OpenShift 文档正在迁移,很快将只在 docs.redhat.com(所有 Red Hat 产品文档的中心)提供。立即体验 新的文档体验
  1. 文档
    2. history bug_report picture_as_pdf
×

Red Hat Advanced Cluster Security Cloud Service 的推荐资源需求(Recommended resource requirements for Red Hat Advanced Cluster Security Cloud Service)

推荐的资源指南是通过执行重点测试制定的,该测试在给定数量的命名空间中创建了以下对象:(The recommended resource guidelines were developed by performing a focused test that created the following objects across a given number of namespaces)

  • 10 个部署,每个部署包含 3 个处于休眠状态的 Pod 副本,挂载 4 个密钥,4 个配置映射。(10 deployments, with 3 pod replicas in a sleep state, mounting 4 secrets, 4 config maps)

  • 10 个服务,每个服务指向之前部署的其中一个服务的 TCP/8080 和 TCP/8443 端口。(10 services, each one pointing to the TCP/8080 and TCP/8443 ports of one of the previous deployments)

  • 1 个指向之前服务中的第一个服务的路由。(1 route pointing to the first of the previous services)

  • 10 个包含 2048 个随机字符串字符的密钥。(10 secrets containing 2048 random string characters)

  • 10 个包含 2048 个随机字符串字符的配置映射。(10 config maps containing 2048 random string characters)

在分析结果期间,部署数量被确定为增加资源使用量的主要因素。部署数量用于估算所需的资源。(During the analysis of results, the number of deployments was identified as a primary factor for increasing of used resources. The number of deployments was used for the estimation of required resources.)

额外资源(Additional resources)

安全集群服务包含以下组件(Secured cluster services contain the following components)

  • 传感器(Sensor)

  • 准入控制器(Admission controller)

  • 收集器(Collector)

    收集器组件未包含在此页面中。所需资源需求列在默认资源需求页面上。(Collector component is not included on this page. Required resource requirements are listed on the default resource requirements page.)

传感器监控您的 Kubernetes 和 OpenShift Container Platform 集群。这些服务目前部署在一个单一部署中,该部署处理与 Kubernetes API 的交互并与收集器协调。(Sensor monitors your Kubernetes and OpenShift Container Platform clusters. These services currently deploy in a single deployment, which handles interactions with the Kubernetes API and coordinates with Collector.)

内存和 CPU 需求(Memory and CPU requirements)

下表列出了在安全集群上运行传感器所需的最小内存和 CPU 值。(The following table lists the minimum memory and CPU values required to run Sensor on a secured cluster.)

部署(Deployments) 每个部署的 Pod 数(Pods per deployment) CPU 内存(Memory)

< 25,000

3

2 核(2 cores)

8 GiB

< 50,000

3

2 核(2 cores)

16 GiB

准入控制器可阻止用户创建违反您配置的策略的工作负载。

内存和 CPU 需求(Memory and CPU requirements)

下表列出了在安全集群上运行准入控制器所需的最小内存和 CPU 值。

部署(Deployments) 每个部署的 Pod 数(Pods per deployment) CPU 内存(Memory)

< 25,000

3

0.5 核

600 MiB

< 50,000

3

0.5 核

1200 MiB