WO2014000292A1 - Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données - Google Patents

Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données Download PDF

Info

Publication number
WO2014000292A1
WO2014000292A1 PCT/CN2012/077983 CN2012077983W WO2014000292A1 WO 2014000292 A1 WO2014000292 A1 WO 2014000292A1 CN 2012077983 W CN2012077983 W CN 2012077983W WO 2014000292 A1 WO2014000292 A1 WO 2014000292A1
Authority
WO
WIPO (PCT)
Prior art keywords
target
virtual machine
data center
channel
service control
Prior art date
Application number
PCT/CN2012/077983
Other languages
English (en)
Chinese (zh)
Inventor
林毅
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN201280000865.7A priority Critical patent/CN102884763B/zh
Priority to PCT/CN2012/077983 priority patent/WO2014000292A1/fr
Publication of WO2014000292A1 publication Critical patent/WO2014000292A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/34Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters 
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/131Protocols for games, networked simulations or virtual reality

Definitions

  • a data center is usually composed of components such as a computing system, a storage system, a communication system, a network device, an environmental control system, and a security system, and is commonly used for computing and storage of core businesses at the company level, or a company.
  • the calculation and storage of organizational operational data With the continuous development of technology and the emergence of technologies such as cloud computing/distributed computing, computing power, storage, etc. have also become an information technology service, provided to customers. These services can be provided to customers by leveraging the network, information technology, security and other capabilities of the data center.
  • Virtual machine technology is often used when providing services using data center technology.
  • a virtual machine is a complete computer system that is simulated by software and has full hardware system functionality and runs in a fully isolated environment.
  • multiple virtual machine instances can run simultaneously on a single physical server.
  • Each virtual machine uses a part of physical resources such as CPU and memory in the physical server.
  • Each virtual machine is isolated from each other.
  • each program load often has different resource requirements. For example, some workloads are CPU-intensive and some are memory-intensive.
  • Running multiple different types of applications on different virtual machines and consolidating them onto physical servers maximizes the use of resources in all dimensions, maximizing the computing power of the data center.
  • the switch is required to connect individual virtual machines to the network inside the data center.
  • the hardware switch mode can improve the performance of the data center.
  • the physical server can be controlled by virtual machine management software (such as VMware), the virtual machine can be migrated online, and the virtual machine can be migrated from one physical server to another without interrupting the virtual machine.
  • virtual machine management software such as VMware
  • Embodiments of the present invention provide a virtual machine migration method, a service control gateway, and a system across data centers.
  • the virtual machine migration method of the cross-data in the embodiment of the present invention includes: the target service control gateway of the target data center receives the virtual machine migration message sent by the source service control gateway of the source data center, and the virtual machine migration message Includes the criteria of the virtual machine to be migrated
  • the target service control gateway is configured according to An identifier of the target server, configured to configure the policy information on a target switch connected to the target server, and configure an ingress router between the target data center and the target switch in the target data center Internal data channel;
  • the target service control gateway Sending, by the target service control gateway, the configuration success response to the source service control gateway, the target service control gateway, selecting a virtual machine migration channel according to the identifier of the data channel, installing on the target server, and based on the The internal data channel provides service services for users accessing the virtual machine to be migrated.
  • the source service control gateway of the source data center sends a virtual machine migration message to the target data center of the target data center for the migration configuration of the target data center, where the virtual machine migration message includes the identifier and location of the virtual machine to be migrated.
  • the policy information corresponding to the identifier of the migrated virtual machine, the identifier of the target server, the identifier of the data channel between the source data center and the target data center for migrating the virtual machine;
  • the virtual machine to be migrated After receiving the configuration success response message sent by the target service control gateway, the virtual machine to be migrated is sent to the target data center.
  • a first function module configured to receive a virtual machine migration message sent by a source service control gateway of the source data center, where the virtual machine migration message includes an identifier of the virtual machine to be migrated, policy information corresponding to the identifier, and a target server Identifies the identity of the data channel between the source data center and the target data center used to migrate the virtual machine;
  • a second function module configured to configure the policy information on a target switch connected to the target server according to the identifier of the target server, and configure an entry of the target data center in the target data center An internal data channel between the router and the target switch;
  • a third function module configured to send the virtual machine to be migrated sent by the source data center Installed on the target server, and provide service services for the user based on the internal data channel.
  • a fourth function module configured to send a virtual machine migration message to the target data center of the target data center for the migration configuration of the target data center, where the virtual machine migration message includes an identifier of the virtual machine to be migrated, and the Identifying corresponding policy information, an identifier of the target server, and address information of the network access device of the user;
  • a fifth function module configured to send the virtual machine to be migrated to the target data center after receiving the configuration success response message sent by the target service control gateway.
  • a source data center and a target data center that are in communication with each other, any of the target service control gateways and source service control gateways as described above.
  • the virtual machine migration method, the service control gateway, and the system provided by the embodiments of the present invention realize the automatic installation of the policy on the target switch during the automatic migration of the virtual machine across the data center, the automatic configuration of the network from the user to the target data center, and the target data.
  • the network is automatically configured between the central ingress router and the target switch, and no manual intervention is required.
  • 1 is a schematic flowchart of Embodiment 1 of a method for migrating a virtual machine in a data center according to the present invention
  • FIG. 2 is a schematic flowchart of a second embodiment of a method for migrating a virtual machine in a data center according to the present invention
  • FIG. 3B is a schematic structural diagram of a second functional module of the target service control gateway
  • FIG. 4 is a schematic structural diagram of a source service control gateway according to Embodiment 2 of the present invention.
  • FIG. 5 is a schematic structural diagram of a virtual machine migration system across data centers according to the present invention.
  • 1 is a schematic flowchart of Embodiment 1 of a method for virtual machine migration in a data center according to the present invention. As shown in Figure 1, the virtual machine migration method across data centers includes the following steps:
  • Step S101 The target service control gateway (SCG) of the target data center receives the virtual machine migration sent by the source service control gateway of the source data center.
  • the target service control gateway can perceive the internal topology information of the target data center through the control channel inside the target data center, and can configure the equipment inside the target data center; meanwhile, the target service control gateway also transmits the external data to the target data center.
  • the control plane of the network communicates to establish the connection of the transport network; and the target service control gateway can also communicate with the target data center virtual machine management software (such as VMware) to perform the virtual machine migration process as needed.
  • the target data center virtual machine management software such as VMware
  • the virtual machine migration message includes: the identifier of the virtual machine to be migrated, the policy information corresponding to the identifier, the identifier of the target server, the identifier of the data channel between the source data center and the target data center for migrating the virtual machine, and the like. If the source service control gateway stores the policy information corresponding to the virtual machine to be migrated, the policy information is used as the policy information corresponding to the virtual machine to be migrated in the virtual machine migration message. Otherwise, The source service control gateway queries the policy on the source switch corresponding to the virtual machine to be migrated.
  • the ID of the virtual machine to be migrated for example, the IP address of the virtual machine.
  • the migration target server is the server in the target data center server cluster that will receive the virtual machine to be migrated.
  • the security policy and/or quality of service (QoS) policy of the VM to be migrated is the policy configured on the switch corresponding to the VM to be migrated in the source data center.
  • the data center administrator can specify the virtual The access policy of the machine allows the user to access the corresponding virtual machine under the policy rule.
  • the security policy for example, may be: firewall configuration information, an IP access control list, a list of ports that are allowed to access, etc., but the embodiment of the present invention is not limited thereto.
  • the QoS policy may be, for example, a classification policy for data packets (eg, based on UDP/TCP port classification, source IP address classification, etc.), a priority level for each type of data packet, and a queuing policy, etc., but The embodiments of the invention are not limited thereto.
  • Step S102 The target service control gateway configures the corresponding policy on the target switch according to the virtual machine migration message, and configures an internal data channel between the ingress router and the target switch of the target data center.
  • the target service control gateway that is, the target SCG
  • the target service control gateway is connected to the network devices in the target data center, such as routers and switches, through internal control channels, and can automatically configure the network devices, and can obtain the servers and switches of the target data center.
  • the connection relationship between the two according to the connection relationship, find the target switch corresponding to the target server, and configure the corresponding policy on the target switch.
  • the target SCG allocates a virtual local area network identifier (VLAN ID) corresponding to the virtual machine to be migrated, and enters the target router and the target switch in the target data center.
  • VLAN ID virtual local area network identifier
  • spanning tree protocol such as 802. laq
  • the target service control gateway calculates a Multi-Protocol Label Switching (MPLS Tunnel) between the ingress router and the target switch, and configures a virtual circuit for each node on the multi-protocol label switching channel. Labels and channel labels that establish internal data channels based on virtual circuit labels and channel labels.
  • the data packet of the virtual machine to be migrated that is accessed by the edge router of the target data center is correctly forwarded to the target switch through the MPLS tunnel; the data packet sent by the virtual machine to be migrated is also marked on the target switch.
  • the circuit label and the channel label are correctly forwarded to the edge switch of the target data center through the MPLS tunnel.
  • the virtual machine migration message further includes: address information of the user's network access device, and required for the user to access the virtual machine to be migrated. Bandwidth information.
  • the target service control gateway calculates a path between the ingress router of the target data center and the network access device of the user according to the address information and the bandwidth information of the network access device of the user; the target service control gateway initiates a signaling protocol to the ingress router, and the portal The control plane of the router sends signaling messages along the path such that each node on the path establishes an intersection on the transport plane to establish an external data channel.
  • Target SCG runs through control plane protocols, such as automatic switched optical networks (Automatically
  • ASON Switched Optical Network
  • GPLS Generalized Multi-Protocol Label Switching
  • IP IP
  • the IP network is a connectionless network, there is no need to drive the connection to establish a user to the data center.
  • an individual user accesses a data center through an IP network
  • an enterprise user accesses a data center through a connection-oriented transmission network due to a large amount of data
  • the present invention is not limited thereto, and the user can use any available connection. Access the data center to the data center.
  • Step S103 The target service control gateway sends a response message of successful configuration to the source service control gateway.
  • the source service control gateway (source Service Control Gateway, source SCG) ) Send a configuration success response message.
  • Step S104 The target service control gateway selects a virtual machine migration channel according to the identification information of the data channel between the source data center and the target data center, and sends the virtual machine to be migrated through the virtual machine migration channel, and installs on the target server. And providing service services for users accessing the virtual machine to be migrated based on the internal data channel.
  • the target SCG installs a corresponding policy of the corresponding virtual machine to be migrated on the switch corresponding to the target server, and configures an internal data channel between the ingress router and the target switch of the target data center. Packets accessing the virtual machine to be migrated can be correctly forwarded between the target switch and the ingress router of the target data center.
  • the IP network When the user accesses the data center by using the IP network, the IP network is a wireless network, so the virtual machine can be accessed correctly; when the user accesses the data center by using the connection-oriented transmission network, the target SCG runs the control plane protocol, The routing protocol is used to obtain the resources of the transport network between the source data center and the target data center, and the external data channel between the target data center and the user's network access device is configured, so that the user can access the virtual machine correctly.
  • FIG. 2 is a schematic flowchart of Embodiment 2 of a method for virtual machine migration in a data center according to the present invention. As shown in Figure 2, the virtual machine migration method across the data center includes the following steps:
  • Step S201 The source service control gateway of the source data center sends a virtual machine migration message to the target service control gateway of the target data center, so that the target data center performs migration configuration.
  • the virtual machine migration message includes: an identifier of the virtual machine to be migrated, and a policy corresponding to the identifier
  • the source service control gateway of the source data center receives the virtual machine migration command from the network management or the migration command of the decision result of a global decision maker. For example, after receiving the global equalization algorithm, the source data center receives the global equalization algorithm. After the migration command of the virtual machine to be migrated is determined, the virtual machine migration message is sent to the target SCG of the target data center, so that the target data center configures the switch connected to the target server, and the ingress router and the target switch of the target data center are configured.
  • the internal data channel is configured between.
  • the virtual machine migration message includes: address information of the user's network access device, and bandwidth information required for the user to access the virtual machine to be migrated.
  • the target service control gateway calculates a path between the ingress router of the target data center and the network access device of the user according to the address information and the bandwidth information of the network access device of the user; the target service control gateway initiates a signaling protocol to the ingress router, and the portal
  • the control plane of the router sends a signaling message along the path, so that each node on the path establishes an intersection on the transmission plane, thereby establishing an external data channel between the target data center and the user's network access device.
  • the source service control gateway can sense the internal topology information of the source data center through the control channel inside the source data center, and can configure the devices inside the source data center. Meanwhile, the source service control gateway is also connected with the external data channel of the source data center.
  • the control plane communicates to establish a data channel connection.
  • the source service control gateway can also communicate with the source data center virtual machine management software (such as VMware) to perform the virtual machine migration process as needed.
  • VMware virtual machine management software
  • Step S202 After receiving the configuration success response message sent by the target service control gateway, send the virtual machine to be migrated to the target data center.
  • the source SCG After receiving the configuration success response message sent by the target SCG, the source SCG sends a command to the virtual machine management software (such as VMware) to perform virtual machine migration through the data channel.
  • the virtual machine management software such as VMware
  • the user for example, an enterprise user accessing the transport network through a Customer Edge (CE) accesses the data center through the connection-oriented transport network, after sending the virtual machine to be migrated to the target data center,
  • CE Customer Edge
  • the source service control gateway sends signaling to the ingress router of the source data center through the control plane signaling protocol, and deletes the external data channel between the user's network access device and the edge router of the source data center.
  • the source SCG of the source data center automatically determines whether the source data center and the target data center have available data channels that satisfy the bandwidth to meet the virtual machine migration before sending the virtual machine migration message after receiving the virtual machine migration command. If yes, the data channel is selected as the virtual machine migration channel, and the identifier of the data channel between the source data center and the target data center for migrating the virtual machine is sent to the target SCG in the virtual machine migration message;
  • the source SCG drives the control plane to establish a new data channel between the source data center and the target data center, and uses the new data channel as a virtual machine migration channel, and uses the source for migrating the virtual machine in the virtual machine migration message.
  • the identity of the data channel between the data center and the target data center is sent to the target SCG.
  • the virtual machine migration message is sent through the original data channel or the newly established data channel, and after receiving the response message of the successful configuration of the target SCG, the virtual machine migration is performed through the channel.
  • the entire migration process is done automatically, reducing human resources and making it less prone to errors.
  • FIG. 3A is a schematic structural diagram of a target control gateway according to Embodiment 1 of the present invention.
  • the target service control gateway of this embodiment includes a first function module 1, a second function module 2, and a third function module 3.
  • the first function module 1 is configured to receive a virtual machine migration message sent by a source service control gateway of the source data center, where the virtual machine migration message includes an identifier of the virtual machine to be migrated, policy information corresponding to the identifier, and identifier of the target server. The identity of the data channel between the source data center and the target data center of the migration virtual machine. The first function module 1 is further configured to automatically determine whether the source data center and the target data center are available and satisfy the bandwidth before the source SCG of the source data center sends the virtual machine migration message after receiving the virtual machine migration command.
  • the data channel of the virtual machine migration if any, select the data channel as the virtual machine migration channel, and identify the data channel between the source data center and the target data center used to migrate the virtual machine in the virtual machine migration message. Sent to the target SCG; if not, the first functional module 1 of the source SCG drives the control plane to establish a new data channel between the source data center and the target data center, which will be new The data channel is used as a virtual machine migration channel, and the identifier of the data channel between the source data center and the target data center for migrating the virtual machine is sent to the target SCG in the virtual machine migration message.
  • the second function module 2 is configured to configure policy information on the target switch to which the target server is connected according to the identifier of the target server, and configure an internal data channel between the ingress router and the target switch of the target data center in the target data center.
  • the second function module 2 is further configured to send a configuration success response message to the source data center.
  • the second function module 2 is connected to the network device in the target data center, such as a router or a switch, through an internal control channel, and the corresponding policy is configured on the target switch according to the policy corresponding to the virtual machine to be migrated in the virtual machine migration message. ; and configure the internal data channel between the edge router of the target data center and the target switch.
  • the received virtual machine migration message of the first function module further includes: address information of the user's network access device and bandwidth required for the user to access the virtual machine to be migrated.
  • the second functional module 2 of the target SCG also runs a control plane protocol, such as ASON/GMPLS, which is connected to the control plane of the transport network between the data centers, so that the resource of the transport network can be obtained through the routing protocol, through signaling
  • the protocol drives the transport network to perform automatic establishment/modification/deletion operations, and completes the external data channel configuration between the ingress route of the target data center and the target router.
  • the third function module 3 is configured to install the virtual machine to be migrated sent by the source data center on the target server, and provide service services for the user based on the internal data channel and the external data channel.
  • the second function module 2 installs a corresponding policy of the virtual machine to be migrated on the switch corresponding to the target server according to the virtual machine migration message received by the first module 1, and configures the target.
  • the internal data channel between the ingress router and the target switch from the data center enables the packets accessing the virtual machine to be migrated to be correctly forwarded between the target switch and the ingress router of the target data center.
  • the external data channel between the target data center and the user's network access device is configured, and the virtual data machine to be migrated is accessed based on the internal data channel and the external data channel. Packets can be correctly forwarded between the target switch and the ingress router of the target data center, between the target data center and the user, enabling automatic migration of virtual machines across the data center.
  • FIG. 3B is a schematic structural diagram of a second functional module of the target service control gateway of FIG. 3A according to the present invention.
  • the second function module 2 includes a first unit 21, Second unit 22.
  • the first unit 21 is configured to configure the policy information on the target switch to which the target server is connected according to the identifier of the target server.
  • the second unit 22 is configured to configure the ingress router and the target of the target data center in the target data center. Internal data channel between switches.
  • the first unit 21 configures a policy corresponding to the virtual machine to be migrated on the target switch to which the target server is connected, so that the user can access the corresponding switch according to the policy.
  • the second unit 22 includes a first subunit and a second subunit.
  • the first sub-unit if the target data center uses Ethernet technology internally, the first sub-unit in the target SCG is the virtual local area network identifier VLAN ID assigned to the virtual machine to be migrated, and the destination data center ingress router and the target switch Configure the VLAN ID and establish an internal data channel based on the VLAN ID. Since the spanning tree protocol (such as 802.1aq) is run inside the target data center, after a new VLAN ID is added and the spanning tree protocol is executed, the newly assigned VLAN ID identifier data is configured on the edge router of the target data center.
  • the spanning tree protocol such as 802.1aq
  • the packet will be forwarded correctly to the target switch; the packet with the newly assigned VLAN ID configured on the target switch will also be correctly forwarded to the edge router of the target data center; the second subunit, if the target The virtual private LAN segment is used in the data center, and the second sub-unit of the target service control gateway calculates a Multi-Protocol Label Switching (MPLS Tunnel) between the ingress router and the target switch, and Each node on the protocol label switching channel is configured with a virtual circuit label and a channel label, and an internal data channel is established according to the virtual circuit label and the channel label.
  • MPLS Tunnel Multi-Protocol Label Switching
  • the data packet of the virtual machine to be migrated that is accessed by the edge router of the target data center is correctly forwarded to the target switch through the MPLS tunnel; the data packet sent by the virtual machine to be migrated is also marked with a virtual circuit on the target switch.
  • the label and channel label are correctly forwarded to the edge switch of the target data center through the MPLS tunnel.
  • the target service gateway in the above embodiment further includes a third unit 23, where the third unit 23 is configured to calculate a target according to the address information and bandwidth information of the network access device of the user.
  • a path between the ingress router of the data center and the network access device of the user and initiates a signaling protocol to the ingress router; the control plane of the ingress router sends a signaling message along the path, so that each node on the path establishes a crossover on the transport plane , thereby establishing an external data channel.
  • the bandwidth information of the user accessing the virtual machine to be migrated is carried in the virtual machine migration message.
  • 4 is a schematic structural diagram of a source service control gateway according to Embodiment 2 of the present invention.
  • the source service control gateway includes a fourth function module 4 and a fifth function module 5.
  • the fourth function module 4 is configured to send a virtual machine migration message to the target data center of the target data center for the target data center to perform the migration configuration.
  • the virtual machine migration message includes the identifier of the virtual machine to be migrated, and the policy corresponding to the identifier.
  • the information, the identifier of the target server, and the policy information corresponding to the machine of the network access device of the user the fourth function module 4 uses the policy information as the policy information corresponding to the virtual machine to be migrated in the virtual machine migration message, otherwise,
  • the fourth function module 4 queries the policy corresponding to the virtual machine to be migrated on the source switch.
  • the fifth function module 5 is configured to send the virtual machine to be migrated to the target data center after receiving the configuration success response message sent by the target service control gateway.
  • this embodiment is an example of the source service control gateway of the source data center.
  • the fourth function module 4 controls the fourth function module 4 of the source data center to the target SCG.
  • the virtual machine migration command is sent, and the corresponding policy is configured on the target switch and the internal data channel is configured on the target SCG.
  • the configuration success response message sent by the SCG is received, and the virtual machine to be migrated is sent to the target data center.
  • the sixth function module may be further configured to determine whether there is a data channel available between the source data center and the target data center and the bandwidth meets the virtual machine migration. If yes, the data channel is selected; if not, the drive control plane establishes a new data channel between the source data center and the target data center.
  • the source SCG After receiving the virtual machine migration command, the source SCG determines whether there is a data channel available between the source data center and the target data center to satisfy the virtual machine migration before sending the virtual machine migration message to the target data center. If yes, select The channel; otherwise, the sixth functional module of the source service control gateway runs a control plane protocol (such as ASON/GMPLS protocol), connects with the control plane of the source data center and the transmission network of the target data center, establishes a data channel, and passes the channel. Send the virtual machine to be migrated.
  • a control plane protocol such as ASON/GMPLS protocol
  • FIG. 5 is a schematic structural diagram of a virtual machine migration system across data centers according to the present invention.
  • each server is connected to each other through routers P1, P2, and P3, and one virtual machine VI, V2, and V3 is operated on one of the physical servers A;
  • Pass The user edge device Customer Edge
  • the source physical server A is connected to the source switch A, and the switch A can sense each virtual machine on the physical server A, and can create different virtual machines for different virtual machines.
  • different security policies and/or QoS policies are configured on the switch A, so that the user can access the virtual machine according to the security policy and/or the QoS policy.
  • the source switch A is connected to the edge router PE1 through a Layer 2 network inside the source data center A (for example, using Ethernet switching technology, or using VPLS technology, etc.), and the PE1 is further connected to an IP-based internet or wide area network outside the data center. , or a transport network 1 based on Layer 1 or Layer 2 switching.
  • Users access the virtual machines in data center A through CE access to IP-based internet or WAN, or transport networks based on Layer 1 or Layer 2 switching, such as access to V2 and V3.
  • Physical Server A is also connected to Transport Network 2 via PE3, so that virtual machine migration can be achieved through the transport pipeline.
  • PE3 Transport Network 2
  • Data Center B has a similar architecture.
  • the virtual machines V2 and V3 of the data center A need to be migrated to the data center B.
  • the specific process is as follows:
  • SCG A When SCG A receives the command, it needs to migrate the virtual machines V2 and V3 to the physical server of data center B. ⁇ This command can come from the network management or the decision result of a global decision maker. For example, the global equalization controller is executing globally. After the equalization algorithm, the decision needs to migrate the virtual machine and send a migration command to SCG A.
  • SCG A determines whether there is currently available between data center A and data center B, and the bandwidth is sufficient to connect (ie, the data channel) for virtual machine migration. If so, the connection is selected; if not, SCG A is calculated. Connect one PE3-PE4, and drive the control plane to establish the connection, and then record the information of the connection (such as the path through the node, bandwidth information, etc.).
  • SCG A queries switch A for the security policy and/or QoS policy information (policy 2 and policy 3) corresponding to virtual machines V2 and V3, and sends a virtual machine migration message to SCG B, which contains the virtual to be migrated.
  • the identifier of the machine such as the IP address of the virtual machine can be used as the identifier
  • the target server of the migration physical server B of data center B
  • user information such as user access network) CE, PE5 address
  • Service information such as the bandwidth information required by the service, which is required only when the user uses the connection-oriented transport network 1 between the data centers
  • SCG B configures the devices in data center B according to the command, including:
  • SCG B and the network devices in the data center B can extend the existing OpenFlow protocol, and can also use other proprietary protocols for network device configuration.
  • SCG B assigns a new VLAN ID to virtual machines V2 and V3, and configures the VLAN ID on ingress routers PE2 and B. Since the spanning tree protocol (such as the 802.1 aq protocol) is running inside the data center B, after a new VLAN ID is added and the spanning tree protocol is executed, the newly assigned VLAN ID packet is sent to the PE2. Forwarded correctly to Switch B; packets with the newly assigned VLAN ID on Switch B are also forwarded correctly to PE2.
  • the spanning tree protocol such as the 802.1 aq protocol
  • the SCG B calculates an MPLS tunnel (such as PE2-P6-switch B) between PE2 and Switch B, and configures PE2, P6, and Switch B separately.
  • an MPLS tunnel such as PE2-P6-switch B
  • Configuring an MPLS tunnel and assigning a VC (Virtual Circuit) label to enable PE2 to tag the V2 and V3 packets with the VC label and the MPLS tunnel label, and forward it to Switch B in the MPLS tunnel.
  • VC Virtual Circuit
  • the SCG B also needs to establish a connection between the user and the data center B through the control plane driver. Specifically:
  • the SCG B runs the control plane protocol and is connected to the control plane of the transport network 1, the information of the transport network 1 can be obtained through the routing protocol. Therefore, the SCG B determines the path between the PE5 and the PE2 by determining the address of the ingress node PE5, the bandwidth information required by the service, and the like according to the virtual machine migration message sent by the SCG A. Then, SCG B initiates a signaling protocol to PE2. The control plane of PE2 sends a signaling message along the calculated path, so that each node passing through the path establishes a crossover in the transmission plane, thereby establishing a connection between PE2 and PE5.
  • IP network is a connectionless network, there is no need to drive to establish a connection between the user and the data center.
  • SCG B After completing the above configuration, SCG B returns a configuration success response message to SCG A.
  • the SCG A After the SCG A receives the success response message, it sends a command to the virtual machine management software (such as VMware) to start the migration of the virtual machine V2 and V3 by using the connection selected or established in step 2.
  • the virtual machine management software such as VMware
  • the user can access the virtual machines V2 and V3 through data center B.
  • the SCG A can also use the control plane signaling protocol to initiate signaling to the PE1 to remove the path between PE1 and PE5.
  • the virtual machine migration method, the service control gateway, and the system provided by the embodiments of the present invention implement the automatic migration process of the virtual machine across the data center during the virtual machine migration process in the data center virtual machine, and the user automatically installs the policy on the target switch.
  • the network in the target data center is automatically configured, and the network between the ingress router and the target switch of the target data center is automatically configured, and no manual participation is required.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

L'invention concerne un procédé de migration, une passerelle de contrôle de desserte et un système pour une machine virtuelle à travers des centres de données. Dans le procédé de migration : une passerelle de contrôle de desserte cible d'un centre de données cible reçoit un message de migration de machine virtuelle envoyé par une passerelle de contrôle de desserte source d'un centre de données source ; la passerelle de contrôle de desserte cible configure une politique correspondante sur un commutateur cible, un passage de données interne entre un routeur d'entrée du centre de données cible et le commutateur cible et un passage de données externe entre le centre de données cible et un utilisateur ; elle envoie à la passerelle de contrôle de desserte source un message de réponse de succès de configuration ; et elle installe sur un serveur cible une machine virtuelle à migrer, et procure un service correspondant à l'utilisateur. Dans chaque mode de réalisation de la présente invention, une politique sur un commutateur cible peut être installée automatiquement, un passage de données externe entre un utilisateur et un centre de données cible peut être configuré automatiquement, et un passage de données interne entre un routeur d'entrée du centre de données cible et le commutateur cible peut être configuré automatiquement, pour réaliser la migration automatique d'une machine virtuelle à travers un centre de données.
PCT/CN2012/077983 2012-06-30 2012-06-30 Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données WO2014000292A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201280000865.7A CN102884763B (zh) 2012-06-30 2012-06-30 跨数据中心的虚拟机迁移方法、服务控制网关及系统
PCT/CN2012/077983 WO2014000292A1 (fr) 2012-06-30 2012-06-30 Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2012/077983 WO2014000292A1 (fr) 2012-06-30 2012-06-30 Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données

Publications (1)

Publication Number Publication Date
WO2014000292A1 true WO2014000292A1 (fr) 2014-01-03

Family

ID=47484675

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/077983 WO2014000292A1 (fr) 2012-06-30 2012-06-30 Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données

Country Status (2)

Country Link
CN (1) CN102884763B (fr)
WO (1) WO2014000292A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114143209A (zh) * 2021-11-08 2022-03-04 浙江大学 一种网络测量中控制通道弹性扩展系统和方法
CN115208813A (zh) * 2022-09-14 2022-10-18 腾讯科技(深圳)有限公司 一种边界网关协议的迁移方法、装置、设备及存储介质

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103346900B (zh) * 2013-05-31 2016-12-28 华为技术有限公司 大二层网络中虚拟机热迁移后的路由配置方法和网关
CN103516554B (zh) * 2013-10-22 2017-01-18 杭州华三通信技术有限公司 一种vm迁移的方法和设备
CN103647849B (zh) * 2013-12-24 2017-02-08 华为技术有限公司 一种业务迁移方法、装置和一种容灾系统
EP3092741B1 (fr) * 2014-01-09 2020-04-15 Nokia Solutions and Networks Oy Attribution de machines virtuelles dans une passerelle couplée à un commutateur défini par logiciel
CN104951352B (zh) * 2014-03-31 2018-05-11 华为技术有限公司 一种数据流的迁移方法和设备
EP3142306B1 (fr) * 2014-06-03 2019-01-09 Huawei Technologies Co., Ltd. Procédé de communication openflow, système, contrôleur et passerelle de service
CN105227454B (zh) * 2014-06-18 2019-02-26 中兴通讯股份有限公司 虚拟路由系统及方法
BR112017005475A2 (pt) * 2014-10-26 2017-12-05 Microsoft Technology Licensing Llc mobilidade de sobreposição virtual utilizando encaminhamento de sub-rede baseado em rótulo
EP3447968A1 (fr) 2014-11-17 2019-02-27 Huawei Technologies Co., Ltd. Procédé permettant de faire migrer un service de centre de données, appareil et système
CN105704045B (zh) 2014-11-26 2019-05-28 华为技术有限公司 数据中心网关间虚拟机位置信息同步的方法、网关及系统
CN104601340B (zh) * 2014-12-02 2018-10-09 腾讯科技(深圳)有限公司 一种跨idc的数据传输方法、设备及系统
CN104518993A (zh) * 2014-12-29 2015-04-15 华为技术有限公司 云化网络通信路径的分配方法、装置及系统
CN104836849B (zh) * 2015-04-16 2018-02-09 新华三技术有限公司 一种注册虚拟机方法和装置
CN106936681A (zh) * 2015-12-29 2017-07-07 中国移动通信集团公司 一种数据处理方法和装置
WO2017214856A1 (fr) * 2016-06-14 2017-12-21 Intellectual Ventures Hong Kong Limited Atténuation d'attaques par canal caché inter-vm
CN107819811B (zh) * 2016-09-14 2021-05-18 阿里巴巴集团控股有限公司 数据通信方法、装置及设备
CN108023861B (zh) * 2016-11-03 2020-09-11 沈阳高精数控智能技术股份有限公司 一种用于开放式数控系统的工业非军事区部署及访问方法
CN106790713B (zh) * 2017-03-08 2019-09-20 中国人民解放军国防科学技术大学 云计算环境下的跨数据中心虚拟机迁移方法
CN109168328B (zh) 2017-05-05 2020-10-23 华为技术有限公司 虚拟机迁移的方法、装置和虚拟化系统
CN107294865B (zh) * 2017-07-31 2019-12-06 华中科技大学 一种软件交换机的负载均衡方法及软件交换机
CN112791413B (zh) * 2021-02-04 2024-02-23 网易(杭州)网络有限公司 游戏道具数据处理方法、装置、处理器及电子装置
CN114281246B (zh) * 2021-11-26 2023-08-25 苏州浪潮智能科技有限公司 一种基于云管理平台的云硬盘在线迁移方法、装置、设备
CN114679461B (zh) * 2022-03-30 2023-02-14 浙江大学 面向虚拟机热迁移场景的云网络会话连通性保障方法及系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060069761A1 (en) * 2004-09-14 2006-03-30 Dell Products L.P. System and method for load balancing virtual machines in a computer network
CN102118458A (zh) * 2011-03-10 2011-07-06 浪潮(北京)电子信息产业有限公司 一种虚拟机热迁移的方法及系统
CN102185774A (zh) * 2011-05-10 2011-09-14 中兴通讯股份有限公司 虚拟机无缝迁移的方法、管理器及系统
CN102314377A (zh) * 2010-06-30 2012-01-11 国际商业机器公司 加速器及其实现支持虚拟机迁移的方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060069761A1 (en) * 2004-09-14 2006-03-30 Dell Products L.P. System and method for load balancing virtual machines in a computer network
CN102314377A (zh) * 2010-06-30 2012-01-11 国际商业机器公司 加速器及其实现支持虚拟机迁移的方法
CN102118458A (zh) * 2011-03-10 2011-07-06 浪潮(北京)电子信息产业有限公司 一种虚拟机热迁移的方法及系统
CN102185774A (zh) * 2011-05-10 2011-09-14 中兴通讯股份有限公司 虚拟机无缝迁移的方法、管理器及系统

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114143209A (zh) * 2021-11-08 2022-03-04 浙江大学 一种网络测量中控制通道弹性扩展系统和方法
CN114143209B (zh) * 2021-11-08 2022-10-21 浙江大学 一种网络测量中控制通道弹性扩展系统和方法
CN115208813A (zh) * 2022-09-14 2022-10-18 腾讯科技(深圳)有限公司 一种边界网关协议的迁移方法、装置、设备及存储介质
CN115208813B (zh) * 2022-09-14 2022-11-25 腾讯科技(深圳)有限公司 一种边界网关协议的迁移方法、装置、设备及存储介质

Also Published As

Publication number Publication date
CN102884763A (zh) 2013-01-16
CN102884763B (zh) 2015-05-13

Similar Documents

Publication Publication Date Title
WO2014000292A1 (fr) Procédé de migration, passerelle de contrôle de desserte et système pour machine virtuelle à travers des centres de données
Wang et al. A survey on data center networking for cloud computing
US10742607B2 (en) Application-aware firewall policy enforcement by data center controller
CN112235122B (zh) 用于网络设备的软件图像的自动选择
JP5976942B2 (ja) ポリシーベースのデータセンタネットワーク自動化を提供するシステムおよび方法
US10083026B1 (en) In-service software upgrade of software-defined networking controller
US7941539B2 (en) Method and system for creating a virtual router in a blade chassis to maintain connectivity
CN109362085B (zh) 通过openflow数据平面在云计算机中实现epc
US9800433B2 (en) Method and apparatus for providing a point-to-point connection over a network
Dai et al. Enabling network innovation in data center networks with software defined networking: A survey
US8386825B2 (en) Method and system for power management in a virtual machine environment without disrupting network connectivity
JP5608794B2 (ja) 複数の仮想マシンを管理するための階層システム、方法、及びコンピュータプログラム
CN111865643A (zh) 数据中心中的初始化网络设备和服务器配置
US10630508B2 (en) Dynamic customer VLAN identifiers in a telecommunications network
US20090150529A1 (en) Method and system for enforcing resource constraints for virtual machines across migration
US8095661B2 (en) Method and system for scaling applications on a blade chassis
CN112398676A (zh) 多租户环境中服务接入端点的基于供应商无关简档的建模
US20160006642A1 (en) Network-wide service controller
US20200344119A1 (en) Initializing server configurations in a data center
CN111638957A (zh) 一种集群共享式公有云负载均衡的实现方法
CN109587286A (zh) 一种设备接入控制方法及装置
US11303701B2 (en) Handling failure at logical routers
US20200344158A1 (en) Virtual port group
CN112671811B (zh) 一种网络接入方法和设备
US8817638B2 (en) Method and system for network communications utilizing shared scalable resources

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 201280000865.7

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12879610

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12879610

Country of ref document: EP

Kind code of ref document: A1