Kubernetes complex network strategy system and implementation method thereof

A network strategy and complex network technology, applied in the field of cloud computing, can solve problems such as unmatched resources, single matching method, and difficulty in meeting scene requirements

Active Publication Date: 2021-03-05
中国东盟信息港股份有限公司
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the process of using the Kubernetes platform, it is obviously difficult to meet the needs of most scenarios based on Namespace and Pod level network control and label matching resources.
First of all, the label-based matching method is too simple to match logical expressions, complex operators or arrays, and configure policy priorities; second, the default network policy cannot achieve a general policy at the cluster level, and the same policy needs to be All Namespaces are configured repeatedly; again, other types of resources in kubernetes cannot be...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Kubernetes complex network strategy system and implementation method thereof
  • Kubernetes complex network strategy system and implementation method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0083] The specific embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings, but it should be understood that the protection scope of the present invention is not limited by the specific embodiments.

[0084] Unless expressly stated otherwise, throughout the specification and claims, the term "comprise" or variations thereof such as "includes" or "includes" and the like will be understood to include the stated elements or constituents, and not Other elements or other components are not excluded.

[0085] Such as Figure 1-2 As shown, the present invention discloses a Kubernetes complex network policy system, which expands the definition of the original kubernetes network policy into four different types of network policies and three components: a command controller, a policy controller and a monitoring trigger.

[0086] The 4 types of network policies are:

[0087] Global Network Set, which represents any collectio...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a kubernetes complex network strategy system and an implementation method thereof, and belongs to the technical field of cloud computing. The system comprises a global networkgroup which represents any set of IP subnets/CIDRs; the global network strategy comprises a plurality of global network groups or resource selectors arranged in the strategy; the project network groupis suitable for a specific Namespace; the project network strategy is suitable for a specific Namespace; the command controller is used for an administrator to check or modify the four types of network policies; the strategy controller is connected with the kube-apiserver, and a specific network strategy is stored, wherein the strategy controller is operated in the form of a deploygent; the strategy trigger is operated in a daemon set mode; and the strategy generated by the strategy controller is applied to the corresponding node by the strategy trigger to take effect, and the strategy is realized by adding self-defined chains caihcloud-chains in filters, raw and mangle tables in a Linux kernel data packet processing module Netfilter. According to the invention, cluster network strategy management can be simplified, the application service capability of kubernetes is enhanced, and the service capability of kubernetes service providers is further improved.

Description

technical field [0001] The invention belongs to the technical field of cloud computing, in particular to a kubernetes complex network policy system and an implementation method thereof. Background technique [0002] In recent years, container technology and the Kubernetes platform have continued to heat up. Kubernetes has greatly improved the speed and manageability of application deployment. Due to its flexibility, scalability and ease of use, Kubernetes has become the de facto standard for container orchestrators and quickly landed And empower the industry, greatly improving resource utilization efficiency and productivity. [0003] As a new technology that is still in the development stage, the progress of Kubernetes in network isolation is relatively slow and rudimentary compared with the computing field. Kubernetes currently provides the NetworkPolicy function by default, which supports network access control at the Namespace and Pod levels. Use labels to specify name...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/24
CPCH04L41/0893Y02D30/50
Inventor 韦克璐王志雄赵凯麟
Owner 中国东盟信息港股份有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap