Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Docker Performance on Web Application

Yuuki Tsubouchi (yuuk1)
January 17, 2015
Technology
7
130k

Docker Performance on Web Application

Docker Meetup Tokyo #4

Yuuki Tsubouchi (yuuk1)

January 17, 2015
Tweet

More Decks by Yuuki Tsubouchi (yuuk1)

See All by Yuuki Tsubouchi (yuuk1)
エンジニアのためのSRE論文への招待 / Introduction to SRE Papers for Engineers
yuukit
0
11
博士課程での研究まとめ 2023年1月版 / Summary of my research in the PhD course
yuukit
1
84
AI時代に向けたクラウドにおける信頼性エンジニアリングの未来構想 / DICOMO2022 6A-1
yuukit
7
2.2k
AIOps研究録―SREのための
システム障害の自動原因診断 / SRE NEXT 2022
yuukit
9
11k
Interactive AIOps
yuukit
0
1.6k
Meltria: マイクロサービスにおける
異常検知・原因分析のための
データセットの動的生成システム / Meltria in IOTS2021
yuukit
1
1.2k
AIOpsの研究動向と
AIOps向けデータセットの動的生成の研究 / Introducing AIOps and A Dynamic Datasets Generating System
yuukit
1
550
分散アプリケーションの高信頼化のための
運用技術に関する研究 / A Study on Operation Technology for High Reliability of Distributed Applications
yuukit
1
630
ネットワークサービスの依存発見に向いた
TCP/UDP通信の低負荷なトレース手法 / Low Overhead TCP-UDP Tracing in Kernel
yuukit
5
3.6k

Other Decks in Technology

See All in Technology
動画配信サービスの 人気番組配信のスパイクアクセスに、 サーバレスキャッシュで立ち向かう
miu_crescent
1
700
サーバーレスアーキテクチャを使って、小さく作って大きくする取り組み
daikimori
0
1.2k
self-hosted runnerと actions/cache の噛み合わせが悪かった件 #githubactionsmeetup
whywaita
PRO
1
490
Swift Package Mangerのバグを直した話
k_koheyi
2
160
Microsoft Fabric 移行ポイントの所見やデータ活用コラボレーションについて
ryomaru0825
0
170
サーバーレス技術とDevSecOps: 安全かつ迅速なデプロイメントの新時代
gl_tsukasa
1
650
Kotlin Dynamic type
coe
0
130
Warningアラートを放置しない!アラート駆動でログやメトリックを自動収集する仕組みによる恩恵
mashiike
2
160
1,800万人が利用する『家族アルバム みてね』におけるK8s基盤のアップグレード戦略と継続的改善 / FamilyAlbum's upgrade strategy and continuous improvement for K8s infrastructure
kohbis
0
280
Renovate を使った ライブラリアップデート 仕組み化の取り組み
andpad
0
230
React Suspenseを使って遷移体験を向上させる
kobayang
3
840
Jagu'e'r Tech Writers Meetup #1
yamahiro
0
110

Featured

See All Featured
Writing Fast Ruby
sferik
615
59k
A Modern Web Designer's Workflow
chriscoyier
688
190k
Building Your Own Lightsaber
phodgson
97
5.2k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
271
12k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
20k
The MySQL Ecosystem @ GitHub 2015
samlambert
240
11k
Stop Working from a Prison Cell
hatefulcrawdad
265
18k
Producing Creativity
orderedlist
PRO
336
38k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
33
8.6k
The Straight Up "How To Draw Better" Workshop
denniskardys
226
130k
Put a Button on it: Removing Barriers to Going Fast.
kastner
56
2.7k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.2k

Transcript

  1. Docker Performance
    on Web Application
    JEZ@VVLJ
    %PDLFS.FFUVQ5PLZP

    View Slide

  2. id:y_uuki
    ӡ༻
    @y_uuk1

    View Slide

  3. Docker Engine্Ͱɹ
    ΞϓϦέʔγϣϯΛɹ
    ಈ͔ͯ͠ੑೳྼԽ
    ͠ͳ͍ͷʁ

    View Slide

  4. View Slide

  5. 1
    DockerͷύϑΥʔϚϯεʹ
    ͓͍ͯॏཁͳ͜ͱ͸ͳʹ͔

    View Slide

  6. Linux Containers

    View Slide

  7. /FUXPSL
    /BNFTQBDF
    *1$
    /BNFTQBDF
    654
    /BNFTQBDF
    .PVOU
    /BNFTQBDF
    6TFS
    /BNFTQBDF
    1*%
    /BNFTQBDF

    View Slide

  8. /FUXPSL
    /BNFTQBDF
    *1$
    /BNFTQBDF
    654
    /BNFTQBDF
    .PVOU
    /BNFTQBDF
    6TFS
    /BNFTQBDF
    1*%
    /BNFTQBDF
    -JOVYΧʔωϧͷ໊લۭؒػೳͷ
    ू·Γ

    View Slide

  9. Linux Containers
    Χʔωϧͷ֤ϦιʔεΛ໊લۭؒͰִ཭͠
    ۭͨؒͰϓϩηεΛ࣮ߦ͢Δͱ͍͏Ϟσϧ
    ϑΝΠϧγεςϜɼϢʔβɼϓϩηεςʔ
    ϒϧɼωοτϫʔΫ… etc
    LXC ͸ Linux Containers ͷϑϩϯτΤϯυ

    View Slide

  10. Linux Containers Overhead
    ୯ମͷLinux ΧʔωϧͰ׬݁͢ΔͷͰ
    ΦϒδΣΫτͷڞ༗ޮ཰͕Α͍
    Hypervisor ͷΑ͏ʹ֤ϦιʔεΛɹɹ
    ೋॏॲཧ͠ͳͯ͘Α͍

    View Slide

  11. example/packet receive
    /*$ ,FSOFM 6TFSMBOE
    $PQZ $PQZ
    4JOHMF
    ,FSOFM

    View Slide

  12. example/packet receive
    /*$ ,FSOFM 6TFSMBOE
    $PQZ $PQZ
    /*$ ,FSOFM ,FSOFM
    $PQZ $PQZ
    4JOHMF
    ,FSOFM
    )ZQFSWJTPS
    9FO ,7.
    6TFSMBOE
    $PQZ
    ˞ 43*07ͳͲ)ZQFSWJTPSͰ΋ύέοτίϐʔΦʔόϔουΛগͳ͘
    ͢Δ࣮૷͸͋Δ

    View Slide

  13. Linux Containers ͩͱ
    Single Kernel Ͱ଎͍

    View Slide

  14. Docker Filesystem
    -JOVY$POUBJOFST

    View Slide

  15. UNION Filesystem
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN

    View Slide

  16. IUUQTEPDTEPDLFSDPNUFSNTJNBHFTEPDLFSpMFTZTUFNTNVMUJMBZFSQOH
    UNION Filesystem Image

    View Slide

  17. 8SJUF*0 3FBE*0 ADBUFUDEFCJBO@WFSTJPOA

    View Slide

  18. 8SJUF*0 3FBE*0
    8SJUF*0͸࠷্૚΁ॻ͖ࠐΈ
    3FBE*0͸֘౰ϑΝΠϧΛ
    ֨ೲ͢Δ૚Λ୳ࡧ

    View Slide

  19. UNION Filesystem
    • AUFS, Btrfs, OverlayFS … ͳͲΛ࢖࣮ͬͯݱ
    • Copy On Write: ݪຊΛෳ੡ͨ͠;ΓΛͯ͠
    ͓͍ͯ৽نॻ͖ࠐΈ͕͋ͬͨΒෳ੡Λ࡞Δ
    • LinuxΧʔωϧඪ४ͷ Device MapperΛ࢖ͬ
    ͯ΋࣮ݱͰ͖Δ

    View Slide

  20. Storage drivers
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN

    View Slide

  21. EFWJDFNBQQFS
    BVGT
    CUSGT
    PWFSMBZGT

    View Slide

  22. EFWJDFNBQQFS
    BVGT
    CUSGT
    PWFSMBZGT
    6OJPO'4ͷ࣮૷Λબ୒Ͱ͖Δ

    View Slide

  23. Storage drivers
    devicemapper, aufs, btrfs, overrayfs
    (vfs)
    Χʔωϧඪ४ͳͨΊRHELܥͰͷɹɹ
    σϑΥϧτ͸ devicemapper

    View Slide

  24. Device Mapper
    ϒϩοΫσόΠε΁ͷI/Oʹ༷ʑͳม׵ΛՃ͑Δ͜ͱ͕
    Ͱ͖Δ (҉߸ԽɺετϥΠϓɺϛϥʔ ͳͲ)
    ϒϩοΫσόΠευϥΠόϨϕϧͷ࣮૷ͳͷͰɹɹɹɹ
    ಛఆͷϑΝΠϧγεςϜʹґଘ͠ͳ͍
    LVMͳͲͰ࢖ΘΕ͍ͯΔ
    docker commit ͕૸ΔͱsnapshotσόΠεΛ࡞੒ͯ͠Π
    ϝʔδ૚ͱ͢Δ

    View Slide

  25. Volume
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN
    4UPSBHF%SJWFST

    View Slide

  26. Volume
    ίϯςφؒͰσΟϨΫτϦΛڞ༗͢ΔͨΊͷ΋ͷ
    ίϯςφ͝ͱͰ͸ͳ͘DockerάϩʔόϧͳྖҬʹ֨
    ೲ͞ΕΔ
    ࢦఆͨ͠σΟϨΫτϦҎԼͷΠϝʔδ૚ΛόΠύε͠
    ͯΞΫηε
    I/Oཁٻ͕Union FS෦෼Λ௨Βͳ͍ͷͰΦʔόϔου
    ͕গͳ͍

    View Slide

  27. howto/Volume
    EPDLFSSVOWWBSMJCNZTRMNZTRM
    70-6.&WBSMJCNZTRM
    EPDLFSSVONZTRM
    %PDLFSpMF
    4IFMM
    4IFMM
    PS

    View Slide

  28. Docker Network
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN
    4UPSBHF%SJWFST
    7PMVNF

    View Slide

  29. Portmapper
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN
    4UPSBHF%SJWFST
    7PMVNF
    %PDLFS/FUXPSL

    View Slide

  30. Portmapper
    ίϯςφؒ௨৴΍ίϯςφɾϗετؒ௨৴͸ϗετଆ
    ͷ iptables ͰNAT
    !
    iptables͕ͳ͍؀ڥͩͱಠࣗͷϢʔβϥϯυͷϓϩη
    ε(docker-proxy)Ͱίϯςφؒ௨৴
    "%0$,&3JEPDLFSQUDQNUDQŠEQPSUK%/"5
    ŠUPEFTUJOBUJPO
    EPDLFSQSPYZQSPUPUDQIPTUJQIPTUQPSU
    DPOUBJOFSJQDPOUBJOFSQPSU

    View Slide

  31. Host Networking
    -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN
    4UPSBHF%SJWFST
    7PMVNF
    %PDLFS/FUXPSL
    1PSUNBQQFS

    View Slide

  32. Host Networking
    ίϯςφ༻ͷNetwork NamespaceΛ࡞Β
    ͣʹϗετͷωοτϫʔΫΛͦͷ··࢖͏
    ίϯςφ͸ϗετଆͷportΛlisten͢Δ
    iptables΍docker-proxyΛܦ༝͠ͳͯ͘Α
    ͘ͳΓɺΦʔόϔου͕খ͘͞ͳΔ

    View Slide

  33. howto/Host Networking
    !
    ŠFYFDESJWFSOBUJWF
    PS
    -9$Ҏ্ͰŠFYFDESJWFSMYD
    ͕ඞཁ
    EPDLFSSVOŠOFUIPTUNZTRM

    View Slide

  34. -JOVY$POUBJOFST
    %PDLFS'JMFTZTUFN
    6/*0/'JMFTZTUFN
    4UPSBHF%SJWFST
    7PMVNF
    %PDLFS/FUXPSL
    1PSUNBQQFS
    )PTU/FUXPSLJOH
    DockerͷύϑΥʔϚϯεʹ
    ͓͍ͯॏཁͳ͜ͱ͸ͳʹ͔

    View Slide

  35. 2
    DockerԽͨ͠
    ISUCONΞϓϦέʔγϣϯ
    ͷϕϯνϚʔΫ

    View Slide

  36. ISUCON
    *JLBOKJOJ4QFFE6Q$0/UFTU

    View Slide

  37. /HJOY
    CFODI
    NBSLFS
    .Z42-
    "QQ
    .FNDBDIFE
    ISUCON4 ༧બ

    View Slide

  38. Machine & Software Spec
    instance type: m3.xlarge
    CPU: Xeon E5-2670 v2 @ 2.50GHz 4 vCPU
    Memory: 16GB RAM
    Storage: Magnetic volume
    OS: Ubuntu 14.04 LTS Kernel 3.18.0
    Docker: 1.4.1 (latest)
    MySQL: 5.5.40, memcached: 1.4.14, Nginx:1.4.6

    View Slide

  39. νϡʔχϯά಺༰
    • είΞ 38446 (໿ 3000 req/s)
    • ࢼߦ͝ͱʹ +-1000 είΞఔ౓ͷޡࠩ
    • ༧બಥഁϨϕϧ
    • σʔλ͸શ෦ϝϞϦʹ৐Δ
    • ηογϣϯ৘ใͳͲ͸ memcached
    • Nginx Ͱ੩తϑΝΠϧΛฦ͢
    • ωοτϫʔΫελοΫɺNginx, MySQL ͸ී௨ͷ
    νϡʔχϯά

    View Slide

  40. Evaluation

    View Slide

  41. • Nginx ͱ MySQL ΛͦΕͧΕDockerԽ
    • ҎԼͷ֤ํࣜΛnative(default)ͱൺֱ
    • Nginx͚ͩDockerԽ
    • —net=host ͱ —net=bridge
    • MySQL͚ͩDockerԽ
    • storage-driver=devicemapper ͱ
    storage-driver=overlayfs
    • Volume ͷ ON/OFF

    View Slide

  42. Result

    View Slide

  43. EFGBVMU
    /HJOY
    OFUCSJEHF
    /HJOY
    OFUIPTU

    View Slide

  44. /HJOYʹύέοτ͕ू໿͢Δ
    /"15͢ΔΦʔόϔου͕ߴ͍

    View Slide

  45. EFGBVMU
    .Z42-
    EFWJDFNBQQFS
    WPMVNFP⒎
    .Z42-
    EFWJDFNBQQFS
    WPMVNFPO
    .Z42-
    PWFSMBZGT
    WPMVNFP⒎
    .Z42-
    PWFSMBZGT
    WPMVNFPO

    View Slide

  46. 7PMVNFͷ0/0''ͱ
    TUPSBHFESJWFSʹΑΔ
    ੑೳྼԽͳ͠

    View Slide

  47. 7PMVNF0''ͰมΘΒͳ͍
    3FBE*0͸ϝϞϦʹશ෦ͷΔ
    8SJUF*0͸࠷্૚͚ͩ

    View Slide

  48. NAPTͷߴ଎Խ

    View Slide

  49. -A OUTPUT ! -d 127.0.0.0/8
    -m addrtype --dst-type LOCAL
    -j DOCKER

    View Slide

  50. -A OUTPUT E
    -m addrtype --dst-type LOCAL
    -j DOCKER

    View Slide

  51. 127.0.0.1Ѽͩͱiptablesͷ
    DockerνΣʔϯʹೖΒͳ͍

    View Slide

  52. docker-proxy
    EPDLFSQSPYZQSPUPUDQIPTUJQ
    IPTUQPSU
    DPOUBJOFSJQDPOUBJOFSQPSUA

    View Slide

  53. docker-proxy
    EPDLFSQSPYZQSPUPUDQIPTUJQ
    IPTUQPSU
    DPOUBJOFSJQDPOUBJOFSQPSUA
    CPU 50%

    View Slide

  54. benchmarker bench
    --host 172.31.8.235
    --init ~/init.sh
    --workload 8

    View Slide

  55. 32172 37931

    View Slide

  56. ͳͥ userland ͷ
    proxy ͕͍Δͷ͔

    View Slide

  57. IUUQTHJUIVCDPNEPDLFSEPDLFSQVMM

    View Slide

  58. Hairpin NAT

    View Slide

  59. )PTU $POUBJOFS
    EPDLFS

    -*45&/
    FUI
    FUI
    MP
    FUI
    FUI

    View Slide

  60. ETU
    MP
    FUI
    FUI
    )PTU $POUBJOFS
    EPDLFS

    -*45&/
    FUI
    FUI

    View Slide

  61. ETU
    "%0$,&3JEPDLFSQUDQNUDQEQPSU
    K%/"5UPEFTUJOBUJPO
    )PTU $POUBJOFS
    MP
    FUI
    FUI
    EPDLFS

    -*45&/
    FUI
    FUI

    View Slide

  62. ETU
    "%0$,&3JEPDLFSQUDQNUDQEQPSU
    K%/"5UPEFTUJOBUJPO
    )PTU $POUBJOFS
    MP
    FUI
    FUI
    EPDLFS

    -*45&/
    -*45&/
    Ծ૝bridge(docker0)Λ
    Hairpin NAT modeʹ͠ͳ͍ͱ
    NAT͞Εͳ͍

    View Slide

  63. FDIPTZTDMBTTOFUCSCSJGFUIIBJSQJO@NPEF

    View Slide

  64. IUUQTHJUIVCDPNEPDLFSEPDLFSQVMM

    View Slide

  65. View Slide

  66. 3)&-BOE$FOU04
    SFBEPOMZTZT

    View Slide

  67. 1. DockerͷύϑΥʔϚϯεʹ͍ͭͯ
    ॏཁͳࣄ͸ͳʹ͔
    2. DockerԽͨ͠ISUCONΞϓϦέʔ
    γϣϯͷϕϯνϚʔΫ

    View Slide

  68. Linux Containers
    Docker Filesystem
    UNION Filesystem
    Storage drivers
    Volume
    Docker Network
    Portmapper
    Host Networking

    View Slide

  69. Linux Containers
    Docker Filesystem
    UNION Filesystem
    Storage drivers
    Volume
    Docker Network
    Portmapper (Performance issue)
    Host Networking

    View Slide

  70. View Slide

  71. IUUQIBUFOBDPSQKQSFDSVJUDBSFFSTBMFTFOHJOFFS
    ηʔϧεΤϯδχΞ৬

    View Slide

  72. !
    8FCΦϖϨʔγϣϯΤϯδχΞ
    Λืू͓ͯ͠Γ·͢

    View Slide