CN101572676B - Load sharing method and equipment of double outlets at data center - Google Patents

Load sharing method and equipment of double outlets at data center Download PDF

Info

Publication number
CN101572676B
CN101572676B CN2009101483766A CN200910148376A CN101572676B CN 101572676 B CN101572676 B CN 101572676B CN 2009101483766 A CN2009101483766 A CN 2009101483766A CN 200910148376 A CN200910148376 A CN 200910148376A CN 101572676 B CN101572676 B CN 101572676B
Authority
CN
China
Prior art keywords
address
public network
service server
outlet device
described service
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2009101483766A
Other languages
Chinese (zh)
Other versions
CN101572676A (en
Inventor
李蔚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd
Original Assignee
Hangzhou H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou H3C Technologies Co Ltd filed Critical Hangzhou H3C Technologies Co Ltd
Priority to CN2009101483766A priority Critical patent/CN101572676B/en
Publication of CN101572676A publication Critical patent/CN101572676A/en
Application granted granted Critical
Publication of CN101572676B publication Critical patent/CN101572676B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a load sharing method of double outlets at a data center. The load sharing method comprises the following steps: first outlet equipment receives a DNS request from a terminal, obtains a public IP address corresponding to a domain name of a service server according to the DNS request, and then maps the public IP address to be an IP address of the service server. In the load sharing method and the equipment, corresponding relation between different public IP addresses and the IP addresses of the service server is configured on the outlet equipment, thus improving service quality of accessing the service server by a home terminal user, ensuring traffic safety and saving resources. The invention also provides equipment corresponding to the load sharing method.

Description

The load sharing method and the equipment of the two outlets of a kind of data center
Technical field
The present invention relates to communication technical field, particularly relate to the load sharing method and the equipment of the two outlets of a kind of data center.
Background technology
For the information service provider, it is very important having a large amount of visit capacities and user, but a large amount of visits brings white elephant can for the network of data center, develop rapidly along with local area network technology, the user number of using Internet service constantly increases, the burden of data center network is more and more heavier, becomes and sinks beneath one's burden, and the forwarding performance and the outlet bandwidth of data central site network egress router brought great challenge.
The user is when the visit data center, the reliability of data center is extremely important, it is the problem that the user is concerned about most, in order to improve the reliability of data center, data center network has required high redundancy when design, promptly all network nodes (network equipment) all must guarantee to have the redundant node of a symmetry, and all links all must guarantee to have the redundant link of a symmetry; When a node breaks down, can switch to fast on the redundant node of another symmetry; When a link breaks down, can switch to fast on the redundant link of another symmetry; Thereby the minimizing time of service interruption, the reliability of raising system.
In order to alleviate the burden of data center, improve the forwarding performance and the outlet bandwidth of egress router, and the reliability of raising data center, typically use network dual exit, network dual exit is twice the outlet bandwidth expansion, the egress router forwarding performance doubles, also realized simultaneously the Redundancy Design of Egress node and link, the implementation of network dual exit comprises: two links of outlet are connected respectively on the different ISP of operator (Internet Service Provider, ISP); Or two links of outlet are connected on the same ISP of operator; Being connected to the same ISP of operator with two links that export is that example describes upward.
As shown in Figure 1, realize two outlets of network,, can be connected on the ISP, also can be connected on the ISP by using router B by router-A promptly for the inside terminals user by using router-A and router B.For all nodes and the link in the network, all carry out Redundancy Design, promptly all nodes in the network all have the redundant node of symmetry, and all links all have the redundant link of symmetry, and for example, the redundant node of switch A symmetry is a switch b.
In the prior art, in order to realize the load balancing of the two outlets of data center network, with corresponding two the different public network addresses of the domain name of the service server (server A) of data center inside (for example, public network IP address is IP A and IP B), these two different public network addresses are two outlets, and these two different addresses are configured in respectively on two egress routers (router-A and router B).
Based on top analysis, when using two outlets to carry out load balancing, there is following shortcoming at present:
The pairing public network IP address of this egress router can only be mapped to the IP address of service server in the egress router, and corresponding two the different public network addresses of the domain name of service server, promptly egress router can not become another one net IP map addresses the IP address of service server.For example, for the router-A among Fig. 1, the public network IP address of this router-A place public network is IP A, and the public network IP address of another public network is IP B, router-A can only be mapped to public network address IP A the address ip 1 of service server, IP B can not be mapped to IP 1.When the terminal use of data center inside need visit this service server, at first can send the DNS request to dns server by router-A, when if the domain name that dns server is selected for this request is the pairing public network of IP A, router-A is mapped directly to IP 1 with this IP A and sends to the inside terminals user, and the inside terminals user directly has access to service server by this IP 1; When but the domain name of selecting for this request when dns server is the pairing public network of IP B, router-A directly sends to the inside terminals user with IP B, the inside terminals user is according to the domain name corresponding address IPB egress router visit internal server that detours, the i.e. flowing of access that comes of terminal use a lot of unnecessary paths of can detouring according to the external address of egress router internally, even on the internet that may need to detour; Introduce unnecessary external attack factor, also seriously reduced the service quality of visit simultaneously, taken a lot of unnecessary system resources, for example bandwidth, system forwards resource etc.
Summary of the invention
The invention provides the load sharing method and the equipment of the two outlets of a kind of data center,, reduce the unnecessary wasting of resources to improve the inside terminals quality of services for users.
In order to achieve the above object, the present invention proposes the load sharing method of the two outlets of a kind of data center, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server and terminal, described first outlet device and described second outlet device are the network equipment of symmetry, the IP address of respectively corresponding described first public network of the domain name of described service server and the IP address of described second public network, the IP address of described first public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, said method comprising the steps of:
Described first outlet device receives the DNS request from described terminal, carries the information of the described service server domain name of visit in the described DNS request;
Described first outlet device is according to the pairing public network IP address of the described service server domain name of described DNS acquisition request;
Described first outlet device is mapped to described public network IP address the IP address of described service server, and the IP address information of described service server sent to described terminal, visit described service server by described terminal according to the IP address information of described service server.
Preferably, also comprise dns server in two outlet networks that described method is used, described first outlet device specifically comprises according to the pairing public network IP address of the described service server domain name of described DNS acquisition request:
Described first outlet device sends to described dns server with described DNS request, select public network IP addresses corresponding by described dns server according to predetermined strategy and described DNS request, described public network IP address is the pairing public network IP address of described service server domain name;
Described first outlet device receives the public network IP address from described dns server, and described public network IP address is the IP address of described first public network or the IP address of described second public network.
Preferably, when data flow need be visited described service server, described method also comprised:
Described dns server is that described data flow is selected public network IP addresses corresponding according to predetermined strategy, visits described service server by described data flow according to the public network IP address of described selection.
Preferably, described first outlet device specifically comprises the IP address that described public network IP address is mapped to described service server:
When described public network IP address was the IP address of described first public network, described first outlet device was mapped to described first public network IP address IP address of described service server; Or
When described public network IP address was the IP address of described second public network, described first outlet device was mapped to described second public network IP address IP address of described service server.
Preferably, when described first outlet device gets access to address transition with described service server when being the configuration order of local public network address, described first outlet device is mapped to described first public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server;
When described first outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described first outlet device is mapped to described second public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
Preferably, it is after the configuration order of non-local public network address that described first outlet device gets access to address transition with described service server, also comprises:
Described first outlet device does not generate pairing route table items of described second public network IP address and ARP list item.
Preferably, when using described second outlet device to receive DNS request from described terminal, described method also comprises:
Described second outlet device is mapped to the pairing public network IP address of described service server domain name the IP address of described service server; Be specially:
Described first public network IP address is mapped to the IP address of described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server; Or
Described second public network IP address is mapped to the IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
Preferably,
Described second outlet device gets access to address transition with described service server when being the configuration order of local public network address, and described second outlet device is mapped to described second public network IP address according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server the IP address of described service server;
When described second outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described second outlet device is mapped to described first public network IP address according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server the IP address of described service server.
Preferably, it is after the configuration order of non-local public network address that described second outlet device gets access to address transition with described service server, also comprises:
Described second outlet device does not generate pairing route table items of described first public network IP address and ARP list item.
The present invention proposes the load balancing equipment of the two outlets of a kind of data center, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server and terminal, described first outlet device and described second outlet device are the network equipment of symmetry, the IP address of described first public network in IP address of the IP address of corresponding respectively first public network of the domain name of described service server and second public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, and described load balancing equipment comprises:
Receiver module is used to receive the DNS request from described terminal, carries the information of the described service server domain name of visit in the described DNS request;
Acquisition module electrically connects with described receiver module, is used for the pairing public network IP address of the described service server domain name of DNS acquisition request that receives according to described receiver module;
Mapping block, electrically connect with described acquisition module, be used for the public network IP address that described acquisition module obtains is mapped to the IP address of described service server, the IP address information of described service server is sent to described terminal, visit described service server according to the IP address information of described service server by described terminal.
Preferably, also comprise dns server in two outlet networks that described equipment is used, described acquisition module specifically is used for:
Described DNS request is sent to described dns server, select public network IP addresses corresponding by described dns server according to predetermined strategy and described DNS request, described public network IP address is the pairing public network IP address of described service server domain name;
And receiving public network IP address from described dns server, described public network IP address is the IP address of described first public network or the IP address of described second public network.
Preferably, described mapping block specifically is used for:
When described public network IP address is the IP address of described first public network, described first public network IP address is mapped to the IP address of described service server; Or
When described public network IP address is the IP address of described second public network, described second public network IP address is mapped to the IP address of described service server.
Preferably, when described load balancing equipment is described first outlet device,
Described mapping block also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described second public network IP address and ARP list item.
Preferably, when described load balancing equipment is described second outlet device,
Described mapping block also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described first public network IP address and ARP list item.
Compared with prior art, the present invention has the following advantages: under the condition of data center's two outlet networking, by the corresponding relation between the IP address of IP address that disposes different public on the outlet device and service server, when the service server of data center inside terminals user capture inside, the IP address information of this service server is sent to the inside terminals user, make the direct access service server of inside terminals user, thereby improved the service quality of inside terminals user capture service server, guaranteed the fail safe of flow, reduce unnecessary external attack factor, saved resource.
Description of drawings
Fig. 1 is the networking schematic diagram of network dual exit in the prior art;
The two load sharing method flow charts that export of a kind of data center that Fig. 2 proposes for the present invention;
The networking model structure chart that Fig. 3 proposes down for the concrete application scenarios of the present invention;
Fig. 4 is the load sharing method flow chart of the present invention's two outlets of the pairing data center of application scenarios shown in Figure 3;
Fig. 5 is the networking model structure chart that proposes under the concrete application scenarios of another kind of the present invention;
The two load balancing equipment structure charts that export of data center that Fig. 6 proposes for the present invention.
Embodiment
Core concept of the present invention is under the networking of the two outlets of data center network, by (for example at outlet device, two egress routers or two outlet fire compartment walls) go up the corresponding relation between the IP address of the IP address (two outlet devices public network IP addresses corresponding) respectively of configuration different public and service server (server of data center inside), when the inside terminals user of data center need visit inner service server, dns server is chosen the pairing public network IP address of service server according to predetermined strategy after, outlet device is mapped to this public network IP address the IP address of service server, and the IP address information of this service server sent to the inside terminals user, make the direct access service server of inside terminals user, thereby improved the service quality of inside terminals user capture service server, guaranteed the fail safe of flow, reduce unnecessary external attack factor, saved resource.
Among the present invention, the public network address by increasing non-outlet device of special order nat server ecdemic configuration and the mapping relations (public network address of this special nat server ecdemic configuration can not derive route table items and ARP list item on this outlet device) of the IP address of internal server, thus be implemented in corresponding relation between the IP address of the IP address that disposes different public on the outlet device and service server.
The method of the load balancing sharing business load of the two outlets of a kind of data center that the present invention proposes, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server and terminal, described first outlet device and described second outlet device are the network equipment of symmetry, the IP address of respectively corresponding described first public network of the domain name of described service server and the IP address of described second public network, the IP address of described first public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, as shown in Figure 2, said method comprising the steps of:
Step S201, described first outlet device receive the DNS request from described terminal, carry the information of the described service server domain name of visit in the described DNS request.
Step S202, described first outlet device is according to the pairing public network IP address of the described service server domain name of described DNS acquisition request.
Step S203, described first outlet device is mapped to described public network IP address the IP address of described service server, and the IP address information of described service server sent to described terminal, visit described service server by described terminal according to the IP address information of described service server.
Wherein, described first outlet device specifically comprises the IP address that described public network IP address is mapped to described service server: when described public network IP address is the IP address of described first public network, described first public network IP address is mapped to the IP address of described service server; Or when described public network IP address is the IP address of described second public network, described second public network IP address is mapped to the IP address of described service server.
Wherein, when described first outlet device gets access to address transition with described service server when being the configuration order of local public network address, described first outlet device is mapped to described first public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server;
When described first outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described first outlet device is mapped to described second public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
Need to prove that it is after the configuration order of non-local public network address that described first outlet device gets access to address transition with described service server, described first outlet device does not generate pairing route table items of described second public network IP address and ARP list item.
Among the present invention, when when using described second outlet device to receive DNS request from described terminal, described method also comprises: described second outlet device is mapped to the pairing public network IP address of described service server domain name the IP address of described service server; Be specially: the IP address that described first public network IP address is mapped to described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server; Or described second public network IP address is mapped to the IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
When described second outlet device gets access to address transition with described service server when being the configuration order of local public network address, described second outlet device is mapped to described second public network IP address according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server the IP address of described service server;
When described second outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described second outlet device is mapped to described first public network IP address according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server the IP address of described service server.
Need to prove that it is after the configuration order of non-local public network address that described second outlet device gets access to address transition with described service server, described second outlet device does not generate pairing route table items of described first public network IP address and ARP list item.
As seen, among the present invention, under the condition of data center's two outlet networking, by the corresponding relation between the IP address of IP address that disposes different public on the outlet device and service server, when the service server of data center inside terminals user capture inside, the IP address information of this service server is sent to the inside terminals user, make the direct access service server of inside terminals user, thereby improved the service quality of inside terminals user capture service server, guaranteed the fail safe of flow, reduce unnecessary external attack factor, saved resource.
Below in conjunction with a concrete application scenarios, being described in detail of the load sharing methods of the two outlets of data center that the present invention is proposed is that example describes with networking model figure shown in Figure 3.Router-A and router B are the egress router of symmetry, fire compartment wall A and fire compartment wall B are the fire compartment walls of symmetry, switch A and switch b are the switch of symmetry, server 1 is the service server of data center, DNS (Domain Name Server, domain name system) server provides domain name mapping for this service server, terminal 3 is the terminal of data center inside, terminal 1 and terminal 2 are the terminal of data center outside, the public network at router-A place is public network A, the IP address of this public network A is IP A, the public network at router B place is public network B, the IP address of this public network B is IP B, in order to realize the load balancing of the two outlets of data center network, need be with respectively corresponding two the different public network addresses of the domain name of server 1, soon the IP address (IP B) of the place public network B of the IP address (IP A) of the place public network A of the domain name corresponding router A of server 1 and router B.Terminal use's (is that example describes with terminal 3) for data center inside, when terminal 3 has data flow need send to other networks (network of this data center outside), by public network A this data flow is sent earlier, when sending the data flow of terminal 3 once more, by public network B this data flow is sent, same, have in the time of to visit this service server 1 from the data flow of other network, also be to send this data flow, thereby realized the load balancing of the two rates of discharge of data center by different public network (public network A and public network B).
The load sharing method of the two outlets of above-mentioned data center may further comprise the steps as shown in Figure 4:
Step S401, the corresponding relation of the corresponding relation of configuration of IP A and IP 1 and IP B and IP 1 on router-A, this IP 1 are the IP address of server 1.
Among the present invention, also need dispose NAT (Network Address Translation, network address translation) ALG (Application Layer Gateway, ALG) DNS at router-A.
The corresponding relation of the corresponding relation of above-mentioned configuration of IP A and IP 1 and IP B and IP 1 is realized by configuration NAT server, the NAT server is by revising UDP (User Datagram Protocol, User Datagram Protoco (UDP)) or TCP (Transmission Control Protocol, transmission control protocol) heading address information realize address transition.And in the application of reality, for example, for VOIP (Voiceover Internet Protocol, the digitlization of simulated sound signal) uses, be in the IP data network, to do real-time transmission in the mode of packet (Data Packet) encapsulation IP address, at this moment, can't carry out address transition (the NAT server is done address transition by heading) by using the NAT server; And by configuration NATALG DNS, can from packet, obtain the IP address, thereby carry out address transition, with the private net address (the IP address that from packet, obtains) that carries in the packet, be converted to external public network IP address, no longer encyclopaedize at this.
Among the present invention, because router B and router-A are the routers of symmetry, promptly need carry out identical layoutprocedure on router B, i.e. the corresponding relation of the corresponding relation of configuration of IP A and IP 1, IP B and IP 1 on router B, and configuration NAT ALG DNS, do not repeat them here.All be that example is described in the description process below with the router-A, when using router B, needs (for example handle associative operation, problems such as router-A breaks down) time, the processing mode of this router B is identical with the processing mode of router-A, below no longer describes.
Concrete, configuration Nat server globle IPA inside IP1 is for being converted to public network address IPA by use NAT server with home address IP 1 on router-A, promptly be illustrated in the corresponding relation of configuration of IP A and IP 1 on the router-A, configuration Nat server ecdemic globle IPB insideIP1 is for by using the NAT server that home address IP 1 is converted to public network address IP B non-indigenous on router-A, promptly is illustrated in the corresponding relation of configuration of IP B and IP 1 on the router-A.
Among the present invention, when the corresponding relation of configuration of IP B and IP 1, have only NAT server in the router-A can obtain and use the corresponding relation of this IP B and IP 1, can not generate route table items and ARP (Address Resolution Protocol, address resolution protocol) list item according to the corresponding relation of this IP B and IP 1 about IP B.To comprise NAT modular converter (being the above-mentioned NAT server that is configured on the router-A), routing module and ARP module in the router-A is that example describes, the NAT modular converter passes through to use the corresponding relation of Nat server ecdemic globle IPB inside IP1 configuration of IP B and IP1 on router-A, but the NAT modular converter does not send to this configuration information routing module and ARP module, and promptly this routing module and ARP module can not generate corresponding list item according to this configuration information.And the NAT modular converter is when using the corresponding relation of Nat server globle IPA inside IP1 configuration of IP A and IP 1, need this configuration information is sent to ARP module and routing module, routing module can this information generate the pairing route table items of IP A, the ARP module can this information generate the pairing ARP list item of IP A, and this generative process no longer encyclopaedizes at this.
Need to prove, reason at the ARP list item of route table items that can not generate IP B on the router-A and IP B is to prevent that data from causing confusion in transmission course, add the route table items that has generated IP B on the router-A, conspicuous, (this router B belongs to the public network at IP B place to have the route table items of IP B at router B, it is the corresponding route table items that router B need generate IP B, the corresponding route table items that this generative process and router-A generate IP A is corresponding), at this moment, the route table items that IP B is all arranged on router-A and the router B, when needs use this route table items, can't know it is to the router-A transmits data packets, or, thereby cause data in transmission course, to cause confusion to router B transmits data packets.Same, for the ARP list item also identical problem can appear.Therefore, need to make the route table items that on router-A, can not generate IP B and the ARP list item of IP B among the present invention.
Step S402, terminal 3 sends the DNS request by switch and fire compartment wall to router-A.
Wherein, because this switch A and switch b are the switch of symmetry, this fire compartment wall A and fire compartment wall B are the fire compartment wall of symmetry, promptly can transmit the DNS request by switch A, also can transmit the DNS request by switch b, in like manner, can also can fail the DNS request by fire compartment wall A transmission DNS request by fire compartment wall B.
Among the present invention, this terminal 3 needs the service server of this data center inside of visit, promptly this terminal 3 needs this server 1 of visit, carry the information of the domain name of request server 1 in this DNS request, domain name with this server 1 is that www.abc.com is an example, and this terminal 3 sends the DNS request that domain name is www.abc.com to router-A.
Step S403, router-A is transmitted the DNS request by using DNS proxy (agency) to dns server.Wherein, this DNS request is the DNS request of www.abc.com.
Step S404, dns server obtain this DNS and ask pairing IP address.
Wherein, it is www.abc.com that this DNS asks pairing domain name, and the pairing server of this domain name is a server 1, the pairing public network IP address of storing in dns server of server 1 domain name is respectively IP A and IP B, and promptly dns server needs according to the predetermined pairing different public network IP address of policy selection server 1 domain name.
Among the present invention, in the time need visiting this service server 1 (passing through domain name access), also need dns server according to the pairing public network IP address of DNS request selection server 1 domain name from the data flow of other network.
Concrete, the mode that dns server obtains the pairing public network IP address of server 1 domain name includes but not limited to: according to the default different public network IP address of time cycle acquisition, for example, time cycle is set to 1 minute, after picking up counting, in 0-1 minute, select address ip A, in 1-2 minute, select address ip B, cycle repeatedly, always according to this mode address acquisition; Or obtain different public network IP address according to default number of times, for example, default number of times is set to 3 minutes, begin note time after, when 1-3, select address ip A, when 4-6, select address ip B, the cycle repeatedly, always according to this mode address acquisition; Or obtain different public network IP address according to the mode of poll, and for example, select address ip A earlier, select address ip B then; Certainly, among the present invention, be not limited to above-mentioned selection mode, do not repeat them here.
Step S405, dns server sends to router-A with the IP address information of selecting.
Wherein, when the IP address that dns server obtains is IP A, the information of IP A is sent to router-A; When the IP address that dns server obtains is IP B, the information of IP B is sent to router-A.
Step S406, router-A are mapped to the IP address information that receives the IP address information of server 1.
Among the present invention, be configured the corresponding relation of IP A and IP 1 and the corresponding relation of IP B and IP1, when the address information from dns server is IP A, IP A be mapped to IP 1 according to the corresponding relation of IP A and IP 1 at router-A; When the address information from dns server is IP B, IP B is mapped to IP 1 according to the corresponding relation of IP B and IP 1.
Conspicuous, when the IP address that dns server obtains was IP A, the IP address information after the mapping was IP 1, and when the IP address that dns server obtains was IP B, the IP address information after the mapping also was IP 1.
The IP address information of the server 1 after step S407, router-A will shine upon by fire compartment wall and switch sends to terminal 3.
Wherein, with identical among the step S402, this switch can be for switch A and switch b, and this fire compartment wall can be fire compartment wall A and fire compartment wall B, and the IP address information of the server 1 after this mapping is IP 1.
Further, router-A is responded to terminal 3 by using the message (having carried the IP address information of the server 1 after the mapping in this message) after DNS proxy will change.
Step S408, terminal 3 is visited this service server according to the IP address information.
Wherein, the address ip 1 that this IP address information is a service server, promptly terminal 3 can directly be visited this service server (server 1) according to this address ip 1, and communicates between the server 1.
Among the present invention, as the terminal use of other networks (for example, terminal 1 and terminal 2) when needing this service server of visit, by importing the domain name of this service server, send the DNS request to dns server, dns server is selected public network IP addresses corresponding according to this DNS request for the terminal use of these other networks, describe among the superincumbent step S404 of the method for this acquisition public network IP addresses corresponding, do not repeat them here, the terminal use of other networks has access to this service server by the public network IP address that uses this dns server to select, and communicates with this service server.
As seen, among the present invention, under the condition of data center's two outlet networking, by the corresponding relation between the IP address of IP address that disposes different public on the outlet device and service server, when the service server of data center inside terminals user capture inside, the IP address information of this service server is sent to the inside terminals user, make the direct access service server of inside terminals user, thereby improved the service quality of inside terminals user capture service server, guaranteed the fail safe of flow, reduce unnecessary external attack factor, saved resource.
Wherein, the inventive method can be adjusted each sequence of steps according to actual needs.
As shown in Figure 5, under the concrete application scenarios of another kind, can also pass through configuration of IP A and the corresponding relation of IP 1 and the corresponding relation of IP B and IP 1 on fire compartment wall, thereby realize the load balancings of the two outlets of data center.Under this application scenarios, do not have egress router (router-A as shown in Figure 3 and router B), the function of carrying out address transition of above-mentioned router-A realizes in fire compartment wall A that all the function of carrying out address transition of above-mentioned router B all realizes in fire compartment wall B.The load sharing method of the two outlets of this data center comprises:
(1) corresponding relation of the corresponding relation of configuration of IP A and IP 1 and IP B and IP 1 on fire compartment wall A, this IP 1 is the IP address of server 1.Wherein, the layoutprocedure on fire compartment wall B is identical with the layoutprocedure of fire compartment wall A, below is that example describes with fire compartment wall A all, does not repeat them here.
(2) terminal 3 sends the DNS request by switch (switch A or switch b) to fire compartment wall A, and fire compartment wall A is transmitted to dns server with this DNS request.
(3) dns server obtains this DNS according to this DNS request and asks pairing IP address, and this IP address is sent to fire compartment wall A.
(4) fire compartment wall A is mapped to the IP address information of server 1 with the IP address information that receives, and the IP address after will shining upon sends to terminal 3.Wherein, fire compartment wall A need shine upon according to the corresponding relation of IP A and IP 1 and the corresponding relation of IP B and IP 1.
(5) the direct access server 1 in IP address after terminal 3 is passed through to use this to shine upon.Wherein, the IP address after this mapping is the IP address of server 1.
Wherein, 5 above-mentioned steps are identical substantially with the handling process of step S401-step S408, no longer encyclopaedize at this.
The invention allows for a kind of equipment of sharing business load, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server, terminal and dns server, described first outlet device and described second outlet device be the symmetry the network equipment (for example, router or fire compartment wall), the IP address of respectively corresponding described first public network of the domain name of described service server and the IP address of described second public network, the IP address of described first public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, as shown in Figure 6, described load balancing equipment comprises:
Receiver module 61 is used to receive the DNS request from described terminal, carries the information of the described service server domain name of visit in the described DNS request.For example, when the domain name of this service server was www.abc.com, having carried domain name in this DNS request was the relevant information of www.abc.com.
Acquisition module 62 electrically connects with described receiver module 61, is used for the pairing public network IP address of the described service server domain name of DNS acquisition request that receives according to described receiver module 61.
Wherein, acquisition module 62 sends to described dns server with described DNS request, select public network IP addresses corresponding by described dns server according to predetermined strategy and described DNS request, described public network IP address is the pairing public network IP address of described service server domain name; And receiving public network IP address from described dns server, described public network IP address is the IP address of described first public network or the IP address of described second public network.
Further, dns server selects public network IP addresses corresponding to include but not limited to according to predetermined strategy with described DNS request: according to the default different public network IP address of time cycle acquisition; Or according to the default different public network IP address of number of times acquisition; Or obtain different public network IP address according to the mode of poll; Certainly, among the present invention, be not limited to above-mentioned selection mode, do not repeat them here.
Mapping block 63, electrically connect with described acquisition module 62, be used for the public network IP address that described acquisition module 62 obtains is mapped to the IP address of described service server, the IP address information of described service server is sent to described terminal, visit described service server according to the IP address information of described service server by described terminal.
Wherein, described mapping block 63 specifically is used for: when described public network IP address is the IP address of described first public network, described first public network IP address is mapped to the IP address of described service server; Or
When described public network IP address is the IP address of described second public network, described second public network IP address is mapped to the IP address of described service server.
Further, when described load balancing equipment is described first outlet device, described mapping block 63 also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described second public network IP address and ARP list item.
Need to prove, when disposing the corresponding relation of IP address of second public network IP address and service server, can not generate according to this second public network IP address and be to prevent that about the route table items of second public network IP address and the reason of ARP list item data from causing confusion in transmission course.To comprise NAT modular converter, routing module and ARP module in first outlet device is that example describes, the NAT modular converter disposes the corresponding relation of the IP address of second public network IP address and service server by use Nat server ecdemic globle IPB inside IP1 on first outlet device, but the NAT modular converter does not send to this configuration information routing module and ARP module, and promptly this routing module and ARP module can not generate corresponding list item according to this configuration information.
In addition, when described load balancing equipment is described second outlet device, described mapping block 63 also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described first public network IP address and ARP list item.
Need to prove, when disposing the corresponding relation of IP address of first public network IP address and service server, can not generate according to this first public network IP address and be to prevent that about the route table items of first public network IP address and the reason of ARP list item data from causing confusion in transmission course.To comprise NAT modular converter, routing module and ARP module in second outlet device is that example describes, the NAT modular converter disposes the corresponding relation of the IP address of first public network IP address and service server by use Nat server ecdemic globle IPB inside IP1 on second outlet device, but the NAT modular converter does not send to this configuration information routing module and ARP module, and promptly this routing module and ARP module can not generate corresponding list item according to this configuration information.
Wherein, each module of apparatus of the present invention can be integrated in one, and also can separate deployment.Above-mentioned module can be merged into a module, also can further split into a plurality of submodules.
As seen, the device that the application of the invention provides, under the condition of data center's two outlet networking, by the corresponding relation between the IP address of IP address that disposes different public on the outlet device and service server, when the service server of data center inside terminals user capture inside, the IP address information of this service server is sent to the inside terminals user, make the direct access service server of inside terminals user, thereby improved the service quality of inside terminals user capture service server, guaranteed the fail safe of flow, reduce unnecessary external attack factor, saved resource.
Through the above description of the embodiments, those skilled in the art can be well understood to the present invention and can realize by hardware, also can realize by the mode that software adds necessary general hardware platform.Based on such understanding, technical scheme of the present invention can embody with the form of software product, it (can be CD-ROM that this software product can be stored in a non-volatile memory medium, USB flash disk, portable hard drive etc.) in, comprise that some instructions are with so that a computer equipment (can be personal computer, server, perhaps network equipment etc.) is carried out method of the present invention.
The above only is a preferred implementation of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be looked protection scope of the present invention.
It will be appreciated by those skilled in the art that the module in the device among the embodiment can be distributed in the device of embodiment according to the embodiment description, also can carry out respective change and be arranged in the one or more devices that are different from present embodiment.The module of the foregoing description can be merged into a module, also can further split into a plurality of submodules.
The invention described above sequence number is not represented the quality of embodiment just to description.
More than disclosed only be several specific embodiment of the present invention, still, the present invention is not limited thereto, any those skilled in the art can think variation all should fall into protection scope of the present invention.

Claims (14)

1. the load sharing methods of the two outlets of a data center, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server and terminal, described first outlet device and described second outlet device are the network equipment of symmetry, the IP address of corresponding first public network of domain name difference of described service server and the IP address of second public network, the IP address of described first public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, it is characterized in that, said method comprising the steps of:
Described first outlet device receives the DNS request from described terminal, carries the information of the described service server domain name of visit in the described DNS request;
Described first outlet device is according to the pairing public network IP address of the described service server domain name of described DNS acquisition request;
Described first outlet device is mapped to described public network IP address the IP address of described service server, and the IP address information of described service server sent to described terminal, visit described service server by described terminal according to the IP address information of described service server.
2. the method for claim 1 also comprises dns server in two outlet networks that described method is used, and it is characterized in that described first outlet device specifically comprises according to the pairing public network IP address of the described service server domain name of described DNS acquisition request:
Described first outlet device sends to described dns server with described DNS request, select public network IP addresses corresponding by described dns server according to predetermined strategy and described DNS request, described public network IP address is the pairing public network IP address of described service server domain name;
Described first outlet device receives the public network IP address from described dns server, and described public network IP address is the IP address of described first public network or the IP address of described second public network.
3. method as claimed in claim 2 is characterized in that, when data flow need be visited described service server, described method also comprised:
Described dns server is that described data flow is selected public network IP addresses corresponding according to predetermined strategy, visits described service server by described data flow according to the public network IP address of described selection.
4. method as claimed in claim 2 is characterized in that, described first outlet device specifically comprises the IP address that described public network IP address is mapped to described service server:
When described public network IP address was the IP address of described first public network, described first outlet device was mapped to described first public network IP address IP address of described service server; Or
When described public network IP address was the IP address of described second public network, described first outlet device was mapped to described second public network IP address IP address of described service server.
5. method as claimed in claim 4 is characterized in that,
When described first outlet device gets access to address transition with described service server when being the configuration order of local public network address, described first outlet device is mapped to described first public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server;
When described first outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described first outlet device is mapped to described second public network IP address IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
6. method as claimed in claim 5 is characterized in that, it is after the configuration order of non-local public network address that described first outlet device gets access to address transition with described service server, also comprises:
Described first outlet device does not generate pairing route table items of described second public network IP address and ARP list item.
7. as each described method of claim 1-4, it is characterized in that when using described second outlet device to receive DNS request from described terminal, described method also comprises:
Described second outlet device is mapped to the pairing public network IP address of described service server domain name the IP address of described service server; Be specially:
Described first public network IP address is mapped to the IP address of described service server according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server; Or
Described second public network IP address is mapped to the IP address of described service server according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server.
8. method as claimed in claim 7 is characterized in that,
When described second outlet device gets access to address transition with described service server when being the configuration order of local public network address, described second outlet device is mapped to described second public network IP address according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server the IP address of described service server;
When described second outlet device gets access to address transition with described service server when being the configuration order of non-local public network address, described second outlet device is mapped to described first public network IP address according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server the IP address of described service server.
9. method as claimed in claim 8 is characterized in that, it is after the configuration order of non-local public network address that described second outlet device gets access to address transition with described service server, also comprises:
Described second outlet device does not generate pairing route table items of described first public network IP address and ARP list item.
10. the load balancing equipment of the two outlets of a data center, be applied in two outlet networks, at least comprise first outlet device in the described network, second outlet device, service server and terminal, described first outlet device and described second outlet device are the network equipment of symmetry, the IP address of corresponding first public network of domain name difference of described service server and the IP address of second public network, the IP address of described first public network is positioned on described first outlet device, the IP address of described second public network is positioned on described second outlet device, it is characterized in that described load balancing equipment comprises:
Receiver module is used to receive the DNS request from described terminal, carries the information of the described service server domain name of visit in the described DNS request;
Acquisition module electrically connects with described receiver module, is used for the pairing public network IP address of the described service server domain name of DNS acquisition request that receives according to described receiver module;
Mapping block, electrically connect with described acquisition module, be used for the public network IP address that described acquisition module obtains is mapped to the IP address of described service server, the IP address information of described service server is sent to described terminal, visit described service server according to the IP address information of described service server by described terminal.
11. also comprise dns server in two outlet networks that equipment as claimed in claim 10, described equipment are used, it is characterized in that described acquisition module specifically is used for:
Described DNS request is sent to described dns server, select public network IP addresses corresponding by described dns server according to predetermined strategy and described DNS request, described public network IP address is the pairing public network IP address of described service server domain name;
And receiving public network IP address from described dns server, described public network IP address is the IP address of described first public network or the IP address of described second public network.
12. equipment as claimed in claim 11 is characterized in that,
Described mapping block specifically is used for: when described public network IP address is the IP address of described first public network, described first public network IP address is mapped to the IP address of described service server; Or
When described public network IP address is the IP address of described second public network, described second public network IP address is mapped to the IP address of described service server.
13. equipment as claimed in claim 12 is characterized in that, when described load balancing equipment is described first outlet device,
Described mapping block also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described second public network IP address and ARP list item.
14. equipment as claimed in claim 12 is characterized in that, when described load balancing equipment is described second outlet device,
Described mapping block also is used for: when getting access to address transition with described service server when being the configuration order of local public network address, according to the corresponding relation of the IP address of pre-configured described second public network IP address and described service server, described second public network IP address is mapped to the IP address of described service server; Or
When getting access to address transition with described service server when being the configuration order of non-local public network address, corresponding relation according to the IP address of pre-configured described first public network IP address and described service server, described first public network IP address is mapped to the IP address of described service server, and does not generate pairing route table items of described first public network IP address and ARP list item.
CN2009101483766A 2009-06-17 2009-06-17 Load sharing method and equipment of double outlets at data center Active CN101572676B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2009101483766A CN101572676B (en) 2009-06-17 2009-06-17 Load sharing method and equipment of double outlets at data center

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2009101483766A CN101572676B (en) 2009-06-17 2009-06-17 Load sharing method and equipment of double outlets at data center

Publications (2)

Publication Number Publication Date
CN101572676A CN101572676A (en) 2009-11-04
CN101572676B true CN101572676B (en) 2011-06-29

Family

ID=41231914

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2009101483766A Active CN101572676B (en) 2009-06-17 2009-06-17 Load sharing method and equipment of double outlets at data center

Country Status (1)

Country Link
CN (1) CN101572676B (en)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102891903B (en) * 2012-10-31 2015-12-09 杭州华三通信技术有限公司 A kind of NAT method and equipment
CN103532757B (en) * 2013-10-17 2017-04-26 华为技术有限公司 Network communication method, access point equipment and system
CN104767690B (en) * 2014-01-08 2018-11-27 杭州迪普科技股份有限公司 A kind of flow scheduling device and method
CN104468857B (en) * 2014-11-03 2018-10-16 北京百度网讯科技有限公司 A kind of acquisition methods and system of correspondence
CN106789979B (en) * 2016-12-07 2020-01-21 北京亚鸿世纪科技发展有限公司 Method and device for diagnosing effectiveness of active domain name in IDC machine room
CN110932876B (en) * 2018-09-19 2022-12-02 华为技术有限公司 Communication system, method and device
CN110324435B (en) * 2019-06-19 2021-05-04 厦门网宿有限公司 Network request processing method and system
CN113630802B (en) * 2020-05-07 2024-02-20 大唐联仪科技有限公司 NR user plane service testing method and device
CN112261172B (en) * 2020-10-19 2023-10-17 腾讯云计算(北京)有限责任公司 Service addressing access method, device, system, equipment and medium
CN113242299A (en) * 2021-05-11 2021-08-10 鸬鹚科技(深圳)有限公司 Disaster recovery system, method, computer device and medium for multiple data centers

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1545254A (en) * 2003-11-13 2004-11-10 中兴通讯股份有限公司 A method of fast data packet filtering
CN1852317A (en) * 2006-04-30 2006-10-25 北京华纬讯电信技术有限公司 Private net terminal containing network communication method and its use

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1545254A (en) * 2003-11-13 2004-11-10 中兴通讯股份有限公司 A method of fast data packet filtering
CN1852317A (en) * 2006-04-30 2006-10-25 北京华纬讯电信技术有限公司 Private net terminal containing network communication method and its use

Also Published As

Publication number Publication date
CN101572676A (en) 2009-11-04

Similar Documents

Publication Publication Date Title
CN101572676B (en) Load sharing method and equipment of double outlets at data center
EP1164754B1 (en) Methods and arrangements in a telecommunications system
CN105453488B (en) For handling the method and system of DNS request
CA2307949C (en) Integrated ip network containing a plurality of separated ip networks each having different characteristics
CN102934410B (en) DS-LITE is strengthened by private IPV4 accessibility
CN103108089B (en) Connection establishment management method of network system and related system thereof
RU2601194C2 (en) Devices and method for assigning network addresses
CN105706420B (en) For realizing the system and method for the service chaining in provider network
CN104618243B (en) Method for routing, apparatus and system, Scheduling of Gateway method and device
KR20110030547A (en) Outbound transmission of packet based on routing search key constructed from packet destination address and outbound interface
CN102148767A (en) Network address translation (NAT)-based data routing method and device
CN109728962A (en) A kind of method and apparatus sending message
CN101223760A (en) Method and node for locating network user
CN103583020B (en) Relay Server and relay communications system
US20090276530A1 (en) Devices, Systems, Methods and Software for Computer Networking
CN113271255A (en) Method and device for converting network address to loopback
CN107948150A (en) Message forwarding method and device
CN103618801A (en) Method, device and system for sharing P2P (Peer-to-Peer) resources
Liu et al. A survey of multihoming technology in stub networks: current research and open issues
CN108965036A (en) Configure across public network equipment exchanging visit method, system, server and storage medium
CN112187674B (en) Network structure and networking method supporting IPv4 and IPv6 dual-stack mixing
CN103188153B (en) BFD file transmitting method and equipment on a kind of broadcasting network link
Grosse et al. Network processors applied to IPv4/IPv6 transition
Phifer The trouble with NAT
CN210867778U (en) System capable of converting IPv4 and IPv6 addresses

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CP03 Change of name, title or address
CP03 Change of name, title or address

Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No.

Patentee after: Xinhua three Technology Co., Ltd.

Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base

Patentee before: Huasan Communication Technology Co., Ltd.