CN109728984A - A kind of access system, method and device - Google Patents

A kind of access system, method and device Download PDF

Info

Publication number
CN109728984A
CN109728984A CN201811417167.2A CN201811417167A CN109728984A CN 109728984 A CN109728984 A CN 109728984A CN 201811417167 A CN201811417167 A CN 201811417167A CN 109728984 A CN109728984 A CN 109728984A
Authority
CN
China
Prior art keywords
business datum
network
hardware device
cloud resource
virtual lan
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811417167.2A
Other languages
Chinese (zh)
Other versions
CN109728984B (en
Inventor
张争宪
谢华国
赵海飞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Cloud Computing Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201811417167.2A priority Critical patent/CN109728984B/en
Publication of CN109728984A publication Critical patent/CN109728984A/en
Priority to PCT/CN2019/120649 priority patent/WO2020108438A1/en
Application granted granted Critical
Publication of CN109728984B publication Critical patent/CN109728984B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks

Abstract

A kind of access system, method and device, which includes at least one of network or hardware device, virtual LAN gateway and cloud resource;The network or hardware device, for sending business datum;The virtual LAN gateway by the business datum, is converted to the business datum of uniform protocol for receiving the business datum of at least one of the network or hardware device transmission, and sends the business datum of the uniform protocol to cloud resource;The cloud resource, for receiving the business datum for the uniform protocol that the virtual LAN gateway is sent.Using the system of the application, method or apparatus, the access of cloud resource can be simplified.

Description

A kind of access system, method and device
Technical field
This application involves field of communication technology more particularly to a kind of access systems, method and device.
Background technique
With the development of cloud, cloud resource is widely used.In the prior art, different networks or hardware is all It needs to access cloud resource.For example, bare metal server (bare metal server, BMS), trust territory network, new hardware (ratio Such as encryption equipment) there is the demand for accessing cloud resource.
Currently, different network or hardware, access cloud resource in different ways.For example, as shown in Figure 1a, BMS is logical Cross open source virtual switch (open vswitch, OVS) access cloud resource.As shown in Figure 1 b, trust territory network passes through the next generation Firewall (next generation firewall, ngfw) accesses cloud resource.As illustrated in figure 1 c, new hardware is accessed by OVS Cloud resource.Since the mode of different networks or hardware access cloud resource is different, the access way for accessing cloud resource is more complex.
Summary of the invention
The embodiment of the present application provides a kind of access system, method and device, in a manner of simplifying and access cloud resource.
In a first aspect, providing a kind of access system, including at least one of network or hardware device, virtual LAN net Pass and cloud resource;
Wherein, the network or hardware device, for sending business datum;The virtual LAN gateway, for receiving The business datum is converted to uniform protocol by the business datum that at least one of the network or hardware device are sent Business datum, and the business datum of the uniform protocol is sent to cloud resource;The cloud resource, for receiving the virtual office The business datum for the uniform protocol that area network gateway is sent.
Therefore network or hardware device pass through virtual LAN gateway accessing cloud resource, and do not limit network or The type of hardware device.Namely no matter what type of network or hardware device can pass through virtual LAN gateway accessing cloud Resource.Corresponding, different types of network or hardware device access cloud resource by different modes, can simplify connecing for cloud resource Enter mode.
In a kind of possible design, the system also includes interchangers;The interchanger, for receive the network or The business datum that at least one of hardware device is sent carries out dilatation processing to the business datum, after sending dilatation processing Business datum to the virtual LAN gateway, the dilatation processing can access network or hardware device for increasing cloud resource Quantity;The virtual LAN gateway, business datum that treated for receiving the dilatation that the interchanger is sent, will be described The business datum of dilatation treated business datum is converted to uniform protocol sends the business datum of the uniform protocol to described Cloud resource.
Therefore the network and hardware device quantity of accessible cloud resource can be expanded by interchanger, to solve cloud Resource can not extensive dilatation the problem of.
In a kind of possible design, including head point, institute in business datum transmitted by the network or hardware device It states and includes at least VLAN ID field in head point, include virtual local area network mark in the VLAN ID field Know, the VLAN ID cloud resource is distributed by network or hardware device in advance;
For the interchanger when carrying out dilatation processing to the business datum, be specifically used for: the interchanger is in the industry In the head point for data of being engaged in, VLAN ID field is increased newly;Alternatively, the interchanger is on the head of the business datum point In in included VLAN ID field, increase amount of bits corresponding to the VLAN ID.
By above-mentioned newly-increased VLAN ID field, or increase amount of bits corresponding to VLAN ID Operation, can expand cloud resource can access network and hardware device quantity.
It include that source interconnection net is assisted in a kind of possible design, in business datum transmitted by the network or hardware device IP address field is discussed, the source IP address field network or hardware device oneself are distributed.
Therefore use the scheme of network or hardware device oneself for the IP address distributed as source IP address, phase For, scheme of the IP address for using cloud resource to be distributed by the network equipment or hardware device as source IP address, can solve pair The problem of IP address quantity limits.
In a kind of possible design, the virtual LAN gateway is also used to: receiving the business that the cloud resource is sent Data, include purpose IP address field in the business datum, the destination IP address field be the cloud resource be network or What hardware device was distributed;According to the routing table of pre-configuration, the business datum is sent to corresponding network or hardware device, institute It states and is stored with what the IP address that network or hardware device oneself are distributed was distributed with cloud resource by network or hardware in routing table Corresponding relationship between IP address.
Second aspect provides a kind of cut-in method, comprising: virtual LAN gateway receives in network or hardware device extremely The business datum of a few transmission;The business datum is converted to the business number of uniform protocol by the virtual LAN gateway According to;The virtual LAN gateway sends the business datum of the uniform protocol to cloud resource.
In a kind of possible design, wrapped in business datum transmitted by least one of the network or hardware device Include source internet protocol IP address field, the source IP address field network or hardware device oneself are distributed.
In a kind of possible design, the method also includes: the virtual LAN gateway receives the cloud resource hair The business datum sent, includes purpose IP address field in the business datum, and the destination IP address field is the cloud resource It is distributed by network or hardware device;The virtual LAN gateway sends the business number according to the routing table of pre-configuration According to extremely corresponding network or hardware device, the IP address and cloud money that network or hardware oneself are distributed are stored in the routing table Corresponding relationship between the IP address that source is distributed by network or hardware.
In a kind of possible design, the virtual LAN gateway receives at least one of network or hardware device hair The business datum sent, comprising: the dilatation that the virtual LAN gateway desampler is sent treated business datum, it is described Treated that business datum is is generated according to the business datum that at least one of the network or hardware device are sent for dilatation 's;The business datum is converted to the business datum of uniform protocol by the virtual LAN gateway, comprising: the virtual office Area network gateway is by the business datum of the dilatation treated business datum is converted to uniform protocol.
The third aspect provides a kind of cut-in method, comprising: interchanger receives at least one of network or hardware device hair The business datum sent;The interchanger carries out dilatation processing to the business datum, sends dilatation treated business datum extremely Virtual LAN gateway, the dilatation processing can access the quantity of network or hardware device for increasing cloud resource.
In a kind of possible design, VLAN ID field is included at least in the head point of the business datum, It include VLAN ID in the VLAN ID field, the VLAN ID is that the cloud resource is preparatory It is distributed to network or hardware device;
The interchanger carries out dilatation processing to the business datum, comprising: the interchanger is in the business datum In head point, VLAN ID field is increased newly;Alternatively, the interchanger is included in the head of the business datum point VLAN ID field in, increase amount of bits corresponding to the VLAN ID.
Fourth aspect, the application provide a kind of communication device, suitable for the first calculate node or the first calculate node Chip, including the unit or means (means) for executing the above second aspect or each step of the third aspect.
5th aspect, the application provide a kind of communication device, the chip suitable for terminal device or terminal device, including At least one processing element and at least one memory element, wherein at least one described memory element is for storing program sum number According at least one described processing element is used to execute the method that the application second aspect or the third aspect provide.
6th aspect, the application provides a kind of communication device, including for executing the above second aspect or the third aspect At least one processing element (or chip) of method.
7th aspect, the application provide a kind of computer program product, which includes computer instruction, When the computer instruction is computer-executed, so that the computer executes the method in terms of any of the above.
Eighth aspect, this application provides a kind of computer readable storage medium, which is stored with computer and refers to It enables, when the computer instruction is computer-executed, so that the computer executes the method in terms of any of the above.
Detailed description of the invention
Fig. 1 a to Fig. 1 c is access system schematic diagram provided by the embodiments of the present application;
Fig. 2 a to Fig. 2 c is the schematic diagram of access system provided by the embodiments of the present application;
Fig. 3 a to Fig. 3 c is the schematic diagram of access system provided by the embodiments of the present application;
Fig. 4 is a specific example of access system provided by the embodiments of the present application;
Fig. 5 and Fig. 6 is the flow chart of cut-in method provided by the embodiments of the present application;
Fig. 7 and Fig. 8 is the structural schematic diagram of access device provided by the embodiments of the present application.
Specific embodiment
Below in conjunction with the attached drawing in the embodiment of the present application, technical solutions in the embodiments of the present application is described.
Fig. 2 a shows a kind of access system 200a, includes network 201a, virtual LAN gateway in access system 200a (virtual local area network gateway, VLAN GW) 202 and cloud resource 203.Virtual LAN gateway 202 First end be connected with network 201a, second end is connected with cloud resource 203.
Wherein, network 201a, for sending business datum to virtual LAN gateway 202.It can be wrapped in the network 201a A network is included, alternatively, multiple networks, the type of the multiple network is identical or different.For example, the network 201a can but not It is limited to for trust territory network.
Virtual LAN gateway 202, the business datum for sending the network 201a are converted to the industry of uniform protocol It is engaged in data, and sends the business datum of the uniform protocol to cloud resource 203, wherein the uniform protocol is that cloud resource 203 can be with Identification and decoded agreement.
Cloud resource 203, the business number of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
Therefore in the access system 200a shown in Fig. 2 a, the mode phase of different types of network insertion cloud resource Together, relative to different types of network accesses cloud resource in different ways, can simplify the access way of cloud resource.
Specifically, may include two parts in business datum transmitted by network 201a, respectively head (header) partially and The part data (data).Wherein, head point may include the source internet protocol word location (internet protocol, IP) and purpose IP address.Source IP address is the IP address of network 201a, and purpose IP address is the IP address of cloud resource 203.Source IP address is net The IP address that network oneself is distributed, alternatively, source IP address is by the IP address that cloud resource is that network distributes.Since cloud resource is divided The IP address matched is limited, therefore, the scheme for using network oneself for the IP address distributed as source IP address, relative to adopting It uses the IP address that cloud resource is network equipment distribution as the scheme of source IP address, can solve to ask IP address quantity limitation Topic.
In the embodiment of the present application, if network 201a use network to be distributed for oneself IP address as source IP address Scheme, then the executable following operation of the virtual LAN gateway 202: the IP address oneself distributed according to network 201a with The IP address that cloud resource 203 is distributed by network 201a generates routing table.For the convenience of description, can be by network 201a oneself institute The IP address of distribution is known as the first IP address of network 201a, and cloud resource 203 is known as by the network 201a IP address distributed The second IP address of network 201a.It may include the corresponding relationship of the first IP address Yu the second IP address in the routing table.In addition, It is to be appreciated that the vocabulary such as " first ", " second " are only used for distinguishing the purpose of description, and cannot in the description of the present application It is interpreted as indication or suggestion relative importance, indication or suggestion sequence can not be interpreted as.
In this way, in the downstream direction, business datum can be transmitted to virtual LAN gateway 202 in cloud resource 203.Wherein, cloud May include head point and data portion in business datum transmitted by resource 203, may include in the head point source IP address and Purpose IP address, the source IP address are the IP address of cloud resource 203, and the destination IP address is the 2nd IP of network 201a Location.The virtual LAN gateway 202, can be according to above-mentioned routing table when receiving the business datum of the transmission of cloud resource 203, will The second IP address conversion in the business datum is the first IP address, and sends the business datum after conversion IP to network 201a。
Optionally, as shown in Figure 3a, it may also include interchanger 204 in access system 200a, for can access to cloud resource The quantity of network or hardware device carries out dilatation.Interchanger 204 can be hardware switch, can also be software switch.For example, handing over Change planes to be open source virtual switch (open vswitch, OVS) or highest level (top of rank, TOR) interchanger.
Wherein, the first end of interchanger 204 is connected with network 201a, the second end and virtual LAN net of interchanger 204 The first end of pass 202 is connected, and the second end of virtual LAN gateway 202 is connected with cloud resource 203.
Specifically, the process of entire data processing is as follows:
Network 201a, for sending business datum to interchanger 204;
Interchanger 204, the business datum for sending to network 201a carries out dilatation processing, and treated for transmission dilatation Business datum to virtual LAN gateway 202, the dilatation processing can access network or hardware device for increasing cloud resource 203 Quantity.
Virtual LAN gateway 202 for dilatation treated the business datum that desampler 204 is sent, and will expand Holding treated, business datum be converted to the business datum of uniform protocol.
Cloud resource 203, the business datum of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
In the embodiment of the present application, the business datum that network 201a is sent can wrap portion's two parts, respectively head (header) Part and the part data (data).Wherein, head point may include VLAN ID field, and the VLAN ID is What cloud resource was distributed by network equipment 201a in advance, the VLAN ID field is used to identify the net of access cloud resource Network or hardware device.
In a kind of example, interchanger 204, can be in business datum when receiving the business datum of network 201a transmission In head point, VLAN ID field is increased newly.For example, in the embodiment of the present application, industry transmitted by network equipment 201a Include a VLAN ID field in the head point for data of being engaged in, includes 4 ratios in the VLAN ID field Special data.Interchanger 204 can increase a virtual local area newly after receiving the business datum in the head of business datum point Net identification field may also comprise 4 bit datas in newly-increased VLAN ID field.Due to the VLAN ID For identifying the network or hardware device of access cloud resource 203, then, it include a virtual LAN word originally in business datum Duan Shi, entire cloud resource can access 24(16) a network or hardware device.After the dilatation of interchanger processing, entire cloud is provided Source can access 28(256) a network or hardware device.
In a kind of example, interchanger 204, can be in business datum when receiving business datum transmitted by network 201a Head point in included VLAN ID field, increase bit number corresponding to the VLAN ID Amount.For example, include a VLAN ID field in the head of business datum transmitted by network 201a point, it is described virtual It include 4 bit datas in LAN ID field, 4 bit data is for indicating virtual office corresponding to the network 201a Domain network mark is known.In this example, interchanger 204 can increase the amount of bits in VLAN ID field, for example, can will be empty Amount of bits in quasi- local area field increases to 8 bit numbers by 4 bits.Similarly, the maximum network and hardware for accessing cloud resource are set Standby quantity can be by 24Increase to 28
Therefore in the embodiment of the present application, using double layer VLAN technology, can solve cloud resource can not extensive dilatation The problem of.
Fig. 2 b shows a kind of access system 200b, includes hardware device 201b, virtual LAN in access system 200b Gateway (virtual local area network gateway, VLAN GW) 202 and cloud resource 203.Virtual LAN gateway 202 first end is connected with hardware device 201b, and second end is connected with cloud resource 203.
Wherein, hardware device 201b, for sending business datum to virtual LAN gateway 202.The hardware device It may include a hardware device in 201b, alternatively, multiple hardware devices, the type of the multiple hardware device is identical or different. For example, the hardware device 201b can be bare metal server (bare metal server, BMS) or encryption equipment etc..
Virtual LAN gateway 202, the business datum for sending the hardware device 201b are converted to uniform protocol Business datum, and send the business datum of the uniform protocol to cloud resource 203.
Cloud resource 203, the business datum of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
Therefore in the embodiment of the present application, in the access system 200b shown in Fig. 2 b, different types of hardware is set The mode of standby access cloud resource is identical, relative to different types of hardware device accesses cloud resource in different ways, can letter Change the access way of cloud resource.
Specifically, may also comprise two parts in business datum transmitted by hardware device 201b, sum number is divided on respectively head According to part.Wherein, head point may include source IP address and purpose IP address.Source IP address is the IP address of hardware device, purpose IP address is the IP address of cloud resource.The IP address that the source IP address is distributed by hardware oneself, alternatively, the source IP address It is the IP address that hardware device distributes by cloud resource.Since the IP address that cloud resource is distributed is limited, certainly using network Scheme of the IP address that oneself divides as source IP address, relative to the IP address for using cloud resource to be distributed by hardware device is made For the scheme of source IP address, can solve the problems, such as to limit IP address quantity.
In the embodiment of the present application, if hardware device 201b use network to be distributed for oneself IP address as source IP The then executable following operation of the virtual LAN gateway 202: the scheme of address oneself is distributed according to hardware device 201b The IP address that IP address and cloud resource 203 are distributed by hardware device 201b generates routing table.For the convenience of description, can will be hard The IP address that part equipment 201b oneself is distributed is known as the first IP address of hardware device 201b, and cloud resource 203 is set for hardware The IP address that standby 201b is distributed is known as the second IP address of hardware device 201b.It may include the first IP address in the routing table With the corresponding relationship of the second IP address.
In this way, when cloud resource 203 sends business datum to virtual LAN gateway 202, industry transmitted by cloud resource 203 It may also comprise head point and data portion in business data, may include source IP address and purpose IP address in the head point, it is described Source IP address is the IP address of cloud resource 203, and the destination IP address is the second IP address of hardware device 201b.It is described virtual LAN gateway 202, can be according to above-mentioned routing table, by the business number when receiving the business datum of the transmission of cloud resource 203 The second IP address conversion in is the first IP address, and sends the business datum after conversion IP to hardware device 201b.
Optionally, as shown in Figure 3b, it may also include interchanger 204 in access system 200b, for can access to cloud resource The quantity of network or hardware device carries out dilatation.Interchanger 204 can be hardware switch, can also be software switch.
Wherein, the first end of interchanger 204 is connected with hardware device 201b, the second end and virtual local area of interchanger 204 The first end of net gateway 202 is connected, and the second end of virtual LAN gateway 202 is connected with cloud resource 203.
Specifically, the process of entire data processing is as follows:
Hardware device 201b, for sending business datum to interchanger 204;
Interchanger 204, the business datum for sending to hardware device 201b carry out dilatation processing, and send dilatation processing Business datum afterwards to virtual LAN gateway 202, the dilatation processing can access network or hardware for increasing cloud resource 203 The quantity of equipment.
Virtual LAN gateway 202 for dilatation treated the business datum that desampler 204 is sent, and will expand Holding treated, business datum be converted to the business datum of uniform protocol.
Cloud resource 203, the business datum of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
The dilatation of business datum is handled about interchanger 204, reference can be made to exemplary introduction shown in above-mentioned Fig. 3 a, herein not Illustrate again.
As shown in figure 4, providing the specific example of an access cloud resource.In the example depicted in fig. 4, it is with hardware device BMS server, interchanger are TOR interchanger, and cloud resource includes private line gateway (gate way, GW), virtual router (virtual, VR, Router), Linux virtual server (linux virtual server, LVS), purpose network address turn Change (destination network address translation, DNAT), soft network address translation (network For address translation, NAT and next generation firewall (next generation firewall, ngfw), in detail Illustrate the process of the application:
Specifically, BMS server may include that virtual LAN (virtual local area network, VLAN) connects Mouthful, BMS server is connected by VLAN interface with the first end of TOR interchanger, the second end and virtual LAN of TOR interchanger The first end of gateway is connected, and the second end of the virtual LAN gateway is connected with the first end of the special line GW in cloud resource, specially The second end of line GW is connected with the first end of VR, and the second end of the VR is connected with LVS, the third end of VR and the first end of DNAT It is connected, the second end of DNAT is connected with the first end of soft NAT, and the second end of soft NAT is connected with the first end of ngfw, and the of ngfw Two ends are connected with public network.
Wherein, the console (console) of virtual LAN gateway provides interface, supports creation VLAN GW subnet, and should Subnet can be by configuring other subnet intercommunications in special line and cloud resource.Special line GW is responsible for will be under VLAN GW subnet and Client line Data center gets through.LVS is responsible for establishing the tunnel VLANX between VR and LVS, and using the Floating IP address of VR as VTEP IP, console is saturating It passes virtualization identification field and gives VR etc. virtualization flow to LVS, LVS.DNAT is responsible for the complete of EIP and VLAN GW subnet IP Port (all ports) mapping.
As shown in figure 4, can also include virtual private cloud (virtual private cloud, VPC) in BMS server Interface, the BMS are connected by VPC interface with TOR interchanger, and the TOR interchanger is connected with BMGW, and the BMGW can access Cloud resources such as virtual private cloud etc..
Fig. 2 c shows a kind of access system 200c, includes network 201a, hardware device 201b, void in access system 200c Quasi- LAN gateway 202 and cloud resource 203.The first end of virtual LAN gateway 202 respectively with network 201a and hardware device 201b is connected, and second end is connected with cloud resource 203.
Wherein, network 201a and hardware device 201b, for sending business datum to virtual LAN gateway 202.It is described It may include one or more networks in network 201a, the type of multiple networks may be the same or different, and can wrap in hardware device 201b One or more hardware devices are included, the type of multiple hardware devices can be different or different.
Virtual LAN gateway 202, the business datum sent for receiving network 201a and hardware device 201b, and by institute It states the business datum that business datum is converted to uniform protocol, and sends the business datum of the uniform protocol to cloud resource 203.
About virtual LAN gateway 202 to the treatment process of business datum transmitted by network 201a, and hardware is set The treatment process of business datum transmitted by standby 201b, can no longer illustrate herein respectively referring to the record in above-mentioned Fig. 2 a or Fig. 2 b.
Cloud resource 203, the business datum of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
Therefore in the embodiment of the present application, in access system shown in Fig. 2 a, Fig. 2 b and Fig. 2 c, network or hardware Equipment passes through virtual LAN gateway 202 and accesses cloud resource 203, and does not limit the type of network or hardware device.Namely No matter what type of network or hardware device, which can pass through virtual LAN gateway 202, is accessed cloud resource 203.It is corresponding, no The network or hardware device of same type access cloud resource 203 by different modes, can simplify the access way of cloud resource.
Fig. 3 c shows a kind of access system 300c, includes network equipment 301a, hardware device in access system 300c 301b, interchanger 204, virtual LAN gateway 202 and cloud resource 203.
Wherein, the first end of interchanger 204 is connected with network 201a and hardware device 201b respectively, and the of interchanger 204 Two ends are connected with the first end of virtual LAN gateway 202, and the second end of virtual LAN gateway 202 is connected with cloud resource 203.
Specifically, network equipment 201a and hardware device 201b, for sending business datum to interchanger 204.
Interchanger 204, the business datum sent for receiving network equipment 201a and hardware device 201b, and to the industry Data of being engaged in carry out dilatation processing, and send dilatation treated business datum to virtual LAN gateway 202.It is handled about dilatation Process no longer illustrate herein referring to the record in above-mentioned Fig. 3 a and Fig. 3 b.
Virtual LAN gateway 202 for dilatation treated the business datum that desampler 204 is sent, and will expand The business datum for holding treated, business datum is converted to uniform protocol sends the business datum of uniform protocol to cloud resource 203.
Cloud resource 203, the business datum of the uniform protocol for receiving the transmission of virtual LAN gateway 202.
Therefore, it can be achieved that different types of network and hardware device access in the access system provided by Fig. 3 c Cloud resource simplifies the mode of access cloud resource.Meanwhile the maximum number that can access network and hardware device in cloud resource can be increased Amount realizes the dilatation to cloud resource.
As shown in figure 5, providing a kind of process of cut-in method, virtual LAN gateway, network, the hardware in the process are set Standby and cloud resource may respectively be as virtual LAN gateway, the net in above-mentioned Fig. 2 a, Fig. 2 b, Fig. 2 c, Fig. 3 a, Fig. 3 b or Fig. 3 c Network, hardware resource and cloud resource.The process are as follows:
S501. at least one of network or hardware device send business datum to virtual LAN gateway.
At least one of network or hardware device can only include network, perhaps only include hardware device or wrapping simultaneously Network or hardware device are included, the quantity of network can be one or more, and the type of multiple networks is identical or different, hardware device Quantity can be one or more, and the type of multiple hardware devices is identical or different.
S502. virtual LAN gateway receives business datum transmitted by least one of network or hardware device, will The business datum is converted to the business datum of uniform protocol, sends the business datum of the uniform protocol to cloud resource.About Virtual LAN gateway no longer illustrates the treatment process of business datum referring to above-mentioned record herein.
S503. cloud resource receives the business datum of uniform protocol.
As shown in fig. 6, a kind of process of cut-in method is provided, virtual LAN gateway, interchanger, net in the process Network, hardware device and cloud resource may respectively be virtual LAN gateway in above-mentioned Fig. 3 a, Fig. 3 b or Fig. 3 c, interchanger, network, Hardware resource and cloud resource.The process are as follows:
S601. at least one of network or hardware device send business datum to interchanger.
S602. interchanger receives the business datum that at least one of network or hardware device are sent, to the business number According to carrying out dilatation processing, and dilatation treated business datum is sent to virtual LAN gateway.
S603. virtual LAN gateway receives dilatation treated business datum, and by dilatation treated business datum The business datum for being converted to uniform protocol sends the business datum of the uniform protocol to cloud resource.
S604. cloud resource receives the business datum of uniform protocol.
About virtual LAN and interchanger to the treatment process of data, reference can be made to above-mentioned record, no longer illustrates herein.
It is identical as above-mentioned design, as shown in fig. 7, the application provides a kind of device 700, including communication unit 701 and processing Unit 702.
In the example of the application, device 700 can be applied to virtual LAN gateway, for executing stream shown in fig. 5 Cheng Zhong, the step of using virtual LAN gateway as executing subject.Specifically, communication unit 701, sets for receiving network or hardware At least one of standby business datum sent.Processing unit 702, for being converted to uniform protocol for the business datum Business datum.Communication unit 701 is also used to send the business datum of the uniform protocol to cloud resource.
In the example of the application, device 700 can be applied to interchanger, for executing in process shown in fig. 6, to hand over The step of changing planes as executing subject.Specifically, communication unit 701, for receiving at least one of network or hardware device hair The business datum sent.Processing unit 702 sends dilatation treated business for carrying out dilatation processing to the business datum Data to virtual LAN gateway, the dilatation processing can access the quantity of network or hardware device for increasing cloud resource.
About the concrete processing procedure of communication unit 701 and processing unit 702, reference can be made to above-mentioned Fig. 5 or stream shown in fig. 6 Journey no longer illustrates.
Identical as above-mentioned design, as shown in figure 8, the application provides a kind of device 800, device 800 can be applied to above-mentioned Fig. 5 Or on the virtual LAN gateway or interchanger in process shown in Fig. 6.
Communication device 800 may include processor 801 and memory 802.Further, which may also include communication interface 804, which can be transceiver.Further, which may also include bus system 803.
Wherein, processor 801, memory 802 and communication interface 804 can be connected by bus system 803, the memory 802 can use store instruction, which can be used for executing the instruction of the memory 802 storage, to control communication interface 804 Signal is received or sent, the step in method shown in above-mentioned Fig. 5 or Fig. 6 based on virtual LAN gateway or interchanger is completed Suddenly.
Wherein, memory 802 can integrate in processor 801, and it is real to be also possible to the physics different from processor 801 Body.
As a kind of implementation, the dedicated core by transmission circuit or transmitting-receiving is can be considered in the function of communication interface 804 Piece is realized.Processor 801 by dedicated processes chip, processing circuit, processor or general-purpose chip it is contemplated that realized.
As another implementation, it may be considered that provided by the embodiments of the present application to realize using the mode of computer The function of first calculate node or the first calculate node.It will realize the program code of 804 function of processor 801 and communication interface It is stored in memory 802, general processor can realize processor 801 and communication interface by executing the code in memory 804 function.
Concept relevant to technical solution provided by the present application involved in the communication device 800, explanation and detailed description And other steps, reference can be made to the description as described in these contents in preceding method or other embodiments, does not repeat herein.
In the example of the application, the communication device 800 can be used for executing in process shown in above-mentioned Fig. 5, with virtual The step of LAN gateway is executing subject.For example, communication interface 804 can receive at least one of network or hardware device hair The business datum sent;The business datum can be converted to the business datum of uniform protocol by processor 801;Communication interface 804 can The business datum of the uniform protocol is sent to cloud resource.
In the example of the application, the communication device 800 can be used for executing in process shown in above-mentioned Fig. 6, with exchange The step of machine is executing subject.For example, communication interface 804, can receive the industry that at least one of network or hardware device are sent Business data;Processor 801 can carry out dilatation processing to the business datum, send dilatation treated business datum to virtual office Area network gateway, the dilatation processing can access the quantity of network or hardware device for increasing cloud resource.
About the introduction of processor 801 and communication interface 804, reference can be made to the introduction of process shown in above-mentioned Fig. 5 or Fig. 6, This is repeated no more.
Based on above embodiments, the embodiment of the present application also provides a kind of computer storage medium, deposited in the storage medium Software program is stored up, which can realize above-mentioned any one or more when being read and executed by one or more processors The method that embodiment provides.The computer storage medium may include: that USB flash disk, mobile hard disk, read-only memory, arbitrary access are deposited The various media that can store program code such as reservoir, magnetic or disk.
Based on above embodiments, the embodiment of the present application also provides a kind of computer program product, the computer program It include computer instruction in product, when the computer instruction is computer-executed, so that the computer executes above-mentioned The method that one or more embodiments of anticipating provide.
Based on above embodiments, the embodiment of the present application also provides a kind of chip, which includes processor, for realizing Function involved in above-mentioned any one or more embodiments, for example, obtain or processing the above method involved in information or Message.Optionally, which further includes memory, the memory, for program instruction performed by storage processor and data. The chip also may include chip and other discrete devices.
It should be understood that in the embodiment of the present application, processor can be central processing unit (central processing Unit, CPU), which can also be other general processors, digital signal processor (digital signal Processor, DSP), it is specific integrated circuit (application-specific integrated circuit, ASIC), existing At programmable gate array (field programmable gate array, FPGA) or other programmable logic device, crystal Pipe logical device, discrete hardware components etc..General processor can be microprocessor, be also possible to any conventional processor Deng.
The memory may include read-only memory and random access memory, and provide instruction and data to processor. The a part of of memory can also include nonvolatile RAM.
The bus system can also include that power bus, control bus and status signal are total in addition to including data/address bus Line etc..But for the sake of clear explanation, various buses are all designated as bus system in figure.During realization, above-mentioned side Each step of method can be completed by the integrated logic circuit of the hardware in processor or the instruction of software form.In conjunction with this Shen It please can be embodied directly in hardware processor the step of method disclosed in embodiment and execute completion, or with hard in processor Part and software module combination execute completion.Software module can be located at random access memory, and flash memory, read-only memory may be programmed only In the storage medium for reading this fields such as memory or electrically erasable programmable memory, register maturation.The storage medium position In memory, processor reads the information in memory, in conjunction with the step of its hardware completion above method.To avoid repeating, this In be not described in detail.
In each embodiment of the application, if without specified otherwise and logic conflict, between different embodiments Term and/or description it is with uniformity and can mutually quote, the technical characteristic in different embodiments according in it Logical relation can combine to form new embodiment.
It is understood that the area that the various digital numbers involved in embodiments herein only carry out for convenience of description Point, it is not intended to limit the range of embodiments herein.Magnitude of the sequence numbers of the above procedures are not meant to execute sequence It is successive, the execution of each process sequence should be determined by its function and internal logic.

Claims (14)

1. a kind of access system, which is characterized in that including at least one of network or hardware device, virtual LAN gateway and Cloud resource;
The network or hardware device, for sending business datum;
The virtual LAN gateway, for receiving the business datum of at least one of the network or hardware device transmission, By the business datum, the business datum of uniform protocol is converted to, and business datum to the cloud of the transmission uniform protocol provides Source;
The cloud resource, for receiving the business datum for the uniform protocol that the virtual LAN gateway is sent.
2. the system as claimed in claim 1, which is characterized in that the system also includes interchangers;
The interchanger, for receiving the business datum of at least one of the network or hardware device transmission, to the industry Data of being engaged in carry out dilatation processing, send dilatation treated business datum to the virtual LAN gateway, the dilatation processing It can access the quantity of network or hardware device for increasing cloud resource;
The virtual LAN gateway, business datum that treated for receiving the dilatation that the interchanger is sent, by the expansion The business datum for holding treated, business datum is converted to uniform protocol sends the business datum of the uniform protocol to the cloud Resource.
3. system as claimed in claim 2, which is characterized in that wrapped in business datum transmitted by the network or hardware device Head point is included, VLAN ID field is included at least in the head point, includes in the VLAN ID field VLAN ID, the VLAN ID cloud resource are distributed by network or hardware device in advance;
The interchanger is specifically used for when carrying out dilatation processing to the business datum:
The interchanger increases VLAN ID field newly in the head of the business datum point;Alternatively,
In interchanger VLAN ID field included in the head of the business datum point, increase the void Amount of bits corresponding to quasi- LAN ID.
4. system as described in any one of claims 1 to 3, which is characterized in that industry transmitted by the network or hardware device It include source internet protocol IP address field in data of being engaged in, the source IP address field is the network or hardware device oneself institute Distribution.
5. system as claimed in claim 4, which is characterized in that the virtual LAN gateway is also used to:
The business datum that the cloud resource is sent is received, includes purpose IP address field, the destination IP in the business datum The address field cloud resource is distributed by network or hardware device;
According to the routing table of pre-configuration, the business datum is sent to corresponding network or hardware device, is deposited in the routing table Pair between containing network or IP address that hardware device oneself IP address distributed and cloud resource are distributed by network or hardware It should be related to.
6. a kind of cut-in method characterized by comprising
Virtual LAN gateway receives the business datum that at least one of network or hardware device are sent;
The business datum is converted to the business datum of uniform protocol by the virtual LAN gateway;
The virtual LAN gateway sends the business datum of the uniform protocol to cloud resource.
7. method as claimed in claim 6, which is characterized in that transmitted by least one of the network or hardware device It include source internet protocol IP address field in business datum, the source IP address field is the network or hardware device oneself It is distributed.
8. method according to claim 6 or 7, which is characterized in that the method also includes:
The virtual LAN gateway receives the business datum that the cloud resource is sent, in the business datum including destination IP Location field, the destination IP address field cloud resource are distributed by network or hardware device;
The virtual LAN gateway sends the business datum to corresponding network or hardware and sets according to the routing table of pre-configuration It is standby, it is stored with what the IP address that network or hardware oneself are distributed was distributed with cloud resource by network or hardware in the routing table Corresponding relationship between IP address.
9. such as the described in any item methods of claim 6 to 8, which is characterized in that the virtual LAN gateway receive network or The business datum that at least one of hardware device is sent, comprising:
The dilatation that the virtual LAN gateway desampler is sent treated business datum, the dilatation treated industry Business data are generated according to the business datum of at least one of the network or hardware device transmission;
The business datum is converted to the business datum of uniform protocol by the virtual LAN gateway, comprising:
The virtual LAN gateway is by the business datum of the dilatation treated business datum is converted to uniform protocol.
10. a kind of cut-in method characterized by comprising
Interchanger receives the business datum that at least one of network or hardware device are sent;
The interchanger carries out dilatation processing to the business datum, sends dilatation treated business datum to virtual LAN Gateway, the dilatation processing can access the quantity of network or hardware device for increasing cloud resource.
11. method as claimed in claim 10, which is characterized in that include at least virtual office in the head of the business datum point Domain net identification field, includes VLAN ID in the VLAN ID field, and the VLAN ID is The cloud resource gives network or hardware device to be distributed in advance;
The interchanger carries out dilatation processing to the business datum, comprising:
The interchanger increases VLAN ID field newly in the head of the business datum point;Alternatively,
In interchanger VLAN ID field included in the head of the business datum point, increase the void Amount of bits corresponding to quasi- LAN ID.
12. a kind of communication device, which is characterized in that including processor and memory;
The memory is stored with computer instruction;
The processor is for executing the computer instruction that the memory is stored, so that the communication device realizes such as right It is required that 6 to 11 described in any item methods.
13. a kind of computer readable storage medium, which is characterized in that the storage medium is stored with computer instruction, when described When computer instruction is computer-executed, so that the computer executes the method as described in any one of claim 6 to 11.
14. a kind of computer program product, which is characterized in that the computer program product includes computer instruction, when described When computer instruction is computer-executed, so that the computer executes the method as described in any one of claim 6 to 11.
CN201811417167.2A 2018-11-26 2018-11-26 Access system, method and device Active CN109728984B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201811417167.2A CN109728984B (en) 2018-11-26 2018-11-26 Access system, method and device
PCT/CN2019/120649 WO2020108438A1 (en) 2018-11-26 2019-11-25 Access system, method, and device.

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811417167.2A CN109728984B (en) 2018-11-26 2018-11-26 Access system, method and device

Publications (2)

Publication Number Publication Date
CN109728984A true CN109728984A (en) 2019-05-07
CN109728984B CN109728984B (en) 2021-01-29

Family

ID=66294685

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811417167.2A Active CN109728984B (en) 2018-11-26 2018-11-26 Access system, method and device

Country Status (2)

Country Link
CN (1) CN109728984B (en)
WO (1) WO2020108438A1 (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110764987A (en) * 2019-10-21 2020-02-07 西安电子科技大学 Hardware equipment access method in network simulation test system based on virtualization technology
WO2020108438A1 (en) * 2018-11-26 2020-06-04 华为技术有限公司 Access system, method, and device.
CN111314461A (en) * 2020-02-14 2020-06-19 北京百度网讯科技有限公司 IP mounting and data processing method and device
CN112019437A (en) * 2019-05-31 2020-12-01 瞻博网络公司 Inter-network service chaining
CN114124678A (en) * 2021-11-30 2022-03-01 中国工商银行股份有限公司 Knowledge graph display method and device
WO2023179786A1 (en) * 2022-03-25 2023-09-28 阿里云计算有限公司 Capacity expansion method for network address translation gateway, device and storage medium

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101064720A (en) * 2006-04-28 2007-10-31 华为技术有限公司 Method for improving base station access service stream
US20080137673A1 (en) * 2006-12-11 2008-06-12 Verizon Services Organization Inc. Remote management of network devices
CN102045896A (en) * 2010-11-22 2011-05-04 中山爱科数字科技有限公司 Virtual Internet-of-things gateway system capable of realizing multiprotocol and network self-adapting
CN103067397A (en) * 2012-12-31 2013-04-24 华为技术有限公司 Security authentication method, access gateway and authentication server of desktop cloud system
CN103812930A (en) * 2014-01-16 2014-05-21 华为技术有限公司 Method and device for resource scheduling
CN104734926A (en) * 2015-03-20 2015-06-24 田广礼 Data transmission method of single-fiber connection type home gateway
CN104917758A (en) * 2015-05-21 2015-09-16 浪潮集团有限公司 Implementation method for converting socket protocol connection into other protocol connection
CN106998284A (en) * 2016-01-25 2017-08-01 阿里巴巴集团控股有限公司 The network system and method for private network are connected by virtual private networks
CN108683659A (en) * 2018-05-11 2018-10-19 新华三技术有限公司成都分公司 Multi-protocol data communication means and device
CN108768817A (en) * 2018-05-22 2018-11-06 腾讯科技(深圳)有限公司 A kind of virtualization network constructing system, data packet sending method

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101141359B (en) * 2007-10-24 2010-06-09 中兴通讯股份有限公司 United service access system and access method
CN101437002A (en) * 2007-11-16 2009-05-20 中国移动通信集团公司 Mobile proxy server system
CN104639515A (en) * 2013-11-15 2015-05-20 上海信游网络科技有限公司 Bank nuclear business system based third-party communication conversion platform
CN106936857B (en) * 2015-12-29 2020-05-19 中国电信股份有限公司 Connection management method of hybrid cloud, SDN controller and hybrid cloud system
CN109728984B (en) * 2018-11-26 2021-01-29 华为技术有限公司 Access system, method and device

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101064720A (en) * 2006-04-28 2007-10-31 华为技术有限公司 Method for improving base station access service stream
US20080137673A1 (en) * 2006-12-11 2008-06-12 Verizon Services Organization Inc. Remote management of network devices
CN102045896A (en) * 2010-11-22 2011-05-04 中山爱科数字科技有限公司 Virtual Internet-of-things gateway system capable of realizing multiprotocol and network self-adapting
CN103067397A (en) * 2012-12-31 2013-04-24 华为技术有限公司 Security authentication method, access gateway and authentication server of desktop cloud system
CN103812930A (en) * 2014-01-16 2014-05-21 华为技术有限公司 Method and device for resource scheduling
CN104734926A (en) * 2015-03-20 2015-06-24 田广礼 Data transmission method of single-fiber connection type home gateway
CN104917758A (en) * 2015-05-21 2015-09-16 浪潮集团有限公司 Implementation method for converting socket protocol connection into other protocol connection
CN106998284A (en) * 2016-01-25 2017-08-01 阿里巴巴集团控股有限公司 The network system and method for private network are connected by virtual private networks
CN108683659A (en) * 2018-05-11 2018-10-19 新华三技术有限公司成都分公司 Multi-protocol data communication means and device
CN108768817A (en) * 2018-05-22 2018-11-06 腾讯科技(深圳)有限公司 A kind of virtualization network constructing system, data packet sending method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
张震: "一种多协议嵌入式网关开发", 《建筑电气》 *

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2020108438A1 (en) * 2018-11-26 2020-06-04 华为技术有限公司 Access system, method, and device.
CN112019437A (en) * 2019-05-31 2020-12-01 瞻博网络公司 Inter-network service chaining
US20210243118A1 (en) 2019-05-31 2021-08-05 Juniper Networks, Inc. Inter-network service chaining
US11824775B2 (en) 2019-05-31 2023-11-21 Juniper Networks, Inc. Inter-network service chaining
CN110764987A (en) * 2019-10-21 2020-02-07 西安电子科技大学 Hardware equipment access method in network simulation test system based on virtualization technology
CN111314461A (en) * 2020-02-14 2020-06-19 北京百度网讯科技有限公司 IP mounting and data processing method and device
CN114124678A (en) * 2021-11-30 2022-03-01 中国工商银行股份有限公司 Knowledge graph display method and device
WO2023179786A1 (en) * 2022-03-25 2023-09-28 阿里云计算有限公司 Capacity expansion method for network address translation gateway, device and storage medium

Also Published As

Publication number Publication date
WO2020108438A1 (en) 2020-06-04
CN109728984B (en) 2021-01-29

Similar Documents

Publication Publication Date Title
CN109728984A (en) A kind of access system, method and device
US10348689B2 (en) Interconnecting external networks with overlay networks in a shared computing environment
CN103942087B (en) Live migration of virtual machine method and relevant apparatus and group system
CN104221331B (en) The 2nd without look-up table layer packet switch for Ethernet switch
CN107005561A (en) Autonomous positioning device/identifier the separated protocol extended for safe mixed cloud
CN110191031A (en) Network resource access method, device, electronic equipment
CN108401037A (en) User terminal and the binding method of equipment, device and system
CN106933775A (en) Data handling system and the method for data processing
CN105847312B (en) A kind of resource access method and user terminal
US11710206B2 (en) Session coordination for auto-scaled virtualized graphics processing
CN105554176B (en) Send the method, apparatus and communication system of message
CN109391502A (en) A kind of information configuring methods and administrative unit
CN105765545B (en) PCIe I/O collaborative shares method and apparatus and interacted system
CN103781055A (en) Data downloading method and associated device
CN107787483A (en) Reallocated via the seamless address of multi-tenant link
CN109660578A (en) CDN's returns source processing method and processing device, system
CN106878474A (en) The method and apparatus that a kind of P2P connections are set up
CN104144096A (en) Virtual network layer construction method, device and system
CN107800603A (en) Intranet user accesses the method and storage medium of headend equipment based on VPN
CN109412927A (en) A kind of more VPN data transmission methods, device and the network equipment
CN110392066A (en) A kind of method and apparatus of access service
CN110380930B (en) Test method, test device, server and computer storage medium
CN108471384A (en) The method and apparatus that message for end-to-end communication forwards
CN107493234A (en) A kind of message processing method and device based on virtual bridge
CN107124411B (en) Virtual private cloud implementation method, device and system under classic network environment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20220208

Address after: 550025 Huawei cloud data center, jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guiyang City, Guizhou Province

Patentee after: Huawei Cloud Computing Technology Co.,Ltd.

Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen

Patentee before: HUAWEI TECHNOLOGIES Co.,Ltd.

TR01 Transfer of patent right