"Container lecturer" cloud Mao Wenbo: Network Virtualization and SDN implementation Docker connectivity

October 18, 2014,csdn& "programmer" sponsored by the 2014 Container Technical Conference (Container conference 2014) will be held in Beijing, domestic and foreign Container technicians and business practice users will be in Beijing for the first time. Container technical experts and first-line developers of Docker, Google Kubernetes, VMware, CoreOS, domestic internet companies and start-up technology teams will share their container project experience and best practices in the production environment.

We especially invite the CEO of Mao Wenbo Cloud Company. He will do in the 2014 container Technical conference is entitled "For cloud Services connectivity docker-with network virtualization and SDN technology to achieve efficient cloud resource intensive" sharing. Before the meeting, we specifically interviewed Mao Wenbo to help us better understand the content of the subject. In addition, in order to enhance the interaction between lecturers and participants, to enhance the interaction between participants and to better organize the topic, we have established a container micro-letter discussion group, inviting only ticket users and conference lecturers. [Click to enroll, more than 3 people can enjoy the preferential price] [Please pay attention to telephone notice]

Mao Wenbo, member of China Electronic Society cloud Computing Experts Committee, member of China Communication Society cloud computing Expert Committee, founded Tao Yun Company, has worked for many years in HP, EMC Company, HP China Laboratory chief engineer, EMC China Center for Excellence in research, and other positions, with monographs "Modern cryptography, Theory and Practice "(Xiandai cryptography, Germ and Practice, Prentice-hall, 2003).

Topic: Connecting docker-for cloud services using Network Virtualization and SDN technology to achieve efficient cloud resource intensive

Brief introduction: Lightweight connected Docker network can make full use of the advantage of efficient CPU virtualization released by container technology, bring large-scale scalability to public cloud service and build distributed large-scale data processing system (such as MapReduce), and greatly reduce cost space. The Google kubernetes/networking project and the Weave project have recently released the Connectivity Docker Network technology: for tenant/Project I constructs X.Y.I/24 subnet broadcast domain can connect the container in the broadcast domain on the same host, and application of the packet can further connect the tenant/ The project spans different host containers. Intranet broadcast + cross-Net packet = Use a physical device-such as a X.Y.I/24 subnet router implemented in a container-to weave a network carefully. Unfortunately, the physical device is trapped by its own network of host hosts, and its weaving network is a physical, highly efficient CPU virtualization that does not have dynamic scalability to efficiently exploit containers. Network virtualization technology can be any physical distribution, even across the WAN distribution of containers, seamless construction of arbitrary topology overlay Network, while the control/forwarding plane separation of SDN technology is no longer higher cost "broadcast to find" the way, can efficiently and accurately overlay network connectivity to a given container cluster. This presentation will also discuss how to make the Sdn control range small so that the cloud infrastructure can be managed and distributed in a way that helps stabilize the operation of the system.

CSDN: What attracts you to delve into container (docker) technology?

Mao Wenbo: Cool.

CSDN: What are some of the problems container (Docker) have a unique advantage?

Mao Wenbo: First of all, container CPU virtualization is another great technological advance in hypervisor CPU virtualization, which increases the efficiency of virtualization (order of magnitude). It is certainly a huge advantage to reduce resource usage costs and increase resource utilization = increase productivity.

Second, simplify the software system release, delivery, continuous software system integration: a complex distributed software system (such as large data analysis system, MapReduce) contains many parts, vertically dependent on the different layers of the software stack, distributed horizontally in the front and back of the system services. Docker effectively utilizes the Multi-layer unified package of AUFS file system to implement streamlined unified encapsulation into Docker mirroring integrated delivery for complex systems, thus simplifying the complexity of system release, delivery and continuous integration.

CSDN: What is the biggest difficulty of enterprise application container at present?

Mao Wenbo: At present, Docker network across host is not, the public know connectivity technology belong to the intranet "broadcast to find" (the same host), across the host is the use of packet connectivity, physical network technology, from the cloud network virtualization flexibility and SDN dynamic programmable requirements FAR, The connected Docker network does not have the flexibility of dynamic scale and the programmability necessary to provide services, and can not take full advantage of the resource efficiency improvement released by container as efficient CPU virtualization technology. In addition, because the container's CPU virtualization efficiency also causes network communication identity, mainly MAC address, capacity of large-scale upgrade, physical network technology "broadcast to find" practice will make network equipment, mainly cabinet top switch (torswitch) and edge switch overwhelmed. The known connected Docker technology has not been considered, and therefore does not address the new problems of uncontrolled expansion of the MAC address explosion broadcast domain. Some people may say: "Not afraid, buy high-end Tor on the line, offload edge traffic to the big high Tor to do SDN connectivity." This idea probably applies to the size of the virtual machine network, there is no effective offload container network traffic to the Tor solution, even if one day someone finally found the efficient technology offload container traffic to the Tor to connect, so in order to connect Docker need to buy tall Tor, Then the increase in CPU virtualization productivity of the container is not being sucked away by expensive, tall Tor, what do I need a container for?

So I think high cost non-streamlined non-SDN programmable container Connectivity obstacle is the main bottleneck of enterprise application container technology at present.

CSDN: According to your understanding, what is the current situation of container development?

Mao Wenbo: From improving the efficiency of CPU virtualization, simplifying the software delivery perspective, container technology development is very healthy. As long as there are problems, there are more solutions than problems.

CSDN: What do you think are the open source projects or startups that surround Docker or container technology?

Mao Wenbo: The lightweight low-cost CPUs brought by Docker provide a docking for mobile internet start-ups and provide a large number of low-cost CPUs and streamlined system connectivity deployment systems for distributed large data analysis. I believe that these can be a strong incentive and encourage entrepreneurship, not only greatly reduce the cost of entrepreneurship, and the ubiquitous scale connected CPU cluster formed by the collective intelligence will further stimulate innovative ideas, forming many new application scenarios. There will be a lot of open source projects associated with it.

CSDN: Would you like to talk about the topic you are about to share at this conference?

Mao Wenbo: Cloud Network Virtualization, SDN Cloud Network, cloud Management system distribution and partition. Speaking of cloud IaaS service management and control, we need to distinguish two different concepts: (1) cloud Business resources (CPU, memory, disk, tenant identity management, etc.) control, (2) Cloud Network SDN control. The former belongs to the concept of infrastructure orchestration, such as the management of an organization, while the latter belongs to the Network Sdn control plane concept, such as public traffic security aspects "something to find the police" in the statement of the police. The network switch router belongs to the condominium component of the two controllers in the cloud IaaS system. How to let these two controllers orderly division of labor "Non-interference in the internal affairs", for the cloud infrastructure Orchestration apart Distribution division = The cloud services to do stability, I think is a very good thing. I will share with you the experience and solution practices of the company in exploring the small distributed division of cloud IaaS systems.

CSDN: Which listeners should know these topics best? What topics can you share to help your audience solve problems?

Mao Wenbo: or a technical person interested in cloud network issues. What I want to introduce is just opinion, from the Tao Cloud in trying to provide the public cloud services in the face of the system scale expansion brought about by the problem of operational stability. Cloud computing has many new problems, CSDN provides a knowledge-sharing platform that will benefit all practitioners, ultimately users.

More questions, Dr. Mao Wenbo in the csdn Docker community to answer questions online for you, click on the question immediately.

A new ecology is rapidly forming. This time we are in sync with the world. October 18 2014 Container Technical Conference (Container conference 2014) held in Beijing Zhongguancun Software Park. We are trying to cover the whole ecology of Docker, and we are going to invite a number of lecturers to speak it through and provide practical help to developers who are interested in innovating in Docker technology.

Series of interview articles:

Docker Best Practices! 2014 Container Technical Conference

Docker will participate in the First China Container Technical Conference (the first issues announced) for the 40 million dollar C round financing.

Google kubernetes exclusive interview: The future bigtable development is only after-school exercises

"Lecturer" beijing-based: Application and evolution of container technology in cloud foundry

If you need more information about Docker or technical documentation to access the Docker technology community, if you have more questions, please put it in the Dcoker Technical Forum and we will invite experts to answer. Purchase tickets and other issues can be consulted QQ group: 303806405.

Container Technical daily public account has been opened, welcome attention!