CN112714017B - Configuration issuing method and device - Google Patents

Configuration issuing method and device Download PDF

Info

Publication number
CN112714017B
CN112714017B CN202011567143.2A CN202011567143A CN112714017B CN 112714017 B CN112714017 B CN 112714017B CN 202011567143 A CN202011567143 A CN 202011567143A CN 112714017 B CN112714017 B CN 112714017B
Authority
CN
China
Prior art keywords
host
vlan
identifier
vxlan
identification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011567143.2A
Other languages
Chinese (zh)
Other versions
CN112714017A (en
Inventor
梅秀飞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd
Original Assignee
New H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd filed Critical New H3C Technologies Co Ltd
Priority to CN202011567143.2A priority Critical patent/CN112714017B/en
Publication of CN112714017A publication Critical patent/CN112714017A/en
Application granted granted Critical
Publication of CN112714017B publication Critical patent/CN112714017B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application provides a configuration issuing method and a configuration issuing device, wherein the method comprises the following steps: receiving an LLDP message transmitted by a host and forwarded by an access switch, wherein the LLDP message carries host information of the host and access information of the host accessing the access switch; recording the corresponding relation between the host information and the access information in the mapping relation model; when a binding operation event of a VM in a host is detected, analyzing host information of the host and VLAN identification and port group identification used by the VM to access a virtual switch from the binding operation event; determining VXLAN identifications corresponding to the analyzed VLAN identifications and port group identifications according to the corresponding relation among the port group identifications, the VLAN identifications and the VXLAN identifications which are configured in advance; adding the VLAN identification and the VXLAN identification to a position corresponding to the host information in the mapping relation model; and sending a configuration instruction to an access switch corresponding to the access information according to the mapping relation model so that the access switch configures the mapping relation between the VLAN identifier and the VXLAN identifier.

Description

Configuration issuing method and device
Technical Field
The present application relates to the field of communications technologies, and in particular, to a configuration issuing method and apparatus.
Background
The VMware cloud-free scene comprises an SDN controller, a network platform and a virtualization management platform, the SDN controller is used for connecting the VMware, computing resources and network resources are separately managed, meanwhile, the controller is used for carrying out network automatic configuration and is linked with the computing resource platform, scheduling resources are cooperatively allocated, and flexible and convenient resource management and service issuing are carried out.
In a VMware cloud-free scenario, hierarchical port binding is required to complete data interaction. The hierarchical port binding refers to binding VLAN resources on a virtual switch and VXLAN resources on an access switch to a network egress of a computing resource. After binding is completed, after network data is uploaded to a virtual switch, VLAN Tag is printed on an export message output from the virtual switch, a message carrying the VLAN Tag is uploaded to an access switch, the access switch strips the VLAN Tag in the message according to the mapping relation between the VLAN and VXLAN, and the message is encapsulated into a corresponding VXLAN message, and the process is called as VLAN-VXLAN hierarchical port binding.
Under a VMware cloud-free scene, the hierarchical port binding of the VLAN-VXLAN corresponding to the network outlet of the computing resource needs to be added or deleted manually at a controller or an access switch by a network administrator, when the number of tenants is large, the hierarchical binding of the corresponding VLAN-VXLAN is increased, the manual configuration of the network administrator is complicated, the configuration error condition exists, and the whole network and computing linkage process needs too much manual step intervention and is complicated.
Therefore, how to solve the problems of complicated configuration and configuration error caused by manually performing hierarchical binding of the VLAN-VXLAN in the prior art is one of the considerable technical problems.
Disclosure of Invention
In view of this, the present application provides a configuration issuing method and device, so as to solve the problems of complicated configuration and configuration error caused by manually performing hierarchical binding of a VLAN-VXLAN in the prior art.
Specifically, the method is realized through the following technical scheme:
according to a first aspect of the present application, a configuration issuing method is provided, which is applied to an SDN controller, and the method includes:
receiving a data link layer protocol (LLDP) message transmitted by a host and forwarded by an access switch, wherein the LLDP message carries host information of the host and access information of the host accessing the access switch;
recording the corresponding relation between the host information and the access information in a mapping relation model;
when a binding operation event of a virtual machine VM in the host is detected, analyzing host information of the host and a Virtual Local Area Network (VLAN) identifier and a port group identifier used by the VM accessed to a virtual switch from the binding operation event;
determining VXLAN identification corresponding to the analyzed VLAN identification and port group identification according to the corresponding relation among the port group identification, the VLAN identification and the VXLAN identification which are configured in advance;
adding the VLAN identification and the VXLAN identification to a position corresponding to the analyzed host information in the mapping relation model;
and sending a configuration instruction to an access switch corresponding to the access information according to the mapping relation model so that the access switch configures the mapping relation between the VLAN identification and the VXLAN identification.
According to a second aspect of the present application, a configuration issuing apparatus is provided, which is applied to an SDN controller, and the apparatus includes:
the receiving module is used for receiving a data link layer protocol LLDP message which is transmitted by a host and forwarded by an access switch, wherein the LLDP message carries host information of the host and access information of the host accessing the access switch;
the recording module is used for recording the corresponding relation between the host information and the access information in a mapping relation model;
the detection module is used for detecting events occurring in the virtual machine in the host;
the analysis module is used for analyzing the host information of the host and the VLAN identification and the port group identification used by the VM accessed to the virtual switch from the binding operation event when the detection module detects the binding operation event of the VM in the host;
the determining module is used for determining VXLAN identifications corresponding to the analyzed VLAN identifications and port group identifications according to the corresponding relation among the port group identifications, the VLAN identifications and the VXLAN identifications which are configured in advance;
the recording module is further configured to add the VLAN identifier and the VXLAN identifier to a position in the mapping relationship model corresponding to the parsed host information;
and the network element management module is used for sending a configuration instruction to the access switch corresponding to the access information according to the mapping relation model so that the access switch configures the mapping relation between the VLAN identifier and the VXLAN identifier.
According to a third aspect of the present application, there is provided an SDN controller comprising a processor and a machine-readable storage medium, the machine-readable storage medium storing a computer program executable by the processor, the processor being caused by the computer program to perform the method provided by the first aspect of the embodiments of the present application.
According to a fourth aspect of the present application, there is provided a machine-readable storage medium storing a computer program which, when invoked and executed by a processor, causes the processor to perform the method provided by the first aspect of the embodiments of the present application.
The beneficial effects of the embodiment of the application are as follows:
by recording the mapping relation among the host information, the access information, the VLAN identification and the VXLAN identification in the mapping relation model, the mapping relation between the VLAN identification and the VXLAN identification can be sent to the access switch corresponding to the access information, so that the automatic configuration of the mapping relation between the VLAN identification and the VXLAN identification is realized, and the problems of high configuration complexity and high error rate caused by the manual configuration of the mapping relation in the prior art are solved.
Drawings
Fig. 1 is a schematic flowchart of a configuration issuing method according to an embodiment of the present application;
FIG. 2 is a schematic diagram of a VMware cloud-free scenario provided by an embodiment of the present application;
FIG. 3 is a logical diagram of a mapping relationship model provided by an embodiment of the present application;
fig. 4 is a block diagram of a configuration issuing apparatus according to an embodiment of the present application;
fig. 5 is a schematic hardware structure diagram of an SDN controller implementing the configuration issuing method according to the embodiment of the present application.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with aspects such as the present application.
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used in this application, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any and all possible combinations of one or more of the corresponding listed items.
It is to be understood that although the terms first, second, third, etc. may be used herein to describe various information, such information should not be limited to these terms. These terms are only used to distinguish one type of information from another. For example, first information may also be referred to as second information, and similarly, second information may also be referred to as first information, without departing from the scope of the present application. The word "if" as used herein may be interpreted as "at … …" or "when … …" or "in response to a determination", depending on the context.
The configuration issuing method provided by the present application is explained in detail below.
Referring to fig. 1, fig. 1 is a flowchart of a configuration issuing method provided in the present application, and is applied to a Software Defined Network (SDN) controller, so as to apply the SDN controller to a VMware cloud-free Network architecture shown in fig. 2, of course, the SDN controller may also be applied to other Network structures, for convenience of description, a subsequent embodiment of the present application is described with reference to the Network architecture shown in fig. 2, and when the SDN controller implements the method, the SDN controller may implement the method according to the following steps:
s101, receiving a data link layer protocol LLDP message transmitted by a host and forwarded by an access switch.
The LLDP packet in this embodiment carries the host information of the host and the access information of the host accessing the access switch.
In this step, as shown in fig. 2, a plurality of access switches may be connected to the SDN controller, and each access switch may allow access of a plurality of hosts, the hosts are respectively arranged on different computing nodes (for convenience of example, only one computing node is shown in fig. 2, and in practical application, multiple computing nodes are included), the computing nodes start a Link Layer Discovery Protocol (LLDP) service, when the LLDP service is started, each host can broadcast and send an LLDP message, the LLDP message carries the host information of the host and the access information of the access switch to which the host is accessed, and then, the access switch accessed by the SDN controller is transmitted to the SDN controller, and the SDN controller can analyze the host information of each host and the access information of the access switch accessed by each host from the received LLDP messages.
S102, recording the corresponding relation between the host information and the access information in a mapping relation model.
In this step, in order to implement automatic issuing of configuration subsequently, a corresponding relationship between the host information of each host and the access information of the access switch to which the host is accessed may be recorded as a link relationship, and recorded in a mapping relationship model, as shown in fig. 3.
It should be noted that, in fig. 2, each host in the compute node may send an LLDP message through an upstream port of the compute node.
S103, when detecting that a binding operation event occurs to a virtual machine VM in the host, analyzing host information of the host and a VLAN (virtual local area network) identifier and a port group identifier used by the VM to access a virtual switch from the binding operation event.
In this step, an event detection function is newly added in the SDN controller, and is used to detect whether a binding operation event occurs in the virtual machine VM on the host. Taking the host 1 as an example for description, when it is detected that a binding operation event occurs to a VM on the host 1, the host information of the host 1, and the VLAN id used when the host 1 accesses the vSwitch and the port group id corresponding to the VLAN id may be analyzed from the binding operation event. It should be noted that a software development kit SDK capable of implementing the detection function may be provided in the SDN controller to detect whether a specified operation event (binding, unbinding, migration, etc.) occurs to a virtual machine in the host.
It should be noted that, a forwarding path represented by one VLAN id and one VXLAN id is represented by one port group id, that is, different forwarding paths are represented by different port groups, as shown in table 1:
TABLE 1
Port group identification Forwarding path
Port group identification 1 VLAN identification 1-VXLAN identification 1
Port group identification 2 VLAN identification 2-VXLAN identification 1
Port group identification 3 VLAN identification 1-VXLAN identification 2
Port group identification 4 VLAN identification 2- - -VXLAN identification 2
…… ……
Optionally, the VM is set on a virtualization management platform, and the port group identifier and the VLAN identifier are issued by an SDN controller to the virtualization management platform in advance.
Specifically, a vCenter is provided on a virtualization management platform in a VMware cloud-free scenario, the VMware cloud-free scenario further includes multiple hosts and multiple virtual machines VMs located on the hosts, the virtual machines VMs are managed by the vCenter, as shown in fig. 2, a long connection is established between an SDN controller and the vCenter, a port group identifier and a VLAN identifier of each forwarding path preconfigured in the SDN controller are issued to the vCenter through the long connection, and then creation, deletion, and migration operations of the virtual machines are implemented based on the vCenter. For example, when the VM performs the above creation operation at the vCenter, the host is determined first, that is, the host information of the host is obtained, then the VM is created on the host, and meanwhile, the VLAN id for sending data to the outside and the port group id to which the VLAN id belongs are configured for the VM, and the VM creation needs to bind the host and the VLAN, so that a binding operation event is triggered, and then the host information, the VLAN id and the port group id can be resolved from the binding operation event.
S104, determining VXLAN identification corresponding to the analyzed VLAN identification and the port group identification according to the corresponding relation among the pre-configured port group identification, the VLAN identification and the VXLAN identification.
In this step, after analyzing the VLAN id and the port group id of the VM based on step S103, the SDN controller may determine, based on a mapping relationship among the port group id, the VLAN id, and the VXLAN id stored in advance, the VXLAN id corresponding to the analyzed VLAN id and port group id with reference to table 1. For example, if the VLAN id parsed from the binding operation event is VLAN id 1 and the port group id is port group id 1, the VXLAN id matched with VLAN id 1 and port group id 1 in table 1 is VXLAN id 1.
And S105, adding the VLAN identification and the VXLAN identification to the position corresponding to the analyzed host information in the mapping relation model.
In this step, after the VXLAN identifier matching the analyzed port group identifier and VLAN identifier is determined, in combination with the host information of the host in which the VM is located analyzed in step S103, the mapping relationship between the VLAN identifier and the VXLAN identifier is written in the corresponding position of the host information in the mapping relationship model, as shown in fig. 3, the obtained mapping relationship model shown in fig. 3 substantially records the host information of the host, the access information of the host accessing the access switch, and the forwarding path (VLAN-VXLAN) that should be used after the host accesses the access switch, that is, which access interface is used by any host to access which access switch, and then the access switch forwards data using which VXLAN network. For example, in the mapping relationship model in fig. 3, the host information of the host 1 and the corresponding access information are recorded as the access information of the access switch 1, and the mapping relationship between the corresponding VLAN identifier 1 and the VXLAN identifier 1, based on the mapping relationship model, the host 1 marks the network data with the VLAN identifier 1 through the virtual switch, and then sends the VLAN data to the access switch 1 accessed by the host 1, and the access switch 1 removes the VLAN identifier 1 and then marks the VXLAN identifier 1 to forward the data through the network corresponding to the VXLAN identifier 1.
