The eBPF Approach to Container Monitoring
The extended Berkeley Packet Filter (or eBPF) is poised to upend conventional approaches to monitoring Docker and Kubernetes workloads, says Christopher Tozzi.
The Linux feature, introduced in 2015, offers a way to monitor containers without high resource consumption. “eBPF makes it possible to run programs directly in the Linux kernel – as opposed to running them in "userland," where they don't have direct access to kernel resources,” Tozzi explains.
For example, he says, “you could write an eBPF program that intercepts the processes associated with each container and use it to collect monitoring data. You'd end up with a monitoring solution that is much less resource-hungry than traditional sidecar containers.”
Learn more at ITProToday.
12/01/2022
Subscribe to our ADMIN Newsletters
Find SysAdmin Jobs
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Topics
12.04 LTS
16 cores
8 cores
AI
AMD
AMD-V
AMI
Active Directory
Administration
Amazon AWS
Amazon CloudFront
Amazon Machine Images
Anaconda
Analytics
Ansible
Apache
Apache Deltacloud
Apache benchmarking tool
ab
acceleration
acquisition
admin tools
agedu
alert
amazon
analysis
analysis
anticipatory
application performance