CN109561171B - Configuration method and device of virtual private cloud service - Google Patents

Configuration method and device of virtual private cloud service Download PDF

Info

Publication number
CN109561171B
CN109561171B CN201910058697.0A CN201910058697A CN109561171B CN 109561171 B CN109561171 B CN 109561171B CN 201910058697 A CN201910058697 A CN 201910058697A CN 109561171 B CN109561171 B CN 109561171B
Authority
CN
China
Prior art keywords
virtual private
private cloud
public network
gateway
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910058697.0A
Other languages
Chinese (zh)
Other versions
CN109561171A (en
Inventor
雷思源
周磊
姜琳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Baidu Netcom Science and Technology Co Ltd
Original Assignee
Beijing Baidu Netcom Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Baidu Netcom Science and Technology Co Ltd filed Critical Beijing Baidu Netcom Science and Technology Co Ltd
Priority to CN201910058697.0A priority Critical patent/CN109561171B/en
Publication of CN109561171A publication Critical patent/CN109561171A/en
Application granted granted Critical
Publication of CN109561171B publication Critical patent/CN109561171B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/618Details of network addresses
    • H04L2101/659Internet protocol version 6 [IPv6] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/55Push-based network services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/561Adding application-functional data or data for application control, e.g. adding metadata

Abstract

The embodiment of the application discloses a configuration method and device of a virtual private cloud service, electronic equipment and a computer readable medium. One embodiment of the method comprises: responding to a request for creating an IPv6 public network gateway in a virtual private cloud, and acquiring configured routing table information, wherein the routing table information comprises path information of a request carrying an IPv6 address in the virtual private cloud and connecting to a public network through the created IPv6 public network gateway; and sending a routing configuration request to a gateway server in the virtual private cloud according to the acquired routing table information so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud. The embodiment realizes the communication between the VPC internal virtual machine and the external network through the IPv6 gateway, does not need to bind the IPv6 address and the IPv4 address, and effectively improves the flexibility of the virtual private cloud service.

Description

Configuration method and device of virtual private cloud service
Technical Field
The embodiment of the application relates to the technical field of computers, in particular to the field of cloud services, and particularly relates to a configuration method and device of a virtual private cloud service.
Background
Cloud services are a service model that provides dynamically scalable and often virtualized resources over the internet. VPC (Virtual Private Cloud) is a network isolation technology to solve the network security problem, and is a network environment capable of self-defining network configuration provided on a public Cloud. Currently, VPC has a requirement for accessing public services of public cloud, and generally communicates with public network through virtual machine address or subnet carrying IPv4(The Forth Version of Internet Protocol, fourth edition of Internet Protocol).
With the rapid development of internet technology, the number of global IPv4 users also increases sharply, and the shortage of IPv4 address space cannot meet the huge demand of global users on internet address resources. The IPv6(The six Version of Internet Protocol) is used for solving The problem of The quantity of network address resources and The obstacle of various access devices to access The Internet. The existing technical scheme provides that a terminal supporting an IPv4 network communicates with a server supporting an IPv4 network through a public network.
Disclosure of Invention
The embodiment of the application provides a configuration method and device of a virtual private cloud service, electronic equipment and a computer readable medium.
In a first aspect, an embodiment of the present application provides a method for configuring a virtual private cloud service, including: responding to a request for creating an IPv6 public network gateway in the virtual private cloud, and acquiring configured routing table information, wherein the routing table information comprises path information of a request carrying an IPv6 address in the virtual private cloud and connecting to a public network through the created IPv6 public network gateway; and sending a routing configuration request to a gateway server in the virtual private cloud according to the acquired routing table information so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
In some embodiments, the above method further comprises: in response to receiving a request for accessing the public network by a request terminal carrying an IPv6 address in the virtual private cloud, linking the request for accessing the public network to gateway equipment configuring routing table information corresponding to the request terminal, and forwarding the request through the gateway equipment configuring the routing table information corresponding to the request terminal.
In some embodiments, the above method further comprises: and acquiring the flow information of the gateway equipment configured with the routing table information, and pushing the flow information to a charging module and a monitoring module of the virtual private cloud.
In some embodiments, before sending the route configuration request to the gateway server in the virtual private cloud according to the obtained route table information, the method further includes: in response to receiving a request to create an IPv6 public network gateway within the virtual private cloud, an IPv6 public network gateway is created by the metadata server.
In some embodiments, the routing table information further includes speed limit information of a request carrying an IPv6 address in the virtual private cloud for connecting to the public network through the created IPv6 public network gateway, and access restriction information of communication with the public network in the virtual private cloud.
In a second aspect, an embodiment of the present application provides a configuration apparatus for a virtual private cloud service, including: the obtaining unit is configured to respond to a request for creating an IPv6 public network gateway in the virtual private cloud, and obtain configured routing table information, wherein the routing table information comprises path information of the request carrying an IPv6 address in the virtual private cloud and connected to a public network through the created IPv6 public network gateway; and the sending unit is configured to send a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
In some embodiments, the above apparatus further comprises: the forwarding unit is configured to link a request for accessing the public network to the gateway device configured with the routing table information corresponding to the request end in response to receiving the request for accessing the public network from the request end carrying the IPv6 address in the virtual private cloud, so as to forward the request through the gateway device configured with the routing table information corresponding to the request end.
In some embodiments, the above apparatus further comprises: and the pushing unit is configured to acquire the flow information of the gateway equipment configured with the routing table information and push the flow information to the charging module and the monitoring module of the virtual private cloud.
In some embodiments, the above apparatus further comprises: a creating unit configured to create an IPv6 public network gateway by the metadata server in response to receiving a request to create an IPv6 public network gateway within the virtual private cloud before sending a route configuration request to the gateway server within the virtual private cloud according to the acquired route table information.
In some embodiments, the routing table information further includes speed limit information of a request carrying an IPv6 address in the virtual private cloud for connecting to the public network through the created IPv6 public network gateway, and access restriction information of communication with the public network in the virtual private cloud.
In a third aspect, an embodiment of the present application provides an electronic device, including: one or more processors; a storage device for storing one or more programs, which when executed by one or more processors, cause the one or more processors to implement the configuration method of the virtual private cloud service as provided by the first aspect.
In a fourth aspect, the present application provides a computer readable medium, on which a computer program is stored, where the program, when executed by a processor, implements the configuration method of the virtual private cloud service provided in the first aspect.
According to the configuration method, device, electronic equipment and computer readable medium of the virtual private cloud service in the embodiments of the application, the configured routing list information is obtained by responding to the received request for creating the IPv6 public network gateway in the virtual private cloud, the routing list information includes the path information that the request carrying the IPv6 address in the virtual private cloud is connected to the public network through the created IPv6 public network gateway, and the routing configuration request is sent to the gateway server in the virtual private cloud according to the obtained routing list information, so that the gateway server configures the corresponding IPv6 public network gateway to the gateway device of the virtual private cloud, the communication between the virtual machine in the VPC and the external network through the IPv6 is realized, the IPv6 address and the IPv4 address do not need to be bound, and the flexibility of the virtual private cloud service is effectively improved.
Drawings
Other features, objects and advantages of the present application will become more apparent upon reading of the following detailed description of non-limiting embodiments thereof, made with reference to the accompanying drawings in which:
FIG. 1 is an exemplary system architecture diagram to which embodiments of the present application may be applied;
fig. 2 is a flow diagram of one embodiment of a method of configuration of a virtual private cloud service according to the present application;
fig. 3 is a schematic diagram illustrating a modular implementation principle of a configuration method of a virtual private cloud service according to an embodiment of the present application;
fig. 4 is a flowchart of another embodiment of a method of configuring a virtual private cloud service according to the present application;
fig. 5 is a schematic structural diagram of an embodiment of a configuration apparatus of a virtual private cloud service according to the present application;
FIG. 6 is a schematic block diagram of a computer system suitable for use in implementing an electronic device according to embodiments of the present application.
Detailed Description
The present application will be described in further detail with reference to the following drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the relevant invention and not restrictive of the invention. It should be noted that, for convenience of description, only the portions related to the related invention are shown in the drawings.
It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict. The present application will be described in detail below with reference to the embodiments with reference to the attached drawings.
Fig. 1 shows an exemplary system architecture to which the configuration method of the virtual private cloud service or the configuration apparatus of the virtual private cloud service of the present application may be applied.
As shown in fig. 1, system architecture 100 may include a Virtual Private Cloud (VPC)101 and a public cloud 102. The system architecture 100 may also include a load balancing device 103. The virtual private cloud VPC may be a cloud service system providing a dedicated service for a single customer, and may include multiple cloud hosts 1011, where modules such as a data center and a virtual gateway may be deployed on the cloud hosts 1011. Public cloud 102 can be a cloud service system in which public services (such as object storage services, application interface services, and the like) reside. The public cloud 102 may also include a plurality of cloud hosts 1021 for providing resource services.
The virtual private cloud 101 and the public cloud 102 may be connected via a network, and the cloud host 1011 in the virtual private cloud 101 may issue an access request to the public cloud 102, for example, a host in the VPC may request an object storage service in the public cloud, and the cloud host 1021 in the public cloud 102 may receive the request and provide a corresponding resource service.
The load balancing apparatus 103 is used to perform distribution of requests and data between the virtual private cloud 101 and the public cloud 102. An access request issued by a cloud host 1011 within the virtual private cloud 101 to the public cloud 102 is forwarded by the load balancing apparatus 103 to a cloud host 1021 in the public cloud 102.
It should be noted that the configuration method of the vpn cloud service provided in the embodiment of the present application may be executed by the cloud host 1011 disposed in the vpn cloud, and accordingly, the configuration device of the vpn cloud service may be disposed in the cloud host 1011 disposed in the vpn cloud.
It should be understood that the number of cloud hosts, virtual private clouds, public clouds, load balancing devices in fig. 1 is merely illustrative. According to implementation needs, any number of cloud hosts, virtual private clouds, public clouds and load balancing devices can be provided.
With continued reference to fig. 2, a flow 200 of one embodiment of a method of configuration of a virtual private cloud service according to the present application is shown. The configuration method of the virtual private cloud service comprises the following steps:
step 201, in response to receiving a request for creating an IPv6 public network gateway in the virtual private cloud, obtaining configured routing table information.
In this embodiment, an executing subject of the configuration method of the virtual private cloud service (e.g., a cloud host of the virtual private cloud shown in fig. 1) may receive a request to create an IPv6 public gateway within the virtual private cloud. A virtual private cloud may be a private cloud service built for individual customer use; the public network is a public network and is a public cloud service for providing shared resources for different customers. The public network gateway in the virtual private cloud is a network connection device for forwarding the request in the virtual private cloud to the public network. The IPv6 public network gateway within the virtual private cloud is a network connection device adapted to forward requests carrying IPv6 addresses.
In practice, a user of the virtual private cloud may initiate a request to create an IPv6 public network gateway within the virtual private cloud, such as via an IPv6 public network gateway creation interface provided by a cloud service console to initiate a request to create an IPv6 public network gateway. A cloud host within the virtual private cloud may receive the request.
After receiving the request for creating the IPv6 public network gateway, user-configured routing table information may be obtained. The routing table information may include path information within the virtual private cloud that requests to connect to the public network through the created IPv6 public network gateway, carrying an IPv6 address. The path information includes a path directed to a public network segment.
In practice, the user may continue to configure the routing table information after the console chooses to create an IPv6 public network gateway. Specifically, the user may read the IPv6 address of the host in the virtual private cloud, configure the routing rule between the IPv6 address of the host in the virtual private cloud and the public network segment, including configuring a source address, a target network segment, a host address of a next hop to which a packet is sent, a subnet mask, and the like. The executing body can obtain the routing table information configured for the IPv6 public network gateway by the user.
Step 202, sending a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
In this embodiment, after the user submits, through the console, a request for creating an IPv6 public network gateway in the virtual private cloud and configures corresponding routing table information, the execution subject may send a routing configuration request to a gateway server in the virtual private cloud. The gateway server in the virtual private cloud may be hardware or software for implementing a gateway service function, and when the gateway server is software, the gateway server may be installed in a cloud host of the virtual private cloud. It may be implemented, for example, as multiple software or software modules to provide distributed services, or as a single software or software module. And is not particularly limited herein.
The gateway server of the virtual private cloud may be connected to the execution subject and the gateway device of the virtual private cloud. The routing configuration request sent by the execution body to the gateway server may include a configuration request of the routing table information. The gateway server may issue routing table information to the connected gateway device in response to receiving the configuration request. And the gateway equipment configures a routing strategy according to the received routing table information, so as to realize the configuration of the IPv6 public network gateway in the virtual private cloud.
In the configuration method of the virtual private cloud service according to the embodiment of the application, the configured routing table information is acquired by responding to the received request for creating the IPv6 public network gateway in the virtual private cloud, the routing table information includes the path information that the request carrying the IPv6 address in the virtual private cloud is connected to the public network through the created IPv6 public network gateway, and the routing configuration request is sent to the gateway server in the virtual private cloud according to the acquired routing table information, so that the gateway server configures the corresponding IPv6 public network gateway to the gateway device of the virtual private cloud, thereby realizing the communication between the VPC internal virtual machine and the external network through the IPv6, and not binding the IPv6 address with the IPv4 address, and effectively improving the flexibility of the virtual private cloud service.
In some optional implementation manners of this embodiment, before sending the route configuration request to the gateway server in the virtual private cloud according to the obtained route table information, the flow of the configuration method of the virtual private cloud service may further include: in response to receiving a request to create an IPv6 public network gateway within the virtual private cloud, an IPv6 public network gateway is created by the metadata server.
A metadata Server (Meta-Server) is a Server for storing system data characterizing file features within a virtual private cloud. In this embodiment, a user of the virtual private cloud may access the metadata server through the console, and invoke the metadata server to create an IPv6 public network gateway. Optionally, the metadata server can delete and update the IPv6 public network gateway.
Please refer to fig. 3, which illustrates a schematic diagram of a modular implementation principle of a configuration method of a virtual private cloud service according to an embodiment of the present application, and illustrates a schematic diagram of a data interaction relationship between modules in a virtual private cloud. As shown in fig. 3, after receiving a request of a user to create an IPv6 public network gateway in a VPC, the console invokes the metadata server to create an IPv6 public network gateway in the first step, and the metadata server invokes the gateway server in the second step to issue a configuration request of the IPv6 public network gateway. The gateway server can configure the IPv6 public network gateway according to the routing table information issued in the first step and the second step, and then issue the relevant configuration of the IPv6 public network gateway to the gateway device in the third step. The metadata server may also return the request result of the configuration request to the console in step iv. The request result may be notification information characterizing success or failure of configuration.
It should be noted that the gateway server, the metadata server, the gateway device, the network controller, the charging module, and the monitoring module in fig. 3 may be hardware or software modules that implement corresponding functions, and when the gateway server, the metadata server, the gateway device, the network controller, the charging module, and the monitoring module are software, they may be installed in the cloud host of the virtual private cloud. It may be implemented, for example, as multiple software or software modules to provide distributed services, or as a single software or software module.
In some optional implementation manners of this embodiment, the routing table information may further include speed limit information that a request carrying an IPv6 address in the virtual private cloud is connected to the public network through the created IPv6 public network gateway, and access restriction information that is in communication with the public network in the virtual private cloud. The speed limit information is the limit information of the speed of the IPv6 public network gateway in the virtual private cloud for receiving and sending the request. In order to ensure that the IPv6 public network gateway operates stably and avoid the performance of the cloud service from jittering due to excessive virtual private cloud pressure when requests are sent concurrently, the speed limit information may be configured.
The access restriction information communicated with the public network in the virtual private cloud may include data transmission direction restriction information, access permission information, and the like, in which the cloud host in the virtual private cloud and the public cloud perform north-south communication.
As an example, the access restriction information communicated with the public network in the virtual private cloud may be, for example: the virtual private cloud and the public cloud are communicated through an 'only-out-and-no-in' switch. The "go-no-go" switch may specifically be a parameter that characterizes a permission to allow the virtual private cloud one-way access to the public cloud and a permission to disallow the public cloud access to the virtual private cloud.
The access restriction information communicated with the public network in the virtual private cloud may further include traffic statistics policy information, where the traffic statistics policy information is information indicating a statistics rule of data traffic of the virtual private cloud accessing the public cloud.
When a user creates an IPv6 public network gateway, in addition to configuring a routing rule of the gateway, the speed limit information of the request carrying the IPv6 address in the virtual private cloud and connecting to the public network through the created IPv6 public network gateway and the access constraint information of communication with the public network in the virtual private cloud can be configured. The metadata server can acquire the information configured by the user through the console, create a corresponding speed limit strategy, a flow statistic strategy and a right management strategy, and then send the information to the gateway server for configuration. And the gateway server is configured and then issued to the gateway equipment.
Therefore, besides configuring a path for forwarding the request in the virtual private cloud by the IPv6 public network gateway, the speed limit information, the authority information and the traffic statistical information of the request can be configured, the configuration of the IPv6 public network gateway is further perfected, the processing efficiency of IPv6 access in the virtual private cloud is favorably ensured, and the stability of the virtual private cloud service is ensured.
With continued reference to fig. 4, shown is a flow diagram of another embodiment of a method of configuration of a virtual private cloud service in accordance with the present application. As shown in fig. 4, a flow 400 of the configuration method of the virtual private cloud service of the present embodiment includes the following steps:
step 401, in response to receiving a request for creating an IPv6 public network gateway in the virtual private cloud, obtaining configured routing table information.
In this embodiment, an executing subject of the configuration method of the virtual private cloud service (e.g., a cloud host of the virtual private cloud shown in fig. 1) may receive a request to create an IPv6 public gateway within the virtual private cloud. A virtual private cloud may be a private cloud service built for individual customer use; the public network is a public network and is a public cloud service for providing shared resources for different customers. The public network gateway in the virtual private cloud is a network connection device for forwarding the request in the virtual private cloud to the public network. An IPv6 public network gateway within the virtual private cloud is a network connection device adapted to forward requests carrying IPv6 addresses.
After the execution body receives the request for creating the IPv6 public network gateway, the routing table information configured by the user can be obtained. The routing table information may include path information within the virtual private cloud that requests to connect to the public network through the created IPv6 public network gateway, carrying an IPv6 address. The path information includes a path to a public network segment, which may be configured by a user through a console.
Step 402, sending a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
In this embodiment, after the user submits, through the console, a request for creating an IPv6 public network gateway in the virtual private cloud and configures corresponding routing table information, the execution subject may send a routing configuration request to a gateway server in the virtual private cloud.
The gateway server of the virtual private cloud may be connected to the execution subject and the gateway device of the virtual private cloud. The routing configuration request sent by the execution body to the gateway server may include a configuration request of the routing table information. The gateway server may issue routing table information to the connected gateway device in response to receiving the configuration request. And the gateway equipment configures a routing strategy according to the received routing table information, so as to realize the configuration of the IPv6 public network gateway in the virtual private cloud.
The steps 401 and 402 are respectively the same as the steps 201 and 202 in the foregoing embodiment, and specific implementation manners of the steps 401 and 402 may also refer to the foregoing description of the steps 201 and 202, which is not described herein again.
Step 403, in response to receiving a request for accessing the public network from a request end carrying an IPv6 address in the virtual private cloud, linking the request for accessing the public network to a gateway device configured with the routing table information corresponding to the request end, so as to forward the request through the gateway device configured with the routing table information corresponding to the request end.
When a host in the virtual private cloud initiates a request for accessing the public network through an IPv6 address, the execution main body may search, according to the IP address of the request end, the gateway device configured with the routing table information corresponding to the IP address of the request end through the gateway server, and link the request to the gateway device for forwarding.
It should be noted that the execution subject may be any cloud host in the virtual private cloud, and may be a cloud host including a software module that implements a gateway server function. At this time, the cloud host may execute the function of the gateway server, and find the gateway device configured with the routing table information of the public network access request carrying the IPv6 address. And routing and forwarding the public network access request carrying the IPv6 address by the searched gateway equipment. Specifically, the found gateway device can convert the internal and external IP addresses of the request end into public network IP addresses, so that the public network can be accessed through the configured IPv6 public network gateway in the virtual private cloud.
In some optional implementation manners of this embodiment, the flow 400 of the configuration method of the virtual private cloud service may further include:
step 404, obtaining the flow information of the gateway device configured with the routing table information, and pushing the flow information to the charging module and the monitoring module of the virtual private cloud.
In this embodiment, traffic of the cloud host in the virtual private cloud accessing the public network through the IPv6 public network gateway does not overlap with traffic accessing the public network through the IPv4 gateway. In order to facilitate statistics and monitoring of IPv6 traffic, the execution main body may further obtain traffic information of a gateway device configured with an IPv6 public network gateway, and send the traffic information to a charging module and a monitoring module of the virtual private cloud.
The charging module can be a module for calculating the traffic fee generated by the virtual private cloud accessing the public network through the IPv6 public network gateway. The monitoring module may be a module that monitors the operating state of each cloud host or each functional module of the virtual private cloud. The acquired flow information of the gateway equipment configured with the IPv6 public network gateway is sent to the charging module and the monitoring module, so that a user of the virtual private cloud can be helped to know the IPv6 access condition of the virtual private cloud.
As can be seen from fig. 4, in the configuration method of the virtual private cloud service according to this embodiment, by adding a step of responding to a received request for accessing the public network from a request terminal carrying an IPv6 address in the virtual private cloud, and linking the request for accessing the public network to a gateway device configured with routing table information corresponding to the request terminal, public network access through an IPv6 public network gateway in the virtual private cloud is implemented, address conversion between the private network and the public network is directly performed by the IPv6 public network during access, and access to the public network through an IPv6 address alone is implemented.
Furthermore, the flow information of the gateway equipment configured with the routing table information of the IPv6 public network gateway is pushed to the charging module and the monitoring module of the virtual private cloud, so that the monitoring of the IPv6 flow of the virtual private cloud is realized, and the users are helped to effectively manage and utilize the resources of the virtual private cloud service.
Referring back to fig. 3, as shown in fig. 3, the virtual private cloud further includes a network controller, the network controller may be connected to the monitoring module and the charging module, in the fifth step, the gateway server may report the traffic information of the IPv6 public network gateway to the network control module, and in the sixth step, the network control module may forward the traffic information to the monitoring module and the charging module for traffic monitoring and cost calculation.
With further reference to fig. 5, as an implementation of the method shown in the above-mentioned figures, the present application provides an embodiment of a configuration apparatus of a virtual private cloud service, where the embodiment of the apparatus corresponds to the embodiment of the method shown in fig. 2 and fig. 4, and the apparatus may be specifically applied to various electronic devices.
As shown in fig. 5, the configuration apparatus 500 of the virtual private cloud service of the present embodiment includes: an acquisition unit 501 and a transmission unit 502. The obtaining unit 501 may be configured to, in response to receiving a request for creating an IPv6 public network gateway in the virtual private cloud, obtain configured routing table information, where the routing table information includes path information for connecting a request carrying an IPv6 address in the virtual private cloud to the public network through the created IPv6 public network gateway; the sending unit 502 may be configured to send a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to a gateway device of the virtual private cloud.
In some embodiments, the apparatus 500 may further include: the forwarding unit is configured to link a request for accessing the public network to the gateway device configured with the routing table information corresponding to the request end in response to receiving the request for accessing the public network from the request end carrying the IPv6 address in the virtual private cloud, so as to forward the request through the gateway device configured with the routing table information corresponding to the request end.
In some embodiments, the apparatus 500 may further include: and the pushing unit is configured to acquire the flow information of the gateway equipment configured with the routing table information and push the flow information to the charging module and the monitoring module of the virtual private cloud.
In some embodiments, the apparatus 500 may further include: a creating unit configured to create an IPv6 public network gateway by the metadata server in response to receiving a request to create an IPv6 public network gateway within the virtual private cloud before sending a route configuration request to the gateway server within the virtual private cloud according to the acquired route table information.
In some embodiments, the routing table information further includes speed limit information of a request carrying an IPv6 address in the virtual private cloud for connecting to the public network through the created IPv6 public network gateway, and access restriction information of communication with the public network in the virtual private cloud.
It should be understood that the elements recited in apparatus 500 correspond to various steps in the methods described with reference to fig. 2 and 4. Thus, the operations and features described above for the method are equally applicable to the apparatus 500 and the units included therein, and are not described in detail here.
The configuration apparatus 500 for a virtual private cloud service according to the above embodiment of the present application obtains configured routing table information by responding to a received request for creating an IPv6 public network gateway in a virtual private cloud, where the routing table information includes path information for connecting a request carrying an IPv6 address in the virtual private cloud to a public network through the created IPv6 public network gateway, and sends a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to a gateway device of the virtual private cloud, thereby implementing communication between a virtual machine in a VPC and an external network through IPv6, and without binding an IPv6 address and an IPv4 address, and effectively improving flexibility of the virtual private cloud service.
Referring now to fig. 6, a schematic diagram of an electronic device (e.g., the cloud host of fig. 1) 600 suitable for use in implementing embodiments of the present disclosure is shown. The server shown in fig. 6 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present disclosure.
As shown in fig. 6, electronic device 600 may include a processing means (e.g., central processing unit, graphics processor, etc.) 601 that may perform various appropriate actions and processes in accordance with a program stored in a Read Only Memory (ROM)602 or a program loaded from a storage means 608 into a Random Access Memory (RAM) 603. In the RAM 603, various programs and data necessary for the operation of the electronic apparatus 600 are also stored. The processing device 601, the ROM 602, and the RAM 603 are connected to each other via a bus 604. An input/output (I/O) interface 605 is also connected to bus 604.
Generally, the following devices may be connected to the I/O interface 605: input devices 606 including, for example, a touch screen, touch pad, keyboard, mouse, camera, microphone, accelerometer, gyroscope, etc.; output devices 607 including, for example, a Liquid Crystal Display (LCD), a speaker, a vibrator, and the like; a storage device 608 including, for example, a hard disk; and a communication device 609. The communication means 609 may allow the electronic device 600 to communicate with other devices wirelessly or by wire to exchange data. While fig. 6 illustrates an electronic device 600 having various means, it is to be understood that not all illustrated means are required to be implemented or provided. More or fewer devices may alternatively be implemented or provided. Each block shown in fig. 6 may represent one device or may represent multiple devices as desired.
In particular, according to an embodiment of the present disclosure, the processes described above with reference to the flowcharts may be implemented as computer software programs. For example, embodiments of the present disclosure include a computer program product comprising a computer program embodied on a computer readable medium, the computer program comprising program code for performing the method illustrated in the flow chart. In such an embodiment, the computer program may be downloaded and installed from a network via the communication means 609, or may be installed from the storage means 608, or may be installed from the ROM 602. The computer program, when executed by the processing device 601, performs the above-described functions defined in the methods of embodiments of the present disclosure. It should be noted that the computer readable medium described in the embodiments of the present disclosure may be a computer readable signal medium or a computer readable storage medium or any combination of the two. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples of the computer readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In embodiments of the disclosure, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. In embodiments of the present disclosure, however, a computer readable signal medium may comprise a propagated data signal with computer readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: electrical wires, optical cables, RF (radio frequency), etc., or any suitable combination of the foregoing.
The computer readable medium may be embodied in the electronic device; or may exist separately without being assembled into the electronic device. The computer readable medium carries one or more programs which, when executed by the electronic device, cause the electronic device to: responding to a request for creating an IPv6 public network gateway in the virtual private cloud, and acquiring configured routing table information, wherein the routing table information comprises path information of a request carrying an IPv6 address in the virtual private cloud and connecting to a public network through the created IPv6 public network gateway; and sending a routing configuration request to a gateway server in the virtual private cloud according to the acquired routing table information so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
Computer program code for carrying out operations for embodiments of the present disclosure may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C + +, and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider).
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present application. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The units described in the embodiments of the present application may be implemented by software or hardware. The described units may also be provided in a processor, and may be described as: a processor includes an acquisition unit and a generation unit. Where the names of these elements do not in some cases constitute a limitation on the elements themselves, for example, the obtaining element may also be described as an "element that obtains configured routing table information in response to receiving a request to create an IPv6 public network gateway within the virtual private cloud.
The above description is only a preferred embodiment of the application and is illustrative of the principles of the technology employed. It will be appreciated by those skilled in the art that the scope of the invention herein disclosed is not limited to the particular combination of features described above, but also encompasses other arrangements formed by any combination of the above features or their equivalents without departing from the spirit of the invention. For example, the above features may be replaced with (but not limited to) features having similar functions disclosed in the present application.

Claims (10)

1. A configuration method of a virtual private cloud service includes:
in response to receiving a request for creating an IPv6 public network gateway in a virtual private cloud, creating an IPv6 public network gateway through a metadata server, and acquiring configured routing table information, wherein the routing table information comprises path information of the request carrying an IPv6 address in the virtual private cloud and connecting to a public network through the created IPv6 public network gateway;
and sending a routing configuration request to a gateway server in the virtual private cloud according to the acquired routing table information so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
2. The method of claim 1, wherein the method further comprises:
in response to receiving a request for accessing a public network by a request terminal carrying an IPv6 address in the virtual private cloud, linking the request for accessing the public network to gateway equipment configured with routing table information corresponding to the request terminal, so as to forward the request through the gateway equipment configured with the routing table information corresponding to the request terminal.
3. The method of claim 2, wherein the method further comprises:
and acquiring the flow information of the gateway equipment configured with the routing table information, and pushing the flow information to a charging module and a monitoring module of the virtual private cloud.
4. The method of any one of claims 1-3, wherein the routing table information further includes speed limit information for a request carrying an IPv6 address within the virtual private cloud to connect to the public network through a created IPv6 public network gateway, and access restriction information for communication with the public network within the virtual private cloud.
5. A configuration apparatus of a virtual private cloud service, comprising:
a creating unit configured to create, by the metadata server, an IPv6 public network gateway in response to receiving a request to create the IPv6 public network gateway within the virtual private cloud;
an obtaining unit, configured to obtain configured routing table information, where the routing table information includes path information of a request carrying an IPv6 address in the virtual private cloud for connecting to a public network through a created IPv6 public network gateway;
and the sending unit is configured to send a routing configuration request to a gateway server in the virtual private cloud according to the obtained routing table information, so that the gateway server configures a corresponding IPv6 public network gateway to the gateway device of the virtual private cloud.
6. The apparatus of claim 5, wherein the apparatus further comprises:
the forwarding unit is configured to link the request for accessing the public network to the gateway device configured with the routing table information corresponding to the request end in response to receiving the request for accessing the public network by the request end carrying the IPv6 address in the virtual private cloud, so as to forward the request through the gateway device configured with the routing table information corresponding to the request end.
7. The apparatus of claim 6, wherein the apparatus further comprises:
and the pushing unit is configured to acquire the flow information of the gateway equipment configured with the routing table information and push the flow information to the charging module and the monitoring module of the virtual private cloud.
8. The apparatus of any of claims 5-7, wherein the routing table information further comprises speed limit information for a request carrying an IPv6 address within the virtual private cloud to connect to the public network through a created IPv6 public network gateway, and access restriction information for communication with the public network within the virtual private cloud.
9. An electronic device, comprising:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the method of any one of claims 1-4.
10. A computer-readable medium, on which a computer program is stored, wherein the program, when executed by a processor, implements the method of any one of claims 1-4.
CN201910058697.0A 2019-01-22 2019-01-22 Configuration method and device of virtual private cloud service Active CN109561171B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910058697.0A CN109561171B (en) 2019-01-22 2019-01-22 Configuration method and device of virtual private cloud service

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910058697.0A CN109561171B (en) 2019-01-22 2019-01-22 Configuration method and device of virtual private cloud service

Publications (2)

Publication Number Publication Date
CN109561171A CN109561171A (en) 2019-04-02
CN109561171B true CN109561171B (en) 2021-11-16

Family

ID=65873368

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910058697.0A Active CN109561171B (en) 2019-01-22 2019-01-22 Configuration method and device of virtual private cloud service

Country Status (1)

Country Link
CN (1) CN109561171B (en)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115277816B (en) * 2019-04-16 2023-10-20 创新先进技术有限公司 Service adaptation method, device, system and computer readable medium
CN111917893B (en) * 2019-05-10 2022-07-12 华为云计算技术有限公司 Virtual private cloud and data center under cloud communication and configuration method and related device
CN112804367B (en) * 2019-11-14 2023-04-07 北京百度网讯科技有限公司 Address allocation method and device under dual-stack environment
CN112929322B (en) * 2019-12-06 2023-04-18 北京百度网讯科技有限公司 Method, device and system for issuing and accessing service on cloud
CN111371685B (en) * 2020-02-28 2022-06-17 北京百度网讯科技有限公司 Data processing and IPv6 mounting method and device
CN111385203B (en) * 2020-03-19 2022-02-22 上海东普信息科技有限公司 Data transmission method, device and equipment based on hybrid cloud and storage medium
CN113709200B (en) * 2020-05-21 2023-11-28 阿里巴巴集团控股有限公司 Method and device for establishing communication connection
CN113746879B (en) * 2020-05-28 2023-04-28 阿里巴巴集团控股有限公司 Data processing method and device based on Virtual Private Cloud (VPC)
CN112000540A (en) * 2020-07-20 2020-11-27 中国建设银行股份有限公司 Monitoring processing method, system, equipment and storage medium for distributed deployment products
CN112565048B (en) * 2020-11-20 2022-06-07 华云数据控股集团有限公司 Three-layer VPN (virtual private network) network creation method, three-layer VPN network data transmission method, three-layer VPN network creation device, three-layer VPN network data transmission device and electronic equipment
CN112583949A (en) * 2020-11-26 2021-03-30 新华三云计算技术有限公司 VPC (virtual private network) public network access method and VPC equipment
CN112565400A (en) * 2020-12-03 2021-03-26 东北大学 Cooperative resource distribution system and method based on IPv6 campus network
CN113014426B (en) * 2021-02-10 2023-04-07 优刻得科技股份有限公司 Method and device for establishing communication between cloud server and client server
CN113783781A (en) * 2021-08-13 2021-12-10 济南浪潮数据技术有限公司 Method and device for interworking between virtual private clouds
CN114598700B (en) * 2022-01-25 2024-03-29 阿里巴巴(中国)有限公司 Communication method and communication system
CN116545875A (en) * 2023-04-17 2023-08-04 上海米斯里通讯科技有限公司 Safety communication control system based on Internet of things

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104320258A (en) * 2014-10-24 2015-01-28 西安未来国际信息股份有限公司 Method for accessing cloud computing service to gateway
CN106559511A (en) * 2016-10-18 2017-04-05 上海优刻得信息科技有限公司 Cloud system, high in the clouds public service system and the exchanging visit method for cloud system
CN107086966A (en) * 2016-02-16 2017-08-22 阿里巴巴集团控股有限公司 A kind of load balancing of network, control and network interaction method and device
CN107580065A (en) * 2017-09-15 2018-01-12 中国联合网络通信集团有限公司 A kind of private clound cut-in method and equipment
CN107959654A (en) * 2016-10-14 2018-04-24 北京金山云网络技术有限公司 A kind of data transmission method, device and mixing cloud system
CN108429680A (en) * 2018-03-07 2018-08-21 北京优帆科技有限公司 A kind of method for configuring route, system, medium and equipment based on virtual private cloud

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102387061B (en) * 2011-10-21 2014-05-07 华为技术有限公司 Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network)

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104320258A (en) * 2014-10-24 2015-01-28 西安未来国际信息股份有限公司 Method for accessing cloud computing service to gateway
CN107086966A (en) * 2016-02-16 2017-08-22 阿里巴巴集团控股有限公司 A kind of load balancing of network, control and network interaction method and device
CN107959654A (en) * 2016-10-14 2018-04-24 北京金山云网络技术有限公司 A kind of data transmission method, device and mixing cloud system
CN106559511A (en) * 2016-10-18 2017-04-05 上海优刻得信息科技有限公司 Cloud system, high in the clouds public service system and the exchanging visit method for cloud system
CN107580065A (en) * 2017-09-15 2018-01-12 中国联合网络通信集团有限公司 A kind of private clound cut-in method and equipment
CN108429680A (en) * 2018-03-07 2018-08-21 北京优帆科技有限公司 A kind of method for configuring route, system, medium and equipment based on virtual private cloud

Also Published As

Publication number Publication date
CN109561171A (en) 2019-04-02

Similar Documents

Publication Publication Date Title
CN109561171B (en) Configuration method and device of virtual private cloud service
US9749145B2 (en) Interoperability for distributed overlay virtual environment
CN107615716B (en) Multi-tenant aware Dynamic Host Configuration Protocol (DHCP) mechanism for cloud networking
US10320674B2 (en) Independent network interfaces for virtual network environments
CN109889621B (en) Configuration method and device of virtual private cloud service
US9628290B2 (en) Traffic migration acceleration for overlay virtual environments
US20200028892A1 (en) Dns resolution of internal tenant-specific domain addresses in a multi-tenant computing environment
US9244817B2 (en) Remote debugging in a cloud computing environment
US10038665B2 (en) Reducing broadcast flooding in a software defined network of a cloud
US10917379B2 (en) Domain intercommunication in shared computing environments
CN106657180B (en) Information transmission method and device for cloud service, terminal equipment and system
US10230795B2 (en) Data replication for a virtual networking system
US11627169B2 (en) Network-based Media Processing (NBMP) workflow management through 5G Framework for Live Uplink Streaming (FLUS) control
US20200120062A1 (en) Stateful lisp subscription for overlapping subnetworks
US20160241643A1 (en) Protocol independent storage discovery and enablement
CN116389599A (en) Gateway service request processing method and device and cloud native gateway system management method and device
EP4000239B1 (en) 3rd generation partnership project (3gpp) framework for live uplink streaming (flus) sink capabilities determination
US11863520B2 (en) Data access methods and systems

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
EE01 Entry into force of recordation of patent licensing contract

Application publication date: 20190402

Assignee: Beijing Intellectual Property Management Co.,Ltd.

Assignor: BEIJING BAIDU NETCOM SCIENCE AND TECHNOLOGY Co.,Ltd.

Contract record no.: X2023110000096

Denomination of invention: Configuration methods and devices for virtual private cloud services

Granted publication date: 20211116

License type: Common License

Record date: 20230821

EE01 Entry into force of recordation of patent licensing contract