Browse Prior Art Database

CONTAINER NETWORKING: METHOD AND APPROACH TO IMPLEMENT SERVICE DISCOVERY IN A MULTI TENANT MICRO SERVICE ENVIRONMENT

IP.com Disclosure Number: IPCOM000246082D
Publication Date: 2016-May-03
Document File: 4 page(s) / 99K

Publishing Venue

The IP.com Prior Art Database

Related People

Yi Yang: AUTHOR [+4]

Abstract

An approach is presented herein to achieve service discovery load balancing for microservices in a multi-tenant environment. The network virtualization technology is leveraged to enhance the server-side service discovery load balancing technology to support microservices in a multi-tenant environment.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 53% of the total text.

Page 01 of 4

  CONTAINER NETWORKING: METHOD AND APPROACH TO IMPLEMENT SERVICE DISCOVERY IN A MULTI TENANT MICRO SERVICE ENVIRONMENT

AUTHORS:

  Yi Yang Sanjay Agrawal

Raghurama Bhat Manoj Kottakota

CISCO SYSTEMS, INC.

ABSTRACT

    An approach is presented herein to achieve service discovery load balancing for microservices in a multi-tenant environment. The network virtualization technology is leveraged to enhance the server-side service discovery load balancing technology to support microservices in a multi-tenant environment.

DETAILED DESCRIPTION

     In a modern, cloud-based microservices application, service discovery plays a very important role, as service instances have dynamically assigned network locations. Moreover, the set of service instances changes dynamically because of auto-scaling, failures, and upgrades.

    Kubernetes/Mesos are open-source systems for automating deployment, operations, and scaling of containerized applications. They adopt a variation of server- side discovery load balancer to solve the service discovery issue. See FIG. 1 below as an example.

Copyright 2016 Cisco Systems, Inc.

1


Page 02 of 4

FIG. 1

    For example, in Kubernetes, Kube-proxy on each node watches the Kubernetes master for any addition and removal of service. When a proxy sees a new service, it opens a new random port on the local node, establishes an IPTable redirect from the Virtual IP (VIP) address to this new port, and starts accepting connections on it. When a client makes a request to a service, the client routes the request, using the VIP and the service's assigned port. The request will be redirected to the proxy on the local host, and the proxy then transparently forwards the request to an available service instance running in the back end.

    However, such a service discovery approach does not work well in a multi- tenancy environment, as it does not isolate the services/resources per tenant basis, thus providing little security that te...