S106, according to the mapping relation model, sending a configuration instruction to an access switch corresponding to the access information so that the access switch configures the mapping relation between the VLAN identifier and the VXLAN identifier.
In this step, after the mapping relationship model shown in fig. 3 is obtained based on step S105, the mapping relationship between the VLAN identifier and the VXLAN identifier recorded in the mapping relationship model may be sent to the corresponding access switch based on the access information. In this way, after receiving the mapping relationship, the access switch can perform the mapping relationship configuration based on the access information, which corresponds to recording the mapping relationship between the access information and the VLAN id and VXLAN id in the access switch. Therefore, automatic configuration of the mapping relation between the VLAN identifier and the VXLAN identifier is effectively achieved, and the situations that in the prior art, the complexity is improved and configuration is prone to errors caused by manual configuration of the mapping relation are avoided.
Optionally, the access information in this embodiment may be an IP address of the access switch and a port identifier of an ingress port when the host accesses the switch. On this basis, when the host information is confirmed to be the host 1, it can be determined that the access information of the access switch accessed by the host 1 is the IP1 and the port identification 1 based on the LLDP message, i.e. the access information of the access switch 1, after the determined VLAN id and VXLAN id are respectively VLAN id 1 and VXLAN id 1, VLAN id 1 and VXLAN id may be written to host 1 at corresponding locations based on the mapping model, then sending a configuration instruction to the access switch 1 to enable the access switch 1 to configure the mapping relation between the VLAN identifier 1 and the VXLAN identifier 1 on the port identifier 1, it can be understood that the correspondence between the port identifier 1, the VLAN identifier 1 and the VXLAN identifier 1 is recorded, thus, the access switch 1 can delete the VLAN Tag of the VLAN packet with the VLAN identifier 1 received through the port identifier 1, and then add the VXLAN identifier 1 to assemble a VXLAN packet for outward transmission. Therefore, automatic configuration of the mapping relation between the VLAN identification and the VXLAN identification is realized.
Optionally, the binding operation event may include, but is not limited to: creating a VM event, adding a network card event in the VM, binding a network card of the VM to a VLAN event, and the like.
It is noted that the host described above in the present application may be any host in a VMware cloud-free scenario.
Optionally, based on the foregoing embodiment, this embodiment further provides a configuration issuing method, including:
when detecting that a virtual machine VM in the host computer has a unbinding operation event, analyzing host computer information of the host computer and VLAN identification and port group identification used by the host computer to access a virtual switch from the unbinding operation event; determining VXLAN identification corresponding to the analyzed VLAN identification and port group identification according to the corresponding relation among the port group identification, the VLAN identification and the VXLAN identification which are configured in advance; searching the access information of the access switch corresponding to the determined host information, VLAN identification and VXLAN identification from the mapping relation model; and sending a configuration deletion instruction to the access switch corresponding to the determined access information so that the access switch deletes the mapping relation between the determined VLAN identification and the VXLAN identification.
Specifically, the method for detecting the occurrence of the unbinding operation event of the VM by the SDN controller is the same as the method for detecting the occurrence of the binding operation event of the VM, and is not described in detail here. After detecting that a VM in a host has a unbinding operation event, the host information of the host where the VM is located, and the VLAN identifier and the port group identifier previously configured by the VM can be resolved from the unbinding operation event.
It should be noted that, when a VM is deleted from a host, since it is certain that a VM creating operation is performed on the VM before the VM is deleted, the host information of the host where the VM is located, the VLAN identifier of the VM, and the port group identifier of the VM are also known, so that it is necessary to trigger an operation of unbinding a mapping relationship when the VM is deleted, that is, an unbinding operation event occurs, and the host information, the VLAN identifier, and the port group identifier of the VM can be acquired from the unbinding operation event.
On this basis, because the mapping relation model stores the host information of each host, the access information of the access switch, the corresponding relation between the VLAN identifier and the VXLAN identifier in advance, after the host information, the VLAN identifier and the port group identifier are analyzed, the VXLAN identifier corresponding to the analyzed VLAN identifier and port group identifier is found from the corresponding relation among the port group identifier, VLAN identifier and VXLAN identifier configured in advance. Then, the access information corresponding to the analyzed host information, the analyzed port group identification, the analyzed VLAN identification and the determined VXLAN identification can be searched from the mapping relation model; then after finding out the access information, sending a configuration deletion instruction to an access switch corresponding to the access information so that the access switch deletes the mapping relation between the VLAN identifier and the VXLAN identifier corresponding to the access information; and simultaneously deleting the mapping relation among the host information, the access information, the VLAN identification and the VXLAN identification from the mapping relation model so as to dynamically update the mapping relation model. Therefore, the automatic issuing configuration of the mapping relation between the VLAN identification and the VXLAN identification is realized, the dynamic updating of the mapping model is ensured, and the accuracy of the mapping relation between the issued VLAN identification and the VXLAN identification is further ensured.
Optionally, the access information in this embodiment may be an IP address of the access switch and a port identifier of an ingress port when the host accesses the switch. For example, with reference to the mapping relationship model shown in fig. 3 as an example, if the determined host information is host 2, the VLAN id is VLAN id 2, the port group id is port group id 4, and the VXLAN id is VXLAN id 2, then the access information of the access switch corresponding to the correspondence relationship can be determined from the mapping relationship model as IP address 2 of the access switch 2 and port id 2 of the access port, and then a configuration deletion instruction based on the port id 2 is sent to the access switch 2, so that the access switch 2 deletes the mapping relationship between the VLAN id 2 corresponding to the recorded port id 2 and the VXLAN id 2 after receiving the configuration deletion instruction.
Optionally, the unbinding operation event may be, but is not limited to: and deleting a VM event, deleting a network card event in the VM, unbinding a VLAN event of the network card of the VM and the like.
It is noted that the host described above in the present application may be any host in a VMware cloud-free scenario.
Optionally, based on any one of the above embodiments, this embodiment further provides the following configuration issuing method, including: when a Virtual Machine (VM) is detected to have a migration operation event, analyzing host information of a target host of the VM and a new VLAN identification and a new port group identification used by the target host for accessing a virtual switch from the migration operation event; determining VXLAN identifications corresponding to the analyzed new VLAN identifications and new port group identifications according to the corresponding relation among the port group identifications, the VLAN identifications and the VXLAN identifications which are configured in advance; updating the new VLAN identification and the determined VXLAN identification to a position corresponding to the host information of the target host in the mapping relation model; and determining the access information corresponding to the host information of the target host according to the updated mapping relation model, and sending a configuration switching instruction to the access switch corresponding to the access information so that the access switch deletes the original mapping relation between the VLAN corresponding to the access information and the VXLAN, and configures the mapping relation between the new VLAN identifier and the determined VXLAN identifier.
Specifically, the method for detecting the migration operation event of the VM by the SDN controller is the same as the method for detecting the binding operation event of the VM, and is not described in detail here. After detecting that a migration operation event occurs to a VM in a host, host information of a destination host after the VM is migrated and a new VLAN identifier and a new port group identifier used by a virtual switch to which the destination host is accessed may be resolved from the migration operation event. And then the SDN controller determines the VXLAN identification corresponding to the analyzed new port group identification and the new VLAN identification based on the corresponding relation among the pre-configured port group identification, the VLAN identification and the VXLAN identification. Then, when the computing node where the target host is located starts the LLDP service function, the host information of the target host and the access information of the access switch accessed by the target host are sent to the SDN controller based on the LLDP message broadcast in advance, so that the mapping relationship model stores the correspondence between the target host and the access information of the access switch accessed by the target host in advance. In this way, the access information of the access switch corresponding to the host information of the destination host can be found from the mapping relation model based on the host information of the destination host, then the mapping relation between the new VLAN identifier and the VXLAN identifier corresponding to the new VLAN identifier is written into the position corresponding to the host information of the destination host, and then a reconfiguration instruction is sent to the access switch corresponding to the access information, so that the access switch reconfigures the corresponding relation between the VLAN identifier and the VXLAN identifier corresponding to the access information into the mapping relation between the new VLAN identifier and the VXLAN identifier.
The access information is also the IP address of the access switch and the port identification of the host accessing the access port of the access switch.
For better understanding of the present embodiment, the mapping relationship model shown in fig. 3 is taken as an example for explanation, a destination host is host information of the host 3, and a new port group identifier and a new VLAN identifier are a port group identifier 2 and a VLAN identifier 2, respectively, then it can be confirmed that a VXLAN identifier corresponding to the port group identifier 2 and the VLAN identifier 2 is a VXLAN identifier 1 based on table 1, and then access information corresponding to the host information of the host 3, that is, an IP address 3 of the access switch 3 and a port identifier 3 of an access port, can be determined based on a mapping relationship between the host information of the host and the access information stored in advance in the mapping relationship model. Then, writing the VLAN identifier 2 and the VXLAN identifier 1 into the corresponding location of the host information of the host 3, that is, modifying the VLAN identifier and the VXLAN identifier at the corresponding location into the VLAN identifier 2 and the VXLAN identifier 1 (for example, originally recording the VLAN identifier 1 and the VXLAN identifier 2, and modifying into the VLAN identifier 2 and the VXLAN identifier 1), and then sending a configuration instruction to the access switch 3, so that the access switch 3 modifies the mapping relationship between the VLAN identifier and the VXLAN identifier corresponding to the port identifier 3 into the mapping relationship between the VLAN identifier 2 and the VXLAN identifier 1, that is, deleting the original mapping relationship, and reconfiguring the mapping relationship between the VLAN identifier 2 and the VXLAN identifier 1. Therefore, automatic configuration of the hierarchical binding relationship between the VLAN and the VXLAN is realized, and the problems of high configuration complexity and high possibility of errors caused by manual configuration in the prior art do not exist.
Optionally, the migration operation event may be, but is not limited to: migration VM events and network card switching events in VMs, etc.
Optionally, in any embodiment of the present application, the host information may include a host name host _ name and the like, the VLAN identifier may be a VLAN ID, the VXLAN identifier may be a VXLAN ID, and the port identifier of the access switch may be a port number.
It should be noted that the SDN controller has a network element management function, and is configured to monitor a mapping relationship model, and when the mapping relationship model records access information of an access switch corresponding to any host and a mapping relationship between a VLAN and a VXLAN, the mapping relationship between the VLAN and the VXLAN may be issued to the access switch corresponding to the access information based on the mapping relationship model.
By implementing the configuration issuing method provided by any embodiment of the present application, the mapping relationship between the host information, the access information, the VLAN identifier and the VXLAN identifier is recorded in the mapping relationship model, so that the mapping relationship between the VLAN identifier and the VXLAN identifier can be sent to the access switch corresponding to the access information, thereby implementing automatic configuration of the mapping relationship between the VLAN identifier and the VXLAN identifier, and avoiding the problems of high configuration complexity and high error rate caused by manual configuration of the mapping relationship in the prior art. The method is particularly suitable for VMware cloud-free scenes, when more tenants exist and the mapping relation between the VLAN and the VXLAN is correspondingly large, the dynamic issuing of the mapping relation between the VLAN and the VXLAN under the VMware cloud-free scenes is effectively realized by adopting the method provided by the application, so that the problem of high error rate caused by manual configuration is avoided, and meanwhile, the configuration and the accuracy of the network are accelerated.
Based on the same inventive concept, the application also provides a configuration issuing device corresponding to the configuration issuing method. The implementation of the configuration issuing device may refer to the above description of the configuration issuing method, and is not discussed here one by one.
Referring to fig. 4, fig. 4 is a configuration issuing apparatus provided in an exemplary embodiment of the present application, and the apparatus is applied to an SDN controller, and includes:
a receiving module 401, configured to receive a data link layer protocol LLDP message sent by a host and forwarded by an access switch, where the LLDP message carries host information of the host and access information of the host accessing the access switch;
a recording module 402, configured to record a corresponding relationship between the host information and the access information in a mapping relationship model;
a detection module 403, configured to detect an event occurring in a virtual machine in the host;
an analyzing module 404, configured to, when the detecting module 403 detects that a binding operation event occurs to a virtual machine VM in the host, analyze, from the binding operation event, host information of the host and a VLAN identifier and a port group identifier used by the VM to access a virtual switch;
a determining module 405, configured to determine, according to a correspondence relationship among a pre-configured port group identifier, a VLAN identifier, and a VXLAN identifier, a VXLAN identifier corresponding to the resolved VLAN identifier and port group identifier;
the recording module 402 is further configured to add the VLAN identifier and the VXLAN identifier to a position, corresponding to the analyzed host information, in the mapping relationship model;
and the network element management module 406 is configured to send a configuration instruction to the access switch corresponding to the access information according to the mapping relationship model, so that the access switch configures the mapping relationship between the VLAN identifier and the VXLAN identifier.
Optionally, the configuration issuing device provided in this embodiment further includes a search module (not shown in the figure), where:
the parsing module 404 is further configured to, when the detecting module 403 detects that a unbinding operation event occurs to a virtual machine VM in the host, parse host information of the host and a VLAN identifier and a port group identifier used by the host to access the virtual switch from the unbinding operation event;
the determining module 405 is further configured to determine, according to a pre-configured correspondence relationship among the port group identifier, the VLAN identifier, and the VXLAN identifier, a VXLAN identifier corresponding to the analyzed VLAN identifier and port group identifier;
a searching module (not shown in the figure) for searching the access information of the access switch corresponding to the determined host information, the VLAN identifier and the VXLAN identifier from the mapping relation model;
the network element management module 406 is further configured to send a configuration deletion instruction to the access switch corresponding to the determined access information, so that the access switch deletes the mapping relationship between the determined VLAN identifier and the VXLAN identifier.
Optionally, the parsing module 404 is further configured to, when the detection module detects that a migration operation event occurs to a virtual machine VM, parse, from the migration operation event, host information of a destination host of the VM, a new VLAN identifier and a new port group identifier, where the destination host is accessed to a virtual switch;
the determining module 405 is further configured to determine, according to a correspondence relationship among the preconfigured port group identifier, the VLAN identifier, and the VXLAN identifier, a VXLAN identifier corresponding to the analyzed new VLAN identifier and new port group identifier;
the recording module 402 is further configured to update the new VLAN identifier and the determined VXLAN identifier to a location corresponding to the host information of the destination host in the mapping relationship model;
the network element management module 406 is further configured to determine, according to the updated mapping relationship model, access information corresponding to the host information of the target host, and send a configuration switching instruction to the access switch corresponding to the access information, so that the access switch deletes the original mapping relationship between the VLAN corresponding to the access information and the VXLAN, and configures the mapping relationship between the new VLAN identifier and the determined VXLAN identifier.
Optionally, the interface information in this embodiment includes an internet protocol IP address of an access switch and a port identifier of an ingress port of the access switch, where the host accesses the access switch.
Optionally, the virtual machine VM in this embodiment is set on a virtualization management platform, and the port group identifier and the VLAN identifier are issued to the virtualization management platform in advance by an SDN controller.
Based on the same inventive concept, an SDN controller provided in this embodiment of the present application is shown in fig. 5, and includes a processor 501 and a machine-readable storage medium 502, where the machine-readable storage medium 502 stores a computer program that can be executed by the processor 501, and the processor 501 is caused by the computer program to execute the configuration issuing method provided in this embodiment of the present application.
The computer-readable storage medium may include a RAM (Random Access Memory), a DDR SRAM (Double Data Rate Synchronous Dynamic Random Access Memory), and may also include a NVM (Non-volatile Memory), such as at least one disk Memory. Alternatively, the computer readable storage medium may be at least one memory device located remotely from the processor.
The Processor may be a general-purpose Processor, including a Central Processing Unit (CPU), a Network Processor (NP), and the like; but also a DSP (Digital Signal Processor), an ASIC (Application Specific Integrated Circuit), an FPGA (Field-Programmable Gate Array) or other Programmable logic device, discrete Gate or transistor logic device, discrete hardware component.
In addition, a machine-readable storage medium is provided, and a computer program is stored in the machine-readable storage medium, and when the computer program is called and executed by a processor, the computer program causes the processor to execute the configuration issuing method provided by the embodiment of the present application.
For the SDN controller and the machine-readable storage medium embodiment, since the contents of the related methods are substantially similar to those of the foregoing method embodiments, the description is relatively simple, and for the relevant points, reference may be made to the partial description of the method embodiments.
It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The implementation process of the functions and actions of each unit/module in the above device is specifically described in the implementation process of the corresponding step in the above method, and is not described herein again.
For the device embodiments, since they substantially correspond to the method embodiments, reference may be made to the partial description of the method embodiments for relevant points. The above-described embodiments of the apparatus are only schematic, where the units/modules described as separate parts may or may not be physically separate, and the parts displayed as units/modules may or may not be physical units/modules, may be located in one place, or may be distributed on multiple network units/modules. Some or all of the units/modules can be selected according to actual needs to achieve the purpose of the scheme of the application. One of ordinary skill in the art can understand and implement without inventive effort.
The above description is only a preferred embodiment of the present application and should not be taken as limiting the present application, and any modifications, equivalents, improvements and the like made within the spirit and principle of the present application should be included in the protection scope of the present application.

Claims (10)

1. A configuration issuing method is applied to an SDN controller, and comprises the following steps:
receiving a data link layer protocol (LLDP) message transmitted by a host and forwarded by an access switch, wherein the LLDP message carries host information of the host and access information of the host accessing the access switch;
recording the corresponding relation between the host information and the access information in a mapping relation model;
when detecting that a virtual machine VM in the host computer has a binding operation event, analyzing host computer information of the host computer and a Virtual Local Area Network (VLAN) identifier and a port group identifier used by the VM accessed to a virtual switch from the binding operation event;
determining VXLAN identifications corresponding to the analyzed VLAN identifications and port group identifications according to the corresponding relation among the port group identifications, the VLAN identifications and the VXLAN identifications which are configured in advance;
adding the VLAN identification and the VXLAN identification to a position corresponding to the analyzed host information in the mapping relation model;
and sending a configuration instruction to an access switch corresponding to the access information according to the mapping relation model so that the access switch configures the mapping relation between the VLAN identifier and the VXLAN identifier.
2. The method of claim 1, further comprising:
when detecting that a virtual machine VM in the host computer has a unbinding operation event, analyzing host computer information of the host computer and VLAN identification and port group identification used by the host computer to access a virtual switch from the unbinding operation event;
determining VXLAN identification corresponding to the analyzed VLAN identification and port group identification according to the corresponding relation among the port group identification, the VLAN identification and the VXLAN identification which are configured in advance;
searching the access information of the access switch corresponding to the determined host information, VLAN identification and VXLAN identification from the mapping relation model;
and sending a configuration deleting instruction to the access switch corresponding to the determined access information so that the access switch deletes the mapping relation between the determined VLAN identifier and the VXLAN identifier.
3. The method of claim 1, further comprising:
when a Virtual Machine (VM) is detected to have a migration operation event, analyzing host information of a target host of the VM and a new VLAN identification and a new port group identification used by the target host for accessing a virtual switch from the migration operation event;
determining VXLAN identification corresponding to the analyzed new VLAN identification and new port group identification according to the corresponding relation among the port group identification, the VLAN identification and the VXLAN identification which are configured in advance;
updating the new VLAN identification and the determined VXLAN identification to a position corresponding to the host information of the target host in the mapping relation model;
and determining the access information corresponding to the host information of the target host according to the updated mapping relation model, and sending a configuration switching instruction to the access switch corresponding to the access information so that the access switch deletes the original mapping relation between the VLAN corresponding to the access information and the VXLAN, and configures the mapping relation between the new VLAN identifier and the determined VXLAN identifier.
4. The method of claim 1, wherein the access information comprises an Internet Protocol (IP) address of an access switch and a port identification of an ingress port of a host accessing the access switch.
5. The method of claim 1, wherein the VM is disposed on a virtualization management platform, and the port group identifier and the VLAN identifier are issued by an SDN controller to the virtualization management platform in advance.
6. A configuration issuing device is applied to an SDN controller, and comprises the following components:
the receiving module is used for receiving a data link layer protocol LLDP message which is transmitted by a host and forwarded by an access switch, wherein the LLDP message carries host information of the host and access information of the host accessing the access switch;
the recording module is used for recording the corresponding relation between the host information and the access information in a mapping relation model;
the detection module is used for detecting events occurring in the virtual machine in the host;
the analysis module is used for analyzing the host information of the host and the VLAN identification and the port group identification used by the VM accessed to the virtual switch from the binding operation event when the detection module detects the binding operation event of the VM in the host;
the determining module is used for determining VXLAN identification corresponding to the analyzed VLAN identification and the port group identification according to the corresponding relation among the pre-configured port group identification, the VLAN identification and the VXLAN identification;
the recording module is further configured to add the VLAN identifier and the VXLAN identifier to a position in the mapping relationship model corresponding to the parsed host information;
and the network element management module is used for sending a configuration instruction to the access switch corresponding to the access information according to the mapping relation model so that the access switch configures the mapping relation between the VLAN identifier and the VXLAN identifier.
7. The apparatus of claim 6, further comprising:
the analyzing module is further configured to, when the detecting module detects that a unbinding operation event occurs to a virtual machine VM in the host, analyze host information of the host and a VLAN identifier and a port group identifier used by the host to access a virtual switch from the unbinding operation event;
the determining module is further used for determining VXLAN identifications corresponding to the analyzed VLAN identifications and port group identifications according to the corresponding relation among the pre-configured port group identifications, the VLAN identifications and the VXLAN identifications;
the searching module is used for searching the access information of the access switch corresponding to the determined host information, VLAN identification and VXLAN identification from the mapping relation model;
the network element management module is further configured to send a configuration deletion instruction to the access switch corresponding to the determined access information, so that the access switch deletes the mapping relationship between the determined VLAN identifier and the VXLAN identifier.
8. The apparatus of claim 6,
the analysis module is further configured to, when the detection module detects that a migration operation event occurs to a virtual machine VM, analyze host information of a destination host of the VM, a new VLAN identifier and a new port group identifier, which are used when the destination host accesses a virtual switch, from the migration operation event;
the determining module is further configured to determine, according to a correspondence between the preconfigured port group identifier, the VLAN identifier, and the VXLAN identifier, a VXLAN identifier corresponding to the parsed new VLAN identifier and new port group identifier;
the recording module is further configured to update the new VLAN identifier and the determined VXLAN identifier to a location corresponding to the host information of the destination host in the mapping relationship model;
the network element management module is further configured to determine, according to the updated mapping relationship model, access information corresponding to the host information of the target host, and send a configuration switching instruction to the access switch corresponding to the access information, so that the access switch deletes the original mapping relationship between the VLAN corresponding to the access information and the VXLAN, and configures the mapping relationship between the new VLAN identifier and the determined VXLAN identifier.
9. The apparatus of claim 6, wherein the access information comprises an Internet Protocol (IP) address of an access switch and a port identification of an ingress port of a host accessing the access switch.
10. The apparatus of claim 6, wherein the virtual machine VM is disposed on a virtualization management platform, and the port group identifier and the VLAN identifier are issued by an SDN controller to the virtualization management platform in advance.
CN202011567143.2A 2020-12-25 2020-12-25 Configuration issuing method and device Active CN112714017B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011567143.2A CN112714017B (en) 2020-12-25 2020-12-25 Configuration issuing method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011567143.2A CN112714017B (en) 2020-12-25 2020-12-25 Configuration issuing method and device

Publications (2)

Publication Number Publication Date
CN112714017A CN112714017A (en) 2021-04-27
CN112714017B true CN112714017B (en) 2022-07-12

Family

ID=75546807

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011567143.2A Active CN112714017B (en) 2020-12-25 2020-12-25 Configuration issuing method and device

Country Status (1)

Country Link
CN (1) CN112714017B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107580077A (en) * 2016-07-04 2018-01-12 南京中兴新软件有限责任公司 Public network IP distribution method, device and Visualized data centre system
CN109561025A (en) * 2017-09-27 2019-04-02 华为技术有限公司 A kind of information processing method and relevant device
CN110351135A (en) * 2019-06-28 2019-10-18 新华三技术有限公司合肥分公司 Method for configuring network equipment and device in more DC

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9559896B2 (en) * 2013-07-08 2017-01-31 Cisco Technology, Inc. Network-assisted configuration and programming of gateways in a network environment
US10476699B2 (en) * 2018-01-31 2019-11-12 Hewlett Packard Enterprise Development Lp VLAN to VXLAN translation using VLAN-aware virtual machines

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107580077A (en) * 2016-07-04 2018-01-12 南京中兴新软件有限责任公司 Public network IP distribution method, device and Visualized data centre system
CN109561025A (en) * 2017-09-27 2019-04-02 华为技术有限公司 A kind of information processing method and relevant device
CN110351135A (en) * 2019-06-28 2019-10-18 新华三技术有限公司合肥分公司 Method for configuring network equipment and device in more DC

Also Published As

Publication number Publication date
CN112714017A (en) 2021-04-27

Similar Documents

Publication Publication Date Title
US12047283B2 (en) Flow tracing operation in container cluster
US10581801B2 (en) Context-aware distributed firewall
US11196654B2 (en) System for aggregating statistics associated with interfaces
US10402293B2 (en) System for virtual machine risk monitoring
CN107317832B (en) Message forwarding method and device
CN115037575A (en) Message processing method and device
CN109327557B (en) Method and device for managing IP address of virtual machine
CN109714239B (en) Management message issuing method, VNFM (virtual network management frequency) equipment and server
US10756952B2 (en) Determining a storage network path utilizing log data
US20130346592A1 (en) Switch monitoring statistics gathering at servers and gateways for overlay networks
US10846120B2 (en) Configuration tracking in virtualized computing environments
US20210365303A1 (en) Cloud environment configuration based on task parallelization
US7735095B2 (en) Network device drivers using a communication transport
CN110798541A (en) Interface sharing method, interface sharing device, message forwarding method, device, electronic equipment and storage medium
US9716631B2 (en) End host physical connection on a switch port using multiple ethernet frames
CN106411575A (en) Network configuration check method and related equipment under cloud environment
CN112714017B (en) Configuration issuing method and device
US20170279659A1 (en) Show command service aka cli relay
CN114172789A (en) Virtual device link detection method, device, equipment and storage medium
CN109039909B (en) Message forwarding method and device
CN113114493B (en) Network element configuration constraint checking method and system
US11991069B2 (en) Dynamic aggregate ID based flow metrics aggregation
US20230096394A1 (en) Scalable provenance data display for data plane analysis
US20230105269A1 (en) Virtualized network service deployment method and apparatus
CN111726236A (en) State identification information generation method, system, device and storage medium thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant