WO2013027923A1 - System for setting up a virtual machine policy, method for setting up a virtual machine policy, and method for providing a virtual machine policy in a cloud computing server system - Google Patents

System for setting up a virtual machine policy, method for setting up a virtual machine policy, and method for providing a virtual machine policy in a cloud computing server system Download PDF

Info

Publication number
WO2013027923A1
WO2013027923A1 PCT/KR2012/004052 KR2012004052W WO2013027923A1 WO 2013027923 A1 WO2013027923 A1 WO 2013027923A1 KR 2012004052 W KR2012004052 W KR 2012004052W WO 2013027923 A1 WO2013027923 A1 WO 2013027923A1
Authority
WO
WIPO (PCT)
Prior art keywords
policy
virtual machine
mac address
setting
request message
Prior art date
Application number
PCT/KR2012/004052
Other languages
French (fr)
Korean (ko)
Inventor
전철규
김종민
Original Assignee
(주)케이티
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)케이티 filed Critical (주)케이티
Publication of WO2013027923A1 publication Critical patent/WO2013027923A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • G06F15/16Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45562Creating, deleting, cloning virtual machine instances

Definitions

  • the present invention relates to a virtual machine policy setting system, a virtual machine policy setting method, and a virtual machine policy providing method of a cloud computing server system, and more particularly, to a virtualized computing environment through a virtual machine using virtualized computing resources.
  • a virtual machine policy setting system, a virtual machine policy setting method, and a virtual machine policy setting method of a cloud computing server system that automatically sets a policy to be applied to the virtual machine after the virtual machine is created in the cloud computing server system provided to the client. It relates to a method for providing machine policy.
  • Virtualization technology is a basic technology for implementing a cloud computing environment that must share computing resource pooling and be rapidly created and released by on-demand self service. There is this.
  • Virtualization technology is a technology that uses a single physical device as if it is multiple devices, maximizes the utilization of computing resources such as CPU, memory, storage, and network, and operates and manages resources for managing large data centers. to be.
  • a cloud computing server system implemented through virtualization technology creates a plurality of standalone execution environments, virtual machines using a single physical machine, and operates an independent operating system or application for each virtual machine.
  • the virtual machine refers to a virtual computing execution environment created by allocating hardware resources of a physical machine.
  • the policy to apply to the virtual machine instance after the virtual machine instance is created for example, if the guest OS of the virtual machine is a Windows-based operating system, a security ID, an IP address, and a computer name are applied.
  • the administrator of the cloud computing server system or a client to use the virtual machine has been implemented to manually set it by manually inputting it (administrator / user direct input method).
  • the technical problem to be achieved by the present invention is a virtual machine policy setting system, a virtual machine of the cloud computing server system that automatically sets a policy to be applied to the virtual machine after the virtual machine is created in the cloud computing server system, the virtual machine It is to provide a policy setting method and a virtual machine policy providing method.
  • a policy to be applied to the virtual machine may be automatically set in the virtual machine.
  • the policy can be automatically set to the virtual machine rather than manually, so that the process can be efficiently handled in large-scale creation or distribution of the virtual machine of the same template.
  • FIG. 1 is a diagram showing the configuration of a cloud computing server system according to an embodiment of the present invention.
  • FIG. 2 is a diagram illustrating a process of distributing a policy of a virtual machine in a cloud computing server system according to an exemplary embodiment of the present invention.
  • FIG. 3 is a diagram illustrating a specific communication process for setting a policy of a virtual machine between a policy setting agent and a local policy broadcasting server, which are components of a cloud computing server system according to an exemplary embodiment of the present invention.
  • the virtual machine policy setting system of the cloud computing server system uses a MAC address of a virtual machine to generate a virtual machine in a local network to which the virtual machine belongs after the virtual machine is created.
  • a policy setting agent that broadcasts a policy request message requesting a policy to apply, receives a response message including a policy to be set in the virtual machine in response to the policy request message, and sets the received policy in the virtual machine;
  • a policy setting agent located on the local network receiving a policy request message broadcast by the policy setting agent, acquiring a policy to be set in the virtual machine corresponding to the MAC address based on the MAC address of the received policy request message, and obtaining the policy. It includes a local policy broadcasting server that transmits the response message.
  • the MAC of the query received from the database that is located outside the local network receives a query for a policy to set in the virtual machine corresponding to the MAC address from the local policy broadcasting server, and stores a policy to be set for each virtual machine
  • the method may further include a policy distribution server for acquiring a policy to be set in the virtual machine corresponding to the address and transmitting the obtained policy to the local policy broadcasting server in response to the received query.
  • the policy may include at least one of a security identifier, an IP address, subnet information, gateway information, domain name system information, a computer name, and information of a domain to which the virtual machine joins.
  • the policy setting agent receives the response message for the policy request message, randomly sets the security identifier of the virtual machine, extracts the IP address and domain information from the response message, and virtualizes the extracted IP address. You can set the IP address of the machine and join the virtual machine to the domain corresponding to the extracted domain information.
  • a method for setting a policy of a virtual machine policy of a policy setting agent mounted on a virtual machine of a cloud computing server system may be performed by using a MAC address of a virtual machine after the virtual machine is generated. Broadcasting a policy request message requesting a policy to be applied to the virtual machine to the local network to which the machine belongs; Receiving a response message including a policy to be set in the virtual machine in response to the policy request message; And setting the received policy in the virtual machine.
  • the virtual machine policy providing method of the local policy broadcasting server located in the local network of the virtual machine of the cloud computing server system for achieving the above technical problem, from the policy setting agent mounted on the virtual machine virtual machine Receiving a policy request message broadcast to a local network including a MAC address for requesting a policy to be applied to the network; A policy acquisition step of acquiring a policy to be set in a virtual machine corresponding to the MAC address based on the MAC address of the received policy request message; And sending a response message including the obtained policy to the policy setting agent.
  • the policy acquiring step may include transmitting a query for a policy to be set in the virtual machine corresponding to the MAC address to a policy distribution server located outside the local network; Receiving a response to the query; And acquiring a policy to be set in the virtual machine corresponding to the MAC address through the received response.
  • the functionality of the various elements shown in the figures can be provided by the use of dedicated hardware as well as hardware capable of executing software in conjunction with appropriate software.
  • the functionality may be provided by a single dedicated processor, by a single shared processor, or by a plurality of individual processors, some of which may be shared.
  • the use of terms presented in terms of processor, control, or similar concept should not be interpreted exclusively as a citation of hardware capable of executing software, and without limitation, ROM for storing digital signal processor (DSP) hardware, software. (ROM), RAM, and non-volatile memory are to be understood to implicitly include. Other well known hardware may also be included.
  • FIG. 1 is a block diagram showing the configuration of a cloud computing server system 100 according to an embodiment of the present invention.
  • the cloud computing server system 100 includes a policy setting agent 110, a local policy broadcasting server 120, a policy distribution server 130, and a domain server 140. .
  • Policy setting agent 110 is a module for setting the policy of the virtual machine is mounted on the virtual machine of the initial state after the virtual machine is created, the policy from the local policy broadcasting server 120 connected to the virtual machine and the local network It is distributed and applied to virtual machine.
  • the policy of the virtual machine is a state in which only a guest operating system is installed in the virtual machine and no settings necessary for network connection are made, and only information such as the MAC address unique to the virtual machine and the type of operating system can be obtained.
  • it refers to network address information or domain information necessary for implementing a network connection or other computing environment.
  • a security ID e.g., a security ID
  • IP address e.g., IP address
  • gateway e.g., IP address, and a gateway are used.
  • Information e.g., IP address, and a gateway are used.
  • DNS domain name system
  • Local policy broadcasting server 120 is a component that distributes or distributes the policy of the virtual machine connected to the local network, obtains a policy to be applied to the virtual machine belonging to the local network from the policy distribution server 130 of the external network
  • the policy setting agent 110 mounted in the virtual machine is delivered to distribute or distribute the policy of the virtual machine.
  • the policy distribution server 130 receives a request for a policy to be applied to the virtual machine from the local policy broadcasting server 120, and in response thereto, the policy distribution server 130 receives information about a policy to be applied to the virtual machine. 120).
  • the domain server 140 is a component that performs domain registration of a virtual machine, where a domain is a logical group sharing a common directory database through a network.
  • the most representative example of the domain server 140 is a Windows-based operating system.
  • a local policy broadcasting server 120 is provided to separate a service network (local network) and a management network, thereby causing the policy setting agent 110 of the virtual machine to be a virtual machine of another user.
  • the cloud computing server system has a local policy broadcasting server 120 instead of a DHCP server in each local network to distribute the policy to the virtual machine on the local network.
  • DHCP Dynamic Host Configuration Protocol
  • policy to be applied to a virtual machine in this embodiment
  • the DHCP server can automatically assign an IP address at the request of a DHCP client and set a lease duration for the assigned IP address.
  • a DHCP server In general, in setting an IP address for a node or a virtual machine on a local network, a DHCP server is provided in each local network and an IP address is assigned to the node or a virtual machine using the same.
  • each DHCP server manages policy information, so the load on the DHCP server increases excessively and the overall efficiency decreases.
  • the MAC address of the virtual machine requesting the policy distribution may be transmitted using a broadcasting method, and the IP address may be obtained in response thereto. Focusing on the fact that the local policy broadcasting server 120 receives a broadcasting policy request message on the local network, and centrally, the local policy broadcasting server 120 is applied to the virtual machine. Policy distribution server 130 for providing a policy is provided.
  • the central policy distribution server 130 manages the policies of all virtual machines through the central policy distribution server 130, and the policy setting agent 110 of the virtual machine to obtain the policy information of the virtual machine through broadcasting on the local network.
  • the policy setting agent 110, the local policy broadcasting server 120, the policy distribution server 130, and the domain server 140 according to the present embodiment are components installed in a cloud computing server system and include at least one DSP ( It can be implemented in hardware consisting of a digital signal process (processor), a controller, an application specific integrated circuit (ASIC), a programmable logic device such as a field programmable gate array (FPGA), other electronic devices, or a combination thereof.
  • DSP digital signal process
  • ASIC application specific integrated circuit
  • FPGA field programmable gate array
  • at least some of the components and functions of the virtual machine management apparatus 130 according to the present embodiment may be implemented in software, and such software may be recorded in a recording medium.
  • each component and function of the virtual machine control device 130 according to the present embodiment may be implemented by a combination of hardware and software.
  • FIG. 2 is a diagram illustrating a process of distributing a policy of a virtual machine in a cloud computing server system according to an exemplary embodiment of the present invention.
  • the policy setting agent 210, the local policy broadcasting server 220, the policy distribution server 230, and the domain server 240 of the cloud computing server system illustrated in FIG. 2 are the policies of the cloud computing server system illustrated in FIG. 1. It corresponds to the configuration agent 110, local policy broadcasting server 120, policy distribution server 130 and domain server 140, respectively, the distribution process of the virtual machine according to the present embodiment is cloud computing shown in FIG. It can be implemented in a server system. Therefore, the same matters as in the description of the cloud computing server system illustrated in FIG. 1 are referred to this.
  • the manager 250 of the cloud computing server system inputs user information to the policy distribution server 230 and requests that the user create a virtual machine to be used (S201).
  • the policy distribution server 230 stores user information including a policy to be applied to the user's virtual machine in a local or networked database 235 (S202), and based on the stored user information.
  • the virtual machine is created and its operation is started.
  • the policy setting agent 210 mounted in the virtual machine sends a policy request message for requesting a policy to be applied to the virtual machine based on the MAC address of the virtual machine to the local network of the virtual machine. Broadcast (S204).
  • Local policy broadcasting server 220 connected to the virtual machine and the local network receives the policy request message broadcast in step S204 and delivers it to the policy distribution server 230 (S205).
  • the policy distribution server 230 searches for a policy to be applied to the virtual machine from the database 235 based on the MAC address of the policy request message in step S205, and in response to the policy request message in step S205, the MAC of the policy request message.
  • the policy to be applied to the virtual machine corresponding to the address is transmitted to the local policy broadcasting server 220 (S206).
  • the local policy broadcasting server 220 In response to the policy request message in step S204, the local policy broadcasting server 220 provides the policy setting agent 210 with information of the policy obtained in step S206.
  • the policy setting agent 210 sets it as it is, otherwise, randomly generates the SID (S208).
  • the policy setting agent 210 obtains an IP address from the policy obtained in step S207 and sets it as an IP address of the virtual machine (S209) to enable communication with the nodes of the external network.
  • the policy setting agent 210 can communicate with the nodes of the external network through the IP address setting in step S209, it acquires the computer name or other domain information from the policy obtained in step S207 to the domain of the external network. Apply to join the domain of the virtual machine to the server (S210).
  • FIG. 3 is a diagram illustrating a specific communication process for setting a policy of a virtual machine between a policy setting agent and a local policy broadcasting server, which are components of a cloud computing server system according to an exemplary embodiment of the present invention.
  • the embodiment illustrates that each component operates on a Windows-based operating system.
  • a detailed communication process for setting a policy of the virtual machine according to the present embodiment may be implemented in the cloud computing server system illustrated in FIGS. 1 and 2. Therefore, the same matters as in the description of the cloud computing server system illustrated in FIGS. 1 and 2 are referred to this.
  • the policy setting agent 310 mounted on the virtual machine acquires the MAC address of the virtual machine (S301), and obtains the type of the guest operating system of the virtual machine. (S302).
  • the type of the guest operating system of the virtual machine is obtained in order to apply it differently when the policy is set differently according to the type of the guest operating system.
  • the policy request message including the MAC address of the virtual machine obtained through the steps S301 to S302 and the type of the operating system is broadcasted (S303).
  • the local policy broadcasting server 320 connected to the virtual machine and the local network acquires a policy to be applied to the virtual machine according to the policy request message broadcast in step S303, and sets the policy in response to the policy request message.
  • the agent 310 transmits a policy to be applied to the virtual machine (S304).
  • the policy setting agent 310 generates a system preparation tool (Sysprep.ini) based on the policy received in step S304 (S306), and randomly generates a security identifier (SID) using the system preparation tool generated in step S306. Create (S307) and call the netsh utility to set the IP address, gateway, DNS, and the like.
  • Sysprep.ini system preparation tool
  • SID security identifier
  • Sysprep.ini is generated and used to reset the security identifier (SID).
  • SID security identifier
  • the newsid utility is called by calling the newsid utility. Can be reset.
  • the generation of a system preparation tool may be omitted, and the present invention does not limit the SID setting method.
  • the netdom utility is called to access the domain server 340 to join the domain (S308), and when all policy settings for the virtual machine are completed, the setting state is transmitted to the local policy broadcasting server 320. (S309).
  • a policy to be applied to the virtual machine may be automatically set in the virtual machine.
  • the policy can be automatically set to the virtual machine rather than manually, so that the process can be efficiently handled in large-scale creation or distribution of the virtual machine of the same template.
  • the invention can also be embodied as computer readable code on a computer readable recording medium.
  • Computer-readable recording media include all kinds of recording devices that store data that can be read by a computer system. Examples of computer-readable recording media include ROM, RAM, CD-ROM, magnetic tape, floppy disks, optical data storage devices, and the like, which are also implemented in the form of carrier waves (for example, transmission over the Internet). Include.
  • the computer readable recording medium can also be distributed over network coupled computer systems so that the computer readable code is stored and executed in a distributed fashion.
  • functional programs, codes, and code segments for implementing the present invention can be easily inferred by programmers in the art to which the present invention belongs.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention relates to a system for setting up a virtual machine policy, to a method for setting up a virtual machine policy, and to a method for providing a virtual machine policy in a cloud computing server system, which automatically set up the policy to be applied to a relevant virtual machine after the virtual machine is generated in the cloud computing server system that provides, to a client, a virtualized computing environment by means of the virtual machine that uses a virtualized computing resource. According to the present invention, a policy may be set up for a virtual machine automatically rather than manually, and therefore, distribution of the policy for the virtual machine can be efficiently performed when generating or distributing, on a large scale, virtual machines having the sample template.

Description

클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템, 가상머신 정책 설정 방법 및 가상머신 정책 제공 방법Virtual machine policy setting system, virtual machine policy setting method, and virtual machine policy provision method of cloud computing server system
본 발명은, 클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템, 가상머신 정책 설정 방법 및 가상머신 정책 제공 방법에 관한 것으로서, 보다 상세하게는, 가상화된 컴퓨팅 자원을 이용하는 가상머신을 통해 가상화된 컴퓨팅 환경을 클라이언트에 제공하는 클라우드 컴퓨팅 서버 시스템에서 가상머신이 생성된 이후에 해당 가상머신에 적용할 정책을 자동으로 해당 가상머신에 설정하는 클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템, 가상머신 정책 설정 방법 및 가상머신 정책 제공 방법에 관한 것이다.The present invention relates to a virtual machine policy setting system, a virtual machine policy setting method, and a virtual machine policy providing method of a cloud computing server system, and more particularly, to a virtualized computing environment through a virtual machine using virtualized computing resources. A virtual machine policy setting system, a virtual machine policy setting method, and a virtual machine policy setting method of a cloud computing server system that automatically sets a policy to be applied to the virtual machine after the virtual machine is created in the cloud computing server system provided to the client. It relates to a method for providing machine policy.
컴퓨팅 자원 풀(Resource Pooling)을 공유하고, 사용자의 요구(On-Demand Self Service)에 의해 신속하게 생성 및 해제(Rapid Elasticity)가 되어야 하는 클라우드 컴퓨팅 환경을 구현하는 기반 기술로는 가상화(Virtualization) 기술이 있다.Virtualization technology is a basic technology for implementing a cloud computing environment that must share computing resource pooling and be rapidly created and released by on-demand self service. There is this.
가상화 기술은 하나의 물리적인 장비를 마치 여러개의 장비처럼 사용하는 기술로, CPU, 메모리, 스토리지, 네트워크 등의 컴퓨팅 자원의 활용을 극대화하고, 대규모 데이터 센터의 관리를 위해 자원을 운영하고 관리하는 기술이다.Virtualization technology is a technology that uses a single physical device as if it is multiple devices, maximizes the utilization of computing resources such as CPU, memory, storage, and network, and operates and manages resources for managing large data centers. to be.
이처럼 가상화 기술을 통해 구현된 클라우드 컴퓨팅 서버 시스템은 하나의 물리 머신을 이용하여 다수의 독립실행 환경인 가상머신들을 생성하고, 생성한 각각의 가상머신에 독립된 운영체제 내지 어플리케이션을 운영한다. As described above, a cloud computing server system implemented through virtualization technology creates a plurality of standalone execution environments, virtual machines using a single physical machine, and operates an independent operating system or application for each virtual machine.
여기에서 가상머신은 이처럼 물리 머신의 하드웨어 자원을 할당받아 만들어지는 가상의 컴퓨팅 실행 환경을 의미한다. 가상머신 인스턴스가 생성된 이후에 이러한 가상머신 인스턴스에 적용할 정책, 예컨대, 가상머신의 게스트 OS가 윈도우 기반 운영체제인 경우에는 보안 식별자(Security ID), IP 주소 및 컴퓨터 이름(Computer name) 등을 적용하여야 하나, 종래에는 이를 클라우드 컴퓨팅 서버 시스템의 관리자(Administrator)나 해당 가상머신을 사용할 클라이언트가 이를 직접 입력하여 수동으로 설정하도록 구현되어 왔다(관리자/사용자 직접 입력 방식).In this case, the virtual machine refers to a virtual computing execution environment created by allocating hardware resources of a physical machine. The policy to apply to the virtual machine instance after the virtual machine instance is created, for example, if the guest OS of the virtual machine is a Windows-based operating system, a security ID, an IP address, and a computer name are applied. However, in the related art, the administrator of the cloud computing server system or a client to use the virtual machine has been implemented to manually set it by manually inputting it (administrator / user direct input method).
따라서, 가상머신이 생성된 이후에 이러한 정책을 자동으로 설정하기 위한 기술이 필요하다.Therefore, there is a need for a technique for automatically setting such a policy after the virtual machine is created.
본 발명이 이루고자 하는 기술적 과제는, 클라우드 컴퓨팅 서버 시스템에서 가상머신이 생성된 이후에 해당 가상머신에 적용할 정책을 자동으로 해당 가상머신에 설정하는 클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템, 가상머신 정책 설정 방법 및 가상머신 정책 제공 방법을 제공하는 데에 있다.The technical problem to be achieved by the present invention is a virtual machine policy setting system, a virtual machine of the cloud computing server system that automatically sets a policy to be applied to the virtual machine after the virtual machine is created in the cloud computing server system, the virtual machine It is to provide a policy setting method and a virtual machine policy providing method.
본 발명의 다른 목적 및 장점들은 하기에 설명될 것이며, 본 발명의 실시예에 의해 알게 될 것이다. 또한, 본 발명의 목적 및 장점들은 첨부된 특허 청구 범위에 나타낸 수단 및 조합에 의해 실현될 수 있다.Other objects and advantages of the invention will be described below and will be appreciated by the embodiments of the invention. In addition, the objects and advantages of the invention may be realized by the means and combinations indicated in the appended claims.
본 발명에 의하면, 클라우드 컴퓨팅 서버 시스템에서 가상머신이 생성된 이후에 해당 가상머신에 적용할 정책 즉, IP 주소나 도메인 정보 등을 자동으로 해당 가상머신에 설정할 수 있다. 아울러, 정책이 수동이 아닌 자동으로 가상머신에 설정될 수 있어서, 동일한 템플릿의 가상머신을 대규모로 생성하거나 배포함에 있어서 해당 과정을 효율적으로 처리할 수 있다.According to the present invention, after the virtual machine is generated in the cloud computing server system, a policy to be applied to the virtual machine, that is, an IP address or domain information, may be automatically set in the virtual machine. In addition, the policy can be automatically set to the virtual machine rather than manually, so that the process can be efficiently handled in large-scale creation or distribution of the virtual machine of the same template.
본 명세서에 첨부되는 다음의 도면들은 본 발명의 바람직한 실시예를 예시하는 것이며, 후술하는 발명의 상세한 설명과 함께 본 발명의 기술사상을 더욱 이해시키는 역할을 하는 것이므로, 본 발명은 그러한 도면에 기재된 사항에만 한정되어 해석되어서는 아니된다.The following drawings attached to this specification are illustrative of preferred embodiments of the present invention, and together with the detailed description of the invention to serve to further understand the technical spirit of the present invention, the present invention is a matter described in such drawings It should not be construed as limited to.
도 1은 본 발명의 바람직한 일실시예에 따른 클라우드 컴퓨팅 서버 시스템의 구성을 도시한 도면이다.1 is a diagram showing the configuration of a cloud computing server system according to an embodiment of the present invention.
도 2는 본 발명의 바람직한 일 실시예에 따른 클라우드 컴퓨팅 서버 시스템에서 가상머신의 정책을 분배하는 과정을 도시한 도면이다.2 is a diagram illustrating a process of distributing a policy of a virtual machine in a cloud computing server system according to an exemplary embodiment of the present invention.
도 3는 본 발명의 바람직한 일 실시예에 따른 클라우드 컴퓨팅 서버 시스템의 일 구성요소인 정책설정에이전트와 로컬정책브로드캐스팅서버 사이에서 가상머신의 정책을 설정하기 위한 구체적인 통신 과정을 예시한 도면이다.3 is a diagram illustrating a specific communication process for setting a policy of a virtual machine between a policy setting agent and a local policy broadcasting server, which are components of a cloud computing server system according to an exemplary embodiment of the present invention.
상기의 기술적 과제를 이루기 위한, 본 발명에 의한, 클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템은, 가상머신이 생성된 이후에 가상머신의 MAC 주소를 이용하여 가상머신이 속하는 로컬 네트워크에 가상머신에 적용할 정책을 요청하는 정책요청메시지를 브로드캐스팅하여 정책요청메시지에 대한 응답으로 가상머신에 설정할 정책을 포함하는 응답 메시지를 수신하여, 수신된 정책을 가상머신에 설정하는 정책설정에이전트; 및 로컬 네트워크 상에 위치하며, 정책설정에이전트가 브로드캐스팅한 정책요청메시지를 수신하여 수신된 정책요청메시지의 MAC 주소를 기초로 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하고, 획득된 정책을 포함하는 응답 메시지를 전송하는 로컬정책브로드캐스팅서버를 포함한다.In order to achieve the above technical problem, the virtual machine policy setting system of the cloud computing server system according to the present invention uses a MAC address of a virtual machine to generate a virtual machine in a local network to which the virtual machine belongs after the virtual machine is created. A policy setting agent that broadcasts a policy request message requesting a policy to apply, receives a response message including a policy to be set in the virtual machine in response to the policy request message, and sets the received policy in the virtual machine; And a policy setting agent located on the local network, receiving a policy request message broadcast by the policy setting agent, acquiring a policy to be set in the virtual machine corresponding to the MAC address based on the MAC address of the received policy request message, and obtaining the policy. It includes a local policy broadcasting server that transmits the response message.
보다 바람직하게는, 로컬 네트워크 외부에 위치하며, 로컬정책브로드캐스팅서버로부터 MAC 주소에 대응되는 가상머신에 설정할 정책에 대한 질의를 수신하고, 가상머신별로 설정할 정책을 저장하는 데이터베이스로부터 수신된 질의의 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하여, 수신된 질의에 대한 응답으로 획득된 정책을 로컬정책브로드캐스팅서버에 전송하는 정책분배서버를 더 포함할 수 있다.More preferably, the MAC of the query received from the database that is located outside the local network, receives a query for a policy to set in the virtual machine corresponding to the MAC address from the local policy broadcasting server, and stores a policy to be set for each virtual machine The method may further include a policy distribution server for acquiring a policy to be set in the virtual machine corresponding to the address and transmitting the obtained policy to the local policy broadcasting server in response to the received query.
보다 바람직하게는, 정책은 가상머신의 보안 식별자, IP 주소, 서브넷 정보, 게이트웨이 정보, 도메인 네임 시스템 정보, 컴퓨터 이름 및 가상머신이 조인할 도메인의 정보 중 적어도 하나 이상을 포함할 수 있다.More preferably, the policy may include at least one of a security identifier, an IP address, subnet information, gateway information, domain name system information, a computer name, and information of a domain to which the virtual machine joins.
보다 바람직하게는, 정책설정에이전트는 정책요청메시지에 대한 응답 메시지를 수신하고, 가상머신의 보안 식별자를 랜덤으로 설정하고, 응답 메시지로부터 IP 주소 및 도메인의 정보를 추출하여, 추출된 IP 주소를 가상머신의 IP 주소로 설정하고, 추출된 도메인의 정보에 대응하는 도메인에 가상머신을 조인시킬 수 있다.More preferably, the policy setting agent receives the response message for the policy request message, randomly sets the security identifier of the virtual machine, extracts the IP address and domain information from the response message, and virtualizes the extracted IP address. You can set the IP address of the machine and join the virtual machine to the domain corresponding to the extracted domain information.
상기의 기술적 과제를 이루기 위한, 본 발명에 의한, 클라우드 컴퓨팅 서버 시스템의 가상머신에 탑재된 정책설정에이전트의 가상머신 정책 설정 방법은, 가상머신이 생성된 이후에 가상머신의 MAC 주소를 이용하여 가상머신이 속하는 로컬 네트워크에 가상머신에 적용할 정책을 요청하는 정책요청메시지를 브로드캐스팅하는 단계; 정책요청메시지에 대한 응답으로 가상머신에 설정할 정책을 포함하는 응답 메시지를 수신하는 단계; 및 수신된 정책을 가상머신에 설정하는 단계를 포함한다.In order to achieve the above technical problem, according to the present invention, a method for setting a policy of a virtual machine policy of a policy setting agent mounted on a virtual machine of a cloud computing server system may be performed by using a MAC address of a virtual machine after the virtual machine is generated. Broadcasting a policy request message requesting a policy to be applied to the virtual machine to the local network to which the machine belongs; Receiving a response message including a policy to be set in the virtual machine in response to the policy request message; And setting the received policy in the virtual machine.
보다 바람직하게는, 응답 메시지로부터 IP 주소 및 도메인의 정보를 추출하는 단계; 추출된 IP 주소를 가상머신의 IP 주소로 설정하는 단계; 및 추출된 도메인의 정보에 대응하는 도메인에 가상머신을 조인시키는 단계를 포함할 수 있다.More preferably, extracting information of the IP address and domain from the response message; Setting the extracted IP address as an IP address of the virtual machine; And joining the virtual machine to a domain corresponding to the extracted domain information.
상기의 기술적 과제를 이루기 위한, 본 발명에 의한, 클라우드 컴퓨팅 서버 시스템의 가상머신의 로컬 네트워크에 위치한 로컬정책브로드캐스팅서버의 가상머신 정책 제공 방법에 있어서, 가상머신에 탑재된 정책설정에이전트로부터 가상머신에 적용할 정책의 요청을 위해 MAC 주소를 포함하여 로컬 네트워크에 브로드캐스팅된 정책요청메시지를 수신하는 단계; 수신된 정책요청메시지의 MAC 주소를 기초로 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하는 정책획득단계; 및 획득된 정책을 포함하는 응답 메시지를 정책설정에이전트에 전송하는 단계를 포함한다.In the virtual machine policy providing method of the local policy broadcasting server located in the local network of the virtual machine of the cloud computing server system according to the present invention for achieving the above technical problem, from the policy setting agent mounted on the virtual machine virtual machine Receiving a policy request message broadcast to a local network including a MAC address for requesting a policy to be applied to the network; A policy acquisition step of acquiring a policy to be set in a virtual machine corresponding to the MAC address based on the MAC address of the received policy request message; And sending a response message including the obtained policy to the policy setting agent.
보다 바람직하게는, 정책획득단계는 로컬 네트워크 외부에 위치한 정책분배서버에 MAC 주소에 대응되는 가상머신에 설정할 정책에 대한 질의를 전송하는 단계; 질의에 대한 응답을 수신하는 단계; 및 수신된 응답을 통해 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하는 단계를 포함할 수 있다.More preferably, the policy acquiring step may include transmitting a query for a policy to be set in the virtual machine corresponding to the MAC address to a policy distribution server located outside the local network; Receiving a response to the query; And acquiring a policy to be set in the virtual machine corresponding to the MAC address through the received response.
이하의 내용은 단지 본 발명의 원리를 예시한다. 그러므로 당업자는 비록 본 명세서에 명확히 설명되거나 도시되지 않았지만 본 발명의 원리를 구현하고 본 발명의 개념과 범위에 포함된 다양한 장치를 발명할 수 있는 것이다. 또한, 본 명세서에 열거된 모든 조건부 용어 및 실시예들은 원칙적으로, 본 발명의 개념이 이해되도록 하기 위한 목적으로만 명백히 의도되고, 이와 같이 특별히 열거된 실시예들 및 상태들에 제한적이지 않는 것으로 이해되어야 한다. 또한, 본 발명의 원리, 관점 및 실시예들 뿐만 아니라 특정 실시예를 열거하는 모든 상세한 설명은 이러한 사항의 구조적 및 기능적 균등물을 포함하도록 의도되는 것으로 이해되어야 한다. 또한, 이러한 균등물들은 현재 공지된 균등물뿐만 아니라 장래에 개발될 균등물 즉 구조와 무관하게 동일한 기능을 수행하도록 발명된 모든 소자를 포함하는 것으로 이해되어야 한다. The following merely illustrates the principles of the invention. Therefore, those skilled in the art, although not explicitly described or illustrated herein, can embody the principles of the present invention and invent various devices that fall within the spirit and scope of the present invention. Furthermore, all conditional terms and embodiments listed herein are in principle clearly intended for the purpose of understanding the concept of the invention and are not to be limited to the specifically listed embodiments and states. Should be. In addition, it is to be understood that all detailed descriptions, including the principles, aspects, and embodiments of the present invention, as well as listing specific embodiments, are intended to include structural and functional equivalents of these matters. In addition, these equivalents should be understood to include not only equivalents now known, but also equivalents to be developed in the future, that is, all devices invented to perform the same function regardless of structure.
따라서, 프로세서 또는 이와 유사한 개념으로 표시된 기능 블럭을 포함하는 도면에 도시된 다양한 소자의 기능은 전용 하드웨어뿐만 아니라 적절한 소프트웨어와 관련하여 소프트웨어를 실행할 능력을 가진 하드웨어의 사용으로 제공될 수 있다. 프로세서에 의해 제공될 때, 기능은 단일 전용 프로세서, 단일 공유 프로세서 또는 복수의 개별적 프로세서에 의해 제공될 수 있고, 이들 중 일부는 공유될 수 있다. 또한, 프로세서, 제어 또는 이와 유사한 개념으로 제시되는 용어의 사용은 소프트웨어를 실행할 능력을 가진 하드웨어를 배타적으로 인용하여 해석되어서는 아니 되고, 제한 없이 디지털 신호 프로세서(DSP) 하드웨어, 소프트웨어를 저장하기 위한 롬(ROM), 램(RAM) 및 비휘발성 메모리를 암시적으로 포함하는 것으로 이해되어야 한다. 주지 관용의 다른 하드웨어도 포함될 수 있다. Thus, the functionality of the various elements shown in the figures, including functional blocks represented by a processor or similar concept, can be provided by the use of dedicated hardware as well as hardware capable of executing software in conjunction with appropriate software. When provided by a processor, the functionality may be provided by a single dedicated processor, by a single shared processor, or by a plurality of individual processors, some of which may be shared. In addition, the use of terms presented in terms of processor, control, or similar concept should not be interpreted exclusively as a citation of hardware capable of executing software, and without limitation, ROM for storing digital signal processor (DSP) hardware, software. (ROM), RAM, and non-volatile memory are to be understood to implicitly include. Other well known hardware may also be included.
상술한 목적, 특징 및 장점들은 첨부된 도면과 관련한 다음의 상세한 설명을 통하여 더욱 분명해 질 것이다. 본 발명을 설명함에 있어서, 관련된 공지 기술에 대한 구체적인 설명이 본 발명의 요지를 불필요하게 흐릴 수 있다고 판단되는 경우 그 상세한 설명을 생략하거나 간략하게 설명하는 것으로 한다. The above objects, features and advantages will become more apparent from the following detailed description taken in conjunction with the accompanying drawings. In the following description of the present invention, when it is determined that the detailed description of the related known technology may unnecessarily obscure the subject matter of the present invention, the detailed description will be omitted or briefly described.
한편 어떤 부분이 어떤 구성요소를 "포함"한다고 할 때, 이는 특별히 반대되는 기재가 없는 한 다른 구성요소를 제외하는 것이 아니라, 다른 구성요소를 더 포함할 수 있는 것을 의미한다.On the other hand, when a part is said to "include" a certain component, it means that it may further include other components, without excluding other components unless otherwise stated.
이하, 첨부된 도면을 참조하여 바람직한 실시예에 따른 본 발명을 상세히 설명하기로 한다. Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.
도 1은 본 발명의 바람직한 일실시예에 따른 클라우드 컴퓨팅 서버 시스템(100)의 구성을 도시한 블럭도이다.1 is a block diagram showing the configuration of a cloud computing server system 100 according to an embodiment of the present invention.
도 1을 참조하면, 본 실시예에 따른 클라우드 컴퓨팅 서버 시스템(100)은 정책설정에이전트(110), 로컬정책브로드캐스팅서버(120), 정책분배서버(130) 및 도메인서버(140)를 포함한다.Referring to FIG. 1, the cloud computing server system 100 according to the present embodiment includes a policy setting agent 110, a local policy broadcasting server 120, a policy distribution server 130, and a domain server 140. .
정책설정에이전트(110)는 가상머신이 생성된 후에 초기 상태의 가상머신에 탑재되어 가상머신의 정책을 설정하기 위한 모듈로, 가상머신과 로컬 네트워크로 연결된 로컬정책브로드캐스팅서버(120)로부터 정책을 분배받아 가상머신에 적용한다. Policy setting agent 110 is a module for setting the policy of the virtual machine is mounted on the virtual machine of the initial state after the virtual machine is created, the policy from the local policy broadcasting server 120 connected to the virtual machine and the local network It is distributed and applied to virtual machine.
여기에서, 가상머신의 정책이란, 가상머신에 게스트 운영체제만 설치된 상태에서 네트워크 연결 등에 필요한 설정이 전혀 되어 있지 않은 상태로, 가상머신 고유의 MAC 주소와, 운영체제의 종류 등의 정보만 획득할 수 있는 상태에서, 네트워크 연결 기타 컴퓨팅 환경 구현을 위해 필요한 네트워크 주소 정보나 도메인 정보 등을 의미하며, 예컨대, 가상머신의 게스트 운영체제의 종류가 윈도우 기반 운영체제인 경우에는 보안 식별자(Security ID), IP 주소, 게이트웨이 정보, 도메인 네임 시스템(DNS) 정보, 컴퓨터 이름(Computer name), 조인할 도메인 서버의 정보 등을 포함한다.Here, the policy of the virtual machine is a state in which only a guest operating system is installed in the virtual machine and no settings necessary for network connection are made, and only information such as the MAC address unique to the virtual machine and the type of operating system can be obtained. In the state, it refers to network address information or domain information necessary for implementing a network connection or other computing environment. For example, when the guest operating system of the virtual machine is a Windows-based operating system, a security ID, an IP address, and a gateway are used. Information, domain name system (DNS) information, computer name, information of domain server to join, and the like.
로컬정책브로드캐스팅서버(120)는 로컬 네트워크로 연결된 가상머신의 정책을 분배 내지 배포하는 구성요소로, 외부 네트워크의 정책분배서버(130)로부터 로컬 네트워크에 속하는 가상머신에 적용할 정책을 획득하여 이를 가상머신에 탑재된 정책설정에이전트(110)에 전달하여 가상머신의 정책을 분배 내지 배포한다.Local policy broadcasting server 120 is a component that distributes or distributes the policy of the virtual machine connected to the local network, obtains a policy to be applied to the virtual machine belonging to the local network from the policy distribution server 130 of the external network The policy setting agent 110 mounted in the virtual machine is delivered to distribute or distribute the policy of the virtual machine.
정책분배서버(130)는 로컬정책브로드캐스팅서버(120)로부터 가상머신에 적용할 정책에 대한 요청을 받아, 이에 대한 응답으로, 해당 가상머신에 적용할 정책에 관한 정보를 로컬정책브로드캐스팅서버(120)에 제공한다.The policy distribution server 130 receives a request for a policy to be applied to the virtual machine from the local policy broadcasting server 120, and in response thereto, the policy distribution server 130 receives information about a policy to be applied to the virtual machine. 120).
도메인서버(140)는 가상머신의 도메인 등록을 수행하는 구성요소로, 여기에서 도메인은 네트워크를 통해 공용 디렉터리 데이터베이스를 공유하는 논리적 그룹으로, 도메인서버(140)의 가장 대표적인 예로 Windows 계열의 운영체제기반의 액티브 디렉터리 서버 등이 있으며, 가상머신은 도메인서버(140)에서 관리하는 도메인에 자신의 고유한 계정(또는 컴퓨터 이름)을 통해 참가(조인)함으로써, 도메인 내의 여러 자원에 접근할 수 있게 된다.The domain server 140 is a component that performs domain registration of a virtual machine, where a domain is a logical group sharing a common directory database through a network. The most representative example of the domain server 140 is a Windows-based operating system. There is an Active Directory server, and the virtual machine can access (join) various domains within the domain by joining (joining) its own account (or computer name) to the domain managed by the domain server 140.
본 실시예에 따른 클라우드 컴퓨팅 서버 시스템에서는 로컬정책브로드캐스팅서버(120)를 두어, 서비스 네트워크(로컬 네트워크)와 관리 네트워크를 분리하여, 가상머신의 정책설정에이전트(110)로 하여금 다른 사용자의 가상머신의 정책들을 관리하는 정책분배서버(130)를 알지 못하게 함으로써, 클라우드 컴퓨팅 서버 시스템의 보안성을 강화하도록 구현하였다.In the cloud computing server system according to the present embodiment, a local policy broadcasting server 120 is provided to separate a service network (local network) and a management network, thereby causing the policy setting agent 110 of the virtual machine to be a virtual machine of another user. By not knowing the policy distribution server 130 that manages the policies of the, it was implemented to enhance the security of the cloud computing server system.
특히, 본 실시예에 따른 클라우드 컴퓨팅 서버 시스템에서는 각 로컬 네트워크에 DHCP 서버가 아닌 로컬정책브로드캐스팅서버(120)를 두어 로컬 네트워크 상의 가상머신에게 정책을 분배한다.In particular, the cloud computing server system according to the present embodiment has a local policy broadcasting server 120 instead of a DHCP server in each local network to distribute the policy to the virtual machine on the local network.
DHCP(Dynamic Host Configuration Protocol, 동적 호스트 설정 통신 규약)은, TCP/IP 통신을 실행하기 위해 필요한 설정정보(본 실시예에서의 가상머신에 적용할 정책)를 자동으로 할당 관리하기 위한 통신 규약으로, DHCP 서버는 DHCP 클라이언트의 요청에 따라 IP 주소를 자동으로 할당하고 할당된 IP 주소에 임대기간을 설정할 수 있게 된다.DHCP (Dynamic Host Configuration Protocol) is a communication protocol for automatically allocating and managing configuration information (policy to be applied to a virtual machine in this embodiment) necessary for executing TCP / IP communication. The DHCP server can automatically assign an IP address at the request of a DHCP client and set a lease duration for the assigned IP address.
일반적으로 로컬 네트워크 상의 노드 내지 가상머신에 IP 주소를 설정함에 있어서 각 로컬 네트워크에 DHCP 서버를 두어 이를 이용하여 노드 내지 가상 머신에 IP 주소를 할당하나, 본 실시예의 정책 분배 과정에 DHCP 서버의 구성을 도입할 경우에는 각각의 DHCP 서버에서 정책 정보를 관리하게 되어 DHCP 서버의 부하가 지나치게 증가하여 전체적인 효율이 떨어지게 된다.In general, in setting an IP address for a node or a virtual machine on a local network, a DHCP server is provided in each local network and an IP address is assigned to the node or a virtual machine using the same. In the case of introduction, each DHCP server manages policy information, so the load on the DHCP server increases excessively and the overall efficiency decreases.
또한, DHCP 서버를 통해 가상머신의 정책을 분배할 경우에는 로컬 네트워크 외부의 퍼블릭 네트워크와의 연동시에 퍼블릭 네트워크 상의 DHCP 서버 및 DHCP 클라이언트들과의 충돌 가능성이 발생한다는 문제점이 있다.In addition, when the policy of the virtual machine is distributed through a DHCP server, there is a problem that a possibility of collision with a DHCP server and DHCP clients on the public network occurs when interworking with a public network outside the local network.
본 실시예에 따른 클라우드 컴퓨팅 서버 시스템에서는 IP 주소가 설정되기 이전이라 하더라도 브로드캐스팅 방식을 이용하여 정책 분배를 요청하는 가상머신의 MAC 주소 기타 정보들을 전달하고, 이에 대한 응답으로 IP 주소를 획득할 수 있다는 점에 착안하여, 로컬 네트워크 상에 브로드캐스팅 방식의 정책 요청 메시지를 수신하는 로컬정책브로드캐스팅서버(120)를 위치시키고, 중앙에, 이러한 로컬정책브로드캐스팅서버(120)에 가상머신에 적용할 정책을 제공하는 정책분배서버(130)를 구비한다. In the cloud computing server system according to the present embodiment, even before the IP address is set, the MAC address of the virtual machine requesting the policy distribution may be transmitted using a broadcasting method, and the IP address may be obtained in response thereto. Focusing on the fact that the local policy broadcasting server 120 receives a broadcasting policy request message on the local network, and centrally, the local policy broadcasting server 120 is applied to the virtual machine. Policy distribution server 130 for providing a policy is provided.
이에 따라, 중앙의 정책분배서버(130)를 통해 모든 가상머신의 정책을 관리하고, 가상머신의 정책설정에이전트(110)에서는 로컬 네트워크 상의 브로드캐스팅을 통해 가상머신의 정책 정보를 획득할 수 있게 한다.Accordingly, it manages the policies of all virtual machines through the central policy distribution server 130, and the policy setting agent 110 of the virtual machine to obtain the policy information of the virtual machine through broadcasting on the local network. .
본 실시예에 따른 정책설정에이전트(110), 로컬정책브로드캐스팅서버(120), 정책분배서버(130) 및 도메인서버(140)는 클라우드 컴퓨팅 서버 시스템에 설치되는 구성요소로, 적어도 하나의 DSP(digital signal process) 프로세서, 컨트롤러, ASIC(application specific integrated circuit), FPGA(field programmable gate array) 등의 프로그램 가능한 논리 소자, 기타 전자 장치 또는 이들의 결합으로 이루어지는 하드웨어로 구현될 수 있다. 또한 본 실시예에 따른 가상머신 관리 장치(130)의 구성요소 및 기능 중 적어도 일부는 소프트웨어로 구현될 수 있으며, 이러한 소프트웨어는 기록 매체에 기록되어 있을 수 있다. 또한, 본 실시예에 따른 가상머신 제어 장치(130)의 각 구성요소 및 기능은 하드웨어와 소프트웨어의 결합으로도 구현될 수도 있다.The policy setting agent 110, the local policy broadcasting server 120, the policy distribution server 130, and the domain server 140 according to the present embodiment are components installed in a cloud computing server system and include at least one DSP ( It can be implemented in hardware consisting of a digital signal process (processor), a controller, an application specific integrated circuit (ASIC), a programmable logic device such as a field programmable gate array (FPGA), other electronic devices, or a combination thereof. In addition, at least some of the components and functions of the virtual machine management apparatus 130 according to the present embodiment may be implemented in software, and such software may be recorded in a recording medium. In addition, each component and function of the virtual machine control device 130 according to the present embodiment may be implemented by a combination of hardware and software.
도 2는 본 발명의 바람직한 일 실시예에 따른 클라우드 컴퓨팅 서버 시스템에서 가상머신의 정책을 분배하는 과정을 도시한 도면이다.2 is a diagram illustrating a process of distributing a policy of a virtual machine in a cloud computing server system according to an exemplary embodiment of the present invention.
도 2에 도시된 클라우드 컴퓨팅 서버 시스템의 정책설정에이전트(210), 로컬정책브로드캐스팅서버(220), 정책분배서버(230) 및 도메인서버(240)는 도 1에 도시된 클라우드 컴퓨팅 서버 시스템의 정책설정에이전트(110), 로컬정책브로드캐스팅서버(120), 정책분배서버(130) 및 도메인서버(140)에 각각 대응되며, 본 실시예에 따른 가상머신의 분배 과정은 도 1에 도시된 클라우드 컴퓨팅 서버 시스템에서 구현될 수 있다. 따라서, 도 1에 도시된 클라우드 컴퓨팅 서버 시스템에 관한 설명에서와 동일한 사항에 대해서는 이를 참조한다.The policy setting agent 210, the local policy broadcasting server 220, the policy distribution server 230, and the domain server 240 of the cloud computing server system illustrated in FIG. 2 are the policies of the cloud computing server system illustrated in FIG. 1. It corresponds to the configuration agent 110, local policy broadcasting server 120, policy distribution server 130 and domain server 140, respectively, the distribution process of the virtual machine according to the present embodiment is cloud computing shown in FIG. It can be implemented in a server system. Therefore, the same matters as in the description of the cloud computing server system illustrated in FIG. 1 are referred to this.
먼저, 클라우드 컴퓨팅 서버 시스템의 관리자(250)가 정책분배서버(230)에 사용자 정보를 입력하고, 해당 사용자가 이용할 가상머신을 생성할 것을 요청한다(S201). First, the manager 250 of the cloud computing server system inputs user information to the policy distribution server 230 and requests that the user create a virtual machine to be used (S201).
정책분배서버(230)는 S201 단계의 요청에 따라, 로컬 혹은 네트워크로 연결된 데이터베이스(235)에 해당 사용자의 가상머신에 적용할 정책을 포함한 사용자 정보를 저장하고(S202), 저장한 사용자 정보를 기초로 가상머신을 생성하고 그 동작을 시작시킨다(S203).According to the request of step S201, the policy distribution server 230 stores user information including a policy to be applied to the user's virtual machine in a local or networked database 235 (S202), and based on the stored user information. In operation S203, the virtual machine is created and its operation is started.
S203 단계의 가상머신의 시작과 동시에 가상머신에 탑재된 정책설정에이전트(210)는 해당 가상머신의 MAC 주소를 기초로 해당 가상머신에 적용할 정책을 요청하는 정책요청메시지를 가상머신의 로컬 네트워크에 브로드캐스팅한다(S204).At the same time as the start of the virtual machine in step S203, the policy setting agent 210 mounted in the virtual machine sends a policy request message for requesting a policy to be applied to the virtual machine based on the MAC address of the virtual machine to the local network of the virtual machine. Broadcast (S204).
가상머신과 로컬 네트워크로 연결된 로컬정책브로드캐스팅서버(220)는 S204 단계에서 브로드캐스팅된 정책요청메시지를 수신하여 이를 정책분배서버(230)에 전달한다(S205).Local policy broadcasting server 220 connected to the virtual machine and the local network receives the policy request message broadcast in step S204 and delivers it to the policy distribution server 230 (S205).
정책분배서버(230)는 S205 단계의 정책요청메시지의 MAC 주소를 기초로 데이터베이스(235)로부터 해당 가상머신에 적용할 정책을 검색하여, S205 단계의 정책요청메세지에 대한 응답으로 정책요청메시지의 MAC 주소에 대응되는 가상머신에 적용할 정책을 로컬정책브로드캐스팅서버(220)로 전송한다(S206).The policy distribution server 230 searches for a policy to be applied to the virtual machine from the database 235 based on the MAC address of the policy request message in step S205, and in response to the policy request message in step S205, the MAC of the policy request message. The policy to be applied to the virtual machine corresponding to the address is transmitted to the local policy broadcasting server 220 (S206).
로컬정책브로드캐스팅서버(220)는 S204 단계의 정책요청메시지에 대한 응답으로, S206 단계를 통해 획득한 정책의 정보를 정책설정에이전트(210)에 제공한다.In response to the policy request message in step S204, the local policy broadcasting server 220 provides the policy setting agent 210 with information of the policy obtained in step S206.
정책설정에이전트(210)는 S207 단계에서 획득한 정책에 SID(Security ID)가 지정되어 있으면, 이를 그대로 설정하고, 그렇지 않으면, SID를 랜덤하게 생성한다(S208).If the SID (Security ID) is specified in the policy obtained in step S207, the policy setting agent 210 sets it as it is, otherwise, randomly generates the SID (S208).
그리고, 정책설정에이전트(210)는 S207 단계에서 획득한 정책으로부터 IP 주소를 획득하여, 이를 가상머신의 IP 주소로 설정하여(S209), 외부 네트워크의 노드들과 통신을 할 수 있게 한다.Then, the policy setting agent 210 obtains an IP address from the policy obtained in step S207 and sets it as an IP address of the virtual machine (S209) to enable communication with the nodes of the external network.
그리고, 정책설정에이전트(210)는 S209 단계의 IP 주소 설정을 통해 외부 네트워크의 노드들과 통신을 할 수 있게 되면, S207 단계에서 획득한 정책으로부터 컴퓨터 네임이나 기타 도메인 정보를 획득하여 외부 네트워크의 도메인 서버에 가상머신의 도메인 참가를 신청한다(S210). Then, when the policy setting agent 210 can communicate with the nodes of the external network through the IP address setting in step S209, it acquires the computer name or other domain information from the policy obtained in step S207 to the domain of the external network. Apply to join the domain of the virtual machine to the server (S210).
도 3는 본 발명의 바람직한 일 실시예에 따른 클라우드 컴퓨팅 서버 시스템의 일 구성요소인 정책설정에이전트와 로컬정책브로드캐스팅서버 사이에서 가상머신의 정책을 설정하기 위한 구체적인 통신 과정을 예시한 도면으로, 본 실시예는 Windows 기반의 운영체제 상에서 각 구성요소가 동작하는 것을 예시한다. 3 is a diagram illustrating a specific communication process for setting a policy of a virtual machine between a policy setting agent and a local policy broadcasting server, which are components of a cloud computing server system according to an exemplary embodiment of the present invention. The embodiment illustrates that each component operates on a Windows-based operating system.
본 실시예에 따른 가상머신의 정책을 설정하기 위한 구체적인 통신 과정은 도 1 내지 2에 도시된 클라우드 컴퓨팅 서버 시스템에서 구현될 수 있다. 따라서, 도 1 내지 2에 도시된 클라우드 컴퓨팅 서버 시스템에 관한 설명에서와 동일한 사항에 대해서는 이를 참조한다.A detailed communication process for setting a policy of the virtual machine according to the present embodiment may be implemented in the cloud computing server system illustrated in FIGS. 1 and 2. Therefore, the same matters as in the description of the cloud computing server system illustrated in FIGS. 1 and 2 are referred to this.
먼저, 가상머신이 생성되어 그 동작이 시작되면, 가상머신에 탑재된 정책설정에이전트(310)는 가상머신의 MAC 주소를 획득하고(S301), 가상머신의 게스트 운영체제의 종류(type)을 획득한다(S302). 본 실시예에서, 가상머신의 게스트 운영체제의 종류를 획득하는 것은, 게스트 운영체제의 종류에 따라 정책이 달리 설정된 경우에, 이를 달리 적용하기 위함이다.First, when the virtual machine is generated and its operation is started, the policy setting agent 310 mounted on the virtual machine acquires the MAC address of the virtual machine (S301), and obtains the type of the guest operating system of the virtual machine. (S302). In this embodiment, the type of the guest operating system of the virtual machine is obtained in order to apply it differently when the policy is set differently according to the type of the guest operating system.
S301 내지 S302 단계들을 통해 획득된 가상머신의 MAC 주소와 운영체제의 종류 정보를 포함하는 정책요청메시지를 브로드캐스트 전송한다(S303).The policy request message including the MAC address of the virtual machine obtained through the steps S301 to S302 and the type of the operating system is broadcasted (S303).
가상머신과 로컬 네트워크로 연결된 로컬정책브로드캐스팅서버(320)는 S303 단계에서 브로드캐스트 전송된 정책요청메시지에 따라, 해당 가상머신에 적용할 정책을 획득하고, 정책요청메시지에 대한 응답으로, 정책설정에이전트(310)에 해당 가상머신에 적용할 정책을 전송한다(S304). The local policy broadcasting server 320 connected to the virtual machine and the local network acquires a policy to be applied to the virtual machine according to the policy request message broadcast in step S303, and sets the policy in response to the policy request message. The agent 310 transmits a policy to be applied to the virtual machine (S304).
정책설정에이전트(310)는 S304 단계에서 수신된 정책을 기초로 시스템준비도구(Sysprep.ini)를 생성하고(S306), S306 단계에서 생성된 시스템 준비 도구를 이용하여 보안 식별자(SID)를 랜덤하게 생성하고(S307), 아울러, netsh 유틸리티를 호출하여 IP 주소, 게이트웨이, DNS 등을 설정한다.The policy setting agent 310 generates a system preparation tool (Sysprep.ini) based on the policy received in step S304 (S306), and randomly generates a security identifier (SID) using the system preparation tool generated in step S306. Create (S307) and call the netsh utility to set the IP address, gateway, DNS, and the like.
본 실시예에서는 Sysprep.ini를 생성하여 이를 이용하여 보안 식별자(SID)를 재설정하였으나 이는 하나의 실시예에 불과하며, Windows 계열의 운영체제 중에서 Windows XP의 경우에는 newsid 유틸리티를 호출하여 보안 식별자(SID)를 재설정할 수 있다. Windows XP와 같이 SID 변경 내지 재설정을 위한 별도의 유틸리티를 호출하여 SID를 재설정하는 경우에는 시스템준비도구(Sysprep.ini)의 생성을 생략해도 되며, 본 발명은 이러한 SID 설정 방법을 한정하지는 않는다.In this embodiment, Sysprep.ini is generated and used to reset the security identifier (SID). However, this is only one example. In the Windows XP operating system, the newsid utility is called by calling the newsid utility. Can be reset. When resetting the SID by calling a separate utility for changing or resetting the SID, such as Windows XP, the generation of a system preparation tool (Sysprep.ini) may be omitted, and the present invention does not limit the SID setting method.
그리고, netdom 유틸리티를 호출하여, 도메인서버(340)에 접속하여 도메인에 참가하고(S308), 가상머신에 대한 모든 정책 설정이 완료되면, 이러한 설정 상태를 로컬정책브로드캐스팅서버(320)에 전송한다(S309).Then, the netdom utility is called to access the domain server 340 to join the domain (S308), and when all policy settings for the virtual machine are completed, the setting state is transmitted to the local policy broadcasting server 320. (S309).
본 발명에 의하면, 클라우드 컴퓨팅 서버 시스템에서 가상머신이 생성된 이후에 해당 가상머신에 적용할 정책 즉, IP 주소나 도메인 정보 등을 자동으로 해당 가상머신에 설정할 수 있다. 아울러, 정책이 수동이 아닌 자동으로 가상머신에 설정될 수 있어서, 동일한 템플릿의 가상머신을 대규모로 생성하거나 배포함에 있어서 해당 과정을 효율적으로 처리할 수 있다.According to the present invention, after the virtual machine is generated in the cloud computing server system, a policy to be applied to the virtual machine, that is, an IP address or domain information, may be automatically set in the virtual machine. In addition, the policy can be automatically set to the virtual machine rather than manually, so that the process can be efficiently handled in large-scale creation or distribution of the virtual machine of the same template.
본 발명은 또한 컴퓨터로 읽을 수 있는 기록매체에 컴퓨터가 읽을 수 있는 코드로서 구현하는 것이 가능하다. 컴퓨터가 읽을 수 있는 기록매체는 컴퓨터 시스템에 의해 읽혀질 수 있는 데이터가 저장되는 모든 종류의 기록장치를 포함한다. 컴퓨터가 읽을 수 있는 기록매체의 예로는 ROM, RAM, CD-ROM, 자기 테이프, 플로피 디스크, 광데이터 저장장치 등이 있으며, 또한 케리어 웨이브(예를 들어 인터넷을 통한 전송)의 형태로 구현되는 것도 포함한다. 또한, 컴퓨터가 읽을 수 있는 기록매체는 네트워크로 연결된 컴퓨터 시스템에 분산되어, 분산방식으로 컴퓨터가 읽을 수 있는 코드가 저장되고 실행될 수 있다. 그리고, 본 발명을 구현하기 위한 기능적인(functional) 프로그램, 코드 및 코드 세그먼트들은 본 발명이 속하는 기술분야의 프로그래머들에 의해 용이하게 추론될 수 있다.The invention can also be embodied as computer readable code on a computer readable recording medium. Computer-readable recording media include all kinds of recording devices that store data that can be read by a computer system. Examples of computer-readable recording media include ROM, RAM, CD-ROM, magnetic tape, floppy disks, optical data storage devices, and the like, which are also implemented in the form of carrier waves (for example, transmission over the Internet). Include. The computer readable recording medium can also be distributed over network coupled computer systems so that the computer readable code is stored and executed in a distributed fashion. In addition, functional programs, codes, and code segments for implementing the present invention can be easily inferred by programmers in the art to which the present invention belongs.
본 발명은 첨부된 도면에 도시된 일 실시예를 참고로 설명되었으나, 이는 예시적인 것에 불과하며, 당해 기술분야에서 통상의 지식을 가진 자라면 이로부터 다양한 변형 및 균등한 타 실시예가 가능하다는 점을 이해할 수 있을 것이다. 따라서, 본 발명의 진정한 보호 범위는 첨부된 청구 범위에 의해서만 정해져야 할 것이다.Although the present invention has been described with reference to one embodiment shown in the accompanying drawings, it is merely an example, and those skilled in the art may realize various modifications and equivalent other embodiments therefrom. I can understand. Accordingly, the true scope of protection of the invention should be defined only by the appended claims.

Claims (11)

  1. 가상화된 컴퓨팅 자원을 이용하는 가상머신을 통해 가상화된 컴퓨팅 환경을 제공하는 클라우드 컴퓨팅 서버 시스템의 가상머신 정책 설정 시스템에 있어서,In the virtual machine policy setting system of a cloud computing server system that provides a virtualized computing environment through a virtual machine using virtualized computing resources,
    가상머신이 생성된 이후에 상기 가상머신의 MAC 주소를 이용하여 상기 가상머신이 속하는 로컬 네트워크에 상기 가상머신에 적용할 정책을 요청하는 정책요청메시지를 브로드캐스팅하여 상기 정책요청메시지에 대한 응답으로 상기 가상머신에 설정할 정책을 포함하는 응답 메시지를 수신하여, 상기 수신된 정책을 상기 가상머신에 설정하는 정책설정에이전트; 및After the virtual machine is created, a policy request message for requesting a policy to be applied to the virtual machine is broadcasted to the local network to which the virtual machine belongs by using the MAC address of the virtual machine, in response to the policy request message. A policy setting agent configured to receive a response message including a policy to be set in a virtual machine and to set the received policy to the virtual machine; And
    상기 로컬 네트워크 상에 위치하며, 상기 정책설정에이전트가 브로드캐스팅한 정책요청메시지를 수신하여 상기 수신된 정책요청메시지의 MAC 주소를 기초로 상기 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하고, 상기 획득된 정책을 포함하는 응답 메시지를 전송하는 로컬정책브로드캐스팅서버를 포함하는 것을 특징으로 하는 가상머신 정책 설정 시스템. Located on the local network, receiving a policy request message broadcast by the policy setting agent, acquiring a policy to be set in the virtual machine corresponding to the MAC address based on the MAC address of the received policy request message, and Virtual machine policy setting system comprising a local policy broadcasting server for transmitting a response message containing the obtained policy.
  2. 제1항에 있어서The method of claim 1
    상기 로컬 네트워크 외부에 위치하며, 상기 로컬정책브로드캐스팅서버로부터 상기 MAC 주소에 대응되는 가상머신에 설정할 정책에 대한 질의를 수신하고, 가상머신별로 설정할 정책을 저장하는 데이터베이스로부터 상기 수신된 질의의 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하여, 상기 수신된 질의에 대한 응답으로 상기 획득된 정책을 상기 로컬정책브로드캐스팅서버에 전송하는 정책분배서버를 더 포함하는 것을 특징으로 하는 가상머신 정책 설정 시스템.The MAC address of the received query from a database located outside the local network, receiving a query for a policy to be set in the virtual machine corresponding to the MAC address from the local policy broadcasting server and storing a policy to be set for each virtual machine. And a policy distribution server for acquiring a policy to be set in the virtual machine corresponding to the and transmitting the obtained policy to the local policy broadcasting server in response to the received query. .
  3. 제1항에 있어서,The method of claim 1,
    상기 정책요청메시지는 상기 가상머신의 MAC 주소 및 운영체제 정보를 포함하는 것을 특징으로 하는 가상머신 정책 설정 시스템.The policy request message includes a virtual machine MAC address and operating system information of the virtual machine policy setting system.
  4. 제1항에 있어서,The method of claim 1,
    상기 정책은 상기 가상머신의 보안 식별자, IP 주소, 서브넷 정보, 게이트웨이 정보, 도메인 네임 시스템 정보, 컴퓨터 이름 및 상기 가상머신이 조인할 도메인의 정보 중 적어도 하나 이상을 포함하는 것을 특징으로 하는 가상머신 정책 설정 시스템.The policy may include at least one of a security identifier of the virtual machine, an IP address, subnet information, gateway information, domain name system information, a computer name, and information of a domain to which the virtual machine joins. Setting system.
  5. 제1항에 있어서,The method of claim 1,
    상기 정책설정에이전트는 상기 정책요청메시지에 대한 응답 메시지를 수신하고, 상기 가상머신의 보안 식별자를 랜덤으로 설정하고, 상기 응답 메시지로부터 IP 주소 및 도메인의 정보를 추출하여, 상기 추출된 IP 주소를 상기 가상머신의 IP 주소로 설정하고, 상기 추출된 도메인의 정보에 대응하는 도메인에 상기 가상머신을 조인시키는 것을 특징으로 하는 가상머신 정책 설정 시스템.The policy setting agent receives a response message for the policy request message, randomly sets a security identifier of the virtual machine, extracts IP address and domain information from the response message, and stores the extracted IP address. And setting the IP address of the virtual machine and joining the virtual machine to a domain corresponding to the extracted domain information.
  6. 가상화된 컴퓨팅 자원을 이용하는 가상머신을 통해 가상화된 컴퓨팅 환경을 제공하는 클라우드 컴퓨팅 서버 시스템의 가상머신에 탑재된 정책설정에이전트의 가상머신 정책 설정 방법에 있어서,In the method of setting a virtual machine policy of a policy setting agent mounted on a virtual machine of a cloud computing server system that provides a virtualized computing environment through a virtual machine using virtualized computing resources,
    가상머신이 생성된 이후에 상기 가상머신의 MAC 주소를 획득하는 단계;Acquiring the MAC address of the virtual machine after the virtual machine is created;
    상기 획득된 MAC 주소를 이용하여 상기 가상머신이 속하는 로컬 네트워크에 상기 가상머신에 적용할 정책을 요청하는 정책요청메시지를 브로드캐스팅하는 단계;Broadcasting a policy request message for requesting a policy to be applied to the virtual machine to a local network to which the virtual machine belongs using the obtained MAC address;
    상기 정책요청메시지에 대한 응답으로 상기 가상머신에 설정할 정책을 포함하는 응답 메시지를 수신하는 단계; 및Receiving a response message including a policy to be set in the virtual machine in response to the policy request message; And
    상기 수신된 정책을 상기 가상머신에 설정하는 단계를 포함하는 것을 특징으로 하는 가상머신 정책 설정 방법.And setting the received policy in the virtual machine.
  7. 제6항에 있어서, The method of claim 6,
    상기 가상머신이 생성된 이후에 상기 가상머신의 운영체제 정보를 획득하는 단계를 더 포함하고,Acquiring operating system information of the virtual machine after the virtual machine is generated,
    상기 정책요청메시지는 상기 가상머신의 MAC 주소 및 상기 운영체제 정보를 포함하는 것을 특징으로 하는 가상머신 정책 설정 방법.The policy request message includes a virtual machine MAC address and operating system information.
  8. 제6항에 있어서,The method of claim 6,
    상기 응답 메시지로부터 IP 주소 및 도메인의 정보를 추출하는 단계;Extracting information of an IP address and a domain from the response message;
    상기 추출된 IP 주소를 상기 가상머신의 IP 주소로 설정하는 단계; 및Setting the extracted IP address as an IP address of the virtual machine; And
    상기 추출된 도메인의 정보에 대응하는 도메인에 상기 가상머신을 조인시키는 단계를 더 포함하는 것을 특징으로 하는 가상머신 정책 설정 방법.And joining the virtual machine to a domain corresponding to the extracted domain information.
  9. 가상화된 컴퓨팅 자원을 이용하는 가상머신을 통해 가상화된 컴퓨팅 환경을 제공하는 클라우드 컴퓨팅 서버 시스템의 가상머신의 로컬 네트워크에 위치한 로컬정책브로드캐스팅서버의 가상머신 정책 제공 방법에 있어서,In the virtual machine policy providing method of the local policy broadcasting server located in the local network of the virtual machine of the cloud computing server system providing a virtualized computing environment through the virtual machine using the virtualized computing resources,
    가상머신에 탑재된 정책설정에이전트로부터 상기 가상머신에 적용할 정책의 요청을 위해 MAC 주소를 포함하여 상기 로컬 네트워크에 브로드캐스팅된 정책요청메시지를 수신하는 단계;Receiving a policy request message broadcast to the local network including a MAC address for requesting a policy to be applied to the virtual machine from a policy setting agent mounted on a virtual machine;
    상기 수신된 정책요청메시지의 MAC 주소를 기초로 상기 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하는 정책획득단계; 및A policy acquisition step of acquiring a policy to be set in a virtual machine corresponding to the MAC address based on the MAC address of the received policy request message; And
    상기 획득된 정책을 포함하는 응답 메시지를 상기 정책설정에이전트에 전송하는 단계를 포함하는 것을 특징으로 하는 로컬정책브로드캐스팅서버의 가상머신 정책 제공 방법.And transmitting a response message including the obtained policy to the policy setting agent.
  10. 제9항에 있어서,The method of claim 9,
    상기 정책획득단계는The policy acquisition stage
    상기 로컬 네트워크 외부에 위치한 정책분배서버에 상기 MAC 주소에 대응되는 가상머신에 설정할 정책에 대한 질의를 전송하는 단계;Transmitting a query for a policy to be set in a virtual machine corresponding to the MAC address to a policy distribution server located outside the local network;
    상기 질의에 대한 응답을 수신하는 단계; 및Receiving a response to the query; And
    상기 수신된 응답을 통해 상기 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하는 단계를 더 포함하는 것을 특징으로 하는 가상머신 정책 제공 방법.And acquiring a policy to be set in the virtual machine corresponding to the MAC address through the received response.
  11. 제9항에 있어서,The method of claim 9,
    상기 정책요청메시지는 상기 가상머신의 MAC 주소 및 상기 운영체제 정보를 포함하고,The policy request message includes the MAC address of the virtual machine and the operating system information.
    상기 정책획득단계는 상기 수신된 정책요청메시지의 MAC 주소 및 운영체제 정보를 기초로 상기 MAC 주소에 대응되는 가상머신에 설정할 정책을 획득하는 단계를 포함하는 것을 특징으로 하는 가상머신 정책 제공 방법.The policy acquiring step includes acquiring a policy to be set in the virtual machine corresponding to the MAC address based on the MAC address and operating system information of the received policy request message.
PCT/KR2012/004052 2011-08-24 2012-05-23 System for setting up a virtual machine policy, method for setting up a virtual machine policy, and method for providing a virtual machine policy in a cloud computing server system WO2013027923A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2011-0084842 2011-08-24
KR1020110084842A KR101408034B1 (en) 2011-08-24 2011-08-24 Apparatus for setting policy of virtual machine in cloud computing server system, method therefor, and method for providing policy of virtual machine in cloud computing server system

Publications (1)

Publication Number Publication Date
WO2013027923A1 true WO2013027923A1 (en) 2013-02-28

Family

ID=47746634

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2012/004052 WO2013027923A1 (en) 2011-08-24 2012-05-23 System for setting up a virtual machine policy, method for setting up a virtual machine policy, and method for providing a virtual machine policy in a cloud computing server system

Country Status (2)

Country Link
KR (1) KR101408034B1 (en)
WO (1) WO2013027923A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109995564A (en) * 2017-12-31 2019-07-09 中国移动通信集团辽宁有限公司 Automatically the method, apparatus, equipment and medium of maintenance port are opened
CN110545336A (en) * 2019-09-06 2019-12-06 深圳平安通信科技有限公司 IP address replacing method, device, computer equipment and storage medium
CN114697246A (en) * 2022-02-23 2022-07-01 浙江众合科技股份有限公司 Virtual machine test environment construction method
CN114760269A (en) * 2022-03-17 2022-07-15 深信服科技股份有限公司 Virtual machine address allocation method, device and storage medium
CN117785385A (en) * 2023-12-30 2024-03-29 北京领雁科技股份有限公司 ID generation system and method based on snowflake algorithm

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101493933B1 (en) * 2014-05-26 2015-02-16 주식회사 파이오링크 Method, appratus, system and computer-readable recording medium for assisting communication of virtual machine using hardware switch and software switch
CN104484218B (en) 2014-11-18 2017-11-17 华为技术有限公司 A kind of method, apparatus and system of the displaying of virtual machine title
KR102131083B1 (en) * 2018-11-21 2020-07-07 주식회사 크로센트 System and method for cloud based hosting service
KR20240077387A (en) 2022-11-23 2024-05-31 (주)아이엔소프트 Platform for managing clusters and applications in multi-cloud and thereof method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20090006632A (en) * 2007-07-12 2009-01-15 삼성전자주식회사 Virtual firewall system and the control method for using based on commonness security policy
KR20110045598A (en) * 2009-10-27 2011-05-04 삼성에스디에스 주식회사 Enterprise platform system and server based cloud computing, and method for sevice the same
JP2011095871A (en) * 2009-10-28 2011-05-12 Hitachi Ltd Program distribution method and operation management device
KR20110083084A (en) * 2010-01-13 2011-07-20 한국전자통신연구원 Apparatus and method for operating server by using virtualization technology

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20090006632A (en) * 2007-07-12 2009-01-15 삼성전자주식회사 Virtual firewall system and the control method for using based on commonness security policy
KR20110045598A (en) * 2009-10-27 2011-05-04 삼성에스디에스 주식회사 Enterprise platform system and server based cloud computing, and method for sevice the same
JP2011095871A (en) * 2009-10-28 2011-05-12 Hitachi Ltd Program distribution method and operation management device
KR20110083084A (en) * 2010-01-13 2011-07-20 한국전자통신연구원 Apparatus and method for operating server by using virtualization technology

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109995564A (en) * 2017-12-31 2019-07-09 中国移动通信集团辽宁有限公司 Automatically the method, apparatus, equipment and medium of maintenance port are opened
CN109995564B (en) * 2017-12-31 2022-04-15 中国移动通信集团辽宁有限公司 Method, device, equipment and medium for automatically opening maintenance port
CN110545336A (en) * 2019-09-06 2019-12-06 深圳平安通信科技有限公司 IP address replacing method, device, computer equipment and storage medium
CN110545336B (en) * 2019-09-06 2023-06-23 深圳平安通信科技有限公司 IP address replacement method, device, computer equipment and storage medium
CN114697246A (en) * 2022-02-23 2022-07-01 浙江众合科技股份有限公司 Virtual machine test environment construction method
CN114760269A (en) * 2022-03-17 2022-07-15 深信服科技股份有限公司 Virtual machine address allocation method, device and storage medium
CN114760269B (en) * 2022-03-17 2024-04-09 深信服科技股份有限公司 Virtual machine address allocation method, device and storage medium
CN117785385A (en) * 2023-12-30 2024-03-29 北京领雁科技股份有限公司 ID generation system and method based on snowflake algorithm
CN117785385B (en) * 2023-12-30 2024-06-07 北京领雁科技股份有限公司 ID generation system and method based on snowflake algorithm

Also Published As

Publication number Publication date
KR101408034B1 (en) 2014-06-17
KR20130022508A (en) 2013-03-07

Similar Documents

Publication Publication Date Title
WO2013027923A1 (en) System for setting up a virtual machine policy, method for setting up a virtual machine policy, and method for providing a virtual machine policy in a cloud computing server system
US11190375B2 (en) Data packet processing method, host, and system
US20180159819A1 (en) Methods and System for Allocating an IP Address for an Instance in a Network Function Virtualization (NFV) system
CN104468574B (en) A kind of method, system and device of virtual machine dynamic access IP address
EP2942914B1 (en) Load sharing method and apparatus
CN110737508A (en) cloud container service network system based on wave cloud and implementation method
WO2014169870A1 (en) Virtual network element automatic loading and virtual machine ip address acquisition method and system, and storage medium
WO2019178855A1 (en) Method for virtual machine to access remote acceleration device, and system
WO2012086916A1 (en) Cloud computing system, traffic distribution method, and method for controlling same
WO2014015664A1 (en) Communication method and system
CN103677858A (en) Method, system and device for managing virtual machine software in cloud environment
CN112583618B (en) Method, device and computing equipment for providing network service for business
CN110063045B (en) Message processing method and device in cloud computing system
CN112099913A (en) Method for realizing safety isolation of virtual machine based on OpenStack
WO2016150139A1 (en) Method and apparatus for establishing network service instance
CN105979202B (en) Data transmission method and device
WO2012087262A1 (en) Dns proxy service for multi-core platforms
CN114422350B (en) Public cloud container instance creation method
CN109819064B (en) Method for communication between modules, operating system module and conference panel
CN103795581A (en) Address processing method and address processing device
Wendt et al. Proxying ROS communications—enabling containerized ROS deployments in distributed multi-host environments
CN110636149B (en) Remote access method, device, router and storage medium
EP2656590A1 (en) Dns forwarder for multi-core platforms
CN108268300B (en) Virtual machine migration method and device
CN115185637A (en) Communication method and device for PaaS component management end and virtual machine agent

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12825639

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12825639

Country of ref document: EP

Kind code of ref document: A1