Chapter 4

Question 1

What is namespace isolation?

Answer 1

A feature of containers that ensures they only have access to the resources available to them

Question 2

What is resource governance?

Answer 2

A feature of containers that limits their CPU, memory, network, and other resource usage

Question 3

What are container images?

Answer 3

A collection of the specific files needed to run a program, excluding the unchanged parts of the OS

Question 4

What are the two types of containers available in Windows Server and what are their differences?

Answer 4

Windows Server Containers operate in user mode, sharing everything with the host OS; Hyper-V containers operate on an isolated copy of the host kernel that is separated by the hypervisor, providing more security for hostile environments

Question 5

What two components are necessary to run Windows Server Containers on Windows Server?

Answer 5

The Containers feature for running containers, and Docker for creating and managing containers

Question 6

Where must Windows be installed to run containers?

Answer 6

On the computer’s C drive for Windows Server Containers, and anywhere for Hyper-V containers

Question 7

What components are necessary to run Hyper-V containers?

Answer 7

The Containers feature and Hyper-V role (though the management tools are unnecessary)

Question 8

What are the requirements to run Hyper-V containers in a Hyper-V VM?

Answer 8

Both the host and VM must run Server 2016, and the CPU must be an Intel with VT-x and Extended Page Tables (EPT) support

Question 9

How do you enable nested virtualization?

Answer 9

Run the PowerShell cmdlet Set-VMProcessor -VMName -ExposeVirtualizationExtensions $true; then disable Dynamic Memory, set virtual processors to 2, and turn on MAC address spoofing

Question 10

What two files are required to run Docker?

Answer 10

Dockerd.exe (the service) and Docker.exe (shell used to manage containers)

Question 11

What are Dockerfiles?

Answer 11

Script files with instructions for creating container images

Question 12

What is Docker Hub?

Answer 12

A cloud-based registry that enables Docker users to link to image and code repositories, as well as build and store their own images

Question 13

What is Docker Cloud?

Answer 13

A cloud-based service to deploy containerized applications

Question 14

How is docker installed on Windows Server?

Answer 14

Install-Module -Name dockermsftprovider -Repository psgallery -Force ; Install-Package -Name docker -Providername dockermsftprovider ; Restart-Computer -Force

Question 15

What extra configuration is recommended for installing Docker on Nano Server?

Answer 15

Open the firewall and configure Docker to allow for management from a remote client

Question 16

What firewall rule must be added to permit Docker client access?

Answer 16

Open port TCP 2375 for the Docker daemon

Question 17

What setting changes where Docker images and containers are stored?

Answer 17

Set graph to c:\folder

Question 18

What setting disables NAT in Docker?

Answer 18

Set bridge to none

Question 19

What setting changes the permissions group for managing Docker?

Answer 19

Set group to the group name

Question 20

What setting changes the Docker DNS server addresses?

Answer 20

Set dns to the addresses

Question 21

How can you install the Docker PowerShell modules?

Answer 21

Register-PSRepository -Name dockerps-dev -SourceLocation https://ci.appveyor.com/nuget/docker-powershell-dev ; Install-Module docker -Repository dockerps-dev -Scope currentuser

Question 22

How do you download a Server Core Docker image?

Answer 22

docker pull microsoft/windowsservercore

Question 23

How can you view all the Microsoft Docker images available?

Answer 23

docker search microsoft

Question 24

How can you download previous versions of a Docker image?

Answer 24

Use the -a parameter with the docker pull command

Question 25

How do you tag an image with Docker?

Answer 25

Run docker tag or run docker build -t

Question 26

What is the format of the docker tag command?

Answer 26

docker tag username/imagename:tag

Question 27

What tag is automatically applied by Docker to an untagged image?

Answer 27

latest

Question 28

What commands are used to delete a Docker image?

Answer 28

docker rmi or Remove-ContainerImage

Question 29

What command is used to delete all tagged references to the same Docker image?

Answer 29

docker rmi -f [imagename]

Question 30

How do you run a Docker container and start a PowerShell session?

Answer 30

docker run -it [imagename] powershell

Question 31

What PowerShell cmdlet is used to create a new container?

Answer 31

New-Container -ImageIdOrName [imagename] -Input -Terminal -Command powershell

Question 32

What command is used to create a Hyper-V container?

Answer 32

docker un -it –isolation=hyperv [imagename] powershell

Question 33

What is the difference in how processes are handled in Hyper-V containers versus normal containers?

Answer 33

The host OS runs the processes of normal containers, while Hyper-V containers get their own kernel

Question 34

How do you exit a PowerShell session with a container without stopping the container?

Answer 34

Press Ctrl+P or Ctrl+Q (don’t type exit)

Question 35

How can you display a list of running containers?

Answer 35

docker ps -a OR Get-Container

Question 36

How do you start a container?

Answer 36

docker start [container ID] OR Start-Container

Question 37

How do you stop a container?

Answer 37

docker stop [container ID] OR Stop-Container

Question 38

How is the computer name of a container determined?

Answer 38

By its container ID

Question 39

How do you connect to a running container?

Answer 39

docker attach [container ID] OR Enter-ContainerSession

Question 40

How do you save a container image?

Answer 40

docker commit [container ID] username/imagename:tag

Question 41

What is not saved when creating a new Docker image?

Answer 41

The base image: it must be installed before running the new image

Question 42

How are Docker containers removed?

Answer 42

docker rm [container ID] OR Remove-Container

Question 43

How are running Docker containers removed?

Answer 43

docker rm -f OR Remove-Container -Force

Question 44

What is the default NAT subnet for Docker containers?

Answer 44

172.25.112.0/20

Question 45

What is the NAT implementation used by Docker?

Answer 45

Host Network Service (HNS)

Question 46

What is the name of Docker’s configuration file?

Answer 46

daemon.json

Question 47

How do you specify an alternate NAT address in the Docker config file?

Answer 47

fixed-cidr

Question 48

How do you prevent Docker from creating any network configuration?

Answer 48

Set bridge to none

Question 49

How do you specify port mapping in Docker?

Answer 49

Use the option -p external:internal

Question 50

How do you create a public-facing network in Docker?

Answer 50

docker network create -d transpartent [network name]

Question 51

How do you view networks in Docker?

Answer 51

docker network ls

Question 52

How do you set a static IP in Docker?

Answer 52

Use the –subnet and –gateway options when creating the network and use the –ip and –dns options when running the container

Question 53

How do you create a data volume in Docker?

Answer 53

When running the container, use the option -v [file path]

Question 54

Where are container volumes stored by default on a host?

Answer 54

C:\ProgramData\docker\volumes

Question 55

How do you specify a source folder when creating a Docker volume?

Answer 55

Use the option -v [source path]:[dest path]

Question 56

How do you create a read-only container volume?

Answer 56

Use the option -v [file path]:ro

Question 57

How do you add a container volume to a running container?

Answer 57

You can’t. You must save the existing container as an image then relaunch it with the -v switch

Question 58

How do you create a Docker container that runs in the background instead of interactively?

Answer 58

Use the -d option instead of the -it option

Question 59

What are the three types of container names used by Docker?

Answer 59

Long UUID, short UUID, and a random name

Question 60

What is the recommended way to create a Docker image?

Answer 60

Write a dockerfile and use docker build to create the image

Question 61

Where are Docker images stored by default?

Answer 61

DockerHub

Question 62

How can you find images on DockerHub?

Answer 62

Use the command docker search

Question 63

What Azure service allows for running containers in the cloud?

Answer 63

Azure Container Service (ACS)