CN109218101B - Method and system for creating intelligent cooperative network group - Google Patents

Method and system for creating intelligent cooperative network group Download PDF

Info

Publication number
CN109218101B
CN109218101B CN201811125417.5A CN201811125417A CN109218101B CN 109218101 B CN109218101 B CN 109218101B CN 201811125417 A CN201811125417 A CN 201811125417A CN 109218101 B CN109218101 B CN 109218101B
Authority
CN
China
Prior art keywords
template
module
rule
virtual
requirements
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811125417.5A
Other languages
Chinese (zh)
Other versions
CN109218101A (en
Inventor
冯博昊
富建国
权伟
张宏科
李光磊
赵昕
周华春
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Jiaotong University
Original Assignee
Beijing Jiaotong University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Jiaotong University filed Critical Beijing Jiaotong University
Priority to CN201811125417.5A priority Critical patent/CN109218101B/en
Publication of CN109218101A publication Critical patent/CN109218101A/en
Application granted granted Critical
Publication of CN109218101B publication Critical patent/CN109218101B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/084Configuration by using pre-existing information, e.g. using templates or copying from other elements
    • H04L41/0843Configuration by using pre-existing information, e.g. using templates or copying from other elements based on generic templates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention provides a method and a system for creating an intelligent collaborative network clan, which comprise the following steps: carrying out standardization processing on different types of group creation requirements to obtain standard field description of the group creation requirements; according to the standard field description, carrying out template matching through a template library; converting the result of template matching into a specific rule; and according to the rule, calculating the host computer of the virtual component through a host computer selection mechanism, and issuing the rule to a downstream module. The method and the device realize complete mapping from the abstract requirements of users to actual deployment of network functions and forwarding of data traffic as required, greatly simplify manual operation, realize flexible and efficient deployment of network services, and further greatly improve the utilization rate of network resources and the service quality.

Description

Method and system for creating intelligent cooperative network group
Technical Field
The invention relates to the technical field of internet, in particular to a method and a system for creating an intelligent collaborative network clan.
Background
With the increasing volume of internet user groups, the network scale is rapidly enlarged, and the network functions are increasingly complex, so that the proportion of intermediate-devices (middle-boxes) bearing the network functions is higher and higher. At present, in an enterprise level network, the proportion of intermediate equipment and route forwarding equipment is basically equal. In order to meet the demand of the users that the users are diversified, operators have to deploy more high-performance network intermediate devices, which has the cost of greatly increasing investment and maintenance cost, and thus the development and implementation of new services are seriously hindered. Furthermore, in terms of quality of experience, user traffic typically passes through a series of intermediate devices to meet specific service requirements. The connection sequence of the existing network intermediate equipment is tightly coupled with the network topology, the addition, deletion and modification of the service functions are extremely complicated and error is easy to generate, and the final actual effect is poor due to the long transmission path.
In order to solve the above problems, the prior art includes an intelligent cooperative network, and proposes a "three-layer and two-domain" model, where the three layers are an intelligent service layer, a resource adaptation layer, and a network component layer, and the two domains are an entity domain and an action domain. In addition, as technologies such as Network Function Visualization (NFV) and Software Defined Network (SDN) become mature, research of similar technologies is also emphasized by relevant units at home and abroad, typically represented by Service Function Chaining (SFC), which aims to realize classification of data streams/packets/frames through a set sequence combination of a series of Service nodes (such as firewalls, IDS, and the like) to select a specific Service path, so as to provide multiple Network services for different users; the prior art also includes that Network Service Head (NSH) was proposed in 2017, and aims to complete flow-based forwarding control and Service by encapsulating user data in a signaling message recognizable by SFC devices. The disadvantages in the prior art are as follows: the SFC focuses only on data on-demand forwarding in the case of known network function combinations, and does not consider control plane design, i.e. how to generate a network function chain according to user requirements.
Disclosure of Invention
The embodiment of the invention provides a method and a system for establishing an intelligent cooperative network group, which are used for comprehensively improving the network operation efficiency and the user experience.
In order to achieve the purpose, the invention adopts the following technical scheme.
According to an aspect of the present invention, there is provided a method for intelligent collaborative network population creation, including:
carrying out standardization processing on different types of group creation requirements to obtain standard field description of the group creation requirements;
according to the standard field description of the group creation requirement, performing template matching through a template library;
converting the result of template matching into a specific rule;
according to the rule, calculating a host computer of the virtual component through a host computer selection mechanism;
and calling a downstream module, and issuing the rule to the downstream module.
Further, the normalizing the different types of the population creation requirements to obtain the standard field description of the population creation requirements includes:
the different types of the family group creation requirements comprise a graphical interface, a command line interface and a graphical/command line mixed interface;
the method comprises the steps of standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields, and obtaining standard field descriptions of the group creation requirements, including the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth.
Further, the standard field description according to the population creation requirement, performing template matching through a template library, includes:
the template library comprises a mirror image resource library, a virtual component template, a virtual ethnic group template, corresponding template indexes and template descriptions, wherein the template indexes and the template descriptions are key value pairs in one-to-one correspondence;
matching the standard field description of the family group creation requirement with the template description by keywords, if the template matching is successful, obtaining a template index according to a matching result, and calling related template information from the template library according to the template index; and if the template matching is failed, returning a default template index, and calling related template information from the template library according to the default template index.
Further, the converting the result of template matching into a specific rule includes:
decomposing, analyzing and combining each instruction in the template obtained by template matching, and integrating each instruction into various specific rules, wherein the rules comprise a virtual component creation rule, a classifier classification rule and a flow table forwarding rule.
Further, the calculating the host computer of the virtual component by the host computer selection mechanism according to the rule specifically includes:
calculating candidate host computers and mutual dependency relations according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirements of the ethnic group;
and calculating the host of the virtual component according to the load condition of the candidate host and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule.
According to another aspect of the present invention, there is provided an intelligent collaborative network ethnic group creation system, including: the system comprises a demand collection module, a template sensing module, a template conversion module and a rule command issuing module;
the demand collection module. The system comprises a standardized field description module, a standardized field description module and a standardized field description module, wherein the standardized field description module is used for standardizing different types of group creation requirements to obtain standard field description of the group creation requirements;
the template perception module is used for creating standard field description of the requirements according to the group obtained by the requirement collection module and performing template matching according to a template library;
the template conversion module is used for converting the template matching result of the template perception module into a specific rule and calculating a host computer of the virtual component through a host computer selection mechanism according to the rule;
the rule command issuing module is used for calling a downstream module and issuing the rule to the downstream module.
Further, the requirement collecting module is configured to receive externally input different types of population creation requirements, where the different types of population creation requirements include a graphical interface, a command line interface, and a graphical/command line mixing interface; the method comprises the steps of standardizing different types of group creation requirements to obtain standard field descriptions of the group creation requirements, wherein the standard field descriptions comprise the number of virtual components, the specification of the virtual components, a connection mode, specific configuration information, the whole group time delay and the bandwidth.
Further, the template sensing module comprises: the system comprises a feasibility verification module, a mirror image matching module, a virtual component template matching module, a virtual ethnic group template matching module and a template writing module;
the feasibility verification module is used for verifying whether the group establishment requirements are feasible or not, if yes, the system enters a mirror image matching module, and the different types of group establishment requirements comprise a graphical interface, a command line interface and a graphical/command line mixed interface; if not, returning the requirement;
the mirror image matching module is used for matching mirror images for each virtual component according to the function requirement of the family group creation requirement on each virtual component;
the virtual component template matching module is used for matching templates for each virtual component according to the performance requirement of each virtual component in the creation of the family group;
the virtual ethnic group template matching module is used for matching a virtual ethnic group template according to the requirement on the whole ethnic group in the ethnic group creation;
the template writing module is used for standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields to obtain standard field descriptions of the group creation requirements, wherein the standard field descriptions comprise the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth, and writing the standard field descriptions into specific fields of a matched template.
Further, the template transformation module comprises: the template correctness verifying module, the template analyzing module and the template calculating module;
the template correctness verifying module is used for verifying whether the template information written by the template sensing module is correct or not, if so, the template information enters the template analyzing module, and if not, the requirement is returned;
the template analysis module is used for decomposing, analyzing and combining all instructions in the template obtained by template matching, and integrating all the instructions into various specific rules, wherein the rules comprise virtual component creation rules, classifier classification rules and flow table forwarding rules.
The template calculation module is used for calculating candidate host computers according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirement of the ethnic group; and calculating the host of the virtual component according to the load condition of the candidate host and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule.
Further, the rule command issuing module is specifically configured to invoke a downstream computing manager to issue a virtual component creation rule; and calling a downstream network manager, and issuing a classifier classification rule and a flow table forwarding rule.
According to the technical scheme provided by the embodiment of the invention, the method and the system for establishing the intelligent cooperative network group have the advantages that the establishing method is more automatic and flexible, the operation steps of network management personnel and the calling cost of upper-layer protocols can be greatly simplified, and the appropriate network group can be adapted to high-dynamic network services.
Additional aspects and advantages of the invention will be set forth in part in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic flowchart illustrating a procedure of creating an intelligent collaborative network population according to embodiment 1 of the present invention;
fig. 2 is a schematic diagram of an index system for creating a smart collaboration network population according to embodiment 1 of the present invention;
fig. 3 is a system structure diagram of creating an intelligent collaborative network population according to embodiment 2 of the present invention;
FIG. 4 is a block diagram of a population creation request collection according to embodiment 3 of the present invention;
FIG. 5 is a block diagram of family template perception according to embodiment 3 of the present invention;
FIG. 6 is a block diagram of population template transformation calculations according to example 3 of the present invention;
fig. 7 is a flowchart of a method for creating an intelligent collaborative network population according to embodiment 3 of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the accompanying drawings are illustrative only for the purpose of explaining the present invention, and are not to be construed as limiting the present invention.
As used herein, the singular forms "a", "an", "the" and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms "comprises" and/or "comprising," when used in this specification, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof. It will be understood that when an element is referred to as being "connected" or "coupled" to another element, it can be directly connected or coupled to the other element or intervening elements may also be present. Further, "connected" or "coupled" as used herein may include wirelessly connected or coupled. As used herein, the term "and/or" includes any and all combinations of one or more of the associated listed items.
It will be understood by those skilled in the art that, unless otherwise defined, all terms (including technical and scientific terms) used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. It will be further understood that terms, such as those defined in commonly used dictionaries, should be interpreted as having a meaning that is consistent with their meaning in the context of the prior art and will not be interpreted in an idealized or overly formal sense unless expressly so defined herein.
For the convenience of understanding of the embodiments of the present invention, the following detailed description is given as an example with reference to the accompanying drawings, and the embodiments are not to be construed as limiting the embodiments of the present invention.
The method and the system for establishing the intelligent cooperative network clan in the embodiment of the invention aim to comprehensively improve the network operation efficiency and the user experience through the flexible combination of network functions and the on-demand forwarding of data streams.
Example 1
Fig. 1 is a schematic flowchart of a step of creating an intelligent collaborative network population according to embodiment 1 of the present invention, fig. 2 is a schematic diagram of an index system for creating an intelligent collaborative network population according to embodiment 1 of the present invention, and referring to fig. 1 and fig. 2, the method includes:
s1, carrying out standardization processing on different types of group creation requirements to obtain standard field description of the group creation requirements;
s2, according to the standard field description of the group creation requirement, carrying out template matching through a template library;
s3, converting the result of template matching into a specific rule;
s4, according to the rule, calculating the host computer of the virtual component through the host computer selection mechanism;
s5 calls the downstream module and issues the rule to the downstream module.
The creation of the family group is a key concept of a resource adaptation layer, is an important idea embodiment of the intelligent cooperative network, and essentially realizes flexible, easily-retractable and controllable network service deployment by using a virtualization technology through free combination and flexible configuration of network functions and policy-based on-demand forwarding of data traffic.
Preferably, the different forms of population creation requirements include a graphical interface, a command line interface, and a graphics/command line hybrid interface.
Preferably, the different types of population creation requirements are standardized to form standard field descriptions including the number of virtual components, the specifications of the virtual components, the connection mode, specific configuration information, the overall delay and bandwidth of the population.
Preferably, the template library includes a mirror resource library, a virtual component template, a virtual ethnic group template, and a corresponding template index and template description. Wherein, the template index and the template description are key value pairs corresponding to each other one by one.
Further, the specific process of template matching includes:
carrying out keyword matching on the standard field description and the template description, carrying out keyword matching on the standard field description required by the creation of the ethnic group and the template description, if the template matching is successful, obtaining a template index according to a matching result, and calling related template information from the template library according to the template index; and if the template matching is failed, returning a default template index, and calling related template information from the template library according to the default template index.
Preferably, the specific rule includes: and converting the template matching result into a specific virtual component creating rule, a classifier classification rule and a flow table forwarding rule. Decomposing, analyzing and combining each instruction in the template obtained by template matching, and integrating each instruction into various specific rules, wherein the rules comprise a virtual component creation rule, a classifier classification rule and a flow table forwarding rule.
Further, according to the rule, calculating the host computer of the virtual component through the host computer selection mechanism specifically includes:
calculating candidate host computers according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirement of the swarm;
and calculating a proper host according to the load condition of the candidate host and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule.
Example 2
Fig. 3 is a schematic diagram of a system for creating an intelligent collaborative network population according to embodiment 2 of the present invention, and referring to fig. 3, the system includes: the system comprises a demand collection module, a template perception module, a template conversion module and a rule command issuing module.
The requirement collection module is used for carrying out standardization processing on different types of group creation requirements to obtain standard field description of the group creation requirements.
Preferably, the requirement collecting module is used for receiving externally input different forms of population creation requirements, and the different forms of population creation requirements comprise a graphical interface, a command line interface and a graphical/command line mixing interface; the method comprises the steps of standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields, and obtaining standard field descriptions of the group creation requirements, including the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth.
And the template perception module is used for matching templates through a template library according to the standard field description obtained by the requirement collection module.
Preferably, the template aware module comprises: the system comprises a feasibility verification module, a mirror image matching module, a virtual component template matching module, a virtual ethnic group template matching module and a template writing module;
the feasibility verification module is used for verifying whether the ethnic group creation requirement is feasible or not, and if the ethnic group creation requirement is feasible, the ethnic group creation requirement enters the mirror image matching module. If not, returning the requirement;
the mirror image matching module is used for creating the functional requirements for each virtual component according to the family group and matching mirror images for each virtual component;
the virtual component template matching module is used for matching templates for each virtual component according to the performance requirement of each virtual component in the creation of the family group;
the virtual ethnic group template matching module is used for matching a virtual ethnic group template according to the requirement on the whole ethnic group in the ethnic group creation;
the template writing module is used for standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields to obtain standard field descriptions of the group creation requirements, wherein the standard field descriptions comprise the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth, and writing the standard field descriptions into specific fields of a matched template.
The template conversion module is used for converting the template matching result of the template perception module into a specific rule, calculating a host computer of the virtual component through a host computer selection mechanism according to the rule, and writing the rule into a virtual component creation rule;
preferably, the template conversion module comprises: the template correctness verifying module, the template analyzing module and the template calculating module.
The template correctness verifying module is used for verifying whether the template information written by the template sensing module is correct or not, if so, the template information enters the template analyzing module, and if not, the requirement is returned;
the template analysis module is used for decomposing, analyzing and combining all instructions in the template obtained by template matching, and integrating all the instructions into various specific rules, wherein the rules comprise virtual component creation rules, classifier classification rules and flow table forwarding rules;
the template calculation module is used for calculating candidate host computers according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirement of the ethnic group; and calculating the host of the virtual component according to the load condition of the candidate host and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule.
The rule command issuing module is used for calling a downstream system and issuing the virtual component creating rule, the classifier classification rule and the flow table forwarding rule. Specifically, a downstream computing manager is called to issue a virtual component creation rule, and a downstream network manager is called to issue a classifier classification rule and a flow table forwarding rule.
Example 3
FIG. 4 is a block diagram of a population creation request collection according to embodiment 2 of the present invention; referring to FIG. 4, the requirements collection module provides a standard API for upper layer protocol calls. Meanwhile, the module also provides a simplified graphical interface and a command line interface for network management personnel to use. FIG. 5 is a diagram of the family template perception according to embodiment 2 of the present invention; referring to fig. 5, the template sensing module establishes a mirror resource library, a virtual component template and a virtual population template in advance, wherein the mirror resource library is a set of a series of mirrors for implementing various functions. The common virtual component templates are descriptions of key fields of components adapted to different services, and tables 1 to 5 list the included keywords of several common virtual component templates as examples. The vm is an independent virtual basic setting manager, yaml is a data description language, the device has the characteristics of high readability and easiness in reading by human beings, and json is a lightweight data exchange format, is easy to read and write, is also easy to analyze and generate by a machine, and can effectively improve the network transmission efficiency.
TABLE 1 basic virtual Components template
CPU Memory device Hard disk Mirror image Net gape 1 Net mouth 2
1 512M 1024M Fire wall 500Mb/s 500Mb/s
Table 2 configuration policy virtual component templates
Figure BDA0001812295130000111
TABLE 3 reusable virtual component templates
Figure BDA0001812295130000112
TABLE 4 Multi-vim virtual component template
Figure BDA0001812295130000121
TABLE 5 scalable virtual component template
Figure BDA0001812295130000122
Similarly, the virtual population templates are the key descriptions of the populations that accommodate different services, and tables 6-8 are the key descriptions of three commonly used virtual population templates listed.
TABLE 6 basic virtual population templates
Figure BDA0001812295130000123
Table 7 migratable virtual population templates
Figure BDA0001812295130000124
Figure BDA0001812295130000131
TABLE 8 destructible virtual population templates
Figure BDA0001812295130000132
The description index file marks the web service to which each template can be adapted, and may use the template name as an index for the template, illustratively in a specific format such as tables 9-10.
Table 9 component template description index
Template index Description of the template
Basic virtual assembly template Normal, default
Configuring policy virtual component templates Specific configuration policies, e.g. firewall filter rules
Reusable virtual component template Simple, lightweight service
Multi-vim virtual component template Complexity of
Scalable virtual componentForm panel High dynamic state
Table 10 family template description index
Figure BDA0001812295130000133
Figure BDA0001812295130000141
Wherein, each template and description index can be stored by using files in yaml or json format. Then, verifying whether the requirement is reasonable and feasible, (mainly verifying whether the performance requirement of the group is too high) and returning the requirement if the requirement is not feasible; if the template is feasible, analyzing the requirements, and respectively matching the mirror image requirements, the component requirements and the family group requirements with the descriptions of the corresponding templates. And finally, obtaining the matching result of each mirror image, each component template and each family template, and writing the required information into the templates after converting the required information.
Fig. 6 is a structural diagram of population template conversion calculation in embodiment 2 of the present invention, and referring to fig. 6, it is first verified whether template information written by the template sensing module is correct, and if not, a request is returned, and if correct, the template analysis module is entered to analyze the template, including decomposing, analyzing, and merging each instruction of the template, and integrate each instruction into various specific rules, including virtual component creation rules, classifier classification rules, and flow table forwarding rules; then calculating host computers of all the virtual components, and writing the host computers into virtual component creation rules; and finally, issuing the rules to each corresponding module, and creating virtual components, flow table entries and classification rules of the entity to form a network ethnic group. After a network population is successfully created, it needs to be monitored and managed in real time to ensure efficient, stable and reasonable operation.
Fig. 7 is a flowchart of a method for creating an intelligent collaborative network population according to embodiment 2 of the present invention, and referring to fig. 7, the specific process is as follows:
the S1 network manager needs to create a population that can implement basic security functions. Firstly, logging in a graphical interface, dragging three virtual function components, namely a firewall, a deep packet detection system and an intrusion detection system, then connecting the three virtual function components together according to the sequence, finally inputting the detection rule of each function component and the bandwidth requirement of the whole ethnic group of 400Mb, the time delay requirement of 0.8s, and marking the ethnic group as a temporary ethnic group. After the network administrator submits the population creation requirements, the requirements are received by the requirements collection module and the respective field descriptions are normalized.
The S2 template perception module matches the most suitable mirror image for the three virtual components according to the functions born by the three virtual components, the matching result is Firewall, DPI and IDS, and because there is no specific virtual component specification requirement, the whole bandwidth of the family group is lower than the network port bandwidth of the conventional component, and the time delay is lower than the time delay between the conventional components fed back by the current test, each virtual component uses the conventional specification, namely the CPU core number is 1, the memory is 512M, the hard disk is 1024M, the network port 1 bandwidth is 500Mb/S, and the network port 2 bandwidth is 500 Mb/S. And according to the configuration information, the firewall component and the intrusion detection system component use a configuration strategy virtual component template, and the deep packet detection component uses a conventional virtual component template. The population is labeled as a transient population, the population template is matched with a destructible virtual population template, the population life cycle uses a default of 20 days, and finally the relevant information is written into the template.
And the S3 template conversion module analyzes the template information, analyzes the virtual component creating rule through the virtual component template and the virtual component information, and analyzes the classification rule and the flow table rule through the configuration information and the virtual ethnic group template.
S4 calculates the host hosts of the three virtual components according to the overall latency bandwidth requirement of the virtual population and the monitoring feedback information of the whole system.
S5 sends down related rules to the downstream module to complete the creation of the group.
In summary, the method and system for creating an intelligent collaborative network population according to the embodiments of the present invention implement a complete mapping from a user abstract requirement to actual deployment of network functions and forwarding of data traffic as required, greatly simplify manual operations, and implement flexible and efficient deployment of network services, thereby greatly improving network resource utilization and service quality.
Those of ordinary skill in the art will understand that: the figures are merely schematic representations of one embodiment, and the blocks or flow diagrams in the figures are not necessarily required to practice the present invention.
From the above description of the embodiments, it is clear to those skilled in the art that the present invention can be implemented by software plus necessary general hardware platform. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which may be stored in a storage medium, such as ROM/RAM, magnetic disk, optical disk, etc., and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the method according to the embodiments or some parts of the embodiments.
The above description is only for the preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any changes or substitutions that can be easily conceived by those skilled in the art within the technical scope of the present invention are included in the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (4)

1. A method for intelligent collaborative network population creation, comprising:
standardizing different types of ethnic group creation requirements to obtain standard field descriptions of the ethnic group creation requirements, wherein the ethnic group creation requirements comprise standard field descriptions of the number of virtual components, the specifications of the virtual components, the connection mode, specific configuration information, the overall ethnic group delay and the bandwidth;
according to the standard field description of the group creation requirement, performing template matching through a template library;
converting the result of template matching into a specific rule;
according to the rule, calculating a host computer of the virtual component through a host computer selection mechanism;
calling a downstream module, and issuing the rule to the downstream module;
the standard field description according to the creation requirement of the population is subjected to template matching through a template library, and the template matching comprises the following steps:
the template library comprises a mirror image resource library, a virtual component template, a virtual ethnic group template, corresponding template indexes and template descriptions, wherein the template indexes and the template descriptions are key value pairs in one-to-one correspondence;
matching the standard field description of the family group creation requirement with the template description by keywords, if the template matching is successful, obtaining a template index according to a matching result, and calling related template information from the template library according to the template index; if the template matching is failed, returning a default template index, and calling related template information from the template library according to the default template index;
the converting of the result of the template matching into a specific rule comprises the following steps:
decomposing, analyzing and combining each instruction in the template obtained by template matching, and integrating each instruction into various specific rules, wherein the rules comprise a virtual component creation rule, a classifier classification rule and a flow table forwarding rule;
the calculating the host computer of the virtual component through the host computer selection mechanism according to the rule specifically includes:
calculating candidate host computers and mutual dependency relations according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirements of the ethnic group;
and calculating the host computer of the virtual component according to the load condition of the candidate host computer and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule, and writing the host computer of the virtual component into the virtual component creating rule.
2. The method of claim 1, wherein the normalizing the different types of population creation requirements to obtain the standard field description of the population creation requirements comprises:
the different types of the family group creation requirements comprise a graphical interface, a command line interface and a graphical/command line mixed interface;
the method comprises the steps of standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields, and obtaining standard field descriptions of the group creation requirements, including the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth.
3. An intelligent collaborative network ethnic group creation system, comprising: the system comprises a demand collection module, a template sensing module, a template conversion module and a rule command issuing module;
the requirement collection module is used for carrying out standardized processing on different types of group creation requirements to obtain standard field descriptions of the group creation requirements, wherein the group creation requirements comprise standard field descriptions of the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group time delay and the bandwidth;
the template perception module is used for creating standard field description of the requirements according to the group obtained by the requirement collection module and performing template matching according to a template library;
the template conversion module is used for converting the template matching result of the template perception module into a specific rule and calculating a host computer of the virtual component through a host computer selection mechanism according to the rule;
the rule command issuing module is used for calling a downstream module and issuing the rule to the downstream module;
the template perception module comprises: the system comprises a feasibility verification module, a mirror image matching module, a virtual component template matching module, a virtual ethnic group template matching module and a template writing module;
the feasibility verification module is used for verifying whether the group establishment requirements are feasible or not, if yes, the system enters a mirror image matching module, and the different types of group establishment requirements comprise a graphical interface, a command line interface and a graphical/command line mixed interface; if not, returning the requirement;
the mirror image matching module is used for matching mirror images for each virtual component according to the function requirement of the family group creation requirement on each virtual component;
the virtual component template matching module is used for matching templates for each virtual component according to the performance requirement of each virtual component in the creation of the family group;
the virtual ethnic group template matching module is used for matching a virtual ethnic group template according to the requirement on the whole ethnic group in the ethnic group creation;
the template writing module is used for standardizing different types of group creation requirements, writing information of the various group creation requirements into standardized fields to obtain standard field descriptions of the group creation requirements, including the number of virtual components, the specification of the virtual components, the connection mode, specific configuration information, the whole group delay and the bandwidth, and writing the standard field descriptions into specific fields of a matched template;
the template conversion module comprises: the template correctness verifying module, the template analyzing module and the template calculating module;
the template correctness verifying module is used for verifying whether the template information written by the template sensing module is correct or not, if so, the template information enters the template analyzing module, and if not, the requirement is returned;
the template analysis module is used for decomposing, analyzing and combining all instructions in the template obtained by template matching, and integrating all the instructions into various specific rules, wherein the rules comprise virtual component creation rules, classifier classification rules and flow table forwarding rules.
The template calculation module is used for calculating candidate host computers according to time delay bandwidth monitoring information among all physical host computers in the whole system, time delay bandwidth monitoring information among all virtual components in the physical host computers and the whole bandwidth time delay requirement of the ethnic group; calculating the host computer of the virtual component according to the load condition of the candidate host computer and the virtual component creating rule, the classifier classification rule and the flow table forwarding rule, and writing the host computer of the virtual component into the virtual component creating rule;
the rule command issuing module is specifically used for calling a downstream computing manager and issuing a virtual component creation rule; and calling a downstream network manager, and issuing a classifier classification rule and a flow table forwarding rule.
4. The system of claim 3, wherein:
the requirement collection module is used for receiving externally input different forms of ethnic group creation requirements, wherein the different forms of ethnic group creation requirements comprise a graphical interface, a command line interface and a graphical/command line mixed interface; the method comprises the steps of standardizing different types of group creation requirements to obtain standard field descriptions of the group creation requirements, wherein the standard field descriptions comprise the number of virtual components, the specification of the virtual components, a connection mode, specific configuration information, the whole group time delay and the bandwidth.
CN201811125417.5A 2018-09-26 2018-09-26 Method and system for creating intelligent cooperative network group Active CN109218101B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811125417.5A CN109218101B (en) 2018-09-26 2018-09-26 Method and system for creating intelligent cooperative network group

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811125417.5A CN109218101B (en) 2018-09-26 2018-09-26 Method and system for creating intelligent cooperative network group

Publications (2)

Publication Number Publication Date
CN109218101A CN109218101A (en) 2019-01-15
CN109218101B true CN109218101B (en) 2020-07-17

Family

ID=64981610

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811125417.5A Active CN109218101B (en) 2018-09-26 2018-09-26 Method and system for creating intelligent cooperative network group

Country Status (1)

Country Link
CN (1) CN109218101B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110597633A (en) * 2019-09-12 2019-12-20 北京交通大学 Method and system for intelligent cooperative network group elastic expansion
CN113535943A (en) * 2020-04-14 2021-10-22 阿里巴巴集团控股有限公司 Medical record classification method and device and data record classification method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103067501A (en) * 2012-12-28 2013-04-24 广州杰赛科技股份有限公司 Large data processing method of PaaS platform
CN103677781A (en) * 2012-09-21 2014-03-26 上海斐讯数据通信技术有限公司 Graphical user interface and establishing method thereof for automated testing
CN104506635A (en) * 2014-12-26 2015-04-08 成都致云科技有限公司 Fast and efficient cloud mainframe creating and matching method and system
CN104734892A (en) * 2015-04-02 2015-06-24 江苏物联网研究发展中心 Automatic deployment system for big data processing system Hadoop on cloud platform OpenStack

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103677781A (en) * 2012-09-21 2014-03-26 上海斐讯数据通信技术有限公司 Graphical user interface and establishing method thereof for automated testing
CN103067501A (en) * 2012-12-28 2013-04-24 广州杰赛科技股份有限公司 Large data processing method of PaaS platform
CN104506635A (en) * 2014-12-26 2015-04-08 成都致云科技有限公司 Fast and efficient cloud mainframe creating and matching method and system
CN104734892A (en) * 2015-04-02 2015-06-24 江苏物联网研究发展中心 Automatic deployment system for big data processing system Hadoop on cloud platform OpenStack

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
KVM安装和集群部署指南;NetApp https://library.netapp.com/ecm/ecm_download_file/ECMLP283;《NetApp》;20171130;34-60 *
一种面向智慧协同网络的自适配路由策略研究;张明川等;《电子学报》;20150731;1250-1256 *

Also Published As

Publication number Publication date
CN109218101A (en) 2019-01-15

Similar Documents

Publication Publication Date Title
US11637762B2 (en) MDL-based clustering for dependency mapping
US11153152B2 (en) System and methods to validate issue detection and classification in a network assurance system
CN110351257B (en) Distributed Internet of things security access system
US8667556B2 (en) Method and apparatus for building and managing policies
CN110521170A (en) The static network analysis of strategies of network
CN101453424B (en) Network information resource access control method and system
WO2010139167A1 (en) Expert support application system platform for government affair and business affair decision-making and its construction method
CN109218101B (en) Method and system for creating intelligent cooperative network group
CN107493266A (en) Communication system, the method and device of built-in self-help terminal
WO2022151815A1 (en) Method and apparatus for determining security state of terminal device
US20180349983A9 (en) A system for periodically updating backings for resource requests
CN106656792A (en) BGP (Border Gateway Protocol) routing trusted verification method based on SDN (Software Defined Network) architecture
CN116415203A (en) Government information intelligent fusion system and method based on big data
CN103825894B (en) A kind of application method of the multi-screen application system based on browser B/S structures
CN209086928U (en) A kind of deployment architecture of database audit
Yao et al. A benchmark for federated hetero-task learning
KR20220003864A (en) System and method for design task of architectural decoration
CN110311826A (en) Method for configuring network equipment and device
CN113886061A (en) Industry thing networking operation and maintenance platform
CN103338117B (en) The management method of a kind of virtual switch, equipment and system
CN101958816A (en) High speed core switching equipment testing system and testing method thereof
de Aguiar Monteiro et al. A Survey on Microservice Security–Trends in Architecture Privacy and Standardization on Cloud Computing Environments
Ren et al. An openvswitch extension for sdn traceback
Ou Research on university education management system based on big data
CN106656965A (en) General client side management system based on distributed cloud computing

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant