CN110351149A - A kind of method and device for safeguarding network data Forwarding plane - Google Patents
A kind of method and device for safeguarding network data Forwarding plane Download PDFInfo
- Publication number
- CN110351149A CN110351149A CN201910682426.2A CN201910682426A CN110351149A CN 110351149 A CN110351149 A CN 110351149A CN 201910682426 A CN201910682426 A CN 201910682426A CN 110351149 A CN110351149 A CN 110351149A
- Authority
- CN
- China
- Prior art keywords
- data forwarding
- software
- network
- container
- status
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0654—Management of faults, events, alarms or notifications using network fault recovery
- H04L41/0663—Performing the actions predefined by failover planning, e.g. switching to standby network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
- H04L43/0817—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking functioning
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Environmental & Geological Engineering (AREA)
- Debugging And Monitoring (AREA)
Abstract
This application discloses a kind of method and devices for safeguarding network data Forwarding plane, which comprises the network data Forwarding plane operating status of the first data forwarding software of detection;If the operating status of the network data Forwarding plane of the first data forwarding software is exception, stop the first data forwarding software work, enabled second data forwarding software enters working condition;Wherein, the first data forwarding software is that major software operates in primary tank, corresponding network data Forwarding plane is in running order, and the second network data reflecting software is that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.It may be implemented not increasing new physical equipment when network data Forwarding plane breaks down using scheme provided by the present application, low cost realized in the smooth situation of network, it is efficient that network data fault of forwarding plane is measured in real time and is automatically repaired.
Description
Technical field
This application involves network data forwarding applied technical field more particularly to a kind of maintenance network data Forwarding plane
Method and device.
Background technique
Server or datacom device will appear exception in the process of running in network communications, if repaired not in time, just
It will lead to network interruption, in the prior art generally in order to guarantee a network connections, when server or datacom device failure, adopt
Network flow is switched to standby host with Bypass mechanism or the mode of HA master/slave device to handle, is guaranteed a network connections, first
Kind uses Bypass mechanism, Bypass mechanism, that is, by-pass mechanism, that is to say, that passes through specific triggering state (power-off or crash)
It allows two networks not by the system of Network Security Device, is directly realized by and is physically connected, so, using Bypass mechanism, when
After network equipment failure, the network mutual conduction being connected in this equipment can be allowed, at this point, the equipment is no longer to receiving
Data packet processes, so, although this mechanism can make network recovery network unimpeded, it will appear network service when repairing
It interrupts;According to the second way, the active and standby mechanism of HA accesses new hardware resource i.e. standby when main equipment breaks down
Equipment, such as new server need to access more hardware resources into network using the method, and main equipment with it is standby
When equipment progress data are synchronous, it is also desirable to which network data Forwarding plane operating status is normal, that is to say, that need in Network Abnormal
Master/slave device switching is artificially carried out before, cannot guarantee that the consistency of active and standby configuration and operating status after master/slave device switching,
Realize that difficulty is high and expends hardware resource in this approach.
To sum up, when network data Forwarding plane occurs abnormal in the process of running in the prior art, cannot network not
In the case where interruption, realizes real-time detection failure and be automatically repaired.
Summary of the invention
The embodiment of the present application provides a kind of maintenance network data Forwarding plane method and device, for solving the prior art
In when the network equipment occurs abnormal in the process of running, can not in the smooth situation of network low cost, efficient realization
Failure real-time detection and the problem of being automatically repaired.
In a first aspect, providing a kind of method for safeguarding network data Forwarding plane, comprising:
Detect the network data Forwarding plane operating status of the first data forwarding software;
If the operating status of the network data Forwarding plane of the first data forwarding software be it is abnormal, stop described the
One data forwarding software work, enabled second data forwarding software enter working condition;
Wherein, the first data forwarding software and the second data forwarding software active and standby software each other, described first
Data forwarding software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, described the
Two network data reflecting softwares are that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.
It may be implemented by the method for maintenance network data Forwarding plane provided by the present application when network data Forwarding plane
When failure, it is increased without new physical equipment, under conditions of there is not network interruption, realizes low cost, it is efficient
The real-time detection of network data fault of forwarding plane be automatically repaired, guarantee network data Forwarding plane normal operation.
Optionally, the network data Forwarding plane operating status of the first data forwarding software of the detection includes:
Monitoring runs process status, the process of the first data forwarding software of the first data forwarding software container
The default file network communication status of state, the first data forwarding software;
If the process status of the first data forwarding software container, the process status of the first data forwarding software,
And in the default file network communication status of the first data forwarding software, any state is abnormal, determines first data
The operating status of the network data Forwarding plane of reflecting software is abnormal.
Judge whether the operating status of data forwarding software is abnormal, can be improved really by monitoring different operation processes
Determine the accuracy and efficiency of the operating status of network data Forwarding plane, that is to say, that when network data Forwarding plane operating status
When abnormal, operating status exception can be determined rapidly, promotes the reliability of network data Forwarding plane.
Optionally, described to stop the first data forwarding software work, enabled second data forwarding software enters work
State includes:
The corresponding capacitor network Interface status of the first data forwarding software is set to off closed state, by described second
The corresponding capacitor network Interface status of data forwarding software is set on state;
After the network data Forwarding plane of the second data forwarding software is successfully processed data, first number is deleted
According to the corresponding container of reflecting software.
The network industry that network data Forwarding plane is externally provided by the network data Forwarding plane in setting different vessels
Business Interface status, carrys out the container of hand-off process data, guarantees to realize network data Forwarding plane in the unbroken situation of network
Failure is automatically repaired, also, the container of suppressing exception in time, advantageously reduces the load of physical equipment.
Optionally, include: after the corresponding container of the deletion first network data forwarding plane
The Interface status of newly-built container is simultaneously set to off closed state as standby container by a newly-built container.
Optionally, include: before the network data Forwarding plane operating status of the first data forwarding software of the detection
At least two Microsoft Loopback Adapters are fictionalized, at least two Microsoft Loopback Adapter is respectively connected to different to operate in difference
The data forwarding software of container.
Second aspect, provides a kind of device for safeguarding network data Forwarding plane, and described device includes:
Detection module: for detecting the network data Forwarding plane operating status of the first data forwarding software;
Processing module: if the operating status of the network data Forwarding plane for the first data forwarding software is different
Often, then stop the first data forwarding software work, enabled second data forwarding software enters working condition;
Wherein, the first data forwarding software and the second data forwarding software active and standby software each other, described first
Data forwarding software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, described the
Two network data reflecting softwares are that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.
Optionally, the detection module is specifically used for:
Monitoring runs process status, the process of the first data forwarding software of the first data forwarding software container
The default file network communication status of state, the first data forwarding software;If the first data forwarding software container
The default file network of process status, the process status of the first data forwarding software and the first data forwarding software
In communications status, any state is abnormal, determines the operating status of the network data Forwarding plane of the first data forwarding software
For exception.
Optionally, the processing module is specifically used for:
The corresponding capacitor network Interface status of the first data forwarding software is set to off closed state, by described second
The corresponding capacitor network Interface status of data forwarding software is set on state;
After the network data Forwarding plane of the second data forwarding software is successfully processed data, first number is deleted
According to the corresponding container of reflecting software.
Optionally, described device further include:
Newly-built module: for create a container and using the network interface state of newly-built container be set to off closed state as
Standby container.
Optionally, described device further include:
AM access module: for fictionalizing at least two Microsoft Loopback Adapters, at least two Microsoft Loopback Adapter is respectively connected to not
The same data forwarding software for operating in different vessels.
The third aspect, the embodiment of the present application also provides a kind of computer storage mediums, comprising:
The computer readable storage medium includes computer program, when computer program is run on computers, is made
It obtains the computer and executes method described in first aspect in the above method.
Fourth aspect, the embodiment of the present application also provides a kind of computer program products comprising instruction, comprising:
When described instruction is run on computers, so that the computer executes in the above method described in first aspect
Method.
Detailed description of the invention
Fig. 1 is to apply for a kind of method flow schematic diagram for safeguarding network data Forwarding plane provided by embodiment;
Fig. 2 is physical network card and Microsoft Loopback Adapter relation schematic diagram provided by application embodiment;
Fig. 3 be apply embodiment provided by it is a kind of safeguard network data Forwarding plane method be using what K8S was disposed
System architecture diagram;
Fig. 4 is provided a kind of maintenance network data Forwarding plane schematic device by application embodiment.
Specific embodiment
In view of the problem of network data occurs exception in the process of running, leads to network interruption in the prior art.The application
Embodiment provides following solution.
The embodiment of the present invention is to solve the above problems, general thought is as follows:
Go out at least two Microsoft Loopback Adapters using SRIOV virtual technology first, and different Microsoft Loopback Adapters is docked to difference
Container in, then at least two Microsoft Loopback Adapters are respectively connected to the different data forwarding software for operating in different vessels, made
Active and standby environment is realized with container, and keeps the configuration of data forwarding plane software in active and standby container identical, wherein for container
Network interface is set as non-working condition.First network data forwarding plane is begun to use to carry out data forwarding, in the first data
Plane carries out the network data Forwarding plane operating status of data forwarding while real-time detection the first data forwarding software, if the
The state of one network data Forwarding plane is abnormality, then stops the first network data forwarding plane work, enable standby
Second network data Forwarding plane enters working condition from operating status.
It may be implemented by the method for maintenance network data Forwarding plane provided by the present application when network data Forwarding plane
When failure, it is increased without new physical equipment, it, can low cost, efficient reality under conditions of there is not network interruption
It the real-time detection of existing network data fault of forwarding plane and is automatically repaired, guarantee network data Forwarding plane normal operation.
As shown in Fig. 1, a kind of method specific implementation for safeguarding network data Forwarding plane provided by the embodiments of the present application
Steps are as follows:
Firstly, need to fictionalize at least two Microsoft Loopback Adapters before carrying out step 101, and by least two Microsoft Loopback Adapters
It is respectively connected to the different data forwarding software for operating in different vessels;
In the embodiment of the present application, physical equipment is the equipment with data forwarding function, can be server, exchange
Machine, router etc., embodiments herein is by taking physical network card as an example, also, all physical equipments all refer to the virtual function of SRIOV
The network interface card of energy, such as physical network card can be (Intel Corporation 82599ES network interface card), for operating system,
The network interface card and original physical network interface card fictionalized has identical data forwarding function.
As shown in Fig. 2, VF0 is actual physics network interface card, and VF1, VF2, VF3 are using single I/O virtualization virtual technology
Network interface card out, in practical applications, the Implementation Technology for fictionalizing Microsoft Loopback Adapter, which may is that, opens physical network card SRIOV function
Can, " intel_iommu=on " configuration is added in "/boot/grub.conf " file, opens the SRIOV function of physical network card
Energy;Be then written to need to virtualize Microsoft Loopback Adapter count to corresponding " sriov_numvfs " file of physical network card, the application
Two Microsoft Loopback Adapters are at least needed in embodiment, so write-in 2.
After fictionalizing two Microsoft Loopback Adapters, first mount virtual go out physical network card to operation data reflecting software container
In, external member then is forwarded using data plane, (Data Plane Development Kit, DPDK) connects Microsoft Loopback Adapter respectively
Enter the different data forwarding software VPP for operating in container.DPDK is developed by more companies, and linux system fortune is based primarily upon
Row is gathered for the function library of rapid data packet processing and driving, data processing performance can be greatly improved using DPDK and gulp down
The amount of spitting improves the working efficiency of data plane application program;That is, host runs two VPP containers simultaneously, (here
Host value refer to the machine of carrying physical network card, this host can be computer), and host "/sys/bus/
Pci/devices " catalogue is mounted in two containers, and then the network card equipment fictionalized by SRIOV is fitted to using DPDK
VPP。
After Microsoft Loopback Adapter access is operated in the data forwarding software of container, following steps 101 are carried out.
Step 101: the network data Forwarding plane operating status of the first data forwarding software of detection;
Pass through the process status of monitoring the first data forwarding software container of operation, the process shape of the first data forwarding software
State, the first data forwarding software default file network communication status come judge network data Forwarding plane operation it is whether normal;
If the process status of the first data forwarding software container, the process status of the first data forwarding software and the first number
According in the default file network communication status of reflecting software, any state is abnormal, determines the network number of the first data forwarding software
Operating status according to Forwarding plane is abnormal.
Judge whether the operating status of data forwarding software is abnormal, can be improved really by monitoring different operating statuses
Determine the accuracy and efficiency of the operating status of network data Forwarding plane, that is to say, that when network data Forwarding plane operating status
When abnormal, operating status exception can be determined rapidly.
In the specific implementation, the process status of the first data forwarding software container, the first data forwarding software process shape
Whether state is normal using the direct detection procedure of Linux command ps, and the default file of the first data forwarding software is Socket file,
And the default file network communication status of the first data forwarding software then initiates request using UNIX Socket and VPP and checks and be
No energy normal response request, to judge whether communication is normal, any one of the above three abnormal network datas that are all considered as are forwarded
Plane is operating abnormally.
After the operating status for determining the network data Forwarding plane of the first data forwarding software, following steps 102 are carried out.
Step 102: if the operating status of the network data Forwarding plane of the first data forwarding software is exception, stopping
Only the first data forwarding software work, enabled second data forwarding software enter working condition;
Wherein, the first data forwarding software and the second data forwarding software are active and standby each other, first data
Reflecting software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, second net
Network data forwarding software is that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status, this shape
Under state and without data processing.
If it is determined that first network data forwarding plane is operating abnormally, then stop the first data forwarding software work, has
Body is in off state by the way that corresponding capacitor network Interface status is arranged and is realized, meanwhile, enable the second data forwarding software into
Enter working condition, then the corresponding capacitor network Interface status of the second network data Forwarding plane is set on state;
When equipment operates normally, while two VPP for operating in container are enabled, is used herein container and runs two
VPP is conducive to the design of framework, because container has a characteristic of isolation, rapid deployment and lightweight, and two containers are matched
It sets equally, but the interface of only one VPP is in UP state, that is, opening state in two VPP, interface is at the VPP of UP state
In operating conditions, and another VPP is in run mode, but its interface is in state, that is, closed state of DOWN, and capacitor network connects
Received data packet when mouth state is in an open state, does not receive data packet, so this VPP is not received when Interface status is in off state
Any data packet.
Specifically, the corresponding capacitor network Interface status of first network data forwarding plane is set to off closed state, it will
The specific method that the corresponding capacitor network Interface status of the second network data Forwarding plane is set on state can be as
Under;
The corresponding capacitor network Interface status of first network data forwarding plane is set to off closed state, meanwhile, by
The interface that the corresponding interface of two network data Forwarding plane is in the corresponding container of VPP of DOWN is set as UP i.e. open state,
Data forwarding is carried out using the second network data Forwarding plane.
In the specific implementation process, stop the VPP container for being in operating conditions using order (docker stop container name),
Then run mode VPP is held using order (docker exec it is for container name vppctl set int state interface name up)
The network interface setting of device is in an open state, and so that the VPP in run mode is in operating conditions, can be successfully processed data traffic.
Network data Forwarding plane carrys out the container of hand-off process data by the different conditions of setting capacitor network interface,
Guarantee that network does not interrupt, realizes being automatically repaired for network data fault of forwarding plane.
After the corresponding second network data Forwarding plane of the container for being converted into operating conditions by run mode is successfully processed data,
Delete the corresponding container of first network data forwarding plane.In the specific implementation process, order (docker rm container can be used
Name), delete the container of operating status exception.The container of timely suppressing exception, advantageously reduces the load of host's physical equipment.
After the physical equipment for deleting operating status exception, a newly-built container simultaneously sets the Interface status of the container to
Closed state is as complementary tank.It is new to play a VPP container as preparation container in implementation process, order can be used
(docker create container name).
K8S platform management also can be used in the technical solution of the embodiment of the present application, and K8S is the abbreviation of Kubernetes, it
For managing the application of the container in cloud platform in multiple main frames, the application of deployment container can be allowed simple using K8S and
Efficiently.
As shown in Fig. 3, the system architecture diagram of K8S deployment is used for application scheme, HardWare is hardware module, packet
Include physical network card;Kernel is kernel, including the associated component of SRIOV technology;The corresponding container of Microsoft Loopback Adapter VF1, VF2
It operates in the Pod of K8S, LivenessProbe probe is arranged in the YAML file of VPP container, monitors VPP operating status, such as
Fruit discovery VPP, which is operating abnormally, is then handled the VPP that network data switches to standby container, in addition, matching in the correlation for updating VPP
The scheme set or the embodiment of the present application also can be used when updating the container mirror image of VPP switches over, it is ensured that updated
Network data forwarding is not influenced in journey, and whether just to can detecte in handoff procedure the state of new configuration or new mirror image
Often, container wouldn't be switched, if abnormal to keep normal network communication.
As shown in Fig. 4, it is based on the above method, the embodiment of the present application also provides a kind of maintenance network data Forwarding plane
Device, comprising:
Detection module 401: for detecting the network data Forwarding plane operating status of the first data forwarding software;
Processing module 402: if the operating status of the network data Forwarding plane for the first data forwarding software is
It is abnormal, then stop the first data forwarding software work, enabled second data forwarding software enters working condition;
Wherein, the first data forwarding software and the second data forwarding software active and standby software each other, described first
Data forwarding software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, described the
Two network data reflecting softwares are that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.
Optionally, the detection module 401 is specifically used for:
Monitoring runs process status, the process of the first data forwarding software of the first data forwarding software container
The default file network communication status of state, the first data forwarding software;If the first data forwarding software container
The default file network of process status, the process status of the first data forwarding software and the first data forwarding software
In communications status, any state is abnormal, determines the operating status of the network data Forwarding plane of the first data forwarding software
For exception.
Optionally, the processing module 402 is specifically used for:
The corresponding capacitor network Interface status of the first data forwarding software is set to off closed state, by described second
The corresponding capacitor network Interface status of data forwarding software is set on state;
After the network data Forwarding plane of the second data forwarding software is successfully processed data, first number is deleted
According to the corresponding container of reflecting software.
Optionally, described device further include:
Newly-built module 403: for creating a container and the network interface state of newly-built container being set to off closed state
As standby container.
Optionally, described device further include:
AM access module 404: for fictionalizing at least two Microsoft Loopback Adapters, at least two Microsoft Loopback Adapter is respectively connected to
The different data forwarding software for operating in different vessels.
The embodiment of the present application also provides a kind of computer storage mediums, comprising:
The computer readable storage medium includes computer program, when computer program is run on computers, is made
It obtains the computer and executes method described in attached drawing 1.
The embodiment of the present application also provides a kind of computer program products comprising instruction, comprising:
When described instruction is run on computers, so that the computer executes method described in attached drawing 1.This field
Interior technical staff is it should be appreciated that embodiments herein can provide as method, system or computer program product.Therefore, this Shen
The form of complete hardware embodiment, complete software embodiment or embodiment combining software and hardware aspects please can be used.And
And it wherein includes the computer-usable storage medium of computer usable program code that the application, which can be used in one or more,
The form for the computer program product implemented on (including but not limited to magnetic disk storage and optical memory etc.).
The application is referring to method, the process of equipment (system) and computer program product according to the embodiment of the present application
Figure and/or block diagram describe.It should be understood that every one stream in flowchart and/or the block diagram can be realized by computer program instructions
The combination of process and/or box in journey and/or box and flowchart and/or the block diagram.It can provide these computer programs
Instruct the processor of general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce
A raw machine, so that being generated by the instruction that computer or the processor of other programmable data processing devices execute for real
The device for the function of being specified in present one or more flows of the flowchart and/or one or more blocks of the block diagram.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing devices with spy
Determine in the computer-readable memory that mode works, so that it includes referring to that instruction stored in the computer readable memory, which generates,
Enable the manufacture of device, the command device realize in one box of one or more flows of the flowchart and/or block diagram or
The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device, so that counting
Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer or
The instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram one
The step of function of being specified in a box or multiple boxes.
Obviously, those skilled in the art can carry out various modification and variations without departing from the essence of the application to the application
Mind and range.In this way, if these modifications and variations of the application belong to the range of the claim of this application and its equivalent technologies
Within, then the application is also intended to include these modifications and variations.
Claims (12)
1. a kind of method for safeguarding network data Forwarding plane, which is characterized in that the described method includes:
Detect the network data Forwarding plane operating status of the first data forwarding software;
If the operating status of the network data Forwarding plane of the first data forwarding software is exception, stop first number
It works according to reflecting software, enabled second data forwarding software enters working condition;
Wherein, the first data forwarding software and the second data forwarding software active and standby software each other, first data
Reflecting software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, second net
Network data forwarding software is that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.
2. the method as described in claim 1, which is characterized in that the network data forwarding of the first data forwarding software of the detection
Plane operating status includes:
Monitoring runs the process shape of the process status of the first data forwarding software container, the first data forwarding software
The default file network communication status of state, the first data forwarding software;
If the process status of the first data forwarding software container, the process status of the first data forwarding software and institute
In the default file network communication status for stating the first data forwarding software, any state is abnormal, determines first data forwarding
The operating status of the network data Forwarding plane of software is abnormal.
3. the method as described in claim 1, which is characterized in that it is described to stop the first data forwarding software work, it enables
Second data forwarding software enters working condition and includes:
The corresponding capacitor network Interface status of the first data forwarding software is set to off closed state, by second data
The corresponding capacitor network Interface status of reflecting software is set on state;
After the network data Forwarding plane of the second data forwarding software is successfully processed data, deletes first data and turn
The corresponding container of the part that feels like jelly.
4. method as claimed in claim 3, which is characterized in that described to delete the corresponding container of the first data forwarding software
After include:
The network interface state of newly-built container is simultaneously set to off closed state as standby container by a newly-built container.
5. the method as described in claim 1, which is characterized in that the network data forwarding of the first data forwarding software of the detection
Include: before plane operating status
Go out at least two Microsoft Loopback Adapters using network interface card SRIOV virtual technology, at least two Microsoft Loopback Adapter is respectively connected to not
The same data forwarding software for operating in different vessels.
6. a kind of device for safeguarding network data Forwarding plane, which is characterized in that described device includes:
Detection module: for detecting the network data Forwarding plane operating status of the first data forwarding software;
Processing module: if the operating status of the network data Forwarding plane for the first data forwarding software is exception,
Stop the first data forwarding software work, enabled second data forwarding software enters working condition;
Wherein, the first data forwarding software and the second data forwarding software active and standby software each other, first data
Reflecting software is that major software operates in primary tank, and corresponding network data Forwarding plane is in running order, second net
Network data forwarding software is that standby software operates in standby container, and corresponding network data Forwarding plane is in operating status.
7. device as claimed in claim 6, which is characterized in that the detection module is specifically used for:
Monitoring runs the process shape of the process status of the first data forwarding software container, the first data forwarding software
The default file network communication status of state, the first data forwarding software;
If the process status of the first data forwarding software container, the process status of the first data forwarding software and institute
In the default file network communication status for stating the first data forwarding software, any state is abnormal, determines first data forwarding
The operating status of the network data Forwarding plane of software is abnormal.
8. device as claimed in claim 6, which is characterized in that the processing module is specifically used for:
The corresponding capacitor network Interface status of the first data forwarding software is set to off closed state, by second data
The corresponding capacitor network Interface status of reflecting software is set on state;
After the network data Forwarding plane of the second data forwarding software is successfully processed data, deletes first data and turn
The corresponding container of the part that feels like jelly.
9. device as claimed in claim 8, which is characterized in that described device further include:
Newly-built module: hold for creating a container and the network interface state of newly-built container being set to off closed state as standby
Device.
10. device as claimed in claim 6, which is characterized in that described device further include:
AM access module: for fictionalizing at least two Microsoft Loopback Adapters, at least two Microsoft Loopback Adapter is respectively connected to different
Operate in the data forwarding software of different vessels.
11. a kind of computer storage medium, which is characterized in that the computer readable storage medium includes computer program, when
When computer program is run on computers, so that the computer executes method as claimed in claim 1 to 5.
12. a kind of computer program product comprising instruction, which is characterized in that when described instruction is run on computers, make
It obtains the computer and executes such as method described in any one of claim 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910682426.2A CN110351149A (en) | 2019-07-26 | 2019-07-26 | A kind of method and device for safeguarding network data Forwarding plane |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910682426.2A CN110351149A (en) | 2019-07-26 | 2019-07-26 | A kind of method and device for safeguarding network data Forwarding plane |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN110351149A true CN110351149A (en) | 2019-10-18 |
Family
ID=68180342
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910682426.2A Pending CN110351149A (en) | 2019-07-26 | 2019-07-26 | A kind of method and device for safeguarding network data Forwarding plane |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110351149A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111064714A (en) * | 2019-11-29 | 2020-04-24 | 苏州浪潮智能科技有限公司 | Intelligent network card ACL updating device based on FPGA |
| CN111143034A (en) * | 2019-12-23 | 2020-05-12 | 北京神州绿盟信息安全科技股份有限公司 | Method, device and system for controlling network data forwarding plane |
| CN112130957A (en) * | 2020-09-11 | 2020-12-25 | 烽火通信科技股份有限公司 | Method and system for using intelligent network card for breaking through virtualization isolation of container |
| CN112422498A (en) * | 2020-09-04 | 2021-02-26 | 网络通信与安全紫金山实验室 | In-band network remote measuring method, system and computer readable storage medium |
| CN112565047A (en) * | 2020-11-19 | 2021-03-26 | 浪潮思科网络科技有限公司 | Method, device, equipment and medium for constructing network by using VPP in docker |
| CN112905305A (en) * | 2021-03-03 | 2021-06-04 | 国网电力科学研究院有限公司 | VPP-based cluster type virtualized data forwarding method, device and system |
| CN115714713A (en) * | 2022-10-25 | 2023-02-24 | 南方电网数字电网研究院有限公司 | Method and device for switching multiple group service instances of power monitoring system |
| CN115714713B (en) * | 2022-10-25 | 2024-10-01 | 南方电网数字电网研究院有限公司 | Multi-group service instance switching method and device for power monitoring system |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106411589A (en) * | 2016-09-29 | 2017-02-15 | 北京神州绿盟信息安全科技股份有限公司 | Method and apparatus for realizing high availability |
| CN106557386A (en) * | 2015-09-28 | 2017-04-05 | 中兴通讯股份有限公司 | Method, the apparatus and system of standby virtual network interface card virtual machine are disposed based on KVM |
| WO2017103747A1 (en) * | 2015-12-14 | 2017-06-22 | Telefonaktiebolaget Lm Ericsson (Publ) | A method and apparatus for performing hitless update of line cards of a network device |
| CN107368369A (en) * | 2017-06-27 | 2017-11-21 | 中国联合网络通信集团有限公司 | Distributed container management method and system |
| CN108616452A (en) * | 2018-03-30 | 2018-10-02 | 新华三技术有限公司 | Message forwarding method and device |
| CN108628613A (en) * | 2018-05-02 | 2018-10-09 | 山东汇贸电子口岸有限公司 | The implementation method of the stateful service of container cluster based on domestic CPU and OS |
| CN108984195A (en) * | 2018-06-27 | 2018-12-11 | 新华三技术有限公司 | A kind of method for upgrading software and device |
| CN109032754A (en) * | 2018-06-29 | 2018-12-18 | 华为技术有限公司 | The method and apparatus for improving communication path reliability |
-
2019
- 2019-07-26 CN CN201910682426.2A patent/CN110351149A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106557386A (en) * | 2015-09-28 | 2017-04-05 | 中兴通讯股份有限公司 | Method, the apparatus and system of standby virtual network interface card virtual machine are disposed based on KVM |
| WO2017103747A1 (en) * | 2015-12-14 | 2017-06-22 | Telefonaktiebolaget Lm Ericsson (Publ) | A method and apparatus for performing hitless update of line cards of a network device |
| CN106411589A (en) * | 2016-09-29 | 2017-02-15 | 北京神州绿盟信息安全科技股份有限公司 | Method and apparatus for realizing high availability |
| CN107368369A (en) * | 2017-06-27 | 2017-11-21 | 中国联合网络通信集团有限公司 | Distributed container management method and system |
| CN108616452A (en) * | 2018-03-30 | 2018-10-02 | 新华三技术有限公司 | Message forwarding method and device |
| CN108628613A (en) * | 2018-05-02 | 2018-10-09 | 山东汇贸电子口岸有限公司 | The implementation method of the stateful service of container cluster based on domestic CPU and OS |
| CN108984195A (en) * | 2018-06-27 | 2018-12-11 | 新华三技术有限公司 | A kind of method for upgrading software and device |
| CN109032754A (en) * | 2018-06-29 | 2018-12-18 | 华为技术有限公司 | The method and apparatus for improving communication path reliability |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111064714A (en) * | 2019-11-29 | 2020-04-24 | 苏州浪潮智能科技有限公司 | Intelligent network card ACL updating device based on FPGA |
| CN111143034A (en) * | 2019-12-23 | 2020-05-12 | 北京神州绿盟信息安全科技股份有限公司 | Method, device and system for controlling network data forwarding plane |
| CN111143034B (en) * | 2019-12-23 | 2023-11-14 | 绿盟科技集团股份有限公司 | Method, device and system for controlling network data forwarding plane |
| CN112422498A (en) * | 2020-09-04 | 2021-02-26 | 网络通信与安全紫金山实验室 | In-band network remote measuring method, system and computer readable storage medium |
| CN112130957A (en) * | 2020-09-11 | 2020-12-25 | 烽火通信科技股份有限公司 | Method and system for using intelligent network card for breaking through virtualization isolation of container |
| CN112130957B (en) * | 2020-09-11 | 2023-04-18 | 烽火通信科技股份有限公司 | Method and system for using intelligent network card for breaking through virtualization isolation of container |
| CN112565047A (en) * | 2020-11-19 | 2021-03-26 | 浪潮思科网络科技有限公司 | Method, device, equipment and medium for constructing network by using VPP in docker |
| CN112565047B (en) * | 2020-11-19 | 2022-03-04 | 浪潮思科网络科技有限公司 | Method, device, equipment and medium for constructing network by using VPP in docker |
| CN112905305A (en) * | 2021-03-03 | 2021-06-04 | 国网电力科学研究院有限公司 | VPP-based cluster type virtualized data forwarding method, device and system |
| CN115714713A (en) * | 2022-10-25 | 2023-02-24 | 南方电网数字电网研究院有限公司 | Method and device for switching multiple group service instances of power monitoring system |
| CN115714713B (en) * | 2022-10-25 | 2024-10-01 | 南方电网数字电网研究院有限公司 | Multi-group service instance switching method and device for power monitoring system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110351149A (en) | A kind of method and device for safeguarding network data Forwarding plane | |
| US11445028B2 (en) | System and method for providing secure console access with multiple smart NICs using NC-SL and SPDM | |
| US9600380B2 (en) | Failure recovery system and method of creating the failure recovery system | |
| US9348772B2 (en) | Executing a kernel device driver as a user space process | |
| CN110633170A (en) | Localized service recovery | |
| JP5074274B2 (en) | Computer system and communication path monitoring method | |
| US20160232072A1 (en) | Detection and handling of virtual network appliance failures | |
| US9473400B1 (en) | Server-side failover between dedicated VNIC servers | |
| US7793139B2 (en) | Partial link-down status for virtual Ethernet adapters | |
| CN102160036A (en) | Securing live migration of a virtual machine within a service landscape | |
| EP3236623B1 (en) | Link management method, device and system in virtual machine environment | |
| US20140204734A1 (en) | Node device, communication system, and method for switching virtual switch | |
| WO2014031430A1 (en) | Systems and methods for sharing devices in a virtualization environment | |
| CN102576309B (en) | Communication between partitions in a logically partitioned system by bypassing the network stack when communicating between applications executed on the same data processing system | |
| CN101782863B (en) | Method and system for load balancing to operation | |
| CN104170307B (en) | Failover methods, devices and systems | |
| US20190058631A1 (en) | Disruption minimization for guests when applying changes to a data plane of a packet handler in a host | |
| US9298568B2 (en) | Method and apparatus for device driver state storage during diagnostic phase | |
| US20210006511A1 (en) | Software-controlled active-backup mode of link aggregation for rdma and virtual functions | |
| US9104632B2 (en) | Enhanced failover mechanism in a network virtualized environment | |
| US10817400B2 (en) | Management apparatus and management method | |
| US8935695B1 (en) | Systems and methods for managing multipathing configurations for virtual machines | |
| CN115599494A (en) | Virtual machine migration method and device, upgrading method and server | |
| US20210349794A1 (en) | Fencing non-responding ports in a network fabric | |
| US11792072B2 (en) | Workload aware networking in a microservice architecture |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20191018 |
|
| RJ01 | Rejection of invention patent application after publication |