17897983. APPLYING HYPERVISOR-BASED CONTAINERS TO A CLUSTER OF A CONTAINER ORCHESTRATION SYSTEM simplified abstract (International Business Machines Corporation)

From WikiPatents
Jump to navigation Jump to search

APPLYING HYPERVISOR-BASED CONTAINERS TO A CLUSTER OF A CONTAINER ORCHESTRATION SYSTEM

Organization Name

International Business Machines Corporation

Inventor(s)

Yohei Ueda of Shinagawa (JP)

APPLYING HYPERVISOR-BASED CONTAINERS TO A CLUSTER OF A CONTAINER ORCHESTRATION SYSTEM - A simplified explanation of the abstract

This abstract first appeared for US patent application 17897983 titled 'APPLYING HYPERVISOR-BASED CONTAINERS TO A CLUSTER OF A CONTAINER ORCHESTRATION SYSTEM

Simplified Explanation

The abstract describes a method, system, and computer program product for using hypervisor-based containers in a container orchestration system. This involves creating a sandbox environment for each pod to improve isolation, establishing a network tunnel between the worker node and the sandbox environment without packet encapsulation, and routing packets from the worker node to the sandbox environment using source routing to prevent packet looping.

  • Hypervisor-based containers are applied to a cluster of a container orchestration system.
  • A sandbox environment is created for each pod to enhance isolation.
  • A network tunnel is established between the worker node and the sandbox environment without packet encapsulation.
  • Packets are routed from the worker node to the sandbox environment using source routing to prevent packet looping.

Potential Applications

- Cloud computing - Virtualization technology - Container orchestration systems

Problems Solved

- Improving isolation between containers - Preventing packet looping - Enhancing network communication efficiency

Benefits

- Enhanced security and isolation for containers - Efficient network communication within the cluster - Improved performance of containerized applications


Original Abstract Submitted

A computer-implemented method, system and computer program product for applying hypervisor-based containers to a cluster of a container orchestration system. A container runtime of a worker node in the cluster of the container orchestration system issues a request to create a sandbox environment to store a pod containing one or more containers. Upon creating the sandbox environment for each pod to improve isolation, a network tunnel is created between the worker node and the sandbox environment without packet encapsulation in which the sandbox environment shares the same Internet Protocol (IP) address as the other end of the network tunnel in the worker node. Packets may then be routed (forwarded) from the worker node to the sandbox environment via the network tunnel using source routing. By utilizing such source routing, packet looping is prevented. In this manner, hypervisor-based containers may be applied to a cluster of a container orchestration system.

Retrieved from "http://wikipatents.org/index.php?title=17897983._APPLYING_HYPERVISOR-BASED_CONTAINERS_TO_A_CLUSTER_OF_A_CONTAINER_ORCHESTRATION_SYSTEM_simplified_abstract_(International_Business_Machines_Corporation)&oldid=37069"