CS Notes

Recent writing

VLAN
Aug 29, 2025
- networking
End-to-End Service Access Troubleshooting
Aug 29, 2025
- networking
File System Link
Aug 29, 2025
- OS
- bash

See 642 more →

👋🏻 Join My Telegram channel!

I share real-world lessons from building scalable systems at Binance, and running mission-critical cloud ops at GovTech and Singapore Air Force. No fluff, just practical takeaways, hard-earned fixes, and deep dives that matter.

❯

❯

Linux Namespace

Linux Namespace

160 words, 1 min read
Last updated on Oct 16, 2024
🌟 Edit This Page! 🗓️ History

linux

Abstract

Linux Kernel features that provide isolation for system resources
Wrap certain global system resources in an abstraction layer
This makes it appear like the Process (进程) within a namespace have their own isolated instance of the resource
The kernels namespace abstraction allows different groups of processes to have different views of the system
currently seven distinct namespaces implemented: mnt, pid, net, ipc, uts, user and cgroup

Linux Network Namespace

Virtualise the entire network stack.
It contains only one Loopback Network
Destroying a network namespace destroys any virtual interfaces within it and moves any physical interfaces within it back to the initial network namespace

Linux Cgroup Namespace

rlimit limits resource usage such as CPU and memory of a collection of Process (进程). This prevents a single container from monopolising system resources, ensuring fair resource distribution among all containers

API

Consists of 3 main System Call (系统调用)

Clone()

References

Linux namespaces - Wikipedia

Abstract
Linux Network Namespace
Linux Cgroup Namespace
API
Clone()
References

Mentioned by

Docker

Graph View

Created by Xinyang YU | © 2023, 2025 | Licensed under CC BY-NC 4.0

GitHub