CN103780467A - Communication connection method, communication device and communication system - Google Patents
Communication connection method, communication device and communication system Download PDFInfo
- Publication number
- CN103780467A CN103780467A CN201210401104.4A CN201210401104A CN103780467A CN 103780467 A CN103780467 A CN 103780467A CN 201210401104 A CN201210401104 A CN 201210401104A CN 103780467 A CN103780467 A CN 103780467A
- Authority
- CN
- China
- Prior art keywords
- website
- configuration information
- tunnel
- vpn configuration
- vpc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/70—Admission control; Resource allocation
- H04L47/72—Admission control; Resource allocation using reservation actions during connection setup
- H04L47/724—Admission control; Resource allocation using reservation actions during connection setup at intermediate nodes, e.g. resource reservation protocol [RSVP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/70—Admission control; Resource allocation
- H04L47/82—Miscellaneous aspects
- H04L47/825—Involving tunnels, e.g. MPLS
Abstract
The embodiment of the invention discloses a communication connection method, a communication device and a communication system. The method includes: a first request message sent by a network station point when the load of the network station point is higher than a first load is received, wherein the first request message includes a VPC (Virtual Private Cloud) establishment request, an ID (Identity) of the network station point and first tunnel attribute information; a target VPC is established according to the VPC establishment request; the target VPC and a first PE (Provider Edge) are connected; the ID of the network station point and the first tunnel attribute information are sent to the first PE so that the first PE is enabled to acquire second VPN (Virtual Private Network) configuration information and an address of a second PE according to the ID of the network station point, and determine first VPN configuration information according to the second VPN configuration information and establish VPN connection and channel connection with the second PE according to the first VPN configuration information, the address of the second PE and the first tunnel attribute information so that communication connection between the target VPC and the network station point is realized. The communication connection method, the communication device and the communication system are capable of realizing timely communication connection according to the needs of the network station point so that connection efficiency is improved.
Description
Technical field
The present invention relates to the communications field, particularly a kind of communication connecting method, communicator and communication system.
Background technology
Cloud computing technology is the data that website (as enterprise computer system etc.) is processed in a kind of application high in the clouds, result is returned to the technology of website.
When application cloud computing technology, website beyond the clouds rental equipment forms a virtual private cloud (Virtual Private Cloud, VPC).When the data-handling capacity of website can not satisfy the demands, website and VPC are connected, application VPC carries out data processing; When the data-handling capacity of website can satisfy the demands, website and VPC disconnect, thereby farthest reduce equipment and maintenance cost.
But existing method conventionally realizes website by the manual control of webmaster and VPC connects, joint efficiency has much room for improvement.
Summary of the invention
The embodiment of the present invention provides a kind of communication connecting method, communicator and communication system, can improve joint efficiency.
The embodiment of the present invention adopts following technical scheme:
First aspect, provides a kind of communication connecting method, comprising:
Receive the first request message that website sends during higher than the first load at the load of described website, described the first request message comprises the mark (IDentity, ID) and the first tunnel attribute information that create the request of VPC, described website, create target VPC according to the request of described establishment VPC, connect described target VPC and the first provider edge equipment (provider edge, PE), send ID and the described first tunnel attribute information of described website to a described PE, make a described PE obtain the second Virtual Private Network (Virtual Private Network according to the ID of described website, VPN) address of configuration information and the 2nd PE, and according to the definite VPN configuration information matching with described the 2nd VPN configuration information of described the 2nd VPN configuration information, and according to a described VPN configuration information, the address of described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website.
In the possible implementation of the first of first aspect, the described target VPC of described connection and the first provider edge equipment (PE) comprising: create the Virtual User edge device corresponding with described target VPC (virtual customer edge, VCE); Connect a described PE by described VCE.
In conjunction with described first aspect, or the possible implementation of the first of described first aspect, in the possible implementation of the second of described first aspect, also comprise: receive the second request message that described website sends, described the second request message comprises the ID of the request, the second tunnel attribute information and the described website that upgrade communication connection; Determine that according to the request of described renewal communication connection described website need upgrade after communication connection, send the ID of described the second tunnel attribute information and described website to a described PE, make a described PE according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
Second aspect, provides another kind of communication connecting method, comprising: connect the target VPC that is positioned at high in the clouds; Receive ID and the first tunnel attribute information of the website that described high in the clouds sends, the ID of described website and described the first tunnel attribute information are sent during higher than the first load at the load of described website by described website; Obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website; Determine the VPN configuration information matching with described the 2nd VPN configuration information according to described the 2nd VPN configuration information; According to the address of a described VPN configuration information, described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website.
In the possible implementation of the first of second aspect, the address that the described ID according to described website obtains the 2nd VPN configuration information and the 2nd PE comprises: the ID that applies described network website, to the address of the 2nd VPN configuration information and described the 2nd PE described in data base querying, prestore corresponding described the 2nd address of PE and described the 2nd VPN configuration information corresponding to the ID of described website of ID of described website of described database.
In conjunction with described second aspect, or the possible realization of the first of described second aspect, in the possible implementation of the second of described second aspect, also comprise: the ID and the second tunnel attribute information that receive the described website of high in the clouds transmission; According to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
In the third possible implementation of described second aspect, described connection is positioned at the target VPC in described high in the clouds, comprising: connect described target VPC by being positioned at the VCE in described high in the clouds.
The third aspect, a kind of high in the clouds device is provided, comprise: the first receiver module, the first request message sending during higher than the first load at the load of described website for receiving website, described the first request message comprises the ID and the first tunnel attribute information that create the request of VPC, described website, creation module, for creating target VPC according to the request of described establishment VPC, link block, for connecting described target VPC and a PE, the first sending module, for send ID and the described first tunnel attribute information of described website to a described PE, make a described PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of described website, and according to the definite VPN configuration information matching with described the 2nd VPN configuration information of described the 2nd VPN configuration information, and according to a described VPN configuration information, the address of described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website.
In the possible implementation of the first of the third aspect, described link block comprises: creating unit, for creating the VCE corresponding with described target VPC; Linkage unit, for connecting a described PE by described VCE.
In conjunction with the described third aspect, or the possible implementation of the first of the described third aspect, in the possible implementation of the second of the third aspect, also comprise: the second receiver module, the second request message sending for receiving described website, described the second request message comprises the ID of the request, the second tunnel attribute information and the described website that upgrade communication connection; The second sending module, for determining that according to the request of described renewal communication connection described website need upgrade after communication connection, send the ID of described the second tunnel attribute information and described website to a described PE, make a described PE according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
Fourth aspect, provides a kind of communicator, comprising: the first link block, for connecting the target VPC that is positioned at high in the clouds; The first receiver module, for receiving ID and the first tunnel attribute information of the website that described high in the clouds sends, the ID of described website and described the first tunnel attribute information are sent during higher than the first load at the load of described website by described website; Acquisition module, for obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website; Determination module, for determining the VPN configuration information matching with described the 2nd VPN configuration information according to described the 2nd VPN configuration information; The second link block, be used for according to the address of a described VPN configuration information, described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website.
In the possible implementation of the first of fourth aspect, described acquisition module specifically for, apply the ID of described network website, to the address of the 2nd VPN configuration information and described the 2nd PE described in data base querying, prestore corresponding described the 2nd address of PE and described the 2nd VPN configuration information corresponding to the ID of described website of ID of described website of described database.
In conjunction with described fourth aspect, or the possible implementation of the first of described fourth aspect, in the possible implementation of the second of fourth aspect, also comprise: the second receiver module, ID and the second tunnel attribute information of described website sending for receiving high in the clouds; The 3rd link block, be used for according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
In the third possible implementation of fourth aspect, described the first link block specifically for, connect described target VPC by the Virtual User edge device VCE that is positioned at described high in the clouds.
The 5th aspect, provides a kind of communication system, and the communicator providing in the high in the clouds device that provides in any one possible implementation of the third aspect and any one possible implementation of fourth aspect is provided.
The communication connecting method that the embodiment of the present invention provides, communicator and communication system, automatically sending and comprising the request that creates VPC by receiving website, after the request message of the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing of required use during embodiment is described is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The flow chart of a kind of communication connecting method 100 that Fig. 1 provides for the embodiment of the present invention;
The flow chart of the another kind of communication connecting method 100 that Fig. 2 provides for the embodiment of the present invention;
The flow chart of a kind of communication connecting method 200 that Fig. 3 provides for the embodiment of the present invention;
The flow chart of the another kind of communication connecting method 200 that Fig. 4 provides for the embodiment of the present invention;
Fig. 5 is a kind of application scenarios schematic diagram of the data transmission method of the embodiment of the present invention;
Fig. 6 is the schematic flow sheet that the embodiment of the present invention realizes communication connection;
Fig. 7 is that the embodiment of the present invention realizes the schematic flow sheet that upgrades communication connection;
The structural representation of a kind of high in the clouds device that Fig. 8 provides for the embodiment of the present invention;
The structural representation of the another kind of high in the clouds device that Fig. 9 provides for the embodiment of the present invention;
The structural representation of another high in the clouds device that Figure 10 provides for the embodiment of the present invention;
The structural representation of a kind of communicator that Figure 11 provides for the embodiment of the present invention;
The structural representation of the another kind of communicator that Figure 12 provides for the embodiment of the present invention;
The structural representation of a kind of communication system that Figure 13 provides for the embodiment of the present invention;
The structural representation of another high in the clouds device that Figure 14 provides for the embodiment of the present invention;
The structural representation of another communicator that Figure 15 provides for the embodiment of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing, embodiment of the present invention is described further in detail.
In the embodiment of the present invention, website is to utilize high in the clouds to carry out the website of data processing, and for example, this website can be a computer (as PC), can be also a computer system (as enterprise computer system).
The embodiment of the present invention provides a kind of communication connecting method 100, and as shown in Figure 1, method 100 can comprise:
110, receive the first request message that website sends during higher than the first load at the load of this website, this first request message comprises the request of VPC that creates, ID and the first tunnel attribute information of this website.
Wherein, the ID of this website is used for identifying this website, and the request that creates VPC can application data section identify in the first request message.
Particularly, this website is detection load in real time, in the time loading higher than the first load, sends this first solicited message to high in the clouds, and website is from the transmission of this first request message of master control.Wherein, this first load can, according to different scenes, arrange change.In addition, according to different application scenarioss, website can also be according to sending this first request message to sending instruction.
120, create target VPC according to the request of this establishment VPC.
Wherein, this target VPC is the VPC corresponding with this website.
130, connect this target VPC and a PE.
140, send ID and this first tunnel attribute information of this website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of this website, and according to the definite VPN configuration information matching with the 2nd VPN configuration information of the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and this first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, thereby realize the communication connection between this target VPC and this website, the 2nd VPN configuration information is the VPN configuration information of the 2nd PE, the access device that the 2nd PE is this website.
Wherein, VPN configuration information is relevant to the type that the VPN that will set up connects.For example, when the VPN that will set up is connected to the VPN(Layer 3VPN based on three layer protocols) time, the 2nd VPN configuration information can be the information such as input route target (Route Target, RT) and output RT of the 2nd PE; When the type that the VPN that will set up connects is the VPN(Layer 2VPN based on two-layer protocol) in virtual leased line (Virtual Leased Line, VLL) time, the 2nd VPN configuration information can be the information such as virtual circuit (Virtual Circuit, VC) ID.Wherein, the address of the 2nd PE can be the IP address of the 2nd PE.
In the embodiment of the present invention, can between target VPC and website, set up the communication connection of unidirectional tunnel or bidirectional tunnel.
An above-mentioned PE and the 2nd PE divide for ease of while explaining to distinguish different PE, do not form the restriction to the embodiment of the present invention.An above-mentioned VPN configuration information and the 2nd VPN configuration information are divided for ease of while explaining to distinguish different VPN configuration informations, do not form the restriction to the embodiment of the present invention.
The executive agent of above-mentioned 110-140 can be high in the clouds device, and this high in the clouds device can be positioned at high in the clouds.In addition, this high in the clouds device can be divided into different module distribution in multiple equipment, also can be integrated among same equipment, can also serve as an independently equipment.
The communication connecting method 100 of the embodiment of the present invention, by receiving the website request of the establishment VPC of transmission automatically, the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
In the embodiment of the present invention, alternatively, while connecting this VPC and a PE in above-mentioned 130, can create the VCE corresponding with this target VPC, connect a PE by this VCE.
Wherein, this VCE connects a PE and refers to this VCE is set, and this VCE can be communicated with a PE.For example, when communicating by letter between this VCE and a PE is during based on three layers of Routing Protocol, the Routing Protocol of the operation on this VCE is set, make route on this VCE can with a PE on route intercommunication.Again for example, in the time that the Routing Protocol of this VCE and the upper operation of a PE is Border Gateway Protocol (Border Gateway Protocol, BGP), the bgp peer that this VCE is set is a PE.Again for example, when communicating by letter between this VCE and a PE is based on two-layer protocol, as at VLAN (Virtual Local Area Network, VLAN) in situation, VLAN ID on this VCE is set identical with the VLAN ID of the interface of this VCE of the upper access of a PE, makes this VCE can be with the interface of this VCE of the upper access of a PE in same VLAN.
As shown in Figure 2, in the embodiment of the present invention, alternatively, after above-mentioned 140, can also comprise:
150, receive the second request message that this website sends, this second request message comprises the ID of the request, the second tunnel attribute information and this website that upgrade communication connection.
Particularly, this website can be from the transmission of master control the second request message, as detected, current communication connection sends the second request message need upgrade time.In addition, according to different application scenarioss, this website can also be according to sending the second request message to sending instruction.
160, determine that according to the request of this renewal communication connection this website need upgrade after communication connection, send the ID of this second tunnel attribute information and this website to a PE, make a PE according to the address of the ID of this website, the 2nd PE and this second tunnel attribute information, upgrade the tunnel attribute between a PE and the 2nd PE, thereby upgrade the communication connection attribute of this target VPC and this website.
Like this, the communication connection of adjustment aim VPC and website in real time as required.
In the embodiment of the present invention, the first tunnel attribute information and the second tunnel attribute information can comprise the communication tunnel bandwidth value in website and high in the clouds.
The embodiment of the present invention is by receiving the website request of the establishment VPC of transmission automatically, the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
The another kind of communication connecting method 200 that the embodiment of the present invention provides, as shown in Figure 3, method 200 can comprise:
210, connect the target VPC that is positioned at high in the clouds.
Wherein, this target VPC is created by this high in the clouds.
220, receive ID and the first tunnel attribute information of the website that this high in the clouds sends, the ID of this website and this first tunnel attribute information are sent during higher than the first load at the load of this website by this website.
230, obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of this website, the 2nd VPN configuration information is the VPN configuration information of the 2nd PE, the access device that the 2nd PE is this website.
Wherein, this access device can be for having the network equipment of routing function, as router etc.
240, determine according to the 2nd VPN configuration information the VPN configuration information matching with the 2nd VPN configuration information.
Wherein, VPN configuration information is relevant to the type that the VPN that will set up connects.For example, when the VPN that will set up is connected to the VPN(Layer 3VPN based on three layer protocols) time, the 2nd VPN configuration information can be the information such as input route target (Route Target, RT) and output RT of this website; When the type that the VPN that will set up connects is the VPN(Layer 2VPN based on two-layer protocol) in virtual leased line (Virtual Leased Line, VLL) time, the 2nd VPN configuration information can be the information such as virtual circuit (Virtual Circuit, VC) ID.Wherein, the address of the 2nd PE can be the IP address of the 2nd PE.
250,, according to the address of a VPN configuration information, the 2nd PE and this first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, thereby realize the communication connection between this target VPC and this website.
In the embodiment of the present invention, can between target VPC and website, set up the communication connection of unidirectional tunnel or bidirectional tunnel.
An above-mentioned VPN configuration information and the 2nd VPN configuration information are divided for ease of distinguishing different VPN configuration informations, do not form the restriction to the embodiment of the present invention.The executive agent of above-mentioned 210-250 can be communicator, and this communicator is the network equipment with routing function, as router etc.
The communication connecting method 200 of the embodiment of the present invention, be positioned at the target VPC in high in the clouds by connection, receive ID and the first tunnel attribute information of the website of this high in the clouds transmission, obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of this website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to the address of a VPN configuration information, the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, the communication connection between realize target VPC and website.Because ID and the first tunnel attribute information of website are sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
In the embodiment of the present invention, alternatively, while obtaining the address of the 2nd VPN configuration information and the 2nd PE according to the ID of this website in above-mentioned 230, can apply the ID of this network website, to the address of data base querying the 2nd VPN configuration information and the 2nd PE, prestore corresponding the 2nd address of PE and the 2nd VPN configuration information corresponding to the ID of this website of ID of this website of this database.
Like this, can realize the address that obtains the 2nd VPN configuration information and the 2nd PE according to the ID of this network website from trend database, realization is connected with the 2nd PE and high in the clouds, can improve joint efficiency.
In the embodiment of the present invention, the form of this database shown in can application table 1 stored address and the 2nd VPN configuration information of ID, the 2nd PE of this network website.
Table 1
| The ID of website | The 2nd VPN configuration information | The address of the 2nd PE |
In table 1, the address three of the ID of this network website, the 2nd VPN configuration information and the 2nd PE is corresponding.Wherein, the ID of website is used for identifying this website, and the 2nd VPN configuration information is the VPN configuration information of the 2nd PE, and the address of the 2nd PE can be the IP address of the 2nd PE.
In the embodiment of the present invention, the 2nd VPN configuration information is that the input RT of the 2nd PE and output are when RT, while determining the VPN configuration information matching with the 2nd VPN configuration information in above-mentioned 240, output RT using the input RT of this website in the 2nd VPN configuration information as a VPN configuration information, the input RT using the output RT of this website in the 2nd VPN configuration information as a VPN configuration information.When the 2nd VPN configuration information is VC ID, while determining the VPN configuration information matching with the 2nd VPN configuration information in above-mentioned 240, the value of the VC ID in a VPN configuration information is identical with the value of the VC ID in the 2nd VPN configuration information.
In the embodiment of the present invention, alternatively, connect while being positioned at the target VPC in this high in the clouds, can connect this target VPC by being positioned at the VCE in this high in the clouds.
For example, in the time connecting this target VPC by the VCE that is positioned at this high in the clouds, local parameter can be set and be connected with the VCE that is positioned at this high in the clouds to realize.In the method to set up of local parameter and above-mentioned 130, the method to set up of VCE parameter is similar, refers to.
As shown in Figure 4, in the embodiment of the present invention, alternatively, after above-mentioned 250, can also comprise:
260, receive ID and the second tunnel attribute information of this website of this high in the clouds transmission.
270, according to the address of the ID of this website, the 2nd PE and this second tunnel attribute information, upgrade the tunnel attribute between a PE and the 2nd PE, thereby upgrade the communication connection attribute of this target VPC and this website.
Like this, the communication connection of adjustment aim VPC and website in real time as required.
Particularly, the second tunnel attribute information can comprise two-way communication tunnel bandwidth value, and same, communication connection herein can be the communication connection of unidirectional tunnel or bidirectional tunnel, can be also the communication connection of bidirectional tunnel.
In the embodiment of the present invention, the first tunnel attribute information and the second tunnel attribute information can comprise the communication tunnel bandwidth value in website and high in the clouds.
The embodiment of the present invention, be positioned at the target VPC in high in the clouds by connection, receive ID and the first tunnel attribute information of the website of high in the clouds transmission, obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to the address of a VPN configuration information, the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, the communication connection between realize target VPC and website.Because ID and the first tunnel attribute information of website are sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
Fig. 5 shows a kind of application scenarios of the communication connecting method of the embodiment of the present invention, in Fig. 5, comprises website, carrier network and high in the clouds.Wherein website comprises website administration module and website customer edge (customer edge, CE), and wherein website administration module is loaded for detection of website, and sends message to high in the clouds; Website CE can be the egress router of website data center, and PE is connected with website.Carrier network comprises website PE, high in the clouds PE and database.Wherein website PE(the 2nd PE) for what provided by carrier network, for this website being linked into the access device (as router etc.) of the upper network of operation, website PE safeguards the contingency table of a form as shown in table 2.High in the clouds PE(the one PE) for what provided by carrier network, for high in the clouds being linked into the access device (as router etc.) of carrier network.High in the clouds PE safeguard one as show 3(and refer to following) as shown in the contingency table of form.Database is connected with high in the clouds PE, the information table of a form as shown in table 1 of database storage.High in the clouds comprises high in the clouds administration module, cloud gateway router (cloud gateway router, CGR) and public cloud, and wherein CGR can be the egress router in high in the clouds, PE is connected with high in the clouds.
Below take the application scenarios shown in Fig. 5 as example, describe the specific implementation process of the communication connecting method of the embodiment of the present invention in detail in conjunction with the interaction flow shown in Fig. 6, be to be understood that, Fig. 5 is only a kind of application scenarios of the embodiment of the present invention, be to understand the embodiment of the present invention for convenience and the exemplary illustrated done, should be considered as the restriction to the embodiment of the present invention.In addition, be connected to Layer 3VPN and be connected to example, but be not limited to this in Fig. 5 with VPN, for example, VPN connects and can also connect for Layer 2VPN.
In scene shown in Fig. 5, realize before website and high in the clouds communication connection, website is to the ID of operator's registered network website, and the ID of website is for distinguishing different websites.On website PE, set up a VPN instance, the upper configuration input RT of website PE and output RT(configuration information), and the input RT and output RT(the 2nd VPN configuration information that in the database of carrier network, adopt the form shown in table 1 to preserve to configure on ID, the website PE of website) and the address of website PE.In the contingency table of the form as shown in table 2 of safeguarding at website PE, record the ID of website and corresponding website VPN ID, Tunnel(tunnel before setting up tunnel and connecting) ID is for empty, after setting up tunnel and connecting, Tunnel ID is recorded in table 2 to (referring to the method that obtains the tunnel ID of reverse tunnel in following Fig. 6 in 507).
Table 2
| The ID of website | Website VPN ID | Tunnel ID |
In table 2, the ID of website, website VPN ID, TunnelID three are corresponding.
The bidirectional tunnel of mentioning in the embodiment of the present invention comprises forward tunnel and reverse tunnel, high in the clouds PE(the one PE) to website PE(the 2nd PE) tunnel be forward tunnel, website PE is reverse tunnel to the tunnel of high in the clouds PE.
Fig. 6 is the information interaction schematic diagram of realizing communication connection in Fig. 5 scene, comprising:
501, high in the clouds administration module receives the connection request message (the first request message) that website administration module sends, connection request message comprise create VPC(target VPC) request, ID and the bidirectional tunnel bandwidth value (the first tunnel attribute information) of website, high in the clouds administration module creates a VPC(target VPC according to the request that creates VPC).
For example, can in connection request message, add an indication field, mark creates the request of VPC, and indication high in the clouds creates VPC.
Wherein, connection request message is sent during higher than the first load at the load of website automatically by website, and bidirectional tunnel bandwidth value comprises forward tunnel bandwidth value and reverse tunnel bandwidth value.
502, high in the clouds administration module sends ID and the bidirectional tunnel bandwidth value of website to CGR.
503, CGR creates the VCE corresponding with VPC, and connects high in the clouds PE by VCE.
Now, high in the clouds PE is also connected with VCE.
504, CGR sends ID and the bidirectional tunnel bandwidth value of website to high in the clouds PE.
Particularly, CGR can be carried on the ID of website and bidirectional tunnel bandwidth in extending boundary gateway protocol (Border Gateway Protocol, BGP) update signaling attribute and send to high in the clouds PE.
505, the ID of high in the clouds PE application network website obtains the address of input RT and output RT and the website PE of website PE configuration to database.
506, the input RT of high in the clouds PE application network website PE configuration and output RT(the one VPN configuration information) set up VPN instance, generate high in the clouds VPN ID, VCE is docked with this VPN instance, and record ID and the high in the clouds VPN ID of website in the contingency table (as shown in table 3) that PE safeguards beyond the clouds, in table 3, Tunnel(tunnel) ID hurdle is vacant, after following 507 determine Tunnel ID, deposits in table.
Table 3
| The ID of website | High in the clouds VPN ID | Tunnel ID |
In table 3, the ID of website, high in the clouds VPN ID, Tunnel ID three are corresponding.
507, bidirectional tunnel connection is initiated to website PE in the address of high in the clouds PE application network website PE, and applies two-way bandwidth value and determine two-way bandwidth.
Wherein, bidirectional tunnel comprises forward tunnel (high in the clouds PE is to website PE) and reverse tunnel (website PE is to high in the clouds PE), and correspondingly, bidirectional tunnel bandwidth value comprises forward tunnel bandwidth value and reverse tunnel bandwidth value.For example, high in the clouds PE creates forward tunnel, creating behind forward tunnel, obtain the tunnel ID in forward tunnel, be recorded in the list item that in the contingency table (table 3) that high in the clouds PE safeguards, the ID of this website is corresponding, PE creates after the information arrival website PE in forward tunnel beyond the clouds, trigger network website PE creates reverse tunnel, creating after reverse tunnel, website PE obtains the tunnel ID of reverse tunnel, is recorded in the list item that in the contingency table (table 2) that website PE safeguards, the ID of this website is corresponding.
The ID of the website in the contingency table (table 3) that 508, high in the clouds PE safeguards according to high in the clouds PE, by the tunnel ID in forward tunnel and high in the clouds VPN ID binding.
The ID of the website in the contingency table (table 2) that 509, website PE safeguards according to website PE, by the tunnel ID of reverse tunnel and website VPN ID binding.
Should be appreciated that the embodiment of the present invention also can initiate unidirectional tunnel connect, concrete methods of realizing can please refer to above-mentioned bidirectional tunnel method of attachment, repeats no more.
So far, realize the communication connection of the data center of VPC and website.
In addition in the embodiment of the present invention, between PE and website PE, set up beyond the clouds after bidirectional tunnel is connected, can also, according to the request of website, upgrade bidirectional tunnel by the bandwidth value of new bidirectional tunnel and connect.Refer to Fig. 7, comprising:
601, high in the clouds administration module is received the update request message (the second request message) that website administration module sends, and update request message comprises upgrades the request (upgrading the request of communication connection) of bidirectional tunnel, ID and the bidirectional tunnel bandwidth value (the second tunnel attribute information) of website.
For example, can in update request message, add an indication field, the request of identification renewal bidirectional tunnel, bidirectional tunnel is upgraded in indication high in the clouds.When update request message detects that by website tunnel bandwidth need to change, send, or sent according to instruction by website, bidirectional tunnel bandwidth value can comprise forward tunnel bandwidth value and reverse tunnel bandwidth value.
Receive after the request of bidirectional tunnel bandwidth, carry out 602.
602, high in the clouds administration module sends ID and the bidirectional tunnel bandwidth value of website to CGR.
603, CGR sends ID and the bidirectional tunnel bandwidth value of website to high in the clouds PE.
CGR can be carried on the ID of website and bidirectional tunnel bandwidth value expansion BGP update signaling attribute and sends to high in the clouds PE equally, herein.
604, high in the clouds PE inquires the tunnel ID in the forward tunnel that the ID of this website is corresponding in the contingency table (table 3) of local maintenance according to the ID of website, changes the bandwidth in forward tunnel by the forward tunnel bandwidth value in bidirectional tunnel bandwidth value.
605, the ID of website and reverse tunnel bandwidth value are sent to website PE by high in the clouds PE.
Particularly, high in the clouds PE can pass through extended resources reservation protocol flow engineering (Resource Reservation Protocol-Traffic Engineering, RSVP-TE) signaling and carry ID and the reverse tunnel bandwidth value of website and send to website PE.
606, the ID of website PE by website inquire about the tunnel ID of the reverse tunnel that the ID of the website of storing is corresponding in the contingency table (table 2) of local maintenance, by the bandwidth of reverse tunnel bandwidth value change reverse tunnel.
So far, realizing renewal high in the clouds PE is connected with the bidirectional tunnel between website PE.
The embodiment of the present invention, website sends the request that creates VPC from trend high in the clouds, the ID of website and bidirectional tunnel bandwidth value, high in the clouds creates target VPC according to the request that creates VPC, linking objective VPC and high in the clouds PE, send ID and the first tunnel attribute information of website to high in the clouds PE, high in the clouds PE obtains the address of input RT and output RT and the 2nd PE of website PE configuration according to the ID of website, and set up VPN according to the input RT of website PE configuration and output RT, and according to VPN, the address of website PE and bidirectional tunnel bandwidth value, foundation is connected with the VPN between website PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.In addition, the embodiment of the present invention communication connection of adjustment aim VPC and website in real time as required.
As shown in Figure 8, the embodiment of the present invention provides a kind of high in the clouds device, and this device can comprise: the first receiver module 810, and creation module 820, link block 830, the first sending modules 840, wherein:
The first receiver module 810, the first request message sending during higher than the first load at the load of website for receiving website, the first request message comprises the request of VPC that creates, ID and the first tunnel attribute information of website.
The first sending module 840, for send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, thereby the communication connection between realize target VPC and website, the 2nd VPN configuration information is the VPN configuration information of the 2nd PE, the access device that the 2nd PE is website.
Preferably, as shown in Figure 9, link block 830 can comprise:
Creating unit 831, for creating the VCE corresponding with target VPC;
Linkage unit 832, for connecting a PE by this VCE.
Preferably, as shown in figure 10, the another kind of high in the clouds device of the embodiment of the present invention can also comprise: the second receiver module 850, the second sending module 860, wherein:
The second receiver module 850, the second request message sending for receiving website, the second request message comprises the ID of the request, the second tunnel attribute information and the website that upgrade communication connection.
The second sending module 860, for determining that according to the request of upgrading communication connection website need upgrade after communication connection, send the ID of the second tunnel attribute information and website to a PE, make a PE according to the address of the ID of website, the 2nd PE and the second tunnel attribute information, upgrade the tunnel attribute between a PE and the 2nd PE, thus the communication connection attribute of fresh target VPC and website more.
Like this, the communication connection of adjustment aim VPC and website in real time as required.
The composition module of the high in the clouds device of the embodiment of the present invention can be distributed among different equipment, also can be integrated among same equipment, multiple modules can merge use, and individual module also can use also and can discretely use, and can realize function separately.For example, the high in the clouds administration module that the first receiver module 810 and creation module 820 can be merged in Fig. 5 is realized corresponding function.In the device of above-mentioned high in the clouds, the function of each module is only done concise and to the point description, describes the embodiment that refers to above-mentioned communication connecting method 100 in detail, and above-mentioned high in the clouds device can be carried out corresponding step in above-mentioned communication connecting method 100 embodiment in addition.
The high in the clouds device of the embodiment of the present invention receives the request that creates VPC that comprises of the automatic transmission of website, the request message of the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
As shown in figure 11, the embodiment of the present invention provides a kind of communicator, and this device can comprise: the first link block 910, the first receiver modules 920, and acquisition module 930, determination module 940, the second link blocks 950, wherein:
The first link block 910, for connecting the target VPC that is positioned at high in the clouds.
The first receiver module 920, ID and the first tunnel attribute information of website sending for receiving high in the clouds, the ID of website and the first tunnel attribute information are sent during higher than the first load at the load of the data center of website by website.
The second link block 950, for according to the address of a VPN configuration information, the 2nd PE and the first tunnel attribute information, set up with the 2nd PE between VPN be connected and tunnel connection, thereby the communication connection between realize target VPC and website.
Preferably, acquisition module 930 specifically for, the ID of application network website, to the address of data base querying the 2nd VPN configuration information and the 2nd PE, prestore corresponding the 2nd address of PE and the 2nd VPN configuration information corresponding to the ID of website of ID of website of database.
Preferably, as shown in figure 12, the another kind of high in the clouds device of the embodiment of the present invention can also comprise: the second receiver module 960, the 3rd link block 970, wherein:
The second receiver module 960, ID and the second tunnel attribute information of website sending for receiving high in the clouds.
The 3rd link block 970, for according to the address of the ID of website, the 2nd PE and the second tunnel attribute information, upgrades the tunnel attribute between a PE and the 2nd PE, thus the communication connection attribute of fresh target VPC and website more.
Preferably, above-mentioned the first receiver module is by being positioned at the VCE linking objective VPC in high in the clouds.
The communicator of the embodiment of the present invention can be for having the network equipment of routing function, as router etc.In addition, the composition module of this communicator can be distributed among different equipment, also can be integrated among same equipment, and multiple modules can merge use, and individual module also can use also and can discretely use, and can realize function separately.
In above-mentioned communicator, the function of each module is only done concise and to the point description, describes the embodiment that refers to above-mentioned communication connecting method 200 in detail, and above-mentioned communicator can be carried out corresponding step in above-mentioned communication connecting method 200 embodiment in addition.
The communicator of the embodiment of the present invention, be positioned at the target VPC in high in the clouds by connection, receive ID and the first tunnel attribute information of the website of high in the clouds transmission, obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to the address of a VPN configuration information, the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, the communication connection between realize target VPC and website.Because ID and the first tunnel attribute information of website are sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
As shown in figure 13, the embodiment of the present invention provides a kind of communication system, comprising: high in the clouds device S1 and communicator S2, wherein:
High in the clouds device S1 can be for, receives the first request message that website sends during higher than the first load at the load of website, and the first request message comprises the request of VPC that creates, mark ID and the first tunnel attribute information of website, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, and according to the definite VPN configuration information matching with the 2nd VPN configuration information of the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, thereby the communication connection between realize target VPC and website, the 2nd VPN configuration information is the VPN configuration information of the 2nd PE, the access device that the 2nd PE is website.
Communicator S2 can be for, connects the target VPC that is positioned at high in the clouds; Receive ID and the first tunnel attribute information of website that high in the clouds sends, the ID of described website and described the first tunnel attribute information are sent during higher than the first load at the load of described website by described website; Obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website; Determine the VPN configuration information matching with described the 2nd VPN configuration information according to described the 2nd VPN configuration information; According to the address of a described VPN configuration information, described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website.
Particularly, the composition module of this high in the clouds equipment S1, and the concrete function of each module is identical with the high in the clouds device of the above-mentioned real embodiment of the present invention, refers to.The composition module of this communicator S2, and the concrete function of each module is identical with the communicator of the above-mentioned real embodiment of the present invention, refers to.
The communication system of the embodiment of the present invention, high in the clouds device receives the website request of the establishment VPC of transmission automatically, the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
As shown in figure 14, the embodiment of the present invention also provides a kind of high in the clouds device, and this device can comprise: bus 144 and be connected to interface 141, processor 142, the memory 143 of bus 144, wherein:
The first request message that interface 141 sends during higher than the first load at the load of website for receiving website, the first request message comprises the request of VPC that creates, ID and the first tunnel attribute information of website;
Preferably, the instruction in processor 142 execute stores 143 is used for connecting VPC and a PE comprises: create the VCE corresponding with target VPC; Connect a PE by VCE.
Preferably, the second request message that the instruction in processor 142 execute stores 143 also sends for receiving website, the second request message comprises the ID of the request, the second tunnel attribute information and the website that upgrade communication connection; Determine that according to the request of upgrading communication connection website need upgrade after communication connection, send the ID of the second tunnel attribute information and website to a PE, make a PE according to the address of the ID of website, the 2nd PE and the second tunnel attribute information, upgrade the tunnel attribute between a PE and the 2nd PE, thus the communication connection attribute of fresh target VPC and website more.
The high in the clouds device of the embodiment of the present invention receives the request that creates VPC that comprises of the automatic transmission of website, the request message of the ID of website and the first tunnel attribute information, create target VPC according to the request that creates VPC, linking objective VPC and a PE, send ID and the first tunnel attribute information of website to a PE, make a PE obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to a VPN configuration information, the address of the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, communication connection between realize target VPC and website.Because request message is sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
As shown in figure 15, the embodiment of the present invention also provides a kind of communicator, and this device can comprise: bus 154 and be connected to interface 151, processor 152, the memory 153 of bus 154, wherein:
ID and the first tunnel attribute information of website that interface 151 sends for receiving high in the clouds, the ID of website and the first tunnel attribute information are sent during higher than the first load at the load of website by website;
Preferably, instruction in processor 152 execute stores 153 comprises for the address that obtains the 2nd VPN configuration information and the 2nd PE according to the ID of website: the ID of application network website, to the address of data base querying the 2nd VPN configuration information and the 2nd PE, prestore corresponding the 2nd address of PE and the 2nd VPN configuration information corresponding to the ID of website of ID of website of database.
Preferably, ID and the second tunnel attribute information of website that the instruction in processor 152 execute stores 153 also sends for receiving high in the clouds; According to the address of the ID of website, the 2nd PE and the second tunnel attribute information, upgrade the tunnel attribute between a PE and the 2nd PE, thus the communication connection attribute of fresh target VPC and website more.
Preferably, the instruction in processor 152 execute stores 153 comprises for connecting the target VPC that is positioned at high in the clouds: by being positioned at the VCE linking objective VPC in high in the clouds.
The communicator of the embodiment of the present invention, be positioned at the target VPC in high in the clouds by connection, receive ID and the first tunnel attribute information of the website of high in the clouds transmission, obtain the address of the 2nd VPN configuration information and the 2nd PE according to the ID of website, an and VPN configuration information that obtains matching according to the 2nd VPN configuration information, and according to the address of a VPN configuration information, the 2nd PE and the first tunnel attribute information, foundation is connected with the VPN between the 2nd PE and tunnel connects, the communication connection between realize target VPC and website.Because ID and the first tunnel attribute information of website are sent automatically by website, therefore can realize according to the needs of website and establishing a communications link in time, thereby can improve joint efficiency.
It should be noted that: the data sending device that above-described embodiment provides and data sink, in the time of statement, only be illustrated with the division of above-mentioned each functional module, in practical application, can above-mentioned functions be distributed and completed by different functional modules as required, be divided into the functional module of putting through by the internal structure of equipment, to complete above-mentioned all or part of function.In addition, the device that above-described embodiment provides belongs to same design with corresponding method, and its specific implementation process refers to embodiment of the method, repeats no more here.
One of ordinary skill in the art will appreciate that all or part of step that realizes above-described embodiment can complete by hardware, also can carry out the hardware that instruction is relevant by program completes, described program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium of mentioning can be read-only memory, disk or CD etc.
Each embodiment in this specification all adopts the mode of going forward one by one to describe, the identical similar part of each embodiment mutually referring to, what each embodiment stressed is and the difference of other embodiment.Especially,, for device embodiment, because it is substantially similar in appearance to embodiment of the method, so describe fairly simplely, relevant part is referring to the part explanation of embodiment of the method.Device embodiment described above is only schematic, the wherein said unit as separating component explanation can or can not be also physically to separate, the parts that show as unit can be or can not be also physical locations, can be positioned at a place, or also can be distributed in multiple network element.Can select according to the actual needs some or all of module wherein to realize the object of the present embodiment scheme.Those of ordinary skills, in the situation that not paying creative work, are appreciated that and implement.
Those of ordinary skills can recognize, unit and the algorithm steps of each example of describing in conjunction with embodiment disclosed herein, can realize with the combination of electronic hardware or computer software and electronic hardware.These functions are carried out with hardware or software mode actually, depend on application-specific and the design constraint of technical scheme.Professional and technical personnel can realize described function with distinct methods to each specifically should being used for, but this realization should not thought and exceeds scope of the present invention.
Those skilled in the art can be well understood to, and for convenience and simplicity of description, the specific works process of the system of foregoing description, device and unit, can, with reference to the corresponding process in preceding method embodiment, not repeat them here.
In the several embodiment that provide in the application, should be understood that disclosed system, apparatus and method can realize by another way.For example, device embodiment described above is only schematic, for example, the division of described unit, be only that a kind of logic function is divided, when actual realization, can have other dividing mode, for example multiple unit or assembly can in conjunction with or can be integrated into another system, or some features can ignore, or do not carry out.Another point, shown or discussed mutual coupling or direct-coupling or communication connection can be by some interfaces, indirect coupling or the communication connection of device or unit can be electrically, machinery or other form.
The described unit as separating component explanation can or can not be also physically to separate, and the parts that show as unit can be or can not be also physical locations, can be positioned at a place, or also can be distributed in multiple network element.Can select according to the actual needs some or all of unit wherein to realize the object of the present embodiment scheme.
In addition, the each functional unit in each embodiment of the present invention can be integrated in a processing unit, can be also that the independent physics of unit exists, and also can be integrated in a unit two or more unit.
If described function realizes and during as production marketing independently or use, can be stored in a computer read/write memory medium using the form of SFU software functional unit.Based on such understanding, the part that technical scheme of the present invention contributes to prior art in essence in other words or the part of this technical scheme can embody with the form of software product, this computer software product is stored in a storage medium, comprise that some instructions (can be personal computers in order to make a computer equipment, server, or the network equipment etc.) carry out all or part of step of method described in each embodiment of the present invention.And aforesaid storage medium comprises: various media that can be program code stored such as USB flash disk, portable hard drive, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CDs.
Through the above description of the embodiments, those skilled in the art can be well understood to the mode that the present invention can add essential common hardware by software and realize, common hardware comprises universal integrated circuit, universal cpu, general-purpose storage, universal elements etc., can certainly comprise that application-specific integrated circuit (ASIC), dedicated cpu, private memory, special components and parts etc. realize by specialized hardware, but in a lot of situation, the former is better execution mode.Based on such understanding, the part that technical scheme of the present invention contributes to prior art in essence in other words can embody with the form of software product, this computer software product is stored in the storage medium can read, as the floppy disk of computer, hard disk or CD etc., comprise that some instructions are in order to make a computer equipment (can be personal computer, server, or the network equipment etc.) carry out the method for each embodiment of the present invention.
These are only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (15)
1. a communication connecting method, is characterized in that, comprising:
Receive the first request message that website sends during higher than the first load at the load of described website, described the first request message comprises the request of virtual private cloud VPC, mark ID and the first tunnel attribute information of described website of creating;
Create target VPC according to the request of described establishment VPC;
Connect described target VPC and the first provider edge equipment PE;
Send ID and the described first tunnel attribute information of described website to a described PE, make a described PE obtain the address of the second virtual private network configuration information and the 2nd PE according to the ID of described website, and according to the definite VPN configuration information matching with described the 2nd VPN configuration information of described the 2nd VPN configuration information, and according to a described VPN configuration information, the address of described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website.
2. method according to claim 1, is characterized in that, the described target VPC of described connection and the first provider edge equipment PE comprise:
Create the Virtual User edge device VCE corresponding with described target VPC;
Connect a described PE by described VCE.
3. method according to claim 1 and 2, is characterized in that, also comprises:
Receive the second request message that described website sends, described the second request message comprises the ID of the request, the second tunnel attribute information and the described website that upgrade communication connection;
Determine that according to the request of described renewal communication connection described website need upgrade after communication connection, send the ID of described the second tunnel attribute information and described website to a described PE, make a described PE according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
4. a communication connecting method, is characterized in that, comprising:
Connect the target virtual private cloud VPC that is positioned at described high in the clouds;
Receive mark ID and the first tunnel attribute information of website that high in the clouds sends, the ID of described website and described the first tunnel attribute information are sent during higher than the first load at the load of described website by described website;
Obtain the address of the second virtual private network configuration information and the second provider edge equipment PE according to the ID of described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website;
Determine the VPN configuration information matching with described the 2nd VPN configuration information according to described the 2nd VPN configuration information;
According to the address of a described VPN configuration information, described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website.
5. method according to claim 4, is characterized in that, the address that the described ID according to described website obtains the 2nd VPN configuration information and the 2nd PE comprises:
Apply the ID of described network website, to the address of the 2nd VPN configuration information and described the 2nd PE described in data base querying, prestore corresponding described the 2nd address of PE and described the 2nd VPN configuration information corresponding to the ID of described website of ID of described website of described database.
6. according to the method described in claim 4 or 5, it is characterized in that, also comprise:
Receive ID and the second tunnel attribute information of the described website of described high in the clouds transmission;
According to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
7. method according to claim 4, is characterized in that, described connection is positioned at the target virtual private cloud VPC in described high in the clouds, comprising:
Connect described target VPC by the Virtual User edge device VCE that is positioned at described high in the clouds.
8. a high in the clouds device, is characterized in that, comprising:
The first receiver module, the first request message sending during higher than the first load at the load of described website for receiving website, described the first request message comprises the request of virtual private cloud VPC, mark ID and the first tunnel attribute information of described website of creating;
Creation module, for creating target VPC according to the request of described establishment VPC;
Link block, for connecting described target VPC and the first provider edge equipment PE;
The first sending module, for send ID and the described first tunnel attribute information of described website to a described PE, make a described PE obtain the address of the second virtual private network configuration information and the 2nd PE according to the ID of described website, and according to the definite VPN configuration information matching with described the 2nd VPN configuration information of described the 2nd VPN configuration information, and according to a described VPN configuration information, the address of described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website.
9. device according to claim 8, is characterized in that, described link block comprises:
Creating unit, for creating the Virtual User edge device VCE corresponding with described target VPC;
Linkage unit, for connecting a described PE by described VCE.
10. device according to claim 8 or claim 9, is characterized in that, also comprises:
The second receiver module, the second request message sending for receiving described website, described the second request message comprises the ID of the request, the second tunnel attribute information and the described website that upgrade communication connection;
The second sending module, for determining that according to the request of described renewal communication connection described website need upgrade after communication connection, send the ID of described the second tunnel attribute information and described website to a described PE, make a described PE according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
11. 1 kinds of communicators, is characterized in that, comprising:
The first link block, for connecting the target virtual private cloud VPC that is positioned at high in the clouds;
The first receiver module, for receiving mark ID and the first tunnel attribute information of the website that described high in the clouds sends, the ID of described website and described the first tunnel attribute information are sent during higher than the first load at the load of described website by described website;
Acquisition module, for the address that obtains the second virtual private network configuration information and the second provider edge equipment PE according to the ID of described website, described the 2nd VPN configuration information is the VPN configuration information of described the 2nd PE, the access device that described the 2nd PE is described website;
Determination module, for determining the VPN configuration information matching with described the 2nd VPN configuration information according to described the 2nd VPN configuration information;
The second link block, be used for according to the address of a described VPN configuration information, described the 2nd PE and described the first tunnel attribute information, foundation is connected with the VPN between described the 2nd PE and tunnel connects, thereby realize the communication connection between described target VPC and described website.
12. devices according to claim 11, it is characterized in that, described acquisition module specifically for, apply the ID of described network website, to the address of the 2nd VPN configuration information and described the 2nd PE described in data base querying, prestore corresponding described the 2nd address of PE and described the 2nd VPN configuration information corresponding to the ID of described website of ID of described website of described database.
13. according to the device described in claim 11 or 12, it is characterized in that, also comprises:
The second receiver module, for receiving ID and the second tunnel attribute information of the described website that described high in the clouds sends;
The 3rd link block, be used for according to the address of the ID of described website, described the 2nd PE and described the second tunnel attribute information, upgrade the tunnel attribute between a described PE and described the 2nd PE, thereby upgrade the communication connection attribute of described target VPC and described website.
14. devices according to claim 11, is characterized in that, described the first link block specifically for, connect described target VPC by the Virtual User edge device VCE that is positioned at described high in the clouds.
15. 1 kinds of communication systems, is characterized in that, comprise the high in the clouds device as described in any one in claim 8-10 and the communicator as described in any one in claim 11-14.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210401104.4A CN103780467B (en) | 2012-10-19 | 2012-10-19 | communication connection method, communication device and communication system |
| PCT/CN2013/075605 WO2014059787A1 (en) | 2012-10-19 | 2013-05-14 | Communication connection method, communication device and communication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210401104.4A CN103780467B (en) | 2012-10-19 | 2012-10-19 | communication connection method, communication device and communication system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103780467A true CN103780467A (en) | 2014-05-07 |
| CN103780467B CN103780467B (en) | 2017-04-26 |
Family
ID=50487518
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210401104.4A Active CN103780467B (en) | 2012-10-19 | 2012-10-19 | communication connection method, communication device and communication system |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN103780467B (en) |
| WO (1) | WO2014059787A1 (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105721306A (en) * | 2016-02-04 | 2016-06-29 | 杭州数梦工场科技有限公司 | Configuration information transmission method and device |
| WO2016107261A1 (en) * | 2014-12-31 | 2016-07-07 | 华为技术有限公司 | Method for accessing vpn service, and network device |
| CN105791073A (en) * | 2014-12-23 | 2016-07-20 | 华为技术有限公司 | Service deployment method and device in virtual network |
| CN107078951A (en) * | 2014-11-21 | 2017-08-18 | 思科技术公司 | From virtual port channel peer-to-peer fault recovery |
| CN107872542A (en) * | 2016-09-27 | 2018-04-03 | 阿里巴巴集团控股有限公司 | The method and the network equipment of a kind of data transfer |
| CN108900637A (en) * | 2018-08-08 | 2018-11-27 | 北京百度网讯科技有限公司 | Method for transmitting information and device |
| CN113098749A (en) * | 2020-01-08 | 2021-07-09 | 华为技术有限公司 | Message sending method, device and storage medium |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111740893B (en) * | 2020-06-30 | 2022-02-11 | 成都卫士通信息产业股份有限公司 | Method, device, system, medium and equipment for realizing software-defined VPN |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102137008B (en) * | 2011-01-24 | 2013-08-07 | 华为技术有限公司 | Quality of service (QoS) keeping method, device and system |
| WO2011103840A2 (en) * | 2011-04-19 | 2011-09-01 | 华为技术有限公司 | Virtual private cloud connection method and tunnel proxy server |
| CN102387061B (en) * | 2011-10-21 | 2014-05-07 | 华为技术有限公司 | Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network) |
-
2012
- 2012-10-19 CN CN201210401104.4A patent/CN103780467B/en active Active
-
2013
- 2013-05-14 WO PCT/CN2013/075605 patent/WO2014059787A1/en active Application Filing
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107078951A (en) * | 2014-11-21 | 2017-08-18 | 思科技术公司 | From virtual port channel peer-to-peer fault recovery |
| CN107078951B (en) * | 2014-11-21 | 2020-09-29 | 思科技术公司 | Channel peer failure recovery from virtual ports |
| US10819563B2 (en) | 2014-11-21 | 2020-10-27 | Cisco Technology, Inc. | Recovering from virtual port channel peer failure |
| CN105791073A (en) * | 2014-12-23 | 2016-07-20 | 华为技术有限公司 | Service deployment method and device in virtual network |
| CN105791073B (en) * | 2014-12-23 | 2019-07-19 | 华为技术有限公司 | The method and apparatus of service deployment in a kind of virtualization network |
| US11038777B2 (en) | 2014-12-23 | 2021-06-15 | Huawei Technologies Co., Ltd. | Method and apparatus for deploying service in virtualized network |
| WO2016107261A1 (en) * | 2014-12-31 | 2016-07-07 | 华为技术有限公司 | Method for accessing vpn service, and network device |
| CN105721306A (en) * | 2016-02-04 | 2016-06-29 | 杭州数梦工场科技有限公司 | Configuration information transmission method and device |
| CN105721306B (en) * | 2016-02-04 | 2019-03-15 | 杭州数梦工场科技有限公司 | A kind of transmission method and device of configuration information |
| CN107872542A (en) * | 2016-09-27 | 2018-04-03 | 阿里巴巴集团控股有限公司 | The method and the network equipment of a kind of data transfer |
| CN108900637A (en) * | 2018-08-08 | 2018-11-27 | 北京百度网讯科技有限公司 | Method for transmitting information and device |
| CN113098749A (en) * | 2020-01-08 | 2021-07-09 | 华为技术有限公司 | Message sending method, device and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103780467B (en) | 2017-04-26 |
| WO2014059787A1 (en) | 2014-04-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103780467A (en) | Communication connection method, communication device and communication system | |
| EP3163975B1 (en) | Configuration information management method, device, network element management system and storage medium | |
| CN103095543B (en) | The method and apparatus of VPN (virtual private network) docking between territory | |
| WO2017113201A1 (en) | Network service lifecycle management method and device | |
| US20160173329A1 (en) | Methods, systems, and computer readable media for configuring a flow interface on a network routing element | |
| CN104636184A (en) | Deploying method, device and equipment of instances of virtual machine | |
| US9201702B2 (en) | Integrated cloud data center management | |
| CN102638455B (en) | Method and device for processing network element object information in three-dimensional (3D) topology view | |
| CN109039788B (en) | Port configuration method and device of network equipment and storage medium | |
| CN103475722A (en) | Implement system for business collaboration platform | |
| CN104104534A (en) | Realization method of virtual network (VN) management and virtual network management system | |
| CN102882908A (en) | Cloud computing management system and cloud computing management method | |
| CN103414626A (en) | Message processing method and device based on network virtualization | |
| CN103475726A (en) | Virtual desktop management method, server and client side | |
| CN103326887B (en) | A kind of interface managerial method and system | |
| CN109120444B (en) | Cloud resource management method, processor and storage medium | |
| US10992526B1 (en) | Hyper-converged infrastructure networking configuration system | |
| CN105095103A (en) | Storage device management method and device used for cloud environment | |
| CN106155264A (en) | The computer approach of the power consumption of management storage subsystem and computer system | |
| CN105684355A (en) | Automatically configuring virtual router | |
| CN103916320A (en) | Method and device for message processing after cross-network relocation of VM device | |
| US10778536B1 (en) | Ring connection chart for network orchestration | |
| CN105812221A (en) | Data transmission device and method in virtual extensible local area network | |
| CN104022896A (en) | Configuration management method and device and network equipment | |
| CN103684838A (en) | A method, an apparatus, a system for configuring a network strategy of a virtual machine |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |