Graal VM:云原生时代的Java（转载）

Created2021-06-19|Cloud NativeJava

|Word Count:0|Reading Time:1mins

Author: zhongmingmao

Link: https://blog.zhongmingmao.top/2021/06/19/cloud-native-java/

Copyright Notice: All articles on this blog are licensed under CC BY-NC-SA 4.0 unless otherwise stated.

Related Articles

FaaS - Workflow

Kubernetes - CNI

网络分类 Type Desc CNI Pod 到 Pod 的网络，Node 到 Pod 的网络 kube-proxy 通过 Service 访问 Ingress 入站流量基础原则所有 Pod 能够不通过 NAT 就能互相访问所有 Node 能够不通过 NAT 就能互相访问容器内看到的 IP 地址和外部组件看到的容器 IP 是一样的补充说明在 Kubernetes 集群，IP 地址是以 Pod 为单位进行分配的，每个 Pod 拥有一个独立的 IP 地址一个 Pod 内部的所有容器共享一个网络栈，即宿主上的一个 Network Namespace Pod 内的所有容器能够通过 localhost:port 来连接对方在 Kubernetes 中，提供一个轻量的通用容器网络接口 CNI Container Network Interface，用来设置和删除容器的网络连通性 Container Runtime 通过 CNI 调用网络插件来完成容器的网络设置插件分类下面的 Plugin 均由 ContainerNetworking 组维护 IPAM ...

Security - OPA Gatekeeper

Overview & Architecture In Kubernetes, Admission Controllers enforce policies on objects during create, update, and delete operations.Admission control is fundamental to policy enforcement in Kubernetes. For example, by deploying OPA as an admission controller you can Require specific labels on all resources. Require container images come from the corporate image registry. Require all Pods specify resource requests and limits. Prevent conflicting Ingress objects from being created. Admission ...

Spring Cloud - Service Registration

版本匹配自动装配实战

Kubernetes - Rollout

版本使用 Pod Template Hash 作为版本号 123456789101112$ k get deployments.apps -owideNAME READY UP-TO-DATE AVAILABLE AGE CONTAINERS IMAGES SELECTORnginx-deployment 2/2 2 2 57s nginx nginx:alpine app=nginx-deployment$ k get rs -owideNAME DESIRED CURRENT READY AGE CONTAINERS IMAGES SELECTORnginx-deployment-756d6b7586 2 2 2 114s nginx nginx:alpine app=nginx-deployment,...

Cloud Native - Security & Compliance - OPA - Glance

Overview Policy-based control for cloud native environments Flexible, fine-grained control for administrators across the stack Use OPA for a unified toolset and framework for policy across the cloud native stack. Decouple policy from the service’s code, so you can release, analyze, and review policies without sacrificing availability or performance. Declarative Policy Declarative Express policy in a high-level, declarative language that promotes safe, performant, fine-grained controls. DSL : Use a lan...