CN115460303A - Data processing method, device, terminal and storage medium - Google Patents
Data processing method, device, terminal and storage medium Download PDFInfo
- Publication number
- CN115460303A CN115460303A CN202110644262.1A CN202110644262A CN115460303A CN 115460303 A CN115460303 A CN 115460303A CN 202110644262 A CN202110644262 A CN 202110644262A CN 115460303 A CN115460303 A CN 115460303A
- Authority
- CN
- China
- Prior art keywords
- data packet
- data
- key information
- layer
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/22—Parsing or analysis of headers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The embodiment of the application provides a data processing method, a data processing device, a terminal and a storage medium, wherein the method comprises the following steps: determining first key information according to a data packet to be analyzed sent by an overlay covering virtual cluster; determining a first data packet according to the first key information, wherein the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed; carrying out inner layer protocol analysis on the first data packet to obtain a second data packet; processing the second data packet to obtain a target data packet; feeding the target data packet back to a server of the overlay virtual cluster; therefore, the communication time delay between the overlay coverage virtual cluster and the underlay infrastructure layer cluster can be reduced, and the communication efficiency is improved.
Description
Technical Field
The present application relates to network communication technologies, and in particular, to a data processing method, an apparatus, a terminal, and a storage medium.
Background
In the cloud computing virtualization technology, an overlay virtual network technology is usually adopted to construct an overlay virtual cluster, and some clusters directly use a physical network, that is, an overlay infrastructure layer network is used to provide services to the outside, for example, an object storage cluster, that is, an overlay infrastructure layer cluster. When the overlay virtual cluster is used for data communication with the underlay infrastructure layer network, the overlay virtual network is communicated with the underlay infrastructure layer network through a gateway or a network address conversion device. In some cases, a network card needs to be added to the overlay virtual network, and the network card has an address of the underlay infrastructure layer network, so that the data packet can be directly communicated with the underlay infrastructure layer network through the newly added network card in a peer-to-peer manner. Such a data communication method requires a new physical device, increases the investment cost, and prolongs the communication time.
Disclosure of Invention
The embodiment of the application provides a data processing method, a data processing device, a terminal and a storage medium, which can improve the communication efficiency between an overlay coverage virtual cluster and an underlay infrastructure layer cluster and reduce the communication time delay.
The technical scheme of the embodiment of the application is realized as follows:
an embodiment of the present application provides a data processing method, including:
determining first key information according to a data packet to be analyzed sent by an overlay covering virtual cluster;
determining a first data packet according to the first key information, wherein the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed;
carrying out inner layer protocol analysis on the first data packet to obtain a second data packet;
processing the second data packet to obtain a target data packet;
and feeding the target data packet back to a server of the overlay virtual cluster.
An embodiment of the present application provides a data processing apparatus, the apparatus includes:
the device comprises a first determining module, a second determining module and a sending module, wherein the first determining module is used for determining first key information according to a data packet to be analyzed, which is sent by an overlay coverage virtual cluster;
a second determining module, configured to determine a first data packet according to the first key information, where the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed;
the analysis module is used for carrying out inner layer protocol analysis on the first data packet to obtain a second data packet;
the processing module is used for processing the second data packet to obtain a target data packet;
and the feedback module is used for feeding the target data packet back to the server of the overlay coverage virtual cluster.
The embodiment of the application provides a terminal, the terminal at least includes: a controller and a storage medium configured to store executable instructions, wherein:
the controller is configured to execute stored executable instructions configured to perform the data processing methods provided above.
An embodiment of the present application provides a computer-readable storage medium, in which computer-executable instructions are stored, and the computer-executable instructions are configured to execute the data processing method provided above.
The embodiment of the application provides a data processing method, a data processing device, a terminal and a storage medium, wherein an underlay infrastructure layer cluster server receives a to-be-analyzed data packet which is sent by an overlay virtual cluster server and is not converted, and directly analyzes the to-be-analyzed data packet twice under the condition that first key information of the to-be-analyzed data packet does not exist in a preset key information base to obtain a second data packet, processes the second data packet to obtain a target data packet, and feeds the target data packet back to the overlay virtual cluster server through the underlay infrastructure layer cluster server; therefore, the cluster of the overlay virtual network does not need to be changed, the underlay infrastructure layer cluster server can directly receive the data packet to be analyzed which is sent by the server of the overlay virtual cluster and is not converted, and the data packet to be analyzed is analyzed twice under the condition that no new network equipment is introduced, so that the service data packet, namely the second data packet, corresponding to the data packet to be analyzed is obtained, the communication efficiency between the overlay virtual cluster and the underlay infrastructure layer cluster is improved, the communication time delay is reduced, and the investment cost is reduced.
Drawings
Fig. 1 is a schematic flow chart illustrating an implementation of a data processing method according to an embodiment of the present application;
fig. 2 is a schematic flowchart of another implementation of the data processing method according to the embodiment of the present application;
fig. 3 is a schematic diagram of a general architecture of a system for performing data interworking between an overlay virtual cluster and an underlay infrastructure layer cluster according to an embodiment of the present application;
fig. 4 is a schematic flowchart of another implementation of the data processing method according to the embodiment of the present application;
fig. 5 is a schematic diagram illustrating a working principle of a virtual network card according to an embodiment of the present application;
fig. 6 is a schematic structural diagram of a data processing apparatus according to an embodiment of the present application;
fig. 7 is a schematic structural diagram of the terminal according to the embodiment of the present application.
Detailed Description
So that the manner in which the features and aspects of the present invention can be understood in detail, a more particular description of the invention, briefly summarized above, may be had by reference to embodiments, some of which are illustrated in the appended drawings.
In order to facilitate understanding of the technical solutions of the embodiments of the present application, the following description is made of related art of the embodiments of the present application.
The wide application of the cloud computing virtualization technology enables the network virtualization technology to be developed rapidly. A virtualized network refers to a computer network that is built on another network, a form of network virtualization. overlay covers the underlying network on which the virtual network depends, referred to as the underlay infrastructure layer network.
In a data center network, overlay virtual networks are mostly realized based on virtual expansion local area networks, namely MAC-in-UDP, and the requirement of a large two-layer network of the data center is realized by encapsulating a two-layer network on an internet interconnection protocol/user data packet protocol network.
The interior of a data center is typically divided into a plurality of clusters by function or service. Most clusters adopt a network virtualization technology, that is, overlay covers a virtual network, so as to facilitate migration of virtual machines. Some clusters provide services, such as object storage clusters, directly out using the physical network, i.e., the underlay infrastructure layer network. When a cluster using overlay virtual network accesses a cluster using underlay infrastructure network, a gateway is usually needed to convert an overlay virtual network packet into an underlay infrastructure network packet, which is also called encapsulation and decapsulation. Meanwhile, since the address space of the overlay virtual network is different from that of the underlay infrastructure layer network, a network address translation technology is required to be used for address translation. Therefore, the interworking between the overlay virtual network and the underlay infrastructure layer network needs to pass through links such as a gateway, a network address translation device, a forwarding device and the like.
When the overlay virtual network performs data intercommunication with the underlay infrastructure layer network, a network card (e.g., a physical network card or a virtual network card) may be added to the overlay virtual network, where the network card has an address of the underlay infrastructure layer network, so that a data packet may be directly communicated with the underlay infrastructure layer network through the newly added network card in a peer-to-peer manner. But the scheme of adding new physical equipment increases the investment cost to different degrees. Or the overlay virtual network performs data intercommunication with the underlay infrastructure layer network through the gateway and the network address translation device, while the performance of the gateway device is often lower than that of the forwarding device, and when a large number of overlay virtual networks perform data intercommunication with the underlay infrastructure layer network, the performance of the gateway device affects the performance of the system. And the more network devices the overlay virtual network and the underlay infrastructure layer network data packet pass through, the larger the corresponding transmission delay is. In some examples, an underlay infrastructure layer address can be added for data intercommunication. However, the newly added underlay infrastructure layer addresses increase a large number of underlay infrastructure layer addresses, the existing network isolation is damaged, a virtual local area network scheme is required to be adopted to limit network access, and the scheme is not feasible any more when the network scale is continuously increased due to the limited number of virtual local area networks.
Therefore, the following technical solutions of the embodiments of the present application are proposed, and in order to understand features and technical contents of the embodiments of the present application in more detail, the embodiments of the present application are described in detail below with reference to the accompanying drawings, which are only used for reference and are not used to limit the embodiments of the present application.
Fig. 1 is a schematic flow chart illustrating an implementation of a data processing method provided in an embodiment of the present application, and as shown in fig. 1, the data processing method includes the following steps:
step S101: and determining first key information according to a data packet to be analyzed sent by the overlay coverage virtual cluster.
Here, the overlay virtual cluster refers to a cluster that uses an overlay virtual network (overlay network). When the cluster using the overlay virtual network and the cluster using the underlay infrastructure layer network access each other, that is, when the overlay virtual cluster and the underlay infrastructure layer cluster perform data communication, the cluster of the overlay virtual network needs to send the data packet to be analyzed to a server of the underlay infrastructure layer cluster. In some implementation manners, when the overlay virtual cluster sends a to-be-analyzed data packet to the underlay infrastructure cluster, the virtual machine of the overlay virtual cluster sends the to-be-analyzed data packet to a forwarding device, i.e., a switch, connected between the overlay virtual cluster and the underlay infrastructure cluster, and then the switch sends the to-be-analyzed data packet to a server of the underlay infrastructure cluster. The first key information is information for distinguishing service data carried in a data packet to be analyzed.
The Overlay covers the virtual expansion LAN tunnel endpoint equipment on the virtual cluster server, encapsulates the corresponding virtual expansion LAN data packet according to the virtual physical address and the Internet protocol address of the underlay infrastructure layer cluster, and adds the virtual expansion LAN protocol head, the user data packet protocol head and the outer layer Internet protocol address and physical address head. And the virtual expanded local area network tunnel endpoint equipment sends the packaged data packet as a data packet to be analyzed to the switch through the network card of the server where the data packet is located. And then the exchanger forwards the encapsulated data packet to be analyzed to a server of the underlay infrastructure layer cluster through two layers and/or three layers according to a destination address in an outer internet protocol address header in the data packet to be analyzed.
In some embodiments, when a server of an underlay infrastructure layer cluster receives a first data packet, that is, a first to-be-analyzed data packet, sent by a server of an overlay virtual cluster, in a process of processing the data packet by an inner core protocol stack, first key information is generated according to inner layer five-tuple (source IP, source port, destination IP, destination port, transport layer protocol) information of the data, a key information base is generated according to the obtained key information, and the key information base can be updated according to matching between the key information of each to-be-analyzed data packet and contents in the key information base.
Step S102: and determining a first data packet according to the first key information.
Here, the first data packet is obtained by performing outer layer protocol parsing on the data packet to be parsed. The server of the Underlay infrastructure layer cluster receives a data packet to be analyzed sent by the server covering the virtual cluster by overlay by using a network card, and the data packet structure to be analyzed is provided with an outer layer data packet, an inner layer data packet and a virtual expansion local area network (VLAN) head connecting the outer layer data packet and the inner layer data packet. The outer layer data packet at least carries an outer layer physical address head, an outer layer internet protocol address head and an outer layer user data packet protocol message head. The inner layer data packet is a virtual extended local area network identifier and at least carries service request data corresponding to the data packet to be analyzed.
After a server of the underlay infrastructure layer cluster receives the data packet to be analyzed, an inner core protocol stack is adopted to analyze the data packet layer by layer, in the process of analyzing layer by layer, the data packet is analyzed according to an outer layer protocol to obtain outer layer data, namely a first data packet, in the data packet to be analyzed, and then inner layer analysis is continued to obtain inner layer data, namely a second data packet, in the data packet to be analyzed. Here, the outer layer protocol parsing refers to parsing the packet to be parsed to obtain a user packet protocol packet, i.e. a first packet, in outer layer data in the packet to be parsed.
After a first to-be-analyzed data packet sent by an overlay coverage virtual cluster is received, in the process of analyzing the data packet layer by adopting a kernel protocol stack, generating and storing key information of the data packet according to inner layer quintuple information in the first to-be-analyzed data packet to obtain a preset key information base. After receiving a next data packet to be analyzed, analyzing the data packet to be analyzed layer by layer to obtain key information of the next data packet, determining whether related key information is matched with the key information in a preset key information base, and when the matched key information does not exist, performing outer-layer protocol analysis on the data packet to obtain a first data packet; and when the matched key information exists, skipping the outer layer protocol analysis process, and directly performing inner layer protocol analysis to accelerate the analysis process of the data packet to be analyzed.
After the outer layer protocol analysis is performed on the data packet to be analyzed, a first data packet, namely a user data packet, is obtained, and the first data packet contains the virtual extended local area network header information. And submitting the first data packet to a user mode program connected with a virtual network card device arranged on a server of the underlay infrastructure layer cluster so as to perform next processing on the first data packet.
Step S103: and carrying out inner layer protocol analysis on the first data packet to obtain a second data packet.
Here, the inner layer protocol analysis refers to an analysis process of analyzing a user data packet corresponding to a data packet to be analyzed to obtain a service data packet in the data packet to be analyzed.
Because the original virtual device on the server of the underlay infrastructure layer cluster can only analyze and respond to the single-layer data packet obtained by converting the two-layer data packet sent by the overlay virtual cluster server, the two-layer data packet sent by the overlay virtual cluster server cannot directly respond. Therefore, there is a need for an improvement on the server of the underlay infrastructure layer cluster, and a virtual network card device is arranged on the server of the underlay infrastructure layer cluster. The virtual device can exchange data between a data packet obtained by the kernel protocol stack and the user mode program by using the virtual network card, and the virtual device can continuously perform inner layer protocol analysis on a first data packet obtained by performing outer layer protocol analysis on the data to be analyzed by using the kernel protocol stack to obtain service data in the data to be analyzed, namely a second data packet. Therefore, the two-layer data packet sent by the overlay virtual cluster server can be directly analyzed twice at the server end of the underlay infrastructure layer cluster, and the service data packet carried in the data packet to be analyzed is obtained.
And the virtual equipment arranged on the server of the Underalay infrastructure layer cluster receives the first data packet, and analyzes the first data packet layer by layer through the kernel protocol stack to obtain an outer layer source Internet protocol address, an inner layer source Internet protocol address and source port information of the first data packet. And then mapping the virtual expansion local area network head in the first data packet with the inner and outer layer source internet protocol addresses and the inner layer source port to obtain the association relation among the virtual expansion local area network head, the outer layer data and the inner layer data.
And the virtual equipment arranged on the server of the underwlay infrastructure layer cluster performs inner layer protocol analysis on the first data packet by adopting an inner core protocol stack, and removes a virtual extended local area network (VLAN) header in the first data packet to obtain a second data packet, namely a service request data packet. And sending the second data packet to an application program connected with a server of the underlay infrastructure layer cluster through a corresponding interface for processing.
Step S104: and processing the second data packet to obtain a target data packet.
Here, an application connected to a server of the underlay infrastructure layer cluster receives and processes the second packet, generating a response packet. And the response data packet is sent to the kernel protocol stack through a corresponding interface to be encapsulated layer by layer. The response data packet is packaged by the kernel protocol stack, then the response data packet is sent by a virtual device, namely a virtual network card arranged on a server of an underlay infrastructure layer cluster, and is acquired by a user mode program of the virtual device, the user mode program analyzes to obtain an inner layer target internet protocol address and a target port in the response data packet, and determines an outer layer target internet protocol address and virtual expansion local area network header information according to an incidence relation among a virtual expansion local area network header, outer layer data and inner layer data established in the process of analyzing the data packet to be analyzed. And the user mode program of the virtual equipment adds the head information of the virtual extended local area network to the head of the response data packet message, and sends the response data packet data to the kernel protocol stack according to the outer-layer target internet protocol address to carry out layer-by-layer encapsulation to obtain a target data packet.
Step S105: and feeding back the target data packet to a server of the overlay virtual cluster.
Here, after the server of the underlay infrastructure layer cluster processes the to-be-analyzed data packet sent by the overlay virtual cluster server to obtain the target data packet, the server of the underlay infrastructure layer cluster needs to feed back the target data packet to the server of the overlay virtual cluster.
In some implementations, the servers of the underlay infrastructure layer cluster first send the target data packet to the switches connected to the underlay infrastructure layer cluster and the overlay virtual cluster through the physical network cards. And the switch sends the target data packet to the overlay virtual cluster server. After receiving the target data packet, the overlay virtual cluster server decapsulates the target data packet through the virtual extended local area network tunnel endpoint device, and then forwards the target data packet to a virtual machine of the overlay virtual cluster server.
In the embodiment of the application, an underlay infrastructure layer cluster server receives a to-be-analyzed data packet which is sent by an overlay virtual cluster server and is not converted, and under the condition that first key information of the to-be-analyzed data packet does not exist in a preset key information base, the to-be-analyzed data packet is directly analyzed twice to obtain a second data packet, the second data packet is processed to obtain a target data packet, and the target data packet is fed back to the overlay virtual cluster server through the underlay infrastructure layer cluster server; therefore, the cluster of the overlay virtual network does not need to be changed, the underlay infrastructure layer cluster server can directly receive the data packet to be analyzed which is sent by the server of the overlay virtual cluster and is not converted, and the data packet to be analyzed is directly analyzed twice under the condition that no new network equipment is introduced, so that the service data packet corresponding to the data packet to be analyzed is obtained, the communication efficiency between the virtual cluster and the underlay infrastructure layer cluster is improved, the communication time delay is reduced, and the investment cost is also reduced.
In some embodiments, after the to-be-analyzed data packet is analyzed to obtain the first key information, the first data packet may be obtained through the following steps, that is, step S101 may be implemented through the following steps:
step S1011: and determining whether the first key information is included in a preset key information base.
The method includes the steps that an Underlay infrastructure layer cluster server receives a first data packet to be analyzed sent by an overlay virtual cluster server, in the process of carrying out protocol analysis on the data packet, first key information can be generated according to inner layer quintuple (source IP, source port, destination IP, destination port and transport layer protocol) information of the data, a preset key information base is generated according to the obtained key information, and matching can be carried out on the key information of each data packet to be analyzed and the content in the key information base so as to update the preset key information base.
Step S102: and under the condition that the first key information is not included in the preset key information base, performing outer layer protocol analysis on the data packet to be analyzed to obtain a first data packet.
After receiving a data packet to be analyzed, analyzing the data packet to be analyzed layer by layer to obtain key information of the data packet, determining whether related key information is matched with the key information in a preset key information base, and when the matched key information does not exist, performing outer-layer protocol analysis on the data packet to obtain a first data packet; and when the matched key information exists, skipping the outer layer protocol analysis process, and directly performing inner layer protocol analysis to accelerate the analysis process of the data packet to be analyzed.
After the outer layer protocol analysis is performed on the data packet to be analyzed, a first data packet, namely a user data packet, is obtained, and the first data packet contains the virtual extended local area network header information. And submitting the first data packet to a user mode program connected with a virtual network card device arranged on a server of the basic architecture layer cluster so as to perform the next processing on the first data packet.
In some embodiments, when the preset key information base includes the first key information, an inner layer protocol is analyzed on the data packet to be analyzed, so as to obtain the second data packet.
When the overlay virtual cluster and the underlay infrastructure layer cluster perform data communication, data packet structures among data packets in the same data stream are the same, outer layer internet protocol addresses of the data packets are the same, the difference is an inner layer internet protocol address carried in each data packet, and key information of the data packets is related to the inner layer internet protocol address.
Therefore, when the key information matched with the data packet to be analyzed exists in the preset key information base, the outer-layer protocol analysis process is skipped, and the inner-layer protocol analysis is directly carried out, so that the analysis process of the data packet to be analyzed is accelerated, and the data communication efficiency is improved.
In some embodiments, step S102 may be implemented by the following steps to determine the first key information of the data packet:
the method comprises the following steps: and analyzing the data packet to be analyzed layer by adopting a kernel protocol stack to obtain quintuple information of the data packet to be analyzed.
The protocol stack is the sum of the protocols of each layer in the network, which vividly reflects the process of file transmission in the network, from the upper layer protocol to the bottom layer protocol, and then from the bottom layer protocol to the upper layer protocol. The quintuple information refers to a source internet protocol address, a source port, a destination internet protocol address, a destination port and a transport layer protocol carried in the data packet. In the process of data communication, one connection of two communication parties is identified by quintuple information, and different communication sessions can be distinguished through the quintuple information carried in a data packet. In the process of analyzing the data packet to be analyzed layer by layer, the kernel protocol stack can be adopted to remove the message header in each layer of protocol carried in the data packet, so as to obtain the data information in the data packet.
Step two: and generating the first key information according to the quintuple information.
Here, the first key information may be generated from a source internet protocol address, a source port, a destination internet protocol address, a destination port, and a transport layer protocol. The first key information is related to inner layer data in the data packet to be analyzed.
In this way, in the process of analyzing the data packet to be analyzed layer by using the kernel protocol stack, quintuple information of the data packet to be analyzed is obtained, and the first key information is determined according to the quintuple information, so that the analyzing flow can be determined according to the first key information.
In some embodiments, after determining the first key information of the data packet, the preset key information base may be further updated by:
and under the condition that the first key information is not included in a preset key information base, storing the first key information in the preset key information base to obtain an updated key information base.
Here, when the first key information is not included in the preset key information base, the first key information is stored in the preset key information base, and the key information base is updated.
Therefore, the content of the preset key information base can be improved, when a subsequent data packet is received, the process of analyzing the data to be analyzed is accelerated according to the content in the updated database, and the communication efficiency is improved.
An embodiment of the present application provides a data processing method, and fig. 2 is another schematic implementation flow diagram of the data processing method provided in the embodiment of the present application, and as shown in fig. 2, step S104 may be implemented by the following steps to determine a target data packet:
step S201: and responding to the second data packet by adopting an application program of the underlay infrastructure layer cluster server to obtain a response data packet.
Here, the application program refers to a program connected to the underlay infrastructure layer cluster server, and may perform response processing on the service request information in the second data packet, and obtain a response data packet after the processing is completed.
Step S202: and encapsulating the response data packet by adopting a kernel protocol stack to obtain an encapsulated data packet.
Here, after an application program connected to the underlay infrastructure layer cluster server responds to a service request carried in a data packet to be analyzed, the obtained response data packet needs to be encapsulated, so that the obtained encapsulated data packet is fed back to the server covering the virtual cluster by the overlay.
Step S203: and analyzing the encapsulated data packet by adopting a virtual network card to obtain the inner-layer data information of the response data packet.
Here, the virtual network card is a virtual device installed on the underlay infrastructure layer cluster server, and the user mode program of the virtual network card may parse the encapsulated packet and obtain the inner layer data information such as the inner layer destination internet protocol address and the destination port of the encapsulated packet.
Step S204: and determining outer layer data information and connector information corresponding to the inner layer data information of the response data packet based on a preset mapping relation.
Here, the connection header information is information for connecting the first packet and the second packet, that is, the connection header information is information for connecting the inner layer data and the outer layer data, and the connection header information is a virtual extended lan header. The preset mapping relation refers to an association relation among a virtual extended local area network header, outer-layer data information and inner-layer data information which is established in the process of analyzing the data packet to be analyzed. After the inner layer data information of the encapsulated data packet is obtained, the outer layer target internet protocol address and the virtual extended local area network header information which are stored in the process of analyzing the data packet to be analyzed before can be searched according to the preset mapping relation, and the outer layer data information and the connector information which correspond to the inner layer data information of the encapsulated data packet are determined.
Step S205: and packaging the packaged data based on the outer layer data information of the response data packet to obtain the target data packet.
The user mode program of the virtual network card adds the connector information to the head of a data packet message of the encapsulated data packet, sends the encapsulated data packet to a kernel protocol stack according to outer data information, namely an outer destination internet protocol address, and encapsulates the encapsulated data packet layer by adopting the kernel protocol stack to obtain a target data packet.
Therefore, after the underlay infrastructure layer cluster server responds to the data packet to be analyzed, the underlay infrastructure layer cluster server directly encapsulates the generated response data packet, and the target data packet which needs to be fed back to the overlay coverage virtual cluster can be obtained without the help of external equipment or modifying an address, so that the data communication efficiency is improved, and the data communication time delay is reduced.
In some embodiments, before determining the outer layer data information and the connection header information corresponding to the inner layer data information of the response packet based on the preset mapping relationship, the preset mapping relationship needs to be established through the following steps:
the method comprises the following steps: and acquiring outer layer data information and the connector information corresponding to the first data packet.
Here, the packet structure to be parsed has an outer layer packet and an inner layer packet, and a connector connecting the outer layer packet and the inner layer packet, i.e., a virtual extended lan header. The outer layer data packet at least carries an outer layer physical address head, an outer layer internet protocol address head and an outer layer user data packet protocol message head. The outer layer data information is information carried in the outer layer data packet. When the user mode program of the virtual network card adopts the kernel protocol stack to analyze the data packet to be analyzed layer by layer, the outer layer data information corresponding to the first data packet, namely the outer layer source internet protocol address and the connector information carried by the first data packet, can be obtained from the kernel of the server.
Step two: and determining inner layer data information corresponding to the first data packet.
Here, the to-be-analyzed packet structure has an inner layer packet, and the inner layer packet is a virtual extensible local area network identifier and carries at least service request data corresponding to the to-be-analyzed packet. The inner layer data information refers to data information corresponding to the inner layer data packet. In the process of analyzing a first data packet of a data packet to be analyzed layer by layer, a user mode program of the virtual network card can directly acquire inner layer data information corresponding to the first data packet.
Step three: and establishing an association relation among the outer layer data information, the inner layer data information and the connector information corresponding to the first data packet to obtain the preset mapping relation.
Here, the connection header information is information for connecting the outer layer packet and the inner layer packet corresponding to the packet to be parsed. In the process of analyzing the data packet to be analyzed to obtain a second data packet, i.e., a service data packet, the connector information carried by the first data packet needs to be removed to obtain the second data packet. The method includes the steps that an application program of an underlay infrastructure layer cluster server responds to a data packet to be analyzed to obtain a response data packet, a target data packet obtained by processing the response data packet needs to be fed back to an overlay coverage virtual cluster server, in the process of the target data packet obtained by processing the response data packet, outer layer data information, inner layer data information and connector information corresponding to the response data packet need to be packaged in the target data packet to obtain a data packet in a virtual expansion local area network transmission format, and at this time, corresponding outer layer data information and connector information need to be determined according to the inner layer data information and a mapping relation in the response data packet. Therefore, in the process of analyzing the data packet to be analyzed layer by layer to obtain the second data packet, the association relationship among the outer layer data information, the inner layer data information and the connector information corresponding to the first data packet is established to obtain the preset mapping relationship.
Therefore, in the process of analyzing the first data packet corresponding to the data packet to be analyzed layer by layer to obtain the second data packet, namely the service data packet, the preset mapping relation among the outer layer data information, the inner layer data information and the connector information corresponding to the first data packet is established, so that after the underlay infrastructure layer cluster server responds to the second data packet, in the process of packaging the response data packet, the target data packet can be obtained according to the preset mapping relation, the purpose that the data packet is packaged twice at the underlay infrastructure layer cluster end to obtain the target data packet sent to the overlay coverage virtual cluster is achieved, the communication time delay is reduced, the communication efficiency is improved, and the communication cost is reduced.
In some embodiments, step S103 may be implemented by:
and carrying out inner layer protocol analysis on the first data packet by adopting a kernel protocol stack through a virtual network card to obtain the second data packet.
Here, the virtual network card refers to a virtual device that is set on a server of an underlay infrastructure layer cluster, and the virtual device is used as the virtual network card, and can exchange data between a data packet obtained by a kernel protocol stack and a user mode program, and continuously perform kernel protocol analysis on the first data packet by using the kernel protocol stack to obtain service data in data to be analyzed, that is, a second data packet.
Therefore, by arranging the virtual network card on the server of the underlay infrastructure layer cluster, new network equipment is not required to be added between the underlay infrastructure layer cluster and the overlay coverage virtual cluster, and the virtual network card of the server of the underlay infrastructure layer cluster and the kernel protocol stack are adopted to carry out secondary analysis on the data packet to be analyzed, namely, inner layer protocol analysis, so that the communication cost is reduced, the communication time delay is reduced, and the communication efficiency is improved.
In some embodiments, S201 may be implemented by the following steps to obtain a response packet:
and processing the service request corresponding to the second data packet by adopting the application program to obtain the response data packet.
Here, the application is an application connected to a server of the underlay infrastructure layer cluster. After the data packet to be analyzed is analyzed to obtain a second data packet, i.e., a service data packet, the second data packet may be sent to the application program corresponding to the service data request through the response interface according to the service request corresponding to the service data packet, so that the application program may process the service request corresponding to the second data packet to obtain a response data packet.
In this way, the application program corresponding to the underlay infrastructure layer cluster can be adopted to respond to the data packet to be analyzed, which is sent by the overlay virtual cluster, so as to obtain response data.
There are two processes for processing virtual data packets on servers of an underlay infrastructure layer cluster, namely, the reception of original data packets and the transmission of response data packets. From the perspective of the server application, the application is unaware of the existence of the underlay infrastructure layer network, so that both data reception and transmission by the application are based on overlay virtual network addresses. This requires a virtual network card with an overlay virtual network address with which the application interacts directly. According to the embodiment of the application, a gateway and a network address conversion device are not needed, the network address conversion device is utilized, the virtual device is used as the virtual network card, the mapping relation between the virtual expansion local area network and the data stream is added in the user mode logic of the virtual device, the data packet is analyzed in the underlay infrastructure layer cluster, and the virtual data are received and sent by the server.
Based on this, an embodiment of the present application provides a system overall architecture for performing data intercommunication between an overlay virtual cluster and an underlay infrastructure layer cluster, and fig. 3 is a schematic diagram of a system overall architecture for performing data intercommunication between an overlay virtual cluster and an underlay infrastructure layer cluster provided in an embodiment of the present application, as shown in fig. 3:
the overall architecture of the system comprises: an overlay virtual cluster 301, an underlay infrastructure layer cluster 302, and a switching device 303 connecting the overlay virtual cluster and the underlay infrastructure layer cluster.
The Overlay virtual cluster 301 is a cluster using Overlay virtual network technology, and includes a server 304, a virtual machine 305, a virtual extended lan tunnel endpoint device 306, and a switch 307.
The server 304 is a hardware device in the overlay virtual cluster, and provides the capability of computing, storing and the like.
The virtual machine 305 is generated by a server through a virtualization technology, and a plurality of virtual machines on the same server share server resources and communicate with each other through a software switch on the server. In the overlay virtual cluster, the virtual machine 305 is a terminal of the communication system, i.e., the virtual machine transmits and receives original data packets.
The virtual lan tunnel endpoint device 306 is responsible for encapsulating and decapsulating the virtual lan packet. This functionality is typically implemented by software on the server 304.
The switch 307 is a hardware device in the overlay virtual cluster, and is connected to a plurality of servers 304 through cables for mutual communication among the servers and communication with other servers in the cluster.
The Underlay layer cluster 302 is a cluster using Underlay infrastructure layer network technology and includes a server 308 and a switch 309.
The server 308 is a hardware device in the underlay infrastructure layer cluster 302 that provides computing, storage, and the like capabilities. In the underlay infrastructure layer cluster 302, the server 308 is a terminal of the communication system, i.e. data packets are sent and received by the server 308. In this embodiment, the server 308 is provided with the virtual network card 310, which is used to analyze the data received by the server twice, and the virtual network card 310 may be used to package the response data twice, where the response data is obtained by performing response processing on the analyzed data by using the application program 311.
The switch 309 is a hardware device in the cluster, and is connected to a plurality of servers 308 through cables for communication among the servers and communication with other servers in the cluster.
The embodiment of the application provides a data processing method. Fig. 4 is a schematic flow chart of another implementation of the data processing method according to the embodiment of the present application. As shown in fig. 4, the data processing method includes:
step S401: and the Overlay virtual cluster machine A sends a data packet to be analyzed to the underlay infrastructure layer cluster server B.
Here, the virtual machine a in the overlay virtual cluster encapsulates a corresponding data packet according to the physical address of the server B and the internet protocol address, and sends the data packet to the virtual extended local area network tunnel endpoint device of the server where the virtual machine a is located.
The virtual expansion local area network tunnel endpoint equipment searches the mapping table, and obtains the virtual expansion local area network tunnel endpoint equipment corresponding to the server B according to the virtual physical address of the server B. And then, the virtual expanded local area network tunnel endpoint equipment of the A executes virtual expanded local area network data encapsulation, and adds a virtual expanded local area network protocol header, a user data packet protocol header, an outer layer internet protocol address and a physical address header.
And the virtual expansion local area network tunnel endpoint equipment of the virtual machine A sends the packaged data packet to the switch through the network card of the server where the virtual machine A is located.
Step S402: and the switch forwards the data packet to be analyzed to the switch connected with the underlay infrastructure layer cluster server B.
The exchanger transmits the data packet to the exchanger connected with the server B through two-layer and/or three-layer transmission according to the destination address in the outer-layer internet protocol address header.
Step S403: and the Underlay infrastructure layer cluster server B receives the data packet to be analyzed and analyzes the data packet to be analyzed to obtain a second data packet.
Here, the reception of the data packet by the underlay infrastructure layer cluster server B can be realized by the following steps:
the method comprises the following steps: after the network card of the Underlay infrastructure layer cluster server B receives the data packet to be analyzed, the kernel protocol stack analyzes the data packet layer by layer to obtain the user data of the user data packet protocol, i.e. the first data packet, and at this time, the outer layer protocol header is processed. And then, user data packet protocol user data containing virtual extended local area network header information, namely a first data packet, is submitted to an application program connected with an overlay virtual network file (/ dev/tapx) for further processing.
Step two: in order to improve the throughput of accessing the server B, the first to-be-analyzed data packet of each data stream is processed in the first step, and in the process of processing the first to-be-analyzed data packet by the kernel protocol stack, key information is generated according to the inner five-tuple (source internet protocol address, source port, destination internet protocol address, destination port, transport layer protocol) information of the first to-be-analyzed data packet. And generating key information for the received subsequent data packet in the same way, judging whether the key information exists in the kernel, if so, directly skipping the analysis of the outer layer protocol stack, shifting to the initial position of the inner layer protocol stack, forwarding the data packet to the virtual network card, and entering the fourth step. If not, the generated key information is stored in the kernel, and the step three is entered.
Step three: the user mode program of the virtual network card device, that is, the application program connected to the overlay virtual network file, first obtains the outer layer source internet protocol address of the first data packet from the kernel, and directly obtains the inner layer source internet protocol address and the source port information through the data packet. And then mapping and storing the virtual expanded local area network head, the inner layer source port and the outer layer source Internet protocol address. And finally, stripping the virtual expanded local area network head, and sending the data packet to overlay to cover the virtual network file.
Step four: the data reaching the overlay virtual network file is received by the virtual network card, and the data packet is analyzed layer by layer again through the kernel protocol stack of the virtual network card, so that a real service data packet, namely a second data packet is obtained, and at the moment, an inner layer protocol header is processed. The service data packet, i.e. the second data packet, is submitted to the application program of the server B through the corresponding interface for processing.
The embodiment of the application provides a virtual network card device. Fig. 5 is a schematic diagram of a working principle of a virtual network card provided in an embodiment of the present application, as shown in fig. 5:
the physical network card 501 is connected to an external network through a network cable 502, after receiving a data packet, the physical network card 501 sends the data packet to a network protocol stack 503 of a kernel 514, the network protocol stack 503 analyzes the data packet layer by layer to obtain a user data packet protocol data packet 504, the user data packet protocol data packet 504 is sent to a user mode program 506 through a socket application program interface 505, the user mode program 506 writes the user data packet protocol data packet 505 into an overlay virtual network file 507, the overlay virtual network file 507 sends the user data packet protocol data packet 504 to a virtual network card 508, the virtual network card 508 sends the user data packet protocol data packet 504 to a network protocol stack 509 of the kernel 514, the network protocol stack 509 analyzes the user data packet protocol data packet 504 layer by layer to obtain transmission control protocol data 510, user data packet protocol data 511 and original data 512, and informs an application program waiting at an upper layer through a socket application program interface 513.
Step S404: the Underlay infrastructure layer cluster server B responds to the second packet data.
Here, the server B application generates response data to the received second data packet. And the response data is sent to the kernel protocol stack through the corresponding interface to be packaged layer by layer.
The response data packet encapsulated by the kernel protocol stack is sent out through the virtual network card, and the response data packet is covered by the virtual network file through overlay and is acquired by a user mode program of the virtual network card, and the user mode program acquires the inner layer target internet protocol address and the target port through analysis. And searching and acquiring the saved outer layer target internet protocol address and the virtual extended local area network header information through the target address.
And the user mode program of the virtual network card adds the head information of the virtual extended local area network obtained by searching at the head part of the data packet and sends the data to the kernel protocol stack for layer-by-layer encapsulation according to the outer-layer target internet protocol address. And the encapsulated data packet, namely the target data packet, is sent to the connected switch through the physical network card of the server B.
Step S405: and the switch forwards the target data packet to a server of the overlay virtual cluster machine A.
The exchanger transmits the target data packet to a server of the overlay virtual cluster machine A through two-layer and/or three-layer forwarding according to the destination address in the outer-layer internet protocol address header.
Step S406: and the Overlay covers the server where the virtual cluster virtual machine A is positioned to receive the target data packet.
And after receiving the target data packet, the server of the virtual machine A decapsulates the target data packet through the virtual extended local area network tunnel endpoint equipment and forwards the target data packet to the virtual machine A.
In the embodiment of the application, the data packet to be analyzed sent by the overlay virtual cluster is directly forwarded through the intercommunicable switch, the corresponding network equipment is multiplexed, no new network equipment is introduced, and the high efficiency of the forwarding equipment is utilized. The data packet sent by the overlay virtual cluster is forwarded by the switch to directly reach a destination server of the underlay infrastructure layer cluster, a gateway and a network address conversion device are not needed in the middle, the access from the overlay virtual network virtual machine to the server can be received and interpreted only through the underlay infrastructure layer server without the help of the gateway, the hop number of the data packet is the lowest, and the time delay is correspondingly reduced to the lowest. In addition, the overlay virtual cluster does not need to be modified, and a newly-added underlay infrastructure layer address is not introduced.
Fig. 6 is a schematic diagram illustrating a structure of a data processing apparatus according to an embodiment of the present disclosure, and as shown in fig. 6, the data processing apparatus 600 includes: a first determining module 601, a second determining module 602, a parsing module 603, a processing module 604, and a feedback module 605, wherein:
the first determining module 601 is configured to determine first key information according to a to-be-analyzed data packet sent by an overlay virtual cluster;
the second determining module 602 is configured to determine a first data packet according to the first key information, where the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed;
the analysis module 603 is configured to perform inner layer protocol analysis on the first data packet to obtain a second data packet;
the processing module 604 is configured to process the second data packet to obtain a target data packet;
the feedback module 605 is configured to feed the target data packet back to the server of the overlay virtual cluster.
In the above apparatus, the first determining module 601 includes:
the first determining submodule is used for determining whether a preset key information base comprises the first key information or not;
and the first analysis submodule is used for carrying out outer layer protocol analysis on the data packet to be analyzed under the condition that the preset key information base does not include the first key information, so as to obtain a first data packet.
In the above apparatus, the first determining module 601 further includes:
and the second determining submodule is used for carrying out inner layer protocol analysis on the data packet to be analyzed under the condition that the preset key information base contains the first key information to obtain the second data packet.
In the above apparatus, the first determining module 601 includes:
the second analysis submodule is used for analyzing the data packet to be analyzed layer by adopting a kernel protocol stack to acquire quintuple information of the data packet to be analyzed;
and the generating submodule is used for generating the first key information according to the quintuple information.
In the above apparatus, the apparatus further comprises:
and the updating module is used for storing the first key information in a preset key information base to obtain an updated key information base under the condition that the first key information is not included in the preset key information base.
In the above apparatus, the processing module 604 includes:
the response submodule is used for responding to the second data packet by adopting an application program of the underlay infrastructure layer cluster server to obtain a response data packet;
the first packaging submodule is used for packaging the response data packet by adopting a kernel protocol stack to obtain a packaged data packet;
the third analysis submodule is used for analyzing the packaging data packet by adopting a virtual network card to obtain inner-layer data information of the response data packet;
the third determining submodule is used for determining outer layer data information and connector information corresponding to the inner layer data information of the response data packet based on a preset mapping relation; the connection header information is information for connecting the first data packet and the second data packet;
and the second packaging submodule is used for packaging the packaged data based on the outer layer data information of the response data packet to obtain the target data packet.
In the above apparatus, the processing module 604 further includes:
the obtaining submodule is used for obtaining outer layer data information and the connector information corresponding to the first data packet;
the fourth determining submodule is used for determining the inner layer data information corresponding to the first data packet;
and the establishing submodule is used for establishing an incidence relation among the outer layer data information, the inner layer data information and the connector information corresponding to the first data packet to obtain the preset mapping relation.
In the above apparatus, the parsing module includes:
and the fourth analysis submodule is used for carrying out inner layer protocol analysis on the first data packet by adopting a kernel protocol stack through the virtual network card to obtain the second data packet.
In the apparatus, the response submodule is further configured to process the service request corresponding to the second data packet by using the application program, so as to obtain the response data packet.
The embodiment of the present application further provides a data processing apparatus, which includes modules, and sub-modules and units included in the modules, and can be implemented by a processor in a terminal; of course, the implementation can also be realized through a specific logic circuit; in implementation, the processor may be a Central Processing Unit (CPU), a Microprocessor (MPU), a Digital Signal Processor (DSP), a Field Programmable Gate Array (FPGA), or the like.
Correspondingly, an embodiment of the present application provides a terminal, fig. 7 is a schematic view of a composition structure of the terminal provided in the embodiment of the present application, and as shown in fig. 7, the terminal 700 at least includes: a controller 701 and a storage medium 702 configured to store executable instructions, wherein:
the controller 701 is configured to execute stored executable instructions for implementing the provided data processing method.
It should be noted that the above description of the terminal embodiment is similar to the description of the method embodiment, and has similar beneficial effects to the method embodiment. For technical details not disclosed in the embodiments of the terminal of the present application, reference is made to the description of the embodiments of the method of the present application for understanding.
Correspondingly, an embodiment of the present application provides a computer storage medium, in which computer-executable instructions are stored, and the computer-executable instructions are configured to execute the data processing method provided in other embodiments of the present application.
Here, it should be noted that: the above description of the storage medium and device embodiments is similar to the description of the method embodiments above, with similar advantageous effects as the method embodiments. For technical details not disclosed in the embodiments of the storage medium and the apparatus of the present application, reference is made to the description of the embodiments of the method of the present application for understanding.
It should be appreciated that reference throughout this specification to "one embodiment" or "an embodiment" means that a particular feature, structure or characteristic described in connection with the embodiment is included in at least one embodiment of the present application. Thus, the appearances of the phrases "in one embodiment" or "in an embodiment" in various places throughout this specification are not necessarily all referring to the same embodiment. Furthermore, the particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. It should be understood that, in the various embodiments of the present application, the sequence numbers of the above-mentioned processes do not imply any order of execution, and the order of execution of the processes should be determined by their functions and inherent logic, and should not constitute any limitation to the implementation process of the embodiments of the present application. The above-mentioned serial numbers of the embodiments of the present application are merely for description, and do not represent the advantages and disadvantages of the embodiments.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising a … …" does not exclude the presence of another identical element in a process, method, article, or apparatus that comprises the element.
In the several embodiments provided in the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. The above-described device embodiments are merely illustrative, for example, the division of the unit is only a logical functional division, and there may be other division ways in actual implementation, such as: multiple units or components may be combined, or may be integrated into another system, or some features may be omitted, or not implemented. In addition, the coupling, direct coupling or communication connection between the components shown or discussed may be through some interfaces, and the indirect coupling or communication connection between the devices or units may be electrical, mechanical or in other forms.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units; can be located in one place or distributed on a plurality of network units; some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, all functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may be separately regarded as one unit, or two or more units may be integrated into one unit; the integrated unit can be realized in a form of hardware, or in a form of hardware plus a software functional unit.
Those of ordinary skill in the art will understand that: all or part of the steps for realizing the method embodiments can be completed by hardware related to program instructions, the program can be stored in a computer readable storage medium, and the program executes the steps comprising the method embodiments when executed; and the aforementioned storage medium includes: various media that can store program codes, such as a removable Memory device, a Read Only Memory (ROM), a magnetic disk, or an optical disk.
Alternatively, the integrated units described above in the present application may be stored in a computer-readable storage medium if they are implemented in the form of software functional modules and sold or used as independent products. Based on such understanding, the technical solutions of the embodiments of the present application may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing an electronic device (which may be a laptop, a tablet computer, a desktop computer, a server, a mobile phone, etc.) to execute all or part of the methods described in the embodiments of the present application. And the aforementioned storage medium includes: a removable storage device, a ROM, a magnetic or optical disk, or other various media that can store program code.
The methods disclosed in the several method embodiments provided in the present application may be combined arbitrarily without conflict to obtain new method embodiments.
Features disclosed in several of the product embodiments provided in the present application may be combined in any combination to yield new product embodiments without conflict.
The features disclosed in the several method or apparatus embodiments provided in the present application may be combined arbitrarily, without conflict, to arrive at new method embodiments or apparatus embodiments.
The above description is only for the embodiments of the present application, but the scope of the present application is not limited thereto, and any person skilled in the art can easily conceive of changes or substitutions within the technical scope of the present application, and shall be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (12)
1. A data processing method is applied to an underlay infrastructure layer cluster server, and comprises the following steps:
determining first key information according to a data packet to be analyzed sent by an overlay coverage virtual cluster;
determining a first data packet according to the first key information, wherein the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed;
carrying out inner layer protocol analysis on the first data packet to obtain a second data packet;
processing the second data packet to obtain a target data packet;
and feeding back the target data packet to a server of the overlay virtual cluster.
2. The method of claim 1, wherein determining the first data packet according to the first key information comprises:
determining whether a preset key information base comprises the first key information or not;
and under the condition that the first key information is not included in the preset key information base, performing outer layer protocol analysis on the data packet to be analyzed to obtain a first data packet.
3. The method of claim 2, further comprising:
and under the condition that the preset key information base contains the first key information, carrying out inner layer protocol analysis on the data packet to be analyzed to obtain the second data packet.
4. The method according to claim 1, wherein the determining first key information according to the to-be-parsed data packet sent by the overlay virtual cluster includes:
adopting a kernel protocol stack to carry out layer-by-layer analysis on the data packet to be analyzed, and acquiring quintuple information of the data packet to be analyzed;
and generating the first key information according to the quintuple information.
5. The method according to claim 2, wherein after determining the first key information according to the packet to be parsed sent by the overlay virtual cluster, the method further comprises:
and under the condition that the first key information is not included in a preset key information base, storing the first key information in the preset key information base to obtain an updated key information base.
6. The method of claim 1, wherein the processing the second packet to obtain the destination packet comprises:
responding to the second data packet by adopting an application program of the underlay infrastructure layer cluster server to obtain a response data packet;
adopting a kernel protocol stack to package the response data packet to obtain a packaged data packet;
analyzing the encapsulated data packet by adopting a virtual network card to obtain inner-layer data information of the response data packet;
determining outer layer data information and connector information corresponding to the inner layer data information of the response data packet based on a preset mapping relation; the connection header information is information for connecting the first data packet and the second data packet;
and packaging the packaged data based on the outer layer data information of the response data packet to obtain the target data packet.
7. The method according to claim 6, wherein before determining, based on the preset mapping relationship, outer layer data information and connection header information corresponding to inner layer data information of the response packet, the method further comprises:
acquiring outer layer data information and the connector information corresponding to the first data packet;
determining inner layer data information corresponding to the first data packet;
and establishing an association relation among the outer layer data information, the inner layer data information and the connector information corresponding to the first data packet to obtain the preset mapping relation.
8. The method of claim 1, wherein performing inner layer protocol parsing on the first packet to obtain a second packet comprises:
and carrying out inner layer protocol analysis on the first data packet by adopting an inner core protocol stack through a virtual network card to obtain the second data packet.
9. The method of claim 6, wherein the responding to the second packet with the application of the underlay infrastructure layer cluster server to obtain a response packet comprises:
and processing the service request corresponding to the second data packet by adopting the application program to obtain the response data packet.
10. A data processing apparatus, wherein the apparatus is applied to an underlay infrastructure layer cluster server, the apparatus comprising:
the device comprises a first determining module, a second determining module and a sending module, wherein the first determining module is used for determining first key information according to a data packet to be analyzed, which is sent by an overlay coverage virtual cluster;
a second determining module, configured to determine a first data packet according to the first key information, where the first data packet is obtained by performing outer layer protocol analysis on the data packet to be analyzed;
the analysis module is used for carrying out inner layer protocol analysis on the first data packet to obtain a second data packet;
the processing module is used for processing the second data packet to obtain a target data packet;
and the feedback module is used for feeding the target data packet back to the server of the overlay coverage virtual cluster.
11. A terminal, characterized in that the terminal comprises at least: a controller and a storage medium configured to store executable instructions, wherein:
the controller is configured to execute stored executable instructions configured to perform the data processing method provided in any of the preceding claims 1 to 9.
12. A computer-readable storage medium having computer-executable instructions stored therein, the computer-executable instructions being configured to perform the data processing method provided by any one of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110644262.1A CN115460303A (en) | 2021-06-09 | 2021-06-09 | Data processing method, device, terminal and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110644262.1A CN115460303A (en) | 2021-06-09 | 2021-06-09 | Data processing method, device, terminal and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115460303A true CN115460303A (en) | 2022-12-09 |
Family
ID=84294381
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110644262.1A Pending CN115460303A (en) | 2021-06-09 | 2021-06-09 | Data processing method, device, terminal and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115460303A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116760795A (en) * | 2023-08-15 | 2023-09-15 | 中移(苏州)软件技术有限公司 | Network address translation NAT gateway equipment, message processing method and device |
-
2021
- 2021-06-09 CN CN202110644262.1A patent/CN115460303A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116760795A (en) * | 2023-08-15 | 2023-09-15 | 中移(苏州)软件技术有限公司 | Network address translation NAT gateway equipment, message processing method and device |
| CN116760795B (en) * | 2023-08-15 | 2023-12-08 | 中移(苏州)软件技术有限公司 | Network address translation NAT gateway equipment, message processing method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108449282B (en) | Load balancing method and device | |
| CN110557316B (en) | Message transmission method, system, device and computer readable storage medium | |
| CN109194660B (en) | Network access method and device of mobile terminal | |
| CN111131037B (en) | Data transmission method, device, medium and electronic equipment based on virtual gateway | |
| CN105453492A (en) | Switch clusters having layer-3 distributed router functionality | |
| KR20140057553A (en) | - virtualization gateway between virtualized and non-virtualized networks | |
| CN103650424A (en) | Implementation method and server of home gateway service function | |
| WO2016177145A1 (en) | Packet transmission method and device | |
| CN110213148B (en) | Data transmission method, system and device | |
| CN110855568B (en) | Message forwarding method and system | |
| WO2022001835A1 (en) | Method and apparatus for sending message, and network device, system and storage medium | |
| CN107948077B (en) | Method and device for forwarding data message | |
| CN112671938A (en) | Business service providing method and system and remote acceleration gateway | |
| US20230370899A1 (en) | Packet forwarding method, packet processing method, and device | |
| CN103795815A (en) | Network communication system and network communication method | |
| CN109246016B (en) | Cross-VXLAN message processing method and device | |
| CN114866472A (en) | Method and system for realizing open source community access in multi-mode network | |
| CN107733765B (en) | Mapping method, system and related equipment | |
| CN115460303A (en) | Data processing method, device, terminal and storage medium | |
| CN114640557A (en) | Gateway and cloud network system | |
| CN112968965A (en) | Metadata service method, server and storage medium for NFV network node | |
| CN113923158A (en) | Message forwarding, routing sending and receiving method and device | |
| CN116488958A (en) | Gateway processing method, virtual access gateway, virtual service gateway and related equipment | |
| CN110572326A (en) | Method, device, network equipment and system for establishing forwarding path | |
| WO2019134637A1 (en) | Method, device, and system for multi-type network virtualization overlay interconnection |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |