CN102571383B - Access control method and system - Google Patents
Access control method and system Download PDFInfo
- Publication number
- CN102571383B CN102571383B CN201010592909.2A CN201010592909A CN102571383B CN 102571383 B CN102571383 B CN 102571383B CN 201010592909 A CN201010592909 A CN 201010592909A CN 102571383 B CN102571383 B CN 102571383B
- Authority
- CN
- China
- Prior art keywords
- service
- routing node
- node information
- information table
- routed path
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a service access control method and a service access control system, which are used for solving the technical problems of disaster recovery, poor fault-tolerance performance, low speed in terminal access and visit and the like of an IDC (Internet Data Center), caused when access is realized by adopting a fixed IP (Internet Protocol) or a fixed domain name. A route node information sheet including node information and service state information is established; the service state information of existence of service nodes corresponding to a route trace, access speed and the like is acquired through simulating the service request of a terminal; and the optimal service node is selected for the terminal based on the route node information sheet. By adopting the invention, the optimal service node can be selected for the terminal according to a gateway accessed by the terminal, so that the terminal access and visit speed is improved. According to the invention, through dynamic maintenance of the route node information sheet, some IDC or a plurality of IDCs of which the service is abnormal can be automatically shielded, and the service is switched into the normal IDC, so that disaster recovery of the IDC is realized and the service quality is promoted.
Description
Technical field
The present invention relates to linking Internet technology, particularly relate to service connection control method and the system of a kind of Internet data center (Internet DataCenter, IDC).
Background technology
When the service that terminal access the Internet provides, terminal generally all adopts the mode of the fixing IP of access or fixing domain name to initiate access request, the Internet data center's flexibility realized based on this means is poor, particularly across IDC call with IDC disaster tolerance etc. in, if a server fail, often need artificial treatment, response speed is slow, process not in time, easily causes unnecessary loss to user.For IDC disaster tolerance, when the service that certain IDC cooperates multiple IDC occurs abnormal, cannot there is abnormal IDC by automatic shield in system, automatically service cannot be switched on normal IDC, cause service disruption.In addition, because terminal is by gateway accessing IDC, the access speed of the path between different gateways and each IDC is differentiated, because terminal adopts the access mode of fixing IP or domain name, system can not according to the IAD of terminal, return the access point selecting its access speed the fastest, therefore access speed is slower.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of service connection control method and system, and when adopting fixing IP or fixed field name mode to access for solving, IDC disaster tolerance, fault freedom are not high, terminal access and the technical problem such as access speed is slow.
For achieving the above object, technical scheme of the present invention is achieved in that
A kind of access control system, this system comprises:
Routing node information module, for the routing node information table between management gateway and Internet data center (IDC), described routing node information table at least comprises: routing node information and service status information; Described service status information at least comprises following information: whether the service corresponding with routed path exists, the response time of the service corresponding with routed path.
Service monitoring module, for the service request according to described routing node information table pseudo-terminal, obtains the service status information corresponding with routed path and the service status information of acquisition is fed back to routing node information module;
Configuration Manager, for configuration and management service node, and manages routed path between gateway and IDC;
Routing module control, for obtaining the service status information corresponding with routed path from described routing node information table, for terminal selects optimum service node.
Further, by the service request of pseudo-terminal, described service monitoring module periodically travels through whether the service that in described routing node information table, routed path is corresponding deposits, the response time of statistical fractals, and testing result is fed back to described routing node information module, upgrade the service status information under routed path corresponding in described routing node information table after described routing node information module receives described testing result.
Further, the state of described Configuration Manager periodic detection service node, and routing node information module adds, deletes or revise route entry in described routing node information table according to testing result instruction.
Further, described routing module control also for obtaining the load information of service node, and combines the service status information execution load balancing corresponding with routed path obtained from described routing node information table.
Based on said system, present invention also offers a kind of connection control method, the method comprises:
Set up routing node information table, described routing node information table at least comprises: routing node information and service status information; Described service status information at least comprises following information: whether the service corresponding with routed path exists, the response time of the service corresponding with routed path.
The service request of pseudo-terminal, obtains the service status information corresponding with routed path, upgrades described routing node information table;
The service status information corresponding with routed path is obtained, for terminal selects optimum service node from described routing node information table.
Further, described method also comprises: the state of periodic detection service node, and adds according to testing result, deletes or revise route entry in described routing node information table.
Further, the service request of described pseudo-terminal, upgrade described routing node information table method to be specially: periodically travel through described routing node information table, judge whether the service corresponding with routed path exists, the response time of statistical fractals, refresh the service status information under routed path corresponding in described routing node information table in real time according to testing result.
Further, described method also comprises: the load information obtaining service node, performs load balancing in conjunction with the service status information corresponding with routed path obtained from described routing node information table.
By setting up, the present invention safeguards that routing node information table reflects route change between gateway and service node and the state of service node in real time; By the service request of pseudo-terminal, obtain the service status information the such as whether service node corresponding with routed path exists, access speed; Based on the service node that routing node information table is terminal selection optimum.It is that terminal selects optimum service node that the present invention can realize according to the gateway of terminal access, improves access and the access speed of terminal.The present invention, by safeguarding routing node information table dynamically, when the service of certain IDC or multiple IDC occurs abnormal, automatically shields it, and service is switched in normal IDC, thus achieve IDC disaster-tolerant backup, improve service quality.
Accompanying drawing explanation
Fig. 1 is the structural representation of system of the present invention;
Fig. 2 is the flow chart of the method for the invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearly understand, by the following examples also with reference to accompanying drawing, the present invention is described in more detail.
Fig. 1 is the schematic diagram that the present invention serves access control system and is combined with existing network infrastructure, terminal is arranged in the service node of IDC by gateway access, each IDC is deployed with a set of service node for Terminal for service, the corresponding a kind of service of each service node or business, under terminal roaming scene, terminal can initiate by different gateways the request obtaining service, basic thought of the present invention is, for the access speed of serving under obtaining different route entry by the access of pseudo-terminal, be that terminal selects optimum access path.System 100 of the present invention comprises: routing node information module 101, service monitoring module 102, Configuration Manager 103, routing module control 104.
Routing node information module 101, for the routing node information table between management gateway and the IDC providing service, described routing node information table is made up of route entry, the routed path of each route entry correspondence one between gateway to IDC, described routing node information table mainly comprises: routing node information and service status information, and described routing node information comprises: gateway information, routing iinformation, be arranged in the service node information etc. of IDC; Described service status information includes but not limited to: whether service exists, the service response speed etc. corresponding with routed path;
The foundation of the route entry in described routing node information table, amendment and deletion are controlled by Configuration Manager 103, such as, as shown in the figure, if according to the demand of disaster tolerance or load balancing, need to set up, revise or delete the route between gateway 1 to IDC3, then Configuration Manager 103 sends and sets up, revises or delete route instruction to routing node information module 101, and corresponding route entry is set up, revises or deleted to routing node information module 101 in routing node information table.
Described routing node information module 101 also for the service status information that the route entry receiving service monitoring module 102 feedback is corresponding, and upgrades described routing node information table according to the service status information received;
Described routing node information module 101 also provides the query interface of routing node information table, calls for other modules;
Service monitoring module 102, for the service request based on the route entry pseudo-terminal in routing node information table, obtains service status information and service status information is fed back to routing node information module 101; Such as, this module periodically travels through routing node information table, service request is initiated to the service node of correspondence for each routed path pseudo-terminal, and statistics is from the time initiating request to the response that receives service node and spend, if service node is without response after repeatedly initiating request, then can assert that this paths network failure or service do not exist, after detection, the service status information whether response time and service exist is fed back to routing node information module 101 by service monitoring module 102;
Configuration Manager 103 is for unified configuration and management service node.Configuration Manager 103 periodic detection is deployed in the state of the service node in IDC, and according to testing result regular update routing node information table, such as, when the situations such as serving node services termination, the system failure being detected, route entry corresponding in routing node information module 101 deletion of node route information table described in instruction, when trouble shooting, routing node information module 101 described in instruction increases route entry corresponding in node routing information table newly;
Configuration Manager 103 is also for the route between management gateway and IDC; Such as, in routing node information table described in Configuration Manager periodic detection, whether presence service state information is the non-existent routed path of service, if exist, then instruction routing node information module deletes corresponding routed path, and perform the handover operation of service node, current service request is switched on other routed path; If desired newly-increased routed path, then send to described routing node information module by newly-increased routing node information, its newly-increased corresponding routed path in routing node information table of instruction.
Routing module control 104, for being that terminal selects optimum route according to the service status information that obtains from the routing node information table routing node information module 101, the route of described optimum refers to the route that the factor scores such as the loading condition of the fastest or integrated access speed of access speed, service node are the highest;
Further, routing module control 104 is also for obtaining the load state information of each service node, and perform load balancing according to the load condition of each service node, such as, when the load of certain service node exceedes predetermined upper threshold, according to certain load-balancing algorithm, follow-up access request is assigned on the less service node of load;
Further, Configuration Manager 103 is also for performing disaster tolerance process according to the service status information obtained from service monitoring module 102 and the service node state information directly monitored from IDC side, the switching of service node is such as carried out when network or service occur abnormal, such as, route entry corresponding to the service node that breaks down is deleted or revised to instruction routing node information module, service request is directed on other service node.
The flow chart of steps of Fig. 2 a kind of connection control method provided by the invention, the method realizes based on the structure of access control system provided by the invention, and concrete steps are described as follows:
Step 200: set up routing node information table, described routing node information table at least comprises: routing node information and service status information; Service status information at least comprises following information: whether the service corresponding with routed path exists, the response time of the service corresponding with routed path.
Step 202: the service request of pseudo-terminal, obtains the service status information corresponding with routed path, upgrades described routing node information table;
Step 204: obtain the service status information corresponding with routed path from described routing node information table, for terminal selects optimum service node.
Preferably, the method of the invention also comprises the process that route entry upgrades: in order to dynamically carry out dynamic management to the route entry be recorded in routing node information table, be arranged in the state of each service node of IDC by Configuration Manager 103 periodic detection, add according to testing result instruction, delete or revise route entry in described routing node information table.Such as when machine is delayed in service node power down, by detecting, Configuration Manager 103 finds that the service node 1 being positioned at IDC1 is delayed machine, then instruction routing node information module 101 deletes all routed paths about service node in IDC1 1 correspondence in routing node information table, and is directed to other have on the service node of identical function by being connected with this service node existing.
Preferably, the service request of described pseudo-terminal, upgrades described routing node information table method and is specially:
Service monitoring module 102 periodically travels through described routing node information table, according to the service request of the pseudo-terminal one by one of the route entry in routing node information table, and whether whether the service corresponding with routed path exists and response time of statistical fractals to have the response time of response and service request to judge according to service end, refresh the service status information under the routed path of correspondence in described routing node information table according to testing result in real time.
Preferably, the method of the invention also comprises the step of load balancing: by routing module control 104 periodicity or with the load condition of each service node of alarm report mode Real-time Obtaining, if the load of certain service node has exceeded predetermined thresholding, then when selecting service node for terminal, terminal is directed to lower the having on the service node of identical function of other load.Concrete load-balancing algorithm can in conjunction with the service status information in routing node information table, such as, in other route entry that load is less, the path allocation of Response to selection minimal time is to terminal, can take into account the demand of load balancing and the demand of response time like this.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.
Claims (6)
1. an access control system, is characterized in that, this system comprises:
Routing node information module, for the routing node information table between management gateway and Internet data center IDC, described routing node information table at least comprises: routing node information and service status information;
Service monitoring module, for the service request according to described routing node information table pseudo-terminal, obtains the service status information corresponding with routed path and the service status information of acquisition is fed back to routing node information module;
Configuration Manager, for configuration and management service node, and manages routed path between gateway and IDC;
Routing module control, for obtaining the service status information corresponding with routed path from described routing node information table, for terminal selects optimum service node;
Wherein, described service status information at least comprises following information: whether the service corresponding with routed path exists, the response time of the service corresponding with routed path;
By the service request of pseudo-terminal, described service monitoring module periodically travels through whether the service that in described routing node information table, routed path is corresponding exists, the response time of statistical fractals, and testing result is fed back to described routing node information module, upgrade the service status information under routed path corresponding in described routing node information table after described routing node information module receives described testing result.
2. system according to claim 1, it is characterized in that, the state of described Configuration Manager periodic detection service node, and routing node information module adds, deletes or revise route entry in described routing node information table according to testing result instruction.
3. system according to claim 1, is characterized in that, described routing module control also for obtaining the load information of service node, and combines the service status information execution load balancing corresponding with routed path obtained from described routing node information table.
4. a connection control method, is characterized in that, the method comprises:
Set up the routing node information table between gateway and Internet data center IDC, described routing node information table at least comprises: routing node information and service status information;
According to the service request of described routing node information table pseudo-terminal, obtain the service status information corresponding with routed path, upgrade described routing node information table;
The service status information corresponding with routed path is obtained, for terminal selects optimum service node from described routing node information table;
Wherein, described service status information at least comprises following information: whether the service corresponding with routed path exists, the response time of the service corresponding with routed path;
The service request of described pseudo-terminal, upgrades described routing node information table method and comprises:
Periodically travel through described routing node information table, judge whether the service corresponding with routed path exists, the response time of statistical fractals, refresh the service status information under routed path corresponding in described routing node information table in real time according to testing result.
5. method according to claim 4, is characterized in that, described method also comprises:
The state of periodic detection service node, and add according to testing result, delete or revise route entry in described routing node information table.
6. method according to claim 4, is characterized in that, described method also comprises:
Obtain the load information of service node, perform load balancing in conjunction with the service status information corresponding with routed path obtained from described routing node information table.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010592909.2A CN102571383B (en) | 2010-12-16 | 2010-12-16 | Access control method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010592909.2A CN102571383B (en) | 2010-12-16 | 2010-12-16 | Access control method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102571383A CN102571383A (en) | 2012-07-11 |
| CN102571383B true CN102571383B (en) | 2015-06-17 |
Family
ID=46415919
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010592909.2A Active CN102571383B (en) | 2010-12-16 | 2010-12-16 | Access control method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102571383B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105721304A (en) * | 2016-04-05 | 2016-06-29 | 网宿科技股份有限公司 | Adaptive routing adjustment method and system and service device |
| CN108347465B (en) * | 2017-01-23 | 2021-02-02 | 阿里巴巴集团控股有限公司 | Method and device for selecting network data center |
| CN107197501B (en) * | 2017-06-19 | 2020-03-24 | 深圳市盛路物联通讯技术有限公司 | Method and equipment for updating routing information table based on monitored equipment |
| CN107197502B (en) * | 2017-06-19 | 2020-03-24 | 深圳市盛路物联通讯技术有限公司 | Method and equipment for controlling edge routing node to update routing information table |
| CN113630317B (en) * | 2021-07-28 | 2022-10-11 | 北京星辰天合科技股份有限公司 | Data transmission method and device, nonvolatile storage medium and electronic device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1489069A (en) * | 2002-10-10 | 2004-04-14 | 华为技术有限公司 | Content-oriented load equalizing method and apparatus |
| CN101014046A (en) * | 2007-02-02 | 2007-08-08 | 清华大学 | Method for integrating service location with service quality routing in service loading network |
| CN101047637A (en) * | 2006-06-30 | 2007-10-03 | 华为技术有限公司 | Method for requiring local mobile anchor point information by access route and its application |
| CN101163072A (en) * | 2007-08-10 | 2008-04-16 | 林明辉 | Automatic selection optimized routing logon communication method of login server |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7174378B2 (en) * | 2000-05-29 | 2007-02-06 | Nitgen Technologies, Inc. | Co-location service system equipped with global load balancing (GLB) function among dispersed IDCS |
| KR100511687B1 (en) * | 2003-05-21 | 2005-09-01 | 니트젠테크놀러지스 주식회사 | The intelligent Traffic Managemet system for among the networks and method thereof |
| CN101505234B (en) * | 2009-03-17 | 2012-01-11 | 中兴通讯股份有限公司 | System and method for inter-board communication |
-
2010
- 2010-12-16 CN CN201010592909.2A patent/CN102571383B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1489069A (en) * | 2002-10-10 | 2004-04-14 | 华为技术有限公司 | Content-oriented load equalizing method and apparatus |
| CN101047637A (en) * | 2006-06-30 | 2007-10-03 | 华为技术有限公司 | Method for requiring local mobile anchor point information by access route and its application |
| CN101014046A (en) * | 2007-02-02 | 2007-08-08 | 清华大学 | Method for integrating service location with service quality routing in service loading network |
| CN101163072A (en) * | 2007-08-10 | 2008-04-16 | 林明辉 | Automatic selection optimized routing logon communication method of login server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102571383A (en) | 2012-07-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108270669B (en) | Service recovery device, main controller, system and method of SDN network | |
| US8107409B2 (en) | OAMP for distributed mobile architecture | |
| CN112073265B (en) | Internet of things monitoring method and system based on distributed edge computing | |
| CN100568854C (en) | A kind of method and interface board that keeps neighborhood | |
| CN111277630B (en) | Routing control method and device, electronic equipment and storage medium | |
| CN102571383B (en) | Access control method and system | |
| CN103383689A (en) | Service process fault detection method, device and service node | |
| JP4945573B2 (en) | Method and management agent for event notification correlation | |
| CN102457390B (en) | A kind of Fault Locating Method based on QOE and system | |
| CN101282276A (en) | Method and apparatus for protecting Ethernet tree service | |
| US20190026168A1 (en) | Geographical Redundancy and Dynamic Scaling for Virtual Network Functions | |
| CN106385334B (en) | Call center system and its abnormality detection and self-recovery method | |
| CN102045197A (en) | Alarm data synchronization method and network management system | |
| CN104703165A (en) | Wireless access processing method, retransmitting equipment and network controller | |
| CN111741508B (en) | Method, controller, forwarding device, device and medium for establishing communication connection | |
| CN106936926B (en) | Method and system for accessing data node | |
| CN101192959B (en) | A recovery method for multicast service connection in automatic switching optical network | |
| CN101958925A (en) | Method and device for controlling remote equipment | |
| CN113824595B (en) | Link switching control method and device and gateway equipment | |
| CN107846470B (en) | Method and system for guiding flow | |
| CN104581757B (en) | M2M terminal active switching method and device in a kind of M2M network | |
| CN116471334A (en) | Multi-environment service forwarding method for micro-service registry | |
| CN113038394B (en) | Session binding relationship processing method and device, electronic equipment and readable medium | |
| CN102821415B (en) | Fault detecting and processing method and fault detecting and processing device | |
| CN105634765A (en) | Controller replacement method and controller replacement device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |