ECS

An Elastic Cloud Server (ECS) is a compute server that consists of vCPUs, memory, images, and Elastic Volume Service (EVS) disks, allowing on-demand allocation and elastic scaling. It is used together with cloud services such as Virtual Private Cloud (VPC), Network ACL, and Cloud Server Backup Service (CSBS) to construct an efficient, reliable, and secure computing environment, ensuring stable and continuous running of services.

BMS

Bare Metal Server (BMS) is a way of provisioning dedicated physical servers for tenants. It provides remarkable computing performance and stability for running key applications. The BMS service can be used in conjunction with other cloud services, such as Virtual Private Cloud (VPC), so that you can enjoy consistent and stable performance of server hosting as well as the high scalability of cloud resources.

IMS

In Image Management Service (IMS), an image is an Elastic Cloud Server (ECS) template containing mandatory software, such as the operating system (OS). The template may also contain application software, such as database software, and proprietary software. Images can be divided into public, private, and shared images. You can use a public, private, or shared image to create ECSs. You can also create a private image from an existing ECS or an external image file.

AS

Auto Scaling (AS) is a service that automatically adjusts resources based on service requirements and configured AS policies. You can specify AS configurations and policies based on service requirements. These configurations and policies free you from repeated adjustment of resources in response to service changes and demand spikes, helping reduce resources and labor costs required.

EVS

Elastic Volume Service (EVS) is a virtual block storage service, which provides block storage space for Elastic Cloud Servers (ECSs) and Bare Metal Servers (BMSs). Users can create EVS disks on the console and attach them to ECSs. The method for using EVS disks is the same as that for using hard disks on physical servers. Additionally, EVS disks have higher data reliability and I/O throughput and are easier to use. EVS disks are suitable for file systems, databases, or system software or applications that require block storage devices.

SFS

Scalable File Service (SFS) provides fully-hosted shared file storage for ECSs. In compliance with the Network File System (NFS and CIFS) protocol, SFS can support storage of PB-level files. With the scalable performance, SFS can seamlessly handle data-intensive and high-bandwidth applications.

SFS-DJ, that is, OceanStor DJ (Manila), functions as the SFS server and receives requests from the SFS Console.

OBS 3.0

Object Storage Service (OBS) is a cloud storage service optimized for storing massive amounts of data. It provides unlimited, secure, and highly reliable storage capabilities. On OBS, you can easily perform storage management operations, such as bucket creation, modification, and deletion, as well as object upload, download, and deletion.

OBS provides users with unlimited storage capacity, stores files in any format, and caters to the needs of common users, websites, enterprises, and developers. Neither the entire OBS system nor any single bucket has limitations on storage capacity or the number of objects/files that can be stored. OBS supports APIs over Hypertext Transfer Protocol (HTTP) and Hypertext Transfer Protocol Secure (HTTPS). You can use OBS Console or OBS clients to access and manage data stored in OBS anytime, anywhere. With OBS-provided APIs, you can easily manage data stored in OBS and develop upper-layer service applications.

OBS can be deployed in multiple regions, delivering flexible expansion and enhanced reliability. You can deploy OBS in specific regions for faster access.

VPC

Virtual Private Cloud (VPC) enables you to provision logically isolated, configurable, and manageable virtual networks for ECSs, improving the security of resources in the system and simplifying network deployment.

You can select IP address ranges, create subnets, customize security groups, and configure route tables and gateways in a VPC, which enables you to manage and configure your network conveniently and modify your network securely and rapidly. You can also customize access rules and firewalls to control instance access within a security group and across different security groups to enhance security of instances in the subnet.

Source Network Address Translation (SNAT) maps the private IP addresses of a subnet in a VPC to a public IP address, thereby allowing the cloud servers in the subnet to access the Internet.

EIP

Elastic IP (EIP) is an IP address that can be used to access services on the cloud platform through a network other than the cloud platform. An EIP is a static public IP address. EIPs can be bound to or unbound from ECSs, BMSs, virtual IP addresses, or elastic load balancers.

EIP-QoS is a feature used to limit the external network traffic rate for EIP. This feature enables you to adjust the EIP bandwidth for users on ManageOne Operation Portal.

ELB

Elastic Load Balance (ELB) is a service that automatically distributes incoming traffic across multiple backend Elastic Cloud Servers (ECSs) based on predefined forwarding policies. It improves the fault tolerance and expands service capabilities of your applications. ELB also eliminates single points of failure (SPOFs) and improves system availability.

Network ACL

A network access control list (ACL) is a security service for VPCs. It controls access to VPCs or subnets, supports blacklist and whitelist policies (that is, permit and deny policies), and determines whether data packets can flow into or out of VPCs or subnets based on the inbound and outbound ACL rules associated with the VPCs or subnets.

VPN

Virtual Private Network (VPN) establishes an encrypted communications tunnel between a user and a Virtual Private Cloud (VPC). With VPN, you can connect to a VPC and access service resources in it.

VPN-QoS is a feature used to limit the external network traffic rate for VPN. This feature enables you to adjust the VPN bandwidth for users on ManageOne Operation Portal.

Direct Connect

Direct Connect is a dedicated connection channel for high-speed, low-latency, and stable security between a local data center and a VPC. With Direct Connect, you can use a dedicated network connection to connect your network, data center, and colocation environment to VPCs to enjoy a high-performance, low-latency, and secure network.

VPC Endpoint

VPC Endpoint (VPCEP) is a cloud service that extends VPC capabilities. It provides secure and private channels to connect VPCs to endpoint services, providing powerful and flexible networking without having to use EIPs.

CC

Cloud Connect (CC) allows you to quickly build high-speed, high-quality, and stable networks between Virtual Private Clouds (VPCs) across regions.

With CC, you can load network instances in different regions to a cloud connection to enable communication between private networks. The network instances can be VPCs in the same region or authorized VPCs in different regions.

CloudDNS

Cloud Domain Name Service (CloudDNS) translates domain names like www.example.com into IP addresses like 192.168.2.2 used for servers to connect to each other. This allows you to visit websites or web applications by simply using domain names.

SIS

Security Index Service (SIS) is a security assessment service for your cloud environment. It provides you with unified, clear, and multi-dimensional security views.

CFW

With a distributed architecture, Cloud Firewall (CFW) implements fine-grained access control for each virtual machine (VM). With visual traffic, CFW allows you to configure security policies associated with your service language.

EdgeFW

Edge Firewall (EdgeFW) bridges the internal network and the external network. EdgeFW provides border security protection for the north-south traffic between the cloud data center and external networks, and supports intrusion prevention system (IPS) and network antivirus (AV) functions for EIPs.

DBAS

Database Audit Service (DBAS) provides the database audit function in out-of-path pattern. It records user access to the database in real time, generates fine-grained audit reports, and sends real-time alarms for risky operations and attacks. In addition, DBAS generates compliance reports that meet data security standards to locate internal violations and improper operations, ensuring data asset security.

KMS

Key Management Service (KMS) is a secure, reliable, and easy-to-use service that helps users centrally manage and protect their Customer Master Keys (CMKs) and data encryption keys (DEKs).

WAF

Web Application Firewall (WAF) keeps web services stable and secure. It examines all HTTP and HTTPS requests to detect and block the following attacks: Structured Query Language (SQL) injection, cross-site scripting (XSS), web shells, command and code injections, file inclusion, sensitive file access, third-party vulnerability exploits, Challenge Collapsar (CC) attacks, malicious crawlers, and cross-site request forgery (CSRF).

HSS

Host Security Service (HSS) is designed to protect server workloads in hybrid clouds and multi-cloud data centers. It provides host security functions, Container Guard Service (CGS), and Web Tamper Protection (WTP).

VBS

Volume Backup Service (VBS) enables the system to create EVS disk backups. The backups can be used to restore EVS disks, maximizing user data accuracy and security and ensuring service security.

• Karbor functions as the VBS backend which receives requests from the VBS Console and invokes FusionSphere OpenStack components.
• eBackup Server&Proxy functions as the VBS backend which backs up data from the production storage to the backup storage.

CSBS

Cloud Server Backup Service (CSBS) includes server backup and application backup.

• Server backup enables you to create a backup for your ECS or BMS (including its flavor, system disks, and data disks) and restore service data of the ECS or BMS using the backup data, guaranteeing data security and consistency.

  The following components are used:

  • Karbor functions as the CSBS backend which receives requests from the CSBS Console and invokes the eBackup Manager & Workflow components.
  • eBackup Manager&Workflow functions as the CSBS backend which receives requests from Karbor and invokes FusionSphere OpenStack components.
  • eBackup Server&Proxy functions as the CSBS backend which backs up data from the production storage to the backup storage.
• Application backup allows you to back up files and databases deployed on your on-premises data center ECSs or BMSs. You no longer need to back up your entire servers or disks. It offers protection against accidental deletions, or hardware and software faults.

  The following components are used:

  • Karbor functions as the CSBS backend which receives requests from the CSBS Console, and invokes Karbor Proxy to manage clients or invokes DPA for application backup and restoration.
  • Karbor Proxy is used to manage clients, such as installing and uninstalling a client.
  • DPA is used to back up application data, store backups, and restore an application with the backups.
  • A client consists of a client assistant and application clients, which are deployed on a user host.

    A client assistant manages application clients, and the application clients communicate with DPA to obtain production data for backup and restoration.

    NOTE:

    Server backup and application backup share the Karbor and CSBS-VBS Console components.

CSDR

Cloud Server Disaster Recovery (CSDR) provides remote disaster recovery protection for cloud servers. If a production center fails during a disaster, protected cloud servers can be restored in the remote DR center.

CSDR supports the following protection types:

• When the protection type is CSDR, remote DR protection can be provided for ECSs and BMSs. If the production center fails in a disaster, the protected ECSs and BMSs can be recovered in the remote DR center.
• When the protection type is VHA+CSDR, no data is lost and services are not interrupted if a single storage device in the production center fails. If the production center fails in a disaster, the protected ECSs and BMSs can be recovered in the remote DR center.
• When the protection type is CSHA+CSDR and the production center is faulty, services can be automatically or manually switched to the intra-city DR center to recover the protected ECSs without data loss. If the production center and intra-city DR center fail in a disaster, the protected ECSs can be recovered in the remote DR center.

eReplication functions as the CSDR backend which receives requests from the CSDR Console.

CSHA

Cloud Server High Availability (CSHA) provides cross-DC HA protection for ECSs within one city. When the production center is faulty, services on the protected ECS can be automatically or manually switched to the DR center.

eReplication functions as the CSHA backend which receives requests from the CSHA Console.

VHA

Volume High Availability (VHA) service provides local storage-based active-active protection for EVS disks on ECSs. When a storage device is faulty, no data is lost and services are not interrupted.

eReplication functions as the VHA backend which receives requests from the VHA console.

CCE

Cloud Container Engine (CCE) is a highly scalable, high-performance, enterprise-class Kubernetes service for you to run Docker containers and applications. With CCE, you can easily deploy, manage, and scale containerized applications in the cloud.

SWR

SoftWare Repository for Container (SWR) allows you to easily manage the full lifecycle of container images and facilitates secure deployment of images for your applications. You can upload, download, and manage container images through the SWR console, SWR APIs, or community CLI.

SMN

Simple Message Notification (SMN) is a reliable, flexible, and large-scale message notification service. It is designed to provide one-to-multiple message subscription and notification over a variety of protocols. It significantly reduces system coupling and pushes messages to specified subscription endpoints.

ROMA Connect

ROMA Connect is a full-stack application & data integration platform. It focuses on application and data connections and applies to multiple common scenarios of enterprises. ROMA Connect provides lightweight message, data, API, device, and model integration to simplify cloud transformation for enterprises and support cross-regional integration for cloud and on-premises applications.

DCS

Distributed Cache Service (DCS) is an online, distributed, in-memory cache service compatible with Redis. It is reliable, scalable, usable out of the box, and easy to manage, meeting your requirements for high read/write performance and fast data access.

APM

Application Performance Management (APM) monitors and manages the performance of cloud applications in real time. APM analyzes the performance of distributed applications, helping O&M personnel quickly locate and resolve faults and performance bottlenecks.

MRS

MapReduce (MRS) is a cloud-based data processing and analysis service that is reliable, scalable, easy to manage, and immediately ready for use.

MRS builds a reliable, secure, and easy-to-use platform that provides storage and analysis capabilities to process massive amounts of data. You can apply for and use hosted components like Hadoop, Spark2x, HBase, and Hive to quickly create clusters on a host and provide batch storage and computing capabilities for massive data that has low requirements on real-time processing. You can delete the clusters as soon as completing data storage and computing.

GaussDB(DWS)

GaussDB(DWS) is an online data processing database that uses the cloud infrastructure to provide scalable, fully-managed, and out-of-the-box analytic database service that frees you from database management and monitoring. It is a native cloud service based on the Huawei converged data warehouse GaussDB, and is fully compatible with ANSI SQL 99 and SQL 2003 standards, as well as the PostgreSQL and Oracle database ecosystems. GaussDB(DWS) provides competitive solutions for PB-level big data analytics in various industries.

Service Builder

Backed by open service APIs, O&M automation capabilities, and the government and enterprise process adaptation engine, Service Builder provides a unified process and a robust ecosystem for provisioning IT capabilities as services. You can quickly apply for, provision, configure, and deploy IT resources and capabilities online.

LVS

Linux Virtual Server (LVS) is a Linux server cluster system that provides level-1 load balancing for hybrid cloud common services.

Nginx

Nginx provides a reverse proxy for the cloud service console page to implement load balancing of services and data on each console node and distribute traffic. Cloud service requests are delivered by the LVS and forwarded to the Nginx. The Nginx forwards the cloud service requests to the cloud service console.

NTP

Network Time Protocol (NTP) provides time synchronization for hybrid cloud services, ManageOne, and tenant VMs.

HAProxy

HAProxy: Provides load balancing for cloud services from the console node to service node. Cloud service requests are sent from the console node to HAProxy. Then HAProxy forwards the requests to the required cloud service node.

API Gateway

API Gateway: Provides API management as well as API intranet and extranet isolation functions. When a user accesses a cloud service API, the user does not call the service API directly, but accesses the API of the service registered on API Gateway. In this way, invalid requests are shielded, preventing the internal management API from being exposed.

TaskCenter

Used to view the creation of service instances such as ECS.

DNS

Domain Name System (DNS) provides the domain name resolution service for cloud services, ManageOne, and tenant VMs.

SDR

Service Detail Record (SDR): Provides metering and charging files of each cloud service.

CCS

Cloud Configuration Service (CCS) allows users to access third-party cloud resources based on the hybrid cloud, and it provides capabilities of cross-cloud management and deployment.

DMK

Deploy Management Kit (DMK) is a unified deployment and configuration platform on which all services can be installed and upgraded.

GaussDB

GaussDB: Provides common databases for cloud services.

EulerOS

Management VMs where cloud services are deployed use EulerOS as the operating system.

ManageOne

Provides cloud service operation management and system O&M management.

ManageOne_B2B: In the B2B large-scale scenario, the tenant portal is isolated from the management portal, and the tenant portal and management portal can be accessed from the intranet and public network.

eSight

Manages servers, storage devices, and network devices in a unified manner.

FusionCare

A tool specific to O&M personnel for unified health check and FusionSphere offline log collection.

CloudNetDebug

It is an O&M tool, which helps O&M personnel capture packets automatically. CloudNetDebug integrates the probe and packet capture functions to handle various network problems that may occur in the data center. The probe function can automatically check whether the service network is interrupted and whether packet loss occurs. The packet capture function can be used to implement automatic packet capture, supporting multi-point collaborative packet capture based on service flows and single-point VM NIC packet capture and host NIC packet capture.

LogCenter

LogCenter provides unified log collection and analysis capabilities and can collect operation logs of the management and tenant portals and run logs of cloud services.

IaaS-V

Virtual resource pool cloud service. Huawei Cloud Stack can manage virtual resource pools managed by FusionManager/FusionCompute and synchronize cloud service resources like ECSs and EVS disks in these virtual resource pools. ManageOne serves as the unified management system for FusionManager/FusionCompute virtual resource pools, allowing you to use the ECS, EVS, and VPC services with consistent experience.

AutoOps

AutoOps: Provides full-stack O&M automation from infrastructure to service applications based on the O&M automation platform built with agile O&M. With a library of rich O&M cases, AutoOps allows flexible orchestration of O&M processes to standardize O&M scenarios. It supports scheduled and immediate execution of O&M tasks in batches and can expand to meet growing business demands. By deploying AutoOps, users can effectively reduce their labor costs and management risks while improving the O&M efficiency and customer satisfaction.

MOPortal

MOPortal: Displays introduction, advantages, solutions, and more of the supported cloud services on the hybrid cloud.

ManageOne_OCC

Operations Command Center (OCC) aims at digital operations of full-stack cloud. Analytics room provides operations data analysis and decision-making support. Duty room traces daily events and distributes problems. Work shop is responsible for data processing and production, and provides data services. The analytics room, work shop, and duty room work together to ensure stable running of cloud platform services.

Public Cloud Management

• Cloud Federation with Huawei Cloud

  A combination of federated authentication and individual user permission settings ensures that the permissions for Huawei Cloud Stack and Huawei Cloud accounts are kept consistent, allowing Virtual Data Center (VDC) users of Huawei Cloud Stack to access the Huawei Cloud console and use its services.

Two-Level Cloud Management

• Cloud Federation with Huawei Cloud Stack

  By using cloud federation, you can borrow resources from peer Huawei Cloud Stack, as well as register, provision, create, use, and manage resources of peer Huawei Cloud Stack.

• Interconnection with Huawei Cloud Stack using APIs

  Interconnection with Huawei Cloud Stack using APIs allows you to interconnect the local Huawei Cloud Stack with the peer Huawei Cloud Stack using the peer Huawei Cloud Stack API Gateway when resources on the local Huawei Cloud Stack are insufficient so that you can quickly request and borrow resources from the peer Huawei Cloud Stack.

HCS Online Management

A combination of federated authentication and individual user permission settings ensures that the permissions for Huawei Cloud Stack and Huawei Cloud Stack Online (HCS Online) accounts are kept consistent, allowing Virtual Data Center (VDC) users of Huawei Cloud Stack to access the HCS Online console and use its services.

FusionSphere OpenStack

FusionSphere is based on the open OpenStack architecture and is designed and optimized for enterprise cloud computing data center scenarios. It provides powerful virtualization functions and resource pool management capabilities, rich cloud basic service components and tools, and open and standardized APIs, which helps customers horizontally integrate physical and virtual resources of data centers and vertically optimize service platforms.

Service OM

Provides cloud service O&M capabilities.