Challenge, Easy,  on  LinuxContainersNetworking
ProblemSolutionDiscussion

Docker (and the like) gives the containerized application the illusion of running in a dedicated network environment. This is achieved by using Linux network namespaces that provide a fully isolated set of network devices, IP protocol stacks, routing tables, firewall rules, etc., for each container.

Linux network namespace visualized.

In this challenge, you'll need to create a new network namespace manually and then inspect its network interfaces.

First, create a new network namespace called my-net-ns.

Hint 1 💡

There are multiple ways to create a network namespace. For instance, you can use the unshare command or the ip netns command. man unshare and man ip-netns are your friends.

Now, list the network interfaces of the my-net-ns namespace. How many interfaces a freshly created network namespace has? Store the output of ip link ls in the /tmp/my-net-ns-interfaces.txt file.

Hint 2 💡

To list interfaces of a network namespace, you need to execute the ip link ls command in that namespace.

Hint 3 💡

Again, there are multiple ways to execute a command in a network namespace. You can either nsenter it or use the ip netns exec utility. Try man nsenter or man ip-netns for more information.

Challenge on LinuxContainersNetworking
Discussion  Discord
container-networkingnetnsnsenterunshareip

Level up your Server Side game — Join 15,000 engineers who receive insightful learning materials straight to their inbox

How to Author Challenges on iximiuz Labs

Instead of providing a subpar online editing experience, iximiuz Labs offers a helper CLI tool called labctl, allowing you to use your favorite text editor (or a full-featured IDE) to write content from the comfort of your local machine.

Install labctl CLI

curl -sf https://labs.iximiuz.com/cli/install.sh | sh

This will download and install the latest version of the labctl CLI. You only need to do this once per workstation.

Authorize labctl

labctl auth login

This will open a browser window asking you to authorize labctl to access your account. You need to do it after a fresh install of labctl and repeat it whenever the auth session expires.

Pull challenge content

labctl content pull challenge linux-network-namespace

This will create a local copy of the challenge content in a directory named linux-network-namespace. You only need to do this once per challenge.

Stream your changes

labctl content push -fw challenge linux-network-namespace

Run this command in a separate terminal to continuously upload your changes to the server while editing the challenge in your favorite text editor or IDE.

You can also use labctl to create, list, and delete your content. Learn more about the available commands: labctl content --help