CN105207873A - Message processing method and apparatus - Google Patents
Message processing method and apparatus Download PDFInfo
- Publication number
- CN105207873A CN105207873A CN201510548239.7A CN201510548239A CN105207873A CN 105207873 A CN105207873 A CN 105207873A CN 201510548239 A CN201510548239 A CN 201510548239A CN 105207873 A CN105207873 A CN 105207873A
- Authority
- CN
- China
- Prior art keywords
- message
- vlan
- target
- main frame
- mark
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Abstract
This application provides a message processing method and apparatus. The method is applied to a physical network card provided with a virtual switch. The method includes the following steps that: a message to be forwarded is obtained, wherein the message carries a VLAN identifier; a target virtual port corresponding to the VLAN identifier is determined according to the corresponding relationship of a VLAN and virtual ports in the virtual switch; and service processing corresponding to a service rule is performed on the message according to the service rule configured based on the target virtual port. With the method and apparatus adopted, the service processing amount of a computer central processor provided with a VM or a virtual switch can be decreased, and service processing efficiency can be improved.
Description
Technical field
The application relates to virtual local area network technology field, relates to a kind of message processing method and device in particular.
Background technology
Virtual is a kind of resource management techniques, by Intel Virtualization Technology to the various actual resources of computer as, processor or internal memory etc., carry out abstract, being multiple logical computer by a computer virtual.The every platform logical computer fictionalized is exactly a virtual machine (VM, VirtualMachine), and VM can realize reception and the transmission of message by virtual switch (Vswitch, VirtualSwitch).
VM and Vswitch disposed in a computer is except the Processing tasks that carry message, also need to safeguard some business rules, and the business performed corresponding to these business rules, as, based on service quality (QOS, and the control that conducts interviews such as Access Control List (ACL) (ACL, AccessControlList) QualityofService).But VM and Vswitch is to the process of any business, all must have been come by the processor of computer, and if the process traffic carrying capacity of processor is excessive, the exchanges data task of VM and virtual switch will be had influence on, make exchanges data efficiency low.
Summary of the invention
In view of this, this application provides a kind of message processing method and device, with reduce be deployed with VM or virtual switch computer in the Business Processing amount of processor, and improve Business Processing efficiency.
To achieve these goals, provide a kind of message processing method in the first aspect of the application, be applied to the physical network card being deployed with virtual switch, comprise:
Obtain message to be forwarded, described message carries VLAN mark;
According to the corresponding relation of empty port in VLAN and described virtual switch, determine the empty port of target corresponding to described VLAN mark;
Based on the business rule of the empty port arrangement of described target, the Business Processing corresponding with described business rule is carried out to described message.
In conjunction with first aspect, in the first possible implementation of first aspect, the message that described acquisition is to be forwarded, comprising:
Receive message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
In conjunction with the first possible implementation of first aspect, in the implementation that the second is possible, after the described empty port of target determined corresponding to described VLAN mark, also comprise:
Based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
In conjunction with first aspect, in three kinds of possible implementations, the message that described acquisition is to be forwarded, comprising:
Obtain message to be received, described message also carries target MAC (Media Access Control) address;
Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card;
The then described corresponding relation according to empty port in VLAN and described virtual switch, determine the empty port of target corresponding to described VLAN mark, comprising:
According to the corresponding relation of empty port in VLAN, MAC Address and described virtual switch, determine the empty port of target that described target VLAN, target MAC (Media Access Control) address are corresponding.
In conjunction with the third possible implementation of first aspect, in the 4th kind of possible implementation, after the described empty port of target determined corresponding to described VLAN mark, also comprise:
Corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, be that Microsoft Loopback Adapter in the VM that builds of described main frame distributes, for the mark of Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds by the management server of described main frame.
In conjunction with first aspect or first aspect the first, the second, any one in the third and the 4th kind of possible implementation, in the 5th kind of possible implementation, before the message that described acquisition is to be forwarded, also comprise:
The device configuration information that receiving management server sends, described device configuration information comprises: management server is that the inside VLAN that the Microsoft Loopback Adapter in the VM of main frame structure distributes identifies; Described inner VLAN is used for the mark of Microsoft Loopback Adapter described in unique identification in described main frame; The main frame of described main frame belonging to described physical network card;
Store the corresponding relation between empty port in the described virtual switch disposed in described inner VLAN mark and described physical network card.
In conjunction with first aspect, in the 6th kind of possible implementation, the business rule of the empty port arrangement of described target comprises one or more:
Access control list ACL, service quality QOS strategy and VxLAN processing rule.
The second aspect of the application additionally provides a kind of message process device, is applied to the physical network card being deployed with virtual switch, comprises:
Receive message unit, for obtaining message to be forwarded, described message carries VLAN mark;
Port determining unit, for the corresponding relation according to empty port in VLAN and described virtual switch, determines the empty port of target corresponding to described VLAN mark;
Service Processing Unit, for the business rule based on the empty port arrangement of described target, carries out the Business Processing corresponding with described business rule to described message.
In conjunction with second aspect, in the implementation that the first is possible, described Receive message unit, comprising:
First Receive message unit, for receiving message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
In conjunction with the first possible implementation of second aspect, in the implementation that the second is possible, also comprise:
One VLAN converting unit, for determine the empty port of described target in described port determining unit after, based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
In conjunction with second aspect, in the implementation that the third is possible, described Receive message unit, comprising:
Second message acquiring unit, for obtaining message to be received, described message also carries target MAC (Media Access Control) address; Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card;
Then described port determining unit, comprising:
Port determination subelement, for the corresponding relation according to empty port in VLAN, MAC Address and described virtual switch, determines the empty port of target that described target VLAN, target MAC (Media Access Control) address are corresponding.
In conjunction with the third possible implementation of second aspect, in the 4th kind of possible implementation, also comprise:
2nd VLAN converting unit, for determine the empty port of described target in described port determining unit after, corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, by the management server of described main frame be described main frame build VM in Microsoft Loopback Adapter distribute, for the mark of the Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds.
In conjunction with second aspect, or second aspect the first, the second, one in the third and the 4th kind of possible implementation, in the 5th kind of possible implementation, also comprise:
First dispensing unit, before receiving described message at described Receive message unit, the device configuration information that receiving management server sends, described device configuration information comprises: management server is that the inside VLAN that the Microsoft Loopback Adapter in the VM of main frame structure distributes identifies; Described inner VLAN is used for the mark of Microsoft Loopback Adapter described in unique identification in described main frame; The main frame of described main frame belonging to described physical network card;
Relation construction unit, for storing the corresponding relation in the described virtual switch disposed in described inner VLAN mark and described physical network card between empty port.
In conjunction with second aspect, in the 6th kind of possible implementation, the business rule of the empty port arrangement of described target comprises one or more:
Access control list ACL, service quality QOS strategy and VxLAN processing rule.
Known via above-mentioned technical scheme, in the embodiment of the present application, virtual switch is deployed in physical network card, and the business rule that has been the empty port arrangement of this virtual switch, like this, physical network card is getting message, after determining the empty port of target that VLAN mark entrained in this message is corresponding, the business rule that can configure based on the empty port of this target, Business Processing is carried out to message, make physical network card can the execute script business function that needs the VM that disposes in computer or virtual switch to perform, thus the traffic carrying capacity of processor process can be reduced.Meanwhile, the business that the VM disposed or virtual switch perform is transformed on physical network card and performs, also effectively make use of the hardware resource of physical network card in computer in computer, and due to the handling property of hardware higher, thus improve Business Processing efficiency.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present application or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only the embodiment of the application, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to the accompanying drawing provided.
Fig. 1 shows the schematic flow sheet of a kind of message processing method of the application embodiment;
Fig. 2 shows the composition structural representation of a kind of virtual platform based on VMware Intel Virtualization Technology;
Fig. 3 a and Fig. 3 b respectively illustrate the message processing method of the embodiment of the present application the composition structural representation of two kinds of switch networks that is suitable for;
Fig. 4 shows the schematic flow sheet of a kind of another embodiment of message processing method of the application;
Fig. 5 shows in the message processing method of the application and carries out business processing flow schematic diagram based on acl rule to message;
What Fig. 6 showed the application shows the schematic flow sheet based on VxLAN processing rule, message being carried out to Business Processing in the message processing method of the application;
Fig. 7 shows the structural representation of a kind of message process device of the application embodiment;
Fig. 8 shows the structural representation of a kind of computer of the application embodiment.
Embodiment
The embodiment of the present application provides a kind of message processing method, business performed by the VM disposed in computer or virtual switch is transferred in the physical network card in this computer and process, to reduce the traffic carrying capacity of the processor process of computer, and improve Business Processing efficiency.The embodiment of the present invention additionally provides corresponding device.Below be described in detail respectively.
The present invention program is understood better in order to make those skilled in the art person, below in conjunction with the accompanying drawing in the embodiment of the present application, technical scheme in the embodiment of the present application is clearly and completely described, obviously, described embodiment is only some embodiments of the present application, instead of whole embodiments.Based on the embodiment in the application, those of ordinary skill in the art are not making the every other embodiment obtained under creative work prerequisite, all belong to the scope of the application's protection.
The data processing method of the embodiment of the present application goes in virtual platform, and the physical network card that can be applicable in the computer of this virtual platform, in this physical network card, be deployed with virtual switch, in this computer, be deployed with VM, can also virtual switch be deployed with.See Fig. 1, it illustrates the schematic flow sheet of a kind of data processing method of the application embodiment, the present embodiment method can comprise:
S101, obtains message to be forwarded.
Wherein, this message carries VLAN mark.
S102, according to the corresponding relation of the empty port of virtual switch in VLAN and this physical network card, determines the empty port of target corresponding to this VLAN mark.
In the embodiment of the present application, in this physical network card, be configured with each empty port of virtual switch and the corresponding relation of VLAN in this physical network card, the empty port corresponding to this VLAN mark can be determined based on this corresponding relation.
For the ease of distinguishing, the empty port corresponding to being identified by the VLAN carried in this message is called the empty port of target.
S103, based on the business rule of the empty port arrangement of this target, carries out the Business Processing corresponding with business rule to this message.
Wherein, the business rule that in this physical network card, on virtual switch, each empty port configures can set as required, and wherein, the business rule that the empty port of difference of this virtual switch configures also can be different.On the empty port of this virtual switch, configuration service rule performs service processing function corresponding to this business rule for realizing by this physical network card.
Be understandable that, the business rule that the empty port of this virtual switch configures refers to the business rule outside this basic function of message repeating of physical network card, and the basic function that physical network card carries out message repeating may not need to be configured for the empty port on the virtual switch of this physical network card separately.
In the embodiment of the present application, virtual switch is deployed in physical network card, and the business rule that has been the empty port arrangement of this virtual switch, like this, physical network card is getting message, after determining the empty port of target that VLAN mark entrained in this message is corresponding, the business rule that can configure based on the empty port of this target, Business Processing is carried out to message, make physical network card can the execute script business function that needs the VM that disposes in computer or virtual switch to perform, thus the traffic carrying capacity of processor process can be reduced.Meanwhile, the business that the VM disposed or virtual switch perform is transformed on physical network card and performs, also effectively make use of the hardware resource of physical network card in computer in computer, and due to the handling property of hardware higher, thus improve Business Processing efficiency.
Be understandable that, in the embodiment of the present application, physical network card except perform configuration business rule corresponding to Business Processing except, the forwarding capability of the packet that also carry., therefore, if when the result that physical network card carries out Business Processing shows the forwarding without the need to forbidding this message, then this physical network card can forward the message after carrying out this Business Processing.Certainly, if be the transmission abandoning or stop this message to the service processing result of message, then physical network card can directly abandon this message.
Be understandable that, the message to be forwarded that this physical network card gets can be message to be sent, that is, the message that the VM disposed in main frame belonging to this physical network card sends.This message to be forwarded also can be message to be received, namely the address of Microsoft Loopback Adapter in the VM disposed in destination address main frame belonging to this physical network card, as, VM in other main frames outside main frame belonging to this physical network card sends over, and destination address is the message in this main frame, and for example, the message of another VM is sent in this physical network card by a VM.
Introduce the processing procedure of physical network card to message to be sent and message to be received below respectively.
First the situation that physical network card receives message to be sent is introduced.
When physical network card receives message to be sent, the virtual switch that this message is disposed in this main frame is sent in the virtual switch disposed in this physical network card, and the VLAN mark that this message carries can identify for the inside VLAN in this main frame.Wherein, this inner VLAN is designated the mark of the Microsoft Loopback Adapter in the VM that disposes in this main frame of unique identification in this main frame.That is, the inside VLAN unifying the Microsoft Loopback Adapter in main frame in each VM identifies different, and when having multiple Microsoft Loopback Adapter in same VM, in this VM, the inside VLAN of each Microsoft Loopback Adapter identifies all not identical.
If, this inner VLAN mark can be that Microsoft Loopback Adapter in the VM disposed in this main frame identifies to dispose inner VLAN by main frame.
And for example, this inner VLAN mark can, for after this main frame constructs this VM, be the Microsoft Loopback Adapter distribution in this VM by the management server of this main frame, for the mark of this Microsoft Loopback Adapter of unique identification in this main frame.Wherein, the management server of this main frame can be in this main frame, also can preset the management server for management host in VLAN.
Concrete, VM is constructed when the management server of main frame detects in main frame, then for the Microsoft Loopback Adapter in the VM of current structure distributes port set unique in this main frame, namely, Microsoft Loopback Adapter correspond to VLAN unique in this main frame, thus makes the VLAN mark of the different virtual network interface card in the different VM of deployment in main frame in this main frame different.
For the ease of distinguishing with the VLAN phase that configures on each empty port of virtual switch of disposing in physical network card, the unique VLAN of the Microsoft Loopback Adapter in VM in this main frame being called inner VLAN, and the mark of this inner VLAN being called inner VLAN identifies.And after each Microsoft Loopback Adapter in the VM that management server is current structure is all assigned with unique inside VLAN, also device configuration information can be sent to physical network card, this device configuration information comprises: the inside VLAN in the VM of current structure corresponding to each Microsoft Loopback Adapter identifies.After physical network card receives the interior inside VLAN mark corresponding to each Microsoft Loopback Adapter of VM of current structure, corresponding relation in the virtual switch that the inside VLAN that physical network card sets up each Microsoft Loopback Adapter in this VM respectively identifies and disposes in this physical network card between empty port, makes inner VLAN and empty port one_to_one corresponding.
Be understandable that, inside VLAN corresponding to the Microsoft Loopback Adapter in the inner each VM of main frame identifies all not identical, and this inner VLAN mark is only used for the mark that unique identification goes out the Microsoft Loopback Adapter in main frame in VM, only in order to avoid virtual switch None-identified is for identifying the mark of VM, and this mark is set to identify from the VLAN identifying different VLAN.
Because the VLAN configured in the Microsoft Loopback Adapter in the VM that disposes in main frame is designated this inner VLAN mark, identify so carry inside VLAN corresponding to this Microsoft Loopback Adapter in the message that sent by this Microsoft Loopback Adapter of this VM.And because inner VLAN is identified in this main frame, there is uniqueness, therefore, after this message is sent to virtual switch corresponding to this VM by VM, virtual switch based on this inside VLAN identified query less than the VM be in this VM in same VLAN, therefore, this message will be sent to the physical network card in main frame belonging to VM by this virtual switch.
After physical network card receives this message, according to the corresponding relation between the empty port of virtual switch in the inside VLAN prestored and this physical network card, the empty port of the virtual switch disposed from this physical network card, determine the empty port of this corresponding target of inner VLAN mark, thus based on the business rule that the empty port of this target configures, Business Processing is carried out to this message.
Be understandable that, because inner VLAN mark is only the Microsoft Loopback Adapter in this main frame in this main frame of unique identification in VM, and this inner VLAN mark can not characterize this VLAN residing for Microsoft Loopback Adapter reality.Therefore, after determining the empty port of target corresponding to this inner VLAN mark, based on the target VLAN belonging to the empty port of preset target, this inner VLAN mark of carrying in this message can also be revised as the mark of this target VLAN.
The inside VLAN carried in this message mark is revised as target VLAN mark, due to physical network card clearly the empty port arrangement of this target business rule for target VLAN, and carry out the Business Processing corresponding with this business rule for this target VLAN and packet.
Further, after the inside VLAN carried in this message mark is revised as target VLAN mark, also the situation of the VLAN mark of carrying in the physical network card None-identified message in other main frames outside main frame belonging to this physical network card can be avoided, like this, if when service processing result shows the transmission without the need to forbidding this message, then can send the message of the mark carrying this target VLAN.
Be understandable that, when the message that physical network card receives is message to be sent, in this message to be sent except carrying this inner VLAN mark, source medium education (MAC, the MediaAccessControl) address of this message can also be carried.Accordingly, in physical network card, also store M AC address, inner VLAN can identify corresponding relation between empty port, thus uniquely determine the empty port of target according to the MAC Address of carrying in message and inner VLAN mark.
Introduce the processing procedure of physical network card to message to be received below.
Physical network card is got to the situation of message to be received, this message to be received carries VLAN mark and target MAC (Media Access Control) address.Wherein, this VLAN is designated the mark of the empty target VLAN belonging to port of the virtual switch disposed in physical network card, and the MAC Address of virtual switch in the VM disposed in the target MAC (Media Access Control) address of this message main frame belonging to this physical network card.
And in actual applications, an empty port of the virtual switch disposed in physical network card can be configured to belong to a VLAN, also can be configured to belong to multiple VLAN.If each empty port only configures belong to a VLAN, then the target VLAN mark that this physical network card can only carry according to message determines that this target VLAN identifies the empty port of corresponding target.Accordingly, the corresponding relation between the empty port of the virtual switch disposed in this physical network card and this target VLAN belonging to empty port can be stored in this physical network card.
And when if the virtual switch of disposing in physical network card empty port is configured to belong to multiple VLAN, likely two empty ports of this virtual switch all belong to same VLAN, then only can not determine the empty port of the target needing to receive this message according to the target VLAN carried in this message, in the case, the empty port in the virtual switch of this physical network card deployment can be stored in this physical network card, corresponding relation between MAC Address and target VLAN, therefore, based on mark and the target MAC (Media Access Control) address of the target VLAN carried in this message, the empty port of target can be determined from the virtual switch that this physical network card is disposed.
Further, in order to the recipient that the virtual switch of the deployment in this main frame can be made can to determine this message, after determining the empty port of this target VLAN mark and the target corresponding to this target MAC (Media Access Control) address, can also comprise:
Corresponding relation between identifying based on the inside VLAN in preset empty port and this main frame, the mark of the target VLAN carried by this message is revised as the empty inside VLAN corresponding to port of this target and identifies.Like this, after the message carrying inner VLAN mark and target MAC (Media Access Control) address is sent to the virtual switch belonging to object VM by physical network card, this virtual switch identifies according to this inside VLAN and target MAC (Media Access Control) address just can determine this object VM.Wherein, this inner VLAN is designated unique mark indicating Microsoft Loopback Adapter in the VM of host deployments in this main frame.If, this inner VLAN mark can be that Microsoft Loopback Adapter in the VM disposed in this main frame identifies to dispose inner VLAN by main frame.And for example, this inner VLAN mark can, for after this main frame constructs this VM, be the Microsoft Loopback Adapter distribution in this VM by the management server of this main frame, for the mark of this Microsoft Loopback Adapter of unique identification in this main frame.Wherein, the management server of this main frame can be in this main frame, also can preset the management server for management host in VLAN.Specifically can see the related introduction in previous processed message to be sent.
Be understandable that, when message is message to be received, the corresponding relation between empty port, MAC Address and target VLAN in the virtual switch of this physical network card deployment is configured in physical network card, and empty port identify with the inside VLAN in main frame between corresponding relation same can by main frame for this physical network card be configured, also can be the management server of the main frame belonging to physical network card be the configuration that this physical network card carries out these corresponding relations, do not repeat them here.
For the ease of understanding the embodiment of the present application, describe in detail with the message processing method of a preferred embodiment to the embodiment of the present application below.For the ease of understanding the reciprocal process in the preferred embodiment, first the application scenarios of the embodiment of the present application is introduced below.
The message processing method of the embodiment of the present application can be applied in the virtual platform based on VMware Intel Virtualization Technology, hyper-V Intel Virtualization Technology etc.For convenience, describe in detail for the virtual platform based on VMware Intel Virtualization Technology.
As Fig. 2, it illustrates the composition structural representation of a kind of virtual platform based on VMware Intel Virtualization Technology.The server 21 that multiple stage is provided with ESXi can be comprised in this virtual platform.This multiple stage ESXi server 21 is connected by Ethernet, and this multiple stage ESXi server 21 is connected with VMware administrative center (vCenter, VirtualCenter) place server and management server 22.
Wherein, this vCenter can be arranged in the server of a platform independent, and namely management server can be an independently station server; This vCenter exists with the form of the virtual machine in the server of ESXi.
Wherein, ESXi server 21 just can regard a physical host as, multiple stage VM can be disposed in this main frame, and VM can realize transmission and the reception of message by standard Virtual switch or distributed virtual switch, and virtual switch can outwards E-Packet or receive the message needing to forward by physical network card.In this ESXi server 21, the relation of VM, virtual switch and physical network card can see Fig. 3 a and Fig. 3 b.
As, the structural representation of vSphere standard switchboard network is shown at Fig. 3 a.From Fig. 3 a, in main frame, be deployed with vSphere standard Virtual switch 31 and multiple stage VM32.Wherein, VM32 has Microsoft Loopback Adapter 321.VM32 can be carried out message and send and receive by the vSphere standard Virtual switch 31 disposed in this main frame; Physical network card 33 in this main frame can be connected with physical network, and the vSphere standard Virtual switch disposed in this main frame can outwards send message by physical network card or receive the message of physical network transmission.And for example, the structural representation of vSphere distribution switch network is shown at Fig. 3 b.Be with the difference of standard Virtual switch 31, in vSphere distribution switch network, distributed virtual switch 34 can run between different physical host, and VM31 carries out transmission and the reception of message by this distributed virtual switch 34 and physical network card 33.
Based on above understanding, below the flow process reciprocal process of the message processing method of the embodiment of the present application is introduced, see Fig. 4, it illustrates the schematic flow sheet of a kind of another embodiment of message processing method of the application, the embodiment of the present application is equally applicable to the virtual platform based on Intel Virtualization Technologies such as VMware or hyper-V.For convenience of description, this embodiment is only introduced the processing procedure of physical network card to message to be sent.The method of the present embodiment can comprise:
401, management server detects in main frame and constructs VM, then each Microsoft Loopback Adapter being respectively VM configures inside VLAN unique in MAC Address and this main frame.
402, device configuration information is sent to physical network card by main frame by management server.
Wherein, this device configuration information comprises the MAC Address of each Microsoft Loopback Adapter in this VM and inner VLAN identifies.
403, physical network card sets up the MAC Address of each Microsoft Loopback Adapter respectively and inner VLAN identifies and the first corresponding relation between empty port in the virtual switch disposed in this physical network card, and stores this first corresponding relation.
This first corresponding relation can also be sent to management server by physical network card.
404, management server issues port configuration information for this physical network card.
Wherein, this port configuration information can comprise the business rule in the virtual switch disposed in this physical network card, empty port configured, and the target VLAN of this of configuration belonging to empty port.
Be understandable that, because the business rule that empty port configures is actually the business rule for the VLAN configuration belonging to this empty port, therefore, this port configuration information can also be the MAC Address of Microsoft Loopback Adapter and the target VLAN corresponding to inner VLAN mark, and is the business rule that this target VLAN configures.
In practical application, management server can issue port configuration information to main frame, and by main frame, this port configuration information is sent to physical network card.
405, physical network card stores the business rule that empty port configures, and based on the MAC Address in the first corresponding relation corresponding to this empty port, sets up the second corresponding relation between empty port and MAC Address and target VLAN.
Physical network card stores each target VLAN corresponding to empty port in its virtual switch disposed, and the business rule that each empty port configures.
Be understandable that, the business rule that the business rule that in physical network card, the empty port of virtual switch the configures target VLAN that in fact namely this empty port is corresponding configures.Therefore, port configuration information and device configuration information also can send simultaneously, can indicate the target VLAN corresponding to current device configuration information in this port configuration information, and the business rule that target VLAN configures.That is, management server can while transmitting apparatus configuration information, this MAC Address and the target VLAN corresponding to inner VLAN can also be sent, and the business rule that this target VLAN configures, thus after this physical network card is assigned with this MAC Address and the empty port corresponding to this inner VLAN, just can configure the target VLAN belonging to this port, and the business rule that this empty port is corresponding.
Accordingly, this first corresponding relation and the second corresponding relation can merge into a corresponding relation, namely physical network card can store empty port and MAC Address, inner VLAN identify and corresponding relation between target VLAN, like this, as long as just uniquely can uniquely determine an empty port from the virtual switch that this physical network card is disposed according to the MAC Address of carrying in message and VLAN mark.
Above step 401 to step 405 management server before Message processing is the information configuration process of physical network card.On the basis of above information configuration, physical network card can process message to be received and message to be sent.
406 to 411 is the processing procedure of physical network card to message to be sent below.
406, after the virtual switch that the VM in main frame is corresponding to this VM by Microsoft Loopback Adapter sends message, this virtual machine table of query and routing.
Wherein, the inside VLAN carrying source MAC in this message corresponding with this Microsoft Loopback Adapter identifies.Certainly, target MAC (Media Access Control) address can also be carried in this message.
Be understandable that, the virtual switch that this VM is corresponding is namely responsible for virtual switch that is that this VM sends or that E-Packet to this VM, and this virtual switch can be the virtual switch be in together with this VM in a main frame, as shown in Figure 4; This virtual switch can also be distribution switch.
407, this message, less than routing iinformation, is sent to physical network card by virtual switch inquiry.
Mark due to the inside VLAN carried in message can not characterize the logical network that actual division goes out, and therefore, virtual switch can not inquire the relevant route of this inner VLAN, thus this message need be sent to the physical network card of this VM place main frame.
408, the empty port of the virtual switch that physical network card is disposed from this physical network card, determine this source MAC and the empty port of the target corresponding to inner VLAN mark.
Physical network card sends according to the Microsoft Loopback Adapter of the VM that source MAC is determined in this message main frame belonging to physical network card, then inquire about the first corresponding relation, determines the empty port corresponding to this source MAC, inner VLAN.
406, the inside VLAN of this message mark is revised as the mark of the target VLAN belonging to the empty port of this target.
410, based on the business rule of the empty port arrangement of this target, Business Processing is carried out to amended message.
411, if the result of Business Processing shows the forwarding without the need to forbidding this this amended message, then the message after forwarding service process.
The inside VLAN mark of this message has been revised as the mark of the empty target VLAN belonging to port of target, because this target VLAN is the virtual logical network that actual division goes out, then amended message identifies identical with the VLAN entrained by the message that physical network card in prior art receives, and the virtual switch in physical network card can carry out Business Processing and forward process according to existing mode to message.
Be understandable that, physical network card received to the situation of message to be received, similar to the processing procedure of physical network card to message to be sent.After only this physical network card receives message, this physical network card determines the address of Microsoft Loopback Adapter in the VM in the target MAC (Media Access Control) address of this message main frame belonging to this physical network card, then inquire about in physical network card the MAC Address, the empty port of target corresponding to target VLAN that store, simultaneously, before this message of forwarding, the corresponding relation that can store according to physical network card, as the first corresponding relation, determine the empty inside VLAN corresponding to port of this target, and the mark of the target VLAN carried by this message is revised as the mark of inner VLAN.
In any one embodiment above, the business rule in this physical network card, an empty port configured can be configured by management server, also can be configured by main frame belonging to this physical network card.And in the virtual switch that this physical network card is disposed, the business rule of each empty port arrangement can have one or more, specifically can set as required.
As, this business rule can comprise following one or more:
Access Control List (ACL) (ACL, AccessControlList), service quality (QOS, QualityofService) strategy and virtual easily extensible local area network (LAN) (VxLAN, virtualExtensibleLAN)) processing rule.
Be understandable that, physical network card is based on the process of this access control list ACL, service quality QOS strategy and business rule the carries out Business Processing such as VxLAN is regular, can be similar to existing business rule processing procedure, difference is only can the built-in hardware consulting table engine corresponding with this business rule in this physical network card, when needs query note, perform a query statement by hardware consulting table engine corresponding to this business rule in this physical network card and just can inquire corresponding result, Business Processing efficiency can be improved.
Below respectively the empty port of the virtual switch disposed in physical network card to configure ACL, QOS strategy and VxLAN processing rule, introduce the business rule of this physical network card based on the empty port arrangement of described target, message is carried out to the process of Business Processing.
First, so that the empty port of target to be configured with ACL, see Fig. 5, it illustrates the schematic flow sheet that in the application, physical network card processes message based on acl rule, this process can comprise:
501, extract the characteristic information of specified type in message.
Wherein, the characteristic information of this specified type can be the five-tuple of message, as the source address of this message, destination address, source port number and destination slogan etc.
502, feature based information, calls the first hardware consulting table engine that this physical network card is built-in, inquires about this message and whether meets the acl rule preset.
Wherein, this acl rule can be identical with the rule comprised in existing ACL, e.g., can comprise network traffics restriction in this ACL, security control rule etc.Such as, if this source address preset address can not belonged in this acl rule, then the transmission of this message is forbidden.
Be understandable that, this the first hardware consulting table engine refers to the hardware consulting table engine whether meeting this acl rule for inquiring about this message current, become to be called the first hardware consulting table engine be only used to follow-up mention be used for inquire about QOS strategy and the tactful hardware consulting table engine of VxLAN is distinguished.
503, when this message does not meet this acl rule, abandon this message.
Certainly, if this message meets acl rule, then forward process can be carried out by physical network card.
The empty port of target configures QOS strategy, based on this QOS strategy to the process that message carries out Business Processing can be:
Based on the flow threshold preset in the data volume of this message and the QOS strategy of the empty port arrangement of this target, judge whether the forwarding needing to forbid this message.
When judging the forwarding needing to forbid described message, then abandon this message; Otherwise, then by this physical network card, this message is forwarded.
The empty port arrangement of target is had to the situation of VxLAN processing rule, if the destination address of the message that physical network card gets is the Microsoft Loopback Adapter in main frame belonging to this physical network card in VM, then without the need to carrying out the process such as VxLAN encapsulation, after directly the VLAN of this message mark can being converted to inside VLAN corresponding to the empty port of this target by this physical network card, forward the packet to respective virtual switch, to be forwarded the Microsoft Loopback Adapter of this message to this object VM by virtual switch.
And if the target MAC (Media Access Control) address of this message is not the MAC Address of virtual switch in the VM disposed in main frame belonging to this physical network card, namely, VM in main frame belonging to this physical network card outwards sends the situation of message, in this physical network card, then to need in the virtual switch disposed in this physical network card pre-configured each VxLAN mark corresponding to empty port, and VxLAN mark and the VxLAN packaging information corresponding to target MAC (Media Access Control) address.Concrete processing procedure see Fig. 6, can comprise:
601, determine the VxLAN mark that the empty port of this target is corresponding.
602, target MAC (Media Access Control) address and this VxLAN of calling second built-in this message of hardware consulting table engine queries identify corresponding VxLAN packaging information.
Wherein, in physical network card, be configured with different MAC Address and the VxLAN packaging information corresponding to VxLAN mark, utilize this second hardware consulting table engine can inquire the VxLAN of this target MAC (Media Access Control) address and this VxLAN mark correspondence.
603, utilize this VxLAN packaging information to carry out tunnel encapsulation to this message.
Certainly, after tunnel encapsulation is carried out to message, this physical network card can forwarding tunnel encapsulation after message.
A kind of message processing method of corresponding the application, the embodiment of the present application additionally provides a kind of message process device, see Fig. 7, it illustrates the structural representation of a kind of message process device of the application embodiment, the method of the present embodiment is applied to the physical network card 7 being deployed with virtual switch, and this device comprises:
Receive message unit 701, for obtaining message to be forwarded, described message carries VLAN mark;
Port determining unit 702, for the corresponding relation according to empty port in VLAN and described virtual switch, determines the empty port of target corresponding to described VLAN mark;
Service Processing Unit 703, for the business rule based on the empty port arrangement of described target, carries out the Business Processing corresponding with described business rule to described message.
In the embodiment of the present application, the empty port arrangement of the virtual switch disposed in physical network card business rule, like this, after Receive message unit gets message, the empty port of target that VLAN mark entrained in this message is corresponding can be determined by this port determining unit, and the business rule configured based on the empty port of this target by Service Processing Unit, Business Processing is carried out to message, make physical network card can the execute script business function that needs the VM that disposes in computer or virtual switch to perform, thus the traffic carrying capacity of processor process can be reduced.Meanwhile, the business that the VM disposed or virtual switch perform is transformed on physical network card and performs, also effectively make use of the hardware resource of physical network card in computer in computer, and due to the handling property of hardware higher, thus improve Business Processing efficiency.
Optionally, a kind of possible implementation of corresponding the application, this Receive message unit, can comprise:
First Receive message unit, for receiving message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
Further, this device can also comprise:
One VLAN converting unit, for determine the empty port of described target in described port determining unit after, based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
Optionally, in another kind of implementation, this Receive message unit can comprise:
Second message acquiring unit, for obtaining message to be received, described message also carries target MAC (Media Access Control) address; Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card;
Then, this port determining unit, comprising:
Port determination subelement, for the corresponding relation according to empty port in VLAN, MAC Address and described virtual switch, determines the empty port of target that described target VLAN, target MAC (Media Access Control) address are corresponding.
Further, this device can also comprise:
2nd VLAN converting unit, for determine the empty port of described target in described port determining unit after, corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, by the management server of described main frame be described main frame build VM in Microsoft Loopback Adapter distribute, for the mark of the Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds.
It should be noted that, in actual applications, this Receive message unit can comprise this first Receive message unit and the second message acquiring unit simultaneously, also only can comprise in the first Receive message unit and the second message acquiring unit.
Optionally, on the basis of any one device embodiment above, this device can also comprise:
First dispensing unit, before receiving described message at described Receive message unit, the device configuration information that receiving management server sends, described device configuration information comprises: management server is that the inside VLAN that the Microsoft Loopback Adapter in the VM of main frame structure distributes identifies; Described inner VLAN is used for the mark of Microsoft Loopback Adapter described in unique identification in described main frame; The main frame of described main frame belonging to described physical network card;
Relation construction unit, for storing the corresponding relation in the described virtual switch disposed in described inner VLAN mark and described physical network card between empty port.
Optionally, in the embodiment of any one device above, the business rule of the empty port arrangement of this target comprise following one or more:
Access control list ACL, service quality QOS are tactful and VxLAN is regular.
Accordingly, this Service Processing Unit can carry out Business Processing based on one or more business rules of above configuration, and concrete business procession see the related introduction of previous methods embodiment, can not repeat them here.
Optionally, in the embodiment of above device, this device can also comprise:
Business configuration unit, before obtaining described message at described Receive message unit, the management server of storage host is the business rule of each empty port arrangement in the described virtual switch disposed in described physical network card.
Optionally, in the embodiment of any one device above, described the Business Processing corresponding with described business rule is carried out to described message after, also comprise:
Retransmission unit, for when the result of described Business Processing shows the forwarding without the need to forbidding described message, then forwards the message after described Business Processing.
On the other hand, the embodiment of the present application also provides a kind of computer, and see Fig. 8, it illustrates the structural representation of a kind of computer of the embodiment of the present application, this computer comprises: processor 801, memory 802 and physical network card 803.Wherein, processor, memory are connected by communication bus 804 with physical network card.This computer can also include the input-output apparatus 805 be connected with communication bus 803.
Wherein, memory 802 deploy has multiple virtual machine 8021, and memory 802 can comprise read-only memory and random access memory, and provides operational order and data to processor 801.A part for memory 802 can also comprise nonvolatile RAM (NVRAM).
In embodiments of the present invention, by call memory 802 store operational order (this operational order can store in an operating system), processor 801 can run memory dispose multiple virtual machines.
Physical network card 803, for obtaining message to be forwarded, described message carries VLAN mark; According to the corresponding relation of empty port in VLAN and described virtual switch, determine the empty port of target corresponding to described VLAN mark; And based on the business rule of the empty port arrangement of described target, the Business Processing corresponding with described business rule is carried out to described message.
Optionally, this physical network card, for receiving message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
Further, physical network card can also be used for, after described port determining unit determines the empty port of described target, based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
Optionally, this physical network card, may be used for obtaining message to be received, described message also carries target MAC (Media Access Control) address; Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card; And according to the corresponding relation of empty port in VLAN, MAC Address and described virtual switch, determine the target void port that described target VLAN, target MAC (Media Access Control) address are corresponding.
Further, this physical network card, can also be used for after described port determining unit determines the empty port of described target, corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, by the management server of described main frame be described main frame build VM in Microsoft Loopback Adapter distribute, for the mark of the Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds.
For device embodiment, because it is substantially corresponding to embodiment of the method, so relevant part illustrates see the part of embodiment of the method.System embodiment described above is only schematic, and some or all of module wherein can be selected according to the actual needs to realize the object of the present embodiment scheme.Those of ordinary skill in the art, when not paying creative work, are namely appreciated that and implement.
In several embodiments that the application provides, should be understood that, disclosed in apparatus and method, not exceeding in the spirit and scope of the application, can realize in other way.Current embodiment is a kind of exemplary example, should as restriction, and given particular content should in no way limit the object of the application.Such as, the division of described unit or subelement, is only a kind of logic function and divides, and actual can have other dividing mode when realizing, and such as multiple unit or multiple subelement combine.In addition, multiple unit can or assembly can in conjunction with or another system can be integrated into, or some features can be ignored, or do not perform.
In addition, the schematic diagram of described message process device and method and different embodiment, not exceeding in the scope of the application, can with other system, module, technology or methods combining or integrated.Another point, shown or discussed coupling each other or direct-coupling or communication connection can be by some interfaces, and the indirect coupling of device or unit or communication connection can be electrical, machinery or other form.
The above is only the embodiment of the application; it should be pointed out that for those skilled in the art, under the prerequisite not departing from the application's principle; can also make some improvements and modifications, these improvements and modifications also should be considered as the protection range of the application.
Claims (20)
1. a message processing method, is characterized in that, is applied to the physical network card being deployed with virtual switch, comprises:
Obtain message to be forwarded, described message carries VLAN mark;
According to the corresponding relation of empty port in VLAN and described virtual switch, determine the empty port of target corresponding to described VLAN mark;
Based on the business rule of the empty port arrangement of described target, the Business Processing corresponding with described business rule is carried out to described message.
2. method according to claim 1, is characterized in that, the message that described acquisition is to be forwarded, comprising:
Receive message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
3. method according to claim 2, is characterized in that, after the described empty port of target determined corresponding to described VLAN mark, also comprises:
Based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
4. method according to claim 1, is characterized in that, the message that described acquisition is to be forwarded, comprising:
Obtain message to be received, described message also carries target MAC (Media Access Control) address;
Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card;
The then described corresponding relation according to empty port in VLAN and described virtual switch, determine the empty port of target corresponding to described VLAN mark, comprising:
According to the corresponding relation of empty port in VLAN, MAC Address and described virtual switch, determine the empty port of target that described target VLAN, target MAC (Media Access Control) address are corresponding.
5. method according to claim 4, is characterized in that, after the described empty port of target determined corresponding to described VLAN mark, also comprises:
Corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, be that Microsoft Loopback Adapter in the VM that builds of described main frame distributes, for the mark of Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds by the management server of described main frame.
6. the method according to any one of claim 1 to 5, is characterized in that, before the message that described acquisition is to be forwarded, also comprises:
The device configuration information that receiving management server sends, described device configuration information comprises: management server is that the inside VLAN that the Microsoft Loopback Adapter in the VM of main frame structure distributes identifies; Described inner VLAN is used for the mark of Microsoft Loopback Adapter described in unique identification in described main frame; The main frame of described main frame belonging to described physical network card;
Store the corresponding relation between empty port in the described virtual switch disposed in described inner VLAN mark and described physical network card.
7. method according to claim 1, is characterized in that, the business rule of the empty port arrangement of described target comprises one or more:
Access control list ACL, service quality QOS strategy and VxLAN processing rule.
8. method according to claim 7, is characterized in that, when the empty port arrangement of described target has acl rule, then the described business rule based on the empty port arrangement of described target, carries out the Business Processing corresponding with described business rule to described message, comprising:
Extract the characteristic information of specified type in described message;
Based on described characteristic information, call the first hardware consulting table engine built-in in described physical network card, inquire about described message and whether meet the acl rule preset;
When described message does not meet described acl rule, abandon described message.
9. method according to claim 7, is characterized in that, when the empty port arrangement of described target has QOS strategy, then the described business rule based on the empty port arrangement of described target, carries out the Business Processing corresponding with described business rule to described message, comprising:
When based on preset flow threshold value corresponding to the empty port of target described in the data volume of described message and described QOS strategy, when determining the forwarding need forbidding described message, then abandon described message.
10. method according to claim 7, is characterized in that, described message also carries target MAC (Media Access Control) address;
When the empty port arrangement of described target has described VxLAN processing rule, if when the target MAC (Media Access Control) address of described message is not the MAC Address of virtual switch in the VM disposed in main frame belonging to described physical network card, the then described business rule based on the empty port arrangement of described target, the Business Processing corresponding with described business rule is carried out to described message, comprising:
Determine the VxLAN mark that the empty port of described target is corresponding;
The target MAC (Media Access Control) address and the described VxLAN that call message described in the second built-in hardware consulting table engine queries identify corresponding VxLAN packaging information;
Described VxLAN packaging information is utilized to carry out tunnel encapsulation to described message.
11. methods according to claim 1 or 7 to 10 any one, is characterized in that, before the message that described acquisition is to be forwarded, also comprise:
The management server of storage host is the business rule of each empty port arrangement in the described virtual switch disposed in described physical network card.
12. methods according to claim 1 to 5 and 7 to 10 any one, is characterized in that, described the Business Processing corresponding with described business rule is carried out to described message after, also comprise:
When the result of described Business Processing shows the forwarding without the need to forbidding described message, then forward the message after described Business Processing.
13. 1 kinds of message process devices, is characterized in that, are applied to the physical network card being deployed with virtual switch, comprise:
Receive message unit, for obtaining message to be forwarded, described message carries VLAN mark;
Port determining unit, for the corresponding relation according to empty port in VLAN and described virtual switch, determines the empty port of target corresponding to described VLAN mark;
Service Processing Unit, for the business rule based on the empty port arrangement of described target, carries out the Business Processing corresponding with described business rule to described message.
14. devices according to claim 13, is characterized in that, described Receive message unit, comprising:
First Receive message unit, for receiving message to be sent; The message that VM in the main frame of described message belonging to described physical network card sends, and described message is sent to described physical network card through the virtual switch that described VM is corresponding; The inside VLAN that described VLAN is designated in described main frame identifies, described inner VLAN is designated after described main frame constructs described VM, be that Microsoft Loopback Adapter in described VM distributes, for the mark of Microsoft Loopback Adapter described in unique identification in described main frame by the management server of described main frame.
15. devices according to claim 14, is characterized in that, also comprise:
One VLAN converting unit, for determine the empty port of described target in described port determining unit after, based on the target VLAN belonging to the empty port of preset described target, the described inner VLAN mark of carrying in described message is revised as the mark of described target VLAN.
16. devices according to claim 13, is characterized in that, described Receive message unit, comprising:
Second message acquiring unit, for obtaining message to be received, described message also carries target MAC (Media Access Control) address; Wherein, described VLAN is designated the mark of the empty target VLAN belonging to port of target of described virtual switch, and described target MAC (Media Access Control) address is the MAC Address of the Microsoft Loopback Adapter in the VM of host deployments; The main frame of described main frame belonging to described physical network card;
Then described port determining unit, comprising:
Port determination subelement, for the corresponding relation according to empty port in VLAN, MAC Address and described virtual switch, determines the empty port of target that described target VLAN, target MAC (Media Access Control) address are corresponding.
17. devices according to claim 16, is characterized in that, also comprise:
2nd VLAN converting unit, for determine the empty port of described target in described port determining unit after, corresponding relation between identifying based on the inside VLAN in preset empty port and described main frame, the mark of the described target VLAN carried by described message is revised as the empty inside VLAN corresponding to port of described target and identifies, described inner VLAN is designated after described main frame constructs VM, by the management server of described main frame be described main frame build VM in Microsoft Loopback Adapter distribute, for the mark of the Microsoft Loopback Adapter in the VM that main frame described in unique identification in described main frame builds.
18., according to claim 13 to the device described in 17 any one, is characterized in that, also comprise:
First dispensing unit, before receiving described message at described Receive message unit, the device configuration information that receiving management server sends, described device configuration information comprises: management server is that the inside VLAN that the Microsoft Loopback Adapter in the VM of main frame structure distributes identifies; Described inner VLAN is used for the mark of Microsoft Loopback Adapter described in unique identification in described main frame; The main frame of described main frame belonging to described physical network card;
Relation construction unit, for storing the corresponding relation in the described virtual switch disposed in described inner VLAN mark and described physical network card between empty port.
19. devices according to claim 13, is characterized in that, the business rule of the empty port arrangement of described target comprises one or more:
Access control list ACL, service quality QOS strategy and VxLAN processing rule.
20. devices according to any one of claim 1 or 19, is characterized in that, also comprise:
Business configuration unit, before obtaining described message at described Receive message unit, the management server of storage host is the business rule of each empty port arrangement in the described virtual switch disposed in described physical network card.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510548239.7A CN105207873B (en) | 2015-08-31 | 2015-08-31 | A kind of message processing method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510548239.7A CN105207873B (en) | 2015-08-31 | 2015-08-31 | A kind of message processing method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105207873A true CN105207873A (en) | 2015-12-30 |
| CN105207873B CN105207873B (en) | 2019-02-26 |
Family
ID=54955322
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510548239.7A Active CN105207873B (en) | 2015-08-31 | 2015-08-31 | A kind of message processing method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105207873B (en) |
Cited By (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106230668A (en) * | 2016-07-14 | 2016-12-14 | 杭州华三通信技术有限公司 | Connection control method and device |
| CN106878199A (en) * | 2016-12-20 | 2017-06-20 | 新华三技术有限公司 | The collocation method and device of a kind of access information |
| WO2017113306A1 (en) * | 2015-12-31 | 2017-07-06 | 华为技术有限公司 | Method for sending virtual extensible local area network packet, computer device, and readable medium |
| CN106998347A (en) * | 2016-01-26 | 2017-08-01 | 中兴通讯股份有限公司 | The apparatus and method of server virtualization network share |
| CN107483369A (en) * | 2017-09-13 | 2017-12-15 | 郑州云海信息技术有限公司 | A kind of message processing method and virtual switch |
| WO2018028594A1 (en) * | 2016-08-11 | 2018-02-15 | 中兴通讯股份有限公司 | Networking method for hybrid cloud platform, and hybrid cloud platform system |
| CN107770031A (en) * | 2017-10-26 | 2018-03-06 | 郑州云海信息技术有限公司 | A kind of expansible VLAN vxlan message processing methods and device |
| CN107819658A (en) * | 2016-09-14 | 2018-03-20 | 中兴通讯股份有限公司 | A kind of message transmitting method, MEC equipment and system |
| CN108259391A (en) * | 2017-06-29 | 2018-07-06 | 新华三技术有限公司 | A kind of port configuration method and device |
| CN109495399A (en) * | 2017-09-13 | 2019-03-19 | 中兴通讯股份有限公司 | A kind of HQOS implementation method, device and equipment based on router traffic attribute |
| CN109936641A (en) * | 2019-01-25 | 2019-06-25 | 华为技术有限公司 | Method, virtual switch and the distributed DNS system of domain name mapping |
| CN110088732A (en) * | 2016-12-19 | 2019-08-02 | 华为技术有限公司 | A kind of data package processing method, host and system |
| CN110224917A (en) * | 2018-03-02 | 2019-09-10 | 杭州海康威视数字技术股份有限公司 | Data transmission method, apparatus and system, server |
| CN110365697A (en) * | 2019-07-26 | 2019-10-22 | 新华三大数据技术有限公司 | A kind of virtual firewall setting method, device, electronic equipment and storage medium |
| CN110381361A (en) * | 2018-04-12 | 2019-10-25 | 华为技术有限公司 | A kind of method for processing business and relevant device |
| CN110392002A (en) * | 2019-07-19 | 2019-10-29 | 广东省新一代通信与网络创新研究院 | Message processing method, device, equipment and readable storage medium storing program for executing |
| CN110391993A (en) * | 2019-07-12 | 2019-10-29 | 苏州浪潮智能科技有限公司 | A kind of data processing method and system |
| CN110768930A (en) * | 2018-07-25 | 2020-02-07 | 成都鼎桥通信技术有限公司 | Data forwarding method and device for server |
| CN110912825A (en) * | 2018-09-18 | 2020-03-24 | 阿里巴巴集团控股有限公司 | Message forwarding method, device, equipment and system |
| CN111130863A (en) * | 2019-12-12 | 2020-05-08 | 北京浪潮数据技术有限公司 | Virtual network card management method, system, equipment and computer storage medium |
| CN111224898A (en) * | 2018-11-23 | 2020-06-02 | 北京金山云网络技术有限公司 | Message forwarding method and device, switch equipment and intelligent network card |
| CN111224897A (en) * | 2018-11-23 | 2020-06-02 | 北京金山云网络技术有限公司 | Flow forwarding method and device, switch equipment and intelligent network card |
| CN111698167A (en) * | 2020-04-01 | 2020-09-22 | 新华三大数据技术有限公司 | Message processing method and device |
| CN113271245A (en) * | 2021-05-21 | 2021-08-17 | 平安科技(深圳)有限公司 | Message processing method and device, network card and computer readable storage medium |
| CN114531405A (en) * | 2020-10-31 | 2022-05-24 | 华为技术有限公司 | Flow table processing method and related equipment |
| CN114679349A (en) * | 2022-03-29 | 2022-06-28 | 新华三技术有限公司 | Data communication method and device |
| WO2023236858A1 (en) * | 2022-06-06 | 2023-12-14 | 华为技术有限公司 | Flow table rule management method, traffic management method and system, and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101820392A (en) * | 2010-03-26 | 2010-09-01 | 中兴通讯股份有限公司 | Method for realizing multi-service forwarding and network processor |
| CN102447568A (en) * | 2011-11-18 | 2012-05-09 | 烽火通信科技股份有限公司 | Method for treating downlinking broadcast, flooding business and multicasting business in gigabit passive optical network (GPON) system |
| EP2493124A1 (en) * | 2009-11-27 | 2012-08-29 | ZTE Corporation | Implementing method and device for virtual local area network stack accessing virtual private wire service |
| CN104468219A (en) * | 2014-12-11 | 2015-03-25 | 杭州华三通信技术有限公司 | Virtual networking network topology discovery method and device |
-
2015
- 2015-08-31 CN CN201510548239.7A patent/CN105207873B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2493124A1 (en) * | 2009-11-27 | 2012-08-29 | ZTE Corporation | Implementing method and device for virtual local area network stack accessing virtual private wire service |
| CN101820392A (en) * | 2010-03-26 | 2010-09-01 | 中兴通讯股份有限公司 | Method for realizing multi-service forwarding and network processor |
| CN102447568A (en) * | 2011-11-18 | 2012-05-09 | 烽火通信科技股份有限公司 | Method for treating downlinking broadcast, flooding business and multicasting business in gigabit passive optical network (GPON) system |
| CN104468219A (en) * | 2014-12-11 | 2015-03-25 | 杭州华三通信技术有限公司 | Virtual networking network topology discovery method and device |
Cited By (44)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112422393B (en) * | 2015-12-31 | 2022-03-25 | 华为技术有限公司 | Method for transmitting message of extensible virtual local area network, computer equipment and readable medium |
| WO2017113306A1 (en) * | 2015-12-31 | 2017-07-06 | 华为技术有限公司 | Method for sending virtual extensible local area network packet, computer device, and readable medium |
| US11283650B2 (en) | 2015-12-31 | 2022-03-22 | Huawei Technologies Co., Ltd. | Method for sending virtual extensible local area network packet, computer device, and computer readable medium |
| CN112422393A (en) * | 2015-12-31 | 2021-02-26 | 华为技术有限公司 | Method for transmitting message of extensible virtual local area network, computer equipment and readable medium |
| US10771286B2 (en) | 2015-12-31 | 2020-09-08 | Huawei Technologies Co., Ltd. | Method for sending virtual extensible local area network packet, computer device, and computer readable medium |
| CN106998347A (en) * | 2016-01-26 | 2017-08-01 | 中兴通讯股份有限公司 | The apparatus and method of server virtualization network share |
| CN106230668B (en) * | 2016-07-14 | 2020-01-03 | 新华三技术有限公司 | Access control method and device |
| CN106230668A (en) * | 2016-07-14 | 2016-12-14 | 杭州华三通信技术有限公司 | Connection control method and device |
| WO2018028594A1 (en) * | 2016-08-11 | 2018-02-15 | 中兴通讯股份有限公司 | Networking method for hybrid cloud platform, and hybrid cloud platform system |
| CN107819658A (en) * | 2016-09-14 | 2018-03-20 | 中兴通讯股份有限公司 | A kind of message transmitting method, MEC equipment and system |
| CN107819658B (en) * | 2016-09-14 | 2021-08-10 | 中兴通讯股份有限公司 | Message transmission method, MEC (message aggregation center) equipment and system |
| CN110088732B (en) * | 2016-12-19 | 2021-08-20 | 华为技术有限公司 | Data packet processing method, host and system |
| CN110088732A (en) * | 2016-12-19 | 2019-08-02 | 华为技术有限公司 | A kind of data package processing method, host and system |
| US11190375B2 (en) | 2016-12-19 | 2021-11-30 | Huawei Technolgoies Co., Ltd. | Data packet processing method, host, and system |
| CN106878199A (en) * | 2016-12-20 | 2017-06-20 | 新华三技术有限公司 | The collocation method and device of a kind of access information |
| CN106878199B (en) * | 2016-12-20 | 2020-02-11 | 新华三技术有限公司 | Configuration method and device of access information |
| CN108259391A (en) * | 2017-06-29 | 2018-07-06 | 新华三技术有限公司 | A kind of port configuration method and device |
| CN109495399A (en) * | 2017-09-13 | 2019-03-19 | 中兴通讯股份有限公司 | A kind of HQOS implementation method, device and equipment based on router traffic attribute |
| CN107483369A (en) * | 2017-09-13 | 2017-12-15 | 郑州云海信息技术有限公司 | A kind of message processing method and virtual switch |
| CN107483369B (en) * | 2017-09-13 | 2020-09-08 | 苏州浪潮智能科技有限公司 | Message processing method and virtual switch |
| CN107770031A (en) * | 2017-10-26 | 2018-03-06 | 郑州云海信息技术有限公司 | A kind of expansible VLAN vxlan message processing methods and device |
| CN110224917A (en) * | 2018-03-02 | 2019-09-10 | 杭州海康威视数字技术股份有限公司 | Data transmission method, apparatus and system, server |
| CN110381361A (en) * | 2018-04-12 | 2019-10-25 | 华为技术有限公司 | A kind of method for processing business and relevant device |
| CN110768930A (en) * | 2018-07-25 | 2020-02-07 | 成都鼎桥通信技术有限公司 | Data forwarding method and device for server |
| CN110768930B (en) * | 2018-07-25 | 2022-03-29 | 成都鼎桥通信技术有限公司 | Data forwarding method and device for server |
| CN110912825A (en) * | 2018-09-18 | 2020-03-24 | 阿里巴巴集团控股有限公司 | Message forwarding method, device, equipment and system |
| US11677686B2 (en) | 2018-09-18 | 2023-06-13 | Alibaba Group Holding Limited | Packet forwarding method, apparatus, device, and system |
| CN110912825B (en) * | 2018-09-18 | 2022-08-02 | 阿里巴巴集团控股有限公司 | Message forwarding method, device, equipment and system |
| CN111224897A (en) * | 2018-11-23 | 2020-06-02 | 北京金山云网络技术有限公司 | Flow forwarding method and device, switch equipment and intelligent network card |
| CN111224898A (en) * | 2018-11-23 | 2020-06-02 | 北京金山云网络技术有限公司 | Message forwarding method and device, switch equipment and intelligent network card |
| CN109936641B (en) * | 2019-01-25 | 2020-12-04 | 华为技术有限公司 | Domain name resolution method, virtual switch and distributed DNS system |
| CN109936641A (en) * | 2019-01-25 | 2019-06-25 | 华为技术有限公司 | Method, virtual switch and the distributed DNS system of domain name mapping |
| CN110391993A (en) * | 2019-07-12 | 2019-10-29 | 苏州浪潮智能科技有限公司 | A kind of data processing method and system |
| CN110392002B (en) * | 2019-07-19 | 2020-10-23 | 广东省新一代通信与网络创新研究院 | Message processing method, device, equipment and readable storage medium |
| WO2021012601A1 (en) * | 2019-07-19 | 2021-01-28 | 广东省新一代通信与网络创新研究院 | Message processing method and device, apparatus, and readable storage medium |
| CN110392002A (en) * | 2019-07-19 | 2019-10-29 | 广东省新一代通信与网络创新研究院 | Message processing method, device, equipment and readable storage medium storing program for executing |
| CN110365697A (en) * | 2019-07-26 | 2019-10-22 | 新华三大数据技术有限公司 | A kind of virtual firewall setting method, device, electronic equipment and storage medium |
| CN111130863A (en) * | 2019-12-12 | 2020-05-08 | 北京浪潮数据技术有限公司 | Virtual network card management method, system, equipment and computer storage medium |
| CN111698167A (en) * | 2020-04-01 | 2020-09-22 | 新华三大数据技术有限公司 | Message processing method and device |
| CN114531405A (en) * | 2020-10-31 | 2022-05-24 | 华为技术有限公司 | Flow table processing method and related equipment |
| CN113271245A (en) * | 2021-05-21 | 2021-08-17 | 平安科技(深圳)有限公司 | Message processing method and device, network card and computer readable storage medium |
| CN114679349A (en) * | 2022-03-29 | 2022-06-28 | 新华三技术有限公司 | Data communication method and device |
| CN114679349B (en) * | 2022-03-29 | 2023-07-21 | 新华三技术有限公司 | Data communication method and device |
| WO2023236858A1 (en) * | 2022-06-06 | 2023-12-14 | 华为技术有限公司 | Flow table rule management method, traffic management method and system, and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105207873B (en) | 2019-02-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105207873A (en) | Message processing method and apparatus | |
| US10541836B2 (en) | Virtual gateways and implicit routing in distributed overlay virtual environments | |
| CN112422393B (en) | Method for transmitting message of extensible virtual local area network, computer equipment and readable medium | |
| CN107819663B (en) | Method and device for realizing virtual network function service chain | |
| CN110999265B (en) | Managing network connectivity between cloud computing service endpoints and virtual machines | |
| US10461958B2 (en) | Packet transmission method and apparatus | |
| CN105379218A (en) | Service flow processing method, apparatus and device | |
| CN113411243B (en) | Data transmission method and device | |
| CN105577548A (en) | Software definition network message processing method and device | |
| CN107317752B (en) | Method and device for forwarding data message | |
| US9344360B2 (en) | Technique for managing an allocation of a VLAN | |
| CN102792651B (en) | At the device of MAC layer application service path Route Selection | |
| US10693785B2 (en) | Method and system for forwarding data, virtual load balancer, and readable storage medium | |
| US10084702B2 (en) | Packet processing method and system, and device | |
| CN105939267B (en) | Outband management method and device | |
| CN105681198A (en) | Business chain processing method, device and system | |
| CN105323229A (en) | CPE-based data transmission method, network element, platform and system | |
| CN111132170A (en) | Communication method and device of virtual firewall, virtual firewall and topological structure | |
| KR20180056692A (en) | Data Routing Method and Apparatus | |
| CN105052106A (en) | Methods and systems for receiving and transmitting internet protocol (ip) data packets | |
| EP3503484A1 (en) | Message transmission method, device and network system | |
| CN112583655A (en) | Data transmission method and device, electronic equipment and readable storage medium | |
| CN113162785A (en) | Method, device and system for establishing network interface | |
| CN110351394B (en) | Network data processing method and device, computer device and readable storage medium | |
| EP4250649A1 (en) | Packet forwarding method and apparatus, and network system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |