CN113965585B - Multi-cloud interconnection method and device - Google Patents

Multi-cloud interconnection method and device Download PDF

Info

Publication number
CN113965585B
CN113965585B CN202111575823.3A CN202111575823A CN113965585B CN 113965585 B CN113965585 B CN 113965585B CN 202111575823 A CN202111575823 A CN 202111575823A CN 113965585 B CN113965585 B CN 113965585B
Authority
CN
China
Prior art keywords
cluster
edge service
service cluster
information
core management
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202111575823.3A
Other languages
Chinese (zh)
Other versions
CN113965585A (en
Inventor
刘雨生
李俊
廖林荣
刘莹皓
伍超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hundsun Technologies Inc
Original Assignee
Hundsun Technologies Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hundsun Technologies Inc filed Critical Hundsun Technologies Inc
Priority to CN202111575823.3A priority Critical patent/CN113965585B/en
Publication of CN113965585A publication Critical patent/CN113965585A/en
Application granted granted Critical
Publication of CN113965585B publication Critical patent/CN113965585B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0813Configuration setting characterised by the conditions triggering a change of settings
    • H04L41/082Configuration setting characterised by the conditions triggering a change of settings the condition being updates or upgrades of network functionality
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]

Abstract

The application provides a multi-cloud interconnection method and a multi-cloud interconnection device, which are characterized in that firstly, a core management cluster is maintained in advance, CRD monitoring resources are deployed, and network configuration information of each edge service cluster is monitored and collected; then, issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between a core management cluster and each edge service cluster based on WireGuard; when receiving an access request sent by an edge service cluster to be accessed, a core management cluster and a network communication tunnel of the edge service cluster to be accessed acquire configuration information of the edge service cluster to be accessed; performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed; each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all the edge service clusters so as to realize multi-cloud interconnection.

Description

Multi-cloud interconnection method and device
Technical Field
The present application relates to the field of cloud interconnection technologies, and in particular, to a method and an apparatus for multi-cloud interconnection.
Background
With the development of IPV6 technology, the container network-based cloud era has become a hot technological problem in recent years, and the traditional internet network has been gradually opened with the development of technology, however, the existing multi-cloud layout is developed under the public network environment, the configuration which strongly depends on the network space causes the multi-cloud networking to be a bottleneck problem, the method is resistance to real everything interconnection, and with the development of Linux community kernel, the operating system-based multi-cloud network basic support becomes possible, as shown in fig. 1, in the distributed network configuration, cluster environments in different regions can cooperate with each other to complete network space communication after having agreed to access the internet, so as to avoid network space limitation, therefore, clusters and machines in different regions can communicate freely to jointly complete the cooperative task of the network space.
However, how to implement multi-cloud interconnection in cluster environments of different regions without depending on the configuration of network space is a problem to be solved by those skilled in the art.
Disclosure of Invention
In view of the foregoing, the present application provides a method and an apparatus for multi-cloud interconnection, so as to implement multi-cloud interconnection in cluster environments in different regions.
In order to achieve the above object, the present application provides the following technical solutions:
a multi-cloud interconnection method is provided, which pre-maintains a core management cluster, deploys CRD monitoring resources and monitors and collects network configuration information of each edge service cluster, and comprises the following steps:
issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard;
when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, enabling a network communication tunnel between the core management cluster and the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed;
performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed;
each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all edge service clusters so as to realize multi-cloud interconnection.
Further, the issuing and configuring the initial network configuration information to each service cluster, and constructing a network communication tunnel between the edge management cluster and each edge service cluster based on WireGuard includes:
acquiring related WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster;
according to the configuration link information of each edge service cluster, information in a user-defined CR is established for communication among clusters which cannot be directly networked, and the configuration link information of each edge service cluster is updated;
the configuration link information is issued and communication credentials among clusters are obtained through configuration information, resources are scheduled to a specified service cluster through a target controller, and network information is updated;
and after the target controller receives the updated network information, updating the network information through Pod or Job resources.
Further, the resource synchronization of each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed includes:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
A multi-cloud interconnection device maintains a core management cluster in advance, deploys CRD monitoring resources and monitors and collects network configuration information of each edge service cluster, and comprises:
the first processing unit is used for issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard;
the second processing unit is used for receiving an access request sent by an edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed based on a network communication tunnel between the core management cluster and the edge service cluster to be accessed;
a third processing unit, configured to perform resource synchronization on each edge service cluster in communication with the core management cluster according to the configuration information of the edge service cluster to be accessed;
and the fourth processing unit is used for sending routing change information to the core management cluster by each edge service cluster through configuring a routing rule of the edge service cluster, and issuing and changing resources to all edge service clusters by the core management cluster so as to realize multi-cloud interconnection.
Further, the first processing unit is configured to:
acquiring relevant WireGuard basic configuration information and cross-regional tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster;
according to the configuration link information of each edge service cluster, information in a user-defined CR is established for communication among clusters which cannot be directly networked, and the configuration link information of each edge service cluster is updated;
the configuration link information is issued through configuration information and communication credentials among clusters, resources are scheduled to a designated service cluster through a target controller, and network information is updated;
and after the target controller receives the updated network information, updating the network information through Pod or Job resources.
Further, the third processing unit is configured to:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
A storage medium comprising a stored program, wherein, when the program runs, a device on which the storage medium is located is controlled to execute the multi-cloud interconnection method as described above.
An electronic device comprising at least one processor, and at least one memory, bus connected with the processor; the processor and the memory complete mutual communication through the bus; the processor is configured to call program instructions in the memory to perform the multi-cloud interconnection method as described above.
The multi-cloud interconnection method and the multi-cloud interconnection device are characterized in that firstly, a core management cluster is maintained in advance, CRD monitoring resources are deployed, and network configuration information of each edge service cluster is monitored and collected; then, issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard; when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, enabling a network communication tunnel between the core management cluster and the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed; performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed; each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all edge service clusters so as to realize multi-cloud interconnection. By the method and the device, the multi-cloud interconnection of the cluster environments in different regions can be realized.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present application, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic diagram of a distributed network configuration implementing a multi-cloud interconnection structure disclosed in the prior art;
fig. 2 is a schematic view of a multi-cloud interconnection structure disclosed in an embodiment of the present application;
fig. 3 is a schematic flowchart of a multi-cloud interconnection method disclosed in an embodiment of the present application;
fig. 4 is a schematic structural diagram of a multi-cloud interconnection apparatus disclosed in an embodiment of the present application;
fig. 5 is a schematic structural diagram of an electronic device disclosed in an embodiment of the present application.
Detailed Description
Interpretation of terms:
WireGuard, the next generation of open source tunneling protocol created by Jason A. Donenfeld et al, is formally merged into Linux 5.6 kernel mainline by 1 month 29 in 2020.
CustomResourceDefinition (CRD): the mechanism in K8s to extend the kubernets API without changing code is used to manage custom resource objects.
Custom Resource (CR) Custom Resource object in K8 s.
The core of Pod k8s, all around the Pod, which can be considered a bundle of multiple containers.
Job in Job: K8s creates one or more Pods and will continue to retry executing those Pods until the specified number of Pods are successfully terminated.
The applicant finds in research that the WireGuard based on the Linux kernel to-be-incorporated code makes the interconnection of everything possible, and is a theoretical support for feasibility provided by the low-cost construction of a multi-cloud data center. For example, in the application aspect of a multi-cloud cluster, the multi-cloud cluster may be isolated in different environments, and machines among clusters cannot directly communicate and sense without a public network IP due to Nat network rules among cloud manufacturers, so that the application opens a network of a multi-data center in a manner of issuing by WireGuard and CRD, realizes the capability of multi-edge management and control, realizes interconnection and intercommunication of multiple machines distributed in different areas, and can also realize the purpose of monitoring and configuration issuing when configuration change occurs among machines, thereby performing uniform resource management and configuration realization on machine resources hidden behind the Nat network, and can manage and control all machines accessing the internet in the same plane for resource scheduling, as shown in fig. 2.
The application provides a multi-cloud interconnection method and device, and aims to: how to realize the multi-cloud interconnection of cluster environments in different regions under the condition of no dependence on the configuration of a network space.
The technical solutions in the embodiments of the present application will be described clearly and completely with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only some embodiments of the present application, and not all embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments in the present application without making any creative effort belong to the protection scope of the present application.
Fig. 3 is a schematic flow chart of a multi-cloud interconnection method according to an embodiment of the present application. As shown in fig. 3, an embodiment of the present application provides a multi-cloud interconnection method, which pre-maintains a core management cluster, deploys CRD monitoring resources, and monitors and collects network configuration information of each edge service cluster, and the method includes the following steps:
s301: and issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard.
In this embodiment, the issuing and configuring the initial network configuration information to each service cluster, and constructing a network communication tunnel between the edge management cluster and each edge service cluster based on WireGuard includes: acquiring related WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster; establishing information in a user-defined CR (cognitive radio) according to the configuration link information of each edge service cluster, wherein the information is used for communication among clusters which cannot be directly communicated with a network, and updating the configuration link information of each edge service cluster; the configuration link information is issued and communication credentials among clusters are obtained through configuration information, resources are scheduled to a specified service cluster through a target controller, and network information is updated; and after the target controller receives the updated network information, updating the network information through Pod or Job resources.
In the embodiment of the application, the processing scene has the following advantages: the application scene can be expanded, the distributed service cluster can not be ensured to be in the same network scene with the management cluster, or because the interconnection cost of the configuration network is too high, the communication of the distributed container network is limited to a smaller network communication layer so as to ensure the use, the network intercommunication is opened at the minimum cost, and the access universality of the distributed network is ensured; the operation and maintenance delivery process is optimized, namely, a multi-level examination and approval mechanism is usually involved in the difficulty of communicating network communication due to network management and control of a client, delivery investigation and problem solution are not facilitated, the problem of multi-aspect application of a distributed container platform is solved, the client only provides the capability of accessing the Internet, access can be achieved, and the mutual communication information consumption of communication personnel is reduced.
S302: and when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, tunneling the network communication between the core management cluster and the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed.
S303: and carrying out resource synchronization on each edge service cluster communicated with the core management cluster according to the configuration information of the edge service cluster to be accessed.
In this embodiment of the present application, the performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed includes: acquiring configuration information of the edge service cluster to be accessed; the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster; and carrying out resource synchronization on each edge service cluster through the core management cluster.
In the implementation process of the embodiment of the application, the container cloud platform introduces the custom controller to issue the resource information of the CR, network configuration information for the service cluster is issued through the management cluster, and then configuration, updating and management operation of the network are achieved in the service cluster in a Job mode, network adjustment for the service cluster can be updated and adjusted by updating the CR resources, even if the service cluster and the management cluster are not in the same network partition, setting of the custom network can be achieved through configuration issuing, then network communication among the clusters is opened, edge access is more convenient, and network adjustment of the cluster is more convenient.
S304: each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all edge service clusters so as to realize multi-cloud interconnection.
It should be noted that, in this embodiment of the present application, a delivery/operation and maintenance configuration worker first obtains relevant WireGuard basic configuration information, and obtains cross-region tunnel information configuration of a service cluster; then, according to the configuration link information of the obtained service cluster, information in the user-defined CR is created and used for communication of the cluster which cannot be directly communicated with the network and updating the configuration information; then, the tunnel link information is issued and communication certificates among clusters are issued through configuration information, and resources are scheduled to the appointed service cluster through a controller to update network information; after receiving the updated information, the target controller updates the network information through Pod or Job resources; and finally, after the service cluster resources are updated, a corresponding event is generated to inform the target controller of the updating state, and the custom controller changes and updates the corresponding status state of the CR.
After the process of the embodiment of the application is adopted, cluster access can be achieved in a flexible tunnel mode under a complex network environment, complex network setting and resource communication are not needed, service cluster network configuration information can be issued and network configuration can be updated only through configuration, and the method can be applied to a scene of multi-edge cluster application. The communication of multilateral clusters is automatically configured and updated based on the WireGuard tunnel mode, delivery and deployment are efficiently completed, accordingly labor and delivery and configuration time are saved, and application scenes and scales of distributed container clouds are guaranteed.
The embodiment of the application provides a multi-cloud interconnection method, which comprises the steps of firstly maintaining a core management cluster in advance, deploying CRD monitoring resources and monitoring and acquiring network configuration information of each edge service cluster; then, issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard; when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, enabling a network communication tunnel between the core management cluster and the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed; performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed; each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all edge service clusters so as to realize multi-cloud interconnection. By the method and the device, the cluster environment multi-cloud interconnection in different regions can be realized.
Referring to fig. 4, based on the multi-cloud interconnection method disclosed in the foregoing embodiment, this embodiment correspondingly discloses a multi-cloud interconnection apparatus, which pre-maintains a core management cluster, deploys CRD monitoring resources, and monitors and collects network configuration information of each edge service cluster, and the apparatus includes:
a first processing unit 401, configured to issue and configure initial network configuration information to each service cluster, and construct a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard;
a second processing unit 402, configured to, when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, tunnel a network communication between the core management cluster and the edge service cluster to be accessed, and obtain configuration information of the edge service cluster to be accessed;
a third processing unit 403, configured to perform resource synchronization on each edge service cluster in communication with the core management cluster according to the configuration information of the edge service cluster to be accessed;
a fourth processing unit 404, configured to send routing change information to the core management cluster by configuring a routing rule of each edge service cluster, and issue and change resources to all edge service clusters by the core management cluster, so as to implement multi-cloud interconnection.
Further, the first processing unit 401 is configured to:
acquiring related WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster;
establishing information in a user-defined CR (cognitive radio) according to the configuration link information of each edge service cluster, wherein the information is used for communication among clusters which cannot be directly communicated with a network, and updating the configuration link information of each edge service cluster;
the configuration link information is issued through configuration information and communication credentials among clusters, resources are scheduled to a designated service cluster through a target controller, and network information is updated;
and after the target controller receives the updated network information, updating the network information through Pod or Job resources.
Further, the third processing unit 403 is configured to:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
The multi-cloud interconnection device comprises a processor and a memory, wherein the first processing unit, the second processing unit, the third processing unit, the fourth processing unit and the like are stored in the memory as program units, and the processor executes the program units stored in the memory to realize corresponding functions.
The processor comprises a kernel, and the kernel calls the corresponding program unit from the memory. One or more than one kernel can be set, and the multi-cloud interconnection of cluster environments in different regions is realized by adjusting kernel parameters.
An embodiment of the present application provides a storage medium on which a program is stored, and the program implements the multi-cloud interconnection method when executed by a processor.
The embodiment of the application provides a processor, wherein the processor is used for running a program, and the multi-cloud interconnection method is executed when the program runs.
An electronic device 50 includes, as shown in fig. 5, at least one processor 501, at least one memory 502 connected to the processor, and a bus 503; the processor 501 and the memory 502 complete communication with each other through the bus 503; the processor 501 is configured to call the program instructions in the memory 502 to execute the multi-cloud interconnection method.
The electronic device herein may be a server, a PC, a PAD, a mobile phone, etc.
The present application further provides a computer program product adapted to perform a program for initializing the following method steps when executed on a data processing device:
issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard;
when receiving an access request sent by an edge service cluster to be accessed, based on WireGuard, enabling a network communication tunnel between the core management cluster and the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed;
performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed;
each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all edge service clusters so as to realize multi-cloud interconnection.
Further, the issuing and configuring the initial network configuration information to each service cluster, and constructing a network communication tunnel between the edge management cluster and each edge service cluster based on WireGuard includes:
acquiring related WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster;
establishing information in a user-defined CR (cognitive radio) according to the configuration link information of each edge service cluster, wherein the information is used for communication among clusters which cannot be directly communicated with a network, and updating the configuration link information of each edge service cluster;
the configuration link information is issued and communication credentials among clusters are obtained through configuration information, resources are scheduled to a specified service cluster through a target controller, and network information is updated;
and after the target controller receives the updated network information, updating the network information through Pod or Job resources.
Further, the resource synchronization of each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed includes:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
The present application is described in terms of flowcharts and/or block diagrams of methods, apparatus (systems), computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
In a typical configuration, a device includes one or more processors (CPUs), memory, and a bus. The device may also include input/output interfaces, network interfaces, and the like.
The memory may include volatile memory in a computer readable medium, Random Access Memory (RAM) and/or nonvolatile memory such as Read Only Memory (ROM) or flash memory (flash RAM), and the memory includes at least one memory chip. The memory is an example of a computer-readable medium.
Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in the process, method, article, or apparatus that comprises the element.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The above are merely examples of the present application and are not intended to limit the present application. Various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application should be included in the scope of the claims of the present application.

Claims (6)

1. A multi-cloud interconnection method is characterized in that a core management cluster is maintained in advance, CRD monitoring resources are deployed, and network configuration information of each edge service cluster is monitored and collected, and the method comprises the following steps:
issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard, wherein the network communication tunnel comprises the following steps: acquiring WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster; establishing information in a user-defined CR (cognitive radio) according to the configuration link information of each edge service cluster, wherein the information is used for communication among clusters which cannot be directly communicated with a network, and updating the configuration link information of each edge service cluster; issuing a communication certificate based on the configuration link information, scheduling resources to a specified service cluster through a target controller, and updating network information, wherein the communication certificate is a communication certificate between clusters; after receiving the updated network information, the target controller updates the network information through Pod or Job resources;
when an access request sent by an edge service cluster to be accessed is received, constructing a network communication tunnel between the core management cluster and the edge service cluster to be accessed based on WireGuard, and acquiring configuration information of the edge service cluster to be accessed;
performing resource synchronization on each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed;
each edge service cluster sends routing change information to the core management cluster by configuring a routing rule of the edge service cluster, and the core management cluster issues and changes resources to all the edge service clusters so as to realize multi-cloud interconnection.
2. The method of claim 1, wherein the resource synchronization of each edge service cluster communicating with the core management cluster according to the configuration information of the edge service cluster to be accessed comprises:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
3. A multi-cloud interconnection device is characterized in that a core management cluster is maintained in advance, CRD monitoring resources are deployed, and network configuration information of each edge service cluster is monitored and collected, and the device comprises:
the first processing unit is used for issuing and configuring initial network configuration information to each service cluster, and constructing a network communication tunnel between the core management cluster and each edge service cluster based on WireGuard;
the second processing unit is used for constructing a network communication tunnel between the core management cluster and the edge service cluster to be accessed based on WireGuard when receiving an access request sent by the edge service cluster to be accessed, and acquiring configuration information of the edge service cluster to be accessed;
a third processing unit, configured to perform resource synchronization on each edge service cluster in communication with the core management cluster according to the configuration information of the edge service cluster to be accessed;
the fourth processing unit is used for sending routing change information to the core management cluster by each edge service cluster through configuring a routing rule of the edge service cluster, and issuing and changing resources to all edge service clusters by the core management cluster so as to realize multi-cloud interconnection;
the first processing unit is to:
acquiring WireGuard basic configuration information and cross-region tunnel information configuration of each edge service cluster to obtain configuration link information of each edge service cluster;
establishing information in a user-defined CR (cognitive radio) according to the configuration link information of each edge service cluster, wherein the information is used for communication among clusters which cannot be directly communicated with a network, and updating the configuration link information of each edge service cluster;
issuing a communication certificate based on the configuration link information, scheduling resources to a specified service cluster through a target controller, and updating network information, wherein the communication certificate is a communication certificate between clusters;
and after receiving the updated network information, the target controller updates the network information through Pod or Job resources.
4. The apparatus of claim 3, wherein the third processing unit is configured to:
acquiring configuration information of the edge service cluster to be accessed;
the configuration information of the edge service cluster to be accessed is issued to each edge service cluster communicated with the core management cluster through the core management cluster;
and carrying out resource synchronization on each edge service cluster through the core management cluster.
5. A storage medium comprising a stored program, wherein when the program runs, a device on which the storage medium is located is controlled to execute the multi-cloud interconnection method according to any one of claims 1 to 2.
6. An electronic device comprising at least one processor, and at least one memory, bus connected to the processor; the processor and the memory complete mutual communication through the bus; the processor is configured to invoke program instructions in the memory to perform the multi-cloud interconnection method of any of claims 1 to 2.
CN202111575823.3A 2021-12-22 2021-12-22 Multi-cloud interconnection method and device Active CN113965585B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111575823.3A CN113965585B (en) 2021-12-22 2021-12-22 Multi-cloud interconnection method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111575823.3A CN113965585B (en) 2021-12-22 2021-12-22 Multi-cloud interconnection method and device

Publications (2)

Publication Number Publication Date
CN113965585A CN113965585A (en) 2022-01-21
CN113965585B true CN113965585B (en) 2022-07-12

Family

ID=79473663

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111575823.3A Active CN113965585B (en) 2021-12-22 2021-12-22 Multi-cloud interconnection method and device

Country Status (1)

Country Link
CN (1) CN113965585B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115567554A (en) * 2022-09-01 2023-01-03 浪潮软件股份有限公司 Global communication platform construction method based on edge node extension and storage medium
CN115604120B (en) * 2022-11-30 2023-04-18 苏州浪潮智能科技有限公司 Multi-cloud cluster resource sharing method, device, equipment and storage medium
CN116389105B (en) * 2023-03-30 2023-12-01 广东省城乡规划设计研究院有限责任公司 Remote access management platform and management method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102236656B1 (en) * 2020-06-23 2021-04-07 주식회사 이노스코리아 Secured communication device providing secured connection having multiple functions and method for operating thereof
CN112925647A (en) * 2021-03-24 2021-06-08 北京金山云网络技术有限公司 Cloud edge coordination system, and control method and device of cluster resources
CN112994909A (en) * 2019-12-12 2021-06-18 北京金山云网络技术有限公司 Kubernetes cluster management method, device, equipment and storage medium
CN113572738A (en) * 2021-06-29 2021-10-29 中孚安全技术有限公司 Zero trust network architecture and construction method

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106911769B (en) * 2017-02-09 2020-10-27 腾讯科技(深圳)有限公司 Cloud platform routing data processing method and physical server of cloud platform
WO2020202126A1 (en) * 2019-04-05 2020-10-08 Mimik Technology Inc. Method and system for distributed edge cloud computing
US11463410B2 (en) * 2019-10-31 2022-10-04 Cisco Technology, Inc. Cloud-native VPN service
CN113301102A (en) * 2021-02-03 2021-08-24 阿里巴巴集团控股有限公司 Resource scheduling method, device, edge cloud network, program product and storage medium
CN113225214B (en) * 2021-05-07 2023-04-07 浪潮通信技术有限公司 Method and device for cooperative management of edge CDN node and computer readable medium
CN113687912A (en) * 2021-07-30 2021-11-23 济南浪潮数据技术有限公司 Container cluster management method, device and system, electronic equipment and storage medium

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112994909A (en) * 2019-12-12 2021-06-18 北京金山云网络技术有限公司 Kubernetes cluster management method, device, equipment and storage medium
KR102236656B1 (en) * 2020-06-23 2021-04-07 주식회사 이노스코리아 Secured communication device providing secured connection having multiple functions and method for operating thereof
CN112925647A (en) * 2021-03-24 2021-06-08 北京金山云网络技术有限公司 Cloud edge coordination system, and control method and device of cluster resources
CN113572738A (en) * 2021-06-29 2021-10-29 中孚安全技术有限公司 Zero trust network architecture and construction method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
运营商SDN云网协同架构和关键技术研究;鲁子奕等;《中兴通讯技术》;20190326(第02期);全文 *

Also Published As

Publication number Publication date
CN113965585A (en) 2022-01-21

Similar Documents

Publication Publication Date Title
CN113965585B (en) Multi-cloud interconnection method and device
CN108536519B (en) Method for automatically building Kubernetes main node and terminal equipment
CN108809722B (en) Method, device and storage medium for deploying Kubernetes cluster
CN111176788B (en) Deployment method and system for main nodes of Kubernetes cluster
EP3133794A1 (en) Network function virtualization network system, data processing method and device
CN103607430A (en) Network processing method and system, and network control center
CN111880902A (en) Pod creation method, device, equipment and readable storage medium
CN111625496B (en) Deployment method, device and equipment of distributed file system in virtual machine environment
CN111625497B (en) Deployment method, device and equipment of distributed file system and storage medium
CN109120444B (en) Cloud resource management method, processor and storage medium
CN113778615B (en) Rapid and stable network shooting range virtual machine construction system
US11729026B2 (en) Customer activation on edge computing environment
CN111884844A (en) Message service access method and device based on zookeeper
CN110086684A (en) A kind of DCN network based on Dynamic Programming is from circulation method
CN113300866B (en) Node capacity control method, device, system and storage medium
CN110233874A (en) Information transferring method and device for internet of things equipment
Ungureanu et al. Collaborative cloud-edge: A declarative api orchestration model for the nextgen 5g core
JP2024501005A (en) Management method and device for container clusters
US20170279880A1 (en) Peer corresponding to the domain in multi-domain environment and method for controlling the same
CN115987872A (en) Cloud system based on resource routing
CN116232843A (en) Multi-operation management method and system for managing business machine clusters in batches by using application group dimension
CN114363164A (en) Cloud network service arrangement control method and system, storage medium and electronic equipment
CN112583740B (en) Network communication method and device
CN113055195B (en) Multi-domain controller cluster based on SDON and SDON system
CN110071949B (en) System, method and device for managing computing application across geographic areas

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant