Skip to content

Add isolation option to docker service #31616

New issue
New issue
Closed
Closed
Add isolation option to docker service#31616
Labels
area/swarmkind/featureFunctionality or other elements that the project doesn't currently have. Features are new and shiny
@PatrickLang

Description

@PatrickLang
PatrickLang
opened on Mar 7, 2017

Proposal
Add --isolation as a parameter to docker service create

Background
Windows supports running containers with two different levels of isolation - process (shared kernel), and hyperv (separate kernel per container). Customers are deploying a mix of these based on their security needs. For example, trusted internal apps may be run with process level isolation to favor higher density, while others may require a separate kernel. Therefore this setting should be service-specific and not host-wide.

I mentioned this at #25209 (comment) but want to track this as a separate specific ask.

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/swarmkind/featureFunctionality or other elements that the project doesn't currently have. Features are new and shiny

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions