VMware Avi Load Balancer 31.1.1 发布 - 多云负载均衡平台
VMware Avi Load Balancer 31.1.1 发布 - 多云负载均衡平台
VMware Avi Load Balancer 31.1.1 发布 - 多云负载均衡平台
应用交付:多云负载均衡、Web 应用防火墙和容器 Ingress 服务
请访问原文链接:https://sysin.org/blog/vmware-avi-load-balancer-31/ 查看最新版。原创作品,转载请保留出处。
作者主页:sysin.org
负载均衡平台
VMware Avi Load Balancer
VMware Avi Load Balancer 可简化应用交付,并提供多云负载均衡、Web 应用防火墙和容器 Ingress 服务。
新增功能
Avi Load Balancer Version 31.1.1
Release Date: 31-January-2025
VMware Avi Load Balancer version 31.1.1 provides various system, feature, security, performance, and scale enhancements, including:
- Base OS update to Ubuntu 24.04 LTS and OpenSSL version to 3.0.x
- Increased data path performance support for Intel QuickAssist Technology
- Flexible Controller sizes with introduction of an XLarge size, and enhanced scale parameters
- Updated dashboards and configuration user interfaces
详细描述如下。
Cloud Connector
- Multiple availability zones supported for vCenter and NSX clouds.
Core LB Features
- IPv6 support for traffic cloning.
- IPv6 support for DataScripts.
- IPv6 support for Traffic Captures.
- Support for load balancing Diameter application layer protocol transported over TCP or SCTP (Under Tech Preview).
- Support to configure port ranges on SCTP Proxy Network profile.
- Support for VIP sharing in FTP virtual services.
- Customized error page profile can now be used for local response rules configured in HTTP Policies and Rate Limiter policies.
- String group support for header values in HTTP policies.
- Support for dedicated health monitors for each pool member.
- Support for HTTP/2 and HTTP/2S health monitors.
- UI support for specifying custom local HTTP Response Code within the range (200-599) in DataScripts functions and HTTP Policies.
- Support to create and edit content rewrite profiles using the UI.
- UI support to configure the health monitor to use SNI server name from configured pool, overriding the server name specified in the SSL attributes.
DNS and IPAM
- The maximum number of static DNS records for a virtual service is increased to 2000 entries.
- Support to use Infoblox IPAM reserved ranges for VIP address allocation.
- Support to proactively close the TCP connection after the first server response, for a DNS VS.
GSLB
- GSLB service dashboard to display health monitoring information for each GSLB service member.
- Support for DNS resolution through the SE for GSLB pool members using FQDNs, with TTL values honored.
- The
Enable Manual Resumefeature for GSLB pool members supported through UI. - Support for a new record type, SRV, in addition to the A, AAAA, and CNAME types.
- Support to add or upload file objects of File Type Geo DB and GSLB Geo DB to be selected in Geo Profiles.
Networking
- Support for gVNIC DPDK driver for SEs in GCP environment.
- Packet tracing and debug support for NAT flows through the UI.
- Support for Crypto Offload functionality for SSL/TLS workload Applications using Intel Quick Assist Technology (QAT).
- Support for SE object sync for inter-SE communications is reintroduced, for new Controller deployments.
Security
- IPv6 support for DDoS handling.
- Support to add or upload file objects of File Type
- Certificate Revocation List (CRL) that can be selected in PKI Profiles.
System
- Scale
- The maximum number of virtual services on a XLarge Controller cluster (newly introduced flavor) has been increased to 15000 Virtual Services. See VMware Configuration Maximums for more information.
- The maximum number of WAF enabled virtual services has been increased:
- Large and XLarge Controller clusters: from 2500 to 4000 (enforced limit)
- Small Flavor: 750 (enforced limit) See VMware Configuration Maximums for more information.
- NSX Tier-1 scale has been increased to 1500
- Static DNS records per Virtual Service has been increased to 2000
- Avi Load Balancer participates in the VMware Customer Experience Improvement Program (CEIP).
- The Avi Load Balancer is upgraded to use OpenSSL 3.0.13 or higher with Ubuntu upgraded to 24.04.
- Introduction of a new Controller size (XLarge) with higher capacity.
- System Upgrade:
- Support for an upgrade "Dry Run" which simulates the upgrade without applying it, to identify potential issues and improve upgrade resiliency.
- Support for upgrade pre-checks and disaster recovery via the UI .
- Controller Access: Support to use TLS 1.0/ 1.1 for inbound and outbound connections to the Controller.
- Controller Access: Support for Host Header Protection for requests to the Controller.
- Consolidation of all periodic and threshold-based cleanups under a unified system, providing more visibility and flexibility through customizable fields for:
- System Report Cleanup
- Periodic Disk Checkup
- Image Cleanup
User Interface
User Interface enhancements leveraging the VMware Clarity framework across the following features:
- Virtual Service UI enhancements
- Updated UI workflow for virtual services configuration in the advanced mode .
- Virtual Services/GSLB services tree view in the
Topologytab under virtual services and GSLB services. - Enhanced Application Log view for virtual services.
- Security dashboard with enhanced widgets and Bot overviews (Tech Preview).
- The Virtual Services screen now includes a column Virtual Hosting Reference, displaying the parent or child virtual service name along with the Virtual Hosting Type.
- Enhanced Tech Support screen.
- Administration dashboard with a high level summary of the system's health, resource utilization, license status, and more.
- Redesigned
All Alertstable for enhanced alert management experience.
- A new
Where Usedoption is now available to identify where a particular object is referenced or utilized. For example, a cloud is selected in multiple objects like virtual services or pools.
Web Application Firewall
- IP Reputation Service: Support for Webroot IPv6 feed.
- A new debug flag,
DEBUG_VS_WAF_RULE_METRICS, provides per-CRS rule WAF CPU usage insights when enabled for individual virtual services.
对多云环境中的负载均衡进行现代化改造
-
实现多云一致性
集中式策略以及跨本地数据中心和公有云(包括 VMware Cloud、AWS、Azure 和 Google Cloud Platform)的一致运维可简化管理 (sysin)。
-
从前期到后续的自动化可简化运维
将基础架构团队从手工劳动中解放出来,并使 DevOps 团队能够实现自服务。应用交付自动化工具包包括 Python SDK、RESTful API、Ansible 和 Terraform 集成。
-
使用无处不在的分析进行故障排除
通过实时应用性能监控、闭环分析和深度机器学习 (sysin),获得前所未有的洞察力,包括网络、终端用户和安全性领域。
-
面向未来的所有工作负载
通过具有分布式现代体系架构的单一平台,可轻松将应用服务(例如容器 Ingress 和应用安全性延展到 Kubernetes 和 OpenShift 环境中的云原生应用 (sysin)。
-
多云负载均衡入门
可提供负载均衡、Web 应用防火墙和容器服务的平台。
通过数字了解 VMware Avi Load Balancer
IDC 采访了将 VMware Avi Load Balancer 用于应用服务的企业,以了解该平台如何支持业务运营。以下结果表明,他们实现了可观的业务价值。
27%
应用开发人员工作效率提升比例
90%
扩展容量速度加快
43%
运维成本节省比例
VMware Avi Load Balancer 功能特性
-
L4-L7 负载均衡
获得 TLS 1.3 支持、SSL 终止、默认网关、GSLB、DNS、通配符 VIP、其他 L4-L7 服务以及跨站点和云环境的智能流量路由。
-
可预测的自动扩展
根据实时流量模式使用分析驱动型自动化 (sysin),按需扩展或缩减应用和负载均衡。
-
自动化和可编程性
基于 REST API 的解决方案可加快应用交付速度,将自动化从网络连接延展到启用了自服务门户网站的开发人员。
-
集成和分析
100% RESTful API 支持与各种生态系统集成 (sysin),其中包括云和 SDN 基础架构,以及自动化和分析工具(如 VMware Aria、Splunk、Ansible 和 Terraform)。
-
Web 应用安全性
通过闭环分析和应用学习模式实施安全保护,涵盖 OWASP CRS 保护、合规性法规支持和基于签名的检测。
-
Kubernetes Ingress 服务
为基于容器的现代应用提供整合服务,包括容器 Ingress 流量管理、动态服务发现和安全性。
生态系统集成
云连接器体系架构和 API 优先的方法使 VMware Avi Load Balancer 能够通过 RESTful API 轻松集成。
下载地址
VMware Avi Load Balancer 30.1.1, Release Date: Jan 31, 2025
下载地址:https://sysin.org/blog/vmware-avi-load-balancer-31/
| Item | File Name | Size |
|---|---|---|
| CLI Packages - Standalone CLI Shell | avi_shell-31.1.1-9122.tar.gz | 20.24 KB |
| VMWARE - Controller OVA | controller-31.1.1-9122.ova | 4.25 GB |
| Upgrade - VMware / OpenStack / AWS / KVM / CSP | controller-31.1.1-9122.pkg | 3.98 GB |
| OpenStack / KVM / CSP - Controller Qcow2 | controller-31.1.1-9122.qcow2 | 4.24 GB |
| OpenStack / KVM / CSP - Controller Raw Image | controller-31.1.1-9122.raw.gz | 3.93 GB |
| Microsoft Azure - Controller VHD | controller-31.1.1-9122.vhd | 11 GB |
| Upgrade - Container Clouds / Linux Server | controller_docker-31.1.1-9122.tgz | 4.91 GB |
| Linux Server Cloud (Bare Metal) - Docker Install Image | docker_install-31.1.1-9122.tar.gz | 6.06 GB |
| Controller GCP - Controller GCP | gcp_controller-31.1.1-9122.tar.gz | 3.93 GB |
| Container Clouds - ServiceEngine Docker Image | se_docker-31.1.1-9122.tgz | 1.18 GB |
浙公网安备 33010602011771号