CN109379268A - Creation method, device and the server of Virtual Private Network - Google Patents

Creation method, device and the server of Virtual Private Network Download PDF

Info

Publication number
CN109379268A
CN109379268A CN201811432278.0A CN201811432278A CN109379268A CN 109379268 A CN109379268 A CN 109379268A CN 201811432278 A CN201811432278 A CN 201811432278A CN 109379268 A CN109379268 A CN 109379268A
Authority
CN
China
Prior art keywords
network
vlan
node elements
corresponding node
layer virtual
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811432278.0A
Other languages
Chinese (zh)
Other versions
CN109379268B (en
Inventor
刘文玉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd Hefei Branch
Original Assignee
New H3C Technologies Co Ltd Hefei Branch
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd Hefei Branch filed Critical New H3C Technologies Co Ltd Hefei Branch
Priority to CN201811432278.0A priority Critical patent/CN109379268B/en
Publication of CN109379268A publication Critical patent/CN109379268A/en
Application granted granted Critical
Publication of CN109379268B publication Critical patent/CN109379268B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0876Aspects of the degree of configuration automation
    • H04L41/0886Fully automatic configuration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/12Discovery or management of network topologies

Abstract

Present disclose provides a kind of creation method of Virtual Private Network, device and servers;Wherein, this method comprises: obtaining the information of virtual local area network of user setting if there is two-layer virtual private network and the corresponding node elements of three-layer virtual special network with dependence in network topology template to be created;VLAN ID is determined further according to the information of virtual local area network and creates above-mentioned two-layer virtual private network and the corresponding node elements of three-layer virtual special network.The disclosure is before creating the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network with dependence, set required information of virtual local area network, it no longer needs to during creation by staff's manual queries, enable the combinational network of two-layer virtual private network and three-layer virtual special network creation process to automate progress, and then is advantageously implemented and network topology is freely defined according to business scenario.

Description

Creation method, device and the server of Virtual Private Network
Technical field
This disclosure relates to cloud application topology orchestration technology field, more particularly, to a kind of creation side of Virtual Private Network Method, device and server.
Background technique
Under cloud computing environment, the number of services and type that cloud resource is undertaken are increasing, and business processing also becomes It becomes increasingly complex.The operation of one business may need the mutually coordinated cooperation of multiple hardwares resource and software resource.For each The corresponding operation resource of business arrangement and the process that resource coordination is carried out between multinomial business, are properly termed as cloud layout.
The process of above-mentioned cloud layout can pass through NFV (Network Function Virtualization, network function Virtualization) composer realization;The NFV composer realizes choreography definitions network topology template.The network topology template can by with Family is obtained using above-mentioned NFV composer layout.It is generally comprised in the programmed network topology template of user hard required for business Part resource and software resource;In network topology template, these resources are embodied with different node elements, the operation between each resource Relationship, correspondence etc., which pass through the connection between node elements, to be indicated.
After above-mentioned network topology template layout is good, needs to create each node elements in the template, create Configuration information after creation is issued in the network equipment by Cheng Houzai, can just obtain all kinds of resources needed for operation business.Due to Often there is certain operation relationship or correspondence between each node elements in template, when creating present node element, Often need to obtain the configuration information of the node elements after the completion of having created in template.Such as certain special business scenarios, need to compile It arranges and creates L2VPN (Layer 2Virtual Private Networks, two-layer virtual private network) and L3VPN (Layer 3Virtual Private Networks, three-layer virtual special network) combinational network, existing L2VPN and L3VPN combinational network In the creation mode of network, need first to create three-layer virtual special network, then manual queries obtain three-layer virtual special network wound VLAN after building, and then two-layer virtual private network is created at the VLAN, so that the creation process of combinational network is difficult to automatically Change and realizes.
Summary of the invention
In view of this, the creation method, device and server for being designed to provide a kind of Virtual Private Network of the disclosure, So that the creation process of the combinational network of two-layer virtual private network and three-layer virtual special network can automate realization.
To achieve the goals above, the disclosure the technical solution adopted is as follows:
In a first aspect, method is applied to operation NFV layout present disclose provides a kind of creation method of Virtual Private Network The equipment of device;This method comprises: searching network topology template to be created when receiving the network creation instruction of user's triggering In whether there is the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network, and two There is dependence between the corresponding node elements of layer virtual private network and the corresponding node elements of three-layer virtual special network;Such as Fruit exists, and obtains the corresponding node elements of two-layer virtual private network and the corresponding section of three-layer virtual special network of user setting Information of virtual local area network needed for point element;The corresponding node member of two-layer virtual private network is determined according to information of virtual local area network The VLAN ID of element node elements corresponding with three-layer virtual special network;It is dedicated according to determining VLAN ID creation two-layer virtual The corresponding node elements of network and the corresponding node elements of three-layer virtual special network, obtain including two-layer virtual private network With the Virtual Private Network of three-layer virtual special network.
Second aspect, present disclose provides a kind of creating device of Virtual Private Network, device is set to operation NFV layout The equipment of device;The device includes: node elements searching module, for looking into when receiving the network creation instruction of user's triggering It looks for dedicated with the presence or absence of the corresponding node elements of two-layer virtual private network and L 3 virtual in network topology template to be created The corresponding node elements of network, and the corresponding node elements of two-layer virtual private network and the corresponding section of three-layer virtual special network There is dependence between point element;Data obtaining module, for if it does, obtaining the two-layer virtual private network of user setting Information of virtual local area network needed for corresponding node elements and the corresponding node elements of three-layer virtual special network;VLAN ID is true Cover half block, for determining that the corresponding node elements of two-layer virtual private network and L 3 virtual are dedicated according to information of virtual local area network The VLAN ID of the corresponding node elements of network;Network creation module, for special according to determining VLAN ID creation two-layer virtual With the corresponding node elements of network and the corresponding node elements of three-layer virtual special network, obtain including Layer 2 virtual private network The Virtual Private Network of network and three-layer virtual special network.
The third aspect, it is machine readable present disclose provides a kind of server, including processor and machine readable storage medium Storage medium is stored with the machine-executable instruction that can be executed by processor, and processor executes machine-executable instruction to realize The creation method of above-mentioned Virtual Private Network.
Fourth aspect, present disclose provides a kind of machine readable storage medium, machine readable storage medium is stored with machine Executable instruction, for machine-executable instruction when being called and being executed by processor, machine-executable instruction promotes processor to realize The creation method of above-mentioned Virtual Private Network.
Creation method, device, server and the machine readable storage medium of above-mentioned Virtual Private Network, if to be created Existing in network topology template has the corresponding node elements of two-layer virtual private network of dependence and L 3 virtual dedicated The corresponding node elements of network, then obtain the information of virtual local area network of user setting;It is determined further according to the information of virtual local area network VLAN ID simultaneously creates the corresponding node elements of above-mentioned two-layer virtual private network and the corresponding node member of three-layer virtual special network Element;Which has the corresponding node elements of two-layer virtual private network and three-layer virtual special network of dependence in creation Before corresponding node elements, required information of virtual local area network is set, is no longer needed to during creation by staff's hand Dynamic inquiry, enable the combinational network of two-layer virtual private network and three-layer virtual special network creation process automate into Row, and then be advantageously implemented and network topology is freely defined according to business scenario.
Further, the creation process of the combinational network of two-layer virtual private network and three-layer virtual special network can be certainly Dynamicization carries out the cost for reducing manual operation maintenance, while user is without being concerned about that two-layer virtual private network and L 3 virtual are special With the creation of network sequence, also can easily the combinational network of layout two-layer virtual private network and three-layer virtual special network or Other relevant network construction forms.
Other feature and advantage of the disclosure will illustrate in the following description, alternatively, Partial Feature and advantage can be with Deduce from specification or unambiguously determine, or by implement the disclosure above-mentioned technology it can be learnt that.
To enable the above objects, features and advantages of the present invention to be clearer and more comprehensible, better embodiment is cited below particularly, and match Appended attached drawing is closed, is described in detail below.
Detailed description of the invention
It, below will be to specific in order to illustrate more clearly of disclosure specific embodiment or technical solution in the prior art Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below Attached drawing is some embodiments of the disclosure, for those of ordinary skill in the art, before not making the creative labor It puts, is also possible to obtain other drawings based on these drawings.
Fig. 1 is that one kind that disclosure embodiment provides is related to two-layer virtual private network and three-layer virtual special network group Close the network structure of network;
Fig. 2 is a kind of flow chart of the creation method for Virtual Private Network that disclosure embodiment provides;
Fig. 3 is the flow chart of the creation method for another Virtual Private Network that disclosure embodiment provides;
Fig. 4 is the flow chart of the creation method for another Virtual Private Network that disclosure embodiment provides;
Fig. 5 is a kind of structural schematic diagram of the creating device for Virtual Private Network that disclosure embodiment provides;
Fig. 6 is a kind of structural schematic diagram for server that disclosure embodiment provides.
Specific embodiment
To keep the purposes, technical schemes and advantages of disclosure embodiment clearer, below in conjunction with attached drawing to this public affairs The technical solution opened is clearly and completely described, it is clear that and described embodiment is a part of embodiment of the disclosure, Rather than whole embodiment.Based on the embodiment in the disclosure, those of ordinary skill in the art are not making creation Property labour under the premise of every other embodiment obtained, belong to the disclosure protection range.
In order to make it easy to understand, present embodiment provides first, one kind being related to two-layer virtual private network and L 3 virtual is dedicated The network structure of combination of network network;As shown in figure 1 with two-layer virtual private network and three-layer virtual special network combinational network packet Containing being illustrated for two two-layer virtual private networks and a three-layer virtual special network.Two two-layer virtual private networks With a three-layer virtual special network before forming combinational network, may not have correspondence each other, or need Internetwork data transmission is just able to achieve by complex path.Business demand or networking by certain particular service scenes Demand needs above-mentioned two-layer virtual private network and three-layer virtual special network forming combinational network.
During forming combinational network, it is necessary first to which user passes through NFV layout using the equipment of operation NFV composer Device designs relevant network topology template, includes above-mentioned two two-layer virtual private network and one three in the network topology template The configuration information of the corresponding node elements of layer virtual private network and each node elements.Network topology stencil design is complete Cheng Hou, then created by NFV composer to each node elements in the template;After the completion of each node elements creation, NFV layout Configuration information after device is created node elements by corresponding interface is synchronized to two-layer virtual private network and L 3 virtual is special With in the network equipment of the corresponding controller of network and each network of controller connection, which can be net Network edge router, customer terminal equipment (referred to as cpe device), core router etc.;After synchronizing information, between each network The network equipment is provided with direct communication connection relationship, and then obtains above-mentioned two two-layer virtual private network and three layers of void The combinational network of quasi- dedicated network.
The process of above-mentioned node elements creation is referred to as node elements instantiation process, it is understood that for according to each The process of the configuration information distribution Internet resources of a node elements.
In continuing to refer to figure 1, after combinational network is established, the network equipment (such as edge road of two two-layer virtual private networks By device) it is communicated to connect respectively with the network equipment of three-layer virtual special network (such as edge router), to realize two two layers The fusion of Virtual Private Network and a three-layer virtual special network, i.e., above-mentioned two-layer virtual private network and L 3 virtual are dedicated The combinational network of network.
In general, two-layer virtual private network and three-layer virtual special network need to create in same VLAN (Virtual Local Area Network, virtual LAN) under be just able to achieve network interworking.Therefore, the wound of existing Virtual Private Network It during building, is influenced by the routing mode difference of two-layer virtual private network and three-layer virtual special network, accesses three layers of void The two-layer virtual private network equipment of quasi- dedicated network needs to obtain virtual LAN belonging to three-layer virtual special network in advance VLAN ID, and the VLAN ID need three-layer virtual special network create after the completion of could obtain;Therefore, above-mentioned in order to realize The combinational network of two-layer virtual private network and three-layer virtual special network, needs first to create three-layer virtual special network, then from Manual queries obtain VLAN ID in configuration information after three-layer virtual special network creation, and then corresponding in the VLAN ID again VLAN under continue create two-layer virtual private network.Which needs engineer's manual queries parameter, so that combinational network Creation process is difficult to automate realization.
Based on the above issues, disclosure embodiment provides the creation method, device and server of Virtual Private Network.
Disclosure embodiment provides a kind of creation method of Virtual Private Network first;This method is applied to operation NFV The equipment of composer.The NFV composer is referred to as NFVO (Network Function Virtualization Orchestrator, network function virtualize composer);User in the process can using NFV composer planned network topology template With use TOSCA software, naturally it is also possible to using other software carry out layout, the present embodiment to NVF layout implement body how into Row network topology template layout is simultaneously not limited.A kind of process of the creation method of Virtual Private Network shown in Figure 2 Figure;This method comprises the following steps:
Step S202 is searched in network topology template to be created when receiving the network creation instruction of user's triggering With the presence or absence of the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network, and this two There is dependence between the corresponding node elements of layer virtual private network and the corresponding node elements of the three-layer virtual special network;
Wherein, the node elements of network topology template generally include nodename and configuration information.If current business needs The combinational network for realizing two-layer virtual private network and three-layer virtual special network can occur two in network topology template simultaneously The corresponding node elements of layer virtual private network and the corresponding node elements of three-layer virtual special network, and at least a pair of two layers of void There is dependence between the quasi- corresponding node elements of dedicated network and the corresponding node elements of three-layer virtual special network.
Specifically, it between the node elements with dependence, may need to obtain during a certain node elements creation The node elements being relied on created after configuration parameter;Then in the configuration information of the node elements, part configuration information is needed It to be searched from the configuration information for the node elements being relied on by preset order;If from the configuration information of node elements The order has been found, and has found the nodename for the node elements being relied on from the order, then has illustrated the node name Claim node elements belonging to corresponding node elements and the order that there is dependence.For example, two layers of void with dependence Between the quasi- corresponding node elements of dedicated network and the corresponding node elements of three-layer virtual special network, two-layer virtual private network Corresponding node elements need the configuration after the completion of the corresponding node elements creation of three-layer virtual special network during creation Information has then generally comprised preset order, and has included in the order in the corresponding node elements of two-layer virtual private network The nodename of the corresponding node elements of above-mentioned three-layer virtual special network.
Thus, it specifically can node elements type by searching for each node elements in the network topology template and each section Dependence between point element determines the two-layer virtual private network section whether existed simultaneously in the template with dependence Point element and three-layer virtual special network node elements.
When network topology template is created, user can click creation service on the page of NFV composer Button, the simultaneous selection network topology template can trigger the template corresponding network creation instruction.
Step S204, if there is the two-layer virtual private network with dependence in network topology template to be created Corresponding node elements and the corresponding node elements of three-layer virtual special network, the above-mentioned two-layer virtual for obtaining user setting are dedicated Information of virtual local area network needed for the corresponding node elements of network and the corresponding node elements of above-mentioned three-layer virtual special network;
Step S206 determines the corresponding node elements of two-layer virtual private network and three according to above-mentioned information of virtual local area network The VLAN ID of the corresponding node elements of layer virtual private network;
If user knows there is the two-layer virtual private network pair with dependence in the network topology template in advance The corresponding node elements of node elements and three-layer virtual special network answered can be set simultaneously when triggering network creation instruction Set required information of virtual local area network;It can also inquire to exist in network topology template in NFV composer and there is dependence The corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network after, prompt user it is defeated Enter the information of virtual local area network.
The information of virtual local area network can only include VLAN resource pool ID or VLAN ID, can also simultaneously include that VLAN is provided Source pond ID and VLAN ID.
Specifically, in the first embodiment: if the information of virtual local area network only includes VLAN resource pool ID, NFV Composer can find corresponding VLAN resource pool according to VLAN resource pool ID, generally comprise in VLAN resource pool multiple VLAN ID;It and then is the corresponding node member of the above-mentioned two-layer virtual private network with dependence in the VLAN resource pool Element node elements corresponding with three-layer virtual special network distribute an available VLAN ID.
In the second embodiment: if the information of virtual local area network includes simultaneously VLAN resource pool ID and VLAN ID, It is generally necessary to which whether first confirm the VLAN ID available (or occupied), if it is available, the VLAN can be used directly ID creates the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network;If can not With can then distribute an available VLAN ID from the corresponding VLAN resource pool of VLAN resource pool ID.
In addition, in the third embodiment, if above-mentioned information of virtual local area network only includes VLAN ID, and the VLAN ID it is confirmed it is available after, that is, the corresponding node elements of VLAN ID creation two-layer virtual private network and L 3 virtual can be used The corresponding node elements of dedicated network.
Step S208, according to the determining VLAN ID creation corresponding node elements of two-layer virtual private network and three layers of void The quasi- corresponding node elements of dedicated network, obtain include two-layer virtual private network and three-layer virtual special network it is virtual specially Use network.
In existing way, if it is corresponding to there is the two-layer virtual private network with dependence in network topology template It is corresponding usually first to create three-layer virtual special network therein for node elements and the corresponding node elements of three-layer virtual special network Node elements, the configuration information after the creation of the three-layer virtual special network node elements is synchronous, can be obtained corresponding three Layer virtual private network service;The three-layer virtual special network service that reselection has created, and obtain corresponding VLAN ID, root According to the corresponding node elements of VLAN ID creation two-layer virtual private network, by the node elements of the two-layer virtual private network Creation after configuration information it is synchronous, corresponding two-layer virtual private network service can be obtained, and then obtain two layers of final void Quasi- dedicated network and three-layer virtual special network combinational network.
Creation of the existing way not only bad for two-layer virtual private network and the combinational network of three-layer virtual special network Process can automate progress, if the user of the northbound interface of NFV composer is unaware of above-mentioned process, be difficult to successfully create The combinational network of two-layer virtual private network and three-layer virtual special network, it is also difficult to realize with the two-layer virtual private network and The relevant networking requirements of the combinational network of three-layer virtual special network affect the convenience and user experience of networking layout.
And in present embodiment, due to before creating combinational network, it has been determined that two layers when creating the combinational network The VLAN ID that Virtual Private Network and three-layer virtual special network are used in conjunction with, therefore the nothing during creation of combinational network It needs centainly first to create three-layer virtual special network, without the VLAN after the creation of user's manual queries three-layer virtual special network ID, then create two-layer virtual private network.At this point it is possible to suitable according to the default of each node elements in above-mentioned network topology template Sequence creates the combinational network, and creation process can also automate realization.
For example, the two-layer virtual private network in combinational network can be created first, then create three-layer virtual special network;? The three-layer virtual special network in combinational network can be first created, then creates two-layer virtual private network;Or creation group simultaneously Close the two-layer virtual private network and three-layer virtual special network in network.
The creation method for the Virtual Private Network that disclosure embodiment provides, if in network topology template to be created In the presence of the corresponding node elements of two-layer virtual private network and the corresponding node of three-layer virtual special network with dependence Element then obtains the information of virtual local area network of user setting;It is determined on VLAN ID and creation further according to the information of virtual local area network State the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network;Which is creating The corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network with dependence Before, required information of virtual local area network is set, is no longer needed to by staff's manual queries during creation, so that two layers The combinational network of Virtual Private Network and three-layer virtual special network creation process can automate progress, and then be advantageously implemented Network topology is freely defined according to business scenario.
Further, the creation process of the combinational network of two-layer virtual private network and three-layer virtual special network can be certainly Dynamicization carries out the cost for reducing manual operation maintenance, while user is without being concerned about that two-layer virtual private network and L 3 virtual are special With the creation of network sequence, also can easily the combinational network of layout two-layer virtual private network and three-layer virtual special network or Other relevant network construction forms.
Disclosure embodiment also provides the creation method of another Virtual Private Network;This method is based on above-mentioned embodiment party Formula is realized;Information of virtual local area network is described in above embodiment may include a variety of specific information;In present embodiment The deterministic process to specifying information in information of virtual local area network is further described, and comprising determining two layers when every kind of specifying information The mode of the VLAN ID of the combinational network of Virtual Private Network and three-layer virtual special network.As shown in figure 3, this method includes Following steps:
Step S302 receives the network creation instruction of user's triggering;
Step S304 is searched dedicated with the presence or absence of the two-layer virtual with dependence in network topology template to be created The corresponding node elements of network and the corresponding node elements of three-layer virtual special network;If it does, executing step S306;If It is not present, terminates.
Step S306 obtains the corresponding node elements of two-layer virtual private network and Layer3 Virtual Private Network of user setting Information of virtual local area network needed for the corresponding node elements of network;
Step S308 judges whether the information of virtual local area network includes VLAN resource pool ID;If including VLAN resource pool ID executes step S310;If not including VLAN resource pool ID, step S318 is executed;
In general, may be provided with multiple VLAN resource pools in current cloud resource, each VLAN resource pool passes through VLAN resource Pond ID is identified;Each VLAN resource pool includes corresponding VLAN ID sections, and ID sections of the VLAN can be by continuously or discontinuously VLAN ID composition.Each VLAN resource pool ID and the corresponding VLAN resource pool of each VLAN resource pool ID are included VLAN ID can be pre-stored in NFV composer in the form of list or database, for user query and be arranged corresponding Information of virtual local area network.
Step S310 judges whether information of virtual local area network further includes VLAN ID;If executing step including VLAN ID S312;If not including VLAN ID, step S316 is executed;
Step S312 judges whether the VLAN ID is occupied;If vacant, step S314 is executed;If occupied, Execute step S324;
Step S314, VLAN ID is special as the corresponding node elements of above-mentioned two-layer virtual private network and L 3 virtual With the VLAN ID of the corresponding node elements of network;Execute step S326;
If information of virtual local area network includes VLAN resource pool ID and VLAN ID simultaneously, illustrate that user is the combinational network Specify specific VLAN ID;If creating multiple network topology templates in network within a very short time, each VLAN ID's is accounted for Have little time to update with situation, user may and be unaware of pre-set VLAN ID and occupy;In order to avoid a VLAN Multiple Virtual Private Networks are created under ID, NFV composer can be looked by relevant interface to controller before using the VLAN ID The true occupancy of the VLAN ID is ask, to avoid the situation for causing network creation confusion.
If the VLAN ID is occupied, the user VLAN ID can be prompted occupied, user is asked to re-enter void Quasi- LAN Information;In another way, since information of virtual local area network includes VLAN resource pool ID, can also by with Family selection is to re-enter information of virtual local area network, or distribute one from the corresponding VLAN resource pool of above-mentioned VLAN resource pool ID A unappropriated VLAN ID;It is directly corresponding from above-mentioned VLAN resource pool ID or after the above-mentioned VLAN ID of inquiry is occupied VLAN resource pool in distribute a unappropriated VLAN ID, and the VLAN ID of distribution is informed to user.
Step S316 distributes unappropriated VLAN ID from the corresponding VLAN resource pool of VLAN resource pool ID, by distribution VLAN ID is as the corresponding node elements of above-mentioned two-layer virtual private network and the corresponding node elements of three-layer virtual special network VLAN ID;Execute step S326;
If information of virtual local area network only includes VLAN resource pool ID, illustrate that the VLAN ID for creating the combinational network is only needed To be in ID section of some VLAN, at this time user can be only the corresponding node elements of above-mentioned two-layer virtual private network with The corresponding node elements of three-layer virtual special network specify the corresponding VLAN resource pool ID of ID sections of the VLAN.VLAN resource pool ID It can recorde the occupancy of each VLAN ID in corresponding VLAN resource pool, can be according to the occupancy of record should The corresponding node elements of two-layer virtual private network and the corresponding node elements distribution of three-layer virtual special network are unappropriated VLAN ID.The specific method of salary distribution can be randomly selects a unappropriated VLAN ID from VLAN resource pool, can also be with Unappropriated VLAN ID is obtained according to the sequence of VLAN ID.
As mentioned above it is possible, the occupancy of record may not be able to timely update, therefore after distributing VLAN ID, may be used also The true occupancy of the VLAN ID is inquired to controller by relevant interface, if the VLAN ID is really unoccupied, The VLAN ID can be determined as creating the corresponding node elements of above-mentioned two-layer virtual private network and three-layer virtual special network The final VLAN ID of corresponding node elements;If the VLAN ID is occupied, can be weighed from above-mentioned VLAN resource pool Newly one VLAN ID of distribution.
Step S318 judges whether the information of virtual local area network includes VLAN ID;If executing step including VLAN ID S320;If not including VLAN ID, step S324 is executed;
Step S320 judges whether the VLAN ID is occupied;If vacant, step S322 is executed;If occupied, Execute step S324;
Step S322, VLAN ID is special as the corresponding node elements of above-mentioned two-layer virtual private network and L 3 virtual With the VLAN ID of the corresponding node elements of network;Execute step S326.
Only include VLAN ID in information of virtual local area network if not including VLAN resource pool ID, also needs inquiry and determine Whether the VLAN ID is occupied;Specific inquiry method of determination can be as described above, and details are not described herein.Since user does not refer to Determine VLAN resource pool ID, if the VLAN ID is occupied, user can be notified to re-enter information of virtual local area network.
Step S324 returns to prompt information to user, to prompt user to re-enter information of virtual local area network;
Step S326 creates the corresponding node elements of above-mentioned two-layer virtual private network and three according to determining VLAN ID The corresponding node elements of layer virtual private network.
In present embodiment, first determine whether information of virtual local area network includes VLAN resource pool ID, to describe to wrap respectively It includes VLAN resource pool ID and does not include the processing mode in the case of two kinds of VLAN resource pool ID;In another mode, may be used also To first determine whether in information of virtual local area network whether to include VLAN ID, if including VLAN ID and the VLAN ID is unoccupied, The corresponding node elements of above-mentioned two-layer virtual private network are then created by the VLAN ID and three-layer virtual special network is corresponding Node elements;If in information of virtual local area network not including VLAN ID, but including VLAN resource pool ID, then from the VLAN resource A unappropriated VLAN ID is distributed in the corresponding VLAN resource pool of pond ID, for creating above-mentioned two-layer virtual private network pair The corresponding node elements of node elements and three-layer virtual special network answered.
In the creation method of above-mentioned Virtual Private Network, according to specific interior in the information of virtual local area network of user setting Hold, required VLAN ID is determined by different modes and create the corresponding node elements of above-mentioned two-layer virtual private network and The corresponding node elements of three-layer virtual special network;Which is in the corresponding node elements of creation two-layer virtual private network and three Required information of virtual local area network is set before the corresponding node elements of layer virtual private network, is no longer needed to during creation By staff's manual queries, enable the creation process of two-layer virtual private network and three-layer virtual special network combinational network Enough automations carry out, and then are advantageously implemented and freely define network topology according to business scenario.
Disclosure embodiment also provides the creation method of another Virtual Private Network;This method is based on above-mentioned embodiment party Formula is realized;In present embodiment emphasis describe determine combinational network VLAN ID after, the specific creation process of combinational network and Synchronizing information process;As shown in figure 4, this method comprises the following steps:
Step S402 receives the network creation instruction of user's triggering;
Step S404 is searched dedicated with the presence or absence of the two-layer virtual with dependence in network topology template to be created The corresponding node elements of network and the corresponding node elements of three-layer virtual special network;If it does, executing step S406;If It is not present, terminates.
Step S406 obtains the corresponding node elements of two-layer virtual private network and Layer3 Virtual Private Network of user setting Information of virtual local area network needed for the corresponding node elements of network;
Step S408 judges whether the information of virtual local area network includes VLAN resource pool ID;If including VLAN resource pool ID executes step S410;If not including VLAN resource pool ID, step S418 is executed;
Step S410 judges whether information of virtual local area network further includes VLAN ID;If executing step including VLAN ID S412;If not including VLAN ID, step S416 is executed;
Step S412 judges whether the corresponding virtual LAN of VLAN ID is occupied;If unoccupied, step is executed Rapid S414;If occupied, step S424 is executed;
Step S414, VLAN ID is special as the corresponding node elements of above-mentioned two-layer virtual private network and L 3 virtual With the VLAN ID of the corresponding node elements of network;Execute step S426;
Step S416 distributes unappropriated VLAN ID from the corresponding VLAN resource pool of VLAN resource pool ID, by distribution VLAN ID is as the corresponding node elements of above-mentioned two-layer virtual private network and the corresponding node elements of three-layer virtual special network VLAN ID;Execute step S426;
Step S418 judges whether information of virtual local area network includes VLAN ID;If executing step including VLAN ID S420;If not including VLAN ID, step S424 is executed;
Step S420 judges whether the VLAN ID is occupied;If unoccupied, step S422 is executed;If occupied With execution step S424;
Step S422, VLAN ID is special as the corresponding node elements of above-mentioned two-layer virtual private network and L 3 virtual With the VLAN ID of the corresponding node elements of network;Execute step S426.
Step S424 returns to prompt information to user, to prompt user to re-enter information of virtual local area network;
Step S426, from network topology template extract combinational network in the corresponding node elements of two-layer virtual private network Node elements corresponding with three-layer virtual special network;
It is put in order by each node elements in network topology template, can determine the suitable of each node elements of creation Sequence.When needing to create the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network When, the corresponding node elements of the two-layer virtual private network are extracted from network topology template and three-layer virtual special network is corresponding Node elements, in the corresponding node elements of the two-layer virtual private network and the corresponding node elements of three-layer virtual special network The VLAN ID of above-mentioned determination is generally comprised, also comprising other default configuration informations or obtaining this needed for creation node elements The order of a little configuration informations and path.
Step S428 updates the corresponding node member of two-layer virtual private network according to the VLAN ID determined in step S422 The configuration information of element node elements corresponding with three-layer virtual special network;
Specifically, above-mentioned VLAN ID can be added to the corresponding node elements of two-layer virtual private network and three layers of void In corresponding field in the configuration information of the quasi- corresponding node elements of dedicated network.
Step S430, according to updated configuration information be respectively created the corresponding node elements of two-layer virtual private network and The corresponding node elements of three-layer virtual special network obtain including two-layer virtual private network and three-layer virtual special network Virtual Private Network.
Due to having determined corresponding VLAN ID, the corresponding node elements of creation two-layer virtual private network in the step No longer by VLAN ID, this parameter is limited the specific order of node elements corresponding with three-layer virtual special network, according to net The sequence of each node elements is created in network topology template.
NFV composer is not only that the design of network topology template provides operation interface, and also offer northbound interface and south orientation connect Mouthful, the northbound interface and southbound interface can be used for creating each node elements in network topology template, realize current business The resource allocation of scene.Wherein, northbound interface specifically can be as OSS (Operation support system, operation support System) or BSS (Business support system, business support system) system provide resource management and scheduling interface, Business quickly arranging issues and the functional interface monitored etc.;Southbound interface can connect VIM (Virtualized Infrastructure Manager, Virtual base facilities management) system, SDN (Software Defined Network, it is soft Part defines network) (Network Function Virtualization Manager, network function are virtual by controller and VNFM Change manager) platform etc..
After the completion of network topology stencil design, need through each node elements in above-mentioned NFV composer drawing template establishment. Node elements corresponding for above-mentioned two-layer virtual private network and the corresponding node elements of three-layer virtual special network, can be with Created by following manner: by taking the corresponding node elements of two-layer virtual private network as an example, NFV composer can be by above-mentioned VNFM calculates the resource requirement of the corresponding node elements of the two-layer virtual private network, by above-mentioned VIM according to resource requirement Calculated result be the corresponding node elements of two-layer virtual private network distribute resource (resource include computing resource, storage resource, Internet resources etc.), after the success of VIM resource allocation, notify NFV composer.The NFV composer reinforms VNFM using the money of distribution Source configures the corresponding section of the two-layer virtual private network according to the configuration information of the corresponding node elements of two-layer virtual private network Point element, after the completion of configuration, notice NFV composer is created successfully, and NFV composer reinforms user and creates successfully.
Step S432 obtains the corresponding node elements of two-layer virtual private network and the corresponding section of three-layer virtual special network Configuration information after the completion of point element creation;Configuration information after the completion of creation is respectively sent to two-layer virtual private network pair The corresponding controller of the corresponding node elements of node elements and three-layer virtual special network answered, so that controller is in each region The simultaneously operating of configuration information after the completion of being created in networking.
The corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network create After success, NFV composer is by the corresponding node elements of two-layer virtual private network and the corresponding node of three-layer virtual special network Configuration information after element creationization is issued to controller, and controller is issued to bottom router again.User opens up in planned network It flutters in template, in advance in the corresponding node elements of above-mentioned two-layer virtual private network and the corresponding node of three-layer virtual special network The controller that issues of configuration information in the configuration information of element provided with node elements is saved in configuration information and is issued The mark of controller.By the controller identifier in query configuration information, that is, it can determine that above-mentioned two-layer virtual private network is corresponding Node elements configuration information and the corresponding node elements of three-layer virtual special network configuration information needs which is issued to In a little controllers.
It continues to refer to figure 1, the creation process of each node elements is all in the design process and template of network topology template It is completed in NFV composer;In order to make creation include two-layer virtual private network and three-layer virtual special network it is virtual specially It can be operated normally with network, need to make the two-layer virtual private network in network is related in three-layer virtual special network to set It is standby to know to have created the Virtual Private Network, and assist to run the Virtual Private Network;It is then configured based on the purpose The simultaneously operating of information, specifically, NFV composer by the configuration information after the completion of creation be sent to two-layer virtual private network and The corresponding controller of three-layer virtual special network, then by being placed under controller in the network equipment in each network, such as two layers Virtual Private Network and three-layer virtual special network edge router, customer terminal equipment, core router etc..
It should be noted that above-mentioned operation NFV composer can be with single-unit operation, it can also be with networking operation;In networking operation In the case where, user can be by the NFV composer planned network topology template on terminal device, by the network after the completion of design Topological template is uploaded in system server, and it is each that user by the NFV composer in terminal device controls the network topology template The creation process of node elements is completed in the creation of node elements by system server.
The creation method for the Virtual Private Network that disclosure embodiment provides, it is determined that after VLAN ID, according to determination VLAN ID update the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network Configuration information simultaneously creates node elements, and then the configuration information after creation is synchronized operation again;Which is in two layers of creation It is required that this is set before the corresponding node elements of Virtual Private Network and the corresponding node elements of three-layer virtual special network Information of virtual local area network is no longer needed to by staff's manual queries during creation, so that two-layer virtual private network and three The creation process of layer virtual private network combinational network can automate progress, and then be advantageously implemented according to business scenario freedom Define network topology.
It should be noted that above-mentioned each method embodiment is described in a progressive manner, each embodiment emphasis What is illustrated is all the difference with other embodiments, and same and similar part refers to each other i.e. between each embodiment It can.
Corresponding to above method embodiment, a kind of structure of the creating device of Virtual Private Network shown in Figure 5 Schematic diagram, the equipment which is set to operation NFV composer;The device includes the following steps:
Node elements searching module 50, for searching to be created when receiving the network creation instruction of user's triggering It is corresponding with the presence or absence of the corresponding node elements of two-layer virtual private network and three-layer virtual special network in network topology template Node elements, and have between the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network There is dependence;
Data obtaining module 51, for if it does, obtaining the corresponding node of two-layer virtual private network of user setting Information of virtual local area network needed for element and the corresponding node elements of three-layer virtual special network;
VLAN ID determining module 52, for determining the corresponding section of two-layer virtual private network according to information of virtual local area network The VLAN ID of point element and the corresponding node elements of three-layer virtual special network;
Network creation module 53, for according to the determining corresponding node member of VLAN ID creation two-layer virtual private network Element node elements corresponding with three-layer virtual special network, obtain including two-layer virtual private network and Layer3 Virtual Private Network The Virtual Private Network of network.
The creating device for the Virtual Private Network that disclosure embodiment provides, if in network topology template to be created In the presence of the corresponding node elements of two-layer virtual private network and the corresponding node of three-layer virtual special network with dependence Element then obtains the information of virtual local area network of user setting;It is determined on VLAN ID and creation further according to the information of virtual local area network State the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network;Which is creating The corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network with dependence Before, required information of virtual local area network is set, is no longer needed to by staff's manual queries during creation, so that two layers The combinational network of Virtual Private Network and three-layer virtual special network creation process can automate progress, and then be advantageously implemented Network topology is freely defined according to business scenario.
Further, above-mentioned VLAN ID determining module 52 is also used to: judging whether information of virtual local area network includes VLAN money Source pond ID;If judging whether information of virtual local area network further includes VLAN ID including VLAN resource pool ID;If including VLAN ID, and VLAN ID is vacant, VLAN ID is dedicated as the corresponding node elements of two-layer virtual private network and L 3 virtual The VLAN ID of the corresponding node elements of network;If not including VLAN ID, from the corresponding VLAN resource pool of VLAN resource pool ID The middle unappropriated VLAN ID of distribution, using the VLAN ID of distribution as the corresponding node elements of two-layer virtual private network and three layers The VLAN ID of the corresponding node elements of Virtual Private Network.
Further, above-mentioned VLAN ID determining module 52 is also used to: if information of virtual local area network does not include VLAN resource Pond ID judges whether information of virtual local area network includes VLAN ID;If including VLAN ID, and VLAN ID is vacant, by VLAN VLAN of the ID as the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network ID。
Further, above-mentioned network creation module 53 is used for: extracting two-layer virtual private network from network topology template Corresponding node elements and the corresponding node elements of three-layer virtual special network;Two-layer virtual is updated according to determining VLAN ID The configuration information of the corresponding node elements of dedicated network and three-layer virtual special network corresponding node element;Matched according to updated The corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network are respectively created in confidence breath.
Further, above-mentioned apparatus includes: data obtaining module and information sending module, wherein the data obtaining module It has been created for obtaining the corresponding node elements of two-layer virtual private network and the corresponding node elements of three-layer virtual special network Configuration information after;Information sending module is used to the configuration information after the completion of creation being respectively sent to Layer 2 virtual private network The corresponding node elements of network and the corresponding controller of the corresponding node elements of three-layer virtual special network, so that controller is each The simultaneously operating of configuration information after the completion of being created in the networking of region.
Present embodiments provide for a kind of servers corresponding with above method embodiment.Fig. 6 is the server Structural schematic diagram, as shown in fig. 6, the server includes processor 601 and memory 600;Wherein, memory 600 is for storing One or more computer instruction, one or more computer instruction are executed by processor, to realize above-mentioned Virtual Private Network Creation method.
Server shown in fig. 6 further includes bus 602 and communication interface 603, processor 601, communication interface 603 and storage Device 600 is connected by bus 602.The server can be network edge device.
Wherein, memory 600 may include high-speed random access memory (RAM, Random Access Memory), It may further include non-labile memory (non-volatile memory), for example, at least a magnetic disk storage.Bus 602 can be isa bus, pci bus or eisa bus etc..The bus can be divided into address bus, data/address bus, control always Line etc..Only to be indicated with a four-headed arrow in Fig. 6, it is not intended that an only bus or a type of convenient for indicating Bus.
Communication interface 603 is used to connect by network interface at least one user terminal and other network units, will seal The IPv4 message or IPv8 message installed is sent to the user terminal by network interface.
Processor 601 may be a kind of IC chip, the processing capacity with signal.It is above-mentioned during realization Each step of method can be completed by the integrated logic circuit of the hardware in processor 601 or the instruction of software form.On The processor 601 stated can be general processor, including central processing unit (Central Processing Unit, abbreviation CPU), network processing unit (Network Processor, abbreviation NP) etc.;It can also be digital signal processor (Digital Signal Processor, abbreviation DSP), specific integrated circuit (Application Specific Integrated Circuit, abbreviation ASIC), field programmable gate array (Field-Programmable Gate Array, abbreviation FPGA) or Person other programmable logic device, discrete gate or transistor logic, discrete hardware components.It may be implemented or execute sheet Disclosed each method, step and logic diagram in invention embodiment.General processor can be microprocessor or this at Reason device is also possible to any conventional processor etc..The step of method in conjunction with disclosed in embodiment of the present invention, can direct body Now executes completion for hardware decoding processor, or in decoding processor hardware and software module combine and execute completion.It is soft Part module can be located at random access memory, and flash memory, read-only memory, programmable read only memory or electrically erasable programmable are deposited In the storage medium of this fields such as reservoir, register maturation.The storage medium is located at memory 600, and processor 601 reads storage Information in device 600, in conjunction with its hardware complete aforementioned embodiments method the step of.
Embodiment of the present invention additionally provides a kind of machine readable storage medium, and machine readable storage medium storage is organic Device executable instruction, for the machine-executable instruction when being called and being executed by processor, machine-executable instruction promotes processor Realize the creation method of above-mentioned Virtual Private Network, specific implementation can be found in method implementation, and details are not described herein.
The technical effect and preceding method of server provided by embodiment of the present invention, realization principle and generation are implemented Mode is identical, and to briefly describe, device embodiments part does not refer to place, can refer in corresponding in preceding method embodiment Hold.
In several embodiments provided herein, it should be understood that disclosed device and method can also lead to Other modes are crossed to realize.Device embodiments described above are only schematical, for example, the flow chart in attached drawing and Block diagram shows the system in the cards of the device of multiple embodiments according to the present invention, method and computer program product Framework, function and operation.In this regard, each box in flowchart or block diagram can represent a module, program segment or generation A part of code, a part of the module, section or code include one or more for realizing defined logic function Executable instruction.It should also be noted that function marked in the box can also be in some implementations as replacement Occur different from the sequence marked in attached drawing.For example, two continuous boxes can actually be basically executed in parallel, they Sometimes it can also execute in the opposite order, this depends on the function involved.It is also noted that block diagram and or flow chart In each box and the box in block diagram and or flow chart combination, can function or movement as defined in executing it is special Hardware based system is realized, or can be realized using a combination of dedicated hardware and computer instructions.
Finally, it should be noted that embodiment described above, the only specific embodiment of the disclosure, to illustrate this public affairs The technical solution opened, rather than its limitations, the protection scope of the disclosure are not limited thereto, although referring to aforementioned embodiments pair The disclosure is described in detail, those skilled in the art should understand that: any technology for being familiar with the art Personnel can still modify to technical solution documented by aforementioned embodiments in the technical scope that the disclosure discloses Or variation or equivalent replacement of some of the technical features can be readily occurred in;And these modifications, variation or replacement, The spirit and scope for disclosure embodiment technical solution that it does not separate the essence of the corresponding technical solution, should all cover in this public affairs Within the protection scope opened.Therefore, the protection scope of the disclosure shall be subject to the protection scope of the claim.

Claims (12)

1. a kind of creation method of Virtual Private Network, which is characterized in that the method is applied to setting for operation NFV composer It is standby;The described method includes:
When receiving the network creation instruction of user's triggering, search in network topology template to be created with the presence or absence of two layers of void The quasi- corresponding node elements of dedicated network and the corresponding node elements of three-layer virtual special network, and the Layer 2 virtual private network There is dependence between the corresponding node elements of network and the corresponding node elements of the three-layer virtual special network;
If it does, the corresponding node elements of the two-layer virtual private network and the L 3 virtual of acquisition user setting are special The information of virtual local area network needed for the corresponding node elements of network;
The corresponding node elements of the two-layer virtual private network and three layers of void are determined according to the information of virtual local area network The VLAN ID of the quasi- corresponding node elements of dedicated network;
The corresponding node elements of the two-layer virtual private network are created according to the determining VLAN ID and L 3 virtual is dedicated The corresponding node elements of network obtain including the virtual of the two-layer virtual private network and the three-layer virtual special network Dedicated network.
2. the method according to claim 1, wherein determining two layers of void according to the information of virtual local area network The step of VLAN ID of the quasi- corresponding node elements of dedicated network and the corresponding node elements of three-layer virtual special network, comprising:
Judge whether the information of virtual local area network includes VLAN resource pool ID;
If judging whether the information of virtual local area network further includes VLAN ID including the VLAN resource pool ID;
If including VLAN ID, and the VLAN ID is vacant, using the VLAN ID as the two-layer virtual private network The VLAN ID of corresponding node elements and the corresponding node elements of the three-layer virtual special network;
If not including VLAN ID, unappropriated VLAN is distributed from the corresponding VLAN resource pool of the VLAN resource pool ID ID, using the VLAN ID of distribution as the corresponding node elements of the two-layer virtual private network and the Layer3 Virtual Private Network The VLAN ID of the corresponding node elements of network.
3. according to the method described in claim 2, it is characterized in that, determining two layers of void according to the information of virtual local area network It the step of VLAN ID of the quasi- corresponding node elements of dedicated network and the corresponding node elements of three-layer virtual special network, also wraps It includes:
If the information of virtual local area network does not include VLAN resource pool ID, judge the information of virtual local area network whether include VLAN ID;
If including VLAN ID, and the VLAN ID is vacant, using the VLAN ID as the two-layer virtual private network The VLAN ID of corresponding node elements and the corresponding node elements of the three-layer virtual special network.
4. the method according to claim 1, wherein creating two layers of void according to the determining VLAN ID The step of quasi- corresponding node elements of dedicated network and three-layer virtual special network corresponding node elements, comprising:
The corresponding node elements of the two-layer virtual private network and the L 3 virtual are extracted from the network topology template The corresponding node elements of dedicated network;
The corresponding node elements of two-layer virtual private network and the L 3 virtual are updated according to the determining VLAN ID The configuration information of the corresponding node elements of dedicated network;
Corresponding node elements of the two-layer virtual private network and described are respectively created according to the updated configuration information The corresponding node elements of three-layer virtual special network.
5. according to the method described in claim 4, it is characterized in that, creating two layers of void according to the determining VLAN ID After the step of quasi- corresponding node elements of dedicated network and three-layer virtual special network corresponding node elements, the method packet It includes:
Obtain the corresponding node elements of the two-layer virtual private network and the corresponding node elements wound of three-layer virtual special network Configuration information after the completion of building;
By the configuration information after the completion of the creation be respectively sent to the corresponding node elements of the two-layer virtual private network and The corresponding controller of the corresponding node elements of three-layer virtual special network, so that the controller carries out in the networking of each region The simultaneously operating of configuration information after the completion of the creation.
6. a kind of creating device of Virtual Private Network, which is characterized in that described device is set to setting for operation NFV composer It is standby;Described device includes:
Node elements searching module, for searching network to be created and opening up when receiving the network creation instruction of user's triggering It flutters in template with the presence or absence of the corresponding node elements of two-layer virtual private network and the corresponding node member of three-layer virtual special network Element, and between the corresponding node elements of the two-layer virtual private network and the corresponding node elements of the three-layer virtual special network With dependence;
Data obtaining module, for if it does, the corresponding node member of the two-layer virtual private network for obtaining user setting Information of virtual local area network needed for the corresponding node elements of plain and described three-layer virtual special network;
VLAN ID determining module, for determining that the two-layer virtual private network is corresponding according to the information of virtual local area network The VLAN ID of node elements and the corresponding node elements of the three-layer virtual special network;
Network creation module, for creating the corresponding node of the two-layer virtual private network according to the determining VLAN ID Element and the corresponding node elements of the three-layer virtual special network obtain including the two-layer virtual private network and described The Virtual Private Network of three-layer virtual special network.
7. device according to claim 6, which is characterized in that the VLAN ID determining module is used for:
Judge whether the information of virtual local area network includes VLAN resource pool ID;
If judging whether the information of virtual local area network further includes VLAN ID including the VLAN resource pool ID;
If including VLAN ID, and the VLAN ID is vacant, using the VLAN ID as the two-layer virtual private network The VLAN ID of corresponding node elements and the corresponding node elements of the three-layer virtual special network;
If not including VLAN ID, unappropriated VLAN is distributed from the corresponding VLAN resource pool of the VLAN resource pool ID ID, using the VLAN ID of distribution as the corresponding node elements of the two-layer virtual private network and the Layer3 Virtual Private Network The VLAN ID of the corresponding node elements of network.
8. device according to claim 7, which is characterized in that the VLAN ID determining module is used for:
If the information of virtual local area network does not include VLAN resource pool ID, judge the information of virtual local area network whether include VLAN ID;
If including VLAN ID, and the VLAN ID is vacant, using the VLAN ID as the two-layer virtual private network The VLAN ID of corresponding node elements and the corresponding node elements of the three-layer virtual special network.
9. device according to claim 6, which is characterized in that the network creation module is used for:
The corresponding node elements of the two-layer virtual private network and the L 3 virtual are extracted from the network topology template The corresponding node elements of dedicated network;
The corresponding node elements of two-layer virtual private network and the L 3 virtual are updated according to the determining VLAN ID The configuration information of dedicated network corresponding node element;
Corresponding node elements of two-layer virtual private network and three layers described are respectively created according to the updated configuration information The corresponding node elements of Virtual Private Network.
10. device according to claim 9, which is characterized in that described device includes:
Data obtaining module, for obtaining the corresponding node elements of the two-layer virtual private network and three-layer virtual special network Configuration information after the completion of corresponding node elements creation;
Information sending module, for the configuration information after the completion of the creation to be respectively sent to the two-layer virtual private network Corresponding node elements and the corresponding controller of the corresponding node elements of three-layer virtual special network, so that the controller is each The simultaneously operating of the configuration information after the completion of the creation is carried out in a region networking.
11. a kind of server, which is characterized in that including processor and machine readable storage medium, the machine readable storage is situated between Matter is stored with the machine-executable instruction that can be executed by the processor, and the processor executes the machine-executable instruction To realize method described in any one of claim 1 to 5.
12. a kind of machine readable storage medium, which is characterized in that the machine readable storage medium is stored with the executable finger of machine It enables, for the machine-executable instruction when being called and being executed by processor, the machine-executable instruction promotes the processor Realize method described in any one of claim 1 to 5.
CN201811432278.0A 2018-11-27 2018-11-27 Virtual private network creating method and device and server Active CN109379268B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811432278.0A CN109379268B (en) 2018-11-27 2018-11-27 Virtual private network creating method and device and server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811432278.0A CN109379268B (en) 2018-11-27 2018-11-27 Virtual private network creating method and device and server

Publications (2)

Publication Number Publication Date
CN109379268A true CN109379268A (en) 2019-02-22
CN109379268B CN109379268B (en) 2021-05-07

Family

ID=65377620

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811432278.0A Active CN109379268B (en) 2018-11-27 2018-11-27 Virtual private network creating method and device and server

Country Status (1)

Country Link
CN (1) CN109379268B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110502409A (en) * 2019-08-23 2019-11-26 行吟信息科技(上海)有限公司 A kind of method and system of visual control service operation situation
CN113395183A (en) * 2021-08-18 2021-09-14 南京赛宁信息技术有限公司 Virtual node scheduling method and system for network simulation platform VLAN interconnection

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101848161A (en) * 2010-05-31 2010-09-29 杭州华三通信技术有限公司 Communication method and equipment of MPLS L2VPN (Multiple protocol Label Switching Layer 2 Virtual Private Network) and MPLS L3VPN (Multiple protocol Label Switching Layer 3 Virtual Private Network)
US20100329265A1 (en) * 2009-06-26 2010-12-30 Nortel Networks Limited Method and Apparatus for implementing L2 VPNs on an IP Network
US20110032843A1 (en) * 2008-04-10 2011-02-10 Oktavian Papp Setting up a virtual private network using virtual lan identifiers
CN102546416A (en) * 2012-01-13 2012-07-04 中兴通讯股份有限公司 Transmission method and device of L3VPN (layer 3 virtual private network) service message
CN103546374A (en) * 2012-07-10 2014-01-29 杭州华三通信技术有限公司 Message forwarding method and device in two-layered edge network
CN104717119A (en) * 2015-04-09 2015-06-17 烽火通信科技股份有限公司 Method and system for realizing bridge connection between L2 VPN and L3 VPN
CN105190557A (en) * 2012-10-16 2015-12-23 思杰系统有限公司 Systems and methods for bridging between public and private clouds through multi-level api integration
CN107147509A (en) * 2016-03-01 2017-09-08 中兴通讯股份有限公司 Centrex service implementation method, device and communication system
CN107547333A (en) * 2016-06-29 2018-01-05 华为技术有限公司 For realizing the method and apparatus of combination virtual private network

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110032843A1 (en) * 2008-04-10 2011-02-10 Oktavian Papp Setting up a virtual private network using virtual lan identifiers
US20100329265A1 (en) * 2009-06-26 2010-12-30 Nortel Networks Limited Method and Apparatus for implementing L2 VPNs on an IP Network
CN102804693A (en) * 2009-06-26 2012-11-28 阿瓦雅公司 Method and apparatus for implementing L2 VPNs on an ip network
CN101848161A (en) * 2010-05-31 2010-09-29 杭州华三通信技术有限公司 Communication method and equipment of MPLS L2VPN (Multiple protocol Label Switching Layer 2 Virtual Private Network) and MPLS L3VPN (Multiple protocol Label Switching Layer 3 Virtual Private Network)
CN102546416A (en) * 2012-01-13 2012-07-04 中兴通讯股份有限公司 Transmission method and device of L3VPN (layer 3 virtual private network) service message
CN103546374A (en) * 2012-07-10 2014-01-29 杭州华三通信技术有限公司 Message forwarding method and device in two-layered edge network
CN105190557A (en) * 2012-10-16 2015-12-23 思杰系统有限公司 Systems and methods for bridging between public and private clouds through multi-level api integration
CN104717119A (en) * 2015-04-09 2015-06-17 烽火通信科技股份有限公司 Method and system for realizing bridge connection between L2 VPN and L3 VPN
CN107147509A (en) * 2016-03-01 2017-09-08 中兴通讯股份有限公司 Centrex service implementation method, device and communication system
CN107547333A (en) * 2016-06-29 2018-01-05 华为技术有限公司 For realizing the method and apparatus of combination virtual private network

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110502409A (en) * 2019-08-23 2019-11-26 行吟信息科技(上海)有限公司 A kind of method and system of visual control service operation situation
CN113395183A (en) * 2021-08-18 2021-09-14 南京赛宁信息技术有限公司 Virtual node scheduling method and system for network simulation platform VLAN interconnection
CN113395183B (en) * 2021-08-18 2021-12-07 南京赛宁信息技术有限公司 Virtual node scheduling method and system for network simulation platform VLAN interconnection

Also Published As

Publication number Publication date
CN109379268B (en) 2021-05-07

Similar Documents

Publication Publication Date Title
CN106301829B (en) A kind of method and apparatus of network service dilatation
CN105684357B (en) The management of address in virtual machine
CN106031116B (en) A kind of correlating method, the apparatus and system of NS and VNF
CN105812260B (en) A kind of method, apparatus and system that control mac address forwarding table is sent
CN104125110B (en) Internet resources monitoring method and device
CN104734931B (en) Link establishing method and device between a kind of virtual network function
CN104350467B (en) Elasticity for the cloud security using SDN carries out layer
CN104468574B (en) A kind of method, system and device of virtual machine dynamic access IP address
CN107689882A (en) The method and apparatus of service deployment in a kind of virtualization network
CN109462534A (en) Regional internet controller, regional internet control method and computer storage medium
CN109428749A (en) Network management and relevant device
CN107113219A (en) VLAN marks in virtual environment
CN104272702A (en) Method and apparatus for supporting access control lists in a multi-tenant environment
US10944641B1 (en) Systems and methods for application traffic simulation using captured flows
CN106034077A (en) Dynamic route configuration method, device and system thereof
WO2019174000A1 (en) Method and apparatus for service management
CN104937892A (en) Multi-node virtual switching system (MVSS)
CN103441935B (en) Automatically method and the device of the syntople of identified server and access switch
CN109462511B (en) Network establishing method and device
CN111684439A (en) Network guaranteed database version compatibility
CN108574590A (en) A kind of opening network element method and apparatus and computer readable storage medium
CN108494607A (en) The design method and system of big double layer network framework based on container
CN110213391A (en) A kind of configuration method and device of internet protocol address
CN114270907A (en) Automatic access point placement system and method
CN106878480A (en) A kind of DHCP service process sharing method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant