Interpretation of Nacos's trinity strategy of open source, self-research, and commercialization

Introduction to Nacos is the core component of the entire Alibaba Cloud native three-digit strategy. In 2018, based on Configserver/VIPServer/Diamond, we used Nacos as open source to export the registration center and configuration center capabilities that Alibaba has accumulated over the past decade, and quickly become First choice in China. And through the cloud product MSE to export solution capabilities in BaaS mode.

Authors: Yanlin (Li Yanlin), Yanlin (Li Yanlin), Nacos PMC, founder of Alibaba Cloud MSE product, leader of Alibaba Cloud soft load team.

Interpretation of Alibaba Cloud's Native Trinity Strategy

Alibaba's trinity of open source, self-research, and commercialization technologies, using public clouds to support Ali Group's cloud access, using open source as the core for internal expansion, and commercialization as the basis for internal customization; back-end BaaS, client lightweight, business side Serverless.

Nacos is the core component of the entire Alibaba Cloud native three strategy. In 2018, based on Configserver/VIPServer/Diamond, we exported Alibaba's ten-year-old registration center and configuration center capabilities through Nacos open source, and quickly became the first choice in China. And through the cloud product MSE to export solution capabilities in BaaS mode.

In the past three years, Nacos has built a complete cloud-native technology ecosystem and has become a domestic de facto standard. It has also promoted openness and co-construction through the community, polished product performance and usability through Alibaba's rich products, and created the ultimate product experience through commercialization, which is more secure. Product capabilities to meet the production requirements of enterprise users. In this way, Nacos' capabilities in all dimensions are tempered in an all-round way, and the competitiveness of products is continuously enhanced in a positive cycle! Let me share more in-depth from the three dimensions of open source, self-research, and commercialization.

Nacos ecology & planning

Nacos ecology

Nacos supports almost all mainstream languages, among which Java/Golang/Python already supports the Nacos2.0 long link protocol, which can maximize the performance of Nacos. The best practice of Ali Microservice DNS (Dubbo+Nacos+Spring-cloud-alibaba/Seata/Sentinel) is the best solution for the Java microservice ecosystem; in addition, Nacos has also done nothing about the active technology of the microservice ecosystem. Seam support, such as Envoy and Dapr, which are currently more popular, allows users to obtain more standard microservice capabilities.

Nacos planning

Since the release of Nacos 2.0, it has stimulated the vitality of the community with a 10-fold performance improvement, entered the Top 10 domestic open source projects, and became the industry's first choice. With the maturity of Nacos2.0, subsequent Nacos1.X will enter the maintenance state, Nacos 2.0.X will do the transition from 1.X to 2.X, from version 2.1.0 we will remove the excessive upgrade logic, let Nacos2.0 code More refreshing, better performance, and accelerate the evolution of plug-in and service grid ecology, I hope that interested friends will build together! ! !

Nacos Ali landing practice

Nacos Ali Million Instance Microservice Architecture

As Alibaba has developed to a mega cluster with a million instance level, for higher performance and scalability, we divide Nacos into two clusters: a registry and a configuration center according to its functions; it is recommended that companies with more than 10w instance scales do a good job of dismantling from the early stage. point. When you are young, the cost of operation and maintenance and deployment is minimal when deployed together. Unified access is divided into two layers according to the traffic gateway and the microservice gateway. Tengine is responsible for the traffic gateway, mainly anti-connection, certificate offloading and weak seven-layer flow control; Envoy is responsible for the microservice gateway part, responsible for service governance, protocol conversion, and cross- Scenarios such as domain interworking; it is recommended that more than 100w/s, two layers are recommended, and no more than one layer has the best cost performance. In the international business, Alibaba has submerged the service routing and remote multi-active streaming capabilities to Sidecar, and implemented it on a large scale, so as to expand the cluster according to the region level through the remote multi-active system.

So far, all unit environments of Alibaba Cloud's native gateway, registration center, and configuration center have all been cut into the public cloud product MSE, and have been verified by the 99 promotion, and will support this year's Double Eleven.

Nacos Service Discovery Practice

With the expansion of business scale and business domains, large companies will basically encounter cross-domain interoperability problems. Alibaba uses cloud native gateways to open up multiple business domains, such as DingTalk and other group business domains, and MSE cloud native gateways. , Through the Triple protocol intermodulation of Dubbo3.0, there is no consumption of any protocol conversion, high efficiency, low rt, and simple routing splitting logic can be configured through the gateway to improve the overall high availability. In the process of Alibaba's landing service grid, Istio cannot meet Ali's scale requirements, so the service link is directly opened with the Nacos registration center, and the routing rules are connected through Istio to the Nacos configuration center, so that large-scale production can be implemented.

Nacos Configuration Management Practice

One of the underlying technologies that Ali can make big promotions while drinking coffee is dynamic configuration management + plan system (regular configuration modification at regular intervals). Nacos, as the foundation of dynamic configuration management, supports the core business of the entire Double Eleven. For example, after the Alibaba hybrid department quickly delivers a unit environment, it will dynamically push the unitization rules to lead to the new hybrid environment. Before the big promotion, the log sampling rate rules will be adjusted to prevent excessive logs from affecting system performance.

Nacos solution

Microservice solutions

Micro Service Engine (MSE) is a one-stop microservice platform for the mainstream open source microservice ecosystem in the industry.

Users can freely combine the four modules of registration & configuration center, service framework, cloud native gateway, and service governance. They can choose commercial products or self-built products. If you choose all of our solutions, you can directly get Ali's ten-year accumulation Core competitiveness.

Service mesh solution

Ali Service Grid (ASM for short) is a managed platform that uniformly manages microservice application traffic and is compatible with Istio.

Nacos users can directly enter the service grid era by quickly combining the two products of MSE + ASM. Istio in ASM connects services with Nacos in MSE through the standard MCP protocol. MSE service governance is based on ASM traffic governance atomic API for service governance. Our cloud native gateway is also built on Envoy, so that we can control east, west, north and south traffic through the Istio standard, and then Improve the high availability of the entire microservices.

Cross-domain interoperability solutions

Generally large companies will have requirements for service interoperability across business domains, network domains, security domains, and cross-cloud scenarios. MSE cloud native gateways can open up multiple business domains. Almost all users can use this method to solve this problem. This mode is universal and controllable. , Security; If it is in a network domain, and there are many business intersections and large traffic, you can use the Nacos-Sync component to do cross-registration service interoperability. Cross-domain traffic exceeds 100w/s. It is recommended to consider this mode. The control cost of this mode is relatively high. , Can only be used in scenarios where the network is interoperable and the protocol is consistent. Of course, there are still many users who use multiple registrations and multiple subscriptions to complete cross-domain intercommunication, so that cross-domain intercommunication cannot be controlled, risks cannot be identified, and there is a price for research and development.

Microservice high availability solution

As the digitalization process evolves, many companies, like Alibaba, will engage in large-scale promotion activities. In this way, peak traffic may overwhelm the entire system and cause huge economic losses. If too many resources are prepared, resources will be wasted. In this scenario, Alibaba's PTS+MSE+AHAS+ARMS+ACK product combination can be used to press, limit current, watch and play while pressing. Use PTS to simulate user traffic for full link pressure testing, through MSE cloud native gateway for ingress current limiting, and discover back-end service forwarding through Nacos, perform service availability and service governance observation through ARMS, and analyze timeouts and abnormalities through link tracking And other problems, the capacity is not enough to pass ACK flexibility, so as to make the greatest balance between performance, high availability, and resource utilization.

Multiple live solutions in different places

For the fields of international people's livelihood such as express delivery, government, medical care, and finance, there are extremely high requirements for business availability, and the ability to live more in different places is required. Alibaba Cloud MSHA provides two multi-active modes: multiple live in the same city and multiple live in different places. The bottom layer uses MSE as the basis of microservices. MSE provides access to the same AZ in a region, with same-city disaster recovery capability, single AZ failure, MSHA cuts the traffic from the entrance to the available AZ and quickly recovers. The regions communicate with each other through the MSE cloud native gateway to solve the problem of cross-domain access due to unequal service deployment. MSHA controls the flow entrance globally, and if a region is unavailable, the flow will be cut and resumed from the entrance.

The playback address of this live broadcast: https://yqh.aliyun.com/live/detail/26356 , you can also scan to see the live broadcast of Dingding Group.

Copyright Statement: content of this article is contributed spontaneously by Alibaba Cloud real-name registered users. The copyright belongs to the original author. The Alibaba Cloud Developer Community does not own its copyright and does not assume corresponding legal responsibilities. For specific rules, please refer to the "Alibaba Cloud Developer Community User Service Agreement" and the "Alibaba Cloud Developer Community Intellectual Property Protection Guidelines". If you find suspected plagiarism in this community, fill in the infringement complaint form to report it. Once verified, the community will immediately delete the suspected infringing content.