CN108512811A - A kind of virtual network partition method and SDN controllers based on SDN - Google Patents

A kind of virtual network partition method and SDN controllers based on SDN Download PDF

Info

Publication number
CN108512811A
CN108512811A CN201710107443.4A CN201710107443A CN108512811A CN 108512811 A CN108512811 A CN 108512811A CN 201710107443 A CN201710107443 A CN 201710107443A CN 108512811 A CN108512811 A CN 108512811A
Authority
CN
China
Prior art keywords
network
virtual
virtual network
submodule
sdn
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710107443.4A
Other languages
Chinese (zh)
Inventor
邓鑫
郝志宇
丁振全
费海强
刘永继
李大辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Institute of Information Engineering of CAS
Original Assignee
Institute of Information Engineering of CAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Institute of Information Engineering of CAS filed Critical Institute of Information Engineering of CAS
Priority to CN201710107443.4A priority Critical patent/CN108512811A/en
Publication of CN108512811A publication Critical patent/CN108512811A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0876Aspects of the degree of configuration automation
    • H04L41/0886Fully automatic configuration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/12Discovery or management of network topologies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/145Network analysis or design involving simulating, designing, planning or modelling of a network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/70Virtual switches

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Automation & Control Theory (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of virtual network partition method and SDN controllers based on SDN, the virtual network of each tenant can be isolated in the data center network of multi-tenant, so that each tenant is owned by the complete safety for obtaining address space, ensureing to increase virtual network while service quality.It has the following advantages that:1. being isolated between realizing network by overlay network technology, without being configured to network infrastructure, human intervention is reduced, realizes automation isolation configuration;2. tenant network quantity is supported to increase considerably;3. the entire ipv4 address spaces of user can be supplied to, and the intra-virtual-network that user can rent at oneself establishes vlan;4. renting the bandwidth resources of network for user can limit;5. providing the service quality guarantee function of certain applications, such as audio frequency and video to virtual network user;6. providing administrator interface, administrator can check the network state of each tenant at any time.

Description

A kind of virtual network partition method and SDN controllers based on SDN
Technical field
The present invention relates to virtualization fields, and in particular to a kind of virtual network partition method and SDN control based on SDN Device.
Background technology
SDN (software defined network, software-defined networking) and NFV (network function virtualizes, Network function virtualization) development reach its maturity.SDN is decoupling by data plane and control plane, letter Change network configuration management, shields the difference of heterogeneous networks equipment room.And NFV is then to be transplanted to the function of the network equipment On x86 platforms so that network function can be run on common data center server, greatly reduce the network of cloud platform Cost improves the utilization rate of data center calculation capacity.Both technologies have begun in the network of data center at present Using facilitating the network struction of data center.In the data center often by multiple computing resource nodes together between them The network of connection is supplied to user to use together, in the data center network of multi-tenant, how for each tenant provide mutually every From and possess the virtual network of independent address space and become urgent problem to be solved.
At present for virtual network isolation main method be by configuring physical switches VLAN, will be in data center The flow of dummy node is sent on the specific ports vlan, to ensure that the virtual flow of each tenant in physical network Isolation.
The major defect of this cut-in method is:
(1) flexibility configured to the network equipment by VLAN is poor, and the different network equipments is needed to change and is matched Set mode;
(2) there is larger limitation to tenant network quantity, this is because VLAN_ID description fields only have 8, can at most draw The VLAN quantity divided is 4096;
(3) flexible control of the tenant to network can not be provided, if tenant needs to divide vlan in the virtual network of rental, The problem of vlan conflicts may then be caused.
Invention content
For above-mentioned existing method there are the problem of, the virtual network partition method based on SDN that the invention discloses a kind of And SDN controllers, it can realize in the data center of multi-tenant, the virtual network of each tenant is isolated so that each tenant There is separate address space, ensures the safety for increasing virtual network while service quality.
A kind of SDN controllers, including:Northbound interface layer, operation layer and southbound interface layer, wherein:
The northbound interface layer for providing the user with network-control, and includes:
Restapi interfaces (i.e. programming interface) control network for making user write program according to interface description;
Web interface, the external interface for providing a user an entirety according to the operating condition of current virtual network;
Mq_adapter interfaces, the command messages sended over for receiving virtualization system (such as openstack);Institute Stating operation layer includes again:
For being interacted with northbound interface layer, with the relevant submodule of business diagnosis;
For being interacted with southbound interface layer, with the relevant submodule of device configuration;
For realizing with the relevant submodule of business diagnosis and the message communicated between the relevant submodule of device configuration Interaction submodule;
The southbound interface layer is used to provide the interactive interface with the virtual switch in virtual network.
Further, described to include again with the relevant submodule of business diagnosis:
Database interface submodule, for realizing the encapsulation to database;
Topological analysis submodule, for showing that virtual network is each virtual by analyzing the Turbo codes data of virtual network The distribution situation of node, and virtual network is mapped in infrastructure network;
Data flow plans submodule, for planning that virtual network data flow, and determining data flow are uploaded in link in kind Defeated mark, to ensure the isolation between virtual network.
Further, described to include again with the relevant submodule of device configuration:
Link detection submodule monitors in real time for making the virtual switch in virtual network have the function of link detection Virtual network operating condition;
Abnormality processing submodule, the failure message sent for handling virtual switch in virtual network, and in time to It feeds back at family;
Asset management submodule, the static information for the virtual switch to access are safeguarded.
Further, the interactive mode of the southbound interface layer offer includes:Ovsdb, openflow, netconf, snmp。
Using the virtual network partition method based on SDN of above-mentioned SDN controllers, specific steps include:
(1) start northbound interface layer, interacting message submodule and southbound interface layer, wait for the virtual switch in virtual network Machine is connected to SDN controllers;
(2) remote task is received, topological analysis carried out to the Turbo codes data of virtual network, and by each virtual switch The controller of machine is appointed as currently running SDN controllers;
(3) data flow planning application is carried out according to the result of topological analysis, the result after data flow is planned, which is sent to, to disappear It ceases in bus, so as to complete the business diagnosis of northbound interface layer;
(4) after the completion of business diagnosis, virtual switch is connected automatically to SDN controllers, and the SDN controllers are according to number Virtual switch is configured according to the result of stream planning, and waits for the feedback of configuration result, is detected if feedback configuration success Whether virtual link describes file with virtual topology is consistent, and thinks that virtual network is isolated successfully if meeting.
Further, in step (1), the interacting message submodule recycles monitoring information and forwards message, described to disappear When breath is request message, after the interacting message submodule forwarding message, forwarding thread can be hung up until asking to be returned by response, And the message of return is sent to requestor;When the message is event message, only message is sent by interacting message submodule Into shared event queue, it is not to wait for returning.
Further, it in step (2), is analyzed by the Turbo codes data to virtual network, obtains virtual network The distribution situation of middle dummy node, and corresponding point is carried out to the virtual switch position and title that connect each dummy node Analysis, currently running SDN controllers are appointed as by the controller of each virtual switch.
Further, in step (3), data flow planning application is carried out according to the result of topological analysis, is virtually opened up unified In the node division flutterred to the same overlay network, if the subnet in need for carrying out Logistics networks behavior in same overlay network Sub-network division is then carried out, and the subnet newly divided is classified as a new overlay network.
Further, in step (4), the SDN controllers obtain corresponding virtual friendship from the asset management submodule It changes planes controlled entity, the result planned according to data flow configures virtual switch, and waits for the feedback of configuration result.
Further, in step (4), if feedback configuration is unsuccessful or feedback configuration success but virtual link with it is virtual Turbo codes file is not met, then failure information is directly sent to abnormality processing submodule, is handled.
Further, after the abnormality processing submodule receives failed message, failure cause is analyzed, and to mistake It is accidentally handled, failure result is isolated in feedback topology if still unsuccessful.
Further, the above method further includes the configuration information for clearing up virtual switch in SDN controllers, restores dependency number According to.
This method main thought is as follows:
It is analyzed by the virtual network topology mapping to user demand, obtains each dummy node institute in virtual network Physical server position, by the virtual switch that dummy node connects is controlled realize to virtual network every From.Different overlay network ID is distributed for each virtual network so that flow phase of the virtual network in physical network links Mutually isolation.Then each virtual switch is configured, mainly utilizes existing network tunnel technology, such as Vxlan, GRE. Flow in different tunnels is mutually isolated, then is modified to the ID in tunnel in virtual network by SDN controllers so that Can include multiple overlay network subnets in the same virtual network.In order to adapt to a variety of different virtual switch machine equipments, this Method uses different virtual switch control connecting interfaces.Remote configuration success or not due to virtual switch and place Physical server have much relations, therefore, exception processing module is added in this method, to solve to match virtual switch The problem of setting unsuccessfully.
Compared with published method, have the following advantages that:
(1) by being isolated between overlay network technology realization network, without being configured to network infrastructure, subtract Few human intervention realizes automation isolation configuration;
(2) tenant network quantity is supported to increase considerably, since this method is that the soverlay technique based on three-layer network is realized , the maximum virtual network quantity of support is up to ten million;
(3) it can be supplied to user is complete to obtain ipv4 address spaces, and user can be in the virtual network oneself rented Vlan is established in inside;
(4) bandwidth resources of network are rented for user to be limited;
(5) the service quality guarantee function of certain applications, such as audio frequency and video are provided to virtual network user;
(6) administrator interface is provided, administrator can check the network state of each tenant at any time.
Description of the drawings
The integrated stand composition of Fig. 1 SDN controllers of the present invention.
The present invention is based on the flow charts of the virtual network partition method of SDN by Fig. 2.
The work flow diagram of Fig. 3 northbound interface layers of the present invention.
The work flow diagram of Fig. 4 operation layers of the present invention.
The work flow diagram of Fig. 5 southbound interface layers of the present invention.
Specific implementation mode
The invention discloses one kind being based on SDN controllers, as shown in Figure 1, being broadly divided into three parts, including northbound interface Layer, operation layer, southbound interface layer.
Northbound interface layer mainly provides the user with the interface of network-control, wherein including three kinds of interfaces:Restapi interfaces, That is programming interface, user can describe to write program to control network according to interface;Web interface, to user to current virtual net The operating condition of network provides the external interface of an entirety;Mq_adapter interfaces, predominantly SDN controllers are dissolved into virtualization It is used in system, the command messages sended over for receiving virtualization system.
Operation layer is the core layer of entire SDN controllers, and including seven submodules, wherein first three submodule is used for It is interacted with northbound interface layer, it is related to business diagnosis;Three submodules with southbound interface layer for interacting afterwards, with device configuration phase It closes;Communication is realized by interacting message submodule between two parts.
Database interface submodule is mainly responsible for the function of data repository abstraction modeling, realizes the encapsulation to database;Topology Submodule is analyzed, analysis virtual network topology is mainly responsible for, obtains the distribution situation of each dummy node of virtual network, and will be empty Quasi- network is mapped in infrastructure network;Data flow plans that submodule, main function are planning virtual network data flow, And determine the mark that data flow is transmitted on link in kind, to ensure the isolation between virtual network;Interacting message submodule Block, the relevant submodule of main business and is in communication with each other with relevant submodule is configured;Link detection submodule, makes virtual network In virtual openflow interchangers have the function of link detection, for real time monitoring virtual network operating condition have it is very heavy It acts on;Abnormality processing submodule, it is main to handle the failure message that virtual openflow switch devices are sent in virtual network, To user timely to feed back;Asset management submodule is mainly responsible for the static state letter to the virtual openflow interchangers of access Breath is safeguarded.Southbound interface layer mainly provides and the interactive interface of virtual switch, four kinds of interactive modes of main offer: Ovsdb, openflow, netconf, snmp etc., as long as virtual switch supports above four kinds of agreement application SDN controls Device processed is controlled.
Virtual network partition method flow based on SDN is as shown in Fig. 2, be as follows:
(1) initial phase:This stage main task is to complete the initial work of program operation, northern including starting To interface layer, initiation message interacts submodule, starts southbound interface layer.Start northbound interface layer, if web interface is to monitor 80 ends Mouthful;Start the interacting message submodule in operation layer, which is cycle monitoring information and forwards message, main Support two kinds of message:Request message, after forwarding message, forwarding thread can be hung up to be returned until request is responded, and will be returned Message be sent to requestor;Event message is only sent a message in shared event queue, is not to wait for returning.Start Southbound interface waits for virtual switch to be connected to SDN controllers.
(2) stabilization sub stage:This stage main task is to receive remote task to obtain by the analysis to Turbo codes data Go out the distribution situation of dummy node in virtual network, the i.e. correspondence of dummy node and equipment in kind, and each for connecting The virtual switch position of a dummy node and title carry out correspondence analysis, while the result of analysis is saved in database The controller of each virtual switch is appointed as currently running SDN controllers;Data flow plans submodule according to topology point The result of analysis carries out planning application, will unify in the node division to the same overlay network of virtual topology, if same covering The subnet in need for carrying out Logistics networks behavior then carries out sub-network division in network, and by the subnet newly divided be classified as one it is new Overlay network, therefore may there are one or more overlay networks to exist simultaneously in the same virtual network.After data flow is planned As a result it is sent on messaging bus, the business diagnosis part of northbound interface layer is completed to this.
After business diagnosis is handled, virtual switch chance is connected automatically to SDN controllers, and SDN controllers will be to all void Quasi- interchanger does unified virtual network asset management, and the content of management is the controlled entity of each virtual switch, Ke Yitong It crosses controlled entity and the work such as configuration and flow table issuance is carried out to virtual switch.It is planned when receiving data flow from data/address bus Result after, controller can obtain corresponding virtual switch controlled entity from asset management submodule, be planned according to data flow Result virtual switch is configured, and wait for the feedback of configuration result.Pass through link detection if feedback configuration success Submodule, which detects virtual link and whether describes file with virtual topology, to be consistent, and exception is transmitted the message to if not meeting Processing submodule is handled, and thinks that virtual network is isolated successfully if meeting virtual network description;If feedback configuration is not It is successful then feedback information is directly sent to abnormality processing submodule, it is handled.
After abnormality processing submodule receives failed message, failure cause is analyzed, takes resetting data flow or again The methods of new topological analysis, handles mistake, and failure result is isolated in feedback topology if still unsuccessful.
(3) ending phase:The main task in this stage is to clear up the configuration information of virtual switch in SDN controllers, also Former port occupancy situation, the related datas such as vxlan occupancy situations.
Fig. 3 gives the work flow diagram of northbound interface layer, is mainly used for receiving virtualization system order, northbound interface layer Specific implementation step it is as follows:
(1) system program configuration file, analysis configuration file are read;
(2) start corresponding message system ring and receive task message, if receiving the task of exiting, program exits;
(3) result is stored in number while receiving non-end message, analysis task, and send result to operation layer According in library.
Fig. 4 gives the work flow diagram of operation layer, and operation layer is the core of SDN controllers, operation layer it is specific Implementation steps are as follows:
(1) task data after analysis is obtained from northbound interface layer;
(2) distribution feelings of each dummy node on virtualized server in virtual network are analyzed in conjunction with database information Condition, the information for analyzing gained include the addresses server ip and node type where dummy node, and each virtual switch is arranged Controller, virtual switch chance are connected automatically to SDN controllers;
(3) after virtual switch is connected automatically to SDN controllers, it can be automatically registered to asset management submodule, controlled The controlled entity of virtual switch is saved in asset library in device;
(4) analysis virtual network topology describes file, and analysis obtains the number for including overlay network in virtual network, and divides With overlay network ID, division result is sent on messaging bus;
(5) data flow rule is received from messaging bus, and the controlled entity of virtual switch is obtained from asset library, and Issue ready-portioned data flow;
(6) if data flow issues success, the company of virtual switch is judged by virtual switch topology probe data It connects whether relationship meets virtual network description, sends if meeting and successfully feed back;It is transmitted the message to if not meeting different Normal processing module;
(7) if data flow issues unsuccessful, error message is sent to exception processing module;
(8) exception processing module analyzes failure cause, takes resetting data flow or again the methods of topological analysis, Mistake is handled, sends if abnormality processing success and successfully feeds back, it is still unsuccessful, it sends and unsuccessfully feeds back.
Fig. 5 gives the work flow diagram of southbound interface layer, and southbound interface layer major function is to monitor virtual switch Connection, the specific implementation step of southbound interface layer are as follows:
(1) system program configuration file, analysis configuration file are read;
(2) start oracle listener, the listening mode that do not specified in configuration file then starts the listening mode of acquiescence, i.e., Openflow is monitored;
(3) after thering is virtual switch to be connected to SDN controllers, by the registers entities of virtual switch to asset management Module.

Claims (10)

1. a kind of SDN controllers, including:Northbound interface layer, operation layer and southbound interface layer, wherein:
The northbound interface layer for providing the user with network-control, and includes:
Restapi interfaces control network for making user write program according to interface description;
Web interface, the external interface for providing a user an entirety according to the operating condition of current virtual network;
Mq_adapter interfaces, the command messages sended over for receiving virtualization system;
The operation layer includes again:
For being interacted with northbound interface layer, with the relevant submodule of business diagnosis;
For being interacted with southbound interface layer, with the relevant submodule of device configuration;
For realizing with the relevant submodule of business diagnosis and the interacting message communicated between the relevant submodule of device configuration Submodule;
The southbound interface layer is used to provide the interactive interface with the virtual switch in virtual network.
2. SDN controllers as described in claim 1, which is characterized in that described to include again with the relevant submodule of business diagnosis:
Database interface submodule, for realizing the encapsulation to database;
Topological analysis submodule, the distribution feelings for obtaining each dummy node of virtual network by analyzing virtual network topology Condition, and virtual network is mapped in infrastructure network;
Data flow plans submodule, for planning virtual network data flow, and determines what data flow was transmitted on link in kind Mark, to ensure the isolation between virtual network.
3. SDN controllers as described in claim 1, which is characterized in that described to include again with the relevant submodule of device configuration:
Link detection submodule, for making the virtual switch in virtual network have the function of that link detection, real time monitoring are virtual Network operation situation;
Abnormality processing submodule, for handling the failure message that virtual switch is sent in virtual network, and it is anti-to user in time Feedback;
Asset management submodule, the static information for the virtual switch to access are safeguarded.
4. SDN controllers as described in claim 1, which is characterized in that the interactive mode that the southbound interface layer provides includes: Ovsdb, openflow, netconf, snmp.
5. using the virtual network partition method based on SDN of any SDN controllers of claim 1-4, specific steps packet It includes:
(1) start northbound interface layer, interacting message submodule and southbound interface layer, the virtual switch in virtual network is waited for connect It is connected to SDN controllers;
(2) remote task is received, topological analysis carried out to the Turbo codes data of virtual network, and by each virtual switch Controller is appointed as currently running SDN controllers;
(3) data flow planning application is carried out according to the result of topological analysis, it is total that the result after data flow is planned is sent to message On line, to complete the business diagnosis of northbound interface layer;
(4) after the completion of business diagnosis, virtual switch is connected automatically to SDN controllers, and the SDN controllers are according to data flow The result of planning configures virtual switch, and waits for the feedback of configuration result, the detecting visual if feedback configuration success Whether link describes file with virtual topology is consistent, and thinks that virtual network is isolated successfully if meeting.
6. the virtual network partition method based on SDN as claimed in claim 5, which is characterized in that described to disappear in step (1) Breath interaction submodule cycle monitoring information simultaneously forwards message, when the message is request message, the interacting message submodule After forwarding message, forwarding thread can be hung up to be returned until request is responded, and the message of return is sent to requestor;It is described to disappear When breath is event message, is only sent a message to by interacting message submodule in shared event queue, be not to wait for returning.
7. the virtual network partition method based on SDN as claimed in claim 5, which is characterized in that in step (2), by right The Turbo codes data of virtual network are analyzed, and obtain the distribution situation of dummy node in virtual network, and each to connecting The virtual switch position of a dummy node and title carry out correspondence analysis, and the controller of each virtual switch is appointed as working as The SDN controllers of preceding operation.
8. the virtual network partition method based on SDN as claimed in claim 5, which is characterized in that in step (3), according to opening up The result for flutterring analysis carries out data flow planning application, will unify in the node division to the same overlay network of virtual topology, such as The subnet in need for carrying out Logistics networks behavior then carries out sub-network division in the same overlay network of fruit, and the subnet newly divided is returned For a new overlay network.
9. the virtual network partition method based on SDN as claimed in claim 5, which is characterized in that in step (4), the SDN Controller obtains corresponding virtual switch controlled entity from the asset management submodule, the result pair planned according to data flow Virtual switch is configured, and waits for the feedback of configuration result.
10. the virtual network partition method based on SDN as claimed in claim 5, which is characterized in that further include cleaning SDN controls The configuration information of virtual switch in device processed restores related data.
CN201710107443.4A 2017-02-27 2017-02-27 A kind of virtual network partition method and SDN controllers based on SDN Pending CN108512811A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710107443.4A CN108512811A (en) 2017-02-27 2017-02-27 A kind of virtual network partition method and SDN controllers based on SDN

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710107443.4A CN108512811A (en) 2017-02-27 2017-02-27 A kind of virtual network partition method and SDN controllers based on SDN

Publications (1)

Publication Number Publication Date
CN108512811A true CN108512811A (en) 2018-09-07

Family

ID=63374084

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710107443.4A Pending CN108512811A (en) 2017-02-27 2017-02-27 A kind of virtual network partition method and SDN controllers based on SDN

Country Status (1)

Country Link
CN (1) CN108512811A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109474627A (en) * 2018-12-27 2019-03-15 南京优速网络科技有限公司 A kind of virtual tenant network partition method and system based on SDN
CN110380984A (en) * 2019-08-02 2019-10-25 哈尔滨工业大学 Resource regulating method based on space virtual network
CN112003825A (en) * 2020-07-24 2020-11-27 国家电网有限公司 SDN-based virtual network isolation method and SDN controller
CN115996136A (en) * 2022-09-29 2023-04-21 华数云科技有限公司 SDN-based cloud security capability implementation method in multi-tenant scene

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103607430A (en) * 2013-10-30 2014-02-26 中兴通讯股份有限公司 Network processing method and system, and network control center
CN104394130A (en) * 2014-11-12 2015-03-04 国云科技股份有限公司 A multi-tenant virtual network isolating method
CN104469888A (en) * 2015-01-04 2015-03-25 重庆邮电大学 Wireless access control method and device for software defined network (SDN)
CN104579898A (en) * 2015-01-26 2015-04-29 中国联合网络通信集团有限公司 Tenant isolating method and system
CN106411785A (en) * 2015-08-03 2017-02-15 上海宽带技术及应用工程研究中心 Openstack network system based on whole OPENFLOW physical switch network and realization method thereof

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103607430A (en) * 2013-10-30 2014-02-26 中兴通讯股份有限公司 Network processing method and system, and network control center
CN104394130A (en) * 2014-11-12 2015-03-04 国云科技股份有限公司 A multi-tenant virtual network isolating method
CN104469888A (en) * 2015-01-04 2015-03-25 重庆邮电大学 Wireless access control method and device for software defined network (SDN)
CN104579898A (en) * 2015-01-26 2015-04-29 中国联合网络通信集团有限公司 Tenant isolating method and system
CN106411785A (en) * 2015-08-03 2017-02-15 上海宽带技术及应用工程研究中心 Openstack network system based on whole OPENFLOW physical switch network and realization method thereof

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
房秉毅等: ""开源SDN控制器发展现状研究"", 《邮电设计技术》 *

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109474627A (en) * 2018-12-27 2019-03-15 南京优速网络科技有限公司 A kind of virtual tenant network partition method and system based on SDN
CN109474627B (en) * 2018-12-27 2021-08-13 南京优速网络科技有限公司 Virtual tenant network isolation method and system based on SDN
CN110380984A (en) * 2019-08-02 2019-10-25 哈尔滨工业大学 Resource regulating method based on space virtual network
CN112003825A (en) * 2020-07-24 2020-11-27 国家电网有限公司 SDN-based virtual network isolation method and SDN controller
CN115996136A (en) * 2022-09-29 2023-04-21 华数云科技有限公司 SDN-based cloud security capability implementation method in multi-tenant scene
CN115996136B (en) * 2022-09-29 2024-03-26 华数云科技有限公司 SDN-based cloud security capability implementation method in multi-tenant scene

Similar Documents

Publication Publication Date Title
US11805024B1 (en) Automatically generating an intent-based network model of an existing computer network
US11665053B2 (en) Initializing network device and server configurations in a data center
CN107135134B (en) Private network cut-in method and system based on virtual switch and SDN technology
US10644952B2 (en) VNF failover method and apparatus
CN107147509B (en) Virtual private network service implementation method, device and communication system
CN110301104B (en) Optical line terminal OLT equipment virtualization method and related equipment
US9088477B2 (en) Distributed fabric management protocol
EP3783835A1 (en) Vendor agnostic profile-based modeling of service access endpoints in a multitenant environment
CN104734931A (en) Method and device for establishing link between virtual network functions
CN112039682A (en) Method for application and practice of software defined data center in operator network
CN103475722A (en) Implement system for business collaboration platform
JP5811196B2 (en) Computer system and virtual network visualization method
CN108512811A (en) A kind of virtual network partition method and SDN controllers based on SDN
US20150172130A1 (en) System and method for managing data center services
US9866436B2 (en) Smart migration of monitoring constructs and data
US11258661B2 (en) Initializing server configurations in a data center
CN104486103A (en) Message transmission method and equipment
US20160191365A1 (en) Data center migration tracking tool
CN106850803B (en) SDN-based weighted polling system and algorithm
US9684539B1 (en) Methods, systems, and computer readable mediums for logically remediating infrastructure resource components
US20180198708A1 (en) Data center linking system and method therefor
CN111884950B (en) Data transmission method, target switch, designated switch and switch system
CN116915837B (en) Communication method and communication system based on software defined network
CN116938667A (en) Information transmission method and device, storage medium and electronic equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20180907