CN115473766A - Method and system for realizing vip based on distributed gateway - Google Patents
Method and system for realizing vip based on distributed gateway Download PDFInfo
- Publication number
- CN115473766A CN115473766A CN202211004332.8A CN202211004332A CN115473766A CN 115473766 A CN115473766 A CN 115473766A CN 202211004332 A CN202211004332 A CN 202211004332A CN 115473766 A CN115473766 A CN 115473766A
- Authority
- CN
- China
- Prior art keywords
- vip
- pod
- virtual machine
- entity
- crd
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 31
- 238000012217 deletion Methods 0.000 claims abstract description 23
- 230000037430 deletion Effects 0.000 claims abstract description 23
- 238000012544 monitoring process Methods 0.000 claims abstract description 23
- 238000001514 detection method Methods 0.000 claims description 28
- 230000008859 change Effects 0.000 claims description 15
- 238000006243 chemical reaction Methods 0.000 abstract description 3
- 230000005540 biological transmission Effects 0.000 abstract description 2
- 238000010586 diagram Methods 0.000 description 3
- 238000012423 maintenance Methods 0.000 description 2
- 230000002547 anomalous effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000013507 mapping Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
- H04L41/082—Configuration setting characterised by the conditions triggering a change of settings the condition being updates or upgrades of network functionality
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
- H04L43/0811—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Environmental & Geological Engineering (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a vip realization method and a vip realization system based on a distributed gateway, and relates to the technical field of data exchange networks in data transmission; the distributed gateway virtual machine architecture based on the kubernets cluster is additionally provided with a vip controller entity, a vip CRD resource and a vip agent entity pod, wherein the vip controller entity is used for monitoring the creation, updating and deletion of the vip CRD resource, executing the creation and deletion of the vip agent entity pod, issuing a flow table corresponding to a virtual machine on a network conversion entity and the like; defining basic information of using the vip by the virtual machine in the vip CRD resource; the vip agent entity exists in a cluster node where the virtual machine is located in a pod form, and is responsible for monitoring the service condition of the vip of the virtual machine and updating vip CRD resources.
Description
Technical Field
The invention discloses a method and a system, relates to the technical field of data switching networks in data transmission, and particularly relates to a vip implementation method and a vip implementation system based on a distributed gateway.
Background
Existing edge gateway technologies typically include both centralized and distributed. In a centralized gateway scenario, a gateway is usually located at a certain physical node, three layers of flow of all node virtual machines in the north-south direction and the east-west direction pass through the centralized gateway, and the gateway converts an internal address and an external address of the virtual machines so as to forward the flow.
In a distributed gateway scene, a node has a master role and multiple slave roles, a gateway is positioned at each physical node, a gateway address of an internal interface of a virtual machine is positioned on the gateway of a master node, the gateway is responsible for converting a virtual machine source address and a mapping address, the flow of the virtual machine of the master node is forwarded through the gateway on the master node, and the flow of the virtual machine on the slave node is forwarded from a gateway entity of the node after the gateway address and mac in a data message are replaced through a network control flow table.
In a service production environment, a distributed gateway is usually adopted to improve the network utilization rate and reduce the failure probability. However, in the existing distributed gateway scenario, the following problems exist: when the vip is used for a plurality of virtual machines, since the vip is randomly bound to a certain virtual machine, when the state of the virtual machine changes, the vip may drift to other virtual machines, for example, the vip drifts from the master node to the slave node virtual machine. Because the flow of the virtual machine realizes address conversion by binding the ovs flow table on the physical node, the outside of the virtual machine cannot sense the drift of the vip, and cannot update the corresponding network control flow table on the network switching entity of the physical node, so that the vip cannot be used in the distributed gateway scene.
Disclosure of Invention
The invention provides a distributed gateway-based vip implementation method and system aiming at the situation that a virtual machine cannot use vip due to vip drift in a distributed gateway scene, and the use of the vip by the virtual machine is guaranteed.
The specific scheme provided by the invention is as follows:
the invention provides a vip realization method based on a distributed gateway, which is characterized in that based on a distributed gateway virtual machine framework of a kubernets cluster, vip CRD resources of a virtual machine are established, and corresponding vip CRD resources are configured to be used when the virtual machine uses vip;
deploying a pod of the vip agent entity to a cluster node where the virtual machine is located;
monitoring the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executing the creation and deletion of the pod of the vip agent entity, and executing corresponding operation;
monitoring the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
and the vip controller entity monitors the vip CRD resource change, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip and ensures that the vip is always in an access state.
Further, in the method for implementing vip based on distributed gateway, the using a vip controller entity monitors creation of the vip CRD resource, and executes a corresponding operation, including:
acquiring all information defined in the vip CRD resource, including the vip information of the virtual machine,
querying a cluster node where a virtual machine pod is located in the kubernets cluster,
creating a pod of a vip agent entity on the cluster node, and injecting virtual machine vip information into the pod of the vip agent entity,
bridging the pod of the vip agent entity on a network exchange entity of the cluster node, issuing a rule of a network control flow table to the pod of the vip agent entity, and communicating the pod of the vip agent entity with the virtual machine pod of the cluster node.
Further, in the vip implementation method based on the distributed gateway, the monitoring, by the vip controller entity, of the deletion of the vip CRD resource, and the executing of the corresponding operation include:
inquiring all information defined by the current vip CRD resource, obtaining cluster node information,
deleting the pod of the corresponding vip agent entity on the cluster node,
deleting the network control flow table information corresponding to the pod of the vip agent entity in the network exchange entity on the cluster node,
and deleting the network control flow table information containing the vip in the network switching entity on the cluster node where the current binding vip virtual machine is located.
Further, in the vip implementation method based on the distributed gateway, the monitoring, by the vip controller entity, of the change of the vip CRD resource, and executing a corresponding operation includes:
acquiring updated vip CRD resource information, comparing with original vip CRD resource information, acquiring cluster node information before and after updating,
deleting the pod of the vip agent entity before updating, and recreating the pod of the vip agent entity after updating.
Further, in the vip implementation method based on the distributed gateway, the monitoring of the usage of the vip of the virtual machine through the pod includes:
and performing connectivity detection on the vip of the virtual machine at a certain time interval by using the pod, comparing the results of each connectivity detection with the results of the last connectivity detection, and updating cluster node information where the pod of the vip agent entity successfully performs the connectivity detection into the vip CRD resource.
The invention also provides a vip implementation system based on the distributed gateway, which comprises a control module and an agent module,
the control module establishes a vip CRD resource of the virtual machine based on a distributed gateway virtual machine architecture of the kubernets cluster, and configures the corresponding vip CRD resource for the virtual machine to use when using the vip;
the proxy module deploys the pod of the vip agent entity to the cluster node where the virtual machine is located;
the control module monitors the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executes the creation and deletion of the pod of the vip agent entity and executes corresponding operation;
the agent module monitors the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
the proxy module monitors the change of the vip CRD resources through the vip controller entity, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip, and ensures that the vip is always in an access state.
Further, in the vip implementation system based on the distributed gateway, the control module monitors creation of the vip CRD resource by using a vip controller entity, and executes a corresponding operation, including:
acquiring all information defined in the vip CRD resources, including virtual machine vip information,
querying a cluster node where a virtual machine pod is located in the kubernets cluster,
creating a pod of a vip agent entity on the cluster node, and injecting virtual machine vip information in the pod of the vip agent entity,
bridging the pod of the vip agent entity on a network exchange entity of the cluster node, issuing a rule of a network control flow table to the pod of the vip agent entity, and communicating the pod of the vip agent entity with the virtual machine pod of the cluster node.
Further, in the vip implementation system based on the distributed gateway, the control module monitors deletion of the vip CRD resource by using a vip controller entity, and executes a corresponding operation, including:
inquiring all information defined by the current vip CRD resource, obtaining cluster node information,
deleting the pod of the vip agent entity corresponding to the cluster node,
deleting the network control flow table information corresponding to the pod of the vip agent entity in the network exchange entity on the cluster node,
and deleting the network control flow table information containing the vip in the network switching entity on the cluster node where the current binding vip virtual machine is located.
Further, in the vip implementation system based on the distributed gateway, the control module monitors the change of the vip CRD resource by using a vip controller entity, and executes a corresponding operation, including:
acquiring updated vip CRD resource information, comparing with original vip CRD resource information, acquiring cluster node information before and after updating,
deleting the pod of the vip agent entity before updating, and recreating the pod of the vip agent entity after updating.
Further, the monitoring of the usage of the virtual machine vip by the proxy module through the pod in the vip implementation system based on the distributed gateway includes:
and performing connectivity detection on the vip of the virtual machine by using the pod at a certain time interval, comparing the results of each connectivity detection with the result of the last connectivity detection, and updating the cluster node information where the pod of the vip agent entity successfully performs the connectivity detection into the vip CRD resource.
The invention has the advantages that:
the invention provides a vip implementation method based on a distributed gateway, which solves the problem that a virtual machine vip in the existing distributed gateway scene cannot use the distributed gateway to only use a centralized gateway to carry out three-layer traffic forwarding in the north-south direction and the east-west direction, and realizes the function that the virtual machine vip uses the distributed gateway to carry out three-layer traffic forwarding in the north-south direction and the east-west direction;
monitoring the vip drifting condition in the virtual machine is realized, and meanwhile, when the vip drifts, corresponding network control flow tables on physical machines in front of and behind the virtual machine where the vip is located are automatically updated, so that the vip is ensured to be always in an accessible state;
the internal of the existing virtual machine does not need to be changed, and the virtual machine is not invaded;
and created vip CRD resources, etc. are loosely coupled to the overall system for easy expansion and maintenance.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic diagram of a usage scenario of a distributed edge gateway virtual machine vip in the prior art. In the figure, eth and ethX are used to represent names of network cards in a physical machine or a virtual machine, which are commonly labeled.
Fig. 2 is a schematic diagram of a use scenario of a distributed edge gateway virtual machine vip under the method of the present invention.
Fig. 3 is a schematic flow chart of the method for creating vip CRD resources.
Fig. 4 is a schematic diagram of the system operation flow when vip drifts under the method of the present invention.
Detailed Description
The present invention is further described below in conjunction with the following figures and specific examples so that those skilled in the art may better understand the present invention and practice it, but the examples are not intended to limit the present invention.
The term to which the invention relates:
the vip, i.e. virtual ip, is mainly used for switching between different services. Under an efficient main and standby environment. The primary service may be accessed using a VIP in addition to its own IP. Only the VIP is exposed at the time of service provisioning. The VIP may be quickly associated with the standby service if the primary service becomes anomalous. Thus, the service user can use the VIP to obtain stable service at all times without sensing.
The vip controller entity is a controller which is newly added in a k8s environment and used for monitoring vip CRD resource change, and executes corresponding operation when the resource change is monitored. For example, when a new vip CRD resource is detected, the vip controller entity performs a new corresponding flow table operation, and has structural and functional similarities with an existing controller such as a Deployment in k8 s.
The vip agent entity exists in k8s in pod form and is used for executing functions such as virtual machine vip binding relation detection and the like, and is created/deleted along with creation/deletion of vip CRD resources.
vip CRD resource, where CRD is abbreviated as custom resource definition, is one of kubernets that extends kubernets API for custom resource secondary development capability, and we can add new resource types to kubernets API through CRD without modifying kubernets source code to create custom API server. The vip CRD resource is a resource type which is defined in kubernets and related to a vip function, and is used for realizing the vip related function.
The pod is a minimum unit which can be created and managed in the kubernets, is a minimum resource object model which is created or deployed by a user in the resource object model, is also a resource object for running containerized applications on the kubernets, and the general service runs in the kubernets in the form of pod.
The invention provides a vip realization method based on a distributed gateway, which is characterized in that a vip CRD resource of a virtual machine is established based on a distributed gateway virtual machine architecture of a kubernets cluster, and the corresponding vip CRD resource is configured to be used when the virtual machine uses vip;
deploying a pod of the vip agent entity to a cluster node where the virtual machine is located;
monitoring the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executing the creation and deletion of the pod of the vip agent entity, and executing corresponding operation;
monitoring the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
and the vip controller entity monitors the vip CRD resource change, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip and ensures that the vip is always in an access state.
The method is based on a distributed gateway virtual machine framework of a kubernets cluster, a vip controller entity, a vip CRD resource and a vip agent entity pod are newly added, wherein the vip controller entity is used for monitoring creation, updating and deletion of the vip CRD resource, simultaneously executing creation and deletion of the vip agent entity pod, issuing a corresponding flow table of a virtual machine on a network conversion entity and the like; defining basic information of using the vip by the virtual machine in the vip CRD resource; the vip agent entity exists in a cluster node where the virtual machine is located in a pod form, and is responsible for monitoring the service condition of the vip of the virtual machine and updating vip CRD resources.
In specific applications, in some embodiments of the method of the present invention, referring to fig. 2, eth and ethX in the drawing are used to represent names of network cards in a physical machine or a virtual machine, which are commonly used as labels.
The method comprises the steps that a vip controller entity, a vip CRD resource and a pod of a vip agent entity are added on an existing distributed gateway virtual machine architecture and used for monitoring the use condition of the vip of a virtual machine, wherein the vip controller entity is used for monitoring the creation, updating and deletion of the vip CRD resource and executing corresponding operation, and the CRD is used as a resource type in a kubernets cluster, so that the kubernets api can be expanded in a self-defined CRD mode, and the self-defined function is realized. The vip CRD resource can define basic information including ip of vip used by the virtual machine, an Internalip address of the virtual machine, a mac address of the virtual machine, a name, a namespace and the like in the form of yaml. When the virtual machine uses the vip, the configuration of the vip CRD file is completed according to the information items defined in the vip CRD resource.
Further, in the vip implementation method based on the distributed gateway, the monitoring, by the vip controller entity, of the creation of the vip CRD resource, and executing a corresponding operation specifically include:
step 11: acquiring all information defined in the vip CRD resource, including the vip information of the virtual machine, reading InternalIp information,
step 12: inquiring the etcd of the kubernets cluster, determining the cluster node where the virtual machine pod is located according to the InternalIp information acquired in the step 1,
step 13: creating a pod of the vip agent entity on the cluster node in a DaemonSet mode, injecting virtual machine vip information into the pod of the vip agent entity,
step 14: bridging the pod of the vip agent entity on a network exchange entity of the cluster node, issuing a rule of a network control flow table to the pod of the vip agent entity, enabling the pod of the vip agent entity to be communicated with the virtual machine pod of the cluster node, and monitoring real-time return information of the pod of the vip agent entity.
Further, in the vip implementation method based on the distributed gateway, the monitoring, by the vip controller entity, of the deletion of the vip CRD resource, and executing a corresponding operation specifically include:
step 21: inquiring all information defined by the current vip CRD resource, including state information, acquiring cluster node information of the vip agent entity pod,
step 22: deleting the pod of the vip agent entity corresponding to the cluster node,
step 23: deleting the network control flow table information corresponding to the pod of the vip agent entity in the network exchange entity on the cluster node,
step 24: and deleting the network control flow table information containing the vip in the network switching entity on the cluster node where the current binding vip virtual machine is located.
Further, in the method for implementing vip based on distributed gateway, the using a vip controller entity monitors the change of the vip CRD resource, and executes a corresponding operation, where the updating may include manually modifying the vip CRD resource and automatically modifying the vip CRD state when the virtual machine vip drifts, and specifically includes:
step 31: acquiring updated vip CRD resource information, comparing the updated vip CRD resource information with original vip CRD resource information, such as vip address change, virtual machine ip address change, vip drift and the like, acquiring cluster node information before and after updating,
step 32: deleting the pod of the vip agent entity before updating and recreating the pod of the vip agent entity after updating according to the cluster nodes and the updated vip CRD resource items acquired in the step 31.
Further, in the vip implementation method based on the distributed gateway, a vip agent entity exists in a cluster node where a virtual machine is located in the form of a pod, and has the same life cycle as vip CRD resources, and after the pod of the vip agent entity is started, the pod work flow is as follows:
step 41: a vip detection program in the pod is automatically started, connectivity detection is carried out on the vip of the virtual machine, and a detection result is recorded;
step 42: only the pod associated with the virtual machine bound with the vip can be successfully detected, the vip agent entity pod updates the cluster node information successfully detected into the vip CRD resource, other detection failure nodes pod do not feed back, and at the moment, the vip controller entity monitors that the CRD resource is changed and executes corresponding operation;
step 43: then, the pod performs connectivity detection on the vip of the virtual machine at a certain time interval, and simultaneously compares each time with a previous result, for example, when the vip in the virtual machine drifts, a vip agent entity pod detection result on a physical machine of the virtual machine bound by the vip changes from off to on, at this time, the pod changes the vip binding relationship in the vip CRD resource into a new cluster node, at this time, the vip controller entity monitors that the CRD resource changes, executes a corresponding operation, for example, the vip controller entity obtains the cluster node where the updated vip is located, determines a master role and a slave role of the cluster node, and issues a network control flow table containing the vip information on a network switching entity of the cluster node, so that three layers of flows of the north-south direction and the west-east-west direction of the vip of the virtual machine can be forwarded through the network switching entity.
The invention also provides a vip implementation system based on the distributed gateway, which comprises a control module and an agent module,
the control module establishes a vip CRD resource of the virtual machine based on a distributed gateway virtual machine architecture of the kubernets cluster, and configures the corresponding vip CRD resource for the virtual machine to use when using the vip;
the proxy module deploys the pod of the vip agent entity to the cluster node where the virtual machine is located;
the control module monitors the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executes the creation and deletion of the pod of the vip agent entity and executes corresponding operation;
the agent module monitors the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
the proxy module monitors the change of the vip CRD resources through the vip controller entity, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip, and ensures that the vip is always in an access state.
The information interaction, execution process and other contents between the modules in the system are based on the same concept as the method embodiment of the present invention, and specific contents can be referred to the description in the method embodiment of the present invention, and are not described herein again.
Similarly, the system solves the problem that the virtual machine vip in the existing distributed gateway scene can not use the distributed gateway and can only use the centralized gateway to forward the flow in the north-south direction and the east-west direction, and realizes the function that the virtual machine vip uses the distributed gateway to forward the flow in the north-south direction and the east-west direction;
monitoring the vip drifting condition in the virtual machine is realized, and meanwhile, when the vip drifts, corresponding network control flow tables on physical machines in front of and behind the virtual machine where the vip is located are automatically updated, so that the vip is ensured to be always in an accessible state;
the internal of the existing virtual machine does not need to be changed, and the virtual machine is not invaded;
and created vip CRD resources, etc. are loosely coupled to the overall system for easy expansion and maintenance.
It should be noted that not all steps and modules in the above flows and system structures are necessary, and some steps or modules may be omitted according to actual needs. The execution order of the steps is not fixed and can be adjusted as required. The system structure described in the above embodiments may be a physical structure or a logical structure, that is, some modules may be implemented by the same physical entity, or some modules may be implemented by a plurality of physical entities, or some components in a plurality of independent devices may be implemented together.
The above-mentioned embodiments are merely preferred embodiments for fully illustrating the present invention, and the scope of the present invention is not limited thereto. The equivalent substitutions or changes made by the person skilled in the art on the basis of the present invention are all within the protection scope of the present invention. The protection scope of the invention is subject to the claims.
Claims (10)
1. A vip implementation method based on a distributed gateway is characterized in that based on a distributed gateway virtual machine architecture of a kubernets cluster, vip CRD resources of a virtual machine are created, and the corresponding vip CRD resources are configured to be used when the virtual machine uses vip;
deploying the pod of the vip agent entity to the cluster node where the virtual machine is located;
monitoring the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executing the creation and deletion of the pod of the vip agent entity, and executing corresponding operation;
monitoring the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
and the vip controller entity monitors the change of the vip CRD resources, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip and ensures that the vip is always in an access state.
2. The method as claimed in claim 1, wherein the using the vip controller entity to monitor the creation of the vip CRD resource, and perform the corresponding operations, comprises:
acquiring all information defined in the vip CRD resources, including virtual machine vip information,
querying a cluster node where a virtual machine pod is located in the kubernets cluster,
creating a pod of a vip agent entity on the cluster node, and injecting virtual machine vip information in the pod of the vip agent entity,
and bridging the pod of the vip agent entity on a network exchange entity of the cluster node, and issuing a rule of a network control flow table to the pod of the vip agent entity to communicate the pod of the vip agent entity with the virtual machine pod of the cluster node.
3. The method as claimed in claim 1, wherein the using the vip controller entity to monitor the deletion of the vip CRD resource, and perform the corresponding operations, comprises:
inquiring all information defined by the current vip CRD resource, obtaining cluster node information,
deleting the pod of the corresponding vip agent entity on the cluster node,
deleting the network control flow table information corresponding to the pod of the vip agent entity in the network exchange entity on the cluster node,
and deleting the network control flow table information containing the vip in the network switching entity on the cluster node where the current binding vip virtual machine is located.
4. The method as claimed in claim 1, wherein the using a vip controller entity to monitor the change of the vip CRD resource, and perform corresponding operations, comprises:
acquiring updated vip CRD resource information, comparing with original vip CRD resource information to acquire cluster node information before and after updating,
deleting the pod of the vip agent entity before updating, and recreating the pod of the vip agent entity after updating.
5. The method according to claim 1, wherein the monitoring, by the pod, the usage of the vip of the virtual machine includes:
and performing connectivity detection on the vip of the virtual machine by using the pod at a certain time interval, comparing the results of each connectivity detection with the result of the last connectivity detection, and updating the cluster node information where the pod of the vip agent entity successfully performs the connectivity detection into the vip CRD resource.
6. A vip implementation system based on a distributed gateway is characterized by comprising a control module and a proxy module,
the control module establishes a vip CRD resource of the virtual machine based on a distributed gateway virtual machine architecture of the kubernets cluster, and configures the corresponding vip CRD resource for the virtual machine to use when using the vip;
the proxy module deploys the pod of the vip agent entity to the cluster node where the virtual machine is located;
the control module monitors the creation, updating and deletion of the vip CRD resource by using a vip controller entity, executes the creation and deletion of the pod of the vip agent entity and executes corresponding operation;
the agent module monitors the use condition of the vip of the virtual machine through the pod: performing connectivity detection on the vip of the virtual machine by using the pod, wherein only the pod associated with the vip-bound virtual machine is successfully detected, and the pod updates cluster node information of the vip-bound virtual machine into a vip CRD resource;
the proxy module monitors the change of the vip CRD resources through the vip controller entity, updates a corresponding network control flow table on a physical machine of the virtual machine bound with the vip, and ensures that the vip is always in an access state.
7. The system as claimed in claim 6, wherein the control module monitors creation of the vip CRD resource by using a vip controller entity, and performs corresponding operations, including:
acquiring all information defined in the vip CRD resources, including virtual machine vip information,
querying a cluster node where a virtual machine pod is located in the kubernets cluster,
creating a pod of a vip agent entity on the cluster node, and injecting virtual machine vip information in the pod of the vip agent entity,
bridging the pod of the vip agent entity on a network exchange entity of the cluster node, issuing a rule of a network control flow table to the pod of the vip agent entity, and communicating the pod of the vip agent entity with the virtual machine pod of the cluster node.
8. The system according to claim 6, wherein the control module monitors deletion of the vip CRD resource by using a vip controller entity, and performs corresponding operations, including:
inquiring all information defined by the current vip CRD resource, obtaining cluster node information,
deleting the pod of the corresponding vip agent entity on the cluster node,
deleting the network control flow table information corresponding to the pod of the vip agent entity in the network exchange entity on the cluster node,
and deleting the network control flow table information containing the vip in the network switching entity on the cluster node where the current binding vip virtual machine is located.
9. The vip implementation system of claim 6, wherein the control module monitors the change of the vip CRD resource by using a vip controller entity, and performs a corresponding operation, comprising:
acquiring updated vip CRD resource information, comparing with original vip CRD resource information, acquiring cluster node information before and after updating,
deleting the pod of the vip agent entity before updating, and recreating the pod of the vip agent entity after updating.
10. The vip implementation system of claim 6, wherein the agent module monitors the usage of the vip of the virtual machine through the pod, and the system comprises:
and performing connectivity detection on the vip of the virtual machine at a certain time interval by using the pod, comparing the results of each connectivity detection with the results of the last connectivity detection, and updating cluster node information where the pod of the vip agent entity successfully performs the connectivity detection into the vip CRD resource.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211004332.8A CN115473766B (en) | 2022-08-22 | 2022-08-22 | Vip implementation method and system based on distributed gateway |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211004332.8A CN115473766B (en) | 2022-08-22 | 2022-08-22 | Vip implementation method and system based on distributed gateway |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115473766A true CN115473766A (en) | 2022-12-13 |
| CN115473766B CN115473766B (en) | 2024-01-26 |
Family
ID=84366468
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211004332.8A Active CN115473766B (en) | 2022-08-22 | 2022-08-22 | Vip implementation method and system based on distributed gateway |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115473766B (en) |
Citations (33)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710814A (en) * | 2012-06-21 | 2012-10-03 | 奇智软件(北京)有限公司 | Method and device for controlling Internet protocol (IP) address of virtual machine |
| CN103812704A (en) * | 2014-02-25 | 2014-05-21 | 国云科技股份有限公司 | Public network IP (Internet Protocol) dynamic management method for virtual machine |
| CN104243427A (en) * | 2013-06-19 | 2014-12-24 | 日电(中国)有限公司 | Virtual machine online migration method and data package transmission method and device |
| CN104301445A (en) * | 2013-07-15 | 2015-01-21 | 北京邮电大学 | Mobile Internet data transmission method and system |
| CN104702476A (en) * | 2013-12-05 | 2015-06-10 | 华为技术有限公司 | Distributed gateway, message processing method and message processing device based on distributed gateway |
| US20150244617A1 (en) * | 2012-06-06 | 2015-08-27 | Juniper Networks, Inc. | Physical path determination for virtual network packet flows |
| US20160105471A1 (en) * | 2014-10-14 | 2016-04-14 | Midokura Sarl | System and method for distributed flow state p2p setup in virtual networks |
| CA2910654A1 (en) * | 2014-11-10 | 2016-05-10 | Investel Capital Corporation | System and method for migrating a voice over data call between distinct data networks, and a voice over data call intermediating system and method therefor |
| CN105592139A (en) * | 2015-10-28 | 2016-05-18 | 杭州华三通信技术有限公司 | HA implementation method and device of distributed file system management platform |
| CN105812340A (en) * | 2014-12-31 | 2016-07-27 | 杭州华三通信技术有限公司 | Access method and device for virtual network to extranet |
| US20160330143A1 (en) * | 2013-12-26 | 2016-11-10 | Huawei Technologies Co., Ltd. | Method for Acquiring Physical Address of Virtual Machine |
| CN106487695A (en) * | 2015-08-25 | 2017-03-08 | 华为技术有限公司 | A kind of data transmission method, virtual network managing device and data transmission system |
| CN107147533A (en) * | 2017-05-31 | 2017-09-08 | 郑州云海信息技术有限公司 | A kind of flow table configuration distributing method and system based on SDN frameworks |
| CN107947961A (en) * | 2017-10-17 | 2018-04-20 | 上海数讯信息技术有限公司 | Kubernetes Network Management System and method based on SDN |
| CN109067827A (en) * | 2018-06-22 | 2018-12-21 | 杭州才云科技有限公司 | Based on Kubernetes and OpenStack container cloud platform multi-tenant construction method, medium, equipment |
| CN109067828A (en) * | 2018-06-22 | 2018-12-21 | 杭州才云科技有限公司 | Based on the more cluster construction methods of Kubernetes and OpenStack container cloud platform, medium, equipment |
| CN109446178A (en) * | 2018-11-13 | 2019-03-08 | 郑州云海信息技术有限公司 | A kind of Hadoop object storage high availability method, system, device and readable storage medium storing program for executing |
| CN110198329A (en) * | 2018-03-26 | 2019-09-03 | 腾讯科技(深圳)有限公司 | Database deployment method, device and system, electronic equipment and readable medium |
| CN111163189A (en) * | 2020-01-07 | 2020-05-15 | 上海道客网络科技有限公司 | IP monitoring and recycling system and method based on network name space management and control |
| CN111314098A (en) * | 2018-12-11 | 2020-06-19 | 杭州海康威视系统技术有限公司 | Method and device for realizing VIP address drift in HA system |
| CN111612466A (en) * | 2020-01-17 | 2020-09-01 | 厦门潭宏信息科技有限公司 | Consensus and resource transmission method, device and storage medium |
| CN111698164A (en) * | 2020-06-11 | 2020-09-22 | 北京金山云网络技术有限公司 | Network routing method and device of virtual machine and management server |
| CN111736944A (en) * | 2019-03-25 | 2020-10-02 | 北京奇虎科技有限公司 | Docker container positioning method and device based on Kubernetes |
| CN112422683A (en) * | 2020-11-19 | 2021-02-26 | 浪潮云信息技术股份公司 | API gateway service high-availability implementation method under K8S environment |
| CN112583655A (en) * | 2020-11-02 | 2021-03-30 | 北京迈格威科技有限公司 | Data transmission method and device, electronic equipment and readable storage medium |
| CN112820366A (en) * | 2020-12-23 | 2021-05-18 | 京东方科技集团股份有限公司 | Data processing method, device, system, equipment and storage medium |
| CN112910939A (en) * | 2019-12-03 | 2021-06-04 | 华为技术有限公司 | Data processing method and related device |
| CN113572831A (en) * | 2021-07-21 | 2021-10-29 | 重庆星环人工智能科技研究院有限公司 | Communication method between Kubernetes clusters, computer equipment and medium |
| CN114465895A (en) * | 2022-03-03 | 2022-05-10 | 上海微盟企业发展有限公司 | Request distribution method, device, equipment and storage medium based on micro service |
| CN114500523A (en) * | 2021-11-29 | 2022-05-13 | 上海浦东发展银行股份有限公司 | Fixed IP application release method based on container cloud platform |
| CN114640678A (en) * | 2022-03-14 | 2022-06-17 | 明阳产业技术研究院(沈阳)有限公司 | Pod management method, device and medium based on SR-IOV |
| CN114780489A (en) * | 2022-06-17 | 2022-07-22 | 苏州思萃工业互联网技术研究所有限公司 | Method and device for realizing distributed block storage bottom layer GC |
| CN114924839A (en) * | 2022-05-30 | 2022-08-19 | 苏州思萃工业互联网技术研究所有限公司 | Method and device for realizing designated migration of kubernets cluster pod |
-
2022
- 2022-08-22 CN CN202211004332.8A patent/CN115473766B/en active Active
Patent Citations (34)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150244617A1 (en) * | 2012-06-06 | 2015-08-27 | Juniper Networks, Inc. | Physical path determination for virtual network packet flows |
| CN102710814A (en) * | 2012-06-21 | 2012-10-03 | 奇智软件(北京)有限公司 | Method and device for controlling Internet protocol (IP) address of virtual machine |
| CN104243427A (en) * | 2013-06-19 | 2014-12-24 | 日电(中国)有限公司 | Virtual machine online migration method and data package transmission method and device |
| CN104301445A (en) * | 2013-07-15 | 2015-01-21 | 北京邮电大学 | Mobile Internet data transmission method and system |
| CN104702476A (en) * | 2013-12-05 | 2015-06-10 | 华为技术有限公司 | Distributed gateway, message processing method and message processing device based on distributed gateway |
| US20160330143A1 (en) * | 2013-12-26 | 2016-11-10 | Huawei Technologies Co., Ltd. | Method for Acquiring Physical Address of Virtual Machine |
| CN103812704A (en) * | 2014-02-25 | 2014-05-21 | 国云科技股份有限公司 | Public network IP (Internet Protocol) dynamic management method for virtual machine |
| US20160105471A1 (en) * | 2014-10-14 | 2016-04-14 | Midokura Sarl | System and method for distributed flow state p2p setup in virtual networks |
| US20170325141A1 (en) * | 2014-11-10 | 2017-11-09 | Investel Capital Corporation | Mobile operator-mediated telephony-over-data system and implementation, and mobile smartphone-over-data device and computer-implemented environment therefor |
| CA2910654A1 (en) * | 2014-11-10 | 2016-05-10 | Investel Capital Corporation | System and method for migrating a voice over data call between distinct data networks, and a voice over data call intermediating system and method therefor |
| CN105812340A (en) * | 2014-12-31 | 2016-07-27 | 杭州华三通信技术有限公司 | Access method and device for virtual network to extranet |
| CN106487695A (en) * | 2015-08-25 | 2017-03-08 | 华为技术有限公司 | A kind of data transmission method, virtual network managing device and data transmission system |
| CN105592139A (en) * | 2015-10-28 | 2016-05-18 | 杭州华三通信技术有限公司 | HA implementation method and device of distributed file system management platform |
| CN107147533A (en) * | 2017-05-31 | 2017-09-08 | 郑州云海信息技术有限公司 | A kind of flow table configuration distributing method and system based on SDN frameworks |
| CN107947961A (en) * | 2017-10-17 | 2018-04-20 | 上海数讯信息技术有限公司 | Kubernetes Network Management System and method based on SDN |
| CN110198329A (en) * | 2018-03-26 | 2019-09-03 | 腾讯科技(深圳)有限公司 | Database deployment method, device and system, electronic equipment and readable medium |
| CN109067828A (en) * | 2018-06-22 | 2018-12-21 | 杭州才云科技有限公司 | Based on the more cluster construction methods of Kubernetes and OpenStack container cloud platform, medium, equipment |
| CN109067827A (en) * | 2018-06-22 | 2018-12-21 | 杭州才云科技有限公司 | Based on Kubernetes and OpenStack container cloud platform multi-tenant construction method, medium, equipment |
| CN109446178A (en) * | 2018-11-13 | 2019-03-08 | 郑州云海信息技术有限公司 | A kind of Hadoop object storage high availability method, system, device and readable storage medium storing program for executing |
| CN111314098A (en) * | 2018-12-11 | 2020-06-19 | 杭州海康威视系统技术有限公司 | Method and device for realizing VIP address drift in HA system |
| CN111736944A (en) * | 2019-03-25 | 2020-10-02 | 北京奇虎科技有限公司 | Docker container positioning method and device based on Kubernetes |
| CN112910939A (en) * | 2019-12-03 | 2021-06-04 | 华为技术有限公司 | Data processing method and related device |
| CN111163189A (en) * | 2020-01-07 | 2020-05-15 | 上海道客网络科技有限公司 | IP monitoring and recycling system and method based on network name space management and control |
| CN111612466A (en) * | 2020-01-17 | 2020-09-01 | 厦门潭宏信息科技有限公司 | Consensus and resource transmission method, device and storage medium |
| CN111698164A (en) * | 2020-06-11 | 2020-09-22 | 北京金山云网络技术有限公司 | Network routing method and device of virtual machine and management server |
| CN112583655A (en) * | 2020-11-02 | 2021-03-30 | 北京迈格威科技有限公司 | Data transmission method and device, electronic equipment and readable storage medium |
| CN112422683A (en) * | 2020-11-19 | 2021-02-26 | 浪潮云信息技术股份公司 | API gateway service high-availability implementation method under K8S environment |
| CN112820366A (en) * | 2020-12-23 | 2021-05-18 | 京东方科技集团股份有限公司 | Data processing method, device, system, equipment and storage medium |
| CN113572831A (en) * | 2021-07-21 | 2021-10-29 | 重庆星环人工智能科技研究院有限公司 | Communication method between Kubernetes clusters, computer equipment and medium |
| CN114500523A (en) * | 2021-11-29 | 2022-05-13 | 上海浦东发展银行股份有限公司 | Fixed IP application release method based on container cloud platform |
| CN114465895A (en) * | 2022-03-03 | 2022-05-10 | 上海微盟企业发展有限公司 | Request distribution method, device, equipment and storage medium based on micro service |
| CN114640678A (en) * | 2022-03-14 | 2022-06-17 | 明阳产业技术研究院(沈阳)有限公司 | Pod management method, device and medium based on SR-IOV |
| CN114924839A (en) * | 2022-05-30 | 2022-08-19 | 苏州思萃工业互联网技术研究所有限公司 | Method and device for realizing designated migration of kubernets cluster pod |
| CN114780489A (en) * | 2022-06-17 | 2022-07-22 | 苏州思萃工业互联网技术研究所有限公司 | Method and device for realizing distributed block storage bottom layer GC |
Non-Patent Citations (3)
| Title |
|---|
| WENLONG YUE: "Gatewaying the Wireless Sensor Networks", 《2013 IEEE 9TH INTERNATIONAL CONFERENCE ON MOBILE AD-HOC AND SENSOR NETWORKS》 * |
| 游建平: "边界网关协议分布式设计与实现", 《保密科学技术》 * |
| 王学勤;江婷;徐静静;邓亚男;胡永锋;: "天然气分布式能源站蓄冷方案研究及应用", 华电技术, no. 11 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN115473766B (en) | 2024-01-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110635987B (en) | Message transmission method, device, equipment and machine readable storage medium | |
| CN111796905B (en) | Method and system for realizing Kubernetes container cloud platform VLAN network | |
| CN110855509B (en) | Novel configuration method for SPTN (packet transport network) network architecture of cloud software definition | |
| US8601110B2 (en) | Switch management system and method | |
| CN109995641B (en) | Information processing method, computing node and storage medium | |
| US20060080417A1 (en) | Method, system and program product for automated topology formation in dynamic distributed environments | |
| CN104935672A (en) | High available realizing method and equipment of load balancing service | |
| CN104823405A (en) | IP multicast service leave process for MPLS-based virtual private cloud networking | |
| CN104871483A (en) | IP multicast service join process for MPLS-based virtual private cloud networking | |
| CN107404509B (en) | Distributed service configuration system and information management method | |
| CN114500169B (en) | Method for establishing VXLAN tunnel, method and device for forwarding message | |
| CN112422683B (en) | API gateway service high-availability implementation method in K8S environment | |
| CN105162704A (en) | Multicast replication method and device in Overlay network | |
| WO2019233061A1 (en) | Routing resource control method and system for layer 3 switch | |
| CN111984274B (en) | Method and device for automatically deploying ETCD cluster by one key | |
| CN103546572A (en) | Cloud storage device and multi-cloud storage networking system and method | |
| CN103036934A (en) | Wide area network clustered deployment system and method based on mirror image | |
| CN104283802A (en) | Neighbor discovery method and device | |
| EP3637690B1 (en) | Service configuration-driven flow table method and device | |
| CN114157668B (en) | Multi-tenant cross-cluster networking method, communication system and readable storage medium | |
| CN113835834A (en) | K8S container cluster-based computing node capacity expansion method and system | |
| CN116192937B (en) | Service implementation method, system, medium and device in Kubernetes cluster system | |
| CN115391058B (en) | SDN-based resource event processing method, resource creation method and system | |
| CN115473766A (en) | Method and system for realizing vip based on distributed gateway | |
| CN114363164B (en) | Cloud network service arrangement control method, system, storage medium and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |