Book 02 · Containers

Container
Fundamentals

// DevOps Foundation Series

Containers changed how we deploy software — but most engineers only know the surface. This book goes deeper: from the Linux kernel primitives that make containers possible, to building production-grade images and composing multi-service applications.

10
Chapters
PDF
Format
Updates
Price
PDF · Instant download · Free updates
BUY ON GUMROAD → BUY ON HOTMART →
Instant delivery after purchase
All future updates included free
Readable on any device
Part of the DevOps Foundation Bundle
// who is this for

Is this book for you?

📘
Prerequisite

This book assumes you're comfortable working in Linux — filesystems, processes, networking, and the shell. If you're not there yet, start with Linux Fundamentals first.

✓ This IS for you if...
  • You know how to run `docker run` but don't fully understand what Docker is doing
  • You want to write Dockerfiles that actually build lean, secure images
  • You need to work with Docker Compose and multi-service apps
  • You're preparing to move into Kubernetes and want a solid container foundation
  • You've been "faking it" with containers and want to actually understand them
✕ This is NOT for you if...
  • You're already building and shipping containers daily with confidence
  • You need deep OCI spec or container runtime internals (runc, containerd)
  • You're looking for a Docker DCA exam prep guide specifically
  • You have no Linux background at all — start with Book 01 first
// the deeper understanding

What you'll be able to do.

// why most container guides fall short

Most tutorials teach you the commands. This book teaches you the concepts that make the commands make sense — namespaces, cgroups, union filesystems, image layers. When something breaks (and it will), you'll know why, not just which Stack Overflow answer to copy.

🧱
Understand what a container actually is

Not "a lightweight VM." Learn how Linux namespaces and cgroups combine to create process isolation — the real story underneath the Docker abstraction.

🖼️
Build production-quality images

Write Dockerfiles that produce small, secure, reproducible images using multi-stage builds, layer caching, and proper base image selection.

🌐
Master container networking

Understand bridge networks, host networking, port mapping, DNS between containers, and how containers find each other in Compose setups.

💾
Handle persistent data correctly

Know when to use volumes vs bind mounts, how to back up container data, and why stateful containers need special care in production.

🔐
Approach container security properly

Run containers as non-root, use read-only filesystems, scan images for vulnerabilities, and understand what seccomp and AppArmor actually do.

🧩
Compose full multi-service stacks

Write Docker Compose files for real applications with databases, reverse proxies, and background workers — and know how to operate them.

// table of contents

What's inside.

CHAPTER 01
Containers from First Principles
  • Why containers exist
  • VMs vs containers — the real difference
  • The OCI standard
  • Docker, Podman, containerd landscape
CHAPTER 02
Namespaces & cgroups
  • PID, network, mount, UTS, user namespaces
  • cgroups v1 and v2
  • Resource limits in practice
  • Building a container by hand (no Docker)
CHAPTER 03
Images & Layers
  • Union filesystems: OverlayFS
  • Image layers and the layer cache
  • Pulling, tagging, inspecting images
  • Working with registries
CHAPTER 04
Writing Dockerfiles
  • Every instruction explained
  • Layer cache optimisation patterns
  • Multi-stage builds
  • Minimal base images: scratch, distroless, alpine
CHAPTER 05
Running Containers
  • docker run flags you actually need
  • Exec, logs, inspect, stats
  • Entrypoint vs CMD — settled once and for all
  • Healthchecks and restart policies
CHAPTER 06
Container Networking
  • Bridge, host, none, overlay drivers
  • Port mapping and userland proxy
  • DNS between containers
  • Debugging network issues
CHAPTER 07
Storage & Volumes
  • Volumes vs bind mounts vs tmpfs
  • Named volumes and volume drivers
  • Data containers pattern
  • Backup and restore strategies
CHAPTER 08
Docker Compose
  • Compose file structure deep-dive
  • Service dependencies and health
  • Secrets and environment management
  • Compose in CI/CD pipelines
CHAPTER 09
Container Security
  • Running as non-root
  • Read-only root filesystems
  • Image scanning: Trivy, Grype
  • seccomp, AppArmor profiles
CHAPTER 10
Observability & Production Patterns
  • Logging drivers and log aggregation
  • Container metrics with cAdvisor
  • Debugging a broken container
  • What changes when you move to Kubernetes
// continue the path

Rest of the series.

Book 01 · Previous
Linux Fundamentals
Book 03 · Next step
Kubernetes Fundamentals
BEST VALUE
Get all three books in the bundle
Save ~15% vs buying separately
BUNDLE —