Container PaaS Journey of a Large Joint-Stock Bank: Architecture, DevOps, and Kube‑OVN Network Solution

At KubeCon 2019, Lingque Cloud pre‑sales engineer Xing Jia presented “The Containerization Exploration Path of a Large Joint‑Stock Bank,” sharing a case study of a major commercial bank’s deployment of a container PaaS platform.

Bank digital transformation is driven by two forces: a shift in business models—customers increasingly use online channels for financial services—and a technology transformation that responds to changing user behavior and the banks’ desire to package services as tech products.

These forces raise IT system requirements, prompting banks to adopt agile delivery, continuous integration, and DevOps capabilities so that services such as micro‑loans can be launched quickly and cost‑effectively.

Development practices have moved from waterfall to agile, DevOps, and cloud‑native approaches; architecture has transitioned from monolithic systems to a large‑scale middle‑platform strategy that modularizes backend services while keeping the front‑end flexible.

Infrastructure must become more agile and elastic. Banks have progressed from mainframes to virtualized IaaS, and containerization further decouples applications from the underlying environment.

The bank’s container PaaS platform stacks physical, virtual, and private‑cloud resources into a resource pool, runs Kubernetes clusters on top, and isolates four environments—development, testing, pre‑production, and production—into separate security‑zone clusters.

The platform delivers three core capabilities: (1) containerized deployment (app release, log collection, monitoring) with DevOps integration; (2) micro‑service design and governance; (3) enterprise‑grade IT governance that provides multi‑tenant resource isolation across clusters.

Kube‑OVN was selected as a networking solution tailored to financial‑industry requirements. Built on the mature OVN virtual network, Kube‑OVN adds many features not native to Kubernetes, such as cross‑VLAN clustering, performance guarantees, priority traffic handling, and built‑in load balancing suitable for banking workloads.

The “dual‑mode” pipeline implements DevOps from demand intake through project planning, design, code repository, configuration management, continuous integration, image distribution, and automated deployment, aligning project management with engineering workflows.

After the platform’s rollout, the bank saw improved capacity planning, unified resource allocation, faster system deployment, and reduced time‑to‑market for new services. Standardized middleware templates in a container marketplace further simplified operations and lowered knowledge‑transfer costs.

Lingque Cloud’s vision is to become a trusted partner for digital transformation, delivering cutting‑edge cloud‑native technologies, professional services, and reliable collaboration to traditional enterprises.