Internet Performance Delivered right to your inbox

Kubernetes: The Difference Between Containers and Virtual Machines

If you are remotely involved in technology and haven’t just hatched out of an egg, you have probably have heard of Kubernetes.

There are cycles in technology and in particular, the open source ecosystem that I’ve experienced in the 25 years I’ve been involved in, and Kubernetes is one of the most profound, burgeoning, and rapidly-changing projects, as well as having one of the most enthusiastic, well-organized communities I’ve ever seen.

What is Kubernetes specifically?

Well, it turns out there is no short answer. In fact, this was originally was supposed to be a single blog post, but when I finished it was more than 3,000 words and so we’ve decided to break it up into a series. Today I am going to discuss the differences between a virtual machine and a container, which is central to understanding Kubernetes.

Speaking of Kubernetes, One can begin with the description on the project website as a good place to start: “Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications.”

To fully understand that description, one needs context, and in particular, the question as to what is a container is the first question to be answered. Also, understanding what this means in terms of how applications are developed, deployed, and run helps to further give an appreciation for what Kubernetes is and makes possible.

What is a container?

Most people involved in technology know what a virtual machine is.

In a nutshell, a virtual machine is an instance of a distinct computer system with an operating system and any number of installed applications the uses emulation software that runs on a host system (usually a real, bare metal system, though it can also be nested virtual). This is made possible either full virtualization or hardware-assisted virtualization, both providing the layer required to run a guest operating system in full isolation.

There are a number of systems for running virtual machines such as VMWare, Virtualbox, Xen, KVM, and various others.

One of the characteristics of a virtual machine is that it provides complete isolation in terms of having its own processes, networking, users, etc., which are separate from the host system and other guest systems that may be running alongside it and not visible on the host system or vice-versa. Furthermore, virtual machines can be built to whatever specification is desired with packages pre-installed and configured, of any number of operating systems and operating system vender variants and saved as an image.

Containers are similar to virtual machines in many ways, but also different.

Just as with virtual machines, containers are instances that run on a host (bare metal or virtual) machine. Like virtual machines, they can be customized and built to whatever specification is desired, and can be used in most part the way a virtual machine is used, allowing isolated processes, networking, users, etc.

How containers differ from virtual machines is that a guest operating system is not installed, and usually consists only the application code and when run, only run the necessary process(es) that one uses the container for. This is because containers are made possible using kernel features of the host operating system and layered file system instead of the aforementioned emulation layer required to run virtual machines. This also means that containers don’t consist of different operating systems with installed applications, but can have the necessary components that set them aside as different Linux vender versions and variants. Even more so, this means that since a container doesn’t require its own operating system, it uses fewer resources and consumes only the resources required for the application that is run upon starting the container. This makes it so applications can consist of smaller containerized components as opposed to legacy monolithic applications installed on a virtual or bare metal systems.

How containers are similar to virtual machines is that they also are stored as images, though a big difference is that container images are much smaller and more portable and feasible to use than virtual machine images for the aforementioned reasons of not requiring an operating system installation as part of the image. This makes it possible to have a packaged, ready-to-use application that runs the same regardless of where as long as the host system runs containers (Linux containers specifically).

This small footprint and overall portability of containers compared to virtual machines is key to understanding how a system Linux Kubernetes has caught on: Make a mental note!

It’s common when one starts working with containers to still think of them as virtual machines and focus on the concept of virtualization, where in fact it’s more about the concept of isolation that is how containers could generally be described.

Now that we’ve discussed the fundamentals of containers, in my next blog I will talk about how to run containers at scale. Hint: Kubernetes plays a big role.

Share Now

Patrick Galbraith
Whois: Patrick Galbraith

Patrick Galbraith is a Principal Platform Engineer at Oracle Dyn Global Business Unit, a pioneer in managed DNS and a leader in cloud-based infrastructure that connects users with digital content and experiences across a global internet.

To current Dyn Customers and visitors considering our Dynamic DNS product: Oracle acquired Dyn and its subsidiaries in November 2016. After June 29th, 2020, visitors to will be redirected here where you can still access your current Dyn service and purchase or start a trial of Dynamic DNS. Support for your service will continue to be available at its current site here. Sincerely, Oracle Dyn