All Products
Search
Document Center

Container Service for Kubernetes:Use MSE multi-cluster gateways to implement hybrid disaster recovery in ACK One

Last Updated:Nov 15, 2024

If your businesses are deployed in a Kubernetes cluster that runs in a data center or on a third-party public cloud and you want to use cloud computing to implement zone-disaster recovery for business high availability, you can use Distributed Cloud Container Platform for Kubernetes (ACK One) provided by Alibaba Cloud. ACK One allows you to centrally manage traffic, applications, and clusters, route traffic across clusters, and seamlessly perform traffic failovers. This topic describes how to use ACK One to quickly build a zone-disaster recovery system in a hybrid cloud environment.

Architecture of zone-disaster recovery in a hybrid cloud environment

image

The preceding figure shows a zone-disaster recovery system developed based on a registered cluster, Fleet instance (GitOps is optional), and multi-cluster gateway of ACK One in a hybrid cloud environment.

  • Resources on Alibaba Cloud are deployed in virtual private cloud (VPC) 1. A Container Service for Kubernetes (ACK) cluster is created in AZ1 and a registered cluster is created in AZ2.

  • Connect a Kubernetes cluster deployed in a data center or on a third-party public cloud to the registered cluster. Use an Express Connect circuit to connect the data center to the VPC for communication.

  • Associate the ACK cluster and registered cluster with the Fleet instances in VPC 1. Use ACK One GitOps to distribute an application to the ACK cluster and registered cluster.

  • On the Fleet instance, configure the MseIngressConfig to create a Microservices Engine (MSE) gateway and add clusters to the gateway. Then, create an Ingress and configure traffic routing rules on the Fleet instance to manage north-south traffic and implement zone-disaster recovery.

Procedure for building a zone-disaster recovery system in a hybrid cloud environment

Step 1: Design the network and create a Fleet instance

  • The Fleet instance, ACK cluster, and registered cluster must be deployed in the same VPC.

  • The ACK cluster and registered cluster must reside in different zones.

For more information about network design for Fleet management, see Network design for Fleet management.

Step 2: Use a registered cluster to manage Kubernetes clusters deployed in a data center or on a third-party public cloud

Step 3: Connect an on-premises network to a VPC

Step 4: Connect the registered cluster and ACK cluster to the Fleet instance

For more information, see Manage associated clusters.

Step 5: Use GitOps to distribute an application to multiple clusters

For more information, see Use GitOps to distribute an application to multiple clusters.

Step 6: Use the multi-cluster gateway to implement zone-disaster recovery

For more information, see Use multi-cluster gateways to implement zone-disaster recovery. To do this, you need to perform the following steps.

  • Enable the multi-cluster gateway feature on the Fleet instance.

  • Configure the MseIngressConfig to create a gateway on the Fleet instance and add the ACK cluster and registered cluster to the gateway.

  • Create an Ingress on the Fleet instance to implement zone-disaster recovery.

References

For more information about ACK One, see ACK One overview.