Bird
Raised Fist0
Microservicessystem_design~10 mins

Health checks in containers in Microservices - Scalability & System Analysis

Choose your learning style10 modes available
LearnWhyDeepArchPracticeChallengeDesignRecallScale

Start learning this pattern below

Jump into concepts and practice - no test required

or
Recommended
Test this pattern10 questions across easy, medium, and hard to know if this pattern is strong
Scalability Analysis - Health checks in containers
Growth Table: Health Checks in Containers
Users/ContainersWhat Changes
100 containersSimple periodic health checks; single orchestrator node handles all checks.
10,000 containersHealth check frequency optimized; distributed health check agents; increased network traffic for checks.
1,000,000 containersHealth checks fully decentralized; use of hierarchical health check aggregation; caching health status; asynchronous reporting.
100,000,000 containersMulti-region orchestration; health check data sharding; event-driven health status updates; AI-based anomaly detection to reduce check frequency.
First Bottleneck

The first bottleneck is the orchestrator or health check manager's CPU and network capacity. As container count grows, the orchestrator must perform or coordinate many health checks, causing high CPU load and network congestion.

Scaling Solutions
  • Horizontal scaling: Add more orchestrator nodes or health check agents to distribute the load.
  • Decentralization: Delegate health checks to local agents on nodes to reduce central load.
  • Caching and aggregation: Cache health results and aggregate statuses to reduce repeated checks.
  • Asynchronous reporting: Containers push health status updates instead of being polled.
  • Adaptive check frequency: Reduce check frequency for stable containers to save resources.
  • Use of lightweight protocols: Use UDP or gRPC for efficient health check communication.
Back-of-Envelope Cost Analysis

Assuming each health check request is ~1 KB:

  • At 10,000 containers, with 1 check per 10 seconds: 1,000 checks/sec -> ~1 MB/s network traffic.
  • At 1,000,000 containers, same frequency: 100,000 checks/sec -> ~100 MB/s network traffic, likely saturating 1 Gbps links.
  • CPU load on orchestrator nodes grows linearly with checks; a single node handles ~5,000 concurrent checks efficiently.
  • Storage for health logs grows with container count and check frequency; consider retention policies.
Interview Tip

Start by explaining the health check purpose and basic mechanism. Then discuss how scaling affects orchestrator load and network traffic. Identify the bottleneck clearly. Propose solutions like decentralization and caching. Use numbers to justify your approach. Finish with trade-offs and monitoring strategies.

Self Check Question

Your database handles 1000 QPS for storing health check results. Traffic grows 10x. What do you do first?

Answer: Add read replicas and implement caching to reduce database load. Also, consider batching writes or using a time-series database optimized for health data.

Key Result
Health checks in containers scale well initially but bottleneck at the orchestrator's CPU and network capacity as container count grows; decentralizing checks and caching results are key to scaling.

Practice

(1/5)
1. What is the main purpose of health checks in containers?
easy
A. To log all container network traffic
B. To increase the container's memory allocation
C. To update the container's software automatically
D. To verify if the container is running and responsive

Solution

  1. Step 1: Understand container health checks

    Health checks are used to confirm if a container is alive and working properly.

  2. Step 2: Identify the main goal

    The main goal is to detect if the container is responsive and healthy, so it can be restarted if needed.

  3. Final Answer:

    To verify if the container is running and responsive -> Option D

  4. Quick Check:

    Health checks = verify container health [OK]
Hint: Health checks confirm container responsiveness [OK]
Common Mistakes:
  • Confusing health checks with resource allocation
  • Thinking health checks update software
  • Assuming health checks log network data
2. Which of the following is the correct syntax to define a simple HTTP health check in a Docker container?
easy
A. HEALTHCHECK EXECUTE curl -f http://localhost/
B. HEALTHCHECK RUN curl http://localhost/
C. HEALTHCHECK CMD curl -f http://localhost/ || exit 1
D. HEALTHCHECK CHECK curl http://localhost/

Solution

  1. Step 1: Recall Docker health check syntax

    The correct Dockerfile syntax uses HEALTHCHECK CMD followed by a command that returns 0 on success.

  2. Step 2: Identify the correct command

    HEALTHCHECK CMD curl -f http://localhost/ || exit 1 uses 'curl -f' which fails on HTTP errors and 'exit 1' on failure, matching best practice.

  3. Final Answer:

    HEALTHCHECK CMD curl -f http://localhost/ || exit 1 -> Option C

  4. Quick Check:

    Docker healthcheck syntax = HEALTHCHECK CMD [OK]
Hint: Docker healthchecks use 'HEALTHCHECK CMD' syntax [OK]
Common Mistakes:
  • Using RUN instead of CMD in HEALTHCHECK
  • Using EXECUTE or CHECK which are invalid keywords
  • Not handling failure with exit codes
3. Consider this Kubernetes liveness probe configuration snippet: 
livenessProbe:
  httpGet:
    path: /health
    port: 8080
  initialDelaySeconds: 5
  periodSeconds: 10
What happens if the container's /health endpoint returns HTTP 500 continuously?
medium
A. Kubernetes restarts the container after failing the liveness probe
B. Kubernetes ignores the failure and keeps the container running
C. Kubernetes scales up the number of containers
D. Kubernetes shuts down the entire pod immediately

Solution

  1. Step 1: Understand liveness probe behavior

    Liveness probes check if a container is alive; failure triggers a restart of that container.

  2. Step 2: Analyze the HTTP 500 response effect

    HTTP 500 means the endpoint is unhealthy, so Kubernetes marks the probe as failed and restarts the container.

  3. Final Answer:

    Kubernetes restarts the container after failing the liveness probe -> Option A

  4. Quick Check:

    Liveness probe failure = container restart [OK]
Hint: Liveness failure triggers container restart [OK]
Common Mistakes:
  • Thinking Kubernetes ignores liveness failures
  • Confusing liveness probe with scaling behavior
  • Assuming pod shutdown instead of container restart
4. You have this Dockerfile snippet: 
HEALTHCHECK CMD curl -f http://localhost:5000/health || exit 1
But the container never restarts even when the service is down. What is the likely issue?
medium
A. The container restart policy is not set to restart on failure
B. The container does not expose port 5000
C. The health check command is missing the --interval option
D. The HEALTHCHECK CMD syntax is incorrect

Solution

  1. Step 1: Check health check command correctness

    The command syntax is correct and uses curl -f with exit 1 on failure.

  2. Step 2: Consider container restart policy

    If the container restart policy is not set to restart on failure, the container won't restart despite health check failures.

  3. Final Answer:

    The container restart policy is not set to restart on failure -> Option A

  4. Quick Check:

    Restart policy controls container restart on health failure [OK]
Hint: Check restart policy if container doesn't restart [OK]
Common Mistakes:
  • Assuming health check command syntax is wrong
  • Ignoring restart policy settings
  • Thinking missing --interval causes no restart
5. You want to design a microservice container that uses both readiness and liveness probes. Which of the following best describes their combined use?
hard
A. Both probes only log health status without affecting container state
B. Liveness probe restarts unhealthy containers; readiness probe controls traffic routing to only ready containers
C. Both probes restart containers on failure
D. Readiness probe restarts containers; liveness probe controls traffic routing

Solution

  1. Step 1: Understand liveness probe role

    Liveness probes detect if a container is alive; failure triggers container restart.

  2. Step 2: Understand readiness probe role

    Readiness probes check if a container is ready to serve traffic; failure removes it from load balancer routing.

  3. Step 3: Combine their functions

    Liveness restarts unhealthy containers; readiness controls traffic flow to only healthy containers.

  4. Final Answer:

    Liveness probe restarts unhealthy containers; readiness probe controls traffic routing to only ready containers -> Option B

  5. Quick Check:

    Liveness = restart, Readiness = traffic control [OK]
Hint: Liveness restarts; readiness controls traffic [OK]
Common Mistakes:
  • Mixing up readiness and liveness roles
  • Thinking readiness probe restarts containers
  • Assuming probes only log status without action