ARM云路由网络类型

若用户底层硬件环境基于ARM架构的服务器搭建,ZStack私有云支持创建基于ARM云路由类型的三层私有网络并提供相应网络服务。

ARM云路由类型私有网络使用流程如下:
  1. 在全局设置中开启ARM云路由开关
  2. 添加ARM云路由镜像;
  3. 创建ARM云路由规格;
  4. 创建ARM云路由类型私有网络;
  5. 使用ARM云路由网路服务。

开启ARM云路由开关

ZStack私有云默认不开启ARM云路由相关功能,需进入设置 > 全局设置 > 高级设置,将ARM云路由开关开启,才能创建ARM云路由类型私有网络并使用相关网络服务。

添加ARM云路由镜像

ARM云路由镜像添加方法与KVM云路由镜像添加方法相同,详情可参考Add vRouter Image章节。

ARM云路由镜像请联系官方技术支持获取。

创建ARM云路由规格

ARM云路由规格创建方法与KVM云路由规格创建方法相同,详情可参考Create vRouter Offering章节。

创建私有网络 | ARM云路由网络类型

ZStack私有云主菜单,点击网络资源 > 三层网络 > 私有网络,进入私有网络界面,点击创建私有网络,在弹出的创建私有网络界面,可参考以下示例输入相应内容:
  • 名称:设置网络名称
  • 简介:可选项,可留空不填
  • 二层网络:选择私有网络对应的二层网络
    Note: ZStack Private Cloud allows you to create multiple L3 networks by using an L2 network. However, we do not recommend to do so unless you have special business requirements.
    Click the Plus sign (⊕) under the L2 Network field. Then, the Select L2 Network page is displayed on the right. This page has the following two tabs:
    • Default: Display a list of L2 networks that do not have an L3 network attached in the current zone.
    • All: Display a list of all L2 networks in the current zone, including the L2 networks that have or not have an L3 network attached.
  • Stop DHCP server: Choose whether to enable the DHCP service.
    Note:
    • By default, this checkbox is not selected, indicating that the DHCP service is enabled, and IP addresses will be automatically allocated to VM instances. In this case, you can customize a DHCP IP address, or let the system randomly specify a DHCP IP address.
    • If selected, the DHCP service will be disabled, indicating that VM instances that use this network cannot obtain IP addresses automatically, and need to be configured manually with IP addresses. In this case, you cannot customize the DHCP IP address. In addition, the system cannot randomly specify a DHCP IP address.
  • 网络类型:选择ARM云路由
  • 云路由规格:选择已创建的ARM云路由规格
  • 添加网络段:选择添加网络段方法:IP范围、CIDR
    • 如选择IP范围,需设置以下内容:
      • Start IP: Enter a start IP address for the network range, such as 172.20.108.100.
      • End IP: Enter an end IP address for the network range, such as 172.20.108.200.
      • Netmask: Enter a netmask for the network range, such as 255.255.0.0.
      • Gateway: Enter a gateway for the network range, such as 172.20.0.1.
      • DHCP IP: Optional. Enter a DHCP IP address as needed, such as 172.20.108.10.
        Note:
        • If you create an L3 network and enable the DHCP service for the first time, or if you add the first IP range for the L3 network of the enabled DHCP service, you can customize the DHCP IP address.
        • If the L3 network has a DHCP IP address, you cannot customize the DHCP IP address when you add an IP range.
        • The DHCP IP address can be included or excluded on the added IP range. However, the DHCP IP address must be within the CIDR to which the added IP range belongs, and must not be occupied.
        • The IP range specified within the start IP address and end IP address cannot contain IP addresses of the link-local address (169.254.0.0/16).
        • If not specified, the system will randomly specify an IP address within the IP range that you added.
      Note: 选择IP范围添加网络段需注意:
      • You must not include the gateway (for example, xxx.xxx.xxx.1), broadcast address (for example, xxx.xxx.xxx.255), and network address (for example, xxx.xxx.xxx.0) in the added IP range.
      • The network range of a private network cannot overlap with the public network or management network on a vRouter offering.
    • 如选择CIDR,需设置以下内容:
      • CIDR: Enter a CIDR for the network range, such as 192.168.108.1/24.
      • Gateway: Set a gateway, such as 192.168.108.1.
        Note:
        • The first or the last allowed CIDR IP address can act as a gateway.
        • If null, the first IP address that is used by default will serve as a gateway.
      • DHCP IP: Optional. Set a DHCP IP address as needed, such as 192.168.108.10.
        Note:
        • If you create an L3 network and enable the DHCP service for the first time, or if you add the first network range for the L3 network of the enabled DHCP service, you can customize the DHCP IP address.
        • If the L3 network has a DHCP IP address, you cannot customize the DHCP IP address when you add the IP range.
        • The DHCP IP address can be included or excluded on the IP range that you added. However, the DHCP IP address must not be in conflict with the current CIDR.
        • If not specified, the system will randomly specify an IP address within the added IP range.
        • The first IP address in a CIDR is deemed as a gateway by default, and cannot serve as a DHCP IP address.
      Note: 选择CIDR添加网络段需注意:
      • The IP range specified in the CIDR cannot contain IP addresses of the link-local address (169.254.0.0/16).
      • The network range of a private network cannot overlap with the public network or management network on a vRouter offering.
  • 添加DNS:添加DNS服务器,用于设置三层网络的DNS解析服务,例如可指定223.5.5.58.8.8.8114.114.114.114
ARM云路由 | CIDR为例创建私有网络,如Figure 1所示:
Figure 1. 创建私有网络 | ARM云路由网络类型 | CIDR




私有网络 | ARM云路由网络详情页

ARM云路由网络详情页包括:基本属性、IP统计、网络段、DNS、共享、监控数据、报警和审计。
  • 基本属性
    该子页面显示了当前ARM云路由网络的基本情况,包括:名称、简介、MTU、IP地址类型、网络类型、是否全局共享、所有者、DHCP IP、资源UUID、所属二层网络、提供的网络服务等。本页面支持修改ARM云路由网络的相关参数:
    • 名称和简介:支持修改ARM云路由网络的名称和简介
    Figure 2所示:
    Figure 2. ARM云路由网络 | 基本属性


  • IP统计

    该子页面列出了当前私有网络的IP使用情况,统计了已被使用的IP地址、类型、关联资源等。点击统计资源下拉框,可以按照类别筛选已被使用的IP地址。

  • 网络段
    该子页面列出了当前ARM云路由网络上添加的所有网络段列表,显示了网络段的起始IP、结束IP、子网掩码、网关、IP地址类型、CIDR等。点击网络段旁的操作按钮,可对网络段进行相关操作:
    • 添加网络段:给ARM云路由网络添加一段新的IP范围
    • 删除网络段:将ARM云路由网络的IP范围删除
      Note:
      • 删除网络段会导致使用该网络段的云主机网卡被卸载,请谨慎操作;
  • DNS

    该子页面列出了当前ARM云路由网络上添加的所有DNS列表。点击DNS旁的操作按钮,可对DNS进行相关操作:

  • 共享(若已安装企业管理模块许可证)

    该子页面包括两个子栏:项目/账户,分别列出了共享当前ARM云路由网络的所有项目/普通账户列表。

    项目子栏,显示了项目名称、项目负责人、项目内使用当前ARM云路由网络的云主机数量、云盘数量(已挂载到这些云主机);

    账户子栏,显示了普通账户名称、普通账户类型、普通账户使用当前ARM云路由网络的云主机数量、云盘数量(已挂载到这些云主机);

    点击共享旁的操作按钮,可对ARM云路由网络进行相关操作:
    • 共享:将ARM云路由网络共享给指定的项目/普通账户使用
    • 召回:将ARM云路由网络从项目/普通账户召回,使其不可见
    • 全局共享:将ARM云路由网络共享给全部项目/普通账户使用
    • 全局召回:将ARM云路由网络从全部项目/普通账户召回,使其不可见
  • 监控数据

    该子页面实时监控当前ARM云路由网络已用IP百分比的变动。

  • 报警

    该子页面支持对当前ARM云路由网络进行ZWatch监控报警设置,支持创建报警器并添加相关报警条目,系统可自动监控ARM云路由网络的多项报警条目,以邮件/钉钉/HTTP/短信应用方式发送报警信息。

    点击报警器旁的操作按钮,可对报警器进行相关操作:
    • 创建报警器:为ARM云路由网络创建一个报警器并添加相关报警条目,系统可自动监控ARM云路由网络的多项报警条目,以邮件/钉钉/HTTP POST/短信方式发送报警信息
    • 启用报警器:将已停用的报警器启用
    • 停用报警器:将正在使用的报警器停用
    • 删除报警器:删除一个报警器
  • 审计

    该子页面显示了对当前ARM云路由网络的操作日志。

ARM云路由网络服务

生产环境中,ARM云路由网络一般建议使用以下网络服务的组合:
  • Flat Network Service Provider(扁平网络服务模块):
    • DHCP:分布式DHCP实现的动态获取IP地址。
  • VirtualRouter(虚拟路由器网络服务模块):
    • DNS:使用ARM云路由器提供DNS服务。
    • SNAT:云主机使用SNAT可以直接访问外部互联网。
    • 负载均衡:将虚拟IP地址的访问流量分发到一组后端的云主机上,并自动检测并隔离不可用的云主机。
    • 端口转发:提供将指定公有网络的IP地址端口流量转发到云主机对应协议的端口。
    • 弹性IP:使用ARM云路由器可通过公有网络访问云主机的私有网络。
  • SecurityGroup(安全组网络服务模块):
    • 安全组:使用iptables进行云主机防火墙的安全控制。

关于网络服务模块与网络服务的更多介绍,请参考Network Service章节。

补充说明

用户如需在基于ARM架构的生产环境中部署使用ZStack私有云云平台,请联系官方技术支持获取帮助。