CN115834329A - Resource management system - Google Patents

Abstract

The present application relates to a resource management system. The resource management system comprises an orchestrator, a first controller and a second controller; the first controller is deployed on a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller; the second controller is deployed in each test station in the future network test facility platform, so that the orchestrator performs resource data interaction with the test station through the second controller; the orchestrator is used for carrying out resource data interaction with the backbone network or the test site according to the resource requirements of the users, and carrying out orchestration and management on the resource data in the backbone network or the test site. The resource management system can be used for arranging and managing resource data in a future network test facility platform, realizes unified coordination and management scheduling from top to bottom, and ensures stable and reliable operation of the future network test facility platform.

Description

Resource management system

Technical Field

The application relates to the technical field of internet information, in particular to a resource management system.

Background

The future network test facility platform is an open, easy-to-use and sustainable large-scale general test facility, and can provide a simple, efficient and low-cost test verification environment for researching a future network innovation system structure. The future network test facility platform comprises a plurality of test sites and a backbone network for communicating the sites.

At present, various resource management systems usually only cover the resources of a single test site, and effective visual management and control are lacked in the range of a plurality of test sites. And the existing various technical routes are usually a combination of independent systems.

For a future network test facility platform, the platform covers dozens of test sites, and a network administrator needs a system which takes different functions into consideration from the design and provides unified coordination and management of the whole network. Therefore, a need exists for a resource scheduling and managing system that is easy to manage, safe, reliable, flexible and controllable for future network test facilities.

Disclosure of Invention

In view of the above, it is necessary to provide a resource management system capable of performing arrangement management on resource data in a future network test facility platform.

In a first aspect, the present application provides a resource management system. The resource management system comprises an orchestrator, a first controller, and a second controller;

the first controller is deployed on a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller;

the second controller is deployed in each test station in the future network test facility platform, so that the orchestrator performs resource data interaction with the test station through the second controller;

the orchestrator is used for carrying out resource data interaction with the backbone network or the test site according to the resource requirements of the users, and carrying out orchestration and management on the resource data in the backbone network or the test site.

In one embodiment, the orchestrator comprises a service abstraction layer, a network element abstraction layer, and a network device layer;

the service abstraction layer is used for providing network connection service and network configuration service for the user according to the user requirement; the network element abstraction layer is used for carrying out configuration management on the network elements in the backbone network or the test site, and the configuration management at least comprises network element life cycle management and network element basic configuration management; the network element is not a physical network element or a virtualized network element; and the network equipment layer is used for carrying out resource data interaction with each network equipment in the future network test facility platform.

In one embodiment, the first controller is a backbone slice controller;

the first controller is further configured to connect with each network device in the backbone network based on a corresponding communication protocol, and acquire resource data in each network device in the backbone network; the first controller is further used for acquiring and displaying the topological relation of each network device in the backbone network; the first controller is further configured to send a first configuration instruction to each network device in the backbone network, so that the network device that receives the first configuration instruction updates configuration information based on the first configuration instruction.

In one embodiment, the first controller is further configured to monitor an operation status of each network device in the backbone network, and to alarm when the network device in the backbone network fails, where the operation status includes at least a network status, a connectivity status, an underrlyy network status, and an alarm status.

In one embodiment, the second controller is a test station controller; the second controller is further configured to manage cloud host configuration parameters in the test site according to a second configuration request after receiving the second configuration request of the test site; the second controller is further configured to manage cloud host configuration parameters of the user according to a third configuration request sent by the user after receiving the third configuration request; the second controller is further used for sending a cloud hard disk configuration instruction to the test site so that the test site can change cloud hard disk configuration information according to the cloud hard disk configuration instruction; the second controller is also used for carrying out network monitoring and management on each network device in the test site; the second controller is further configured to send a fourth configuration request to each network device in the test site, so that the network device that receives the fourth configuration request updates firewall configuration parameters according to the fourth configuration request; the second controller is further configured to send a fifth configuration request to each network device in the test site, so that the network device that receives the fifth configuration request updates the DCI configuration parameters according to the fifth configuration request.

In one embodiment, the second controller is further configured to provide a network configuration interface for the user based on different network configuration environments, so that the user changes corresponding network configuration parameters based on the network configuration interface; the second controller is further configured to provide network services to the user based on the SDN controller; the second controller is further configured to send an operation and maintenance instruction to each network device in the test site, so that the network device that receives the operation and maintenance instruction changes operation and maintenance configuration according to the operation and maintenance instruction; the second controller is also used for isolating and protecting the resource data in the network equipment in the test site based on preset safety rules.

In one embodiment, the orchestrator comprises a network service design module and a network service operation and maintenance module; the process of arranging the resources by the arranger according to the resource requirements of the user comprises the following steps: the network service design module carries out data modeling according to the resource requirement of the user to obtain a requirement model and sends the requirement model to the network service operation and maintenance module; and the network service operation and maintenance module correspondingly distributes network resources to each network device in the future network test facility platform after verifying the demand model.

In one embodiment, the process of the web service design module obtaining the demand model includes: utilizing a path design module to design a resource distribution path corresponding to the backbone network according to the resource requirement of the user; utilizing a service detection design module to design a resource distribution path corresponding to the test site according to the resource requirement of the user; and performing data modeling according to the results of the path design module and the service detection design module to obtain the demand model.

In one embodiment, the process of allocating network resources by the network service operation and maintenance module includes: after the verification module is used for verifying the demand model, the deployment module is used for deploying the network resources according to the demand model to obtain a deployment result; and correspondingly allocating the network resources to each network device by using an allocation module according to the deployment result.

In one embodiment, the network service operation and maintenance module is further configured to monitor network resources of each network device by using the state monitoring module, and update the deployment result according to the monitoring result.

In a second aspect, the present application further provides a computer device, including a memory and a processor, where the memory stores a computer program, and the processor implements the steps performed by the resource management system of any one of the above first aspects when executing the computer program.

In a third aspect, the present application also provides a computer-readable storage medium, on which a computer program is stored, which computer program, when being executed by a processor, realizes the steps performed by the resource management system according to any one of the above first aspect.

The resource management system comprises an orchestrator, a first controller, and a second controller; specifically, the first controller is deployed in a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller; the second controller is deployed in each test station in the future network test facility platform, so that the orchestrator performs resource data interaction with the test stations through the second controller; the orchestrator is used for performing resource data interaction with the backbone network or the test site according to the resource requirements of the users, and performing orchestration and management on the resource data in the backbone network or the test site. Therefore, a distributed cloud platform is provided for a future network test facility platform, so that flexible management and arrangement of resource data of each network device in a backbone network or a test site in the future network test facility platform can be realized safely and reliably; based on the orchestrator, the first controller and the second controller, unified coordination and management of resource data of the whole network are realized from top to bottom, and stable and reliable operation of infrastructure and upper layer tests of a future network test facility platform is ensured.

Drawings

FIG. 1 is a diagram illustrating an exemplary architecture of a resource management system;

FIG. 2 is a diagram of an orchestrator hierarchy according to one embodiment;

FIG. 3 is a diagram illustrating interaction of data in the resource management system in one embodiment;

FIG. 4 is a flow diagram illustrating resource orchestration according to one embodiment;

FIG. 5 is a schematic flow chart illustrating obtaining a demand model in one embodiment;

FIG. 6 is a flow diagram illustrating allocation of network resources according to one embodiment;

FIG. 7 is a flow diagram illustrating a process for allocating network resources based on network service requirements, according to an embodiment;

FIG. 8 is a diagram of a test site deployment architecture in one embodiment;

FIG. 9 is a schematic diagram of a disaster recovery architecture of a test site in one embodiment;

FIG. 10 is a schematic diagram illustrating the overall architecture connectivity of a future network test facility platform in one embodiment;

FIG. 11 is a diagram illustrating an internal structure of a computer device in one embodiment.

Detailed Description

In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.

The current internet architecture presents significant technical challenges in terms of scalability, security, real-time, mobility, manageability, etc. The future network test facility project aims to provide a test verification platform for basic theory and core networking mechanism research of a novel network system structure, evolve or generate the novel network system structure by changing core elements such as a data transmission format, a node forwarding mode and a routing control strategy of a network layer, and provide the test verification platform for basic theory and key technology innovation research of a corresponding 7-type network system structure which can be formed by changing one, two or three of three core elements.

The future network test facility aims to break through the technical difficulty of verifying the novel network system structure, maintain the basic advantages of the existing internet, realize stable transition, overcome the core equipment, system and service core technology, and support the network science and network space technology research in China. The future network test facility supports core technology research on core chips and key equipment, a routing control technology, a network virtualization technology, a safe and reliable mechanism, a large-scale networking test, an innovative service system and the like. The method has great effect on exploring the technical route and development road of future network development.

Based on this background, through long-term research and collection, demonstration and verification of experimental data, the applicant finds that in a traditional network, data centers are interconnected through a physical network deployed by an operator, and a user uses computing resources and storage resources located in the data centers and network resources located in an underlying network in a fixed form. However, conventional networks have a number of problems in flexibility and manageability. First, the underlying physical network carries network functions such as network security, network management, network measurement, network optimization, etc. with proprietary hardware, and maintenance, learning, and updating of proprietary hardware devices pose a significant burden on network management. Secondly, the traditional network can only realize relatively simple intensification of computing and storage resources, the intensification is usually based on a single hardware server, when the work load fluctuates greatly, users and data center managers cannot perform dynamic deployment and expansion capacity at any time, and peak load processing can only be realized by deploying redundant equipment in advance. Finally, in conventional networks, the resource monitoring functions are often separated from the physical devices, making real-time and global monitoring of resources by administrators difficult. Cloud computing provides users with the computing resources and storage resources required by the users through resource pooling and resource abstraction on the basis of a traditional data center. The cloud computing realizes fine granularity on management and coarse granularity on abstraction, and pays most of management, deployment and configuration work to a platform to realize automatic operation and maintenance, and provides a uniform resource interface without losing specificity for a user. However, cloud computing provides only a feasible solution for computing and storage resources in a data center, and does not solve many problems existing in an underlying network.

Interconnection between clouds and telecommunication cloud are two scenes of cloud network fusion, and represent two technical routes which take cloud as a core, network as an auxiliary, network as a core and cloud as an auxiliary respectively. Interconnection among clouds refers to interconnection among multiple clouds (or multiple data centers), and the development mainly uses strong network capacity as support, so that the relevant characteristics of cloud computing are kept. At present, the method for implementing interconnection between clouds is mainly a physical splicing means, and Network interconnection between different data center resource pools is supported by using a VPN (Virtual Private Network) slice or an SD-WAN (Software Defined Wide Area Network) on an underlying Network. The physical splicing mode can better process heterogeneous DCN/WAN (Data Center Network/Wide Area Network ) manufacturers, but the splicing mode violates the flexibility of cloud computing and cannot process the fluctuation of Network load. The telecom cloud expands the logical boundaries of the data center, applying the concept of virtualization to the underlying physics. But doing so also raises new issues such as cost issues, reliability of network resource pools, reachability of monitoring and management, etc.

In various resource arranging and managing systems of the present day, the concept of cloud network deep fusion is not really realized. First, in processing computing and storage resources in a data center and network resources of an underlying physical network, a physical splicing means is generally adopted as a mainstream technical route. This approach actually creates a barrier to the uniform orchestration and management of resources. Secondly, various resource management systems currently cover the resources of a single data center, and detailed and effective visual management and control are lacked in the scope of multiple data centers. Finally, the various technical routes available are usually a combination of independent systems. For future network test facilities, an administrator needs a system for coordinating different functions and providing unified coordination and management of the whole network from the design point of view. In the future, network test facilities cover dozens of test sites, so that a resource arranging and managing system which is high in performance, easy to manage, safe, reliable, flexible and controllable is urgently needed.

In view of this, the present application provides a resource management system for a future network test facility platform. The deep cloud Network fusion concept is provided for cloud, network and edge multi-scenes, and physical splicing of a traditional technical route is replaced by Network following cloud through the combination of an SDN (Software Defined Network) gateway and a WAN access router (Wide Area Network access router) in a resource pool in the meaning of physical equipment. Meanwhile, aiming at the use requirements of users, automatic and templated resource management is realized, and the test and management requirements of a cross-data center are met; in addition, the method and the system realize the unified coordination and management of the whole network from top to bottom by integrating the functions of the backbone network slice controller and the test station, and simultaneously keep the flexibility and the expansibility of cloud computing, the robustness and the stability of the traditional data center and the monitorability of an end-to-end physical network.

In one embodiment, as shown in FIG. 1, a resource management system is provided that includes an orchestrator 101, a first controller 102, and a second controller 103. The orchestrator 101, the first controller 102, and the second controller terminal 102 may be, but not limited to, various switches, routers, personal computers, notebook computers, terminals, or servers, and the servers may be implemented by independent servers or a server cluster composed of a plurality of servers. In fig. 1, two second controllers are deployed corresponding to two test stations, but the number of the second controllers is not limited.

Specifically, the first controller is deployed in a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller; the second controller is deployed in each test station in a future network test facility platform, so that the orchestrator performs resource data interaction with the test stations through the second controller; the orchestrator is used for carrying out resource data interaction with the backbone network or the test site according to the resource requirements of the users, and carrying out orchestration and management on the resource data in the backbone network or the test site.

The future network test facility platform not only ensures the stable, safe and reliable operation of the test facility, but also has the capability of providing convenient and flexible test resource scheduling and management for various test user requirements. Therefore, the embodiment of the application provides a resource management system, which constructs a relatively perfect operation management and test service system for a future network test facility platform, and realizes the management and arrangement functions of resource data. The resource scheduling management system is called by a test service system, faces to cross-node test users, and uniformly schedules and manages dynamic network resources of test facilities, namely an L3 (network layer) and a dynamic L2 (data link layer). And the system is matched with a node resource scheduling management system distributed on a test facility, and coordinates and manages static network resources (static L2 (data link layer), L1 (physical layer/optical channel) and L0 (bare optical fiber)) and programmable resources (including computing resources and storage resources) positioned at each test site.

Aiming at a scene of cloud Network fusion, a resource management system is positioned on a control plane of a future Network test facility platform, and by adopting the idea of cloud Network deep fusion, SDN gateway (Software Defined Network gateway) and WAN access router in a resource pool are innovatively combined with physical equipment. The resource management system exposes management interfaces such as L2VPN, L3VPN, NFV (Network Function Virtualization), security, BOD (Bandwidth on Demand), service X and the like to a Network administrator through a Network Service Platform NSP-O (Network Service Platform-Orchestration), and performs unified management and scheduling on edge application, an access Network and a core Network through a Network Service abstraction layer NSP-C (Network Service Platform-Control) from a southbound interface. While receiving resource data feedback from a FITI (Future Internet Technology Infrastructure) backbone and a test site, orchestration and management of resource data is performed for the FITI backbone and the test site.

The resource data interacted between the backbone network and the test site and the orchestrator includes, for example, various manageable resource data such as network resources, computing resources, storage resources, or network device information, which is not fully exemplified herein.

The resource management system has the following five advantages: 1. and (4) automation. In the future, the network infrastructure takes charge of multiple scenes of cloud, network and edge, and the system realizes automation and templating according to the characteristics of large-scale and complex scenes. 2. Flexibility. Network connection and network service need to realize a linkage mechanism, and the system has the capability of being flexibly defined and combined according to needs. 3. And (4) expansibility. The dynamic supporting capability of the network can be required according to the service requirement in the sensitive service scene, and the system can be transversely expanded from the network service configuration level. 4. And (4) robustness. The system realizes real-time monitoring of the whole network resources and the network element state, can dynamically adjust the equipment configuration according to the network element state, and ensures the service stability. 5. And (4) visualization. The system provides service end-to-end link state, configuration viewing capabilities, and provides network quality and fault analysis capabilities.

The resource management system is positioned above a backbone network and an edge cloud site (test site), is connected with the backbone network through a first controller, and is connected with the test site through a second controller. The resource management system provides corresponding services for upper network administrators and users, specifically, receives resource requirements of the users through the orchestrator, performs resource data interaction with a backbone network or a test site based on the resource requirements, and allocates corresponding resources, such as network resources or storage resources, to the users. Meanwhile, the resource data in the backbone network or the test site is arranged and managed through the orchestrator. Furthermore, corresponding resource arrangement and coordination are carried out through controllers deployed on the FITI backbone network and the edge cloud site, and the design mode fully embodies the idea of cloud network fusion.

It should be noted that the orchestrator, the first controller, and the second controller in the resource management system may be implemented by software algorithms, where the algorithm corresponding to the first controller may be deployed in a backbone network to implement a corresponding function, and the algorithm corresponding to the second controller may be deployed in a test site to implement a corresponding function. The orchestrator may be deployed in a network device separate from the backbone and the test site, or it may be deployed directly in either the backbone or the test site.

The resource management system comprises an orchestrator, a first controller, and a second controller; specifically, the first controller is deployed in a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller; the second controller is deployed in each test station in the future network test facility platform, so that the orchestrator performs resource data interaction with the test stations through the second controller; the orchestrator is used for carrying out resource data interaction with the backbone network or the test site according to the resource requirements of users, and carrying out orchestration and management on the resource data in the backbone network or the test site. Therefore, a distributed cloud platform is provided for a future network test facility platform, so that flexible management and arrangement of resource data of each network device in a backbone network or a test site in the future network test facility platform can be realized safely and reliably; based on the orchestrator, the first controller and the second controller, unified coordination and management of resource data of the whole network are realized from top to bottom, and stable and reliable operation of infrastructure and upper layer tests of a future network test facility platform is ensured.

In one embodiment, the orchestrator comprises a service abstraction layer, a network element abstraction layer, and a network device layer; the service abstraction layer is used for providing network connection service and network configuration service for the user according to the user requirement; the network element abstraction layer is used for carrying out configuration management on network elements in a backbone network or a test site, and the configuration management at least comprises network element life cycle management and network element basic configuration management; the network element is not a physical network element or a virtualized network element; and the network equipment layer is used for carrying out resource data interaction with each network equipment in a future network test facility platform.

The logical hierarchy is divided, and the orchestrator mainly comprises the following three hierarchies: a service abstraction layer, a network element abstraction layer, and a network device layer. Referring to fig. 2, a schematic diagram of a hierarchical structure of an organizer provided in an embodiment of the present application is shown.

The Service abstraction layer (NSD) is located at the top layer, and is intended to provide a Network connection Service and a configuration Service of a Network function, in other words, it is used to provide a Network connection Service and a Network configuration Service for a user according to a user requirement.

Configuration services provided by the orchestrator may be specifically classified into intra/inter cloud connection services, wide area network connection services, physical device services, mirror resource services, and cloud resource services. The intra-cloud/inter-cloud connection service includes a Virtual Local Area Network (VLAN) service and a Virtual extended Local Area Network (VxLAN) service; the wide area Network connection service includes MPLS (Multi-Protocol Label Switching), SRv6 (Segment Routing IPv6, segment Routing based on IPv6 forwarding plane), ipsec vpn (Internet Protocol Security Virtual Private Network, virtual Private Network based on Internet Security Protocol) service; the entity equipment service is responsible for providing entity safety equipment and entity industrial equipment; the mirror image resource service is responsible for providing a mirror image and a template; the cloud resource service provides services such as topology management, quota management, cloud hosts and the like.

The Network element abstraction layer (NFD, network Function Descriptor) is located in the middle layer, provides a Network service instance management Function, and can perform configuration management on Network elements in a backbone Network or a test site. For example, the network element lifecycle management and the basic configuration management may be performed on physical network elements or virtualized network elements such as a firewall instance, an LB instance, an IPS instance, a router instance, and a VPN instance.

The Network Device layer (NDD) is located at the bottom layer, and performs resource data interaction with a backbone Network in a future Network test facility platform or each Network Device of a test site, and the nanotube of the Network Device layer includes a cloud, a Network, an Edge, and a Network Device with multiple dimensions or an Edge server generating a VNF (Virtual Network Function) Network element, that is, may manage resource data of a CPE (Customer Premise Equipment), an Edge cloud Network of the future Network test facility platform, an access Network, a backbone Network, and the like, and perform interaction.

In the embodiment of the application, an innovative organization concept of a service abstraction layer, a network element abstraction layer and a network equipment layer is provided, and by means of the innovative organization concept, support and support can be provided for flexible adjustment of a resource management system architecture, elastic expansion of resources, visual high efficiency of operation and maintenance and global controllability of a network.

In an embodiment, please refer to fig. 3, which illustrates a data interaction diagram of a resource management system according to an embodiment of the present application. The architecture of the future network test facility platform and the data interaction connection relationship with the resource management system are shown in fig. 3.

For a future network test facility platform, data traffic enters an FITI backbone network from a PE (provider edge) among test sites, and an end-to-end L2/L3 network dedicated line is formed through an L2/L3 dedicated line and an SRv6 protocol erected in the FITI backbone network. In the test site, the server, the virtualization platform, the Spine/Border router and the PE are connected with each other through the VLAN and the VxLAN, and a network in the test site is formed.

The resource management system simultaneously controls the first controller, the second controller, the router, the backbone network and the infrastructure equipment in the test site, obtains resource data of the backbone network and the test site from a physical layer, and performs unified arrangement and management.

The layout flow of the entire resource data will be described below.

In one embodiment, as shown in fig. 4, a schematic flow chart of resource orchestration provided by an embodiment of the present application is shown. The orchestrator comprises a network service design module and a network service operation and maintenance module; the process of the orchestrator performing resource orchestration according to the resource requirements of the user comprises the following steps:

step 401, the network service design module performs data modeling according to the resource requirement of the user to obtain a requirement model, and sends the requirement model to the network service operation and maintenance module.

The resource requirement of the user is, for example, a service requirement of the user on a network resource or a storage resource.

The network service design module can mainly perform requirement modeling based on the resource requirement of the user, so that the network service operation and maintenance module can meet the network requirement of the user based on the established requirement model.

Please refer to fig. 5, which illustrates a flowchart of acquiring a demand model according to an embodiment of the present application. The process of acquiring the demand model by the network service design module comprises the following steps:

step 501, a path design module is used for designing a resource distribution path corresponding to a backbone network according to the resource requirement of a user.

And 502, designing a resource distribution path corresponding to the test site according to the resource requirement of the user by using a service detection design module.

And 503, performing data modeling according to the results of the path design module and the service detection design module to obtain a demand model.

The whole resource data arrangement process is divided into two parts, namely network service design and network service operation and maintenance. When a user puts forward a network service requirement, the network service design module carries out switch and path design through the path design module so as to determine the resource distribution path design corresponding to the backbone network. Meanwhile, a service monitoring design is carried out by utilizing a service detection design module so as to determine the resource allocation path design corresponding to the test site. Furthermore, data modeling is carried out on the results of the orchestrator path design module and the service detection design module to obtain a demand model. The demand modeling can be performed based on a network of YANG (Yet other Next Generation modeling language), so as to obtain a model for modeling a network service based on YANG, that is, the demand model.

Step 402, the network service operation and maintenance module verifies the demand model and then correspondingly allocates the network resources to each network device in the future network test facility platform.

Please refer to fig. 6, which shows a flowchart of allocating network resources according to an embodiment of the present application. The process of correspondingly distributing the network resources by the network service operation and maintenance module comprises the following steps:

step 601, after the verification module is used for verifying the demand model, the deployment module is used for deploying the network resources according to the demand model, and a deployment result is obtained.

Step 602, the allocation module is utilized to allocate the network resources to each network device according to the deployment result.

And after verification, the deployment module based on the strategy-driven network service deployment deploys the network resources according to the demand model to obtain a deployment result. And according to the deployment result, the allocation module allocates network resources based on the SDN controller. In addition, the network service operation and maintenance module also carries out automatic dynamic scheduling control on the network service.

In one embodiment, the network service operation and maintenance module is further configured to monitor the network resources of each network device by using the state monitoring module, and update the deployment result according to the monitoring result.

The state monitoring module is mainly used for monitoring physical network resources and states, monitoring network service states and analyzing the network resources and states of each network device. Each network device refers to a router, a switch, a firewall or other devices. Based on the feedback transmitted by the state monitoring module, the network service operation and maintenance module performs automatic dynamic scheduling control based on the deployment module, and feeds the result back to the SDN controller, namely the allocation module, so as to update the resource allocation result.

In addition, in the embodiment of the present application, the orchestrator simultaneously performs Overlay and Underlay level monitoring on the network resources and the service state at the top layer. The monitoring of the Overlay layer depends on the monitoring of network states by Openstack (cloud computing management platform project) and SRv6, and the monitoring of the Underlay layer depends on the direct feedback of resource use conditions by Openstack, routers, switches and specific servers. To facilitate understanding of the process of resource arrangement and deployment, an embodiment of the present application further provides a schematic processing flow diagram for performing network resource allocation based on network service requirements, as shown in fig. 7. The network service design module carries out YANG-based demand modeling, the network service operation and maintenance module carries out network resource allocation based on an SDN controller, meanwhile, the network service operation and maintenance module carries out monitoring on network resource states of devices such as a router, a switch or a firewall, and the network service operation and maintenance module updates the deployment of resource allocation based on monitoring results.

In the embodiment of the application, the resource scheduling and management system is realized based on the distributed cloud platform, so that open and flexible test service is provided for users.

In one embodiment, in addition to orchestrating and managing resource data, the resource management system also has sophisticated system-platform level high availability functionality including monitoring, isolation, evacuation, and recovery of system resources. The monitoring function monitors the node state from three dimensions of calculation, storage and network. Aiming at the state of computing resources, the system monitors the utilization rate of the computing resources including a Central Processing Unit (CPU) and a memory; aiming at a storage state, a system monitors the use condition of a cluster total disk and the read-write rate condition of a single disk; aiming at the network state, the system monitors the uplink and downlink rate and the flow of the network equipment and also monitors the accessibility of three networks of a management plane, a data plane and a storage plane. Once the abnormal condition is found, the isolation, evacuation or recovery is carried out according to the specific scene, and the administrator is informed to carry out processing in the form of mail alarm and WeChat alarm. Specifically, the resource management system may implement each function based on the first controller or the second controller.

As mentioned above, the resource management system includes a first controller for connecting with the backbone network. The specific functions that can be implemented by the first controller will be described below.

In one embodiment, the first controller is a backbone slice controller; the first controller is further configured to connect with each network device in the backbone network based on the corresponding communication protocol, and acquire resource data in each network device in the backbone network; the first controller is also used for acquiring and displaying the topological relation of each network device in the backbone network; the first controller is further configured to send a first configuration instruction to each network device in the backbone network, so that the network device that receives the first configuration instruction updates the configuration information based on the first configuration instruction.

The first controller provided in the embodiment of the present application is a multi-vendor compatible backbone slice controller, and the first controller can implement 14 primary functions and 36 secondary functions in total. The functions realized by the backbone network slice controller can be specifically divided into three types, namely a docking function, a management and arrangement function and a monitoring and alarming function.

The docking function includes connecting with each network device in the backbone network based on the corresponding communication protocol, and acquiring resource data in each network device in the backbone network. Each network device in the backbone network is, for example, a director device, a northbound device, a router, and the like. The communication protocol is a communication protocol corresponding to each network device.

Specifically, the docking function mainly comprises three primary functions, namely a southbound device docking function, a northbound orchestrator docking function and a service system docking function. The southbound device docking function is mainly responsible for southbound docking core routers, aggregation routers and access routers, and supports docking Management of different types of router devices through southbound Interface protocols of the industry standards, such as Netconf (Network Configuration Protocol), SNMP (Simple Network Management Protocol), CLI (Command Line Interface), and the like. The northbound orchestrator interfacing function supports upward abstraction of underlying network devices and network services, in addition to supporting northbound interfacing with an upper-layer orchestrator in a Restful API (Application Programming Interface) manner and responding to an API (Application Programming Interface) call instruction of the orchestrator. The service docking function is mainly responsible for supporting the definition of an abstract template of a service system, such as the template definition based on a TOSCA (Topology and organization for Cloud Applications) model; the instantiation execution is supported according to the service system template; and real-time monitoring on the state of the business system instance is supported.

The management and arrangement function comprises the steps of acquiring and displaying the topological relation of each network device in the backbone network; and sending a first configuration instruction to each network device in the backbone network so that the network device receiving the first configuration instruction performs functions of updating configuration information and the like based on the first configuration instruction. The configuration instruction includes configuration information that needs to be updated, such as network parameter configuration information, and the update refers to operations such as modification, addition, or deletion.

Specifically, the management and orchestration functions consist of topology management, configuration management, L2/L3VPN orchestration, and support for TE/BE (Traffic Engineering/Best Effort) modes. First, topology management is mainly responsible for topology connection collection and topology presentation. The topology connection collection requires that a network physical connection relation is displayed through protocols such as BGP-LS (Border Gateway Protocol Link-State, border Gateway Protocol-Link State extension Protocol); and the topology presentation requires the system to present the topology of the network element and the link physical network in real time according to the collected complete networking information. And secondly, the configuration management is mainly responsible for supporting automatic issuing, modification and deletion of configuration of the southbound physical equipment in real time through protocols such as Netconf and the like. In addition, operation and maintenance personnel can check the whole network configuration through the functional module, network equipment is prevented from logging in one by one, equipment configuration checking time is shortened, and the possibility of manual misoperation is avoided. Secondly, the L2/L3VPN function is responsible for supporting VPNv4/VPNv6/L2VPN template configuration, so as to realize VPNv4/VPNv6/EVPN/VPWS over SRv6 (Virtual Private Wire Service). Finally, the system also supports soft slice definition, multipath slice definition, main and standby multipath priority selection and the like, and realizes slice selection based on application strategy and SR (Service Router) best effort by providing slice selection and adjustment based on application strategy and a best effort forwarding mechanism based on SR.

In one embodiment, the first controller is further configured to monitor an operation status of each network device in the backbone network, and perform an alarm when the network device in the backbone network fails, where the operation status includes at least a network status, a connectivity status, an underrlyy network status, and an alarm status.

Wherein yet another type of function implemented by the first controller is a monitoring and alarm function. The monitoring and alarming function comprises monitoring the operation states of the network equipment in the backbone network, such as the network state, the connectivity state, the Underlay network state, the alarming state and the like, and alarming when the network equipment in the backbone network breaks down.

Specifically, the monitoring and warning function includes several sub-functions of network state sensing, connectivity detection, underlay state monitoring, device monitoring, warning management and operation visualization. 1. The network state perception is responsible for automatically collecting the whole network equipment information and the link information through BGP-LS, and constructing the whole network topology based on the network map. Meanwhile, the subfunction also supports network element equipment display and equipment-to-equipment connection state information display related to an overlay channel, and can sense the slice network quality and state through SRv6 Ping or Tracert (tracking routing). 2. The connectivity measurement is responsible for providing Ping (Packet Internet Groper) and Tracert diagnostic tools in a Web (webpage) graphical mode, detecting the accessibility of a link in real time and displaying network element equipment passing through the path. 3. The Underlay status monitor is responsible for monitoring router device and interface status, router device interface rate, router table entries, and Underlay network links. The router equipment and the interface state provide relevant data for the router equipment managed by the platform; the router device interface rate is responsible for collecting the information of bps (bit per second), pps (packet per second) and the like of the bottom layer router device interface; the method comprises the steps that a routing table entry monitors and obtains Information such as a Media Access Control (MAC) Address table, a Forwarding Information Base (FIB) table, an Address Resolution Protocol (ARP) table and the like of router equipment in real time; the monitoring of the Underlay network link supports the real-time acquisition of the bandwidth utilization rate of the network link, the time delay of the network and the service and the performance information of packet loss through related protocols such as SNMP, telemetrology and the like. 4. The equipment monitoring utilizes intelligent operation and maintenance equipment, the detailed information of the equipment data is acquired through telemeasurement (network monitoring technology), the real-time information of the equipment can be checked by hovering the equipment, meanwhile, statistical data of the equipment can be stored in a database, and historical data display is conducted on an operation and maintenance interface. 5. The alarm management is responsible for triggering, sending and recovering the alarm. The system triggers alarm according to the real-time monitoring information of the Underlay state in the abnormal state of the router equipment level and the interface level, automatically sends the alarm information in a mail mode, and supports automatic recovery of the alarm event after abnormal recovery. 6. The operation visualization function supports the visualization function in both the application and the underwlay network monitoring. On the application level, the system realizes the application-based real-time path visualization, the traffic visualization and the network quality visualization; in the monitoring layer of the Underlay network, the system supports the visualization of topology/equipment/link based on the underlying network, and can help operation and maintenance personnel to conveniently and quickly monitor the real-time state of the network and quickly locate faults.

As mentioned above, the resource management system further comprises a second controller for interfacing with each of the laboratory sites. The specific functions that can be implemented by the second controller will be described below.

In one embodiment, the second controller is a test station controller; the second controller is further used for managing the cloud host configuration parameters in the test site according to the second configuration request after receiving the second configuration request of the test site; the second controller is further configured to manage the cloud host configuration parameters of the user according to the third configuration request after receiving the third configuration request sent by the user. The second controller is further used for sending a cloud hard disk configuration instruction to the test site so that the test site can change the cloud hard disk configuration information according to the cloud hard disk configuration instruction; the second controller is also used for carrying out network monitoring and management on each network device in the test site; the second controller is further configured to send a fourth configuration request to each network device in the test site, so that the network device that receives the fourth configuration request updates the firewall configuration parameters according to the fourth configuration request; the second controller is further configured to send a fifth configuration request to each network device in the test site, so that the network device that receives the fifth configuration request updates the DCI configuration parameters according to the fifth configuration request.

The test sites in the future network test facility platform can be divided into three types, namely a main node, a first type site and a second type site. Taking the master node as an example, the deployment architecture of the test site is shown in fig. 8, and the disaster recovery architecture of the test site is shown in fig. 9. Specifically, the test site adopts Openstack and Tungsten Fabric to build a programmable NFVi system, and meets the requirements of creation and deployment of VNFs in a single domain and a multi-domain and network pull-through of a bottom VPC/DCI (Virtual Private Cloud; data Center Interconnect). The second controller in the resource management system provides support for five primary functions, namely calculation virtualization, storage virtualization, network virtualization, operation and maintenance management, safety requirements and the like, and 18 secondary functions.

The second controller may manage user-related or test site-related cloud host configuration parameters, such as configuration of parameters of a cloud host network, cloud host images, IP addresses, and the like. Specifically, the computing virtualization function of the second controller includes managing cloud host configuration parameters in the test site according to a second configuration request after receiving the second configuration request of the test site; and after a third configuration request sent by the user is received, managing the cloud host configuration parameters of the user according to the third configuration request.

Specifically, the computing virtualization mainly comprises four functions of cloud host network management, mirror image management, PCI device transparent transmission and cloud host management. The cloud host network management is responsible for supporting network operations such as accessing a plurality of networks, removing added networks, customizing using IP addresses, binding Floating IP (Floating IP) and the like. The mirror image management is responsible for supporting the creation of the cloud host through mirror images, the mirror images support the configuration of attributes, the setting of mirror images as private and shared, the setting of protection and other attributes. The PCI (Peripheral Component Interconnect) device transparent transmission is responsible for supporting transparent transmission of the PCI device of the physical device into the cloud host. The cloud host management module in the computing virtualization has wide support functions and can be further divided into three dimensions of a basic function, an advanced service function and a management function. 1. The basic functions are mainly responsible for providing basic services related to the cloud host for the user, and comprise starting, shutting down, restarting, suspending, mounting and unloading the network card, mounting and unloading the cloud hard disk and locking and unlocking the cloud host; adjusting the configuration of the cloud host (CPU, memory and disk); when the cloud host is created, a specified system administrator password or a specified SSH key (Secure Shell key, encryption network transmission protocol based on the key) is supported; simultaneously mounting a plurality of cloud hard disks; and the cloud host operation management is realized through a webpage Console Console. 2. The advanced configuration function is on the basis of basic service, and provides highly-free cloud host resource configuration service mainly for users. Carrying out network security reinforcement on a cloud host, and configuring a security group; self-defining a cloud host configuration type (defining information such as a CPU, a Memory, a disk and the like), and supporting advanced attributes such as a Non-Uniform Memory Access (NUMA), a CPU thread strategy, a GPU and the like; the cloud host online migration function is provided, the cloud host is migrated among different hosts, and the service continuity is guaranteed; the method comprises the steps of realizing the creation of a cloud host by specifying an available domain and a specific physical host; supporting extra-large configuration computing requirements, supporting a CPU to reach 4 paths of 32 cores by a single cloud host, and enabling the maximum memory to reach 1TB; the method comprises the steps that a virtual machine supporting Boot from Volume (started from a cloud disk) is rebuilt; the snapshot can be converted to a mirror or cloud hard disk. 3. The management function module is responsible for providing a high level of differentiation and management for the administrator. Supporting the division of available domains and host sets; whether affinity/inverse affinity configuration is started or not is supported to be set for the cloud hosts in the cloud host group, and the cloud hosts can be distributed to the same host or different hosts according to requirements.

In addition, the storage virtualization function of the second controller comprises sending a cloud disk configuration instruction to the test site, so that the test site changes the cloud disk configuration information according to the cloud disk configuration instruction.

Specifically, the storage virtualization function is mainly focused on management and configuration services for the cloud hard disk. The following functions are supported: creating a cloud hard disk with a custom size; expanding the established cloud hard disk; mounting to a cloud host, and unloading from the cloud host; multiple storage back-ends are used simultaneously; configuring a Quality of Service (QoS) rule for the cloud hard disk type; snapshot and backup functions; multiple machine mount (Multiattach); the shooting process does not influence the snapshot function of the normal operation of the cloud host; performing backup operation on the cloud hard disk to realize full or incremental differential backup; restoring data by using the backup; the cloning function can realize complete cloning and linked cloning; hypervisor (virtual machine monitor) front-end QoS configuration and Ceph (distributed file system) back-end QoS configuration.

The network virtualization function of the second controller includes network monitoring and management of each network device in the test site, and may also send a fourth configuration request or a fifth configuration request to each network device in the test site, so that the corresponding network device performs firewall configuration parameter update or DCI configuration parameter update.

Specifically, the network virtualization function provides services based on network management, load balancing, firewalls, SDNGW, DCI management. The Load balancing supports ECMP (Equal-Cost Multi-Path) and LBaaS (Load Balance as a Service) for each virtual network (including software implementation, or hardware implementation of mainstream Load balancing vendors F5, a10, avi, and the like); the firewall module supports an application policy set of Tag-base, supports dynamic addition/deletion, can set sharing and auditing attribute firewall policies, can add/delete rules (rules support specified names, protocol types, actions, source and destination addresses, source port/port ranges, destination port/port ranges, IP versions and descriptions), and supports setting rules with sharing and enabling attributes; the SDNGW module supports L2 (VPLS (Virtual Private LAN Service), L2 circuits, L2VPN, and EVPN), L2.5/MPLS (LDP (Label Distribution Protocol), RSVP (Resource Reservation Protocol), P2MP (Point 2 multiplex Point, point-to-multipoint master station), LDP and RSVP), L3 (unicast and Multicast L3 VPN), multicast technology (PIM (Protocol Independent Multicast, protocol Independent Multicast), IGMP (Internet Group Management, internet Group Management Protocol), MLD (Multicast router, snooping discovery Protocol), GRE (Generic Routing, network Encapsulation Protocol)), and a Network Server (BNG Network) including a Network Gateway 2, broadband Network Server (Network Gateway, bntp 2, broadband Network 2, network 2; layer Two Tunneling Protocol), PPPoE (Point-to-Point Protocol over Ethernet), DHCP (Dynamic Host Configuration Protocol) v4/v6, PWHT, static and Dynamic user interface, DHCP local Server and relay, qinQ, integrated firewall filter and RPF check, support for advanced Routing Protocol segment, support for OpenConfig/YANG, gRPC, thread, NETCONF, JSON/XML, REST APIs, support for rich on-box scripts through Python; the DCI management module supports the list state management of cross-domain DCI link resources and supports the automatic creation, acquisition, updating and deletion of the cross-domain DCI link resources.

In one embodiment, the second controller is further configured to provide a network configuration interface for the user based on the different network configuration environments, so that the user changes the corresponding network configuration parameters based on the network configuration interface; the second controller is further used for providing network service for the user based on the SDN controller; the second controller is further used for sending an operation and maintenance instruction to each network device in the test site, so that the network device receiving the operation and maintenance instruction changes operation and maintenance configuration according to the operation and maintenance instruction; the second controller is also used for isolating and protecting resource data in the network equipment in the test site based on preset safety rules.

The network virtualization function of the second controller may provide a network configuration interface for the user based on different network configuration environments, so that the user may change the corresponding network configuration parameter based on the network configuration interface. For example, the network management module in network virtualization mainly provides support for different scenarios and technologies, provides service support for operation and maintenance and management personnel, and provides support related to SDN controllers. First, the network management module supports a variety of network scenarios, network technologies, and network devices, such as: IPv4/IPv6 dual stack; network types such as DPDK, SRIOV, smartNIC and the like; centralized/distributed SNAT, floating IP; a Service-Chain (Service-Chain) comprising a VNF/PNF; various data plane encapsulation models including VxLAN and MPLS over GRE/UDP; seamless integration with bare metal networks; completing L3VPN, EVPN, site-to-site IPSec by software mode; the deployment model of Remote computer is supported to adapt the scenario of Edge Cloud. Secondly, the network management module provides subnet selection service for users, supports network QoS speed limit, and supports virtual machine scheduling based on the minimum bandwidth QoS of the network. The user can create the private network functions which are isolated from each other among projects through the network management module, and can manage the private network functions, modify network information, add subnets and ports and the like. For operation and maintenance and management personnel, the network management module supports a distributed gateway deployment mode, supports high availability of a control platform, and supports dual-master redundancy, including expansibility support. The module also provides virtual router functions, supports management of virtual routers through management interfaces, including adding/deleting networks for routers, binding/unbinding router gateways. In addition, the network management module also provides a dynamic real-time network topological graph, and an administrator can drag and pull through a topological interface to quickly create resources (cloud hosts, routers and networks).

The network virtualization function of the second controller may also provide network services to the user based on the SDN controller. For example, SDN controller related functions in the network virtualization function mainly include the following four points: the SDN controller can provide a visual interface and can display the network connection condition, the resource occupation condition and simple site and application functions of an Overlay network and a cloud platform; the SDN controller supports RESTful API, can be seamlessly combined with an OSS/BSS system of OpenStack or other service providers, and supports mixed environment deployment; high-availability support of an SDN control plane is provided, HA dual-computer redundancy deployment can be achieved, and expansion can be carried out; the SDN controller supports seamless interfacing with Kubernets, openShift, VMware vCenter networks; the SDN controller supports seamless network connection from private Cloud to public Cloud (AWS (Amazon Web Services, amazon Web Services), azure and Google Cloud), and issues a unified security policy.

The operation and maintenance management module of the second controller may send an operation and maintenance instruction to each network device in the test site, so that the network device receiving the operation and maintenance instruction changes the operation and maintenance configuration according to the operation and maintenance instruction. Specifically, the operation and maintenance management module provides an automation tool, a compatibility module, a user authentication and authorization module, a resource metering and quota module, and a system design module. 1. The automation tool is responsible for providing batch deployment and management tools, and realizes automatic rapid deployment, installation and capacity expansion of the cloud platform. The administrator can realize the operations of configuration change, modification and the like of the cloud platform cluster through the management function. In addition, each component adopts a containerization technology, version upgrading and degrading can be conveniently carried out, and the operation of the whole cloud platform cannot be influenced. 2. The compatibility module supports the support of KVM (Kernel-based Virtual Machine) virtualization software, all RESTful API standards of open source OpenStack, heterogeneous hardware environments (including server equipment, network equipment, storage equipment and the like), and the like. 3. The user authentication and authorization module is responsible for operations such as creating, inquiring and managing the project and supports management of members, member rights and the like in the project. The module can also perform operations such as creating, deleting, editing, password modifying, mailbox modifying and the like on a user account, and provides a role management function, wherein the role defines the authority of the account, and the default role comprises an administrator, a domain administrator, a common user, a read-only user, a project administrator and a financial administrator. And supporting the user-defined role and the corresponding authority. 4. The resource metering and quota provide a graphical interface for a user, and the user can view storage capacity, hardware information, cluster CPU utilization rate, cluster memory utilization rate, cluster IOPS (input/output operands per second), and cluster IO (input/output interface) bandwidth through the interface. In addition, the system also supports the user work order and provides a resource quota function, and all items have default resource quotas (VCPU, internal memory, hard disk size, hard disk number, network number and the like). 5. The system setting provides cloud platform global setting service for an administrator, and supports the setting of platform operation parameter default values, including parameter default values such as a cloud host, storage, a network, a memory, a key pair, a virtual kernel, a storage size, a backup size, a network bandwidth and a snapshot.

The safety monitoring function of the second controller is also used for isolating and protecting resource data in the network equipment in the test site based on preset safety rules. Specifically, the safety monitoring function can provide safety management, network isolation and user data protection of the test site, and supports setting of a safety group function and a safety group default rule; supporting the setting of a firewall and realizing policy management through rules; supporting a resource operation log; RBAC (Role-Based Access Control) is supported; support forwarding plane encryption; SSH key unified management is supported. The safety monitoring function also can be used for safely isolating the cloud host network, the network and the external network, and the cloud host can not receive the non-broadcast message of which the destination address is not self. Meanwhile, the safety monitoring function also carries out encryption protection on user data in the cloud operating system, and only the user can access the cloud operating system.

In the embodiment of the application, three backbone network slice controller functions of a docking function, a management and arrangement function and a monitoring and alarming function, and five test site functions of calculation virtualization, storage virtualization, network virtualization, operation and maintenance management and safety monitoring are innovatively integrated. The test resource platform for uniformly coordinating, managing and scheduling the whole network is realized from top to bottom, and the stable and reliable operation of the infrastructure and the upper layer test is ensured.

In one embodiment, as shown in fig. 10, a schematic diagram of a connection of an overall architecture of a future network test facility platform provided by an embodiment of the present application is shown. The resource management system is connected and interacted with a backbone network of a future network test facility platform or an edge cloud site through a controller, wherein the edge cloud site comprises the backbone network, a first-class site, a second-class site and the like, and the controller can acquire resource data, such as network data, storage data and the like, of each network device of the backbone network or the edge cloud site and send the resource data to an orchestrator of the resource management system. The edge cloud site includes PE, openstack device, bye (Bring young Own Encryption) device, etc. The backbone network frame is provided with an L2/L3 special line and an SRv6 protocol, and can form an end-to-end L2/L3 network special line with the edge cloud station.

The orchestrator may provide intra-cloud/inter-cloud connection services, wide area network connection services, entity device services, mirror resource services, cloud resource services, and the like, and specific information of each service is as described above and is not described in detail. The orchestrator further interacts with the user to provide corresponding services for the user, for example, the orchestrator may provide the user with corresponding cross-region simulation video conference tests, virtual-real hybrid orchestration, network data support based on evaluation of media stream communication performance under different lines, and the like in the process of testing the streaming media communication simulation performance, and the orchestrator may also provide related support for a scientific research experiment bed.

It should be understood that, although the steps in the flowcharts related to the embodiments as described above are sequentially displayed as indicated by arrows, the steps are not necessarily performed sequentially as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least a part of the steps in the flowcharts related to the embodiments described above may include multiple steps or multiple stages, which are not necessarily performed at the same time, but may be performed at different times, and the execution order of the steps or stages is not necessarily sequential, but may be rotated or alternated with other steps or at least a part of the steps or stages in other steps.

In one embodiment, a computer device is provided, which may be a server, and its internal structure diagram may be as shown in fig. 11. The computer device includes a processor, a memory, and a network interface connected by a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device includes a non-volatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, a computer program, and a database. The internal memory provides an environment for the operation of an operating system and computer programs in the non-volatile storage medium. The database of the computer device is used for storing data of the resource management system. The network interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement the steps implemented by the resource management system.

Those skilled in the art will appreciate that the architecture shown in fig. 11 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing devices to which the disclosed aspects apply, as particular computing devices may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.

In one embodiment, the present application further provides a computer device, including a memory and a processor, where the memory stores a computer program, and the processor implements the steps performed by the resource management system in any one of the above embodiments when executing the computer program.

In one embodiment, the present application further provides a computer-readable storage medium having stored thereon a computer program which, when executed by a processor, implements the steps performed by the resource management system of any of the above embodiments.

It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, databases, or other media used in the embodiments provided herein can include at least one of non-volatile and volatile memory. The nonvolatile Memory may include Read-Only Memory (ROM), magnetic tape, floppy disk, flash Memory, optical Memory, high-density embedded nonvolatile Memory, resistive Random Access Memory (ReRAM), magnetic Random Access Memory (MRAM), ferroelectric Random Access Memory (FRAM), phase Change Memory (PCM), graphene Memory, and the like. Volatile Memory can include Random Access Memory (RAM), external cache Memory, and the like. By way of illustration and not limitation, RAM can take many forms, such as Static Random Access Memory (SRAM) or Dynamic Random Access Memory (DRAM), among others. The databases referred to in various embodiments provided herein may include at least one of relational and non-relational databases. The non-relational database may include, but is not limited to, a block chain based distributed database, and the like. The processors referred to in the embodiments provided herein may be general purpose processors, central processing units, graphics processors, digital signal processors, programmable logic devices, quantum computing based data processing logic devices, etc., without limitation.

The technical features of the above embodiments can be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the above embodiments are not described, but should be considered as the scope of the present specification as long as there is no contradiction between the combinations of the technical features.

The above-mentioned embodiments only express several embodiments of the present application, and the description thereof is more specific and detailed, but not construed as limiting the scope of the present application. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the concept of the present application, and these are all within the scope of protection of the present application. Therefore, the protection scope of the present application shall be subject to the appended claims.

Claims (10)

1. A resource management system, the system comprising an orchestrator, a first controller, and a second controller;

the first controller is deployed in a backbone network in a future network test facility platform, so that the orchestrator performs resource data interaction with the backbone network through the first controller;

the second controller is deployed in each test station in the future network test facility platform, so that the orchestrator performs resource data interaction with the test stations through the second controller;

the orchestrator is used for performing resource data interaction with the backbone network or the test site according to the resource requirements of users, and performing orchestration and management on the resource data in the backbone network or the test site.

2. The system of claim 1, wherein the orchestrator comprises a service abstraction layer, a network element abstraction layer, and a network device layer;

the service abstraction layer is used for providing network connection service and network configuration service for the user according to the user requirement;

the network element abstraction layer is used for carrying out configuration management on network elements in the backbone network or the test station, and the configuration management at least comprises network element life cycle management and network element basic configuration management; the network element is not a physical network element or a virtualized network element;

and the network equipment layer is used for carrying out resource data interaction with each network equipment in the future network test facility platform.

3. The system of claim 1, wherein the first controller is a backbone slice controller;

the first controller is further configured to connect with each network device in the backbone network based on a corresponding communication protocol, and acquire resource data in each network device in the backbone network;

the first controller is further used for acquiring and displaying the topological relation of each network device in the backbone network;

the first controller is further configured to send a first configuration instruction to each network device in the backbone network, so that the network device that receives the first configuration instruction updates configuration information based on the first configuration instruction.

4. The system of claim 3,

the first controller is further configured to monitor an operation state of each network device in the backbone network, and alarm when a network device in the backbone network fails, where the operation state at least includes a network state, a connectivity state, an Underlay network state, and an alarm state.

5. The system of claim 1, wherein the second controller is a test station controller;

the second controller is further configured to manage cloud host configuration parameters in the test site according to a second configuration request after receiving the second configuration request of the test site;

the second controller is further configured to manage cloud host configuration parameters of the user according to a third configuration request sent by the user after receiving the third configuration request;

the second controller is further used for sending a cloud hard disk configuration instruction to the test site so that the test site can change cloud hard disk configuration information according to the cloud hard disk configuration instruction;

the second controller is also used for carrying out network monitoring and management on each network device in the test site;

the second controller is further configured to send a fourth configuration request to each network device in the test site, so that the network device that receives the fourth configuration request updates firewall configuration parameters according to the fourth configuration request;

the second controller is further configured to send a fifth configuration request to each network device in the test site, so that the network device that receives the fifth configuration request updates DCI configuration parameters according to the fifth configuration request.

6. The system of claim 5,

the second controller is further used for providing a network configuration interface for the user based on different network configuration environments, so that the user changes corresponding network configuration parameters based on the network configuration interface;

the second controller is further configured to provide network services to the user based on an SDN controller;

the second controller is further configured to send an operation and maintenance instruction to each network device in the test site, so that the network device receiving the operation and maintenance instruction changes operation and maintenance configuration according to the operation and maintenance instruction;

the second controller is further used for isolating and protecting resource data in the network equipment in the test site based on preset safety rules.

7. The system of claim 1, wherein the orchestrator comprises a web services design module and a web services operation and maintenance module; the process of the orchestrator performing resource orchestration according to the resource requirements of the user comprises the following steps:

the network service design module carries out data modeling according to the resource requirements of the user to obtain a requirement model and sends the requirement model to the network service operation and maintenance module;

and the network service operation and maintenance module correspondingly distributes network resources to each network device in the future network test facility platform after verifying the demand model.

8. The system of claim 7, wherein the process of the web services design module obtaining the demand model comprises:

utilizing a path design module to design a resource distribution path corresponding to the backbone network according to the resource requirement of the user;

utilizing a service detection design module to design a resource distribution path corresponding to the test site according to the resource requirement of the user;

and performing data modeling according to the results of the path design module and the service detection design module to obtain the demand model.

9. The system of claim 7, wherein the process of allocating network resources by the network service operation and maintenance module comprises:

after the verification module is used for verifying the demand model, the deployment module is used for deploying the network resources according to the demand model to obtain a deployment result;

and correspondingly distributing the network resources to each network device by utilizing a distribution module according to the deployment result.

10. The system of claim 9, wherein the network service operation and maintenance module is further configured to monitor the network resources of each network device by using a status monitoring module, and update the deployment result according to the monitoring result.

Images