CN107124411B - Virtual private cloud implementation method, device and system under classic network environment - Google Patents
Virtual private cloud implementation method, device and system under classic network environment Download PDFInfo
- Publication number
- CN107124411B CN107124411B CN201710286082.4A CN201710286082A CN107124411B CN 107124411 B CN107124411 B CN 107124411B CN 201710286082 A CN201710286082 A CN 201710286082A CN 107124411 B CN107124411 B CN 107124411B
- Authority
- CN
- China
- Prior art keywords
- user
- server
- address
- routing
- network environment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
Abstract
The present invention provides the virtual private cloud implementation methods under a kind of classic network environment, comprising: local routing deletes step, deletes the IP address in the local routing table of server;And routing channel establishment step, routing channel is established respectively for each user on each server, wherein, the routing channel established for the user on a server is configured as: the communication data of the IP address of the user on one server is transmitted via the routing channel, and it receives from other routing channels using the IP address of the user on one server as the communication data of target ip address, and the communication data is passed to the IP address of the user.The present invention also provides the virtual private cloud realization devices and system under classic network environment.
Description
Technical field
The invention belongs to computer network communication fields, realize more particularly to the virtual private cloud under classic network environment
Method, apparatus and system.
Background technique
Under classic network environment, (Internet Protocol is interconnected between network by the IP of the user on server
Agreement) address is globally unique, that is, and the IP address of different user and same user are all different.Therefore, in classic network environment
Under mode, go when another IP address for accessing the user to be not in that other users are accessed from the IP address of user
The problem of IP address.But if necessary to classic network Environmental Support virtual private cloud (Virtual Priate Cloud, with
Lower abbreviation " VPC ") function, due to the customized IP address of user under VPC mode, although the IP address of the same user is different
Sample, but be different user and may have identical IP address, thus an IP address for being possible to exist user goes to visit
The problem of IP address of other users is but accessed when asking another IP address of the user.For example, it is assumed that on a server
The IP address of user A is IP1, and the IP address of user B is IP2, and the IP address of user A is IP2 on another server, this
In the case of, when the IP1 of user A goes to access its IP2, since always first access is local for routing policy, thus user A can be visited
It asks the data of user B, and accesses the data less than A, but such case does not allow.
Therefore, for classic network Environmental Support VPC, it is necessary to efficient virtual network isolation is provided for each user, with
By services migrating to have network isolation function environmentally.A kind of existing technology for being capable of providing isolation is to draw isolation, that is,
Different protocol stacks is divided for each user so that each user can only see the IP address of oneself.Another kind be capable of providing every
From technology be to provide isolation by using virtual machine for each user.However, coming according to above-mentioned isolation technology for classics
Network environment offer network isolation function needs to interrupt the service of user to redeploy, but in the past in classic network ring
The service of many users provided under border, such as database are not allow to interrupt to service, therefore can not use above-mentioned isolation side
Method is isolated to provide virtual network.Therefore, to realize VPC under classic network environment so that under classic network environment cannot in
Disconnected service has VPC function, and other special methods is needed to carry out relevant deployment configuration.
Summary of the invention
In order to solve the above technical problems, that is, in order to which the technology for overcoming existing offer virtual network to be isolated is applied to passing through
Realizing under allusion quotation network environment will lead to the problem of when VPC, provide the present invention.
According to the first aspect of the invention, the virtual private cloud implementation method under a kind of classic network environment is provided, comprising:
Local routing deletes step, deletes the IP address in the local routing table of server;And
Routing channel establishment step establishes routing channel for each user on each server respectively, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
Virtual private cloud implementation method under classic network environment provided by the present invention passes through as on each server
Each user establish routing channel respectively, and configure corresponding routing rule for routing channel to provide virtual network for user
Isolation, can realize VPC under classic network environment, so that the service that cannot be interrupted under classic network environment can also have
VPC function.
According to the virtual private cloud implementation method under classic network environment as described above, wherein on the same server
User IP address it is different.
According to another aspect of the present invention, the virtual private cloud realization device under a kind of classic network environment is provided, comprising:
Local routing deletes unit, is configured as deleting the IP address in the local routing table of server;And
Routing channel establishes unit, is configured as establishing routing channel respectively for each user on each server,
Wherein,
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to the virtual private cloud realization device under classic network environment as described above, wherein on the same server
User IP address it is different.
According to another aspect of the invention, a kind of non-volatile memory medium, the non-volatile memory medium tool are provided
There is the instruction being stored therein, when the instruction is performed, so that processor executes the virtual private cloud under classic network environment
Implementation method, comprising:
Local routing deletes instruction, deletes the IP address in the local routing table of server;And
Routing channel establishes instruction, establishes routing channel respectively for each user on each server, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to another aspect of the invention, the virtual private cloud provided under a kind of classic network environment realizes equipment, comprising:
Memory, the instruction that the memory has the computer being stored therein executable;And
Processor, the processor are coupled to the memory, and are configured as under execution and classic network environment
The corresponding processing of virtual private cloud implementation method, which includes:
Local routing delete processing deletes the IP address in the local routing table of server;And
Routing channel foundation processing establishes routing channel for each user on each server respectively, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to another aspect of the invention, the virtual private cloud provided under a kind of classic network environment realizes system, comprising:
Virtual private cloud realization device under classic network environment as described above.
According to another aspect of the invention, a kind of server is provided, comprising: under classic network environment as described above
Virtual private cloud realizes system.
The virtual private cloud implementation method under above-mentioned classic network environment, virtual private cloud through the invention realizes dress
Set, virtual private cloud realizes equipment, virtual private cloud realizes system, storage medium and server, make it possible in classical net
VPC is realized under network environment, so that the service that cannot be interrupted under classic network environment can also have VPC function.
Detailed description of the invention
Below with reference to the accompanying drawings illustrate embodiments of the invention, it will be more easily understood of the invention above and other
Objects, features and advantages.Component in attached drawing is intended merely to show the principle of the present invention.In the accompanying drawings, same or similar
Technical characteristic or component will be indicated using same or similar appended drawing reference.In attached drawing:
Fig. 1 shows the process of the virtual private cloud implementation method under classic network environment according to an embodiment of the present invention
Figure;
Fig. 2 is shown as the schematic diagram for the routing channel that each user establishes;And
Fig. 3 shows the block diagram of the virtual private cloud realization device under classic network environment according to an embodiment of the present invention.
Specific embodiment
Exemplary embodiment of the invention is described in detail hereinafter in connection with attached drawing.
Firstly, illustrating that the virtual private cloud under classic network environment according to an embodiment of the present invention is realized by referring to Fig.1
The process of method.
Fig. 1 shows the process of the virtual private cloud implementation method under classic network environment according to an embodiment of the present invention
Figure.As shown in Figure 1, the virtual private cloud implementation method under classic network environment according to an embodiment of the present invention includes following step
It is rapid:
Local routing deletes step S1: deleting the IP address in the local routing table of server;And
Routing channel establishment step S2: routing channel is established respectively for each user on each server, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
In the following, by being described in further details to above-mentioned each step in Fig. 1, it is real according to the present invention to more fully understand
Apply the feature and advantage of the distributed computing method of example.
Firstly, deleting in step S1 in local routing, the IP address in the local routing table of server is deleted.Here, lead to
It crosses and deletes the IP address of all owning users on server from local routing table, such local service default will access not
To the IP address of any user, customized policybased routing and communication can be transmitted according to the customized policybased routing so as to subsequent
Data (for example, message).
Here, it should be noted that the virtual private cloud under classic network environment according to an embodiment of the present invention is realized
In method, the IP address of the user on the same server is different.This can in distributing user by management strategy come
It avoids.
Next, establishing routing respectively in routing channel establishment step S2 for each user on each server
Channel.
In embodiment, the routing channel established for the user on a server is configured with customized policybased routing.It should
Customized policybased routing is arranged to: the communication data of the IP address of the user on one server (for example,
Message) it is transmitted via the routing channel, and receive from other routing channels by the use on one server
Communication data (for example, message) of the IP address at family as target ip address, and the communication data is passed into the user
The IP address.
For example, Fig. 2 is shown as the schematic diagram for the routing channel that each user establishes.As shown in Fig. 2, on server 1
User A and B, establish routing channel A1 and B1 respectively;For the user A on server 2, routing channel A2 is established;And
For the user A on server 3, routing channel A3 is established.
Customized routing policy set by the routing channel A1 established by the user A on server 1 are as follows: from service
The communication data of the IP1 of user A on device 1 is transmitted via routing channel A1, and receiving from other routing channels will service
Communication data of the IP1 of user A on device 1 as target ip address, and the communication data is passed to the IP1 of user A
The customized routing policy configured by the routing channel B1 established of the user B on server 1 are as follows: from service
The communication data of the IP2 of user B on device 1 is transmitted via routing channel B1, and receiving from other routing channels will service
Communication data of the IP2 of user B on device 1 as target ip address, and the communication data is passed to the IP2 of user B.
The customized routing policy configured by the routing channel A2 established of the user A on server 2 are as follows: from service
The communication data of the IP2 of user A on device 2 is transmitted via routing channel A2, and receiving from other routing channels will service
Communication data of the IP2 of user A on device 2 as target ip address, and the communication data is passed to the IP2 of user A.
The customized routing policy configured by the routing channel A3 established of the user A on server 3 are as follows: from service
The communication data of the IP3 of user A on device 3 is transmitted via routing channel A3, and receiving from other routing channels will service
Communication data of the IP3 of user A on device 3 as target ip address, and the communication data is passed to the IP3 of user A.
Specifically, for example, as the IP2 of the IP1 of user A access user A, the IP1's of the user A on server 1
Communication data (for example, message) is transmitted via routing channel A1, and as the IP1 of the IP2 of user A access user A, from other
Routing channel A2 is received using the IP1 of the user A on server 1 as the communication data (for example, message) of target ip address, and will
The communication data (for example, message) passes to the IP1 of user A.
In another example as the IP3 of the IP1 of user A access user A, the communication number of the IP1 of the user A on server 1
It is transmitted according to (for example, message) via routing channel A1, and as the IP1 of the IP3 of user A access user A, it is logical from other routings
Road A3 is received using the IP1 of the user A on server 1 as the communication data (for example, message) of target ip address, and by the communication
Data (for example, message) pass to the IP1 of user A.
In embodiment, above-mentioned routing channel is realized with tunnel style.Tunnel is a kind of encapsulation technology, it utilizes a kind of net
Network agreement transmits another network protocol, that is, utilizes a kind of network transmission protocol, and the data message that other agreements are generated seals
In the message of own, then transmit in a network.Actually tunnel is considered as a virtual point-to-point connection.
As above as can be seen that in the disclosure, by the IP for deleting all owning users from the local routing table of server
Corresponding customized policybased routing is simultaneously established so that the access of IP address to another IP address of user can in address
It is carried out via dedicated routing channel, so as to avoid the IP address that other users with identical IP address are accessed
Problem, thus, it is possible to provide efficient virtual network isolation under classic network environment for each user, by classic network ring
The services migrating that cannot be interrupted under border environmentally realizes VPC under classic network environment to network isolation function.
According to another aspect of the present invention, a kind of virtual private cloud realization executed under above-mentioned classic network environment is provided
Virtual private cloud realization device under the classic network environment of method.Fig. 3 shows classic network ring according to an embodiment of the present invention
The block diagram of virtual private cloud realization device under border.As shown in figure 3, the void under classic network environment according to an embodiment of the present invention
Intending private clound realization device includes:
Local routing deletes unit 31, is configured as deleting the IP address in the local routing table of server;And
Routing channel establishes unit 32, is configured as establishing respectively for each user on each server routing and lead to
Road, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to the virtual private cloud realization device under classic network environment as described above, wherein on the same server
User IP address it is different.
According to a further aspect of the invention, a kind of non-volatile memory medium, the non-volatile memory medium are provided
With the instruction being stored therein, when the instruction is performed, so that virtual privately owned under processor execution classic network environment
Cloud implementation method, comprising:
Local routing deletes instruction, deletes the IP address in the local routing table of server;And
Routing channel establishes instruction, establishes routing channel respectively for each user on each server, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to a further aspect of the invention, the virtual private cloud under a kind of classic network environment is provided and realizes equipment, packet
It includes:
Memory, the instruction that the memory has the computer being stored therein executable;And
Processor, the processor are coupled to the memory, and are configured as under execution and classic network environment
The corresponding processing of virtual private cloud implementation method, which includes:
Local routing delete processing deletes the IP address in the local routing table of server;And
Routing channel foundation processing establishes routing channel for each user on each server respectively, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is passed via the routing channel
It passs, and
It receives from other routing channels using the IP address of the user on one server as target ip address
Communication data, and the communication data is passed to the IP address of the user.
According to a further aspect of the invention, the virtual private cloud under a kind of classic network environment is provided and realizes system, packet
Include the virtual private cloud realization device under classic network environment as described above.
According to a further aspect of the invention, a kind of server is provided, including under classic network environment as described above
Virtual private cloud realizes system.
The virtual private cloud implementation method under above-mentioned classic network environment, virtual private cloud through the invention realizes dress
Set, virtual private cloud realizes equipment, virtual private cloud realizes system, storage medium and server, make it possible in classical net
VPC is realized under network environment, so that the service that cannot be interrupted under classic network environment can also have VPC function.
Although various preferred embodiments of the invention are described in detail herein, those skilled in the art should be managed
Solution, in the case where not departing from the claimed invention, can be changed it.
Claims (8)
1. the virtual private cloud implementation method under a kind of classic network environment characterized by comprising
Local routing deletes step, deletes the IP address in the local routing table of server;And
Routing channel establishment step establishes routing channel for each user on each server respectively, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is transmitted via the routing channel, with
And
It receives from other routing channels using the IP address of the user on one server as the logical of target ip address
Letter data, and the communication data is passed to the IP address of the user.
2. the virtual private cloud implementation method under classic network environment as described in claim 1, which is characterized in that
The IP address of user on the same server is different.
3. the virtual private cloud realization device under a kind of classic network environment characterized by comprising
Local routing deletes the IP address that unit is configured as in the local routing table of deletion server;And
Routing channel establishes unit, is configured as establishing routing channel respectively for each user on each server, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is transmitted via the routing channel, with
And
It receives from other routing channels using the IP address of the user on one server as the logical of target ip address
Letter data, and the communication data is passed to the IP address of the user.
4. the virtual private cloud realization device under classic network environment as claimed in claim 3, which is characterized in that
The IP address of user on the same server is different.
5. a kind of non-volatile memory medium, which is characterized in that the non-volatile memory medium has the finger being stored therein
It enables, when the instruction is performed, so that processor executes the virtual private cloud implementation method under classic network environment, comprising:
Local routing deletes instruction, deletes the IP address in the local routing table of server;And
Routing channel establishes instruction, establishes routing channel respectively for each user on each server, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is transmitted via the routing channel, with
And
It receives from other routing channels using the IP address of the user on one server as the logical of target ip address
Letter data, and the communication data is passed to the IP address of the user.
6. the virtual private cloud under a kind of classic network environment realizes equipment characterized by comprising
Memory, the instruction that the memory has the computer being stored therein executable;And
Processor, the processor are coupled to the memory, and are configured as executing and the void under classic network environment
The quasi- corresponding processing of private clound implementation method, the processing include:
Local routing delete processing deletes the IP address in the local routing table of server;And
Routing channel foundation processing establishes routing channel for each user on each server respectively, wherein
The routing channel established for the user on a server is configured as:
The communication data of the IP address of the user on one server is transmitted via the routing channel, with
And
It receives from other routing channels using the IP address of the user on one server as the logical of target ip address
Letter data, and the communication data is passed to the IP address of the user.
7. the virtual private cloud under a kind of classic network environment realizes system characterized by comprising
The virtual private cloud realization device under classic network environment as described in claim 3 or 4.
8. a kind of server characterized by comprising
Virtual private cloud under classic network environment as claimed in claim 7 realizes system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710286082.4A CN107124411B (en) | 2017-04-26 | 2017-04-26 | Virtual private cloud implementation method, device and system under classic network environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710286082.4A CN107124411B (en) | 2017-04-26 | 2017-04-26 | Virtual private cloud implementation method, device and system under classic network environment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107124411A CN107124411A (en) | 2017-09-01 |
| CN107124411B true CN107124411B (en) | 2019-09-06 |
Family
ID=59725548
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710286082.4A Active CN107124411B (en) | 2017-04-26 | 2017-04-26 | Virtual private cloud implementation method, device and system under classic network environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107124411B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108900637A (en) * | 2018-08-08 | 2018-11-27 | 北京百度网讯科技有限公司 | Method for transmitting information and device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036919A (en) * | 2011-09-30 | 2013-04-10 | 上海贝尔股份有限公司 | Method and device for achieving migration of virtual machine in virtual private cloud (VPC) |
| CN104486192A (en) * | 2014-12-05 | 2015-04-01 | 国云科技股份有限公司 | VLAN (Virtual Local Area Network) isolation method |
| CN106231004A (en) * | 2016-08-05 | 2016-12-14 | 浪潮(北京)电子信息产业有限公司 | The collocation method of the computer node IP address of a kind of cloud data center and system |
| CN106470155A (en) * | 2015-08-14 | 2017-03-01 | 中国电信股份有限公司 | A kind of retransmission method of virtual-machine data, SDN controller and SDN system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9584445B2 (en) * | 2013-05-07 | 2017-02-28 | Equinix, Inc. | Direct connect virtual private interface for a one to many connection with multiple virtual private clouds |
-
2017
- 2017-04-26 CN CN201710286082.4A patent/CN107124411B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036919A (en) * | 2011-09-30 | 2013-04-10 | 上海贝尔股份有限公司 | Method and device for achieving migration of virtual machine in virtual private cloud (VPC) |
| CN104486192A (en) * | 2014-12-05 | 2015-04-01 | 国云科技股份有限公司 | VLAN (Virtual Local Area Network) isolation method |
| CN106470155A (en) * | 2015-08-14 | 2017-03-01 | 中国电信股份有限公司 | A kind of retransmission method of virtual-machine data, SDN controller and SDN system |
| CN106231004A (en) * | 2016-08-05 | 2016-12-14 | 浪潮(北京)电子信息产业有限公司 | The collocation method of the computer node IP address of a kind of cloud data center and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107124411A (en) | 2017-09-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107580083B (en) | Method and system for allocating IP addresses of containers | |
| CN109889621B (en) | Configuration method and device of virtual private cloud service | |
| US11095711B2 (en) | DNS Resolution of internal tenant-specific domain addresses in a multi-tenant computing environment | |
| CN109561171B (en) | Configuration method and device of virtual private cloud service | |
| US11088944B2 (en) | Serverless packet processing service with isolated virtual network integration | |
| US10623505B2 (en) | Integrating service appliances without source network address translation in networks with logical overlays | |
| US20190081921A1 (en) | Management of domain name systems in a large-scale processing environment | |
| US11178254B2 (en) | Chaining virtual network function services via remote memory sharing | |
| CN108780410A (en) | The network virtualization of container in computing system | |
| CN103888928A (en) | Business strategy control method and system | |
| US10333901B1 (en) | Policy based data aggregation | |
| US11625280B2 (en) | Cloud-native proxy gateway to cloud resources | |
| CN101197856A (en) | IP address space planning-free and private domain name access method in VPN network | |
| US20200344112A1 (en) | On-premise and off-premise debugging | |
| CN106169963A (en) | The access method of service page and system, proxy server | |
| JP7012079B2 (en) | Communication method, system, program between on-premises and off-premises | |
| CN107124411B (en) | Virtual private cloud implementation method, device and system under classic network environment | |
| US11296981B2 (en) | Serverless packet processing service with configurable exception paths | |
| CN116389599A (en) | Gateway service request processing method and device and cloud native gateway system management method and device | |
| US20200127923A1 (en) | System and method of performing load balancing over an overlay network | |
| CN114553492B (en) | Cloud platform-based operation request processing method and device | |
| WO2023016250A1 (en) | Cloud service control system, method, and apparatus, electronic device, and storage medium | |
| CN115037572B (en) | Application request identification method and device | |
| US10848418B1 (en) | Packet processing service extensions at remote premises | |
| Mambretti et al. | Designing and deploying a bioinformatics software-defined network exchange (SDX): Architecture, services, capabilities, and foundation technologies |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 200090 Room 201, 10 B, 619 Longchang Road, Yangpu District, Shanghai. Applicant after: Excellent Polytron Technologies Inc Address before: 200090 Shanghai city Yangpu District road 619 Longchang city concept 10 building B block. Applicant before: SHANGHAI UCLOUD INFORMATION TECHNOLOGY CO., LTD. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |