Azure中的Nutanix网络 - HybridCloud

5个月前
2021年11月2日
0答复
363意见

UserLevel 4

+19

dlink7
主持人
87个答复

Nutanix对裸金属的支持越来越接近。请查看一些用于Azure网络的基础组件。

NCM（Azure上的Nutanix群集）利用流网络来创建Azure中的覆盖网络，以简化Nutanix管理员的管理，并减少跨云供应商的网络限制。流网络用于通过创建覆盖虚拟网络来抽象Azure本机网络。一方面，这在Azure中抽象了基础网络，同时，它允许网络基板（及其相关的功能和功能）与客户的本地Nutanix部署一致。

您将能够在Nutanix，任何地址范围内的子网中创建新的虚拟网络（称为虚拟私有云或VPCS），包括RFC1918（私有）地址空间的范围，并定义DHCP，NAT，路由和安全策略，直接熟悉的棱镜中央界面。

流网络可以通过提供抽象层掩盖或减少云约束。例如，Azure仅允许每个VNET授予一个委派的子网。子网委托使您可以为您选择的Azure PAAS服务指定需要注入虚拟网络的Azure PaaS服务。NCM需要一个委派给Microsoft.baremetal/azurehostservice的管理子网。

将子网委派给Baremetal服务后，群集门户将能够使用该子网部署Nutanix群集。AzurehostedService是簇门户在裸机节点上部署和配置网络的用途。

用户本机VM网络使用的每个子网也需要委派给同一服务。由于VNET只能委派子网，因此网络配置将失控，需要彼此相处以允许通信。通过流动网络，我们可以大大减少允许在群集和Azure上运行的工作负载所需的VNET量。流网络将使您能够创建仅消耗1个Azure VNET的500多个子网。

部署后，Prism Central（PC）将部署到Nutanix群集上。Prism Central包含用于流网络的控制平面。PC的子网将委派给Microsoft.baremetal/azurehosteredservice，因此本机Azure网络可用于为PC分发IPS。部署PC后，流网路将部署到本机Azure子网中。流网关允许使用流VPC（S）的用户VMS与本机Azure服务通信，并允许VM与本机Azure VM具有均衡；如：

用户定义的路由 - 您可以创建自定义或用户定义的（静态），Azure中的路由以覆盖Azure的默认系统路由，或在子网路由表中添加其他路由。在Azure中，您可以创建一个路由表，然后将路由表与零或更多虚拟网络子网相关联。
负载均衡器部署 - UVM提供的前端服务的能力。
网络安全组：编写状态防火墙政策的能力。

希望这给您足够的能力让您思考。请问任何问题进行测试驱动器为自己。

\u00a0<\/h1>

Nutanix\u2019s support for bare-metal is getting close. Please take a look at some of the foundational components for networking in Azure.

NCM (Nutanix Clusters on Azure)\u00a0utilizes Flow Networking to create an overlay network in Azure to ease administration for Nutanix administrators and reduce networking constraints across Cloud vendors.\u00a0 Flow Networking is used to abstract the Azure native network by creating overlay virtual networks. On the one hand this abstracts the underlying network in Azure, while at the same time, it allows the network substrate (and its associated features and functionalities) to be consistent with the customer\u2019s on-premise Nutanix deployments.<\/p>

You will be able to create new virtual networks (called Virtual Private Clouds or VPCs) within Nutanix, subnets in any address range, including those from the RFC1918 (private) address space and define DHCP, NAT, routing, and security policy right from the familiar Prism Central interface.<\/p>

Flow networking can mask or reduce Cloud constraints by providing an abstraction layer. As an example, Azure only allows for one delegated subnet per VNET. Subnet delegation enables you to designate a specific subnet for an Azure PaaS service of your choice that needs to be injected into your virtual network. NCM needs a management subnet delegated to the Microsoft.BareMetal\/AzureHostedService . \u00a0<\/p>

Once your subnet is delegated to the BareMetal service the Clusters Portal will be able to use that subnet to deploy your Nutanix Cluster. The AzureHostedService is what the Clusters portal uses to deploy and configure networking on the bare-metal nodes.<\/p>

Every subnet used for user native VM networking also needs to be delegated to the same service. Since a VNET can only have delegated subnet, networking configuration would get out of hand with needing to peer VNETs among each other to allow communication. With Flow networking we can drastically reduce the amount of VNETS needed to allow communication of the workloads running on Clusters and Azure. Flow Networking will allow you to create over 500 subnets with only consuming 1 Azure VNET.<\/p>

\"//www.jhbzcj.com/next/hybrid-cloud-with-clusters-149/\" — Azure Network Design<\/em><\/figcaption><\/figure>
Prism Central (PC) will be deployed onto the Nutanix Cluster after deployment. Prism Central contains the control plane for Flow Networking.\u00a0 The subnet for PC will be delegated to the Microsoft.BareMetal\/AzureHostedService so native Azure networking can be used to distributed IPs for PC. Once PC is deployed, the Flow gateway will deployed into a Native Azure subnet. The Flow gateway allows the User VMs using the Flow VPC(s) to communicate to native Azure services and allows the VMS to have parity with native Azure VMs; such as:<\/p>
User defined routes\u00a0 - You can create custom, or user-defined(static), routes in Azure to override Azure's default system routes, or to add additional routes to a subnet's route table. In Azure, you create a route table, then associate the route table to zero or more virtual network subnets.<\/li>\t
Load Balancer \u00a0\u00a0Deployment - The ability to front-end services offered by UVMs with Azure-native load balancer.<\/li>\t
Network Security Groups: The ability to write stateful firewall policies.<\/li><\/ul>
Hopefully that gives you enough\u00a0to get you thinking. Please ask any questions and take the test drive<\/a> for yourself.\u00a0<\/p>","quoteUsername":"dlink7","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

喜欢

引用

分享

该主题已关闭以供评论

由内部提供动力

条款和条件

注册

已经有一个帐户？登录

使用您的帐户登录

登录社区

使用您的帐户登录

输入您的用户名或电子邮件地址。我们将向您发送带有指令的电子邮件以重置您的密码。

用户名或电子邮件

返回概述

扫描病毒文件。

抱歉，我们仍在检查该文件的内容，以确保它可以安全下载。请在几分钟后再试一次。
好的

该文件无法下载

抱歉，我们的病毒扫描仪检测到该文件无法安全下载。
好的

Learn more about our cookies.<\/a>","cookiepolicy.button":"Accept cookies","cookiepolicy.button.deny":"Deny all","cookiepolicy.link":"Cookie settings","cookiepolicy.modal.title":"Cookie settings","cookiepolicy.modal.content":"We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.<\/a>","cookiepolicy.modal.level1":"Basic
Functional","cookiepolicy.modal.level2":"Normal
Functional + analytics","cookiepolicy.modal.level3":"Complete
Functional + analytics + social media + embedded videos"}}}">