• Tidak ada hasil yang ditemukan

TRirdfNG DAI HOC DIEN TOAN DAM MAY VOfI KHA NANG AP DUNG TAI CAC

N/A
N/A
Info
Unduh - Bebas
Protected

Academic year: 2024

Membagikan "TRirdfNG DAI HOC DIEN TOAN DAM MAY VOfI KHA NANG AP DUNG TAI CAC"

Copied!
6
0
0

Memuat.... (Lihat teks lengkap sekarang)

Unduh sekarang ( 6 Halaman )

Teks penuh

(1)

TAP CHi tCHOA HQC DAl HQC VAN LANG Phan Tsn Binh

DIEN TOAN DAM MAY VOfI KHA NANG AP DUNG TAI CAC TRirdfNG DAI HOC

CLOUD COMPUTING WITH THE POSSIBILTTY TO REAPPLIED TO UNIVERSITIES

PH.4.\ TA.\ BINHC^

TdM TAT: Dien todn dam mdy (Cloud) la mpt trong nhirng tir khoa nong nhdt trong gi&i cong nghe hi^n nay. Co 3 mo hinh trien khai dien todn ddm mdy; chung. riing, vd "lai"

giira ddm mdy chung vd riing. Trong khuon kho bdi viet. chiing tdi xin di cap den mpt sd md hinh di^n todn ddm mdy cUng nhu khd nang dp dung tgi cdc truang dgi hpc.

Tir khda: di^n todn ddm mdy; trung tdm die lieu; kit ndi mgng neng do.

ABSTRACT: Nowadays, Cloud Computing is one of the most trending keywords in IT field There are three methods to implement a cloud computing environment: public cloud, private cloud, and hybrid cloud. In this article, we discuss several innovative cloud computing designs that some Universities could apply in order to provide better experience in managing and administrating the IT system.

Keywords: cloud computing; data center; virtual private network connection.

I. DAT VAN DE

Nhieu tap doan ldn lap trung nghien ciiu vd thii nghiem trien khai cae irng dung vd h? thdng ha tang tren dam may chung (Public Cloud) (AWS, Azure, Google,...), thay vi lap trung tai trung tam du lieu (Dataeenler) tai chd (On-premise) theo tmyen thdng. Trudc kia, ngudi diing cdn phdi den edng sd hay van phdng, cd trang bi ddy dii de tiep tuc cdc cdng viec hang ngay, gid day h^ong md hinh dien loan dam may, tat cd cde tai nguyen, thdng tin, vd phan mem duoc chia se vd eung cap dudi dang dich vy tren nen tdng mdt ha tang mang chung (Ihudng la mang Intemet). Trong md hinh dien loan ddm may, tai bdt ky noi ddu ed ket ndi Intemet, ngudi dimg ed the hoan tdt cdc cdng viec

dang thye hien dd dang mdt cdch thudn Ipi, nhanh chdng, khdng edn lo ngai phai nhd luon ludn mang theo ben minh cae dii lieu cdn thiet, kem theo ndi lo mat mat dir lieu,... [1].

2. NOI DUNG

2.1. Gidi thieu ve Di^n toan dam may Dam may ehung la md hinh ddm may ma tren dd ngudi dimg dupe cung cap eac dich vu nhu lai nguyen, nen tang, eae iing dung luu Irir ttdn dam mdy vd edng bd cdng khai ra ben ngoai. Cdc dich vy tren ddm mdy chung cd the mien phi hoae cd phi. Dam may rieng Id cac dich vu dupe cung cdp ndi bd vd thudng la cac dich vu kinh doanh, myc dich nhdm den cung cap dich vu cho mdl nhdm ngudi vd diing ddng sau tudng lira ciia mdi td chuc. Dam may "Iai"

'•' ThS Truong D ^ hpc V i n Lang, phanlanbinh@vanlangiim edu.vn. Ma so: TCKH 18-20-2019 59

(2)

TAP CHI KHOA HOC DAI HQC VAN L.WG S6 18. T h i n g l l i i M i Id mdi tiudng ddm mdy ket hpp eung cdp cdc

dich vu ciia ddm mdy chung vd rieng [I], Nhung vdi mdl vai nhupc didm edn tdn tai va ddc biet vi ly do bdo mat, nhieu noi vdn phdn vdn ehua trien khai hodn loan he thdng tren dam mdy. Gdn day, dam mdy lai dang ndi len vd dupe cac tap loan Idn ddu tu manh me de nghien cuu va phat trien cung vdi nhihig edng nghe mdi nhu Software Defined Networking. Hdy cung xem lai nhirng uu nhuoc diem cua trung tdm dii lieu truyen thdng. va so sanh vdi ddm mdy ehung, dam may rieng \ a ddm mdy Iai trong eae Uudng hop thyc te ung dung tridn khai.

2.1.1. Trung tdm du lifu (Datacenter) truyen thdng

Cac don \ i sir dung phan Idn dang sir dyng trung tam dii lieu tai ehd, cd nghla la dat phdng may chii, thiet bi, day mang vd nhan sy de qudn Iy ngay tai dcm vi su dyng (cy the d ddy hi nha trudng).

U'u diem cua he thdng tmng tam dii lieu Id don vj sir dyng cd loan quyen qudn ly va sii dyng mgi thiet bi tir phdn cimg den phdn mem sau khi da mua va trien khai ngay tai cho. Cde ea sd dii lieu quan trpng, nhay cdm (sensitive Data) se ndm d nha trudng va nhd irudng ed loan quyen qudn Iy va bao mat dii lieu.

Nhuac diem ldn nhat ciia trung lam dij lieu la chi phi thiet bi, van hdnh, ea ve nhan su. k> thuat, bao tri nhu: ket ndi thiet bi, be thdng dien, dp dm, phdng chdng chdy nd, ban quyen, vd cap nhdt/nang cdp phdn mem he thdng eung nhu phan mem img dyng.

2.1.2. Ddm mdy chung (Public Cloud) Hien nay, nhiing nhd eung cap ha lang dich xu dien todn ddm mdy ldn vd pho bien

nhdt la Amazon AWS, Miero>ori Azure, \ a Google Cloud Platfonn. Cac cdng ty nay chdo hang nhiing sdn phdm \d ung dyng dupe tridn khai Uue ti^p yen ddm may. vdi cae cdng cu vd ngdn ngir lap trinh khac nhau. Dam may chung cd diem chung la trien khai he thdng nhanh gpn, ehi phi v ^ hdnh thdp. Qudn ni he thong eiia cdng ty co the trien khai 1 he thdng may ehu ddy dii trong vdng 1 gid, 1 ngay hoac I tudn.

Nhirng iing dyng tren ddm mdy dupe yien khai mpt cdch bao mat, vd ed the ty mo rdng trong trudng hpp nhu cdu sir dyng gia tang. Ngodi ra, vice van hanh va bao tri, cap nhat/nang cap ciing dupe tu dpng hda vd nhdn vien quan tri khong can phdi gidm sdt lien luc.

Cd the liet ke mpt sd loi ieh co bdn vd dac trung ciia he thdng Dien loan ddm mdy nhu sau:

Tang sy linh boat ciia h? thdng: Khi cdn them hay bdt mpt hay vai thi^t bj (Storaged Devices, Servers, Computers,...) chi can mdt vai phiit;

Sir dung tai nguyen theo yeu cdu: Tiiy vdo nhu edu eiia khdch hang, ngudi qudn yj thyc hien cau hinh he thdng eung cdp eho khdeh hang;

Tang kha ndng sdn sang cua h$ thdng;

Cac ling dyng va dich vy dupe can bdng ddng de dam bdo tinh khd dung. Khi mpt trong cdc phan cimg bi hu hdng se khdng lam anh hudng den he thdng, chi suy giam tdi nguyen he thdng;

Tiet kiem phdn ctmg. Md hinh truyen thdng trong nhidu trudng hpp cdn mpt he thdng rieng biel cho moi tdc vy/dich vy, diau ndy gdy ra Idng phi. Trong md hinh Dien loan dam may, cae tai nguyen IT duoc qudn Iy de ddm bao sy khdng lang phi ndy;

(3)

TAP CHi KiJOA HQC DAl HQC VAN LANG Phan Tan Binh

Cung cap eae djch vy vdi dp san sang gdn nhu 100% (mking down services in real time). Thanh todn theo nhu edu sii dyng thyc te (Paying-as-you-go IT): Md hinh Dien loan dam may lich hop vdi he thong billing de thye hien viee linh cudc dya theo dung lupng ngudi diing ddi vdi cac tdi nguyen nhu tdc dp CPU, dung lupng RAM. dung lupng HDD,...;

Tdm Iai, md hinh Dien todn dam may khdc phyc dupe 2 yeu diem quan ypng ciia md hinh truyen thdng ve kha nang md rdng va dp linh hoat. Cdc td chirc cung nhu cdng ty cd the trien khai irng dung vd dieh vy nhanh chdng, gidm chi phi vd it nii ro [2].

Nhupc diem ldn nhdt ciia dam may chung la lim irir vd bao quan dir lieu, neu cdng ty CO cac quy dinh phai luu trir dir lieu ciia khach hang d nai rieng biel (Offline), phdng trudng hpp bi mat dii lieu, mat uy tin ciia cdng ty. Day la ly do cde edng ty va tap doan van ehua mudn tnen khai he thdng ben dam mdy.

2.1.3. Ddm mdy lai (Hybrid Cloud) Vdi nhihig nhupc diem vd uu diem cua hai md hinh trung tam dii lieu va dam may chung, dam mdy lai la sy ket hpp hoan hdo ciia hai hinh thiic ndy. Dam mdy lai don gidn la mpt phan he thdng d tai trung tdm dii lieu, mpt phdn he thdng d dam may, de tan dyng va yiet tieu nhirng uu nhupc diem ciia nhau [2].

2.2. Giai phap trien khai thuc te tai trudng Khdng nam ngoai xu the phat trien chung, cdc iing dung tnen khai fren he thdng cdc may chii (website, cdc iing dyng yong qudn ly, dieu hanh, dao tao,...) ciing dupe Trudng Dai hpc Vdn Lang dp dung yong qua dinh boat dpng. Nhin chung, he

thdng cae img dung ciia mdt trudng dai hpc (ddc biet Id trudng ed nhiing co sd ddo tao khae nhau), khi cd nhirng yeu cdu thidt ydu nhu sau: Ket ndi he thdng hang ngdn lupt truy cap ciing Iiic, yong dd 70% thdi gian Id thap diem, khi cd it lupt truy cap se du lai nguyen va 30% thdi gian Id eao diem, ddc biet cudi miia thi, khi phdt sinh nhidu nhu cau (bang diem, nhap diem, dang ky Idp hpe,...); Quan ypng ban bet, Data/du lieu lien quan den sinh vien phdi dupe bdo mat va luu trii trong khudn vien tnrdng.

Nha cung cap dich vu dam may ed bdo mat dupe dii lipu quan ypng hay khdng; Viec luu trii, dy phdng va van hanh dii lieu phdi dupe bao dam de khdng cd sy ed mdt dir lieu vd bang diem, diem thi cua sinh vien vd rat nhieu yeu cau phdt sinh khdc,... Hien lai, neu trien khai todn bd he thdng ciia trudng len ddm may: Nhuac diem: Khdng bdo ddm tuyet ddi viec dii lieu, bang diem, diem thi va thdng tin ciia sinh vien, mdn hpc cac Idp,... dupe bdo quan va bdo mat;

Uu diim; Website vdi dp ye thap, cd the dap ling hdng ehue ngdn truy cap vao ciing mpt thdi diem, ed the Ihem/bdt may chii ngang hdng mdt cdch ty ddng vao miia cao diem, vdi chi phi thdp.

Neu trien khai loan bd he thdng eiia trudng tai chd:

Nhuac diem: He thdng may chu rat tdn kem, khdng the nhan rdng, chi phi bao hdnh bdo qudn bdo tri cao, de xay ra qua lai vao giai doan cao diem, cd the gay ra hien tupng cham, tham chi sap mang.

Uu diim: Dpi ngii quan tri bdo quan va bdo mat 100% thiet bi vd dir lieu.

Neu trien khai md hinh ddm may lai, so dd hoat ddng ciia he thdng se nhu sau:

61

(4)

1 k i l o \ l i n e DAl HOC \ .\N LANG s4i8.Thi5eL!jil51?-

• • •

&M £ l i £ y

OlBO Vien 5nh Vtk\ Ptxj Huynh

Hinh I. Sa do trien khai h^ thong 1) Die lieu, thdng tin quan trpng vd

cdc thiit bi liru tru bd tri & tgi tru&ng hpc.

sic dung h? thdng lieu trir chuyen bi^t (SAN) dang sdn co. H? thdng dupe bdo mat bang cac thiet bj mdng liia hien ed.

Ap dung nhdt qudn ehinh sdch chi trao ddi vdi cym may chu chia tdi, chi md cdng (port) 3389 cho MySQL (Allow TCP port 3389 for MySQL Database, Allow source IP only from web server cluster). Da sd cac trudng dai hpc da ddu tu he thdng mdy chii. (hik bi tudng lua, he thdng luu trii, da sd nhiing thiet bi nay se dupe sii dung lai, gidm bdt chi phi dau lu khi chuyen sang md hinh mdi.

2) Trien khai cum mdy ehu chia tdi (WebseiTcr Cluster) tren mdy chu ddm mdy.

Cd thd uien khai 1-2-3 mdy chu. vd hr ddng trien khai tdng/bdt mdy chit (neu can) vao gid eao diem/thap diem. Khdng luu thdng tin, dir lieu quan trpng, nhay edm yen ddm may.

Cym may chii chia tdi Id cym mdy do ddc lap, cd ciing chuc nang boat dpng, cd the boat dpng song song de giam tat cho nhau, nhung cdc yeu cau/phdn hdi va tmy vdn dir li^u la gidng nhau. Ty dpng Ihem/bdt mdy chu Id dac tinh uu vi?t khi trien khai yen ddm mdy, giiip phdt huy tdi da tinh linh boat, hieu qud va tidt ki$m cua he thdng. Sau day la mieu td so lupc vdi dac diem ky Ihudt khi lien hdnh:

De trien khai mdy chii web (da phdn chay he dieu hanh Linux) tren dam may thay vi yen mdy chii do tai cho (local ESXi), ngudi quan tri he thdng cdn phai cung cap file dang •.ova cua mdy chii linux hien cd yen may ehii local, vd tdi Ien ddm may theo dang hinh dnh dmh dang (Webserver hnage). Hinh anh dinh dang ndy se dupe diing dd didn khai (n) sd lupng may do, c6 cimg chiic nang dd hinh thdnh cym may chii chia tdi. Cdc may chu yong cimg mpt cym

(5)

TAP CHi KHOA HQC DAl HQC VAN L.^NG Phao T^n Binh

CO the gidi quyet eiing mpt loai ludng dii li?u (Traffic) de gidm tdi cho nhau;

De tdng ho^c giam sd lupng may chii, de bdo ddm cae chirc nang hoat ddng dn djnh vd website dupe thdng sudt, dieh vu dam mdy ehung se n^ dpng tao them may chii niu cam thay he thdng bi qua tai hay xda bdt mdy chii neu dudi tai. Qud trinh nay ed the dupe hr ddng hda hodn loan dya yen ty Ip sir dung bp xii ly (%CPU) hay ty 1? sii dung bp nhd (%Memory), hay theo khung gid ma ngudi qudn tri dinh san. Do dd, ngudi qudn tri cd the niy chpn thay ddi so lupng mdy chu theo dung lupng yeu cdu, hay theo thdi diem dau miia, cudi miia [3].

3) Kit ndi h^ thong luu tru chuyen bi?t (SAN) tgi truang v&i hi thong mdy chu sic dftng cdng kit ndi tich hpp tu&ng lira, thong qua duang hdm thui bao rieng (VPN Tunnels) trin nin Internet theo giao thirc dia chi cong cpng [3].

De ddm bdo tdc dp/bang thdng vd dudng ket ndi khdng bi nghen, cd the dung 2-4 dudng ham diue bao rieng vdi muc dich chia tdi; Mdi dudng hdm thue bao rieng cd bdng thdng tdi 5Gbps qua giao thiic dia chi cdng cpng. Lupng bang thdng nay cd the du diing de ttuyen dir lieu ldn qua dam may vdi dp ye < Is; Neu lo ngai khdng bdo mat vd khdng mudn truyen dir lieu qua Intemet, cd the thue dudng day thue bao rieng ket ndi tryc tiep tir dam may ve thdng thiet bi tudng Ilia I91 chd; Dp he giiia mang rieng ao (VPN public) vd he thdng tai chd rat thdp.

4) Bdo mat he thong mdy chu trin ddm mdy dp dung chinh sdch bdo mat cua nhd cung cdp (Cloud security group/A CL).

tuang tic phucmg thuc su dung thiet bi tuang lua tgi chd v&i quy dinh chinh sdch

truy cap (firewall + Access contiol list), chi cho phep nhu sau; Ngudi dimg ni Internet truy cap mdt chieu qua dinh dang http/https. (ACL port 80/443 inbound); Cho phep yao ddi dii lieu tir he thdng may chu yen ddm mdy tdi co sd dii lieu tai chd qua cdng 3389. (Allow Outbound/inbound TCP port 3389 to local MySQL database)

5) Sic dung cdn bdng tdi cung vdi cdch thicc phdn gidi ten (DNS) cua tru&ng (www.vanlanguni.edu.vn), tu dpng cdn bdng tdi khi truy vdn vdo cum mdy chd.

Qua trinh can bang tai yen ddm may se giam sdt yang thai boat ddng ciia timg mdy ehii trong tdng the he thdng vd chuyen yeu cdu truy van thich hpp tdi mdy chii cy the nham tdi uu tdi.

3. TINH TOAN VA KET LUAN Vdi md hinh neu den, quy yinh lam viee se nhu sau: Ngudi diing (gido vien, sinh vien, phu huynh) se truy cap vdo www.vanlanguni.edu.vn, liie he thdng mdy chii can bang tdi ed dia chi dupe cdng bd tir yudc; He thdng cdn bang tai se chuyen yeu cau cua ngudi su dung den mdy chii thich hop; Mdy chii xii ly yeu cdu, neu cdn se giri truy vdn dti Ueu dupe luu trir d he Ihong luu trii dir lieu tai cho (qua VPN Tunnel);

He thdng luu trii dir lieu se xir ly truy vdn, ma hda va giii ya lai mdy ehii; Mdy chii phan hdi cho ngudi diing, ket thiic mdl phien lam viec.

U'u di8m: He thdng mdy chii ed the hr ddng tinh loan, tao them hay gidm bdt sd lupng mdy chii neu can; Chi phi tinh theo gid, nSu can 5 may chii yong mot man, chi phi rat thap so vdi mua may chu cai phan mdm Vmware ESXi de tao may do; Chi can hai nhdn sy cd ehuyen mdn de qudn Iy ed he

(6)

TAP CHl KilOA HQC DAJ HQC \AN L.-\NG S 6 l 8 . T l . i o s I l l i £ i i thdng; Chi phi mdi nam cho ed he thong su

dung ddm mdy giao ddng ni 1000-2000S [4].

Quy md eiia mdt sd trudng khd Ion.

qudn ly mdt sd ddng sinh vien (khoang 30- 40 ngdn), riing dd sd phu huynh theo ddi con em, vdi vdi tram cdn bd/gidng vien va mdt sd lupng khdeh vang lai. Theo tinh loan, mdi mdy chu do (Webserver \ ' M ) vdi 4 CPU va 16GB RAM cd thi xu ly 4.000 yeu cdu/l giay [5].

Neu he thdng cd 3 may chii ao dimg cho ung dyng website, trudng ehi cd the xu ly khodng 12.000 yeu cau/1 gidy, vao gid cao diem ludn bi qud tdi do tdt cd sinh vien cd gang truy cap xem thdi khda bieu, dang ky ldp vd xem lich thi. diem thi. Nhung vdo ngdy thudng, mdy chii thudng du tai vi website ed il ngudi vdo xem, nhung van phdi van hdnh, bao dipn nang va he thdng lam lanh vdn phdi boat dpng,... De de hinh dung quy md tdng the khi trien khai dp dyng md hinh ddm mdy, xin de cap den mpt vdi chi tiet cu the lien quan den chi phi dupe tham khdo thyc te: Mpt mdy chii (chay Linux VM) 4 CPU/16GB RAM bp nhd se ed gia khodng 50S/thdng. Gia sir edn

diue 2 may ehu ch^y 24 7 d l website trudng cd thd iruy cap dupe \d khdng h]

nghen. chi phi khodng 1200S'nam. Vdo gid eao di6m, cd thd t^o diem 3-5 may chii do vdo 8 gid hanh ehinh d l gidi quyel lupng truy cap ldn va nr dpng tdt sd may ehii do khdng edn vdo ban dem de del kiem chi phi. Bdng cdch nay, cd thi giai quyet dupe lupng truy cap vdi gid thanh cpng them chi khoang 300$/nam. Thay vi mua may chu ESXi gia 15000$ vd ehi phi bdo yi + lien dien, cd the su dyng hp thdng dam mdy yong vdng 10 nam, vira hipu qua vira tilt kiem chi phi [4]. Chi tiet ehi phi dau tu ban ddu ciia he thdng lai chd, khd ndng thue bao kenh rieng,... khdng de cap den yong khudn khd bai vidt. Tuy nhien cd the xde dinh tdng chi phi dau tu ciia hp thdng lai sc khdng thap hon so vdi md hinh trudc ddy.

Vdi nhirng phan tich neu tren, cd the thdy dupe tinh khd thi, hipu qud, cdc Ipi ich vupt trpi cua he thdng dien todn dam may so vdi each thuc van hanh truyin thdng, qua do gdp phan giup cho cdc trudng dai hpe ypng edng tdc dieu hdnh vd quan ly ngay mpt hoan thipn.

TAI LI$U THAM KHAO

[1] Sabahi, F (2011), Cloud computing security threats and responses. Communication Sc^\are tvidNetwoiis (ICCSN). 2011 IEEE 3rd International Conference on. 2011

[2] Ubuntu Cloud Technologies for future-tlmiking companies. 2012' http!: www.canonical.com/aboul-canonical'resources/white-papers/ubuntu-eloud-

icchnologics-future-thinking-companies.

[3] https://docs.microsoft.com/en-us'a2ure-vpn-galeway/vpn-galeway-aboul-vpngaleways [4] https ://a2ure. microsoft, com/en-us pncing/.

[5] https:/ \H rongsideoftnemphis.com/2013/10/21/requests-per-second-a-reference/

Niiav ly nhdn bdi: 22-10-2019. Ngaybien tap xong: 18-11-2019. Duyptdang: 29-l]_2oio

Referensi

Unduh sekarang ( PDF - 6 Halaman - 291.81 KB )

Dokumen terkait