CN115550309A - Method for solving VPC intercommunication address overlapping - Google Patents
Method for solving VPC intercommunication address overlapping Download PDFInfo
- Publication number
- CN115550309A CN115550309A CN202211039961.4A CN202211039961A CN115550309A CN 115550309 A CN115550309 A CN 115550309A CN 202211039961 A CN202211039961 A CN 202211039961A CN 115550309 A CN115550309 A CN 115550309A
- Authority
- CN
- China
- Prior art keywords
- address
- vpc
- intranet
- virtual machine
- vpcs
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 25
- 206010047289 Ventricular extrasystoles Diseases 0.000 claims abstract description 66
- 238000005129 volume perturbation calorimetry Methods 0.000 claims abstract description 66
- 238000013507 mapping Methods 0.000 claims abstract description 16
- 238000004590 computer program Methods 0.000 claims description 6
- 108090000623 proteins and genes Proteins 0.000 claims description 3
- 238000004891 communication Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- RJKFOVLPORLFTN-LEKSSAKUSA-N Progesterone Chemical compound C1CC2=CC(=O)CC[C@]2(C)[C@@H]2[C@@H]1[C@@H]1CC[C@H](C(=O)C)[C@@]1(C)CC2 RJKFOVLPORLFTN-LEKSSAKUSA-N 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
- H04L45/745—Address table lookup; Address filtering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/255—Maintenance or indexing of mapping tables
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/2592—Translation of Internet protocol [IP] addresses using tunnelling or encapsulation
Abstract
The invention provides a method for solving VPC intercommunication address overlap, which comprises the following steps: two VPCs establish peers and establish an intercommunication relationship; managing and storing the relationship of two VPCs by using a VPC management module, and distributing networks and unique identifiers with the same specification in an intranet address pool; establishing a mapping relation between an IP address in a VPC and an intranet IP address by using a VPC mapping module, and storing a unique identifier; when the virtual machine management module creates a virtual machine, issuing an OVS flow table, and creating a mapping relation between an intranet IP address and an actual IP address of the virtual machine; the IP addresses of the internal network are isolated through the unique identification, and a link is opened through the Geneve tunnel. The method for solving VPC intercommunication address overlapping of the invention solves the limitation of VPC peer-to-peer connection, and VPCs can be overlapped in network; through the converted intranet address, high-speed intercommunication is carried out in the cloud; the product has more flexibility and increases the competitiveness.
Description
Technical Field
The invention belongs to the technical field of VPC communication, and particularly relates to a method for solving VPC intercommunication address overlapping.
Background
The VPC peers are realized by introducing routes of the other sides, which requires that network segments between two VPCs cannot conflict, and if the network segments conflict, the current VPC cannot distinguish whether the traffic belongs to intranet traffic or extranet traffic. This may cause an anomaly in backhaul traffic and failure to reach the designated destination. If the network segment of the VPC is planned in advance, the VPC is planned without interconnection requirements, but with the continuous expansion of services, the VPCs have intercommunication requirements, and if the network segments planned between the two VPCs have conflict, the requirements of the services cannot be met.
Disclosure of Invention
In view of the above, in order to solve the above problem, the present invention provides a method for solving the VPC interworking address overlap.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
in one aspect, the present invention provides a method for solving VPC interworking address overlap, including:
two VPCs establish peers and establish an intercommunication relationship;
managing and storing the relationship of two VPCs by using a VPC management module, and distributing networks and unique identifications with the same specification in an intranet address pool;
establishing a mapping relation between an IP address in a VPC and an intranet IP address by using a VPC mapping module, and storing a unique identifier;
when the virtual machine management module creates a virtual machine, an OVS flow table is issued, a mapping relation between an intranet IP address and a virtual machine actual IP address is created, when an IP address in another VPC is accessed, a source IP and a target IP address are converted into the intranet IP address through OVS flow table matching, private network mapping is performed when a target end is the intranet IP address, the intranet IP addresses are isolated through unique identifiers, and a link is opened through a gene tunnel.
Further, a VPC management module is used for managing and storing the relationship between the two VPCs, and in the process of distributing the networks and the unique identifiers of the same specification in the intranet address pool, the networks of the same specification are intranet segments with the same scale and size.
Further, when the virtual machine is released, the flow table information is required to be cleared.
In a second aspect, the present invention provides an electronic device/server, including a processor and a memory communicatively connected to the processor and configured to store instructions executable by the processor, where the processor implements the method for solving VPC interworking address overlap described in the first aspect when executing the instructions.
In a third aspect, the present invention provides a readable storage medium for storing a computer program, where the computer program is executed by a processor to implement the method for solving VPC interworking address overlap according to the first aspect.
Compared with the prior art, the method for solving the VPC intercommunication address overlapping has the following advantages:
the method for solving VPC interworking address overlap solves the limit of VPC peer-to-peer connection, and VPCs can be overlapped by networks; through the converted intranet address, high-speed intercommunication is carried out in the cloud; the product has more flexibility and increases competitiveness.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate an embodiment of the invention and, together with the description, serve to explain the invention and not to limit the invention. In the drawings:
FIG. 1 is a system architecture diagram of a method for resolving VPC interworking address overlap according to the present invention;
FIG. 2 is a flowchart of a method for solving the problem of overlapping VPC interworking addresses according to the present invention.
Detailed Description
It should be noted that the embodiments and features of the embodiments of the present invention may be combined with each other without conflict.
The present invention will be described in detail below with reference to the embodiments with reference to the attached drawings.
The embodiment provides a method for solving VPC interworking address overlap, as shown in fig. 1 and fig. 2, the steps are as follows:
1. two VPCs establish peers, the two VPCs need to communicate with each other, a VPC management module stores the relationship between the two VPCs, applies for an intranet section with the same size in an intranet address pool, and allocates a unique identifier L3VNI.
2. And the VPC mapping module establishes a one-to-one mapping relation between the IP address in the VPC and the intranet IP address, and stores the identification of the L3VNI.
3. The virtual machine management module issues an OVS flow table when a virtual machine is created, maps an internal network address and an actual IP address of the virtual machine, converts a source IP and a destination IP address into an internal network address through flow table matching when another VPC IP address is accessed, and maps a private network when a destination end is the internal network address. The intranet networks are isolated through the L3VNI, and links are opened through the Geneve tunnel.
4. And clearing the information of the flow table when the virtual machine is released.
The technical scheme of the invention is further explained by combining the specific examples:
as shown in fig. 1 and fig. 2, the address of VPC1 is mapped into a private network segment by address mapping, and the network segment of VPC2 is mapped into a network segment of another private network. Because the intranet section 100.64.0.0/10 is not exposed in the public network, the size of the VPC supports CIDR =11 at maximum by using the characteristics of the network section, that is, 200 ten thousand virtual machines exist under the VPC. The controller is responsible for creating networks of the same size as the VPC in the intranet address pool and respectively assigning unique identifiers L3 VNIs. And the VPC mapping module maps the IP address of the VPC with the intranet address one by one and records the mapping. When a virtual machine is online in the VPC and the virtual machine management module has the virtual machine, an ovs flow table needs to be issued, a destination end accessing an ip address of an opposite end is converted into an intranet address of the ip, and a source of the virtual machine is converted into the intranet address corresponding to the current ip address. Therefore, the communication between the intranet addresses is equivalent, the two intranet addresses are communicated through the gene tunnel, and the accessed intranet IP is converted into the real destination end IP on the target server. The repeatability of the VPC address is solved through the non-repeatability of the intranet address.
The embodiment provides an electronic device/server, which includes a processor and a memory, wherein the memory is communicatively connected to the processor and is used for storing instructions executable by the processor, and when the processor executes the instructions, the processor implements the method for solving the overlapping of VPC interworking addresses described in the above embodiment.
The present embodiment provides a readable storage medium for storing a computer program, where the computer program, when executed by a processor, implements the method for solving VPC interworking address overlap described in the foregoing embodiment.
Those of ordinary skill in the art will appreciate that the various illustrative components and method steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the components and steps of the various examples have been described above generally in terms of their functionality in order to clearly illustrate this interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the technical solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
In the several embodiments provided in the present application, it should be understood that the disclosed method and system may be implemented in other ways. For example, the division of the above-mentioned units is only a logical function division, and other division manners may be available in actual implementation, for example, a plurality of units or components may be combined or may be integrated into another system, or some features may be omitted, or not executed. The units may or may not be physically separate, and components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment of the present invention.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; such modifications and substitutions do not depart from the spirit and scope of the present invention, and they should be construed as being included in the following claims and description.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and should not be taken as limiting the scope of the present invention, which is intended to cover any modifications, equivalents, improvements, etc. within the spirit and scope of the present invention.
Claims (5)
1. A method for solving VPC interworking address overlap, comprising:
two VPCs establish peers and establish an intercommunication relationship;
managing and storing the relationship of two VPCs by using a VPC management module, and distributing networks and unique identifiers with the same specification in an intranet address pool;
establishing a mapping relation between an IP address in a VPC and an intranet IP address by using a VPC mapping module, and storing a unique identifier;
when the virtual machine management module creates a virtual machine, an OVS flow table is issued, a mapping relation between an intranet IP address and a virtual machine actual IP address is created, when an IP address in another VPC is accessed, a source IP and a target IP address are converted into the intranet IP address through OVS flow table matching, private network mapping is performed when a target end is the intranet IP address, the intranet IP addresses are isolated through unique identifiers, and a link is opened through a gene tunnel.
2. The method of claim 1, wherein the method comprises: and managing and storing the relationship between the two VPCs by using a VPC management module, and distributing the networks with the same specification and unique identifiers in the intranet address pool, wherein the networks with the same specification are intranet segments with the same scale and size.
3. The method of resolving VPC interworking address overlap of claim 2, further comprising:
when the virtual machine is released, the flow table information is required to be cleared.
4. An electronic device/server comprising a processor and a memory communicatively coupled to the processor and storing instructions executable by the processor, wherein the processor, when executing the instructions, implements the method of resolving VPC interworking address overlap of any of claims 1-3.
5. A readable storage medium for storing a computer program, wherein the computer program, when executed by a processor, implements the method for resolving VPC interworking address overlap of any one of claims 1-3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211039961.4A CN115550309A (en) | 2022-08-29 | 2022-08-29 | Method for solving VPC intercommunication address overlapping |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211039961.4A CN115550309A (en) | 2022-08-29 | 2022-08-29 | Method for solving VPC intercommunication address overlapping |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115550309A true CN115550309A (en) | 2022-12-30 |
Family
ID=84726420
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211039961.4A Pending CN115550309A (en) | 2022-08-29 | 2022-08-29 | Method for solving VPC intercommunication address overlapping |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115550309A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117177050A (en) * | 2023-08-25 | 2023-12-05 | 北京志凌海纳科技有限公司 | Virtual machine VPC network configuration snapshot processing method and system |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20170070908A1 (en) * | 2014-03-14 | 2017-03-09 | Nec Corporation | Communication device and traffic control method |
| US20180069754A1 (en) * | 2016-09-07 | 2018-03-08 | Cisco Technology, Inc. | Managing virtual port channel switch peers from software-defined network controller |
| CN109451084A (en) * | 2018-09-14 | 2019-03-08 | 华为技术有限公司 | A kind of service access method and device |
| US10541966B1 (en) * | 2015-07-02 | 2020-01-21 | Aviatrix Systems, Inc. | System and method for enabling communication between networks with overlapping IP address ranges |
| CN112688847A (en) * | 2020-08-17 | 2021-04-20 | 紫光云技术有限公司 | Method for realizing VPC (virtual private network) peer-to-peer connection in cloud network environment |
| WO2021139269A1 (en) * | 2020-08-06 | 2021-07-15 | 平安科技(深圳)有限公司 | Distributed routing method and apparatus based on open vswitch kernel state flow tables in overlay network |
| CN113572634A (en) * | 2021-06-22 | 2021-10-29 | 济南浪潮数据技术有限公司 | Method and system for realizing two-layer intercommunication between in-cloud network and out-cloud network |
| CN113709017A (en) * | 2021-08-17 | 2021-11-26 | 中盈优创资讯科技有限公司 | Method and device for acquiring virtualization traffic |
| CN114172905A (en) * | 2021-12-09 | 2022-03-11 | 新华三大数据技术有限公司 | Method and device for cluster network networking, computer equipment and storage medium |
-
2022
- 2022-08-29 CN CN202211039961.4A patent/CN115550309A/en active Pending
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20170070908A1 (en) * | 2014-03-14 | 2017-03-09 | Nec Corporation | Communication device and traffic control method |
| US10541966B1 (en) * | 2015-07-02 | 2020-01-21 | Aviatrix Systems, Inc. | System and method for enabling communication between networks with overlapping IP address ranges |
| US20180069754A1 (en) * | 2016-09-07 | 2018-03-08 | Cisco Technology, Inc. | Managing virtual port channel switch peers from software-defined network controller |
| CN109451084A (en) * | 2018-09-14 | 2019-03-08 | 华为技术有限公司 | A kind of service access method and device |
| WO2021139269A1 (en) * | 2020-08-06 | 2021-07-15 | 平安科技(深圳)有限公司 | Distributed routing method and apparatus based on open vswitch kernel state flow tables in overlay network |
| CN112688847A (en) * | 2020-08-17 | 2021-04-20 | 紫光云技术有限公司 | Method for realizing VPC (virtual private network) peer-to-peer connection in cloud network environment |
| CN113572634A (en) * | 2021-06-22 | 2021-10-29 | 济南浪潮数据技术有限公司 | Method and system for realizing two-layer intercommunication between in-cloud network and out-cloud network |
| CN113709017A (en) * | 2021-08-17 | 2021-11-26 | 中盈优创资讯科技有限公司 | Method and device for acquiring virtualization traffic |
| CN114172905A (en) * | 2021-12-09 | 2022-03-11 | 新华三大数据技术有限公司 | Method and device for cluster network networking, computer equipment and storage medium |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117177050A (en) * | 2023-08-25 | 2023-12-05 | 北京志凌海纳科技有限公司 | Virtual machine VPC network configuration snapshot processing method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102334111B (en) | Providing logical networking functionality for managed computer networks | |
| CN108449197B (en) | Multi-cloud environment network construction method based on software defined network | |
| CN111917649B (en) | Virtual private cloud communication and configuration method and related device | |
| CN102447748B (en) | Method, equipment and system for allocating outer Internet protocol IP addresses during network address translation (NAT) | |
| CN101488918B (en) | Multi-network card server access method and system | |
| CN109639455B (en) | Network management method and system of container cloud platform | |
| EP3709182A2 (en) | Configuring communications between computing nodes | |
| CN108062482A (en) | Virtual secure device architecture is provided to virtual cloud foundation structure | |
| CN105684363A (en) | Logical router | |
| US11625280B2 (en) | Cloud-native proxy gateway to cloud resources | |
| CN102598591A (en) | Employing overlays for securing connections across networks | |
| CN105446662B (en) | A kind of cut over method, storage control device and storage device | |
| CN101557417A (en) | Method and apparatus for HBA migration | |
| CN101707619A (en) | Message filtering method, device and network device | |
| CN102546349B (en) | A kind of message forwarding method and equipment | |
| CN115550309A (en) | Method for solving VPC intercommunication address overlapping | |
| CN102946351A (en) | Data transmission method and system | |
| CN104363306A (en) | Private cloud management control method for enterprise | |
| CN115348126A (en) | Network target range entity equipment access method, device and implementation system | |
| US10243920B1 (en) | Internet protocol address reassignment between virtual machine instances | |
| CN104734930B (en) | Method and device for realizing access of Virtual Local Area Network (VLAN) to Variable Frequency (VF) network and Fiber Channel Frequency (FCF) | |
| CN110933015B (en) | Data transmission method, device and system | |
| CN108540408B (en) | Openstack-based distributed virtual switch management method and system | |
| CN104104749A (en) | Method and device for allocating tunnel IP addresses | |
| KR20230042118A (en) | Edge Computing Environment Configuration Tool for Telecom Networks |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |