware are replaced with calls to the hypervisor
is faster with less overhead, but you need a modified OS
what is a virtual appliance?
consists of applications and an OS distributed as a virtual machine image, independent of hypervisor or processor architecture, can run on type 1 or type 2 hypervisor, deploying this is easier than installing an OS
what is a security virtual appliance?
security tool that monitors and protects the other VMs
can monitor state of VM including registers, memory, i/o devices, network traffic
what is container virtualization?
another approach to virtualization
software running on top of the host OS kernel, all containerized applications on a host share common OS kernel
how is container virtualization different from hypervisor VMs
containers don’t aim to emulate physical servers
what is the benefit of container virtualization?
eliminates need for each VM to run its own OS and reduces overhead
what are kernel control groups?
originally developed for Linux and called process containers later became cgroups
all processes are descendants of the init process forming a single process hierarchy. Cgroups allow for multiple process hierarchies in a single OS
4 things control groups provide
resource limiting: how much memory is usable
prioritization: some groups can get a larger share of CPU or disk i/o
accounting: used for billings purposes
control: groups of processes can be frozen, stopped, or restarted
container advantages
By sharing the OS kernel, a system may run many containers compared to the limited number of VMs and guest OSs of a hypervisor environment.
Application performance is close to native system performance.
container disadvantages
Container applications are only portable across systems with the same OS kernel and virtualization support features.
An app for a different OS than the host is not supported.
May be less secure if there are vulnerabilities in the host OS.
What is Docker?
provides a simpler and standardized way to run containers, makes it easy to load the container image in a simple and quick manner, stored in the cloud as images
