CN105635342B - Establish method, name server and the memory node of connection - Google Patents

Establish method, name server and the memory node of connection Download PDF

Info

Publication number
CN105635342B
CN105635342B CN201610051582.5A CN201610051582A CN105635342B CN 105635342 B CN105635342 B CN 105635342B CN 201610051582 A CN201610051582 A CN 201610051582A CN 105635342 B CN105635342 B CN 105635342B
Authority
CN
China
Prior art keywords
memory node
name server
storage system
address
domain
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610051582.5A
Other languages
Chinese (zh)
Other versions
CN105635342A (en
Inventor
李学锋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201610051582.5A priority Critical patent/CN105635342B/en
Publication of CN105635342A publication Critical patent/CN105635342A/en
Application granted granted Critical
Publication of CN105635342B publication Critical patent/CN105635342B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4535Network directories; Name-to-address mapping using an address exchange platform which sets up a session between two nodes, e.g. rendezvous servers, session initiation protocols [SIP] registrars or H.323 gatekeepers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A kind of method that establishing connection, name server and memory node, are related to computer field, client can not establish connection with storage system when for solving the problem of that the IP address of the memory node in storage system changes.This method comprises: name server receives the access request message that client is sent, which determines the NS record stored in the name server according to the machine name that the access request message includes;The IP address for the first memory node that the name server includes according to NS record, is sent to first memory node for the access request message;The name server receives the access response message for the IP address current including the second memory node that first memory node is sent according to the access request message;The access response message is sent to the client by the name server, and the current IP address of second memory node establishes connection for the client and second memory node.

Description

Establish method, name server and the memory node of connection
Technical field
The present invention relates to computer field more particularly to a kind of methods for establishing connection, name server and storage section Point.
Background technique
Network connection storage (full name in English: Network Attached Storage, abbreviation: NAS) system is based on standard Network protocol realizes data transmission, can provide file-sharing and data for the computer of the various different operating systems in network Backup.Wherein, NAS system externally provides server information block (full name in English: Server Message Block, abbreviation: SMB) Protocol access, user can access NAS system by SMB client.
In order to guarantee the legitimacy of client, it usually needs authenticated to client.Due to accessing the client of NAS system End is from Active Directory (full name in English: Active Directory, abbreviation: AD) domain, it is therefore desirable to which NAS system is added The domain AD, and the ability authenticated to the domain AD user can be provided.Wherein, the domain AD is in the server of windows based on database Catalogue is provided, certification, a system of the services such as strategy, the authentication protocol for the comparison highly effective and safe supported is Kerberos. Kerberos is the name that ghostdom in Greek mythology guards mythical animals, and a kind of association of certification completely why is named with Kerberos View is because Kerberos is three strange beasts, and entire verification process also relates to tripartite: client, server-side and close Key Distribution Center (full name in English: Key Distribution Center, referred to as: KDC).In the domain AD, the role of KDC is by domain Controller (full name in English: Domain Controller, referred to as: DC) take on.
In the prior art, NAS system is to update all business IP of NAS system into the domain AD when the domain AD is added Name server (full name in English: Domain Name System, referred to as: DNS) on, in this way, the name server is receiving After the machine name of the transmission of SMB client, corresponding IP address directly can be returned to the SMB client according to machine name.But It is that IP address is not fixed and invariable, the network configuration change of NAS system, new node is added, and original node is exited, can be led Cause the variation of IP address.However, the variation of above-mentioned IP address can not all embody on dns server in time, so as to cause client Possibly connection can not be established with NAS storage system.
Summary of the invention
The object of the present invention is to provide a kind of method for establishing connection, name server and memory nodes, for solving In the prior art, when the IP address of memory node changes in storage system, client can not establish connection with storage system The problem of.
Above-mentioned purpose will be reached by the feature in independent claims.Further implementation is wanted in appurtenance It asks, embodied in the description and the appended drawings.
In a first aspect, providing a kind of method for establishing connection, the method is applied to active directory domain, the domain the AD packet Name server and storage system are included, the storage system includes memory node, which comprises domain name server The access request message that client is sent is received, the access request message includes the machine name of storage system;Domain name clothes Business device determines the name server NS record stored in domain name server according to the machine name;The NS record includes institute State the internet protocol address of the first memory node in machine name and the storage system;Domain name server according to The access request message is sent to first memory node by the IP address of first memory node;Domain name clothes Business device receives first memory node and is deposited according to what the access request message was sent including second in the storage system Store up the access response message of the current IP address of node;The access response message is sent to the visitor by domain name server Family end, the current IP address of second memory node establish connection for the client and second memory node.
Using the above method, name server, can be according to NS after the access request message for receiving client transmission The access request message is forwarded to the first memory node in storage system as internal name server by record, in this way, should The newest IP address of second memory node in the storage system can be back to client by the first memory node, to avoid Due to the IP address of name server record and the real ip address of memory node is inconsistent causes the client can not be with storage Node establishes the problem of connection.
With reference to first aspect, in the first possible implementation of the first aspect, the access response message is also wrapped Life span TTL is included, the life span is for indicating that the IP address of second memory node caches in the client Time.It is worth noting that when client initiates the connection request using the IP address of caching, in fact it could happen that client-cache IP address and the inconsistent situation of the IP address of memory node, cause client that can not establish connection with memory node to be therefore Avoid client to the caching of IP address, it is preferable that the life span TTL=0, in this way, avoid client to second The caching of memory node IP address, so that client when establishing connection with storage system every time, is required to first storage Node requests the IP address of memory node, when ensuring that client initiates access request every time, can get storage section The newest IP address of point.
With reference to first aspect or the first possible implementation of first aspect, second in first aspect are possible Implementation in, domain name server receive client send access request message before, comprising: domain name service Device receives the record update message that first memory node is sent;Domain name server is built according to the record update message Found the NS record.
Second aspect, provides a kind of method for establishing connection, and the method is applied to active directory domain, the domain the AD packet Name server and storage system are included, the storage system includes memory node, which comprises in the storage system The first memory node receive domain name server send access request message;First memory node is deposited described in obtaining The current IP address of the second memory node in storage system;And it will be saved including second storage according to the access request message The access response message of the current IP address of point is sent to domain name server.
In conjunction with second aspect, in the first possible implementation of the second aspect, first memory node is institute The primary storage node in storage system is stated, the first memory node within the storage system receives domain name server and sends Access request message before, comprising: first memory node to domain name server send record update message, it is described Record update message for establishing name server NS record, NS record include the IP address of first memory node with And the machine name of the storage system;The NS record will be described in the client that received transmission for domain name server Access request message is sent to first memory node.
In conjunction with the possible implementation of the first of second aspect or second aspect, second in second aspect may Implementation in, first memory node is the standby memory node in the storage system, within the storage system First memory node receives before the access request message that domain name server is sent, comprising: first memory node is true Primary storage node in the fixed storage system sends failure;The IP address of itself is changed to described by first memory node The IP address of primary storage node.That is, the first memory node is made when the primary storage nodes break down in storage system The function that the primary storage node can be taken over for standby memory node, avoids Single Point of Faliure.
In conjunction with any possible implementation of second aspect, or the above second aspect, in the third of second aspect In kind possible implementation, further includes: first memory node obtains the negative of each memory node in the storage system Information carrying breath;First memory node determines that the load of second memory node is minimum according to the load information.In this way, the One memory node is the storage for establishing connection with the client according to the selection of the load information of memory node each in storage system Node realizes load balancing, improves service performance.
In conjunction with any possible implementation of second aspect, or the above second aspect, the 4th of second aspect the In the possible implementation of kind, first memory node supports Internet Protocol version 4 IPV4 and/or sixth version internet Protocol IP V6.
The third aspect provides a kind of name server, and domain name server belongs to active directory domain, and the domain AD is also Including storage system, domain name server includes: receiving unit, for receiving the access request message of client transmission, institute State the machine name that access request message includes the storage system;Determination unit, for determining the domain according to the machine name The name server NS record stored in name server;The NS record includes in the machine name and the storage system The internet protocol address of first memory node;Transmission unit, for the IP address according to first memory node, by institute It states access request message and is sent to first memory node;The receiving unit is also used to, and receives first memory node According to the access for the IP address current including the second memory node in the storage system that the access request message is sent Response message;The transmission unit is also used to, and the access response message is sent to the client, the second storage section The current IP address of point establishes connection for the client and second memory node.
In conjunction with the third aspect, in the first possible implementation of the third aspect, the access response message is also wrapped Life span TTL is included, the life span is for indicating that the IP address of second memory node caches in the client Time.Preferably, wherein the life span TTL=0.
In conjunction with the possible implementation of the first of the third aspect or the third aspect, second in the third aspect can Further include configuration unit, the receiving unit is also used in the implementation of energy: receiving the note that first memory node is sent Record update message;The configuration unit is used to establish the NS according to the record update message and record.
Fourth aspect, provides a kind of memory node, and the memory node belongs to the storage system in active directory domain, institute Stating the domain AD further includes name server, and the memory node includes: receiving unit, for receiving the transmission of domain name server Access request message;Acquiring unit, for obtaining the current IP address of the second memory node in the storage system;It sends single Member, for being sent out the access response message including the current IP address of second memory node according to the access request message It send to domain name server.
In conjunction with fourth aspect, in the first possible implementation of the fourth aspect, if the memory node is described Primary storage node in storage system, then the transmission unit is also used to, and sends record update message to domain name server, The record update message for establishing name server NS record, NS record include the IP address of the memory node with And the machine name of the storage system;The NS record will be described in the client that received transmission for domain name server Access request message is sent to the memory node.
In conjunction with fourth aspect, in the second possible implementation of the fourth aspect, the memory node is described deposits Standby memory node in storage system, the memory node further include processing unit, for determining the main memory in the storage system It stores up node and sends failure, and the IP address of itself is changed to the IP address of the primary storage node.
In conjunction with any possible implementation of fourth aspect, or the above fourth aspect, in the third of fourth aspect In the possible implementation of kind, the acquiring unit is also used to, and obtains the load letter of each memory node in the storage system Breath;The memory node further includes determination unit, for determining the load of second memory node according to the load information It is minimum.
In conjunction with any possible implementation of fourth aspect, or the above fourth aspect, the 4th of fourth aspect the In the possible implementation of kind, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6。
5th aspect, provides a kind of name server, comprising: processor, communication interface, memory and communication bus;Its In, the processor, the communication interface and the memory complete mutual communication by the communication bus;It is described to deposit Reservoir is for storing program code;The processor calls the described program generation of the memory storage by the communication interface Code is for executing in a first aspect, method described in any possible implementation of the above first aspect.
6th aspect, provides a kind of memory node, comprising: processor, communication interface, memory and communication bus;Wherein, The processor, the communication interface and the memory complete mutual communication by the communication bus;The storage Device is for storing program code;The processor calls the said program code of the memory storage by the communication interface For executing second aspect, or method described in any possible implementation of the above second aspect.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, embodiment will be described below Needed in attached drawing be briefly described, it should be apparent that, the accompanying drawings in the following description is some realities of the invention Example is applied, it for those of ordinary skill in the art, without creative efforts, can also be according to these attached drawings Obtain other attached drawings.
Fig. 1 is a kind of flow diagram for the method for establishing connection provided in an embodiment of the present invention;
Fig. 2 is the flow diagram for the method that the domain AD is added in a kind of storage system provided in an embodiment of the present invention;
Fig. 3 is the form schematic diagram of record update message provided in an embodiment of the present invention;
Fig. 4 is the flow diagram for the method that another kind provided in an embodiment of the present invention establishes connection;
Fig. 5 is a kind of form schematic diagram of access response message provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of name server provided in an embodiment of the present invention;
Fig. 7 is a kind of structural schematic diagram of memory node provided in an embodiment of the present invention;
Fig. 8 is the structural schematic diagram of another name server provided in an embodiment of the present invention;
Fig. 9 is the structural schematic diagram of another memory node provided in an embodiment of the present invention.
Specific embodiment
In order to enable those skilled in the art to be easier to understand technical solution of the present invention, first below to the present invention The technical term being related to simply is introduced.
Domain is both the logical organization unit of window networking operating system and the logical organization unit of Internet.? In window networking operating system, domain is security boundary, domain administrator can only management domain inside, unless other domains are explicit Ground assigns Admin Administration's permission, and administrator can access or manage other domains, also, there is the peace of oneself in each domain Full strategy, and the safe trusting relationship with other domains.
The domain AD is to provide catalogue based on database in windows server, is authenticated, a system of the services such as strategy, it It is responsible for the centralized directory management service of the medium-and-large-sized network environment of framework, handles network object in the tissue, the object can To be user, group, computer, domain control station, mail, setting file, organizational unit, tree system etc..
Kerberos authentication is actually a kind of authentication mode for being based on bill (Ticket).Client will access server Resource, need first buy server-side approve bill.That is, client needs to buy in advance before accessing server Good ballot paper waits ability admission after ticket checking to be serviced.Before this, client needs first to buy tickets, but this ticket cannot be purchased directly It buys, needs a call warrant.Client needs to be obtained ahead of time before vote buying a call warrant.This call warrant and into The admission ticket for entering server is sold by KDC.The premise for supporting kerberos authentication is to need to come to visit by domain name (machine name) The service of asking.
Dns server is a kind of distributed data base for TCP/IP application program, it is with providing host name and IP The record of conversion between location and the route selection information in relation to Email, DNS management system management is also resource record.
Resource record is the DNS database record for replying DNS client request, each dns server contains All resource records for the DNS namespace that it is managed.Resource record includes information related with particular host, such as IP Location, the type that service is provided etc..Common resource record types A record and NS record, wherein A record is the weight of name resolving It records, it is used to for specific host name being mapped to the IP address of corresponding host, and administrator can hand in the dns server Dynamic creation is more newly arrived creation by DNS client dynamic.NS record is the specified authoritative name service for being responsible for this dns zone domain Device.The difference of A record and NS record is that A record directly provides destination IP to client, and NS record gives dns resolution task Specific dns server, the IP address that records is the IP address of the particular server in NS record.In the prior art, DNS takes It is engaged in recording using A in device, when the dns server receives the access request message of client, by the memory node of record IP address return directly to client, since the IP address of the memory node recorded in dns server is not real-time update, Therefore, when the change of the IP address of memory node, client will be unable to establish with the memory node by IP address before changing Connection.
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described.
The embodiment of the present invention provides a kind of method for establishing connection, and this method is applied to active directory domain, the domain AD packet Name server and storage system are included, which includes memory node, and this method is as shown in Figure 1, comprising:
S101, name server receive the access request message that client is sent, which includes storage system The machine name of system.
Storage system described herein can be NAS system, be introduced by above-mentioned term it is found that due to accessing NAS system Client be from Active Directory Domain, it is therefore desirable to NAS system be added the domain AD, wherein the storage system be added the domain AD When, a machine account can be created on name server, the title of the machine account is the machine name of the storage system.
S102, the name server determine the name server NS note stored in the name server according to the machine name Record, NS record include the internet protocol address of the machine name and the first memory node in the storage system.
The access request message is sent to this according to the IP address of first memory node by S103, the name server First memory node.
Wherein, NS record is also possible to create when the domain AD is added in storage system, introduced by above-mentioned term it is found that For NS record for giving dns resolution task to specific dns server, the IP address recorded in NS record is the special services The IP address of device, in this way, name server can record after the access request message for receiving client transmission according to the NS The access request message is forwarded to specific dns server, in embodiments of the present invention, which is the spy Fixed dns server, the IP that records is the IP address of first memory node in NS record.That is, the present invention is real Apply example selects a memory node as internal name server within the storage system, for providing between machine name and IP address Conversion.
S104, first memory node receive the access request message of name server transmission.
S105, first memory node obtain the current IP address of the second memory node in the storage system.
S106, first memory node will include the current IP address of second memory node according to the access request message Access response message be sent to the name server.
It is worth noting that first memory node can be with the shape of other memory nodes in the real-time perception storage system State variation, that is to say, that first memory node, can be by the storage section in storage system after receiving access request message The newest IP address of point is back to client, it is ensured that the client can correctly be built with the memory node according to the IP address Vertical connection, avoids the IP address of name server record in the prior art and the IP address of the memory node may be inconsistent, The problem of causing client that can not establish connection with memory node.
S107, the name server receive the access response message of first memory node transmission.
The access response message is sent to the client by S108, the name server.
Wherein, the current IP address of second memory node establishes connection for the client and second memory node.
In a kind of possible implementation of the embodiment of the present invention, which can also obtain the storage system The load information of each memory node in system, and determine that the load of second memory node is minimum according to the load information.Also It is to say, which will load the current IP address of the smallest memory node and be sent to the name server in storage system.
It is worth noting that in the prior art, the storage system is when being added the domain AD, in the increased resource of name server It is recorded as A record, the difference of the A record and NS record introduced by above-mentioned term is it is found that in the prior art, which exists After the access request message for receiving client transmission, each memory node in the storage system that records in poll A record IP address, and the IP address being polled to is sent to client, load balancing is not considered, in this way, high degree will lead to The busier memory node of business, still obtains IP address by client and accesses, so that high performance service can not be provided, And above-mentioned possible implementation is used, which is the load information according to memory node each in storage system The memory node of connection is established in selection with the client, is realized load balancing, is improved service performance, wherein load letter Breath specifically can be connection number, the handling capacity of each service network port or the utilization rate of CPU of the business IP of each memory node Deng.
Above-mentioned steps S101 to step S108 primarily illustrates the process that the first memory node returns to IP address to client, Client gets the process for establishing connection with second memory node after IP address can be same as the prior art, i.e. the client After termination receives the IP address of second memory node, certification bill is obtained from the KDC server in the domain AD, and according to the IP Location and the certification bill initiate the connection with second memory node, and details are not described herein again.
In order to make those skilled in the art more understand a kind of method for establishing connection provided in an embodiment of the present invention, under Face is illustrated by detailed citing.
Firstly, Fig. 2 is the method flow that the domain AD is added in storage system, as shown in Figure 2, comprising:
The first memory node in S201, storage system obtains the domain-name information in the domain AD, and according to the dns query message The location information for all domain controller DC for including in the domain AD.
Wherein, the domain-name information in the domain AD can be the domain AD FQDN (Fully Qualified Domain Name, Fully Qualified Domain Name).
S202, first memory node select a domain controller, and establish LDAP with the domain controller (Lightweight Directory Access Protocol, Lightweight Directory Access Protocol) connection.
Wherein, which can be according to the website of the storage system and the weight information of each domain controller Select the domain controller of connection.
Specifically, which can use the account of the administrator in the domain AD or with the account that domain permission is added Number with the domain controller establish connection.
S203, first memory node create one on name server by the LDAP connection established with the storage The machine account that the machine name of system is run after fame.
The attribute of the machine account and the service of offer is arranged in S204, first memory node.
The password of the machine account is arranged in S205, first memory node.
S206, first memory node send record update message to name server, which is used for The NS record of the storage system is established in name server.
Illustratively, if the entitled test of machine account in the domain AD is added in storage system, the FQDN in the domain AD is ad.com, the storage IP in system as the first memory node of internal dns server is 10.10.10.10, then first memory node is sent Record update message to the name server is as shown in Figure 3, wherein the record update message includes partition information, prerequisite item Part, more new record, the record type item Type in the more new record be NS, and address entries Addr is the IP of first memory node Location.
S207, first memory node NAS storage system the synchronous machine account of each memory node and password and The configuration information in domain is added.
Above-mentioned steps S201 to step S207 is the method flow that the domain AD is added in storage system, is different from the prior art Be, in step S206 name server creation be NS record rather than A record, other steps are same as the prior art, herein It repeats no more.Further, the NS record created based on the storage system when the domain AD is added, the following detailed description of the present invention A kind of method for establishing connection that embodiment provides, as shown in Figure 4, comprising:
S401, name server receive the access request message that client is sent, which includes storage system The machine name of system.
It is worth noting that the access request message can be IPV4 (Internet Protocol version 4, Four editions Internet protocols) A request, be also possible to IPV4 (Internet Protocol version 6, sixth version internet Agreement) AAAA request.
S402, the name server according to NS record in the IP of corresponding first memory node of the machine name that records The access request message is sent to first memory node by location.
Wherein, which supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
S403, first memory node obtain the load information of each memory node in the storage system, determine load most The second small memory node.
S404, first memory node will include the current IP address of second memory node according to the access request message Access response message be sent to the name server.
Specifically, which preserves the IP address of each memory node of other in the storage system, and can With real-time monitoring, whether the IP address of other each memory nodes is effective, if the second storage section of first memory node record The IP address of point is effective, then the IP address of second memory node of first memory node record is second memory node Current IP address.
The access response message is sent to the client by S405, the name server.
Illustratively, if the systematic name that the domain AD is added in storage system is test, the FQDN in the domain AD is ad.com, this The IP address of two memory nodes is 10.10.10.11, then the access response message is as shown in Figure 5.
In a kind of possible implementation of the embodiment of the present invention, as shown in figure 5, the TTL of the access request message (Time to live, life span) is 0, avoids the client to the caching of the second memory node IP address, in this way, the visitor Family end is required to request the IP address of memory node to first memory node when establishing connection with storage system every time, from And when ensuring that client initiates access request every time, it can get the current IP address of memory node.
S406, KDC server receive the ticket requests message of client transmission, which includes the machine Name.
The access tickets of the storage system are sent to the client by S407, the KDC server.
Wherein, which is that the storage system generates when the domain AD is added.
S408, second memory node receive the client transmission establish connection request message, this establishes connection request Message includes the access tickets.
S409, second memory node determine that the access tickets are effective.
S410, second memory node establish successful connection message to client transmission.
It should be noted that in the specific implementation process, in the storage system may include primary storage node and standby deposit Store up node, be in Fig. 2 and Fig. 4 the primary storage node progress using the first memory node as storage system for example, In the alternatively possible implementation of the embodiment of the present invention, if first memory node is standby memory node, this first Memory node can also determine that the primary storage node in the storage system sends failure, and the IP address of itself is changed to the master The IP address of memory node.In this way, when the primary storage nodes break down in the storage system, the first memory node conduct Standby memory node can take over the function of the primary storage node, avoid Single Point of Faliure.
In addition, for above method embodiment, for simple description, therefore, it is stated as a series of action combinations, But those skilled in the art should understand that, the present invention is not limited by the sequence of acts described, secondly, art technology Personnel also should be aware of, and the embodiments described in the specification are all preferred embodiments, and related movement is not necessarily Necessary to the present invention.
The embodiment of the present invention also provides a kind of name server 60, for implementing relevant step in above method embodiment Suddenly, wherein the name server belongs to active directory domain, which further includes storage system, as shown in fig. 6, the domain name takes Business device 60 include:
Receiving unit 61, for receiving the access request message of client transmission, the access request message includes storage The machine name of system;
Determination unit 62, for determining the name server NS stored in domain name server note according to the machine name Record;The Internet protocol IP of the NS record including the machine name and the first memory node in the storage system Location;
The access request message is sent to by transmission unit 63 for the IP address according to first memory node First memory node;
The receiving unit 61 is also used to, and receives the packet that first memory node is sent according to the access request message Include the access response message of the current IP address of the second memory node in the storage system;
The transmission unit 63 is also used to, and the access response message is sent to the client, second storage The current IP address of node establishes connection for the client and second memory node.
Optionally, the access response message further includes life span TTL, and the life span is for indicating described second The time that the IP address of memory node caches in the client.Wherein, the life span TTL can be equal to 0, in this way, Client is avoided to the caching of the second memory node IP address, so that client is when establishing connection with storage system every time, It is required to request the IP address of memory node to first memory node, ensures that client initiates access request every time When, it can get the newest IP address of memory node.
Optionally, further include configuration unit 64, the receiving unit 61 is also used to: receiving first memory node and send Record update message;The configuration unit 64 is used to establish the NS according to the record update message and record.
It is worth noting that the above division to domain name server function unit, only a kind of logical function partition is real There may be another division manner when border is realized, also, the physics realization of above-mentioned each functional unit may also be there are many realization side Formula, for example, above-mentioned determination unit 62 specifically can be a central processing unit, be also possible to specific integrated circuit (full name in English: Application Specific Integrated Circuit, referred to as: ASIC).
In addition, affiliated, it will be apparent to those skilled in the art ground to recognize, for convenience and simplicity of description, foregoing description Name server each unit specific work process, can refer to corresponding processes in the foregoing method embodiment, herein not It repeats again.
Using above-mentioned name server, which, can after the access request message for receiving client transmission The access request message is forwarded to the first memory node in storage system as internal name server to record according to NS, In this way, the newest IP address of the second memory node in the storage system can be back to client by first memory node, So as to avoid the IP address and memory node that are recorded due to name server real ip address it is inconsistent cause client without The problem of method and memory node establish connection.
The embodiment of the present invention also provides a kind of memory node 70, for implementing step related in above method embodiment, The memory node belongs to the storage system in active directory domain, and the domain AD further includes name server, as shown in fig. 7, The memory node 70 includes: to include:
Receiving unit 71, for receiving the access request message of domain name server transmission;
Acquiring unit 72, for obtaining the current IP address of the second memory node in the storage system;
Transmission unit 73, for will include the current IP address of second memory node according to the access request message Access response message be sent to domain name server.
Optionally, the memory node is the primary storage node in the storage system, then the transmission unit 73 is also used In, record update message is sent to domain name server, the record update message is recorded for establishing name server NS, The NS record includes the IP address of the memory node and the machine name of the storage system;The NS record is for described The access request message that the client received is sent is sent to the memory node by name server.
Optionally, the memory node is the standby memory node in the storage system, and the memory node further includes place Unit 74 is managed, for determining that the primary storage node in the storage system sends failure, and the IP address of itself is changed to institute State the IP address of primary storage node.
Optionally, which is also used to, and obtains the load information of each memory node in the storage system;It should The also determination unit 75 of memory node 70, the load for determining second memory node according to the load information are minimum.
Optionally, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
It is worth noting that the above division to memory node functional unit, only a kind of logical function partition is practical There may be another division manner when realization, for example, memory node is divided into domain adding unit, the domain AD is added for completing, And the function of NS record, monitoring unit, for monitoring the shape of each memory node in storage system are established on name server State simultaneously counts load, internal DNS unit, load and status information for being provided according to the monitoring unit, and selection load is minimum The IP address of memory node be sent to client, authentication unit, for authenticating to the connection request that client is initiated.And And the physics realization of above-mentioned each functional unit may also there are many implementations, for example, above-mentioned determination unit 75 specifically can be One central processing unit, is also possible to specific integrated circuit.
In addition, affiliated, it will be apparent to those skilled in the art ground to recognize, for convenience and simplicity of description, foregoing description Memory node each unit specific work process, can refer to corresponding processes in the foregoing method embodiment, herein no longer It repeats.
Using above-mentioned memory node, the memory node is as name server inside storage system, in receiving the domain AD Name server forwarding the access request message that sends of client after, which can will be second in the storage system The newest IP address of memory node is back to client, so as to avoid the IP address and memory node recorded due to memory node Real ip address inconsistent the problem of causing client that can not establish connection with memory node.
The embodiment of the present invention also provides another name server 80, walks accordingly in above method embodiment for implementing Suddenly, wherein domain name server belongs to active directory domain, and the domain AD further includes storage system, as shown in figure 8, described Name server 80 includes: processor (processor) 81, communication interface (Communications Interface) 82, deposits Reservoir (memory) 83 and communication bus 84;Wherein, the processor 81, the communication interface 82 and the memory 83 pass through The communication bus 84 completes mutual communication.
Processor 81 may be multi-core central processing unit CPU or specific integrated circuit ASIC (Application Specific Integrated Circuit), or be arranged to implement the one of the embodiment of the present invention A or multiple integrated circuits.
For memory 83 for storing program code, said program code includes computer operation instruction and network flow diagrams.It deposits Reservoir 83 may include high speed RAM memory, it is also possible to and it further include nonvolatile memory (non-volatile memory), A for example, at least magnetic disk storage.Memory 83 is also possible to memory array.Memory 83 is also possible to by piecemeal, and institute Virtual volume can be combined by certain rule by stating block.
The communication interface 82, for realizing the connection communication between these devices.
The processor 81 is used to execute the program code in the memory 83, to realize following operation:
The access request message that client is sent is received, the access request message includes the machine name of storage system;
The name server NS record stored in domain name server is determined according to the machine name;The NS record packet Include the internet protocol address of the first memory node in the machine name and the storage system;
According to the IP address of first memory node, the access request message is sent to first storage and is saved Point;
With receiving the IP current including the second memory node in the storage system that first memory node is sent The access response message of location;
The access response message is sent to the client, the current IP address of second memory node is used for institute It states client and second memory node establishes connection.
Optionally, the access response message further includes life span TTL, and the life span is for indicating described second The IP address of memory node time present in the client.Wherein, the life span TTL can be equal to 0.
Optionally, before the access request message that domain name server reception client is sent, comprising:
Domain name server receives the record update message that first memory node is sent;
Domain name server is established the NS according to the record update message and is recorded.
The specific work process of name server 80 can refer to corresponding description in above method embodiment, no longer superfluous herein It states.
Processor 81 in the embodiment of the present invention can be central processing unit CPU.In addition, to save the calculating of CPU money Source, processor 81 are also possible to field programmable gate array (full name in English: Field Programmable Gate Array, letter Claim: FPGA) or other hardware, alternatively, processor 81 is also possible to CPU and FPGA or other hardware, to realize that the present invention is implemented The method for establishing connection of example description.For convenience of description, Unify legislation of the embodiment of the present invention is the processor 81 of name server Realize the method that the embodiment of the present invention establishes connection.
The embodiment of the present invention also provides another memory node 90, and the memory node belongs to depositing in active directory domain Storage system, the domain AD further includes name server, as shown in figure 9, the memory node 90 includes: processor (processor) 91, communication interface (Communications Interface) 92, memory (memory) 93 and communication bus 94;Wherein, the processor 91, the communication interface 92 and the memory 93 are completed each other by the communication bus 94 Communication.
Processor 91 may be multi-core central processing unit CPU or specific integrated circuit ASIC (Application Specific Integrated Circuit), or be arranged to implement the one of the embodiment of the present invention A or multiple integrated circuits.
For memory 93 for storing program code, said program code includes computer operation instruction and network flow diagrams.It deposits Reservoir 93 may include high speed RAM memory, it is also possible to and it further include nonvolatile memory (non-volatile memory), A for example, at least magnetic disk storage.Memory 93 is also possible to memory array.Memory 93 is also possible to by piecemeal, and institute Virtual volume can be combined by certain rule by stating block.
The communication interface 92, for realizing the connection communication between these devices.
The processor 91 is used to execute the program code in the memory 93, to realize following operation:
Receive the access request message that domain name server is sent;
Obtain the current IP address of the second memory node in the storage system;And
According to the access request message by include the current IP address of second memory node access response message It is sent to domain name server.
Optionally, the memory node is the primary storage node in the storage system, is taken in the reception domain name It is engaged in front of the access request message that device is sent, comprising:
Record update message is sent to domain name server, the record update message is for establishing name server NS Record, the NS record include the IP address of the memory node and the machine name of the storage system;The NS record is used The access request message that the client received is sent is sent to the memory node in domain name server.
Optionally, the memory node is the standby memory node in the storage system, is taken in the reception domain name It is engaged in front of the access request message that device is sent, comprising:
Determine that the primary storage node in the storage system sends failure;
The IP address of the memory node is changed to the IP address of the primary storage node.
Optionally, the operation further include:
Obtain the load information of each memory node in the storage system;
Determine that the load of second memory node is minimum according to the load information.
Optionally, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
The specific work process of memory node 90 can refer to corresponding description in above method embodiment, no longer superfluous herein It states.
Processor 91 in the embodiment of the present invention can be central processing unit CPU.In addition, to save the calculating of CPU money Source, processor 91 are also possible to FPGA or other hardware, alternatively, processor 91 is also possible to CPU and FPGA or other hardware, with Realize the method for establishing connection of description of the embodiment of the present invention.For convenience of description, Unify legislation of the embodiment of the present invention is domain name clothes The processor 91 of business device realizes the method that the embodiment of the present invention establishes connection.
In several embodiments provided herein, it should be understood that disclosed system, device and method can be with It realizes by another way.For example, the apparatus embodiments described above are merely exemplary, for example, the unit It divides, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units or components It can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, it is shown or The mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, the indirect coupling of device or unit It closes or communicates to connect, can be electrical property, mechanical or other forms.
The unit as illustrated by the separation member may or may not be physically separated, aobvious as unit The component shown may or may not be physical unit, it can and it is in one place, or may be distributed over multiple In network unit.It can select some or all of unit therein according to the actual needs to realize the mesh of this embodiment scheme 's.
It, can also be in addition, the functional units in various embodiments of the present invention may be integrated into one processing unit It is that each unit physically exists alone, can also be integrated in one unit with two or more units.Above-mentioned integrated list Member both can take the form of hardware realization, can also realize in the form of hardware adds SFU software functional unit.
The above-mentioned integrated unit being realized in the form of SFU software functional unit can store and computer-readable deposit at one In storage media.Above-mentioned SFU software functional unit is stored in a storage medium, including some instructions are used so that a computer Equipment (can be personal computer, server or the network equipment etc.) executes the portion of each embodiment the method for the present invention Step by step.And storage medium above-mentioned includes: USB flash disk, mobile hard disk, ROM (Read-Only Memory, read-only memory), RAM Various Jie that can store program code such as (Random Access Memory, random access memory), magnetic or disk Matter.
Although preferred embodiments of the present invention have been described, it is created once a person skilled in the art knows basic Property concept, then additional changes and modifications may be made to these embodiments.So it includes excellent that the following claims are intended to be interpreted as It selects embodiment and falls into all change and modification of the scope of the invention.
Obviously, various changes and modifications can be made to the invention without departing from essence of the invention by those skilled in the art Mind and range.In this way, if these modifications and changes of the present invention belongs to the range of the claims in the present invention and its equivalent technologies Within, then the present invention is also intended to include these modifications and variations.

Claims (20)

1. a kind of method for establishing connection, which is characterized in that the method is applied to active directory domain, and the domain AD includes domain Name server and storage system, the storage system include memory node, which comprises
Domain name server receives the access request message that client is sent, and the access request message includes storage system Machine name;
Domain name server determines the name server NS record stored in domain name server according to the machine name;Institute State the internet protocol address that NS record includes the machine name and the first memory node in the storage system;
The access request message is sent to described according to the IP address of first memory node by domain name server One memory node;
Domain name server receive first memory node according to the access request message send include the storage The access response message of the current IP address of the second memory node in system;
The access response message is sent to the client, the current IP of second memory node by domain name server Connection is established for the client and second memory node in address.
2. the method according to claim 1, wherein the access response message further includes life span TTL, institute Life span is stated for indicating the time that the IP address of second memory node caches in the client.
3. method according to claim 1 or 2, which is characterized in that domain name server receives the visit that client is sent Before asking request message, comprising:
Domain name server receives the record update message that first memory node is sent;
Domain name server is established the NS according to the record update message and is recorded.
4. a kind of method for establishing connection, which is characterized in that the method is applied to active directory domain, and the domain AD includes domain Name server and storage system, the storage system include memory node, which comprises
The first memory node in the storage system receives the access request message that domain name server is sent;The access Request message includes the machine name of storage system, and the access request message is that domain name server is receiving institute from client After stating access request message, the name server NS record stored in domain name server, root are determined according to the machine name According to the internet protocol address for first memory node that NS record includes, the access request is sent to described First memory node;
First memory node obtains the current IP address of the second memory node in the storage system;And according to the visit Ask that the access response message including the current IP address of second memory node is sent to domain name service by request message Device, the current IP address of second memory node establish connection for the client and second memory node.
5. according to the method described in claim 4, it is characterized in that, first memory node is the master in the storage system Memory node, the first memory node within the storage system receive access request message that domain name server is sent it Before, comprising:
First memory node sends record update message to domain name server, and the record update message is for establishing Name server NS record, the NS record include the IP address of first memory node and the machine of the storage system Name;The access request message that the client received is sent is sent to institute for domain name server by the NS record State the first memory node.
6. according to the method described in claim 4, it is characterized in that, first memory node is standby in the storage system Memory node, the first memory node within the storage system receive access request message that domain name server is sent it Before, comprising:
First memory node determines the primary storage nodes break down in the storage system;
The IP address of itself is changed to the IP address of the primary storage node by first memory node.
7. according to the described in any item methods of claim 4 to 6, which is characterized in that further include:
First memory node obtains the load information of each memory node in the storage system;
First memory node determines that the load of second memory node is minimum according to the load information.
8. according to the described in any item methods of claim 4 to 6, which is characterized in that first memory node supports fourth edition Internet protocol IP V4 and/or Internet Protocol version 6 IPV6.
9. the method according to the description of claim 7 is characterized in that first memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
10. a kind of name server, which is characterized in that domain name server belongs to active directory domain, and the domain AD is also wrapped Storage system is included, domain name server includes:
Receiving unit, for receiving the access request message of client transmission, the access request message includes the storage system The machine name of system;
Determination unit, for determining the name server NS stored in domain name server record according to the machine name;Institute State the internet protocol address that NS record includes the machine name and the first memory node in the storage system;
The access request message is sent to described for the IP address according to first memory node by transmission unit One memory node;
The receiving unit is also used to, receive first memory node according to the access request message sends include described in The access response message of the current IP address of the second memory node in storage system;
The transmission unit is also used to, and the access response message is sent to the client, second memory node is worked as Preceding IP address establishes connection for the client and second memory node.
11. name server according to claim 10, which is characterized in that when the access response message further includes existence Between TTL, the life span is for indicating the time that the IP address of second memory node caches in the client.
12. name server described in 0 or 11 according to claim 1, which is characterized in that it further include configuration unit, the reception Unit is also used to: receiving the record update message that first memory node is sent;
The configuration unit is used to establish the NS according to the record update message and record.
13. a kind of memory node, which is characterized in that the memory node belongs to the storage system in active directory domain, described The domain AD further includes name server, and the memory node includes:
Receiving unit, for receiving the access request message of domain name server transmission;The access request message includes depositing The machine name of storage system, the access request message are that domain name server is receiving the access request message from client Afterwards, the name server NS record stored in domain name server is determined according to the machine name, is recorded and is wrapped according to the NS The access request is sent to the memory node by the internet protocol address of the memory node included;
Acquiring unit, for obtaining the current IP address of the second memory node in the storage system;
Transmission unit, for according to the access request message by include the current IP address of second memory node access Response message is sent to domain name server, the current IP address of second memory node for the client with it is described Second memory node establishes connection.
14. memory node according to claim 13, which is characterized in that the memory node is in the storage system Primary storage node, then the transmission unit is also used to, and sends record update message to domain name server, the record updates Message includes IP address and the storage system of the memory node for establishing name server NS record, the NS record The machine name of system;The access request message that the NS record sends the client received for domain name server It is sent to the memory node.
15. memory node according to claim 13, which is characterized in that the memory node is in the storage system Standby memory node, the memory node further includes processing unit, for determining that the primary storage node in the storage system occurs Failure, and the IP address of itself is changed to the IP address of the primary storage node.
16. 3 to 15 described in any item memory nodes according to claim 1, which is characterized in that the acquiring unit is also used to, Obtain the load information of each memory node in the storage system;
The memory node further includes determination unit, for determining the load of second memory node according to the load information It is minimum.
17. 3 to 15 described in any item memory nodes according to claim 1, which is characterized in that the memory node supports the 4th Version Internet protocol IP V4 and/or Internet Protocol version 6 IPV6.
18. memory node according to claim 16, which is characterized in that the memory node supports fourth edition internet protocol Discuss IPV4 and/or Internet Protocol version 6 IPV6.
19. a kind of name server, which is characterized in that domain name server belongs to active directory domain, and the domain AD is also wrapped Storage system is included, domain name server includes: processor, communication interface, memory and communication bus;Wherein, the processing Device, the communication interface and the memory complete mutual communication by the communication bus;
The memory is for storing program code;
The processor calls the said program code of the memory storage to want for perform claim by the communication interface Seek 1 to 3 described in any item methods.
20. a kind of memory node, which is characterized in that the memory node belongs to the storage system in active directory domain, described The domain AD further includes name server, and the memory node includes: processor, communication interface, memory and communication bus;Wherein, The processor, the communication interface and the memory complete mutual communication by the communication bus;
The memory is for storing program code;
The processor calls the said program code of the memory storage to want for perform claim by the communication interface Seek 4 to 9 described in any item methods.
CN201610051582.5A 2016-01-26 2016-01-26 Establish method, name server and the memory node of connection Active CN105635342B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610051582.5A CN105635342B (en) 2016-01-26 2016-01-26 Establish method, name server and the memory node of connection

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610051582.5A CN105635342B (en) 2016-01-26 2016-01-26 Establish method, name server and the memory node of connection

Publications (2)

Publication Number Publication Date
CN105635342A CN105635342A (en) 2016-06-01
CN105635342B true CN105635342B (en) 2019-04-19

Family

ID=56049808

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610051582.5A Active CN105635342B (en) 2016-01-26 2016-01-26 Establish method, name server and the memory node of connection

Country Status (1)

Country Link
CN (1) CN105635342B (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111245972B (en) * 2016-08-31 2023-07-28 贵州白山云科技股份有限公司 Domain name resolution method, device, medium and equipment
CN106953940B (en) * 2017-04-13 2018-11-20 网宿科技股份有限公司 Dns server and configuring load application method, network system, domain name analytic method and system
CN107979659A (en) * 2018-01-23 2018-05-01 深圳市天贝物联科技有限公司 Convenient access method, system, electronic equipment and storage medium based on domain name
CN110502333B (en) * 2018-05-16 2022-09-02 杭州海康威视系统技术有限公司 Access request processing method and cloud storage system
CN109347947A (en) * 2018-10-15 2019-02-15 郑州云海信息技术有限公司 A kind of method of load balancing, name server and cluster nas server
JP2023517411A (en) * 2020-10-19 2023-04-26 オラクル・インターナショナル・コーポレイション Method, system and computer readable medium for actively discovering and tracking addresses associated with 4G service endpoints
CN112329054A (en) * 2020-10-29 2021-02-05 广东电网有限责任公司韶关供电局 Method, device, equipment and storage medium for improving software permission
CN115361270B (en) * 2022-08-19 2024-06-14 郑州浪潮数据技术有限公司 Method, device and medium for accessing AD domain by storage cluster
CN116204494B (en) * 2023-04-28 2023-07-14 深圳竹云科技股份有限公司 Method and device for migrating active directory data, electronic equipment and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101431539A (en) * 2008-12-11 2009-05-13 华为技术有限公司 Domain name resolution method, system and apparatus
CN101883042A (en) * 2009-05-05 2010-11-10 华为技术有限公司 Mapping method, system and domain name server based on hierarchical routing framework
CN101917493A (en) * 2010-08-18 2010-12-15 中兴通讯股份有限公司 Iterative query method and system of server
CN102668518A (en) * 2011-12-02 2012-09-12 华为技术有限公司 Content distribution network routing method, system, and user terminal
CN105072211A (en) * 2015-08-12 2015-11-18 网宿科技股份有限公司 Domain name deployment system and domain name deployment method based on DNS (Domain Name Server)

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101431539A (en) * 2008-12-11 2009-05-13 华为技术有限公司 Domain name resolution method, system and apparatus
CN101883042A (en) * 2009-05-05 2010-11-10 华为技术有限公司 Mapping method, system and domain name server based on hierarchical routing framework
EP2429121A1 (en) * 2009-05-05 2012-03-14 Huawei Technologies Co., Ltd. Mapping method, system and domain name server of hierarchical routing architecture
CN101917493A (en) * 2010-08-18 2010-12-15 中兴通讯股份有限公司 Iterative query method and system of server
CN102668518A (en) * 2011-12-02 2012-09-12 华为技术有限公司 Content distribution network routing method, system, and user terminal
CN105072211A (en) * 2015-08-12 2015-11-18 网宿科技股份有限公司 Domain name deployment system and domain name deployment method based on DNS (Domain Name Server)

Also Published As

Publication number Publication date
CN105635342A (en) 2016-06-01

Similar Documents

Publication Publication Date Title
CN105635342B (en) Establish method, name server and the memory node of connection
US10374955B2 (en) Managing network computing components utilizing request routing
US10469314B2 (en) API gateway for network policy and configuration management with public cloud
EP3391627B1 (en) Shared multi-tenant domain name system (dns) server for virtual networks and corresponding method
EP3367638B1 (en) Load balancing method, device and system
US10757086B2 (en) Using credentials stored in different directories to access a common endpoint
US11108740B2 (en) On premises, remotely managed, host computers for virtual desktops
CN103051740B (en) Domain name analytic method, dns server and domain name analysis system
US9628328B2 (en) Network controller with integrated resource management capability
US9432305B1 (en) Connection redistribution in load-balanced systems
US10771309B1 (en) Border gateway protocol routing configuration
US9246906B1 (en) Methods for providing secure access to network resources and devices thereof
US9973590B2 (en) User identity differentiated DNS resolution
CN108124020B (en) Domain name resolution method, system and equipment
US10250677B1 (en) Decentralized network address control
WO2015192563A1 (en) Method and device for implementing load balancing and load balancing service system
JP2021530916A (en) Address migration service
CN104427010A (en) NAT (network address translation) method and device applied to DVPN (dynamic virtual private network)
JP6106334B2 (en) Method, system and computer readable medium for performing advanced service routing
US20120191769A1 (en) Site-aware distributed file system access from outside enterprise network
CN109743357B (en) Method and device for realizing service access continuity
US20180159941A1 (en) Method for connecting a client to a server in a communication system
CN103795581A (en) Address processing method and address processing device
US8972604B1 (en) Network address retention and assignment
CN114945015B (en) Information acquisition method, device and storage medium

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant