Kubesphere is one of the few open source projects in China and widely recognized abroad. In a recent communication, Zhou Xiaosi, R & D director of Qingyun qingcloud application and container platform, said that according to GitHub data, in the past six months, kubespheres overseas users reached 58%, surpassing domestic users. Kubesphere has become an international open source project.

Kubesphere is an open source container cloud platform officially certified by CNCF. It is the only known kubernetes distribution in China. With it, users can manage the IT stack from hardware resources to application layer; with it, users can develop, manage and operate a large number of container applications, migrate application loads, carry out Devops, develop microservices, and enjoy the beauty of cloud.

Kubesphere was officially released in 2018. Version 2.0 was released in April 2019. On June 30, 2020, kubesphere finally ushered in another major update. Kubesphere version 3.0 added multi cluster management to facilitate container based hybrid cloud management. In addition, ecological support also made new progress.

New feature 1: multi cluster management function opens container hybrid cloud Era

Hybrid cloud is the trend of the times. As a pioneer in the field of hybrid cloud, Qingyun qingcloud saw the direction of hybrid cloud as early as 2014. Zhou Xiaosi, R & D director of Qingyun qingcloud application and container platform, said that hybrid cloud is transforming from resource-based management to application-oriented management.

The important technical driving force behind this transformation is container, and kubesphere itself is a container platform focusing on cloud native application management. Zhou Xiaosi introduced that kubesphere 3.0 solves the application level demands brought about by the normalization of hybrid cloud, and enables enterprises to quickly enter the cloud native era.

From the perspective of functional positioning, one of the highlights of kubesphere 3.0 is its real support for container hybrid cloud.

Because kubesphere 3.0 provides multi cluster management function. In addition to literally adding and deleting clusters, it also supports multi cluster management at the application level. Applications can be deployed across clusters and selected to be deployed on a certain cluster.

Yu Shuang, product manager of kubesphere container platform, said that kubespheres multi cluster management supports solo and federated cluster management methods. Solo refers to centralized control of independent kubernetes clusters; federation mode is to aggregate multiple kubernetes clusters to form a kubernetes resource pool, and build high availability across zones and clusters on its upper layer.

New feature 2: the observability ability is understandable to all

Observability is a professional term in kubernetes ecology, including monitoring, logging, link tracking, alarm, notification and other aspects. However, it is not difficult to find that these are all for operation and maintenance personnel. With a large number of business migrating to kubernetes, a large number of business personnel are also using this platform. How can we provide services from the perspective of business personnel, so that business personnel can understand and understand Can you use it?

For this reason, kubesphere 3.0 is compatible with Prometheus, which has become a de facto standard monitoring framework. Existing applications can be seamlessly connected to kubesphere as long as monitoring indicators are exposed based on Prometheus. If there is no development based on Prometheus, Prometheus exporter can also be used to expose the monitoring indicators of developed applications.

We can see that as a technology architecture platform, kubesphere has been integrated with business as much as possible, which breaks through the authors cognition of an infrastructure architecture and highlights the unique value of container cloud platform.

New feature 3: strengthen security capability to make enterprises feel more secure

Kubesphere 3.0 strengthens security in two aspects: one is to support financial users to do audit, and the system can record when, who has done the operation, what has been operated, what has happened, etc.

Another enhancement mainly lies in the network security isolation feature. The original kubernetes has a concept of namespace, but it does not consider network security isolation. Applications between different tenants can access each other, which is unacceptable to enterprise users. Especially those large enterprises which have strict requirements for security and audit need strong isolation.

On the one hand, kubesphere 3.0 retains the original feature that tenants can access each other. On the other hand, it adds the tenant network security policy management. Users can configure the access policy by themselves to configure whether the services under a certain tenant can provide external access, or which tenants can access the service. This security strategy is in line with the demands of many large enterprises, especially financial enterprises.

The functional characteristics have been basically formed, and we need to improve the ecology

In terms of ecology, kubesphere will keep as open and compatible as possible. At present, kubesphere supports various mainstream cloud platforms as well as similar container platforms, including rancher and openshift.

Kubekey is a new installation method of kubesphere 3.0. With it, users can deploy kubernetes and kubesphere with one click, which means better integration with partner solutions.

As a pure software solution, kubesphere can be deployed on these existing kubernetes platforms seamlessly for clusters that have already deployed k8s. Because kubesphere is used, it will not need to be migrated or transformed. It can well protect the existing business assets of users, and will not have any impact on the business.

The openness of kubesphere itself also fundamentally isolates the binding problem. Kubesphere supports community standards, and all components can be docked to this platform as long as they follow the community standards. For example, users can connect all applications compatible with Prometheus exporter standard, support the application packaging method compatible with helmv3, and support the openpolicyagent standard. Conversely, components that can run on kubesphere can also run on all platforms compatible with community standards.

Enterprise oriented open source container platform

Qingyun qingcloud starts from public cloud, and then develops enterprise level products and services based on distributed storage and hyper integration. It has accumulated technology and experience of public cloud and private cloud, which will also be reflected in kubesphere. Kubesphere has rich enterprise features, which can better meet the needs of enterprises and the status quo of it.

At present, users from all walks of life are using kubesphere in the production environment. Lets take a brief look at these two cases.

A domestic head city commercial bank often completes business development and operation and maintenance through outsourcing teams. These outsourcing teams come from multiple outsourcing companies. Each outsourcing team has its own development habits and architecture, using different development project management tools. This has brought a great burden on the bank as a manager, and has an impact on risk control and reliability.

Kubesphere provides platform management, built-in Devops and other functions, which provide an overall solution for the credit card center of commercial banks in the city. Through business carding, optimizing code version management, the development and testing efficiency is improved, and the outsourcing companies that do their own business are gathered and managed through a unified platform.

Similar to red hats business logic, Qingyun qingcloud will also provide business services based on kubesphere while doing open source. In the Credit Card Center project of commercial banks in the city, Qingyuns product team, service team and pre-sales solution team work together to help users sort out their business, which greatly improves the efficiency of business construction of the bank.

An Internet start-up company is kubeshpere community users. They mainly provide services to accelerate the development of small programs. They can build small programs by dragging and dropping. As a start-up company, the companys personnel are very limited, and the construction and operation and maintenance of a kubernetes platform requires a large number of professional and technical personnel. In fact, the cost is very high. For a start-up company, a good container platform is a wise choice.

Part of the Internet companys business is on AWS and some is on Qingyun qingcloud, which is a typical hybrid multi Cloud Architecture. The company uses the Devops and microservices functions in kubesphere to manage different businesses in different clusters. For example, it places the test business in QKE, the development business on AWS, and manages the business through a set of kubesphere platforms. Through the use of user-defined development image, code direct image and other features to improve the efficiency of business development.

Initial experience

The threshold for using kubesphere is low. Its installation process is very simple. Kubesphere provides a graphical management method. Even Xiaobai, who knows nothing about the container platform, can easily install and deploy an application under the guidance of development documents, so as to be familiar with various key concepts of the entire container platform, and greatly reduce the threshold to start. Its like the first time you use windows, IOS, or Android to install a software, and youll become familiar with an operating system. Kubesphere greatly reduces the entry threshold of kubernetes and is an ideal novice village instructor of kubernetes. It can greatly reduce the difficulty of using kubernetes. Users can understand the whole kubernetes system and the main concepts and characteristics of kubernetes by referring to kubesphere. Of course, kubernetes can also be understood against the design of kubesphere. Interested friends can do their own testing, and install the experience on the local virtual machine. Refer to the document for some basic experience.

