CN108449197B - Multi-cloud environment network construction method based on software defined network - Google Patents
Multi-cloud environment network construction method based on software defined network Download PDFInfo
- Publication number
- CN108449197B CN108449197B CN201810004783.9A CN201810004783A CN108449197B CN 108449197 B CN108449197 B CN 108449197B CN 201810004783 A CN201810004783 A CN 201810004783A CN 108449197 B CN108449197 B CN 108449197B
- Authority
- CN
- China
- Prior art keywords
- network
- cloud
- cloud platform
- software defined
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0893—Assignment of logical groups to network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/2866—Architectures; Arrangements
- H04L67/30—Profiles
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Stored Programmes (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a multi-cloud environment network construction method based on a software defined network. The method comprises the following steps: 1) for each selected cloud platform, building a software defined network on the cloud platform; 2) selecting a server serving as an externally open interface on each cloud platform, namely an externally-connected server; 3) the external interface server is used for interconnecting the virtual networks on the cloud platforms to realize the intercommunication of the virtual networks of different cloud platforms; 4) and deploying the software defined network management node to each external interface server, constructing a multi-cloud environment network and managing the virtual network under the multi-cloud environment network. The method and the system can quickly inquire the network configuration information of the virtual machines and the containers of each cloud platform, realize cross-cloud construction and management of the virtual machines and the containers, and ensure cross-cloud deployment of services.
Description
Technical Field
The invention relates to the technical field of computer software, in particular to a cross-cloud network construction method based on an SDN.
Background
Software Defined Networking (SDN) is a novel Network architecture, and is an implementation manner of Network virtualization, and its core technology OpenFlow separates a control plane and a data plane of a Network device, thereby implementing flexible control of Network traffic and making a Network as a pipeline more intelligent.
The multi-cloud environment is a business environment based on a novel IT infrastructure. The traditional IT infrastructure is based on a simple physical architecture, and has small expandability and high deployment and maintenance cost. The novel IT infrastructure gradually migrates to a virtual environment and a cloud environment, and development, testing and deployment in the cloud environments are realized through mixed interaction of a virtual machine environment and the cloud environment. In a multi-cloud service environment with immense change of the internet/mobile internet, flexibility and agility become important requirements of the IT service. However, the existing network technical architecture aims at the traditional IT infrastructure, is difficult to meet the requirements on the network in a multi-cloud service environment, and cannot realize the network construction and management of cross-cloud service deployment.
Disclosure of Invention
Aiming at the problems of interconnection and isolation of networks in a cloud environment, the invention provides a method for constructing a cloud environment network based on a software defined network, which has the core thought that: and erecting virtual networks on different cloud platforms by using a software defined network, and interconnecting and managing the virtual networks of the different cloud platforms through a specified server which is open to the outside.
The invention adopts the specific technical scheme that:
1) the same application cluster is constructed on each cloud platform; for each selected cloud platform, building a software defined network on the cloud platform;
2) selecting a server on each cloud platform as an externally open interface;
3) interconnecting the virtual networks on different cloud platforms according to the server selected in the step 2), so as to realize the intercommunication of the virtual networks of different cloud platforms;
4) deploying the software defined network management node to each server according to the server selected in the step 2), so as to realize the construction and management of the virtual network in the cloud environment;
further, the step 1) includes building an application cluster management system based on virtual machines and containers on servers on each cloud platform, and building a software-defined network on the cloud platform for each selected cloud platform, so that the applications running on the servers build a virtual network through a software-defined network tool, that is, the virtual machines and containers running the applications perform network configuration through the software-defined network tool.
Further, the software-defined network tool includes, but is not limited to, an existing open source network construction component and an open source network monitoring component, the open source network construction component implements construction and setting of a network of virtual machines and containers running applications through network devices of a creation and management server, and according to differences of the open source network construction component, the constructed and set contents include, but are not limited to, IP addresses, gateway addresses, network masks, vlans, iptables rules, and the like; the open source network monitoring component monitors and feeds back the network of the virtual machine and the container by regularly inquiring and recording the change condition of the server network equipment.
Further, the software defined network is a cross-server virtual network inside each cloud platform, and virtual machines and containers on different servers can access each other through IP addresses and according to set rules through the software defined network tool.
Further, in the step 2), through specific setting of each cloud platform, a specified number of servers are selected, and public network interfaces are set to serve as gateways of virtual networks in the cloud platform, so that the servers can communicate other servers in the cloud platform with an external public network.
Further, in step 3), the public network address of the server selected by each cloud platform is used as an access address of each cloud platform and recorded in the configuration files of all the cloud platforms, so that different cloud platforms can communicate with other cloud platforms through the selected interface server.
Further, step 3) also includes: and firewall rules are set on each cloud platform, the public network addresses of the servers selected by each cloud platform are added into a white list, the public network addresses of the servers selected by each cloud platform can be accessed, and interface servers between different cloud platforms can communicate with each other.
Further, the virtual network is managed by software defined network components in step 4).
Further, the software defined network components include, but are not limited to, existing global consistency key value storage systems and centralized management systems; the global consistency key value storage system records information such as virtual machines, virtual network addresses of containers, gateways and the like on all cloud platforms in a multi-cloud environment by storing the global consistency state of a multi-cloud environment network, and the information is used for a centralized management system and a software defined network component to inquire; the centralized management system acquires network configuration of all servers on the cloud platform through the global consistency key value storage system, correspondingly modifies the network configuration when virtual machines and containers running the application are created, deleted, migrated and the like, distributes operation requests to the servers where the virtual machines and the containers are located, constructs and manages the virtual network through software defined network components, sets access rules and updates network configuration information to the global consistency key value storage system.
Further, the global consistency key value storage system and the centralized management system of each cloud platform communicate with the global consistency key value storage systems and the centralized management systems of other cloud platforms through the server selected in the step 2). The global consistency key value storage system running on each platform stores network configuration information of other platforms, and the centralized management system of each cloud platform can acquire all virtual machine and container network configuration information by inquiring the global consistency key value storage system deployed on the platform under the multi-cloud environment. The centralized management system can realize the function of managing the network of the virtual machines and containers of other cloud platforms by sending the operation request to the centralized management systems of other cloud platforms, and can uniformly manage the virtual networks of all the cloud platforms.
Compared with the prior art, the invention has the following positive effects:
by the technical scheme, the network of the virtual machines and the containers in the cloud environment is constructed and managed. By deploying a global consistency key value storage system and a centralized management system on each cloud platform, the network configuration information of the virtual machines and containers of each cloud platform is quickly inquired, cross-cloud construction and management of the virtual machines and containers are realized, and cross-cloud deployment of services is ensured. By selecting a proper software defined network component according to the service network requirement, the conditions of creating, deleting, migrating and the like of a virtual machine and a container for running the application are flexibly processed, and the network quality under the multi-cloud environment is ensured.
Drawings
Fig. 1 is a schematic diagram illustrating a network architecture of a multi-cloud environment based on SDN according to an embodiment of the present invention.
Detailed Description
The present invention is described in further detail below with reference to the attached drawings.
Firstly, a plurality of cloud platforms are selected to build a multi-cloud environment, such as Ariiyun and Amazon AWS. The method comprises the steps of creating an account on each cloud platform, applying for a virtual machine, installing software required by a service, using open source software to define a network component, configuring cluster network information including information such as software version, component name, component type and IP address management component, and constructing a software defined network in each cloud platform to finish building a service cluster.
The schematic diagram of the network architecture of the multi-cloud environment based on the SDN is shown in figure 1, one server is selected from a cluster of each cloud platform as an external interface, the server of a cluster management system is selected as the external interface, a public IP address is set and opened, an internal network address is used as a gateway address of a virtual machine and a container of the cluster, and the gateway address is written into a software defined network configuration file through a software defined network component.
The method comprises the steps of recording the public IP address of each cloud platform external interface server, writing in configuration files of all cloud platform clusters, configuring a network firewall strategy of each cloud platform, allowing communication with a selected server, ensuring interconnection with servers selected by other cloud platforms, and realizing communication of each cloud platform external interface server in a multi-cloud environment.
According to the method, software defined network components are deployed on external interface servers of each cloud platform, and the software defined network components comprise a global consistency key value storage system and a centralized network management system. The public IP address of each cloud platform external interface server is written into the configuration file of each cloud platform cluster, and the global consistency key value storage system is operated on all the external interface servers, so that the global consistency key value storage system can communicate with each other in a multi-cloud environment, the information of the software defined network is recorded, and the information can be inquired by the network management system. The method comprises the steps that a centralized network management system of a software defined network is started on each platform external interface server, the centralized network management system is communicated with the centralized network management systems of other cloud platforms, the network configuration information of all clusters of each cloud platform is collected through a global consistency key value storage system which is inquired and deployed on the platform, virtual machines and container networks in each cloud platform are managed according to business requirements, and when business is deployed across clouds, a request is sent to a target platform to construct and manage the virtual machines and the containers.
When a user creates a new virtual machine or container through the cluster management system, the cluster management system selects a cloud platform for deployment, the centralized network management system of the cloud platform calls a software defined network component to read information in the global consistency key value storage system according to the configuration of a software defined network, network information is configured for the newly created virtual machine or container, network equipment is configured, the network of the virtual machine or container is communicated with other virtual machines and containers belonging to the user, the virtual machines and containers are isolated from the virtual machines and containers of other users, the configuration information is updated to the global consistency key value storage system of the cloud platform, and according to the existing global consistency algorithm, the configuration information is updated to the global consistency key value storage systems of all cloud platforms under a multi-cloud environment, so that the consistency of software defined network information under the multi-cloud environment is ensured. When the virtual machine and the container are deleted, the centralized network management system of the cloud platform where the virtual machine and the container are located deletes corresponding network configuration information and updates the corresponding network configuration information to the global consistency key value storage system, so that consistency of software definition network information under a multi-cloud environment is guaranteed.
Finally, it is noted that the disclosed embodiments are intended to aid in further understanding of the invention, but those skilled in the art will appreciate that: various substitutions and modifications are possible without departing from the spirit and scope of the invention and the appended claims. Therefore, the invention should not be limited to the embodiments disclosed, but the scope of the invention is defined by the appended claims.
Claims (7)
1. A multi-cloud environment network construction method based on a software defined network comprises the following steps:
1) for each selected cloud platform, building a software defined network on the cloud platform;
2) selecting a server serving as an externally open interface on each cloud platform, namely an externally-connected server; a software defined network component is deployed on the external interface server, and the software defined network component comprises but is not limited to a global consistency key value storage system and a centralized management system; the global consistency key value storage system records virtual network addresses and gateway information of virtual machines and containers on each cloud platform by storing the global consistency state of the multi-cloud environment network; the centralized management system acquires the network configuration of the servers on each cloud platform through the global consistency key value storage system, correspondingly modifies the network configuration when a virtual machine needs to be created, deleted or migrated in one cloud platform, distributes an operation request to the server where the virtual machine is located, and updates the modified network configuration to the global consistency key value storage systems of the cloud platform and other cloud platforms; when a container needs to be created, deleted or migrated in a cloud platform, correspondingly modifying the network configuration of the container, distributing an operation request to a server where the container is located, and updating the modified network configuration to the global consistent key value storage systems of the cloud platform and other cloud platforms;
3) the external interface server is used for interconnecting the virtual networks on the cloud platforms to realize the intercommunication of the virtual networks of different cloud platforms;
4) deploying a software defined network management node to each external interface server, constructing a multi-cloud environment network and managing a virtual network under the multi-cloud environment network; the public IP address of each external interface server is respectively written into the configuration file of each cloud platform; the centralized management system collects network configuration information of all clusters of the cloud platforms by inquiring the global consistency key value storage system, manages virtual machines and container networks in the cloud platforms according to service requirements, and sends requests to target platforms to construct and manage the virtual machines and the containers when service is deployed across the cloud platforms.
2. The method of claim 1, wherein the external interface server builds and manages the virtual network via the software defined network component, setting access rules.
3. The method of claim 1, wherein the software defined network is a cross-server virtual network inside a cloud platform, and virtual machines and containers on servers inside each cloud platform can access each other through IP addresses and according to set rules.
4. The method of claim 1, wherein the external interface server sets and opens a public IP address, and the external interface server writes its internet address as a gateway address of a virtual machine and a container on the cloud platform to a configuration file of the software defined network.
5. The method of claim 1 or 4, wherein a public IP address of an external interface server of each cloud platform and a network firewall policy of each cloud platform are recorded in a configuration file of the software defined network.
6. The method of claim 1, wherein the software defined network is configured by a software defined network tool; wherein, the software defined network tool comprises but is not limited to an open source network construction component and an open source network monitoring component; the open source network construction component realizes construction and setting of a network of a virtual machine and a container for running the application through network equipment of a creation and management server; the open source network monitoring component monitors and feeds back the network of the virtual machine and the container by regularly inquiring and recording the change condition of the server network equipment.
7. The method according to claim 1, wherein in the step 1), a virtual machine and a container management system are built on a server of each cloud platform, so that the software defined network is obtained.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810004783.9A CN108449197B (en) | 2018-01-03 | 2018-01-03 | Multi-cloud environment network construction method based on software defined network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810004783.9A CN108449197B (en) | 2018-01-03 | 2018-01-03 | Multi-cloud environment network construction method based on software defined network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108449197A CN108449197A (en) | 2018-08-24 |
| CN108449197B true CN108449197B (en) | 2020-11-20 |
Family
ID=63190788
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810004783.9A Active CN108449197B (en) | 2018-01-03 | 2018-01-03 | Multi-cloud environment network construction method based on software defined network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108449197B (en) |
Families Citing this family (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110968421A (en) * | 2018-09-30 | 2020-04-07 | 浙江大学 | Cluster management method, device and system |
| CN109450713B (en) * | 2018-12-25 | 2020-02-21 | 无锡华云数据技术服务有限公司 | Virtualization platform based on gateway and cloud platform management method, device and medium |
| CN110059122B (en) * | 2019-04-03 | 2022-03-18 | 广州地理研究所 | Wild animal resource data storage method based on cloud Web |
| CN113162779B (en) * | 2020-01-07 | 2024-03-05 | 华为云计算技术有限公司 | Multi-cloud interconnection method and equipment |
| CN113114552A (en) * | 2020-01-13 | 2021-07-13 | 上海云轴信息科技有限公司 | Method and equipment for providing network for virtual machine and container in cloud platform |
| CN111343005B (en) * | 2020-02-11 | 2024-01-30 | 杭州涂鸦信息技术有限公司 | Method and system for quickly effecting local automation configuration |
| CN111726251B (en) * | 2020-06-12 | 2023-04-25 | 浪潮电子信息产业股份有限公司 | Networking method, system and device for SDS (sodium dodecyl sulfate) storage domain in virtualized system |
| CN114006815B (en) * | 2020-07-13 | 2024-01-26 | 中移(苏州)软件技术有限公司 | Automatic deployment method and device for cloud platform nodes, nodes and storage medium |
| CN113660316B (en) * | 2021-07-29 | 2024-03-12 | 广州汇通国信科技有限公司 | Network resource adaptive configuration method, system and medium based on container cloud platform |
| CN114039751B (en) * | 2021-10-26 | 2024-06-14 | 杭州博盾习言科技有限公司 | Network dynamic sensing device, system and method |
| CN114499935B (en) * | 2021-12-17 | 2023-08-29 | 阿里巴巴(中国)有限公司 | Cloud platform access method, device, equipment and storage medium |
| CN114499954B (en) * | 2021-12-21 | 2024-05-10 | 海光信息技术股份有限公司 | Management device and method for sensitive data |
| CN115333933B (en) * | 2022-08-11 | 2024-04-19 | 北京蔚领时代科技有限公司 | Automatic management method, medium and equipment for servers on machine room |
| CN115766826A (en) * | 2022-11-08 | 2023-03-07 | 中国人民银行清算总中心 | Method and device for realizing smooth migration of traditional network to software defined network |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104202264A (en) * | 2014-07-31 | 2014-12-10 | 华为技术有限公司 | Carrying resource allocation method for clouded data center network, device and system |
| CN105591863A (en) * | 2014-10-20 | 2016-05-18 | 中兴通讯股份有限公司 | Method and device for realizing interworking between virtual private cloud network and external network |
| CN107370642A (en) * | 2017-09-04 | 2017-11-21 | 赛尔网络有限公司 | One kind is based on cloud platform multi-tenant network smoothness monitoring system and method |
| CN107493333A (en) * | 2017-08-16 | 2017-12-19 | 山东省计算中心(国家超级计算济南中心) | Web system method for managing resource and system under a kind of cloud computing environment based on SDN |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11223536B2 (en) * | 2016-04-04 | 2022-01-11 | At&T Intellectual Property I, L.P. | Model driven process for automated deployment of domain 2.0 virtualized services and applications on cloud infrastructure |
-
2018
- 2018-01-03 CN CN201810004783.9A patent/CN108449197B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104202264A (en) * | 2014-07-31 | 2014-12-10 | 华为技术有限公司 | Carrying resource allocation method for clouded data center network, device and system |
| CN105591863A (en) * | 2014-10-20 | 2016-05-18 | 中兴通讯股份有限公司 | Method and device for realizing interworking between virtual private cloud network and external network |
| CN107493333A (en) * | 2017-08-16 | 2017-12-19 | 山东省计算中心(国家超级计算济南中心) | Web system method for managing resource and system under a kind of cloud computing environment based on SDN |
| CN107370642A (en) * | 2017-09-04 | 2017-11-21 | 赛尔网络有限公司 | One kind is based on cloud platform multi-tenant network smoothness monitoring system and method |
Non-Patent Citations (2)
| Title |
|---|
| 一种基于模型的云计算容错机制开发方法;武义涵,黄 罡;《计算机研究与发展》;20160117;全文 * |
| 私有云环境下基于虚拟集群的资源共享方法;刘沛东,安博;《计算机科学与探索》;20161111;1205-1213页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108449197A (en) | 2018-08-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108449197B (en) | Multi-cloud environment network construction method based on software defined network | |
| CN111711557B (en) | Remote access system and method for network target range users | |
| US9999030B2 (en) | Resource provisioning method | |
| CN109040276B (en) | Method and device for constructing cloud platform, computer storage medium and terminal | |
| EP2586160B1 (en) | Distributed virtual network gateways | |
| CN107911463B (en) | Business cross-cloud architecture and creation method and management method thereof | |
| CN109995641B (en) | Information processing method, computing node and storage medium | |
| CN112099938A (en) | Determining resource allocation in a distributed computing environment using multi-dimensional metadata tag sets | |
| US20170324828A1 (en) | Virtual content delivery network | |
| JP5720324B2 (en) | Thin client environment providing system, server, thin client environment management method, and thin client environment management program | |
| CN102780601A (en) | Method and system of virtual managed network | |
| US10680852B2 (en) | Configuration of a managed device | |
| CN102497280A (en) | Distributed system and method thereof for realizing management | |
| CN109714188A (en) | Configuration data management method, equipment and storage medium based on Zookeeper | |
| WO2016106486A1 (en) | Method and apparatus for configuring a communication system | |
| US20150195343A1 (en) | Application level mirroring in distributed overlay virtual networks | |
| CN105391628A (en) | Data transferring system, data transferring method, controller, controlling method, and non-transitory computer readable storage medium | |
| US11483178B2 (en) | Customer activation on edge computing environment | |
| CN114500523A (en) | Fixed IP application release method based on container cloud platform | |
| CN114884955B (en) | Transparent proxy deployment system and method | |
| CN110008006B (en) | Container-based big data tool deployment method and system | |
| CN114390110B (en) | Multi-tenant system, method and equipment for constrained extensible resource supply | |
| EP3704894B1 (en) | A method and arrangement for allocating communication resources in a communication network | |
| CN111585795B (en) | Software storing, loading and upgrading method and system for communication equipment | |
| CN114615268A (en) | Service network, monitoring node, container node and equipment based on Kubernetes cluster |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |