Do you know CMDB?

With the development of the proprietary cloud , The number of cloud customers is increasing , The operation and maintenance scenarios are also gradually diversified . In this context , deliver 、 On sale 、 The after-sales and customer operation and maintenance teams urgently need an accurate 、 Unified resource usage view , Manage cloud platform asset information , It also supports monitoring 、 journal 、 The normal operation of various O & M systems such as deployment and upgrading ,CMDB emerge as the times require .

As the asset management center of Tencent's proprietary cloud ,CMDB Product oriented （ Business ） Dimensions divide and manage assets , And provide source data for other operation and maintenance components of the platform .

Product introduction

CMDB On TCE3.3.3 Version is connected to the proprietary cloud platform , It has been deployed and landed on 60 Multiple clients 110 Many clouds , Provide services as the data source of the VPC operation and maintenance platform , At the same time provide API Support customers to develop the upper system （ For example, a financial customer developed its own operation and maintenance system ）.

CMDB The asset information managed includes the hosts in the traditional operation and maintenance （ The physical machine / virtual machine ）、 The Internet （ Network devices 、IP Network segment resources 、 Special line exit 、 Internet outlets ）、 infrastructure （ regional 、 Availability zone 、 Machine room stand ） And other hardware facilities , In order to support diversified cloud platform management and operation scenarios based on cloud primitives , Also in the TCE3.8.0 Since the version, the native resources of naguan cloud have been added ： Container and its characteristic properties 、 Middleware instance, etc .

Currently, it contains seven sub functions ： Business tree management function 、 Dynamic model management function 、 Synchronization management function 、 Tag management function 、 Information verification function 、 Full text search 、 Asset security management function .

Usage Overview

1、 As the data source of operation and maintenance components ,CMDB Provide asset information for the following proprietary cloud platform O & M components ： Log system 、 The monitoring system 、 Production control platform 、 Resource delivery 、 Process engine 、 Patrol inspection platform, etc .

2、 With cloud products OSS linkage , Record the resource information and life cycle of cloud products or provide asset information , Already connected are CBS、CFS、CSP、COS、CVM、VPC、CLB、KMS And so on .

3、 Provide API Support customers to develop the upper system .

Product architecture and components （TCE3.8.0 edition ）

Containerized Services ：

Storage ：

Other components that depend on ：

Detailed design of product sub functions

Business tree management function ：

CMDB According to the three-tier topology of the business tree （ Business - colony - modular ） Divide the asset usage of each business , The last layer （ modular ） Relate to specific assets , Visually display the asset information used by each sub function of each product .

Business ： Used to identify high cohesion 、 Low extension function set , For example, cloud products CVM、CBS、COS etc. .

colony ： A collection of functionally independent services under the business （ Such as cbs Snapshot cluster 、 Storage pool cluster ）.

modular ： The function is further subdivided , The same “ modular ” All hosts share exactly the same process information , Relate to specific assets .

Interface display rendering ：

At the data storage level , Each level （ Business / colony / modular ） Are regarded as a model , Stored in a separate data table （biz、set、module）, The module asset association table records the association information between the business tree and the asset .

Dynamic model management function ：

Provide new user-defined models （ Asset type , Preset as ： host 、 Containers 、 Network equipment, etc ）、 Field （ That is, the column attributes in the asset information list ） Ability , To support the customized needs of customers for information management of assets . For example, a financial customer uses this function to “ host ” Add asset contract information to the model 、 Maintenance information 、 Maintenance on the purchase date .

The existing preset model is shown in the figure , Asset types can be maintained or added in the interface ：

Click on any model , You can enter the field property details page , And manage the fields ：

Synchronization management function ：

Synchronization of asset data ,CMDB The sources of asset allocation data are divided into five categories ：

1. Synchronization platform timing synchronization , Support setting the synchronization cycle 、 Strategy （ to update / Deletion policy ） etc. （ See the later ）
2. Add, delete, and modify through the corresponding asset interface of the front end （ Support batch operation ）
3. Other back-end components call http The protocol interface updates the asset information （ For example, the use of cloud product updates ）
4. By the... Deployed on the machine agent Automatically report
5. Get... From the configuration file of the configuration center rendering （ Such as environmental region、zone、 Computer room information ）

Synchronization platform （cmdb-sync） Design ： The synchronization component supports manual triggering and periodic synchronization , Separate processes are responsible for different tasks , After receiving the listening event, it will be transferred to the background to perform synchronization asynchronously .

Synchronization platform interface display effect ：

Tag management function ：

It supports labeling the assets of each model according to specific usage scenarios , And query and classify assets by tag ; Optimized the integrated and classified management of various assets , Asset division adapted to different scenarios .

Label management （cmdb-tag） The architecture mainly includes two modules ：

HTTP Service module ： Be responsible for providing the interface for adding, deleting, modifying and querying labels , Support label operation .

Timing reconciliation module ： Responsible for regular reconciliation CMDB Asset information , And invalid 、 Clearing and warning of abnormal asset tag Association .

Interface display effect （ You can check assets for tag editing or filter by tag ）：

Information verification function ：

Information accuracy verification function for host assets , To host agent The basic information reported is verified and filtered on the server .

Verification of asset accuracy , It includes the following two categories ：

（1） Verification of the business module to which the host belongs ： Verify whether the host should belong to the current module .

On a host agent Report the progress information to CMDB,CMDB Perform comparison and verification according to the process information of the host's current business module , If not, an alarm will be generated . The verification rules are shown in the following table ：

Verification process ：

cmdb-check To host agent Submit information for database retrieval and matching , Query the corresponding process and module information .

Press “ Principle of judgment ”（ The whole process / Single process ） Filter business modules ： If it is “ The whole process ”, Verify whether the host contains all the process information configured by this business module , Otherwise filter out .

Press “ Whether it is mixed ”（ Mixing part / Unmixed part ） Filter business modules ： If there are multiple business modules , Filter out the configuration as “ Unmixed part ” Business module .

Filter the remaining business modules according to the previous steps , Compare with the business module associated with the current host , If it is inconsistent, the alarm will be given .

（2） Host hardware information verification ： Verify whether the hardware information of the host is accurate .

On a host agent Report hardware information to CMDB（ Memory 、 Hard disk 、CPU、 Network card, etc , The following table ）,CMDB Compare the current configuration information of the database with the reported information , If not, an alarm will be generated .

Full text search ：

Support customers to CMDB Fast fuzzy query for all attributes of all resources , And provide a front-end interface to display structured query results .

Full text search portal ：

Search results display （ As shown in the figure IP Search for , Find out the IP The corresponding machine and its related Pod Information ）：

To improve the performance of full-text search ,CMDB Use ES Build the asset index , from cmdb-core The service is responsible for real-time and regular monitoring of ES Construction and maintenance of resource index .

Asset security management function ：

This includes an audit function that records changes to assets 、 Authentication function , Ensure asset security and change traceability . The audit function records all changes to assets （ Operator 、 Operating time 、 Change comparison, etc ）; The authentication function is linked with the business tree to restrict the permission to operate assets according to user roles （ The following table ）：

at present CMDB It has managed and maintained a variety of assets to support the normal operation of the daily operation and maintenance scenarios of the VPC platform . In the future, in order to support more o & M scenarios and the one click deployment, upgrade and change capability of the VPC ,CMDB This will increase the dynamics of the business tree topology , Optimize the organizational presentation of assets , New information about the management plan and more information about cloud assets , Give Way CMDB Become the authoritative data source of the cloud platform .

-END-