CN103647658A - Management method of network equipment in software-defined network system and controller - Google Patents

Management method of network equipment in software-defined network system and controller Download PDF

Info

Publication number
CN103647658A
CN103647658A CN201310616278.7A CN201310616278A CN103647658A CN 103647658 A CN103647658 A CN 103647658A CN 201310616278 A CN201310616278 A CN 201310616278A CN 103647658 A CN103647658 A CN 103647658A
Authority
CN
China
Prior art keywords
network equipment
controller
information
network
described network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310616278.7A
Other languages
Chinese (zh)
Other versions
CN103647658B (en
Inventor
吴鸿钟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Cloud Computing Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201310616278.7A priority Critical patent/CN103647658B/en
Publication of CN103647658A publication Critical patent/CN103647658A/en
Application granted granted Critical
Publication of CN103647658B publication Critical patent/CN103647658B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a management method of network equipment in a software-defined network system and a controller, and relates to the communication field. With the management method of the network equipment in the software-defined network system and the controller of the invention adopted, based on physical characteristics of the network equipment, the use performance of the network equipment can be improved under an SDN scene. The method comprises the following steps that: the software-defined network system includes the controller and the network equipment, wherein the controller is used for managing the communication of the network equipment and receiving information reported by the network equipment, wherein the information includes hardware information and attribute information of the network equipment; the attribute information is used for indicating whether the network equipment can be defined by the controller, and when the network equipment can be defined by the controller, the controller defines a data control function of the network equipment according to hardware information, and transmits a defining command to the network equipment, such that the network equipment can set the data control function according to the defining command.

Description

Management method and the controller of the network equipment in a kind of software defined network system
Technical field
The present invention relates to the communications field, relate in particular to management method and the controller of the network equipment in a kind of software defined network system.
Background technology
Software defined network (software defined network, SDN) be a kind of new network innovation framework, its core technology is by being used controller that network control plane and datum plane are separated, thereby realized the flexible control of network traffics, for the innovation of core network and application provides good platform.
For the assembly controller in SDN, it is the core of SDN that controller is communicated by letter with the synchronous and asynchronous of the network equipment of datum plane.But under SDN, because there is the variation of the network equipment in definition, the decoupling zero of datum plane and control plane can realize the independence of the network equipment of logic function and physics, like this, the application of the physical characteristic of equipment Network Based is due to the use of irrelevant this properties influence SDN scene lower network equipment of SDN logic function and physical function.
Summary of the invention
Embodiments of the invention provide management method and the controller of the network equipment in a kind of software defined network system.
For achieving the above object, embodiments of the invention adopt following technical scheme:
First aspect, provides the management method of the network equipment in a kind of software defined network system, and described software defined network system comprises controller and the described network equipment, and described controller is used for managing described network equipment communication, and described method comprises:
Described controller receives the information that the described network equipment reports, and described information comprises hardware information and the attribute information of the described network equipment; Wherein, described attribute information is used for showing whether the described network equipment can be defined by described controller;
When the described network equipment can be defined by described controller, described controller defines the Data Control function of the described network equipment according to described hardware information, and issue defined instruction to the described network equipment, make the described network equipment set described Data Control function according to described defined instruction.
In conjunction with first aspect, in the first mode in the cards, described method also comprises:
When the described network equipment can be defined by described controller, described controller issues control command to the described network equipment, makes the described network equipment carry out described control command.
In conjunction with first aspect, in the second mode in the cards, when the described network equipment cannot be defined by described controller, the service data information that described control also sends for receiving the described network equipment.
In conjunction with the first mode in the cards or the second mode in the cards of first aspect, in the third mode in the cards, the mode that described controller is communicated by letter with the described network equipment is asynchronous system.
Second aspect, provides a kind of controller, is applied in software defined network system, and described software defined network system comprises described controller and the network equipment, and described controller is used for managing described network equipment communication, and described controller comprises:
Receiving element, the information reporting for receiving the described network equipment, described information comprises hardware information and the attribute information of the described network equipment; Wherein, described attribute information is used for showing whether the described network equipment can be defined by described controller;
Processing unit, for when the described network equipment can be defined by described controller, defines the Data Control function of the described network equipment according to described hardware information;
Transmitting element, for issuing defined instruction to the described network equipment, makes the described network equipment set described Data Control function according to described defined instruction.
In conjunction with second aspect, in the first mode in the cards, described transmitting element, also, for when the described network equipment can be defined by described controller, issues control command to the described network equipment, makes the described network equipment carry out described control command.
In conjunction with second aspect, in the second mode in the cards, described receiving element, also, for when the described network equipment cannot be defined by described controller, receives the service data information that the described network equipment sends.
In conjunction with the first mode in the cards or the second mode in the cards of second aspect, in the third mode in the cards, the mode that described controller is communicated by letter with the described network equipment is asynchronous system.
The embodiment of the present invention provides management method and the controller of the network equipment in a kind of software defined network system, this software defined network system comprises controller and the network equipment, controller is for managing network device communication, by controller, receive the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller, when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, and issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing of required use during embodiment is described is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The management method schematic flow sheet of the network equipment in a kind of software defined network system that Fig. 1 provides for the embodiment of the present invention;
The management method schematic flow sheet of the network equipment in a kind of software defined network system that Fig. 2 provides for the embodiment of the present invention;
The management method schematic flow sheet of the network equipment in a kind of software defined network system that Fig. 3 provides for the embodiment of the present invention;
A kind of controller architecture schematic diagram that Fig. 4 provides for the embodiment of the present invention;
A kind of controller architecture schematic diagram that Fig. 5 provides for the embodiment of the present invention;
A kind of communication system architecture schematic diagram that Fig. 6 provides for the embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Embodiment based in the present invention, those of ordinary skills, not making the every other embodiment obtaining under creative work prerequisite, belong to the scope of protection of the invention.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, and software defined network system comprises controller and the network equipment, and controller, for managing network device communication, as shown in Figure 1, comprising:
101, controller receives the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller.
Wherein, SDN is a kind of new network innovation framework, and its core technology is separated network control plane and datum plane by use controller, thereby has realized the flexible control of network traffics.SDN controller is the core component of the network architecture, and the security system of the whole network that can receive to do for oneself provides the data message of the network equipment of basic service function, carries out the functions such as data communication with the network equipment.The network equipment here can be switch, server, fire compartment wall etc.
For the application characteristic of SDN scene lower network equipment, the network equipment under SDN scene can be divided into two classes, the definable network equipment and the not definable network equipment.For to the definable network equipment and can not distinguishing by define grid equipment, when controller receives the attribute information of the network equipment, controller is according to the type of the attribute information judgement network equipment.
When the network equipment is the parts that could realize based on hardware; during as hardware-related SDN safety component; for example encryption equipment must be achieved by hardware; need on the network equipment of encryption chip, carry out efficient cryptographic capabilities having; some virtual machine must be at believable credible platform module (the trusted platform module that has for another example; TPM) on the main frame of chip, move, otherwise virtual machine will lose the ability of safeguard protection.Like this, these safety components need to be defined with need, but these hardware-related safety components need to be defined as to specific parts, and at will not define.The network equipment reports SDN controller by hardware information and attribute information, so that SDN controller is determined the device type of the network equipment according to this hardware information, and determines according to attribute information whether this network equipment can be defined by controller.A specific implementation wherein, one of this use resides in an executable program HAgent in network equipment operating system (windows/linux).In HAgent program, set a upwards interface, for HAgent, the data message of the network equipment can be passed to SDN controller according to asynchronous (asynchronous) data structure of OpenFlow agreement, certainly, between controller and the network equipment, also can adopt the method for synchronization to communicate.The data communication is here not limited to OpenFlow agreement, can be also the communication of other agreement.
For the definable network equipment, the network equipment that for example fire compartment wall, intruding detection system (intrusion detection system, IDS) and anti-virus (anti-virus, AV) etc. are mainly carried out by software.That is to say, the network equipment of hardware independent can carry out software definition, and the network equipment at its place can receive the information of SDN controller data plane and control plane.
For the network equipment that can not carry out software definition, for example, certificate granting center (certificate authority, CA), auditing system, code upgrade and management etc.By dispose respectively a set of RAgent program on the network equipment, in order to represent that these network equipments can not carry out software definition.Like this, can not carry out the network equipment of software definition just by independent, be placed in an independent region, be equivalent to a SDN " isolated area ", by these network equipments, outside the definition of SDN, SDN controller can not define these network equipments.Wherein, RAgent is an executable program residing in network equipment operating system (windows/linux).
102, when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, and issues defined instruction to the network equipment, makes the network equipment control function according to defined instruction setting data.
For instance, when the attribute information reporting according to the network equipment when controller identifies the network equipment and can be defined by controller, when the HAgent in controller and the network equipment communicates, the hardware information that controller transmits HAgent is unified to gather with visual and is presented, and according to hardware information, determine the Data Control function of the network equipment, and issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data.
For instance, in the hardware information of the network equipment, relate to TPM hardware, controller just can be defined as this network equipment security server, credible cloud main frame etc., and issue defined instruction to this network equipment, the network equipment, after receiving defined instruction, just knows that equipment of itself should have the Data Control function of security server or credible cloud main frame.
In addition, when the attribute information reporting according to the network equipment when controller identifies the network equipment and can be defined by controller, just can issue control command to the network equipment, to the network equipment, issue the information of control plane, make the network equipment carry out the function corresponding with control command according to control command.From the angle of the network equipment that can be defined, just can both receive the information of control plane, also can receive the information of datum plane.
Wherein, for definable secure networking device, can be divided into again hardware-related secure networking device and with the secure networking device of hardware independent.For hardware-related secure networking device, such as encryption equipment, virtual machine etc., controller can only be defined as the specific network equipment, can not at will define, but its control plane still can be separated with datum plane, but still in SDN logical architecture, just the security device network of physics can not be multiplexing with the information interaction of SDN controller.Accordingly, the secure networking device parameter of these physics will remain unchanged, with correct location and the function realization of the network equipment that ensures safety.Wherein, parameter can comprise IP(internet protocol) address, medium access control (media access control, MAC), VLAN (virtual local area network, VLAN) and subnet etc.And with the secure networking device of hardware independent, the secure networking device of mainly being carried out by software such as fire compartment wall etc., can receive the control command that controller issues and it is defined.
For instance, when the attribute information reporting according to the network equipment when controller identifies the network equipment and cannot be defined by controller, also for the network equipment of SDN " isolated area ", the RAgent disposing can be to data surface implementing monitoring or audit or statistics, obtain the information of datum plane, and the information of this network equipment datum plane is sent to SDN controller, make SDN controller and the server of " isolated area " carry out data communication.Controller just receives service data information from the network equipment that can not be defined, and this service data information is with regard to monitor data as above, or Audit data or statistics.That is to say, for the network equipment of having disposed RAgent, in the situation that can not carrying out software definition, just only carry out communicating by letter of datum plane with SDN controller, and the information that does not receive the control plane of SDN controller is carried out software definition to the network equipment.Like this, the network equipment of SDN isolated area when not carrying out software definition, the fail safe that can improve SDN system.But the software systems of installing in the network equipment still can receive the information on self-controller, specifically can realize by the simultaneous asynchronous data transmissions structure of OpenFlow, certainly, also can realize by synchronous data transmission structure.Wherein, RAgent can have two interfaces, to lower interface, can make production firm to lower interface, the information such as data statistics, Internet Transmission state are uploaded to RAgent by this, the RAgent interface that makes progress can send to SDN controller according to the asynchronous data structure of OpenFlow or synchrodata structure by data.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, this software defined network system comprises controller and the network equipment, controller is for managing network device communication, by controller, receive the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller, when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, and issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, as shown in Figure 2, comprising:
201, the network equipment sends hardware information and the attribute information of the network equipment to controller, makes controller according to hardware information, determine the Data Control function of the network equipment, and attribute information is used for showing that the network equipment can be defined by controller.
Wherein, the network equipment here can be for being deployed with the equipment based on hard-wired parts, and controller is SDN controller.
For instance, controller can be defined as specific device type according to the attribute information judgement network equipment receiving.The concrete network equipment of working as is realized on this attribute information and being given the correct time by operation HAgent program, and the function that shows this network equipment is based on hard-wired.For example, as hardware-related SDN safety component: must on the server of encryption chip, carry out the encryption equipment of efficient cryptographic capabilities, and the virtual machine that must move on the main frame of the believable TPM of having chip etc.Wherein a specific implementation, is used one to reside in as the executable program HAgent in network equipment operating system (windows/linux), for showing that to controller the network equipment is for may be defined as particular device type.HAgent is also for reporting the hardware information of the network equipment instruction of SDN controller and reception controller.
At HAgent, the hardware information of the network equipment is reported after SDN controller, the hardware information that controller can transmit HAgent is unified to gather with visual and is presented, and according to this hardware information determine HAgent can hardware definition device type.For example, the hardware information that the HAgent of a certain server deploy reports comprises TPM hardware, and controller just can be defined as security server by this server, credible cloud main frame etc.Be that controller can be according to the Data Control function of hardware information define grid equipment, thereby issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data.
Wherein, in HAgent program, be provided with an interface upwards, for HAgent, by this interface that makes progress, data message can be passed to SDN controller according to the asynchronous data structure of OpenFlow, or according to synchrodata structure to controller report data message.The data communication is here not limited to OpenFlow agreement, can be also the communication of other agreement.
In addition, concerning being deployed with the definable particular network device of HAgent, its control plane still can be separated with datum plane, in the information interaction of the SDN controller still logical architecture in SDN, just the security device network of physics can not be multiplexing, for example having the server of TPM hardware is just safety means, can not be multiplexed with the equipment of other type.Accordingly, the secure networking device parameter of these physics (IP/MAC/VLAN/ subnet) will remain unchanged, with correct location and the function realization of the system safety network equipment that ensures safety.
202, the network equipment receives the control command that controller issues, and carries out control command.
Concrete, for being defined and being deployed with HAgent program, i.e. the hardware-related network equipment, controller has been determined after the device type of the network equipment according to hardware information, just can issue control command to the network equipment, make the network equipment carry out this control command.。
For being defined but do not dispose the network equipment of HAgent program, with the network equipment of hardware independent, can receive the instruction that controller issues, be the information of control plane, the network equipment is defined as required, that is to say that the network equipment that can be defined but not dispose HAgent program both can receive the information of control plane, also can receive the information of datum plane.
Like this, the network equipment that just can be defined is divided into the particular network device that can be defined and the network equipment that can be defined as required, thereby the physical characteristic of equipment Network Based improves the serviceability of the network equipment under SDN scene.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, the network equipment sends hardware information and the attribute information of the network equipment to controller, make controller according to hardware information, determine the Data Control function of the network equipment, attribute information is used for showing that the network equipment can be defined by controller, the network equipment receives the control command that controller issues, carry out control command, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, as shown in Figure 3, comprising:
301, the network equipment sends hardware information and the attribute information of the network equipment to controller, makes controller according to hardware information, determine the Data Control function of the network equipment, and attribute information is used for showing that the network equipment cannot be defined by controller.
For instance, the attribute information reporting when the network equipment when being deployed with RAgent program, shows that to controller this network equipment cannot be defined by controller.The network equipment here, for example can WeiCA center, auditing system and code upgrade and management and authentication server etc.
Wherein, RAgent, for residing in the executable program in network equipment operating system (windows/linux), for to network equipment data surface information implementing monitoring or audit or statistics, is forwarded to SDN controller by the information of local network device datum plane.In RAgent program, can set upwards interface and to lower interface.To lower interface, can by this, to lower interface, the information such as data statistics, Internet Transmission state be uploaded to for the production of manufacturer to the RAgent of the network equipment, upwards interface can pass to SDN controller according to the asynchronous data structure of OpenFlow by the data message of the network equipment so that SDN controller according to data message to network equipment distribution policy information.The data communication is here not limited to OpenFlow agreement, can be also the communication of other agreement
Like this, thereby be deployed with the network equipment that RAgent can not software definition just by independent, be placed in an independent region, be equivalent to one " SDN isolated area ", these network equipments are put outside the definition of SDN, but the software systems of installing on it still can receive from the information on SDN controller, keep asynchronous communication ability with SDN controller, thereby can provide basic security service, for example audit function for whole SDN system.
302, the network equipment, according to Data Control function, sends service data information to controller, to carry out datum plane with controller, communicates by letter.
Concrete, for the network equipment that cannot be defined by controller, the Data Control function that controller issues not is the information of controller control plane that the network equipment is issued, the network equipment is not defined, but the software systems on the network equipment still can receive the information on controller, specifically can realize by the simultaneous asynchronous data transmissions structure of OpenFlow, also can realize by synchronous data transmission structure.What this network equipment received from controller is exactly the information of datum plane, simultaneously, the RAgent program of disposing in the network equipment can send to controller by network equipment service data information, so that controller can be according to this service data information to network equipment distribution policy information.
Wherein, the service data information here can be that RAgent program has reported controller by the monitor data information of local network device or Audit data information or statistical information etc.
Like this, can there is not the variation of physical equipment in the network equipment of getting rid of outside SDN software definition, can improve better the security performance of SDN system.
The embodiment of the present invention provides the management method of the network equipment in a kind of software defined network system, the network equipment sends hardware information and the attribute information of the network equipment to controller, make controller according to hardware information, determine the Data Control function of the network equipment, attribute information is used for showing that the network equipment cannot be defined by controller, the network equipment is according to Data Control function, to controller, send service data information, to carry out datum plane with controller, communicate by letter, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.。
The embodiment of the present invention provides a kind of controller 01, is applied in software defined network system, and software defined network system comprises controller 01 and the network equipment, and controller, for managing network device communication, as shown in Figure 4, comprising:
Receiving element 011, the information reporting for receiving the network equipment, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller.
Processing unit 012, for when the network equipment can be defined by controller, according to the Data Control function of hardware information define grid equipment.
Transmitting element 013, for issuing defined instruction to the network equipment, makes the network equipment control function according to defined instruction setting data.
Optionally, transmitting element 013, can also issue control command to the network equipment for when the network equipment can be defined by controller, makes the network equipment carry out control command according to control command.
Optionally, receiving element 011, also for when the network equipment cannot be defined by controller, receives the service data information that the network equipment sends.。
Optionally, the mode that controller is communicated by letter with the network equipment is asynchronous system.
The embodiment of the present invention provides a kind of controller, be applied in software defined network system, software defined network system comprises controller and the network equipment, controller is for managing network device communication, by controller, receive the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller, when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, and issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.
The embodiment of the present invention provides a kind of controller 02, be applied in software defined network system, software defined network system comprises controller and the network equipment, controller is for managing network device communication, as shown in Figure 5, comprise bus 041, processor 042, reflector 043, receiver 044, and memory 045, wherein, memory 045 is for storing instruction and data, and receiver 044 is carried out this instruction for receiving the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller, processor 042 is carried out this instruction for when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, reflector 043, for issuing defined instruction to the network equipment, makes the network equipment control function according to defined instruction setting data.
In embodiments of the present invention, optional, reflector 043 can be for when the network equipment can be defined by controller, and controller issues control command to the network equipment, makes the network equipment carry out control command according to control command.
In embodiments of the present invention, optional, receiver 044 can also, for when the network equipment cannot be defined by controller, be controlled the service data information also sending for receiving the network equipment.
In embodiments of the present invention, optional, the mode that controller is communicated by letter with the network equipment is asynchronous system.
The embodiment of the present invention provides a kind of controller, be applied in software defined network system, software defined network system comprises controller and the network equipment, controller is for managing network device communication, by controller, receive the information that the network equipment reports, hardware information and the attribute information of packets of information includes network equipment; Wherein, attribute information is used for showing whether the network equipment can be defined by controller, when the network equipment can be defined by controller, controller is according to the Data Control function of hardware information define grid equipment, and issue defined instruction to the network equipment, make the network equipment control function according to defined instruction setting data, under SDN scene, the physical characteristic of equipment Network Based improves the serviceability of the network equipment.
The embodiment of the present invention provides a kind of software defined network system 1, as shown in Figure 6, comprises controller 01, the not definable network equipment, the definable network equipment, wherein, the definable network equipment comprise hardware-related software program institute's network equipment and with the network equipment of hardware independent.Wherein, the implementation of each several part is identical with the corresponding implementation of previous embodiment, repeats no more.
In the several embodiment that provide in the application, should be understood that, disclosed system, server and method, can realize by another way.For example, apparatus embodiments described above is only schematic, for example, the division of described unit, be only that a kind of logic function is divided, during actual realization, can have other dividing mode, for example a plurality of unit or assembly can in conjunction with or can be integrated into another system, or some features can ignore, or do not carry out.Another point, shown or discussed coupling each other or direct-coupling or communication connection can be by some interfaces, indirect coupling or the communication connection of device or unit can be electrically, machinery or other form.
In addition, in equipment and system in each embodiment of the present invention, each functional unit can be integrated in a processing unit, can be also that the independent physics of unit comprises, also can be integrated in a unit two or more unit.And each above-mentioned unit both can adopt the form of hardware to realize, and the form that also can adopt hardware to add SFU software functional unit realizes.
The all or part of step that realizes said method embodiment can complete by the relevant hardware of program command, and aforesaid program can be stored in a computer read/write memory medium, and this program, when carrying out, is carried out the step that comprises said method embodiment; And aforesaid storage medium comprises: USB flash disk, portable hard drive, read-only memory (Read Only Memory, be called for short ROM), the various media that can be program code stored such as random access memory (Random Access Memory is called for short RAM), magnetic disc or CD.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited to this, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; can expect easily changing or replacing, within all should being encompassed in protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of described claim.

Claims (8)

1. a management method for the network equipment in software defined network system, is characterized in that, described software defined network system comprises controller and the described network equipment, and described controller is used for managing described network equipment communication, and described method comprises:
Described controller receives the information that the described network equipment reports, and described information comprises hardware information and the attribute information of the described network equipment; Wherein, described attribute information is used for showing whether the described network equipment can be defined by described controller;
When the described network equipment can be defined by described controller, described controller defines the Data Control function of the described network equipment according to described hardware information, and issue defined instruction to the described network equipment, make the described network equipment set described Data Control function according to described defined instruction.
2. method according to claim 1, is characterized in that, described method also comprises:
When the described network equipment can be defined by described controller, described controller issues control command to the described network equipment, makes the described network equipment carry out described control command.
3. method according to claim 1, is characterized in that, when the described network equipment cannot be defined by described controller, and the service data information that described controller also sends for receiving the described network equipment.
4. according to the method in claim 2 or 3, it is characterized in that, the mode that described controller is communicated by letter with the described network equipment is asynchronous system.
5. a controller, is characterized in that, is applied in software defined network system, and described software defined network system comprises described controller and the network equipment, and described controller is used for managing described network equipment communication, and described controller comprises:
Receiving element, the information reporting for receiving the described network equipment, described information comprises hardware information and the attribute information of the described network equipment; Wherein, described attribute information is used for showing whether the described network equipment can be defined by described controller;
Processing unit, for when the described network equipment can be defined by described controller, defines the Data Control function of the described network equipment according to described hardware information;
Transmitting element, for issuing defined instruction to the described network equipment, makes the described network equipment set described Data Control function according to described defined instruction.
6. controller according to claim 5, is characterized in that, also comprises:
Described transmitting element, also, for when the described network equipment can be defined by described controller, issues control command to the described network equipment, makes the described network equipment carry out described control command.
7. controller according to claim 5, is characterized in that, described receiving element also, for when the described network equipment cannot be defined by described controller, receives the service data information that the described network equipment sends.
8. according to the controller described in claim 6 or 7, it is characterized in that, the mode that described controller is communicated by letter with the described network equipment is asynchronous system.
CN201310616278.7A 2013-11-27 2013-11-27 The management method of the network equipment and controller in a kind of software defined network system Active CN103647658B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310616278.7A CN103647658B (en) 2013-11-27 2013-11-27 The management method of the network equipment and controller in a kind of software defined network system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310616278.7A CN103647658B (en) 2013-11-27 2013-11-27 The management method of the network equipment and controller in a kind of software defined network system

Publications (2)

Publication Number Publication Date
CN103647658A true CN103647658A (en) 2014-03-19
CN103647658B CN103647658B (en) 2016-12-07

Family

ID=50252819

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310616278.7A Active CN103647658B (en) 2013-11-27 2013-11-27 The management method of the network equipment and controller in a kind of software defined network system

Country Status (1)

Country Link
CN (1) CN103647658B (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015117402A1 (en) * 2014-08-25 2015-08-13 中兴通讯股份有限公司 Software defined network-based data management method and system, and storage medium
CN105099646A (en) * 2014-05-14 2015-11-25 中兴通讯股份有限公司 Synchronization link determination method and apparatus
WO2016041367A1 (en) * 2014-09-15 2016-03-24 中兴通讯股份有限公司 Sdn architecture, sdn architecture-based message forwarding method
CN105450440A (en) * 2014-09-22 2016-03-30 英派尔科技开发有限公司 Network control security
CN105830038A (en) * 2014-06-30 2016-08-03 华为技术有限公司 Method for accessing storage device, and host
CN107003860A (en) * 2014-08-19 2017-08-01 华为技术有限公司 A kind of software defined network controller and its creation method
CN108737265A (en) * 2017-04-19 2018-11-02 波音公司 Controller coordinate system
CN109547478A (en) * 2018-12-27 2019-03-29 中国电子科技网络信息安全有限公司 A kind of anti-network scanning method and system based on SDN
CN110891035A (en) * 2019-11-21 2020-03-17 迈普通信技术股份有限公司 Equipment access management method, device and system

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101232658A (en) * 2007-01-22 2008-07-30 阿尔卡特朗讯 Software defined radio base station and configuration method
CN101554033A (en) * 2006-12-08 2009-10-07 微软公司 System capability discovery for software defined radio
CN102594579A (en) * 2011-01-06 2012-07-18 卓思网络公司 Automatic configuration and network deployment for network devices
CN102904975A (en) * 2012-09-28 2013-01-30 华为技术有限公司 Method and associated device for message processing
CN103051565A (en) * 2013-01-04 2013-04-17 中兴通讯股份有限公司 Framework system of grade software defined network software controller and implementation method thereof
CN103051557A (en) * 2012-12-27 2013-04-17 华为技术有限公司 Data stream processing method and system, controller and switching equipment
CN103095565A (en) * 2012-10-18 2013-05-08 中兴通讯股份有限公司 Software definition network operating system and implement method thereof
CN103166876A (en) * 2011-12-08 2013-06-19 中兴通讯股份有限公司 Transmission method for data among OpenFlow network domains and device
CN103209225A (en) * 2013-04-03 2013-07-17 北京邮电大学 Software defined network (SDN) broadcast processing method based on cycle trigger agent
CN103209121A (en) * 2013-03-15 2013-07-17 中兴通讯股份有限公司 Discovery method and device based on Open Flow protocol for control plane device
CN103347013A (en) * 2013-06-21 2013-10-09 北京邮电大学 OpenFlow network system and method for enhancing programmable capability
WO2013173482A1 (en) * 2012-05-18 2013-11-21 Brocade Communications Systems, Inc. Network feedback in software-defined networks

Patent Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101554033A (en) * 2006-12-08 2009-10-07 微软公司 System capability discovery for software defined radio
CN101554033B (en) * 2006-12-08 2013-03-13 微软公司 System capability discovery for software defined radio
CN101232658A (en) * 2007-01-22 2008-07-30 阿尔卡特朗讯 Software defined radio base station and configuration method
CN102594579A (en) * 2011-01-06 2012-07-18 卓思网络公司 Automatic configuration and network deployment for network devices
CN103166876A (en) * 2011-12-08 2013-06-19 中兴通讯股份有限公司 Transmission method for data among OpenFlow network domains and device
WO2013173482A1 (en) * 2012-05-18 2013-11-21 Brocade Communications Systems, Inc. Network feedback in software-defined networks
CN102904975A (en) * 2012-09-28 2013-01-30 华为技术有限公司 Method and associated device for message processing
CN103095565A (en) * 2012-10-18 2013-05-08 中兴通讯股份有限公司 Software definition network operating system and implement method thereof
CN103051557A (en) * 2012-12-27 2013-04-17 华为技术有限公司 Data stream processing method and system, controller and switching equipment
CN103051565A (en) * 2013-01-04 2013-04-17 中兴通讯股份有限公司 Framework system of grade software defined network software controller and implementation method thereof
CN103209121A (en) * 2013-03-15 2013-07-17 中兴通讯股份有限公司 Discovery method and device based on Open Flow protocol for control plane device
CN103209225A (en) * 2013-04-03 2013-07-17 北京邮电大学 Software defined network (SDN) broadcast processing method based on cycle trigger agent
CN103347013A (en) * 2013-06-21 2013-10-09 北京邮电大学 OpenFlow network system and method for enhancing programmable capability

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105099646A (en) * 2014-05-14 2015-11-25 中兴通讯股份有限公司 Synchronization link determination method and apparatus
CN105830038A (en) * 2014-06-30 2016-08-03 华为技术有限公司 Method for accessing storage device, and host
CN105830038B (en) * 2014-06-30 2019-03-05 华为技术有限公司 A kind of method and host of access storage equipment
CN107003860A (en) * 2014-08-19 2017-08-01 华为技术有限公司 A kind of software defined network controller and its creation method
CN107003860B (en) * 2014-08-19 2020-08-14 华为技术有限公司 Software defined network controller and creating method thereof
WO2015117402A1 (en) * 2014-08-25 2015-08-13 中兴通讯股份有限公司 Software defined network-based data management method and system, and storage medium
US10432501B2 (en) 2014-09-15 2019-10-01 Xi'an Zhongxing New Software Co., Ltd. SDN architecture and method for forwarding message based on SDN architecture
WO2016041367A1 (en) * 2014-09-15 2016-03-24 中兴通讯股份有限公司 Sdn architecture, sdn architecture-based message forwarding method
CN105450440A (en) * 2014-09-22 2016-03-30 英派尔科技开发有限公司 Network control security
CN108737265A (en) * 2017-04-19 2018-11-02 波音公司 Controller coordinate system
CN108737265B (en) * 2017-04-19 2022-01-28 波音公司 Software defined wireless network system and management method thereof
CN109547478A (en) * 2018-12-27 2019-03-29 中国电子科技网络信息安全有限公司 A kind of anti-network scanning method and system based on SDN
CN110891035A (en) * 2019-11-21 2020-03-17 迈普通信技术股份有限公司 Equipment access management method, device and system
CN110891035B (en) * 2019-11-21 2022-04-05 迈普通信技术股份有限公司 Equipment access management method, device and system

Also Published As

Publication number Publication date
CN103647658B (en) 2016-12-07

Similar Documents

Publication Publication Date Title
CN103647658A (en) Management method of network equipment in software-defined network system and controller
US10834015B2 (en) Dynamic resource allocation for sensor devices on a mixed-infrastructure network
US10616133B2 (en) Resource configuration method and network device thereof
KR102137276B1 (en) Systems and methods for automatic device detection, device management, and remote assistance
CN105634998B (en) Method and system for unified monitoring of physical machine and virtual machine in multi-tenant environment
US20100280636A1 (en) Building automation system controller including network management features
KR102093130B1 (en) Integrated managrment system for container-based cloud servers
US11086810B2 (en) Intelligent controller and sensor network bus, system and method including multi-layer platform security architecture
EP3382942B1 (en) Network service configuration method and network management device
CN108259226B (en) Network interface equipment management method and device
KR102048743B1 (en) SDN-based network monitoring virtualization system and method therefor
US10712792B2 (en) System and method for provisioning a powered off server in a data center
CN103997414A (en) Configuration information generation method and network control unit
US10229082B2 (en) System and method for providing wireless communications to a boxed server
CN104461683A (en) Verification method, device and system for virtual machine illegal configuration
CN104660554A (en) Method for implementing communication data security of virtual machines
WO2021146174A1 (en) Intelligent controller and sensor network bus, system and method including multi-layer platform security architecture
US20140181279A1 (en) Virtual Console-Port Management
EP2517433B1 (en) Logical partition media access control impostor detector
US10270663B2 (en) Fabric management devices
CN111935195B (en) Distributed system management method, device, storage medium and distributed management system
KR101881061B1 (en) 2-way communication apparatus capable of changing communication mode and method thereof
EP3343835A1 (en) Network element management method and system
CN112866186B (en) Security level determination method and device
CN103179218B (en) A kind of is method and the system of cloud computer distributing IP address

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20220307

Address after: 550025 Huawei cloud data center, jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guiyang City, Guizhou Province

Patentee after: Huawei Cloud Computing Technology Co.,Ltd.

Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen

Patentee before: HUAWEI TECHNOLOGIES Co.,Ltd.