From July 30 to August 1, the first online "Cloud Native + Open Source Virtual Summit China 2020 China Online Summit" co-sponsored by CNCF and global open source volunteers was held. The conference gathered leading technologies in China's most active open source and cloud native communities, promoted knowledge updates and technological advancements in the field of cloud native computing, and opened the next decade of cloud native.
At the first online KubeCon 2020 conference, Queen Wang, container architect of EasyStack from EasyCloud, brought a theme sharing of " Redefining evolvable, heterogeneous, full-plane orchestration, and security enhancement with kubernetes", explaining in detail how to use Kubernetes to build a new generation Private cloud and container cloud services support best practices in the process of cloud-native client application.
Currently, customers are facing numerous challenges when building a new generation of private clouds or container clouds: First, when building IaaS platforms and PaaS platforms, the infrastructure is not unified, it is difficult to achieve a unified architecture, unified permissions, and it is difficult to continuously obtain new cloud Ability to realize the evolution of the cloud. With the increasing acceptance of multi-cloud by customers, more and more different platforms of x86 and non-x86 are used in customer IT resources, but customers cannot manage heterogeneous CPU resource pools in a unified manner. In addition, customers’ private clouds and container clouds are often built separately, which cannot achieve unified orchestration of different business loads of containers, virtual machines, and bare metal. Different semantic models are required for management, and the security of cloud native applications under multi-tenancy cannot be guaranteed. .
When building a new generation of private cloud and a new generation of container cloud, Easy Cloud uses kubernetes to redefine evolvable, heterogeneous, full-plane orchestration, and security enhancements, bringing customers a new experience:
1. Unified architecture, supporting control plane and cloud native services at the same time
Use Kubernetes to unify the IaaS platform and PaaS platform infrastructure. Kubernetes not only supports cloud platform control plane services, but also provides users with self-built Kubernetes container clusters that can be managed throughout the life cycle to support users' cloud native services.
The supervisor cluster (EOS, EasyStack Orchestration Service) constructed by EasyStack Cloud is not only a control plane management cluster, which can run on bare metal servers, orchestrating the management control plane to provide cloud infrastructure, but also a user service cluster (EKS, EasyStack Kubernetes Service). Meta clusters can run on cloud hosts to help users make full use of cloud infrastructure capabilities.
2. Realize the evolvability of a new generation of private cloud based on Kubernetes
EasyStack ECS, a new generation of private cloud, is based on a safe, stable, and efficient new generation of data center distributed cloud operating system. Through an integrated and scenario-based design concept, the platform and the service are separated, realizing the evolution of the entire platform Capabilities, including evolving product forms, evolving service capabilities, and supporting scenarios.
All control plane services of ECS, a new generation of private cloud, are cloud-native and continuously updated to make the evolution process smooth and uninterrupted. Based on the core features of evolvability, private clouds can evolve container clouds and change continuously with the development of customer business forms.
3. Create a multi-cloud heterogeneous management platform for heterogeneous CPU architecture
With the general trend of localization and the increasing acceptance of multi-cloud by customers, more and more applications in customer IT resources will run on both x86 and non-x86 platforms. Resource pools of different architectures need to be optimized and run independently. Easy Cloud Application Kubernetes accesses the cloud platform with a unified authority system, reuses cloud infrastructure capabilities such as mirror warehouses, stable, reliable and high-performance storage, uniformly distributes and schedules applications, and realizes unified management of heterogeneous CPU architecture.
4. Full plane orchestration realizes unified management of IaaS platform and container
It is difficult for traditional private cloud vendors to achieve unified management between private cloud and container cloud and direct network connection between different loads. Ejet Cloud uses a unified declarative management method to integrate virtual machines, bare metal and other services into the Kubernetes ecosystem in the CRD+ Operator mode, so that virtual machines/bare metals can also be cloud-native, making full use of the cloud infrastructure provided The full-plane unified network solution realizes VPC isolation of different tenants and direct Layer 2 connectivity within the subnet.
5. Security enhancement, introducing cloud host-level security isolation mechanism into containers
By introducing the cloud host-level security isolation mechanism into the container, the new generation of container cloud has the convenience of containers and the cloud host-level security isolation capability, providing the ultimate container experience. Its core is a deeply optimized cloud operating system and virtualization components, which eliminates the need for nested containers inside the cloud host to improve performance and reduce losses.
Founded in 2014, Yijiexing Cloud focuses on providing multi-cloud-oriented private cloud platforms and cloud services for government and industrial enterprise customers. Yijiexingyun has always adhered to independent research and development, product innovation, and deep cultivation of open source productization. Based on the open source ecology, it has provided cloud products and services to more than 1,000 domestic and foreign large and medium-sized enterprises. The evolving new generation of private cloud of Easy Cloud, with its new generation of data center distributed cloud operating system based on security, stability, and efficiency, separates the platform from the service through an integrated and scenario-based design concept, and realizes the whole The platform's evolvable capabilities and light operation and maintenance capabilities help enterprise users to achieve a unified architecture from the most basic unit of 3-node cloud-ready super-convergence to an unlimited super-large-scale cloud platform, while maintaining a high-level product based on the open source ecological technology stack To build a data-centric, heterogeneous multi-cloud private cloud platform through a smooth, non-sense and evolvable way of non-business perception, no data migration, and no service interruption.
In terms of localization compatibility and adaptability, Yijiexingyun's new generation of private cloud ECS supports domestic mainstream processors such as Feiteng, Kunpeng, Loongson, and Haiguang, as well as domestic mainstream operating systems such as Kirin and Tongxin. It has 100+ domestic commercial software. Hardware partners, leading domestic cloud ecological compatibility.
Cloud computing is the center of new infrastructure. Ejet Cloud is committed to providing cloud services for data centers in key industries on the supply side of the national economy and people’s livelihood, driving application-level product forms, industry formats and business model innovations, empowering the transformation and upgrading of traditional industries, and Further promote the digital economy carried by cloud services and provide assistance for the transformation of the economy to innovation-driven.