CBL Mariner VS Ubuntu for AKS

Bokambo
February 15, 2023
106 views
0 votes
2 Answers

Recently I started exploring about CBL Mariner for AKS, currently my aks cluster are running in Ubuntu. When i strated reading about Mariner – CBL-Mariner Linux is a lightweight operating system, containing only the packages needed for a cloud environment by MS.

https://microsoft.github.io/CBL-Mariner/docs/

But, What are the real differences between Mariner Vs Ubuntu ?
What benefits I am going to get if I adopt Mariner things like patching, auto upgrade of node pools, version, SSH, security etc.

Tags: azure-aks ubuntu

Answers

- akathimi
- February 15, 2023 at 12:54 pm
- 0 votes
0
As mentioned in the AKS doc:

The Mariner container host on AKS uses a native AKS image that
provides one place to do all Linux development. Every package is built
from source and validated, ensuring your services run on proven
components. Mariner is lightweight, only including the necessary set
of packages needed to run container workloads. It provides a reduced
attack surface and eliminates patching and maintenance of unnecessary
packages. At Mariner’s base layer, it has a Microsoft hardened kernel
tuned for Azure. Learn more about the key capabilities of Mariner.

Since this is created by Microsoft for Microsoft, you can expect the following:
- Faster release cycles
- Faster bug/security fixes
- Less OS related issues
- Might have better performance due to it being tuned for MS hardware.
Keep in mind that Mariner is still in preview, and would not be recommended for production use.
Login or Signup to reply.

- VladRudenko
- March 26, 2023 at 9:51 pm
- 0 votes
0
In addition to the official reasons provided by akathimi, in my case, the AKS memory WorkingSet has dropped by ~20% after switching from Ubuntu to Mariner.

Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.