Blue whale container management platform （BCS,Blueking Container Service） Is highly scalable 、 Flexible and easy to use container management services . Support communities Kubernetes Pattern , Users do not need to pay attention to the installation of infrastructure 、 O & M and management , Just call the simple API, Or simply configure it on the page , The container can be started 、 Stop and wait operation , View cluster 、 Status of containers and services , And using various component services .

Product architecture

Product advantage

1、 Support native Kubernetes Container layout scheme

Kubernetes Is based on Google borg System open source project , Integrated   Resource scheduling   and   Application choreography   The ability of , For distributed applications 、 Microservices and large-scale cluster management .

2、 be based on Kubernetes

• Based on the original Kubernetes Realization , Adhering to community open source 、 Open mind
• Support for community containers 、 The Internet 、 Storage implementation

3、 be based on Docker Our service Ecology

• Service discovery

be based on Kubernetes The cluster of , Both have built-in service discovery capabilities . There are two patterns of service discovery , One is to access the service through the domain name of the service , Dynamically bind the backend of the current service on the domain name ; The other is through the service proxy container , The traffic is all directed to the service proxy container , The proxy container forwards traffic to the back end of the service .

• Load balancing

The load balancer is a special set of containers , It is used to balance the back-end traffic or processing capacity of a service or multiple services . Users can set load balancing algorithms to achieve different load balancing effects .

• Distributed configuration center

Business programs often need to be started with different configurations during operation , During the event , You may also need to adjust the policy through configuration . The blue whale container service provides a distributed configuration center , The user can store the configuration in the configuration center , The business container can obtain the corresponding configuration through the specified protocol .

• CNI Format Overlay and Underlay Network support

The container's network solution not only supports Overlay, Also support Underlay The plan . stay Underlay Under the plan , Each container has a real intranet IP, And automatically reclaim the container when it is destroyed IP, The user can also set the container to restart 、 Use a fixed set when migrating IP.

4、 authentication

Blue whale smart cloud container management platform   On 2019 year 7 month 30 Japan passed China   Cloud computing Open Source Industry Alliance   The organization's   Trusted cloud container solution evaluation certification .

Blue whale smart cloud container management platform has basic capability requirements 、 Application scenario technical indicators 、 Security and other aspects of solution quality , And product cycle 、 Operational service 、 The completeness and standardization of service indicators such as equity protection meet the evaluation criteria of trusted cloud container solutions . The application scenario meets the following four requirements ：

• Develop test scenarios
• Continuous integration 、 Continuous delivery
• Operation and maintenance automation
• Microservices

Product function

Introduction to template set

stay BCS in , The template collection is Kubernetes Collection of profile templates . You can form a template set by configuring multiple applications , To simplify the complexity of service management ; You can also set the frequently modified data in the template as variables , To facilitate maintenance .

adopt 『 Template set 』+『 Variable 』 It will be very convenient to manage your business .

1、 understand “ service ”

If your service consists of multiple applications , adopt   Template set  +  Variable   Generate “ application ” It will be very convenient to manage your service .

For your convenience , This article will take a simple Nginx Service as an example . There is only one under this service Nginx application , By modifying  NGINX_PORT  The value of the variable , Deploy applications to different namespaces with different ports .

2、 Create a template set

Push image to warehouse

Before creating a template , First, the following steps will Nginx The image of the application is pushed to the image warehouse of the blue whale container service .

Get the compressed package of the image

Execute locally  docker save  Get the image compressed package , You can also click download directly  nginx.tar.

docker pull nginx
docker save nginx > nginx.tar

Upload the image

Choose 【 Warehouse 】 Menu 【 Project image 】 page , Reference resources Harbor Warehouse usage guide , Push the image through the command line tool .

Create a project template set

Choose 【 Template set 】 menu , Click on 【 Add template set 】, choice 【 Form mode 】. Enter the create template set page , Can be defined in the template set Deployment、Service And so on . In this case , Just create one Deployment. First fill in some basic information , Include the name 、 describe , Number of instances .Kubernetes Use selector （spec.selector.matchLabels） Linked resources , So when creating a template, you need to put a fixed label on the application , And add this tag to the selector . Click on the 【Pod Template settings 】, Set the network policy to Host Pattern , You can use the host network directly , take Nginx The container port is exposed .

Then define Nginx Containers , You need to fill in the name 、 describe , choice Nginx Mirror image , At the same time, set the container port to a variable , In this way, applications can be deployed to different namespaces with different ports (nginx Default listening 80 port , The use of variables here is only for example effect , When actually specified, it is set to 80).

Click on the 【 preservation 】 Button , Save the template set to a version .

3、 Set a variable

A set of templates , By setting variables , Different template set instances can be instantiated . The variables are 3 Types ： Global variables 、 Cluster variables and namespace variables .

• Global variables ： A variable that has only one value under a project . Such as in the system variable ： project ID、 Business ID
• Cluster variables ： The same variable can set different values for different clusters . Such as in the system variable ： colony ID、 Warehouse domain name
• Namespace variables ： The same variable can set different values for different namespaces

Be careful ： Variables under the same project key No repetition

More variable management contents can be Click here see

4、 Create a service example

Choose 【 Template set 】 menu , Click on 【 Instantiation 】 Button to enter the instantiation page , Select a template set 、 Namespace , Click on 【 establish 】 Button to complete the instantiation operation .

5、 Confirm completion

After the application is deployed , You can click... In the left navigation of the container service 【 application 】, see Nginx Service application instance , And can pass through Host IP And the configured container port access service .

Use guide of image warehouse

1、 Warehouse

Container services use Harbor Make a mirror warehouse . The warehouse is divided into public image and project image , Public images can be shared by all projects , Project image only the current project has permission to access .

2、Harbor Introduction to image warehouse

Harbor  yes VMware The company's open source enterprise class Docker Registry Management project . stay Harbor Warehouse , Users and warehouses are organized on a project basis , Users can have different permissions based on the project .

Harbor The project type is divided into public warehouse and private warehouse , among

• Public Warehouse ： Any user can get the image in this repository .
• Private warehouse ： Only authorized users can obtain the images in this repository .

More about Harbor Project and user guidance , Please refer to  Harbor User's manual .

3、 Log in to... In the service Harbor Warehouse

Obtain the project warehouse account number

Choose 【 Of 【Charts Helm】 Warehouse in the menu 】, Click on the top right corner 【 How to push Helm Chart To the project warehouse 】 guide , Warehouse information can be obtained .

It includes the following contents ：

• Image warehouse address , hereafter <registry_url> Express ( Be careful ： The address contains the port ).<registry_url> Actually, it's the service ( Such as in the cluster Node node ) Configured intranet consul domain name , If browser or local terminal access is required , It can be configured locally hosts, Such as 10.0.0.1 <registry_url>, among 10.0.0.1 yes <registry_url> On the back-end server IP( Such as extranet IP, Ensure local access )
• Mirror warehouse user name and password （Harbor A project account in , Can be uploaded   Mirror image   and  Charts）
• project code, hereafter <project_code> Express , As shown in the figure above demoproj1

Log in to the image warehouse

docker login --username=<username> <registry_url>
Password:
Login Succeeded

Be careful ： The address of the image warehouse contains the port .

Push the mirror

Before pushing the image , First, mirror the image tag To satisfy Harbor Format required for project prefix .

For example, you need to mirror the local image nginx:1.18.0 Push to the current project , First, reset the image according to the following command tag.

docker tag nginx:1.18.0 <registry_url>/<project_code>/nginx:1.18.0
docker push <registry_url>/<project_code>/nginx:1.18.0

Pull the mirror image

Before pulling the project image, you need to complete the login , You can pull a public image without logging in .

docker pull <registry_url>/<project_code>/nginx:1.18.0

4、 Sign in Harbor Web Warehouse

obtain Harbor

• Obtain the project warehouse account number

stay 【Chart Warehouse 】 Under menu , Click on 【 Check out the project Chart Warehouse configuration information 】 after , Can get Harbor Project account number of , Visit the project （BCS New projects in ） Warehouse .

• obtain Harbor Administrator account

stay Common environment variables   Can be found in Harbor Username HARBOR_SERVER_ADMIN_USER And the password HARBOR_SERVER_ADMIN_PASS.

visit Harbor Web End

• From the perspective of project warehouse account number

The address can be accessed through the browser  <registry_url>, Get into Harbor Manage Pages , You can see that the access levels of the project are “ Open ” and “ private ”.

Click... In the image above Project warehouse joyfulgame, You can see that there is 2 A mirror image , among joyfulgame yes <project_code>.

Click on 【Helm Charts】 page , You can see the uploaded in the warehouse Charts.

• Harbor Administrator account Web End

Use administrator account , User management can be realized 、 Warehouse management 、 Replication management 、 Configuration Management .

More product features are available Click here Enter the product documentation

Scenario case

Fast build Nginx colony

1、 scene

Conventional Nginx The cluster must first deploy multiple Nginx node , And then through upstream Provide a unified portal for users to access .  This process is tedious , Let's look at BCS（ Container management platform ） How to use   Vessel schedule   Fast build Nginx colony .

2、 Prerequisite

• K8S Basic concepts , contain Deployment、Services.
• complete BCS Deploy
• Get ready 2 Virtual machine ：4 nucleus 8 G, No less than CentOS 7,K8s Master and Node various 1 platform
• Complete the above 2 Virtual machine  Agent install  , And assigned to  CMDB In business

3、 Operation steps

1. New cluster

2.BCS Fast build Nginx colony

4、 New cluster

Enable container service

stay BCS home page , Click new project , Such as happy games (demo).

Then select the container orchestration type as  Kubernetes , relation   Prerequisite   Mentioned in CMDB Business , Click enable container service .

New cluster

After enabling the container service , Enter the container service welcome page , Click Create container cluster .

Fill in the basic information of the cluster as prompted .

Cluster partition and... Of container services   Traditional monomers are used in CMDB Cluster partition in Is very similar , May, in accordance with the regional （ Such as North China district ） perhaps Completely independent application set （ Wechat area ） To differentiate .

choice 1 Virtual machines act as Master.

Click OK , Cluster initialization started .

Click node management

Click Add node , Press the prompt node to add .

thus , The new cluster is completed . You can see the basic information of the cluster .

in addition , In the cluster settings (⋮) Drop down menu , You can see the main performance indicators of the cluster .

5、BCS Fast build Nginx colony

New namespace

New namespace dev.

New template set

Template set , The analogy is K8S in Helm Of Charts, stay K8S In arrangement , yes K8S A collection of objects ：Deployment（ No state ）、StatefulSet（ A stateful ）、DaemonSet（ Set of daemons ）、Job（ Timing task ）、Configmap（ Configuration item ）、Secret（ Confidential dictionary ）, Specific see   Introduction to template set  .

open a menu [ Template set ], New template set web-nginx.

Follow the prompts , Fill in Deployment

Fill in Service

Instantiation

Check the deployment effect

In the menu network  -> Services in , Find the newly instantiated Service web-nginx.

On the menu [ application ] -> [Deployment] Can be found in  web-nginx.

And its operational indicators ：

By visiting  Node+NodePort, You can view the newly deployed Nginx The version number of the cluster .

[[email protected] ~]# curl 10.0.5.94:30008 -I
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Thu, 08 Aug 2019 09:11:42 GMT

By visiting Service IP + Port, You can also view the newly deployed Nginx Version number of .

[[email protected] ~]# curl 10.254.11.4:8088 -I
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Thu, 08 Aug 2019 09:12:33 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 11 Jul 2017 13:29:18 GMT
Connection: keep-alive
ETag: "5964d2ae-264"
Accept-Ranges: bytes

More scenario cases can be Click here Go to the official website to view the documents

Download deployment

Blue whale community version V6.0.3： Click to download

Container management platform ： Click to download

BCS Deployment documents ： Click the jump

Deploy benefit activities ： Click the jump

BCS At present, it has been officially open source , Welcome to build

• https://github.com/Tencent/bk-bcs
• https://github.com/Tencent/bk-bcs-saas

Hardware requirements

• System version ：CentOS 7（ Recommended ）
• Number of servers ：3 platform （ Experience the environment ）

How to use the blue whale container management platform

Watch tutorial videos from other channels

Tencent classroom ： Click here

Series of courses and related PPT You can enter Tencent class to get

Tencent video ： Click here

HD video can be viewed by Tencent

Problem consultation and feedback

1、 Blue whale Q & a community -- Deploy the installation module （ Specially assigned person to answer ）： Click the jump

2、 Blue whale Q & a community -- Product use section （ Specially assigned person to answer ）： Click the jump