Introduction: Expanding the boundaries of Kubernetes, ACK@Edge adds secure interconnection and refined management of edge nodes. First in the industry, ACK@Edge supports high-quality encrypted networks and refined management.
ACK@Edge realizes cloud-side-end collaboration through Kubernetes
In the era of 5G and the Internet of Things, hundreds of billions of devices are connected to the cloud, and ZB of data is generated. The industry has also begun to pay attention to how to better leverage the core capabilities of cloud computing and give play to the capabilities of various edge devices: such as how to efficiently coordinate data processing? How to quickly implement various application deployments? How to achieve low latency and weak network autonomy when bandwidth is limited?
Alibaba Cloud officially released the edge container ACK@Edge in 2019. The product focuses on the service concept of "cloud standard management and control, moderate edge autonomy": providing powerful and rich cloud-native management and control capabilities in the cloud, which can achieve upwards such as urban brains, industrial brains, and CDNPaaS, IoTPaaS and other business integration, through the multi-specification, multi-link solution to carry traffic downward to complete cloud-side operation and maintenance management; edge side, superimposed on the basis of native k8s capabilities such as edge autonomy, unitized management, traffic topology, edge Refined detection of computing power status and other capabilities.
In terms of technical implementation, Alibaba Cloud ACK@Edge implements the core design concept of "Extending your native Kubernetes to Edge".
Kubernetes "zero" intrusion, to ensure full compatibility with native K8sAPI. Not changing the core components of Kubernetes does not mean that ACK@Edge is just a simple KubernetesAddon. ACK@Edge adds a new layer of encapsulation to Kubernetes node and application lifecycle management through proxy node network traffic, and provides the core management and control capabilities required for edge computing.
ACK@Edge New Feature 1: Secure interconnection between the cloud and the cloud, enhanced cloud-edge SDN network communication
In the previous ordinary network model, the edge and the cloud are interconnected through the public network, and edge applications cannot directly access the cloud VPC intranet. The newly released enhanced network model, based on Alibaba Cloud’s global network infrastructure, provides a secure and fast cloud-side collaborative network. Edge node pool applications can directly access the cloud through the VPC intranet, and have more advantages than ordinary networks. Good cloud-side network quality and security assurance.
Specifically, the following four types of access connections are supported:
- Interoperability between Edge Pod and Cloud Pod
- Interoperability between edge Pod and cloud VPC
- Edge Node One-way Access to VPC on Cloud
- Edge Node one-way access to Pod on the cloud
Under this scheme, cloud-side network traffic will be encrypted and transmitted almost throughout the Alibaba Cloud intranet, ensuring the quality and security of communication.
ACK@Edge new feature 2: Edge node pool management, simplifying the complexity of operation and maintenance
In edge computing scenarios, computing nodes usually have strong specific attributes, such as having the same CPU architecture, operators, or cloud providers. In order to facilitate management, the traditional approach is to use Kubernetes to classify and manage nodes. However, as the scale of nodes and the number of labels increase, the classification and operation of nodes will become more and more complicated.
Alibaba Cloud ACK@Edge launched the Edge Node Pool (NodePool), which made a higher-dimensional abstraction of node division, so that customers can conduct unified management and operation and maintenance of nodes in different edge areas from the perspective of node pools.
ACK@Edge new feature three: application unit deployment, easy to create templates
The same application will need to be deployed on computing nodes in different regions. Taking Deployment as an example, the traditional approach is to first set computing nodes in the same region to the same label, and then create multiple Deployments. Different Deployments select different labels through NodeSelectors to achieve the requirement of deploying the same application to different regions. .
With the increasing geographical distribution and the differentiated requirements for applications in different regions, the operation and maintenance has become more and more complicated, which is manifested in the following aspects:
- When the mirror version is upgraded, the mirror version configuration of each deployment needs to be modified.
- Need to customize the deployment naming convention to indicate the same application.
- For multiple Deployments of the same application, in addition to the features of Name, NodeSelectors, and Replicas, other differentiated configurations are relatively small.
UnitedDeployment is a function provided by the edge container service ACK@Edge. Through a higher level of abstraction, it can manage multiple deployments in a unified manner, such as creating, updating, and deleting operations.
The edge computing cloud native solution ACK@Edge has taken over more than one million business containers, covering many industries such as new retail, medical, Internet of Things, industry, water conservancy, and transportation, and is committed to accelerating the process of cloud computing to expand the boundary to edge computing. Establish a unified standard for cloud-native edge computing architecture in the future.
Alibaba Cloud Edge Container ACK@Edge focuses on the service concept of "cloud standard management and control, moderate edge autonomy"; "cloud edge" has obvious layers and synergy of capabilities. At the same time, ACK@Edge also provides central control K8s cluster full lifecycle management, supports heterogeneous resources, and achieves high availability of edge nodes and applications,
For more information, please visit Edge Container Service, https://www.aliyun.com/product/cs/ack_edge
Original link: https://developer.aliyun.com/article/781881?
Copyright statement: The content of this article is voluntarily contributed by Alibaba Cloud real-name registered users. The copyright belongs to the original author. The Alibaba Cloud Developer Community does not own its copyright and does not assume corresponding legal responsibilities. For specific rules, please refer to the "Alibaba Cloud Developer Community User Service Agreement" and the "Alibaba Cloud Developer Community Intellectual Property Protection Guidelines". If you find suspected plagiarism in this community, fill in the infringement complaint form to report it. Once verified, the community will immediately delete the suspected infringing content.