CN109120494B - The method of physical machine is accessed in cloud computing system - Google Patents

The method of physical machine is accessed in cloud computing system Download PDF

Info

Publication number
CN109120494B
CN109120494B CN201811035964.4A CN201811035964A CN109120494B CN 109120494 B CN109120494 B CN 109120494B CN 201811035964 A CN201811035964 A CN 201811035964A CN 109120494 B CN109120494 B CN 109120494B
Authority
CN
China
Prior art keywords
physical
virtual
network
node
machine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811035964.4A
Other languages
Chinese (zh)
Other versions
CN109120494A (en
Inventor
许广彬
谭瑞忠
濮天晖
张银滨
郭晓
仇大玉
胡进
黄茂峰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huayun data holding group Co., Ltd
Original Assignee
Wuxi Huayun Data Technology Service Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wuxi Huayun Data Technology Service Co Ltd filed Critical Wuxi Huayun Data Technology Service Co Ltd
Priority to CN201811035964.4A priority Critical patent/CN109120494B/en
Publication of CN109120494A publication Critical patent/CN109120494A/en
Application granted granted Critical
Publication of CN109120494B publication Critical patent/CN109120494B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/10Mapping addresses of different types
    • H04L61/103Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45595Network integration; Enabling network access in virtual machine instances

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides the methods that physical machine is accessed in cloud computing system, several nodes including being configured in Virtual Cluster create virtual network, and all nodes are accessed into the first interchanger, at least one physical machine in physical cluster is accessed to the second switch being in communication with each other with the first interchanger;All physical machines in physical cluster do not distinguish functional node, and the VLAN ID that the configuration parameter of physical machine to be accessed and virtual network are distributed dynamically is configured to port of the physical network card corresponding to second switch belonging to the physical machine to be accessed as cloud platform, and be calculate node by least one node definition in Virtual Cluster.Pass through this method, improve the safety and flatness of physical machine access cloud computing system, it avoids traffic aggregation phenomenon occur at physical cluster end, has saved public network IP resource, improve the compatibility of data access efficiency between virtual machine and physical machine, safety and physical machine.

Description

The method of physical machine is accessed in cloud computing system
Technical field
The present invention relates to field of cloud computer technology more particularly to a kind of methods that physical machine is accessed in cloud computing system.
Background technique
Under cloud computing environment, program, application, database etc. are operated in physical server (i.e. physical machine, PM).User (guest) virtual machine (VM) is logged in, the physical server of deployment above procedure, application or database is accessed by network.It is more Virtual network function is provided by software defined network (SND) technology between a virtual machine, to realize between multiple virtual machines The either net based on VLAN, VXLAN, GRE or GENEVE type between container (Docker) or between virtual machine and container Network communication.
With being continuously increased for virtual machine quantity, the scale for the physical cluster being made of multiple physical machines is proposed more High requirement.In order to cope with raising of the user to the requirements for access and computing capability of virtual machine, it is necessary in the middle part of physical cluster Affix one's name to more physical machines or physical server.Programmable physics will be disposed to the front end of physical cluster in this scene to hand over It changes planes.As shown in connection with fig. 1, the difference of the communication instruction as used by each physical machine manufacturer, to cause in physics Have the defects that physical machine compatibility is bad when disposing physical machine (usually increasing physical machine) in cluster.Meanwhile it is existing at this In technology, physical cluster, can only be by pipe as the part for forming calculate node, memory node or network node in resource pool Reason person carries out the conversion of network protocol to physical machine and virtual network, flexible when so as to cause the deployment of physical machine in the prior art Property is bad.
More importantly when physical machine with and virtual machine communicated when, need to each physical machine distribute one Outer net IP.When the quantity of physical machine is very big, it is clear that just may require that a large amount of outer net IP of distribution, to cause outer net IP money The waste in source.In addition, VLAN ID, there are the bottleneck of the upper limit, maximum only has 4096, therefore is accessing more physical machine When, distribution VLAN ID can not be just realized for each physical machine.
Meanwhile applicant further found that based in cloud platform shown in figure 1, usually by one in physical cluster 10 or The multiple physical machines of person are defined as network node A, calculate node B, memory node C or other function node.However it is this to object The deployment means that functional role of the reason machine in physical cluster 10 is classified will cause the unified management needed in cloud platform Under, the conversion of network ip address is automatically done between physical machine and virtual machine.This just causes deployment object to a certain extent The difficulty of reason machine, and result in because compatibility during deployment of physical machine provided by different hardware manufacturer poor is asked Topic.
Further, it is based in cloud platform shown in figure 1, if multiple physical machines are divided into network node A, are calculated Serious traffic aggregation phenomenon is generated and then there is network node A in node B, memory node C or other function node.Once net Network node A power-off, delay machine or there are system exceptions, then will lead to user to the virtual machine in cloud platform in Virtual Cluster 400 The access of 401~virtual machine 40i generates detrimental effects.Therefore, cloud platform framework shown in figure 1 can not effectively be deployed to public affairs Have in cloud environment, and be subject to attack there are physical machine, so as to cause the not high defect of safety.
In view of this, it is necessary to the method in the prior art that physical machine is accessed in cloud computing system is improved, To solve the above problems.
Summary of the invention
It is an object of the invention to disclose a kind of method for accessing physical machine in cloud computing system, to improve physical machine access The safety and flatness of cloud computing system prevent traffic aggregation phenomenon occur at physical cluster end, while saving public network IP money Data access efficiency and safety between virtual machine and physical machine are improved in source, and improve different vendor offer of the institute to access Physical machine compatibility.
To achieve the above object, the method that the present invention provides a kind of accesses physical machine in cloud computing system, comprising:
Several nodes creation virtual network configured in Virtual Cluster, and all nodes are accessed into the first interchanger, At least one physical machine in physical cluster is accessed to the second switch being in communication with each other with the first interchanger;
Wherein, all physical machines in the physical cluster do not distinguish functional node, and will be to be accessed by cloud platform The VLAN ID that the configuration parameter and virtual network of physical machine are distributed dynamically is configured to belonging to the physical machine to be accessed Port of the physical network card corresponding to second switch, and be to calculate section by least one node definition in Virtual Cluster Point.
As a further improvement of the present invention, the configuration parameter include: physical machine to be accessed MAC address information, Physical network card belonging to physical machine to be accessed accesses port information and physical machine to be accessed corresponding to second switch Permission.
As a further improvement of the present invention, firewall, two layers are configured between first interchanger and second switch One or more in interchanger or three-tier switch.
As a further improvement of the present invention, the virtual network is empty by VXLAN virtual network, GRE virtual network, VLAN Mixed virtual network composed by one of quasi- network, GENEVE virtual network or any two kinds of virtual networks.
As a further improvement of the present invention, VXLAN virtual net is based between the Virtual Cluster and the first interchanger Network, GRE virtual network, VLAN virtual network or GENEVE virtual network are isolated, and the physical cluster is exchanged with second It is isolated between machine based on VLAN.
As a further improvement of the present invention, the operating mode for the port that the physical network card is connect with second switch is Access mode, to add or remove Vlan Tag automatically.
It as a further improvement of the present invention, is calculate node by least one node definition in Virtual Cluster, it is described Operating mode between calculate node and the port of the first interchanger connection is trunk mode.
As a further improvement of the present invention, the physical machine is selected from the bare metal server of tool physical network card, deployment is answered Server, desktop computer or mobile communication device.
As a further improvement of the present invention, the functional node of all physical machines in the physical cluster includes: tool The physical store node of store function, the physical computing nodes for having computing function and the physical network section for having data forwarding function Point.
As a further improvement of the present invention, the VLAN ID that virtual network is distributed dynamically is configured to institute by cloud platform After stating port of the physical network card belonging to physical machine to be accessed corresponding to second switch further include: in Virtual Cluster institute There is the step of VNI mapping relations between VLAN ID and virtual network are configured in node, the node is configured as virtual machine Or container.
As a further improvement of the present invention, two nodes in the Virtual Cluster are defined as calculate node, and two Different types of virtual network is converted by the first interchanger configured each other respectively between a calculate node, and The data packet forwarded to the physical network card of physical machine corresponding to two calculate nodes makes a response.
As a further improvement of the present invention, the node in the Virtual Cluster is based at openvswitch flow table rule Manage the data packet returned from calculate node to physical machine;
The node configures br-int, br-tun and br-phy, and handles tunneled network data packet by br-tun, passes through Br-phy handles physical machine network packet, handles virtual machine and traffic classification, the virtual machine and br-int by br-int Connection, is connected by virtual cable between br-int and br-phy, is connected between br-int and br-tun by virtual cable, Br-phy and br-tun are not directly connected.
Compared with prior art, the beneficial effects of the present invention are:
A kind of revealed method that physical machine is accessed in cloud computing system through the invention, improves physics significantly The safety and flatness of machine access cloud computing system;Simultaneously as all physical machines in physical cluster do not distinguish functionality Node, therefore can effectively avoid and traffic aggregation phenomenon occur at physical cluster end;Finally, the present invention also as save public network IP resource improves the compatibility of data access efficiency between virtual machine and physical machine, safety and physical machine.
Detailed description of the invention
Fig. 1 is the topology diagram of cloud computing system in the prior art;
Fig. 2 be based on shown by the present invention in cloud computing system access physical machine method in the first embodiment It is formed by the topology diagram of cloud computing system, wherein the physical machine in Fig. 2 is selected from bare metal server;
Fig. 3 is the schematic diagram when Node_1 in Virtual Cluster is communicated with the physical machine in physical cluster;
Fig. 4 is that the virtual machine VM1 in the node Node_1 in Virtual Cluster converts different types of virtual network Schematic diagram;
Fig. 5 is the process for carrying out network communication when physical machine accesses a virtual machine in Virtual Cluster based on ARP mode Schematic diagram;
Node Node_1 and conduct are replaced by node Node_2 when Fig. 6 occurs abnormal by the node Node_1 in Virtual Cluster Calculate node and schematic diagram when being communicated with a physical machine in physical cluster, wherein the physical machine in Fig. 6 is selected from naked Metal server;
Fig. 7 by cloud computing system in the prior art shown in figure 1 and the cloud computing system set up of the present invention With under two kinds of scenes of network cross-node and across a network cross-node between virtual machine and physical machine maximum bandwidth transmission rate into The schematic diagram of row comparison;
Fig. 8 be based on shown by the present invention in cloud computing system access physical machine method in the first deformation implementation The topology diagram of cloud computing system formed in example;
Fig. 9 be based on shown by the present invention in cloud computing system access physical machine method in second of deformation implementation The topology diagram of cloud computing system formed in example, wherein the physical machine in Fig. 9 is selected from bare metal server.
Specific embodiment
The present invention is described in detail for each embodiment shown in reference to the accompanying drawing, but it should be stated that, these Embodiment is not limitation of the present invention, those of ordinary skill in the art according to these embodiments made by function, method, Or equivalent transformation or substitution in structure, all belong to the scope of protection of the present invention within.
Technical term used by this specification concrete mode part should make different explanations in different scenes, such as Term " host " runs program or application in Virtual Cluster 400 or requests the master responded to Client-initiated Machine.Meanwhile in this application, term " connection " is either connection on computer topology framework, can also be company electrically It connects, can also be and one-way data transfer and/or bidirectional data transfers are formed by based on message or data link.
Embodiment one:
Join shown in Fig. 1, the physical node in physical cluster 10 is divided into network node and ordinary node, and physical node all connects On to second switch 300 (i.e. bare machine interchanger), the first interchanger (is not shown, can refer to the first interchanger 200 in Fig. 2) Connect one or more virtual machine in Virtual Cluster 400.In Fig. 1, is indicated to simplify, a virtual machine is only shown.
In the prior art, it needs to classify to bare machine (i.e. physical machine).In Fig. 1, indicated to simplify, it will be multiple naked Machine (i.e. physical machine) is divided into network node A, calculate node B and memory node C.The flow of calculate node B and memory node C need Converging to network node A could be with the source communications of different network type.Here network type indicates the net that cloud platform is supported Network type, bare machine network type are all VLAN, if the virtual network in cloud platform where VM is also VLAN type, are not necessarily to It can normal communication by traffic aggregation;When bare machine needs and the virtual network device of VXLAN type communicates, flow must be converged To network node A, the host for reaching Virtual Cluster 400 after being encapsulated as network node A by VXLAN again (is equivalent to shown in Fig. 1 Virtual machine out).
The prior art is formed by this cloud platform not only and will increase framework complexity, while needing to converge ordinary node The flow of (i.e. calculate node B and memory node C) is needed to network node A by the network node A of bare machine and virtual machine Host establishes the tunnel VXLAN, considerably increases management cost, and unstable factor is more.Especially, when network node A occurs After failure delay machine, the flow of ordinary node (i.e. calculate node B and memory node C) can not converge to network node A, lead to bare machine It can not be communicated with the virtual machine in Virtual Cluster 400.
Therefore, this framework requires that at least a bare machine (i.e. physical machine) network node A must will be used as, so as to cause needing Consume additional physical resource.The specific embodiment part emphasis of present specification is revealed to Fig. 1 existing as a result, Technical problem present in technology carries out targetedly perfect.
Join shown in Fig. 2, Virtual Cluster 400 in this application can be the Virtual Cluster 400 of distributed structure/architecture (i.e. Content Management System, CMS) distributed structure/architecture.It include Node_1, Node_2 ... in Virtual Cluster 400 ..Node_n equal n node.This n node can be configured to virtual machine, may be alternatively configured as container (Docker).N node Access the first interchanger 200.For system architecture, 200 role of the first interchanger be in Virtual Cluster 400 with physical cluster One or more physical machine (i.e. physical machine 10a, physical machine 10b physical machine 10i) in 10 passes through the second exchange Machine 300 is in communication with each other.That is physical machine 10a, physical machine 10b physical machine 10i and second switch 300 are configured Port connect the Virtual Cluster 400 into cloud computing system.Specifically, Node_1, Node_2 ... ..Node_n etc. n section The operating system installed on point is (SuSE) Linux OS.
Specifically, in the present embodiment, can configure or set between first interchanger 200 and second switch 300 Any type of equipment 100 with one-way data broadcast or bidirectional data transfers is set, which can be firewall 50 One or more in (ginseng Fig. 3 and Fig. 6 shown in), Layer 2 switch (not shown) or three-tier switch (not shown).Together When, when configuration between the first interchanger 200 and second switch 300 or firewall 50 and Layer 2 switch or three layers are set When interchanger, direct-connected mode can be used, with the first interchanger of connection 200 and second switch 300.
Specifically, shown in ginseng Fig. 3, a kind of revealed side that physical machine is accessed in cloud computing system of present embodiment Method, comprising:
Several nodes creation virtual network configured in Virtual Cluster 400, and all nodes access first is exchanged Machine 200, by least one physical machine (i.e. physical machine 10a, physical machine 10b physical machine 10i) in physical cluster 10 Access the second switch 300 being in communication with each other with the first interchanger 200.All physical machine (i.e. physics in physical cluster 10 Machine 10a, physical machine 10b physical machine 10i) do not distinguish functional node, and by cloud platform by physical machine to be accessed Configuration parameter and the VLAN ID that is distributed of virtual network be dynamically configured to physics belonging to the physical machine to be accessed At least one node definition in Virtual Cluster 400 is to calculate section by network interface card port corresponding to second switch 300 Point.Calculate node can be one, be also possible to two or more;Wherein, by VLAN ID dynamic configuration to the second exchange The operation of port corresponding to machine 300 is executed by SDN controller.
The VLAN ID is stored in database profession after virtual network distribution VLAN ID;Wherein, database is configured in In cloud platform, for example, database can be deployed to Fig. 2 interior joint node1_1~node Node_n be formed by virtual machine or In container, network communication is got through by virtual network.Simultaneously because virtual machine or container itself support HA or failure to migrate, To reduce the probability of database failure;Or database is deployed in physical machine, pass through Physical Network belonging to physical machine Network gets through network communication, preferably to improve the performance and stability of database.
Further, it may additionally include in the present embodiment and create virtual network in cloud platform and distributed for virtual network After VLAN ID, the VLAN ID is stored in database profession;Wherein, database include: oracle database, DB2 database, Postgre SQL database, Microsoft SQL Server database, MicrosoftAccess database or MySQL Database, and preferably MySQL database.It therefore, can be according to the void with creation when creating Microsoft Loopback Adapter in virtual network The port for the second switch 300 that VLAN ID corresponding to quasi- network goes configuration to connect with physical machine.In the present embodiment, lead to This access way is crossed, physical machine can be made to obtain the virtual IP address for the virtual network being created, to effectively reduce The waste of public network IP resource.
Meanwhile in the present embodiment, which includes: the mac address information, to be accessed of physical machine to be accessed Physical machine belonging to port information and physical machine to be accessed corresponding to physical network card access second switch 300 power Limit.
Virtual Cluster 400 can create MAC Address, IP address of physical machine 10a, physical machine 10b ... physical machine 10i etc. The parameter configuration provided when building is automatic after facilitating physical machine to be disposed or accessed physical cluster 10 into internal DHCP service Obtain IP.The IP refers to IP address (the i.e. bare metal server in Fig. 9 that some physical machine in physical cluster 10 has 10a is formed by IP address, 10.10.100.100).
DHCP service realizes that DHCP-AGENT is for managing all void in cloud platform in cloud platform using DHCP-AGENT The quasi- corresponding port dhcp of network, for providing DHCP service.DHCP-AGENT runs on some in cloud platform or certain two In stationary nodes (host of non-virtual machine), realize that Internet resources are isolated using namespace, it will using veth equipment Namespace is connected on br-int virtual switch, while starting dnsmasq process in namespace, provides DHCP Service, the DHCP request that such physical machine is initiated can be entered by br-int virtual switch where DHCP process Namespace, can correctly get the IP address of distribution.
In the present embodiment, when disposing in cloud computing system or access physical machine, it is corresponding empty to will create physical machine Microsoft Loopback Adapter in quasi- network, while the VLAN for the physical machine that Virtual Cluster 400 generates is configured to the second exchange by SDN controller In 300 port of machine, to establish between the node (node) needed in deployment or the physical machine and Virtual Cluster 400 that access Physical path.
Join Fig. 7 shown in, in the cloud computing system that revealed method is set up through the invention same network cross-node with And the transmission of maximum bandwidth is fast between virtual machine (i.e. each Node in Fig. 2) and physical machine under two kinds of scenes of across a network cross-node Rate is respectively 8.87Gbit/s and 8.28Gbit/s, compared with the existing technology in virtual machine and physical machine between maximum bandwidth For transmission rate is respectively the transmission rate of 8.45Gbit/s and 7.51Gbit/s, the cloud computing set up through the invention In system, under the scene of same network (virtual network of same type) cross-node and across a network is (different types of virtual Network) cross-node scene under, communication capacity between virtual machine and physical machine is better than between the node inside Virtual Cluster 400 Communication capacity.
Wherein, the functional node of all physical machines in physical cluster 10 includes: the physical store section for having store function Point, the physical computing nodes for having computing function and the physical network nodes for having data forwarding function.Therefore, in present embodiment In, the conversion of virtual network type is to complete in one or more node in Virtual Cluster 400, therefore do not need One interchanger 200 and/or second switch 300 carry out conversion process, thus greatly alleviate the first interchanger 200 and/or The switching to pressure of second switch 300.The node (Node) can be configured to virtual machine (VM) or container (Docker).? In present embodiment, it is that example progress is exemplary illustrated that we, which are configured as a virtual machine (VM) with node (Node),.
Meanwhile in the present embodiment, physical machine is selected from the service of the bare metal server of tool physical network card, application deployment Device, desktop computer (such as PC) or mobile communication device (such as mobile phone, tablet computer).In the present embodiment, I Physical machine is carried out by taking bare metal server (Bare Metal) as an example it is exemplary illustrated.
Bare metal server be it is a kind of gathered CPU, RAM, VirtIO-NIC, VirtIO-Blk, external equipment, support Cloud disk, support VPC network, support storage/network equipment hot plug, support muti-piece elastic physical network interface card, while to X86, ARM, The CPU such as Power have good compatibility.Therefore, when needing to be extended the physical cluster 10 in cloud computing system, naked gold Belonging to server becomes a kind of more preferred scheme.
In the present embodiment, the virtual network by VXLAN virtual network, GRE virtual network, VLAN virtual network, Mixed virtual network composed by one of GENEVE virtual network or any two kinds of virtual networks.Virtual Cluster 400 VXLAN virtual network, GRE virtual network, VLAN virtual network or GENEVE virtual net are based between the first interchanger 200 Network is isolated, and in the present embodiment, is carried out between the Virtual Cluster 400 and the first interchanger 200 based on VXLAN virtual network Connection.It is isolated between physical cluster 10 and second switch 300 based on VLAN.Physical network card and second switch 300 connect The operating mode of the port connect is Access mode, to add or remove Vlan Tag automatically.Meanwhile by Virtual Cluster 400 In a node definition be calculate node.
Join shown in Fig. 2 or Fig. 8, the n node such as Node_1, Node_2 ... ..Node_n can individually be defined as a meter Operator node.Meanwhile specifically as shown in connection with fig. 6, in the present embodiment, we save Node_1 as unique calculating Point, and the operating mode between the port that the calculate node and the first interchanger 200 are connected is trunk mode.
Meanwhile in the present embodiment, cloud platform by the VLAN ID that virtual network is distributed dynamically be configured to it is described to Physical network card belonging to the physical machine of access corresponds to after the port of interchanger further include: in all nodes of Virtual Cluster 400 The step of configuring the VNI mapping relations between VLAN ID and virtual network.Specifically, in the present embodiment, in physical cluster 10 Physical machine be configured as bare metal server, i.e. bare metal server 10a, bare metal server 10b ... bare metal server 10i。
Specifically, in the present embodiment, the VLAN ID that virtual network is distributed dynamically is configured to described to be accessed The specific execution that physical network card belonging to physical machine corresponds to the port of interchanger can control the first interchanger 200 and second by the overall situation The SDN controller of interchanger 300 is realized.The SDN controller can run in Virtual Cluster 400 any one node (or In container) or with Virtual Cluster 400 interconnect physical cluster 10 in any one physical machine in.
In the intra-node of cloud computing system, when realizing the conversion of virtual network type can according to physical machine to be accessed, Such as the source MAC that bare metal server has is filtered, only MAC Address takes in the bare metal of cloud platform typing Business device 10a, the corresponding data packet of bare metal server 10b ... bare metal server 10i just allow to pass through, and otherwise can be lost It abandons.Rule citing:
First rule code is as follows:
Br-phy in_port=2, dl_vlan=2,
Dl_dst=60:da:83:3d:45:05, actions=mod_vlan_vid:1270, NORMAL
Article 2 rule code is as follows:
Br-int in_port=11, dl_vlan=1270,
Dl_src=60:da:83:3d:45:05, actions=mod_vlan_vid:2, NORMAL
For the technology path for realizing the conversion of virtual network type in compared with the existing technology by physical switches, at this It is realized in embodiment using openvswitch flow table rule.
Wherein, above-mentioned first rule indicates: for the data packet gone out from cloud platform physical machine, destination-mac address is The physical network card of physical machine can set 1270 for VLAN.
Above-mentioned Article 2 Rule Expression: for VLAN be 1270 simultaneously source MAC be physical machine to be accessed, will set Set an Interior VLAN Tag, guarantee can to carry out with the network equipment of the cloud platform in the virtual network 400 in it is two-way or One-way communication.
Meanwhile the revealed method of present embodiment, it can satisfy the virtual network type conversion of any cloud platform, physics Machine or physical machine to be accessed use always VLAN type constant.The expense cost for not having virtual network type to convert reduces The load of second switch 300 and flow pressure, while the load of physical cluster 10 will not be increased, it especially will not be in object Traffic aggregation is generated in a physical machine or computing device in reason cluster 10.
It is realized since a variety of virtual network types inside cloud platform are all based on VLAN, between multiple physical nodes Transmitting data have used different tunneling techniques (Tunnel) Lai Shixian, and after data packet reaches physical machine, it is converted to VLAN type, and it is in this application the physical cluster 10 that the data packet for sending physical machine is directly accessed cloud platform, it is equivalent to The data packet communication of VLAN and VLAN same type, so that having under the scene of the physical machine of access cloud computing system flexible Higher, the higher technical advantage of performance of property.
Meanwhile as shown in connection with fig. 6, in the present embodiment, the node in Virtual Cluster 400 is flowed based on openvswitch The data packet that table rule process is returned from calculate node to physical machine.Node configures br-int, br-tun and br-phy, and leads to Br-tun processing tunneled network data packet is crossed, physical machine network packet is handled by br-phy, is handled by br-int virtual Machine and traffic classification, the virtual machine are connect with br-int, are connected between br-int and br-phy by virtual cable, i.e., logical The Patch-port1 crossed in Fig. 6 is connect with Patch-port2, is connected between br-int and br-tun by virtual cable, br- Tun and br-phy are not connected to.
Specifically, applicant is by taking virtual machine VM1 (it is located in a Node-1) access physical machine 101 in cloud platform as an example To introduce network communication path, it is assumed here that accessed using the mode of PING, specific code is as follows:
Arp, in_port=2, dl_vlan=1, arp_tpa=169.255.128.11
Actions=mod_vlan_vid:1814, NORMAL.
Firstly, the IP (10.10.100.100) that virtual machine VM1 sends ARP broadcast data packet acquisition physical machine 101 is corresponding MAC Address, packet priority reaches br-int by the Microsoft Loopback Adapter of virtual machine VM, and br-int is according to internal flow table rule Match, discovery purpose IP address is physical machine 101, data packet can be sent to br-phy;It can be corresponding by virtual machine VM1 in br-phy The inside VLAN of data packet be converted into the corresponding VLAN of physical machine 101.At this point, due to before when creating Microsoft Loopback Adapter just Physical pathway is got through, this data packet can successfully arrive at physical network card belonging to physical machine 101.Object belonging to physical machine 101 It manages network interface card and returns to ARP REPLY data packet.Virtual machine VM1 starts to send ICMP data packet, process and transmission ARP data packet class Type.So far, virtual machine VM1 successful access physical machine 101.
As shown in connection with fig. 5, in embodiments, here with the void in the Virtual Cluster 400 of physical machine 10a access cloud platform Network communication path is introduced for quasi- machine VM1.Specifically, in the present embodiment, being communicated in a manner of ARP.Under please specifically joining Shown in literary step S1 to step S8.
S1, physical machine 10a send the MAC Address that ARP broadcast data packet obtains virtual machine VM1.
S2, data packet reach second switch 300.The access 10 that the physical network card as belonging to physical machine 10a uses Mode.The physical network card belonging to the physical machine 10a is entered to the Tag of the data packet addition Vlan 10 of second switch 300.
S3, data packet are reached firewall 50, and are filtered using firewall 50 to data packet, to pass through firewall rule Filter illegal or abnormal data packet.
S4, data packet reach the first interchanger 200 connecting with Virtual Cluster 400.Due to the meter in Virtual Cluster 400 Operator node (Node_1) and the first interchanger 200 use trunk mode, and Vlan 10 is allowed to pass through.
S5, data packet can normally reach the physical network card (NIC of calculate node (i.e. Node_1 in Fig. 2 or Fig. 6) (Baremetal))。
S6, br-phy virtual switch is reached.
External Vlan is converted into internal vlan as the br-phy virtual switch in the Node_1 of calculate node
In_port=11, dl_vlan=10, actions=mod_vlan_vid:2, NORMAL.
Wherein, in_port indicates entrance, and the port 11 in in_port=11 indicates that physical network card, dl_vlan=10 are Refer to Vlan10;Action indicates the movement for needing to do for qualified data packet.Mod_vlan_vid indicates modification Vlan, that is, Vlan10 is revised as local Vlan2;Broadcast movement is done in NORMAL expression, sends institute for this data packet There is the port that can be reached.Further, in the present embodiment, which is limited to the end with identical Vlan tag Mouthful.That is the data packet of external Vlan=10 is converted into internal Vlan=2.
Then, which is sent to the virtual network of all same types on all current calculate nodes (Node_1) Virtual port on.
In_port=2, dl_vlan=2, actions=mod_vlan_vid:10, NORMAL
Flow table rule above is used to handle the data packet gone out from calculate node (Node_1).If hypothesis is that VM1 is directed to The return packet for the ARP that physical machine 10a is sent.It then indicates to be revised as external Vlan=10 for the Vlan of internal vlan=2, together When data packet broadcast is sent.In the present embodiment, since physical network card is on br-phy virtual switch, and it is Trunk mode.Therefore, physical network card NIC (Baremetal) can receive the data packet of broadcast, to be sent to the second friendship Change planes 300.
S7, vlan and vxlan are converted.Join shown in Fig. 4, in the present embodiment, br-tun is for handling tunnel The virtual switch of road network packet, br-phy are responsible for one or more node and object in transmitting-receiving Virtual Cluster 400 The virtual switch of the data packet forwarded between one or more physical machine in reason cluster 10, br-int are used to handle void Quasi- machine (when only creating a virtual machine in some node, also is understood as the node, i.e. node Node_1~node Node_ And the virtual switch of traffic classification n).
VM1 is connected on br-int virtual switch.Br-tun turns the data packet (such as vxlan) of overlay type Change local vlan into;The data packet of physical machine 10avlan is converted into local vlan by br-phy;It is local on br-int Communication between vlan, and br-tun is connected with br-int with br-phy, that is to say, that from br-tun or br-phy The data packet come in can reach br-int, and all be converted to local vlan.It is divided to two paths to access here VM1 has found that data packet after reaching br-int, has all been converted to local vlan respectively from br-tun and from br-phy, That is no matter previous virtual network type is which type of virtual network, and local is only needed for VM1 Vlan is identical can communication;The processing of virtual network type is handled on respective virtual switch, to realize heterogeneous networks class Communication between type.
S8, data packet reach VM1, to complete entire virtual machine VM1 to the access process of physical machine 101.
Embodiment two:
As shown in connection with fig. 9, a kind of method and implementation accessing physical machine in cloud computing system shown by the present embodiment Example one is compared, and the main distinction is, in the present embodiment, two nodes in the Virtual Cluster 400 are defined as calculating Node.Between two calculate nodes respectively by the first interchanger for being configured each other (i.e. the first interchanger 200 in Fig. 6 with First interchanger 210), different types of virtual network is converted, and to physical machine corresponding to two calculate nodes The data packet that physical network card is forwarded makes a response, i.e. physical network card and physical machine to the physical machine 10a in physical cluster 10 The data packet that the physical network card of 10b is forwarded makes a response respectively.
Specifically, as shown in figure 9, the node Node_1 and node Node_2 in Virtual Cluster 400 is defined as calculating Node.NIC (VXLAN) the first interchanger 200 of connection of node Node-1, while by the first interchanger 200 and node Node-2 The NIC (VXLAN) configured establishes connection.The NIC (Baremetal) and node of first interchanger 200 and node Node_1 The NIC (Baremetal) of Node_2 establishes connection.
Node Node_1 and node Node_2 is the physical node inside cloud platform respectively, indicates the host of virtual machine operation Machine.Br-tun indicates the virtual switch of processing tunnel communication in each calculate node;Br-phy indicates processing physical machine communication Virtual machine interchanger;Br-int indicates the virtual switch of processing virtual machine communication, while data packet classify concurrently Different virtual switches is sent to be handled.Br-int is connected with br-tun and br-phy respectively;Patch-port1 and Patch-port2 indicates the both ends of virtual cable, for connecting br-int and br-phy (i.e. two virtual switches).br-int It is connect between br-tun by virtual cable, br-phy and br-tun are not directly connected, to prevent from occurring in Virtual Cluster 400 Network storm avoids cloud platform from paralysis occur, and further influences physical cluster 10 and ask to the access of Client-initiated items The response speed and user experience asked.
NIC (VXLAN) and NIC (Baremetal) indicates the physical network card of processing vxlan communication and physical machine communication, br- Int virtual switch after by packet classification, data packet enter in different virtual switches (such as: br-phy), each Virtual switch can all connect a physical network card.When data packet reach br-phy after, can from NIC (Baremetal) go out to Up to second switch 300.Here it is used using trunk mode the port that NIC (Baremetal) is connected to second switch 300 Multiple vlan are allowed to pass through, to support that multiple vlan and vxlan are communicated.Trunk 10-20 in Fig. 9 indicates to permit Perhaps vlan data packet of the vlan 10-vlan20 within the scope of this passes through this network interface card.
Mentioning br-int above is for data packet is classified and being handled, and VM is connected on br-int, Each VM corresponds to an internal Tag on br-int virtual switch, for carrying out double layer network isolation.For example, in Fig. 9 Tag2 indicates that the inside Vlan of VM1 network interface card is " 2 ", and Tag3 indicates that the inside Vlan of VM2 network interface card is that " 3 " only have Tag phase in Fig. 9 Same port just can be carried out communication, to realize network isolation function.It is to be understood that in this application, it is related Technical term " communication " can be one-way communication, it can is master-slave relationship, is also possible to control planning;It is also possible to be Two-way communication.
Physical machine can be distributed in different cabinets, computer room or region, and centre is beaten by one or more two-layer equipment Logical, all physical machines do not distinguish the type of physical machine by bare machine platform uniform management.The data packet of physical machine directly passes through it The physical network card of configuration is sent to second switch 300 and is handled without converging to special installation;Physics belonging to physical machine Network interface card corresponds to the port of second switch 300 using access mode, is used to automatic addition and removes vlan tag.
Shown by the present embodiment it is a kind of in cloud computing system access physical machine method and embodiment one included in Identical technical characteristic or technical solution, please join shown in embodiment one, details are not described herein.
Embodiment three:
The third of a kind of method that physical machine is accessed in cloud computing system of the present invention gone out as shown in connection with fig. 6 is specific real Apply mode.It is replaced in Node_1 and physical cluster 10 when Fig. 6 occurs abnormal by the Node_1 in Virtual Cluster 400 by Node_2 Schematic diagram of physical machine when being communicated.
Compared with embodiment one and/or embodiment two, the main distinction is the present embodiment, in this example, it is assumed that Calculate node node_1 delay machine, it will be seen from figure 6 that the practical VM1 only affected in calculate node node_1 with it is corresponding Physical machine communication, physical machine still can continue to lead to the virtual machine (such as VM2) in other calculate nodes, such as Node_2 Letter.
As shown in connection with fig. 1, although in the prior art, the second switch 300 connecting with physical machine can be by stacking Or the mode of bond solves the problems, such as single-point, but theoretically for second switch 300 failure probability it is still very big, It cannot fundamentally solve the problems, such as this.It, should when the Virtual Cluster 400 of cloud platform and physical machine communication flows pressure are very big Second switch 300 probably becomes bottleneck, can not handle the data packet on both sides, increases probability of malfunction, delay occurs, loses The problems such as packet, communication disruption.
The convert task of virtual network type has been transferred to one or more in Virtual Cluster 400 by the present invention It is handled in virtual machine host machine, i.e., one or more node in Virtual Cluster 400 is executed to the conversion of virtual network type, So as to greatly alleviate the pressure of second switch 300,300 probability of malfunction of second switch, second switch are reduced 300 need as common Layer 2 switch, it is often more important that, the technical solution of the tied disclosure of embodiment can be from root Avoid the problem that the physical machine being located in physical cluster 10, will not be because of certain as traffic aggregation caused by calculate node in sheet A failure or paralysis as the physical machine calculated, and the phenomenon that lead to network congestion and operating lag.
Shown by the present embodiment it is a kind of in cloud computing system access physical machine method and embodiment one and/or implement Identical technical characteristic or technical solution included in example two please join shown in embodiment one and/or embodiment two, herein It repeats no more.
Example IV:
The third of a kind of method that physical machine is accessed in cloud computing system of the present invention gone out as shown in connection with fig. 8 is specific real Apply mode.
With embodiment one into embodiment three compared with any one embodiment, the main distinction is the present embodiment, at this It is direct-connected by the first interchanger 200 and second switch 300 between Virtual Cluster 400 and physical cluster 10 in embodiment, and Each other and it is not provided with the firewall 50 as shown in embodiment one (shown in ginseng Fig. 3 and Fig. 6) or Layer 2 switch (not shown) or three-tier switch (not shown).
The present embodiment and the embodiment one identical technical characteristic in any one embodiment into embodiment three, please join above Shown, details are not described herein.
In several embodiments provided herein, it should be understood that disclosed system, device and method can be with It realizes by another way.For example, the apparatus embodiments described above are merely exemplary, for example, the module or The division of unit, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units Or component can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, institute Display or the mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, device or unit Indirect coupling or communication connection can be electrical property, mechanical or other forms.
The unit as illustrated by the separation member may or may not be physically separated, aobvious as unit The component shown may or may not be physical unit, it can and it is in one place, or may be distributed over multiple In network unit.It can select some or all of unit therein according to the actual needs to realize the mesh of this embodiment scheme 's.
It, can also be in addition, the functional units in various embodiments of the present invention may be integrated into one processing unit It is that each unit physically exists alone, can also be integrated in one unit with two or more units.Above-mentioned integrated list Member both can take the form of hardware realization, can also realize in the form of software functional units.
If the integrated unit is realized in the form of SFU software functional unit and sells or use as independent product When, it can store in a computer readable storage medium.Based on this understanding, technical solution of the present invention is substantially The all or part of the part that contributes to existing technology or the technical solution can be in the form of software products in other words It embodies, which is stored in a storage medium, including some instructions are used so that a computer It is each that equipment (can be personal computer, server or the network equipment etc.) or processor (processor) execute the present invention The all or part of the steps of embodiment the method.And storage medium above-mentioned includes: USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic or disk Etc. the various media that can store program code.
The series of detailed descriptions listed above only for feasible embodiment of the invention specifically Protection scope bright, that they are not intended to limit the invention, it is all without departing from equivalent implementations made by technical spirit of the present invention Or change should all be included in the protection scope of the present invention.
It is obvious to a person skilled in the art that invention is not limited to the details of the above exemplary embodiments, Er Qie In the case where without departing substantially from spirit or essential attributes of the invention, the present invention can be realized in other specific forms.Therefore, no matter From the point of view of which point, the present embodiments are to be considered as illustrative and not restrictive, and the scope of the present invention is by appended power Benefit requires rather than above description limits, it is intended that all by what is fallen within the meaning and scope of the equivalent elements of the claims Variation is included within the present invention.Any reference signs in the claims should not be construed as limiting the involved claims.
In addition, it should be understood that although this specification is described in terms of embodiments, but not each embodiment is only wrapped Containing an independent technical solution, this description of the specification is merely for the sake of clarity, and those skilled in the art should It considers the specification as a whole, the technical solutions in the various embodiments may also be suitably combined, forms those skilled in the art The other embodiments being understood that.

Claims (12)

1. accessing the method for physical machine in cloud computing system characterized by comprising
Several nodes creation virtual network configured in Virtual Cluster, and all nodes are accessed into the first interchanger, by object At least one physical machine in reason cluster accesses the second switch being in communication with each other with the first interchanger;
Wherein, all physical machines in the physical cluster do not distinguish functional node, and by cloud platform by physics to be accessed The VLAN ID that the configuration parameter and virtual network of machine are distributed dynamically is configured to object belonging to the physical machine to be accessed Port of the network interface card corresponding to second switch is managed, and is calculate node by least one node definition in Virtual Cluster.
2. the method according to claim 1, wherein the configuration parameter includes: the MAC of physical machine to be accessed Physical network card belonging to address information, physical machine to be accessed accesses port information and to be accessed corresponding to second switch The permission of physical machine.
3. the method according to claim 1, wherein being configured between first interchanger and second switch anti- One or more in wall with flues, Layer 2 switch or three-tier switch.
4. the method according to claim 1, wherein the virtual network includes VXLAN virtual network, GRE void Mixed type composed by one of quasi- network, VLAN virtual network, GENEVE virtual network or any two kinds of virtual networks Virtual network.
5. according to the method described in claim 4, it is characterized in that, being based between the Virtual Cluster and the first interchanger VXLAN virtual network, GRE virtual network, VLAN virtual network or GENEVE virtual network are isolated, the physical cluster It is isolated between second switch based on VLAN.
6. according to the method described in claim 4, it is characterized in that, port that the physical network card is connect with second switch Operating mode is Access mode, to add or remove Vlan Tag automatically.
7. method according to any one of claim 1 to 6, which is characterized in that save at least one of Virtual Cluster Point is defined as calculate node, and the operating mode between the calculate node and the port of the first interchanger connection is trunk mode.
8. the method according to claim 1, wherein the physical machine is selected from the bare metal service of tool physical network card Device, the server of application deployment, desktop computer or mobile communication device.
9. the method according to claim 1, wherein the functional section of all physical machines in the physical cluster Point includes: the physical store node for having store function, the physical computing nodes for having computing function and tool data forwarding function Physical network nodes.
10. according to the method described in claim 9, it is characterized in that, the VLAN ID dynamic that cloud platform is distributed virtual network Ground is configured to after port of the physical network card corresponding to second switch belonging to the physical machine to be accessed further include: The step of VNI mapping relations between VLAN ID and virtual network are configured in all nodes of Virtual Cluster, the node is configured For virtual machine or container.
11. the method according to the description of claim 7 is characterized in that two nodes in the Virtual Cluster are defined as Calculate node, between two calculate nodes respectively by the first interchanger for being configured each other to different types of virtual network into Row conversion, and the data packet forwarded to the physical network card of physical machine corresponding to two calculate nodes makes a response.
12. according to claim 1 or method described in 11, which is characterized in that the node in the Virtual Cluster is based on The data packet that openvswitch flow table rule process is returned from calculate node to physical machine;
Node in the Virtual Cluster configures br-int, br-tun and br-phy, and handles tunneled network number by br-tun According to packet, physical machine network packet is handled by br-phy, the data packet and traffic classification of virtual machine, institute are handled by br-int It states virtual machine to connect with br-int, be connected between br-int and br-phy by virtual cable, led between br-int and br-tun Virtual cable connection is crossed, br-phy and br-tun are not directly connected.
CN201811035964.4A 2018-08-28 2018-08-28 The method of physical machine is accessed in cloud computing system Active CN109120494B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811035964.4A CN109120494B (en) 2018-08-28 2018-08-28 The method of physical machine is accessed in cloud computing system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811035964.4A CN109120494B (en) 2018-08-28 2018-08-28 The method of physical machine is accessed in cloud computing system

Publications (2)

Publication Number Publication Date
CN109120494A CN109120494A (en) 2019-01-01
CN109120494B true CN109120494B (en) 2019-08-30

Family

ID=64858624

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811035964.4A Active CN109120494B (en) 2018-08-28 2018-08-28 The method of physical machine is accessed in cloud computing system

Country Status (1)

Country Link
CN (1) CN109120494B (en)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110912733B (en) * 2019-10-31 2022-11-04 北京浪潮数据技术有限公司 Bare computer topological relation determining method, system, equipment and computer medium
CN111064649B (en) * 2019-12-11 2022-02-15 锐捷网络股份有限公司 Method and device for realizing binding of layered ports, control equipment and storage medium
CN111147345B (en) * 2019-12-20 2022-01-07 航天信息股份有限公司 Cloud environment network isolation device and method and cloud system
CN111556110B (en) * 2020-04-21 2022-09-06 贵州新致普惠信息技术有限公司 Automatic adaptation method for different physical service networks of private cloud system
CN111614541B (en) * 2020-06-09 2022-02-18 浪潮云信息技术股份公司 Method for adding public cloud network physical host into VPC
CN111726251B (en) * 2020-06-12 2023-04-25 浪潮电子信息产业股份有限公司 Networking method, system and device for SDS (sodium dodecyl sulfate) storage domain in virtualized system
CN114070723B (en) * 2020-07-31 2023-11-03 中移(苏州)软件技术有限公司 Virtual network configuration method and system of bare metal server and intelligent network card
CN111934971B (en) * 2020-08-12 2022-04-05 杭州默安科技有限公司 Method and device for local network access from mapping service spanning three-layer network to multiple VLANs and multiple IPs
CN112256393B (en) * 2020-10-22 2022-04-12 上海云轴信息科技有限公司 Resource management method and equipment for bare metal server
CN112600903B (en) * 2020-12-09 2023-01-20 浪潮云信息技术股份公司 Elastic virtual network card migration method
CN112653575B (en) * 2020-12-11 2022-08-30 网宿科技股份有限公司 Network configuration method, controller and flow guiding system
CN112929206B (en) * 2021-01-22 2023-02-28 浪潮思科网络科技有限公司 Method and device for configuring cloud physical machine in cloud network environment
CN113285873B (en) * 2021-05-18 2022-03-11 广州锦行网络科技有限公司 Virtual-real mixed network system supporting virtual construction of real route
CN114448805A (en) * 2021-12-27 2022-05-06 天翼云科技有限公司 Virtual network equipment, virtual overlay network and configuration and message transmission method
CN114422296B (en) * 2022-01-05 2024-02-20 北京天一恩华科技股份有限公司 Multi-scene virtual network construction system, method, terminal and storage medium
CN115022248B (en) * 2022-05-25 2023-11-03 烽火通信科技股份有限公司 HQoS service access method and device
CN116132221B (en) * 2023-04-04 2023-08-25 鹏城实验室 Virtual-real interconnection method, device, equipment and storage medium of network target range platform
CN116132386B (en) * 2023-04-19 2023-06-27 安超云软件有限公司 Mixed workload drainage method and computer cluster

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104767649A (en) * 2015-04-30 2015-07-08 杭州华三通信技术有限公司 Bare metal server deployment method and device
CN106375176A (en) * 2016-08-29 2017-02-01 无锡华云数据技术服务有限公司 Method for accessing physical machine to cloud platform
CN107135134A (en) * 2017-03-29 2017-09-05 广东网金控股股份有限公司 Private network cut-in method and system based on virtual switch and SDN technologies

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8976661B2 (en) * 2012-01-11 2015-03-10 Nec Laboratories America, Inc. Network self-protection
CN114945007A (en) * 2012-02-22 2022-08-26 华为技术有限公司 Access method, device and system of user terminal equipment
CN102710432B (en) * 2012-04-27 2015-04-15 北京云杉世纪网络科技有限公司 System and method for managing virtual network in cloud computation data center
CN103716337B (en) * 2012-09-29 2016-12-21 中国银联股份有限公司 The method that system for cloud computing system and wherein data process
JP2017079399A (en) * 2015-10-20 2017-04-27 富士通株式会社 Transmission device and transmission system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104767649A (en) * 2015-04-30 2015-07-08 杭州华三通信技术有限公司 Bare metal server deployment method and device
CN106375176A (en) * 2016-08-29 2017-02-01 无锡华云数据技术服务有限公司 Method for accessing physical machine to cloud platform
CN107135134A (en) * 2017-03-29 2017-09-05 广东网金控股股份有限公司 Private network cut-in method and system based on virtual switch and SDN technologies

Also Published As

Publication number Publication date
CN109120494A (en) 2019-01-01

Similar Documents

Publication Publication Date Title
CN109120494B (en) The method of physical machine is accessed in cloud computing system
CN103997414B (en) Generate method and the network control unit of configuration information
CN102124449B (en) Method and system for low-overhead data transfer
CN106953788B (en) virtual network controller and control method
CN107078969B (en) Realize computer equipment, the system and method for load balancing
CN103051737B (en) The method and system of the network capabilities merged on interconnection architecture is provided
US10277423B2 (en) Distributed virtual gateway appliance
US9338097B2 (en) Method and system for load balancing at a data network
CN102577277B (en) Providing a logical aggregated point-to-point data link incorporating a multi-point link
CN102017544B (en) Method and system for offloading network processing
JP7231744B2 (en) Cloud computing data center system, gateway, server and packet processing method
WO2017113231A1 (en) Packet transmission method, device and system
WO2016034014A1 (en) Gateway control method, device and system based on virtual machine migration
CN109361764A (en) The interior service access method across VPC, device, equipment and readable storage medium storing program for executing
CN107947961A (en) Kubernetes Network Management System and method based on SDN
CN109660466A (en) A kind of more live load balance realizing methods towards cloud data center tenant
CN105554015A (en) Management network and method for multi-tenant container cloud computing system
CN104272668A (en) Layer-3 overlay gateways
CN110430114B (en) Virtual router and method for realizing interconnection between SDN network and traditional IP network
CN110838964B (en) Network docking system for virtual network and physical network
CN107483390A (en) A kind of cloud rendering web deployment subsystem, system and cloud rendering platform
CN105591820A (en) Container network management system and method with high scalability
CN105162674A (en) Method and network card for physical machine to access to virtual network
CN104660479A (en) Networking method and network system
CN102413190A (en) Network architecture based on cloud computing and virtual network management method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CP01 Change in the name or title of a patent holder

Address after: 214000, science and software park, Binhu District, Jiangsu, Wuxi 6

Patentee after: Huayun data holding group Co., Ltd

Address before: 214000, science and software park, Binhu District, Jiangsu, Wuxi 6

Patentee before: WUXI CHINAC DATA TECHNICAL SERVICE Co.,Ltd.

CP01 Change in the name or title of a patent holder