Updated on 2023-09-27 GMT+08:00

What Is CCE?

Why CCE?

CCE is a one-stop platform integrating compute (ECS), networking (VPC, EIP, and ELB), storage (EVS, OBS, and SFS), and many other services. Multi-AZ, multi-region disaster recovery ensures high availability of Kubernetes clusters.

Huawei Cloud is one of world's first Kubernetes Certified Service Providers (KCSPs) and China's first participant in the Kubernetes community. It has long been contributing to open source container communities and taking lead in the container ecosystem. Huawei Cloud is also a founder and platinum member of Cloud Native Computing Foundation (CNCF). CCE is one of the first Certified Kubernetes offerings in the world.

For more information, see Product Advantages and Application Scenarios.

CCE Cluster Types

CCE provides both CCE cluster and CCE Turbo cluster.

Category

Subcategory

CCE

CCE Turbo

Positioning

-

Standard clusters that provide highly reliable and secure containers for commercial use

Next-gen container cluster designed for Cloud Native 2.0, with accelerated computing, networking, and scheduling

Application scenario

-

For users who expect to use container clusters to manage applications, obtain elastic computing resources, and enable simplified management on computing, network, and storage resources

For users who have higher requirements on performance, resource utilization, and full-scenario coverage

Specification difference

Network model

Cloud-native network 1.0: applies to common, smaller-scale scenarios.

  • Tunnel network
  • Virtual Private Cloud (VPC) network

Cloud Native Network 2.0: applies to large-scale and high-performance scenarios.

Max networking scale: 2,000 nodes

Network performance

Overlays the VPC network with the container network, causing certain performance loss.

Flattens the VPC network and container network into one, achieving zero performance loss.

Network isolation

  • Tunnel network model: supports network policies for intra-cluster communications.
  • VPC network model: supports no isolation.

Associates pods with security groups. Unifies security isolation in and out the cluster via security groups' network policies.

Security isolation

Runs common containers, isolated by cgroups.

  • Physical machine: runs Kata containers, allowing VM-level isolation.
  • VM: runs common containers, isolated by cgroups.

Edge infrastructure management

None

Supports management of Intelligent EdgeSite (IES).

CCE Cluster Architecture

Figure 1 CCE cluster architecture
  • Compute: CCE supports various Huawei Cloud compute instances including both VMs and BMS servers running on Kunpeng, GPUs, or Huawei Ascend chips, allowing GPU virtualization, shared scheduling, and resource-aware scheduling optimization.
  • Networking: supports interconnection with high-performance, secure, reliable, and multi-protocol dedicated load balancers as the service traffic ingress.
  • Storage: provides cloud storage services like Elastic Volume Service (EVS), Scalable File Service (SFS), and Object Storage Service (OBS) and capabilities of disk encryption, snapshot, and backup.
  • Kubernetes cluster service: full lifecycle cluster management including cluster buying, connecting, upgrading, and managing.
  • Container orchestration: CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console.
  • Artifact repository: interconnects with SoftWare Repository for Container (SWR) to support full lifecycle management of images. It provides easy-to-use, secure, and reliable image management, helping you quickly deploy containerized applications.
  • Auto scaling: enables resource scaling for workloads and nodes. With auto scaling, CCE allows you to economically adjust compute resources based on service requirements and policies.
  • Service governance: CCE integrates Application Service Mesh (ASM). Grayscale release, traffic governance and monitoring, all done in a non-intrusive manner.
  • Container O&M: CCE integrates Container Intelligent Analysis (CIA) so that CCE can monitor applications and resources in real time, collect, manage, and analyze logs, collect metrics and events, and provide one-click monitoring function.
  • Add-ons: CCE provides multiple types of add-ons for you to manage your clusters as required.