WO2024066639A1 - Service data processing method and device, and computer-readable storage medium - Google Patents
Service data processing method and device, and computer-readable storage medium Download PDFInfo
- Publication number
- WO2024066639A1 WO2024066639A1 PCT/CN2023/105406 CN2023105406W WO2024066639A1 WO 2024066639 A1 WO2024066639 A1 WO 2024066639A1 CN 2023105406 W CN2023105406 W CN 2023105406W WO 2024066639 A1 WO2024066639 A1 WO 2024066639A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- flow table
- table data
- business
- service
- current environment
- Prior art date
Links
- 238000003672 processing method Methods 0.000 title claims abstract description 40
- 230000005540 biological transmission Effects 0.000 claims abstract description 41
- 238000000034 method Methods 0.000 claims abstract description 26
- 238000012545 processing Methods 0.000 claims abstract description 24
- 238000012216 screening Methods 0.000 claims abstract description 3
- 238000010586 diagram Methods 0.000 claims description 23
- 238000004590 computer program Methods 0.000 claims description 11
- 230000004044 response Effects 0.000 claims description 7
- 238000011217 control strategy Methods 0.000 claims description 6
- 238000004891 communication Methods 0.000 abstract description 8
- 238000013507 mapping Methods 0.000 description 11
- 239000003795 chemical substances by application Substances 0.000 description 8
- 230000008569 process Effects 0.000 description 7
- 238000004458 analytical method Methods 0.000 description 5
- 230000000007 visual effect Effects 0.000 description 4
- 101001121408 Homo sapiens L-amino-acid oxidase Proteins 0.000 description 3
- 102100026388 L-amino-acid oxidase Human genes 0.000 description 3
- 238000013480 data collection Methods 0.000 description 3
- 238000013461 design Methods 0.000 description 3
- 230000006870 function Effects 0.000 description 3
- 230000009471 action Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 2
- 230000007123 defense Effects 0.000 description 2
- 239000007787 solid Substances 0.000 description 2
- 101000827703 Homo sapiens Polyphosphoinositide phosphatase Proteins 0.000 description 1
- 102100023591 Polyphosphoinositide phosphatase Human genes 0.000 description 1
- 101100012902 Saccharomyces cerevisiae (strain ATCC 204508 / S288c) FIG2 gene Proteins 0.000 description 1
- 101100233916 Saccharomyces cerevisiae (strain ATCC 204508 / S288c) KAR5 gene Proteins 0.000 description 1
- 239000003086 colorant Substances 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/02—Capturing of monitoring data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/02—Capturing of monitoring data
- H04L43/026—Capturing of monitoring data using flow identification
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/04—Processing captured monitoring data, e.g. for logfile generation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/12—Avoiding congestion; Recovering from congestion
- H04L47/125—Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering
Definitions
- the present application relates to the field of communication technology, and in particular to a business data processing method, device and computer-readable storage medium.
- the main purpose of this application is to provide a business data processing method, device and computer-readable storage medium, aiming to solve the technical problem that the efficiency of business flow data collection is low and the message forwarding performance in the current environment is reduced.
- the present application provides a business data processing method, the business data processing method comprising:
- the original flow table data is structured to determine the structure corresponding to the original flow table data. Structure the flow table data;
- the structured flow table data is screened to determine each service-related flow table data in the structured flow table data;
- each of the business-related flow table data is spliced to determine the internal business flow table data in the current environment.
- the original flow table data of each server in the current environment is collected based on the OVS flow table query instruction; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment.
- This embodiment collects flow table data through the OVS flow table query instruction, which avoids the problem of residual mapping ports, that is, improves the collection efficiency of business flow data, and avoids the problem of residual mapping ports, avoiding affecting the message forwarding performance of the current environment, and the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing through the transmission port information and five-tuple information of the flow table data, ensuring the integrity of the internal business flow table data.
- the execution subject of the business data processing method is a business data processing device.
- the present application provides a business data processing device, which includes: a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the computer program is configured to implement the steps of the business data processing method as described above.
- the present application provides a computer-readable storage medium, which stores a computer program.
- the processor executes a business data processing method as described in any one of the first aspect or possible implementations of the first aspect.
- an embodiment of the present application provides a computer program, which includes a method for executing the business data processing method in the first aspect and any possible implementation of the first aspect. Instructions.
- FIG1 is a schematic diagram of the structure of a business data processing device in a hardware operating environment involved in an embodiment of the present application
- FIG2 is a flow chart of an embodiment of a method for processing business data of the present application
- FIG3 is an application scenario diagram of an embodiment of a business data processing method of the present application.
- FIG4 is a flow chart of another embodiment of the business data processing method of the present application.
- FIG5 is a visualized business flow topology diagram in an embodiment of a business data processing method of the present application.
- FIG6 is a timing diagram of an embodiment of a business data processing method of the present application.
- a and/or B in this article is merely a description of the association relationship of associated objects, indicating that three relationships may exist.
- a and/or B can mean: A exists alone, A and B exist at the same time, and B exists alone.
- first and second in the description and claims of the embodiments of the present application are used to distinguish different objects rather than to describe a specific order of objects.
- a first target object and a second target object are used to distinguish different target objects rather than to describe a specific order of target objects.
- words such as “exemplary” or “for example” are used to indicate examples, illustrations or descriptions. Any embodiment or design described as “exemplary” or “for example” in the embodiments of the present application should not be interpreted as being more preferred or more advantageous than other embodiments or designs. Specifically, the use of words such as “exemplary” or “for example” is intended to present related concepts in a specific way.
- multiple refers to two or more than two.
- multiple processing units refer to two or more processing units; multiple systems refer to two or more systems.
- the present application designs a method for collecting flow table data through OVS flow table query instructions, and splicing the transmission port information and five-tuple information of the flow table data to determine the internal business flow table data in the current environment, which improves the collection efficiency of business flow data and avoids the problem of residual mapping ports, avoids affecting the message forwarding performance of the current environment, and the normal use of the current environment.
- the original flow table data of each server in the current environment is collected; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment.
- This embodiment collects flow table data through OVS flow table query instructions, avoiding the mapping port.
- the residual problem is solved, which improves the collection efficiency of business flow data and avoids the problem of mapping port residue, avoids affecting the message forwarding performance of the current environment and the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing the transmission port information and the five-tuple information of the flow table data, thereby ensuring the integrity of the internal business flow table data.
- the business load nodes in the current environment and the association relationship between the business load nodes are determined based on the internal business flow table data; based on the association relationship, the business load nodes are connected through business lines to construct and output a visual business flow topology diagram of the current environment.
- the business load nodes in the current environment and the association relationship between the business load nodes are determined based on the internal business flow table data, and then the business load nodes are connected through business lines based on the association relationship, and a visual business flow topology diagram of the current environment is constructed and output, so that the user can intuitively understand the business relationship between each business load node in the current environment.
- Figure 1 is a schematic diagram of the structure of a business data processing device in the hardware operating environment involved in the embodiment of the present application.
- the business data processing device may include: a processor 1001, such as a central processing unit (CPU), a communication bus 1002, a user interface 1003, a network interface 1004, and a memory 1005.
- the communication bus 1002 is used to realize the connection and communication between these components.
- the user interface 1003 may include a display screen (Display), an input unit such as a keyboard (Keyboard), and the user interface 1003 may also include a standard wired interface and a wireless interface.
- the network interface 1004 may include a standard wired interface and a wireless interface (such as a wireless fidelity (Wireless-Fidelity, WI-FI) interface).
- the memory 1005 may be a high-speed random access memory (Random Access Memory, RAM) or a stable non-volatile memory (Non-Volatile Memory, NVM), such as a disk storage.
- RAM Random Access Memory
- NVM Non-Volatile Memory
- the memory 1005 may also be a storage device independent of the aforementioned processor 1001.
- FIG. 1 does not constitute a limitation on the business data processing device, and may include more or fewer components than shown in the figure, or a combination of certain components, or a different arrangement of components.
- the memory 1005 as a storage medium may include an operating system, a data Data storage module, network communication module, user interface module and computer program.
- the network interface 1004 is mainly used for data communication with other devices;
- the user interface 1003 is mainly used for data interaction with the user;
- the processor 1001 and the memory 1005 in the business data processing device of the present application can be set in the business data processing device, and the business data processing device calls the computer program stored in the memory 1005 through the processor 1001, and executes the business data processing method provided in the embodiment of the present application.
- an embodiment of a business data processing method of the present application specifically includes:
- Step S10 based on the OVS flow table query instruction, collect the original flow table data of each server in the current environment;
- the execution subject of the business data processing method of the present application may be a business data processing device.
- the OVS flow table query instruction is an instruction for instructing OVS (Open vSwitch, virtual switch) to perform a flow table query.
- the current environment is the current application environment built for each server according to application requirements, such as Linux+Apache (Nginx)+Mysql+Php (that is, LAMP/LNMP environment), WINDOWS+IIS+ASP/.NET+MSSQL environment.
- the current environment needs to have OVS functions, that is, each server in the current environment is internally deployed with OVS for realizing exchange between virtual machines.
- the OVS flow table query instruction is sent down to the OVS in each server in the current environment, and the flow table inside the server is queried by OVS, so that the original flow table data of each server in the current environment can be collected.
- each of the servers is deployed with an information collection unit, and step S10 is a step of collecting original flow table data of each server in the current environment based on the OVS flow table query instruction, including:
- Step S11 in response to the service flow collection request, the service flow collection request is sent to the information collection unit of each server in the current environment, so that
- Each of the information collection units sends a corresponding OVS flow table query instruction to the virtual switch on each of the servers according to the service collection request, and obtains the original information of each of the servers in the current environment.
- Initial flow table data
- the service flow collection request may include a collection period and a collection interval.
- the service flow collection request is sent to the information collection unit of each server in the current environment in response to the service flow collection request.
- each information collection unit After receiving the service collection request, each information collection unit sends a corresponding OVS flow table query instruction to the virtual switch on each server according to the collection cycle and collection interval in the service collection request, so that the virtual switch on each server queries the flow table of each server, determines the original flow table data of each server, and returns the original flow table data.
- the agent is an information collection unit deployed on each server in the current environment, responsible for collecting the original flow table data and sending it to the analyzer.
- the analyzer is an analysis unit deployed on the control node server of the current environment, responsible for receiving the business flow collection request sent by the user through the portal (client) and sending it to each agent, and receiving and summarizing the information reported by the agent and sending it to the user.
- the service flow collection request is sent to the information collection unit of each server in the current environment, so that each information collection unit sends the corresponding OVS flow table query instruction to the virtual switch on each server according to the service collection request, and obtains the original flow table data of each server in the current environment.
- querying the flow table data to the virtual switch on each server through the OVS flow table query instruction can avoid the problem of residual mapping ports in the traditional packet capture method.
- the method of deploying information collection units on each server can also effectively improve the collection efficiency of the original flow table data.
- Step S20 performing structured processing on the original flow table data to determine structured flow table data corresponding to the original flow table data
- the structured flow table data includes a service load node, an input port (input) and an output port (output) of the flow table, a source IP address, a destination IP address, a communication port number, a protocol type, and the like.
- the original flow table data returned by the server's virtual switch is a flow table in a string format. Therefore, in order to facilitate data processing, the original flow table data needs to be structured. Among them.
- the process of the structured processing is to compile according to the original flow table data and the preset flow table structure framework, so as to obtain the flow table structure corresponding to the original flow table data (that is, the structured flow table data), so as to determine the structured flow table data corresponding to the original flow table data.
- Step S30 screening the structured flow table data according to the first transmission port information of the structured flow table data, and determining each service-related flow table data in the structured flow table data;
- the flow table is a collection of policy items for a specific flow, which is responsible for searching and forwarding data packets. Therefore, the structured flow table data obtained are not all related to the business.
- the structured flow table data contains the first transmission port information, the output port and input port of the business flow corresponding to the structured flow table can be determined. Therefore, the first transmission port information of the structured flow table data can be used to determine whether the business flow corresponding to the structured flow table data occurs on the business load node of each server, so as to screen the structured flow table data and determine the business-related flow table data in the structured flow table data.
- the first transmission port information includes a first input port and a first output port
- step S30 screens the structured flow table data according to the first transmission port information of the structured flow table data to determine each service-related flow table data in the structured flow table data, including:
- Step S31 determining whether the first input port or the first output port of the structured flow table data is a port of a service load node in the current environment
- Step S32 If the first input port and/or the first output port is a port of a service load node in the current environment, it is determined that the structured flow table data is service-related flow table data.
- the service load node is a virtual machine used to implement various services in the current environment.
- the first transmission port information includes a first input port and a first output port.
- the first input port or the first output port of the structured flow table data is not necessarily a port of a virtual machine, it may also be a physical port and a tunnel. Therefore, in order to avoid missing business flow table data, it is determined whether the first input port or the first output port of the structured flow table data is a port of a business load node under the current environment. If the first input port and/or the first output port are ports of a business load node under the current environment, the structured flow table data is determined to be business-related flow table data (i.e., structured flow table data related to business). If the first input port and the first output port are not ports of a business load node under the current environment, the structured flow table data is determined to be not business-related flow table data, and can be discarded.
- business-related flow table data i.e., structured flow table data related to business
- the structured flow table data whose first input port and/or the first output port is a port of the service load node in the current environment is judged to be service-related flow table data, thereby filtering out service-related service from the structured flow table data.
- Service-related flow table data by judging whether the first input port or the first output port of the structured flow table data is a port of the service load node in the current environment, the structured flow table data whose first input port and/or the first output port is a port of the service load node in the current environment is judged to be service-related flow table data, thereby filtering out service-related service from the structured flow table data.
- Service-related flow table data Service-related flow table data.
- Step S40 splicing each of the service-related flow table data according to the second transmission port information and the five-tuple information of each of the service-related flow table data to determine the internal service flow table data in the current environment.
- the five-tuple information includes: source IP address, source port, destination IP address, destination port and transport layer protocol.
- the business-related flow table data contains flow table data in which only the input port or the output port is determined to be the port of the business load node in the current environment. Therefore, there may be flow table data of business flows that are not in the current environment. That is, the business-related flow table data may contain flow table data of business flows in which the business load node in the current environment interacts with other devices outside the current environment.
- the second transmission port information in each of the business-related flow table data it is possible to determine the flow table data (i.e., the first spliced flow table data) whose input and output ports are both ports of the business load node in the current environment, and the flow table data (i.e., the source end flow table data) whose only input port in each of the business-related flow table data is the port of the business load node in the current environment, and the flow table data (i.e., the destination end flow table data) whose only output port is the port of the business load node in the current environment.
- the input port and output port of the first spliced flow table data are both ports of the business load node in the current environment, it is obviously the internal business flow table data in the current environment.
- the input port or the output port of the source end flow table data and the destination end flow table data is determined to be the port of the business load node in the current environment, it is possible that it is the flow table data of the business flow that is not in the current environment.
- the input port or the output port is not necessarily the port of the virtual machine, but may also be a physical port and a tunnel, the source end flow table data and the destination end flow table data may also be the input part and the output part of the same business flow in the current environment. Therefore, the five-tuple information of the source end flow table data and the destination end flow table data can be matched.
- the match is successful, it means that the source end flow table data and the destination end flow table data are the input part and the output part of the same business flow in the current environment, then the source end flow table data and the destination end flow table data can be spliced to obtain the second spliced flow table data.
- the first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment.
- step S40 splices each of the business-related flow table data according to the second transmission port information and the five-tuple information of each of the business-related flow table data to determine the internal business flow table data in the current environment, including:
- Step S41 dividing each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data;
- Step S42 generating a first flow code according to the five-tuple information of the source end flow table data
- Step S43 generating a second flow code according to the five-tuple information of the destination end flow table data
- Step S44 when the first flow code matches the second flow code, splicing the source end flow table data and the destination end flow table data to obtain second spliced flow table data;
- Step S45 Use the first spliced flow table data and the second spliced flow table data as internal service flow table data in the current environment.
- each of the service-related flow table data is divided into flow table data (i.e., source end flow table data) whose only input port is a port of a service load node under the current environment, flow table data (i.e., destination end flow table data) whose only output port is a port of a service load node under the current environment, and flow table data (i.e., first spliced flow table data) whose input port and output port are both ports of a service load node under the current environment.
- the input port and output port of the first spliced flow table data are both ports of a service load node under the current environment.
- the service flow corresponding to the first spliced flow table data is the service flow under the current environment, and the first spliced flow table data is also the internal service flow table data under the current environment. If only the input port or the output port of the source end flow table data and the destination end flow table data are determined to be ports of a service load node under the current environment, then it is possible that they are flow table data of a service flow not under the current environment.
- the input port or the output port is not necessarily a port of a virtual machine, and may also be a physical port and a tunnel, the source end flow table data and the destination end flow table data may also be the input part and the output part of the same service flow under the current environment.
- a first flow code can be generated according to the five-tuple information of the source end flow table data
- a second flow code can be generated according to the five-tuple information of the destination end flow table data.
- the first flow code and the second flow code can be generated by respectively calculating the five-tuple information of the source end flow table data and the destination end flow table data using a hash algorithm.
- the first flow code matches the second flow code it means that the source end flow table data and the destination end flow table data are respectively the input part and the output part of the same business flow in the current environment, then the source end flow table data and the destination end flow table data can be spliced to obtain the second spliced flow table data.
- the way to splice the source end flow table data and the destination end flow table data can be, Extract source information from the source flow table data, wherein the source information includes the packet header field, counter and other contents in the action table of the source flow table data except the output port. Extract destination information from the destination flow table data, wherein the destination information includes the counter and action table of the destination flow table data. Fill the source information and the destination information into the preset flow table structure framework to obtain the second spliced flow table data.
- the first spliced flow table data and the second spliced flow table data include the business flow data between all business load nodes in the current environment. Then, the first spliced flow table data and the second spliced flow table data can be used as internal business flow table data in the current environment.
- each of the business-related flow table data into source-end flow table data, destination-end flow table data and first spliced flow table data according to the second transmission port information in each of the business-related flow table data; and according to the five-tuple information of the source-end flow table data and the destination-end flow table data, the matching source-end flow table data and the destination-end flow table data are spliced to obtain the second spliced flow table data; the first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment, thereby avoiding omissions in the business flow table data and ensuring the integrity of the internal business flow table data.
- the second transmission port information includes a second input port and a second output port
- step S41 divides each of the service-related flow table data into source end flow table data, destination end flow table data, and first spliced flow table data according to the second transmission port information in each of the service-related flow table data, including:
- Step A1 when the second input port is a port of a service load node in the current environment, and the second output port is not a port of a service load node in the current environment, determining that the service-related flow table data is source end flow table data;
- Step A2 when the second input port is not a port of a service load node in the current environment, and the second output port is a port of a service load node in the current environment, determining that the service-related flow table data is a destination end flow table data;
- Step A3 when the second input port and the second output port are both ports of the service load node in the current environment, it is determined that the service-related flow table data is the first spliced flow table data.
- the second transmission port information includes a second input port and a second output port.
- the service-related flow table data is classified by the second input port and the second output port of the service-related flow table data into flow table data (i.e., source end flow table data) whose input port is a port of the service load node in the current environment and flow table data whose output port is a port of the service load node in the current environment.
- flow table data of the port of the business load node under the current environment i.e., the destination end flow table data
- the flow table data of the port of the business load node whose input port and output port are both under the current environment i.e., the first spliced flow table data
- the source end flow table data and the destination end flow table data that need to be spliced, and the first spliced flow table data that does not need to be spliced are identified.
- the original flow table data of each server in the current environment is collected; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment.
- This embodiment collects flow table data through the OVS flow table query instruction, which avoids the problem of residual mapping ports, that is, improves the collection efficiency of business flow data, and avoids the problem of residual mapping ports, avoiding affecting the message forwarding performance of the current environment, as well as the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing through the transmission port information and five-tuple information of the flow table data, thereby ensuring the integrity of the internal business flow table data.
- the business data processing method is described in detail below with reference to the flowchart diagram of another embodiment of the business data processing method shown in FIG. 4 .
- the service data processing method further includes:
- Step S50 determining the service load nodes in the current environment and the association relationship between the service load nodes according to the internal service flow table data;
- Step S51 connecting the service load nodes through service lines according to the association relationship, constructing and outputting a visualized service flow topology diagram of the current environment.
- the internal business flow table data is analyzed, and the business load nodes in the current environment and the association relationship between the business load nodes can be determined through the input port and output port of the internal business flow table data. Relationship, the business load nodes are connected through business lines, and a visualized business flow topology diagram of the current environment is constructed and output. The business lines are used to indicate the input and output directions between the business load nodes. Referring to Figure 5, Figure 5 is a visualized business flow topology diagram in an embodiment of the business data processing method of the present application.
- virtual machine 1 belongs to business 1 and provides a view function
- virtual machine 2 belongs to business 2 and provides a collect function.
- ping is a service command, which mainly sends a request message to a specific destination host to test whether the destination station is reachable and understand its relevant status
- Virtual machine 1 (vm1) and virtual machine 2 (vm2) initiate a TCP (Transmission Control Protocol) request
- virtual machine 2 (vm2) has a corresponding packet return message flow.
- TCP Transmission Control Protocol
- virtual machine 1 (vm1) and virtual machine 2 (vm2) have two ICMP (Internet Control Message Protocol) flows, one TCP request flow and one TCP response flow, a total of four business flow data.
- the two dark gray solid business lines in Figure 5 are used to represent the two ICMP flows, the light gray solid business line is used to represent the TCP request flow, and the light gray dotted business line is used to represent the TCP response flow.
- step S51 connects the service load nodes through service lines according to the association relationship, constructs and outputs a visualized service flow topology diagram of the current environment, and the service data processing method further includes:
- Step B1 obtaining current control strategy information of network micro-segmentation, and performing differentiated display on the service connection according to the current control strategy information.
- the current control policy information of the network micro-segmentation includes prohibition, permission, and non-control.
- the business connection can be displayed differently according to the current control policy information.
- the business connection between each business load node can be displayed in different colors, shades, and shapes. For example, when the current control policy information of two business load nodes is prohibited, the business connection between the two business load nodes is displayed in red; when the current control policy information of two business load nodes is allowed, the business connection between the two business load nodes is displayed in green; when the current control policy information of two business load nodes is not controlled, the business connection between the two business load nodes is displayed in gray.
- the process includes:
- Step C1 in response to a selection instruction for a service line on the visualized service flow topology diagram, displaying internal service flow table data corresponding to the service line.
- the internal business flow table data corresponding to the business connection can be displayed by responding to the selection instruction for the business connection on the visual business flow topology diagram.
- this embodiment displays the internal business flow table data corresponding to the business connection by responding to the selection instruction for the business connection on the visual business flow topology diagram.
- the current control strategy information and expected control strategy information of the network micro-segment corresponding to the business connection can also be displayed.
- the corresponding internal business flow table data of the business connection line can be presented, also referring to Figure 5, as shown in Figure 5, from the source address of IP 111.111.111.246 to the destination address of IP 111.111.111.214, sent to the TCP message flow data of port 5201, the current policy control is allowed.
- FIG. 6 is a timing diagram of an embodiment of the business data processing method of the present application.
- the user sends a business flow collection request to the analysis unit analyzer through the client portal.
- the analysis unit analyzer After receiving the business flow collection request and analyzing the business flow collection request, the analysis unit analyzer sends the business flow collection request to the information collection unit agent of each server in the current environment.
- the information collection unit agent sends the corresponding OVS flow table query instruction to the virtual switch OVS on each server according to the business collection request.
- the virtual switch OVS obtains the original flow table data of each server in the current environment through query, and returns the original flow table data to the information collection unit agent.
- the information collection unit agent then outputs the original flow table data in the string format in a structured manner to obtain structured flow table data.
- the structured flow table data whose first input port and/or the first output port is a port of a business load node in the current environment is screened out as business-related flow table data.
- the information collection unit agent also divides each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data.
- the process of dividing each of the service-related flow table data can also be performed by the analysis unit analyzer.
- the analysis unit analyzer divides each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data.
- the five-tuple information of the source end flow table data and the destination end flow table data is spliced to obtain the second spliced flow table data
- the first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment
- the internal business flow table data is sent to the client portal.
- the client portal constructs and outputs a visualized business flow topology diagram of the current environment by performing a visualized topology operation on the internal business flow table data.
- the technical solution of the present application is essentially or the part that contributes to the prior art can be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) as described above, including a number of instructions for a terminal device (which can be a mobile phone, computer, server, or network device, etc.) to execute the methods described in each embodiment of the present application.
- a storage medium such as ROM/RAM, magnetic disk, optical disk
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Mining & Analysis (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present application relates to the technical field of communications, and discloses a service data processing method and device, and a computer-readable storage medium. The method comprises: on the basis of an OVS flow table query instruction, collecting original flow table data of each server in a current environment; performing structured processing on the original flow table data, and determining structured flow table data corresponding to the original flow table data; according to first transmission port information of the structured flow table data, screening the structured flow table data, and determining service-related flow table data in the structured flow table data; and according to second transmission port information and quintuple information of the service-related flow table data, splicing the service-related flow table data, and determining internal service flow table data in the current environment.
Description
相关申请Related Applications
本申请要求于2022年9月28号申请的、申请号为202211193829.9的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims priority to Chinese patent application No. 202211193829.9 filed on September 28, 2022, the entire contents of which are incorporated by reference into this application.
本申请涉及通信技术领域,尤其涉及一种业务数据处理方法、设备及计算机可读存储介质。The present application relates to the field of communication technology, and in particular to a business data processing method, device and computer-readable storage medium.
传统数据中心的安全方法主要依靠外围防御来保护南-北流量(即数据中心内部与数据中心外部之间的流量),但数据中心中东-西流量(即数据中心中不同业务负载之间的流量)无法检测。Traditional data center security approaches rely primarily on perimeter defenses to protect north-south traffic (i.e., traffic between inside and outside the data center), but east-west traffic within the data center (i.e., traffic between different business loads in the data center) cannot be detected.
在网络微分段应用场景中,为了方便用户明确需要控制的业务流,需要给用户呈现出环境上所有业务流数据。而数据的获取就需要先对环境上的所有流数据进行采集。传统的业务流数据采集的方法,是通过进行抓包的方式进行采集。In the network micro-segmentation application scenario, in order to facilitate users to clearly identify the business flows that need to be controlled, it is necessary to present all business flow data in the environment to users. To obtain data, it is necessary to first collect all flow data in the environment. The traditional method of collecting business flow data is to collect it by capturing packets.
但是对于大规模环境,业务数据量十分庞大,如果进行全环境抓包来采集业务数据,需要创建很多的抓包映射端口,从而导致了业务流数据采集的效率较低,且会降低当前环境的报文转发性能的技术问题。However, in large-scale environments, the amount of business data is very large. If full-environment packet capture is performed to collect business data, many packet capture mapping ports need to be created, resulting in low efficiency in business flow data collection and reducing the technical problem of message forwarding performance in the current environment.
发明内容Summary of the invention
本申请的主要目的在于提供一种业务数据处理方法、设备及计算机可读存储介质,旨在解决业务流数据采集的效率较低,且会降低当前环境的报文转发性能的技术问题。The main purpose of this application is to provide a business data processing method, device and computer-readable storage medium, aiming to solve the technical problem that the efficiency of business flow data collection is low and the message forwarding performance in the current environment is reduced.
为实现上述目的,第一方面,本申请提供一种业务数据处理方法,所述业务数据处理方法包括:To achieve the above objectives, in a first aspect, the present application provides a business data processing method, the business data processing method comprising:
基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;Based on the OVS flow table query instruction, collect the original flow table data of each server in the current environment;
对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结
构化流表数据;The original flow table data is structured to determine the structure corresponding to the original flow table data. Structure the flow table data;
根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;According to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each service-related flow table data in the structured flow table data;
根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。According to the second transmission port information and the five-tuple information of each of the business-related flow table data, each of the business-related flow table data is spliced to determine the internal business flow table data in the current environment.
基于以上技术方案,通过基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结构化流表数据;根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。本实施例通过OVS流表查询指令进行流表数据采集,规避了映射端口残留的问题,即提高了业务流数据的采集效率,又规避了映射端口残留的问题,避免影响当前环境的报文转发性能,以及当前环境的正常使用,并通过流表数据的传输口信息和五元组信息进行拼接,确定所述当前环境下的内部业务流表数据,保证了所述内部业务流表数据的完整性。Based on the above technical solution, the original flow table data of each server in the current environment is collected based on the OVS flow table query instruction; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment. This embodiment collects flow table data through the OVS flow table query instruction, which avoids the problem of residual mapping ports, that is, improves the collection efficiency of business flow data, and avoids the problem of residual mapping ports, avoiding affecting the message forwarding performance of the current environment, and the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing through the transmission port information and five-tuple information of the flow table data, ensuring the integrity of the internal business flow table data.
示例性的,所述业务数据处理方法的执行主体为业务数据处理设备。Exemplarily, the execution subject of the business data processing method is a business data processing device.
第二方面,本申请提供了一种业务数据处理设备,所述业务数据处理设备包括:存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述计算机程序配置为实现如上所述的业务数据处理方法的步骤。In a second aspect, the present application provides a business data processing device, which includes: a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the computer program is configured to implement the steps of the business data processing method as described above.
第三方面,本申请提供了一种计算机可读存储介质,所述计算机可读存储介质中存储了计算机程序,当所述计算机程序被处理器执行时,使得处理器执行如上述第一方面或第一方面的可能的实现方式中任一项所述的业务数据处理方法。In a third aspect, the present application provides a computer-readable storage medium, which stores a computer program. When the computer program is executed by a processor, the processor executes a business data processing method as described in any one of the first aspect or possible implementations of the first aspect.
第四方面,本申请实施例提供了一种计算机程序,该计算机程序包括用于执行第一方面以及第一方面的任意可能的实现方式中的业务数据处理方法
的指令。In a fourth aspect, an embodiment of the present application provides a computer program, which includes a method for executing the business data processing method in the first aspect and any possible implementation of the first aspect. Instructions.
图1是本申请实施例方案涉及的硬件运行环境的业务数据处理设备的结构示意图;FIG1 is a schematic diagram of the structure of a business data processing device in a hardware operating environment involved in an embodiment of the present application;
图2为本申请业务数据处理方法一实施例的流程示意图;FIG2 is a flow chart of an embodiment of a method for processing business data of the present application;
图3为本申请业务数据处理方法一实施例的应用场景图;FIG3 is an application scenario diagram of an embodiment of a business data processing method of the present application;
图4为本申请业务数据处理方法另一实施例的流程示意图;FIG4 is a flow chart of another embodiment of the business data processing method of the present application;
图5为本申请业务数据处理方法一实施例中的可视化业务流拓扑图;FIG5 is a visualized business flow topology diagram in an embodiment of a business data processing method of the present application;
图6为本申请业务数据处理方法一实施例的时序图。FIG6 is a timing diagram of an embodiment of a business data processing method of the present application.
本申请目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The realization of the purpose, functional features and advantages of this application will be further explained in conjunction with embodiments and with reference to the accompanying drawings.
下面将结合本申请实施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。The following will be combined with the drawings in the embodiments of the present application to clearly and completely describe the technical solutions in the embodiments of the present application. Obviously, the described embodiments are part of the embodiments of the present application, not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by ordinary technicians in this field without creative work are within the scope of protection of this application.
本文中术语“和/或”,仅仅是一种描述关联对象的关联关系,表示可以存在三种关系,例如,A和/或B,可以表示:单独存在A,同时存在A和B,单独存在B这三种情况。The term "and/or" in this article is merely a description of the association relationship of associated objects, indicating that three relationships may exist. For example, A and/or B can mean: A exists alone, A and B exist at the same time, and B exists alone.
本申请实施例的说明书和权利要求书中的术语“第一”和“第二”等是用于区别不同的对象,而不是用于描述对象的特定顺序。例如,第一目标对象和第二目标对象等是用于区别不同的目标对象,而不是用于描述目标对象的特定顺序。The terms "first" and "second" in the description and claims of the embodiments of the present application are used to distinguish different objects rather than to describe a specific order of objects. For example, a first target object and a second target object are used to distinguish different target objects rather than to describe a specific order of target objects.
在本申请实施例中,“示例性的”或者“例如”等词用于表示作例子、例证或说明。本申请实施例中被描述为“示例性的”或者“例如”的任何实施例或设计方案不应被解释为比其它实施例或设计方案更优选或更具优势。确切而言,使用“示例性的”或者“例如”等词旨在以具体方式呈现相关概念。
In the embodiments of the present application, words such as "exemplary" or "for example" are used to indicate examples, illustrations or descriptions. Any embodiment or design described as "exemplary" or "for example" in the embodiments of the present application should not be interpreted as being more preferred or more advantageous than other embodiments or designs. Specifically, the use of words such as "exemplary" or "for example" is intended to present related concepts in a specific way.
在本申请实施例的描述中,除非另有说明,“多个”的含义是指两个或两个以上。例如,多个处理单元是指两个或两个以上的处理单元;多个系统是指两个或两个以上的系统。In the description of the embodiments of the present application, unless otherwise specified, the meaning of "multiple" refers to two or more than two. For example, multiple processing units refer to two or more processing units; multiple systems refer to two or more systems.
为了下述各实施例的描述清楚简洁,首先给出一种业务数据处理方法的实现方案的简要介绍:In order to make the description of the following embodiments clear and concise, a brief introduction to an implementation scheme of a business data processing method is first given:
传统数据中心的安全方法主要依靠外围防御来保护南-北流量(即数据中心内部与数据中心外部之间的流量),但数据中心中东-西流量(即数据中心中不同业务负载之间的流量)无法检测。Traditional data center security approaches rely primarily on perimeter defenses to protect north-south traffic (i.e., traffic between inside and outside the data center), but east-west traffic within the data center (i.e., traffic between different business loads in the data center) cannot be detected.
在网络微分段应用场景中,为了方便用户明确需要控制的业务流,需要给用户呈现出环境上所有业务流数据。而数据的获取就需要先对环境上的所有流数据进行采集。传统的业务流数据采集的方法,是通过进行抓包的方式进行采集。In the network micro-segmentation application scenario, in order to facilitate users to clearly identify the business flows that need to be controlled, it is necessary to present all business flow data in the environment to users. To obtain data, it is necessary to first collect all flow data in the environment. The traditional method of collecting business flow data is to collect it by capturing packets.
但是对于大规模环境,业务数据量十分庞大,如果进行全环境抓包来采集业务数据,需要创建很多的抓包映射端口,从而一方面现有业务数据处理方法需要将环境上的所有数据流进行采集并分析,导致了业务流数据采集的效率较低;另一方面则是过多的抓包映射端口,会降低当前环境的报文转发性能,并且容易发生端口残留,进而影响当前环境的正常使用。However, for large-scale environments, the amount of business data is very large. If packet capture is performed in the entire environment to collect business data, many packet capture mapping ports need to be created. Therefore, on the one hand, the existing business data processing method needs to collect and analyze all data flows in the environment, resulting in low efficiency in business flow data collection; on the other hand, too many packet capture mapping ports will reduce the message forwarding performance of the current environment, and port residues are likely to occur, thereby affecting the normal use of the current environment.
本申请设计了一种通过OVS流表查询指令进行流表数据采集,并通过流表数据的传输口信息和五元组信息进行拼接,确定所述当前环境下的内部业务流表数据的方法,即提高了业务流数据的采集效率,又规避了映射端口残留的问题,避免影响当前环境的报文转发性能,以及当前环境的正常使用。The present application designs a method for collecting flow table data through OVS flow table query instructions, and splicing the transmission port information and five-tuple information of the flow table data to determine the internal business flow table data in the current environment, which improves the collection efficiency of business flow data and avoids the problem of residual mapping ports, avoids affecting the message forwarding performance of the current environment, and the normal use of the current environment.
在一些实施例中,通过基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结构化流表数据;根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。本实施例通过OVS流表查询指令进行流表数据采集,规避了映射端口
残留的问题,即提高了业务流数据的采集效率,又规避了映射端口残留的问题,避免影响当前环境的报文转发性能,以及当前环境的正常使用,并通过流表数据的传输口信息和五元组信息进行拼接,确定所述当前环境下的内部业务流表数据,保证了所述内部业务流表数据的完整性。In some embodiments, based on the OVS flow table query instruction, the original flow table data of each server in the current environment is collected; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment. This embodiment collects flow table data through OVS flow table query instructions, avoiding the mapping port. The residual problem is solved, which improves the collection efficiency of business flow data and avoids the problem of mapping port residue, avoids affecting the message forwarding performance of the current environment and the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing the transmission port information and the five-tuple information of the flow table data, thereby ensuring the integrity of the internal business flow table data.
在一些实施例中,获得所述当前环境的内部业务流表数据之后,通过根据所述内部业务流表数据,确定所述当前环境下的业务负载节点,以及所述业务负载节点之间的关联关系;根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图。In some embodiments, after obtaining the internal business flow table data of the current environment, the business load nodes in the current environment and the association relationship between the business load nodes are determined based on the internal business flow table data; based on the association relationship, the business load nodes are connected through business lines to construct and output a visual business flow topology diagram of the current environment.
本实施例中通过根据所述内部业务流表数据,确定所述当前环境下的业务负载节点,以及所述业务负载节点之间的关联关系,进而根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图,从而可以使得用户直观地了解所述当前环境下各所述业务负载节点之间的业务关系。In this embodiment, the business load nodes in the current environment and the association relationship between the business load nodes are determined based on the internal business flow table data, and then the business load nodes are connected through business lines based on the association relationship, and a visual business flow topology diagram of the current environment is constructed and output, so that the user can intuitively understand the business relationship between each business load node in the current environment.
参照图1,图1为本申请实施例方案涉及的硬件运行环境的业务数据处理设备结构示意图。Refer to Figure 1, which is a schematic diagram of the structure of a business data processing device in the hardware operating environment involved in the embodiment of the present application.
如图1所示,该业务数据处理设备可以包括:处理器1001,例如中央处理器(Central Processing Unit,CPU),通信总线1002、用户接口1003,网络接口1004,存储器1005。其中,通信总线1002用于实现这些组件之间的连接通信。用户接口1003可以包括显示屏(Display)、输入单元比如键盘(Keyboard),用户接口1003还可以包括标准的有线接口、无线接口。网络接口1004可以包括标准的有线接口、无线接口(如无线保真(Wireless-Fidelity,WI-FI)接口)。存储器1005可以是高速的随机存取存储器(Random Access Memory,RAM),也可以是稳定的非易失性存储器(Non-Volatile Memory,NVM),例如磁盘存储器。存储器1005还可以是独立于前述处理器1001的存储装置。As shown in FIG1 , the business data processing device may include: a processor 1001, such as a central processing unit (CPU), a communication bus 1002, a user interface 1003, a network interface 1004, and a memory 1005. Among them, the communication bus 1002 is used to realize the connection and communication between these components. The user interface 1003 may include a display screen (Display), an input unit such as a keyboard (Keyboard), and the user interface 1003 may also include a standard wired interface and a wireless interface. The network interface 1004 may include a standard wired interface and a wireless interface (such as a wireless fidelity (Wireless-Fidelity, WI-FI) interface). The memory 1005 may be a high-speed random access memory (Random Access Memory, RAM) or a stable non-volatile memory (Non-Volatile Memory, NVM), such as a disk storage. The memory 1005 may also be a storage device independent of the aforementioned processor 1001.
本领域技术人员可以理解,图1中示出的结构并不构成对业务数据处理设备的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件布置。Those skilled in the art will appreciate that the structure shown in FIG. 1 does not constitute a limitation on the business data processing device, and may include more or fewer components than shown in the figure, or a combination of certain components, or a different arrangement of components.
如图1所示,作为一种存储介质的存储器1005中可以包括操作系统、数
据存储模块、网络通信模块、用户接口模块以及计算机程序。As shown in FIG1 , the memory 1005 as a storage medium may include an operating system, a data Data storage module, network communication module, user interface module and computer program.
在图1所示的业务数据处理设备中,网络接口1004主要用于与其他设备进行数据通信;用户接口1003主要用于与用户进行数据交互;本申请业务数据处理设备中的处理器1001、存储器1005可以设置在业务数据处理设备中,所述业务数据处理设备通过处理器1001调用存储器1005中存储的计算机程序,并执行本申请实施例提供的业务数据处理方法。In the business data processing device shown in Figure 1, the network interface 1004 is mainly used for data communication with other devices; the user interface 1003 is mainly used for data interaction with the user; the processor 1001 and the memory 1005 in the business data processing device of the present application can be set in the business data processing device, and the business data processing device calls the computer program stored in the memory 1005 through the processor 1001, and executes the business data processing method provided in the embodiment of the present application.
应当理解的是,上述说明仅是为了更好的理解本实施例的技术方案而列举的示例,不作为对本实施例的唯一限制。It should be understood that the above description is merely an example listed for a better understanding of the technical solution of this embodiment, and is not intended to be the sole limitation to this embodiment.
下面结合图2所示的业务数据处理方法一实施例的流程示意图,对业务数据处理方法进行详细说明。The following describes the business data processing method in detail with reference to the flowchart of an embodiment of the business data processing method shown in FIG. 2 .
参见图2,本申请的业务数据处理方法一实施例具体包括:Referring to FIG. 2 , an embodiment of a business data processing method of the present application specifically includes:
步骤S10,基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;Step S10, based on the OVS flow table query instruction, collect the original flow table data of each server in the current environment;
在一些实施例中,本申请的业务数据处理方法的执行主体可以是业务数据处理设备。In some embodiments, the execution subject of the business data processing method of the present application may be a business data processing device.
具体地,所述OVS流表查询指令为用于指示OVS(Open vSwitch,虚拟交换机)进行流表查询的指令。所述当前环境为根据应用需求为各所述服务器所搭建的当前应用环境,例如Linux+Apache(Nginx)+Mysql+Php(也就是LAMP/LNMP环境)、WINDOWS+IIS+ASP/.NET+MSSQL环境。所述当前环境为支持所述OVS查询指令的实现,需要具备OVS功能,即所述当前环境下的各服务器内部部署有OVS,用于实现虚拟机之间交换。本实施例将OVS流表查询指令下发至所述当前环境下的各服务器内的OVS,通过OVS对服务器内部的流表进行查询,从而可以采集到当前环境下各服务器的原始流表数据。Specifically, the OVS flow table query instruction is an instruction for instructing OVS (Open vSwitch, virtual switch) to perform a flow table query. The current environment is the current application environment built for each server according to application requirements, such as Linux+Apache (Nginx)+Mysql+Php (that is, LAMP/LNMP environment), WINDOWS+IIS+ASP/.NET+MSSQL environment. In order to support the implementation of the OVS query instruction, the current environment needs to have OVS functions, that is, each server in the current environment is internally deployed with OVS for realizing exchange between virtual machines. In this embodiment, the OVS flow table query instruction is sent down to the OVS in each server in the current environment, and the flow table inside the server is queried by OVS, so that the original flow table data of each server in the current environment can be collected.
在一些实施例中,各所述服务器部署有信息采集单元,步骤S10基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据的步骤,包括:In some embodiments, each of the servers is deployed with an information collection unit, and step S10 is a step of collecting original flow table data of each server in the current environment based on the OVS flow table query instruction, including:
步骤S11,响应于业务流采集请求,将所述业务流采集请求下发至当前环境下各服务器的信息采集单元,以使Step S11, in response to the service flow collection request, the service flow collection request is sent to the information collection unit of each server in the current environment, so that
各所述信息采集单元根据所述业务采集请求下发对应的OVS流表查询指令至各所述服务器上的虚拟交换机,查询得到当前环境下各所述服务器的原
始流表数据。Each of the information collection units sends a corresponding OVS flow table query instruction to the virtual switch on each of the servers according to the service collection request, and obtains the original information of each of the servers in the current environment. Initial flow table data.
在一些实施例中,所述业务流采集请求可以包括采集周期和采集间隔。In some embodiments, the service flow collection request may include a collection period and a collection interval.
本实施例中,在接收到用户的业务流采集请求时,响应于业务流采集请求,将所述业务流采集请求下发至当前环境下各服务器的信息采集单元。各所述信息采集单元在接收到所述业务采集请求后,根据所述业务采集请求中的采集周期和采集间隔,下发对应的OVS流表查询指令至各所述服务器上的虚拟交换机,从而各所述服务器上的虚拟交换机对各所述服务器的流表进行查询,确定各所述服务器的原始流表数据,并返回所述原始流表数据。In this embodiment, when a service flow collection request from a user is received, the service flow collection request is sent to the information collection unit of each server in the current environment in response to the service flow collection request. After receiving the service collection request, each information collection unit sends a corresponding OVS flow table query instruction to the virtual switch on each server according to the collection cycle and collection interval in the service collection request, so that the virtual switch on each server queries the flow table of each server, determines the original flow table data of each server, and returns the original flow table data.
参照图3,图3为本申请业务数据处理方法一实施例的应用场景图。图3中agent是部署在所述当前环境下各服务器上的信息采集单元,负责采集所述原始流表数据并上送给analyzer。analyzer是部署在当前环境的控制节点服务器上的分析单元,负责接收用户通过portal(客户端)发送的业务流采集请求并下发给各agent,并且接收汇总agent上报的信息并上送给用户。Refer to Figure 3, which is an application scenario diagram of an embodiment of the business data processing method of the present application. In Figure 3, the agent is an information collection unit deployed on each server in the current environment, responsible for collecting the original flow table data and sending it to the analyzer. The analyzer is an analysis unit deployed on the control node server of the current environment, responsible for receiving the business flow collection request sent by the user through the portal (client) and sending it to each agent, and receiving and summarizing the information reported by the agent and sending it to the user.
本实施例中,通过响应于业务流采集请求,将所述业务流采集请求下发至当前环境下各服务器的信息采集单元,以使各所述信息采集单元根据所述业务采集请求下发对应的OVS流表查询指令至各所述服务器上的虚拟交换机,查询得到当前环境下各所述服务器的原始流表数据。一方面通过OVS流表查询指令至各所述服务器上的虚拟交换机查询流表数据,可以规避传统抓包方式映射端口残留的问题,另一方面通过在各所述服务器部署信息采集单元的方式也能有效提高所述原始流表数据的采集效率。In this embodiment, by responding to the service flow collection request, the service flow collection request is sent to the information collection unit of each server in the current environment, so that each information collection unit sends the corresponding OVS flow table query instruction to the virtual switch on each server according to the service collection request, and obtains the original flow table data of each server in the current environment. On the one hand, querying the flow table data to the virtual switch on each server through the OVS flow table query instruction can avoid the problem of residual mapping ports in the traditional packet capture method. On the other hand, the method of deploying information collection units on each server can also effectively improve the collection efficiency of the original flow table data.
步骤S20,对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结构化流表数据;Step S20, performing structured processing on the original flow table data to determine structured flow table data corresponding to the original flow table data;
在一些实施例中,所述结构化流表数据包括业务负载节点、流表的输入口(input)、输出口(output)、源端IP地址、目的端的IP地址、通信端口号、协议类型等。In some embodiments, the structured flow table data includes a service load node, an input port (input) and an output port (output) of the flow table, a source IP address, a destination IP address, a communication port number, a protocol type, and the like.
服务器的虚拟交换机返回的原始流表数据是字符串格式的流表。因此为了便于数据处理,需要对所述原始流表数据进行结构化处理。其中。所述结构化处理的过程为根据所述原始流表数据和预设流表结构体框架进行编译,从而获得所述原始流表数据对应的流表结构体(即所述结构化流表数据),以确定所述原始流表数据对应的结构化流表数据。
The original flow table data returned by the server's virtual switch is a flow table in a string format. Therefore, in order to facilitate data processing, the original flow table data needs to be structured. Among them. The process of the structured processing is to compile according to the original flow table data and the preset flow table structure framework, so as to obtain the flow table structure corresponding to the original flow table data (that is, the structured flow table data), so as to determine the structured flow table data corresponding to the original flow table data.
步骤S30,根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;Step S30, screening the structured flow table data according to the first transmission port information of the structured flow table data, and determining each service-related flow table data in the structured flow table data;
流表是针对特定流的策略表项的集合,负责数据包的查找和转发。因此,获得的所述结构化流表数据并非均与业务相关。为了确定所述结构化流表数据中与业务相关的各业务相关流表数据。由于所述结构化流表数据包含第一传输口信息,可以确定所述结构化流表对应的业务流的输出口和输入口。由此则可以通过所述结构化流表数据的第一传输口信息,确定所述结构化流表数据对应的业务流是否发生在各所述服务器的业务负载节点上,以对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据。The flow table is a collection of policy items for a specific flow, which is responsible for searching and forwarding data packets. Therefore, the structured flow table data obtained are not all related to the business. In order to determine the business-related flow table data in the structured flow table data. Since the structured flow table data contains the first transmission port information, the output port and input port of the business flow corresponding to the structured flow table can be determined. Therefore, the first transmission port information of the structured flow table data can be used to determine whether the business flow corresponding to the structured flow table data occurs on the business load node of each server, so as to screen the structured flow table data and determine the business-related flow table data in the structured flow table data.
在一些实施例中,所述第一传输口信息包括第一输入口和第一输出口,步骤S30根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据,包括:In some embodiments, the first transmission port information includes a first input port and a first output port, and step S30 screens the structured flow table data according to the first transmission port information of the structured flow table data to determine each service-related flow table data in the structured flow table data, including:
步骤S31,判断所述结构化流表数据的第一输入口或第一输出口是否为所述当前环境下业务负载节点的端口;Step S31, determining whether the first input port or the first output port of the structured flow table data is a port of a service load node in the current environment;
步骤S32,若所述第一输入口和/或所述第一输出口为所述当前环境下业务负载节点的端口,则判定所述结构化流表数据为业务相关流表数据。Step S32: If the first input port and/or the first output port is a port of a service load node in the current environment, it is determined that the structured flow table data is service-related flow table data.
在一些实施例中,所述业务负载节点为所述当前环境下用于实现各项业务的虚拟机。所述第一传输口信息包括第一输入口和第一输出口。In some embodiments, the service load node is a virtual machine used to implement various services in the current environment. The first transmission port information includes a first input port and a first output port.
由于所述结构化流表数据的第一输入口或第一输出口并不一定是虚拟机的端口,还有可能是物理端口和隧道。因此,为了避免遗漏业务流表数据,通过判断所述结构化流表数据的第一输入口或第一输出口是否为所述当前环境下业务负载节点的端口。若所述第一输入口和/或所述第一输出口为所述当前环境下业务负载节点的端口,则判定所述结构化流表数据为业务相关流表数据(即与业务相关的结构化流表数据)。若所述第一输入口且所述第一输出口均不为所述当前环境下业务负载节点的端口,则判定所述结构化流表数据不为业务相关流表数据,则可以舍弃。Since the first input port or the first output port of the structured flow table data is not necessarily a port of a virtual machine, it may also be a physical port and a tunnel. Therefore, in order to avoid missing business flow table data, it is determined whether the first input port or the first output port of the structured flow table data is a port of a business load node under the current environment. If the first input port and/or the first output port are ports of a business load node under the current environment, the structured flow table data is determined to be business-related flow table data (i.e., structured flow table data related to business). If the first input port and the first output port are not ports of a business load node under the current environment, the structured flow table data is determined to be not business-related flow table data, and can be discarded.
在本实施例中,通过判断所述结构化流表数据的第一输入口或第一输出口是否为所述当前环境下业务负载节点的端口,从而判定所述第一输入口和/或所述第一输出口为所述当前环境下业务负载节点的端口的结构化流表数据为业务相关流表数据,由此从所述结构化流表数据中筛选出与业务相关的业
务相关流表数据。In this embodiment, by judging whether the first input port or the first output port of the structured flow table data is a port of the service load node in the current environment, the structured flow table data whose first input port and/or the first output port is a port of the service load node in the current environment is judged to be service-related flow table data, thereby filtering out service-related service from the structured flow table data. Service-related flow table data.
步骤S40,根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。Step S40: splicing each of the service-related flow table data according to the second transmission port information and the five-tuple information of each of the service-related flow table data to determine the internal service flow table data in the current environment.
在一些实施例中,所述五元组信息包括:源IP地址,源端口,目的IP地址,目的端口和传输层协议。In some embodiments, the five-tuple information includes: source IP address, source port, destination IP address, destination port and transport layer protocol.
所述业务相关流表数据中存在只有输入口或输出口确定为所述当前环境下的业务负载节点的端口的流表数据,因此可能存在非所述当前环境下业务流的流表数据,即所述业务相关流表数据中可能存在所述当前环境下的业务负载节点与所述当前环境以外其他设备进行交互的业务流的流表数据。The business-related flow table data contains flow table data in which only the input port or the output port is determined to be the port of the business load node in the current environment. Therefore, there may be flow table data of business flows that are not in the current environment. That is, the business-related flow table data may contain flow table data of business flows in which the business load node in the current environment interacts with other devices outside the current environment.
由此,可以通过根据各所述业务相关流表数据中的第二传输口信息,可以确定输入口和输出口均为所述当前环境下的业务负载节点的端口的流表数据(即第一已拼接流表数据),以及各所述业务相关流表数据中只有输入口为所述当前环境下的业务负载节点的端口的流表数据(即源端流表数据)、只有输出口为所述当前环境下的业务负载节点的端口的流表数据(即目的端流表数据)。其中第一已拼接流表数据的输入口和输出口均为所述当前环境下的业务负载节点的端口,则显然是所述当前环境下的内部业务流表数据。Thus, according to the second transmission port information in each of the business-related flow table data, it is possible to determine the flow table data (i.e., the first spliced flow table data) whose input and output ports are both ports of the business load node in the current environment, and the flow table data (i.e., the source end flow table data) whose only input port in each of the business-related flow table data is the port of the business load node in the current environment, and the flow table data (i.e., the destination end flow table data) whose only output port is the port of the business load node in the current environment. Wherein the input port and output port of the first spliced flow table data are both ports of the business load node in the current environment, it is obviously the internal business flow table data in the current environment.
由于所述源端流表数据和目的端流表数据只有输入口或输出口确定是所述当前环境下的业务负载节点的端口,则有可能是非所述当前环境下业务流的流表数据。此外,由于输入口或输出口并不一定是虚拟机的端口,还有可能是物理端口和隧道,因此所述源端流表数据和目的端流表数据也可能是所述当前环境下的同一业务流的输入部分和输出部分。从而可以通过所述源端流表数据和所述目的端流表数据的五元组信息进行匹配。若匹配成功,则说明所述源端流表数据和目的端流表数据是所述当前环境下的同一业务流的输入部分和输出部分,则可以将所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据。将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据。Since only the input port or the output port of the source end flow table data and the destination end flow table data is determined to be the port of the business load node in the current environment, it is possible that it is the flow table data of the business flow that is not in the current environment. In addition, since the input port or the output port is not necessarily the port of the virtual machine, but may also be a physical port and a tunnel, the source end flow table data and the destination end flow table data may also be the input part and the output part of the same business flow in the current environment. Therefore, the five-tuple information of the source end flow table data and the destination end flow table data can be matched. If the match is successful, it means that the source end flow table data and the destination end flow table data are the input part and the output part of the same business flow in the current environment, then the source end flow table data and the destination end flow table data can be spliced to obtain the second spliced flow table data. The first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment.
在一些实施例中,步骤S40根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据的步骤,包括:
In some embodiments, step S40 splices each of the business-related flow table data according to the second transmission port information and the five-tuple information of each of the business-related flow table data to determine the internal business flow table data in the current environment, including:
步骤S41,根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据;Step S41, dividing each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data;
步骤S42,根据所述源端流表数据的五元组信息,生成第一流编码;Step S42, generating a first flow code according to the five-tuple information of the source end flow table data;
步骤S43,根据所述目的端流表数据的五元组信息,生成第二流编码;Step S43, generating a second flow code according to the five-tuple information of the destination end flow table data;
步骤S44,当所述第一流编码与所述第二流编码匹配时,将所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据;Step S44, when the first flow code matches the second flow code, splicing the source end flow table data and the destination end flow table data to obtain second spliced flow table data;
步骤S45,将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据。Step S45: Use the first spliced flow table data and the second spliced flow table data as internal service flow table data in the current environment.
在本实施例中,将各所述业务相关流表数据划分为只有输入口为所述当前环境下的业务负载节点的端口的流表数据(即源端流表数据)、只有输出口为所述当前环境下的业务负载节点的端口的流表数据(即目的端流表数据)以及输入口和输出口均为所述当前环境下的业务负载节点的端口的流表数据(即第一已拼接流表数据)。其中,第一已拼接流表数据的输入口和输出口均为所述当前环境下的业务负载节点的端口,显然所述第一已拼接流表数据对应的业务流为所述当前环境下的业务流,则所述第一已拼接流表数据也就是所述当前环境下的内部业务流表数据。所述源端流表数据和目的端流表数据只有输入口或输出口确定是所述当前环境下的业务负载节点的端口,则有可能是非所述当前环境下业务流的流表数据。此外,由于输入口或输出口并不一定是虚拟机的端口,还有可能是物理端口和隧道,因此所述源端流表数据和目的端流表数据也可能是所述当前环境下的同一业务流的输入部分和输出部分。In this embodiment, each of the service-related flow table data is divided into flow table data (i.e., source end flow table data) whose only input port is a port of a service load node under the current environment, flow table data (i.e., destination end flow table data) whose only output port is a port of a service load node under the current environment, and flow table data (i.e., first spliced flow table data) whose input port and output port are both ports of a service load node under the current environment. Among them, the input port and output port of the first spliced flow table data are both ports of a service load node under the current environment. Obviously, the service flow corresponding to the first spliced flow table data is the service flow under the current environment, and the first spliced flow table data is also the internal service flow table data under the current environment. If only the input port or the output port of the source end flow table data and the destination end flow table data are determined to be ports of a service load node under the current environment, then it is possible that they are flow table data of a service flow not under the current environment. In addition, since the input port or the output port is not necessarily a port of a virtual machine, and may also be a physical port and a tunnel, the source end flow table data and the destination end flow table data may also be the input part and the output part of the same service flow under the current environment.
由此,则可以根据所述源端流表数据的五元组信息,生成第一流编码,并根据所述目的端流表数据的五元组信息,生成第二流编码。其中所述第一流编码和第二流编码的生成方式可以是采用哈希算法对所述源端流表数据和所述目的端流表数据的五元组信息分别进行计算得到的。当所述第一流编码与所述第二流编码匹配时,说明所述源端流表数据和所述目的端流表数据分别为所述当前环境下的同一业务流的输入部分和输出部分,则可以将所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据。具体地,将所述源端流表数据和所述目的端流表数据进行拼接的方式可以是,
从所述源端流表数据提取出源端信息,其中所述源端信息包括所述源端流表数据的包头域、计数器和动作表中除输出口外的其他内容。从所述目的端流表数据提取出目的端信息,其中所述目的端信息包括目的端流表数据的计数器和动作表。将所述源端信息和所述目的端信息填入预设流表结构体框架,则获得所述第二已拼接流表数据。由此,所述第一已拼接流表数据和所述第二已拼接流表数据包括了所述当前环境下所有业务负载节点之间的业务流数据。则可以将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据。Therefore, a first flow code can be generated according to the five-tuple information of the source end flow table data, and a second flow code can be generated according to the five-tuple information of the destination end flow table data. The first flow code and the second flow code can be generated by respectively calculating the five-tuple information of the source end flow table data and the destination end flow table data using a hash algorithm. When the first flow code matches the second flow code, it means that the source end flow table data and the destination end flow table data are respectively the input part and the output part of the same business flow in the current environment, then the source end flow table data and the destination end flow table data can be spliced to obtain the second spliced flow table data. Specifically, the way to splice the source end flow table data and the destination end flow table data can be, Extract source information from the source flow table data, wherein the source information includes the packet header field, counter and other contents in the action table of the source flow table data except the output port. Extract destination information from the destination flow table data, wherein the destination information includes the counter and action table of the destination flow table data. Fill the source information and the destination information into the preset flow table structure framework to obtain the second spliced flow table data. Thus, the first spliced flow table data and the second spliced flow table data include the business flow data between all business load nodes in the current environment. Then, the first spliced flow table data and the second spliced flow table data can be used as internal business flow table data in the current environment.
本实施例中,通过根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据;并根据所述源端流表数据和所述目的端流表数据的五元组信息,将匹配的所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据;将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据,从而避免业务流表数据出现遗漏,保证了所述内部业务流表数据的完整性。In this embodiment, by dividing each of the business-related flow table data into source-end flow table data, destination-end flow table data and first spliced flow table data according to the second transmission port information in each of the business-related flow table data; and according to the five-tuple information of the source-end flow table data and the destination-end flow table data, the matching source-end flow table data and the destination-end flow table data are spliced to obtain the second spliced flow table data; the first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment, thereby avoiding omissions in the business flow table data and ensuring the integrity of the internal business flow table data.
在一些实施例中,第二传输口信息包括第二输入口和第二输出口,步骤S41根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据,包括:In some embodiments, the second transmission port information includes a second input port and a second output port, and step S41 divides each of the service-related flow table data into source end flow table data, destination end flow table data, and first spliced flow table data according to the second transmission port information in each of the service-related flow table data, including:
步骤A1,当所述第二输入口为所述当前环境下业务负载节点的端口,且所述第二输出口不为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为源端流表数据;Step A1, when the second input port is a port of a service load node in the current environment, and the second output port is not a port of a service load node in the current environment, determining that the service-related flow table data is source end flow table data;
步骤A2,当所述第二输入口不为所述当前环境下业务负载节点的端口,且所述第二输出口为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为目的端流表数据;Step A2, when the second input port is not a port of a service load node in the current environment, and the second output port is a port of a service load node in the current environment, determining that the service-related flow table data is a destination end flow table data;
步骤A3,当所述第二输入口和所述第二输出口均为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为第一已拼接流表数据。Step A3: when the second input port and the second output port are both ports of the service load node in the current environment, it is determined that the service-related flow table data is the first spliced flow table data.
在一些实施例中,第二传输口信息包括第二输入口和第二输出口。In some embodiments, the second transmission port information includes a second input port and a second output port.
本实施例通过所述业务相关流表数据的第二输入口和第二输出口对所述业务相关流表数据进行分类,划分为只有输入口为所述当前环境下的业务负载节点的端口的流表数据(即源端流表数据)、只有输出口为所述当前环境
下的业务负载节点的端口的流表数据(即目的端流表数据)以及输入口和输出口均为所述当前环境下的业务负载节点的端口的流表数据(即第一已拼接流表数据)。从而识别出需要进行拼接的源端流表数据与目的端流表数据,以及不需要进行拼接的第一已拼接流表数据。In this embodiment, the service-related flow table data is classified by the second input port and the second output port of the service-related flow table data into flow table data (i.e., source end flow table data) whose input port is a port of the service load node in the current environment and flow table data whose output port is a port of the service load node in the current environment. The flow table data of the port of the business load node under the current environment (i.e., the destination end flow table data) and the flow table data of the port of the business load node whose input port and output port are both under the current environment (i.e., the first spliced flow table data) are identified. Thus, the source end flow table data and the destination end flow table data that need to be spliced, and the first spliced flow table data that does not need to be spliced are identified.
在本实施例中,通过基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结构化流表数据;根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。本实施例通过OVS流表查询指令进行流表数据采集,规避了映射端口残留的问题,即提高了业务流数据的采集效率,又规避了映射端口残留的问题,避免影响当前环境的报文转发性能,以及当前环境的正常使用,并通过流表数据的传输口信息和五元组信息进行拼接,确定所述当前环境下的内部业务流表数据,保证了所述内部业务流表数据的完整性。In this embodiment, based on the OVS flow table query instruction, the original flow table data of each server in the current environment is collected; the original flow table data is structured to determine the structured flow table data corresponding to the original flow table data; according to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each business-related flow table data in the structured flow table data; according to the second transmission port information and five-tuple information of each business-related flow table data, each business-related flow table data is spliced to determine the internal business flow table data in the current environment. This embodiment collects flow table data through the OVS flow table query instruction, which avoids the problem of residual mapping ports, that is, improves the collection efficiency of business flow data, and avoids the problem of residual mapping ports, avoiding affecting the message forwarding performance of the current environment, as well as the normal use of the current environment, and determines the internal business flow table data in the current environment through splicing through the transmission port information and five-tuple information of the flow table data, thereby ensuring the integrity of the internal business flow table data.
下面结合图4所示的业务数据处理方法另一实施例的流程示意图,对所述业务数据处理方法进行详细说明。The business data processing method is described in detail below with reference to the flowchart diagram of another embodiment of the business data processing method shown in FIG. 4 .
参见图4,本申请的业务数据处理方法另一实施例中,在步骤S40根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据之后,所述业务数据处理方法还包括:Referring to FIG. 4 , in another embodiment of the service data processing method of the present application, in step S40, after splicing each of the service-related flow table data according to the second transmission port information and the five-tuple information of each of the service-related flow table data and determining the internal service flow table data in the current environment, the service data processing method further includes:
步骤S50,根据所述内部业务流表数据,确定所述当前环境下的业务负载节点,以及所述业务负载节点之间的关联关系;Step S50, determining the service load nodes in the current environment and the association relationship between the service load nodes according to the internal service flow table data;
步骤S51,根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图。Step S51, connecting the service load nodes through service lines according to the association relationship, constructing and outputting a visualized service flow topology diagram of the current environment.
在获得所述内部业务流表数据后,对所述内部业务流表数据进行分析,通过所述内部业务流表数据的输入口和输出口,可以确定所述当前环境下的业务负载节点,以及所述业务负载节点之间的关联关系。然后根据所述关联
关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图。其中所述业务连线用于指明所述业务负载节点之间的输入和输出方向。参照图5,图5为本申请业务数据处理方法一实施例中的可视化业务流拓扑图。图5中所述当前环境下有两个虚拟机(即业务负载节点),虚拟机1(vm1)属于业务1,提供view(查看)功能,虚拟机2(vm2)属于业务2,提供collect(采集)功能。两个虚拟机之间有相互ping(ping是一个服务命令,主要是向特定的目的主机发送请求报文,测试目的站是否可达及了解其有关状态)的报文流,虚拟机1(vm1)和虚拟机2(vm2)发起了TCP(Transmission Control Protocol,传输控制协议)请求,虚拟机2(vm2)有相应的回包报文流。由此,虚拟机1(vm1)和虚拟机2(vm2)存在两条ICMP(Internet Control Message Protocol,因特网报文控制协议)的流、一条TCP的请求流和一条TCP的应答流,一共四条业务流数据。图5中两条深灰色实线的业务连线用于表征这两条ICMP的流,浅灰色实线的业务连线用于表征TCP的请求流,浅灰色虚线的业务连线用于表征TCP的应答流。After obtaining the internal business flow table data, the internal business flow table data is analyzed, and the business load nodes in the current environment and the association relationship between the business load nodes can be determined through the input port and output port of the internal business flow table data. Relationship, the business load nodes are connected through business lines, and a visualized business flow topology diagram of the current environment is constructed and output. The business lines are used to indicate the input and output directions between the business load nodes. Referring to Figure 5, Figure 5 is a visualized business flow topology diagram in an embodiment of the business data processing method of the present application. In the current environment described in Figure 5, there are two virtual machines (i.e., business load nodes), virtual machine 1 (vm1) belongs to business 1 and provides a view function, and virtual machine 2 (vm2) belongs to business 2 and provides a collect function. There is a message flow of mutual ping (ping is a service command, which mainly sends a request message to a specific destination host to test whether the destination station is reachable and understand its relevant status) between the two virtual machines. Virtual machine 1 (vm1) and virtual machine 2 (vm2) initiate a TCP (Transmission Control Protocol) request, and virtual machine 2 (vm2) has a corresponding packet return message flow. Therefore, virtual machine 1 (vm1) and virtual machine 2 (vm2) have two ICMP (Internet Control Message Protocol) flows, one TCP request flow and one TCP response flow, a total of four business flow data. The two dark gray solid business lines in Figure 5 are used to represent the two ICMP flows, the light gray solid business line is used to represent the TCP request flow, and the light gray dotted business line is used to represent the TCP response flow.
在一些实施例中,步骤S51根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图,所述业务数据处理方法还包括:In some embodiments, step S51 connects the service load nodes through service lines according to the association relationship, constructs and outputs a visualized service flow topology diagram of the current environment, and the service data processing method further includes:
步骤B1,获取网络微分段的当前控制策略信息,根据所述当前控制策略信息对所述业务连线进行差异化显示。Step B1, obtaining current control strategy information of network micro-segmentation, and performing differentiated display on the service connection according to the current control strategy information.
在一些实施例中,所述网络微分段的当前控制策略信息包括禁止、允许和不控制。In some embodiments, the current control policy information of the network micro-segmentation includes prohibition, permission, and non-control.
为了便于用户更加直观地了解对于所述当前环境下所有业务负载节点之间的网络微分段的当前控制策略信息。可以在获得网络微分段的当前控制策略信息,根据所述当前控制策略信息对所述业务连线进行差异化显示。示例性地,可以对各业务负载节点之间的业务连线采用不同颜色、深浅、形状进行显示,如两个业务负载节点的当前控制策略信息为禁止时,则该两个业务负载节点之间的业务连线显示红色;两个业务负载节点的当前控制策略信息为允许时,则该两个业务负载节点之间的业务连线显示绿色;两个业务负载节点的当前控制策略信息为不控制时,则该两个业务负载节点之间的业务连线显示灰色。
In order to facilitate users to more intuitively understand the current control policy information of the network micro-segmentation between all business load nodes in the current environment. After obtaining the current control policy information of the network micro-segmentation, the business connection can be displayed differently according to the current control policy information. Exemplarily, the business connection between each business load node can be displayed in different colors, shades, and shapes. For example, when the current control policy information of two business load nodes is prohibited, the business connection between the two business load nodes is displayed in red; when the current control policy information of two business load nodes is allowed, the business connection between the two business load nodes is displayed in green; when the current control policy information of two business load nodes is not controlled, the business connection between the two business load nodes is displayed in gray.
在一些实施例中,在步骤S51根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图之后,包括:In some embodiments, after the business load nodes are connected through business lines according to the association relationship in step S51, and a visualized business flow topology diagram of the current environment is constructed and output, the process includes:
步骤C1,响应于针对所述可视化业务流拓扑图上的业务连线的选取指令,显示所述业务连线对应的内部业务流表数据。Step C1, in response to a selection instruction for a service line on the visualized service flow topology diagram, displaying internal service flow table data corresponding to the service line.
为了便于用户能够了解各所述业务负载节点之间业务流的详细信息,可以通过响应于针对所述可视化业务流拓扑图上的业务连线的选取指令,显示所述业务连线对应的内部业务流表数据。由此,本实施例通过响应于针对所述可视化业务流拓扑图上的业务连线的选取指令,显示所述业务连线对应的内部业务流表数据。从而提高了用户了解各所述业务负载节点之间业务流的详细信息的便利性。当然,还可以显示所述业务连线对应的网络微分段的当前控制策略信息和期望控制策略信息。示例性地,当用户点击某条业务连接线,能呈现出该条业务连接线的对应的内部业务流表数据,同样参照图5,如图5中是从IP为111.111.111.246源地址到IP为111.111.111.214目的地址,发送到端口为5201的TCP报文流数据,当前策略控制是允许。In order to facilitate the user to understand the detailed information of the business flow between each of the business load nodes, the internal business flow table data corresponding to the business connection can be displayed by responding to the selection instruction for the business connection on the visual business flow topology diagram. Thus, this embodiment displays the internal business flow table data corresponding to the business connection by responding to the selection instruction for the business connection on the visual business flow topology diagram. Thereby improving the convenience for users to understand the detailed information of the business flow between each of the business load nodes. Of course, the current control strategy information and expected control strategy information of the network micro-segment corresponding to the business connection can also be displayed. Exemplarily, when the user clicks on a certain business connection line, the corresponding internal business flow table data of the business connection line can be presented, also referring to Figure 5, as shown in Figure 5, from the source address of IP 111.111.111.246 to the destination address of IP 111.111.111.214, sent to the TCP message flow data of port 5201, the current policy control is allowed.
参照图6,图6为本申请业务数据处理方法一实施例的时序图。用户通过客户端portal向分析单元analyzer发送业务流采集请求,分析单元analyzer在接收到所述业务流采集请求对所述业务流采集请求进行分析后,将所述业务流采集请求下发至当前环境下各服务器的信息采集单元agent。从而信息采集单元agent根据所述业务采集请求下发对应的OVS流表查询指令至各所述服务器上的虚拟交换机OVS,虚拟交换机OVS通过查询得到当前环境下各所述服务器的原始流表数据,并将所述原始流表数据返回信息采集单元agent。信息采集单元agent再将字符串格式的原始流表数据进行结构化输出,得到结构化流表数据。然后通过判断所述结构化流表数据的第一输入口或第一输出口是否为所述当前环境下业务负载节点的端口,筛选出所述第一输入口和/或所述第一输出口为所述当前环境下业务负载节点的端口的结构化流表数据作为业务相关流表数据。信息采集单元agent还根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据。当然,将各所述业务相关流表数据划分的过程也可以由分析单元analyzer执行。然后分析单元analyzer根据所
述源端流表数据和所述目的端流表数据的五元组信息,将匹配的所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据,将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据,并将所述内部业务流表数据发送至客户端portal。客户端portal通过对所述内部业务流表数据执行可视化拓扑操作,构建并输出所述当前环境的可视化业务流拓扑图。Referring to Figure 6, Figure 6 is a timing diagram of an embodiment of the business data processing method of the present application. The user sends a business flow collection request to the analysis unit analyzer through the client portal. After receiving the business flow collection request and analyzing the business flow collection request, the analysis unit analyzer sends the business flow collection request to the information collection unit agent of each server in the current environment. Thus, the information collection unit agent sends the corresponding OVS flow table query instruction to the virtual switch OVS on each server according to the business collection request. The virtual switch OVS obtains the original flow table data of each server in the current environment through query, and returns the original flow table data to the information collection unit agent. The information collection unit agent then outputs the original flow table data in the string format in a structured manner to obtain structured flow table data. Then, by judging whether the first input port or the first output port of the structured flow table data is a port of a business load node in the current environment, the structured flow table data whose first input port and/or the first output port is a port of a business load node in the current environment is screened out as business-related flow table data. The information collection unit agent also divides each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data. Of course, the process of dividing each of the service-related flow table data can also be performed by the analysis unit analyzer. Then the analysis unit analyzer divides each of the service-related flow table data into source end flow table data, destination end flow table data and first spliced flow table data according to the second transmission port information in each of the service-related flow table data. The five-tuple information of the source end flow table data and the destination end flow table data is spliced to obtain the second spliced flow table data, the first spliced flow table data and the second spliced flow table data are used as the internal business flow table data in the current environment, and the internal business flow table data is sent to the client portal. The client portal constructs and outputs a visualized business flow topology diagram of the current environment by performing a visualized topology operation on the internal business flow table data.
需要说明的是,在本文中,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者系统不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者系统所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括该要素的过程、方法、物品或者系统中还存在另外的相同要素。It should be noted that, in this article, the terms "include", "comprises" or any other variations thereof are intended to cover non-exclusive inclusion, so that a process, method, article or system including a series of elements includes not only those elements, but also other elements not explicitly listed, or also includes elements inherent to such process, method, article or system. In the absence of further restrictions, an element defined by the sentence "comprises a ..." does not exclude the existence of other identical elements in the process, method, article or system including the element.
上述本申请实施例序号仅仅为了描述,不代表实施例的优劣。The serial numbers of the embodiments of the present application are for description only and do not represent the advantages or disadvantages of the embodiments.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到上述实施例方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在如上所述的一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,或者网络设备等)执行本申请各个实施例所述的方法。Through the description of the above implementation methods, those skilled in the art can clearly understand that the above-mentioned embodiment methods can be implemented by means of software plus a necessary general hardware platform, and of course by hardware, but in many cases the former is a better implementation method. Based on such an understanding, the technical solution of the present application is essentially or the part that contributes to the prior art can be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) as described above, including a number of instructions for a terminal device (which can be a mobile phone, computer, server, or network device, etc.) to execute the methods described in each embodiment of the present application.
以上仅为本申请的可选实施例,并非因此限制本申请的专利范围,凡是利用本申请说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本申请的专利保护范围内。
The above are only optional embodiments of the present application, and are not intended to limit the patent scope of the present application. Any equivalent structure or equivalent process transformation made using the contents of the present application specification and drawings, or directly or indirectly applied in other related technical fields, are also included in the patent protection scope of the present application.
Claims (10)
- 一种业务数据处理方法,其中,所述业务数据处理方法包括:A method for processing business data, wherein the method for processing business data comprises:基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据;Based on the OVS flow table query instruction, collect the original flow table data of each server in the current environment;对所述原始流表数据进行结构化处理,确定所述原始流表数据对应的结构化流表数据;Performing structured processing on the original flow table data to determine structured flow table data corresponding to the original flow table data;根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据;According to the first transmission port information of the structured flow table data, the structured flow table data is screened to determine each service-related flow table data in the structured flow table data;根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据。According to the second transmission port information and the five-tuple information of each of the business-related flow table data, each of the business-related flow table data is spliced to determine the internal business flow table data in the current environment.
- 如权利要求1所述的业务数据处理方法,其中,各所述服务器部署有信息采集单元,所述基于OVS流表查询指令,采集当前环境下各服务器的原始流表数据的步骤,包括:The service data processing method according to claim 1, wherein each of the servers is deployed with an information collection unit, and the step of collecting the original flow table data of each server in the current environment based on the OVS flow table query instruction comprises:响应于业务流采集请求,将所述业务流采集请求下发至当前环境下各服务器的信息采集单元,以使In response to the service flow collection request, the service flow collection request is sent to the information collection unit of each server in the current environment, so that各所述信息采集单元根据所述业务采集请求下发对应的OVS流表查询指令至各所述服务器上的虚拟交换机,查询得到当前环境下各所述服务器的原始流表数据。Each of the information collection units sends a corresponding OVS flow table query instruction to the virtual switch on each of the servers according to the service collection request, and obtains the original flow table data of each of the servers in the current environment through query.
- 如权利要求1所述的业务数据处理方法,其中,所述第一传输口信息包括第一输入口和第一输出口,所述根据所述结构化流表数据的第一传输口信息,对所述结构化流表数据进行筛选,确定所述结构化流表数据中的各业务相关流表数据的步骤,包括:The service data processing method according to claim 1, wherein the first transmission port information includes a first input port and a first output port, and the step of screening the structured flow table data according to the first transmission port information of the structured flow table data to determine each service-related flow table data in the structured flow table data comprises:判断所述结构化流表数据的第一输入口或第一输出口是否为所述当前环境下业务负载节点的端口;Determine whether the first input port or the first output port of the structured flow table data is a port of a service load node in the current environment;若所述第一输入口和/或所述第一输出口为所述当前环境下业务负载节点的端口,则判定所述结构化流表数据为业务相关流表数据。If the first input port and/or the first output port is a port of a service load node in the current environment, it is determined that the structured flow table data is service-related flow table data.
- 如权利要求3所述的业务数据处理方法,其中,所述根据各所述业务 相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据的步骤,包括:The business data processing method according to claim 3, wherein the The steps of combining the second transmission port information and the five-tuple information of the relevant flow table data, and determining the internal business flow table data under the current environment include:根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据;According to the second transmission port information in each of the service-related flow table data, each of the service-related flow table data is divided into source end flow table data, destination end flow table data and first spliced flow table data;根据所述源端流表数据的五元组信息,生成第一流编码;Generate a first flow code according to the five-tuple information of the source end flow table data;根据所述目的端流表数据的五元组信息,生成第二流编码;Generate a second flow code according to the five-tuple information of the destination end flow table data;当所述第一流编码与所述第二流编码匹配时,将所述源端流表数据和所述目的端流表数据进行拼接,获得第二已拼接流表数据;When the first flow code matches the second flow code, splicing the source end flow table data and the destination end flow table data to obtain second spliced flow table data;将所述第一已拼接流表数据和所述第二已拼接流表数据作为所述当前环境下的内部业务流表数据。The first spliced flow table data and the second spliced flow table data are used as internal business flow table data in the current environment.
- 如权利要求4所述的业务数据处理方法,其中,第二传输口信息包括第二输入口和第二输出口,所述根据各所述业务相关流表数据中的第二传输口信息,将各所述业务相关流表数据划分为源端流表数据、目的端流表数据和第一已拼接流表数据的步骤,包括:The service data processing method according to claim 4, wherein the second transmission port information includes a second input port and a second output port, and the step of dividing each of the service-related flow table data into source end flow table data, destination end flow table data, and first spliced flow table data according to the second transmission port information in each of the service-related flow table data comprises:当所述第二输入口为所述当前环境下业务负载节点的端口,且所述第二输出口不为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为源端流表数据;When the second input port is a port of a service load node in the current environment, and the second output port is not a port of a service load node in the current environment, determining that the service-related flow table data is source end flow table data;当所述第二输入口不为所述当前环境下业务负载节点的端口,且所述第二输出口为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为目的端流表数据;When the second input port is not a port of a service load node in the current environment, and the second output port is a port of a service load node in the current environment, determining that the service-related flow table data is destination end flow table data;当所述第二输入口和所述第二输出口均为所述当前环境下业务负载节点的端口时,判定所述业务相关流表数据为第一已拼接流表数据。When the second input port and the second output port are both ports of a service load node in the current environment, it is determined that the service-related flow table data is the first spliced flow table data.
- 如权利要求1至5中任一项所述的业务数据处理方法,其中,在所述根据各所述业务相关流表数据的第二传输口信息和五元组信息,对各所述业务相关流表数据进行拼接,确定所述当前环境下的内部业务流表数据的步骤之后,所述业务数据处理方法还包括:The service data processing method according to any one of claims 1 to 5, wherein, after the step of splicing each of the service-related flow table data according to the second transmission port information and the five-tuple information of each of the service-related flow table data to determine the internal service flow table data in the current environment, the service data processing method further comprises:根据所述内部业务流表数据,确定所述当前环境下的业务负载节点,以及所述业务负载节点之间的关联关系; Determine the service load nodes in the current environment and the association relationship between the service load nodes according to the internal service flow table data;根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图。According to the association relationship, the business load nodes are connected through business lines to construct and output a visualized business flow topology diagram of the current environment.
- 如权利要求6所述的业务数据处理方法,其中,所述根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图的步骤,所述业务数据处理方法还包括:The business data processing method according to claim 6, wherein the step of connecting the business load nodes through business lines according to the association relationship, and constructing and outputting a visualized business flow topology diagram of the current environment, the business data processing method further comprises:获取网络微分段的当前控制策略信息,根据所述当前控制策略信息对所述业务连线进行差异化显示。The current control strategy information of the network micro-segment is obtained, and the service connection is displayed in a differentiated manner according to the current control strategy information.
- 如权利要求6所述的业务数据处理方法,其中,在所述根据所述关联关系,通过业务连线对所述业务负载节点进行连接,构建并输出所述当前环境的可视化业务流拓扑图的步骤之后,包括:The business data processing method according to claim 6, wherein after the step of connecting the business load nodes through business lines according to the association relationship, and constructing and outputting a visualized business flow topology diagram of the current environment, the method comprises:响应于针对所述可视化业务流拓扑图上的业务连线的选取指令,显示所述业务连线对应的内部业务流表数据。In response to a selection instruction for a service line on the visualized service flow topology diagram, internal service flow table data corresponding to the service line is displayed.
- 一种业务数据处理设备,其中,所述业务数据处理设备包括:存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述计算机程序配置为实现如权利要求1至8中任一项所述的业务数据处理方法的步骤。A business data processing device, wherein the business data processing device comprises: a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the computer program is configured to implement the steps of the business data processing method as described in any one of claims 1 to 8.
- 一种计算机可读存储介质,其中,所述计算机可读存储介质上存储有计算机程序,所述计算机程序被处理器执行时实现如权利要求1至8任一项所述的业务数据处理方法的步骤。 A computer-readable storage medium, wherein a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the steps of the business data processing method according to any one of claims 1 to 8 are implemented.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211193829.9 | 2022-09-28 | ||
| CN202211193829.9A CN117834461A (en) | 2022-09-28 | 2022-09-28 | Service data processing method, equipment and computer readable storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| WO2024066639A1 true WO2024066639A1 (en) | 2024-04-04 |
Family
ID=90475874
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/CN2023/105406 WO2024066639A1 (en) | 2022-09-28 | 2023-06-30 | Service data processing method and device, and computer-readable storage medium |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN117834461A (en) |
| WO (1) | WO2024066639A1 (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106664261A (en) * | 2014-06-30 | 2017-05-10 | 华为技术有限公司 | Method, device, and system for configuring flow entries |
| CN112953927A (en) * | 2021-02-07 | 2021-06-11 | 中国科学院计算技术研究所 | Flow table query method and system based on flow table structure isolation in virtual switch |
| WO2021226948A1 (en) * | 2020-05-14 | 2021-11-18 | 深圳市欢太科技有限公司 | Data packet processing method and device based on open virtual switch (ovs) |
| CN113938400A (en) * | 2021-08-27 | 2022-01-14 | 曙光网络科技有限公司 | Flow table management and maintenance method, device and storage medium |
-
2022
- 2022-09-28 CN CN202211193829.9A patent/CN117834461A/en active Pending
-
2023
- 2023-06-30 WO PCT/CN2023/105406 patent/WO2024066639A1/en unknown
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106664261A (en) * | 2014-06-30 | 2017-05-10 | 华为技术有限公司 | Method, device, and system for configuring flow entries |
| WO2021226948A1 (en) * | 2020-05-14 | 2021-11-18 | 深圳市欢太科技有限公司 | Data packet processing method and device based on open virtual switch (ovs) |
| CN112953927A (en) * | 2021-02-07 | 2021-06-11 | 中国科学院计算技术研究所 | Flow table query method and system based on flow table structure isolation in virtual switch |
| CN113938400A (en) * | 2021-08-27 | 2022-01-14 | 曙光网络科技有限公司 | Flow table management and maintenance method, device and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN117834461A (en) | 2024-04-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11558426B2 (en) | Connection tracking for container cluster | |
| US10708146B2 (en) | Data driven intent based networking approach using a light weight distributed SDN controller for delivering intelligent consumer experience | |
| EP3449600B1 (en) | A data driven intent based networking approach using a light weight distributed sdn controller for delivering intelligent consumer experiences | |
| CN106953837B (en) | Security management system and security management method | |
| US11570090B2 (en) | Flow tracing operation in container cluster | |
| US9654395B2 (en) | SDN-based service chaining system | |
| US11196628B1 (en) | Monitoring container clusters | |
| US8578034B2 (en) | Optimized network device discovery | |
| JP5943331B2 (en) | Service process control method and network device | |
| TW202031021A (en) | Logical router comprising disaggregated network elements | |
| US20130305091A1 (en) | Drag and drop network topology editor for generating network test configurations | |
| CN104115463A (en) | A streaming method and system for processing network metadata | |
| EP2056559A1 (en) | Method and system for network simulation | |
| US11743206B2 (en) | Systems and methods for intelligent application grouping | |
| Rafiq et al. | Intent-based networking with proactive load distribution in data center using IBN manager and Smart Path manager | |
| US20190173750A1 (en) | A data driven orchestrated network using a voice activated light weight distributed SDN controller | |
| CN113783781A (en) | Method and device for interworking between virtual private clouds | |
| EP3096492B1 (en) | Page push method and system | |
| CN112953833B (en) | Method, system and gateway equipment for realizing three-layer route forwarding based on network bridge | |
| CN105323128B (en) | method, device and system for accessing front-end equipment to server | |
| CN105939344A (en) | TCP (Transmission Control Protocol) connection establishing method and device | |
| WO2024066639A1 (en) | Service data processing method and device, and computer-readable storage medium | |
| CN113259791B (en) | Information configuration method, electronic device and computer-readable storage medium | |
| US11438237B1 (en) | Systems and methods for determining physical links between network devices | |
| CN111901179A (en) | Method and system for managing Internet of things equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 23869887 Country of ref document: EP Kind code of ref document: A1 |