{"type":"doc","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在過去的十五年裏,雲技術改變了 IT 部門的運作方式。IDG 2020 年的一項調查發現,81% 的組織至少有一個應用程序或一部分計算基礎設施在雲上(高於 2011 年的 51%),並且有 55% 的組織目前在多雲策略中使用了多個雲供應商。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署多雲的方式並不複雜——“多雲”僅僅意味着使用兩個或多個不同的雲供應商,並利用它們的優勢來滿足我們的需求。這種方式提供了一種替代方案,可以替代僅依賴單個雲供應商或本地基礎設施的方式來處理所有的一切。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"如果你的組織是那 45% 的沒有使用多雲部署方式的組織之一,或者如果你想從多雲策略中獲得更多的收益,那麼請閱讀本文,本文將會解釋什麼是多雲,它是如何工作的,它能提供什麼好處,以及在推出多雲策略時需要注意哪些事項。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲背景介紹"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在過去的十五年中,向多雲基礎設施的轉變可以追溯到雲計算領域的兩個趨勢。首先,AWS、谷歌和微軟(也被稱爲“三巨頭”)不再是 IT 部門尋求遷移到雲計算的唯一選擇。自 AWS 於 2006 年推出以來,專業的基礎設施即服務(IaaS)供應商不斷湧現,已經開始挑戰三巨頭了,他們爲公司提供了更多的雲部署選擇。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"其次,在 AWS 推出後的十年裏,許多公司都在從本地部署向雲計算轉型。現在,新推出的公司都是基於雲原生的,現有的公司也已經準備好優化他們的雲部署了。他們已經跨越了將本地基礎設施遷移到雲上的障礙,可以專注於如何構建他們的雲環境,以最大限度地發揮多雲的優勢。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"什麼是多雲?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"幾乎所有的軟件即服務(SaaS)平臺都託管在雲上。因此,如果你的公司使用了像 OneDrive 或 Google Workspace 之類的工具以及任何其他的雲服務或平臺,那麼從技術上講,你就是在一個“多雲”的環境中運行。但使用多個 SaaS 平臺並不能構成真正的多雲策略。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"狹義地說,當我們在雲服務行業說“多雲”時,我們指的是用於構建公司基礎設施(包括存儲、網絡和計算)的公有云平臺。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/9c\/85\/9ca39a53ffebea9b8304d8c5d94b7d85.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"根據這個定義,多雲意味着使用兩個不同的公有 IaaS 供應商,而不是將所有數據保存在一個多元化的雲供應商(如 AWS 或谷歌)中,或者僅使用本地基礎設施。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/79\/d8\/79f31eafc6bac0b3f0ebaf0ae78cebd8.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲與混合雲:有什麼區別?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"多雲是指使用多個公有云平臺。混合雲是指私有云與公有云的組合。私有云通常託管在本地基礎架構上,但也可以由第三方託管。私有云和公有云之間的主要區別在於私有云的基礎架構、硬件和軟件都在我們自己企業或組織的專用私有網絡上維護的。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"更復雜的是,如果一家公司將私有云與多個公有云結合在一起,實際上是利用混合多雲策略就是在雲遊戲中玩自殺。這一切都會變得非常混亂,所以請繼續關注後續文章,對應的文章將會單獨介紹這個話題。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"如何實施多雲:用例"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"公司運維多雲環境的原因是多種多樣的。對於一些公司來說,採用多雲最初可能是影子 IT 的無意結果(影子 IT 是指獨立的部門採用了雲服務,而沒有讓 IT 團隊提供幫助)。隨着這些部署成爲運維不可或缺的一部分,IT 團隊可能會將它們納入到整體企業的雲策略中。對於其他人來說,多雲策略是有意部署的,因爲它們適用於特定的業務需求。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"那麼,你實際上是如何使用多雲策略的呢?多雲策略有什麼好處?多雲有許多引人注目的用例和基本原理,其中包括:"}]},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"災難恢復(Disaster recovery)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"故障轉移(Failover)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"成本優化(Cost optimization)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"避免供應商鎖定(Avoiding vendor lock-in)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"數據主權(Data sovereignty)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"特定服務訪問(Access to specialized services)"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"災難恢復"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"運行多雲環境的最大優勢之一是在雲原生部署中實現了冗餘並規劃了災難恢復。使用多個雲有助於 IT 部門實施現代化的 3-2-1 備份策略,將其數據的三個副本存儲在兩種不同類型的媒介上,其中一份存儲在異地。當 3-2-1 演化時,這意味着另外兩個副本被保留在本地以便進行快速恢復。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲服務的改進,對本地備份的需求也發生了變化。現在,從雲上恢復數據的速度幾乎與從本地基礎設施中恢復數據的速度一樣快,而且許多公司根本不再使用物理基礎設施。對於希望或已經是雲原生的公司,將數據保存在多個公有云中可以降低將生產副本和備份副本保存在一個供應商處的風險。在發生災難或勒索軟件攻擊的情況下,多雲用戶可以恢復存儲在另一個獨立雲環境中的數據,理想情況下,該環境可以提供像 Object Lock 這樣的工具,以保護具有不變性的數據。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"故障轉移"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"類似地,一些雲原生公司利用多個雲供應商來託管其活動生產數據的鏡像副本。如果他們的一個公有云發生了故障,他們有相應的機制來將其應用程序的故障轉移到另一個公有云上。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"電子商務公司 Big Cartel,過去幾年在 AWS 上在經歷了多次宕機,這讓 Big Cartel 很是擔憂,之後他們採取了這一策略。他們代表他們的客戶託管了超過 100 萬的網站,一旦宕機,這些網站就會全部癱瘓。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Big Cartel 的技術總監 Lee Jensen 承認:“隨着時間的推移,我們越來越不能忍受單一存儲供應商的單點故障了”。現在,他們的數據存儲在兩個公有云上——Amazon S3 和 Backblaze B2 Cloud Storage。他們的內容交付網絡(CDN)很快,是優先從 Backblaze B2 提取數據,並使用 Amazon S3 作爲故障轉移。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/2e\/df\/2e9b255f547b13006711a853d49238df.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":"center","origin":null},"content":[{"type":"text","marks":[{"type":"italic"}],"text":"重要事項:一個 Big Cartel 的客戶網站"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"成本優化"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"挑戰者公司可以提供與三巨頭有競爭性的激勵措施,以及適用於特定數據用例的定價結構。例如,一些雲服務供應商提供免費的出口,但限制了可下載的數據量,而另一些雲服務供應商則收取名義上的出口費,但不限制下載量。精明的公司會根據他們擁有的數據量和需要訪問的頻率對不同類型的數據使用多個雲。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"SIMMER.io 是一個社區網站,它爲獨立遊戲開發者提供了共享 Unity WebGL 遊戲的便利,只要他們託管的某款遊戲出現了病毒式傳播,它就會受到來自 Amazon S3 的出口尖峯衝擊。這些費用將他們的成功變成了增長抑制劑。由於 Backblaze 和 Cloudflare 之間具有帶寬聯盟合作伙伴關係,SIMMER.io 將他們的數據鏡像到 Backblaze B2 Cloud Storage 中,並將出口費用減少到 0 美元。他們可以發展他們的網站,而不必擔心隨着時間的推移會增加出口成本,或擔心當遊戲病毒式傳播時會出現使用高峯,而且在這個過程中,他們還將冗餘翻倍了。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/85\/47\/85877105fe9ae13a60f242ed7252be47.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":"center","origin":null},"content":[{"type":"text","marks":[{"type":"italic"}],"text":"龍之魂(Dragon Spirit):一個由 SIMMER.io 託管的遊戲"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"避免供應商鎖定"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"許多公司最初採用的是三巨頭中的其中一家,因爲它們是鎮上唯一的遊戲玩家,但後來他們覺得自己受到了封閉系統的限制。像亞馬遜和谷歌這樣的公司之間並不友好,它們都試圖用特定的服務來鎖定客戶。採用具有可互操作供應商的多雲基礎設施,可以讓這些公司在雲部署方面擁有更多的談判權和控制權。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"例如,聯網電視應用平臺 Gideo 最初使用的是一家集計算、存儲和內容交付於一體的雲供應商,但他們覺得自己沒有辦法減少賬單或改善他們收到的服務。他們採用了多雲的方式,與多個互不衝突的合作伙伴共同構建了一個技術棧,讓他們自己不再受制於任何一個供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"數據主權"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"許多國家以及歐盟都通過了法律,對數據存儲的位置和方式進行了監管。受這些數據駐留標準約束的公司可能會採用多雲的方式來確保其數據符合監管要求。他們在必須存儲數據的位置使用多個具有不同地理足跡的公有云供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"特定服務訪問"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"組織可以使用不同的雲供應商來訪問特定的或免費的服務。例如,一家公司可能使用 Vultr 等公有云訪問計算資源或裸金屬服務器,但將其數據存儲在另一個專門用於存儲的不同且可互操作的公有云中。或者,公司可以將雲存儲供應商與雲 CDN 結合使用,以更快地向最終用戶分發內容。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲基礎設施的優勢"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"無論是用例還是基本原理,公司都可以通過部署多雲基礎設施來獲得許多優勢,其中包括:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"numberedlist","attrs":{"start":null,"normalizeStart":1},"content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":1,"align":null,"origin":null},"content":[{"type":"text","text":"更高的可靠性和更低的延遲:在故障轉移場景中,如果一個雲上發生了故障,採用多雲策略的公司還可以依靠其他雲。如果一家公司使用了多個雲來實現數據主權或與 CDN 結合使用,他們可以看到延遲會降低,因爲他們的雲更靠近終端用戶。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":2,"align":null,"origin":null},"content":[{"type":"text","text":"冗餘:由於數據存儲在多個相互隔離的雲上,公司可以更好地抵禦威脅。如果網絡犯罪分子能夠訪問一組數據,但公司能夠從運行在另一個單獨網絡上的雲環境中恢復數據,那麼公司恢復數據的可能性就更大了。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":3,"align":null,"origin":null},"content":[{"type":"text","text":"更大的自由度和靈活性:在多雲系統中,如果出現問題或者成本開始變得難以管理,公司有更多的槓桿來影響這些變化,如果另一家供應商提供了更好的功能或更實惠的價格,公司也有能力離開現有供應商。企業還可以利用行業合作伙伴關係,利用最優秀的供應商來構建靈活且與雲無關的技術棧。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":4,"align":null,"origin":null},"content":[{"type":"text","text":"可承受性:使用多雲可能會降低成本,這似乎有悖常理,但這是真的。像 AWS 這樣的多元化雲服務供應商可以讓人們很難放棄他們的服務是有原因的——當你不能離開時,他們可以向你收取任何他們想要的費用。多雲系統使你能夠利用平臺間的競爭性定價優勢。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":5,"align":null,"origin":null},"content":[{"type":"text","text":"同類最佳服務:採用多雲戰略意味着你可以與專注於真正做好一件事而不是做所有事情的供應商合作。雲平臺專門爲客戶提供一流的服務、功能和支持,而不是提供一刀切的解決方案。"}]}]}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲基礎設施的挑戰"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"多雲系統的優勢吸引了越來越多的公司,但它也並非沒有挑戰。在 IDG 的研究中,成本控制、數據安全和治理被列爲五大挑戰。這就是爲什麼儘早考慮雲基礎設施、遵循最佳實踐並規劃管理意外事件的方法會變得更爲重要的原因。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲最佳實踐"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在規劃多雲策略時,請記住以下的注意事項:"}]},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署策略"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"成本管理"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"數據安全"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"治理"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲部署策略"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署多雲策略的方法可能與使用多雲策略的公司一樣多。但是,它們通常可以分爲兩大類:冗餘或分佈式。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在冗餘部署中,數據被鏡像到多個雲環境中,比如用於故障轉移或災難恢復。使用多雲方式而不是混合方式來存儲備份數據的公司正在使用冗餘多雲部署策略。大多數希望使用多雲方式備份公司數據或環境的 IT 團隊都屬於這一類。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"分佈式部署模型通常適用於軟件開發團隊。在分佈式部署中,同一應用程序的不同工作負載或不同組件將基於最佳匹配分佈到多個雲計算環境中。例如,DevOps 團隊可能會將他們的計算基礎設施託管在一個公有云中,而將存儲託管在另一個公有云中。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"你的業務需求將決定你應該使用哪種部署類型。從一開始就瞭解你的部署方式可以幫助你爲自己的多雲策略選擇正確組合了服務和計費結構的供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲成本管理"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"雲環境的成本管理是每家公司都會面臨的一個挑戰,即使你選擇與一家供應商保持緊密關係,以至於公司將雲優化作爲他們的整個業務模型。建立一個流程來跟蹤你的雲利用率和支出,並尋找能提供直接、透明定價規則的雲供應商以削減預算。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲數據安全"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲環境變得越來越複雜,安全風險也會相應地增加了。有更多的攻擊面,需要你規劃相應的安全措施。要在降低風險的同時利用多雲優勢,請遵循多雲安全最佳實踐:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"確保對跨平臺的身份驗證有適當的控制。不同的雲供應商可能有不同的身份驗證協議,你需要有一個跨供應商也能工作的框架和安全協議。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"適當培訓你的團隊以識別網絡安全風險。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"保持最新的安全補丁。每個雲供應商都會發布自己的升級和補丁。確保儘可能實現自動升級。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"考慮使用像 Object Lock 這樣的工具來保護數據的不變性。Object Lock 允許你使用一次寫入多次讀取 (Write Once, Read Many,WORM)模型來存儲對象,這意味着在寫入後,數據在定義的時間段內無法修改或刪除。在此期間,任何操作、複製、加密、更改或刪除文件的嘗試都將失敗。文件可以被訪問,但沒有人可以更改它們,包括文件所有者或設置 Object Lock 的人。"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲治理"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲應用在公司的普及,你需要有明確的協議來管理你的基礎設施。考慮爲雲平臺的管理和配置創建標準化的操作過程,以避免影子 IT 擴散。並設置中心化的安全監控策略。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"準備好使用多雲了嗎?遷移策略"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"如果你已經準備好了使用多雲,你可能想知道如何將數據從本地基礎設施中遷移到雲上,或者從一個雲遷移到另一個雲上。在選擇了適合你需求的供應商之後,你可以開始規劃數據遷移了。有很多工具可以遷移數據,但當涉及到在雲服務之間遷移時,像我們的 Cloud to Cloud Migration 這樣的工具可以讓事情變得更容易、更快捷。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"strong"}],"text":"原文鏈接:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"https:\/\/www.backblaze.com\/blog\/multi-cloud-strategy-architecture-guide\/"}]}]}
架構師們,請收好這份多雲架構指南
{"type":"doc","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在過去的十五年裏,雲技術改變了 IT 部門的運作方式。IDG 2020 年的一項調查發現,81% 的組織至少有一個應用程序或一部分計算基礎設施在雲上(高於 2011 年的 51%),並且有 55% 的組織目前在多雲策略中使用了多個雲供應商。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署多雲的方式並不複雜——“多雲”僅僅意味着使用兩個或多個不同的雲供應商,並利用它們的優勢來滿足我們的需求。這種方式提供了一種替代方案,可以替代僅依賴單個雲供應商或本地基礎設施的方式來處理所有的一切。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"如果你的組織是那 45% 的沒有使用多雲部署方式的組織之一,或者如果你想從多雲策略中獲得更多的收益,那麼請閱讀本文,本文將會解釋什麼是多雲,它是如何工作的,它能提供什麼好處,以及在推出多雲策略時需要注意哪些事項。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲背景介紹"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在過去的十五年中,向多雲基礎設施的轉變可以追溯到雲計算領域的兩個趨勢。首先,AWS、谷歌和微軟(也被稱爲“三巨頭”)不再是 IT 部門尋求遷移到雲計算的唯一選擇。自 AWS 於 2006 年推出以來,專業的基礎設施即服務(IaaS)供應商不斷湧現,已經開始挑戰三巨頭了,他們爲公司提供了更多的雲部署選擇。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"其次,在 AWS 推出後的十年裏,許多公司都在從本地部署向雲計算轉型。現在,新推出的公司都是基於雲原生的,現有的公司也已經準備好優化他們的雲部署了。他們已經跨越了將本地基礎設施遷移到雲上的障礙,可以專注於如何構建他們的雲環境,以最大限度地發揮多雲的優勢。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"什麼是多雲?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"幾乎所有的軟件即服務(SaaS)平臺都託管在雲上。因此,如果你的公司使用了像 OneDrive 或 Google Workspace 之類的工具以及任何其他的雲服務或平臺,那麼從技術上講,你就是在一個“多雲”的環境中運行。但使用多個 SaaS 平臺並不能構成真正的多雲策略。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"狹義地說,當我們在雲服務行業說“多雲”時,我們指的是用於構建公司基礎設施(包括存儲、網絡和計算)的公有云平臺。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/9c\/85\/9ca39a53ffebea9b8304d8c5d94b7d85.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"根據這個定義,多雲意味着使用兩個不同的公有 IaaS 供應商,而不是將所有數據保存在一個多元化的雲供應商(如 AWS 或谷歌)中,或者僅使用本地基礎設施。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/79\/d8\/79f31eafc6bac0b3f0ebaf0ae78cebd8.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲與混合雲:有什麼區別?"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"多雲是指使用多個公有云平臺。混合雲是指私有云與公有云的組合。私有云通常託管在本地基礎架構上,但也可以由第三方託管。私有云和公有云之間的主要區別在於私有云的基礎架構、硬件和軟件都在我們自己企業或組織的專用私有網絡上維護的。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"更復雜的是,如果一家公司將私有云與多個公有云結合在一起,實際上是利用混合多雲策略就是在雲遊戲中玩自殺。這一切都會變得非常混亂,所以請繼續關注後續文章,對應的文章將會單獨介紹這個話題。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"如何實施多雲:用例"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"公司運維多雲環境的原因是多種多樣的。對於一些公司來說,採用多雲最初可能是影子 IT 的無意結果(影子 IT 是指獨立的部門採用了雲服務,而沒有讓 IT 團隊提供幫助)。隨着這些部署成爲運維不可或缺的一部分,IT 團隊可能會將它們納入到整體企業的雲策略中。對於其他人來說,多雲策略是有意部署的,因爲它們適用於特定的業務需求。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"那麼,你實際上是如何使用多雲策略的呢?多雲策略有什麼好處?多雲有許多引人注目的用例和基本原理,其中包括:"}]},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"災難恢復(Disaster recovery)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"故障轉移(Failover)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"成本優化(Cost optimization)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"避免供應商鎖定(Avoiding vendor lock-in)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"數據主權(Data sovereignty)"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"特定服務訪問(Access to specialized services)"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"災難恢復"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"運行多雲環境的最大優勢之一是在雲原生部署中實現了冗餘並規劃了災難恢復。使用多個雲有助於 IT 部門實施現代化的 3-2-1 備份策略,將其數據的三個副本存儲在兩種不同類型的媒介上,其中一份存儲在異地。當 3-2-1 演化時,這意味着另外兩個副本被保留在本地以便進行快速恢復。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲服務的改進,對本地備份的需求也發生了變化。現在,從雲上恢復數據的速度幾乎與從本地基礎設施中恢復數據的速度一樣快,而且許多公司根本不再使用物理基礎設施。對於希望或已經是雲原生的公司,將數據保存在多個公有云中可以降低將生產副本和備份副本保存在一個供應商處的風險。在發生災難或勒索軟件攻擊的情況下,多雲用戶可以恢復存儲在另一個獨立雲環境中的數據,理想情況下,該環境可以提供像 Object Lock 這樣的工具,以保護具有不變性的數據。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"故障轉移"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"類似地,一些雲原生公司利用多個雲供應商來託管其活動生產數據的鏡像副本。如果他們的一個公有云發生了故障,他們有相應的機制來將其應用程序的故障轉移到另一個公有云上。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"電子商務公司 Big Cartel,過去幾年在 AWS 上在經歷了多次宕機,這讓 Big Cartel 很是擔憂,之後他們採取了這一策略。他們代表他們的客戶託管了超過 100 萬的網站,一旦宕機,這些網站就會全部癱瘓。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Big Cartel 的技術總監 Lee Jensen 承認:“隨着時間的推移,我們越來越不能忍受單一存儲供應商的單點故障了”。現在,他們的數據存儲在兩個公有云上——Amazon S3 和 Backblaze B2 Cloud Storage。他們的內容交付網絡(CDN)很快,是優先從 Backblaze B2 提取數據,並使用 Amazon S3 作爲故障轉移。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/2e\/df\/2e9b255f547b13006711a853d49238df.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":"center","origin":null},"content":[{"type":"text","marks":[{"type":"italic"}],"text":"重要事項:一個 Big Cartel 的客戶網站"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"成本優化"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"挑戰者公司可以提供與三巨頭有競爭性的激勵措施,以及適用於特定數據用例的定價結構。例如,一些雲服務供應商提供免費的出口,但限制了可下載的數據量,而另一些雲服務供應商則收取名義上的出口費,但不限制下載量。精明的公司會根據他們擁有的數據量和需要訪問的頻率對不同類型的數據使用多個雲。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"SIMMER.io 是一個社區網站,它爲獨立遊戲開發者提供了共享 Unity WebGL 遊戲的便利,只要他們託管的某款遊戲出現了病毒式傳播,它就會受到來自 Amazon S3 的出口尖峯衝擊。這些費用將他們的成功變成了增長抑制劑。由於 Backblaze 和 Cloudflare 之間具有帶寬聯盟合作伙伴關係,SIMMER.io 將他們的數據鏡像到 Backblaze B2 Cloud Storage 中,並將出口費用減少到 0 美元。他們可以發展他們的網站,而不必擔心隨着時間的推移會增加出口成本,或擔心當遊戲病毒式傳播時會出現使用高峯,而且在這個過程中,他們還將冗餘翻倍了。"}]},{"type":"image","attrs":{"src":"https:\/\/static001.infoq.cn\/resource\/image\/85\/47\/85877105fe9ae13a60f242ed7252be47.png","alt":null,"title":"","style":[{"key":"width","value":"75%"},{"key":"bordertype","value":"none"}],"href":"","fromPaste":false,"pastePass":false}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":"center","origin":null},"content":[{"type":"text","marks":[{"type":"italic"}],"text":"龍之魂(Dragon Spirit):一個由 SIMMER.io 託管的遊戲"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"避免供應商鎖定"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"許多公司最初採用的是三巨頭中的其中一家,因爲它們是鎮上唯一的遊戲玩家,但後來他們覺得自己受到了封閉系統的限制。像亞馬遜和谷歌這樣的公司之間並不友好,它們都試圖用特定的服務來鎖定客戶。採用具有可互操作供應商的多雲基礎設施,可以讓這些公司在雲部署方面擁有更多的談判權和控制權。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"例如,聯網電視應用平臺 Gideo 最初使用的是一家集計算、存儲和內容交付於一體的雲供應商,但他們覺得自己沒有辦法減少賬單或改善他們收到的服務。他們採用了多雲的方式,與多個互不衝突的合作伙伴共同構建了一個技術棧,讓他們自己不再受制於任何一個供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"數據主權"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"許多國家以及歐盟都通過了法律,對數據存儲的位置和方式進行了監管。受這些數據駐留標準約束的公司可能會採用多雲的方式來確保其數據符合監管要求。他們在必須存儲數據的位置使用多個具有不同地理足跡的公有云供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"特定服務訪問"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"組織可以使用不同的雲供應商來訪問特定的或免費的服務。例如,一家公司可能使用 Vultr 等公有云訪問計算資源或裸金屬服務器,但將其數據存儲在另一個專門用於存儲的不同且可互操作的公有云中。或者,公司可以將雲存儲供應商與雲 CDN 結合使用,以更快地向最終用戶分發內容。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲基礎設施的優勢"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"無論是用例還是基本原理,公司都可以通過部署多雲基礎設施來獲得許多優勢,其中包括:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"numberedlist","attrs":{"start":null,"normalizeStart":1},"content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":1,"align":null,"origin":null},"content":[{"type":"text","text":"更高的可靠性和更低的延遲:在故障轉移場景中,如果一個雲上發生了故障,採用多雲策略的公司還可以依靠其他雲。如果一家公司使用了多個雲來實現數據主權或與 CDN 結合使用,他們可以看到延遲會降低,因爲他們的雲更靠近終端用戶。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":2,"align":null,"origin":null},"content":[{"type":"text","text":"冗餘:由於數據存儲在多個相互隔離的雲上,公司可以更好地抵禦威脅。如果網絡犯罪分子能夠訪問一組數據,但公司能夠從運行在另一個單獨網絡上的雲環境中恢復數據,那麼公司恢復數據的可能性就更大了。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":3,"align":null,"origin":null},"content":[{"type":"text","text":"更大的自由度和靈活性:在多雲系統中,如果出現問題或者成本開始變得難以管理,公司有更多的槓桿來影響這些變化,如果另一家供應商提供了更好的功能或更實惠的價格,公司也有能力離開現有供應商。企業還可以利用行業合作伙伴關係,利用最優秀的供應商來構建靈活且與雲無關的技術棧。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":4,"align":null,"origin":null},"content":[{"type":"text","text":"可承受性:使用多雲可能會降低成本,這似乎有悖常理,但這是真的。像 AWS 這樣的多元化雲服務供應商可以讓人們很難放棄他們的服務是有原因的——當你不能離開時,他們可以向你收取任何他們想要的費用。多雲系統使你能夠利用平臺間的競爭性定價優勢。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":5,"align":null,"origin":null},"content":[{"type":"text","text":"同類最佳服務:採用多雲戰略意味着你可以與專注於真正做好一件事而不是做所有事情的供應商合作。雲平臺專門爲客戶提供一流的服務、功能和支持,而不是提供一刀切的解決方案。"}]}]}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲基礎設施的挑戰"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"多雲系統的優勢吸引了越來越多的公司,但它也並非沒有挑戰。在 IDG 的研究中,成本控制、數據安全和治理被列爲五大挑戰。這就是爲什麼儘早考慮雲基礎設施、遵循最佳實踐並規劃管理意外事件的方法會變得更爲重要的原因。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"多雲最佳實踐"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在規劃多雲策略時,請記住以下的注意事項:"}]},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署策略"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"成本管理"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"數據安全"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"治理"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲部署策略"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"部署多雲策略的方法可能與使用多雲策略的公司一樣多。但是,它們通常可以分爲兩大類:冗餘或分佈式。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在冗餘部署中,數據被鏡像到多個雲環境中,比如用於故障轉移或災難恢復。使用多雲方式而不是混合方式來存儲備份數據的公司正在使用冗餘多雲部署策略。大多數希望使用多雲方式備份公司數據或環境的 IT 團隊都屬於這一類。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"分佈式部署模型通常適用於軟件開發團隊。在分佈式部署中,同一應用程序的不同工作負載或不同組件將基於最佳匹配分佈到多個雲計算環境中。例如,DevOps 團隊可能會將他們的計算基礎設施託管在一個公有云中,而將存儲託管在另一個公有云中。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"你的業務需求將決定你應該使用哪種部署類型。從一開始就瞭解你的部署方式可以幫助你爲自己的多雲策略選擇正確組合了服務和計費結構的供應商。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲成本管理"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"雲環境的成本管理是每家公司都會面臨的一個挑戰,即使你選擇與一家供應商保持緊密關係,以至於公司將雲優化作爲他們的整個業務模型。建立一個流程來跟蹤你的雲利用率和支出,並尋找能提供直接、透明定價規則的雲供應商以削減預算。"}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲數據安全"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲環境變得越來越複雜,安全風險也會相應地增加了。有更多的攻擊面,需要你規劃相應的安全措施。要在降低風險的同時利用多雲優勢,請遵循多雲安全最佳實踐:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"bulletedlist","content":[{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"確保對跨平臺的身份驗證有適當的控制。不同的雲供應商可能有不同的身份驗證協議,你需要有一個跨供應商也能工作的框架和安全協議。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"適當培訓你的團隊以識別網絡安全風險。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"保持最新的安全補丁。每個雲供應商都會發布自己的升級和補丁。確保儘可能實現自動升級。"}]}]},{"type":"listitem","attrs":{"listStyle":null},"content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"考慮使用像 Object Lock 這樣的工具來保護數據的不變性。Object Lock 允許你使用一次寫入多次讀取 (Write Once, Read Many,WORM)模型來存儲對象,這意味着在寫入後,數據在定義的時間段內無法修改或刪除。在此期間,任何操作、複製、加密、更改或刪除文件的嘗試都將失敗。文件可以被訪問,但沒有人可以更改它們,包括文件所有者或設置 Object Lock 的人。"}]}]}]},{"type":"heading","attrs":{"align":null,"level":5},"content":[{"type":"text","text":"多雲治理"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"隨着雲應用在公司的普及,你需要有明確的協議來管理你的基礎設施。考慮爲雲平臺的管理和配置創建標準化的操作過程,以避免影子 IT 擴散。並設置中心化的安全監控策略。"}]},{"type":"heading","attrs":{"align":null,"level":4},"content":[{"type":"text","text":"準備好使用多雲了嗎?遷移策略"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"如果你已經準備好了使用多雲,你可能想知道如何將數據從本地基礎設施中遷移到雲上,或者從一個雲遷移到另一個雲上。在選擇了適合你需求的供應商之後,你可以開始規劃數據遷移了。有很多工具可以遷移數據,但當涉及到在雲服務之間遷移時,像我們的 Cloud to Cloud Migration 這樣的工具可以讓事情變得更容易、更快捷。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"strong"}],"text":"原文鏈接:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"https:\/\/www.backblaze.com\/blog\/multi-cloud-strategy-architecture-guide\/"}]}]}
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章