CN108900482B - Script execution method, server management system, and storage medium - Google Patents
Script execution method, server management system, and storage medium Download PDFInfo
- Publication number
- CN108900482B CN108900482B CN201810608690.7A CN201810608690A CN108900482B CN 108900482 B CN108900482 B CN 108900482B CN 201810608690 A CN201810608690 A CN 201810608690A CN 108900482 B CN108900482 B CN 108900482B
- Authority
- CN
- China
- Prior art keywords
- server
- script
- identifier
- execution
- firewall
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/46—Multiprogramming arrangements
- G06F9/48—Program initiating; Program switching, e.g. by interrupt
- G06F9/4806—Task transfer initiation or dispatching
- G06F9/4843—Task transfer initiation or dispatching by program, e.g. task dispatcher, supervisor, operating system
- G06F9/4881—Scheduling strategies for dispatcher, e.g. round robin, multi-level priority queues
Abstract
The embodiment of the application discloses a script execution method, a server management system and a storage medium. In the method, a management server is used for receiving a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed; acquiring a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located; generating a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writing the script task into an execution queue; the proxy server is used for accessing the execution queue; and acquiring the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution alignment, and sending the acquired script task to a processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed. The method can improve the efficiency of request processing, is convenient for the expansion of the proxy server, and has high safety in the expansion process.
Description
Technical Field
The present application relates to the field of computer technologies, and in particular, to a script execution method, a server management system, and a storage medium.
Background
The server management system generally includes a management server on which an infrastructure framework is mounted and a plurality of processing servers managed by the management server. When the processing server is required to execute the script, the management server receives the script execution request and sends the script to be executed to the processing server through the 22-port service according to the script execution request, so that the processing server can execute the script. In such a script execution mode, when the number of requests is large, the management server is likely to have a bottleneck due to factors such as its processing performance. In order to meet the demand of large number of requests, a new management server needs to be added to the server management system.
However, when a new management server is added, the firewall policy of the processing server and the 22-port services of all the processing servers need to be re-opened, so that the newly added management server can access all the processing servers. The method not only has potential safety hazard, but also has larger workload for opening the 22-port services of a plurality of processing servers, and is easy to omit the 22-port services which are not opened by individual processing servers.
Disclosure of Invention
The application provides a script execution method, a server management system and a storage medium, so as to realize safe and rapid capacity expansion of a proxy server.
In a first aspect, the present application provides a script execution method, which is applied to a server management system, where the server management system includes a management server, a proxy server, and a processing server, and the proxy server and the processing server are located in a firewall security area; the method comprises the following steps:
the management server receives a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed;
the management server acquires a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located;
the management server generates a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writes the script task into an execution queue;
the proxy server accesses the execution queue;
and the proxy server acquires the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution queue, and sends the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located to a processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed.
In a second aspect, the present application provides a server management system, which includes a management server, a proxy server, and a processing server, where the proxy server and the processing server are located in a firewall security area;
the management server is used for receiving a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed; acquiring a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located; generating a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writing the script task into an execution queue;
the proxy server is used for accessing the execution queue; and acquiring the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution queue, and sending the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located to a processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed.
In a third aspect, the present application further provides a server management system, which includes at least three computer devices, each of the computer devices includes a memory, a processor, and a computer program stored in the memory and executable on the processor, and the processors in the at least three computer devices collectively implement the script execution method provided in the first aspect when executing the corresponding computer program.
In a fourth aspect, the present application also provides a storage medium, wherein the storage medium stores a computer program, the computer program comprises program instructions, which when executed by a processor, cause the processor to execute the execution method of the script provided in the first aspect.
The application provides a script execution method, a server management system and a storage medium. In the method, the process that the proxy server acquires the script task from the execution queue and the processing server executes the script to be executed does not occupy the thread of the management server, so that the efficiency of request processing is improved. Meanwhile, when the proxy server needs to be added, a new proxy server is directly added in the firewall security area, 22-port services of all processing servers in all firewall security areas do not need to be opened, the security of the whole proxy server in the capacity expansion process is higher, the capacity expansion mode is simpler, and the workload is smaller.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present application, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic structural diagram of a server management system according to an embodiment of the present application;
FIG. 2 is a schematic flow chart of a method for executing a script according to an embodiment of the present application;
FIG. 3 is another schematic flow chart of a method for executing a script provided by an embodiment of the present application;
fig. 4 is a schematic block diagram of a computer device according to an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are some, but not all, embodiments of the present application. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
It will be understood that the terms "comprises" and/or "comprising," when used in this specification and the appended claims, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
It is also to be understood that the terminology used in the description of the present application herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used in the specification of the present application and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise.
It should be further understood that the term "and/or" as used in this specification and the appended claims refers to and includes any and all possible combinations of one or more of the associated listed items.
Referring to fig. 1, fig. 1 is a schematic structural diagram of a server management system according to an embodiment of the present application. The server management system 100 includes a management server 10, a proxy server 20, and a processing server 30. As shown in fig. 1, the management server 10 may be a server mounted with an infrastructure framework. The management server 10 may for example be a Portal server, i.e. a server deploying a Portal.
In this embodiment, the server management system 100 includes at least one firewall security zone. Such as firewall security area a, firewall security area B, etc., as shown in fig. 1. Within each firewall security zone are located at least one proxy server 20 and at least one processing server 30.
It should be noted that, in the server management system 100, the number of the management servers 10, the number of the proxy servers 20 and the number of the processing servers 30 in each firewall security area may be set according to the number of the script execution requests. For example, when the number of script execution requests is small, the server management system 100 may include one management server 10, one proxy server 20 and a plurality of processing servers 30 in each firewall security area. When the number of script execution requests is large, the number of the management server 10, the proxy server 20, and the processing server 30 can be correspondingly increased, thereby avoiding bottleneck and improving request processing efficiency. Therefore, in the present embodiment, the number of the management server 10 and the proxy servers 20 and the processing servers 30 in each firewall security area is not limited.
In the server management system 100 shown in fig. 1, the server management system 100 may be used to execute an execution method of a script. Specifically, when the user needs the processing server 30 to execute a certain script, the user may send a script execution request to the management server 10. The management server 10 is configured to receive a script execution request, where the script execution request includes a to-be-executed script and a server identifier of a processing server 30 that executes the to-be-executed script; then, acquiring a safety zone identifier of a firewall safety zone where the processing server 30 is located, which corresponds to the server identifier; and then generating a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writing the script task into an execution queue 40.
In an embodiment, as shown in fig. 1, the server Management system 100 further includes a Configuration Management Database 60 (CMDB), where the Configuration Management Database 60 stores a correspondence relationship between a server identifier of the processing server 30 and a security zone identifier of a firewall security zone where the processing server 30 is located. When the management server 10 receives the script execution request, it needs to acquire the security zone identifier of the firewall security zone where the processing server 30 is located corresponding to the server identifier from the configuration management database 60.
After the management server 10 writes the script task into the execution queue 40, the proxy server 20 in each firewall security area accesses the execution queue 40, acquires the script task matching with the security area identifier of the firewall security area where the proxy server 20 is located from the execution queue 40, and then sends the script task matching with the security area identifier of the firewall security area where the proxy server 20 is located to the processing server 30 corresponding to the server identifier in the script task, so that the processing server 30 executes the script to be executed.
In an embodiment, the proxy server 20 is further configured to delete the obtained script task from the execution queue 40 after obtaining the script task from the execution queue 40, where the script task matches the security zone identifier of the security zone of the firewall where the proxy server 20 is located.
In an embodiment, the proxy server 20 is further configured to receive an execution result of the processing server 30 executing the script to be executed, and write the execution result into the database 50. The management server 10 is also used for reading and displaying the execution result from the database 50. So that the user can view the execution result.
In order to more clearly understand the working process of the management server 10, the proxy server 20 and the processing server 30 in the server management system 100 in the execution method of the script, the execution method of the script will be described in detail below with reference to fig. 1 and fig. 2 of the specification.
Referring to fig. 2, fig. 2 is a schematic flowchart of a script execution method according to an embodiment of the present application. The script execution method is applied to the server management system 100 shown in fig. 1. As shown in FIG. 2, the script execution method includes steps S101 to S105.
S101, the management server receives a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed.
In the present embodiment, when the user needs the processing server 30 to execute a certain script to be executed, the user can input the script to be executed and the server identifier of the processing server 30 executing the script to be executed through the management server 10. Wherein, the script to be executed contains script parameters. The script parameters are related to the content of the script to be actually executed. For example, when the script to be executed is a script that deletes a file or a file directory, the corresponding script parameter may be a file or a directory name. For another example, when the script to be executed is a script for restarting the middleware, the corresponding script parameter may be a name of the middleware instance.
In addition, the server identifier may be a number, a name, or the like corresponding to the processing server 30, and is not particularly limited herein. After the user clicks the submission request, the management server 10 may obtain a script execution request submitted by the user. It will be appreciated that the script execution request includes the script to be executed and the server identification of the processing server 30 executing the script to be executed.
S102, the management server obtains the safety zone identification of the firewall safety zone where the processing server corresponding to the server identification is located.
After the management server 10 receives the script execution request, the server identifier in the script execution request is analyzed, and a security zone identifier of a firewall security zone where the processing server 30 is located corresponding to the server identifier is obtained. For example, the server id S001 is located in the firewall security area a, and the processing server 30 corresponding to the server id S001 is located in the firewall security area a, so that the security area id corresponding to the server id S001 is the security area id of the firewall security area a.
In one embodiment, as shown in FIG. 1, the server management system 100 further includes a configuration management database 60. The configuration management database 60 stores therein correspondence between server identifications of all the processing servers 30 and security zone identifications of security zones of the firewall security zones in which the processing servers 30 are located. The management server 10 can then obtain the security zone identifier of the firewall security zone where the processing server 30 is located corresponding to the server identifier from the configuration management database 60.
S103, the management server generates a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writes the script task into an execution queue.
After acquiring the security zone identifier corresponding to the server identifier, the management server 10 generates a script task according to the script to be executed, the corresponding server identifier, and the security zone identifier, and writes the script task into the execution queue 40.
It is understood that each script task in the execution queue 40 includes a script to be executed, a server identifier of the processing server 30 executing the script to be executed, and a security zone identifier of a security zone of a firewall where the processing server 30 executing the script to be executed is located.
S104, the proxy server accesses the execution queue.
In this embodiment, the execution queue 40 is provided with a queue service port, and a firewall policy that the proxy server 20 accesses the queue service port is opened on the firewall, so that the proxy server 20 can access the execution queue 40 through the queue service port.
In one embodiment, when the number of the proxy servers 20 in each firewall security area is two or more, a plurality of proxy servers 20 can simultaneously access the execution queue 40 through the queue service port, thereby improving the processing efficiency of the script task.
And S105, the proxy server acquires the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution queue, and sends the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located to the processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed.
In the present embodiment, the proxy server 20 accesses the execution queue 40, obtains the script task corresponding to the firewall security zone where the proxy server is located from the execution queue 40, and then sends the script task to the corresponding processing server 30.
For example, there is a script task in the execution queue 40, which contains the to-be-executed script A, S1002 and the area a. The S1002 is a server identifier of the proxy server 30 executing the script a to be executed, and the area a is a security area identifier of a firewall security area where the processing server 30 corresponding to the S1002 is located. When the proxy server 20 in the firewall security area of the area a accesses the execution queue 40, the script task may be obtained from the execution queue 40, and the script task is sent to the processing server 30 corresponding to S1002, so that the processing server 30 corresponding to S1002 may process the to-be-executed script a.
In an embodiment, as shown in fig. 3, fig. 3 is another schematic flowchart of a method for executing a script in an embodiment of the present application. In order to avoid that the same script task is extracted from the execution queue and executed for multiple times, after the proxy server 20 obtains the script task matching with the security zone identifier of the firewall security zone where the proxy server 20 is located from the execution queue 40, the method further includes step S106: and deleting the acquired script tasks from the execution queue. This ensures that each script task is read only once, thereby avoiding the processing server 30 from repeatedly executing the same script to be executed.
In an embodiment, as shown in fig. 3, after the proxy server 20 sends the script task matching with the security zone identifier of the firewall security zone where the proxy server 20 is located to the processing server 30 corresponding to the server identifier in the script task, the method further includes S107: and the proxy server receives the execution result of the processing server executing the script to be executed and writes the execution result into a database.
When the processing server 30 finishes executing the script to be executed, the execution result is fed back to the proxy server 20. The proxy server 20 will receive the execution result and write the execution result to the database 50. It should be noted that, in this embodiment, a database service port is provided on the database 50, and a firewall policy for the proxy server 20 to access the database service port is opened on the firewall, so that the proxy server 20 can access the database 50 through the database service port to write the execution result into the database 50.
After the proxy server 20 writes the execution result in the database 50, the script execution method further includes step S108: and the management server reads and displays the execution result from the database. Thereby allowing the user to view the execution results.
In the script execution method provided in this embodiment, the process of the proxy server 20 obtaining the script task from the execution queue 40 and the process of the processing server 30 executing the script to be executed do not occupy the thread of the management server 10, so that the efficiency of script execution request processing is greatly improved. Meanwhile, when the number of script execution requests is large and the proxy server 20 needs to be added, a new proxy server 20 is directly added into the firewall security area, and the firewall access policies of the queue service port and the database service port of the newly added proxy server 20 are opened, and it is not necessary to open the 22-port services of all the processing servers 30 in all the firewall security areas, so that the security is higher in the capacity expansion process of the whole proxy server 20, the capacity expansion mode is simpler, and the workload is smaller.
The application also provides a server management system, which comprises at least three computer devices. The computer devices may be servers, and the at least three computer devices respectively correspond to the at least one management server, the at least one proxy server, and the at least one processing server. The computer device may be, for example, the computer device 200 shown in fig. 4. The at least three computer devices 200 each include a processor 202, memory, and a network interface 205 connected by a system bus 201, where the memory may include a non-volatile storage medium 203 and internal memory 204.
The non-volatile storage medium 203 may store an operating system 2031 and computer programs 2032. The processor 202 is used to provide computing and control capabilities that support the operation of the overall computer device 200. The internal memory 204 provides an environment for the execution of the computer program 2032 in the nonvolatile storage medium 203. The network interface 205 is used for network communication such as sending assigned tasks and the like.
Those skilled in the art will appreciate that the configuration shown in fig. 4 is a block diagram of only a portion of the configuration associated with the present application and does not constitute a limitation of the computer device 200 to which the present application is applied, and that a particular computer device 200 may include more or less components than those shown, or combine certain components, or have a different arrangement of components.
In the present embodiment, the processors 202 in at least three computer apparatuses 200 collectively implement the script execution method provided in the present application when executing the corresponding computer program 2032. Specifically, when the processor 202 in the computer device 200 corresponding to the management server executes the corresponding computer program 2032, the following is implemented: receiving a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed; acquiring a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located; and generating a script task according to the script to be executed, the corresponding server identifier and the safety zone identifier, and writing the script task into an execution queue.
When the processor 202 in the computer device 200 corresponding to the proxy server executes the corresponding computer program 2032, the following is implemented: accessing the execution queue; and acquiring the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution queue, and sending the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located to a processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed.
In an embodiment, after the processor 202 in the computer device 200 corresponding to the proxy server executes the script task which is obtained from the execution queue and matches the security zone identifier of the firewall security zone in which the proxy server is located, the processor further implements: and deleting the acquired script tasks from the execution queue.
In an embodiment, the server management system further includes a configuration management database, where the configuration management database stores a correspondence between a server identifier of the processing server and a security zone identifier of a firewall security zone in which the processing server is located; when the processor 202 in the computer device 200 corresponding to the management server performs the process of obtaining the security zone identifier of the firewall security zone where the processing server corresponding to the server identifier is located, the following specific implementation is performed: and acquiring the safety zone identification of the firewall safety zone where the processing server corresponding to the server identification is located from the configuration management database.
In an embodiment, after the processor 202 in the computer device 200 corresponding to the proxy server executes the script task matching with the security zone identifier of the firewall security zone where the proxy server is located and sends the script task to the processing server corresponding to the server identifier in the script task, the processor further implements: and receiving an execution result of the processing server executing the script to be executed, and writing the execution result into a database.
Further, when the processor 202 in the computer device 200 corresponding to the management server executes the corresponding computer program 2032, it further realizes: and reading and displaying the execution result from the database.
It should be understood that, in the embodiment of the present Application, the Processor 202 may be a Central Processing Unit (CPU), and the Processor 202 may also be other general-purpose processors, Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, and the like. Wherein a general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
It will be understood by those skilled in the art that all or part of the flow in the execution method of the script implementing the above embodiments may be implemented by a computer program to instruct the relevant hardware. The computer program includes program instructions, and the computer program may be stored in a storage medium, which is a computer-readable storage medium. The program instructions are executed by at least one processor in the computer system to implement the process steps of an embodiment of the execution method including the scripts described above.
The storage medium may be various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a magnetic disk, or an optical disk.
Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the examples described in connection with the embodiments disclosed herein may be embodied in electronic hardware, computer software, or combinations of both, and that the components and steps of the examples have been described in a functional general in the foregoing description for the purpose of illustrating clearly the interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present application.
In the several embodiments provided in the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative. For example, the division of each unit is only one logic function division, and there may be another division manner in actual implementation. For example, various elements or components may be combined or may be integrated into another system, or some features may be omitted, or not implemented.
The steps in the method of the embodiment of the application can be sequentially adjusted, combined and deleted according to actual needs. The units in the device of the embodiment of the application can be combined, divided and deleted according to actual needs. In addition, functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a storage medium. Based on such understanding, the technical solution of the present application may be substantially or partially implemented in the prior art, or all or part of the technical solution may be embodied in a software product, which is stored in a storage medium and includes several instructions for causing a computer device (which may be a personal computer, a terminal, or a network device) to execute all or part of the steps of the method according to the embodiments of the present application.
While the invention has been described with reference to specific embodiments, the scope of the invention is not limited thereto, and those skilled in the art can easily conceive various equivalent modifications or substitutions within the technical scope of the invention. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (8)
1. The script execution method is applied to a server management system, wherein the server management system comprises a management server, a proxy server and a processing server, and the proxy server and the processing server are positioned in a firewall security area; the method comprises the following steps:
the management server receives a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed;
the management server acquires a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located;
the management server generates a script task according to the script to be executed, the corresponding server identifier and the security zone identifier, and writes the script task into an execution queue, wherein the execution queue is provided with a preset queue service port, and the execution queue and the proxy server are not in the same firewall security zone, so that a plurality of proxy servers access the execution queue through the preset queue service port at the same time;
the proxy server accesses the execution queue, wherein a firewall policy of a preset queue service port of the execution queue accessed by the proxy server is opened on a firewall where the proxy server is located;
the proxy server acquires the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located from the execution queue, and sends the script task matched with the safety zone identifier of the safety zone of the firewall where the proxy server is located to the processing server corresponding to the server identifier in the script task, so that the processing server can execute the script to be executed;
after the proxy server obtains the script task matched with the security zone identifier of the security zone of the firewall where the proxy server is located from the execution queue, the method further includes: and deleting the acquired script tasks from the execution queue.
2. The script execution method according to claim 1, wherein the server management system further comprises a configuration management database, wherein the configuration management database stores a correspondence between a server identifier of the processing server and a security zone identifier of a security zone of a firewall in which the processing server is located;
the acquiring, by the management server, the security zone identifier of the firewall security zone in which the processing server is located corresponding to the server identifier includes: and the management server acquires the safety zone identification of the firewall safety zone where the processing server corresponding to the server identification is located from the configuration management database.
3. The script execution method according to claim 1, wherein after sending the script task matching with the security zone identifier of the security zone of the firewall where the proxy server is located to the processing server corresponding to the server identifier in the script task, the method further comprises:
and the proxy server receives the execution result of the processing server executing the script to be executed and writes the execution result into a database.
4. The script execution method of claim 3, wherein after the proxy server writes the execution result into a database, further comprising: and the management server reads and displays the execution result from the database.
5. The server management system is characterized by comprising a management server, a proxy server and a processing server, wherein the proxy server and the processing server are positioned in a firewall security area;
the management server is configured to: receiving a script execution request, wherein the script execution request comprises a script to be executed and a server identifier of a processing server executing the script to be executed; acquiring a safety zone identifier of a firewall safety zone where a processing server corresponding to the server identifier is located; generating a script task according to the script to be executed, the corresponding server identifier and the security zone identifier, and writing the script task into an execution queue, wherein a preset queue service port is formed in the execution queue, and the execution queue and the proxy server are not in the same firewall security zone, so that a plurality of proxy servers access the execution queue through the preset queue service port at the same time;
the proxy server is configured to: accessing the execution queue, wherein a firewall policy of the proxy server for accessing a preset queue service port of the execution queue is opened on a firewall where the proxy server is located; obtaining a script task matched with the safety zone identification of the safety zone of the firewall where the proxy server is located from the execution queue, and sending the script task matched with the safety zone identification of the safety zone of the firewall where the proxy server is located to a processing server corresponding to the server identification in the script task, so that the processing server can execute the script to be executed; the proxy server is further configured to delete the obtained script task from the execution queue.
6. The server management system according to claim 5, wherein the server management system further comprises a configuration management database that stores therein a correspondence relationship between the server identification of the processing server and a security zone identification of a firewall security zone in which the processing server is located;
the management server is specifically configured to obtain, from the configuration management database, a security zone identifier of a firewall security zone in which the processing server corresponding to the server identifier is located.
7. A server management system comprising at least three computer devices, each comprising a memory, a processor, and a computer program stored on the memory and executable on the processor, wherein the processors of the at least three computer devices collectively implement the method for executing a script according to any one of claims 1 to 4 when the respective computer programs are executed.
8. A storage medium, characterized in that the storage medium stores a computer program comprising program instructions that, when executed by a processor, cause the processor to perform a method of executing a script according to any one of claims 1-4.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810608690.7A CN108900482B (en) | 2018-06-13 | 2018-06-13 | Script execution method, server management system, and storage medium |
| PCT/CN2018/109382 WO2019237587A1 (en) | 2018-06-13 | 2018-10-09 | Script execution method, server management system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810608690.7A CN108900482B (en) | 2018-06-13 | 2018-06-13 | Script execution method, server management system, and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108900482A CN108900482A (en) | 2018-11-27 |
| CN108900482B true CN108900482B (en) | 2021-04-16 |
Family
ID=64345126
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810608690.7A Active CN108900482B (en) | 2018-06-13 | 2018-06-13 | Script execution method, server management system, and storage medium |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN108900482B (en) |
| WO (1) | WO2019237587A1 (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112579101B (en) * | 2020-12-21 | 2023-07-18 | 广州博冠信息科技有限公司 | Task script management and control method and device, electronic equipment and storage medium |
| CN112818342B (en) * | 2021-02-24 | 2024-03-12 | 江苏保旺达软件技术有限公司 | Script auditing method, device, equipment and storage medium |
| CN114625539B (en) * | 2022-03-22 | 2024-04-05 | 中国平安人寿保险股份有限公司 | Script tool execution method and device, electronic equipment cluster and storage medium |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1688979A (en) * | 2002-06-20 | 2005-10-26 | 国际商业机器公司 | Method and system for transaction pipeline decomposition |
| CN103927218A (en) * | 2014-04-30 | 2014-07-16 | 广州唯品会网络技术有限公司 | Event dispatching method and system |
| CN104468648A (en) * | 2013-09-13 | 2015-03-25 | 腾讯科技(深圳)有限公司 | Data processing system and method |
| CN105490843A (en) * | 2015-12-01 | 2016-04-13 | 努比亚技术有限公司 | Information processing method and system |
| CN106230896A (en) * | 2016-07-18 | 2016-12-14 | 深圳国泰安教育技术股份有限公司 | A kind of information push method, Apparatus and system |
| CN107798244A (en) * | 2016-09-07 | 2018-03-13 | 杭州萤石网络有限公司 | A kind of method and device for detecting Remote Code Execution Vulnerability |
| CN107948317A (en) * | 2017-12-26 | 2018-04-20 | 金蝶软件(中国)有限公司 | Adjustment method, device, storage medium and the computer equipment of Distributed Services |
Family Cites Families (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7480937B2 (en) * | 2002-02-26 | 2009-01-20 | Ricoh Company, Ltd. | Agent device, image-forming-device management system, image-forming-device management method, image-forming-device management program, and storage medium |
| US7409439B2 (en) * | 2002-12-09 | 2008-08-05 | Sun Microsystems Inc. | Reducing overhead in reverse proxy servers when processing web pages |
| US8856742B2 (en) * | 2010-06-11 | 2014-10-07 | International Business Machines Corporation | Distributed debugging |
| US8954978B1 (en) * | 2010-12-29 | 2015-02-10 | Amazon Technologies, Inc. | Reputation-based mediation of virtual control planes |
| US9843617B2 (en) * | 2014-03-26 | 2017-12-12 | Rockwell Automation Technologies, Inc. | Cloud manifest configuration management system |
| CN103957174B (en) * | 2014-05-16 | 2017-02-15 | 北京信诺瑞得软件系统有限公司 | Method for semantic switch loose coupling system to process information |
| US10257017B2 (en) * | 2014-06-03 | 2019-04-09 | JumpCloud, Inc. | Autonomous server agents |
| CN105262821A (en) * | 2015-10-29 | 2016-01-20 | 努比亚技术有限公司 | Interface management apparatus and method |
| CN107133086B (en) * | 2016-02-29 | 2020-09-04 | 阿里巴巴集团控股有限公司 | Task processing method, device and system based on distributed system |
| CN107508781A (en) * | 2016-06-14 | 2017-12-22 | 贵阳朗玛信息技术股份有限公司 | Exchange method, system and server architecture based on Web proxy server |
| CN106302755B (en) * | 2016-08-18 | 2019-03-19 | 中央电视台 | Reversed passive Proxy Method and device |
| CN106790455B (en) * | 2016-12-08 | 2019-07-26 | 中国科学院软件研究所 | A kind of distributed cloud management system and method based on mixed mode |
-
2018
- 2018-06-13 CN CN201810608690.7A patent/CN108900482B/en active Active
- 2018-10-09 WO PCT/CN2018/109382 patent/WO2019237587A1/en active Application Filing
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1688979A (en) * | 2002-06-20 | 2005-10-26 | 国际商业机器公司 | Method and system for transaction pipeline decomposition |
| CN104468648A (en) * | 2013-09-13 | 2015-03-25 | 腾讯科技(深圳)有限公司 | Data processing system and method |
| CN103927218A (en) * | 2014-04-30 | 2014-07-16 | 广州唯品会网络技术有限公司 | Event dispatching method and system |
| CN105490843A (en) * | 2015-12-01 | 2016-04-13 | 努比亚技术有限公司 | Information processing method and system |
| CN106230896A (en) * | 2016-07-18 | 2016-12-14 | 深圳国泰安教育技术股份有限公司 | A kind of information push method, Apparatus and system |
| CN107798244A (en) * | 2016-09-07 | 2018-03-13 | 杭州萤石网络有限公司 | A kind of method and device for detecting Remote Code Execution Vulnerability |
| CN107948317A (en) * | 2017-12-26 | 2018-04-20 | 金蝶软件(中国)有限公司 | Adjustment method, device, storage medium and the computer equipment of Distributed Services |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2019237587A1 (en) | 2019-12-19 |
| CN108900482A (en) | 2018-11-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10812566B2 (en) | Distributed steam processing | |
| US10169413B2 (en) | Scalable acceleration of database query operations | |
| US9094404B2 (en) | Reconfigurable cloud computing | |
| JP7389791B2 (en) | Implementing Compliance Settings with Mobile Devices to Adhere to Configuration Scenarios | |
| US8782635B2 (en) | Reconfiguration of computer system to allow application installation | |
| CN108900482B (en) | Script execution method, server management system, and storage medium | |
| US20120117139A1 (en) | Method and apparatus for obtaining feedback from a device | |
| US11095648B2 (en) | Dashboard as remote computing services | |
| US10656939B2 (en) | Modeling lifetime of hybrid software application using application manifest | |
| KR20100105737A (en) | Managing component programs within a service application | |
| US20130060924A1 (en) | Granular client inventory management with conflict resolution | |
| CN114531477B (en) | Method and device for configuring functional components, computer equipment and storage medium | |
| WO2019237583A1 (en) | Nginx software installation method and apparatus, computer device, and storage medium | |
| US20190104198A1 (en) | Accelerated throttling for web servers and services | |
| US11394748B2 (en) | Authentication method for anonymous account and server | |
| US20160313990A1 (en) | Extensibility bundles for a cloud and devices suite | |
| US11803646B2 (en) | Vulnerability scanning | |
| US20220066757A1 (en) | Determining When to Perform and Performing Runtime Binary Slimming | |
| US8635331B2 (en) | Distributed workflow framework | |
| US11650846B2 (en) | Method, device, and computer program product for job processing | |
| US10911305B2 (en) | Efficient rule processing for device management data evaluation | |
| WO2017100065A1 (en) | Discovering resource availability across regions | |
| US11388239B2 (en) | Previewing impacted entities in automated device definitions | |
| CN116186046A (en) | Device data modification method and device, computer device and storage medium | |
| CN116431658A (en) | Tenant management method and device based on tenant ID and computer readable medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |