To enable network connectivity for containers across multiple ACK clusters in a cell-based architecture, add authorization rules to the security groups of the clusters.
The security group of each cluster must be connected to the security groups of all other clusters. If you have N clusters, each cluster requires N-1 rules. The total number of rules required is N × (N-1).
This topic uses a two-cluster environment as an example to demonstrate how to connect the security groups of Cluster 1 and Cluster 2.
Procedure
Log on to the console. In the navigation pane, go to Cluster Management > Cluster > Details.
Click the destination cluster to go to its Cluster Details page.
In the upper-left corner, click ACK Container Service Console to go to the cluster overview page.
Click the Cluster Resources tab. In the resource list, click the security group link to open the Security Group Rules page.
On the Inbound tab, click Manually Add. Configure the following parameters and click Save.
Authorization Policy: Retain the default value, Allow.
Priority: The value can range from 1 to 100. The default value is 1, which indicates the highest priority. Retain the default value.
Protocol Type: Select All.
Port Range: Retain the default value,
-1/-1. This value indicates that all ports are allowed.Authorization Object: Select the security group ID of the cluster from which you want to allow access.
NoteThe second part of the security group ID is the cluster ID. You can find the cluster ID on the Basic Information tab of the Cluster Details page in the ACK console.