The Dark Art of Container Monitoring

This presentation covers the current state of the art for container monitoring (including real use-cases and pros/cons of each) and features live interaction with container environments and live demos of all the tools and techniques discussed.

Full abstract

Containers are revolutionizing the way we deploy and maintain our infrastructures: reducing development overhead, streamlining dev / test / ops, and enabling highly scalable, dynamic infrastructures. But containers still have a key problem: monitoring and troubleshooting them is impractical, painful, and sometimes plain impossible. Even basic things like understanding what is using CPU, memory, or disk bandwidth inside a container are difficult - let alone finding out who a container is talking to on the network or tracking malicious activity. This presentation covers the current state of the art for container monitoring and visibility, including real use-cases and pros / cons of each.

The focus is on advanced container visibility techniques, such as:

* visualizing a container’s network activity

* understanding detailed resource usage (CPU, memory and disk I/O) of containers and individual processes running inside containers

* following process and user activity inside containers

* collecting logs from multiple containers

The presentation features live interaction with container environments and live demos of all the tools and techniques discussed. Special emphasis is put on sysdig, an open source container and system troubleshooting tool.

https://github.com/draios/sysdig