Linux provides several features to manage system resources and isolate processes. Let’s analyze each
option:
A . virtual routing and forwarding instances
Incorrect: Virtual Routing and Forwarding (VRF) is a networking feature used to create multiple
routing tables on a single router or host. It is unrelated to limiting memory, CPU, or network
utilization for processes.
B . network namespaces
Incorrect: Network namespaces are used to isolate network resources (e.g., interfaces, routing
tables) for processes. While they can help with network isolation, they do not directly limit memory
or CPU usage.
C . control groups
Correct: Control Groups (cgroups) are a Linux kernel feature that allows you to limit, account for, and
isolate the resource usage (CPU, memory, disk I/O, network) of a set of processes. cgroups are
commonly used in containerization technologies like Docker and Kubernetes to enforce resource
limits.
D . slicing
Incorrect: "Slicing" is not a recognized Linux feature for resource management. This term may refer
to dividing resources in other contexts but is not relevant here.
Why Control Groups?
Resource Management: cgroups provide fine-grained control over memory, CPU, and network
utilization, ensuring that processes do not exceed their allocated resources.
Containerization Foundation: cgroups are a core technology behind container runtimes like
containerd and orchestration platforms like Kubernetes.
JNCIA Cloud Reference:
The JNCIA-Cloud certification covers Linux features like cgroups as part of its containerization
curriculum. Understanding cgroups is essential for managing resource allocation in cloud
environments.
For example, Juniper Contrail integrates with Kubernetes to manage containerized workloads,
leveraging cgroups to enforce resource limits.
Reference:
Linux Kernel Documentation: Control Groups
Juniper JNCIA-Cloud Study Guide: Linux Features
