CN113938378A - Method, device and medium for verifying network device configuration in cloud network environment - Google Patents
Method, device and medium for verifying network device configuration in cloud network environment Download PDFInfo
- Publication number
- CN113938378A CN113938378A CN202111093795.1A CN202111093795A CN113938378A CN 113938378 A CN113938378 A CN 113938378A CN 202111093795 A CN202111093795 A CN 202111093795A CN 113938378 A CN113938378 A CN 113938378A
- Authority
- CN
- China
- Prior art keywords
- information
- service
- configuration information
- network equipment
- verified
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 43
- 238000012795 verification Methods 0.000 claims abstract description 60
- 230000006870 function Effects 0.000 claims description 5
- 239000000126 substance Substances 0.000 claims description 3
- 230000004927 fusion Effects 0.000 abstract 1
- 230000008569 process Effects 0.000 description 7
- 238000004891 communication Methods 0.000 description 5
- 238000010586 diagram Methods 0.000 description 5
- 238000012545 processing Methods 0.000 description 3
- 238000011161 development Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000002776 aggregation Effects 0.000 description 1
- 238000004220 aggregation Methods 0.000 description 1
- 230000004075 alteration Effects 0.000 description 1
- 238000004458 analytical method Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0876—Aspects of the degree of configuration automation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0866—Checking the configuration
Abstract
The embodiment of the specification discloses a method for verifying configuration of network equipment in a cloud network environment, which is used for automatically verifying configuration of the network equipment in the cloud network fusion environment. The cloud network environment comprises a cloud platform, an SDN controller and network equipment to be verified, and the method comprises the following steps: acquiring service information and network equipment information of network equipment to be checked, which are issued by a cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified; determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template; acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type; and comparing the target configuration information with the actual configuration information in operation to obtain a configuration information verification result of the network equipment to be verified.
Description
Technical Field
The present disclosure relates to the field of network configuration verification technologies, and in particular, to a method, a device, and a medium for verifying network device configuration in a cloud network environment.
Background
In recent years, with active innovation in the field of cloud computing and popularization of cloud computing development, cloud network convergence has become a development trend in the field of cloud computing. The cloud network integration is a network architecture deep revolution based on business requirements and technical innovation parallel drive agents, so that the cloud and the network are highly cooperative, mutually supported and mutually referenced. A typical cloud network convergence environment comprises two parts, a cloud platform and a controller. The cloud platform manages server resources and provides related computing resources such as a CPU (central processing unit), a memory, a storage and the like; the controller manages network equipment resources, is linked with the cloud platform, and issues virtual service configuration to the network equipment according to the virtual service condition of the cloud platform to realize network communication of upper-layer virtual services.
In the cloud network convergence environment, the controller issues some basic configurations to the network equipment when the controller is initially connected with the cloud platform, and in the service operation stage, the controller issues service configurations to the network equipment according to the virtual service condition. Because the number of network devices managed by the controller is large, and the underlying network is wired in a large number, in the actual operation process, whether basic configuration or cloud network service configuration is adopted, configuration errors of the network devices in the environment may be caused by various reasons, and further the service connectivity is influenced. Meanwhile, as network equipment is numerous and services are complex, if a fault is located by manually configuring and checking, a large amount of labor is consumed and the efficiency is low.
Therefore, a method for checking configuration of network devices in a cloud network convergence environment is needed.
Disclosure of Invention
One or more embodiments of the present specification provide a method, a device, and a medium for checking a network device configuration in a cloud network environment, so as to solve the following technical problems: how to provide a method for automatically checking the configuration of network equipment in a cloud network convergence environment.
One or more embodiments of the present disclosure adopt the following technical solutions:
one or more embodiments of the present specification provide a method for verifying a network device configuration in a cloud network environment, where the cloud network environment includes a cloud platform, an SDN controller, and a network device to be verified, and the method includes:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
Optionally, in one or more embodiments of the present specification, the generating target configuration information of the network device to be verified according to the service information and the corresponding configuration information template specifically includes:
determining a data form supported by the network equipment to be verified according to the corresponding configuration information template; the dataforms include, but are not limited to: a command line form, a JSON data form;
determining service configuration information required by the configuration information according to the corresponding configuration information template;
and acquiring the required service configuration information based on the service information, and converting the required service configuration information into a data form supported by the network equipment to be verified so as to acquire target configuration information of the network equipment to be verified.
Optionally, in one or more embodiments of this specification, the obtaining, according to the service information and the configuration drive type, actual configuration information of the network device to be verified in operation specifically includes:
determining a mode of acquiring configuration information by the network equipment to be verified according to the configuration driving type corresponding to the network equipment to be verified;
and acquiring actual configuration information of the network equipment to be verified in operation based on the configuration information acquisition mode of the network equipment to be verified and the service information issued by the cloud platform.
Optionally, in one or more embodiments of the present specification, the comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network device to be verified specifically includes:
selecting a corresponding comparison mode according to the configuration driving type of the network equipment to be verified;
if the target configuration information is determined to be the same as the actual configuration information based on the corresponding comparison mode, the configuration is successfully verified;
and if the target configuration information is determined to be different from the actual configuration information based on the corresponding comparison mode, the verification result is configuration failure.
Optionally, in one or more embodiments of the present specification, after comparing the target configuration information with the running actual configuration information and obtaining a configuration information verification result of the network device to be verified, the method further includes:
matching a corresponding checking report template based on the service type of the service information and the equipment model of the equipment information;
inputting the service information, the equipment information and the configuration verification result into a preset learning model in the corresponding verification report template so as to output a verification report in a preset report form; wherein the preset report form comprises: web pages, documents, emails.
Optionally, in one or more embodiments of the present specification, the service type of the service information includes: basic service and cloud network service; wherein the basic service includes but is not limited to: MLAG, OSPF, BGP, including but not limited to virtual networks, virtual subnets, virtual routes, virtual hosts.
Optionally, in one or more embodiments of the present specification, the network device information includes, but is not limited to: device model, device IP, device function, configuration drive type; the configuration drive types include, but are not limited to: SSH, REST-API.
Optionally, in one or more embodiments of the present specification, before the obtaining the service information and the network device information of the network device to be verified, which are sent by the cloud platform, the method further includes:
determining the time interval of the configuration verification according to the performance of the cloud network environment; wherein performance in the cloud network environment is determined by any one or more of: the system comprises a cloud platform, an SDN controller, a leaf ridge exchanger network and a virtual machine;
and sending a data acquisition instruction at regular time based on the time interval so as to acquire the service information and the network equipment information of the network equipment to be checked.
One or more embodiments of the present specification provide a device for configuration verification of a network device in a cloud network environment, where the cloud network environment includes a cloud platform, an SDN controller, and a network device to be verified; the method comprises the following steps:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein the content of the first and second substances,
the memory stores instructions executable by the at least one processor to enable the at least one processor to:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
One or more embodiments of the present specification provide a non-transitory computer storage medium storing computer-executable instructions configured to:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
The embodiment of the specification adopts at least one technical scheme which can achieve the following beneficial effects:
the target configuration information is generated based on the service information and the configuration information template through the configuration information template corresponding to the service type and the equipment model, so that the target verification information comprising the physical network equipment and the virtual network equipment is obtained, and the problem that the verification content is incomplete in the prior art is solved. Meanwhile, different verification modes are used for verification according to configuration driving types of different devices, so that the verification modes are flexible and changeable, and the accuracy of a verification result is ensured.
Drawings
In order to more clearly illustrate the embodiments of the present specification or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings described below are only some embodiments described in the specification, and other drawings can be obtained by those skilled in the art without inventive labor.
In the drawings:
fig. 1 is a schematic diagram of a typical networking topology of a cloud network environment according to an embodiment of the present disclosure;
fig. 2 is a schematic flowchart of a method for checking configuration of a network device in a cloud network environment according to an embodiment of the present disclosure;
fig. 3 is a schematic internal structural diagram of an apparatus for checking configuration of a network device in a cloud network environment according to an embodiment of the present disclosure;
fig. 4 is a schematic internal structural diagram of a device for checking configuration of a network device in a cloud network environment according to an embodiment of the present disclosure;
fig. 5 is a schematic diagram of an internal structure of a nonvolatile storage medium according to an embodiment of the present disclosure.
