CN102891851A - Access control method, equipment and system of virtual desktop - Google Patents

Access control method, equipment and system of virtual desktop Download PDF

Info

Publication number
CN102891851A
CN102891851A CN2012103616798A CN201210361679A CN102891851A CN 102891851 A CN102891851 A CN 102891851A CN 2012103616798 A CN2012103616798 A CN 2012103616798A CN 201210361679 A CN201210361679 A CN 201210361679A CN 102891851 A CN102891851 A CN 102891851A
Authority
CN
China
Prior art keywords
information
transmission control
control equipment
user
virtual
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2012103616798A
Other languages
Chinese (zh)
Inventor
周巍
贾宝军
张云勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN2012103616798A priority Critical patent/CN102891851A/en
Publication of CN102891851A publication Critical patent/CN102891851A/en
Pending legal-status Critical Current

Links

Abstract

The invention provides an access control method, equipment and system of a virtual desktop. The access control method of the virtual desktop comprises the following steps that: first transmission control equipment receives operation information sent by a plurality of terminal equipment, wherein the operation information comprises an operation instrument and user identifiers, and the user identifiers are used for identifying the terminal equipment; the first transmission control equipment acquires a priority list from a strategy server and sends the operation information to second transmission control equipment from high to low according to the priorities of user identifiers in the priority list so that the second transmission control equipment sends the operation information to a corresponding virtual machine. The access control method, equipment and system of the virtual desktop, provided by the invention, have the advantages of avoiding the network congestion and improving the transmission control effect.

Description

Virtual desktop access control method, equipment and system
Technical field
The present invention relates to the communication technology, relate in particular to a kind of virtual desktop access control method, equipment and system.
Background technology
Along with computer is more and more universal in the various aspects of society, the rapid emergence of cloud computing and mobile Internet, the application of virtual desktop technology in enterprise are also more ripe.
Desktop virtual is at the physical server of realizing data center dummy machine system to be installed, and simulates the needed hardware resource of operating system by dummy machine system.Operating system can reach the hardware resource of a plurality of operation systems share physical servers on these virtual hardware resources, thereby improves resource utilization.The storage of virtual desktop and execution all concentrate on data center, and the user uses terminal equipment to conduct interviews by the desktop host-host protocol.The user issues the virtual machine of data center by terminal equipment with operation informations such as user's mouse, keyboards, and virtual machine is then sent to terminal equipment with virtual desktop information.When a large number of users in the network passes through terminal equipment visit data center simultaneously, can cause the congested of network, treatment effect is not good.
Summary of the invention
The present invention proposes a kind of virtual desktop access control method, equipment and system, when avoiding network congestion, improves transmission control effect.
First aspect of the present invention provides a kind of virtual desktop access control method, comprising:
The first transmission control equipment receives the operation information that a plurality of terminal equipments send, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to identify described terminal equipment;
Described the first transmission control equipment obtains priority list from strategic server, priority according to user ID in the described priority list sends to the second transmission control equipment with described operation information from high to low, so that described the second transmission control equipment sends to corresponding virtual machine with described operation information.
Second aspect of the present invention provides a kind of virtual desktop access control method, it is characterized in that, comprising:
The second transmission control equipment receives a plurality of operation informations that the first transmission control equipment sends, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to marking terminal equipment;
Described the second transmission control equipment obtains priority list from strategic server, priority according to user ID in the described priority list sends to corresponding virtual machine with described operation information from high to low, so that described virtual machine is processed according to the operational order in the described operation information, generating virtual information also sends to described the second transmission control equipment.
Third aspect of the present invention provides a kind of the first transmission control equipment, comprising:
The first receiver module is used for receiving the operation information that a plurality of terminal equipments send, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to identify described terminal equipment;
The first sending module, be used for obtaining priority list from strategic server, priority according to user ID in the described priority list sends to the second transmission control equipment with described operation information from high to low, so that described the second transmission control equipment sends to corresponding virtual machine with described operation information.
The 4th aspect of the present invention provides a kind of the second transmission control equipment, comprising:
The 3rd receiver module is used for receiving a plurality of operation informations that the first transmission control equipment sends, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to marking terminal equipment;
The 3rd sending module, be used for obtaining priority list from strategic server, priority according to user ID in the described priority list sends to corresponding virtual machine with described operation information from high to low, so that described virtual machine is processed according to the operational order in the described operation information, generating virtual information also sends to described the second transmission control equipment.
The 5th aspect of the present invention provides a kind of virtual desktop access control system, comprising:
A plurality of the first transmission control equipments provided by the invention;
Second transmission control equipment provided by the invention;
And strategic server, described strategic server is used for generating priority list according to user's log-on message.
Virtual desktop access control method provided by the invention, equipment and system, the first transmission control equipment receives the operation information that a plurality of terminal equipments send, wherein, operation information comprises operational order and user ID, user ID is in order to marking terminal equipment, obtain priority list from strategic server, from high to low operation information is sent to the second transmission control equipment according to the priority of user ID in the priority list.When a plurality of terminal equipments during simultaneously to the first transmission control equipment transmit operation information, send from high to low according to the priority of user ID, can guarantee that high user's operation is processed first to priority, when avoiding network congestion, improve transmission control effect.
Description of drawings
The first virtual desktop access control method flow chart that Fig. 1 provides for the embodiment of the invention;
The second virtual desktop access control method flow chart that Fig. 2 provides for the embodiment of the invention;
The third virtual desktop access control method flow chart that Fig. 3 provides for the embodiment of the invention;
The 4th kind of virtual desktop access control method flow chart that Fig. 4 provides for the embodiment of the invention;
The first the first transmission control equipment structural representation that Fig. 5 provides for the embodiment of the invention;
The second the first transmission control equipment structural representation that Fig. 6 provides for the embodiment of the invention;
The first the second transmission control equipment structural representation that Fig. 7 provides for the embodiment of the invention;
The second the second transmission control equipment structural representation that Fig. 8 provides for the embodiment of the invention;
The virtual desktop access control system structural representation that Fig. 9 provides for the embodiment of the invention.
Embodiment
The first virtual desktop access control method flow chart that Fig. 1 provides for the embodiment of the invention.As shown in Figure 1, the virtual desktop access control method that present embodiment provides specifically can be applied in the virtual desktop application system the access control process of virtual desktop, and this virtual application system specifically can comprise terminal equipment and data center.End equipment is specifically as follows personal computer, notebook computer, mobile phone and dull and stereotyped apparatus such as computer, and the quantity of terminal equipment is a plurality of, can according to the geographical position, a plurality of terminal equipments be divided into a plurality of user side local area network (LAN)s.Data center specifically comprises a plurality of physical servers, is provided with a plurality of virtual machines on each physical server.The user is by terminal equipment visit data center, to realize the use to virtual resource.The virtual desktop access control method that present embodiment provides can realize by the first transmission control equipment, and this first transmission control equipment is specifically as follows personal computer with disposal ability or server etc.Each user side local area network (LAN) can correspondence arrange first transmission control equipment.
The virtual desktop access control method that present embodiment provides specifically comprises:
Steps A 10, the first transmission control equipment receive the operation information that a plurality of terminal equipments send, and wherein, operation information comprises operational order and user ID, and user ID is in order to marking terminal equipment;
Steps A 20, the first transmission control equipment obtain priority list from strategic server, priority according to user ID in the priority list sends to operation information the second transmission control equipment from high to low, so that the second transmission control equipment sends to corresponding virtual machine with operation information.
Particularly, when having a plurality of user side local area network (LAN) in the network, for each user side local area network (LAN) distributes first transmission control equipment.On the terminal equipment in the user side local area network (LAN) virtual desktop client can be installed, the terminal equipment that this virtual desktop client is installed is thin-client, and the user carries out the access of virtual desktop by the virtual desktop client on the terminal equipment.Terminal equipment is to the first transmission control equipment transmit operation information, comprise operational order and user ID in this operation information, operational order is specifically as follows the operational orders such as mouse or keyboard, user ID specifically can comprise user name, the user ID (Identity of the distribution that the user registers, identify label) or the IP(Internet Protocol of terminal equipment, interconnection agreement between network) one or more the combination of address etc., when the user carried out the virtual desktop access by terminal equipment, this user ID can identify this terminal equipment.
Pre-stored in the strategic server have a priority list, and this priority list is in order to record all users' priority, and the information that records in the priority list is specifically as follows the corresponding relation of user ID and priority.In actual applications, specifically can be according to user's grade situation, information such as hour of log-on, line duration and liveness arranges this user's priority, also can be according to this user's the grade of service (Service Level Agreement, abbreviation SLA) information arranges this user's priority, the priority that can also this user dynamically be set according to network state and the disposal ability of the employed terminal equipment of user, the set-up mode of priority can have multiple, is not limited with present embodiment.
The first transmission control equipment obtains this priority list from strategic server, from high to low operation information is sent to the second transmission control equipment according to the priority of user ID in the priority list.The second transmission control equipment is specifically as follows personal computer with disposal ability or server etc., this the second transmission control equipment is arranged on the porch of data center, and the operation information that the first transmission control equipment is sent is transmitted to the virtual machine that arranges on the physical server in the corresponding data center.Virtual machine can respond operation information and generate the virtual information that includes virtual desktop information and user ID, again virtual information is sent to the terminal equipment of response by the second transmission control equipment, the first transmission control equipment, terminal equipment shows this virtual desktop, and completing user is to the access of virtual desktop.
The virtual desktop access control method that present embodiment provides, the first transmission control equipment receives the operation information that a plurality of terminal equipments send, wherein, operation information comprises operational order and user ID, user ID is in order to marking terminal equipment, obtain priority list from strategic server, from high to low operation information is sent to the second transmission control equipment according to the priority of user ID in the priority list.When a plurality of terminal equipments during simultaneously to the first transmission control equipment transmit operation information, send from high to low according to the priority of user ID, can guarantee that high user's operation is processed first to priority, when avoiding network congestion, improve transmission control effect.
The second virtual desktop access control method flow chart that Fig. 2 provides for the embodiment of the invention.As shown in Figure 2, in the present embodiment, the method further can also comprise:
Steps A 30, the first transmission control equipment receive a plurality of virtual informations that the second transmission control equipment sends, and wherein, virtual information comprises virtual desktop information and user ID;
Steps A 40, the first transmission control equipment send to virtual information corresponding terminal equipment from high to low according to the priority of user ID in the priority list.
Particularly, when the virtual machine on the physical server receives operation information, correspondingly process according to the operational order in the operation information, the generating virtual DESKTOP INFORMATION is carried at the user ID in virtual desktop information and this operation information and sends to the second transmission control equipment in the virtual information.A plurality of virtual machines in the network may send to virtual information the second transmission control equipment simultaneously, and the second transmission control equipment should send to the first transmission control equipment by a plurality of virtual informations.The first transmission control equipment also sends to virtual information corresponding terminal equipment from high to low according to the priority of user ID in the priority list.The first transmission control equipment is to the second transmission control equipment transmit operation information and send to terminal equipment in the process of virtual information all that the priority according to user ID in the priority list sends from high to low, guaranteed that further high user's operation is processed first to priority, improved transmission control effect.
It should be noted that the first transmission control equipment to the transmission of operation information and can parallel processing to the transmission of virtual information, steps A 10 and steps A 30 do not have inevitable sequential relationship.
Further, in the present embodiment, in the steps A 20, before the first transmission control equipment obtained priority list from strategic server, the method can also comprise:
Steps A 50, the first transmission control equipment detect network state information and the disposal ability information of each terminal equipment, with the network state information of each terminal equipment and disposal ability information reporting to strategic server, so that the priority that strategic server is determined each terminal equipment according to network state information and the disposal ability information of each terminal equipment generates priority list.
Particularly, the first transmission control equipment can detect network state information and the disposal ability information of each terminal equipment, in network, there are a plurality of user side local area network (LAN)s, when each user side local area network (LAN) distributed first transmission control equipment, this first transmission control equipment can detect each terminal equipment in its corresponding user side local area network (LAN).Terminal equipment also can own Sampling network state information and disposal ability information, and report the first transmission control equipment.The first transmission control equipment again with the network state information of each terminal equipment and disposal ability information reporting to strategic server, the priority that strategic server can be determined each terminal equipment according to network state information and the disposal ability information of each terminal equipment, and generate priority list.Preferably, network state the priority good and terminal equipment that disposal ability is high is high.Network state and disposal ability according to terminal equipment dynamically arrange the terminal device prioritizes level, can improve the adaptability of this priority list, and then have improved the transmission control effect of the first transmission control equipment.
It should be noted that steps A 50 and steps A 10 do not have inevitable sequential relationship, can sequential processes also can parallel processing.
In the present embodiment, steps A 10, the first transmission control equipment receives after the operation information of a plurality of terminal equipments transmissions, in the steps A 20, the first transmission control equipment sends to operation information before the second transmission control equipment from high to low according to the priority of user ID in the priority list, and the method can also comprise:
The first transmission control equipment is with a plurality of operation information buffer memory to the first buffer areas;
Correspondingly, in the steps A 20, the first transmission control equipment sends to operation information the second transmission control equipment from high to low according to the priority of user ID in the priority list, is specifically as follows:
The first transmission control equipment is sent to the first transmit queue with the operation information in the first buffer area from high to low according to the priority of user ID in the priority list, and the operation information in the first transmit queue is sent to the second transmission control equipment successively.
Particularly, can be provided with the first buffer area and the first transmit queue in the memory of the first transmission control equipment, the operation information that this first buffer area receives in a period of time in order to buffer memory, the first transmission control equipment is sent to the first transmit queue with the operation information in the first buffer area from high to low according to the priority of user ID in the priority list, namely the operation information in this first transmit queue all is to arrange from high to low according to the priority of user ID, the operation information that priority is high sends first, sends behind the low operation information of priority.By the setting of the first buffer area and the first transmit queue, at first operation information is carried out buffer memory, again the sending order of operation information is adjusted, simple to operate, realize easily.
In the present embodiment, steps A 30, the first transmission control equipment receives after a plurality of virtual informations of the second transmission control equipment transmission, in the steps A 40, the first transmission control equipment sends to virtual information before the corresponding terminal equipment from high to low according to the priority of user ID in the priority list, and the method can also comprise:
The first transmission control equipment is with a plurality of virtual information buffer memory to the second buffer areas;
Correspondingly, in the steps A 40, the first transmission control equipment sends to virtual information corresponding terminal equipment from high to low according to the priority of user ID in the priority list, is specifically as follows:
The first transmission control equipment is sent to the second transmit queue with the virtual information in the second buffer area from high to low according to the priority of user ID in the priority list, and the virtual information in the second transmit queue is sent to corresponding terminal equipment successively.
Particularly, can be provided with the second buffer area and the second transmit queue in the memory of the first transmission control equipment, the virtual information that this second buffer area receives in a period of time in order to buffer memory, the first transmission control equipment is sent to the second transmit queue with the virtual information in the second buffer area from high to low according to the priority of user ID in the priority list, namely the virtual information in this second transmit queue is to arrange from high to low according to the priority of user ID, the virtual information that priority is high sends first, sends behind the low virtual information of priority.By the setting of the second buffer area and the second transmit queue, at first virtual information is carried out buffer memory, again the sending order of virtual information is adjusted, simple to operate, realize easily.
The third virtual desktop access control method flow chart that Fig. 3 provides for the embodiment of the invention.As shown in Figure 3, the virtual desktop access control method that present embodiment provides can be applied in the virtual desktop application system access control process to virtual desktop, the virtual desktop access control method that present embodiment provides can realize by the second transmission control equipment, and this second transmission control equipment is specifically as follows personal computer with disposal ability or server etc.This second transmission control equipment is arranged on data center's side.The virtual desktop access control method that present embodiment provides can cooperate realization with the virtual desktop access control method that is applied to terminal equipment side that any embodiment of the present invention provides.
The virtual desktop access control method that present embodiment provides specifically comprises:
Step B10, the second transmission control equipment receive a plurality of operation informations that the first transmission control equipment sends, and wherein, operation information comprises operational order and user ID, and user ID is in order to marking terminal equipment;
Step B20, the second transmission control equipment obtain priority list from strategic server, priority according to user ID in the priority list sends to operation information corresponding virtual machine from high to low, so that virtual machine is processed according to the operational order in the operation information, generating virtual information also sends to the second transmission control equipment.
Particularly, terminal equipment is to the first transmission control equipment transmit operation information, comprise operational order and user ID in this operation information, operational order is specifically as follows the operational orders such as mouse or keyboard, user ID specifically can comprise user name, the user ID (Identity of the distribution that the user registers, identify label) or the IP(Internet Protocol of terminal equipment, interconnection agreement between network) one or more the combination of address etc., when the user carried out the virtual desktop access by terminal equipment, this user ID can identify this terminal equipment.The first transmission control equipment sends to operation information the second transmission control equipment again.In actual application, when having a plurality of user side local area network (LAN) in the network, each user side local area network (LAN) distributes first transmission control equipment, and then each first transmission control equipment is all to the second transmission control equipment transmit operation information.
Pre-stored in the strategic server have a priority list, and this priority list is in order to record all users' priority, and the information that records in the priority list is specifically as follows the corresponding relation of user ID and priority.In actual applications, specifically can be according to user's grade situation, information such as hour of log-on, line duration and liveness arranges this user's priority, also can be according to this user's the grade of service (Service Level Agreement, abbreviation SLA) information arranges this user's priority, the priority that can also this user dynamically be set according to network state and the disposal ability of the employed terminal equipment of user, the set-up mode of priority can have multiple, is not limited with present embodiment.
The second transmission control equipment obtains this priority list from strategic server, from high to low operation information is sent to virtual machine on the corresponding physical server according to the priority of user ID in the priority list, virtual machine is correspondingly processed according to the operational order in the operation information, generation includes the virtual information of virtual desktop information and user ID, again virtual information is sent to the terminal equipment of response by the second transmission control equipment, the first transmission control equipment, terminal equipment shows this virtual desktop, and completing user is to the access of virtual desktop.
The virtual desktop access control method that present embodiment provides, the second transmission control equipment receives a plurality of operation informations that the first transmission control equipment sends, wherein, operation information comprises operational order and user ID, user ID is in order to marking terminal equipment, obtain priority list from strategic server, from high to low operation information is sent to corresponding virtual machine according to the priority of user ID in the priority list.When the first transmission control equipment sends to the second transmission control equipment with a plurality of operation informations, the second transmission control equipment can send from high to low according to the priority of user ID, guaranteed that high user's operation is processed first to priority, when avoiding network congestion, improved transmission control effect.
The 4th kind of virtual desktop access control method flow chart that Fig. 4 provides for the embodiment of the invention.As shown in Figure 4, in the present embodiment, the method further can also comprise:
Step B30, the second transmission control equipment receive the virtual information that a plurality of virtual machines send, and wherein, virtual information comprises virtual desktop information and user ID;
Step B40, the second transmission control equipment send to virtual information the first transmission control equipment from high to low according to the priority of user ID in the priority list.
Particularly, when the virtual machine on the physical server receives operation information, correspondingly process according to the operational order in the operation information, the generating virtual DESKTOP INFORMATION is carried at the user ID in virtual desktop information and this operation information and sends to the second transmission control equipment in the virtual information.A plurality of virtual machines in the network may send to virtual information the second transmission control equipment simultaneously, and the second transmission control equipment also sends to virtual information the first transmission control equipment from high to low according to the priority of user ID in the priority list.The second transmission control equipment to virtual machine send virtual information and in the process of the first transmission control equipment transmit operation information all the priority according to user ID in the priority list send from high to low, guaranteed that further high user's operation is processed first to priority, improved transmission control effect.
It should be noted that the second transmission control equipment to the transmission of operation information and can parallel processing to the transmission of virtual information, step B10 and step B30 do not have inevitable sequential relationship.
In the present embodiment, step B10, the second transmission control equipment receives after a plurality of operation informations of the first transmission control equipment transmission, among the step B20, the second transmission control equipment sends to operation information before the corresponding virtual machine from high to low according to the priority of user ID in the priority list, and the method can also comprise:
The second transmission control equipment is with a plurality of operation information buffer memory to the three buffer areas;
Correspondingly, among the step B20, the second transmission control equipment sends to operation information corresponding virtual machine from high to low according to the priority of user ID in the priority list, is specifically as follows:
The second transmission control equipment is sent to the 3rd transmit queue with the operation information in the 3rd buffer area from high to low according to the priority of user ID in the priority list, and the operation information in the 3rd transmit queue is sent to corresponding virtual machine successively.By the setting of the 3rd buffer area and the 3rd transmit queue, at first operation information is carried out buffer memory, again the sending order of operation information is adjusted, simple to operate, realize easily.
Particularly, can be provided with the 3rd buffer area and the 3rd transmit queue in the memory of the second transmission control equipment, the operation information that the 3rd buffer area receives in a period of time in order to buffer memory, the second transmission control equipment is sent to the 3rd transmit queue with the operation information in the 3rd buffer area from high to low according to the priority of user ID in the priority list, namely the operation information in the 3rd transmit queue all is to arrange from high to low according to the priority of user ID, the operation information that priority is high sends first, sends behind the low operation information of priority.
In the present embodiment, step B30, the second transmission control equipment receives before the virtual information of a plurality of virtual machines transmissions, among the step B40, the second transmission control equipment sends to virtual information after the first transmission control equipment from high to low according to the priority of user ID in the priority list, and the method can also comprise:
The first transmission control equipment is with a plurality of virtual information buffer memory to the four buffer areas;
Correspondingly, among the step B40, the second transmission control equipment sends to virtual information the first transmission control equipment from high to low according to the priority of user ID in the priority list, is specifically as follows:
The second transmission control equipment is sent to the 4th transmit queue with the virtual information in the 4th buffer area from high to low according to the priority of user ID in the priority list, and the virtual information in the 4th transmit queue is sent to the first transmission control equipment successively.
Particularly, can be provided with the 4th buffer area and the 4th transmit queue in the memory of the second transmission control equipment, the virtual information that the 4th buffer area receives in a period of time in order to buffer memory, the second transmission control equipment is sent to the 4th transmit queue with the virtual information in the 4th buffer area from high to low according to the priority of user ID in the priority list, namely the virtual information in the 4th transmit queue is to arrange from high to low according to the priority of user ID, the virtual information that priority is high sends first, sends behind the low virtual information of priority.By the setting of the 4th buffer area and the 4th transmit queue, at first virtual information is carried out buffer memory, again the sending order of virtual information is adjusted, simple to operate, realize easily.
The first the first transmission control equipment structural representation that Fig. 5 provides for the embodiment of the invention.As described in Figure 5, the first transmission control equipment 81 that present embodiment provides specifically can be realized each step of the virtual desktop access control method that is applied to terminal equipment side that any embodiment of the present invention provides, does not repeat them here.The first transmission control equipment 81 that present embodiment provides specifically comprises the first receiver module 11 and the first sending module 12.The first receiver module 11 is used for receiving the operation information that a plurality of terminal equipments send, and wherein, operation information comprises operational order and user ID, and user ID is in order to marking terminal equipment.The first sending module 12 is used for obtaining priority list from strategic server 83, priority according to user ID in the priority list sends to operation information the second transmission control equipment 82 from high to low, so that the second transmission control equipment 82 sends to corresponding virtual machine with operation information.
The first transmission control equipment 81 that present embodiment provides, the first receiver module 11 receives the operation information that a plurality of terminal equipments send, wherein, operation information comprises operational order and user ID, user ID is in order to marking terminal equipment, the first sending module 12 obtains priority list from strategic server 83, from high to low operation information is sent to the second transmission control equipment 82 according to the priority of user ID in the priority list.When a plurality of terminal equipments during simultaneously to the first transmission control equipment 81 transmit operation information, send from high to low according to the priority of user ID, can guarantee that high user's operation is processed first to priority, when avoiding network congestion, improve transmission control effect.
The second the first transmission control equipment structural representation that Fig. 6 provides for the embodiment of the invention.As shown in Figure 6, in the present embodiment, this first transmission control equipment 81 can also comprise the second receiver module 13 and the second sending module 14.The second receiver module 13 is used for receiving a plurality of virtual informations that the second transmission control equipment 82 sends, and wherein, virtual information comprises virtual desktop information and user ID.The second sending module 14 is used for from high to low virtual information being sent to corresponding terminal equipment according to the priority of priority list user ID.The first transmission control equipment 81 is to the second transmission control equipment 82 transmit operation information and send to terminal equipment in the process of virtual information all that the priority according to user ID in the priority list sends from high to low, guaranteed that further high user's operation is processed first to priority, improved transmission control effect.
In the present embodiment, this first transmission control equipment 81 can also comprise detection module 15, detection module 15 is for detection of network state information and the disposal ability information of each terminal equipment, with the network state information of each terminal equipment and disposal ability information reporting to strategic server 83, so that the priority that strategic server 83 is determined each terminal equipment according to network state information and the disposal ability information of each terminal equipment generates priority list.Network state and disposal ability according to terminal equipment dynamically arrange the terminal device prioritizes level, can improve the adaptability of this priority list, and then have improved the transmission control effect of the first transmission control equipment 81.
In the present embodiment, this first transmission control equipment 81 can also comprise that the first cache module 16, the first cache modules 16 are used for a plurality of operation information buffer memory to the first buffer areas.Correspondingly, the first sending module 12 also is used for from high to low the operation information in the first buffer area being sent to the first transmit queue according to the priority of priority list user ID, and the operation information in the first transmit queue is sent to the second transmission control equipment 82 successively.By the setting of the first buffer area and the first transmit queue, at first operation information is carried out buffer memory, again the sending order of operation information is adjusted, simple to operate, realize easily.
In the present embodiment, the first transmission control equipment 81 can comprise also that the second cache module 17, the second cache modules 17 are used for a plurality of virtual information buffer memory to the second buffer areas.Correspondingly, the second sending module 14 also is used for from high to low the virtual information in the second buffer area being sent to the second transmit queue according to the priority of priority list user ID, and the virtual information in the second transmit queue is sent to corresponding terminal equipment successively.By the setting of the second buffer area and the second transmit queue, at first virtual information is carried out buffer memory, again the sending order of virtual information is adjusted, simple to operate, realize easily.
The first the second transmission control equipment structural representation that Fig. 7 provides for the embodiment of the invention.As shown in Figure 7, the second transmission control equipment 82 that present embodiment provides specifically can be realized each step of the virtual desktop access control method that is applied to data center's side that any embodiment of the present invention provides, does not repeat them here.The second transmission control equipment 82 that present embodiment provides specifically comprises the 3rd receiver module 21 and the 3rd sending module 22.The 3rd receiver module 21 is used for receiving a plurality of operation informations that the first transmission control equipment 81 sends, and wherein, operation information comprises operational order and user ID, and user ID is in order to marking terminal equipment.The 3rd sending module 22 is used for obtaining priority list from strategic server 83, priority according to user ID in the priority list sends to operation information corresponding virtual machine from high to low, so that virtual machine is processed according to the operational order in the operation information, generating virtual information also sends to the second transmission control equipment 82.
The second transmission control equipment 82 that present embodiment provides, the 3rd receiver module 21 receives a plurality of operation informations that the first transmission control equipment 81 sends, wherein, operation information comprises operational order and user ID, user ID is in order to marking terminal equipment, the 3rd sending module 22 obtains priority list from strategic server 83, from high to low operation information is sent to corresponding virtual machine according to the priority of user ID in the priority list.When the first transmission control equipment 81 sends to the second transmission control equipment 82 with a plurality of operation informations, the second transmission control equipment 82 can send from high to low according to the priority of user ID, guaranteed that high user's operation is processed first to priority, when avoiding network congestion, improved transmission control effect.
The second the second transmission control equipment structural representation that Fig. 8 provides for the embodiment of the invention.As shown in Figure 8, in the present embodiment, this second transmission control equipment 82 can also comprise the 4th receiver module 23 and the 4th sending module 24.The 4th receiver module 23 is used for receiving the virtual information that a plurality of virtual machines send, and wherein, virtual information comprises virtual desktop information and user ID.The 4th sending module 24 is used for from high to low virtual information being sent to the first transmission control equipment 81 according to the priority of priority list user ID.The second transmission control equipment 82 to virtual machine send virtual information and in the process of the first transmission control equipment 81 transmit operation information all the priority according to user ID in the priority list send from high to low, guaranteed that further high user's operation is processed first to priority, improved transmission control effect.
In the present embodiment, this second transmission control equipment 82 can also comprise that the 3rd cache module 25, the three cache modules 25 are used for a plurality of operation information buffer memory to the three buffer areas.Correspondingly, the 3rd sending module 22 also is used for from high to low the operation information in the 3rd buffer area being sent to the 3rd transmit queue according to the priority of priority list user ID, and the operation information in the 3rd transmit queue is sent to corresponding virtual machine successively.By the setting of the 3rd buffer area and the 3rd transmit queue, at first virtual information is carried out buffer memory, again the sending order of virtual information is adjusted, simple to operate, realize easily.
In the present embodiment, this second transmission control equipment 82 can also comprise that the 4th cache module 26, the four cache modules 26 are used for a plurality of virtual information buffer memory to the four buffer areas.Correspondingly, the 4th sending module 24 also is used for from high to low the virtual information in the 4th buffer area being sent to the 4th transmit queue according to the priority of priority list user ID, and the virtual information in the 4th transmit queue is sent to the first transmission control equipment 81 successively.By the setting of the 4th buffer area and the 4th transmit queue, at first virtual information is carried out buffer memory, again the sending order of virtual information is adjusted, simple to operate, realize easily.
The virtual desktop access control system structural representation that Fig. 9 provides for the embodiment of the invention.As shown in Figure 9, the virtual desktop access control system that present embodiment provides specifically can be realized each step of the virtual desktop access control method that any embodiment of the present invention provides, does not repeat them here.The virtual desktop access control system that present embodiment provides specifically comprises: the first transmission control equipment 81 that a plurality of any embodiment of the present invention provide, second transmission control equipment 82 that any embodiment of the present invention provides, and strategic server 83, strategic server 83 is used for generating priority list according to user's log-on message.
When having a plurality of user side local area network (LAN) 87 in the network, for each user side local area network (LAN) 87 distributes first transmission control equipment.The first transmission control equipment 81 receives the operation information that the terminal equipment 84 in the user side local area network (LAN) 87 sends, and operation information sent to the second transmission control equipment 82, and receive the virtual information that the second transmission control equipment 82 sends, and virtual information is sent to corresponding terminal equipment 84.The second transmission control equipment 82 is arranged on data center's side, data center comprises a plurality of physical servers 85, be provided with a plurality of virtual machines 86 on each physical server 85, the second transmission control equipment 82 receives the operation information that the first transmission control equipment 81 sends, and operation information sent to corresponding virtual machine 86, and receive the virtual information that each virtual machine 86 sends, and virtual information is sent to the first transmission control equipment 81.
It should be noted that at last: above embodiment only in order to technical scheme of the present invention to be described, is not intended to limit; Although with reference to previous embodiment the present invention is had been described in detail, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment puts down in writing, and perhaps part technical characterictic wherein is equal to replacement; And these modifications or replacement do not make the essence of appropriate technical solution break away from the scope of various embodiments of the present invention technical scheme.

Claims (11)

1. a virtual desktop access control method is characterized in that, comprising:
The first transmission control equipment receives the operation information that a plurality of terminal equipments send, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to identify described terminal equipment;
Described the first transmission control equipment obtains priority list from strategic server, priority according to user ID in the described priority list sends to the second transmission control equipment with described operation information from high to low, so that described the second transmission control equipment sends to corresponding virtual machine with described operation information.
2. virtual desktop access control method according to claim 1 is characterized in that, described method also comprises:
Described the first transmission control equipment receives a plurality of virtual informations that described the second transmission control equipment sends, and wherein, described virtual information comprises virtual desktop information and described user ID;
Described the first transmission control equipment sends to corresponding terminal equipment with described virtual information from high to low according to the priority of user ID in the described priority list.
3. virtual desktop access control method according to claim 1 is characterized in that, before described the first transmission control equipment obtained priority list from strategic server, described method also comprised:
Described the first transmission control equipment detects network state information and the disposal ability information of each described terminal equipment, give described strategic server with network state information and the described disposal ability information reporting of each described terminal equipment, so that the priority that described strategic server is determined each described terminal equipment according to network state information and the described disposal ability information of each described terminal equipment generates described priority list.
4. a virtual desktop access control method is characterized in that, comprising:
The second transmission control equipment receives a plurality of operation informations that the first transmission control equipment sends, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to marking terminal equipment;
Described the second transmission control equipment obtains priority list from strategic server, priority according to user ID in the described priority list sends to corresponding virtual machine with described operation information from high to low, so that described virtual machine is processed according to the operational order in the described operation information, generating virtual information also sends to described the second transmission control equipment.
5. virtual desktop access control method according to claim 4 is characterized in that, also comprises:
Described the second transmission control equipment receives the virtual information that a plurality of virtual machines send, and wherein, described virtual information comprises virtual desktop information and described user ID;
Described the second transmission control equipment sends to described virtual information described the first transmission control equipment from high to low according to the priority of user ID in the described priority list.
6. a transmission control equipment is characterized in that, comprising:
The first receiver module is used for receiving the operation information that a plurality of terminal equipments send, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to identify described terminal equipment;
The first sending module, be used for obtaining priority list from strategic server, priority according to user ID in the described priority list sends to the second transmission control equipment with described operation information from high to low, so that described the second transmission control equipment sends to corresponding virtual machine with described operation information.
7. the first transmission control equipment according to claim 6 is characterized in that, also comprises:
The second receiver module is used for receiving a plurality of virtual informations that described the second transmission control equipment sends, and wherein, described virtual information comprises virtual desktop information and described user ID;
The second sending module is used for from high to low described virtual information being sent to corresponding terminal equipment according to the priority of described priority list user ID.
8. the first transmission control equipment according to claim 6 is characterized in that, also comprises:
Detection module, network state information and disposal ability information for detection of each described terminal equipment, give described strategic server with network state information and the described disposal ability information reporting of each described terminal equipment, so that the priority that described strategic server is determined each described terminal equipment according to network state information and the described disposal ability information of each described terminal equipment generates described priority list.
9. a transmission control equipment is characterized in that, comprising:
The 3rd receiver module is used for receiving a plurality of operation informations that the first transmission control equipment sends, and wherein, described operation information comprises operational order and user ID, and described user ID is in order to marking terminal equipment;
The 3rd sending module, be used for obtaining priority list from strategic server, priority according to user ID in the described priority list sends to corresponding virtual machine with described operation information from high to low, so that described virtual machine is processed according to the operational order in the described operation information, generating virtual information also sends to described the second transmission control equipment.
10. the second transmission control equipment according to claim 9 is characterized in that, also comprises:
The 4th receiver module is used for receiving the virtual information that a plurality of virtual machines send, and wherein, described virtual information comprises virtual desktop information and described user ID;
The 4th sending module is used for from high to low described virtual information being sent to described the first transmission control equipment according to the priority of described priority list user ID.
11. a virtual desktop access control system is characterized in that, comprising:
A plurality of such as arbitrary described the first transmission control equipment of claim 6-8;
One such as claim 9 or 10 described the second transmission control equipments;
And strategic server, described strategic server is used for generating priority list according to user's log-on message.
CN2012103616798A 2012-09-25 2012-09-25 Access control method, equipment and system of virtual desktop Pending CN102891851A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2012103616798A CN102891851A (en) 2012-09-25 2012-09-25 Access control method, equipment and system of virtual desktop

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2012103616798A CN102891851A (en) 2012-09-25 2012-09-25 Access control method, equipment and system of virtual desktop

Publications (1)

Publication Number Publication Date
CN102891851A true CN102891851A (en) 2013-01-23

Family

ID=47535218

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2012103616798A Pending CN102891851A (en) 2012-09-25 2012-09-25 Access control method, equipment and system of virtual desktop

Country Status (1)

Country Link
CN (1) CN102891851A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103259847A (en) * 2013-04-15 2013-08-21 中国联合网络通信集团有限公司 File pushing method, desktop cloud platform and server
CN106789421A (en) * 2016-12-17 2017-05-31 深圳中广核工程设计有限公司 The method and apparatus of collaborative design
CN109710379A (en) * 2018-12-24 2019-05-03 广州供电局有限公司 Virtual operation management method, apparatus, system, computer equipment and storage medium
WO2020000332A1 (en) * 2018-06-29 2020-01-02 Citrix Systems, Inc. Use of identity data associated with a device for directing communications to another device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102141930A (en) * 2010-12-20 2011-08-03 华为技术有限公司 Method and device for distributing resources to virtual machines
CN102307153A (en) * 2011-10-14 2012-01-04 王宁 Virtual desktop transmission device and method
CN102362477A (en) * 2009-03-25 2012-02-22 萨基姆通讯宽带公司 Method for the remote sharing of computer office(s)
CN102395212A (en) * 2011-11-18 2012-03-28 百度在线网络技术(北京)有限公司 Gateway access control method, system and device
CN102487380A (en) * 2010-12-01 2012-06-06 中兴通讯股份有限公司 Desktop virtual terminal entrusting method and system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102362477A (en) * 2009-03-25 2012-02-22 萨基姆通讯宽带公司 Method for the remote sharing of computer office(s)
CN102487380A (en) * 2010-12-01 2012-06-06 中兴通讯股份有限公司 Desktop virtual terminal entrusting method and system
CN102141930A (en) * 2010-12-20 2011-08-03 华为技术有限公司 Method and device for distributing resources to virtual machines
CN102307153A (en) * 2011-10-14 2012-01-04 王宁 Virtual desktop transmission device and method
CN102395212A (en) * 2011-11-18 2012-03-28 百度在线网络技术(北京)有限公司 Gateway access control method, system and device

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103259847A (en) * 2013-04-15 2013-08-21 中国联合网络通信集团有限公司 File pushing method, desktop cloud platform and server
CN103259847B (en) * 2013-04-15 2016-07-06 中国联合网络通信集团有限公司 File push method, desktop cloud platform and server
CN106789421A (en) * 2016-12-17 2017-05-31 深圳中广核工程设计有限公司 The method and apparatus of collaborative design
CN106789421B (en) * 2016-12-17 2020-06-05 深圳中广核工程设计有限公司 Collaborative design method and device
WO2020000332A1 (en) * 2018-06-29 2020-01-02 Citrix Systems, Inc. Use of identity data associated with a device for directing communications to another device
CN109710379A (en) * 2018-12-24 2019-05-03 广州供电局有限公司 Virtual operation management method, apparatus, system, computer equipment and storage medium

Similar Documents

Publication Publication Date Title
RU2015143441A (en) PROVISION OF DEVICES AS A SERVICE
CN110311983B (en) Service request processing method, device and system, electronic equipment and storage medium
CN104660409B (en) The method of system login and certificate server cluster under cluster environment
US20150195181A1 (en) Testing of dynamic web content applications
CN109547547A (en) Return source dispatching method, device and its storage medium
CN102891851A (en) Access control method, equipment and system of virtual desktop
CN108124007A (en) The method and apparatus of message data real-time Transmission
CN103428260A (en) System and method for allocating server to terminal and efficiently delivering messages to the terminal
CN105024913B (en) Method, device and system for carrying out instant messaging session
CN103716230A (en) Message sending method, device and server
CN102970391A (en) Domain name query processing method, server and system
US20140047014A1 (en) Network access system
CN103020241A (en) Dynamic page cache method and system based on session
EP3276914A1 (en) Data sharing method and device for virtual desktop
CN109302340A (en) One kind burying point data report method, device and computer readable storage medium
JP5961471B2 (en) Output comparison method in multiple information systems
CN108880923A (en) The method and apparatus that policer operation applied to application server is requested
CN112152879A (en) Network quality determination method and device, electronic equipment and readable storage medium
CN106411722A (en) Message transmission method and apparatus
CN106453677A (en) Address allocation method and apparatus
CN103914453A (en) Method and device for local resource access and electronic device
CN111163130A (en) Network service system and data transmission method thereof
KR20130072907A (en) Method and system for shortening url
CN110247959A (en) A kind of data transmission method and device
CN103561080A (en) Remote resource service device, method and remote displaying service system of wireless network

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20130123