CN116827813B - Multi-data center secure communication method and DCI equipment - Google Patents
Multi-data center secure communication method and DCI equipment Download PDFInfo
- Publication number
- CN116827813B CN116827813B CN202311026457.5A CN202311026457A CN116827813B CN 116827813 B CN116827813 B CN 116827813B CN 202311026457 A CN202311026457 A CN 202311026457A CN 116827813 B CN116827813 B CN 116827813B
- Authority
- CN
- China
- Prior art keywords
- data center
- network
- analysis
- resource
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000004891 communication Methods 0.000 title claims abstract description 53
- 238000000034 method Methods 0.000 title claims abstract description 27
- 238000005516 engineering process Methods 0.000 claims abstract description 8
- 238000007726 management method Methods 0.000 claims description 32
- 238000004458 analytical method Methods 0.000 claims description 26
- 238000003012 network analysis Methods 0.000 claims description 13
- 238000012545 processing Methods 0.000 claims description 11
- 238000012544 monitoring process Methods 0.000 claims description 9
- 238000004590 computer program Methods 0.000 claims description 6
- 238000001514 detection method Methods 0.000 claims description 6
- 230000006870 function Effects 0.000 claims description 6
- 230000004044 response Effects 0.000 claims description 6
- 238000012800 visualization Methods 0.000 claims description 6
- 230000007123 defense Effects 0.000 claims description 4
- 230000005856 abnormality Effects 0.000 claims description 3
- 230000009471 action Effects 0.000 claims description 3
- 230000002776 aggregation Effects 0.000 claims description 3
- 238000004220 aggregation Methods 0.000 claims description 3
- 230000002155 anti-virotic effect Effects 0.000 claims description 3
- 238000004422 calculation algorithm Methods 0.000 claims description 3
- 238000004364 calculation method Methods 0.000 claims description 3
- 230000008859 change Effects 0.000 claims description 3
- 238000005315 distribution function Methods 0.000 claims description 3
- 238000010801 machine learning Methods 0.000 claims description 3
- 238000012423 maintenance Methods 0.000 claims description 3
- 230000035772 mutation Effects 0.000 claims description 3
- 230000008447 perception Effects 0.000 claims description 3
- 238000012502 risk assessment Methods 0.000 claims description 3
- 238000004088 simulation Methods 0.000 claims description 3
- 239000007787 solid Substances 0.000 claims description 3
- 230000009897 systematic effect Effects 0.000 claims description 3
- 230000000007 visual effect Effects 0.000 claims description 3
- 238000005538 encapsulation Methods 0.000 abstract description 2
- 230000005012 migration Effects 0.000 abstract description 2
- 238000013508 migration Methods 0.000 abstract description 2
- 238000010586 diagram Methods 0.000 description 4
- 230000007547 defect Effects 0.000 description 2
- 230000002265 prevention Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000013473 artificial intelligence Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a multi-data center safety communication method and a DCI device, which adopt an end-to-end VXLAN tunnel to realize the interconnection operation between data center resource pools, can superimpose two layers of virtual networks on a network with reachable random routes, realize the intercommunication inside the VXLAN network through a VXLAN gateway, and simultaneously realize the intercommunication with the traditional non-VXLAN network, and the VXLAN adopts a MAC in UDP encapsulation technology to extend the two layers of networks, encapsulate an Ethernet message on an IP message, transmit the Ethernet message in the network through the IP route, and the intermediate equipment does not need to pay attention to the MAC address of a VM; and the IP routing network has no network structure limitation, has large-scale expansion capability and high communication security, and ensures that VM migration is not limited by a network architecture. The multi-data center secure communication method and the DCI device have the advantages of high communication security and stability.
Description
Technical Field
The invention relates to the technical field of data centers, in particular to a multi-data center secure communication method and DCI equipment.
Background
The existing data center is not an isolated machine room, but a building group. A data center may include a plurality of branch data centers, which may be said to be a data center group, and the branch data centers are located at different positions, but may be interconnected by a network to jointly complete the corresponding service deployment. In order to improve customer access experience, large internet companies such as ali, tech, hundred degrees and the like can establish own branch offices of a data center in different provinces so as to meet the customer access requirements of different areas, and the data center is not limited to one or more machine rooms. To co-operate these data centers need to interact with each other, which creates an interconnection requirement and creates a DCI network.
Data Center Interworking (DCI) is a network solution that enables interworking between multiple data centers. Data centers are an important infrastructure for digital transformation, and with the rise of cloud computing, big data and artificial intelligence, enterprise data centers are increasingly widely used. In order to meet the requirements of the scenes of cross-regional operation, user access, remote disaster recovery and the like, more and more organizations and enterprises deploy a plurality of data centers in different regions, and at the moment, the plurality of data centers are required to be interconnected. However, in the process of interconnecting and communicating with the multiple data centers, the safety is a great hidden danger of the multiple data centers, and the two-layer network formed by the multiple data centers is extremely easy to be damaged due to external influence. Based on the above reasons, the invention provides a multi-data center secure communication method and DCI equipment to solve the defects in the prior art.
Disclosure of Invention
The technical problem solved by the invention is to overcome the defects of the prior art and provide a multi-data center secure communication method and DCI equipment. The multi-data center secure communication method and the DCI equipment have the characteristics of high communication security and stability.
In order to achieve the above purpose, the present invention provides the following technical solutions: a method of secure communication for a multi-data center, comprising the steps of:
S1: virtualizing, namely virtualizing a single data center to form a single resource pool based on the single data center, wherein the calculation and the network of each different single data center are independent, and different platforms are required to perform management operation;
s2: the method comprises the steps of establishing an intelligent network analysis platform, and establishing an independent intelligent network analysis platform based on a single resource pool of a single data center, so that the control of the single resource pool based on the single data center is realized;
The intelligent network analysis platform comprises a monitoring module, a processing module, a log module and a management module;
The monitoring module realizes the visualization and analysis of the flow, bandwidth and packet loss performance indexes of the resource state in the data center, and simultaneously realizes the dynamic detection of the abnormity of key indexes and the active reporting;
The processing module realizes equipment configuration, ND, ARP, RIB item dimension comparison and analysis of network change points, performs reasoning analysis on multiple dimensions such as reliability, consistency, performance load, capacity, stability and the like of the data center network, provides systematic network risk assessment and predictive maintenance suggestion, and ensures the running quality of the data center;
the log module realizes the rapid reasoning and aggregation capability of the log, carries out rapid identification of root cause faults based on a knowledge graph and an AI algorithm, presents fault propagation paths, identifies an influence range, improves log analysis efficiency, enables a data center to realize the visualization of log events, intelligently identifies log mutation and sporadic abnormality, and supports automatic clearing and merging of the log based on preset rules or custom rules;
the management module realizes the distribution statistics, the historical access relation and the snapshot comparison analysis and management of the whole network VM and the switch IP, and realizes the advanced planning of the data center resource.
S3: the method comprises the steps of fusing a plurality of single resource pools based on a single data center to form an integral resource pool based on interconnection of multiple data centers, realizing interconnection operation among the data center resource pools based on an end-to-end VXLAN tunnel among the single resource pools based on the single data center, wherein the multiple data centers are independent end-to-end VXLAN domains, and virtual private clouds and subnets of users can be deployed in the respective data centers;
s4: the cloud management platform is established, and the control of the integrated resource pool based on the interconnection of the multiple data centers is realized through the cloud management platform;
the cloud management platform comprises a resource layer, a virtual layer, a middleware layer and an application layer;
the resource layer consists of an integral resource pool, and efficient communication operation among multiple data centers is realized by using a distributed processing technology;
The virtual layer realizes the virtualization operation of the whole resource pool, so that the resource pool forms a virtual pool, thereby realizing the minimized resource cost and the maximized resource utilization rate;
the middleware layer realizes the functions of state monitoring, early warning and decision making of the virtual pool and can also realize the task initialization distribution function of the communication of the multiple data centers;
The application layer provides a visual operation interface, so that the state of the communication of the multiple data centers can be conveniently checked and maintained, and the safety of the communication of the multiple data centers is improved.
S5: establishing a secure communication system based on an intelligent network analysis platform and a cloud management platform;
The safety communication system comprises an analysis module, a control module and an execution module;
The analysis module can effectively collect the flow in the network, the network of various devices and the massive network basic data of the security log, effectively discover potential threats and advanced threats in the network by combining the machine learning technology, expert reputation and information driving measures through real-time and off-line analysis of big data, and realize the whole network security situation perception in the data center;
The control module realizes the arrangement of security services according to needs and the unified management of policies, realizes automatic threat response, security policy simulation and policy tuning, and remarkably improves the efficiency of interconnection communication of the data center;
The execution module is used for converting the network infrastructure into a sensor for security detection and an executor for security response, deeply fuses security functions such as intrusion prevention, antivirus and the like, provides complete and rich application layer protection capability, and implements threat prevention actions.
S6: and the communication between the multiple data centers is realized by the interconnection communication and the control of the cloud management platform.
DCI equipment is applied to a multi-data center interconnection communication system; the DCI equipment is VTEP equipment connected with other data centers; wherein the DCI device includes at least one processor and a memory;
The processor is used for processing operation of equipment operation;
The memory is used for storing one or more computer programs, and can be a mechanical hard disk and a solid state hard disk;
The one or more computer programs, when stored by the memory, are executed by the at least one processor, cause the DCI device to perform the method.
Compared with the prior art, the invention has the beneficial effects that: the invention adopts the end-to-end VXLAN tunnel to realize the interconnection operation between the resource pools of the data center, can superimpose two layers of virtual networks on the network which can be reached by any route, realizes the intercommunication inside the VXLAN network through the VXLAN gateway, and simultaneously can realize the intercommunication with the traditional non-VXLAN network, and the VXLAN adopts the MAC in UDP encapsulation technology to extend the two layers of networks, encapsulates the Ethernet message on the IP message, transmits in the network through the IP route, and the intermediate equipment does not need to pay attention to the MAC address of the VM; and the IP routing network has no network structure limitation, has large-scale expansion capability and high communication security, and ensures that VM migration is not limited by a network architecture.
According to the invention, the cloud management platform is adopted to realize the communication interconnection operation of the multiple data centers, the cloud platform can be utilized to virtualize the physical resources of the data centers into the virtual machine resource pool, the software and hardware resources are flexibly called, the access to users is realized as required, and the virtual machine resources are migrated in real time according to different concurrency of the users in the running process, so that the high-quality interconnection service of the multiple data centers is ensured to be provided, the communication safety is improved, the resource cost is minimized, and the resource utilization rate of the data centers is improved.
Drawings
FIG. 1 is a flow chart of a method of secure communication for a multi-data center according to the present invention;
FIG. 2 is a diagram showing a secure communication method of a multi-data center according to the present invention
FIG. 3 is a diagram showing the structure of an intelligent network analysis platform according to the method for secure communication in a multi-data center of the present invention;
FIG. 4 is a diagram showing the structural composition of a cloud management platform according to the method for secure communication of multiple data centers of the present invention;
Figure 5 is a structural diagram of a secure communication system of a secure communication method of a multi-data center according to the present invention,
Detailed Description
The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
Referring to fig. 1-5, the present invention provides a technical solution: a method of secure communication for a multi-data center, comprising the steps of:
S1: virtualizing, namely virtualizing a single data center to form a single resource pool based on the single data center, wherein the calculation and the network of each different single data center are independent, and different platforms are required to perform management operation;
S2: the method comprises the steps of establishing an intelligent network analysis platform, and establishing an independent intelligent network analysis platform based on a single resource pool of a single data center, so that the control of the single resource pool based on the single data center is realized, wherein the intelligent network analysis platform comprises a monitoring module, an analysis module, a log module and a management module;
The monitoring module realizes the visualization and analysis of the flow, bandwidth and packet loss performance indexes of the resource state in the data center, and simultaneously realizes the dynamic detection of the abnormity of key indexes and the active reporting;
The analysis module realizes equipment configuration, ND, ARP, RIB item dimension comparison and analysis of network change points, performs reasoning analysis on multiple dimensions such as reliability, consistency, performance load, capacity, stability and the like of the data center network, provides systematic network risk assessment and predictive maintenance suggestion, and ensures the running quality of the data center;
the log module realizes the rapid reasoning and aggregation capability of the log, carries out rapid identification of root cause faults based on a knowledge graph and an AI algorithm, presents fault propagation paths, identifies an influence range, improves log analysis efficiency, enables a data center to realize the visualization of log events, intelligently identifies log mutation and sporadic abnormality, and supports automatic clearing and merging of the log based on preset rules or custom rules;
the management module realizes the distribution statistics, the historical access relation and the snapshot comparison analysis and management of the whole network VM and the switch IP, and realizes the advanced planning of the data center resource.
S3: the method comprises the steps of fusing a plurality of single resource pools based on a single data center to form an integral resource pool based on interconnection of multiple data centers, realizing interconnection operation among the data center resource pools based on an end-to-end VXLAN tunnel among the single resource pools based on the single data center, wherein the multiple data centers are independent end-to-end VXLAN domains, and virtual private clouds and subnets of users can be deployed in the respective data centers;
S4: the cloud management platform is established, the control of the integrated resource pool based on the interconnection of the multiple data centers is realized through the cloud management platform, and the cloud management platform comprises a resource layer, a virtual layer, a middleware layer and an application layer;
the resource layer consists of an integral resource pool, and efficient communication operation among multiple data centers is realized by using a distributed processing technology;
The virtual layer realizes the virtualization operation of the whole resource pool, so that the resource pool forms a virtual pool, thereby realizing the minimized resource cost and the maximized resource utilization rate;
the middleware layer realizes the functions of state monitoring, early warning and decision making of the virtual pool and can also realize the task initialization distribution function of the communication of the multiple data centers;
the application layer provides a visual operation interface, so that the state of the communication of the multiple data centers can be checked and maintained conveniently, and the safety of the communication of the multiple data centers is improved;
s5: establishing a safety communication system based on an intelligent network analysis platform and a cloud management platform, wherein the safety communication system comprises an analysis module, a control module and an execution module;
The analysis module can effectively collect the flow in the network, the network of various devices and the massive network basic data of the security log, effectively discover potential threats and advanced threats in the network by combining the machine learning technology, expert reputation and information driving measures through real-time and off-line analysis of big data, and realize the whole network security situation perception in the data center;
The control module realizes the arrangement of security services according to needs and the unified management of policies, realizes automatic threat response, security policy simulation and policy tuning, and remarkably improves the efficiency of interconnection communication of the data center;
The execution module is used for converting the network infrastructure into a sensor for security detection and an executor for security response, deeply fusing security functions such as intrusion defense, antivirus and the like, providing complete and rich application layer protection capability, and implementing threat defense actions;
S6: and the communication between the multiple data centers is realized by the interconnection communication and the control of the cloud management platform.
DCI equipment is applied to a multi-data center interconnection communication system; the DCI equipment is VTEP equipment connected with other data centers; wherein the DCI device includes at least one processor and a memory;
the processor is used for processing operations on device operations, and the processor may be a general purpose processor (central processing unit, CPU), or an Application SPECIFIC INTEGRATED Circuit (ASIC), or a field programmable gate array (Field Programmable GATE ARRAY, FPGA), or one or more integrated circuits for controlling program execution. ;
The memory is configured to store one or more computer programs, and the memory may include a high-speed random access memory, and may also include a nonvolatile memory, such as a magnetic disk storage device, a flash memory device, or other nonvolatile solid state storage device, and the embodiment of the present application is not limited;
The one or more computer programs, when stored by the memory, are executed by the at least one processor, cause the DCI device to perform the method.
Although embodiments of the present invention have been shown and described, it will be understood by those skilled in the art that various changes, modifications, substitutions and alterations can be made therein without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.
Claims (2)
1. A method of secure communication for a multi-data center comprising the steps of:
S1: virtualizing, namely virtualizing a single data center to form a single resource pool based on the single data center, wherein the calculation and the network of each different single data center are independent, and different platforms are required to perform management operation;
s2: the method comprises the steps of establishing an intelligent network analysis platform, and establishing an independent intelligent network analysis platform based on a single resource pool of a single data center, so that the control of the single resource pool based on the single data center is realized;
The intelligent network analysis platform comprises a monitoring module, a processing module, a log module and a management module;
The monitoring module realizes the visualization and analysis of the flow, bandwidth and packet loss performance indexes of the resource state in the data center, and simultaneously realizes the dynamic detection of the abnormity of key indexes and the active reporting;
The processing module realizes equipment configuration, ND, ARP, RIB item dimension comparison and analysis of network change points, performs reasoning analysis on multiple dimensions such as reliability, consistency, performance load, capacity, stability and the like of the data center network, provides systematic network risk assessment and predictive maintenance suggestion, and ensures the running quality of the data center;
the log module realizes the rapid reasoning and aggregation capability of the log, carries out rapid identification of root cause faults based on a knowledge graph and an AI algorithm, presents fault propagation paths, identifies an influence range, improves log analysis efficiency, enables a data center to realize the visualization of log events, intelligently identifies log mutation and sporadic abnormality, and supports automatic clearing and merging of the log based on preset rules or custom rules;
the management module realizes the distribution statistics, the historical access relation and the snapshot comparison analysis and management of the whole network VM and the switch IP, and realizes the advanced planning of the data center resource;
S3: the method comprises the steps of fusing a plurality of single resource pools based on a single data center to form an integral resource pool based on interconnection of multiple data centers, realizing interconnection operation among the data center resource pools based on an end-to-end VXLAN tunnel among the single resource pools based on the single data center, wherein the multiple data centers are independent end-to-end VXLAN domains, and virtual private clouds and subnets of users can be deployed in the respective data centers;
s4: the cloud management platform is established, and the control of the integrated resource pool based on the interconnection of the multiple data centers is realized through the cloud management platform;
the cloud management platform comprises a resource layer, a virtual layer, a middleware layer and an application layer;
the resource layer consists of an integral resource pool, and efficient communication operation among multiple data centers is realized by using a distributed processing technology;
The virtual layer realizes the virtualization operation of the whole resource pool, so that the resource pool forms a virtual pool, thereby realizing the minimized resource cost and the maximized resource utilization rate;
the middleware layer realizes the functions of state monitoring, early warning and decision making of the virtual pool and can also realize the task initialization distribution function of the communication of the multiple data centers;
the application layer provides a visual operation interface, so that the state of the communication of the multiple data centers can be checked and maintained conveniently, and the safety of the communication of the multiple data centers is improved;
s5: establishing a secure communication system based on an intelligent network analysis platform and a cloud management platform;
The safety communication system comprises an analysis module, a control module and an execution module;
The analysis module can effectively collect the flow in the network, the network of various devices and the massive network basic data of the security log, effectively discover potential threats and advanced threats in the network by combining the machine learning technology, expert reputation and information driving measures through real-time and off-line analysis of big data, and realize the whole network security situation perception in the data center;
The control module realizes the arrangement of security services according to needs and the unified management of policies, realizes automatic threat response, security policy simulation and policy tuning, and remarkably improves the efficiency of interconnection communication of the data center;
The execution module is used for converting the network infrastructure into a sensor for security detection and an executor for security response, deeply fusing security functions such as intrusion defense, antivirus and the like, providing complete and rich application layer protection capability, and implementing threat defense actions;
S6: and the communication between the multiple data centers is realized by the interconnection communication and the control of the cloud management platform.
2. A DCI device, which is applied to a multi-data center interconnection communication system; the DCI equipment is VTEP equipment connected with other data centers; wherein the DCI device includes at least one processor and a memory;
The processor is used for processing operation of equipment operation;
The memory is used for storing one or more computer programs, and can be a mechanical hard disk and a solid state hard disk;
The one or more computer programs stored by the memory, when executed by the at least one processor, cause the DCI device to perform the method of claim 1.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311026457.5A CN116827813B (en) | 2023-08-15 | 2023-08-15 | Multi-data center secure communication method and DCI equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311026457.5A CN116827813B (en) | 2023-08-15 | 2023-08-15 | Multi-data center secure communication method and DCI equipment |
Publications (2)
Publication Number | Publication Date |
---|---|
CN116827813A CN116827813A (en) | 2023-09-29 |
CN116827813B true CN116827813B (en) | 2024-05-31 |
Family
ID=88120546
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202311026457.5A Active CN116827813B (en) | 2023-08-15 | 2023-08-15 | Multi-data center secure communication method and DCI equipment |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN116827813B (en) |
Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104506614A (en) * | 2014-12-22 | 2015-04-08 | 国家电网公司 | Design method for distributed multi-activity data center based on cloud computing |
WO2016101638A1 (en) * | 2014-12-23 | 2016-06-30 | 国家电网公司 | Operation management method for electric power system cloud simulation platform |
CN108833153A (en) * | 2018-06-07 | 2018-11-16 | 中国石油天然气股份有限公司 | Method for realizing unified management of cloud resources of data center at different places |
CN108900541A (en) * | 2018-08-10 | 2018-11-27 | 哈尔滨工业大学(威海) | One kind being directed to cloud data center SDN Security Situation Awareness Systems and method |
CN109962891A (en) * | 2017-12-25 | 2019-07-02 | 中国移动通信集团安徽有限公司 | Monitor method, apparatus, equipment and the computer storage medium of cloud security |
CN110177148A (en) * | 2019-05-30 | 2019-08-27 | 上海通联金融科技发展有限公司 | A kind of prosperous cloud service platform of IaaS |
CN111327463A (en) * | 2020-02-12 | 2020-06-23 | 博智安全科技股份有限公司 | Industrial Internet safety practical training platform based on virtualization |
CN112039682A (en) * | 2019-06-03 | 2020-12-04 | 艾福荣·艾尼瓦尔 | Method for application and practice of software defined data center in operator network |
CN115225664A (en) * | 2022-06-24 | 2022-10-21 | 四川省气象探测数据中心 | Construction method of meteorological information infrastructure resource cloud platform |
CN115426272A (en) * | 2022-11-07 | 2022-12-02 | 中国科学技术大学 | Future network test facility architecture system supporting large-scale cloud network fusion |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9378752B2 (en) * | 2012-09-05 | 2016-06-28 | Honda Motor Co., Ltd. | Sound processing device, sound processing method, and sound processing program |
US11431735B2 (en) * | 2019-01-28 | 2022-08-30 | Orca Security LTD. | Techniques for securing virtual machines |
-
2023
- 2023-08-15 CN CN202311026457.5A patent/CN116827813B/en active Active
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104506614A (en) * | 2014-12-22 | 2015-04-08 | 国家电网公司 | Design method for distributed multi-activity data center based on cloud computing |
WO2016101638A1 (en) * | 2014-12-23 | 2016-06-30 | 国家电网公司 | Operation management method for electric power system cloud simulation platform |
CN109962891A (en) * | 2017-12-25 | 2019-07-02 | 中国移动通信集团安徽有限公司 | Monitor method, apparatus, equipment and the computer storage medium of cloud security |
CN108833153A (en) * | 2018-06-07 | 2018-11-16 | 中国石油天然气股份有限公司 | Method for realizing unified management of cloud resources of data center at different places |
CN108900541A (en) * | 2018-08-10 | 2018-11-27 | 哈尔滨工业大学(威海) | One kind being directed to cloud data center SDN Security Situation Awareness Systems and method |
CN110177148A (en) * | 2019-05-30 | 2019-08-27 | 上海通联金融科技发展有限公司 | A kind of prosperous cloud service platform of IaaS |
CN112039682A (en) * | 2019-06-03 | 2020-12-04 | 艾福荣·艾尼瓦尔 | Method for application and practice of software defined data center in operator network |
CN111327463A (en) * | 2020-02-12 | 2020-06-23 | 博智安全科技股份有限公司 | Industrial Internet safety practical training platform based on virtualization |
CN115225664A (en) * | 2022-06-24 | 2022-10-21 | 四川省气象探测数据中心 | Construction method of meteorological information infrastructure resource cloud platform |
CN115426272A (en) * | 2022-11-07 | 2022-12-02 | 中国科学技术大学 | Future network test facility architecture system supporting large-scale cloud network fusion |
Non-Patent Citations (1)
Title |
---|
基于SDN和VxLAN的医院多院区网络构建研究;朱卓谨;南昌大学;8-16 * |
Also Published As
Publication number | Publication date |
---|---|
CN116827813A (en) | 2023-09-29 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11385929B2 (en) | Migrating workloads in multicloud computing environments | |
CN110378103B (en) | Micro-isolation protection method and system based on OpenFlow protocol | |
US20200059420A1 (en) | Multi-cloud virtual computing environment provisioning using a high-level topology description | |
JP4712279B2 (en) | Method and apparatus for controlling extensible computing system | |
RU2637419C2 (en) | Method and system for protection of virtual network image and computer data media | |
Fichera et al. | On experimenting 5G: Testbed set-up for SDN orchestration across network cloud and IoT domains | |
CN110266593B (en) | Self-adaptive routing switching cloud network system based on flow monitoring | |
Tran et al. | A network topology-aware selectively distributed firewall control in sdn | |
CN109753344A (en) | Network function virtualization system | |
Miyazawa et al. | Reinforcement learning based dynamic resource migration for virtual networks | |
CN116827813B (en) | Multi-data center secure communication method and DCI equipment | |
Snehi et al. | SDN‐based cloud combining edge computing for IoT infrastructure | |
Kabbara et al. | Specifications of a Simulation Framework for Virtualized Intelligent Electronic Devices in Smart Grids Covering Networking and Security Requirements | |
CN111147302B (en) | Network virtualization implementation method and system | |
Babiceanu et al. | Software-defined networking-based models for secure interoperability of manufacturing operations | |
CN113709018A (en) | Vxlan-based virtualized network access method and system | |
WO2020037632A1 (en) | Simulation method and system for industrial control device network, computer-readable storage medium and computer device | |
CN114448748A (en) | System-centric deployment network system | |
Shravanya et al. | Securing distributed SDN controller network from induced DoS attacks | |
Eranga et al. | Cyber-security enabled communication architecture for power routing in the smart grid | |
CN108809958A (en) | A kind of SDN controller architectures managing system based on MDC | |
Jianfeng et al. | Design of satellite launch center network architecture base on sdn & nfv | |
US20240179126A1 (en) | Intelligent firewall flow creator | |
Moledo et al. | Vendor-independent software-defined networking | |
CN118612217A (en) | IT cloud resource pool network composition system and method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |