CN105721306B - A kind of transmission method and device of configuration information - Google Patents

A kind of transmission method and device of configuration information Download PDF

Info

Publication number
CN105721306B
CN105721306B CN201610080247.8A CN201610080247A CN105721306B CN 105721306 B CN105721306 B CN 105721306B CN 201610080247 A CN201610080247 A CN 201610080247A CN 105721306 B CN105721306 B CN 105721306B
Authority
CN
China
Prior art keywords
vpc
information
intercommunication
edge equipment
configuration information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610080247.8A
Other languages
Chinese (zh)
Other versions
CN105721306A (en
Inventor
王庆栋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou Dt Dream Technology Co Ltd
Original Assignee
Hangzhou Dt Dream Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Dt Dream Technology Co Ltd filed Critical Hangzhou Dt Dream Technology Co Ltd
Priority to CN201610080247.8A priority Critical patent/CN105721306B/en
Publication of CN105721306A publication Critical patent/CN105721306A/en
Application granted granted Critical
Publication of CN105721306B publication Critical patent/CN105721306B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/50Routing or path finding of packets in data switching networks using label swapping, e.g. multi-protocol label switch [MPLS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides the transmission method and device of a kind of configuration information, this method comprises: obtaining the intercommunication solicited message that user submits, and obtains the corresponding VPC information of VPC;Using the intercommunication solicited message and the VPC information, the corresponding first forwarding configuration information of first edge equipment, the corresponding second forwarding configuration information of second edge equipment are generated;The first forwarding configuration information is sent to first edge equipment, so that the first forwarding configuration information described in the first edge equipment utilization is configured;The second forwarding configuration information is sent to second edge equipment, so that the second forwarding configuration information described in the second edge equipment utilization is configured.According to the technical solution of the present invention, it does not need public cloud operation personnel/user and is manually generated configuration information, avoid the workload of manual configuration, the problems such as being not in configuration error, the rapid deployment and Quick thread of realization business reduce operation O&M cost, greatly promote whole competitiveness.

Description

A kind of transmission method and device of configuration information
Technical field
The present invention relates to field of communication technology more particularly to the transmission methods and device of a kind of configuration information.
Background technique
The core concept of cloud computing is: passing through unified management computing resource, storage resource, Internet resources, software resource Deng realizing resource consolidation and configuration optimization, all kinds of demands of different user met with method of service.Currently, deployment cloud computing clothes The mode of business includes: public cloud, private clound, mixed cloud etc..
Public cloud refers to that third party provider provides the cloud resource and service being able to use, including cloud computing, number for user According to the multiclass example such as library, storage, big data, network, safety.Private clound refers to the cloud system constructed for user's exclusive use System, provides effective control to data, safety and service quality.Mixed cloud has merged public cloud and private clound, and user can be with Make full use of the advantage of public cloud and private clound.
In the network architecture of mixed cloud, private clound is disposed for user, and the VPC of the user is disposed in public cloud (Virtual Private Network, virtual private cloud).VPC is the dynamic configuration pond of a publicly-owned cloud computing resources, is used Cryptographic protocol, tunnel protocol and other security procedures, carry out data transmission between VPC and private clound.In this way, VPC The cloud resource and service provided using public cloud, and can carry out data transmission between the private clound and VPC of user, meet The business demand of user.
In order to realize the intercommunication between VPC and private clound, needs public cloud operation personnel to be manually generated configuration information, utilize Configuration information is configured on the relevant device of public cloud.In addition, it is desirable to which user is manually generated configuration information, and with confidence Breath is configured on the relevant device of private clound and VPC.
Obviously, aforesaid way needs public cloud operation personnel/user to be manually generated configuration information, and is matched in equipment The problems such as setting, wasting a large amount of workload, and will appear configuration error.
Summary of the invention
The present invention provides a kind of transmission method of configuration information, applied to include cloud platform, be deployed in the first of public cloud Edge device and virtual private cloud VPC, it is deployed in the system of second edge equipment of private clound, the method is applied described In cloud platform, it the described method comprises the following steps:
The intercommunication solicited message that user submits is obtained, and obtains the corresponding VPC information of the VPC;
Using the intercommunication solicited message and the VPC information, corresponding first forwarding of the first edge equipment is generated The corresponding second forwarding configuration information of configuration information, the second edge equipment;
The first forwarding configuration information is sent to first edge equipment, so that described in the first edge equipment utilization First forwarding configuration information is configured;The second forwarding configuration information is sent to second edge equipment, so that described the Two edge devices are configured using the second forwarding configuration information.
The intercommunication solicited message includes: VPC intercommunication subnet, private clound intercommunication subnet;The VPC information includes: VPC mark Knowledge, VPC access interface, VPC virtual routing forwarding VRF title;
The first forwarding configuration information includes: the VRF title of the VPC, the VPC access interface, the VPC intercommunication Subnet;The second forwarding configuration information includes: the private clound intercommunication subnet.
The intercommunication solicited message further includes user's name, obtains the process of the corresponding VPC information of the VPC, specific to wrap It includes: after the intercommunication solicited message for getting user's submission, key configuration table, institute being inquired by the user's name currently obtained Key configuration table is stated for recording intercommunication solicited message and VPC information;If the user's name is not present in key configuration table, VPC information then is obtained from the first edge equipment, and records the intercommunication solicited message and institute in the key configuration table State VPC information;If there are the user's names in key configuration table, VPC information is obtained from the key configuration table, and Use the intercommunication solicited message recorded in intercommunication solicited message replacement key configuration table.
The process that VPC information is obtained from the first edge equipment, specifically includes:
VPC information inquiring request message is sent to the first edge equipment;Receive what the first edge equipment returned VPC information inquiry response message carries VPC mark and VPC access interface in the VPC information inquiry response message;The VPC Mark is the idle VPC mark of the first edge equipment distribution, and the VPC access interface is the first edge equipment distribution Idle sub-interface;
The VPC mark and VPC access interface are obtained from the VPC information inquiry response message;
If also carrying the mark life of VPC described in the first edge equipment utilization in the VPC information inquiry response message At VPC VRF title, then the VRF title of the VPC is obtained from the VPC information inquiry response message;If described Do not have to carry the VRF title of VPC in VPC information inquiry response message, then generates the VRF name of the VPC using VPC mark Claim.
The method also includes: the intercommunication solicited message and the VPC information are utilized, the gateway in the VPC is generated The corresponding third of equipment forwards configuration information;Third forwarding configuration information is sent to the gateway, so that described Gateway is configured using third forwarding configuration information;The third forwarding configuration information includes: the private clound Intercommunication subnet, the VPC access interface.
The present invention provides a kind of transmitting device of configuration information, applied to include cloud platform, be deployed in the first of public cloud Edge device and virtual private cloud VPC, it is deployed in the system of second edge equipment of private clound, described device is applied described In cloud platform, described device is specifically included: module is obtained, for obtaining the intercommunication solicited message of user's submission, and described in acquisition The corresponding VPC information of VPC;
It is corresponding to generate first edge equipment for utilizing the intercommunication solicited message and the VPC information for generation module The corresponding second forwarding configuration information of first forwarding configuration information, second edge equipment;
Sending module, for the first forwarding configuration information to be sent to first edge equipment, so that first edge equipment benefit It is configured with the first forwarding configuration information;Second forwarding configuration information is sent to second edge equipment, so that second Edge device is configured using the second forwarding configuration information.
The intercommunication solicited message includes: VPC intercommunication subnet, private clound intercommunication subnet;The VPC information includes: VPC mark Knowledge, VPC access interface, VPC virtual routing forwarding VRF title;
The first forwarding configuration information includes: the VRF title of the VPC, the VPC access interface, the VPC intercommunication Subnet;The second forwarding configuration information includes: the private clound intercommunication subnet.
The intercommunication solicited message further includes user's name, the acquisition module, is specifically used for corresponding in the acquisition VPC VPC information during, get user submission intercommunication solicited message after, looked by the user's name currently obtained Key configuration table is ask, the key configuration table is for recording intercommunication solicited message and VPC information;If do not deposited in key configuration table In the user's name, VPC information is obtained from the first edge equipment, and record the intercommunication in the key configuration table Solicited message and the VPC information;If there are the user's names in key configuration table, obtained from the key configuration table VPC information uses the intercommunication solicited message recorded in intercommunication solicited message replacement key configuration table.
The acquisition module is specifically used for during obtaining VPC information from the first edge equipment, Xiang Suoshu the One edge device sends VPC information inquiring request message;The VPC information inquiry response that the first edge equipment returns is received to disappear It ceases, VPC mark and VPC access interface is carried in the VPC information inquiry response message;The VPC mark is first side The idle VPC mark of edge equipment distribution, the VPC access interface are the idle sub-interfaces of the first edge equipment distribution;From The VPC mark and VPC access interface are obtained in the VPC information inquiry response message;
If also carrying the mark life of VPC described in the first edge equipment utilization in the VPC information inquiry response message At VPC VRF title, then the VRF title of the VPC is obtained from the VPC information inquiry response message;If described Do not have to carry the VRF title of VPC in VPC information inquiry response message, then generates the VRF name of the VPC using VPC mark Claim.
The generation module is also used to generate in the VPC using the intercommunication solicited message and the VPC information The corresponding third of gateway forwards configuration information;Wherein, the third forwarding configuration information includes: private clound intercommunication Net, the VPC access interface;
The sending module is also used to third forwarding configuration information being sent to the gateway, so that described Gateway is configured using third forwarding configuration information.
Based on the above-mentioned technical proposal, in the embodiment of the present invention, it is corresponding that first edge equipment can be automatically generated by cloud platform First forwarding configuration information and second edge equipment it is corresponding second forwarding configuration information, and by first forwarding configuration information hair First edge equipment is given, so that first edge equipment utilization first forwards configuration information to be configured, the second forwarding is configured Information is sent to second edge equipment so that second edge equipment utilization second forward configuration information configured, from without It wants public cloud operation personnel/user to be manually generated configuration information, avoids the workload of manual configuration, be not in configuration error etc. Problem realizes the rapid deployment and Quick thread of business, reduces operation O&M cost, greatly promotes whole competitiveness.
Detailed description of the invention
In order to clearly illustrate the technical solutions in the embodiments of the present application or in the prior art, below will to embodiment or Attached drawing needed to be used in the description of the prior art is briefly described, it should be apparent that, the accompanying drawings in the following description is only Some embodiments as described in this application can also be obtained according to these attached drawings it for those of ordinary skill in the art His attached drawing.
Fig. 1 is the network architecture schematic diagram of the mixed cloud in one embodiment of the present invention;
Fig. 2 is the flow chart of the transmission method of the configuration information in one embodiment of the present invention;
Fig. 3 is the hardware structure diagram of the cloud platform in one embodiment of the present invention;
Fig. 4 is the structure chart of the transmitting device of the configuration information in one embodiment of the present invention.
Specific embodiment
In term used in this application merely for the sake of for the purpose of describing particular embodiments, rather than limit the application.This Shen Please it is also intended to the "an" of singular used in claims, " described " and "the" including most forms, unless Context clearly shows that other meanings.It is also understood that term "and/or" used herein refers to comprising one or more Associated any or all of project listed may combine.
It will be appreciated that though various information, but this may be described using term first, second, third, etc. in the application A little information should not necessarily be limited by these terms.These terms are only used to for same type of information being distinguished from each other out.For example, not departing from In the case where the application range, the first information can also be referred to as the second information, and similarly, the second information can also be referred to as One information.Depending on context, in addition, used word " if " can be construed to " ... when " or " when ... " Or " in response to determination ".
As shown in Figure 1, being the network architecture schematic diagram of mixed cloud, including what is disposed for user A (usually enterprise customer) Private clound 1 and the VPC0001 disposed in public cloud for user A, for the private clound 2 of user B (usually enterprise customer) deployment With the VPC0002 in public cloud being user B deployment.
Useful family equipment, gateway, edge device 1 are disposed in private clound 1, and the user equipment in private clound 1 needs Access the server in VPC0001.Gateway and server are deployed in VPC0001, which is used to be privately owned User equipment in cloud 1 provides service.Useful family equipment, gateway, edge device 2, and private clound are disposed in private clound 2 User equipment in 2 needs to access the server in VPC0002.Gateway and server are deployed in VPC0002, the clothes Business device is used to provide service for the user equipment in private clound 2.It is deployed with edge device 3 in public cloud, which is used for Message from 1/ private clound 2 of private clound is sent to VPC0001/VPC0002, and by the report from VPC0001/VPC0002 Text is sent to 1/ private clound 2 of private clound.
Certainly, private clound 1, private clound 2, VPC0001, VPC0002, can also include other equipment, such as in public cloud The network equipments such as interchanger, router, this application scene repeat no more.
In a kind of feasible embodiment, 1/ private clound 2 of private clound passes through MPLS (Multi-Protocol Label Switching, multiprotocol label switching) VPN (Virtual Private Network, Virtual Private Network) network with it is publicly-owned Cloud connection.Under this application scenarios, edge device 1, edge device 2 and edge device 3 are PE (Provider Edge, service Provider edge) equipment, and will include P (Provider, service provider) equipment in MPLS VPN network, P equipment is used for will Message from 1/ edge device 2 of edge device is sent to edge device 3, or the message from edge device 3 is sent to 1/ edge device 2 of edge device.Certainly, in practical applications, 1/ private clound 2 of private clound can also pass through other types of VPN Network is connect with public cloud, is repeated no more in the embodiment of the present invention to this.
For above-mentioned edge device 1, edge device 2 and edge device 3, the factors such as scalability and flexibility are considered, it can To pass through the function of the VM being deployed on physical server (virtual machine) Lai Shixian edge device 1, edge device 2 and edge device 3 Can, i.e., edge device 1 is the VM positioned at private clound 1, and edge device 2 is the VM positioned at private clound 2, and edge device 3 is to be located at public affairs There is the VM of cloud.
In practical applications, different enterprise customers can also select the equipment class used in VPC in their own needs Type, such as based on the selection of the information such as device model, CPU (Central Processing Unit, central processing unit), memory, port Device type, in this way, in the VPC of public cloud deployment corresponding equipment can be selected according to the demand of enterprise customer, thus full The individual demand of sufficient enterprise customer.
It is according to networking shown in FIG. 1, the prior cloth of line between each equipment is good, and each equipment powered in advance or The skills such as IPMI (Intelligent Platform Management Interface, Intelligent Platform Management Interface) can be passed through Art powers on automatically.In this way, each equipment can work as required.
Aiming at the problems existing in the prior art, a kind of transmission method of configuration information is proposed in the embodiment of the present invention, it should Method can be applied to include cloud platform, the first edge equipment and VPC for being deployed in public cloud, be deployed in the second side of private clound In the system of edge equipment.Using Fig. 1 as the application scenarios schematic diagram of the embodiment of the present invention, first edge equipment can be edge device 3, second edge equipment can be 1/ edge device 2 of edge device, and the VPC for being deployed in public cloud can be VPC0001/ VPC0002.Under above-mentioned application scenarios, as shown in Fig. 2, the transmission method of the configuration information can specifically include following steps:
Step 201, cloud platform obtains the intercommunication solicited message that user submits.
Wherein, cloud platform can provide a user self-service portal website, and user can be mutual in self-service portal website's input Logical solicited message, and the intercommunication solicited message that user submits is obtained by cloud platform.
Wherein, which may include: VPC intercommunication subnet, private clound intercommunication subnet.The VPC intercommunication subnet Refer to the subnet that the VPC for being deployed in public cloud is used, the equipment in the VPC uses the IP address positioned at the VPC intercommunication subnet.It should Private clound intercommunication subnet refers to the subnet that private clound uses, and the equipment in the private clound is used positioned at the private clound intercommunication subnet IP address.Based on this, only using can be mutual between the equipment of VPC intercommunication subnet and the equipment of use private clound intercommunication subnet It is logical.
In addition, the intercommunication solicited message can also include user's name, such as user A and user B.The intercommunication solicited message It can also include VPC subnet, user is to select one or more VPC subnet as VPC intercommunication subnet from the VPC subnet. User can obtain VPC subnet and private clound intercommunication subnet by modes such as purchases, and the selection one or more from VPC subnet A VPC intercommunication subnet.
By taking user A opens mixed cloud intercommunication as an example, then user A inputs user's name in the self-service portal website of cloud platform (user A), VPC subnet (192.168.4.1/24,192.168.5.1/24), VPC intercommunication subnet (192.168.4.1/24), private There are the intercommunications solicited messages such as cloud intercommunication subnet (192.168.0.1/24).The available above-mentioned intercommunication submitted to user of cloud platform Solicited message, moreover, cloud platform knows VPC intercommunication subnet (192.168.4.1/24) and private clound intercommunication subnet (192.168.0.1/24) carries out intercommunication.
Step 202, cloud platform obtains the corresponding VPC information of VPC.
Wherein, which can specifically include: the VRF (Virtual of VPC mark, VPC access interface, VPC Routing Forwarding, virtual routing forwarding) title etc..
In the embodiment of the present invention, cloud platform can safeguard key configuration table, and the key configuration table is for recording intercommunication request Information and VPC information.It as shown in table 1, is a kind of example of key configuration table.Based on this, cloud platform obtains the corresponding VPC of VPC The process of information can include but is not limited to such as under type: after the intercommunication solicited message for getting user's submission, cloud platform Key configuration table is inquired by the user's name currently obtained.If user's name, cloud platform are not present in key configuration table VPC information is obtained from first edge equipment, and records the intercommunication solicited message currently obtained and VPC letter in key configuration table Breath.If cloud platform obtains VPC information from key configuration table, and using current there are user's name in key configuration table The intercommunication solicited message recorded in the intercommunication solicited message replacement key configuration table of acquisition.
Table 1
User's name VPC mark VPC intercommunication subnet Private clound intercommunication subnet VRF title VPC access interface
User B 0002 192.168.0.1/28 10.1.0.1/24 VPC0002 Sub-interface 1
Assuming that by taking user A opens mixed cloud intercommunication as an example, then after the intercommunication solicited message for getting user's submission, cloud Platform passes through the user A currently obtained and inquires key configuration table.Since user A being not present in key configuration table, current Intercommunication solicited message is the intercommunication solicited message of new user, needs newly to open a VPC in public cloud, and therefore, cloud platform can be with VPC information is obtained from first edge equipment, and records the intercommunication solicited message currently obtained and VPC letter in key configuration table Breath, it is assumed that the VPC information got is as shown in table 2, and specific acquisition modes illustrate in subsequent process.
Table 2
User's name VPC mark VPC intercommunication subnet Private clound intercommunication subnet VRF title VPC access interface
User B 0002 192.168.0.1/28 10.1.0.1/24 VPC0002 Sub-interface 1
User A 0001 192.168.4.1/24 192.168.0.1/24 VPC0001 Sub-interface 2
Assuming that by taking user B opens mixed cloud intercommunication as an example, then after the intercommunication solicited message for getting user's submission, cloud Platform passes through the user B currently obtained and inquires key configuration table.Due in key configuration table there are user B, current is mutual Logical solicited message is the intercommunication solicited message for updating VPC intercommunication subnet and private clound intercommunication subnet, in public cloud There are corresponding VPC, therefore, VPC information can be obtained directly from key configuration table, and request using the intercommunication currently obtained The intercommunication solicited message recorded in information replacement key configuration table, replaced key configuration table can be as shown in table 3.
Table 3
User's name VPC mark VPC intercommunication subnet Private clound intercommunication subnet VRF title VPC access interface
User B 0002 192.168.4.1/24 192.168.0.1/24 VPC0002 Sub-interface 1
In the embodiment of the present invention, cloud platform obtains the process of VPC information from first edge equipment, can specifically include but not Be limited to such as under type: cloud platform can send VPC information inquiring request message to first edge equipment.Cloud platform receives the first side The VPC information inquiry response message that edge equipment returns, VPC mark can be carried in the VPC information inquiry response message and VPC connects Incoming interface;Wherein, VPC mark is the idle VPC mark of first edge equipment distribution, which is first edge The idle sub-interface of equipment distribution.Cloud platform obtains VPC mark and VPC access interface from VPC information inquiry response message.Such as The VRF title for the VPC that first edge equipment utilization VPC mark generates also is carried in fruit VPC information inquiry response message, then Yun Ping Platform can obtain the VRF title of VPC from VPC information inquiry response message;Alternatively, if in VPC information inquiry response message The VRF title of VPC is not carried, then cloud platform can use the VRF title that VPC mark generates VPC.
Wherein, each VPC has unique VPC mark, and VPC0001 as shown in figure 1 is substantially exactly that VPC mark is 0001 VPC.When the user's name currently obtained is not present in key configuration table, then illustrate not applying corresponding to user VPC mark.Therefore, cloud platform can send VPC information inquiring request message to first edge equipment.First edge equipment is connecing After receiving VPC information inquiring request message, distribute a free time VPC mark, i.e., not used VPC mark, such as 0001,0003 Deng, and VPC mark is returned to by cloud platform by VPC information inquiry response message.
Wherein, VPC mark can (Virtual eXtensible Local Area Network, virtually may be used for VXLAN Extend local area network) mark or VLAN (Virtual Local Area Network, virtual LAN) mark, retouch for convenience State, in the embodiment of the present invention, with 4 bit identifications come indicate VPC identify.
Wherein, VRF title is the unique VPN instance that a VPC is able to enter, and can be marked by VPC character+VPC Composition, such as VPC0001, VPC2048 are known, alternatively, can also be made of VPC character+user's name+VPC mark, such as VPCUserA0001 etc..First edge equipment, can be raw according to above-mentioned strategy after receiving VPC information inquiring request message VRF title is returned into cloud platform at VRF title, and by VPC information inquiry response message.Alternatively, first edge equipment can Not generate VRF title, but by cloud platform itself according to above-mentioned strategy generating VRF title.
Wherein, VPC access interface is the sub-interface that VPC is connected in first edge equipment.Since first edge equipment passes through One physical interface (interface 1 of Fig. 1) connect with multiple VPC, this multiple VPC cannot be distinguished therefore by the physical interface and be Multiple sub-interfaces are arranged in the physical interface, such as sub-interface 1, sub-interface 2, sub-interface 3, these sub-interfaces are logic interfacing, And equal corresponding interface 1.Based on this, first edge equipment distributes an idle son after receiving VPC information inquiring request message Interface, i.e., not used sub-interface, such as sub-interface 1, sub-interface 3, which is VPC access interface, and passes through VPC VPC access interface is returned to cloud platform by information inquiry response message.
In order to realize the above process, when online, first edge equipment can also be sent first edge equipment to cloud platform Registration message carries mark, the management IP address etc. of first edge equipment to be registered in cloud platform in the registration message Information.Based on this, cloud platform can the information such as mark, management IP address based on first edge equipment, to first edge equipment Send VPC information inquiring request message.
Step 203, cloud platform utilizes intercommunication solicited message and VPC information, and it is first turn corresponding to generate first edge equipment Send out the corresponding second forwarding configuration information of configuration information, second edge equipment.
Wherein, the first forwarding configuration information can specifically include: the VRF title of VPC, VPC access interface, VPC intercommunication Net.Second forwarding configuration information can specifically include: private clound intercommunication subnet.
Step 204, the first forwarding configuration information is sent to first edge equipment by cloud platform, so that first edge equipment benefit It is configured with the first forwarding configuration information.Second forwarding configuration information is sent to second edge equipment by cloud platform, so that the Two edge devices are configured using the second forwarding configuration information.
In the embodiment of the present invention, cloud platform can also utilize intercommunication solicited message and VPC information, generate the gateway in VPC The corresponding third of equipment forwards configuration information, and third forwarding configuration information is sent to the gateway, so that gateway is set It is standby to be configured using third forwarding configuration information.Wherein, third forwarding configuration information can specifically include: private clound is mutual Logical subnet, VPC access interface.
On the basis of above-mentioned process, below in conjunction with application scenarios shown in FIG. 1, in private clound 1 user equipment with Intercommunication process between server in VPC0001 is described in detail.
Message transmissions mistake under this application scene, between the server in the user equipment and VPC0001 in private clound 1 Cheng Zhong, transmission path are as follows: the gateway in server-VPC0001-edge device 3- edge device 1- in VPC0001 is private There is the user equipment in gateway-private clound 1 in cloud 1.
For the message transmission procedure between the gateway in the server and VPC0001 in VPC0001, and, it is private There is the message transmission procedure between the user equipment in the gateway in cloud 1 and private clound 1, under this application scene, to this Process does not do elaborate, is handled with reference to existing procedure.
For the gateway in VPC0001 to the process of 3 transmitting message of edge device, cloud platform can be to VPC0001 Interior gateway issues private clound intercommunication subnet (192.168.0.1/24) and VPC access interface.Gateway in VPC0001 It in equipment, can be configured as follows: be located at the report of private clound intercommunication subnet (192.168.0.1/24) for purpose IP address Text, to be connected to VPC access interface in the gateway, (sub-interface 1, the sub-interface 1 correspond on edge device 3 outgoing interface Interface 1) interface, in this way, message can be sent to edge device 3 by the gateway in VPC0001.
For the process of gateway transmitting message of the edge device 3 into VPC0001, cloud platform can be to edge device 3 issue the VRF title (VPC0001) of VPC, VPC access interface.It on edge device 3, can be configured as follows: creation VRF The configuration of entitled VPC0001, and create VPC access interface (sub-interface 1, correspond to interface 1), and by the VPC access interface Bind the configuration of VPC0001.In this way, edge device 3 is in the message for receiving the IP address that purpose is the server in VPC0001 When, VPC mark can be parsed from the message, and the configuration of the entitled VPC0001 of VRF is inquired by VPC mark, after And message is sent by the VPC access interface (i.e. interface 1) of the configuration binding of the VPC0001, so as to which message is sent to Gateway in VPC0001.
For edge device 1 to the process of 3 transmitting message of edge device, it is mutual that cloud platform can issue VPC to edge device 3 Logical subnet (192.168.4.1/24).It on edge device 3, can be configured as follows: VPC intercommunication subnet is being locally configured The routing of (192.168.4.1/24), and the routing to MPLS VPN publication 192.168.4.1/24 network segment.In this way, MPLS VPN Interior each P equipment and edge device 1 may learn the routing of 192.168.4.1/24 network segment, so that each P in MPLS VPN Purpose IP address can be located at the message of the 192.168.4.1/24 network segment, i.e. use in private clound 1 by equipment and edge device 1 Family equipment is sent to the message of the server in VPC0001, is sent to edge device 3.
For edge device 3 to the process of 1 transmitting message of edge device, cloud platform can issue privately owned to edge device 1 Cloud intercommunication subnet (192.168.0.1/24).On edge device 1, it can be configured as follows: mutual private clound is locally configured The routing of logical subnet (192.168.0.1/24), and the routing to MPLS VPN publication 192.168.0.1/24 network segment.In this way, Each P equipment and edge device 3 in MPLS VPN may learn the routing of 192.168.0.1/24 network segment, make in MPLS VPN Each P equipment and edge device 3 purpose IP address can be located to the message of the 192.168.0.1/24 network segment, i.e. VPC0001 Interior server is sent to the message of the user equipment in private clound 1, is sent to edge device 1.
It, can be by operation management person's basis for the process of gateway transmitting message of the edge device 1 into private clound 1 The interface actually distributed is configured, and can such as be configured as follows on edge device 1: purpose IP address being located at privately owned The message of cloud intercommunication subnet (192.168.0.1/24), outgoing interface are the gateway being connected in private clound 1 on edge device 1 Interface, in this way, message can be sent to the gateway in private clound 1 by edge device 1.In addition, in private clound 1 Gateway can also be matched by operation management person according to the interface actually distributed to the process of 1 transmitting message of edge device It sets, can such as be configured as follows in the gateway in private clound 1: private clound intercommunication subnet is located at for source IP address (192.168.0.1/24), and purpose IP address is located at the message of VPC intercommunication subnet (192.168.4.1/24), outgoing interface is private There is the interface that edge device 1 is connected in the gateway in cloud 1, in this way, the gateway in private clound 1 can send out message Give edge device 1.
Based on the above process, can complete mutual between the server in the user equipment and VPC0001 in private clound 1 It is logical.For activating business, such as connection speed, QoS (Quality of Service, service quality), charge on traffic etc., Yong Huke To get the information of activating business of user's submission by cloud platform in self-service portal website's input expanding business information, and will expand Exhibition business information is handed down to first edge equipment and/or second edge equipment, by first edge equipment and/or second edge equipment Execution is activated business.
In practical applications, first edge equipment can be extended, such as in the more objects of first edge facility registration Interface is managed, to meet more VPC accesses (such as a physical interface can carry 4K VPC).
Based on the above-mentioned technical proposal, in the embodiment of the present invention, it is corresponding that first edge equipment can be automatically generated by cloud platform First forwarding configuration information and second edge equipment it is corresponding second forwarding configuration information, and by first forwarding configuration information hair First edge equipment is given, so that first edge equipment utilization first forwards configuration information to be configured, the second forwarding is configured Information is sent to second edge equipment so that second edge equipment utilization second forward configuration information configured, from without It wants public cloud operation personnel/user to be manually generated configuration information, avoids the workload of manual configuration, be not in configuration error etc. Problem realizes the rapid deployment and Quick thread of business, reduces operation O&M cost, greatly promotes whole competitiveness.
Based on inventive concept same as the above method, a kind of transmission of configuration information is additionally provided in the embodiment of the present invention Device, applied to including cloud platform, the first edge equipment for being deployed in public cloud and VPC, the second edge for being deployed in private clound In the system of equipment, the transmitting device of the configuration information is applied in cloud platform.Wherein, the transmitting device of the configuration information can be with By software realization, can also be realized by way of hardware or software and hardware combining.Taking software implementation as an example, it is patrolled as one Device in volume meaning is corresponding computer in reading non-volatile storage by the processor of the cloud platform where it What program instruction was formed.For hardware view, as shown in figure 3, for where the transmitting device of configuration information proposed by the present invention Cloud platform a kind of hardware structure diagram, other than processor shown in Fig. 3, nonvolatile memory, cloud platform can also be wrapped Other hardware are included, such as are responsible for forwarding chip, network interface, the memory of processing message;From hardware configuration, the cloud platform It is also possible to be distributed apparatus, may include multiple interface cards, to carry out the extension of Message processing in hardware view.
As shown in figure 4, the structure chart of the transmitting device for configuration information proposed by the present invention, the transmission of the configuration information Device specifically includes:
Module 11 is obtained, for obtaining the intercommunication solicited message of user's submission, and obtains the corresponding VPC information of the VPC;
It is corresponding to generate first edge equipment for utilizing the intercommunication solicited message and the VPC information for generation module 12 The corresponding second forwarding configuration information of the first forwarding configuration information, second edge equipment;
Sending module 13, for the first forwarding configuration information to be sent to first edge equipment, so that first edge equipment It is configured using the first forwarding configuration information;Second forwarding configuration information is sent to second edge equipment, so that the Two edge devices are configured using the second forwarding configuration information.
The intercommunication solicited message includes: VPC intercommunication subnet, private clound intercommunication subnet;The VPC information includes: VPC mark Knowledge, VPC access interface, VPC virtual routing forwarding VRF title;
The first forwarding configuration information includes: the VRF title of the VPC, the VPC access interface, the VPC intercommunication Subnet;The second forwarding configuration information includes: the private clound intercommunication subnet.
The intercommunication solicited message includes user's name, the acquisition module 11, is specifically used for corresponding in the acquisition VPC VPC information during, get user submission intercommunication solicited message after, looked by the user's name currently obtained Key configuration table is ask, the key configuration table is for recording intercommunication solicited message and VPC information;If do not deposited in key configuration table In the user's name, VPC information is obtained from the first edge equipment, and record the intercommunication in the key configuration table Solicited message and the VPC information;If there are the user's names in key configuration table, obtained from the key configuration table VPC information uses the intercommunication solicited message recorded in intercommunication solicited message replacement key configuration table.
The acquisition module 11 is specifically used for during obtaining VPC information from the first edge equipment, Xiang Suoshu First edge equipment sends VPC information inquiring request message;Receive the VPC information inquiry response that the first edge equipment returns Message carries VPC mark and VPC access interface in the VPC information inquiry response message;The VPC mark is described first The idle VPC mark of edge device distribution, the VPC access interface are the idle sub-interfaces of the first edge equipment distribution; The VPC mark and VPC access interface are obtained from the VPC information inquiry response message;
If also carrying the mark life of VPC described in the first edge equipment utilization in the VPC information inquiry response message At VPC VRF title, then the VRF title of the VPC is obtained from the VPC information inquiry response message;If described Do not have to carry the VRF title of VPC in VPC information inquiry response message, then generates the VRF name of the VPC using VPC mark Claim.
The generation module 12 is also used to generate in the VPC using the intercommunication solicited message and the VPC information The corresponding third of gateway forward configuration information;Wherein, the third forwarding configuration information includes: the private clound intercommunication Subnet, the VPC access interface;
The sending module 13 is also used to third forwarding configuration information being sent to the gateway, so that institute Gateway is stated to be configured using third forwarding configuration information.
Wherein, the modules of apparatus of the present invention can integrate in one, can also be deployed separately.Above-mentioned module can close And be a module, multiple submodule can also be further split into.
Through the above description of the embodiments, those skilled in the art can be understood that the present invention can be by Software adds the mode of required general hardware platform to realize, naturally it is also possible to which by hardware, but in many cases, the former is more Good embodiment.Based on this understanding, technical solution of the present invention substantially in other words contributes to the prior art Part can be embodied in the form of software products, which is stored in a storage medium, if including Dry instruction is used so that a computer equipment (can be personal computer, server or the network equipment etc.) executes this hair Method described in bright each embodiment.It will be appreciated by those skilled in the art that attached drawing is the schematic diagram of a preferred embodiment, Module or process in attached drawing are not necessarily implemented necessary to the present invention.
It will be appreciated by those skilled in the art that the module in device in embodiment can describe be divided according to embodiment It is distributed in the device of embodiment, corresponding change can also be carried out and be located in one or more devices different from the present embodiment.On The module for stating embodiment can be merged into a module, can also be further split into multiple submodule.The embodiments of the present invention Serial number is for illustration only, does not represent the advantages or disadvantages of the embodiments.
Disclosed above is only several specific embodiments of the invention, and still, the present invention is not limited to this, any ability What the technical staff in domain can think variation should all fall into protection scope of the present invention.

Claims (6)

1. a kind of transmission method of configuration information, which is characterized in that applied to including cloud platform, be deployed in the first side of public cloud Edge equipment and virtual private cloud VPC, it is deployed in the system of second edge equipment of private clound, the method is applied in the cloud On platform, it the described method comprises the following steps:
The intercommunication solicited message that user submits is obtained, the intercommunication solicited message includes VPC intercommunication subnet, private clound intercommunication Net, user's name inquire key configuration table by the user's name currently obtained, and the key configuration table is asked for recording intercommunication Ask information and VPC information, the VPC information includes: VPC mark, virtual routing forwarding VRF of VPC access interface, VPC Claim;
If the user's name is not present in key configuration table, VPC information is obtained from the first edge equipment, and in institute It states and records the intercommunication solicited message and the VPC information in key configuration table;
If there are the user's names in key configuration table, VPC information is obtained from the key configuration table, and use institute State the intercommunication solicited message recorded in intercommunication solicited message replacement key configuration table;
Using the intercommunication solicited message and the VPC information, the corresponding first forwarding configuration of the first edge equipment is generated The corresponding second forwarding configuration information of information, the second edge equipment;The first forwarding configuration information includes: the VPC VRF title, the VPC access interface, the VPC intercommunication subnet;The second forwarding configuration information includes: the private clound Intercommunication subnet;
The first forwarding configuration information is sent to first edge equipment, so that first described in the first edge equipment utilization Forwarding configuration information is configured;The second forwarding configuration information is sent to second edge equipment, so that second side Second forwarding configuration information described in edge equipment utilization is configured.
2. the method according to claim 1, wherein
The process that VPC information is obtained from the first edge equipment, specifically includes:
VPC information inquiring request message is sent to the first edge equipment;Receive the VPC letter that the first edge equipment returns Query response message is ceased, VPC mark and VPC access interface are carried in the VPC information inquiry response message;The VPC mark It is the idle VPC mark of the first edge equipment distribution, the VPC access interface is the sky of the first edge equipment distribution Not busy sub-interface;
The VPC mark and VPC access interface are obtained from the VPC information inquiry response message;
If also carrying what the mark of VPC described in the first edge equipment utilization generated in the VPC information inquiry response message The VRF title of VPC then obtains the VRF title of the VPC from the VPC information inquiry response message;If the VPC letter Do not have to carry the VRF title of VPC in breath query response message, then generates the VRF title of the VPC using VPC mark.
3. the method according to claim 1, wherein the method also includes:
Using the intercommunication solicited message and the VPC information, generates the corresponding third forwarding of the gateway in the VPC and match Confidence breath;Third forwarding configuration information is sent to the gateway, so that the gateway utilizes the third Forwarding configuration information is configured;Wherein, the third forwarding configuration information includes: the private clound intercommunication subnet, the VPC Access interface.
4. a kind of transmitting device of configuration information, which is characterized in that applied to including cloud platform, be deployed in the first side of public cloud Edge equipment and virtual private cloud VPC, it is deployed in the system of second edge equipment of private clound, described device is applied in the cloud On platform, described device is specifically included:
Module is obtained, for obtaining the intercommunication solicited message of user's submission, and obtains the corresponding VPC information of the VPC, it is described mutual Logical solicited message includes: VPC intercommunication subnet, private clound intercommunication subnet, user's name;The VPC information include: VPC mark, The virtual routing forwarding VRF title of VPC access interface, VPC;
Generation module generates first edge equipment corresponding first for utilizing the intercommunication solicited message and the VPC information Forward the corresponding second forwarding configuration information of configuration information, second edge equipment;The first forwarding configuration information includes: described The VRF title of VPC, the VPC access interface, the VPC intercommunication subnet;The second forwarding configuration information includes: the private There is cloud intercommunication subnet;
Sending module, for the first forwarding configuration information to be sent to first edge equipment, so that first edge equipment utilization institute The first forwarding configuration information is stated to be configured;Second forwarding configuration information is sent to second edge equipment, so that second edge Second forwarding configuration information described in equipment utilization is configured;
Wherein, the acquisition module is specifically used for during the acquisition VPC corresponding VPC information, by currently obtaining User's name inquire key configuration table, the key configuration table is for recording intercommunication solicited message and VPC information;If crucial The user's name is not present in allocation list, obtains VPC information from the first edge equipment, and in the key configuration table Record the intercommunication solicited message and the VPC information;If there are the user's names in key configuration table, from the key VPC information is obtained in allocation list, uses the intercommunication solicited message recorded in intercommunication solicited message replacement key configuration table.
5. device according to claim 4, which is characterized in that
The acquisition module is specifically used for during obtaining VPC information from the first edge equipment, the first side Xiang Suoshu Edge equipment sends VPC information inquiring request message;The VPC information inquiry response message that the first edge equipment returns is received, VPC mark and VPC access interface are carried in the VPC information inquiry response message;The VPC mark is that the first edge is set The idle VPC mark that back-up is matched, the VPC access interface are the idle sub-interfaces of the first edge equipment distribution;From described The VPC mark and VPC access interface are obtained in VPC information inquiry response message;
If also carrying what the mark of VPC described in the first edge equipment utilization generated in the VPC information inquiry response message The VRF title of VPC then obtains the VRF title of the VPC from the VPC information inquiry response message;If the VPC letter Do not have to carry the VRF title of VPC in breath query response message, then generates the VRF title of the VPC using VPC mark.
6. device according to claim 4, which is characterized in that
The generation module is also used to generate the gateway in the VPC using the intercommunication solicited message and the VPC information The corresponding third of equipment forwards configuration information;Wherein, third forwarding configuration information include: the private clound intercommunication subnet, The VPC access interface;
The sending module is also used to third forwarding configuration information being sent to the gateway, so that the gateway The forwarding configuration information of third described in equipment utilization is configured.
CN201610080247.8A 2016-02-04 2016-02-04 A kind of transmission method and device of configuration information Active CN105721306B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610080247.8A CN105721306B (en) 2016-02-04 2016-02-04 A kind of transmission method and device of configuration information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610080247.8A CN105721306B (en) 2016-02-04 2016-02-04 A kind of transmission method and device of configuration information

Publications (2)

Publication Number Publication Date
CN105721306A CN105721306A (en) 2016-06-29
CN105721306B true CN105721306B (en) 2019-03-15

Family

ID=56155809

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610080247.8A Active CN105721306B (en) 2016-02-04 2016-02-04 A kind of transmission method and device of configuration information

Country Status (1)

Country Link
CN (1) CN105721306B (en)

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107872542B (en) * 2016-09-27 2021-05-04 阿里巴巴集团控股有限公司 Data transmission method and network equipment
CN106789527B (en) * 2016-12-09 2020-03-03 中国联合网络通信集团有限公司 Private network access method and system
CN107357660A (en) * 2017-07-06 2017-11-17 华为技术有限公司 The distribution method and device of a kind of virtual resource
CN109274570B (en) * 2017-07-18 2021-04-20 中国电信股份有限公司 VPN construction method and device and computer readable storage medium
CN107733766B (en) * 2017-11-02 2020-03-17 平安科技(深圳)有限公司 Method, device, equipment and storage medium for secure interconnection between private networks of cloud platform
CN111742524B (en) * 2018-02-20 2021-12-14 华为技术有限公司 Enterprise Virtual Private Network (VPN) and Virtual Private Cloud (VPC) conglutination
CN110557332B (en) * 2018-05-31 2022-05-06 阿里巴巴集团控股有限公司 Network construction method, system and routing equipment
CN109117650B (en) * 2018-07-25 2022-03-18 华为云计算技术有限公司 Enterprise cloud creation method and management platform
CN109361764B (en) * 2018-11-29 2021-02-05 杭州数梦工场科技有限公司 Service access method, device and equipment of inter-VPC and readable storage medium
CN111416795B (en) * 2019-01-08 2022-07-29 阿里巴巴集团控股有限公司 Data synchronization method, device, computing equipment and medium
CN109936629B (en) * 2019-02-27 2021-09-03 浪潮云信息技术股份公司 Hybrid cloud network interconnection method and system
CN111064619B (en) * 2019-12-20 2022-08-23 北京云联壹云技术有限公司 Configuration information management method and device, electronic equipment and storage medium
CN112671826A (en) * 2020-11-25 2021-04-16 紫光云技术有限公司 Method for realizing issuing of virtual private cloud intercommunication configuration
CN112671844B (en) * 2020-12-09 2023-07-25 交控科技股份有限公司 Equipment registration method and system
CN113923115B (en) * 2021-10-09 2023-08-25 紫光云技术有限公司 VPC configuration issuing method based on RocketMq

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102387061A (en) * 2011-10-21 2012-03-21 华为技术有限公司 Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network)
CN102882758A (en) * 2011-07-12 2013-01-16 华为技术有限公司 Method for accessing virtual private cloud to network, network-side equipment and data center equipment
CN103780467A (en) * 2012-10-19 2014-05-07 华为技术有限公司 Communication connection method, communication device and communication system
CN104283755A (en) * 2013-07-01 2015-01-14 阿里巴巴集团控股有限公司 Virtual private cloud accessing method and system thereof
KR20150116537A (en) * 2014-04-07 2015-10-16 한국전자통신연구원 Method for user authentication in virtual private cloud system and apparatus for providing virtual private cloud service

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102882758A (en) * 2011-07-12 2013-01-16 华为技术有限公司 Method for accessing virtual private cloud to network, network-side equipment and data center equipment
CN102387061A (en) * 2011-10-21 2012-03-21 华为技术有限公司 Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network)
CN103780467A (en) * 2012-10-19 2014-05-07 华为技术有限公司 Communication connection method, communication device and communication system
CN104283755A (en) * 2013-07-01 2015-01-14 阿里巴巴集团控股有限公司 Virtual private cloud accessing method and system thereof
KR20150116537A (en) * 2014-04-07 2015-10-16 한국전자통신연구원 Method for user authentication in virtual private cloud system and apparatus for providing virtual private cloud service

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
Xiaoxin Wu;Donghui Wang.On-Demand VPC Topology Construction for Virtual Perimeter Defense in Public Clouds.《Distributed Computing Systems Workshops (ICDCSW), 2012 32nd International Conference on》.2012,
基于SDN技术的VPC实现分析;李逊;《电信工程技术与标准化》;20150615;全文

Also Published As

Publication number Publication date
CN105721306A (en) 2016-06-29

Similar Documents

Publication Publication Date Title
CN105721306B (en) A kind of transmission method and device of configuration information
US10547463B2 (en) Multicast helper to link virtual extensible LANs
US11563669B2 (en) Method for implementing network virtualization and related apparatus and communications system
CN103026660B (en) Network policy configuration method, management equipment and network management centre device
US10491464B2 (en) Network topology assisted device provisioning
JP2019527988A (en) Packet transmission
US11665088B2 (en) Assisted replication in software defined network
CN104871483A (en) IP multicast service join process for MPLS-based virtual private cloud networking
US10999195B1 (en) Multicast VPN support in data centers using edge replication tree
CN104104534A (en) Realization method of virtual network (VN) management and virtual network management system
CN108011754B (en) Transfer control separation system, backup method and device
CN105763385A (en) Flow scheduling method and apparatus
WO2016008379A1 (en) Automatic configuration method and device for storage array, and storage system
US11658876B2 (en) Software defined access fabric without subnet restriction to a virtual network
Luo et al. Towards network virtualization management for federated cloud systems
Belter et al. The GEYSERS optical testbed: A platform for the integration, validation and demonstration of cloud-based infrastructure services
Fernandez et al. A recursive orchestration and control framework for large-scale, federated SDN experiments: the FELIX architecture and use cases
Mulyana et al. Network Automation with a Single Source of Truth in a Heterogeneous Environment.
CN109347851A (en) A kind of request responding method and device
US12021699B2 (en) Software defined access fabric without subnet restriction to a virtual network
Bruno et al. CCDA 200-310 Official Cert Guide
Janovic ACI Fundamentals: Underlay Infrastructure
Ye et al. TOCA: a tenant-oriented control architecture for multi-domain cloud networks
Thakurratan Learning VMware NSX
Wang MPLS VPN Technology in Campus Network

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant