Run Multiple Container Runtimes
Explore how to configure Kubernetes containerd to run multiple container runtimes such as runc and gVisor. Understand the security benefits of using different runtimes, configure RuntimeClass objects, and test container runtime setups to securely manage workloads.
We'll cover the following...
Overview
With the help of the CRI, we can let kubelet talk with a variety of container runtimes. In this lesson, we will show how to configure containerd to run both the runc and gVisor containers. runc is a low-level container engine that is used by containerd to manage containers. On the other hand, gVisor is an application kernel that provides a secure environment for containers.
Why different container runtimes
Normally, a Kubernetes cluster is shared by many users and workloads—this could bring in some security concerns. Not all the applications running in the cluster are ...