Detailed Description
The embodiment of the specification provides a method, equipment and medium for verifying network equipment configuration in a cloud network environment.
In order to make those skilled in the art better understand the technical solutions in the present specification, the technical solutions in the embodiments of the present specification will be clearly and completely described below with reference to the drawings in the embodiments of the present specification, and it is obvious that the described embodiments are only a part of the embodiments of the present specification, and not all embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present specification without any creative effort shall fall within the protection scope of the present specification.
By cloud network convergence, cloud is cloud computing, and the network is a communication network. Specifically, cloud computing includes computing power, storage power, and related hardware and software. The communication network includes the aspects of the communication network such as an access network, a bearer network, a core network, etc. As shown in fig. 1, a typical cloud network convergence environment includes two parts, a cloud platform and a controller. The cloud platform manages server resources and provides related computing resources such as a CPU (central processing unit), a memory, storage and the like; the controller manages network equipment resources, is linked with the cloud platform, and issues virtual service configuration to the network equipment according to the virtual service condition of the cloud platform to realize network communication of upper-layer virtual services.
In a cloud network environment, an SDN controller issues some basic configurations to network equipment when the SDN controller is initially connected with a cloud platform, and in a service operation stage, the controller issues service configurations to the network equipment according to virtual service conditions. Because the number of network devices managed by the controller is large, and the underlying network is wired in a large number, in the actual operation process, whether basic configuration or cloud network service configuration is adopted, configuration errors of the network devices in the environment may be caused by various reasons, and further the connectivity of the service is influenced. Because network equipment is numerous and has complex service, if the fault is located by configuration and verification in a manual mode, a large amount of labor is consumed, and the efficiency is low.
In order to solve the above problems, in the present specification, after the service type of the service information matches the corresponding configuration information template with the model of the device, the configuration information template may perform flexible configuration according to the device type, the driving type, and the like to obtain a data form corresponding to the model of the network device to be verified, so that the service information generates target configuration information according to the configuration information template, and a foundation is laid for implementing configuration verification of the physical network device and the virtual network device. After the actual configuration information is obtained, different verification modes can be selected according to the configuration driving types of different devices, and the problem that a large amount of cost is consumed when manual configuration verification is carried out is solved through an automatic verification mode. Meanwhile, the basic service configuration information can be verified in the verification process combining the service information and the equipment information, the cloud network service configuration information can also be verified, and the problem that verification content is incomplete in the prior art is solved.
The technical solution of the present specification will be described in detail below with reference to the accompanying drawings.
In one or more embodiments of the present disclosure as shown in fig. 2, a flowchart of a method for checking a configuration of a network device in a cloud environment is provided.
As shown in fig. 2, the steps of the method include:
s201: acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information includes at least one service type, and the network device information includes at least a device model and a configuration drive type of the network device to be verified.
In one or more embodiments of the present specification, the service type of the service information includes: basic business and cloud network business; wherein the basic service includes but is not limited to: MLAG, OSPF, BGP, including but not limited to virtual networks, virtual subnets, virtual routes, virtual hosts.
In one or more embodiments of the present description, the network device information includes, but is not limited to: device model, device IP, device function, configuration drive type; the configuration drive types include, but are not limited to: SSH, REST-API.
In one or more embodiments of the present specification, before the obtaining the service information and the network device information of the network device to be verified, which are issued by the cloud platform, the method further includes:
determining the time interval of the configuration verification according to the performance of the cloud network environment; wherein performance in the cloud network environment is determined by any one or more of: the system comprises a cloud platform, an SDN controller, a leaf ridge exchanger network and a virtual machine;
and sending a data acquisition instruction at regular time based on the time interval so as to acquire the service information and the network equipment information of the network equipment to be checked.
As shown in the network topology diagram of fig. 1, after normal deployment, the cloud platform interfaces with the SDN controller. The cloud platform management server calculates the nodes, and realizes unified management of resources such as calculation, storage and the like in the cloud platform. The SDN controller manages network equipment in a network and achieves flexible scheduling of network resources. The SDN controller sends some basic configuration information to get through a physical network underlay in the process of managing the network equipment, and also sends service configuration information according to the service information of the cloud platform to get through a virtual network overlay. When the cloud platform creates the cloud network virtual service, the controller issues the corresponding service configuration to the network device according to the cloud network virtual service information.
The cloud platform is a complex distributed system, and configuration errors of network equipment may be caused by the system and the like, so that the connectivity of services is affected. And determining the time interval for carrying out network equipment configuration verification on the cloud network environment according to the performance of the cloud network environment so as to ensure the normal operation of the business process. It should be noted that the performance of the cloud platform is determined by the cloud platform, the SDN controller, the leaf-spine switch network, and the network device that constitute the cloud network convergence environment.
Sending a data acquisition instruction according to the determined time interval to acquire service information of the network device to be checked in the cloud network environment issued by the SDN controller, where the service information in this specification includes service information related to two service types, namely a basic service and a cloud network service. It should be noted that basic services in the cloud network environment include, but are not limited to, cross-device Link Aggregation (MLAG), Open Shortest Path First (OSPF), Border Gateway (BGP), and the like, and service information stored in a cloud platform is also different for different services, for example, BGP in the basic service, and main information to be stored includes port IP, neighbor IP, and the like. Further, cloud network traffic includes, but is not limited to, virtual networks, virtual subnets, virtual routes, virtual hosts, and the like. The basic service is the same as the basic service, and the main information required to be stored is different for different cloud network services. For example: the main information required to be stored in the virtual network service in the cloud network service includes a virtual network ID, a virtual network vlan ID, a virtual network vnid, and the like.
The method and the device aim to comprehensively check the cloud network environment configuration check information and avoid the problem that configuration check is inaccurate because configuration check is only performed on the virtual network equipment and no check is performed on the physical network equipment. The method includes the steps that when service information of the network device to be verified in a cloud network environment issued by an SDN controller is obtained, device information of the network device to be verified is also obtained. The device information includes, but is not limited to, a device model, a device IP, a device function, a configuration driver type, and the like. The configuration drive type refers to a manner in which the device acquires configuration information corresponding to the device model. Such as: some network devices support obtaining configuration information through Secure Shell (SSH), and some devices support obtaining configuration information through presentation State Transfer-Application Program Interface (REST _ API).
S202: determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; and generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template.
In one or more embodiments of the present specification, the generating target configuration information of the network device to be verified according to the service information and the corresponding configuration information template specifically includes:
determining a data form supported by the network equipment to be verified according to the corresponding configuration information template; the dataforms include, but are not limited to: a command line form, a JSON data form;
determining service configuration information required by the configuration information according to the corresponding configuration information template;
and acquiring the required service configuration information based on the service information, and converting the required service configuration information into a data form supported by the network equipment to be verified so as to acquire target configuration information of the network equipment to be verified.
And finding out a corresponding configuration information template according to the equipment type of the network equipment to be checked and the service type of the network equipment to be checked. The format of the configuration information template is as follows:
and after the configuration information template corresponding to the equipment type and the service type is obtained, obtaining the service configuration information required by the configuration information template according to the service information, and generating target configuration information.
For example, in one embodiment: the configuration driving type of a certain model of network equipment is SSH, the configuration information is in a relatively intuitive command line form, and a configuration information template of a port configuration IP service is as follows:
in the configuration template, the configuration information needed in the template is determined to be the port name according to the equipment model and the service type: PORT _ NAME and PORT IP address: IP _ ADDRESS. And generating target configuration information of the network device based on the configuration information PORT _ NAME and IP _ ADDRESS required by the service information acquired in step S101. For example, suppose that the PORT _ NAME of a PORT for IP traffic is eth-0-33 and the IP _ ADDRESS is 192.168.10.18/30. The generated service target configuration information is as follows:
in another embodiment, the configuration driver type of a certain model of network device is REST _ API, the configuration information is formatted JSON data format, and the configuration information template of the port configuration IP service is as follows:
wherein, PORT _ NAME and IP _ ADDRESS can be obtained from the information of the service. Suppose that the PORT _ NAME of a PORT for IP traffic is Ethernet1/3, and the IP _ ADDRESS is 192.168.10.30/30. The generated service target configuration information is as follows:
as can be seen from the above embodiments of the present specification, when the basic service is a service type, different configuration templates can be matched based on different device type numbers. And the data form supported by the network device to be verified, such as the above command line form and JSON data form, can be determined based on the configuration driving type of the network device to be verified. The method comprises the steps of obtaining service configuration information required by configuration information according to a configuration information template, converting the required service configuration information into a data form which can be supported by equipment by combining with a configuration driving type after obtaining the required service configuration information according to the service information, and obtaining target configuration information of the network equipment to be verified, which is obtained by the service when the service information is issued by a cloud platform.
In one embodiment, the configuration information template of the virtual network service, taking the cloud network service as an example, is as follows:
in the configuration information template, the service configuration information required by the configuration information is a vlan id and a VNID, and the vlan id and the VNID of the virtual network information can be obtained based on the service information of the cloud network service. If the vlan id and the VNID of a virtual network are 2 and 20000, respectively, the target configuration information corresponding to the cloud network service is as follows:
in the embodiments of different service types and different device models, different configuration information templates and device driving modes are used, and it can be understood that the configuration information templates and the configuration driving modes in the present specification can be flexibly changed according to the actual situation of the network device to be verified.
S203: and acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type.
In one or more embodiments of the present specification, the obtaining, according to the service information and the configuration driver type, actual configuration information of the network device to be verified in operation specifically includes:
determining a mode of acquiring configuration information by the network equipment to be verified according to the configuration driving type corresponding to the network equipment to be verified;
and acquiring actual configuration information of the network equipment to be verified in operation based on the configuration information acquisition mode of the network equipment to be verified and the service information issued by the cloud platform.
The service information may be converted into a data format supported by the device according to the configuration information template described in step S202. And when the actual configuration information of the network equipment to be verified is obtained, the actual configuration information of the network equipment to be verified in operation corresponding to the service information is obtained in a mode supported by the equipment according to the configuration driving form of the network equipment to be verified. The configuration information is determined by the configuration driver type, and the obtaining method includes, but is not limited to, SSH, Simple Network Management Protocol (SNMP), Network configuration Protocol NETCONF based on XML, REST _ API, and the like.
S204: and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
In one or more embodiments of the present specification, the comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network device to be verified specifically includes:
selecting a corresponding comparison mode according to the configuration driving type of the network equipment to be verified;
if the target configuration information is determined to be the same as the actual configuration information based on the corresponding comparison mode, the configuration is successfully verified;
and if the target configuration information is determined to be different from the actual configuration information based on the corresponding comparison mode, the verification result is configuration failure.
In one or more embodiments of the present specification, after comparing the target configuration information with the running actual configuration information and obtaining a configuration information verification result of the network device to be verified, the method further includes:
matching a corresponding checking report template based on the service type of the service information and the equipment model of the equipment information;
inputting the service information, the equipment information and the configuration verification result into a preset learning model in the corresponding verification report template so as to output a verification report in a preset report form; wherein the preset report forms include but are not limited to: web pages, documents, emails.
Different comparison modes can be selected according to different configuration driving types. For example: when the configuration information is acquired in the SSH manner, the configuration information may be compared in an intuitive string comparison manner, and as shown below, if the target configuration information and the actual configuration information are consistent, the configuration is verified as successful. If the two are different, the test result is failure.
In an embodiment of this specification, for configuration information obtained in the REST _ API manner, both the target configuration information and the actual configuration information are in the JSON format, and the configuration information may be compared in a manner of comparing key data node information. When the target configuration information is inconsistent with the actual configuration information, the verification result is verification failure, which is as follows:
after obtaining the configuration information verification result, in one or more embodiments of the present specification, a preset verification report template may be matched according to the service type of the service information and the device model of the device information. After the service information, the equipment information and the verification result are input into the corresponding verification report template, the learning model trained in advance in the verification report template outputs the verification report in a preset report form, so that the verification result and the verification analysis statistical content can be conveniently obtained, and the process of manually forming the verification report is saved. The report form includes, but is not limited to, web page, file, mail, etc.
As shown in fig. 3, in one or more embodiments of the present specification, an apparatus for checking a configuration of a network device in a cloud network environment is provided. The device comprises: a device management module 301, a service management module 302, a configuration management module 303 and a configuration verification module 304.
The device management module is mainly used for managing device information, and when operations such as adding, deleting and modifying the device are performed, the information of the device needs to be maintained. The information commonly used by the device includes device type, device IP, user name, password, support function, etc. And the service management module is mainly used for managing service information. And for different service types, the service management module abstracts and manages the attribute concerned by the controller according to the service attribute. The configuration management module is responsible for maintaining the configuration template, generating target configuration information and acquiring actual configuration on the equipment. The configuration information template can be flexibly configured according to the equipment type, the driving type and the like, and the target configuration information of the service can be generated according to the configuration information template according to the equipment type, the service information and the like. The configuration checking module can compare the checking target configuration information with the actual configuration information in different modes according to the configuration driving type and by combining the service information, and outputs a configuration checking result.
As shown in fig. 4, one or more embodiments of the present specification provide an apparatus for verifying a network device configuration in a cloud network environment, where the cloud network environment includes a cloud platform, an SDN controller, and a network device to be verified; the apparatus comprises:
at least one processor 401; and the number of the first and second groups,
a memory 402 communicatively coupled to the at least one processor 401; wherein the content of the first and second substances,
the memory 402 stores instructions executable by the at least one processor 401 to cause the at least one processor 401 to:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
As shown in fig. 5, in one or more embodiments of the present specification, a non-volatile storage medium is provided, in which executable instructions 501 of a computer are stored, and the executable instructions 501 include:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
The embodiments in the present description are described in a progressive manner, and similar parts between the embodiments are referred to each other, and each embodiment focuses on different points from other embodiments. In particular, for the apparatus, device, and non-volatile computer storage medium embodiments, since they are substantially similar to the method embodiments, the description is relatively simple, and for the relevant points, reference may be made to the partial description of the method embodiments.
The foregoing description has been directed to specific embodiments of this disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.
The above description is merely one or more embodiments of the present disclosure and is not intended to limit the present disclosure. Various modifications and alterations to one or more embodiments of the present description will be apparent to those skilled in the art. Any modification, equivalent replacement, improvement or the like made within the spirit and principle of one or more embodiments of the present specification should be included in the scope of the claims of the present specification.
Claims (10)
1. A method for verifying network device configuration in a cloud network environment, wherein the cloud network environment comprises a cloud platform, an SDN controller and a network device to be verified, and the method comprises the following steps:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
2. The method according to claim 1, wherein the generating target configuration information of the network device to be verified according to the service information and the corresponding configuration information template specifically includes:
determining a data form supported by the network equipment to be verified according to the corresponding configuration information template; the dataform includes: a command line form, a JSON data form;
determining service configuration information required by the configuration information according to the corresponding configuration information template;
and acquiring the required service configuration information based on the service information, and converting the required service configuration information into a data form supported by the network equipment to be verified so as to acquire target configuration information of the network equipment to be verified.
3. The method according to claim 1, wherein the obtaining actual configuration information of the network device to be verified in operation according to the service information and the configuration driver type specifically includes:
determining a mode of acquiring configuration information by the network equipment to be verified according to the configuration driving type corresponding to the network equipment to be verified;
and acquiring actual configuration information of the network equipment to be verified in operation based on the configuration information acquisition mode of the network equipment to be verified and the service information issued by the cloud platform.
4. The method according to claim 1, wherein the comparing the target configuration information with the running actual configuration information to obtain the configuration information verification result of the network device to be verified specifically includes:
selecting a corresponding comparison mode according to the configuration driving type of the network equipment to be verified;
if the target configuration information is determined to be the same as the actual configuration information based on the corresponding comparison mode, the configuration is successfully verified;
and if the target configuration information is determined to be different from the actual configuration information based on the corresponding comparison mode, the verification result is configuration failure.
5. The method according to claim 1, wherein after comparing the target configuration information with the running actual configuration information and obtaining a configuration information verification result of the network device to be verified, the method further comprises:
matching a corresponding verification report template based on the service type of the service information and the equipment model of the equipment information;
inputting the service information, the equipment information and the configuration verification result into a preset learning model in the corresponding verification report template so as to output a verification report in a preset report form; wherein the preset report form comprises: web pages, documents, emails.
6. The method of claim 1, wherein the service type of the service information comprises: basic service and cloud network service; wherein the basic service comprises: MLAG, OSPF, BGP, the cloud network service includes virtual network, virtual subnet, virtual route, virtual host.
7. The method of claim 1, wherein the network device information comprises: device model, device IP, device function, configuration drive type; the configuration drive types include: SSH, REST-API.
8. The method according to claim 1, wherein before the obtaining of the service information and the network device information of the network device to be verified issued by the cloud platform, the method further comprises:
determining the time interval of the configuration verification according to the performance of the cloud network environment; wherein performance in the cloud network environment is determined by any one or more of: the system comprises a cloud platform, an SDN controller, a leaf ridge switch network and a virtual machine;
and sending a data acquisition instruction at regular time based on the time interval so as to acquire the service information and the network equipment information of the network equipment to be checked.
9. The equipment for verifying the configuration of the network equipment in the cloud network environment is characterized by comprising a cloud platform, an SDN controller and the network equipment to be verified; the apparatus comprises:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein the content of the first and second substances,
the memory stores instructions executable by the at least one processor to enable the at least one processor to:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
10. A non-volatile storage medium having stored thereon computer-executable instructions, the executable instructions comprising:
acquiring service information and network equipment information of the network equipment to be verified, which are issued by the cloud platform; the service information comprises at least one service type, and the network equipment information at least comprises an equipment model and a configuration drive type of the network equipment to be verified;
determining a corresponding configuration information template according to the service type of the service information and the equipment model of the network equipment information; generating target configuration information of the network equipment to be verified according to the service information and the corresponding configuration information template;
acquiring actual configuration information of the network equipment to be verified in operation according to the service information and the configuration drive type;
and comparing the target configuration information with the running actual configuration information to obtain a configuration information verification result of the network equipment to be verified.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111093795.1A CN113938378A (en) | 2021-09-17 | 2021-09-17 | Method, device and medium for verifying network device configuration in cloud network environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111093795.1A CN113938378A (en) | 2021-09-17 | 2021-09-17 | Method, device and medium for verifying network device configuration in cloud network environment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113938378A true CN113938378A (en) | 2022-01-14 |
Family
ID=79276065
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111093795.1A Pending CN113938378A (en) | 2021-09-17 | 2021-09-17 | Method, device and medium for verifying network device configuration in cloud network environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113938378A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114531358A (en) * | 2022-01-18 | 2022-05-24 | 浪潮思科网络科技有限公司 | Method, device, equipment and medium for dynamically controlling external network access authority |
| CN114826969A (en) * | 2022-03-17 | 2022-07-29 | 阿里巴巴(中国)有限公司 | Network connectivity checking method, device, equipment and storage medium |
| CN115277401A (en) * | 2022-07-20 | 2022-11-01 | 浪潮思科网络科技有限公司 | Equipment capacity expansion method, device, equipment and medium for established networking |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5872928A (en) * | 1995-02-24 | 1999-02-16 | Cabletron Systems, Inc. | Method and apparatus for defining and enforcing policies for configuration management in communications networks |
| US20020069275A1 (en) * | 2000-12-06 | 2002-06-06 | Tindal Glen D. | Global GUI interface for network OS |
| US20020191241A1 (en) * | 2001-06-13 | 2002-12-19 | Emery Jeffrey Kenneth | Network operating system with topology autodiscovery |
| CA2466826A1 (en) * | 2004-05-11 | 2005-11-11 | Bce Inc | Method and apparatus for network configuration validation |
| US20070244997A1 (en) * | 2005-08-31 | 2007-10-18 | Tindal Glen D | System and method for configuring a network device |
| CN107547263A (en) * | 2017-07-26 | 2018-01-05 | 南京邮电大学 | A kind of method realized network element device automation and search template configuration |
| CN110300017A (en) * | 2019-05-22 | 2019-10-01 | 北京百度网讯科技有限公司 | Standard configuration generating means and method and network equipments configuration error correction device and method |
-
2021
- 2021-09-17 CN CN202111093795.1A patent/CN113938378A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5872928A (en) * | 1995-02-24 | 1999-02-16 | Cabletron Systems, Inc. | Method and apparatus for defining and enforcing policies for configuration management in communications networks |
| US20020069275A1 (en) * | 2000-12-06 | 2002-06-06 | Tindal Glen D. | Global GUI interface for network OS |
| US20020191241A1 (en) * | 2001-06-13 | 2002-12-19 | Emery Jeffrey Kenneth | Network operating system with topology autodiscovery |
| CA2466826A1 (en) * | 2004-05-11 | 2005-11-11 | Bce Inc | Method and apparatus for network configuration validation |
| US20070244997A1 (en) * | 2005-08-31 | 2007-10-18 | Tindal Glen D | System and method for configuring a network device |
| CN107547263A (en) * | 2017-07-26 | 2018-01-05 | 南京邮电大学 | A kind of method realized network element device automation and search template configuration |
| CN110300017A (en) * | 2019-05-22 | 2019-10-01 | 北京百度网讯科技有限公司 | Standard configuration generating means and method and network equipments configuration error correction device and method |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114531358A (en) * | 2022-01-18 | 2022-05-24 | 浪潮思科网络科技有限公司 | Method, device, equipment and medium for dynamically controlling external network access authority |
| CN114826969A (en) * | 2022-03-17 | 2022-07-29 | 阿里巴巴(中国)有限公司 | Network connectivity checking method, device, equipment and storage medium |
| CN114826969B (en) * | 2022-03-17 | 2024-02-06 | 阿里巴巴(中国)有限公司 | Network connectivity checking method, device, equipment and storage medium |
| CN115277401A (en) * | 2022-07-20 | 2022-11-01 | 浪潮思科网络科技有限公司 | Equipment capacity expansion method, device, equipment and medium for established networking |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11140035B2 (en) | System and method for automating zero touch provisioning of cloud networks | |
| CN113938378A (en) | Method, device and medium for verifying network device configuration in cloud network environment | |
| US10700932B2 (en) | Automated standalone bootstrapping of hardware inventory | |
| US11336567B2 (en) | Service aware virtual private network for optimized forwarding in cloud native environment | |
| US9137111B2 (en) | Discovering, validating, and configuring hardware-inventory components | |
| CN110785964B (en) | Authentication of layer 3 bridged domain subnets in a network | |
| CN109039788B (en) | Port configuration method and device of network equipment and storage medium | |
| CN110754065B (en) | Network authentication between a logic level and a hardware level of a network | |
| US20210329004A1 (en) | Network verification method and apparatus | |
| CN104615455B (en) | A kind of the IPMC program remote upgrading methods and device of ATCA frameworks | |
| CN106716926B (en) | Automated stand-alone boot circuit for hardware inventory | |
| US11811610B2 (en) | Method and apparatus for holistic rendering of cloud network configuration | |
| US20200389477A1 (en) | Automatic identification of roles and connection anomalies | |
| US20210194788A1 (en) | Message processing method and apparatus, control-plane device, and computer storage medium | |
| CN110855457B (en) | Method and equipment for generating network model and configuring network | |
| US11403319B2 (en) | High-availability network device database synchronization | |
| US10764214B1 (en) | Error source identification in cut-through networks | |
| US20170250867A1 (en) | System and method of configuring network elements | |
| Hong et al. | Netgraph: An intelligent operated digital twin platform for data center networks | |
| CN109379239B (en) | Method and device for configuring access switch in OpenStack environment | |
| CN112291081B (en) | Method, system and storage medium for auditing controller cluster data by cloud management platform | |
| US7792045B1 (en) | Method and apparatus for configuration and analysis of internal network routing protocols | |
| CN111416732A (en) | Method and device for automatically configuring service for capacity expansion of network equipment in SDN | |
| EP4207702A1 (en) | Dynamic prediction of system resource requirement of network software in a live network using data driven models | |
| CN110830598B (en) | Method and network equipment for establishing and transmitting interface address and alias in BGP (Border gateway protocol) session |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |