2.2 Network Communication Compatibility Solution

Whether in blockchain or the existing internet economy, network communication connectivity is a prerequisite. In XOS, we build a peer-to-peer connected OS network. From the data transmission perspective, we ensure the encryption and indistinguishability of communication data through protocol obfuscation. Additionally, we establish a self-governing connected network in terms of routing role design.

XOS Cloud Network: As user application scenarios continually diversify, the primary goal of the XOS Cloud Network is to fulfill the interconnectivity, security, and load balancing requirements between the network endpoints and services of XOS cloud services. Kubernetes has become the de facto standard for container orchestration, and container networks need to align with Kubernetes' scheduling mechanism.

The Container Network Interface (CNI) is the current network interface standard, and it only implements the calling methods when creating or deleting containers. All other network capabilities are left to network vendors to implement value-added services. While this accelerates the prosperity of network solutions to some extent, it poses significant challenges for users in selecting solutions.

Most user scenarios are based on selecting solutions based on communication protocols. Depending on the network protocol, network solutions can be categorized into three types: routing mode, Overlay, and L2 solutions.

For large-scale, complex intercommunication scenarios, XOS Cloud Network requires flattening. With the widespread adoption of XOS Cloud technology, the scale of container clusters is rapidly increasing, leading to more diverse scenarios involving cross-cluster and cross-VPC communication. This necessitates that container endpoints have the same interconnectivity capabilities as host nodes, with containers and services having subnet addresses independent of the VPC. They may even have independent dedicated network interfaces. This approach not only achieves higher forwarding performance with lower losses but also ensures better isolation. By configuring security group rules on the network interfaces attached to the containers, it becomes possible to implement container-level microsegmentation network control policies.