Cloud from Zero
by Sergey Okinchuk
Virtual MachinesServerless and Functions
Topic 12

Containers

Concept

Renting a whole virtual machine to run one small application is often more than you need. A virtual machine includes a complete operating system — hundreds of megabytes of software just to support one program. Starting it takes time; keeping it idle costs money. For many workloads, that's overkill.

Containers are a lighter alternative. Instead of a whole virtual machine with its own operating system, a container bundles just the application and everything it specifically needs to run. Many containers can share the same machine, each neatly separated from the others, starting in seconds rather than minutes.

Think of the metal shipping containers used to move goods around the world. Each one is a standard box — same size and shape — that can be loaded onto any ship, train, or truck without repacking. A software container works the same way: a standard package that runs consistently across compatible environments — whether a developer's laptop, a company server, or a cloud machine. Load it anywhere compatible; it works without repacking.

The Problem a Full VM Creates

Every virtual machine runs its own full operating system — the foundational software (Windows, Linux, or similar) that all other programs sit on top of. That operating system takes time to start, consumes memory just by existing, and needs its own updates and patches. When you run dozens of small services, that overhead multiplies.

For the developer, there's another frustration: a program that runs perfectly on their own machine sometimes fails in the cloud because the cloud machine's software environment is slightly different. Different version of a library, different configuration, different behavior. This mismatch is one of the most common headaches in software deployment.

What a Container Is

A container packages an application together with its runtime dependencies — the right version of every library — into a single, self-contained unit called a container image. When you run the image, you get a container: an isolated environment for that one application. Environment-specific configuration and secrets are normally supplied at runtime, not baked into the image.

The key difference from a VM is what's not in the container: its own full operating system. Instead, the container shares the operating system of the host machine it runs on. Multiple containers on the same machine all share the same underlying OS — they just can't see or interfere with each other. This shared-OS design is what makes containers so much smaller and faster than virtual machines.

Why Engineers Use Containers

Because the container image packages the application and its dependencies, it runs consistently across compatible environments — the developer's laptop, a test server, a production cloud machine. Differences in CPU architecture (ARM vs x86), the host kernel, or runtime configuration can still matter, but the classic frustration "it worked on my machine" is greatly reduced. That consistency is one of the biggest reasons containers became standard across the software industry.

Containers also start in seconds and use far less memory than VMs, so you can run many more of them on the same hardware. A machine that hosts five VMs might host fifty containers, which translates directly into lower cost and faster response times.

Orchestration: When There Are Hundreds

A handful of containers is easy to manage. Hundreds — or thousands — spread across many machines is not. That's where orchestration comes in: software that automatically schedules containers onto machines, restarts them if they crash, and balances the load. The leading orchestration system is called Kubernetes, which was originally built by Google and is now used everywhere.

Orchestration is a deep-dive topic of its own; what matters here is that it exists and that the cloud providers offer managed versions so you don't have to run Kubernetes yourself.

Virtual machine vs container — what's inside each
Virtual machine
full OS + app + dependencies; heavier, slower to start, more isolated
Container
app + dependencies only; shares the host OS; lighter, starts in seconds
Three cloudsAWS ECS / EKSGoogle Cloud GKE / Cloud RunAzure AKS / Container Apps
Common Confusions
  • "A container is just a tiny virtual machine." The key difference is the operating system. A VM has its own full OS; a container shares the host machine's OS. That's what makes containers so much lighter — they skip the entire OS layer.
  • "Containers replace virtual machines entirely." In practice, containers usually run on top of virtual machines. You rent a VM, and then run your containers on it. The two technologies work together, not against each other.
  • "Containers are a cloud-only technology." Containers run anywhere — a developer's laptop, a company's own servers, or the cloud. The cloud just makes it easier to run and scale large numbers of them.
Why It Matters
  • Containers are how the vast majority of modern software ships and runs. Any cloud engineering job posting will mention them; any cloud architecture diagram will include them.
  • The consistency containers provide — running the same image across compatible environments — is a genuine, everyday improvement that reduces the most common source of deploy failures and makes software teams faster.
  • Understanding the VM-vs-container distinction lets you follow any conversation about cloud infrastructure, DevOps, or software delivery — it comes up constantly.

Knowledge Check

What makes a container lighter than a virtual machine?

  • It runs a stripped-down operating system that takes less disk space
  • Containers share the host OS; each one runs no separate operating system
  • Containers run on dedicated physical hardware with no virtualization layer involved
  • They store data in memory only and never write anything to disk

Why do engineers say a container "runs the same everywhere"?

  • Containers automatically detect and fix any environment differences they encounter
  • The image packages the app and its dependencies, reducing environment drift
  • Cloud providers tested and agreed on a universal standard for all applications
  • The container reads its configuration from a central cloud server at startup

What is container orchestration for?

  • Allowing a human operator to monitor and restart each container one at a time
  • Packaging an application along with all its required files and dependencies into a container image ready to ship
  • Redirecting browser requests to the nearest data center for faster page loads
  • Automatically scheduling, restarting, and load-balancing many containers across machines

You got correct