CN105635342B - Establish method, name server and the memory node of connection - Google Patents
Establish method, name server and the memory node of connection Download PDFInfo
- Publication number
- CN105635342B CN105635342B CN201610051582.5A CN201610051582A CN105635342B CN 105635342 B CN105635342 B CN 105635342B CN 201610051582 A CN201610051582 A CN 201610051582A CN 105635342 B CN105635342 B CN 105635342B
- Authority
- CN
- China
- Prior art keywords
- memory node
- name server
- storage system
- address
- domain
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4535—Network directories; Name-to-address mapping using an address exchange platform which sets up a session between two nodes, e.g. rendezvous servers, session initiation protocols [SIP] registrars or H.323 gatekeepers
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
A kind of method that establishing connection, name server and memory node, are related to computer field, client can not establish connection with storage system when for solving the problem of that the IP address of the memory node in storage system changes.This method comprises: name server receives the access request message that client is sent, which determines the NS record stored in the name server according to the machine name that the access request message includes;The IP address for the first memory node that the name server includes according to NS record, is sent to first memory node for the access request message;The name server receives the access response message for the IP address current including the second memory node that first memory node is sent according to the access request message;The access response message is sent to the client by the name server, and the current IP address of second memory node establishes connection for the client and second memory node.
Description
Technical field
The present invention relates to computer field more particularly to a kind of methods for establishing connection, name server and storage section
Point.
Background technique
Network connection storage (full name in English: Network Attached Storage, abbreviation: NAS) system is based on standard
Network protocol realizes data transmission, can provide file-sharing and data for the computer of the various different operating systems in network
Backup.Wherein, NAS system externally provides server information block (full name in English: Server Message Block, abbreviation: SMB)
Protocol access, user can access NAS system by SMB client.
In order to guarantee the legitimacy of client, it usually needs authenticated to client.Due to accessing the client of NAS system
End is from Active Directory (full name in English: Active Directory, abbreviation: AD) domain, it is therefore desirable to which NAS system is added
The domain AD, and the ability authenticated to the domain AD user can be provided.Wherein, the domain AD is in the server of windows based on database
Catalogue is provided, certification, a system of the services such as strategy, the authentication protocol for the comparison highly effective and safe supported is Kerberos.
Kerberos is the name that ghostdom in Greek mythology guards mythical animals, and a kind of association of certification completely why is named with Kerberos
View is because Kerberos is three strange beasts, and entire verification process also relates to tripartite: client, server-side and close
Key Distribution Center (full name in English: Key Distribution Center, referred to as: KDC).In the domain AD, the role of KDC is by domain
Controller (full name in English: Domain Controller, referred to as: DC) take on.
In the prior art, NAS system is to update all business IP of NAS system into the domain AD when the domain AD is added
Name server (full name in English: Domain Name System, referred to as: DNS) on, in this way, the name server is receiving
After the machine name of the transmission of SMB client, corresponding IP address directly can be returned to the SMB client according to machine name.But
It is that IP address is not fixed and invariable, the network configuration change of NAS system, new node is added, and original node is exited, can be led
Cause the variation of IP address.However, the variation of above-mentioned IP address can not all embody on dns server in time, so as to cause client
Possibly connection can not be established with NAS storage system.
Summary of the invention
The object of the present invention is to provide a kind of method for establishing connection, name server and memory nodes, for solving
In the prior art, when the IP address of memory node changes in storage system, client can not establish connection with storage system
The problem of.
Above-mentioned purpose will be reached by the feature in independent claims.Further implementation is wanted in appurtenance
It asks, embodied in the description and the appended drawings.
In a first aspect, providing a kind of method for establishing connection, the method is applied to active directory domain, the domain the AD packet
Name server and storage system are included, the storage system includes memory node, which comprises domain name server
The access request message that client is sent is received, the access request message includes the machine name of storage system;Domain name clothes
Business device determines the name server NS record stored in domain name server according to the machine name;The NS record includes institute
State the internet protocol address of the first memory node in machine name and the storage system;Domain name server according to
The access request message is sent to first memory node by the IP address of first memory node;Domain name clothes
Business device receives first memory node and is deposited according to what the access request message was sent including second in the storage system
Store up the access response message of the current IP address of node;The access response message is sent to the visitor by domain name server
Family end, the current IP address of second memory node establish connection for the client and second memory node.
Using the above method, name server, can be according to NS after the access request message for receiving client transmission
The access request message is forwarded to the first memory node in storage system as internal name server by record, in this way, should
The newest IP address of second memory node in the storage system can be back to client by the first memory node, to avoid
Due to the IP address of name server record and the real ip address of memory node is inconsistent causes the client can not be with storage
Node establishes the problem of connection.
With reference to first aspect, in the first possible implementation of the first aspect, the access response message is also wrapped
Life span TTL is included, the life span is for indicating that the IP address of second memory node caches in the client
Time.It is worth noting that when client initiates the connection request using the IP address of caching, in fact it could happen that client-cache
IP address and the inconsistent situation of the IP address of memory node, cause client that can not establish connection with memory node to be therefore
Avoid client to the caching of IP address, it is preferable that the life span TTL=0, in this way, avoid client to second
The caching of memory node IP address, so that client when establishing connection with storage system every time, is required to first storage
Node requests the IP address of memory node, when ensuring that client initiates access request every time, can get storage section
The newest IP address of point.
With reference to first aspect or the first possible implementation of first aspect, second in first aspect are possible
Implementation in, domain name server receive client send access request message before, comprising: domain name service
Device receives the record update message that first memory node is sent;Domain name server is built according to the record update message
Found the NS record.
Second aspect, provides a kind of method for establishing connection, and the method is applied to active directory domain, the domain the AD packet
Name server and storage system are included, the storage system includes memory node, which comprises in the storage system
The first memory node receive domain name server send access request message;First memory node is deposited described in obtaining
The current IP address of the second memory node in storage system;And it will be saved including second storage according to the access request message
The access response message of the current IP address of point is sent to domain name server.
In conjunction with second aspect, in the first possible implementation of the second aspect, first memory node is institute
The primary storage node in storage system is stated, the first memory node within the storage system receives domain name server and sends
Access request message before, comprising: first memory node to domain name server send record update message, it is described
Record update message for establishing name server NS record, NS record include the IP address of first memory node with
And the machine name of the storage system;The NS record will be described in the client that received transmission for domain name server
Access request message is sent to first memory node.
In conjunction with the possible implementation of the first of second aspect or second aspect, second in second aspect may
Implementation in, first memory node is the standby memory node in the storage system, within the storage system
First memory node receives before the access request message that domain name server is sent, comprising: first memory node is true
Primary storage node in the fixed storage system sends failure;The IP address of itself is changed to described by first memory node
The IP address of primary storage node.That is, the first memory node is made when the primary storage nodes break down in storage system
The function that the primary storage node can be taken over for standby memory node, avoids Single Point of Faliure.
In conjunction with any possible implementation of second aspect, or the above second aspect, in the third of second aspect
In kind possible implementation, further includes: first memory node obtains the negative of each memory node in the storage system
Information carrying breath;First memory node determines that the load of second memory node is minimum according to the load information.In this way, the
One memory node is the storage for establishing connection with the client according to the selection of the load information of memory node each in storage system
Node realizes load balancing, improves service performance.
In conjunction with any possible implementation of second aspect, or the above second aspect, the 4th of second aspect the
In the possible implementation of kind, first memory node supports Internet Protocol version 4 IPV4 and/or sixth version internet
Protocol IP V6.
The third aspect provides a kind of name server, and domain name server belongs to active directory domain, and the domain AD is also
Including storage system, domain name server includes: receiving unit, for receiving the access request message of client transmission, institute
State the machine name that access request message includes the storage system;Determination unit, for determining the domain according to the machine name
The name server NS record stored in name server;The NS record includes in the machine name and the storage system
The internet protocol address of first memory node;Transmission unit, for the IP address according to first memory node, by institute
It states access request message and is sent to first memory node;The receiving unit is also used to, and receives first memory node
According to the access for the IP address current including the second memory node in the storage system that the access request message is sent
Response message;The transmission unit is also used to, and the access response message is sent to the client, the second storage section
The current IP address of point establishes connection for the client and second memory node.
In conjunction with the third aspect, in the first possible implementation of the third aspect, the access response message is also wrapped
Life span TTL is included, the life span is for indicating that the IP address of second memory node caches in the client
Time.Preferably, wherein the life span TTL=0.
In conjunction with the possible implementation of the first of the third aspect or the third aspect, second in the third aspect can
Further include configuration unit, the receiving unit is also used in the implementation of energy: receiving the note that first memory node is sent
Record update message;The configuration unit is used to establish the NS according to the record update message and record.
Fourth aspect, provides a kind of memory node, and the memory node belongs to the storage system in active directory domain, institute
Stating the domain AD further includes name server, and the memory node includes: receiving unit, for receiving the transmission of domain name server
Access request message;Acquiring unit, for obtaining the current IP address of the second memory node in the storage system;It sends single
Member, for being sent out the access response message including the current IP address of second memory node according to the access request message
It send to domain name server.
In conjunction with fourth aspect, in the first possible implementation of the fourth aspect, if the memory node is described
Primary storage node in storage system, then the transmission unit is also used to, and sends record update message to domain name server,
The record update message for establishing name server NS record, NS record include the IP address of the memory node with
And the machine name of the storage system;The NS record will be described in the client that received transmission for domain name server
Access request message is sent to the memory node.
In conjunction with fourth aspect, in the second possible implementation of the fourth aspect, the memory node is described deposits
Standby memory node in storage system, the memory node further include processing unit, for determining the main memory in the storage system
It stores up node and sends failure, and the IP address of itself is changed to the IP address of the primary storage node.
In conjunction with any possible implementation of fourth aspect, or the above fourth aspect, in the third of fourth aspect
In the possible implementation of kind, the acquiring unit is also used to, and obtains the load letter of each memory node in the storage system
Breath;The memory node further includes determination unit, for determining the load of second memory node according to the load information
It is minimum.
In conjunction with any possible implementation of fourth aspect, or the above fourth aspect, the 4th of fourth aspect the
In the possible implementation of kind, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6
IPV6。
5th aspect, provides a kind of name server, comprising: processor, communication interface, memory and communication bus;Its
In, the processor, the communication interface and the memory complete mutual communication by the communication bus;It is described to deposit
Reservoir is for storing program code;The processor calls the described program generation of the memory storage by the communication interface
Code is for executing in a first aspect, method described in any possible implementation of the above first aspect.
6th aspect, provides a kind of memory node, comprising: processor, communication interface, memory and communication bus;Wherein,
The processor, the communication interface and the memory complete mutual communication by the communication bus;The storage
Device is for storing program code;The processor calls the said program code of the memory storage by the communication interface
For executing second aspect, or method described in any possible implementation of the above second aspect.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, embodiment will be described below
Needed in attached drawing be briefly described, it should be apparent that, the accompanying drawings in the following description is some realities of the invention
Example is applied, it for those of ordinary skill in the art, without creative efforts, can also be according to these attached drawings
Obtain other attached drawings.
Fig. 1 is a kind of flow diagram for the method for establishing connection provided in an embodiment of the present invention;
Fig. 2 is the flow diagram for the method that the domain AD is added in a kind of storage system provided in an embodiment of the present invention;
Fig. 3 is the form schematic diagram of record update message provided in an embodiment of the present invention;
Fig. 4 is the flow diagram for the method that another kind provided in an embodiment of the present invention establishes connection;
Fig. 5 is a kind of form schematic diagram of access response message provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of name server provided in an embodiment of the present invention;
Fig. 7 is a kind of structural schematic diagram of memory node provided in an embodiment of the present invention;
Fig. 8 is the structural schematic diagram of another name server provided in an embodiment of the present invention;
Fig. 9 is the structural schematic diagram of another memory node provided in an embodiment of the present invention.
Specific embodiment
In order to enable those skilled in the art to be easier to understand technical solution of the present invention, first below to the present invention
The technical term being related to simply is introduced.
Domain is both the logical organization unit of window networking operating system and the logical organization unit of Internet.?
In window networking operating system, domain is security boundary, domain administrator can only management domain inside, unless other domains are explicit
Ground assigns Admin Administration's permission, and administrator can access or manage other domains, also, there is the peace of oneself in each domain
Full strategy, and the safe trusting relationship with other domains.
The domain AD is to provide catalogue based on database in windows server, is authenticated, a system of the services such as strategy, it
It is responsible for the centralized directory management service of the medium-and-large-sized network environment of framework, handles network object in the tissue, the object can
To be user, group, computer, domain control station, mail, setting file, organizational unit, tree system etc..
Kerberos authentication is actually a kind of authentication mode for being based on bill (Ticket).Client will access server
Resource, need first buy server-side approve bill.That is, client needs to buy in advance before accessing server
Good ballot paper waits ability admission after ticket checking to be serviced.Before this, client needs first to buy tickets, but this ticket cannot be purchased directly
It buys, needs a call warrant.Client needs to be obtained ahead of time before vote buying a call warrant.This call warrant and into
The admission ticket for entering server is sold by KDC.The premise for supporting kerberos authentication is to need to come to visit by domain name (machine name)
The service of asking.
Dns server is a kind of distributed data base for TCP/IP application program, it is with providing host name and IP
The record of conversion between location and the route selection information in relation to Email, DNS management system management is also resource record.
Resource record is the DNS database record for replying DNS client request, each dns server contains
All resource records for the DNS namespace that it is managed.Resource record includes information related with particular host, such as IP
Location, the type that service is provided etc..Common resource record types A record and NS record, wherein A record is the weight of name resolving
It records, it is used to for specific host name being mapped to the IP address of corresponding host, and administrator can hand in the dns server
Dynamic creation is more newly arrived creation by DNS client dynamic.NS record is the specified authoritative name service for being responsible for this dns zone domain
Device.The difference of A record and NS record is that A record directly provides destination IP to client, and NS record gives dns resolution task
Specific dns server, the IP address that records is the IP address of the particular server in NS record.In the prior art, DNS takes
It is engaged in recording using A in device, when the dns server receives the access request message of client, by the memory node of record
IP address return directly to client, since the IP address of the memory node recorded in dns server is not real-time update,
Therefore, when the change of the IP address of memory node, client will be unable to establish with the memory node by IP address before changing
Connection.
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described.
The embodiment of the present invention provides a kind of method for establishing connection, and this method is applied to active directory domain, the domain AD packet
Name server and storage system are included, which includes memory node, and this method is as shown in Figure 1, comprising:
S101, name server receive the access request message that client is sent, which includes storage system
The machine name of system.
Storage system described herein can be NAS system, be introduced by above-mentioned term it is found that due to accessing NAS system
Client be from Active Directory Domain, it is therefore desirable to NAS system be added the domain AD, wherein the storage system be added the domain AD
When, a machine account can be created on name server, the title of the machine account is the machine name of the storage system.
S102, the name server determine the name server NS note stored in the name server according to the machine name
Record, NS record include the internet protocol address of the machine name and the first memory node in the storage system.
The access request message is sent to this according to the IP address of first memory node by S103, the name server
First memory node.
Wherein, NS record is also possible to create when the domain AD is added in storage system, introduced by above-mentioned term it is found that
For NS record for giving dns resolution task to specific dns server, the IP address recorded in NS record is the special services
The IP address of device, in this way, name server can record after the access request message for receiving client transmission according to the NS
The access request message is forwarded to specific dns server, in embodiments of the present invention, which is the spy
Fixed dns server, the IP that records is the IP address of first memory node in NS record.That is, the present invention is real
Apply example selects a memory node as internal name server within the storage system, for providing between machine name and IP address
Conversion.
S104, first memory node receive the access request message of name server transmission.
S105, first memory node obtain the current IP address of the second memory node in the storage system.
S106, first memory node will include the current IP address of second memory node according to the access request message
Access response message be sent to the name server.
It is worth noting that first memory node can be with the shape of other memory nodes in the real-time perception storage system
State variation, that is to say, that first memory node, can be by the storage section in storage system after receiving access request message
The newest IP address of point is back to client, it is ensured that the client can correctly be built with the memory node according to the IP address
Vertical connection, avoids the IP address of name server record in the prior art and the IP address of the memory node may be inconsistent,
The problem of causing client that can not establish connection with memory node.
S107, the name server receive the access response message of first memory node transmission.
The access response message is sent to the client by S108, the name server.
Wherein, the current IP address of second memory node establishes connection for the client and second memory node.
In a kind of possible implementation of the embodiment of the present invention, which can also obtain the storage system
The load information of each memory node in system, and determine that the load of second memory node is minimum according to the load information.Also
It is to say, which will load the current IP address of the smallest memory node and be sent to the name server in storage system.
It is worth noting that in the prior art, the storage system is when being added the domain AD, in the increased resource of name server
It is recorded as A record, the difference of the A record and NS record introduced by above-mentioned term is it is found that in the prior art, which exists
After the access request message for receiving client transmission, each memory node in the storage system that records in poll A record
IP address, and the IP address being polled to is sent to client, load balancing is not considered, in this way, high degree will lead to
The busier memory node of business, still obtains IP address by client and accesses, so that high performance service can not be provided,
And above-mentioned possible implementation is used, which is the load information according to memory node each in storage system
The memory node of connection is established in selection with the client, is realized load balancing, is improved service performance, wherein load letter
Breath specifically can be connection number, the handling capacity of each service network port or the utilization rate of CPU of the business IP of each memory node
Deng.
Above-mentioned steps S101 to step S108 primarily illustrates the process that the first memory node returns to IP address to client,
Client gets the process for establishing connection with second memory node after IP address can be same as the prior art, i.e. the client
After termination receives the IP address of second memory node, certification bill is obtained from the KDC server in the domain AD, and according to the IP
Location and the certification bill initiate the connection with second memory node, and details are not described herein again.
In order to make those skilled in the art more understand a kind of method for establishing connection provided in an embodiment of the present invention, under
Face is illustrated by detailed citing.
Firstly, Fig. 2 is the method flow that the domain AD is added in storage system, as shown in Figure 2, comprising:
The first memory node in S201, storage system obtains the domain-name information in the domain AD, and according to the dns query message
The location information for all domain controller DC for including in the domain AD.
Wherein, the domain-name information in the domain AD can be the domain AD FQDN (Fully Qualified Domain Name,
Fully Qualified Domain Name).
S202, first memory node select a domain controller, and establish LDAP with the domain controller
(Lightweight Directory Access Protocol, Lightweight Directory Access Protocol) connection.
Wherein, which can be according to the website of the storage system and the weight information of each domain controller
Select the domain controller of connection.
Specifically, which can use the account of the administrator in the domain AD or with the account that domain permission is added
Number with the domain controller establish connection.
S203, first memory node create one on name server by the LDAP connection established with the storage
The machine account that the machine name of system is run after fame.
The attribute of the machine account and the service of offer is arranged in S204, first memory node.
The password of the machine account is arranged in S205, first memory node.
S206, first memory node send record update message to name server, which is used for
The NS record of the storage system is established in name server.
Illustratively, if the entitled test of machine account in the domain AD is added in storage system, the FQDN in the domain AD is ad.com, the storage
IP in system as the first memory node of internal dns server is 10.10.10.10, then first memory node is sent
Record update message to the name server is as shown in Figure 3, wherein the record update message includes partition information, prerequisite item
Part, more new record, the record type item Type in the more new record be NS, and address entries Addr is the IP of first memory node
Location.
S207, first memory node NAS storage system the synchronous machine account of each memory node and password and
The configuration information in domain is added.
Above-mentioned steps S201 to step S207 is the method flow that the domain AD is added in storage system, is different from the prior art
Be, in step S206 name server creation be NS record rather than A record, other steps are same as the prior art, herein
It repeats no more.Further, the NS record created based on the storage system when the domain AD is added, the following detailed description of the present invention
A kind of method for establishing connection that embodiment provides, as shown in Figure 4, comprising:
S401, name server receive the access request message that client is sent, which includes storage system
The machine name of system.
It is worth noting that the access request message can be IPV4 (Internet Protocol version 4,
Four editions Internet protocols) A request, be also possible to IPV4 (Internet Protocol version 6, sixth version internet
Agreement) AAAA request.
S402, the name server according to NS record in the IP of corresponding first memory node of the machine name that records
The access request message is sent to first memory node by location.
Wherein, which supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
S403, first memory node obtain the load information of each memory node in the storage system, determine load most
The second small memory node.
S404, first memory node will include the current IP address of second memory node according to the access request message
Access response message be sent to the name server.
Specifically, which preserves the IP address of each memory node of other in the storage system, and can
With real-time monitoring, whether the IP address of other each memory nodes is effective, if the second storage section of first memory node record
The IP address of point is effective, then the IP address of second memory node of first memory node record is second memory node
Current IP address.
The access response message is sent to the client by S405, the name server.
Illustratively, if the systematic name that the domain AD is added in storage system is test, the FQDN in the domain AD is ad.com, this
The IP address of two memory nodes is 10.10.10.11, then the access response message is as shown in Figure 5.
In a kind of possible implementation of the embodiment of the present invention, as shown in figure 5, the TTL of the access request message
(Time to live, life span) is 0, avoids the client to the caching of the second memory node IP address, in this way, the visitor
Family end is required to request the IP address of memory node to first memory node when establishing connection with storage system every time, from
And when ensuring that client initiates access request every time, it can get the current IP address of memory node.
S406, KDC server receive the ticket requests message of client transmission, which includes the machine
Name.
The access tickets of the storage system are sent to the client by S407, the KDC server.
Wherein, which is that the storage system generates when the domain AD is added.
S408, second memory node receive the client transmission establish connection request message, this establishes connection request
Message includes the access tickets.
S409, second memory node determine that the access tickets are effective.
S410, second memory node establish successful connection message to client transmission.
It should be noted that in the specific implementation process, in the storage system may include primary storage node and standby deposit
Store up node, be in Fig. 2 and Fig. 4 the primary storage node progress using the first memory node as storage system for example,
In the alternatively possible implementation of the embodiment of the present invention, if first memory node is standby memory node, this first
Memory node can also determine that the primary storage node in the storage system sends failure, and the IP address of itself is changed to the master
The IP address of memory node.In this way, when the primary storage nodes break down in the storage system, the first memory node conduct
Standby memory node can take over the function of the primary storage node, avoid Single Point of Faliure.
In addition, for above method embodiment, for simple description, therefore, it is stated as a series of action combinations,
But those skilled in the art should understand that, the present invention is not limited by the sequence of acts described, secondly, art technology
Personnel also should be aware of, and the embodiments described in the specification are all preferred embodiments, and related movement is not necessarily
Necessary to the present invention.
The embodiment of the present invention also provides a kind of name server 60, for implementing relevant step in above method embodiment
Suddenly, wherein the name server belongs to active directory domain, which further includes storage system, as shown in fig. 6, the domain name takes
Business device 60 include:
Receiving unit 61, for receiving the access request message of client transmission, the access request message includes storage
The machine name of system;
Determination unit 62, for determining the name server NS stored in domain name server note according to the machine name
Record;The Internet protocol IP of the NS record including the machine name and the first memory node in the storage system
Location;
The access request message is sent to by transmission unit 63 for the IP address according to first memory node
First memory node;
The receiving unit 61 is also used to, and receives the packet that first memory node is sent according to the access request message
Include the access response message of the current IP address of the second memory node in the storage system;
The transmission unit 63 is also used to, and the access response message is sent to the client, second storage
The current IP address of node establishes connection for the client and second memory node.
Optionally, the access response message further includes life span TTL, and the life span is for indicating described second
The time that the IP address of memory node caches in the client.Wherein, the life span TTL can be equal to 0, in this way,
Client is avoided to the caching of the second memory node IP address, so that client is when establishing connection with storage system every time,
It is required to request the IP address of memory node to first memory node, ensures that client initiates access request every time
When, it can get the newest IP address of memory node.
Optionally, further include configuration unit 64, the receiving unit 61 is also used to: receiving first memory node and send
Record update message;The configuration unit 64 is used to establish the NS according to the record update message and record.
It is worth noting that the above division to domain name server function unit, only a kind of logical function partition is real
There may be another division manner when border is realized, also, the physics realization of above-mentioned each functional unit may also be there are many realization side
Formula, for example, above-mentioned determination unit 62 specifically can be a central processing unit, be also possible to specific integrated circuit (full name in English:
Application Specific Integrated Circuit, referred to as: ASIC).
In addition, affiliated, it will be apparent to those skilled in the art ground to recognize, for convenience and simplicity of description, foregoing description
Name server each unit specific work process, can refer to corresponding processes in the foregoing method embodiment, herein not
It repeats again.
Using above-mentioned name server, which, can after the access request message for receiving client transmission
The access request message is forwarded to the first memory node in storage system as internal name server to record according to NS,
In this way, the newest IP address of the second memory node in the storage system can be back to client by first memory node,
So as to avoid the IP address and memory node that are recorded due to name server real ip address it is inconsistent cause client without
The problem of method and memory node establish connection.
The embodiment of the present invention also provides a kind of memory node 70, for implementing step related in above method embodiment,
The memory node belongs to the storage system in active directory domain, and the domain AD further includes name server, as shown in fig. 7,
The memory node 70 includes: to include:
Receiving unit 71, for receiving the access request message of domain name server transmission;
Acquiring unit 72, for obtaining the current IP address of the second memory node in the storage system;
Transmission unit 73, for will include the current IP address of second memory node according to the access request message
Access response message be sent to domain name server.
Optionally, the memory node is the primary storage node in the storage system, then the transmission unit 73 is also used
In, record update message is sent to domain name server, the record update message is recorded for establishing name server NS,
The NS record includes the IP address of the memory node and the machine name of the storage system;The NS record is for described
The access request message that the client received is sent is sent to the memory node by name server.
Optionally, the memory node is the standby memory node in the storage system, and the memory node further includes place
Unit 74 is managed, for determining that the primary storage node in the storage system sends failure, and the IP address of itself is changed to institute
State the IP address of primary storage node.
Optionally, which is also used to, and obtains the load information of each memory node in the storage system;It should
The also determination unit 75 of memory node 70, the load for determining second memory node according to the load information are minimum.
Optionally, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
It is worth noting that the above division to memory node functional unit, only a kind of logical function partition is practical
There may be another division manner when realization, for example, memory node is divided into domain adding unit, the domain AD is added for completing,
And the function of NS record, monitoring unit, for monitoring the shape of each memory node in storage system are established on name server
State simultaneously counts load, internal DNS unit, load and status information for being provided according to the monitoring unit, and selection load is minimum
The IP address of memory node be sent to client, authentication unit, for authenticating to the connection request that client is initiated.And
And the physics realization of above-mentioned each functional unit may also there are many implementations, for example, above-mentioned determination unit 75 specifically can be
One central processing unit, is also possible to specific integrated circuit.
In addition, affiliated, it will be apparent to those skilled in the art ground to recognize, for convenience and simplicity of description, foregoing description
Memory node each unit specific work process, can refer to corresponding processes in the foregoing method embodiment, herein no longer
It repeats.
Using above-mentioned memory node, the memory node is as name server inside storage system, in receiving the domain AD
Name server forwarding the access request message that sends of client after, which can will be second in the storage system
The newest IP address of memory node is back to client, so as to avoid the IP address and memory node recorded due to memory node
Real ip address inconsistent the problem of causing client that can not establish connection with memory node.
The embodiment of the present invention also provides another name server 80, walks accordingly in above method embodiment for implementing
Suddenly, wherein domain name server belongs to active directory domain, and the domain AD further includes storage system, as shown in figure 8, described
Name server 80 includes: processor (processor) 81, communication interface (Communications Interface) 82, deposits
Reservoir (memory) 83 and communication bus 84;Wherein, the processor 81, the communication interface 82 and the memory 83 pass through
The communication bus 84 completes mutual communication.
Processor 81 may be multi-core central processing unit CPU or specific integrated circuit ASIC
(Application Specific Integrated Circuit), or be arranged to implement the one of the embodiment of the present invention
A or multiple integrated circuits.
For memory 83 for storing program code, said program code includes computer operation instruction and network flow diagrams.It deposits
Reservoir 83 may include high speed RAM memory, it is also possible to and it further include nonvolatile memory (non-volatile memory),
A for example, at least magnetic disk storage.Memory 83 is also possible to memory array.Memory 83 is also possible to by piecemeal, and institute
Virtual volume can be combined by certain rule by stating block.
The communication interface 82, for realizing the connection communication between these devices.
The processor 81 is used to execute the program code in the memory 83, to realize following operation:
The access request message that client is sent is received, the access request message includes the machine name of storage system;
The name server NS record stored in domain name server is determined according to the machine name;The NS record packet
Include the internet protocol address of the first memory node in the machine name and the storage system;
According to the IP address of first memory node, the access request message is sent to first storage and is saved
Point;
With receiving the IP current including the second memory node in the storage system that first memory node is sent
The access response message of location;
The access response message is sent to the client, the current IP address of second memory node is used for institute
It states client and second memory node establishes connection.
Optionally, the access response message further includes life span TTL, and the life span is for indicating described second
The IP address of memory node time present in the client.Wherein, the life span TTL can be equal to 0.
Optionally, before the access request message that domain name server reception client is sent, comprising:
Domain name server receives the record update message that first memory node is sent;
Domain name server is established the NS according to the record update message and is recorded.
The specific work process of name server 80 can refer to corresponding description in above method embodiment, no longer superfluous herein
It states.
Processor 81 in the embodiment of the present invention can be central processing unit CPU.In addition, to save the calculating of CPU money
Source, processor 81 are also possible to field programmable gate array (full name in English: Field Programmable Gate Array, letter
Claim: FPGA) or other hardware, alternatively, processor 81 is also possible to CPU and FPGA or other hardware, to realize that the present invention is implemented
The method for establishing connection of example description.For convenience of description, Unify legislation of the embodiment of the present invention is the processor 81 of name server
Realize the method that the embodiment of the present invention establishes connection.
The embodiment of the present invention also provides another memory node 90, and the memory node belongs to depositing in active directory domain
Storage system, the domain AD further includes name server, as shown in figure 9, the memory node 90 includes: processor
(processor) 91, communication interface (Communications Interface) 92, memory (memory) 93 and communication bus
94;Wherein, the processor 91, the communication interface 92 and the memory 93 are completed each other by the communication bus 94
Communication.
Processor 91 may be multi-core central processing unit CPU or specific integrated circuit ASIC
(Application Specific Integrated Circuit), or be arranged to implement the one of the embodiment of the present invention
A or multiple integrated circuits.
For memory 93 for storing program code, said program code includes computer operation instruction and network flow diagrams.It deposits
Reservoir 93 may include high speed RAM memory, it is also possible to and it further include nonvolatile memory (non-volatile memory),
A for example, at least magnetic disk storage.Memory 93 is also possible to memory array.Memory 93 is also possible to by piecemeal, and institute
Virtual volume can be combined by certain rule by stating block.
The communication interface 92, for realizing the connection communication between these devices.
The processor 91 is used to execute the program code in the memory 93, to realize following operation:
Receive the access request message that domain name server is sent;
Obtain the current IP address of the second memory node in the storage system;And
According to the access request message by include the current IP address of second memory node access response message
It is sent to domain name server.
Optionally, the memory node is the primary storage node in the storage system, is taken in the reception domain name
It is engaged in front of the access request message that device is sent, comprising:
Record update message is sent to domain name server, the record update message is for establishing name server NS
Record, the NS record include the IP address of the memory node and the machine name of the storage system;The NS record is used
The access request message that the client received is sent is sent to the memory node in domain name server.
Optionally, the memory node is the standby memory node in the storage system, is taken in the reception domain name
It is engaged in front of the access request message that device is sent, comprising:
Determine that the primary storage node in the storage system sends failure;
The IP address of the memory node is changed to the IP address of the primary storage node.
Optionally, the operation further include:
Obtain the load information of each memory node in the storage system;
Determine that the load of second memory node is minimum according to the load information.
Optionally, the memory node supports Internet Protocol version 4 IPV4 and/or Internet Protocol version 6 IPV6.
The specific work process of memory node 90 can refer to corresponding description in above method embodiment, no longer superfluous herein
It states.
Processor 91 in the embodiment of the present invention can be central processing unit CPU.In addition, to save the calculating of CPU money
Source, processor 91 are also possible to FPGA or other hardware, alternatively, processor 91 is also possible to CPU and FPGA or other hardware, with
Realize the method for establishing connection of description of the embodiment of the present invention.For convenience of description, Unify legislation of the embodiment of the present invention is domain name clothes
The processor 91 of business device realizes the method that the embodiment of the present invention establishes connection.
In several embodiments provided herein, it should be understood that disclosed system, device and method can be with
It realizes by another way.For example, the apparatus embodiments described above are merely exemplary, for example, the unit
It divides, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units or components
It can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, it is shown or
The mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, the indirect coupling of device or unit
It closes or communicates to connect, can be electrical property, mechanical or other forms.
The unit as illustrated by the separation member may or may not be physically separated, aobvious as unit
The component shown may or may not be physical unit, it can and it is in one place, or may be distributed over multiple
In network unit.It can select some or all of unit therein according to the actual needs to realize the mesh of this embodiment scheme
's.
It, can also be in addition, the functional units in various embodiments of the present invention may be integrated into one processing unit
It is that each unit physically exists alone, can also be integrated in one unit with two or more units.Above-mentioned integrated list
Member both can take the form of hardware realization, can also realize in the form of hardware adds SFU software functional unit.
The above-mentioned integrated unit being realized in the form of SFU software functional unit can store and computer-readable deposit at one
In storage media.Above-mentioned SFU software functional unit is stored in a storage medium, including some instructions are used so that a computer
Equipment (can be personal computer, server or the network equipment etc.) executes the portion of each embodiment the method for the present invention
Step by step.And storage medium above-mentioned includes: USB flash disk, mobile hard disk, ROM (Read-Only Memory, read-only memory), RAM
Various Jie that can store program code such as (Random Access Memory, random access memory), magnetic or disk
Matter.
Although preferred embodiments of the present invention have been described, it is created once a person skilled in the art knows basic
Property concept, then additional changes and modifications may be made to these embodiments.So it includes excellent that the following claims are intended to be interpreted as
It selects embodiment and falls into all change and modification of the scope of the invention.
Obviously, various changes and modifications can be made to the invention without departing from essence of the invention by those skilled in the art
Mind and range.In this way, if these modifications and changes of the present invention belongs to the range of the claims in the present invention and its equivalent technologies
Within, then the present invention is also intended to include these modifications and variations.
Claims (20)
1. a kind of method for establishing connection, which is characterized in that the method is applied to active directory domain, and the domain AD includes domain
Name server and storage system, the storage system include memory node, which comprises
Domain name server receives the access request message that client is sent, and the access request message includes storage system
Machine name;
Domain name server determines the name server NS record stored in domain name server according to the machine name;Institute
State the internet protocol address that NS record includes the machine name and the first memory node in the storage system;
The access request message is sent to described according to the IP address of first memory node by domain name server
One memory node;
Domain name server receive first memory node according to the access request message send include the storage
The access response message of the current IP address of the second memory node in system;
The access response message is sent to the client, the current IP of second memory node by domain name server
Connection is established for the client and second memory node in address.
2. the method according to claim 1, wherein the access response message further includes life span TTL, institute
Life span is stated for indicating the time that the IP address of second memory node caches in the client.
3. method according to claim 1 or 2, which is characterized in that domain name server receives the visit that client is sent
Before asking request message, comprising:
Domain name server receives the record update message that first memory node is sent;
Domain name server is established the NS according to the record update message and is recorded.
4. a kind of method for establishing connection, which is characterized in that the method is applied to active directory domain, and the domain AD includes domain
Name server and storage system, the storage system include memory node, which comprises
The first memory node in the storage system receives the access request message that domain name server is sent;The access
Request message includes the machine name of storage system, and the access request message is that domain name server is receiving institute from client
After stating access request message, the name server NS record stored in domain name server, root are determined according to the machine name
According to the internet protocol address for first memory node that NS record includes, the access request is sent to described
First memory node;
First memory node obtains the current IP address of the second memory node in the storage system;And according to the visit
Ask that the access response message including the current IP address of second memory node is sent to domain name service by request message
Device, the current IP address of second memory node establish connection for the client and second memory node.
5. according to the method described in claim 4, it is characterized in that, first memory node is the master in the storage system
Memory node, the first memory node within the storage system receive access request message that domain name server is sent it
Before, comprising:
First memory node sends record update message to domain name server, and the record update message is for establishing
Name server NS record, the NS record include the IP address of first memory node and the machine of the storage system
Name;The access request message that the client received is sent is sent to institute for domain name server by the NS record
State the first memory node.
6. according to the method described in claim 4, it is characterized in that, first memory node is standby in the storage system
Memory node, the first memory node within the storage system receive access request message that domain name server is sent it
Before, comprising:
First memory node determines the primary storage nodes break down in the storage system;
The IP address of itself is changed to the IP address of the primary storage node by first memory node.
7. according to the described in any item methods of claim 4 to 6, which is characterized in that further include:
First memory node obtains the load information of each memory node in the storage system;
First memory node determines that the load of second memory node is minimum according to the load information.
8. according to the described in any item methods of claim 4 to 6, which is characterized in that first memory node supports fourth edition
Internet protocol IP V4 and/or Internet Protocol version 6 IPV6.
9. the method according to the description of claim 7 is characterized in that first memory node supports Internet Protocol version 4
IPV4 and/or Internet Protocol version 6 IPV6.
10. a kind of name server, which is characterized in that domain name server belongs to active directory domain, and the domain AD is also wrapped
Storage system is included, domain name server includes:
Receiving unit, for receiving the access request message of client transmission, the access request message includes the storage system
The machine name of system;
Determination unit, for determining the name server NS stored in domain name server record according to the machine name;Institute
State the internet protocol address that NS record includes the machine name and the first memory node in the storage system;
The access request message is sent to described for the IP address according to first memory node by transmission unit
One memory node;
The receiving unit is also used to, receive first memory node according to the access request message sends include described in
The access response message of the current IP address of the second memory node in storage system;
The transmission unit is also used to, and the access response message is sent to the client, second memory node is worked as
Preceding IP address establishes connection for the client and second memory node.
11. name server according to claim 10, which is characterized in that when the access response message further includes existence
Between TTL, the life span is for indicating the time that the IP address of second memory node caches in the client.
12. name server described in 0 or 11 according to claim 1, which is characterized in that it further include configuration unit, the reception
Unit is also used to: receiving the record update message that first memory node is sent;
The configuration unit is used to establish the NS according to the record update message and record.
13. a kind of memory node, which is characterized in that the memory node belongs to the storage system in active directory domain, described
The domain AD further includes name server, and the memory node includes:
Receiving unit, for receiving the access request message of domain name server transmission;The access request message includes depositing
The machine name of storage system, the access request message are that domain name server is receiving the access request message from client
Afterwards, the name server NS record stored in domain name server is determined according to the machine name, is recorded and is wrapped according to the NS
The access request is sent to the memory node by the internet protocol address of the memory node included;
Acquiring unit, for obtaining the current IP address of the second memory node in the storage system;
Transmission unit, for according to the access request message by include the current IP address of second memory node access
Response message is sent to domain name server, the current IP address of second memory node for the client with it is described
Second memory node establishes connection.
14. memory node according to claim 13, which is characterized in that the memory node is in the storage system
Primary storage node, then the transmission unit is also used to, and sends record update message to domain name server, the record updates
Message includes IP address and the storage system of the memory node for establishing name server NS record, the NS record
The machine name of system;The access request message that the NS record sends the client received for domain name server
It is sent to the memory node.
15. memory node according to claim 13, which is characterized in that the memory node is in the storage system
Standby memory node, the memory node further includes processing unit, for determining that the primary storage node in the storage system occurs
Failure, and the IP address of itself is changed to the IP address of the primary storage node.
16. 3 to 15 described in any item memory nodes according to claim 1, which is characterized in that the acquiring unit is also used to,
Obtain the load information of each memory node in the storage system;
The memory node further includes determination unit, for determining the load of second memory node according to the load information
It is minimum.
17. 3 to 15 described in any item memory nodes according to claim 1, which is characterized in that the memory node supports the 4th
Version Internet protocol IP V4 and/or Internet Protocol version 6 IPV6.
18. memory node according to claim 16, which is characterized in that the memory node supports fourth edition internet protocol
Discuss IPV4 and/or Internet Protocol version 6 IPV6.
19. a kind of name server, which is characterized in that domain name server belongs to active directory domain, and the domain AD is also wrapped
Storage system is included, domain name server includes: processor, communication interface, memory and communication bus;Wherein, the processing
Device, the communication interface and the memory complete mutual communication by the communication bus;
The memory is for storing program code;
The processor calls the said program code of the memory storage to want for perform claim by the communication interface
Seek 1 to 3 described in any item methods.
20. a kind of memory node, which is characterized in that the memory node belongs to the storage system in active directory domain, described
The domain AD further includes name server, and the memory node includes: processor, communication interface, memory and communication bus;Wherein,
The processor, the communication interface and the memory complete mutual communication by the communication bus;
The memory is for storing program code;
The processor calls the said program code of the memory storage to want for perform claim by the communication interface
Seek 4 to 9 described in any item methods.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610051582.5A CN105635342B (en) | 2016-01-26 | 2016-01-26 | Establish method, name server and the memory node of connection |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610051582.5A CN105635342B (en) | 2016-01-26 | 2016-01-26 | Establish method, name server and the memory node of connection |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105635342A CN105635342A (en) | 2016-06-01 |
CN105635342B true CN105635342B (en) | 2019-04-19 |
Family
ID=56049808
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610051582.5A Active CN105635342B (en) | 2016-01-26 | 2016-01-26 | Establish method, name server and the memory node of connection |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105635342B (en) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111245972B (en) * | 2016-08-31 | 2023-07-28 | 贵州白山云科技股份有限公司 | Domain name resolution method, device, medium and equipment |
CN106953940B (en) * | 2017-04-13 | 2018-11-20 | 网宿科技股份有限公司 | Dns server and configuring load application method, network system, domain name analytic method and system |
CN107979659A (en) * | 2018-01-23 | 2018-05-01 | 深圳市天贝物联科技有限公司 | Convenient access method, system, electronic equipment and storage medium based on domain name |
CN110502333B (en) * | 2018-05-16 | 2022-09-02 | 杭州海康威视系统技术有限公司 | Access request processing method and cloud storage system |
CN109347947A (en) * | 2018-10-15 | 2019-02-15 | 郑州云海信息技术有限公司 | A kind of method of load balancing, name server and cluster nas server |
JP2023517411A (en) * | 2020-10-19 | 2023-04-26 | オラクル・インターナショナル・コーポレイション | Method, system and computer readable medium for actively discovering and tracking addresses associated with 4G service endpoints |
CN112329054A (en) * | 2020-10-29 | 2021-02-05 | 广东电网有限责任公司韶关供电局 | Method, device, equipment and storage medium for improving software permission |
CN115361270B (en) * | 2022-08-19 | 2024-06-14 | 郑州浪潮数据技术有限公司 | Method, device and medium for accessing AD domain by storage cluster |
CN116204494B (en) * | 2023-04-28 | 2023-07-14 | 深圳竹云科技股份有限公司 | Method and device for migrating active directory data, electronic equipment and storage medium |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101431539A (en) * | 2008-12-11 | 2009-05-13 | 华为技术有限公司 | Domain name resolution method, system and apparatus |
CN101883042A (en) * | 2009-05-05 | 2010-11-10 | 华为技术有限公司 | Mapping method, system and domain name server based on hierarchical routing framework |
CN101917493A (en) * | 2010-08-18 | 2010-12-15 | 中兴通讯股份有限公司 | Iterative query method and system of server |
CN102668518A (en) * | 2011-12-02 | 2012-09-12 | 华为技术有限公司 | Content distribution network routing method, system, and user terminal |
CN105072211A (en) * | 2015-08-12 | 2015-11-18 | 网宿科技股份有限公司 | Domain name deployment system and domain name deployment method based on DNS (Domain Name Server) |
-
2016
- 2016-01-26 CN CN201610051582.5A patent/CN105635342B/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101431539A (en) * | 2008-12-11 | 2009-05-13 | 华为技术有限公司 | Domain name resolution method, system and apparatus |
CN101883042A (en) * | 2009-05-05 | 2010-11-10 | 华为技术有限公司 | Mapping method, system and domain name server based on hierarchical routing framework |
EP2429121A1 (en) * | 2009-05-05 | 2012-03-14 | Huawei Technologies Co., Ltd. | Mapping method, system and domain name server of hierarchical routing architecture |
CN101917493A (en) * | 2010-08-18 | 2010-12-15 | 中兴通讯股份有限公司 | Iterative query method and system of server |
CN102668518A (en) * | 2011-12-02 | 2012-09-12 | 华为技术有限公司 | Content distribution network routing method, system, and user terminal |
CN105072211A (en) * | 2015-08-12 | 2015-11-18 | 网宿科技股份有限公司 | Domain name deployment system and domain name deployment method based on DNS (Domain Name Server) |
Also Published As
Publication number | Publication date |
---|---|
CN105635342A (en) | 2016-06-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105635342B (en) | Establish method, name server and the memory node of connection | |
US10374955B2 (en) | Managing network computing components utilizing request routing | |
US10469314B2 (en) | API gateway for network policy and configuration management with public cloud | |
EP3391627B1 (en) | Shared multi-tenant domain name system (dns) server for virtual networks and corresponding method | |
EP3367638B1 (en) | Load balancing method, device and system | |
US10757086B2 (en) | Using credentials stored in different directories to access a common endpoint | |
US11108740B2 (en) | On premises, remotely managed, host computers for virtual desktops | |
CN103051740B (en) | Domain name analytic method, dns server and domain name analysis system | |
US9628328B2 (en) | Network controller with integrated resource management capability | |
US9432305B1 (en) | Connection redistribution in load-balanced systems | |
US10771309B1 (en) | Border gateway protocol routing configuration | |
US9246906B1 (en) | Methods for providing secure access to network resources and devices thereof | |
US9973590B2 (en) | User identity differentiated DNS resolution | |
CN108124020B (en) | Domain name resolution method, system and equipment | |
US10250677B1 (en) | Decentralized network address control | |
WO2015192563A1 (en) | Method and device for implementing load balancing and load balancing service system | |
JP2021530916A (en) | Address migration service | |
CN104427010A (en) | NAT (network address translation) method and device applied to DVPN (dynamic virtual private network) | |
JP6106334B2 (en) | Method, system and computer readable medium for performing advanced service routing | |
US20120191769A1 (en) | Site-aware distributed file system access from outside enterprise network | |
CN109743357B (en) | Method and device for realizing service access continuity | |
US20180159941A1 (en) | Method for connecting a client to a server in a communication system | |
CN103795581A (en) | Address processing method and address processing device | |
US8972604B1 (en) | Network address retention and assignment | |
CN114945015B (en) | Information acquisition method, device and storage medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |