CN112311646B - Hybrid cloud based on super-fusion system and deployment method - Google Patents

Hybrid cloud based on super-fusion system and deployment method Download PDF

Info

Publication number
CN112311646B
CN112311646B CN202011033724.8A CN202011033724A CN112311646B CN 112311646 B CN112311646 B CN 112311646B CN 202011033724 A CN202011033724 A CN 202011033724A CN 112311646 B CN112311646 B CN 112311646B
Authority
CN
China
Prior art keywords
cloud
super
network
public
fusion
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011033724.8A
Other languages
Chinese (zh)
Other versions
CN112311646A (en
Inventor
杨太翔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Big Data Technologies Co Ltd
Original Assignee
New H3C Big Data Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Big Data Technologies Co Ltd filed Critical New H3C Big Data Technologies Co Ltd
Priority to CN202011033724.8A priority Critical patent/CN112311646B/en
Publication of CN112311646A publication Critical patent/CN112311646A/en
Application granted granted Critical
Publication of CN112311646B publication Critical patent/CN112311646B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/34Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters 

Abstract

According to the hybrid cloud based on the super-fusion system and the deployment method, consistent infrastructure of the super-fusion system is constructed in private cloud and public cloud VPC, software and hardware of the super-fusion cluster on the cloud and the super-fusion cluster under the cloud are isomorphic, and convenient management and operation and maintenance modes are realized. The hybrid cloud architecture based on the present disclosure can support hybrid cloud service migration, hybrid cloud service disaster tolerance and resource unified management capabilities, and can meet complex requirements of resource unified management, service cross-cloud migration and disaster tolerance, and cloud-edge collaboration in an enterprise user hybrid cloud scenario.

