Huawei cloud stack [interview]

HCS programme
     Definition
        HCS use FusionSphere OpenStack As a cloud platform , Integrate the resources of various physical data centers , use ManageOne As a data center management software, it provides unified management for multiple data centers , The cloud platform and data center management software work together , Achieve multi data center integration 、 Enhance the overall competitiveness of enterprises IT The purpose of efficiency
     characteristic
         Physical dispersion 、 Logical identity 、 Business driven 、 Cloud management collaboration 、 Business perception
         Telephone
     advantage
         reliability
             Through the distributed architecture of cloud platform , Improve the reliability of the overall system
         Usability
             Through redundancy 、HA colony 、 It is applied to hardware loose coupling and other characteristics
         Security 、 Maturity 、 Progressiveness 、 Extensibility 、 open

The cloud service
     Cloud management
        ManageOne
             Provide cloud service operation management and system operation and maintenance management
        eSight
             Provide servers 、 Unified management of storage devices and network devices
        FusionCare
             Unified inspection and inspection for operation and maintenance personnel FusionSphere Offline log collection tool
     Storage service
        EVS
             Cloud drive , A virtual block storage service , Mainly for ECS and BMS Provides block storage space
        OBS
             Object storage service , An object-based mass storage service , To provide customers with a large number of 、 Security 、 high reliability 、 Low cost data storage , For any scenario
        SFS
             Elastic file service , For users ECS Provide a shared file store
     Network services
        VPC
             Virtual private cloud , It is a set of logical isolation built for instances , Virtual network environment independently configured and managed by users , The user can be in VPC Internal free choice IP Address range , Create multiple subnets 、 Custom security groups, etc
            SNAT
                 Source address translation , take VPC Within a network segment IP Address mapping becomes public IP Address
        EIP
             elastic IP, Businesses on cloud platforms can be accessed directly through networks other than cloud platforms ,EIP Is a static public IP Address
        ELB
             Elastic load balancing , The traffic distribution control service that distributes the access traffic to multiple elastic cloud servers at the back end according to the forwarding policy
        VPN
             Virtual private network , It is used to establish a secure and encrypted communication tunnel between remote users and virtual private cloud
        SG
             Security group , It is a logical grouping , For the same VPC Provide access policies for instances with the same security protection requirements and mutual trust , After the security group is created , Users can customize rules in groups , All rules in the security group are released in the outgoing direction by default
     Computing services
        ECS
             Elastic cloud server , from CPU、 Memory 、 Image and cloud disk are available at any time 、 Elastic and scalable computing server
        BMS
             Bare metal servers , Provide dedicated physical servers for tenants , Excellent computing performance
        IMS
             Image services , An elastic ECS template that includes software and necessary configurations , Include at least the operating system
     Security service
        CFW
             Cloud firewall , Scattered in each VM Provide protection directly before
        EdgeFW
             Border firewall , Located at the boundary of internal and external networks , It is a bridge connecting the internal network and the external network , Mainly for north-south flow
     Disaster recovery services
        VBS
             Cloud disk backup , Create a backup for cloud disk , Use backup data to restore cloud disk , Ensure business security
            Karbor
                VBS Server side , Accept the management console request and call FSionSphere OpenStack Components
            eBackup Server&Proxy
                VBS Server side , Back up the data in the production storage device to the backup storage device
        CSBS
             Cloud server backup , by ECS and BMS Create a backup
        CSDR
             Cloud server disaster recovery , Provide remote disaster recovery protection for ECS
        CSHA
             ECS is highly available , by ECS Provide high availability protection between data centers in the same city
        VHA
             Cloud disk service is highly available , by ECS Medium EVS Provide dual active protection for local storage
     Container services
        CCE
             Cloud container engine , Provide high-performance scalable K8S colony , Support operation docker
        SWR
             Container image service
     Public service
        Nginx、NTP、DNS、API Gateway……

Application scenarios
     Fusion resource pool
     Hosting cloud
     A hybrid cloud
    Global Independent deployment scenario

HCS Functional layer
     infrastructure
         The server 、 Storage 、 The Internet 、 A firewall ……
     Resource pool
        Fusion Sphere OpenStack Resource pool
         Virtualization resource pool 、 Bare metal server pool 、 Block storage pool 、 File storage pool 、 Network resource pool disaster recovery resource pool ……
     Administrative domain
        ManageOne Provide unified management and scheduling of multiple data centers
     The cloud service
         Computing services 、 Storage service 、 Network services 、 Container services ……
     Application domain
         Applications provided by third parties

OpenStack Network plane planning
    External_API
         Provide a login interface for administrators and users , Passing through this plane VLAN Labeled , Uplink release
    External_OM
         For the docking of backend resources , oriented FC and RabbitMQ, Passing through this plane VLAN Tagged , Uplink needs to be released
    Internal_Base
        OpenStack Internal network plane , It is mainly used for communication between internal components ; It also provides CBS（ Cloud startup service ） service , It is used to PXE install , This plane is a two-layer network ,VLAN Unlabeled
     Business plane
         For tenants or users , Provide direct connection 、 Routing and internal three different network types
     Management plane
         Used to manage the backend FC、FS And so on , In a typical environment, it can be compared with OM Integration deployment
    VIMS Heartbeat Network
         If FC It uses VIMS file system , You need to deploy the network , You can choose to close on the data storage page , After the closing VIMS Heartbeat flow is managed , If planned separately , All hosts using virtualized data storage must plan the network separately
     Storage networks
        CNA Back end storage plane , Used for FC A network that provides a storage plane , If you use advanced SAN、FS、IP SAN、NAS Wait for back-end storage , Need to plan , If you use FC There is no need to plan separately