CN105634998B - Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment - Google Patents
Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment Download PDFInfo
- Publication number
- CN105634998B CN105634998B CN201610193195.5A CN201610193195A CN105634998B CN 105634998 B CN105634998 B CN 105634998B CN 201610193195 A CN201610193195 A CN 201610193195A CN 105634998 B CN105634998 B CN 105634998B
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- virtual
- cloud platform
- monitoring
- machine
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000012544 monitoring process Methods 0.000 title claims abstract description 138
- 238000000034 method Methods 0.000 title claims abstract description 32
- 230000005540 biological transmission Effects 0.000 description 3
- 230000006870 function Effects 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000002955 isolation Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 239000000126 substance Substances 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/70—Virtual switches
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a method and a system for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment, belongs to the technical field of cloud computing, and can solve the problem that an effective monitoring method for the virtual machine is lacked in the prior art. The method for uniformly monitoring the physical machine and the virtual machine in the cloud platform multi-tenant environment comprises the following steps: a cloud platform provider creates a mirror image for creating a virtual machine in a cloud platform, and a monitoring agent plug-in is installed in the mirror image; each tenant creates a private network segment in the cloud platform and creates a virtual machine by using a mirror image; the virtual machine automatically comprises a monitoring agent plug-in; automatically generating a virtual machine acquisition server on a private network segment; each tenant creates a virtual router, and the virtual router defaults to add a routing entry which sends the monitoring data collected by the virtual machine collection server to the physical machine collection server, so that the physical machine collection server can uniformly monitor the virtual machine and the physical machine.
Description
Technical Field
The invention belongs to the technical field of cloud computing, and particularly relates to a method and a system for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment.
Background
At present, mainstream cloud platform systems include OpenStack systems, and a computing resource pool is formed by managing physical servers to provide virtual machine services to the outside. The entire platform is generally divided into four types of networks, namely, a management network, a data network, a storage network, and an external network.
The management network generally connects the physical servers to provide communication among the components in the cloud platform; the data network is connected with each virtual machine and provides communication between the virtual machines; the external network provides the ability of the virtual machine to access the Internet; the storage network is used to store the shared files of the virtual machines. Under a normal condition, the data network and the management network cannot be communicated with each other, so that a user is prevented from monitoring and attacking the management network through a virtual machine, and the safety of the cloud platform is ensured.
In a traditional monitoring method of a physical Server, a monitoring agent plugin (agent) is operated in the physical Server, and the monitoring agent plugin (agent) collects relevant monitoring information of the physical Server at regular time and sends the monitoring information to a collection Server (Server side) which is accessible to a network to collect, screen and display the information.
The inventor finds that at least the following problems exist in the prior art:
in a cloud platform, a traditional monitoring method for a physical Server is to run a monitoring agent plugin (agent) in the physical Server, the monitoring agent plugin (agent) collects monitoring information of the physical Server at regular time and sends the monitoring information to a collection Server (Server end) to realize monitoring of the physical Server, however, there is no effective method for monitoring a virtual machine, and even if the monitoring agent plugin is run in the virtual machine due to isolation between a data network and a management network, the monitoring agent plugin cannot send the monitoring information of the virtual machine to the collection Server, and cannot realize monitoring of the virtual machine.
Therefore, it is an urgent technical problem to create a monitoring method and system for a multi-user virtual machine to implement unified monitoring of the virtual machine and a physical machine (physical server).
Disclosure of Invention
Aiming at the technical problems, the invention provides a method and a system for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment. The method and the system can realize the unified monitoring of the virtual machine and the physical machine under the condition that the data network segment is isolated from the management network segment, and realize the comprehensive understanding of the running states of the virtual machine and the physical machine.
The technical scheme adopted for solving the technical problem of the invention is to provide a method for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment, which comprises the following steps:
a cloud platform provider creates a mirror image used for creating a virtual machine in a cloud platform, a monitoring agent plug-in is installed in the mirror image, a management network segment is created in the cloud platform, and a physical machine acquisition server are connected to the management network segment;
each tenant creates a private network segment in the cloud platform, and creates a virtual machine connected to the private network segment by using the mirror image; the created virtual machine automatically contains the monitoring agent plug-in; according to a preset program set in a cloud platform by a cloud platform provider, when the private network segment is created, a virtual machine collection server is automatically generated on the private network segment;
and each tenant creates a virtual router on the private network segment, and the virtual router adds a routing entry for sending the monitoring data collected by the virtual machine acquisition server to the physical machine acquisition server by default, so that the physical machine acquisition server can receive the monitoring data of the virtual machine of each tenant, and the virtual machine and the physical machine are uniformly monitored.
Preferably, the virtual machine acquisition server is invisible to the tenant.
Preferably, the virtual machines created by each tenant are isolated from each other.
Preferably, according to a preset program set in the cloud platform by a cloud platform provider, a port, which is default for transmitting the monitoring data, in the security group of the virtual machine created by each tenant allows data to be transmitted outward, and a port, which is default for transmitting the monitoring data, in the access control list of the created private network segment allows data to be transmitted outward.
Preferably, according to the cloud platform security requirement of a cloud platform provider, a firewall is arranged between the private network segment and the management network segment, and the firewall only allows a port for transmitting the monitoring data of the virtual machine to transmit data to the physical machine acquisition server.
Preferably, the cloud platform further includes a core switch, the virtual router collects the received monitoring data to the core switch, and the core switch sends the monitoring data to the physical machine collection server.
Preferably, the monitoring data of the virtual machine includes: the utilization rate of the virtual CPU, the occupancy rate of the virtual memory, the utilization rate of the virtual hard disk, the operating condition of the operating system of the virtual machine and the information flow statistics of the virtual machine in each time period.
The invention provides another technical scheme: a system for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment comprises: the system comprises a management network segment connected with a physical machine and a physical machine acquisition server and a private network segment which is established by each tenant and connected with a virtual machine and a virtual router, wherein a monitoring agent plug-in is arranged in the virtual machine;
a virtual machine acquisition server is arranged on the private network segment;
the virtual router is added with a routing entry which sends the monitoring data collected by the virtual machine collection server to the physical machine collection server, so that the physical machine collection server can receive the monitoring data of the virtual machine, and the virtual machine and the physical machine are uniformly monitored.
Preferably, the port for transmitting the monitoring data in the security group of the virtual machine allows data to be transmitted outwards; and the port for transmitting the monitoring data in the access control list of the private network segment allows the data to be transmitted outwards.
Preferably, a firewall is arranged between the private network segment and the management network segment, and the firewall only allows a port for transmitting the monitoring data of the virtual machine to transmit data to the physical machine acquisition server.
According to the method and the system for unified monitoring of the physical machine and the virtual machine in the cloud platform multi-tenant environment, the monitoring agent plug-in is installed in the mirror image in advance and used for collecting the monitoring data of the virtual machine, the monitoring data are automatically sent to the virtual machine collection server, the virtual machine collection server automatically sends the monitoring data to the virtual router, and the virtual router is pre-stored with the routing entry for sending the data to the physical machine collection server, so that the monitoring data of the virtual machine can be transmitted to the physical machine collection server on the management network segment, and the physical machine collection server has the function of collecting the monitoring data of the physical machine, so that the physical machine collection server can monitor the virtual machine and the physical machine in a unified mode, and a network manager can know the running states of the virtual machine and the physical machine comprehensively.
Drawings
Fig. 1 is a flowchart of a method for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment in embodiment 1;
fig. 2 is a block diagram of a system for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment in embodiment 2.
Wherein the reference numerals are:
100. managing a network segment; 1. a physical machine; 2. a physical machine acquisition server;
200. a private network segment; 3. a virtual machine; 4. a virtual machine acquisition server;
5. a virtual router; 6. a firewall; 7. a core switch.
Detailed Description
In order to make the technical solutions of the present invention better understood, the present invention will be described in further detail with reference to the accompanying drawings and specific embodiments.
Example 1:
the embodiment provides a method for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment, and the method can realize that a physical machine collection server on a management network segment uniformly monitors the physical machine and the virtual machine on a data network segment.
Fig. 1 is a flowchart of a method for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment in this embodiment, as shown in fig. 1, the method includes the following steps:
s1: the cloud platform provider creates a mirror image used for creating the virtual machine in the cloud platform, the mirror image is provided with a monitoring agent plug-in, a management network segment is created in the cloud platform, and the management network segment is connected with the physical machine and the physical machine collection server.
First, a cloud platform provider creates a plurality of physical machines on a management network segment in a cloud platform, and each physical machine has a monitoring agent plugin (agent) installed therein. Meanwhile, a physical machine acquisition server is also established on the management network segment and used for acquiring the monitoring data of each physical machine, and the specific working process is as follows: the monitoring agent plug-in installed in each physical machine collects the monitoring data of the physical machine to the physical machine collection server on the management network segment at regular time, and the physical machine collection server can display the monitoring data of all the physical machines and provide a network manager to know the conditions of the physical machines comprehensively. The monitoring data of the physical machine may include utilization rate of the CPU, occupancy rate of the memory, utilization rate of the hard disk, operation condition of the operating system of the physical machine, and information traffic statistics of the physical machine in each time period.
Secondly, a cloud platform provider creates a mirror image used for creating the virtual machines in the cloud platform, and in order to realize monitoring of the virtual machines, monitoring agent plug-ins are installed in the mirror image, so that each virtual machine can comprise a monitoring agent plug-in used for sending monitoring data of the virtual machine when the virtual machine is created subsequently.
S2: each tenant creates a private network segment in the cloud platform, and creates a virtual machine connected to the private network segment by using a mirror image; the created virtual machine automatically comprises a monitoring agent plug-in; and when a private network segment is created according to a preset program set in the cloud platform by a cloud platform provider, a virtual machine collection server is automatically generated on the private network segment.
Each tenant can create one or more private network segments in the cloud platform according to the needs of the tenant, and creates at least one virtual machine on each private network segment by using the mirror image. Since the monitoring agent plug-in is pre-installed in the image, each virtual machine created will automatically contain the monitoring agent plug-in. Meanwhile, the cloud platform provider sets a preset program in the cloud platform, when the tenant creates the private network segments, the program automatically generates a virtual machine acquisition server on each private network segment, and the generated virtual machine acquisition servers are invisible to the tenant. In order to guarantee data security between virtual machines of each tenant, the virtual machines created by each tenant are isolated from each other by default.
The monitoring agent plug-in each virtual machine can transmit and gather the monitoring data of the virtual machine to the virtual machine collection server on the private network segment at regular time. The private network segment is a logical network segment, and data transmission is actually completed on a data network segment in the cloud platform.
In addition, according to a preset program set in the cloud platform by a cloud platform provider, a port which is default for transmitting the monitoring data in the security group of the virtual machine created by each tenant allows data to be transmitted outwards, and a port which is default for transmitting the monitoring data in an Access Control List (ACL) of the created private network segment allows data to be transmitted outwards, so that the virtual machine collection server can send the summarized monitoring data out of the private network segment.
S3: each tenant creates a virtual router on a private network segment, and the virtual router adds a routing entry for sending monitoring data collected by the virtual machine collection server to the physical machine collection server by default, so that the physical machine collection server can receive the monitoring data of the virtual machine of each tenant, and monitoring of the virtual machine is achieved.
Firstly, each tenant sets a corresponding IP address segment for each private network segment;
then, each tenant creates a virtual router on the private network segment, so that all the private network segments are connected with an external network through the virtual router. In addition, a respective IP address is assigned for the virtual router and each virtual machine. Because the virtual router connects the private network segment with the external network, each tenant can access the resources of the external network through the created virtual machine;
finally, in order to realize that the monitoring data of the virtual machine can be sent to the physical machine acquisition server on the management network segment, routing entries for sending the data to the physical machine acquisition server need to be prestored in the virtual router, because each node on the private network segment has been assigned its own IP address, the routing entries for sending the monitoring data of the virtual machine can be set according to the IP address, and the destination IP address of the routing entries is set as the IP address of the physical machine acquisition server. Therefore, after the virtual machine acquisition server automatically sends the acquired monitoring data to the virtual router, the virtual router can automatically send the monitoring data to the physical machine acquisition server according to the routing entries, and the physical machine acquisition server can monitor the virtual machine and the physical machine uniformly.
And the cloud platform also comprises a core switch, the virtual router collects the received monitoring data to the core switch, and the core switch sends the monitoring data to the physical machine collection server. The core switch has a large data throughput, and can ensure that the system runs stably and at high speed under the condition of large-amount data transmission.
Here, the monitoring data of the virtual machine may include: the utilization rate of the virtual CPU, the occupancy rate of the virtual memory, the utilization rate of the virtual hard disk, the operating condition of the operating system of the virtual machine and the information flow statistics of the virtual machine in each time period.
In addition, according to the cloud platform security requirements of the cloud platform provider, it is necessary to ensure that the private network segment and the management network segment are in an isolated state to prevent the management network segment from being attacked and monitored by the virtual machine, so a firewall is arranged between the private network segment and the management network segment, and meanwhile, in order to enable the monitoring data of the virtual machine to cross the firewall and be transmitted to the physical machine collection server, the firewall is arranged to only allow a port for transmitting the monitoring data in the access control list to transmit the data to the physical machine collection server.
According to the method for unified monitoring of the physical machine and the virtual machine in the cloud platform multi-tenant environment, the function of sending the monitoring data of the virtual machine to the physical machine acquisition server is achieved through the monitoring agent plug-in, the virtual machine acquisition server and the virtual router, so that the physical machine acquisition server can carry out unified monitoring on the physical machine in the management network segment and the virtual machine in the private network segment, and a network administrator can comprehensively know the running states of the virtual machine and the physical machine at the same time.
Example 2:
the embodiment provides a system for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment, and the system is a system for implementing the method in embodiment 1.
Fig. 2 is a block diagram of a structure of a system for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment in this embodiment, as shown in fig. 2, the system includes: a management network segment 100 connected with a physical machine 1 and a physical machine acquisition server 2, and a private network segment 200 established by each tenant and connected with a virtual machine 3 and a virtual router 5, wherein a monitoring agent plug-in is arranged in the virtual machine 3; each private network segment 200 is further provided with a virtual machine acquisition server 4, and the virtual router 5 is added with a routing entry for sending monitoring data collected by the virtual machine acquisition server 4 to the physical machine acquisition server 2, so that the physical machine acquisition server 2 can receive the monitoring data of the virtual machine 3, and unified monitoring of the virtual machine 3 and the physical machine 1 is realized.
The working process is as follows: the monitoring agent plug-in built in the virtual machine 3 automatically collects monitoring data of the virtual machine 3 at regular time and gathers the monitoring data to the virtual machine acquisition server 4, the virtual machine acquisition server 4 automatically sends the collected monitoring data to the virtual router 5, and the virtual router 5 automatically sends the monitoring data to the physical machine acquisition server 2 according to the routing items.
In order to implement the above working process, it is also necessary to set a port for transmitting monitoring data in the security group of the virtual machine 3 to allow data to be transmitted outside; the port in the access control list of private network segment 200 used for transmitting the monitoring data allows the data to be transmitted outside.
In order to ensure the isolation between the private network segment and the management network segment, a firewall 6 is arranged between the private network segment and the management network segment, and meanwhile, the firewall 6 is only arranged to allow a port for transmitting the monitoring data of the virtual machine 3 to transmit data to the physical machine collection server 2.
In addition, a core switch 7 of a private network segment 200 is provided. The virtual router 5 summarizes the received monitoring data to the core switch 7, and the core switch 7 sends the monitoring data to the physical machine collection server 2. The core switch 7 has a large data throughput, and can ensure that the system operates stably and at high speed under the condition of large-amount data transmission.
In the system for monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment provided in this embodiment, the method provided in embodiment 1 may be implemented to implement a function of monitoring a physical machine on a management network segment and a virtual machine on a private network segment by a physical machine acquisition server in a unified manner, so that a network administrator may know running states of the virtual machine and the physical machine comprehensively at the same time.
It will be understood that the above embodiments are merely exemplary embodiments taken to illustrate the principles of the present invention, which is not limited thereto. It will be apparent to those skilled in the art that various modifications and improvements can be made without departing from the spirit and substance of the invention, and these modifications and improvements are also considered to be within the scope of the invention.
Claims (10)
1. A method for uniformly monitoring a physical machine and a virtual machine in a cloud platform multi-tenant environment is characterized by comprising the following steps:
a cloud platform provider creates a mirror image used for creating a virtual machine in a cloud platform, a monitoring agent plug-in is installed in the mirror image, a management network segment is created in the cloud platform, and a physical machine acquisition server are connected to the management network segment;
each tenant creates a private network segment in the cloud platform, and creates a virtual machine connected to the private network segment by using the mirror image; the created virtual machine automatically contains the monitoring agent plug-in; according to a preset program set in a cloud platform by a cloud platform provider, when the private network segment is created, a virtual machine collection server is automatically generated on the private network segment;
and each tenant creates a virtual router on the private network segment, and the virtual router adds a routing entry for sending the monitoring data collected by the virtual machine acquisition server to the physical machine acquisition server by default, so that the physical machine acquisition server can receive the monitoring data of the virtual machine of each tenant, and the virtual machine and the physical machine are uniformly monitored.
2. The method for unified monitoring of physical machines and virtual machines in a cloud platform multi-tenant environment according to claim 1, wherein the virtual machine acquisition server is invisible to tenants.
3. The method for unified monitoring of physical machines and virtual machines in the cloud platform multi-tenant environment according to claim 1, wherein the virtual machines created by each tenant are isolated from each other.
4. The method for unified monitoring of physical machines and virtual machines in a cloud platform multi-tenant environment according to claim 1, wherein according to a preset program set in a cloud platform by a cloud platform provider, a port default for transmitting monitoring data in the security group of the virtual machine created by each tenant allows data to be transmitted outwards, and a port default for transmitting monitoring data in the access control list of the created private network segment allows data to be transmitted outwards.
5. The method for unified monitoring of the physical machine and the virtual machine in the cloud platform multi-tenant environment according to claim 4, wherein a firewall is disposed between the private network segment and the management network segment according to the cloud platform security requirement of a cloud platform provider, and the firewall only allows a port for transmitting the monitoring data of the virtual machine to transmit data to the physical machine collection server.
6. The method for unified monitoring of the physical machine and the virtual machine in the cloud platform multi-tenant environment according to any one of claims 1 to 5, wherein a core switch is further included in the cloud platform, the virtual router collects the received monitoring data to the core switch, and the core switch sends the monitoring data to the physical machine collection server.
7. The method for unified monitoring of the physical machine and the virtual machine in the cloud platform multi-tenant environment according to any one of claims 1 to 5, wherein the monitoring data of the virtual machine includes: the utilization rate of the virtual CPU, the occupancy rate of the virtual memory, the utilization rate of the virtual hard disk, the operating condition of the operating system of the virtual machine and the information flow statistics of the virtual machine in each time period.
8. A system for unified monitoring of a physical machine and a virtual machine in a cloud platform multi-tenant environment comprises: a management network segment connected with a physical machine and a physical machine acquisition server and a private network segment which is established by each tenant and is connected with a virtual machine and a virtual router,
a monitoring agent plug-in is arranged in the virtual machine;
a virtual machine acquisition server is arranged on the private network segment;
the virtual router is added with a routing entry which sends the monitoring data collected by the virtual machine collection server to the physical machine collection server, so that the physical machine collection server can receive the monitoring data of the virtual machine, and the virtual machine and the physical machine are uniformly monitored.
9. The system for unified monitoring of physical machines and virtual machines in a cloud platform multi-tenant environment according to claim 8, wherein ports in the security group of the virtual machines for transmitting monitoring data allow data to be transmitted outside; and the port for transmitting the monitoring data in the access control list of the private network segment allows the data to be transmitted outwards.
10. The system for unified monitoring of physical machines and virtual machines in the cloud platform multi-tenant environment according to claim 9, wherein a firewall is disposed between the private network segment and the management network segment, and the firewall only allows a port that transmits monitoring data of the virtual machine to transmit data to the physical machine collection server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610193195.5A CN105634998B (en) | 2016-03-30 | 2016-03-30 | Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610193195.5A CN105634998B (en) | 2016-03-30 | 2016-03-30 | Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105634998A CN105634998A (en) | 2016-06-01 |
| CN105634998B true CN105634998B (en) | 2020-04-10 |
Family
ID=56049509
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610193195.5A Active CN105634998B (en) | 2016-03-30 | 2016-03-30 | Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105634998B (en) |
Families Citing this family (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106330602B (en) * | 2016-08-22 | 2019-10-25 | 中国科学院信息工程研究所 | A kind of virtual tenant network monitoring method of cloud computing and system |
| CN106850332A (en) * | 2016-12-12 | 2017-06-13 | 中电科华云信息技术有限公司 | Application dynamic monitoring and controlling method and system based on cloud |
| CN106878111A (en) * | 2017-03-15 | 2017-06-20 | 郑州云海信息技术有限公司 | The cloud monitoring system and monitoring method of a kind of High Availabitity |
| CN108628716B (en) * | 2017-03-21 | 2020-12-25 | 腾讯科技(深圳)有限公司 | Information receiving and managing system, method and device |
| CN107346259B (en) * | 2017-05-10 | 2020-09-08 | 国家计算机网络与信息安全管理中心 | Method for realizing dynamic deployment safety capability |
| CN108062225B (en) * | 2017-11-27 | 2021-08-27 | 国云科技股份有限公司 | Method for issuing application cluster by multi-template combination |
| CN108173842B (en) * | 2017-12-26 | 2022-01-14 | 国家电网公司 | Deployment optimization method of software defined firewall based on openstack cloud platform |
| CN109165135B (en) * | 2018-07-18 | 2021-05-04 | 平安科技(深圳)有限公司 | Data management method, computer readable storage medium and terminal equipment |
| CN110830317B (en) * | 2018-08-07 | 2023-03-24 | 深信服科技股份有限公司 | Internet access behavior management system, equipment and method |
| CN109450694B (en) * | 2018-11-26 | 2021-12-03 | 武汉烽火信息集成技术有限公司 | Multi-node heterogeneous operation and maintenance management method and system based on autonomous controllable software and hardware |
| CN109587234A (en) * | 2018-11-29 | 2019-04-05 | 日立楼宇技术(广州)有限公司 | Communication means and building cloud platform system based on building cloud platform system |
| CN111756599B (en) * | 2020-06-23 | 2022-07-12 | 中国联合网络通信集团有限公司 | Service monitoring method and service monitoring system |
| CN112383502B (en) * | 2020-09-11 | 2022-08-26 | 深圳市证通云计算有限公司 | Method and system for uniformly monitoring physical machine and virtual machine and electronic device |
| CN113722051B (en) * | 2021-11-03 | 2022-04-15 | 阿里巴巴(中国)有限公司 | Hardware performance acquisition method, equipment, system and storage medium |
| CN115801391A (en) * | 2022-11-14 | 2023-03-14 | 浪潮云信息技术股份公司 | Method and system for securely managing cloud physical host by using Openstack |
| CN116155890B (en) * | 2023-04-20 | 2023-08-15 | 杭州优云科技有限公司 | Method and device for realizing distributed file system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102447723A (en) * | 2010-10-12 | 2012-05-09 | 运软网络科技(上海)有限公司 | Client-side virtualization framework |
| CN103167034A (en) * | 2013-03-13 | 2013-06-19 | 河海大学 | Method for constructing monitoring Agent based on CloudStack virtual nodes |
| CN104113596A (en) * | 2014-07-15 | 2014-10-22 | 华侨大学 | Cloud monitoring system and method for private cloud |
| CN104503861A (en) * | 2012-04-20 | 2015-04-08 | 华为技术有限公司 | Abnormality handling method and system, agency device and control device |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150052614A1 (en) * | 2013-08-19 | 2015-02-19 | International Business Machines Corporation | Virtual machine trust isolation in a cloud environment |
-
2016
- 2016-03-30 CN CN201610193195.5A patent/CN105634998B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102447723A (en) * | 2010-10-12 | 2012-05-09 | 运软网络科技(上海)有限公司 | Client-side virtualization framework |
| CN104503861A (en) * | 2012-04-20 | 2015-04-08 | 华为技术有限公司 | Abnormality handling method and system, agency device and control device |
| CN103167034A (en) * | 2013-03-13 | 2013-06-19 | 河海大学 | Method for constructing monitoring Agent based on CloudStack virtual nodes |
| CN104113596A (en) * | 2014-07-15 | 2014-10-22 | 华侨大学 | Cloud monitoring system and method for private cloud |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105634998A (en) | 2016-06-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105634998B (en) | Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment | |
| US11159487B2 (en) | Automatic configuration of perimeter firewalls based on security group information of SDN virtual firewalls | |
| EP3304822B1 (en) | Method and apparatus for grouping features into classes with selected class boundaries for use in anomaly detection | |
| EP3695568B1 (en) | Systems and methods for controlling switches to record network packets using a traffice monitoring network | |
| CN106790091B (en) | Cloud safety protection system and flow cleaning method | |
| US9654395B2 (en) | SDN-based service chaining system | |
| EP3198801B1 (en) | Adaptive network function chaining | |
| JP6353453B2 (en) | System and method for dynamically managing network device data | |
| US20200186465A1 (en) | Multi-site telemetry tracking for fabric traffic using in-band telemetry | |
| US20160359695A1 (en) | Network behavior data collection and analytics for anomaly detection | |
| CN110226155B (en) | Collecting and processing context attributes on a host | |
| CN105049450A (en) | Cloud security system based on virtual network environment and deployment framework of cloud security system | |
| US9311123B2 (en) | Distributed virtual security appliance and flow-based forwarding system using virtual machines | |
| US9705921B2 (en) | Automated synchronized domain wide transient policy | |
| CN111181850B (en) | Data packet flooding suppression method, device and equipment and computer storage medium | |
| US10419392B2 (en) | Method, device and system for implementing address sharing | |
| KR101883712B1 (en) | Method, apparatus and computer program for managing a network function virtualization system | |
| KR20220070875A (en) | Smart home network system based on sdn/nfv | |
| KR20170006950A (en) | Network flattening system based on sdn and method thereof | |
| CN114095357B (en) | Service system | |
| US20230300141A1 (en) | Network security management method and computer device | |
| US11258653B1 (en) | Monitoring gateway systems and methods for openflow type networks | |
| Nimitkul et al. | The Study on the Blocking Time Reduction of the IDS/SON Cooperative Firewall System | |
| Nitta et al. | Conscious Network That Enables Autonomous Operation and Maintenance | |
| CN115776406A (en) | Safety protection method and device, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |