Building base images makes sense, replacing a Dockerfile crafted images, or layered (Lego-like) stacked image, with fully baked golden image (packer, ansible-container) is a throw-back to older pets days (pets vs. cattles metaphor) when sys admins maintained image libraries.

Immutability makes sense, but then it is not really immutable, unless the container doesn’t need to access other systems or require persistence, as you have to put keys and configs (db info) into the container.

So the config management is really moved from runtime to deploy time, or if golden image, build time.

If it is really immutable (no persistence), then make it a lambda, then no container building or management at that point, pure terraform.

Written by

Linux NinjaPants Automation Engineering Mutant — exploring DevOps, Kubernetes, CNI, IAC

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store