CN107948086A - A kind of data packet sending method, device and mixed cloud network system - Google Patents

A kind of data packet sending method, device and mixed cloud network system Download PDF

Info

Publication number
CN107948086A
CN107948086A CN201610890617.4A CN201610890617A CN107948086A CN 107948086 A CN107948086 A CN 107948086A CN 201610890617 A CN201610890617 A CN 201610890617A CN 107948086 A CN107948086 A CN 107948086A
Authority
CN
China
Prior art keywords
gateway
address
server
target
gateway server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610890617.4A
Other languages
Chinese (zh)
Inventor
唐猛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Kingsoft Cloud Network Technology Co Ltd
Beijing Kingsoft Cloud Technology Co Ltd
Original Assignee
Beijing Kingsoft Cloud Network Technology Co Ltd
Beijing Kingsoft Cloud Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Kingsoft Cloud Network Technology Co Ltd, Beijing Kingsoft Cloud Technology Co Ltd filed Critical Beijing Kingsoft Cloud Network Technology Co Ltd
Priority to CN201610890617.4A priority Critical patent/CN107948086A/en
Publication of CN107948086A publication Critical patent/CN107948086A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/12Avoiding congestion; Recovering from congestion
    • H04L47/125Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing

Abstract

The embodiment of the invention discloses a kind of data packet sending method, device and mixed cloud network system, method is applied to gateway switch, mixed cloud network system includes the host in gateway cluster and VPC, gateway cluster includes gateway switch and at least two gateway servers, the original state of each gateway server is upstate, and method includes:Receive the first wrapper of the target data bag of the first host transmission;According to the IP address of destination server, target gateway server is determined from upstate gateway server;First wrapper is sent to target gateway server, so that target gateway server decapsulates the first wrapper to obtain target data bag, and IP address conversion is carried out to target data bag and obtains the first data packet;The first data packet that target gateway server is sent is received, and the first data packet is sent to destination server.Using the embodiment of the present invention, the appearance for situations such as reducing network congestion, Network Packet Loss.

Description

A kind of data packet sending method, device and mixed cloud network system
Technical field
The present invention relates to field of computer technology, more particularly to a kind of data packet sending method, device and mixing cloud network System.
Background technology
Cloud computing (Cloud Computing), is a kind of calculation based on internet, in this way, is shared Software and hardware resources and information can be supplied to computer and other equipment on demand.Industry is according to cloud computing supplier with using The belonging relation of person is the criteria for classifying, and cloud computing is divided into three classes, i.e. public cloud, private clound and mixed cloud.
Mixed cloud has merged public cloud and private clound, is the Main Patterns and developing direction of cloud computing in recent years, mixed cloud VPN (Virtual are set up between private clound generally by VPC (Virtual Private Cloud, virtual private cloud) Private Network, Virtual Private Network) or internet private line access realization.It is tenant that VPC, which is used under publicly-owned cloud environment, There is provided the virtual network of privately owned cloud environment, VPN is a kind of to provide proprietary network in common network by way of tunnel encapsulation Technology, under mixed cloud scene be used in private clound to public cloud network security access.
Mixing cloud system is at least one including being deployed in gateway switch, at least two gateway servers and VPC, VPC Host, at least one virtual machine is deployed in host, after host receives the data packet that virtual machine is sent, data packet is sent out Gateway switch is given, gateway switch delivers a packet to gateway server, and gateway server docks received data packet Carry out IP (Internet Protocol, the agreement interconnected between network) address conversions and IP address change after data packet forward To gateway switch, transformed data packet is sent to the server in internet system by gateway switch, so as to fulfill void The communication between server in plan machine and internet system.In above process, only have a gateway server and be in available (active) state, other gateway servers are then in non-available (passive) state, the only net for being in upstate Forwarding service can be provided for the data packet received by closing server.
Therefore for above-mentioned gateway server, it is necessary to which the data packet forwarded by gateway server is only by can It is forwarded to the gateway server of state, the quantity of the gateway server in upstate only has one, and the available shape The Internet resources such as the bandwidth of the gateway server of state are limited, therefore, when needing the gateway server by the upstate When the total flow of all data packets of forwarding is big, the network load for the gateway server that should be in upstate is big, net easily occurs Situations such as network congestion, Network Packet Loss.
The content of the invention
The purpose of the embodiment of the present invention is to provide a kind of data packet sending method, device and mixed cloud network system, with The appearance for situations such as reducing network congestion, Network Packet Loss.
In a first aspect, to reach above-mentioned purpose, the embodiment of the invention discloses a kind of data packet sending method, applied to mixed The gateway switch in cloud network system is closed, the mixed cloud network system includes:Host in gateway cluster and VPC, institute Stating gateway cluster includes:Gateway switch and at least two gateway servers, the original state of each gateway server is can With state, the described method includes:
The first wrapper of the target data bag of the first host transmission is received, wherein, first wrapper carries mesh Mark the IP address of server;
According to the IP address of the destination server, intended gateway service is determined from upstate gateway server Device;
First wrapper is sent to the target gateway server, so that the target gateway server is to described First wrapper is decapsulated to obtain the target data bag, and IP address conversion is carried out to the target data bag and obtains the One data packet;
First data packet that the target gateway server is sent is received, and first data packet is sent to institute State destination server.
Preferably, first wrapper is:The virtual switch configured in first host is to the number of targets It is packaged according to bag, obtained by the outer layer source IP address and the internal layer purpose IP address that exchange the target data bag after encapsulation 's.
Preferably, the method further includes:
The second data packet that the destination server is sent is received, and second data packet is sent to the target network Server is closed, so that the target gateway server carries out IP address according to IP address conversion information to second data packet The 3rd data packet is converted to, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, wherein, The IP address conversion information is used to record:Gateway server docks received data packet and carries out IP address before and after IP address conversion Between correspondence, second data packet is destination server generation, response for first data packet Data packet;
Second wrapper that the target gateway server is sent is received, and second wrapper is sent to institute State the first host.
Preferably, the IP address according to the destination server, determines from upstate gateway server Target gateway server, including:
Based on the ospf Routing Protocol and equal cost multipath road configured in the gateway switch By the ospf Routing Protocol configured in agreement, and gateway server, acquisition is currently at upstate Gateway server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from can With definite target gateway server in the gateway server of state.
Preferably, described obtain the first data packet to target data bag progress IP address conversion, including:
IP address conversion is carried out to the target data bag;
The purpose IP address that the transformed target data bag carries is revised as to the IP address of the destination server It is the first data packet to obtain.
Preferably, it is described to target data bag progress IP address conversion, including:
The correspondence of the VXLAN marks and the IP address in IP address pond that are carried according to the target data bag, determines Target ip address;
The source IP address that the target data bag carries is revised as the target ip address.
Preferably, the method further includes:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, configure the newly-increased gateway service The route of device.
Second aspect, to reach above-mentioned purpose, the embodiment of the invention discloses a kind of data packet transmitter, applied to mixed The gateway switch in cloud network system is closed, the mixed cloud network system includes the host in gateway cluster and VPC, institute Stating gateway cluster includes gateway switch and at least two gateway servers, and the original state of each gateway server is available State, described device include:
First receiving module, the first wrapper of the target data bag sent for receiving the first host, wherein, it is described First wrapper carries the IP address of destination server;
Determining module, it is true from upstate gateway server for the IP address according to the destination server Set the goal gateway server;
First sending module, for first wrapper to be sent to the target gateway server;So that the mesh Mark gateway server decapsulates first wrapper to obtain the target data bag;The target data bag is carried out IP address conversion obtains the first data packet;
Second sending module, first data packet sent for receiving the target gateway server, and by described in First data packet is sent to the destination server.
Preferably, first wrapper is:The virtual switch configured in first host is to the number of targets It is packaged according to bag, obtained by the outer layer source IP address and the internal layer purpose IP address that exchange the target data bag after encapsulation 's.
Preferably, described device further includes:
Second receiving module, the second data packet sent for receiving the destination server, and by second data Bag is sent to the target gateway server so that the target gateway server according to IP address conversion information to described the Two data packets carry out IP address conversion and obtain the 3rd data packet, and being packaged processing to the 3rd data packet obtains the 3rd data The second wrapper, wherein, the IP address conversion information be used for record:Gateway server docks received data packet and carries out IP Correspondence before and after address conversion between IP address is that second data packet generates for the destination server, for institute State the response data packet of the first data packet;
3rd sending module, second wrapper sent for receiving the target gateway server, and by described in Second wrapper is sent to first host.
Preferably, the determining module, is specifically used for:
Based on the ospf Routing Protocol and equal cost multipath road configured in the gateway switch By the ospf Routing Protocol configured in agreement, and gateway server, acquisition is currently at upstate Gateway server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from can With definite target gateway server in the gateway server of state.
Preferably, described device further includes:
Acquisition module, the routing table of neighbours' gateway server for obtaining newly-increased gateway server;
Configuration module, for based on acquired routing table, learning the route of neighbours' gateway server, described in configuration The route of newly-increased gateway server.
The third aspect, to reach above-mentioned purpose, the embodiment of the invention discloses a kind of mixed cloud network system, the mixing Cloud network system includes:Host in gateway cluster and VPC, the gateway cluster include:Gateway switch and at least two Gateway server, the original state of each gateway server is upstate, wherein,
The first host in the host, for sending the first of the target data bag to the gateway server Wrapper, wherein, first wrapper carries the IP address of destination server;
The gateway switch, first wrapper sent for receiving the first host, takes according to the target The IP address of business device, determines target gateway server from upstate gateway server;First wrapper is sent out Give the target gateway server;
The target gateway server, for being decapsulated to obtain the target data bag to first wrapper; IP address conversion is carried out to the target data bag and obtains the first data packet;First data packet is sent to the gateway to hand over Change planes;
The gateway switch, is additionally operable to receive first data packet that the target gateway server is sent, and will First data packet is sent to the destination server.
Preferably, being configured with virtual switch in first host, the virtual switch is used for the target Data packet is packaged, and the outer layer source IP address for exchanging the target data bag after encapsulation is obtained with internal layer purpose IP address First wrapper.
Preferably, the gateway switch, it is additionally operable to receive the second data packet that the destination server is sent, and by institute State the second data packet and be sent to the target gateway server;
The target gateway server carries out IP address conversion to second data packet according to IP address conversion information and obtains To the 3rd data packet, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, by described second Wrapper is sent to the gateway server;Wherein, the IP address conversion information is used to record:Gateway server is to receiving Data packet carry out correspondence before and after IP address conversion between IP address, second data packet is the destination server Response data packet generate, for first data packet;
The gateway switch, is additionally operable to receive second wrapper that the target gateway server is sent, and will Second wrapper is sent to first host.
Preferably, the gateway switch, is specifically used for:
Based on the ospf Routing Protocol and equal cost multipath road configured in the gateway switch By the ospf Routing Protocol configured in agreement, and gateway server, acquisition is currently at upstate Gateway server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from can With definite target gateway server in the gateway server of state.
Preferably, the destination server, is specifically used for:
IP address conversion is carried out to the target data bag;
The purpose IP address that the transformed target data bag carries is revised as to the IP address of the destination server It is the first data packet to obtain.
Preferably, the destination server, is specifically used for:
The correspondence of the VXLAN marks and the IP address in IP address pond that are carried according to the target data bag, determines Target ip address;
The source IP address that the target data bag carries is revised as the target ip address.
Preferably, the gateway switch, is additionally operable to:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, as seen from the above technical solution, this Inventive embodiments provide a kind of data package processing method, apparatus and system, and the method is applied in mixed cloud network system Gateway switch, mixing cloud system include the host in gateway cluster and VPC, and the gateway cluster includes gateway switch With at least two gateway servers, each gateway server original state is upstate, including:Receive the first host hair First wrapper of the target data bag sent, wherein, first wrapper carries the IP address of destination server;According to described The IP address of destination server, determines target gateway server from upstate gateway server;By first envelope Dress bag is sent to the target gateway server;So that the target gateway server decapsulates first wrapper Obtain the target data bag;IP address conversion is carried out to the target data bag and obtains the first data packet;Receive the target First data packet that gateway server is sent, and first data packet is sent to the destination server.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing There is attached drawing needed in technology description to be briefly described, it should be apparent that, drawings in the following description are only this Some embodiments of invention, for those of ordinary skill in the art, without creative efforts, can be with Other attached drawings are obtained according to these attached drawings.
Fig. 1 is the first flow diagram of data packet sending method provided in an embodiment of the present invention;
Fig. 2 is the flow diagram that target gateway server obtains the first data packet;
Fig. 3 is second of flow diagram of data packet sending method provided in an embodiment of the present invention;
Fig. 4 is the first structure diagram of data packet transmitter provided in an embodiment of the present invention;
Fig. 5 is second of structure diagram of data packet transmitter provided in an embodiment of the present invention;
Fig. 6 is a kind of structure diagram for mixing cloud system provided in an embodiment of the present invention.
Embodiment
Below in conjunction with the attached drawing in the embodiment of the present invention, the technical solution in the embodiment of the present invention is carried out clear, complete Site preparation describes, it is clear that described embodiment is only part of the embodiment of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, those of ordinary skill in the art are obtained every other without creative efforts Embodiment, belongs to the scope of protection of the invention.
In the following, first to involved in present specification to technical term simply introduced.
Public cloud typically refers to the cloud that third party provider user can use, and public cloud can generally be made by Internet With, it may be possible to it is free or of low cost.The most important significance of public cloud is can be with cheap price, there is provided attractive clothes It is engaged in end user, creates new business value, public cloud is as a support platform, additionally it is possible to integrates the service of upstream (such as Value-added service, advertisement) supplier and downstream end user, make new value chain and the ecosystem.Publicly-owned cloud service is in public affairs Have in cloud environment and provide the service of goods that can be accessed based on network remote for tenant, public cloud service includes data storage class Service of goods, such as RDS (Relational Database Service, relevant database service), S3 (Simple Storage Service, simple storage service) and Redis, Redis be a key value database increased income.Publicly-owned cloud service Further include data analysis class product.General such service particular port of certain specific 4-7 layer protocol on network comes to rent Family provides service.Under publicly-owned cloud environment, the network of tenant can be known as overlay networks with self-defined topological, different Tenant can define identical overlay networks, and the virtual machine of overlay network internals can be communicating together, but different tenants Between virtual machine and network be isolated from each other, for underlay networks, overlay is generally by tunneling technique ratio As VXLAN (Virtual eXtensible Local Area Network, virtual expansible LAN) and NVGRE agreements are come Realize that tenant network is isolated, the example run in overlay networks is typically the virtual machine and network example of tenant, such as NAT, Load balancing example.Underlay networks refer to the bottom bearer network of publicly-owned cloud data center, are IDC (Internet Data Center, Internet data center) basic network, for carrying the tunneled network agreement of overlay networks, to rent Family is transparent.In general, publicly-owned cloud service can use underlay real-time performances, can also operate in the virtual machine ring of tenant In border.Publicly-owned cloud service in underlay networks is more preferable with respect to the public service reusability of resources disposed in overlay, more It is easily managed, problem is not invaded to the overlay networks of user, thus security isolation is also more preferable.
VPC is a kind of shared architecture class product altogether, for providing privately owned cloud environment to the user under publicly-owned cloud environment Technical solution, host in VPC and service have a complete private network attribute, different tenants network layer every From realizing the security of higher, the dynamic configuration pond of VPC or public cloud computing resources is, it is necessary to use cryptographic protocol, tunnel Road agreement and other security procedures, transmit data between private enterprise and cloud service provider.One VPC is substantially offer The multi-tenant architecture of business becomes single tenant architecture.
Mixed cloud be it is a kind of contain private clound and the total solution and Technical Architecture of publicly-owned cloud service, in private clound By internet special line or VPN connections between VPC, private clound and public cloud are become into a complete internal network, both protected The security of private clound data is hindered, and the elastification of the product function and computing resource of public cloud can be utilized, be most typically A kind of cloud computing deployment scheme.
VPN is a kind of technology for providing proprietary network in shared network by way of tunnel encapsulation, in mixed cloud field The secure network access being used under scape on user's private clound or privately owned computer room to public cloud, Virtual Private Network are understood as being virtual Enterprises special line out.It can by special encrypted communications protocol connection on internet positioned at difference A proprietary communication line is established between two or more intranets in place, like being to have set up a special line one Sample, but it and need not really go to be laid with the physical circuit of optical cable etc.This is like going to telecommunication bureau to apply for special line, still Without the expense to laying-out, without hardware devices such as purchase routers.VPN technologies are the important technologies that router has One of, the core of VPN is exactly to establish Virtual Private Network using public network.VPN is divided according to tunnel protocol, VPN Including:IPSec (Internet Protocol Security) VPN and SSL (Security Socket Layer) VPN. IPSec VPN are to realize a kind of VPN technologies remotely accessed using ipsec protocol,.Ipsec protocol is IETF (Internet Engineering Task Force Internet engineering task forces) formulate agreement, provide high quality for IP datagram , interoperable, security based on cryptography.Pass through encryption and data origin authentication etc. at IP layers between specific communication party Mode, to ensure private ownership, integrality, authenticity and anti-replay of the datagram in transmission over networks.SSL VPN refer to use Ssl protocol realizes a kind of new VPN technologies remotely accessed.SSL (Secure Socket Layer) agreement is one kind on internet Ensure the puppy parc of transmission information security, using B/S structures (Browser/Server, Browser/Server Mode).At it In application layer, the data that SSL is transmitted using public key encryption by SSL connections are come work.SSL VPN main functions are to provide safety Remote access service and the secret of user is protected with practical action;The safety of constantly improve enterprise level structure and remote access Control instrument;The security of the teleconference of interactive mode is protected using multi-stage authentication and advanced encryption technology.
NAT ((Network Address Translation, network address translation)) is used to provide internal address to outer net The mapping of address, the internal address of server can be replaced by the IP address of a public network after NAT, therefore can be Intranet Server in environment provides the access service to public network (Internet).
Ospf Routing Protocol, abbreviation OSPF (Open Shortest Path First) agreement, is One Interior Gateway Protocol, is the rule of the open Routing Protocol, the i.e. ospf protocol developed by Internet engineering task forces Model is open, and open to the outside world mentioned here is for the Routing Protocol of some " privately owned ".
Equal cost multipath Routing Protocol, abbreviation ECMP (Equal-Cost Multipath Routing) agreement, exists A plurality of difference link is reached in the network environment of same destination address, if using traditional route technology, is sent to the destination The data packet of location can only utilize a link therein, and other links are in Status of Backups or disarmed state, and on dynamic road Certain time is needed by switching mutual under environment, and ECMP agreements can use multilink at the same time under the network environment, Transmission bandwidth is not only increased, and the data transfer of failed link can be backed up without packet loss without time delay.ECMP agreements are maximum The characteristics of be the purpose of load balance and link backup in the case of realizing equivalence.
It should be noted that gateway cluster is deployed in publicly-owned cloud data center with VPC, publicly-owned cloud data center can manage Solve to run the data center of public cloud, each gateway server in gateway cluster in gateway cluster is deployed in publicly-owned The outlet of cloud data center, and common IP address pond and IP address of internal network are configured with the same time.Gateway server access gateway is handed over Change planes so as to fulfill convergence, gateway switch side is mounted to be exported into publicly-owned cloud data center.
Fig. 1 is the first flow diagram of data packet sending method provided in an embodiment of the present invention, applied to mixed cloud Gateway switch in network system, mixed cloud network system include:Host in gateway cluster and VPC, gateway cluster bag Include:Gateway switch and at least two gateway servers, the original state of each gateway server are upstate, method bag Include:
S101:The first wrapper of the target data bag of the first host transmission is received, wherein, the first wrapper carries mesh Mark the IP address of server.
Specifically, the first wrapper is:The virtual switch configured in first host is packaged target data bag, Outer layer source IP address and the internal layer purpose IP address for exchanging the target data bag after encapsulation are obtained.
It will be appreciated by persons skilled in the art that the first host is the host in VPC, destination server is interconnection Server in net.Target data bag carry source address be virtual machine network interface card IP address, i.e. virtual machine IP address, purpose Address is the IP address of destination server, the IP address of destination server mentioned here for destination server outer net IP Location.Virtual switch is configured with first host, in such case, it will be understood that being by virtual switch for the first wrapper Machine will be sent to gateway switch.
Virtual switch is after the target data bag of virtual machine transmission is received, it is necessary to the mesh carried according to target data bag IP address determine whether to be packaged target data bag, if virtual machine and the target as target data bag transmitting terminal take Business device be located at same network segment, with host when, which can directly complete with destination server inside host Two layers of forwarding, realize the communication between virtual machine and destination server, therefore, there is no need to be packaged target data bag.It is empty Intend exchanging after the server in determining that destination server is internet, because the communication between virtual machine and destination server needs Three layers of forwarding are carried out, therefore target data bag is packaged.
Specifically, VLAN (Virtual Local Area Network, virtual LAN) agreement can be used to target Data are packaged, and can also use VXLAN encapsulation technologies that target data encapsulating is dressed up VXLAN protocol data bags, VXLAN is A kind of technology for being packaged Layer 2 data bag with three layer protocols.It is existing that target data bag, which is packaged, using VXLAN Technology, herein without repeating.Target data bag can also be packaged using NVGRE technologies, NVGRE is based on strategy Software control network virtualization frame, major function is to support multi-tenant Web vector graphic GRE in public cloud and private clound (Generic Routing Encapsulation, generic route encapsulation) agreement, by using cloud trustship and data center side Case, makes workload between public cloud and private clound carry out seamless migration.GRE protocol be to some network layer protocols (such as IP and IPX data message) is packaged, and these packed data messages is transmitted in another network layer protocol.Also Can use MPLS (Multi-Protocol Label Switching, multiprotocol label switching) agreements to target data bag into Row encapsulation, MPLS be it is a kind of in open communication network using label guiding data high-speed, the new technology of high efficiency of transmission, be one Kind can provide high performance-price ratio and the switching technology of Multiservice capability.
The outer layer source IP address of target data bag after encapsulation is the IP address of the first host, and internal layer purpose IP address is The IP address of destination server, virtual switch exchange the outer layer source IP address and internal layer destination IP of the target data bag after encapsulation Address is so as to obtain the first wrapper, and the outer layer source IP address of the first wrapper is the IP address of destination server, internal layer purpose Address is the IP address of the first host.
In practical applications, the first wrapper can be sent to gateway collection by the first host by data-centric routing Group, the gateway switch in gateway cluster receives first wrapper.
S102:According to the IP address of destination server, intended gateway clothes are determined from upstate gateway server Business device.
Specifically, according to the IP address of destination server, intended gateway is determined from upstate gateway server Server, can include:
Based on the ospf Routing Protocol configured in gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of destination server is calculated according to hash algorithm, according to cryptographic Hash from upstate Target gateway server is determined in gateway server.
In embodiments of the present invention, gateway switch, can be according to the work(of ospf protocol when receiving the first wrapper Can, know each gateway server and the connection status of itself, the method for specifically knowing connection status is the prior art, at this In without repeating.Gateway switch judges whether gateway server is in upstate according to the connection status known, so that It is which that can obtain and be currently at the gateway server of upstate.In the routing table of gateway switch, gateway switch It is all equal to path cost between each gateway server, according to ECMP agreements, shape between gateway switch and gateway server It is relation of equal value into multiple equative routes, between gateway server.
It will be appreciated by persons skilled in the art that Hash (Hash) algorithm, i.e. hash function, can be by random length Binary value is mapped as the smaller binary value of regular length, this small binary value is known as cryptographic Hash.Cryptographic Hash is one section The unique and extremely compact numerical value representation of data.
Gateway switch can be according to cryptographic Hash between the gateway server in upstate correspondence, can be with Determine target gateway server.It should be noted that gateway server can exist pair between at least one cryptographic Hash It should be related to.The correspondence of cryptographic Hash and gateway server can be pre-established and stored, for example, can be to gateway service Device is ranked up, and then establishes the correspondence of cryptographic Hash and gateway server successively, it is, of course, also possible to true by other means Determine the correspondence between gateway server and cryptographic Hash.
In the prior art, a gateway server for being in upstate, virtual machine and the clothes in internet are only existed The flow that business device communicates all by a gateway server for being in upstate, be easy to cause performance bottleneck, and then lead Situations such as causing network congestion, Network Packet Loss frequently occurs, in embodiments of the present invention, at least two gateway servers In upstate, the gateway server in upstate shares network traffics jointly, realizes the load balancing of network traffics, no The appearance for situations such as causing performance bottleneck, and then reducing network congestion, Network Packet Loss.
S103:First wrapper is sent to target gateway server, so that target gateway server is to the first wrapper Decapsulated to obtain target data bag, and IP address conversion is carried out to target data bag and obtains the first data packet.
Gateway switch is sent to intended gateway service after determining to need target gateway server, by the first wrapper Device, target gateway server are decapsulated to obtain target data bag, and decapsulation is the inverse process of encapsulation, and the prior art, Herein without repeating.
S104:The first data packet that target gateway server is sent is received, and the first data packet is sent to destination service Device.
In practical applications, the first data packet is sent to target clothes by gateway switch after the first data packet is received Internet where business device, routes to destination server, the first data packet routes to destination server through internet through internet Mode it is identical with mode of the prior art, herein without repeating.
In a preferred embodiment of the invention, method can include:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, configure the route for increasing gateway server newly.
In the load too high of the gateway server in determining gateway cluster, increase the quantity of gateway server, gateway collection Existing gateway server can find newly-increased gateway server by the information exchange between gateway server in group, when definite Itself it is neighbours' gateway server of newly-increased gateway server, then the routing table of itself is sent to gateway switch, gateway exchanges After machine receives routing table, gateway switch has learning functionality, learns the route of neighbours' gateway server, configures newly-increased gateway clothes The route of business device, can learn ECMP agreements, the path cost itself arrived between newly-increased gateway server be configured, so that newly It is equivalence relation between other gateway servers in increasing gateway server and gateway cluster.In embodiments of the present invention, may be used also With the loading condition according to gateway server, dilatation is carried out, that is, increases the quantity of gateway server, flow automatic load after dilatation It is balanced.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
In one particular embodiment of the present invention, Fig. 2 is that the flow of target gateway server the first data packet of acquisition is shown It is intended to, carrying out IP address conversion to the target data bag obtains the first data packet, can include:
S201:IP address conversion is carried out to target data bag.
Specifically, carrying out IP address conversion to target data bag, can include:
According to the network identity that the first wrapper carries and the correspondence of the IP address in IP address pond, Target IP is determined Address;The source IP address that target data bag carries is revised as target ip address.
It should be noted that network identity mentioned here is the mark that can identify the network belonging to the first host, In practical applications, if being packaged to obtain the first wrapper to target data bag using VLAN agreements, the first wrapper is taken Band is network identity described above for VLAN ID (identity, identity recognition number);If using VXLAN agreements pair Target data bag is packaged to obtain the first wrapper, and what the first wrapper carried is network described above for VXLAN ID Mark;If being packaged to obtain the first wrapper to target data bag using NVGRE technologies, carried in the first wrapper GRE heads, low 24 of GRE heads are network identity described above;If using MPLS technology to target data bag into Row encapsulation obtains the first wrapper, and the MPLS tag (label) carried in the first wrapper are network identity described above.
In embodiments of the present invention, the network identity pass corresponding with the IP address in IP address pond that the first wrapper carries System is pre-set, can be according to correspondence, in IP address pond with determining Target IP according to definite network identity Location, after target ip address is determined, before IP address conversion is carried out to target data bag i.e. to the progress of target data bag NAT, NAT The correspondence of IP address is as shown in table 1 afterwards.
Table 1
Source IP address Purpose IP address
Before NAT Virtual machine IP address The IP address of first host
After NAT Target ip address The IP address of first host
In practical applications, IP address conversion further includes the conversion to port, exemplary, the source that target data bag carries Port-for-port A, destination interface are port B, and transformed source port is port C, and port C is determined by target gateway server, Specifically definite method is the prior art, herein without repeating.The correspondence of IP address is as shown in table 2 before and after NAT.
Table 2
Source IP address Source port Purpose IP address Destination IP port
Before NAT Virtual machine IP address Port A The IP address of first host Port B
After NAT Target ip address Port C The IP address of first host Port B
S202:The IP address that the purpose IP address that transformed target data bag carries is revised as to destination server obtains It is the first data packet.
Virtual switch have exchanged the outer layer source IP of the target data bag after encapsulation after being packaged to target data bag Address and internal layer purpose IP address, transformed target data bag carries at this time purpose IP address for the first host IP Location, in order to realize the transmission of data, it is necessary to which the IP address for the first host that transformed target data bag is carried is changed For the IP address of destination server, so as to obtain the first data packet.Because the purpose IP address that the first data packet carries takes for target The IP address of business device, according to the IP address of destination server, can be correctly routed to destination server.
Exemplary, based on table 2, the IP address correspondence such as table 3 after modifying to transformed target data bag It is shown.
Table 3
Source IP address Source port Purpose IP address Destination IP port
Before NAT Virtual machine IP address Port A The IP address of first host Port B
After NAT/modification before Target ip address Port C The IP address of first host Port B
After modification Target ip address Port C The IP address of destination server Port B
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
In the preferred embodiments of the present invention, referring to Fig. 3, Fig. 3 sends for data packet provided in an embodiment of the present invention Second of flow diagram of method, compared with embodiment illustrated in fig. 1, in the present embodiment, further included after S104 S105 and S106。
S105:The second data packet that destination server is sent is received, and the second data packet is sent to intended gateway service Device, so that target gateway server carries out the second data packet IP address conversion according to IP address conversion information obtains the 3rd number According to bag, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, wherein, IP address conversion information is used for Record:Correspondence before and after the received data packet progress IP address conversion of gateway server docking between IP address, the second number Response data packet generated according to bag for destination server, for the first data packet.
After destination server receives the first data packet, the response data packet of the first data packet of generation, i.e. the second data packet, The source IP address carried in second data packet is the IP address of destination server, and purpose IP address is target ip address.Gateway is handed over Change planes after receiving the second data packet that destination server is sent, the Hash of the IP address of destination server is calculated according to hash algorithm Value, target gateway server, definite intended gateway clothes are determined according to cryptographic Hash from the gateway server of upstate Business device and the target gateway server of above-mentioned the first wrapper of reception are same gateway server.
Target gateway server is after the second data packet is received, according to IP address conversion information, to the second data packet into Row IP address conversion obtains the 3rd data packet, and the source IP address that the 3rd data packet carries is the IP address of destination server, purpose IP address is the IP address of virtual machine.Exemplary, IP address conversion is carried out according to table 3 and obtains the 3rd data packet, the 3rd data The purpose IP address of bag is converted to the IP address of virtual machine from target ip address, and destination interface is converted to port A, source from port C IP address and source port are constant.
Target gateway server is packaged the 3rd data packet according to IP address conversion information, obtains the second wrapper, Specifically, the encapsulation technology used is one kind in four kinds of encapsulation technologies described above, herein without repeating.
S106:The second wrapper that target gateway server is sent is received, and the second wrapper is sent to the first host Machine.
First host is after the second wrapper is received, and the virtual switch of the first host configuration is to the second wrapper Decapsulated, and the 3rd data packet that decapsulation is obtained is sent to virtual machine.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
Corresponding with above method embodiment, the embodiment of the present invention additionally provides a kind of data packet transmitter.
Fig. 4 is the first structure diagram of data packet transmitter provided in an embodiment of the present invention, which is applied to Gateway switch in mixed cloud network system, mixed cloud network system include the host in gateway cluster and VPC, gateway Cluster includes gateway switch and at least two gateway servers, and the original state of each gateway server is upstate, Device can include the first receiving module 401, determining module 402, the first sending module 403 and the second sending module 404.
First receiving module 401, the first wrapper of the target data bag sent for receiving the first host, wherein, First wrapper carries the IP address of destination server.
Specifically, the first wrapper is:The virtual switch configured in first host is packaged target data bag, Outer layer source IP address and the internal layer purpose IP address for exchanging the target data bag after encapsulation are obtained.
Determining module 402, for the IP address according to destination server, determines from upstate gateway server Target gateway server.
Determining module 402, can be specifically used for:
Based on the ospf Routing Protocol configured in gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of destination server is calculated according to hash algorithm, according to cryptographic Hash from upstate Target gateway server is determined in gateway server.
First sending module 403, for the first wrapper to be sent to the target gateway server;So that intended gateway Server decapsulates the first wrapper to obtain target data bag;IP address conversion is carried out to target data bag and obtains first Data packet;
Second sending module 404, for receiving the first data packet of target gateway server transmission, and by the first data packet It is sent to destination server.
In a preferred embodiment of the invention, which can also include acquisition module and configuration module (in figure not Show).
Acquisition module, the routing table of neighbours' gateway server for obtaining newly-increased gateway server;
Configuration module, for based on acquired routing table, learning the route of neighbours' gateway server, configuring newly-increased gateway The route of server.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
Fig. 5 is second of structure diagram of data packet transmitter provided in an embodiment of the present invention, which is applied to Gateway switch in mixed cloud network system, mixed cloud network system includes the host in gateway cluster and VPC, described Gateway cluster includes gateway switch and at least two gateway servers, and the original state of each gateway server is available shape State, device can also include the second receiving module 405 and the 3rd sending module 406.
Second receiving module 405, sends for receiving the second data packet of destination server transmission, and by the second data packet To target gateway server, so that target gateway server carries out IP address according to IP address conversion information to the second data packet The 3rd data packet is converted to, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, wherein, IP address conversion information is used to record:Before and after the received data packet progress IP address conversion of gateway server docking between IP address Correspondence, the second data packet is destination server generation, response data packet for first data packet.
3rd sending module 406, for receiving second wrapper of target gateway server transmission, and by the second envelope Dress bag is sent to the first host.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
Fig. 6 is a kind of structure diagram for mixing cloud system provided in an embodiment of the present invention, and mixed cloud network system includes: Host in gateway cluster and VPC, gateway cluster include:Gateway switch and at least two gateway servers, each gateway The original state of server is upstate, wherein,
The first host in host, for sending the first wrapper of target data bag to gateway server, wherein, First wrapper carries the IP address of destination server;
Gateway switch, the first wrapper sent for receiving the first host, according to the IP address of destination server, Target gateway server is determined from upstate gateway server;First wrapper is sent to intended gateway service Device;
Target gateway server, for being decapsulated to obtain target data bag to the first wrapper;To target data bag Carry out IP address conversion and obtain the first data packet;First data packet is sent to gateway switch;
Gateway switch, is additionally operable to receive the first data packet that target gateway server is sent, and the first data packet is sent out Give destination server.
In example of the present invention, virtual switch is configured with the first host, virtual switch is used for Target data bag is packaged, and exchanges outer layer source IP address and the internal layer purpose IP address institute of the target data bag after encapsulation Obtain the first wrapper.
It should be noted that virtual switch is configured with the first host, in such case, it will be understood that being first Wrapper is will to be sent to gateway switch by virtual switch.
In a preferred embodiment of the invention, gateway switch, is additionally operable to receive destination server is sent the Two data packets, and the second data packet is sent to target gateway server;
Target gateway server carries out the second data packet IP address conversion according to IP address conversion information and obtains the 3rd number According to bag, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, the second wrapper is sent to gateway Server;Wherein, IP address conversion information is used to record:Before gateway server docks received data packet progress IP address conversion Correspondence between IP address afterwards, response data that the second data packet generates for destination server, for the first data packet Bag;
Gateway switch, is additionally operable to receive the second wrapper that target gateway server is sent, and the second wrapper is sent out Give the first host.
In example of the present invention, gateway switch, is specifically used for:
Based on the ospf Routing Protocol configured in gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of destination server is calculated according to hash algorithm, according to cryptographic Hash from upstate Target gateway server is determined in gateway server.
In example of the present invention, destination server, is specifically used for:
IP address conversion is carried out to target data bag;
The IP address that the purpose IP address that transformed target data bag carries is revised as to destination server obtains being the One data packet.
In a preferred embodiment of the invention, destination server, is specifically used for:
According to the network identity that the first wrapper carries and the correspondence of the IP address in IP address pond, Target IP is determined Address;
The source IP address that target data bag carries is revised as target ip address.
In example of the present invention, gateway switch, is additionally operable to:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, configure the route for increasing gateway server newly.
Using the embodiment of the present invention, compared with prior art, in the embodiment of the present invention, each gateway server original state It is upstate, thus, after gateway switch receives data packet, it can be selected from the gateway server of upstate Select a gateway server and processing forward data bag is carried out to data, different data packets can pass through different gateway servers The appearance for situations such as being handled and forwarded, being realized the load balancing of network traffics, reduce network congestion, Network Packet Loss.
In addition, compared to only existing a gateway server in network system, it is logical between virtual machine and destination server Letter depends on this gateway server, and there are single-point hidden danger, gateway server in the embodiment of the present invention in gateway cluster can be with Work is carried out at the same time, one of gateway server breaks down, and gateway switch can select other gateway servers, because This is not in single-point hidden danger.
It should be noted that herein, relational terms such as first and second and the like are used merely to a reality Body or operation are distinguished with another entity or operation, are deposited without necessarily requiring or implying between these entities or operation In any this actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant are intended to Non-exclusive inclusion, so that process, method, article or equipment including a series of elements not only will including those Element, but also including other elements that are not explicitly listed, or further include as this process, method, article or equipment Intrinsic key element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that Also there are other identical element in process, method, article or equipment including the key element.
Each embodiment in this specification is described using relevant mode, identical similar portion between each embodiment Divide mutually referring to what each embodiment stressed is the difference with other embodiment.It is real especially for device For applying example, since it is substantially similar to embodiment of the method, so description is fairly simple, related part is referring to embodiment of the method Part explanation.
Can one of ordinary skill in the art will appreciate that realizing that all or part of step in above method embodiment is To instruct relevant hardware to complete by program, the program can be stored in computer read/write memory medium, The storage medium designated herein obtained, such as:ROM/RAM, magnetic disc, CD etc..
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the scope of the present invention.It is all Any modification, equivalent replacement, improvement and so within the spirit and principles in the present invention, are all contained in protection scope of the present invention It is interior.

Claims (19)

1. a kind of data packet sending method, applied to the gateway switch in mixed cloud network system, the mixing cloud network system System includes:Host in gateway cluster and VPC, the gateway cluster include:Gateway switch and at least two gateway services Device, the original state of each gateway server is upstate, the described method includes:
The first wrapper of the target data bag of the first host transmission is received, wherein, first wrapper carries target clothes The IP address of business device;
According to the IP address of the destination server, target gateway server is determined from upstate gateway server;
First wrapper is sent to the target gateway server, so that the target gateway server is to described first Wrapper is decapsulated to obtain the target data bag, and is carried out IP address conversion to the target data bag and obtained the first number According to bag;
First data packet that the target gateway server is sent is received, and first data packet is sent to the mesh Mark server.
2. according to the method described in claim 1, it is characterized in that, first wrapper is:Match somebody with somebody in first host The virtual switch put is packaged the target data bag, with exchanging the outer layer source IP of the target data bag after encapsulation Location and internal layer purpose IP address are obtained.
3. according to the method described in claim 1, it is characterized in that, the method further includes:
The second data packet that the destination server is sent is received, and second data packet is sent to the intended gateway and is taken Business device, so that the target gateway server carries out IP address conversion according to IP address conversion information to second data packet The 3rd data packet is obtained, processing is packaged to the 3rd data packet and obtains the second wrapper of the 3rd data, wherein, it is described IP address conversion information is used to record:Before and after the received data packet progress IP address conversion of gateway server docking between IP address Correspondence, second data packet is destination server generation, response data for first data packet Bag;
Receive second wrapper that the target gateway server is sent, and second wrapper is sent to described the One host.
4. according to the method described in claim 1, it is characterized in that, the IP address according to the destination server, from Target gateway server is determined in upstate gateway server, including:
Based on the ospf Routing Protocol configured in the gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from available shape Target gateway server is determined in the gateway server of state.
5. according to the method described in claim 1, it is characterized in that, described obtain target data bag progress IP address conversion To the first data packet, including:
IP address conversion is carried out to the target data bag;
The IP address that the purpose IP address that the transformed target data bag carries is revised as to the destination server obtains It is the first data packet.
6. according to the method described in claim 5, it is characterized in that, it is described to the target data bag carry out IP address conversion, Including:
According to the network identity that first wrapper carries and the correspondence of the IP address in IP address pond, Target IP is determined Address;
The source IP address that the target data bag carries is revised as the target ip address.
7. according to the method described in claim 1, it is characterized in that, the method further includes:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, configure the newly-increased gateway server Route.
8. a kind of data packet transmitter, applied to the gateway switch in mixed cloud network system, the mixing cloud network system System includes the host in gateway cluster and VPC, and the gateway cluster includes gateway switch and at least two gateway services Device, the original state of each gateway server is upstate, and described device includes:
First receiving module, the first wrapper of the target data bag sent for receiving the first host, wherein, described first Wrapper carries the IP address of destination server;
Determining module, for the IP address according to the destination server, determines mesh from upstate gateway server Mark gateway server;
First sending module, for first wrapper to be sent to the target gateway server;So that the target network Server is closed first wrapper is decapsulated to obtain the target data bag;To the target data bag with carrying out IP Location is converted to the first data packet;
Second sending module, first data packet sent for receiving the target gateway server, and by described first Data packet is sent to the destination server.
9. device according to claim 8, it is characterised in that first wrapper is:Match somebody with somebody in first host The virtual switch put is packaged the target data bag, with exchanging the outer layer source IP of the target data bag after encapsulation Location and internal layer purpose IP address are obtained.
10. device according to claim 8, it is characterised in that described device further includes:
Second receiving module, the second data packet sent for receiving the destination server, and second data packet is sent out The target gateway server is given, so that the target gateway server is counted according to IP address conversion information to described second IP address conversion is carried out according to bag and obtains the 3rd data packet, and processing is packaged to the 3rd data packet and obtains the of the 3rd data Two wrappers, wherein, the IP address conversion information is used to record:Gateway server docks received data packet and carries out IP address Correspondence before and after conversion between IP address, second data packet for destination server generation, for described the The response data packet of one data packet;
3rd sending module, second wrapper sent for receiving the target gateway server, and by described second Wrapper is sent to first host.
11. device according to claim 8, it is characterised in that the determining module, is specifically used for:
Based on the ospf Routing Protocol configured in the gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from available shape Target gateway server is determined in the gateway server of state.
12. device according to claim 8, it is characterised in that described device further includes:
Acquisition module, the routing table of neighbours' gateway server for obtaining newly-increased gateway server;
Configuration module, for based on acquired routing table, learning the route of neighbours' gateway server, configuring described newly-increased The route of gateway server.
13. a kind of mixed cloud network system, it is characterised in that the mixed cloud network system includes:In gateway cluster and VPC Host, the gateway cluster include:Gateway switch and at least two gateway servers, the initial shape of each gateway server State is upstate, wherein,
The first host in the host, for sending the first encapsulation of the target data bag to the gateway server Bag, wherein, first wrapper carries the IP address of destination server;
The gateway switch, first wrapper sent for receiving the first host, according to the destination server IP address, from upstate gateway server determine target gateway server;First wrapper is sent to The target gateway server;
The target gateway server, for being decapsulated to obtain the target data bag to first wrapper;To institute State target data bag progress IP address conversion and obtain the first data packet;First data packet is sent to the gateway to exchange Machine;
The gateway switch, is additionally operable to receive first data packet that the target gateway server is sent, and by described in First data packet is sent to the destination server.
14. system according to claim 13, it is characterised in that virtual switch is configured with first host, The virtual switch is used to be packaged the target data bag, and exchanges the outer layer of the target data bag after encapsulation Source IP address obtains first wrapper with internal layer purpose IP address.
15. system according to claim 13, it is characterised in that
The gateway switch, is additionally operable to receive the second data packet that the destination server is sent, and by second data Bag is sent to the target gateway server;
The target gateway server carries out IP address conversion to second data packet according to IP address conversion information and obtains the Three data packets, are packaged the 3rd data packet processing and obtain the second wrapper of the 3rd data, described second is encapsulated Bag is sent to the gateway server;Wherein, the IP address conversion information is used to record:Gateway server docks received number According to the correspondence between IP address before and after bag progress IP address conversion, second data packet is that the destination server generates , response data packet for first data packet;
The gateway switch, is additionally operable to receive second wrapper that the target gateway server is sent, and by described in Second wrapper is sent to first host.
16. system according to claim 13, it is characterised in that the gateway switch, is specifically used for:
Based on the ospf Routing Protocol configured in the gateway switch and equal cost multipath route association View, and the ospf Routing Protocol configured in gateway server, obtain the net for being currently at upstate Close server;
The cryptographic Hash of the IP address of the destination server is calculated according to hash algorithm, according to the cryptographic Hash from available shape Target gateway server is determined in the gateway server of state.
17. system according to claim 13, it is characterised in that the destination server, is specifically used for:
IP address conversion is carried out to the target data bag;
The IP address that the purpose IP address that the transformed target data bag carries is revised as to the destination server obtains It is the first data packet.
18. system according to claim 17, it is characterised in that the destination server, is specifically used for:
According to the network identity that first wrapper carries and the correspondence of the IP address in IP address pond, Target IP is determined Address;
The source IP address that the target data bag carries is revised as the target ip address.
19. system according to claim 13, it is characterised in that the gateway switch, is additionally operable to:
Obtain the routing table of neighbours' gateway server of newly-increased gateway server;
Based on acquired routing table, learn the route of neighbours' gateway server, configure the newly-increased gateway server Route.
CN201610890617.4A 2016-10-12 2016-10-12 A kind of data packet sending method, device and mixed cloud network system Pending CN107948086A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610890617.4A CN107948086A (en) 2016-10-12 2016-10-12 A kind of data packet sending method, device and mixed cloud network system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610890617.4A CN107948086A (en) 2016-10-12 2016-10-12 A kind of data packet sending method, device and mixed cloud network system

Publications (1)

Publication Number Publication Date
CN107948086A true CN107948086A (en) 2018-04-20

Family

ID=61928281

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610890617.4A Pending CN107948086A (en) 2016-10-12 2016-10-12 A kind of data packet sending method, device and mixed cloud network system

Country Status (1)

Country Link
CN (1) CN107948086A (en)

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108768817A (en) * 2018-05-22 2018-11-06 腾讯科技(深圳)有限公司 A kind of virtualization network constructing system, data packet sending method
CN109245984A (en) * 2018-07-13 2019-01-18 华为技术有限公司 A kind of message transmitting method, a kind of information processing method and its relevant device
CN110213102A (en) * 2019-06-03 2019-09-06 深圳绿米联创科技有限公司 Apparatus control method, device, electronic equipment and storage medium
CN110875889A (en) * 2018-09-03 2020-03-10 阿里巴巴集团控股有限公司 Method and device for acquiring path
CN111585800A (en) * 2020-04-29 2020-08-25 平安科技(深圳)有限公司 Virtual private cloud-based network node configuration method, device and medium
CN112019559A (en) * 2020-09-04 2020-12-01 北京六间房科技有限公司 Data transmission system
CN112040030A (en) * 2020-11-04 2020-12-04 武汉绿色网络信息服务有限责任公司 Message transmission method and device, computer equipment and storage medium
WO2021135344A1 (en) * 2019-05-10 2021-07-08 华为技术有限公司 Virtual private cloud and non-public cloud data center communication method, virtual private cloud and non-public cloud data center communication configuration method, and related apparatuses
CN113302884A (en) * 2019-01-18 2021-08-24 威睿公司 Service insertion in a public cloud environment
CN113630314A (en) * 2020-05-09 2021-11-09 北京金山云网络技术有限公司 Disaster recovery method and device for hybrid cloud private line access network
CN113691608A (en) * 2021-08-20 2021-11-23 京东科技信息技术有限公司 Traffic distribution method, traffic distribution device, electronic equipment and media
CN113765801A (en) * 2020-07-16 2021-12-07 北京京东尚科信息技术有限公司 Message processing method and device applied to data center, electronic equipment and medium
CN114124883A (en) * 2021-10-12 2022-03-01 鸬鹚科技(深圳)有限公司 Data access method and device based on cloud storage address, computer equipment and medium
CN114978808A (en) * 2022-05-13 2022-08-30 曙光信息产业股份有限公司 Data forwarding method and device, electronic equipment and storage medium
CN115150314A (en) * 2021-03-31 2022-10-04 腾讯科技(深圳)有限公司 Cross-network-domain data packet transmission method and device, storage medium and electronic equipment
CN115333994A (en) * 2022-08-01 2022-11-11 北京金山云网络技术有限公司 Method and device for realizing VPN route rapid convergence and electronic equipment
US11570104B2 (en) 2019-01-18 2023-01-31 Vmware, Inc. Tunnel-based service insertion in public cloud environments
WO2023165137A1 (en) * 2022-03-02 2023-09-07 京东科技信息技术有限公司 Cross-cluster network communication system and method
CN116800486A (en) * 2023-06-13 2023-09-22 中科驭数(北京)科技有限公司 Cloud network communication method and system

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004082222A1 (en) * 2003-03-11 2004-09-23 Huawei Technologies Co., Ltd. Communication method having the function of partaking the network load
WO2013059440A1 (en) * 2011-10-18 2013-04-25 Cisco Technology, Inc. Fhrp optimizations for n-way gateway load balancing in fabric path switching networks
US8630297B2 (en) * 2010-02-08 2014-01-14 Force10 Networks, Inc. Method and apparatus for the distribution of network traffic
CN104796333A (en) * 2015-03-31 2015-07-22 桂林电子科技大学 IPv6-based wireless sensor network and Internet multi-gateway interconnection scheme
CN105099779A (en) * 2015-07-29 2015-11-25 北京京东尚科信息技术有限公司 Multi-tenant cloud platform architecture
CN105337858A (en) * 2015-11-20 2016-02-17 北京百度网讯科技有限公司 Virtual router cluster as well as data forwarding method and data forwarding device
CN105391771A (en) * 2015-10-16 2016-03-09 张陵 Multi-tenant-oriented cloud network architecture

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004082222A1 (en) * 2003-03-11 2004-09-23 Huawei Technologies Co., Ltd. Communication method having the function of partaking the network load
US8630297B2 (en) * 2010-02-08 2014-01-14 Force10 Networks, Inc. Method and apparatus for the distribution of network traffic
WO2013059440A1 (en) * 2011-10-18 2013-04-25 Cisco Technology, Inc. Fhrp optimizations for n-way gateway load balancing in fabric path switching networks
CN104796333A (en) * 2015-03-31 2015-07-22 桂林电子科技大学 IPv6-based wireless sensor network and Internet multi-gateway interconnection scheme
CN105099779A (en) * 2015-07-29 2015-11-25 北京京东尚科信息技术有限公司 Multi-tenant cloud platform architecture
CN105391771A (en) * 2015-10-16 2016-03-09 张陵 Multi-tenant-oriented cloud network architecture
CN105337858A (en) * 2015-11-20 2016-02-17 北京百度网讯科技有限公司 Virtual router cluster as well as data forwarding method and data forwarding device

Cited By (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108768817A (en) * 2018-05-22 2018-11-06 腾讯科技(深圳)有限公司 A kind of virtualization network constructing system, data packet sending method
CN108768817B (en) * 2018-05-22 2020-07-28 腾讯科技(深圳)有限公司 Virtual network networking system and data packet sending method
CN109245984A (en) * 2018-07-13 2019-01-18 华为技术有限公司 A kind of message transmitting method, a kind of information processing method and its relevant device
CN109245984B (en) * 2018-07-13 2021-07-09 华为技术有限公司 Message transmission method, information processing method and related equipment thereof
CN110875889A (en) * 2018-09-03 2020-03-10 阿里巴巴集团控股有限公司 Method and device for acquiring path
US11627080B2 (en) 2019-01-18 2023-04-11 Vmware, Inc. Service insertion in public cloud environments
US11570104B2 (en) 2019-01-18 2023-01-31 Vmware, Inc. Tunnel-based service insertion in public cloud environments
CN113302884A (en) * 2019-01-18 2021-08-24 威睿公司 Service insertion in a public cloud environment
WO2021135344A1 (en) * 2019-05-10 2021-07-08 华为技术有限公司 Virtual private cloud and non-public cloud data center communication method, virtual private cloud and non-public cloud data center communication configuration method, and related apparatuses
CN110213102B (en) * 2019-06-03 2022-06-21 深圳绿米联创科技有限公司 Device control method, device, electronic device and storage medium
CN110213102A (en) * 2019-06-03 2019-09-06 深圳绿米联创科技有限公司 Apparatus control method, device, electronic equipment and storage medium
CN111585800A (en) * 2020-04-29 2020-08-25 平安科技(深圳)有限公司 Virtual private cloud-based network node configuration method, device and medium
CN113630314A (en) * 2020-05-09 2021-11-09 北京金山云网络技术有限公司 Disaster recovery method and device for hybrid cloud private line access network
CN113765801A (en) * 2020-07-16 2021-12-07 北京京东尚科信息技术有限公司 Message processing method and device applied to data center, electronic equipment and medium
CN113765801B (en) * 2020-07-16 2024-02-09 北京京东尚科信息技术有限公司 Message processing method and device applied to data center, electronic equipment and medium
CN112019559A (en) * 2020-09-04 2020-12-01 北京六间房科技有限公司 Data transmission system
CN112040030A (en) * 2020-11-04 2020-12-04 武汉绿色网络信息服务有限责任公司 Message transmission method and device, computer equipment and storage medium
CN112040030B (en) * 2020-11-04 2021-02-02 武汉绿色网络信息服务有限责任公司 Message transmission method and device, computer equipment and storage medium
CN115150314B (en) * 2021-03-31 2023-08-25 腾讯科技(深圳)有限公司 Method and device for transmitting data packets across network domains, storage medium and electronic equipment
CN115150314A (en) * 2021-03-31 2022-10-04 腾讯科技(深圳)有限公司 Cross-network-domain data packet transmission method and device, storage medium and electronic equipment
CN113691608A (en) * 2021-08-20 2021-11-23 京东科技信息技术有限公司 Traffic distribution method, traffic distribution device, electronic equipment and media
CN113691608B (en) * 2021-08-20 2024-02-06 京东科技信息技术有限公司 Traffic distribution method, device, electronic equipment and medium
CN114124883B (en) * 2021-10-12 2023-09-12 鸬鹚科技(深圳)有限公司 Data access method and device based on cloud storage address, computer equipment and medium
CN114124883A (en) * 2021-10-12 2022-03-01 鸬鹚科技(深圳)有限公司 Data access method and device based on cloud storage address, computer equipment and medium
WO2023165137A1 (en) * 2022-03-02 2023-09-07 京东科技信息技术有限公司 Cross-cluster network communication system and method
CN114978808A (en) * 2022-05-13 2022-08-30 曙光信息产业股份有限公司 Data forwarding method and device, electronic equipment and storage medium
CN114978808B (en) * 2022-05-13 2023-05-23 曙光信息产业股份有限公司 Data forwarding method and device, electronic equipment and storage medium
CN115333994A (en) * 2022-08-01 2022-11-11 北京金山云网络技术有限公司 Method and device for realizing VPN route rapid convergence and electronic equipment
CN116800486A (en) * 2023-06-13 2023-09-22 中科驭数(北京)科技有限公司 Cloud network communication method and system

Similar Documents

Publication Publication Date Title
CN107948086A (en) A kind of data packet sending method, device and mixed cloud network system
US11671367B1 (en) Methods and apparatus for improving load balancing in overlay networks
CN106878047B (en) Fault handling method and device
CN103947160B (en) Method to carry FCOE frames over a TRILL based network
CN104521195B (en) The method and system of the orderly business model of software definition is created in a communication network
CN105706398B (en) The method and system that virtual port channel in overlapping network rebounds
US9755971B2 (en) Traffic flow redirection between border routers using routing encapsulation
CN104780066B (en) Determined for the physical pathway of virtual network stream of packets
CN107959654A (en) A kind of data transmission method, device and mixing cloud system
US7242665B2 (en) Network device virtual interface
CN112470436A (en) Multi-cloud connectivity using SRV6 and BGP
CN102474454B (en) Inter-node link aggregation system and method
CN107872392A (en) Service function chain data and service function instance data are distributed in a network
US20040034702A1 (en) Method and apparatus for exchanging intra-domain routing information between VPN sites
CN103166858B (en) A kind of message transmitting method and equipment
CN107920023A (en) A kind of realization method and system in secure resources pond
CN108092934A (en) Safety service system and method
CN107210961A (en) The VRF of optimization in environment based on the network coverage(Virtual flow-line and forwarding)Between route leaking
CN110290093A (en) The SD-WAN network architecture and network-building method, message forwarding method
CN109076018A (en) Utilize IS-IS exposure maximum node and/or the technology of Link Fragmentation identifier depth
CN106789542A (en) A kind of implementation method of cloud data center security service chain
CN103036784A (en) Methods and apparatus for a self-organized layer-2 enterprise network architecture
CN103036750A (en) Methods and apparatus for a converged wired/wireless enterprise network architecture
CN107404436A (en) Communication means and device for virtual expansible LAN
CN104702479A (en) Tunnel building method and device in Software Defined Network (SDN)

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20180420

RJ01 Rejection of invention patent application after publication