Abstract | ||
---|---|---|
The recent rise of container systems like Docker has created a lot of excitement in data center. Its ability to package, transfer and run application code across many different environments enables new levels of fluidity in how we manage applications. However, container's easy-to-manage and second-boot features increase the degree of network dispersion and management difficulties, which causes the networking and security issues in container network. Aiming at the lack of control in container network, this paper designs a network control architecture for large-scale container clusters to solve the key issue of large-scale container clusters deployment in the network adapter and isolation control. Specifically, we design two different container network models and a policy-based security isolation by using VLAN partition and iptables. The experimental results show that our network control architecture could achieve rapid VLAN division and accurate isolation of node-to-node communication. |
Year | DOI | Venue |
---|---|---|
2018 | 10.1007/978-3-319-94268-1_74 | WIRELESS ALGORITHMS, SYSTEMS, AND APPLICATIONS (WASA 2018) |
Keywords | Field | DocType |
Data center, Container network control, Network model, Security isolation | Cluster (physics),Architecture,Software deployment,Computer science,Computer network,Virtual LAN,Network control,Network interface controller,Data center,Network model,Distributed computing | Conference |
Volume | ISSN | Citations |
10874 | 0302-9743 | 0 |
PageRank | References | Authors |
0.34 | 7 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Weiqi Zhang | 1 | 3 | 0.80 |
Baosheng Wang | 2 | 3 | 5.81 |
Wenping Deng | 3 | 18 | 4.94 |
Hao Zeng | 4 | 8 | 4.60 |