Cloud Native
Jump to navigation
Jump to search
DAT
Object: Create a cloud native framework
ARCHITECTURE (macro)
- https://wikitech.wikimedia.org/wiki/DNS?wprov=srpw1_0 or https://blogs.mulesoft.com/dev-guides/how-to-tutorials/multi-region-deployments-on-eks/
- https://cloud.redhat.com/blog/deploying-openshift-applications-multiple-datacenters
- https://mariadb.com/kb/en/what-is-mariadb-galera-cluster/ or https://cassandra.apache.org/_/index.html
- https://blog.min.io/minio-multi-site-active-active-replication/
DIAGRAM
GDNSD+ISTIO (network) > OPENSHIFT (compute) > MINIO (storage)
INFO : GDNSD is in use for wikipedia.org (https://wikitech.wikimedia.org/wiki/Wikimedia_infrastructure)
SECURITY
- LOSS PROTECTION : MINIO(storage geo-replication)
- THEFT PROTECTION : OPENSHIFT(isolation), MINIO(storage encryption)
- INTEGRITY : MINIO(storage checksum)
- AVAILABILITY : 2 regions, OPENSHIFT(3 zones)+HAPROXY+KEEPALIVED(compute availibity), MINIO(storage availibity), GDNSD+GdnsdPluginGeoip+gdnsd-plugin-http_status(geo-availibity)
- SCALABILITY : OPENSHIFT(compute scalability), MINIO(storage scalability)
LOSS PROTECTION TEST
- shudown 1 storage node : data is still available
THEFT PROTECTION TEST
- create a pod on new namespace : data from other namespaces is not accessible
- access a blockdevice from storage : data is unreadable
AVAILABILITY TEST
- shutdown 1 region : sites are availables
SCALABILITY TEST
- increase the workload of an installed application with the HorizontalPodAutoscaler parameter : new pods are created
- add compute node : compute is increased
- add storage node : storage is increased
backup/restore
backup
- IBM copyright
- https://docs.openshift.com/container-platform/4.9/backup_and_restore/control_plane_backup_and_restore/backing-up-etcd.html
oc debug node/<master_node> chroot /host /usr/local/bin/cluster-backup.sh /home/core/assets/backup