摘要:我也覺(jué)得非常帶勁兒,蛋是,我今天相信的才是正確答案,爾切,可以在又賤又容易的網(wǎng)絡(luò)中使用。工具管理這樣的事情在一個(gè)中和能夠發(fā)現(xiàn),爾切互相可以交談。這包括了,一個(gè)目錄這個(gè)目錄中的注冊(cè),爾切,能夠查和到目錄中的。因?yàn)椋谝粋€(gè)簡(jiǎn)單的,整體簡(jiǎn)化了。
糙譯,[Warning] 繼續(xù)閱讀可能會(huì)感到不適
人一生不可能踩到同一灘大便,故而,本文會(huì)持續(xù)修改。
Understanding Modern Service Discovery with Docker
Over the next few posts, I"m going to be exploring the concepts of service discovery in modern service-oriented architectures, specifically around Docker. Many people aren"t familiar with service discovery, so I have to start from the beginning. In this post I"m going to be explaining the problem and providing some historical context around solutions so far in this domain.
我要從頭開(kāi)始講講 service discovery, 并且要八卦一下歷史。
Ultimately, we"re trying to get Docker containers to easily communicate across hosts. This is seen by some as one of the next big challenges in the Docker ecosystem. Some are waiting for software-defined networking (SDN) to come and save the day. I"m also excited by SDN, but I believe that well executed service discovery is the right answer today, and will continue to be useful in a world with cheap and easy software networking.
最終,我們會(huì)做到:Docer containers 輕松跨主機(jī)交流。這是這 Docker 生態(tài)中被認(rèn)為是另一個(gè)大挑戰(zhàn)。一些觀點(diǎn)期盼 SDN 來(lái)實(shí)現(xiàn)這一功能。我也覺(jué)得 SDN 非常帶勁兒,蛋是,我今天相信 well excuted 的 service discovery 才是正確答案,爾切,可以在又賤又容易的網(wǎng)絡(luò)中使用。
What is service discovery?Service discovery tools manage how processes and services in a cluster can find and talk to one another. It involves a directory of services, registering services in that directory, and then being able to lookup and connect to services in that directory.
Service discovery 工具管理這樣的事情:在一個(gè) cluster 中 processes 和 services 能夠發(fā)現(xiàn),爾切 互相可以交談。這包括了,一個(gè)目錄 services , 這個(gè)目錄中的注冊(cè) services ,爾切,能夠查 lookup 和 connect 到目錄中的 services。
At its core, service discovery is about knowing when any process in the cluster is listening on a TCP or UDP port, and being able to look up and connect to that port by name.
這當(dāng)中的核心問(wèn)題是,service discovery 知道 何時(shí) cluster 中的 任意 process 在監(jiān)聽(tīng) TCP 和 UDP 端口,能夠根據(jù)name 查找,鏈接到端口。
Service discovery is a general idea, not specific to Docker, but is increasingly gaining mindshare in mainstream system architecture. Traditionally associated with zero-configuration networking, its more modern use can be summarized as facilitating connections to dynamic, sometimes ephemeral services.
Service discover 是一個(gè) general 的 idea,并不針對(duì) Docker, 蛋是,她開(kāi)始成為主流的系統(tǒng) architecture。傳統(tǒng)的體系是關(guān)于 零配置網(wǎng)絡(luò),更現(xiàn)代的用途是能夠 summarized as facilitating connections to dynamic, 有時(shí)是一些短暫的 services。
This is particularly relevant today not just because of service-oriented architecture and microservices, but our increasingly dynamic compute environments to support these architectures. Already dynamic VM-based platforms like EC2 are slowly giving way to even more dynamic higher-level compute frameworks like Mesos. Docker is only contributing to this trend.
Name Resolution and DNSYou might think, "Looking up by name? Sounds like DNS." Yes, name resolution is a big part of service discovery, but DNS alone is insufficient for a number of reasons.
你也許會(huì)想,“以 name 發(fā)現(xiàn),類(lèi)似 DNS” 是的,name resolution 是 service discovery 的一大塊內(nèi)容,蛋是 DNS 多帶帶是不夠的。
A key reason is that DNS was originally not optimized for closed systems with real-time changes in name resolution. You can get away with setting TTL"s to 0 in a closed environment, but this also means you need to serve and manage your own internal DNS. What highly available DNS datastore will you use? What creates and destroys DNS records for your services? Are you prepared for the archaic world of DNS RFCs and server implementations?
一個(gè)關(guān)鍵的原因:DNS 不是針對(duì) 封閉的實(shí)時(shí)改變的系統(tǒng) 而原生優(yōu)化的??梢哉{(diào)整 TTL 到0,獲得封閉的環(huán)境,蛋是,這意味著需要設(shè)定自己的內(nèi)部 DNS。這里存在三個(gè)棘手問(wèn)題。。。
Actually, one of the biggest drawbacks of DNS for service discovery is that DNS was designed for a world in which we used standard ports for our services. HTTP is on port 80, SSH is on port 22, and so on. In that world, all you need is the IP of the host for the service, which is what an A record gives you. Today, even with private NATs and in some cases with IPv6, our services will listen on completely non-standard, sometimes random ports. Especially with Docker, we have many applications running on the same host.
事實(shí)上,DNS 解決 service discovery 一個(gè)最大的 drawbacks 是 她本身是為 現(xiàn)實(shí)世界 而設(shè)計(jì)的,她使用標(biāo)準(zhǔn) ports 來(lái)提供服務(wù)。。。。。。。。。針對(duì) Docker,有很多 application 運(yùn)行在同一個(gè) host 中。
You may be familiar with SRV records, or "service" records, which were designed to address this problem by providing the port as well as the IP in query responses. At least in terms of a data model, this brings DNS closer to addressing modern service discovery.
Unfortunately, SRV records alone are basically dead on arrival. Have you ever used a library or API to create a socket connection that didn"t ask for the port? Where do you tell it to do an SRV record lookup? You don"t. You can"t. It"s too late. Either software explicitly supports SRV records, or DNS is effectively just a tool for resolving names to host IPs.
Despite all this, DNS is still a marvel of engineering, and even SRV records will be useful to us yet. But for all these reasons, on top of the demands of building distributed systems, most large tech companies went down a different path.
Rise of the Lock ServiceIn 2006, Google released a paper describing Chubby, their distributed lock service. It implemented distributed consensus based on Paxos to provide a consistent, partition-tolerant (CP in CAP theorem) key-value store that could be used for coordinating leader elections, resource locking, and reliable low-volume storage. They began to use this for internal name resolution instead of DNS.
2006年 Google 發(fā)布了一片 paper 描述了 Chubby,分布式 lock service。
Eventually, the paper inspired an open source equivalent of Chubby called Zookeeper that spun out of the Hadoop Apache project. This became the de facto standard lock server in the open source world, mainly because there were no alternatives with the same properties of high availability and reliability over performance. The Paxos consensus algorithm was also non-trivial to implement.
最終,這片 paper 激發(fā)了與 Chubby 等價(jià)的 從 Hadoop Apache 項(xiàng)目 分離出來(lái)的 Zookeeper。她成為了開(kāi)源世界中 lock server 的事實(shí)上的標(biāo)準(zhǔn),主要因?yàn)椋o(wú)同樣高可用和可靠的替代品。 Paxos consensus 算法也一樣。
Zookeeper provides similar semantics as Chubby for coordinating distributed systems, and being a consistent and highly available key-value store makes it an ideal cluster configuration store and directory of services. It"s become a dependency to many major projects that require distributed coordination, including Hadoop, Storm, Mesos, Kafka, and others. Not surprisingly, it"s used in mostly other Apache projects, often deployed in larger tech companies. It is quite heavyweight and not terribly accessible to "everyday" developers.
Zookeeper 提供了與 Chubby 相似的語(yǔ)義,用來(lái)協(xié)調(diào)分布式系統(tǒng),作為一個(gè) consistent and highly available 的 key-value 存儲(chǔ),使其成為理想的 cluster 配置存儲(chǔ)服務(wù)和目錄服務(wù)。她成為了很多需要 distributed coordination 項(xiàng)目的主要依賴(lài)部件, 包括 Hadoop, Storm, Mesos, Kafka, and others。毫不奇怪,用于其他的 Apache 項(xiàng)目,經(jīng)常不屬于大型技術(shù)公司。她是一名超重量級(jí)選手, not terribly accessible to "everyday" developers.
About a year ago, a simpler alternative to the Paxos algorithm was published called Raft. This set the stage for a real Zookeeper alternative and, sure enough, etcd was soon introduced by CoreOS. Besides being based on a simpler consensus algorithm, etcd is overall simpler. It"s written in Go and lets you use HTTP to interact with it. I was extremely excited by etcd and used it in the initial architecture for Flynn.
大約一年之前,發(fā)布了一個(gè)叫做 Raft 的算法,這是一個(gè)相似并且可以替代 Paxos 算法的算法。她被作為階段性的 真正的 Zookeeper 的 alternative,十分確定的是,etcd 很快引入 CoreOS。因?yàn)?,基于一個(gè)簡(jiǎn)單的 consensus algorithm,etc 整體簡(jiǎn)化了。用 Go 編寫(xiě),使用 HTTP 進(jìn)行交互。etcd讓我他媽了個(gè)逼的嫉妒興奮,我用它初始化 Flynn 的架構(gòu)。
Today there"s also Consul by Hashicorp, which builds on the ideas of etcd. I specifically explore Consul and lock servers more in my next post.
而今,有了 Hashiicorp 的 Consul,基于 etcd 的想法構(gòu)建。我在下面,特別探索了 Consul 和 lock servers。
Service Discovery SolutionsBoth Consul and etcd advertise themselves as service discovery solutions. Unfortunately, that"s not entirely true. They"re great service directories. But this is just part of a service discovery solution. So what"s missing?
We"re missing exactly how to get all our software, whether custom services or off-the-shelf software, to integrate with and use the service directory. This is particularly interesting to the Docker community, which ideally has portable solutions for anything that can run in a container.
A comprehensive solution to service discovery will have three legs:
A consistent (ideally), highly available service directory
A mechanism to register services and monitor service health
A mechanism to lookup and connect to services
We"ve got good technology for the first leg, but the remaining legs, despite how they sound, aren"t exactly trivial. Especially when ideally you want them to be automatic and "non-invasive." In other words, they work with non-cooperating software, not designed for a service discovery system. Luckily, Docker has both increased the demand for these properties and makes them easier to solve.
In a world where you have lots of services coming and going across many hosts, service discovery is extremely valuable, if not necessary. Even in smaller systems, a solid service discovery system should reduce the effort in configuring and connecting services together to nearly nothing. Adding the responsibility of service discovery to configuration management tools, or using a centralized message queue for everything are all-to-common alternatives that we know just don"t scale.
My goal with these posts is to help you understand and arrive at a good idea of what a service discovery system should actually encompass. The next few posts will take a deeper look at each of the above mentioned legs, touching on various approaches, and ultimately explaining what I ended up doing for my soon-to-be-released project, Consulate.
文章版權(quán)歸作者所有,未經(jīng)允許請(qǐng)勿轉(zhuǎn)載,若此文章存在違規(guī)行為,您可以聯(lián)系管理員刪除。
轉(zhuǎn)載請(qǐng)注明本文地址:http://systransis.cn/yun/26365.html
摘要:綜上所述,為使傳統(tǒng)應(yīng)用程序容器化,有以下幾種路徑擴(kuò)展重構(gòu)或者重建。在中運(yùn)行應(yīng)用程序的最大障礙之一是臨時(shí)文件系統(tǒng)。大體來(lái)說(shuō),利用容器技術(shù)實(shí)現(xiàn)傳統(tǒng)應(yīng)用程序的現(xiàn)代化并沒(méi)有硬性規(guī)則。 技術(shù)領(lǐng)域是不斷變化的,因此,任何應(yīng)用程序都可能在很短時(shí)間內(nèi)面臨過(guò)時(shí)甚至淘汰,更新?lián)Q代的速度之快給人的感覺(jué)越來(lái)越強(qiáng)烈,我們?nèi)绾问箓鹘y(tǒng)應(yīng)用程序保持活力不落伍?工程師想的可能是從頭開(kāi)始重建傳統(tǒng)應(yīng)用程序,這與公司的業(yè)務(wù)目...
摘要:今天小數(shù)給大家?guī)?lái)一篇技術(shù)正能量滿(mǎn)滿(mǎn)的分享來(lái)自社區(qū)線上群分享的實(shí)錄,分享嘉賓是數(shù)人云肖德時(shí)。第二級(jí)調(diào)度由被稱(chēng)作的組件組成。它們是最小的部署單元,由統(tǒng)一創(chuàng)建調(diào)度管理。 今天小數(shù)給大家?guī)?lái)一篇技術(shù)正能量滿(mǎn)滿(mǎn)的分享——來(lái)自KVM社區(qū)線上群分享的實(shí)錄,分享嘉賓是數(shù)人云CTO肖德時(shí)。 嘉賓介紹: 肖德時(shí),數(shù)人云CTO 十五年計(jì)算機(jī)行業(yè)從業(yè)經(jīng)驗(yàn),曾為紅帽 Engineering Service ...
摘要:本人的學(xué)習(xí)筆記,主要是對(duì)我的第一本書(shū)從入門(mén)到實(shí)踐的學(xué)習(xí)記錄,并結(jié)合其他各種資源的學(xué)習(xí),歡迎大牛們指點(diǎn)。最新的容器引入了容器如,容器不再僅僅是一個(gè)單純的運(yùn)行環(huán)境。鏡像是基于聯(lián)合文件系統(tǒng)的一種層式的結(jié)構(gòu),由一系列指令一步步構(gòu)建處理。 本人的學(xué)習(xí)筆記,主要是對(duì)《我的第一本Docker書(shū)》、《Docker —— 從入門(mén)到實(shí)踐》的學(xué)習(xí)記錄,并結(jié)合其他各種資源的學(xué)習(xí),歡迎大牛們指點(diǎn)。 容器簡(jiǎn)介 ...
Tr?fik 是什么? Tr?fik 是一個(gè)為了讓部署微服務(wù)更加便捷而誕生的現(xiàn)代HTTP反向代理、負(fù)載均衡工具。它支持多種后臺(tái) (Rancher、Docker、Swarm、Kubernetes、Marathon、Mesos、Consul、Etcd、Zookeeper、BoltDB、Rest API、file…) 來(lái)自動(dòng)、動(dòng)態(tài)的刷新配置文件,以實(shí)現(xiàn)快速地服務(wù)發(fā)現(xiàn)。 showImg(https://s...
摘要:本文簡(jiǎn)單介紹是什么,為什么用,怎么用。技術(shù)棧是什么是一個(gè)開(kāi)發(fā)平臺(tái),用于生成,開(kāi)發(fā),部署和。實(shí)現(xiàn)需定制化源碼。 本文簡(jiǎn)單介紹Jhipster是什么,為什么用Jhipster,怎么用Jhipster。 WHAT - 技術(shù)棧 JHipster是什么 JHipster是一個(gè)開(kāi)發(fā)平臺(tái),用于生成,開(kāi)發(fā),部署Spring Boot + Angular/React Web Application和Sp...
閱讀 898·2023-04-26 03:03
閱讀 2221·2021-10-12 10:12
閱讀 1214·2021-09-24 09:48
閱讀 1664·2021-09-22 15:25
閱讀 3345·2021-09-22 15:15
閱讀 934·2019-08-29 16:21
閱讀 1076·2019-08-28 18:00
閱讀 3438·2019-08-26 13:44