CN106603373A - Network device virtualization system - Google Patents

Network device virtualization system Download PDF

Info

Publication number
CN106603373A
CN106603373A CN201610955223.2A CN201610955223A CN106603373A CN 106603373 A CN106603373 A CN 106603373A CN 201610955223 A CN201610955223 A CN 201610955223A CN 106603373 A CN106603373 A CN 106603373A
Authority
CN
China
Prior art keywords
virtual
virtual switch
switch
virtual machine
machine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610955223.2A
Other languages
Chinese (zh)
Inventor
何牧君
王健杰
高福信
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
STATE INFORMATION CENTER
Dawning Information Industry Beijing Co Ltd
Original Assignee
STATE INFORMATION CENTER
Dawning Information Industry Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by STATE INFORMATION CENTER, Dawning Information Industry Beijing Co Ltd filed Critical STATE INFORMATION CENTER
Priority to CN201610955223.2A priority Critical patent/CN106603373A/en
Publication of CN106603373A publication Critical patent/CN106603373A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • H04L12/4645Details on frame tagging
    • H04L12/4666Operational details on the addition or the stripping of a tag in a frame, e.g. at a provider edge node
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/825Involving tunnels, e.g. MPLS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/70Virtual switches
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network

Abstract

The invention provides a network device virtualization system. The network device virtualization system includes at least one first virtual machine, a first virtual switch and a second virtual machine, wherein the first virtual machine, the first virtual switch and the second virtual machine are arranged on a cloud platform. Each first virtual machine is connected with the first virtual switch, and the first virtual switch is connected with the second virtual machine. The second virtual machine comprises a second virtual switch connected with the first virtual switch, and a third virtual switch connected with the second virtual switch. The second virtual switch and the third virtual switch are connected through a virtual network device VETH. Through the above technical scheme of the present invention, the network function virtualization is realized in a closed source system.

Description

A kind of network equipment virtualization system
Technical field
The present invention relates to virtual machine field, it particularly relates to a kind of network equipment virtualization system.
Background technology
In the cloud main frame of commercial version, the result due to closing source leads to not for the virtual switch increased income to be arranged on thing In reason machine, meanwhile, in the existing version of Esxi (operation virtual machine), standard switchboard is only existed, virtual switch of not increasing income The stream control function that machine has, therefore, also cannot realize in Esxi that network function is virtualized.
For the problem in correlation technique, effective solution is not yet proposed at present.
The content of the invention
For the problem in correlation technique, the present invention proposes a kind of network equipment virtualization system, can be virtual by business The packet of machine is imported to by standard switchboard and is processed in special virtual machine, cannot in origin system is closed so as to solve Realize the virtualized problem of network function.
The technical scheme is that what is be achieved in that:
According to an aspect of the invention, there is provided a kind of network equipment virtualization system.
The network equipment virtualization system includes:It is arranged at least one first virtual machines in cloud platform, one first empty Intend switch, one second virtual machine, each first virtual machine is connected with the first virtual switch, and the first virtual switch and Second virtual machine connects, wherein, the second virtual machine includes:Second virtual switch, is connected with the first virtual switch;3rd is empty Intend switch, be connected with the second virtual switch, and the second virtual switch and the 3rd virtual switch pass through virtual network Equipment VETH connects.
According to one embodiment of present invention, the first virtual switch arranges different VLAN marks to each first virtual machine Knowledge number.
According to one embodiment of present invention, further include:First virtual switch is sent to each first virtual machine Packet add corresponding VLAN identification numbers.
According to one embodiment of present invention, the first virtual switch is connected with the second virtual switch by TRUNK ports Connect.
According to one embodiment of present invention, TRUNK ports are used for the packet for sending all of addition VLAN identification numbers.
According to one embodiment of present invention, further include:Second virtual switch and the 3rd virtual switch are arranged There is the vlan port of multiple opposite end connections.
According to one embodiment of present invention, further include:Second virtual switch is by packet by corresponding Vlan port is sent to the 3rd virtual switch.
According to one embodiment of present invention, further include:The multiple physical exchanges being connected with the 3rd virtual switch Machine.
The present invention Advantageous Effects be:
The present invention by least one first virtual machines that are arranged in cloud platform, one first virtual switch, one second Virtual machine, each first virtual machine are connected with the first virtual switch, and the first virtual switch is connected with the second virtual machine, Processed in the second virtual machine so as to the packet for sending the first virtual machine is imported to by first virtual switch, together When, the second virtual machine includes:Second virtual switch, is connected with the first virtual switch;3rd virtual switch, it is empty with second Intend switch connection, and the second virtual switch and the 3rd virtual switch are connected by virtual network device VETH, enter one Step realizes virtual network stream control.
Description of the drawings
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to institute in embodiment The accompanying drawing that needs are used is briefly described, it should be apparent that, drawings in the following description are only some enforcements of the present invention Example, for those of ordinary skill in the art, on the premise of not paying creative work, can be being obtained according to these accompanying drawings Obtain other accompanying drawings.
Fig. 1 is the schematic diagram of network equipment virtualization system according to embodiments of the present invention.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than the embodiment of whole.It is based on Embodiment in the present invention, the every other embodiment obtained by those of ordinary skill in the art belong to present invention protection Scope.
A kind of embodiments in accordance with the present invention, there is provided network equipment virtualization system.
As shown in figure 1, device virtualization system according to embodiments of the present invention includes:At least one be arranged in cloud platform Individual first virtual machine, one first virtual switch, one second virtual machine, each first virtual machine and the first virtual switch connect Connect, and the first virtual switch is connected with the second virtual machine, wherein, the second virtual machine includes:Second virtual switch, with One virtual switch connects;3rd virtual switch, is connected with the second virtual switch, and the second virtual switch and the 3rd Virtual switch is connected by virtual network device VETH (not shown).
By the such scheme of the present invention, by least one first virtual machines that are arranged in cloud platform, one first empty Intend switch, one second virtual machine, each first virtual machine is connected with the first virtual switch, and the first virtual switch and Second virtual machine connects, and so as to the packet for sending the first virtual machine, to import to second by first virtual switch virtual Processed in machine, meanwhile, the second virtual machine includes:Second virtual switch, is connected with the first virtual switch;3rd is virtual Switch, is connected with the second virtual switch, and the second virtual switch and the 3rd virtual switch are set by virtual network Standby VETH connections, furthermore achieved that virtual network stream control.
According to one embodiment of present invention, the first virtual switch arranges different VLAN marks to each first virtual machine Knowledge number.
According to one embodiment of present invention, further include:First virtual switch is sent to each first virtual machine Packet add corresponding VLAN identification numbers.
According to one embodiment of present invention, the first virtual switch is connected with the second virtual switch by TRUNK ports Connect.
According to one embodiment of present invention, TRUNK ports are used for the packet for sending all of addition VLAN identification numbers.
According to one embodiment of present invention, further include:Second virtual switch and the 3rd virtual switch are arranged There is the vlan port of multiple opposite end connections.
According to one embodiment of present invention, further include:Second virtual switch is by packet by corresponding Vlan port is sent to the 3rd virtual switch.
According to one embodiment of present invention, further include:The multiple physical exchanges being connected with the 3rd virtual switch Machine.
In order to preferably describe the present invention, the present invention is described in detail below by a specific embodiment.
As shown in figure 1, there is two virtual machines in cloud platform, two virtual machines are respectively virtual machine 1, virtual machine 2, this Outward, different No. vlan is stamped respectively to above-mentioned two virtual machines on the first virtual switch, for example, of the invention one Individual embodiment, as shown in figure 1,1 corresponding label vlan3 of virtual machine, 2 corresponding label vlan4 of virtual machine, wherein, this first Virtual switch is standard Virtual virtual switch (vSS) or distributed virtual virtual switch (vDS), meanwhile, by first TRUNK ports are configured to the virtual network port 1 of the second virtual switch connection in virtual switch (i.e. can be by all vlan Number packet), thus the packet that virtual machine 1, virtual machine 2 send can be flowed in second virtual machine, in addition, OVS stream rules are set on the second virtual switch in two virtual machines so that the packet for carrying vlan3 goes out from No. 3 ports Go, the packet for carrying vlan4 is gone out from No. 4 ports, subsequently connect the second virtual switch using virtual network device VETH Machine and the 3rd virtual switch are to realize virtual network stream control, furthermore, it is to be understood that exchanging to second also dependent on actual demand Machine and 3rd switch are configured, and for example, according to one embodiment of present invention, the second virtual switch is OVS (Tunnel), the 3rd virtual switch is OVS (Integ), meanwhile, can according to the actual requirements to being connected with the 3rd virtual switch Virtual machine type of service and quantity be configured, for example, according to one embodiment of present invention, as shown in figure 1, the virtual machine Business 1 is related to tunnel traffic, and the virtual machine business 2 is related to VLAN traffic, and subsequently above-mentioned virtual service 1 and virtual service 2 connect Corresponding physical virtual switch.
Additionally, the idiographic flow of the network equipment virtualization system is as follows:
1st, in the vlan mutual exclusions of vSS/vDS virtual machines achieved above, each first virtual machine is required for different vlan;
2nd, vSS/vDS needs to be connected by trunk mouths with the second virtual switch;
3rd, two OVS interfaces are connected using virtual network device VETH;
The 4th, OVS stream rules are set, and the rule is specific as follows:
The flow of vlan3 is sent from No. 3 ports;
The flow of vlan4 is sent from No. 4 ports;
The flow of No. 3 ports is sent from No. 1 port;
The flow of No. 4 ports is sent from No. 1 port.
Of course it is to be understood that the present invention can be configured to OVS stream rules according to the actual requirements, the present invention is not limited to this It is fixed.
In sum, by means of the present invention above-mentioned technical proposal, by be arranged in cloud platform at least one first Virtual machine, one first virtual switch, one second virtual machine, each first virtual machine are connected with the first virtual switch, and First virtual switch is connected with the second virtual machine, so as to the packet for sending the first virtual machine passes through first virtual switch Machine is processed in importing to the second virtual machine, meanwhile, the second virtual machine includes:Second virtual switch, it is virtual with first to hand over Change planes connection;3rd virtual switch, is connected with the second virtual switch, and the second virtual switch and the 3rd virtual switch Machine is connected by virtual network device VETH, furthermore achieved that virtual network stream control.
Presently preferred embodiments of the present invention is the foregoing is only, not to limit the present invention, all essences in the present invention Within god and principle, any modification, equivalent substitution and improvements made etc. should be included within the scope of the present invention.

Claims (8)

1. a kind of network equipment virtualization system, it is characterised in that include:At least one first be arranged in cloud platform are virtual Machine, one first virtual switch, one second virtual machine, each first virtual machine are connected with first virtual switch, and First virtual switch is connected with second virtual machine,
Wherein, second virtual machine includes:
Second virtual switch, is connected with first virtual switch;
3rd virtual switch, is connected with second virtual switch, and second virtual switch and the described 3rd Virtual switch is connected by virtual network device VETH.
2. network equipment virtualization system according to claim 1, it is characterised in that first virtual switch is to institute State each first virtual machine and different VLAN identification numbers are set.
3. network equipment virtualization system according to claim 2, it is characterised in that further include:
First virtual switch adds corresponding VLAN identification numbers to the packet that each first virtual machine sends.
4. network equipment virtualization system according to claim 3, it is characterised in that first virtual switch passes through TRUNK ports are connected with second virtual switch.
5. network equipment virtualization system according to claim 4, it is characterised in that the TRUNK ports are used to send The packet of all of addition VLAN identification numbers.
6. network equipment virtualization system according to claim 5, it is characterised in that further include:
Second virtual switch and the 3rd virtual switch are provided with the vlan port of multiple opposite end connections.
7. network equipment virtualization system according to claim 6, it is characterised in that further include:
The packet is sent to the 3rd virtual switch by second virtual switch by corresponding vlan port.
8. network equipment virtualization system according to claim 1, it is characterised in that further include:
The multiple physical switches being connected with the 3rd virtual switch.
CN201610955223.2A 2016-10-27 2016-10-27 Network device virtualization system Pending CN106603373A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610955223.2A CN106603373A (en) 2016-10-27 2016-10-27 Network device virtualization system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610955223.2A CN106603373A (en) 2016-10-27 2016-10-27 Network device virtualization system

Publications (1)

Publication Number Publication Date
CN106603373A true CN106603373A (en) 2017-04-26

Family

ID=58589473

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610955223.2A Pending CN106603373A (en) 2016-10-27 2016-10-27 Network device virtualization system

Country Status (1)

Country Link
CN (1) CN106603373A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107566238A (en) * 2017-08-30 2018-01-09 成都安恒信息技术有限公司 A kind of method of User space configuration physical interface automatic identification vlan frames and non-vlan frames

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105515933A (en) * 2015-11-30 2016-04-20 中电科华云信息技术有限公司 Management method for realizing network function of VMware based on OpenStack
US20160119230A1 (en) * 2012-06-20 2016-04-28 International Business Machines Corporation Hypervisor independent network virtualization
CN105592016A (en) * 2014-10-29 2016-05-18 国家电网公司 Virtual machine protection device of power information system in cloud environment
CN105933248A (en) * 2015-04-20 2016-09-07 山石网科通信技术有限公司 Service Insertion In Basic Virtual Network Environment

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160119230A1 (en) * 2012-06-20 2016-04-28 International Business Machines Corporation Hypervisor independent network virtualization
CN105592016A (en) * 2014-10-29 2016-05-18 国家电网公司 Virtual machine protection device of power information system in cloud environment
CN105933248A (en) * 2015-04-20 2016-09-07 山石网科通信技术有限公司 Service Insertion In Basic Virtual Network Environment
CN105515933A (en) * 2015-11-30 2016-04-20 中电科华云信息技术有限公司 Management method for realizing network function of VMware based on OpenStack

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107566238A (en) * 2017-08-30 2018-01-09 成都安恒信息技术有限公司 A kind of method of User space configuration physical interface automatic identification vlan frames and non-vlan frames

Similar Documents

Publication Publication Date Title
CN104169878B (en) Scalable virtual appliance cloud
CN104410541B (en) The method and device that VXLAN internal layer virtual machine traffics are counted in intermediary switch
CN103873374B (en) Message processing method and device in virtualization system
CN103428094B (en) Message forwarding method in open flows OpenFlow system and device
US20190116133A1 (en) Ruled-based network traffic interception and distribution scheme
CN102843286B (en) Implementation method, and system of virtual routers
SG11201800020UA (en) Packet processing method in cloud computing system, host, and system
CN106603550B (en) A kind of Network Isolation method and device
CN104218995B (en) A kind of ONU, communication system and ONU communication means
CN107896195A (en) Service chaining method of combination, device and service chaining topological structure
CN103856398A (en) Virtual Trunking Over Physical Links
CN109698788A (en) Flow forwarding method and flow forwarding device
CN104322022B (en) Multi-tenant system, interchanger, controller and block transmission method
CN106982149A (en) Message mirror-image method and network flow monitoring management system based on SDN
CN109150684A (en) Message processing method, device, communication equipment and computer readable storage medium
CN102904777A (en) Port-based multi-equipment testing implementing method
CN105933248A (en) Service Insertion In Basic Virtual Network Environment
CN107547278A (en) A kind of device and method for docking OpenStack with enterprise virtual environment
CN109121026A (en) Realize the method and system of VOLT in a kind of logic-based port
CN105656708A (en) Single-board testing method and device
KR20170052002A (en) System and method for chaining virtualized network funtion
CN107979519B (en) The difference implementation method and VTEP, PE of VXLAN business
CN103346950B (en) Between a kind of rack wireless controller customer service plate, method and device are shared in load equally
CN105704167B (en) A kind of business chain processing method, equipment and system
CN102916893A (en) Device and method for setting internet protocol (IP) multicast retransmission port in three-layer switchboard

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170426