Sysdig is a universal system visibility tool with support for containers. What makes Sysdig special, is that it hooks itself into the machine’s kernel and segregates the information on a per-container basis.

For the scope of this tutorial, we will focus on the open-source version of Sysdig.

In the next sections, you will:

• Install Sysdig
• Spin up a Wordpress installation using docker-compose
• Use Sysdig to collect events and analyze them at a later time
• Use Sysdig to analyze data in real-time

Prerequisites

• Docker is installed on your system. For details about installing Docker, refer to the Install Docker page.
• Docker Compose is installed on your system. Refer to the Install Docker Compose page for instructions about how to install Docker Compose.
• The kernel headers are installed on the host system.

Install Sysdig

Follow these steps to install Sysdig inside a Docker container:

1. In a terminal window, execute the following command to pull the Sysdig Docker image:

Shell

1

docker pull sysdig/sysdig

Plain Text

1

Using default tag: latest 

2

latest: Pulling from sysdig/sysdig 

3

2967486b0658: Pull complete 

4

78101b780c72: Pull complete 

5

7e78b657334d: Pull complete 

6

650327159ca8: Pull complete 

7

47ebf73ab754: Pull complete 

8

bf51ac76a6d9: Pull complete 

9

0cd11104dbf6: Pull complete 

10

e6dcf17d00d8: Pull complete 

11

230d60083576: Pull complete 

12

fd5ea9faf384: Pull complete 

13

6de86c8ed6e9: Pull complete 

14

8d1825f8be4b: Pull complete 

15

Digest: sha256:bbfe6953fd2b3221a8974eb13024dd33c7e78aebef8fee3d7a0d9ecdeed84ce0 

16

Status: Downloaded newer image for sysdig/sysdig:latest

#linux #programming #docker #serverless #sysdig