CN105162639A - Virtual network fault positioning device based on Kernel-based virtual machine (KVM) - Google Patents
Virtual network fault positioning device based on Kernel-based virtual machine (KVM) Download PDFInfo
- Publication number
- CN105162639A CN105162639A CN201510650972.XA CN201510650972A CN105162639A CN 105162639 A CN105162639 A CN 105162639A CN 201510650972 A CN201510650972 A CN 201510650972A CN 105162639 A CN105162639 A CN 105162639A
- Authority
- CN
- China
- Prior art keywords
- layer
- data
- virtual network
- virtual
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a virtual network fault positioning device based on a KVM. The virtual network fault positioning device comprises a virtual network layer, a task scheduling layer, an information collection layer and a data analysis layer, wherein the virtual network layer is composed of a plurality of virtual sets; the task scheduling layer presets collection indexes and an information collection mode and triggers an information collection button; based on the trigger instruction of the task scheduling layer, the information collection layer carries out key data information collection from a hardware level, an OS level and a virtual network level of a physical host; and the data analysis layer screens, arranges and confirms original information data returned by the information collection layer and finally arranges items influencing network performance and business. According to the invention, the task scheduling layer, the information collection layer and the data analysis layer are arranged for collecting and analyzing data of the virtual network layer, so that abnormal problems of the virtual network based on the KVM can be rapidly positioned, the large amount of time for problem checking and positioning is saved, and the working efficiency of operation maintenance and management is substantially improved.
Description
Technical field
The present invention relates to a kind of network failure positioner, particularly relate to the virtual network fault locator under a kind of KVM.
Background technology
For the analytical method of virtual network business connectivity problem under KVM (Kernel-basedVirtualMachine) be at present, the concrete symptom of virtual machine and the problem thereof gone wrong first is determined by business and system side, then the physical machine finding out virtual machine place carries out the investigation of system aspects, again relevant investigation result is turned and tell network O&M personnel, and authorize the problem that associated rights gives in login investigation virtual network that network O&M personnel carry out physical host.Finally by obtained information integration analysis, show that most possible property affects the reason of operation system connectedness.
The major defect of prior art is as follows: 1, under KVM virtual environment, system is coupled with network, and the analysis investigation of problem is limited to the distribution of authority; 2, fault point is often distributed in many levels, cannot carry out quick position, to such an extent as to extend the influenced time; 3, under KVM, the complexity of virtual network is different from legacy network, problem is investigated more complicated.
Summary of the invention
Technical problem to be solved by this invention is to provide the virtual network fault locator under a kind of KVM, can the abnormal problem of virtual network under quick position to KVM, avoid trouble-shoots to locate the plenty of time spent, thus improve the operating efficiency of operation management.
The present invention be solve the problems of the technologies described above the technical scheme adopted be to provide a kind of KVM under virtual network fault locator, comprise virtual net network layers: formed by multiple virtual machine networking; Task scheduling layer: predetermined acquisition index and information gathering mode, and trigger message gathers button; Information gathering layer: the triggering command of task based access control dispatch layer from the hardware view of physical host, OS aspect, virtual network level carries out critical data information gathering; Data analysis layer: the original information data returned information gathering layer, carries out screening, arranges, confirms, finally arrange out the bar item affecting network performance and business.
Virtual network fault locator under above-mentioned KVM, wherein, the critical data information gathering of described hardware view comprises: whether normally gather the network interface card of main frame, virtual switch, Microsoft Loopback Adapter and port status; The critical data information gathering of described OS aspect comprises: the ruuning situation gathering service application, and whether secure group is normal; The critical data information gathering of described network level comprises: collection network link, data cube computation situation, data queue, MAC address learning, and whether packet loss time delay is normal.
Virtual network fault locator under above-mentioned KVM, wherein, after described information gathering layer receives the triggering command of task scheduling layer, association requests index is converted to operating system command carries out data collection to target area, and by checking that configuration file and network service running status carry out original information data collection, for virtual machine access exception fault, the original information data gathered comprises: incoming interface state, outgoing interface state, whether destination host survives, whether destination host service activates, whether fire compartment wall is tackled, whether virtual switch running is normal.
Virtual network fault locator under above-mentioned KVM, wherein, source IP address port, target ip address port information that described data analysis layer is initially specified according to firewall security rule and operation maintenance personnel travel through the original information data collected, one or more data message affect network performance and business is found out in screening, and the data message after traversal being screened is converted to relevant warning information and carries out intuitive manner.
The present invention contrasts prior art following beneficial effect: the virtual network fault locator under KVM provided by the invention, by arranging task scheduling layer, information gathering layer and data analysis layer, collection analysis is carried out to the data of virtual net network layers, thus can the abnormal problem of virtual network under quick position to KVM, avoid trouble-shoots to locate the plenty of time spent, greatly improve the operating efficiency of operation management.
Accompanying drawing explanation
Fig. 1 is the virtual network fault locator configuration diagram under KVM of the present invention.
Embodiment
Below in conjunction with drawings and Examples, the invention will be further described.
Fig. 1 is the virtual network fault locator configuration diagram under KVM of the present invention.
Refer to Fig. 1, the virtual network fault locator under KVM provided by the invention, comprise virtual net network layers, task scheduling layer, information gathering layer and data analysis layer; Wherein task scheduling layer is used for the level initialization health examination task to subordinate.Information gathering layer is for collecting the health condition of leading to property of virtual machine key business and virtual network.Data analysis layer carries out analyzing to determine abnormal problem Producing reason based on the information that information gathering layer is collected.Each level effect, hierarchical relationship are as follows:
Task scheduling layer: task scheduling layer is the most top layer (beginning) of whole architecture, it is the button of trigger message acquisition layer, for the healthy acquisition index of information gathering layer preparation standard set, simultaneously for operation management personnel provide the self-defined information acquisition mode of Suresh Kumar.
Information gathering layer: information gathering layer is the bridge between task scheduling layer and data analysis layer, and mainly task based access control regulation index is from the hardware view of physical host, OS aspect, and virtual network level carries out critical data information gathering.
Hardware view: whether normally gather the states such as the network interface card of main frame, virtual switch (Bridge), Microsoft Loopback Adapter and port;
OS aspect: the ruuning situation of service application, whether the situations such as secure group (Iptables) are normal;
Network level: network link, data cube computation situation, data queue, MAC address learning, whether the aspects such as packet loss time delay are normal.
Data analysis layer: on the information data basis that information gathering layer returns, carries out screening, arranges, confirms, finally arrange out the bar item affecting network performance and business.
Virtual network fault locator under KVM provided by the invention, user's initialization task dispatch layer, and task based access control dispatch layer provide standard acquisition index (as icmp_echo) or the other acquisition index (as bridge_status) of self-defining to carry out health examination to destination virtual network or virtual machine.Convert Client-initiated event to relational language order after information gathering layer receives task events, relevant described objective network or virtual machine are performed to the operation of information gathering.Information gathering layer converts the information returned from above-mentioned target the related data information such as to alarm, and sends it to data analysis layer.On the information data basis that data analysis layer returns based on information gathering layer, carry out screening, arrange, confirm, finally arrange out the bar item affecting network performance or business.
Below for certain public's cloud virtual machine access exception case, concrete phenomenon is: certain user reflects its virtual machine access exception, and concrete condition is can normally access between virtual machine, and outer net is to virtual machine then inaccessible.
Adopt positioner handling process of the present invention as follows:
1, operation management person's situation about reflecting according to user given problem virtual machine IP, outer net IP and protocol port etc. call the healthy acquisition index of acquiescence in task dispatch layer module.
2, association requests index is converted to data are carried out in linux order collection to target area after acquisition layer receives request, it is by checking that the form such as configuration file and network service running status gathers.Wherein this fault has done following information gathering:
A. incoming interface state
B. outgoing interface state
C. whether destination host survives
D. whether destination host service activates
E. whether fire compartment wall is tackled
F. whether virtual switch running is normal
3, will gather the data of the full dose of every index in the process gathered, but not represent each data be all useful, now system will be screened the information after gathering, and filters out qualified information.As regular according to firewall security, the information such as the source order IP protocol port that system initially will be specified according to operation maintenance personnel travel through planning, find out one or more data that may affect network.
4, system will arrange the data after screening and show in the more intuitive mode of one, and the result showing each health examination index is as follows:
phase:1
type:interface
sub-type:eth0
result:up
additionalinformation:null
phase:2
type:interface
sub-type:vnet1
result:up
additionalinformation:null
phase:3
type:vm_status
sub-type:
result:up
additionalinformation:null
phase:4
type:services
sub-type:dstP
result:up
additionalinformation:
phase:5
type:iptables
sub-type:
result:reject
additionalinformation:
ChainINPUT(policyACCEPT)
REJECTtcp--0.0.0.0/0192.168.163.3/32tcpdpt:3389
phase:6
type:bridge
sub-type:onebr1000
result:up
additionalinformation:null
5, final system confirms to the result of investigation and informs operation management person
Src_IP:x.x.x.xDst_IP:192.168.163.3TCP:3389resultaction:reject
This publicly-owned cloud operation management person greatly reduces the difficulty of the virtual network problem investigation under KVM by this method, and the problem that decreases investigates the plenty of time consumed, and improves the maintainability of network.
The present invention adopts multi-layer framework and handling process, multidimensionally multifacetedly can carry out information gathering; And the every terms of information of information gathering layer collection is converted into index of correlation, find hidden network danger; Finally the information after screening is intuitively shown.Concrete advantage is as follows: 1. whole information gathering and data analysis process realize automatically, reducing the input of manpower; 2. information gathering combines with data analysis, makes problem more blunt clear; 3. automatically early warning and analysis, reduces the professional requirement of operation maintenance personnel; 4. the rapid location of problem, reduces the duration investigated and consume, improves service quality; 5. problem ground is analyzed investigation and is no longer limited to system and network boundary issues.
Although the present invention discloses as above with preferred embodiment; so itself and be not used to limit the present invention, any those skilled in the art, without departing from the spirit and scope of the present invention; when doing a little amendment and perfect, therefore protection scope of the present invention is when being as the criterion of defining with claims.
Claims (4)
1. the virtual network fault locator under KVM, is characterized in that, comprising:
Virtual net network layers: formed by multiple virtual machine networking;
Task scheduling layer: predetermined acquisition index and information gathering mode, and trigger message gathers button;
Information gathering layer: the triggering command of task based access control dispatch layer from the hardware view of physical host, OS aspect, virtual network level carries out critical data information gathering;
Data analysis layer: the original information data returned information gathering layer, carries out screening, arranges, confirms, finally arrange out the bar item affecting network performance and business.
2. the virtual network fault locator under KVM as claimed in claim 1, it is characterized in that, the critical data information gathering of described hardware view comprises: whether normally gather the network interface card of main frame, virtual switch, Microsoft Loopback Adapter and port status; The critical data information gathering of described OS aspect comprises: the ruuning situation gathering service application, and whether secure group is normal; The critical data information gathering of described network level comprises: collection network link, data cube computation situation, data queue, MAC address learning, and whether packet loss time delay is normal.
3. the virtual network fault locator under KVM as claimed in claim 2, it is characterized in that, after described information gathering layer receives the triggering command of task scheduling layer, association requests index is converted to operating system command carries out data collection to target area, and by checking that configuration file and network service running status carry out original information data collection, for virtual machine access exception fault, the original information data gathered comprises: incoming interface state, outgoing interface state, whether destination host survives, whether destination host service activates, whether fire compartment wall is tackled, whether virtual switch running is normal.
4. the virtual network fault locator under KVM as claimed in claim 3, it is characterized in that, source IP address port, target ip address port information that described data analysis layer is initially specified according to firewall security rule and operation maintenance personnel travel through the original information data collected, one or more data message affect network performance and business is found out in screening, and the data message after traversal being screened is converted to relevant warning information and carries out intuitive manner.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510650972.XA CN105162639B (en) | 2015-10-10 | 2015-10-10 | A kind of virtual network fault locator under KVM |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510650972.XA CN105162639B (en) | 2015-10-10 | 2015-10-10 | A kind of virtual network fault locator under KVM |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105162639A true CN105162639A (en) | 2015-12-16 |
| CN105162639B CN105162639B (en) | 2018-08-17 |
Family
ID=54803401
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510650972.XA Active CN105162639B (en) | 2015-10-10 | 2015-10-10 | A kind of virtual network fault locator under KVM |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105162639B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106354100A (en) * | 2016-11-18 | 2017-01-25 | 北京网御星云信息技术有限公司 | Operation-maintenance auditing method and device for numerical control machine tool |
| CN108171062A (en) * | 2017-12-22 | 2018-06-15 | 联想(北京)有限公司 | A kind of localization method, device and storage medium for equipment |
| CN112269474A (en) * | 2020-10-09 | 2021-01-26 | 上海晨驭信息科技有限公司 | KVM USB link health management system |
| CN115118632A (en) * | 2022-06-21 | 2022-09-27 | 中电信数智科技有限公司 | Automatic host packet loss detection method based on cloud network fusion |
| CN115865612A (en) * | 2022-09-28 | 2023-03-28 | 中国建设银行股份有限公司 | Network fault processing method and device, storage medium and electronic equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102708037A (en) * | 2012-04-23 | 2012-10-03 | 山东中创软件工程股份有限公司 | Method and device for checking running state of application program |
| CN102929773A (en) * | 2012-11-07 | 2013-02-13 | 曙光云计算技术有限公司 | Information collection method and device |
| CN102983990A (en) * | 2012-11-07 | 2013-03-20 | 曙光云计算技术有限公司 | Method and device for management of virtual machine |
| CN104869166A (en) * | 2015-05-28 | 2015-08-26 | 北京呈创科技股份有限公司 | Desktop cloud cluster system and desktop cloud cluster system information interaction method |
-
2015
- 2015-10-10 CN CN201510650972.XA patent/CN105162639B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102708037A (en) * | 2012-04-23 | 2012-10-03 | 山东中创软件工程股份有限公司 | Method and device for checking running state of application program |
| CN102929773A (en) * | 2012-11-07 | 2013-02-13 | 曙光云计算技术有限公司 | Information collection method and device |
| CN102983990A (en) * | 2012-11-07 | 2013-03-20 | 曙光云计算技术有限公司 | Method and device for management of virtual machine |
| CN104869166A (en) * | 2015-05-28 | 2015-08-26 | 北京呈创科技股份有限公司 | Desktop cloud cluster system and desktop cloud cluster system information interaction method |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106354100A (en) * | 2016-11-18 | 2017-01-25 | 北京网御星云信息技术有限公司 | Operation-maintenance auditing method and device for numerical control machine tool |
| CN108171062A (en) * | 2017-12-22 | 2018-06-15 | 联想(北京)有限公司 | A kind of localization method, device and storage medium for equipment |
| CN108171062B (en) * | 2017-12-22 | 2022-01-18 | 联想(北京)有限公司 | Positioning method and device for equipment and storage medium |
| CN112269474A (en) * | 2020-10-09 | 2021-01-26 | 上海晨驭信息科技有限公司 | KVM USB link health management system |
| CN112269474B (en) * | 2020-10-09 | 2024-02-09 | 上海晨驭信息科技有限公司 | KVM USB link health management system |
| CN115118632A (en) * | 2022-06-21 | 2022-09-27 | 中电信数智科技有限公司 | Automatic host packet loss detection method based on cloud network fusion |
| CN115118632B (en) * | 2022-06-21 | 2024-02-06 | 中电信数智科技有限公司 | Automatic detection method for packet loss of host based on cloud network integration |
| CN115865612A (en) * | 2022-09-28 | 2023-03-28 | 中国建设银行股份有限公司 | Network fault processing method and device, storage medium and electronic equipment |
| CN115865612B (en) * | 2022-09-28 | 2024-09-24 | 中国建设银行股份有限公司 | Network fault processing method and device, storage medium and electronic equipment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105162639B (en) | 2018-08-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20200067799A1 (en) | Logical network traffic analysis | |
| CN104506507B (en) | A kind of sweet net safety protective system and method for SDN | |
| CN105162639A (en) | Virtual network fault positioning device based on Kernel-based virtual machine (KVM) | |
| CN101309180B (en) | Security network invasion detection system suitable for virtual machine environment | |
| CN103685608B (en) | A kind of method and device for automatically configuring secure virtual machine IP address | |
| CN109644141A (en) | Method and system for visual network | |
| CN106576099A (en) | Data center architecture supporting attack detection and mitigation | |
| US20170339007A1 (en) | Alarm information processing method, related device, and system | |
| CN106888106A (en) | The extensive detecting system of IT assets in intelligent grid | |
| CN103973676A (en) | Cloud computing safety protection system and method based on SDN | |
| CN104378387A (en) | Method for protecting information security under virtualization platform | |
| CN104243193A (en) | Network topology dynamic allocation and display method and device | |
| CN106549792B (en) | A kind of method, apparatus and system of the security control of VNF | |
| CN107819633A (en) | It is a kind of quickly to find and handle the system and its processing method of network failure | |
| US20170134400A1 (en) | Method for detecting malicious activity on an aircraft network | |
| CN101938459A (en) | CRNET (China Railcom Net) sSafe cooperative defense system for whole course communication network | |
| CN112513815A (en) | Training data center hardware instance network | |
| CN101938460A (en) | Coordinated defense method of full process and full network safety coordinated defense system | |
| KR102260273B1 (en) | Apparatus for visualizing security policy information, method thereof, and storage medium for storing a program visualizing security policy information | |
| CN108769289A (en) | A kind of network address resources Visualized management system | |
| CN113328996B (en) | Intelligent security policy configuration method based on target perception | |
| CN104468504A (en) | Monitoring method and system for virtualized network dynamic information security | |
| CN106650425A (en) | Method and device for controlling security sandbox | |
| CN107370724A (en) | A kind of distributed cloud computing system | |
| US9774628B2 (en) | Method for analyzing suspicious activity on an aircraft network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: Qingpu 201707 waiqingsong road Shanghai City, No. 588 Lane 7548 Building 1 R zone 1 room 113 Applicant after: Shanghai new torch network information technology Limited by Share Ltd Address before: 200063 Shanghai, Zhongshan North Road, No. 2000, building, building No. 3, B Applicant before: SHANGHAI XINJU NETWORK INFORMATION TECHNOLOGY CO., LTD. |
|
| CB02 | Change of applicant information | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |