WO2018086014A1 - 云计算系统中报文处理的方法、主机和系统 - Google Patents
云计算系统中报文处理的方法、主机和系统 Download PDFInfo
- Publication number
- WO2018086014A1 WO2018086014A1 PCT/CN2016/105228 CN2016105228W WO2018086014A1 WO 2018086014 A1 WO2018086014 A1 WO 2018086014A1 CN 2016105228 W CN2016105228 W CN 2016105228W WO 2018086014 A1 WO2018086014 A1 WO 2018086014A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- virtual
- data packet
- virtual machine
- mac address
- network
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/42—Centralised routing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/58—Association of routers
- H04L45/586—Association of routers of virtual routers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
- H04L45/745—Address table lookup; Address filtering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
- H04L61/103—Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/50—Address allocation
- H04L61/5007—Internet protocol [IP] addresses
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45595—Network integration; Enabling network access in virtual machine instances
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/618—Details of network addresses
- H04L2101/622—Layer-2 addresses, e.g. medium access control [MAC] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/70—Virtual switches
Definitions
- the present invention relates to the field of IT technologies, and in particular, to a message processing method, a host, and a system in a cloud computing system.
- Virtualization technology is one of the key technologies in the field of cloud computing. It can abstract the physical resources of a host into a shared resource pool for use by several virtual machines (VMs) running on the host. Several virtual machines running on the host can share the host's network card and communicate with the host's external network.
- the network card can be allocated to the virtual machine by means of network card virtualization, and the network card virtualization can adopt Single-Root I/O Virtualization (SR-IOV) or multiple inputs. Multi-root Input/Output Virtualization (MR-IOV).
- SR-IOV Single-Root I/O Virtualization
- MR-IOV Multi-root Input/Output Virtualization
- the above-mentioned network card virtualization is also called NIC pass-through. Take SR-IOV straight through as an example. When the network card supports SR-IOV, the SR-IOV technology can be used to share the host network card to several virtual machines running on the host.
- the network port of the network card virtualizes at least one physical function (PF) and multiple virtual functions (VF), and the virtual machine on the host is connected to at least A VF.
- the NIC internally contains a switching device with switch function.
- the switching device forwards the data packet according to the Media Access Control (MAC) table, and is responsible for packet forwarding between the PF, the VF, and the physical network port.
- MAC Media Access Control
- Rich network functions such as security group, quality of service (QoS), Layer 2 tunnel encapsulation, and distributed routing.
- This document describes a method, host, and system for packet processing in a cloud computing system to solve the problem that a network function cannot be provided in a network card through scenario.
- an embodiment of the present invention provides a host, where at least one network card is connected to the host, A virtual machine monitor VMM is running on the host, and a first virtual machine is running on the VMM.
- the VMM includes a virtual bridge and a virtual network function module, and the virtual network function module can provide network function processing capability.
- the network card includes a switching device and at least two network ports, wherein the first network port supports the network card virtualization capability, and the first network port corresponds to at least one physical function PF and multiple virtual functions VF, the first network At least one VF of the port is directly passed to the first virtual machine,
- the first virtual machine sends the data packet from the VF connected to itself, and the destination MAC address of the data packet is the MAC address of the virtual bridge uplink port, and the switching device of the first network port according to the purpose of the data packet
- the MAC address forwards the data packet, sends the data packet to the virtual bridge on the VMM, and transmits the data packet to the virtual network function module through the virtual network bridge, and the virtual network function module provides rich network functions for the data packet.
- the data packet can be guided from the network card to the virtual network function module in the VMM by using the above method, and the software module is used to provide rich network functions for the user.
- a plurality of virtual machines may be run on the host, and each virtual machine is connected to at least one VF of the first network port, and multiple VFs of the first network port have different Virtual LAN VLAN ID.
- the broadcast packets with the VLAN ID are transmitted only on the virtual LAN corresponding to the VLAN ID and are not sent to other VFs with different VLAN IDs.
- the first virtual machine obtains the destination MAC address of the data packet to be sent through the APR process. specific:
- the first virtual machine sends an ARP request packet by using the VF connected to the first virtual machine, where the ARP request packet carries the VLAN identifier of the VF that sends the ARP request packet.
- the switching device of the first network port broadcasts the ARP request packet, and after the virtual bridge in the VMM receives the ARP request packet broadcast by the switching device, the SDN packet is sent to the SDN.
- the controller forwards the ARP request packet.
- the SDN controller records the network topology information of the cloud computing system.
- the SDN controller constructs a flow entry, and returns the flow entry to the virtual bridge, where the flow entry includes
- the ARP pickup setting is used to indicate that the virtual bridge constructs an ARP response packet, and the ARP response packet carries the MAC of the virtual bridge uplink port.
- the address is used as the destination MAC address of the data packet to be sent;
- the virtual bridge returns an ARP response packet to the first virtual machine according to the flow entry, and the ARP response packet carries the MAC address of the virtual bridge uplink port as the data packet to be sent. Destination MAC address.
- the embodiment of the present invention defines a new ARP process, and sets the destination MAC address of the data packet to be sent to the MAC address of the virtual bridge uplink port, so that the data packet sent by the first virtual machine is forwarded to the second layer to Virtual bridge, which achieves the effect of redirecting packets from the NIC back to the VMM.
- the flow entry further includes a MAC address setting, where the MAC address is configured to indicate that the virtual bridge receives the data packet sent by the first virtual machine to the second virtual machine.
- the destination MAC address of the data packet is modified to the MAC address of the second virtual machine. Because the destination MAC address of the data packet sent by the first virtual machine is the MAC address of the virtual bridge uplink port, when the virtual bridge receives the data packet, the destination MAC address of the data packet needs to be replaced with the second virtual machine. MAC address, so that packets sent by the virtual bridge can be routed to the second virtual machine according to the real address of the second virtual machine.
- the virtual bridge uplink port is a PF of the first network port, and the virtual bridge is connected to the network card by using the PF; or, the virtual bridge is uplinked.
- the link port is a selected VF of the first network port, and the virtual bridge is connected to the network card by the selected VF, wherein the selected VF connected to the virtual bridge Is set to promiscuous mode.
- the connection between the virtual bridge and the network card through the PF or the VF means that the virtual bridge is logically connected to the network card, that is, the virtual bridge and the network card transmit data packets through the PF or the VF. .
- the source virtual machine (first virtual machine) and the destination virtual machine (second virtual machine) of the data packet are on the same host.
- the processed data packet is returned to the virtual bridge, and the virtual bridge receives the processed data packet according to the data packet.
- the destination MAC address sends the processed data packet to the second virtual machine through the switching device.
- the second virtual machine and the first virtual machine may also run on different hosts.
- the virtual network function module establishes another virtual network function mode on the host where the second virtual machine is located. a tunnel between the blocks, the processed data packet is sent to the second network port of the network card, and then the processed data packet is sent to the host where the second virtual machine is located through the tunnel. So that the another virtual network function module sends the processed data packet to the second virtual machine.
- the embodiment of the present invention further provides a method for processing a packet in a cloud computing system, where at least one host in the cloud computing system includes a virtual machine monitor VMM, and at least one network card running on the host
- the first virtual machine includes a virtual network bridge and a virtual network function module, where the network card includes a switching device and at least two network ports, wherein the first network port supports the network card virtualization capability, and the first network port Corresponding to the at least one PF and the plurality of VFs, the first virtual machine is connected to the at least one VF of the first network port, and the method includes:
- the first virtual machine sends the data packet to the second virtual machine by using the VF connected to the first virtual machine, where the destination IP address carried by the data packet is an IP address of the second virtual machine, and the destination MAC address carried The MAC address of the uplink port of the virtual bridge;
- the switching device receives the data packet, and sends the data packet to the virtual bridge through an uplink port of the virtual bridge according to a destination MAC address of the data packet;
- the processed data packet is sent, and the destination MAC address of the processed data packet is a MAC address of the second virtual machine.
- the multiple VFs of the first network port have different virtual local area network VLAN identifiers.
- the first virtual machine obtains a destination MAC address of the to-be-sent data packet from the SDN controller through an ARP process, where the destination MAC address is a MAC address of the virtual bridge uplink port.
- the manner of obtaining is the same as the description of the first aspect.
- an embodiment of the present invention provides a cloud computing system, where the cloud computing system includes On the one hand, the host and the SDN controller, the SDN controller is configured to receive an ARP request packet from the first virtual machine that is forwarded by the virtual bridge, and return a flow entry to the virtual bridge.
- the flow entry includes an ARP pickup setting and a MAC address setting, where the ARP pickup setting is used to instruct the virtual bridge to construct an ARP response packet for the ARP request, where the ARP response packet carries the The MAC address of the virtual bridge uplink port is used as the destination MAC address of the data packet to be sent.
- an embodiment of the present invention provides a host having a function of implementing a host defined in the first aspect.
- the functions may be implemented by hardware or by corresponding software implemented by hardware.
- the hardware or software includes one or more modules corresponding to the functions described above.
- the host includes a first processor, a first memory, and at least one network card, where the network card includes a second processor, a second memory, and at least two network ports, wherein the first network port supports the network card virtualization capability.
- the first network port is connected to at least one PF and the plurality of VFs, and the first virtual machine is connected to at least one VF of the first network port, where the first memory and the second memory are stored.
- the first processor is configured to execute instructions in the first memory to implement functions of the first virtual machine, the virtual bridge, and the virtual network function module in the first aspect;
- the second processor is configured to execute instructions in the second memory to implement the functionality of the switching device in the first aspect.
- the host and SDN controller are implemented by a general purpose or dedicated server including a processor, a memory, a system bus, and an input and output interface, the processor being configured to support the system The corresponding function of the host.
- the input and output interface is for communicating with other components in the cloud computing system, and the processor executes instructions stored in the memory.
- an embodiment of the present invention provides a computer storage medium for storing computer software instructions for use by the host, including a program designed to perform the above aspects.
- an embodiment of the present invention provides another computer storage medium for storing computer software instructions for use in a switching device in the network card, including a program designed to perform the above aspects.
- an embodiment of the present invention provides a computer program, when the physical server runs the meter In the computer program, the physical server performs the functions of the virtual machine, the virtual bridge, and the virtual network function module in the host.
- an embodiment of the present invention provides a computer program, when a processor or a programmable logic circuit in a network card runs the computer program, the network card performs the functions of the switching device in the foregoing aspect.
- FIG. 1A is a schematic diagram of a virtualization structure on a host according to an embodiment of the present invention.
- FIG. 1B is a schematic diagram of a virtualization structure on a host in a NIC passthrough scenario according to an embodiment of the present invention
- FIG. 2 is a schematic diagram of a virtualization architecture on another host provided by the implementation of the present invention.
- FIG. 3 is a schematic diagram of an ARP process according to an embodiment of the present invention.
- FIG. 4 is a schematic flowchart of a VM1 sending a data packet to a VM2 according to an embodiment of the present invention
- FIG. 5 is a schematic structural diagram of hardware of a computer device according to an embodiment of the present invention.
- FIG. 6 is a schematic structural diagram of a cloud computing system according to an embodiment of the present invention.
- the network architecture and the service scenario described in the embodiments of the present invention are used to more clearly illustrate the technical solutions of the embodiments of the present invention, and do not constitute a limitation of the technical solutions provided by the embodiments of the present invention.
- the technical solutions provided by the embodiments of the present invention are equally applicable to similar technical problems.
- FIG. 1A is a schematic diagram of a virtualization structure on a host according to an embodiment of the present invention.
- the host is a physical server
- the bottom layer of the physical server is the hardware layer
- the hardware layer mainly includes the central processing.
- Hardware resources such as CPU (Central Processing Unit), memory, hard disk, and network card.
- Server virtualization is a virtualized operating environment for multiple virtual machines (VMs) on a physical server with virtualization software such as VMWare ESX and Citrix XEN.
- the software layer that is installed on the server to implement the virtualized environment is called the Virtual Machine Monitor (VMM).
- the VMM running on top of the hardware layer assumes the scheduling, allocation, and management of hardware resources in the hardware layer. Multiple virtual machine VMs are run on the VMM.
- the VMM provides virtualized CPU, memory, storage, IO devices (such as network cards) and Ethernet switches for each virtual machine to ensure that multiple virtual machines run in isolation.
- the VMM creates a virtual network interface card (vNIC) for each virtual machine.
- the virtual switch VSwitch provides communication between virtual machines and between virtual machines and external networks.
- the virtual NIC of each virtual machine corresponds to a logical port of the VSwitch.
- the physical NIC of the host corresponds to the port that the VSwitch connects to the external physical switch.
- the virtual network function module in the VMM performs network function processing on the passed data. Since the virtual network function module is a software module, it can be updated as needed, and therefore, the virtual in the VMM
- the network function module can provide users with rich network functions.
- the physical port's network port support virtualization capability can be achieved by Single Root Input/Output Virtualization (SR-IOV) or Multiple Root Input/Output Virtualization (MR-IOV).
- SR-IOV Single Root Input/Output Virtualization
- MR-IOV Multiple Root Input/Output Virtualization
- the embodiment of the present invention is described by taking the SR-IOV technology as an example.
- SR-IOV technology is a hardware-based virtualization solution that efficiently shares PCIe (Peripheral Component Interconnect Express) devices between virtual machines, and because SR-IOV technology is implemented in hardware Therefore, it is possible to obtain efficient I/O performance.
- PCIe Peripheral Component Interconnect Express
- PCI-SIG Peripheral Component Interconnect Special Interest Group
- SR-IOV enabled PCIe Devices such as the network port of a physical NIC
- the physical network card supporting the SR-IOV includes a plurality of network ports, and the SR-IOV capability can be enabled/disabled for each network port.
- the network port with the SR-IOV capability enabled corresponds to at least one physical function. (Physical Function, PF) and multiple Virtual Functions (VF).
- each PF can have up to 64,000 VFs associated with it. After the VF is created, the VF can be directly assigned to the virtual machine on the host, so that multiple virtual machines can share the PCIe device through at least one VF connected to the VF.
- FIG. 1B is a schematic diagram of a virtualization structure on a host in a NIC passthrough scenario according to an embodiment of the present invention.
- the physical NIC supports a single IO virtualization, and one network port of the physical NIC corresponds to For at least one PF and multiple VFs, each VF can share physical resources (such as a network card port) of the physical network card.
- the switching device is a virtual ethernet bridge&classifier.
- the implementation of the network card through-through may be an SR-IOV or an MR-IOV, which is not limited in this embodiment of the present invention.
- FIG. 2 is a schematic diagram of a virtualization architecture on another host provided by the implementation of the present invention.
- the host includes a virtual machine monitor VMM and at least one physical network card, and the host runs at least one virtual machine.
- the at least one physical network card includes at least two network ports, a first network port and a second network port.
- the first network port supports the network card virtualization capability, and the second network port is connected to the physical switch outside the host.
- the first network port virtualizes at least one PF and at least two VFs (illustrated by taking two VFs in FIG. 2 as an example), and the first virtual machine and the second virtual machine are installed with a VF driver, a first virtual machine, and a second virtual machine.
- the virtual machine is connected to at least one VF, and the PF is connected to the virtual bridge on the VMM.
- the virtual bridge is connected to the virtual network function module on the VMM.
- the virtual network function module is connected to the physical switch outside the host through the second network port. even.
- the virtual bridge on the VMM can be an openvswitch bridge, and the PF of the first network port is used as an uplink port of the virtual bridge.
- a VF of the first network port can also be selected as the uplink port of the virtual bridge, that is, the first network port is connected to the virtual bridge on the VMM through the selected VF, and at this time, it needs to be on the VMM.
- the VF driver is loaded, and the VF connected to the virtual bridge is set to the promiscuous mode, and the VF set to the promiscuous mode is similar to the PF, and can receive the data packet whose destination address is not its own MAC address.
- the first network port and the second network port may be located on the same network card, or may be located on different network cards, which is not limited in this embodiment of the present invention.
- the network card virtualization specifically refers to network card hardware virtualization.
- the first virtual machine and the second virtual machine are respectively connected to at least one VF of the first network port, and each VF of the first network port is provided with a different virtual local area network (VLAN) identifier, because one VLAN is one In a broadcast domain, broadcast packets can only be sent to virtual machines in a VLAN. Therefore, each virtual machine is in a different broadcast domain by using different VLAN IDs set for each VF.
- the broadcast packets sent by the VM can only be received by the VM itself and the PF.
- VLAN IDs on different hosts can be the same.
- the first virtual machine sends a data packet to the second virtual machine, which is communication between two virtual machines inside the same host.
- the second virtual machine and the first virtual machine may also be located on different hosts, and the first virtual machine and the second virtual machine communicate with each other.
- the network card supporting the network card virtualization function can be virtualized into at least one PF and multiple VFs, and is not limited to two. VF, correspondingly, the number of VLAN sub-interfaces is not limited to two.
- the embodiment of the present invention takes VM1 (first virtual machine) to send a data packet to VM2 (second virtual machine) as an example.
- the processing flow of the data packet is described.
- the switching device in the network card needs to send the data packet from the VM1 to the virtual network function module on the VMM for processing.
- the first virtual machine determines that the destination medium access control MAC address of the data packet to be transmitted is the MAC address of the virtual bridge uplink port in the VMM.
- the first virtual machine sends the data packet to the second virtual machine by using the VF connected to the first virtual machine, where the destination IP address carried by the data packet is an IP address of the second virtual machine, and the destination MAC address carried is The MAC address of the virtual bridge uplink port.
- the switching device of the first network port receives the data packet sent by the first virtual machine through the VF, performs Layer 2 forwarding on the data packet according to the destination MAC address of the data packet, and passes the data packet through the uplink of the virtual bridge. The intersection is sent to the virtual bridge.
- the virtual bridge receives the data packet, modifies the destination MAC address of the data packet to the MAC address of the second virtual machine, and sends the modified data packet to the virtual network function module, by modifying the destination MAC address of the data packet.
- the address enables the subsequent transmission of the data to use the modified MAC address, thereby ensuring that the data packet can be sent to the second virtual machine.
- the virtual network function module After receiving the modified data packet, the virtual network function module performs network function processing on the modified data packet to provide a rich network function service for the user, and then processes according to the MAC address of the second virtual machine. The subsequent packet is sent to the second virtual machine.
- the virtual machine sends the data packet from the VF connected to the virtual machine, and is forwarded by the switching device of the first network port, and sends the data packet to the virtual bridge on the VMM, and the data is sent through the virtual bridge.
- the package is passed to the virtual network function module, which provides rich network functions for the data packet.
- the data packet can be sent to the virtual network function module in the VMM by using the above method, and the software module is used to provide the user with rich network functions.
- the packet is processed by the virtual network function.
- the embodiment of the present invention provides an address resolution protocol (ARP) process, so that the first virtual machine can obtain the MAC address of the virtual bridge uplink port before sending the data packet, thereby The destination MAC address of the packet is set to the MAC address of the virtual bridge uplink port.
- ARP address resolution protocol
- the Software Defined Network (SDN) controller picks up the ARP request initiated by the VM1, and carries the uplink port of the virtual bridge on the VMM in the ARP response. MAC address by passing the MAC address with the data
- the destination IP of the packet corresponds so that the packet sent by VM1 is directed to the PF or VF connected to the virtual bridge.
- the SDN controller can obtain the network topology of the cloud computing network, and the foregoing ARP process can be implemented.
- FIG. 3 it is a schematic diagram of an ARP process provided by an embodiment of the present invention.
- Step 301 The VM1 sends an ARP request packet, and carries the IP address of the VM2, and is used to obtain the MAC address of the VM2.
- the ARP request packet is sent from the VF connected to the VM1, and the switching device on the network card receives the ARP request packet.
- the ARP request packet carries the VLAN identifier of the VF that sends the ARP request packet.
- Step 302 The switching device broadcasts the ARP request packet, and the ARP request packet is sent to the virtual bridge through the PF because the VFs of each virtual machine connected to the host have different VLAN identifiers.
- the ARP request message is sent to the virtual bridge through the AF.
- Step 303 The virtual bridge forwards the ARP request packet to the SDN controller.
- the virtual bridge can send the ARP request packet to the SDN controller by using a packet-in message.
- Step 304 The SDN controller sets a flow entry for the virtual bridge, and sends the flow entry to the virtual bridge.
- the flow entry includes:
- ARP pickup setting indicates that when the virtual bridge receives the ARP packet request from the VM1 for obtaining the MAC address of the VM2, the ARP response packet is constructed and carried in the ARP response packet.
- the MAC address of the virtual bridge uplink port is the MAC address of the VM2, and the MAC address of the virtual bridge uplink port is the MAC address of the PF or VF connected to the virtual bridge;
- VLAN identification processing setting remove the VLAN identifier carried in the unicast packet for the unicast packet sent by the VM1;
- MAC address setting For the unicast message sent by VM1 to VM2, the destination MAC address of the unicast message is modified to the MAC address of the VM2, and the modified unicast message is sent to the virtual port through the port connected to the virtual network function module. Network function module.
- Step 305 The virtual bridge configures a flow entry, and returns an ARP response packet to the VM1 according to the ARP proxy setting.
- the ARP response packet carries the MAC address of the virtual bridge uplink interface, and the ARP response packet passes the uplink.
- the link port is sent to the switching device.
- Step 306 The switching device forwards the ARP response packet to VM1.
- Step 307 VM1 receives the ARP response packet, and sets the MAC address of VM2 to the MAC address of the virtual bridge uplink port.
- the embodiment of the present invention defines the foregoing ARP process, and does not need to implement Layer 2 forwarding control of VM traffic in the form of a self-learning MAC forwarding table.
- the destination MAC of the data packet sent by the VM1 is the MAC address of the virtual bridge uplink port, thereby ensuring that the data packet is sent to the virtual bridge through the uplink port, and then the virtual bridge will be used by the virtual bridge.
- the packet is forwarded to the virtual network function module for processing.
- FIG. 4 it is a schematic flowchart of a VM1 sending a data packet to a VM2 according to an embodiment of the present invention.
- VM1 on the host 1 sends a data packet to the VM2 on the host 2.
- the VMM of the host 1 includes a first virtual bridge and a first virtual network function module, and the network card of the host 1 includes at least two networks.
- the first switching device, the VMM of the host 2 includes a second virtual bridge and a second virtual network function module, and the network card of the host 2 includes at least two network ports and a second switching device.
- the structures of the host 1 and the host 2 and the functions of the components are as shown in FIG. 2, and details are not described herein again.
- the process of VM1 sending data packets to VM2 includes:
- Step 401 VM1 sends a data packet destined for VM2 through a VF connected to itself, the destination IP address of the data packet is the IP address of VM2, and the destination MAC address is the MAC address of the uplink port of the first virtual bridge on the host 1.
- the data packet carries a VLAN identifier of the VF;
- Step 402 The first switching device of the network card 1 receives the data packet, and sends the data packet to the first virtual bridge through the uplink port according to the destination MAC address of the data packet.
- Step 403 The first virtual bridge processes the data packet according to the preset flow entry, removes the VLAN identifier of the data packet, and modifies the destination MAC address of the data packet to the MAC address of the VM2.
- Step 404 The first virtual bridge sends the modified data packet to the first virtual network function module.
- Step 405 The first virtual network function module performs network function processing on the data packet, including Full group, QoS, Layer 2 tunnel encapsulation, distributed routing, etc.
- the first virtual network function module performs the network function processing, and may adopt various implementation manners in the prior art, which is not limited by the embodiment of the present invention.
- Step 406 The first virtual network function module sends the processed data packet to the physical switch outside the host 1 through the second network port, and the physical switch routes the data packet to the host 2 where the VM2 is located through the network;
- the data packet carries the IP address and the MAC address of the VM2, and the data packet can be routed to the host 2 where the VM2 is located by using the existing routing manner.
- the transmission process of the data packet in the network in the embodiment of the present invention is described.
- the host 1 where VM1 is located and the host 2 where VM2 is located can establish a tunnel.
- the endpoints of the tunnel are virtual network function modules of host 1 and host 2, respectively, so that VM1 is between the two hosts.
- VM2 establishes the tunnel required for data transmission.
- Step 407 The second virtual network function module of the host 2 where the VM2 is located performs network function processing on the received data packet, and sends the processed data packet to the second virtual network bridge.
- Step 408 The second virtual bridge performs Layer 2 forwarding according to the MAC address of the VM2, and sends the data packet to the VF connected to the VM2 through the switching device, so as to send the data packet to the second virtual machine.
- the data packet For a data packet sent from the outside of the host to the destination virtual machine on the host, the data packet is first transmitted to the virtual network function module through the second network port, and is processed by the virtual network function and then transmitted to the data packet through the first network port. virtual machine.
- the embodiment shown in FIG. 4 is a cross-host communication between virtual machines. It can be understood that the source virtual machine and the destination virtual machine of the data packet can be located on the same host, and the data packet transmission process is similar to the process of FIG.
- the virtual network function module of the host completes the network function processing after the source virtual machine and the destination virtual machine of the data packet are located on the same host, and then sends the processed data packet to the virtual bridge, which is determined by the virtual bridge according to the virtual bridge.
- the MAC address of the destination VM sends the processed packet to the destination VM.
- the mainframe and the SDN controller may be a general-purpose computer device.
- FIG. 5 it is a schematic diagram of a hardware structure of a computer device according to an embodiment of the present invention.
- Computer device 500 includes at least one processor 501, a communication bus 502, a memory 503, and at least one communication interface 504.
- Processor 501 can be a general purpose central processing unit (CPU), a microprocessor, an application-specific integrated circuit (ASIC), or one or more integrated circuits for controlling the execution of the program of the present invention.
- CPU central processing unit
- ASIC application-specific integrated circuit
- Communication bus 502 can include a path for communicating information between the components described above.
- the communication interface 504 uses devices such as any transceiver for communicating with other devices or communication networks, such as Ethernet, Radio Access Network (RAN), Wireless Local Area Networks (WLAN), and the like.
- RAN Radio Access Network
- WLAN Wireless Local Area Networks
- the memory 503 can be a read-only memory (ROM) or other type of static storage device that can store static information and instructions, a random access memory (RAM) or other type that can store information and instructions.
- the dynamic storage device can also be an Electrically Erasable Programmable Read-Only Memory (EEPROM), a Compact Disc Read-Only Memory (CD-ROM) or other optical disc storage, and a disc storage device. (including compact discs, laser discs, optical discs, digital versatile discs, Blu-ray discs, etc.), magnetic disk storage media or other magnetic storage devices, or can be used to carry or store desired program code in the form of instructions or data structures and can be Any other media accessed, but not limited to this.
- the memory can exist independently and be connected to the processor via a bus.
- the memory can also be integrated with the processor.
- the memory 503 is used to store application code for executing the solution of the present invention, and is controlled by the processor 501 for execution.
- the processor 501 is configured to execute application code stored in the memory 503.
- the processor 501 may include one or more CPUs, such as CPU0 and CPU1 in FIG.
- computer device 500 can include multiple processors, such as processor 501 and processor 508 in FIG. Each of these processors can be a single-CPU processor or a multi-core processor.
- processors herein may refer to one or more devices, circuits, and/or processing data (eg, computer program instructions) Processing core.
- computer device 500 may also include an output device 505 and an input device 506 as an embodiment.
- Output device 505 is in communication with processor 501 and can display information in a variety of ways.
- the output device 505 can be a liquid crystal display (LCD), a light emitting diode (LED) display device, a cathode ray tube (CRT) display device, or a projector. Wait.
- Input device 506 is in communication with processor 501 and can accept user input in a variety of ways.
- input device 506 can be a mouse, keyboard, touch screen device, or sensing device, and the like.
- the computer device 500 described above can be a general purpose computer device or a special purpose computer device.
- the computer device 500 can be a desktop computer, a portable computer, a network server, a personal digital assistant (PDA), a mobile phone, a tablet, a wireless terminal device, a communication device, an embedded device, or have FIG. A device of similar structure.
- Embodiments of the invention do not limit the type of computer device 500.
- the SDN controller and the host in FIG. 2 may be the device shown in FIG. 5, and the memory stores one or more software modules for implementing various functions of the host and the SDN controller.
- the host and the SDN controller can implement the packet processing method disclosed in the embodiment of the present invention by using the processor and the program code in the memory.
- the computer device shown in FIG. 5 merely gives possible hardware implementations of various parts of the cloud computing system, and may add or delete hardware components of the computer device according to different functions or changes of various parts of the system. In order to match the functions of the various parts of the system.
- the network card in the above embodiment includes a processor and a memory, and the processor in the network card executes instructions in the memory to implement the functions of the switching device.
- the embodiments of the present invention are not described again.
- FIG. 6 a schematic structural diagram of a cloud computing system according to an embodiment of the present invention, where the cloud computing system includes at least one host 601 and an SDN controller 602, the host At least one network card is included, and the structure of the host is as shown in FIG. 2.
- the host 601 includes a virtual machine monitor VMM, and at least one network card.
- the host 601 runs a first virtual machine
- the VMM includes a virtual bridge and a virtual network function module
- the network card includes a switching device and at least two a network port
- the first network port supports a single input and output virtualization
- the first network port corresponds to at least one PF and multiple VFs
- the first virtual machine is connected to at least the first network port a VF
- the SDN controller 602 is configured to receive an ARP request packet that is forwarded by the virtual bridge from the first virtual machine, and return a flow entry to the virtual bridge, where the flow entry includes an ARP proxy Setting and MAC address setting, the ARP proxy setting is used to instruct the virtual bridge to construct an ARP response packet for the first virtual machine, where the ARP response packet carries the virtual bridge uplink port
- the MAC address is used as the destination MAC address of the data packet to be sent;
- the first virtual machine is configured to send the data packet to the second virtual machine by using the VF connected to the first virtual machine, where the destination IP address carried by the data packet is an IP address of the second virtual machine, and is carried by The destination MAC address is the MAC address of the virtual bridge uplink port;
- the switching device is configured to receive the data packet, and send the data packet to the virtual bridge by using an uplink port of the virtual bridge according to a destination MAC address of the data packet;
- the virtual bridge is configured to receive the data packet, modify a destination MAC address of the data packet to a MAC address of the second virtual machine, and send the modified data packet to a virtual network function module;
- the virtual network function module is configured to send the processed data packet to the second virtual machine according to the MAC address of the second virtual machine after performing network function processing on the modified data packet.
- the multiple VFs of the first network port have different virtual local area network VLAN identifiers.
- the first virtual machine is further configured to send the ARP request packet by using the VF that is connected to the first virtual machine, where the ARP request packet carries a VLAN identifier of the VF that sends an ARP request packet.
- the switching device is further configured to broadcast the ARP request packet, where the ARP request packet is sent to the virtual bridge by using the uplink port;
- the virtual bridge is further configured to forward the ARP request packet to the SDN controller, receive the flow entry returned by the SDN controller, and return an ARP response packet to the first virtual machine.
- ARP The response message carries the MAC address of the virtual bridge uplink port as the destination MAC address of the to-be-sent packet.
- the flow entry further includes a MAC address setting, where the MAC address is configured to indicate that the virtual bridge sends the destination MAC address of the unicast packet when receiving the unicast packet sent by the first virtual machine to the second virtual machine.
- the address is modified to the MAC address of the second virtual machine.
- the flow entry further includes an output setting, the output setting is used to indicate that the modified data packet is sent through a port connected to the virtual network function module.
- the virtual bridge uplink port is a PF of the first network port, and the virtual bridge is connected to the network card by using the PF; or the virtual bridge uplink port is the first A selected VF of the network port, the virtual bridge being connected to the network card by the selected VF, wherein the selected VF connected to the virtual bridge is set to a promiscuous mode.
- the virtual bridge is further configured to receive the processed data packet, and the processing is performed according to the destination MAC address of the data packet.
- the subsequent data packet is sent to the second virtual machine through the switching device.
- a tunnel is established between the virtual network function modules of the two hosts where the first virtual machine and the second virtual machine are located, and the tunnel is processed through the tunnel.
- the subsequent data packet is sent from the second network port and transmitted to the virtual network function module of the host where the second virtual machine is located.
- the data packet is sent to the second virtual machine through the virtual bridge of the host where the second virtual machine is located.
- the embodiment of the present invention further provides a computer storage medium for storing the computer software instructions used in the foregoing apparatus of FIG. 2-6, which includes a program designed to execute the foregoing method embodiments. By executing the stored program, a method of processing a message in a cloud computing system can be implemented.
- the method for processing a message in a cloud computing system provided by the embodiment of the present invention, the host and the system, can guide the packet sent by the virtual machine using the direct VF to the virtual bridge on the VMM, and then by the VMM.
- the virtual network function module performs network function processing on the data packet, thereby providing users with rich network functions.
- embodiments of the present invention can be provided as a method, apparatus (device), or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, embodiments of the invention may take the form of a computer program product embodied on one or more computer usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) including computer usable program code.
- the computer program is stored/distributed in a suitable medium, provided with other hardware or as part of the hardware, or in other distributed forms, such as over the Internet or other wired or wireless telecommunication systems.
- the computer program instructions relating to the embodiments of the present invention may be stored in a computer readable memory capable of directing a computer or other programmable data processing device to operate in a specific manner, and the functions of the components in the foregoing embodiments may be implemented by executing computer program instructions.
- These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device.
- the instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.
Abstract
Description
Claims (24)
- 一种主机,其特征在于,所述主机包括虚拟机监视器VMM,以及至少一个网卡,所述主机上运行有第一虚拟机,所述VMM包含虚拟网桥以及虚拟网络功能模块,所述至少一个网卡包含交换设备以及至少两个网口,其中,第一网口支持网卡虚拟化能力,所述第一网口对应于至少一个物理功能PF和多个虚拟功能VF,所述第一虚拟机连接到所述第一网口的至少一个VF,所述第一虚拟机,用于确定待发送的数据包的目的介质访问控制MAC地址,所述待发送的数据包的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述第一虚拟机,还用于通过与自身相连的所述VF向第二虚拟机发送所述数据包,所述数据包携带的目的IP地址为所述第二虚拟机的IP地址,携带的目的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述交换设备,用于接收所述数据包,根据所述数据包的目的MAC地址,将所述数据包通过所述虚拟网桥的上行链路口发送到所述虚拟网桥;所述虚拟网桥,用于接收所述数据包,将所述数据包的目的MAC地址修改为所述第二虚拟机的MAC地址,将修改后的数据包发送给虚拟网络功能模块;所述虚拟网络功能模块,用于对所述修改后的数据包进行网络功能处理后,发送处理后的数据包,所述处理后的数据包的目的MAC地址为所述第二虚拟机的MAC地址。
- 如权利要求1所述的主机,其特征在于,所述第一网口的多个VF具有不同的虚拟局域网VLAN标识。
- 如权利要求2所述的主机,其特征在于,所述第一虚拟机,还用于通过所述与自身相连的所述VF发出地址解析协议ARP请求报文,所述ARP请求报文携带发出ARP请求报文的所述VF的VLAN标识;所述交换设备,还用于广播所述ARP请求报文,所述ARP请求报文通过所述上行链路口发送到所述虚拟网桥;所述虚拟网桥,还用于向软件定义网络SDN控制器转发所述ARP请求报文, 接收所述SDN控制器返回的流表项,所述流表项包括ARP代答设置,所述ARP代答设置用于指示所述虚拟网桥针对所述ARP请求报文构造ARP响应报文,所述ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址;所述虚拟网桥,还用于向所述第一虚拟机返回ARP响应报文,ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址。
- 如权利要求3所述的主机,其特征在于,所述流表项还包括MAC地址设置,所述MAC地址设置用于指示所述虚拟网桥在接收到第一虚拟机发送给第二虚拟机的所述数据包时,将所述数据包的目的MAC地址修改为第二虚拟机的MAC地址。
- 如权利要求1-4任一所述的主机,其特征在于,所述虚拟网桥上行链路口为所述第一网口的PF,所述虚拟网桥通过所述PF与所述网卡相连;或者,所述虚拟网桥上行链路口为所述第一网口的选定的VF,所述虚拟网桥通过所述选定的VF与所述网卡相连,其中,与所述虚拟网桥相连的所述选定的VF被设置为混杂模式。
- 如权利要求1-4任一所述的主机,其特征在于,所述第二虚拟机与所述第一虚拟机运行在同一主机上,所述虚拟网桥,还用于接收处理后的数据包,根据所述数据包的目的MAC地址将所述处理后的数据包通过所述交换设备发送给所述第二虚拟机。
- 如权利要求1-4任一所述的主机,其特征在于,所述第二虚拟机与所述第一虚拟机运行在不同主机上,所述虚拟网络功能模块,具体用于建立与所述第二虚拟机所在的主机上的另一虚拟网络功能模块之间的隧道,将所述处理后的数据包发送到所述网卡的第二网口,通过所述隧道将所述处理后的数据包发送到所述第二虚拟机所在的主机,以使得所述另一虚拟网络功能模块将所述处理后的数据包发送到所述第 二虚拟机。
- 一种云计算系统中报文处理的方法,其特征在于,所述云计算系统中的至少一个主机包括虚拟机监视器VMM,以及至少一个网卡,所述主机上运行有第一虚拟机,所述VMM包含虚拟网桥以及虚拟网络功能模块,所述网卡包含交换设备以及至少两个网口,其中,第一网口支持网卡虚拟化能力,所述第一网口对应于至少至少一个PF和多个VF,所述第一虚拟机连接到所述第一网口的至少一个VF,所述方法包括:所述第一虚拟机确定待发送的数据包的目的MAC地址,所述待发送的数据包的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述第一虚拟机通过与自身相连的所述VF向第二虚拟机发送所述数据包,所述数据包携带的目的IP地址为所述第二虚拟机的IP地址,携带的目的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述交换设备接收所述数据包,根据所述数据包的目的MAC地址,将所述数据包通过所述虚拟网桥的上行链路口发送到所述虚拟网桥;所述虚拟网桥接收所述数据包,将所述数据包的目的MAC地址修改为所述第二虚拟机的MAC地址,将修改后的数据包发送给虚拟网络功能模块;所述虚拟网络功能模块对所述修改后的数据包进行网络功能处理后,发送处理后的数据包,所述处理后的数据包的目的MAC地址为所述第二虚拟机的MAC地址。
- 如权利要求8所述的方法,其特征在于,所述第一网口的多个VF具有不同的虚拟局域网VLAN标识。
- 如权利要求9所述的方法,其特征在于,所述第一虚拟机确定待发送的数据包的目的MAC地址包括:所述第一虚拟机通过所述与自身相连的所述VF发出ARP请求报文,所述ARP请求报文携带发出ARP请求报文的所述VF的VLAN标识;所述交换设备广播所述ARP请求报文,所述ARP请求报文通过所述上行链路口发送到所述虚拟网桥;所述虚拟网桥向SDN控制器转发所述ARP请求报文,接收所述SDN控制器返回的流表项,所述流表项包括ARP代答设置,所述ARP代答设置用于指示所述虚拟网桥针对所述ARP请求报文构造ARP响应报文,所述ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址;所述虚拟网桥,还用于向所述第一虚拟机返回ARP响应报文,ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址。
- 如权利要求10所述的方法,其特征在于,所述流表项还包括MAC地址设置所述MAC地址设置用于指示所述虚拟网桥在接收到第一虚拟机发送给第二虚拟机的所述数据包时,将所述数据包的目的MAC地址修改为第二虚拟机的MAC地址。
- 如权利要求8-11任一所述的方法,其特征在于,所述虚拟网桥上行链路口为所述第一网口的PF,所述虚拟网桥通过所述PF与所述网卡相连;或者,所述虚拟网桥上行链路口为所述第一网口的选定的VF,所述虚拟网桥通过所述选定的VF与所述网卡相连,其中,与所述虚拟网桥相连的所述选定的VF被设置为混杂模式。
- 如权利要求8-11任一所述的方法,其特征在于,所述第二虚拟机与所述第一虚拟机运行在同一主机上,所述方法还包括:所述虚拟网桥接收处理后的数据包,根据所述数据包的目的MAC地址将所述处理后的数据包通过所述交换设备发送给所述第二虚拟机。
- 如权利要求8-11任一所述的方法,其特征在于,所述第二虚拟机与所述第一虚拟机运行在不同主机上,所述方法还包括:所述虚拟网络功能模块建立与所述第二虚拟机所在的主机上的另一虚拟网络功能模块之间的隧道,将所述处理后的数据包发送到所述网卡的第二网口,通过所述隧道将所述处理后的数据包发送到所述第二虚拟机所在的主机,以使得所述另一虚拟网络功能模块将所述处理后的数据包发送到所述第二虚拟机。
- 一种云计算系统,其特征在于,包括软件定义网络SDN控制器,以及至少一个主机,所述主机包括虚拟机监视器VMM,以及至少一个网卡,所述主机上运行有第一虚拟机,所述VMM包含虚拟网桥以及虚拟网络功能模块,所述网卡包含交换设备以及至少两个网口,其中,第一网口支持网卡虚拟化能力,所述第一网口对应于至少一个PF和多个VF,所述第一虚拟机连接到所述第一网口的至少一个VF,所述SDN控制器,用于接收所述虚拟网桥转发的来自所述第一虚拟机的ARP请求报文,向所述虚拟网桥返回流表项,所述流表项包括ARP代答设置和MAC地址设置,所述ARP代答设置用于指示所述虚拟网桥为所述第一虚拟机构造ARP响应报文,所述ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为待发送的数据包的目的MAC地址;所述第一虚拟机,用于通过与自身相连的所述VF向第二虚拟机发送所述数据包,所述数据包携带的目的IP地址为所述第二虚拟机的IP地址,携带的目的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述交换设备,用于接收所述数据包,根据所述数据包的目的MAC地址,将所述数据包通过所述虚拟网桥的上行链路口发送到所述虚拟网桥;所述虚拟网桥,用于接收所述数据包,将所述数据包的目的MAC地址修改为所述第二虚拟机的MAC地址,将修改后的数据包发送给虚拟网络功能模块;所述虚拟网络功能模块,用于对所述修改后的数据包进行网络功能处理后,发送处理后的数据包,所述处理后的数据包的目的MAC地址为所述第二虚拟机的MAC地址。
- 如权利要求15所述的系统,其特征在于,所述第一网口的多个VF具有不同的虚拟局域网VLAN标识。
- 如权利要求16所述的系统,其特征在于,所述第一虚拟机,还用于通过所述与自身相连的所述VF发出所述ARP请求报文,所述ARP请求报文携带发出ARP请求报文的所述VF的VLAN标识;所述交换设备,还用于广播所述ARP请求报文,所述ARP请求报文通过所 述上行链路口发送到所述虚拟网桥;所述虚拟网桥,还用于向所述SDN控制器转发所述ARP请求报文,接收所述SDN控制器返回的所述流表项,所述流表项包括ARP代答设置,所述ARP代答设置用于指示所述虚拟网桥针对所述ARP请求报文构造ARP响应报文,所述ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址;所述虚拟网桥,还用于向所述第一虚拟机返回ARP响应报文,ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址。
- 如权利要求17所述的系统,其特征在于,所述流表项还包括MAC地址设置,所述MAC地址设置用于指示所述虚拟网桥在接收到第一虚拟机发送给第二虚拟机的所述数据包时,将所述数据包的目的MAC地址修改为第二虚拟机的MAC地址。
- 如权利要求15-18任一所述的系统,其特征在于,所述虚拟网桥上行链路口为所述第一网口的PF,所述虚拟网桥通过所述PF与所述网卡相连;或者,所述虚拟网桥上行链路口为所述第一网口的选定的VF,所述虚拟网桥通过所述选定的VF与所述网卡相连,其中,与所述虚拟网桥相连的所述选定的VF被设置为混杂模式。
- 如权利要求15-18任一所述的系统,其特征在于,所述第二虚拟机与所述第一虚拟机运行在同一主机上,所述虚拟网桥,还用于接收处理后的数据包,根据所述数据包的目的MAC地址将所述处理后的数据包通过所述交换设备发送给所述第二虚拟机。
- 如权利要求15-18任一所述的系统,其特征在于,所述第二虚拟机与所述第一虚拟机运行在不同主机上,所述虚拟网络功能模块,具体用于建立与所述第二虚拟机所在的主机上的另一虚拟网络功能模块之间的隧道,将所述处理后的数据包发送到所述网卡的 第二网口,通过所述隧道将所述处理后的数据包发送到所述第二虚拟机所在的主机,以使得所述另一虚拟网络功能模块将所述处理后的数据包发送到所述第二虚拟机。
- 一种主机,其特征在于,包括第一处理器、第一存储器以及至少一个网卡,所述网卡包含第二处理器、第二存储器以及至少两个网口,其中,第一网口支持网卡虚拟化能力,所述第一网口对应于至少一个PF和多个VF,所述第一存储器和所述第二存储器中存储有指令,所述第一处理器执行所述第一存储器中的第一指令以实现第一虚拟机的功能,所述第一虚拟机连接到所述第一网口的至少一个VF,所述第一处理器执行所述第一存储器中的第二指令以实现虚拟网桥的功能,所述第一处理器执行所述第一存储器中的第三指令以实现虚拟网络功能模块的功能,所述第二处理器用于执行所述第二存储器中的指令以实现交换设备的功能,所述第一处理器用于执行所述第一存储器中的第一指令以执行步骤:确定待发送的数据包的目的MAC地址,所述待发送的数据包的MAC地址为所述虚拟网桥上行链路口的MAC地址,通过与所述第一虚拟机相连的VF向第二虚拟机发送所述数据包,所述数据包携带的目的IP地址为所述第二虚拟机的IP地址,携带的目的MAC地址为所述虚拟网桥上行链路口的MAC地址;所述第二处理器用于执行所述第二存储器中的指令以执行步骤:接收所述数据包,根据所述数据包的目的MAC地址,将所述数据包通过所述虚拟网桥的上行链路口发送到所述虚拟网桥;所述第一处理器还用于执行所述第一存储器中的第二指令以执行步骤:接收所述数据包,将所述数据包的目的MAC地址修改为所述第二虚拟机的MAC地址;所述第一处理器还用于执行所述第一存储器中的第三指令以执行步骤:对修改后的数据包进行网络功能处理后,发送处理后的数据包,所述处理后的数据包的目的MAC地址为所述第二虚拟机的MAC地址。
- 如权利要求22所述的主机,其特征在于,述第一网口的多个VF具有不 同的虚拟局域网VLAN标识,所述第一处理器还用于执行所述第一存储器中的所述第一指令以执行步骤:通过与所述第一虚拟机相连的所述VF发出ARP请求报文,所述ARP请求报文携带发出ARP请求报文的所述VF的VLAN标识;所述第二处理器用于执行所述第二存储器中的指令以执行步骤:广播所述ARP请求报文,所述ARP请求报文通过所述上行链路口发送到所述虚拟网桥;所述第一处理器还用于执行所述第一存储器中的第二指令以执行步骤:向SDN控制器转发所述ARP请求报文,接收所述SDN控制器返回的流表项,所述流表项包括ARP代答设置,所述ARP代答设置用于指示所述虚拟网桥针对所述ARP请求报文构造ARP响应报文,所述ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址;向所述第一虚拟机返回ARP响应报文,ARP响应报文携带所述虚拟网桥上行链路口的MAC地址作为所述待发送的数据包的目的MAC地址。
- 如权利要求22所述的主机,其特征在于,所述流表项还包括MAC地址设置所述MAC地址设置用于指示所述虚拟网桥在接收到第一虚拟机发送给第二虚拟机的所述数据包时,将所述数据包的目的MAC地址修改为第二虚拟机的MAC地址。
Priority Applications (10)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
BR112018000116-3A BR112018000116A2 (pt) | 2016-11-09 | 2016-11-09 | método de processamento de pacote em sistema de computação em nuvem, hospedeiro e sistema |
AU2016414390A AU2016414390B2 (en) | 2016-11-09 | 2016-11-09 | Packet processing method in cloud computing system, host, and system |
EP16909060.2A EP3525423B1 (en) | 2016-11-09 | 2016-11-09 | Packet processing method in cloud computing system, host, and system |
PCT/CN2016/105228 WO2018086014A1 (zh) | 2016-11-09 | 2016-11-09 | 云计算系统中报文处理的方法、主机和系统 |
CA2991359A CA2991359C (en) | 2016-11-09 | 2016-11-09 | Packet processing method in cloud computing system, host, and system |
CN202010929666.0A CN112217746A (zh) | 2016-11-09 | 2016-11-09 | 云计算系统中报文处理的方法、主机和系统 |
CN201680009028.9A CN107278359B (zh) | 2016-11-09 | 2016-11-09 | 云计算系统中报文处理的方法、主机和系统 |
SG11201800020UA SG11201800020UA (en) | 2016-11-09 | 2016-11-09 | Packet processing method in cloud computing system, host, and system |
JP2018510708A JP6605713B2 (ja) | 2016-11-09 | 2016-11-09 | クラウドコンピューティングシステムにおけるパケット処理方法、ホスト及びシステム |
US16/253,930 US11005755B2 (en) | 2016-11-09 | 2019-01-22 | Packet processing method in cloud computing system, host, and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/CN2016/105228 WO2018086014A1 (zh) | 2016-11-09 | 2016-11-09 | 云计算系统中报文处理的方法、主机和系统 |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US16/253,930 Continuation US11005755B2 (en) | 2016-11-09 | 2019-01-22 | Packet processing method in cloud computing system, host, and system |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2018086014A1 true WO2018086014A1 (zh) | 2018-05-17 |
Family
ID=60052234
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2016/105228 WO2018086014A1 (zh) | 2016-11-09 | 2016-11-09 | 云计算系统中报文处理的方法、主机和系统 |
Country Status (9)
Country | Link |
---|---|
US (1) | US11005755B2 (zh) |
EP (1) | EP3525423B1 (zh) |
JP (1) | JP6605713B2 (zh) |
CN (2) | CN112217746A (zh) |
AU (1) | AU2016414390B2 (zh) |
BR (1) | BR112018000116A2 (zh) |
CA (1) | CA2991359C (zh) |
SG (1) | SG11201800020UA (zh) |
WO (1) | WO2018086014A1 (zh) |
Families Citing this family (51)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107278362B (zh) | 2016-11-09 | 2019-04-05 | 华为技术有限公司 | 云计算系统中报文处理的方法、主机和系统 |
BR112018000116A2 (pt) | 2016-11-09 | 2018-09-04 | Huawei Technologies Co., Ltd. | método de processamento de pacote em sistema de computação em nuvem, hospedeiro e sistema |
CN107643938A (zh) * | 2017-08-24 | 2018-01-30 | 中国科学院计算机网络信息中心 | 数据传输方法、装置及存储介质 |
CN110519147A (zh) * | 2018-05-22 | 2019-11-29 | 中兴通讯股份有限公司 | 数据帧传输方法、装置、设备和计算机可读存储介质 |
CN110636036A (zh) * | 2018-06-22 | 2019-12-31 | 复旦大学 | 一种基于SDN的OpenStack云主机网络访问控制的方法 |
US11822946B2 (en) * | 2018-06-28 | 2023-11-21 | Cable Television Laboratories, Inc. | Systems and methods for secure network management of virtual network functions |
US11563677B1 (en) * | 2018-06-28 | 2023-01-24 | Cable Television Laboratories, Inc. | Systems and methods for secure network management of virtual network function |
CN108965169B (zh) * | 2018-07-12 | 2020-09-25 | 联想(北京)有限公司 | 一种报文传输方法、网卡控制器、网卡及电子设备 |
CN108833305B (zh) * | 2018-07-17 | 2024-04-05 | 北京西普阳光科技股份有限公司 | 主机的虚拟网络装置 |
US11108687B1 (en) * | 2018-09-12 | 2021-08-31 | Amazon Technologies, Inc. | Scalable network function virtualization service |
US10834044B2 (en) | 2018-09-19 | 2020-11-10 | Amazon Technologies, Inc. | Domain name system operations implemented using scalable virtual traffic hub |
CN109525515B (zh) * | 2018-10-23 | 2021-04-30 | 郑州云海信息技术有限公司 | 一种云平台中网卡的管理方法和装置 |
CN111147369B (zh) * | 2018-11-05 | 2022-02-08 | 中国电信股份有限公司 | 路由系统、路由方法和服务器 |
CN109587063B (zh) * | 2018-12-29 | 2021-08-31 | 奇安信科技集团股份有限公司 | 一种数据的引流方法及装置 |
CN111698141B (zh) * | 2019-03-13 | 2022-12-02 | 中兴通讯股份有限公司 | 报文的转发方法及装置 |
CN110149231B (zh) * | 2019-05-21 | 2022-05-31 | 优刻得科技股份有限公司 | 更新虚拟交换机的方法、装置、存储介质和设备 |
CN110688237B (zh) | 2019-06-25 | 2024-02-09 | 华为技术有限公司 | 转发报文的方法、中间设备和计算机设备 |
CN110677344A (zh) * | 2019-09-27 | 2020-01-10 | 亚信科技(成都)有限公司 | 一种数据处理方法及服务器 |
CN112714073B (zh) * | 2019-10-24 | 2024-04-30 | 中兴通讯股份有限公司 | 基于sr-iov网卡的报文分流方法、系统及存储介质 |
CN110912836B (zh) * | 2019-11-14 | 2023-05-30 | 优刻得科技股份有限公司 | 使转发设备转发数据的方法、控制设备、存储介质和系统 |
CN111092876B (zh) * | 2019-12-12 | 2021-10-01 | 北京首都在线科技股份有限公司 | 多主机系统、电子设备、存储介质、用于多主机系统的信息处理方法及装置 |
CN111211982B (zh) * | 2019-12-30 | 2022-05-17 | 视联动力信息技术股份有限公司 | 数据转发方法及装置、电子设备、存储介质 |
CN113132200B (zh) * | 2019-12-30 | 2024-01-19 | 中兴通讯股份有限公司 | 数据转发方法、转发器、系统、服务器和存储介质 |
US11153261B2 (en) | 2020-01-22 | 2021-10-19 | Cisco Technology, Inc. | Routing traffic for virtualized/containerized network functions |
CN111510365B (zh) * | 2020-03-31 | 2021-12-17 | 杭州博联智能科技股份有限公司 | 基于Wi-Fi数据包的设备桥接云端方法、装置、设备及介质 |
US11677583B2 (en) * | 2020-04-06 | 2023-06-13 | Cisco Technology, Inc. | Dynamic cellular connectivity between the hypervisors and virtual machines |
US11689455B2 (en) | 2020-05-28 | 2023-06-27 | Oracle International Corporation | Loop prevention in virtual layer 2 networks |
US11962518B2 (en) | 2020-06-02 | 2024-04-16 | VMware LLC | Hardware acceleration techniques using flow selection |
US20230262149A1 (en) | 2020-06-26 | 2023-08-17 | Nippon Telegraph And Telephone Corporation | Data node, data node management method, and data node management program |
JP2023535152A (ja) * | 2020-07-14 | 2023-08-16 | オラクル・インターナショナル・コーポレイション | 仮想レイヤ2ネットワーク |
US11736566B2 (en) * | 2020-09-28 | 2023-08-22 | Vmware, Inc. | Using a NIC as a network accelerator to allow VM access to an external storage via a PF module, bus, and VF module |
US11792134B2 (en) | 2020-09-28 | 2023-10-17 | Vmware, Inc. | Configuring PNIC to perform flow processing offload using virtual port identifiers |
US11829793B2 (en) | 2020-09-28 | 2023-11-28 | Vmware, Inc. | Unified management of virtual machines and bare metal computers |
US11593278B2 (en) | 2020-09-28 | 2023-02-28 | Vmware, Inc. | Using machine executing on a NIC to access a third party storage not supported by a NIC or host |
US11636053B2 (en) | 2020-09-28 | 2023-04-25 | Vmware, Inc. | Emulating a local storage by accessing an external storage through a shared port of a NIC |
CN116866283A (zh) * | 2020-10-31 | 2023-10-10 | 华为技术有限公司 | 一种流表处理方法及相关设备 |
CN112565113A (zh) * | 2020-12-23 | 2021-03-26 | 科东(广州)软件科技有限公司 | 多虚拟机间的网卡共享系统、方法、装置、设备及介质 |
CN112631726B (zh) * | 2020-12-25 | 2022-05-24 | 苏州浪潮智能科技有限公司 | 一种虚拟机数据处理方法、系统、设备以及介质 |
US11757773B2 (en) | 2020-12-30 | 2023-09-12 | Oracle International Corporation | Layer-2 networking storm control in a virtualized cloud environment |
US11671355B2 (en) | 2021-02-05 | 2023-06-06 | Oracle International Corporation | Packet flow control in a header of a packet |
US11777897B2 (en) | 2021-02-13 | 2023-10-03 | Oracle International Corporation | Cloud infrastructure resources for connecting a service provider private network to a customer private network |
DE102021113670A1 (de) * | 2021-05-27 | 2022-12-01 | Dspace Gmbh | Verfahren zur Datenübertragung in einem Netzwerksystem sowie Netzwerksystem |
CN113630265B (zh) * | 2021-06-30 | 2023-04-07 | 济南浪潮数据技术有限公司 | 一种基于智能网卡的虚拟网络冗余备份方法及装置 |
CN113965521B (zh) * | 2021-10-19 | 2024-03-01 | 京东科技信息技术有限公司 | 数据包的传输方法、服务器及存储介质 |
US11863376B2 (en) | 2021-12-22 | 2024-01-02 | Vmware, Inc. | Smart NIC leader election |
CN114844745B (zh) * | 2022-03-29 | 2024-03-15 | 西安广和通无线软件有限公司 | 数据转发装置、方法、电子设备及存储介质 |
US11899594B2 (en) | 2022-06-21 | 2024-02-13 | VMware LLC | Maintenance of data message classification cache on smart NIC |
US11928367B2 (en) | 2022-06-21 | 2024-03-12 | VMware LLC | Logical memory addressing for network devices |
US11928062B2 (en) | 2022-06-21 | 2024-03-12 | VMware LLC | Accelerating data message classification with smart NICs |
CN115150327A (zh) * | 2022-06-29 | 2022-10-04 | 济南浪潮数据技术有限公司 | 一种接口设置方法、装置、设备及介质 |
CN115834296B (zh) * | 2023-02-16 | 2023-04-18 | 北京融为科技有限公司 | 一种数据传输方法、装置、电子设备和存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101309180A (zh) * | 2008-06-21 | 2008-11-19 | 华中科技大学 | 一种适用于虚拟机环境的安全网络入侵检测系统 |
CN102457586A (zh) * | 2010-10-18 | 2012-05-16 | 中兴通讯股份有限公司 | 一种实现二层网络的扩展方法及扩展的二层网络 |
US20130031233A1 (en) * | 2011-07-29 | 2013-01-31 | International Business Machines Corporation | Network filtering in a virtualized environment |
CN103346981A (zh) * | 2013-06-28 | 2013-10-09 | 华为技术有限公司 | 虚拟交换方法、相关装置和计算机系统 |
Family Cites Families (32)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
GB2458154B (en) * | 2008-03-07 | 2012-06-27 | Hewlett Packard Development Co | Routing across a virtual network |
GB2459433B (en) * | 2008-03-07 | 2012-06-06 | Hewlett Packard Development Co | Distributed network connection policy management |
US8442048B2 (en) | 2009-11-04 | 2013-05-14 | Juniper Networks, Inc. | Methods and apparatus for configuring a virtual network switch |
US8533285B2 (en) | 2010-12-01 | 2013-09-10 | Cisco Technology, Inc. | Directing data flows in data centers with clustering services |
US8462780B2 (en) * | 2011-03-30 | 2013-06-11 | Amazon Technologies, Inc. | Offload device-based stateless packet processing |
US8867403B2 (en) * | 2011-08-18 | 2014-10-21 | International Business Machines Corporation | Virtual network overlays |
KR20130050156A (ko) * | 2011-11-07 | 2013-05-15 | 한국전자통신연구원 | 가상 주소 공간 전환 장치 |
US9928107B1 (en) * | 2012-03-30 | 2018-03-27 | Amazon Technologies, Inc. | Fast IP migration in a hybrid network environment |
US8964735B2 (en) * | 2012-05-18 | 2015-02-24 | Rackspace Us, Inc. | Translating media access control (MAC) addresses in a network hierarchy |
US9059868B2 (en) | 2012-06-28 | 2015-06-16 | Dell Products, Lp | System and method for associating VLANs with virtual switch ports |
CN102790777B (zh) | 2012-08-07 | 2016-06-15 | 华为技术有限公司 | 网络接口适配器注册方法及驱动设备、服务器 |
JPWO2014065315A1 (ja) | 2012-10-24 | 2016-09-08 | 日本電気株式会社 | 通信システム、仮想マシンサーバ、仮想ネットワーク管理装置、ネットワーク制御方法及びプログラム |
US10341263B2 (en) | 2012-12-10 | 2019-07-02 | University Of Central Florida Research Foundation, Inc. | System and method for routing network frames between virtual machines |
CN103051529B (zh) | 2012-12-20 | 2016-03-30 | 华为技术有限公司 | 一种报文的处理方法和装置 |
JP6024474B2 (ja) | 2013-01-23 | 2016-11-16 | 富士通株式会社 | マルチテナントシステム、管理装置、管理プログラム、およびマルチテナントシステムの制御方法 |
WO2014115157A1 (en) * | 2013-01-24 | 2014-07-31 | Hewlett-Packard Development Comany, L.P. | Address resolution in software-defined networks |
US9432287B2 (en) * | 2013-03-12 | 2016-08-30 | International Business Machines Corporation | Virtual gateways and implicit routing in distributed overlay virtual environments |
WO2014161133A1 (zh) | 2013-04-01 | 2014-10-09 | 华为技术有限公司 | 虚拟机的数据交换方法、装置和系统 |
WO2014201623A1 (zh) * | 2013-06-18 | 2014-12-24 | 华为技术有限公司 | 用于数据传输的方法、装置和系统以及物理网卡 |
KR101644678B1 (ko) | 2013-06-28 | 2016-08-01 | 주식회사 케이티 | 네크워크 입출력 가상화 환경에서 가상 머신의 이동성 지원 방법 및 이를 수행하는 장치 |
US9577845B2 (en) * | 2013-09-04 | 2017-02-21 | Nicira, Inc. | Multiple active L3 gateways for logical networks |
US9634948B2 (en) * | 2013-11-07 | 2017-04-25 | International Business Machines Corporation | Management of addresses in virtual machines |
CN103916314A (zh) * | 2013-12-26 | 2014-07-09 | 杭州华为数字技术有限公司 | 报文转发控制方法和相关装置及物理主机 |
WO2015100656A1 (zh) * | 2013-12-31 | 2015-07-09 | 华为技术有限公司 | 一种实现虚拟机通信的方法和装置 |
EP2911347B1 (en) * | 2014-02-24 | 2019-02-13 | Hewlett-Packard Enterprise Development LP | Providing policy information |
CN103873374B (zh) * | 2014-03-27 | 2017-08-11 | 新华三技术有限公司 | 虚拟化系统中的报文处理方法及装置 |
CN105812340B (zh) * | 2014-12-31 | 2019-01-08 | 新华三技术有限公司 | 一种虚拟网络访问外网的方法和装置 |
CN104506408B (zh) * | 2014-12-31 | 2018-02-06 | 新华三技术有限公司 | 基于sdn的数据传输的方法及装置 |
US10812632B2 (en) * | 2015-02-09 | 2020-10-20 | Avago Technologies International Sales Pte. Limited | Network interface controller with integrated network flow processing |
CN105978828B (zh) | 2016-05-16 | 2019-07-23 | 锐捷网络股份有限公司 | 一种实现虚拟机报文转发的方法和交换机 |
BR112018000116A2 (pt) | 2016-11-09 | 2018-09-04 | Huawei Technologies Co., Ltd. | método de processamento de pacote em sistema de computação em nuvem, hospedeiro e sistema |
CN107278362B (zh) | 2016-11-09 | 2019-04-05 | 华为技术有限公司 | 云计算系统中报文处理的方法、主机和系统 |
-
2016
- 2016-11-09 BR BR112018000116-3A patent/BR112018000116A2/pt unknown
- 2016-11-09 CN CN202010929666.0A patent/CN112217746A/zh active Pending
- 2016-11-09 JP JP2018510708A patent/JP6605713B2/ja active Active
- 2016-11-09 EP EP16909060.2A patent/EP3525423B1/en active Active
- 2016-11-09 SG SG11201800020UA patent/SG11201800020UA/en unknown
- 2016-11-09 CN CN201680009028.9A patent/CN107278359B/zh active Active
- 2016-11-09 WO PCT/CN2016/105228 patent/WO2018086014A1/zh active Application Filing
- 2016-11-09 AU AU2016414390A patent/AU2016414390B2/en active Active
- 2016-11-09 CA CA2991359A patent/CA2991359C/en active Active
-
2019
- 2019-01-22 US US16/253,930 patent/US11005755B2/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101309180A (zh) * | 2008-06-21 | 2008-11-19 | 华中科技大学 | 一种适用于虚拟机环境的安全网络入侵检测系统 |
CN102457586A (zh) * | 2010-10-18 | 2012-05-16 | 中兴通讯股份有限公司 | 一种实现二层网络的扩展方法及扩展的二层网络 |
US20130031233A1 (en) * | 2011-07-29 | 2013-01-31 | International Business Machines Corporation | Network filtering in a virtualized environment |
CN103346981A (zh) * | 2013-06-28 | 2013-10-09 | 华为技术有限公司 | 虚拟交换方法、相关装置和计算机系统 |
Non-Patent Citations (1)
Title |
---|
See also references of EP3525423A4 * |
Also Published As
Publication number | Publication date |
---|---|
EP3525423A1 (en) | 2019-08-14 |
CN107278359A (zh) | 2017-10-20 |
CN112217746A (zh) | 2021-01-12 |
BR112018000116A2 (pt) | 2018-09-04 |
AU2016414390B2 (en) | 2019-06-20 |
CA2991359C (en) | 2021-12-07 |
EP3525423B1 (en) | 2021-04-07 |
US11005755B2 (en) | 2021-05-11 |
JP6605713B2 (ja) | 2019-11-13 |
US20190158396A1 (en) | 2019-05-23 |
CN107278359B (zh) | 2020-09-18 |
SG11201800020UA (en) | 2018-06-28 |
AU2016414390A1 (en) | 2018-05-24 |
EP3525423A4 (en) | 2019-08-14 |
JP2019503599A (ja) | 2019-02-07 |
CA2991359A1 (en) | 2018-05-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2018086014A1 (zh) | 云计算系统中报文处理的方法、主机和系统 | |
WO2018086013A1 (zh) | 云计算系统中报文处理的方法、主机和系统 | |
EP4004722B1 (en) | Computer device including nested network interface controller switches | |
US11190375B2 (en) | Data packet processing method, host, and system | |
US9413554B2 (en) | Virtual network overlays | |
US9031081B2 (en) | Method and system for switching in a virtualized platform | |
US20100287262A1 (en) | Method and system for guaranteed end-to-end data flows in a local networking domain | |
US8792502B2 (en) | Duplicate MAC address detection | |
EP4004721B1 (en) | Computer device including process isolated containers with assigned virtual functions | |
US20230308398A1 (en) | Latency-aware load balancer for topology-shifting software defined networks |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 11201800020U Country of ref document: SG |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2991359 Country of ref document: CA |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2018510708 Country of ref document: JP |
|
ENP | Entry into the national phase |
Ref document number: 2016414390 Country of ref document: AU Date of ref document: 20161109 Kind code of ref document: A |
|
REG | Reference to national code |
Ref country code: BR Ref legal event code: B01A Ref document number: 112018000116 Country of ref document: BR |
|
ENP | Entry into the national phase |
Ref document number: 112018000116 Country of ref document: BR Kind code of ref document: A2 Effective date: 20180103 |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 16909060 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 2016909060 Country of ref document: EP Effective date: 20180123 |