Description

Hybrid cloud based on super-fusion system and deployment method
Technical Field
The disclosure relates to the technical field of cloud computing, in particular to a hybrid cloud based on a super-fusion system and a deployment method.
Background
With the development of cloud computing technology and diversification of user requirements, the application range of hybrid cloud is becoming wider and wider, and gradually becoming the main form of cloud for enterprise users in the industry. However, a plurality of technical challenges are faced in the field of hybrid cloud at present, and unified management of hybrid cloud resources, backup disaster tolerance of hybrid cloud data and application deployment are technical difficulties concerned by enterprise users.
The hyper-convergence system is characterized in that Server virtualization software and storage virtualization software, such as Hypervisor and Server SAN, are run on computing nodes, all the computing nodes are aggregated into a unified virtual computing and virtual storage resource pool through a network, and IT infrastructure required by a data center is provided in the form of the resource pool.
Taking a super-fusion system constructed based on KVM computing virtualization, Ceph distributed storage and VLAN and OpenVSwitch technologies as an example, a KVM (kernel-based Virtual Machine) is based on linux kernel virtualization technology and covers super-fusion computing virtualization capability, a Ceph distributed storage technology is used as storage virtualization software, and a VLAN and OpenVSwitch technology covers super-fusion system network virtualization capability.
At present, the hybrid cloud management platform in the industry basically realizes the unified management of hybrid cloud resources by calling the API unified abstraction of the private cloud platform and the public cloud, but the management mode can not realize the functions of hybrid cloud service migration and disaster tolerance on the cloud (public cloud) and under the cloud (private cloud), the hybrid cloud capability has great limitation, and the API is bound with the specific public cloud platform and has no transportability and architecture decoupling.
At present, hybrid cloud backup software is available, a client is built in a source virtual machine, and effective data of a disk corresponding to a cloud host is obtained through a qcow2 mirror image format analysis technology. During incremental backup, incremental data are obtained, and virtual machine backup to public cloud storage is realized based on a hard disk snapshot and a memory snapshot technology, but agent-free backup disaster tolerance from a management plane cannot be realized, the operation is complex, and the binding of the public cloud storage and a public cloud platform is not realized, so that the portability is not realized.
Disclosure of Invention
In view of this, the present disclosure provides a hybrid cloud based on a super-fusion system and a deployment method thereof, which are used to solve the technical problems of unified resource management, service migration, and disaster recovery of the hybrid cloud.
Based on an embodiment of the present disclosure, a hybrid cloud deployment method based on a hyper-fusion system is provided, the method including:
deploying a private cloud based on a super-fusion system architecture, and deploying a cloud management platform in a virtual machine in a super-fusion system of the private cloud;
the VPC deployment method comprises the steps that a virtual private cloud VPC in a public cloud is deployed based on a super-fusion system architecture consistent with a private cloud, networking of the super-fusion system in the public cloud is controlled by a public cloud platform, and management, service and storage network resources of the super-fusion system are distributed for the VPC through the public cloud platform;
the public cloud and the private cloud are interconnected through a reliable network to realize a hybrid cloud;
a cloud management platform in the private cloud super-fusion system provides multi-tenant and computing, storage and network cloud service capabilities, and a virtual machine management assembly in the cloud management platform realizes unified management of cloud resources of a plurality of super-fusion systems in a public cloud and a private cloud through driving provided by different virtualization manufacturers.
Furthermore, the reliable network interconnection mode between the public cloud and the private cloud is interconnection through an IPSec VPN or a cloud private line; the IPSec VPN adopts an internet key exchange protocol (IKE) mode to establish an IPsec tunnel for protecting an IPv4 message, and the cloud dedicated line is deployed in a software-defined wide area network (SD-WAN) mode.
Further, the mode that the virtual machine management component in the cloud management platform realizes the unified management of the cloud resources of the multiple super-fusion systems in the public cloud and the private cloud through the drive provided by different virtualization manufacturers is as follows:
the cloud management platform of the private cloud is an OpenStack cloud management platform, a Nova-Computer virtual machine management component in the OpenStack cloud management platform is responsible for managing and configuring virtual machines, and the Nova-Computer is connected with the Libvirt through a Driver in an abutting mode to achieve dispatching of KVM virtualization resources.
Further, the method for deploying the virtual private cloud VPC in the public cloud based on the super-fusion system architecture consistent with the private cloud comprises the following steps:
deploying bare metal services adopting a super-fusion system architecture as super-fusion system nodes in a VPC of a tenant, enabling the super-fusion system nodes to be in a flat position with a cloud host in a public cloud VPC, and uniformly arranging and scheduling the whole computing and network resources by a public cloud platform;
a public cloud platform bare metal service provides a VPC network segment required by a super-fusion system, and a super-fusion internal management network and a super-fusion internal business network are established;
the service network of the virtual machine in the super-convergence system in the public cloud needs to be bridged out of the super-convergence system and encapsulated by an extensible virtual local area network VXLAN protocol to a Leaf switch;
and marking VLAN labels of the VPC of the public cloud on a management network and a service network of the super-convergence system node in the public cloud, and constructing a hybrid cloud network interconnection link through the super-convergence system of the reliable network and the private cloud.
Further, the method further comprises the step of achieving virtual machine hybrid cloud migration based on disk mirroring and memory copy incremental copy technologies, and data transmission in the virtual machine migration process is achieved based on hypervisor.
Further, the method also comprises a mixed cloud service disaster tolerance processing step:
in a storage layer, asynchronous remote copying between storage block equipment LUNs with the same capacity and size is configured for a public cloud and a private cloud, and business mixed cloud disaster tolerance is realized through a storage array asynchronous copying technology;
and on the service level, dividing the service virtual machines needing disaster recovery protection into the protection groups by defining the protection groups, and synchronizing the virtual machine configuration protected by the local production site to the cloud disaster recovery site in the disaster recovery process.
Based on another embodiment of the present disclosure, the present disclosure further provides a hybrid cloud based on a hyper-fusion system, the hybrid cloud including:
the private cloud is deployed based on the super-fusion system architecture, and a cloud management platform is deployed in a virtual machine in the super-fusion system of the private cloud; a cloud management platform in the private cloud super-fusion system provides multi-tenant and computing, storage and network cloud service capabilities, and a virtual machine management component in the cloud management platform realizes unified management of cloud resources of a plurality of super-fusion systems in a public cloud and a private cloud through driving provided by different virtualization manufacturers;
the virtual private cloud VPC deployment method comprises the following steps that a public cloud adopts a super-fusion system architecture consistent with a private cloud to deploy virtual private cloud VPC in the public cloud, networking of a super-fusion system in the public cloud is controlled by a public cloud platform, and management, service and storage network resources of the super-fusion system are distributed for the VPC through the public cloud platform;
the public cloud and the private cloud are interconnected through a reliable network to realize a hybrid cloud.
Furthermore, the reliable network interconnection mode between the public cloud and the private cloud is interconnection through an IPSec VPN or a cloud private line; the IPSec VPN adopts an internet key exchange protocol (IKE) mode to establish an IPsec tunnel for protecting an IPv4 message, and the cloud dedicated line is deployed in a software-defined wide area network (SD-WAN) mode.
Furthermore, in the public cloud, a bare metal service adopting a super-fusion system architecture is deployed in a VPC of a tenant to serve as a super-fusion system node, the super-fusion system node and a cloud host in the public cloud VPC are in a flat status, and a public cloud platform is used for uniformly arranging and scheduling the whole computing and network resources;
a public cloud platform bare metal service provides a VPC network segment required by a super-fusion system, and a super-fusion internal management network and a super-fusion internal business network are established;
the service network of the virtual machine in the super-convergence system in the public cloud needs to be bridged out of the super-convergence system and encapsulated by an extensible virtual local area network VXLAN protocol to a Leaf switch;
and marking VLAN labels of the VPC of the public cloud on a management network and a service network of the super-convergence system node in the public cloud, and constructing a hybrid cloud network interconnection link through the super-convergence system of the reliable network and the private cloud.
Further, virtual machine hybrid cloud migration is realized based on disk mirroring and memory copy increment copying technologies, and data transmission in the virtual machine migration process is realized based on hypervisor;
in a storage layer, asynchronous remote copying between storage block equipment LUNs with the same capacity and size is configured for a public cloud and a private cloud, and business mixed cloud disaster tolerance is realized through a storage array asynchronous copying technology; and on the service level, dividing the service virtual machines needing disaster recovery protection into the protection groups by defining the protection groups, and synchronizing the virtual machine configuration protected by the local production site to the cloud disaster recovery site in the disaster recovery process.
According to the hybrid cloud deployment method based on the super-fusion system, consistent infrastructure of the super-fusion system is built in private cloud and public cloud VPCs, software and hardware of the super-fusion cluster on the cloud and the super-fusion cluster under the cloud are isomorphic, and convenient management and operation and maintenance modes are achieved. Based on the hybrid cloud architecture provided by the disclosure, the hybrid cloud service migration, the hybrid cloud service disaster tolerance and the resource unified management capability can be supported, the complex requirements of resource unified management, service cross-cloud migration and disaster tolerance and cloud-edge collaboration of enterprise users under the hybrid cloud scene can be met, and meanwhile, the super-fusion cluster system on the cloud is decoupled from the heterogeneous public cloud platform, so that the hybrid cloud deployment method is applicable to various heterogeneous public cloud platforms.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments of the present disclosure or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present disclosure, and other drawings can be obtained by those skilled in the art according to the drawings of the embodiments of the present disclosure.
Fig. 1 is a flowchart illustrating steps of a hybrid cloud deployment method based on a hyper-fusion system according to an embodiment of the present disclosure;
fig. 2 is a networking example of interworking between a super-fusion system node and a cloud host and other cloud product networks in an embodiment of the present disclosure;
fig. 3 is a flowchart illustrating steps for implementing hybrid cloud service migration in an embodiment of the present disclosure;
fig. 4 is a flowchart illustrating implementation steps of a hybrid cloud service disaster recovery according to an embodiment of the present disclosure;
fig. 5 is a schematic diagram illustrating unified management of hybrid cloud resources according to an embodiment of the present disclosure.
Detailed Description
The terminology used in the embodiments of the present disclosure is for the purpose of describing particular embodiments only and is not intended to be limiting of the embodiments of the present disclosure. As used in the embodiments of the present disclosure, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. The term "and/or" as used in this disclosure is meant to encompass any and all possible combinations of one or more of the associated listed items.
It is to be understood that although the terms first, second, third, etc. may be used herein to describe various information in the embodiments of the present disclosure, such information should not be limited by these terms. These terms are only used to distinguish one type of information from another. For example, first information may also be referred to as second information, and similarly, second information may also be referred to as first information, without departing from the scope of embodiments of the present disclosure. Depending on the context, moreover, the word "if" as used may be interpreted as "at … …" or "at … …" or "in response to a determination.
The disclosure provides a hybrid cloud deployment method based on a super-fusion system, the super-fusion system is deployed at a private cloud side, deploying a hyper-converged system of the same architecture, namely a consistent architecture, in a VPC (Virtual Private Cloud) of a public Cloud, the method comprises the steps of configuring IPSec VPN (Internet Protocol Security Virtual Private Network) through firewalls at a public cloud side and a Private cloud side or erecting a special cloud line to realize Network interconnection between the public cloud and the Private cloud to form a mixed cloud, realizing Virtual machine mixed cloud migration based on disk mirror image replication and incremental replication technology, realizes service mixed cloud disaster tolerance by a storage array asynchronous replication technology, and is in butt joint with the unified management of cloud resources of a plurality of super fusion systems on the upper cloud and the lower cloud through a cloud management platform arranged in the super fusion system on the lower cloud, therefore, the complex requirements of unified management of resources and cross-cloud migration and disaster tolerance of the business under the mixed cloud scene of enterprise users are met.
Fig. 1 is a flowchart illustrating steps of a hybrid cloud deployment method based on a hyper-fusion system according to an embodiment of the present disclosure, where the deployment method includes the following steps:
and 101, deploying the private cloud based on the super-fusion system, and deploying a cloud management platform in a virtual machine in the private cloud super-fusion system.
And 102, deploying the public cloud VPC based on the super-fusion system, wherein the networking of the public cloud VPC is controlled by a public cloud platform, and the management, service and storage network resources of the super-fusion system are distributed to the VPC through the public cloud platform.
The bare metal deployment super-fusion software system architecture in the public cloud platform VPC is one of important improvement points of the disclosure, and the super-fusion system nodes and the cloud host in the public cloud VPC are in a flat position, so that the public cloud platform needs to perform overall computation and network resource unified arrangement and scheduling on resources in the public cloud.
And 103, interconnecting the public cloud and the private cloud through a reliable network to realize a hybrid cloud.
The reliable network interconnection mode between the public cloud and the private cloud can select two interconnection modes of IPSec VPN and cloud private line, and the IPSec VPN can adopt an IKE (Internet Key Exchange) mode to establish an IPsec tunnel for protecting an IPv4 message. The cloud private line needs to contact an operator or Software-Defined Wide Area Network (SD-WAN) vendor for deployment.
And 104, providing multi-tenant, computing, storage and network cloud service capabilities by a cloud management platform in the private cloud super-fusion system, and realizing unified management of cloud resources of the super-fusion systems in the public cloud and the private cloud by a virtual machine management component in the cloud management platform through driving provided by different virtualization manufacturers.
In an embodiment of the present disclosure, a Nova-computer virtual machine management component in the cloud management platform OpenStack cloud management platform is responsible for managing and configuring virtual machines. The Driver (Nova-computer Driver) is provided by different virtualization Hypervisor vendors for interface and function adaptation of the virtualization layer. The Nova-Computer realizes the dispatching of KVM virtualized resources through the butt joint of Driver and Libvirt, namely the unified management of a plurality of super-fusion system cloud resources on the cloud and under the cloud is realized. In addition, the virtual machine is migrated across clouds based on the disk mirroring, memory replication and incremental replication technologies, and the service is not interrupted; and realizing service mixed cloud disaster tolerance based on a storage array asynchronous replication technology.
In the embodiment of the disclosure, the public cloud VPC deployment based on the super-fusion system adopts a deployment mode of integrating the super-fusion system into the public cloud VPC, the super-fusion system nodes in the public cloud are bare metal examples in the VPC of a tenant, and the super-fusion system nodes and cloud hosts in the public cloud VPC are in a flat position and need to be uniformly arranged and scheduled for the whole computing and network resources by a public cloud platform. The specific deployment mode mainly comprises the following 4 points:
(1) the service networking in the super-fusion system is autonomous, and the virtualized computing and storage resources are fully autonomous.
(2) The public cloud VPC is a virtual network used for user resource isolation, the bare metal service is a computing service with both virtual machine elasticity and physical machine performance in the public cloud, and the public cloud platform bare metal service provides a VPC network segment required by a super-fusion system to establish a super-fusion internal management network and a super-fusion internal business network. And a management network and service network resource pool created by the super-convergence system in the public cloud is controlled in the range of the network resource pool allocated by the public cloud platform.
(3) The service network of the Virtual machine in the super-convergence system in the public cloud needs to be bridged out of the super-convergence system, eXtensible Virtual local area network (VXLAN) protocol encapsulation is carried out on Leaf switches, and the rest are integrated into a network deployment framework of the public cloud platform.
Fig. 2 is a networking example of interconnection and interworking between a super-fusion system node and a cloud host and other cloud product networks in an embodiment of the present disclosure. The super-fusion cluster is composed of super-fusion system nodes, an internal management network 10.10.19.0/24 and an internal service network 10.10.20.0/24 of the super-fusion cluster belong to tenant virtual subnets in a public cloud VPC, and the tenant virtual subnets are connected to the VPC after being subjected to VxLAN encapsulation on a Leaf switch, so that interconnection and intercommunication of the super-fusion system nodes, namely the super-fusion physical server nodes, the cloud host and other cloud product networks are realized. By the method, the on-cloud super-fusion system and the public cloud platform are decoupled, and the deployment method can be suitable for a plurality of heterogeneous public cloud platforms.
(4) And a management network and a service network of a super-fusion cluster formed by super-fusion system nodes in the public cloud are marked with VLAN labels of a public cloud VPC, and a hybrid cloud network interconnection link is constructed through an SD-WAN cloud special line/IPSec VPN and a super-fusion system of a private cloud.
Fig. 3 is a flowchart illustrating steps of implementing hybrid cloud service migration in an embodiment of the present disclosure, in which a hybrid cloud deployment method based on a super-fusion system provided by the present disclosure is respectively deployed in a public cloud and a private cloud, and both the public cloud and the private cloud adopt a consistent super-fusion system architecture. The embodiment realizes the virtual machine hybrid cloud migration based on disk mirroring and memory copy increment copying technologies. Data transmission (disk mirror image and memory data) in the virtual machine migration process is data transmission based on hypervisor, namely data transmission is carried out through connection between Host computers.
Step 301, data of the full snapshot of the VM disk of the virtual machine on the source host is collected and copied to the target hyper-fusion system, and the VM with the same format is created in the target hyper-fusion system.
And step 302, acquiring incremental file block data generated by a source host VM of the source hyper-fusion system after full snapshot in real time.
And 303, creating a volume for a target VM of the target hyper-converged system, and writing the incremental file block data into the volume.
And step 304, monitoring incremental data generated in the latest period of the source host VM, and switching the service of the source host VM to the destination host VM if the incremental data is smaller than a preset threshold value.
For the migration of memory state of a VM, a mainstream pre-copy (pre-copy) strategy is employed. After the migration begins, the source host VM is still running and the destination host VM has not yet started. The migration sends the memory data of the source host VM to the destination host VM through one cycle. And circularly sending all the memory page data in the first round, and then sending dirty page memory dirty pages written by the VM in the previous round of pre-copying process in each round of circulation. And (4) until the time is mature, finishing the pre-copying circulation, entering a halt copying stage, suspending the source host and avoiding updating the memory. The dirty pages in the last round of the cycle are transferred to the destination host VM. The pre-copy mechanism greatly reduces the amount of memory data to be transmitted in the shutdown copy stage, thereby greatly reducing the shutdown time.
Fig. 4 is a flowchart illustrating implementation steps of a hybrid cloud service disaster recovery according to an embodiment of the present disclosure. In this embodiment, the hybrid cloud deployment method based on the super-fusion system provided by the present disclosure is deployed in the public cloud and the private cloud, and both the public cloud and the private cloud adopt a consistent super-fusion system architecture.
In the embodiment, the service hybrid cloud disaster recovery is realized through a storage array asynchronous replication technology on a storage layer. The method includes the steps that asynchronous remote copying between storage block devices (LUNs) with the same capacity and size on the cloud side is configured, the local cluster is used as a case, after a local main volume finishes write operation, a snapshot is created for the data volume, and then the snapshot is copied to a remote volume on the cloud side.
And on the service level, dividing the service virtual machines needing disaster recovery protection into the protection groups by defining the protection groups, and synchronizing the virtual machine configuration protected by the local production site to the cloud disaster recovery site in the disaster recovery process. For a service virtual machine needing disaster recovery protection, a local shared storage volume is initially mounted, when a local fault occurs, the super fusion platform detects that the service of the local virtual machine cannot be performed, the platform automatically creates a virtual machine with the same configuration on a cloud system, mounts a remote volume on the cloud, and starts the service virtual machine to realize service disaster recovery, and the asynchronous replication technology ensures the consistency of service data under the cloud and on the cloud and realizes the capacity of mixed cloud service disaster recovery.
Step 401, based on the service virtual machine, configuring storage block devices with the same capacity and size as those of the public cloud and the private cloud, and initially mounting a local shared storage volume for the service virtual machine under the cloud.
Step 402, configuring an asynchronous copying function of a storage volume to realize that after a local main volume finishes writing operation, creating a snapshot for the data volume, and then copying the snapshot to a remote volume of a public cloud.
And 403, when a local fault occurs, the super-fusion disaster recovery management module creates virtual machines with the same configuration on the cloud disaster recovery site.
And step 404, after the disaster recovery virtual machine is established, the disaster recovery management module mounts the public cloud remote volume to the service virtual machine, starts the service virtual machine and then performs data verification.
Fig. 5 is a schematic diagram illustrating unified management of hybrid cloud resources according to an embodiment of the present disclosure. In this embodiment, the hybrid cloud deployment method based on the super-fusion system provided by the present disclosure is deployed in the public cloud and the private cloud, and both the public cloud and the private cloud adopt a consistent super-fusion system architecture.
In the embodiment, a virtual machine is created in a hyper-converged system in a private cloud, an OpenStack cloud management platform is deployed, the OpenStack cloud management platform provides multi-tenant and computing, storage and network cloud service capabilities, a Nova-computer component in the OpenStack is responsible for managing and configuring the virtual machine, and a Driver (Nova-computer Driver) is provided by different virtualization Hypervisor manufacturers to perform interface and function adaptation of a virtualization layer.
The Nova-Computer based on the OpenStack is connected with the KVM through a Driver and Libvirt, common functions realized by a virtual machine monitoring program supported by the Libvirt provide a universal API, detailed monitoring conditions of virtual machine resources of a plurality of super fusion systems can be displayed on an OpenStack cloud management platform, and unified management of the cloud resources of the plurality of super fusion systems on the cloud is realized.
Based on the above embodiments, it can be known that the hybrid cloud deployment method based on the super-fusion system provided by the present disclosure constructs a consistent infrastructure of the super-fusion system in the private cloud and the public cloud VPC, and the software and hardware of the super-fusion cluster on the cloud and the super-fusion cluster under the cloud are isomorphic, thereby implementing a convenient management and operation and maintenance mode, and supporting hybrid cloud service migration, hybrid cloud service disaster tolerance and resource unified management capabilities, and being capable of meeting the complex requirements of resource unified management, service cross-cloud migration, disaster tolerance and cloud-edge collaboration in the mixed cloud scene of the enterprise user, and meanwhile, decoupling the super-fusion cluster system on the cloud and the heterogeneous public cloud platform, so that the hybrid cloud deployment method is applicable to various heterogeneous public cloud platforms.
The above description is only an example of the present disclosure and is not intended to limit the present disclosure. Various modifications and variations of this disclosure will be apparent to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present disclosure should be included in the protection scope of the present disclosure.

Claims (10)

1. A hybrid cloud deployment method based on a hyper-converged system is characterized by comprising the following steps:
deploying a private cloud based on a super-fusion system architecture, and deploying a cloud management platform in a virtual machine in a super-fusion system of the private cloud;
the VPC deployment method comprises the steps that a virtual private cloud VPC in a public cloud is deployed based on a super-fusion system architecture consistent with a private cloud, networking of the super-fusion system in the public cloud is controlled by a public cloud platform, and management, service and storage network resources of the super-fusion system are distributed for the VPC through the public cloud platform;
the public cloud and the private cloud are interconnected through a reliable network to realize a hybrid cloud;
a cloud management platform in the private cloud super-fusion system provides multi-tenant and computing, storage and network cloud service capabilities, and a virtual machine management assembly in the cloud management platform realizes unified management of cloud resources of a plurality of super-fusion systems in a public cloud and a private cloud through driving provided by different virtualization manufacturers.
2. The method of claim 1,
the reliable network interconnection mode between the public cloud and the private cloud is interconnection through IPSec VPN or a cloud special line; the IPSec VPN adopts an internet key exchange protocol (IKE) mode to establish an IPsec tunnel for protecting an IPv4 message, and the cloud dedicated line is deployed in a software-defined wide area network (SD-WAN) mode.
3. The method according to claim 1, wherein the manner for the virtual machine management component in the cloud management platform to implement unified management of cloud resources of multiple super-converged systems in the public cloud and the private cloud through the drive provided by different virtualization vendors is as follows:
the cloud management platform of the private cloud is an OpenStack cloud management platform, a Nova-Computer virtual machine management component in the OpenStack cloud management platform is responsible for managing and configuring virtual machines, and the Nova-Computer realizes the dispatching of KVM virtualization resources by driving a Driver to be in butt joint with Libvirt.
4. The method according to claim 1, wherein the method for deploying the VPC in the public cloud based on the super-converged system architecture consistent with the private cloud comprises:
deploying bare metal services adopting a super-fusion system architecture as super-fusion system nodes in a VPC of a tenant, enabling the super-fusion system nodes to be in a flat position with a cloud host in a public cloud VPC, and uniformly arranging and scheduling the whole computing and network resources by a public cloud platform;
a public cloud platform bare metal service provides a VPC network segment required by a super-fusion system, and a super-fusion internal management network and a super-fusion internal business network are established;
the service network of the virtual machine in the super-convergence system in the public cloud needs to be bridged out of the super-convergence system and encapsulated by an extensible virtual local area network VXLAN protocol to a Leaf switch;
and marking VLAN labels of the VPC of the public cloud on a management network and a service network of the super-convergence system node in the public cloud, and constructing a hybrid cloud network interconnection link through the super-convergence system of the reliable network and the private cloud.
5. The method according to claim 1, further comprising a step of implementing virtual machine hybrid cloud migration based on disk mirroring, memory replication, and incremental replication technologies, wherein data transmission during virtual machine migration is implemented based on hypervisor.
6. The method according to claim 1, further comprising a hybrid cloud service disaster recovery processing step of:
in a storage layer, asynchronous remote copying between storage block equipment LUNs with the same capacity and size is configured for a public cloud and a private cloud, and business mixed cloud disaster tolerance is realized through a storage array asynchronous copying technology;
and on the service level, dividing the service virtual machines needing disaster recovery protection into the protection groups by defining the protection groups, and synchronizing the virtual machine configuration protected by the local production site to the cloud disaster recovery site in the disaster recovery process.
7. A hybrid cloud based on a hyper-converged system, the hybrid cloud comprising:
the private cloud is deployed based on the super-fusion system architecture, and a cloud management platform is deployed in a virtual machine in the super-fusion system of the private cloud; a cloud management platform in the private cloud super-fusion system provides multi-tenant and computing, storage and network cloud service capabilities, and a virtual machine management component in the cloud management platform realizes unified management of cloud resources of a plurality of super-fusion systems in a public cloud and a private cloud through driving provided by different virtualization manufacturers;
the virtual private cloud VPC deployment method comprises the following steps that a public cloud adopts a super-fusion system architecture consistent with a private cloud to deploy virtual private cloud VPC in the public cloud, networking of a super-fusion system in the public cloud is controlled by a public cloud platform, and management, service and storage network resources of the super-fusion system are distributed for the VPC through the public cloud platform;
and the public cloud and the private cloud are interconnected through a reliable network to realize a hybrid cloud.
8. The hybrid cloud of claim 7,
the reliable network interconnection mode between the public cloud and the private cloud is interconnection through IPSec VPN or a cloud special line; the IPSec VPN adopts an internet key exchange protocol (IKE) mode to establish an IPsec tunnel for protecting an IPv4 message, and the cloud dedicated line is deployed in a software-defined wide area network (SD-WAN) mode.
9. The hybrid cloud of claim 7,
in the public cloud, bare metal services adopting a super-fusion system architecture are deployed in a VPC of a tenant to serve as super-fusion system nodes, the super-fusion system nodes and cloud hosts in the VPC of the public cloud are in a flat position, and a public cloud platform is used for uniformly arranging and scheduling the whole computing and network resources;
a public cloud platform bare metal service provides a VPC network segment required by a super-fusion system, and a super-fusion internal management network and a super-fusion internal business network are established;
the service network of the virtual machine in the super-convergence system in the public cloud needs to be bridged out of the super-convergence system and encapsulated by an extensible virtual local area network VXLAN protocol to a Leaf switch;
and marking VLAN labels of the VPC of the public cloud on a management network and a service network of the super-convergence system node in the public cloud, and constructing a hybrid cloud network interconnection link through the super-convergence system of the reliable network and the private cloud.
10. The hybrid cloud of claim 7,
the method comprises the steps that hybrid cloud migration of the virtual machine is achieved based on disk mirroring, memory copying and incremental copying technologies, and data transmission in the migration process of the virtual machine is achieved based on hypervisor;
in a storage layer, asynchronous remote copying between storage block equipment LUNs with the same capacity and size is configured for a public cloud and a private cloud, and business mixed cloud disaster tolerance is realized through a storage array asynchronous copying technology; and on the service level, dividing the service virtual machines needing disaster recovery protection into the protection groups by defining the protection groups, and synchronizing the virtual machine configuration protected by the local production site to the cloud disaster recovery site in the disaster recovery process.
CN202011033724.8A 2020-09-27 2020-09-27 Hybrid cloud based on super-fusion system and deployment method Active CN112311646B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011033724.8A CN112311646B (en) 2020-09-27 2020-09-27 Hybrid cloud based on super-fusion system and deployment method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011033724.8A CN112311646B (en) 2020-09-27 2020-09-27 Hybrid cloud based on super-fusion system and deployment method

Publications (2)

Publication Number Publication Date
CN112311646A CN112311646A (en) 2021-02-02
CN112311646B true CN112311646B (en) 2022-05-27

Family

ID=74488085

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011033724.8A Active CN112311646B (en) 2020-09-27 2020-09-27 Hybrid cloud based on super-fusion system and deployment method

Country Status (1)

Country Link
CN (1) CN112311646B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113093681A (en) * 2021-04-08 2021-07-09 四川远星橡胶有限责任公司 Control system and method based on super-fusion and server virtualization
CN114143274A (en) * 2021-11-16 2022-03-04 酒泉钢铁(集团)有限责任公司 Method for integrating enterprise hyper-integration architecture in traditional architecture cloud platform
CN114553574A (en) * 2022-02-28 2022-05-27 浪潮云信息技术股份公司 High-availability IPsecVPN implementation system based on cloud service platform
CN115242597B (en) * 2022-06-30 2024-03-22 北京百度网讯科技有限公司 Information processing method, apparatus and storage medium

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111371830A (en) * 2019-11-26 2020-07-03 航天科工网络信息发展有限公司 Intelligent cooperative cloud architecture based on data driving under ten thousand network fusion scene

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104902005A (en) * 2015-04-13 2015-09-09 中国联合网络通信集团有限公司 Method and system for resource scheduling in hybrid cloud, and private cloud
US10560345B2 (en) * 2017-02-21 2020-02-11 Dell Products L.P. Consistent placement between private and public cloud deployments of application services
US10693728B2 (en) * 2017-02-27 2020-06-23 Dell Products L.P. Storage isolation domains for converged infrastructure information handling systems
US10198284B2 (en) * 2017-03-21 2019-02-05 Dell Products L.P. Ensuring operational integrity and performance of deployed converged infrastructure information handling systems
CN107357660A (en) * 2017-07-06 2017-11-17 华为技术有限公司 The distribution method and device of a kind of virtual resource
CN111130975B (en) * 2018-11-01 2022-01-18 深信服科技股份有限公司 Hybrid cloud network intercommunication system and method
CN110932914B (en) * 2019-12-16 2023-04-07 深信服科技股份有限公司 Deployment method, deployment device, hybrid cloud system architecture and computer storage medium

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111371830A (en) * 2019-11-26 2020-07-03 航天科工网络信息发展有限公司 Intelligent cooperative cloud architecture based on data driving under ten thousand network fusion scene

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
"业界首部《混合云白皮书》发布 揭秘行业技术趋势";王熙;《通信世界》;20171205(第32期);全文 *

Also Published As

Publication number Publication date
CN112311646A (en) 2021-02-02

Similar Documents

Publication Publication Date Title
CN112311646B (en) Hybrid cloud based on super-fusion system and deployment method
US11687422B2 (en) Server clustering in a computing-on-demand system
US10740145B2 (en) Method and system for migration of virtual machines and virtual applications between cloud-computing facilities
US9189294B2 (en) Environment preserving cloud migration and management
US9747179B2 (en) Data management agent for selective storage re-caching
US9329894B2 (en) Method and apparatus for extending local area networks between clouds and permanently migrating virtual machines using static network addresses
US11848817B2 (en) Techniques for updating edge devices
US9430256B2 (en) Method and apparatus for migrating virtual machines between cloud computing facilities using multiple extended local virtual networks and static network addresses
CN102037452B (en) Distributed virtual switch for virtualized computer systems
EP3588296A1 (en) Dynamically scaled hyperconverged system
US7430616B2 (en) System and method for reducing user-application interactions to archivable form
US9710294B2 (en) Methods and apparatus for providing hypervisor level data services for server virtualization
WO2017092017A1 (en) Method, apparatus and system for migrating virtual machine backup information
JP4712279B2 (en) Method and apparatus for controlling extensible computing system
CN103095834B (en) The online moving method of a kind of virtual machine across Visualized data centre
US20150052523A1 (en) Method and system for migration of virtual machines and virtual applications between cloud-computing facilities through multiplexed secure tunnels
US20170293501A1 (en) Method and system that extends a private data center to encompass infrastructure allocated from a remote cloud-computing facility
US8539087B2 (en) System and method to define, visualize and manage a composite service group in a high-availability disaster recovery environment
US10649855B2 (en) Network configuration method to allow access to the backup and restores to Mtrees on a clustered backup appliance
CN103176831B (en) A kind of dummy machine system and management method thereof
CN112084007A (en) NAS storage upgrading method and device based on virtual machine technology
CN112035062B (en) Migration method of local storage of cloud computing, computer equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant