CN102594707A - Network control system and network switching adapter - Google Patents
Network control system and network switching adapter Download PDFInfo
- Publication number
- CN102594707A CN102594707A CN2012100765837A CN201210076583A CN102594707A CN 102594707 A CN102594707 A CN 102594707A CN 2012100765837 A CN2012100765837 A CN 2012100765837A CN 201210076583 A CN201210076583 A CN 201210076583A CN 102594707 A CN102594707 A CN 102594707A
- Authority
- CN
- China
- Prior art keywords
- network
- packet
- network control
- control system
- virtual machine
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a network control system and a network switching adapter. The network control system comprises a physical server and a physical switch. The physical server further comprises at least one virtual machine and a the network switching adapter, wherein the virtual machines are used for transmitting data packets; the network switching adapter is used for receiving the data packets from the virtual machines, adding tags to the data packets, and forwarding the data packet with the tags to the physical switch, and the tags are used for indicating the virtual machines to which the data packets belong; and the physical switch is used for receiving the data packets from the network switching adapter, and finishing network control according to the data packets. According to the network control system, the network switching adapter is used for transmitting the data packets to the physical switch to realize a network control function, so that the occupied resources of the physical server are greatly reduced, the function of the physical switch is fully utilized, and network control efficiency is improved.
Description
Technical field
The present invention relates to virtual network control technical field, particularly a kind of network control system and network exchange adapter.
Background technology
In traditional virtual network control solution, in physical server, use the network control function that a virtual switch is accomplished virtual machine.
Fig. 1 is the sketch map of the data packet delivery process in the network control system of prior art.As shown in Figure 1, at first packet can send on the virtual switch, by virtual switch packet is done network strategy control; Particularly, virtual switch is at first resolved packet, obtains the source address and the destination address of packet; Arrive then in the control strategy table of virtual switch relatively, if packet coincidence control strategy then adds that with packet source address and destination address send again; If packet does not meet control strategy, packet discard then.
The problem that prior art exists is that virtual switch need take CPU (Central Processing Unit, the CPU) resource of physical server and handle the network control function of virtual machine.Along with the virtual machine quantity on the physical server increases and the increasing of every virtual machine swap data; The performance of physical server will descend at double; Thereby the performance that causes operating in the virtual machine in the physical server also descends, and physical switches can't be brought into play the function of self.
Summary of the invention
The object of the invention is intended to solve at least one of above-mentioned technological deficiency.
For achieving the above object, one aspect of the present invention proposes a kind of network control system, comprises physical server and physical switches, and wherein physical server further comprises at least one virtual machine and network exchange adapter, and said virtual machine is used to send packet; Said network exchange adapter is used to receive the packet that said virtual machine sends, and the packet that adds label and will have a said label for said packet is forwarded to physical switches, and wherein said label is used to indicate the virtual machine under the said packet; Said physical switches is used to receive the packet that said network exchange adapter sends, and accomplishes network control according to said packet.
Network control system according to the embodiment of the invention; Through using the network exchange adapter that packet is sent to physical switches on physical switches, to accomplish network control function; Thereby reduce resource occupation greatly to physical server; And can give full play to the function of physical switches, improve network control efficient.
The present invention also proposes a kind of network exchange adapter on the other hand; Comprise a plurality of forwarding modules; Each forwarding module is respectively applied for and receives the corresponding packet of various network request that at least one virtual machine sends; And be that said packet adds label, and the packet that will have a said label is sent to physical switches, wherein said label is used to indicate the virtual machine under the said packet.。
According to network exchange adapter of the present invention; Accomplish so that network control function is drawn to physical switches through packet being sent to physical switches; Let physical server only accomplish scheduling virtual machine; Thereby reduce resource occupation greatly, fully send the function of physical switches, improve network control efficient physical server.
Aspect that the present invention adds and advantage part in the following description provide, and part will become obviously from the following description, or recognize through practice of the present invention.
Description of drawings
Above-mentioned and/or additional aspect of the present invention and advantage are from obviously with easily understanding becoming the description of embodiment below in conjunction with accompanying drawing, wherein:
Fig. 1 is the sketch map of the data packet delivery process in the network control system of prior art;
Fig. 2 is the structured flowchart of the network control system of one embodiment of the invention;
Fig. 3 is the structured flowchart of the network control system of another embodiment of the present invention; And
Fig. 4 is the structured flowchart of the network exchange adapter of one embodiment of the invention.
Embodiment
Describe embodiments of the invention below in detail, the example of said embodiment is shown in the drawings, and wherein identical from start to finish or similar label is represented identical or similar elements or the element with identical or similar functions.Be exemplary through the embodiment that is described with reference to the drawings below, only be used to explain the present invention, and can not be interpreted as limitation of the present invention.
In description of the invention, need to prove that only if clear and definite regulation and qualification are arranged in addition, term " links to each other ", " connection " should be done broad understanding, for example, can be to be fixedly connected, also can be to removably connect, or connect integratedly; Can be mechanical connection, also can be to be electrically connected; Can be directly to link to each other, also can link to each other indirectly through intermediary.For those of ordinary skill in the art, can concrete condition understand above-mentioned term concrete implication in the present invention.
Fig. 2 is the structured flowchart of the network control system of one embodiment of the invention.As shown in Figure 2, this system comprises physical server 1 and physical switches 2.Physical server 1 further comprises at least one virtual machine 11 and network exchange adapter 12.
Virtual machine 11 is used to send packet.Network exchange adapter 12 is used for the packet that sink virtual machine 11 sends, and for packet adds label, identifies its affiliated virtual machine, and the packet that will have label then is sent to physical switches 2.Physical switches 2 is used to receive the packet that network exchange adapter 12 sends, and accomplishes network control according to packet.
Particularly, the network control of on virtual switch, accomplishing in the network control that on physical switches 2, realizes and the prior art is identical, after promptly physical switches 2 receives packet; Packet is resolved, obtain the source address and the destination address of packet, then packet and the control strategy table that prestores are compared; If packet coincidence control strategy; Then again packet is added that source address and destination address send, if packet does not meet control strategy, packet discard then.
In addition, in one embodiment of the invention, network exchange adapter 12 can have a plurality of forwarding modules; Each forwarding module is respectively applied for transmits the corresponding packet of various network request; For example QOS (Quality of Service, service quality) control, ACL (Access Control List, ACL), VLAN (Virtual Local Area Network; VLAN) and intrusion detection etc., accomplish the network control of virtual machine thus effectively.
Network control system according to the embodiment of the invention; Through using the network exchange adapter that packet is sent to physical switches on physical switches, to accomplish network control function; And physical server only is responsible for accomplishing scheduling virtual machine, packet is not carried out any parse operation, thereby reduces the resource occupation to physical server greatly; And can give full play to the function of physical switches, improve network control efficient.
Fig. 3 is the sketch map of the network control system of another embodiment of the present invention.As shown in Figure 3, in one embodiment of the invention, physical switches 2 has a plurality of ports 21, and network exchange adapter 12 links to each other with each port 21 respectively through a plurality of network interface cards 13, improves the efficiency of transmission of packet thus.
The present invention also proposes a kind of network exchange adapter on the other hand.
A kind of network exchange adapter; Comprise a plurality of forwarding modules; Each forwarding module is respectively applied for and receives the corresponding packet of various network request that a plurality of virtual machines send; And be that packet adds label, and and the packet that will have a label is sent to physical switches, wherein label is used for the virtual machine under the designation data bag.
Fig. 4 is the structured flowchart of the network exchange adapter of one embodiment of the invention.Shown in Figure 4, this network exchange adapter 10 comprises four forwarding modules: first forwarding module 110, second forwarding module 120, the 3rd forwarding module 130 and the 4th forwarding module 140.Each forwarding module is used to receive the corresponding packet of various network request that at least one virtual machine 20 sends; And be that each packet adds label; And the packet that will have label is sent to physical switches 30, and wherein label is used for the virtual machine under the designation data bag.For example, first forwarding module 110 is used to transmit the QOS packet, and second forwarding module 120 is used to transmit the ACL packet, and the 3rd forwarding module 130 is used to transmit the vlan data bag, and the 4th forwarding module 140 is used to transmit the intrusion detection packet.
Should be understood that the foregoing description is merely schematic example, network exchange adapter 10 of the present invention can also have other forwarding modules, is used to transmit the packet of other network requests types, and these all should be included in protection scope of the present invention.
In addition, in one embodiment of the invention, network exchange adapter 10 can be connected with physical switches 30 through the network interface card (not shown).
Network exchange adapter according to the embodiment of the invention; Accomplish so that network control function is drawn to physical switches through packet being sent to physical switches; Let physical server only accomplish scheduling virtual machine; Thereby reduce resource occupation greatly, fully send the function of physical switches, improve network control efficient physical server.
Although illustrated and described embodiments of the invention; For those of ordinary skill in the art; Be appreciated that under the situation that does not break away from principle of the present invention and spirit and can carry out multiple variation, modification, replacement and modification that scope of the present invention is accompanying claims and be equal to and limit to these embodiment.
Claims (7)
1. a network control system is characterized in that, comprising:
Physical server, said physical server further comprises:
At least one virtual machine is used to send packet; With
The network exchange adapter is used to receive the packet that said virtual machine sends, and the packet that adds label and will have a said label for said packet is forwarded to physical switches, and wherein said label is used to indicate the virtual machine under the said packet; And
Physical switches, said physical switches are used to receive the packet that said network exchange adapter sends, and accomplish network control according to said packet.
2. network control system as claimed in claim 1 is characterized in that, said network exchange adapter comprises a plurality of forwarding modules, and each forwarding module is respectively applied for transmits the corresponding packet of various network request.
3. network control system as claimed in claim 2 is characterized in that said network requests comprises QOS control, ACL, VLAN and intrusion detection.
4. network control system as claimed in claim 1 is characterized in that, is connected through network interface card between said network exchange adapter and the said physical switches.
5. network exchange adapter; It is characterized in that; Comprise a plurality of forwarding modules, each forwarding module is respectively applied for and receives the corresponding packet of various network request that at least one virtual machine sends, and is that said packet adds label; And the packet that will have said label is sent to physical switches, and wherein said label is used to indicate the virtual machine under the said packet.
6. network exchange adapter as claimed in claim 5 is characterized in that, said network requests comprises: QOS control, ACL, VLAN and intrusion detection.
7. network exchange adapter as claimed in claim 5 is characterized in that, said network exchange adapter links to each other through network interface card with said physical switches.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100765837A CN102594707A (en) | 2012-03-21 | 2012-03-21 | Network control system and network switching adapter |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100765837A CN102594707A (en) | 2012-03-21 | 2012-03-21 | Network control system and network switching adapter |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102594707A true CN102594707A (en) | 2012-07-18 |
Family
ID=46482923
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012100765837A Pending CN102594707A (en) | 2012-03-21 | 2012-03-21 | Network control system and network switching adapter |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102594707A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103825796A (en) * | 2014-02-28 | 2014-05-28 | 神州数码网络(北京)有限公司 | Message interactive method, terminal station and network bridge |
| CN104521199A (en) * | 2012-08-03 | 2015-04-15 | 思科技术公司 | Adaptive infrastructure for distributed virtual switch |
| WO2015113291A1 (en) * | 2014-01-29 | 2015-08-06 | 华为技术有限公司 | Wireless network data processing device and wireless network system |
| WO2016061945A1 (en) * | 2014-10-22 | 2016-04-28 | 深圳市中兴微电子技术有限公司 | Data exchange method and system |
| CN103763403B (en) * | 2013-12-30 | 2017-03-15 | 华为技术有限公司 | Message flux control method and relevant apparatus and calculate node |
| US9921867B2 (en) | 2013-12-30 | 2018-03-20 | Huawei Technologies Co., Ltd. | Negotiation between virtual machine and host to determine executor of packet flow control policy with reduced address space |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102055667A (en) * | 2009-11-04 | 2011-05-11 | 丛林网络公司 | Methods and apparatus for configuring a virtual network switch |
| CN102299929A (en) * | 2011-09-15 | 2011-12-28 | 北京天地云箱科技有限公司 | Access control method, system and device for virtual machine |
| CN102347900A (en) * | 2010-07-30 | 2012-02-08 | 美国博通公司 | A method and a system of integrating virtual and physical network switching components into a heterogeneous switching domain |
-
2012
- 2012-03-21 CN CN2012100765837A patent/CN102594707A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102055667A (en) * | 2009-11-04 | 2011-05-11 | 丛林网络公司 | Methods and apparatus for configuring a virtual network switch |
| CN102347900A (en) * | 2010-07-30 | 2012-02-08 | 美国博通公司 | A method and a system of integrating virtual and physical network switching components into a heterogeneous switching domain |
| CN102299929A (en) * | 2011-09-15 | 2011-12-28 | 北京天地云箱科技有限公司 | Access control method, system and device for virtual machine |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104521199A (en) * | 2012-08-03 | 2015-04-15 | 思科技术公司 | Adaptive infrastructure for distributed virtual switch |
| CN104521199B (en) * | 2012-08-03 | 2017-12-15 | 思科技术公司 | For the adaptation method of the distributed virtual switch, device and equipment |
| CN103763403B (en) * | 2013-12-30 | 2017-03-15 | 华为技术有限公司 | Message flux control method and relevant apparatus and calculate node |
| US9921867B2 (en) | 2013-12-30 | 2018-03-20 | Huawei Technologies Co., Ltd. | Negotiation between virtual machine and host to determine executor of packet flow control policy with reduced address space |
| WO2015113291A1 (en) * | 2014-01-29 | 2015-08-06 | 华为技术有限公司 | Wireless network data processing device and wireless network system |
| CN105075191A (en) * | 2014-01-29 | 2015-11-18 | 华为技术有限公司 | Wireless network data processing device and wireless network system |
| CN105075191B (en) * | 2014-01-29 | 2018-09-21 | 华为技术有限公司 | Wireless network data processing unit and Radio Network System |
| US10129792B2 (en) | 2014-01-29 | 2018-11-13 | Huawei Technologies Co., Ltd | Data processing apparatus in wireless network, and wireless network system |
| CN103825796A (en) * | 2014-02-28 | 2014-05-28 | 神州数码网络(北京)有限公司 | Message interactive method, terminal station and network bridge |
| WO2016061945A1 (en) * | 2014-10-22 | 2016-04-28 | 深圳市中兴微电子技术有限公司 | Data exchange method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102158386B (en) | Distributed load balance for system management program | |
| CN102594707A (en) | Network control system and network switching adapter | |
| CN102648455B (en) | Server and stream control routine | |
| CN100466629C (en) | Network equipment and message transferring method based on multiple-core processor | |
| US8948193B2 (en) | Methods for intelligent NIC bonding and load-balancing | |
| CN103179049B (en) | Classification self adaptation dynamically goes out port and the system and method for queue buffer management | |
| US9998366B2 (en) | System, method and device for forwarding packet | |
| CN110099014A (en) | The method and host of Message processing in cloud computing system | |
| CN102845035A (en) | Method of identifying destination in virtual environment | |
| CN104065759A (en) | Method for improving utilization efficiency of NAT address pool resource and device thereof | |
| CN101094185A (en) | Method and device for forwarding message based on multilink | |
| CN101741664A (en) | Method and device for realizing Ethernet interface system | |
| CN106603409B (en) | Data processing system, method and equipment | |
| CN105960782A (en) | Access node device for forwarding data packets | |
| CN114726660A (en) | Method for sending and processing message, inlet node and network system | |
| CN102307141A (en) | Message forwarding method and device | |
| CN103607360B (en) | Message processing method, line card and switching equipment | |
| US9729454B2 (en) | Methods, systems, and computer readable media for balancing diameter message traffic received over long-lived diameter connections | |
| CN105379221B (en) | A kind of link aggregation method and equipment | |
| CN106301871A (en) | A kind of forwarding detection (BFD) method based on lacp and system | |
| CN202276355U (en) | Multi-link dynamic load balancing system | |
| KR101952187B1 (en) | Method and apparatus for processing service node ability, service classifier and service controller | |
| KR20170068525A (en) | Switch processing method, controller, switch, and switch processing system | |
| CN109257227B (en) | Coupling management method, device and system in data transmission | |
| US20140365670A1 (en) | Distributed data processing system, distributed data processing method and wireless terminal point thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20120718 |