CN115189987A - Method, system, device and program product for implementing network virtualization - Google Patents
Method, system, device and program product for implementing network virtualization Download PDFInfo
- Publication number
- CN115189987A CN115189987A CN202210727754.1A CN202210727754A CN115189987A CN 115189987 A CN115189987 A CN 115189987A CN 202210727754 A CN202210727754 A CN 202210727754A CN 115189987 A CN115189987 A CN 115189987A
- Authority
- CN
- China
- Prior art keywords
- intelligent switch
- message
- source
- target
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 71
- 238000012545 processing Methods 0.000 claims abstract description 149
- 238000004891 communication Methods 0.000 claims abstract description 33
- 238000004590 computer program Methods 0.000 claims abstract description 13
- 230000015654 memory Effects 0.000 claims description 18
- 238000004806 packaging method and process Methods 0.000 claims description 3
- 230000005641 tunneling Effects 0.000 claims 1
- 230000008569 process Effects 0.000 abstract description 18
- 238000005516 engineering process Methods 0.000 abstract description 8
- 238000013473 artificial intelligence Methods 0.000 abstract description 3
- 230000006870 function Effects 0.000 description 16
- 238000010586 diagram Methods 0.000 description 15
- 239000002184 metal Substances 0.000 description 15
- 229910052751 metal Inorganic materials 0.000 description 15
- 230000003993 interaction Effects 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 239000003795 chemical substances by application Substances 0.000 description 3
- 238000005538 encapsulation Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 239000013307 optical fiber Substances 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- RYGMFSIKBFXOCR-UHFFFAOYSA-N Copper Chemical compound [Cu] RYGMFSIKBFXOCR-UHFFFAOYSA-N 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 230000001427 coherent effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 229910052802 copper Inorganic materials 0.000 description 1
- 239000010949 copper Substances 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000002955 isolation Methods 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 238000010801 machine learning Methods 0.000 description 1
- 230000005012 migration Effects 0.000 description 1
- 238000013508 migration Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 230000001953 sensory effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 238000011144 upstream manufacturing Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/58—Association of routers
- H04L45/586—Association of routers of virtual routers
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The disclosure provides a method, a system, an apparatus, an electronic device, a storage medium and a computer program product for implementing network virtualization, relates to the technical field of artificial intelligence, in particular to cloud computing and cloud network technology, and can be used in an intelligent cloud scene. The specific implementation scheme is as follows: acquiring a message to be forwarded from a source server to a destination server; determining a tunnel rule representing a virtual communication path for forwarding a message in a virtual network through a source intelligent switch corresponding to a source server and a target intelligent switch corresponding to a target server, wherein a central processing unit in the intelligent switch is in communication connection with a switching chip through a plurality of message receiving and transmitting units; and performing data plane processing on the message through the source intelligent switch and the target intelligent switch based on the tunnel rule, and forwarding the message to the target server from the source server through the virtual network according to a data plane processing result. The present disclosure improves the flexibility and convenience of the network virtualization process of the physical server.
Description
Technical Field
The present disclosure relates to the field of artificial intelligence technologies, and in particular, to a cloud computing and cloud network technology, and more particularly, to a method, a system, an apparatus, an electronic device, a storage medium, and a computer program product for implementing network virtualization, which can be used in an intelligent cloud scenario.
Background
In order to reduce the additional virtualization overhead brought by virtual machines, in cloud computing, there is a class of technologies that are delivered directly in the form of servers, commonly referred to as Bare Metal (Bare Metal). Although the bare metal technology can avoid the computational virtualization overhead, in consideration of multi-tenant resource isolation, it still needs to access a virtual network to implement network virtualization of the bare metal server. In the prior art, a server is often required to be improved to a certain extent, for example, an intelligent network card is arranged on the server to enable the server to access a virtual network.
Disclosure of Invention
The present disclosure provides a method, system, apparatus, electronic device, storage medium, and computer program product for implementing network virtualization.
According to a first aspect, a method for implementing network virtualization is provided, including: acquiring a message to be forwarded from a source server to a destination server; determining tunnel rules representing virtual communication paths for forwarding messages in a virtual network through a source intelligent switch corresponding to a source server and a target intelligent switch corresponding to a target server, wherein central processing units in the source intelligent switch and the target intelligent switch are in communication connection with a switching chip through a plurality of message receiving and sending units; and performing data plane processing on the message through the source intelligent switch and the target intelligent switch based on the tunnel rule, and forwarding the message to the target server from the source server through the virtual network according to a data plane processing result.
According to a second aspect, there is provided a system for implementing network virtualization, including: network controller, intelligent switch and server, wherein: the network controller is used for managing tunnel rules related to the virtual network and synchronizing the tunnel rules to a corresponding intelligent switch in the virtual network, wherein a central processing unit in the intelligent switch is in communication connection with the switching chip through a plurality of message receiving and transmitting units; the intelligent switch is used for acquiring a message to be forwarded from the source server to the destination server; and determining a tunnel rule representing a virtual communication path for forwarding the message in the virtual network through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, and performing data plane processing on the message based on the tunnel rule so as to forward the message from the source server to the destination server through the virtual network according to a data plane processing result.
According to a third aspect, an apparatus for implementing network virtualization is provided, including: an acquisition unit configured to acquire a packet to be forwarded from a source server to a destination server; the system comprises a determining unit and a switching chip, wherein the determining unit is configured to determine a tunnel rule representing a virtual communication path for forwarding a message in a virtual network through a source intelligent switch corresponding to a source server and a destination intelligent switch corresponding to a destination server, and central processing units in the source intelligent switch and the destination intelligent switch are in communication connection with the switching chip through a plurality of message transceiving units; and the forwarding unit is configured to perform data plane processing on the message through the source intelligent switch and the destination intelligent switch based on the tunnel rule, and forward the message to the destination server from the source server via the virtual network according to the data plane processing result.
According to a fourth aspect, there is provided an electronic device comprising: at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the method as described in any one of the implementations of the first aspect.
According to a fifth aspect, there is provided a non-transitory computer readable storage medium having stored thereon computer instructions for causing a computer to perform a method as described in any one of the implementations of the first aspect.
According to a sixth aspect, there is provided a computer program product comprising: computer program which, when being executed by a processor, carries out the method as described in any of the implementations of the first aspect.
According to the technology disclosed by the invention, the method for realizing network virtualization is provided, the central processing unit in the intelligent switch is in communication connection with the switching chip through the plurality of message receiving and sending units, the data plane processing capacity is strong, the physical server can be directly accessed into a virtual network, and the flexibility and convenience of the network virtualization process of the physical server are improved.
It should be understood that the statements in this section do not necessarily identify key or critical features of the embodiments of the present disclosure, nor do they limit the scope of the present disclosure. Other features of the present disclosure will become apparent from the following description.
Drawings
The drawings are included to provide a better understanding of the present solution and are not to be construed as limiting the present disclosure. Wherein:
FIG. 1 is an exemplary system architecture diagram in which one embodiment according to the present disclosure may be applied;
FIG. 2 is a flow diagram of one embodiment of a method for implementing network virtualization according to the present disclosure;
fig. 3 is a schematic structural diagram of an intelligent switch according to the present embodiment;
fig. 4 is a schematic diagram of an application scenario of an implementation method of network virtualization according to the present embodiment;
FIG. 5 is a flow diagram of yet another embodiment of a method for implementing network virtualization according to the present disclosure;
FIG. 6 is a diagram of a system architecture to which an embodiment of a method for implementing network virtualization according to the present disclosure is applicable;
FIG. 7 is a block diagram of one embodiment of a system for implementing network virtualization according to the present disclosure;
FIG. 8 is a block diagram of one embodiment of an apparatus for implementing network virtualization according to the present disclosure;
FIG. 9 is a schematic block diagram of a computer system suitable for use in implementing embodiments of the present disclosure.
Detailed Description
Exemplary embodiments of the present disclosure are described below with reference to the accompanying drawings, in which various details of the embodiments of the disclosure are included to assist understanding, and which are to be considered as merely exemplary. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the present disclosure. Also, descriptions of well-known functions and constructions are omitted in the following description for clarity and conciseness.
In the technical scheme of the disclosure, the collection, storage, use, processing, transmission, provision, disclosure and other processing of the personal information of the related user are all in accordance with the regulations of related laws and regulations and do not violate the good customs of the public order.
Fig. 1 illustrates an exemplary architecture 100 to which the network virtualization implementing methods and apparatus of the present disclosure may be applied.
As shown in fig. 1, system architecture 100 may include servers 101, 102, 103, network 104, and server cluster 105 to which the virtual network is deployed. The communication connections between the servers 101, 102, 103 form a topological network, and the network 104 serves to provide a medium for communication links between the servers 101, 102, 103 and the server cluster 105. Network 104 may include various connection types, such as wired, wireless communication links, or fiber optic cables, to name a few.
The servers 101, 102, 103 interact with the server cluster 105 over the network 104 to receive or send messages or the like. The servers 101, 102, 103 may be hardware devices or software that support network connections for data interaction and data processing. When the servers 101, 102, 103 are hardware, they may be various servers supporting network connection, information acquisition, interaction, display, processing, and other functions, including but not limited to physical servers such as bare metal servers. When the servers 101, 102, 103 are software, they can be installed in the electronic devices listed above. It may be implemented, for example, as multiple software or software modules to provide distributed services, or as a single software or software module. And is not particularly limited herein.
The server cluster 105 may be a server cluster that provides virtual network services. For example, the intelligent switch performs data plane processing on the messages sent by the servers 101, 102, and 103 to forward the messages between the source server and the destination server, so as to implement a background processing server cluster for network virtualization of the physical server. As an example, the server 105 may be a cloud server.
It should be noted that the server cluster may be hardware or software. When the server cluster is hardware, it can be implemented as a distributed server cluster composed of multiple servers. When the server cluster is software, it may be implemented as a plurality of software or software modules (e.g., software or software modules used to provide distributed services). And is not particularly limited herein.
It should be further noted that the implementation method for network virtualization provided in the embodiments of the present application may be executed by a server cluster. Accordingly, the various parts (e.g., the various units) included in the implementation apparatus for network virtualization may be all disposed in the server cluster.
It should be understood that the number of servers, networks, and clusters of servers in FIG. 1 is merely illustrative. There may be any number of servers, networks, and server clusters, as desired for implementation. When the electronic device on which the implementation method of network virtualization operates does not need to perform data transmission with other electronic devices, the system architecture may only include the electronic device (e.g., server cluster) on which the implementation method of network virtualization operates.
Referring to fig. 2, fig. 2 is a flowchart of a method for implementing network virtualization according to an embodiment of the present disclosure, where the process 200 includes the following steps:
In this embodiment, an execution subject (for example, the server cluster in fig. 1) of the method for implementing network virtualization may obtain a packet to be forwarded from a source server to a destination server.
The source server corresponds to the destination server, wherein the source server represents a server which sends a message, and the destination server represents a server which finally receives the message. It should be noted that the source server and the destination server are only differential descriptions for servers involved in the message forwarding process, and the same server may serve multiple roles as the source server and the destination server in different forwarding processes.
In this embodiment, the server may be various physical servers. As an example, the server may be a bare metal server. The bare metal server has the characteristics of a traditional server and also has the function of cloud computing service. The bare metal server can be regarded as a physical server after being upgraded, the bare metal server is still leased, the cloud service provider provides the bare metal server for the tenant, and only the corresponding unique tenant exists for the bare metal server.
For each server, the executing agent may set a corresponding intelligent switch for the server. Each intelligent switch may correspond to one or more servers, and when one intelligent switch corresponds to a plurality of servers, a correspondence between a port of the intelligent switch and the plurality of servers connected thereto may be set in advance.
When the server is used as a source server and sends a message, the intelligent switch corresponding to the server can receive the message sent by the server. Wherein, the message carries IP (Internet Protocol) addresses of the active server and the destination server.
In this embodiment, the execution main body may determine, through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, a tunnel rule representing a virtual communication path for forwarding a packet in the virtual network. The central processing units in the source intelligent switch and the destination intelligent switch are in communication connection with the switching chip through a plurality of message receiving and transmitting units. It should be noted that the source intelligent switch and the destination intelligent switch are both intelligent switches, and are only described distinctively based on the location attribute (e.g., source, destination) where they are located.
Specifically, the intelligent switch comprises a central processing unit, a plurality of message receiving and transmitting units and a switching chip. The message transceiving unit is a processing unit with a message transceiving function, and as an example, the message transceiving unit is a network card. The central processor is connected with the message receiving and transmitting units by a bus, and the message receiving and transmitting units are connected with the exchange chip by Ethernet. The bus may be, for example, a PCIE (peripheral component interconnect express) bus.
In a common switch, a central processing unit does not perform data processing, and only has a management and control function, so that a model with weak performance, which is usually an embedded central processing unit, is adopted. The central processing unit of the intelligent switch needs to participate in data processing, so that a model with strong performance, which is usually a central processing unit at a server level, needs to be adopted.
In this embodiment, the virtual network is, for example, an Overlay network constructed on an Underlay network. The Underlay network is a bearer network which is composed of various physical devices and ensures the IP connectivity among the devices by using a routing protocol. The Overlay network is one or more virtual logical networks constructed on the same underway network through a network virtualization technology. Although different Overlay networks share the devices and lines in the Underlay network, the services in the Overlay network are mutually decoupled from the physical networking and interconnection technologies in the Underlay network.
In this embodiment, the network controller of the virtual network is responsible for operations such as creation, deletion, migration, IP (Internet Protocol) address allocation and binding of nodes in the virtual network in the process of managing the virtual network, and adjusts a tunnel rule corresponding to a node that changes in the management process, thereby determining a full-scale tunnel rule between all computing nodes in the virtual network. In the process of managing the virtual network, the network controller determines the tunnel rules related to the virtual network and synchronizes the tunnel rules to each intelligent switch.
A tunnel characterizes a virtual communication path that is constructed between two nodes in a virtual network. At the starting point of the path, the whole message is packaged as a load in another outer layer message header, and then at the end point of the path, the added outer layer message header is stripped again. Thus, routing can be performed between the starting point and the end point by using the outer layer message headers (specifically, the IP addresses of the physical networks of the starting point and the end point) without modifying the inner layer virtual network message. The tunnel rule represents a forwarding rule of the message on the virtual communication path.
Through the IP addresses of the source server and the destination server carried in the message sent by the source server, the source intelligent switch and the destination intelligent switch can determine the tunnel rule with the starting point as the source server and the end point as the destination server.
In some optional implementation manners of this embodiment, the intelligent switch includes a plurality of central processing units having cache consistency, and the plurality of central processing units are in communication connection with the switch chip through a plurality of message transceiving units, respectively.
As shown in fig. 3, a schematic diagram of the structure of the intelligent switch is shown. The intelligent switch 300 includes two powerful cpus (hereinafter referred to as "strong cpus") 301, each of which is in communication connection with a switch chip 303 through a plurality of message transceiving units 302, and the strong cpus are provided with a large-capacity memory (hereinafter referred to as "large memory") 304.
The strong central processing unit can perform data plane processing on the received message, and has the following functions based on the internal structure of the intelligent switch: the peripheral bus is wider, and more message receiving and transmitting units can be connected; more memory channels are provided, more memories can be connected, and larger memory bandwidth can be used; with cache coherent bus capability (e.g., QPI/UPI, etc.), multiple strong central processors may be connected. Compared with a common switch, the intelligent switch has stronger data processing capacity and storage capacity, and can flexibly complete a complex message processing function.
The network card in the intelligent switch has the main function of helping the central processing unit to rapidly receive and transmit messages, and therefore the network card can be called a message receiving and transmitting unit. Some modern network card chips have a certain message processing function (such as encapsulation and decapsulation of tunnel messages) besides a message transceiving function. At this time, the network card itself may also serve as a message processing unit in addition to serving as a message transceiving unit. Therefore, the calculation pressure of the central processing unit can be reduced, and the bandwidth and time delay performance of data plane forwarding are further ensured. Similarly, the network card chip has a message processing function, and compared with the switch chip, the network card chip has the main advantage that data in a Memory can be directly read and written through a Direct Memory Access (DMA) engine, so that a larger storage space is obtained. It can be understood that, in this implementation, the message processing function of the network card is an unnecessary function.
For the design of the intelligent switch, the network card can be a built-in chip or an externally-inserted standard card in terms of hardware form. In the former case, the network card chip and the switch chip can be directly interconnected by electrical signals on a PCB (Printed Circuit Board). If the network card is the latter, the network card and the switching chip need to be interconnected through a cable (optical fiber or copper cable, etc.), and an external panel network port of the intelligent switch is occupied. In this embodiment, the hardware configuration of the network card may be specifically selected according to actual situations, and is not limited herein. The execution main body performs message tracking and statistics through the powerful data processing capacity and storage capacity of the intelligent switch.
In the implementation mode, the intelligent switch has strong data processing capacity, can support the access of a physical server in an ultra-large-scale virtual network, can also support important functions in cloud computing such as message connection tracking and accurate statistics, and improves the practicability of the intelligent switch and the applicability under the large-scale virtual network.
And 203, performing data plane processing on the message through the source intelligent switch and the target intelligent switch based on the tunnel rule, and forwarding the message from the source server to the target server through the virtual network according to a data plane processing result.
In this embodiment, the executing agent may perform data plane processing on the packet based on the tunnel rule through the source intelligent switch and the destination intelligent switch, and forward the packet from the source server to the destination server through the virtual network. The data plane processing includes processing and forwarding operations of various types of data on different ports of the intelligent switch, including but not limited to processing operations such as encapsulation, decapsulation, transmission, and reception of a packet. Correspondingly, the data plane processing result may be that the message is encapsulated in the source intelligent switch to obtain an encapsulated message, and the encapsulated message is decapsulated in the destination intelligent switch to obtain the original message.
By way of example, the executing agent may forward a packet sent by the source server to the destination server through the source intelligent switch, the virtual network, and the destination intelligent switch via a virtual communication path between the source server and the destination server, which is characterized by the determined tunnel rule. In a virtual network, messages may also be forwarded between multiple nodes based on upper layer switches.
With continued reference to fig. 4, fig. 4 is a schematic diagram 400 of an application scenario of the implementation method for network virtualization according to the present embodiment. In the application scenario of fig. 4, a virtual network 401 accesses bare metal servers 404, 405 to the virtual network through two intelligent switches 402, 403. The bare metal server 404 serves as an origin server and waits to send a message to the bare metal server 405 serving as a destination server. After the intelligent switch 402 acquires the message of the source server 404, according to the IP addresses of the bare metal servers 404 and 405 carried in the message, the intelligent switches 402 and 403 determine a tunnel rule representing a virtual communication path for forwarding the message in the virtual network; further, the intelligent switches 402 and 403 perform data plane processing on the packet based on the tunnel rule, and forward the packet from the source server 404 to the destination server 405 via the virtual network 401.
In this embodiment, a method for implementing network virtualization is provided, in which a central processing unit in an intelligent switch is in communication connection with a switch chip through a plurality of message transceiving units, so that the intelligent switch has a relatively strong data plane processing capability, and can directly access a physical server to a virtual network, thereby improving flexibility and convenience of a network virtualization process of the physical server.
In some optional implementations of this embodiment, the executing main body may execute the step 202 by:
first, a first tunnel rule characterizing a virtual communication path between a source intelligent switch and a destination intelligent switch is determined by the source intelligent switch.
As an example, the execution body may determine the destination server based on an IP address of the destination server carried in the packet; further, determining a target intelligent switch corresponding to the target server; and furthermore, a first tunnel rule representing a virtual communication path between the source intelligent switch and the destination intelligent switch is determined from the tunnel rules injected in the source intelligent switch.
Second, a second tunnel rule characterizing a virtual communication path between the destination intelligent switch and the destination server is determined by the destination intelligent switch.
In the implementation mode, the target intelligent switch can determine the target server according to the IP address of the target server carried in the message; and determining a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server from the tunnel rules injected into the target intelligent switch.
In the implementation mode, the first tunnel rule between the source intelligent switch and the target intelligent switch is firstly determined, and then the second tunnel rule between the target intelligent switch and the target server is determined, so that the message is forwarded through the first tunnel rule and the second tunnel rule, and the accuracy of the message forwarding process is improved.
In some optional implementations of this embodiment, the executing main body may execute the step 203 by:
firstly, performing data plane processing on a message through a source intelligent switch according to a first tunnel rule to obtain an encapsulated message, and forwarding the encapsulated message to a target intelligent switch through a virtual network.
In this implementation manner, the execution main body may perform outer layer encapsulation on the packet through the source intelligent switch. Specifically, the whole message is used as a load, a new tunnel message header is added to the outer layer, and in the message header, the source IP address is the IP address of the source intelligent switch, and the destination IP address is the IP address of the destination intelligent switch.
And then, the packaged message is forwarded out through an uplink port of the source intelligent switch and transmitted to a target intelligent switch through a virtual network. As an example, the source intelligent switch marks a VLAN (Virtual Local Area Network) ID (Identity document) corresponding to the uplink port of the source intelligent switch on the encapsulated message, so as to instruct the switch chip to forward the message through the uplink port corresponding to the VLAN ID. In this implementation, the VLAN IDs of the upstream ports of the source intelligent switch are the same.
Secondly, decapsulating the encapsulated message through the target intelligent switch to obtain a message, determining a target downlink port of the target intelligent switch according to a second tunnel rule, and forwarding the message to the target server through the target downlink port.
In this implementation manner, the execution main body may strip off an outer layer packet header in the encapsulated packet, find a real destination server according to a destination IP address of the inner layer packet and in combination with a tunnel rule injected by the network controller, mark a VLAN ID corresponding to the target downlink port on the packet, and forward the packet to the destination server through the target downlink port. The target drop port may be a drop port in the destination intelligent switch to which the destination server is connected. In this implementation, the VLAN ID of each lower port is different.
In the implementation mode, the source intelligent switch forwards the message to the target intelligent switch through the virtual network according to the first tunnel rule, the target intelligent switch forwards the message to the target server according to the second tunnel rule, the server is accessed to the virtual network on the basis of the original virtual network based on the source intelligent switch and the target intelligent switch, and the accuracy of the message forwarding process is improved.
In some optional implementations of this embodiment, the executing body may determine the first tunnel rule by:
firstly, transmitting a message to a source central processing unit through a target source message receiving and transmitting unit in a plurality of source message receiving and transmitting units by a source switching chip in a source intelligent switch; then, a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch is determined by the source central processing unit.
In this implementation manner, the central processing unit, the message transceiving unit, and the switching chip in the source intelligent switch are respectively regarded as a source central processing unit, a source message transceiving unit, and a source switching chip. Specifically, the source switching chip transmits the message received by the lower connection port to a target network card in a plurality of network cards to the source central processing unit; the source central processor determines a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch from the tunnel rules injected by the network controller.
In the implementation mode, a specific implementation mode that the intelligent switch receives the message and determines the first tunnel rule according to the message is provided, and based on the strong data processing capacity of the intelligent switch, the feasibility of directly accessing the server to the virtual network is improved.
In some optional implementation manners of this embodiment, the executing entity may forward the packet to the destination intelligent switch by:
firstly, packaging a message through a source central processing unit based on a virtual communication path represented by a first tunnel rule to obtain a packaged message; then, transmitting the packaged message to a source exchange chip through a target source message transceiving unit in a plurality of source message transceiving units; and finally, forwarding the packaged message to an upper-layer switch in a virtual network through an uplink port of the source intelligent switch by using the source switch chip so as to forward the packaged message to a target intelligent switch through the virtual network.
In the implementation mode, a specific implementation mode that the intelligent switch performs data plane processing and forwarding on the message is provided, and based on the strong data processing capability of the intelligent switch, the feasibility of directly accessing the server to the virtual network is improved.
In some optional implementations of this embodiment, the executing entity may determine the second tunnel rule by: firstly, sending a received packaged message to a target central processing unit through a target message receiving and sending unit in a plurality of target message receiving and sending units by a target switching chip in a target intelligent switch; and then, decapsulating the encapsulated message through a destination central processing unit to obtain a message, and determining a second tunnel rule representing a virtual communication path between the destination intelligent switch and the destination server according to the message.
In this implementation manner, the central processing unit, the message transceiving unit, and the switching chip in the destination intelligent switch are respectively regarded as a destination central processing unit, a destination message transceiving unit, and a destination switching chip. Specifically, the destination switching chip transmits the packaged message received by the uplink port to the destination central processing unit through a target network card in the network cards; and the target central processing unit decapsulates the packet to obtain an inner layer packet, and determines a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server from the tunnel rules injected by the network controller.
In the implementation mode, a specific implementation mode that the intelligent switch receives the packaged message and determines the second tunnel rule according to the message is provided, and based on the strong data processing capacity of the intelligent switch, the feasibility of directly accessing the server to the virtual network is improved.
In some optional implementation manners of this embodiment, the upload execution main body may forward the packet to the destination server in the following manner: firstly, marking a virtual local area network identifier corresponding to a message by a central processing unit in a destination intelligent switch in combination with a network address of a destination server corresponding to the message and a second tunnel rule; then, determining a target lower connection port in the target intelligent switch according to the virtual local area network identification through the target switch chip; and finally, forwarding the message to a target server through a target downlink port.
In the implementation mode, a specific implementation mode that the intelligent switch performs data plane processing and forwarding on the message is provided, and based on the strong data processing capacity of the intelligent switch, the feasibility of directly accessing the server to the virtual network is improved.
With continuing reference to FIG. 5, an exemplary flow 500 of yet another embodiment of a method for implementing network virtualization according to the present disclosure is shown and includes the steps of:
And 505, transmitting the packaged message to a source exchange chip through a target source message transceiving unit of the plurality of source message transceiving units.
And 507, sending the received packaged message to a target central processing unit through a target message receiving and sending unit in the plurality of target message receiving and sending units by a target exchange chip in the target intelligent switch.
And step 508, decapsulating the encapsulated message through the destination central processing unit to obtain a message, and determining a second tunnel rule representing a virtual communication path between the destination intelligent switch and the destination server according to the message.
And 510, determining a target lower connection port in the target intelligent switch according to the virtual local area network identifier through the target switch chip.
As can be seen from this embodiment, compared with the embodiment corresponding to fig. 2, the flow 500 of the method for implementing network virtualization in this embodiment specifically illustrates a process of accessing a server to a virtual network through an intelligent switch, so as to further improve flexibility and convenience of a network virtualization process of a physical server.
With continued reference to fig. 6, a system architecture diagram 600 is shown, to which one particular embodiment of the network virtualization implementation method according to the present disclosure is applicable. The implementation system 600 includes physical servers 601, 602, tor intelligent switches 603, 604, upper layer switches 605, 606 and a network controller 607. The physical servers 601 and 602 belong to the virtual network of the same tenant, and the IP addresses of the virtual networks are a and b. It should be noted that the numbers of upper layer switches, toR intelligent switches, and physical servers are only exemplary. Specifically, the message forwarding process between the physical servers 601 and 602 is as follows:
1. the physical server 601 waits for sending a network packet to the physical server 602, where a source IP address in the network packet is a and a destination IP address in the network packet is b.
2. The switching chip on the ToR intelligent switch 603 receives the message and forwards the message to the central processing unit through the network card.
3. The virtual switch on the central processing unit of the ToR intelligent switch 603 receives the message, and adds a new tunnel message header to the outer layer by taking the received message as a whole as a load according to the tunnel rule injected by the network controller, where the source IP address in the tunnel message header is the IP address S of the ToR intelligent switch 603, and the destination IP address is the IP address D of the ToR intelligent switch 604. And finally, marking the VLAN ID corresponding to the uplink port on the packaged message, and sending the message to a switching chip on the TOR intelligent switch 603 through a network card.
4. After the switch chip on the ToR intelligent switch 603 removes the VLAN ID information, the encapsulated packet is forwarded to the upper layer switch 606 through the uplink port.
5. The encapsulated packet is routed according to the physical network IP address D of the ToR intelligent switch 604, and is finally forwarded to the ToR intelligent switch 604 through the upper layer switch 606.
6. The switching chip on the ToR intelligent switch 604 receives the message and forwards the message to the central processing unit through the network card.
7. The central processing unit on the ToR intelligent switch 604 receives the message, strips the added outer layer message header, finds the real target physical server 602 and the corresponding VLAN ID on the ToR intelligent switch 604 through the target IP address b of the inner layer message in combination with the tunnel rule injected by the network controller, then adds the corresponding VLAN ID to the inner layer message, and sends the inner layer message to the switching chip on the ToR intelligent switch 604 through the network card.
8. The switch chip on the ToR intelligent switch 604 finds the port corresponding to the physical server 602 by the VLAN ID, and forwards the VLAN ID information to the destination physical server 602 after removing the VLAN ID information. At this point, network communication between the physical servers 601, 602 is completed.
With continued reference to fig. 7, a schematic structural diagram of an implementation system of network virtualization according to the present disclosure is shown, wherein the data forwarding system 700 includes: comprises a network controller 701, intelligent switches 702 and 703 and servers 704 and 705, wherein: the network controller is used for managing tunnel rules related to the virtual network and synchronizing the tunnel rules to a corresponding intelligent switch in the virtual network, wherein a central processing unit in the intelligent switch is in communication connection with the switching chip through a plurality of message receiving and transmitting units; the intelligent switch is used for acquiring a message to be forwarded from the source server to the destination server; and determining a tunnel rule representing a virtual communication path for forwarding the message in the virtual network through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, and performing data plane processing on the message based on the tunnel rule so as to forward the message from the source server to the destination server through the virtual network according to a data plane processing result.
In some optional implementations of this embodiment, the source intelligent switch is configured to determine a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch; and the destination intelligent switch is used for determining a second tunnel rule representing a virtual communication path between the destination intelligent switch and the destination server.
In some optional implementation manners of this embodiment, the source intelligent switch is further configured to perform data plane processing on the packet according to the first tunnel rule to obtain an encapsulated packet, and forward the encapsulated packet to the destination intelligent switch via the virtual network; and the target intelligent switch is also used for decapsulating the encapsulated message to obtain a message, determining a target downlink port of the target intelligent switch according to the second tunnel rule, and forwarding the message to the target server through the target downlink port.
In some optional implementations of this embodiment, the source intelligent switch is further configured to: transmitting the message to a source central processing unit through a target source message receiving and transmitting unit in a plurality of source message receiving and transmitting units by a source exchange chip in a source intelligent switch; a first tunnel rule characterizing a virtual communication path between a source intelligent switch and a destination intelligent switch is determined by a source central processing unit.
In some optional implementations of this embodiment, the source intelligent switch is further configured to: encapsulating the message through a source central processing unit based on a virtual communication path represented by the first tunnel rule to obtain an encapsulated message; transmitting the packaged message to a source exchange chip through a target source message transceiving unit in a plurality of source message transceiving units; and forwarding the packaged message to an upper-layer switch in a virtual network through an uplink port of the source intelligent switch by using the source switch chip so as to forward the packaged message to a target intelligent switch through the virtual network.
In some optional implementations of this embodiment, the destination intelligent switch is further configured to: sending the received packaged message to a target central processing unit through a target message receiving and sending unit in a plurality of target message receiving and sending units by a target switching chip in a target intelligent switch; and de-encapsulating the encapsulated message through a target central processing unit to obtain a message, and determining a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server according to the message.
In some optional implementations of this embodiment, the destination intelligent switch is further configured to: marking a virtual local area network identifier corresponding to the message by a central processing unit in the target intelligent switch in combination with a network address of a target server corresponding to the message and a second tunnel rule; determining a target lower connection port in the target intelligent switch according to the virtual local area network identification through a target switch chip; and forwarding the message to a target server through a target downlink port.
In some optional implementation manners of this embodiment, the intelligent switch includes a plurality of central processing units having cache consistency, and the plurality of central processing units are respectively in communication connection with the switch chip through a plurality of message transceiving units.
The implementation manners in this embodiment may be performed with reference to the implementation manners in the embodiments 200, 500, and 600, and are not described herein again.
In this embodiment, a system for implementing network virtualization is provided, in which a central processing unit in an intelligent switch is in communication connection with a switch chip through a plurality of message transceiving units, so that the system has a relatively high data plane processing capability, and can directly access a physical server to a virtual network, thereby improving flexibility and convenience of a network virtualization process of the physical server.
With continuing reference to fig. 8, as an implementation of the method shown in the foregoing figures, the present disclosure provides an embodiment of an implementation apparatus for network virtualization, where the embodiment of the apparatus corresponds to the embodiment of the method shown in fig. 2, and the apparatus may be specifically applied to various electronic devices.
As shown in fig. 8, the apparatus for implementing network virtualization includes: an obtaining unit 801 configured to obtain a packet to be forwarded from a source server to a destination server; a determining unit 802 configured to determine a tunnel rule representing a virtual communication path for forwarding a packet in a virtual network through a source intelligent switch corresponding to a source server and a destination intelligent switch corresponding to a destination server, where central processing units in the source intelligent switch and the destination intelligent switch are in communication connection with a switching chip through a plurality of packet transceiving units; a forwarding unit 803 configured to perform data plane processing on the packet based on the tunnel rule through the source intelligent switch and the destination intelligent switch, and forward the packet from the source server to the destination server via the virtual network according to a data plane processing result.
In some optional implementations of the present embodiment, the determining unit 802 is further configured to: determining a first tunnel rule representing a virtual communication path between a source intelligent switch and a destination intelligent switch through the source intelligent switch; determining, by the destination intelligent switch, a second tunnel rule characterizing a virtual communication path between the destination intelligent switch and the destination server.
In some optional implementations of this embodiment, the forwarding unit 803 is further configured to: performing data plane processing on the message through the source intelligent switch according to the first tunnel rule to obtain a packaged message, and forwarding the packaged message to a target intelligent switch through a virtual network; and decapsulating the encapsulated message through the target intelligent switch to obtain a message, determining a target downlink port of the target intelligent switch according to a second tunnel rule, and forwarding the message to the target server through the target downlink port.
In some optional implementations of this embodiment, the determining unit 802 is further configured to: transmitting the message to a source central processing unit through a target source message receiving and transmitting unit in a plurality of source message receiving and transmitting units by a source exchange chip in a source intelligent switch; a first tunnel rule characterizing a virtual communication path between a source intelligent switch and a destination intelligent switch is determined by a source central processing unit.
In some optional implementations of this embodiment, the forwarding unit 803 is further configured to: encapsulating the message based on the virtual communication path represented by the first tunnel rule through a source central processing unit to obtain an encapsulated message; transmitting the packaged message to a source exchange chip through a target source message transceiving unit in a plurality of source message transceiving units; and forwarding the packaged message to an upper-layer switch in a virtual network through an uplink port of the source intelligent switch by using the source switch chip so as to forward the packaged message to a target intelligent switch through the virtual network.
In some optional implementations of this embodiment, the determining unit 802 is further configured to: sending the received packaged message to a target central processing unit through a target message receiving and sending unit in a plurality of target message receiving and sending units by a target switching chip in a target intelligent switch; and de-encapsulating the encapsulated message through a target central processing unit to obtain a message, and determining a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server according to the message.
In some optional implementations of this embodiment, the forwarding unit 803 is further configured to: marking a virtual local area network identifier corresponding to the message by a central processing unit in the target intelligent switch in combination with a network address of a target server corresponding to the message and a second tunnel rule; determining a target lower connection port in the target intelligent switch according to the virtual local area network identification through a target switch chip; and forwarding the message to a target server through a target downlink port.
In some optional implementation manners of this embodiment, the intelligent switch includes a plurality of central processing units having cache consistency, and the plurality of central processing units are in communication connection with the switch chip through a plurality of message transceiving units, respectively.
In this embodiment, a device for implementing network virtualization is provided, in which a central processing unit in an intelligent switch is in communication connection with a switch chip through a plurality of message transceiving units, so that the device has a relatively strong data plane processing capability, and can directly access a physical server to a virtual network, thereby improving flexibility and convenience of a network virtualization process of the physical server.
According to an embodiment of the present disclosure, the present disclosure also provides an electronic device including: at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor, and the instructions are executed by the at least one processor, so that the at least one processor can implement the implementation method of network virtualization described in any of the above embodiments.
According to an embodiment of the present disclosure, the present disclosure further provides a readable storage medium, which stores computer instructions for enabling a computer to implement the implementation method of network virtualization described in any of the above embodiments when executed.
The embodiment of the present disclosure provides a computer program product, which when executed by a processor can implement the method for implementing network virtualization described in any of the above embodiments.
FIG. 9 illustrates a schematic block diagram of an example electronic device 900 that can be used to implement embodiments of the present disclosure. Electronic devices are intended to represent various forms of digital computers, such as laptops, desktops, workstations, personal digital assistants, servers, blade servers, mainframes, and other appropriate computers. The electronic device may also represent various forms of mobile devices, such as personal digital processing, cellular phones, smart phones, wearable devices, and other similar computing devices. The components shown herein, their connections and relationships, and their functions, are meant to be examples only, and are not meant to limit implementations of the disclosure described and/or claimed herein.
As shown in fig. 9, the apparatus 900 includes a computing unit 901, which can perform various appropriate actions and processes in accordance with a computer program stored in a Read Only Memory (ROM) 902 or a computer program loaded from a storage unit 908 into a Random Access Memory (RAM) 903. In the RAM 903, various programs and data required for the operation of the device 900 can also be stored. The calculation unit 901, ROM 902, and RAM 903 are connected to each other via a bus 904. An input/output (I/O) interface 905 is also connected to bus 904.
A number of components in the device 900 are connected to the I/O interface 905, including: an input unit 906 such as a keyboard, a mouse, and the like; an output unit 907 such as various types of displays, speakers, and the like; a storage unit 908 such as a magnetic disk, optical disk, or the like; and a communication unit 909 such as a network card, a modem, a wireless communication transceiver, and the like. The communication unit 909 allows the device 900 to exchange information/data with other devices through a computer network such as the internet and/or various telecommunication networks.
The computing unit 901 may be a variety of general and/or special purpose processing components having processing and computing capabilities. Some examples of the computing unit 901 include, but are not limited to, a Central Processing Unit (CPU), a Graphics Processing Unit (GPU), various dedicated Artificial Intelligence (AI) computing chips, various computing units running machine learning model algorithms, a Digital Signal Processor (DSP), and any suitable processor, controller, microcontroller, and so forth. The computing unit 901 performs the respective methods and processes described above, such as the implementation method of network virtualization. For example, in some embodiments, the network virtualization implementation method may be implemented as a computer software program tangibly embodied in a machine-readable medium, such as storage unit 908. In some embodiments, part or all of the computer program may be loaded and/or installed onto device 900 via ROM 902 and/or communications unit 909. When loaded into RAM 903 and executed by computing unit 901, may perform one or more steps of the above described method of implementing network virtualization. Alternatively, in other embodiments, the computing unit 901 may be configured to perform the implementation method of network virtualization in any other suitable manner (e.g., by means of firmware).
Various implementations of the systems and techniques described here above may be implemented in digital electronic circuitry, integrated circuitry, field Programmable Gate Arrays (FPGAs), application Specific Integrated Circuits (ASICs), application Specific Standard Products (ASSPs), system on a chip (SOCs), load programmable logic devices (CPLDs), computer hardware, firmware, software, and/or combinations thereof. These various embodiments may include: implemented in one or more computer programs that are executable and/or interpretable on a programmable system including at least one programmable processor, which may be special or general purpose, receiving data and instructions from, and transmitting data and instructions to, a storage system, at least one input device, and at least one output device.
Program code for implementing the methods of the present disclosure may be written in any combination of one or more programming languages. These program codes may be provided to a processor or controller of a general purpose computer, special purpose computer, or other programmable data processing apparatus, such that the program codes, when executed by the processor or controller, cause the functions/operations specified in the flowchart and/or block diagram to be performed. The program code may execute entirely on the machine, partly on the machine, as a stand-alone software package partly on the machine and partly on a remote machine or entirely on the remote machine or server.
In the context of this disclosure, a machine-readable medium may be a tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. The machine-readable medium may be a machine-readable signal medium or a machine-readable storage medium. A machine-readable medium may include, but is not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any suitable combination of the foregoing. More specific examples of a machine-readable storage medium would include an electrical connection based on one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
To provide for interaction with a user, the systems and techniques described here can be implemented on a computer having: a display device (e.g., a CRT (cathode ray tube) or LCD (liquid crystal display) monitor) for displaying information to a user; and a keyboard and a pointing device (e.g., a mouse or a trackball) by which a user can provide input to the computer. Other kinds of devices may also be used to provide for interaction with a user; for example, feedback provided to the user can be any form of sensory feedback (e.g., visual feedback, auditory feedback, or tactile feedback); and input from the user can be received in any form, including acoustic, speech, or tactile input.
The systems and techniques described here can be implemented in a computing system that includes a back-end component (e.g., as a data server), or that includes a middleware component (e.g., an application server), or that includes a front-end component (e.g., a user computer having a graphical user interface or a web browser through which a user can interact with an implementation of the systems and techniques described here), or any combination of such back-end, middleware, or front-end components. The components of the system can be interconnected by any form or medium of digital data communication (e.g., a communication network). Examples of communication networks include: local Area Networks (LANs), wide Area Networks (WANs), and the Internet.
The computer system may include clients and servers. A client and server are generally remote from each other and typically interact through a communication network. The relationship of client and server arises by virtue of computer programs running on the respective computers and having a client-server relationship to each other. The Server can be a cloud Server, also called a cloud computing Server or a cloud host, and is a host product in a cloud computing service system, so as to solve the defects of large management difficulty and weak service expansibility existing in the traditional physical host and Virtual Private Server (VPS) service; it may also be a server of a distributed system, or a server incorporating a blockchain.
According to the technical scheme of the embodiment of the disclosure, a method for realizing network virtualization is provided, a central processing unit in an intelligent switch is in communication connection with a switching chip through a plurality of message receiving and sending units, the method has strong data plane processing capacity, a physical server can be directly accessed into a virtual network, and flexibility and convenience of a network virtualization process of the physical server are improved.
It should be understood that various forms of the flows shown above, reordering, adding or deleting steps, may be used. For example, the steps described in this disclosure may be performed in parallel, sequentially or in different orders, as long as the desired results of the technical solutions provided by this disclosure can be achieved, which are not limited herein.
The above detailed description should not be construed as limiting the scope of the disclosure. It should be understood by those skilled in the art that various modifications, combinations, sub-combinations and substitutions may be made in accordance with design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present disclosure should be included in the scope of protection of the present disclosure.
Claims (20)
1. A method for implementing network virtualization comprises the following steps:
acquiring a message to be forwarded from a source server to a destination server;
determining a tunnel rule representing a virtual communication path for forwarding the message in a virtual network through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, wherein central processing units in the source intelligent switch and the destination intelligent switch are in communication connection with a switching chip through a plurality of message receiving and transmitting units;
and performing data plane processing on the message based on the tunnel rule through the source intelligent switch and the target intelligent switch, and forwarding the message from the source server to the target server through the virtual network according to a data plane processing result.
2. The method according to claim 1, wherein the determining, by a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, a tunnel rule characterizing a virtual communication path for forwarding the packet in a virtual network includes:
determining, by the source intelligent switch, a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch;
determining, by the destination intelligent switch, a second tunnel rule characterizing a virtual communication path between the destination intelligent switch and the destination server.
3. The method according to claim 2, wherein the performing, by the source intelligent switch and the destination intelligent switch, data plane processing on the packet based on the tunnel rule, and forwarding the packet from the source server to the destination server via the virtual network according to a data plane processing result comprises:
performing data plane processing on the message according to the first tunnel rule through the source intelligent switch to obtain an encapsulated message, and forwarding the encapsulated message to the destination intelligent switch through the virtual network;
and decapsulating the encapsulated message through the target intelligent switch to obtain the message, determining a target downlink port of the target intelligent switch according to the second tunnel rule, and forwarding the message to the target server through the target downlink port.
4. The method of claim 3, wherein said determining, by the source intelligent switch, a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch comprises:
transmitting the message to a source central processing unit through a target source message receiving and transmitting unit in a plurality of source message receiving and transmitting units by a source switching chip in the source intelligent switch;
determining, by the source central processing unit, a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch.
5. The method according to claim 4, wherein the performing, by the source intelligent switch, data plane processing on the packet according to the first tunnel rule to obtain an encapsulated packet, and forwarding the encapsulated packet to the destination intelligent switch via the virtual network includes:
packaging the message based on the virtual communication path represented by the first tunnel rule through the source central processing unit to obtain the packaged message;
transmitting the packaged message to the source exchange chip through a target source message transceiving unit in the plurality of source message transceiving units;
and forwarding the packaged message to an upper-layer switch in the virtual network through an uplink port of the source intelligent switch by the source switch chip so as to forward the packaged message to the target intelligent switch through the virtual network.
6. The method of claim 3, wherein said determining, by the destination intelligent switch, a second tunnel rule characterizing a virtual communication path between the destination intelligent switch and the destination server comprises:
sending the received packaged message to a target central processing unit through a target message receiving and sending unit in a plurality of target message receiving and sending units by a target switching chip in the target intelligent switch;
and de-encapsulating the encapsulated message through the target central processing unit to obtain the message, and determining a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server according to the message.
7. The method according to claim 6, wherein the decapsulating, by the destination intelligent switch, the encapsulated packet to obtain the packet, determining a target downlink port of the destination intelligent switch according to the second tunneling rule, and forwarding the packet to the destination server through the target downlink port includes:
marking a virtual local area network identifier corresponding to the message by a central processing unit in the target intelligent switch in combination with a network address of a target server corresponding to the message and the second tunnel rule;
determining a target lower connection port in the target intelligent switch according to the virtual local area network identification through a target switch chip;
and forwarding the message to the target server through the target downlink port.
8. The method of claim 1, wherein the intelligent switch comprises a plurality of central processing units with cache consistency, and the central processing units are respectively connected with the switch chip in communication through a plurality of message transceiving units.
9. A realization system of network virtualization comprises a network controller, an intelligent switch and a server, wherein:
the network controller is used for managing tunnel rules related to a virtual network and synchronizing the tunnel rules to a corresponding intelligent switch in the virtual network, wherein a central processing unit in the intelligent switch is in communication connection with the switching chip through a plurality of message receiving and transmitting units;
the intelligent switch is used for acquiring a message to be forwarded from the source server to the destination server; determining a tunnel rule representing a virtual communication path for forwarding the message in a virtual network through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, and performing data plane processing on the message based on the tunnel rule so as to forward the message from the source server to the destination server through the virtual network according to a data plane processing result.
10. The system of claim 9, wherein the source intelligent switch is configured to determine a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch;
the destination intelligent switch is used for determining a second tunnel rule representing a virtual communication path between the destination intelligent switch and the destination server.
11. The system according to claim 10, wherein the source intelligent switch is further configured to perform data plane processing on the packet according to the first tunnel rule to obtain an encapsulated packet, and forward the encapsulated packet to the destination intelligent switch via the virtual network;
the destination intelligent switch is further configured to decapsulate the encapsulated packet to obtain the packet, determine a target downlink port of the destination intelligent switch according to the second tunnel rule, and forward the packet to the destination server through the target downlink port.
12. The system of claim 11, wherein the source intelligent switch is further configured to:
transmitting the message to a source central processing unit through a target source message receiving and transmitting unit in a plurality of source message receiving and transmitting units by a source switching chip in the source intelligent switch; determining, by the source central processing unit, a first tunnel rule characterizing a virtual communication path between the source intelligent switch and the destination intelligent switch.
13. The system of claim 12, wherein the source intelligent switch is further to:
packaging the message based on the virtual communication path represented by the first tunnel rule through the source central processing unit to obtain the packaged message; transmitting the packaged message to the source exchange chip through a target source message transceiving unit in the plurality of source message transceiving units; and forwarding the packaged message to an upper-layer switch in the virtual network through an uplink port of the source intelligent switch by the source switch chip so as to forward the packaged message to the target intelligent switch through the virtual network.
14. The system of claim 11, wherein the destination intelligent switch is further configured to:
sending the received packaged message to a target central processing unit through a target message receiving and sending unit in a plurality of target message receiving and sending units by a target switching chip in the target intelligent switch; and de-encapsulating the encapsulated message through the target central processing unit to obtain the message, and determining a second tunnel rule representing a virtual communication path between the target intelligent switch and the target server according to the message.
15. The system of claim 14, wherein the destination intelligent switch is further to:
marking a virtual local area network identifier corresponding to the message by a central processing unit in the target intelligent switch in combination with a network address of a target server corresponding to the message and the second tunnel rule; determining a target lower connection port in the target intelligent switch according to the virtual local area network identification through a target switch chip; and forwarding the message to the target server through the target downlink port.
16. The system of claim 9, wherein the intelligent switch comprises a plurality of central processing units with cache consistency, and the central processing units are respectively connected with the switching chip in communication through a plurality of message transceiving units.
17. An apparatus for implementing network virtualization, comprising:
an acquisition unit configured to acquire a packet to be forwarded from a source server to a destination server;
a determining unit configured to determine, through a source intelligent switch corresponding to the source server and a destination intelligent switch corresponding to the destination server, a tunnel rule characterizing a virtual communication path for forwarding the packet in a virtual network, where central processing units in the source intelligent switch and the destination intelligent switch are in communication connection with a switching chip through a plurality of packet transceiving units;
and the forwarding unit is configured to perform data plane processing on the message based on the tunnel rule through the source intelligent switch and the destination intelligent switch, and forward the message from the source server to the destination server via the virtual network according to a data plane processing result.
18. An electronic device, comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein, the first and the second end of the pipe are connected with each other,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the method of any one of claims 1-8.
19. A non-transitory computer readable storage medium having stored thereon computer instructions for causing the computer to perform the method of any one of claims 1-8.
20. A computer program product, comprising: computer program, which when executed by a processor implements the method according to any one of claims 1-8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210727754.1A CN115189987A (en) | 2022-06-22 | 2022-06-22 | Method, system, device and program product for implementing network virtualization |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210727754.1A CN115189987A (en) | 2022-06-22 | 2022-06-22 | Method, system, device and program product for implementing network virtualization |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115189987A true CN115189987A (en) | 2022-10-14 |
Family
ID=83516349
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210727754.1A Pending CN115189987A (en) | 2022-06-22 | 2022-06-22 | Method, system, device and program product for implementing network virtualization |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115189987A (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103414626A (en) * | 2013-08-28 | 2013-11-27 | 盛科网络(苏州)有限公司 | Message processing method and device based on network virtualization |
| CN108293022A (en) * | 2015-12-30 | 2018-07-17 | 华为技术有限公司 | A kind of methods, devices and systems of message transmissions |
| CN108768817A (en) * | 2018-05-22 | 2018-11-06 | 腾讯科技(深圳)有限公司 | A kind of virtualization network constructing system, data packet sending method |
| CN114024799A (en) * | 2022-01-06 | 2022-02-08 | 杭州优云科技有限公司 | Method and device for interconnecting bare metal server and virtualization network |
| CN114070723A (en) * | 2020-07-31 | 2022-02-18 | 中移(苏州)软件技术有限公司 | Virtual network configuration method and system of bare metal server and intelligent network card |
-
2022
- 2022-06-22 CN CN202210727754.1A patent/CN115189987A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103414626A (en) * | 2013-08-28 | 2013-11-27 | 盛科网络(苏州)有限公司 | Message processing method and device based on network virtualization |
| CN108293022A (en) * | 2015-12-30 | 2018-07-17 | 华为技术有限公司 | A kind of methods, devices and systems of message transmissions |
| CN108768817A (en) * | 2018-05-22 | 2018-11-06 | 腾讯科技(深圳)有限公司 | A kind of virtualization network constructing system, data packet sending method |
| CN114070723A (en) * | 2020-07-31 | 2022-02-18 | 中移(苏州)软件技术有限公司 | Virtual network configuration method and system of bare metal server and intelligent network card |
| CN114024799A (en) * | 2022-01-06 | 2022-02-08 | 杭州优云科技有限公司 | Method and device for interconnecting bare metal server and virtualization network |
Non-Patent Citations (2)
| Title |
|---|
| 梁凡: "《云计算中的大数据技术与应用》", 30 June 2018, 吉林大学出版社, pages: 133 * |
| 黄风华: "《云计算技术与应用》", 31 March 2020, 东北林业大学出版社, pages: 186 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110708393B (en) | Method, device and system for transmitting data | |
| CN108293022B (en) | Method, device and system for transmitting message | |
| CN106533890B (en) | Message processing method, device and system | |
| CN107707628B (en) | Method and apparatus for transmitting data processing requests | |
| CN109412922B (en) | Method, forwarding device, controller and system for transmitting message | |
| CN112787913B (en) | Intelligent network card assembly, physical machine, cloud service system and message sending method | |
| CN111901387A (en) | Connection method and device of cloud special line | |
| CN113746717A (en) | Network equipment communication method and network equipment communication device | |
| CN113162779B (en) | Multi-cloud interconnection method and equipment | |
| CN114500633B (en) | Data forwarding method, related device, program product and data transmission system | |
| CN113765801B (en) | Message processing method and device applied to data center, electronic equipment and medium | |
| CN115225634B (en) | Data forwarding method, device and computer program product under virtual network | |
| CN114650290A (en) | Network connection method, processing device, terminal and storage medium | |
| CN115190087B (en) | Data transmission method, device, equipment and medium based on two-layer intermediate equipment | |
| CN115189987A (en) | Method, system, device and program product for implementing network virtualization | |
| CN103036815B (en) | A kind of information technology and communication technology ICT emerging system | |
| CN116032880A (en) | System, method, electronic equipment and storage medium for session synchronization | |
| CN115242597A (en) | Information processing method, device and storage medium | |
| CN115134194A (en) | Method, system, device and program product for implementing network virtualization | |
| CN115473765A (en) | Message transmission method, device and system | |
| CN114513485A (en) | Method, device, equipment and system for obtaining mapping rule and readable storage medium | |
| CN112822123A (en) | Data acquisition method and device | |
| CN114826898A (en) | Cross-host communication method, device, equipment, system and readable storage medium | |
| CN115086251B (en) | Stacked data processing method and device, electronic equipment and storage medium | |
| CN116306407B (en) | Verification method, device, equipment and storage medium of Network On Chip (NOC) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |