当前位置:网站首页>[cloud native topic -45]:kubesphere cloud Governance - Introduction and overall architecture of enterprise container platform based on kubernetes
[cloud native topic -45]:kubesphere cloud Governance - Introduction and overall architecture of enterprise container platform based on kubernetes
2022-07-06 08:21:00 【Silicon based workshop of slow fire rock sugar】
Author URI ( Silicon based workshop of slow fire rock sugar ): Slow fire rock sugar ( Wang Wenbing ) The blog of _ Silicon based workshop of slow fire rock sugar _CSDN Blog
Website of this article :https://blog.csdn.net/HiWangWenBing/article/details/122905834
Catalog
The first 1 Chapter kubesphere brief introduction
1.4 Application scenarios ( use )
1.5 KubeSphere It's not something
1.6 KubeSphere VS rancher VS openshif
The first 2 Chapter kubesphere The main function of
2.1 visualization K8S Resource management
2.2 Enrich 、 complete 、 A full set of microservice governance
2.5 Source to Image All in one service
2.6 Multidimensional monitoring
2.7 Self developed multi tenant alarm system
2.9 Application warehouse services
2.10 Infrastructure management
2.11 Multiple storage types support
2.12 many Ingress Network solution support
The first 3 Chapter kubesphere framework
3.1 kubesphere Self architecture
3.2 KubeSphere Location in the whole cloud native system
The first 4 Chapter Common professional vocabulary and terms
Preface :
stay K8S Provides the basis for pod The deployment and orchestration framework of microservices , The whole process is basically command-line operation , This is beneficial to programmers and automation systems , Then for most K8S For service maintainers , This is not very friendly , So K8S Provides dashboard Graphical interface , Users monitor and manage clusters , This is for K8S Its own research and maintenance is enough , Then for the actual operation and maintenance of enterprise business ,K8S dashboard Its function is still too single , Is there a system , Both integrated K8S The Layout Framework , It also provides such as multi account account management 、 Integrate DevOps Fully automated tools and other functions ? Qingyun company kubesphere Is one such platform .
The first 1 Chapter kubesphere brief introduction
1.1 Qingyun company profile
Qingyun QingCloud Is an enterprise level cloud service provider and Cloud Computing Overall solution provider , It's a public company , It is also a comprehensive enterprise service platform based on cloud mode .
(1) An enterprise level cloud service provider and Cloud Computing Overall solution provider
This is similar to Alibaba cloud , Provide cloud based computer infrastructure for individual and enterprise users , Such as virtual machine 、 Virtual network 、 Cloud based office system and so on .
The first hybrid cloud listed company | Qingyun QingCloud
Follow up on kubesphere Deployment and application of , Qingyun cloud platform and Alibaba cloud platform will be used interchangeably .
(2) Integrated enterprise service platform based on cloud mode
On the cloud platform , A large number of systems based on docker Micro service applications in various industries , How to deploy 、 monitor 、 And managing these microservice applications is particularly important ,K8S It is an arrangement system and basic framework of microservices , Then it should conform to the business operation and maintenance of the enterprise , Only K8S It still seems inconvenient , To build a perfect micro service operation and maintenance system , Like a building , Only the framework is not enough , If you need to live , Be able to provide an office environment , It also needs to build other parts of the blank room , Even fine decoration .
Qingyun is K8S The foundation of the main frame , Fine decoration for microservice operation and maintenance , The system after fine decoration is kubesphere. Of course , Hardbound repair room can only ensure that customers' applications can be checked in directly , But it will not limit the use of users' microservices , Do you live or work by yourself or others .
1.2 kubesphere
(1) The website links Container hybrid cloud for cloud native applications , Support Kubernetes Multi cluster management PaaS Container cloud platform solutions | KubeSphere
(2) Official website definition
KubeSphere The vision is to create a world with Kubernetes Cloud native distributed operating system for kernel , Its architecture can make Third party applications plug and play with cloud native ecosystem components (plug-and-play) Integration of , Support cloud native applications in multi cloud and multi cluster Unified distribution and operation and maintenance management .
KubeSphere Is currently the mainstream container scheduling 、 Choreography platform Kubernetes above , Build enterprise level distributed multi-tenancy Container platform . Easy to use interface And wizard operation mode , At the same time of reducing the learning cost of using container scheduling platform , Greatly reduce development 、 test 、 Complexity of daily operation and maintenance work , To solve Kubernetes A store of its own existence 、 The Internet 、 Pain points such as safety and ease of use .
besides , The platform has integrated and optimized several functional modules for container scenarios , With a complete solution to help enterprises easily deal with agile development and automatic operation and maintenance 、 Micro service governance 、 Multi tenant management 、 Workload and cluster management 、 Service and network management 、 Application Layout and management 、 Image warehouse management, storage management and other business scenarios .
Compared with the easy version ,KubeSphere Advanced Edition provides enterprise level container application management services , Support more powerful functions and flexible configurations , Meet the complex business needs of enterprises . Such as support Master and etcd Node high availability 、 visualization CI/CD Assembly line 、 Multi dimensional monitoring alarm log 、 Multi tenant management 、LDAP Integrate 、 New support HPA ( Horizontal auto retraction ) 、 Container health check and Secrets、ConfigMaps Configuration management and other functions , New micro service governance 、 Grayscale Publishing 、s2i、 Code quality check, etc , In the future, we will also provide and support multi cluster management 、 big data 、 More complex business scenarios like artificial intelligence .
KubeSphere️ As an enterprise level full stack container platform , It provides users with an ultimate experience Web Console , Let you use it like any other Internet product , Quickly get started with various functions and services .KubeSphere Workload management is currently available 、 Micro service governance 、DevOps engineering 、Source to Image、 Multi tenant management 、 Multidimensional monitoring 、 Log query and collection 、 Warning notice 、 Services and networks 、 Application management 、 Infrastructure management 、 Image management 、 Application configuration key management and other functional modules , Developed for physical machine deployment Kubernetes Of Load balancer plug-in Porter, And support the docking of various open source storage and network solutions , Support high-performance commercial storage and network services .
The above descriptions are A few key words :
(1) Builds on the K8S above : The foundation of the bottom layer is K8S The arrangement system of microservices .
(2) Simple operation interface : Put the command line K8S Visualization of orchestration operations for 、 Graphical and Web turn . Reduce learning costs at the same time , More importantly, it reduces the cost of Enterprise Cloud native applications .
(3) Multi tenant container platform : Used to set different levels of user rights management .
(4) Complete solution : Integrated Jenkins platform , Peripheral tools , Provide complete DevOps The integrated environment .
(5) Open source : It means that secondary development can be carried out according to their own needs .
therefore ,KubeSphere In essence, it is a microservice governance and management tool for enterprise microservice business applications !!!
1.3 Features and advantages
adopt KubeSphere Can quickly manage Kubernetes colony 、 Deploy the application 、 Service discovery 、CI/CD Assembly line 、 The cluster expansion 、 Micro service governance 、 Log query and monitoring alarm . let me put it another way ,Kubernetes It's a great open source project ( Or be regarded as a framework ), however KubeSphere It is a very professional enterprise platform product , Focus on solving users' pain points in complex business scenarios , Provide a more friendly and professional user experience .
1.4 Application scenarios ( use )
KubeSphere️ Applicable to enterprises in Digital transformation Agile development and automatic operation and maintenance 、 Microservice application architecture and traffic management 、 Automatic elastic scaling and high business availability 、DevOps Application scenarios such as continuous integration and delivery .
(1) Upgrade the container architecture in one step , help Business digital transformation
Enterprise users deploy on physical machines 、 Business systems in traditional virtualized environments , Each business module will be deeply coupled , Resources can't be expanded horizontally . KubeSphere Help businesses to IT Environment containerization And provide complete operation and maintenance management functions , At the same time, rely on Qingyun QingCloud Provide a strong network for enterprises 、 Storage support , And it can efficiently connect with the original monitoring of the enterprise 、 Operation and maintenance system , One stop efficient completion of enterprise IT Containerization .
(2) Multi dimensional control Kubernetes, Reduce operation and maintenance Complexity
Whether the business is structured in Kubernetes Users on the platform , Or use multiple sets from different manufacturers Kubernetes Users of the platform , Complex operation and maintenance management has doubled the pressure of enterprises .KubeSphere It can provide a unified platform to manage heterogeneous Kubernetes colony , Support application automation deployment , Reduce the pressure of daily operation and maintenance . meanwhile , The perfect monitoring alarm and log management system can effectively save the labor cost of operation and maintenance , Enable enterprises to devote more energy to business innovation .
(3) Agile development and automatic operation and maintenance , Drive business DevOps to ground
DevOps Build more collaboration between the development team and the operation team through a set of processes or methods 、 More efficient relationships , Make development 、 test 、 Publishing applications can be more agile 、 Efficient 、 reliable .KubeSphere CI / CD Functions for enterprises DevOps Provide agile development and automatic operation and maintenance . meanwhile , KubeSphere Microservice governance function , Help enterprises develop in a fine-grained way 、 Testing and publishing services , Effectively promote enterprises DevOps to ground .
(4) agile Microservice solutions , One step upgrade cloud native architecture
Microservice architecture can lightweight build redundancy , High scalability , Ideal for building cloud native applications .KubeSphere Based on mainstream microservice solutions Istio, Provide a microservice governance platform without code intrusion . Later, we will integrate SpringCloud, It is convenient for enterprises to build Java application , Help enterprises to realize microservice architecture step by step , Realize the native transformation of application cloud .
(5) Build a full stack container architecture based on the physical environment , Release the maximum performance of hardware
Support in Full physical environment deployment 、 Full stack containers framework , Use physical switches , by KubeSphere Provide load balancer service , meanwhile , adopt KubeSphere And QingCloud VPC as well as QingStor NeonSAN The combination of , Can get through load balancing 、 Container platform 、 The Internet 、 Store full stack function , Realize the real physical environment integration multi tenant container architecture solution , And realize self-control 、 Unified management . Avoid performance losses caused by virtualization , Release the maximum performance of hardware .
1.5 KubeSphere It's not something
KubeSphere It's not a business application 、 It's business application function 、 maintain 、 management 、 Governance platforms and tools .
KubeSphere It's not a choreography system for microservices , It depends on the underlying K8S The ability to provide choreography for microservices .
KubeSphere In the business application stage K8S Between .
1.6 KubeSphere VS rancher VS openshif
Of Qingyun technology kubesphere Late start , But based on national conditions , Always awesome , And it has been constantly updating the version to improve and add functions . Well known microservice governance tools include :rancher、openshif
The first 2 Chapter kubesphere The main function of
2.1 visualization K8S Resource management
kubesphere To the underlying Kubernetes Various types of resources in provide a minimalist graphical wizard UI Implement workload management 、 Image management 、 Service and application routing management ( Service discovery )、 Key configuration management , And provide elastic expansion (HPA) And container health check support , Support tens of thousands of container resource scheduling , Ensure high availability of business in peak concurrency .
so to speak ,kubesphere Namely Kubernetes dashboard Upgraded version , yes Kubernetes Visual tools .
Of course ,kubesphere Not satisfied with just Kubernetes Visual tools , It also has its own core values .
2.2 Enrich 、 complete 、 A full set of microservice governance
Microservice governance is to classify hundreds of microservices whose applications have been disassembled 、 organization 、 monitor 、 Find out 、 Management, etc .
- Visual governance : be based on Istio The microservice framework provides visual microservice governance functions , take Kubernetes Services for finer granularity .
- Perfect governance function : Support fusing 、 Grayscale Publishing 、 Flow control 、 Current limiting 、 Link tracking 、 Smart routing and other perfect microservice governance functions , meanwhile , Support code intrusion free microservice governance .
2.3 Multi tenant management
multi-tenancy : Offer based on role Fine grained multi tenant unified authentication and three-level permission management .
Unified certification : Support is based on LDAP / AD Centralized authentication system docking of the Protocol , Single sign-on is supported (SSO), To achieve unified authentication of tenant identity .
Rights management : The permission level is divided into colony 、 Enterprises Space and project Three levels of management , Ensure resource sharing between different roles at multiple levels and Isolate each other , Fully ensure the security of resources .
2.4 DevOps engineering
Plug and play DevOps: be based on Jenkins Visualization CI / CD Pipeline editing , There is no need to be right Jenkins To configure , At the same time, rich CI/CD Pipeline plug-ins .CI/CD Graphical pipeline provides email notification function , Add multiple execution conditions .
End to end pipeline setup : Support from warehouse (GitHub / SVN / Git)、 The code to compile 、 Image making 、 Image security 、 Push warehouse 、 Version release 、 End to end pipeline setup to timed build .
security management : Support code static analysis scanning to DevOps Safety management of code quality in the project
journal : Log complete record CI / CD The whole process of pipeline operation .
2.5 Source to Image All in one service
kubesphere From what already exists Code warehouse Get the code from , And pass Source to Image Build an image by building an image , And push the image to the target warehouse , Each time the image is built, the task (Job) The way to complete .
2.6 Multidimensional monitoring
Visual monitoring :KubeSphere The full monitoring operation and maintenance function can be operated through the visual interface , meanwhile , Open standard interface , Easy to connect with enterprise operation and maintenance system , Realize centralized operation and maintenance with unified operation and maintenance entrance
Three dimensional second level monitoring : Second frequency 、 Two dimensions 、 Three dimensional monitoring of 16 indicators .
In the cluster resource dimension , Provide CPU utilization 、 Memory utilization 、CPU Average load 、 Disk usage 、inode Usage rate 、 Disk throughput 、IOPS、 Network card speed 、 Container group operation status 、ETCD monitor 、API Server Monitoring and other indicators
In the application resource dimension , Provide application specific CPU The dosage 、 Memory usage 、 Number of container groups 、 Network outflow rate 、 Five monitoring indicators such as network inflow rate . It also supports sorting by usage and user-defined time range query , Quickly locate exceptions
Ranking : Provide by node 、 Enterprise space 、 Ranking of resource consumption such as projects
Fault location : Provide service component monitoring , Quickly locate component failure
2.7 Self developed multi tenant alarm system
Support multi tenant based 、 Multi dimensional monitoring indicator alarm : At present, the alarm strategy supports two levels: the Cluster Administrator to the node level and the tenant to the workload level
Flexible alarm strategy : You can customize the alarm strategy including multiple alarm rules , And you can specify notification rules and rules for repeated alarms
Rich monitoring alarm indicators : Provide monitoring alarm indicators at node level and workload level , Include container groups 、CPU、 Memory 、 disk 、 Network and other monitoring alarm indicators
Flexible alarm rules : You can customize the detection cycle length of a monitoring indicator 、 Number of continuous cycles 、 Alarm level, etc
Flexible notification sending rules : You can customize the notification time period and notification list , Email notification is currently supported
Custom repeated alarm rules : Support to set the repeated alarm cycle 、 The maximum number of repetitions is linked to the alarm level
2.8 Log query and collection
Provide multi tenant log management , stay KubeSphere In the log query system , Different tenants can only see their own log information
Multi level log query ( project / The workload / Container group / Containers and keywords )、 Flexible and convenient log collection configuration options
Support a variety of log collection platforms , Such as Elasticsearch、Kafka、Fluentd
2.9 Application warehouse services
- Using open source OpenPitrix Provide app store and app warehouse services , Provide users with application lifecycle management functions
- Users can quickly and easily deploy all services of a complete application based on the application template
2.10 Infrastructure management
Provide storage type management 、 Host management and monitoring 、 Resource quota management , And support image warehouse management 、 Rights management 、 Image security scan . built-in Harbor Mirror warehouse , Support adding Docker Or private Harbor Mirror warehouse .
2.11 Multiple storage types support
Support GlusterFS、CephRBD、NFS etc. Open source storage solutions , Support Stateful storage .
NeonSAN CSI Plug-in docking QingStor NeonSAN, With lower delay 、 More flexible 、 Higher performance storage , Meet core business needs
QingCloud CSI Plug-in docking QingCloud Block storage services with various performance of cloud platform .
2.12 many Ingress Network solution support
- Support Calico、Flannel And other open source network solutions .
- Developed for physical machine deployment Kubernetes Of Load balancer plug-in Porter
The first 3 Chapter kubesphere framework
3.1 kubesphere Self architecture
KubeSphere Adopted front 、 Back end separation architecture , Realized Cloud native oriented design .
Various components are deployed and run in the form of containers .
(1)KubeSphere No underlying infrastructure : Can run in any Kubernetes、 Private cloud 、 Public cloud 、VM Or physical environment (BM) above .
(2) Back end function component interface of standard interface : It can be done by REST API Docking external systems , May refer to API file .
3.2 KubeSphere Location in the whole cloud native system
Microservices , Can be deployed directly in dokcer above , It can also be deployed in K8S above , It can also be deployed in KubeSphere above .
But the more it is deployed in the upper system , The more you can shield the details of the bottom layer , The more convenient to use .
The first 4 Chapter Common professional vocabulary and terms
Author URI ( Silicon based workshop of slow fire rock sugar ): Slow fire rock sugar ( Wang Wenbing ) The blog of _ Silicon based workshop of slow fire rock sugar _CSDN Blog
Website of this article :https://blog.csdn.net/HiWangWenBing/article/details/122905834
边栏推荐
- 07- [istio] istio destinationrule (purpose rule)
- LDAP应用篇(4)Jenkins接入
- 使用 BR 备份 TiDB 集群数据到兼容 S3 的存储
- [t31zl intelligent video application processor data]
- National economic information center "APEC industry +": economic data released at the night of the Spring Festival | observation of stable strategy industry fund
- 从 SQL 文件迁移数据到 TiDB
- Wireshark grabs packets to understand its word TCP segment
- All the ArrayList knowledge you want to know is here
- [Yugong series] creation of 009 unity object of U3D full stack class in February 2022
- wincc7.5下载安装教程(Win10系统)
猜你喜欢
NFT smart contract release, blind box, public offering technology practice -- contract
Online yaml to CSV tool
Uibehavior, a comprehensive exploration of ugui source code
Convolution, pooling, activation function, initialization, normalization, regularization, learning rate - Summary of deep learning foundation
Nacos Development Manual
CISP-PTE实操练习讲解
Zhong Xuegao, who cannot be melted, cannot escape the life cycle of online celebrity products
3. File operation 3-with
让学指针变得更简单(三)
Fibonacci sequence
随机推荐
LDAP应用篇(4)Jenkins接入
Migrate data from SQL files to tidb
C语言 - 位段
[Yugong series] creation of 009 unity object of U3D full stack class in February 2022
Hungry for 4 years + Ali for 2 years: some conclusions and Thoughts on the road of research and development
sys.argv
ESP系列引脚说明图汇总
NFT smart contract release, blind box, public offering technology practice -- contract
2. File operation - write
The State Economic Information Center "APEC industry +" Western Silicon Valley will invest 2trillion yuan in Chengdu Chongqing economic circle, which will surpass the observation of Shanghai | stable
Configuring OSPF load sharing for Huawei devices
leetcode刷题 (5.31) 字符串
07- [istio] istio destinationrule (purpose rule)
NFT smart contract release, blind box, public offering technology practice -- jigsaw puzzle
vulnhub hackme: 1
使用 BR 恢复 S3 兼容存储上的备份数据
Mobile Test Engineer occupation yyds dry goods inventory
1202 character lookup
在 uniapp 中使用阿里图标
CISP-PTE实操练习讲解