Sun Microsystems 10 用户手册
Version 3.1-en
Solaris 10 Container Guide - 3.1 3. Use Cases
Effective: 30/11/2009
3.3. Multi-network consolidation
Requirement
[dd] A company uses several different networks that are separated either by firewalls or by routers.
Applications are run in the individual networks. The company would like to use the applications from
different networks or security areas together on one physical system as an application itself does not
require the capacity of a single system.
[dd] A company uses several different networks that are separated either by firewalls or by routers.
Applications are run in the individual networks. The company would like to use the applications from
different networks or security areas together on one physical system as an application itself does not
require the capacity of a single system.
Solution
[dd] The individual applications are installed in one zone each. Zones are clustered together on
physical servers according to certain criteria (redundancy, similar application, load behavior, etc.).
Routing between the zones is switched off to separate the networks. The following details are used in
particular:
[dd] The individual applications are installed in one zone each. Zones are clustered together on
physical servers according to certain criteria (redundancy, similar application, load behavior, etc.).
Routing between the zones is switched off to separate the networks. The following details are used in
particular:
•
Creation of zones.
•
Zones as runtime environments for one application each.
•
Routing of the global zone on the interfaces is switched off so that zones cannot reach each
other. That is, the zones can only reach addresses in their respective network.
other. That is, the zones can only reach addresses in their respective network.
•
Use of exclusive-IP instances.
Assessment
[dd] This use case has the following characteristics:
[dd] This use case has the following characteristics:
•
The network structure is simplified by economizing routes and routers.
•
The number of required systems is reduced.
•
Applications can be organized according to new aspects, e.g. all web servers on a physical
server, or e.g. T2000 are used for web servers, T1000 are used for proxy servers, UltraSPARC
IV+ systems for all databases, etc.
server, or e.g. T2000 are used for web servers, T1000 are used for proxy servers, UltraSPARC
IV+ systems for all databases, etc.
•
The global zone can be used as the central administrative authority for all zones in a system. A
separate administrative network can be placed on the global zones.
separate administrative network can be placed on the global zones.
•
Application administration is located within the zone. If the same applications are clustered
together on systems, an application administrator can administer all applications in the zones
out of the global zone more easily, or can simplify administration by the use of sparse root
zones.
together on systems, an application administrator can administer all applications in the zones
out of the global zone more easily, or can simplify administration by the use of sparse root
zones.
18
Figure 9: [dd] Use case: Multi-network consolidation
Global Zone
System 1
App A1 App A2 App B
Network A
Global Zone
System 2
App A1' App A3 App B'
Global Zone
System 3
App C App C App C
Network B
Network C
Gateway/Router/
FireWall