CN114338397A - Cloud platform network configuration method, device, server, storage medium and system - Google Patents
Cloud platform network configuration method, device, server, storage medium and system Download PDFInfo
- Publication number
- CN114338397A CN114338397A CN202111612758.7A CN202111612758A CN114338397A CN 114338397 A CN114338397 A CN 114338397A CN 202111612758 A CN202111612758 A CN 202111612758A CN 114338397 A CN114338397 A CN 114338397A
- Authority
- CN
- China
- Prior art keywords
- network
- virtual
- addresses
- resource pool
- subnet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 42
- 238000004891 communication Methods 0.000 claims abstract description 38
- 238000012790 confirmation Methods 0.000 claims abstract description 34
- 230000006855 networking Effects 0.000 claims abstract description 9
- 238000010586 diagram Methods 0.000 description 8
- 238000013461 design Methods 0.000 description 7
- 238000004590 computer program Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 238000012423 maintenance Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 238000004364 calculation method Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000013508 migration Methods 0.000 description 1
- 230000005012 migration Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a cloud platform network configuration method, a device, a server, a storage medium and a system, wherein the method comprises the following steps: receiving a networking instruction carrying network information to be configured, wherein the network information to be configured comprises a first subnet resource pool and a second subnet resource pool; configuring external interface addresses of N virtual routers and network addresses of physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets; and controlling the virtual router to operate the ndppd component, so that the virtual router generates a confirmation message according to a destination address contained in the communication message after receiving the communication message, and sends the confirmation message to the physical router, so that the physical router communicates with the virtual router according to the confirmation message.
Description
Technical Field
The invention relates to the technical field of cloud computing, in particular to a cloud platform network configuration method, a cloud platform network configuration device, a cloud platform network configuration server, a storage medium and a cloud platform network configuration system.
Background
The cloud computing platform is converted into a service product through tangible products such as network equipment, servers, storage equipment and various software, and people can use the service product on line at a long distance through a network, so that ownership and use rights of the product are separated, and effective utilization of computing resources is realized. The cloud computing management platform Openstack is a mature open source cloud platform and is widely applied to public cloud, private cloud and mixed cloud scenes at home and abroad.
When an Internet Protocol version 6 (IPv 6) network scheme is deployed in Openstack, an IPv6 network is generally deployed in a Border Gateway Protocol (BGP) manner. The BGP dynamic route is composed of a service plug-in and an agent, the service plug-in realizes network service extension, and the agent manages BGP peer-to-peer conversation. Specifically, a network administrator creates and configures a BGP speaker, BGPspeaker, using a command-line Interface (CLI) or Application Programming Interface (API), and manually schedules it to one or more hosts running the agent.
However, when the BGP dynamic routing is used to implement and deploy IPv6 in the Openstack of the cloud computing management platform, the technical requirements on network management and operation and maintenance personnel are high, and the network deployment efficiency of the cloud platform is affected.
Disclosure of Invention
The invention provides a cloud platform network configuration method, a cloud platform network configuration device, a cloud platform network configuration server, a cloud platform network configuration storage medium and a cloud platform IPv6 network deployment efficiency is improved by controlling a virtual router to operate a ndppd component, and realizing external communication between the virtual router and a physical router.
In a first aspect, the present invention provides a cloud platform network configuration method, including:
receiving a networking instruction carrying network information to be configured, wherein the network information to be configured comprises a first subnet resource pool and a second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool; configuring external interface addresses of N virtual routers and network addresses of physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets, wherein M and N are positive integers; controlling the virtual router to operate an ndppd component, so that after receiving a communication message, the virtual router generates a confirmation message according to a destination address contained in the communication message, and sends the confirmation message to a physical router, so that the physical router communicates with the virtual router according to the confirmation message, wherein the confirmation message contains a local area network address of the virtual router.
In one possible design, after configuring the internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets, the method further includes: and controlling the virtual router to operate the radvd component, so that the virtual router sends a routing advertisement to a corresponding subnet according to the network address of the internal interface, wherein the routing advertisement identifies that the gateway address of the subnet is the network address of the internal interface of the virtual router.
In one possible design, the configuring the network addresses of all the virtual machines according to the second subnet resource pool includes: receiving a configuration request sent by a dynamic host configuration protocol client on the virtual machine, and acquiring a corresponding IPv6 network address from a second subnet resource pool according to the configuration request; sending the IPv6 network address to a virtual machine, so that the virtual machine deploys a network according to the IPv6 network address.
In one possible design, the communication message is an external neighbor solicitation message, and the destination address is an IPv6 network address.
In a second aspect, the present invention provides a cloud platform network configuration apparatus, including: the device comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a networking instruction carrying network information to be configured, and the network information to be configured comprises a first subnet resource pool and a second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool; a configuration module, configured to configure, according to the first subnet resource pool, external interface addresses of N virtual routers and network addresses of the physical routers, configure, according to the second subnet resource pool, network addresses of all virtual machines and gateway addresses of M subnets, and configure, according to the gateway addresses of M subnets, internal interface addresses of N virtual routers, where M and N are positive integers; the first control module is used for controlling the virtual router to operate the ndppd component, so that after the virtual router receives a communication message, a confirmation message is generated according to a destination address contained in the communication message, the confirmation message is sent to a physical router, and the physical router communicates with the virtual router according to the confirmation message, wherein the confirmation message contains a local area network address of the virtual router.
In a possible design, the apparatus further includes a second control module, where the second control module is configured to control the virtual router to operate the radvd component, so that the virtual router sends a route advertisement to a corresponding subnet according to a network address of the internal interface, where the route advertisement identifies that a gateway address of the subnet is a network address of the internal interface of the virtual router.
In a third aspect, the present invention provides a network server, comprising: at least one processor and memory; the memory stores computer-executable instructions; the at least one processor executing the computer-executable instructions stored by the memory causes the at least one processor to perform the cloud platform network configuration method as set forth in the first aspect above and in various possible designs of the first aspect.
In a fourth aspect, the present invention provides a computer storage medium, where computer executable instructions are stored, and when a processor executes the computer executable instructions, the cloud platform network configuration method according to the first aspect and various possible designs of the first aspect is implemented.
In a fifth aspect, the present invention provides a cloud platform system, comprising: at least one control server, at least one network server, and at least one computing server; the network server is used for implementing the cloud platform network configuration method according to the first aspect and various possible designs of the first aspect; the control server is used for controlling the network server and the computing server; and the computing server is responsible for running the virtual machine in the cloud platform.
According to the cloud platform network configuration method, the cloud platform network configuration device, the cloud platform network configuration server, the storage medium and the cloud platform IPv6 network deployment system, the virtual router is controlled to operate the ndppd component, external communication between the virtual router and the physical router is achieved, the flow of the physical router can be sent to the virtual machine of the cloud platform according to the IPv6 network address, IPv6 network communication of the cloud platform is achieved, and the cloud platform IPv6 network deployment efficiency is improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic structural diagram of a cloud platform system provided in an embodiment of the present invention;
fig. 2 is a first flowchart of a cloud platform network configuration method according to an embodiment of the present invention;
fig. 3 is a schematic diagram of a cloud platform network according to an embodiment of the present invention;
fig. 4 is a schematic flow chart of a cloud platform network configuration method according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of a cloud platform network configuration apparatus according to an embodiment of the present invention;
fig. 6 is a schematic hardware structure diagram of a network server according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The address length of the next generation Internet based on Internet Protocol version 6 (IPv 6) is 128 bits, and the IPv6 address space is a multiple of "96 th power of 2" of the number of IPv4 addresses. At present, the root domain name server has realized the support to the IPv6, the global Internet management organization has increasingly accelerated the distribution speed of the IPv6 address, and the IPv6 has already had the basis of wide application. The cloud computing management platform Openstack is a mature open source cloud platform and is widely applied to public cloud, private cloud and mixed cloud scenes at home and abroad. When the IPv6 network scheme is deployed in the cloud computing management platform Openstack, the IPv6 network is typically deployed in a BGP manner. The BGP dynamic route is composed of a service plug-in and an agent, the service plug-in realizes network service extension, and the agent manages BGP peer-to-peer conversation. Specifically, a network administrator creates and configures a bgpspeak using a command-line Interface (CLI) or Application Programming Interface (API), and manually schedules it to one or more hosts running the agent. However, when the BGP dynamic routing is used to implement and deploy IPv6 in the Openstack of the cloud computing management platform, the technical requirements on network management and operation and maintenance personnel are high, and the network deployment efficiency of the cloud platform is affected.
In order to solve the above technical problem, the embodiment of the present invention proposes the following technical solutions: and configuring external interface addresses of the N virtual routers and network addresses of the physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of the M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets. According to the cloud platform system method provided by the embodiment of the invention, the virtual router is controlled to operate the ndppd component, so that the virtual router generates the confirmation message according to the destination address contained in the communication message after receiving the communication message, and sends the confirmation message to the physical router, the physical router is enabled to communicate with the virtual router according to the confirmation message, and the deployment efficiency of the IPv6 network of the cloud platform is improved.
Fig. 1 is a schematic structural diagram of a cloud platform system provided in an embodiment of the present invention. In the embodiment of the invention, the cloud platform system comprises a control server, a network server and a computing server. The number of the control server, the network server and the calculation server is not limited. The control node, the network node and the computing node in the OpenStack architecture of the cloud computing management platform may be configured on one server, or may be respectively deployed on different servers. In the embodiment of the present invention, the control node, the network node, and the computing node are deployed in different servers, that is, the cloud platform network configuration architecture provided in the embodiment of the present invention includes a control server, a network server, and a computing server. As shown in fig. 1, a cloud platform network configuration architecture implemented based on a cloud computing management platform OpenStack according to an embodiment of the present invention includes a control server, a network server, and a computing server. Specifically, the computing server is responsible for running the virtual machine. The control server is responsible for controlling the network nodes and the computing nodes, and comprises virtual machine establishment, migration, network allocation, storage allocation and the like. The control server in the embodiment of the invention realizes the network topology management of the network node mainly by providing network management service. The network server comprises a Neutron service component and is responsible for communication between an external network and an internal network of the cloud platform. Specifically, the network server is responsible for managing communication between the private network segment and the public network segment, managing communication/topology between virtual machine networks, managing fire protection on virtual machines, and the like. In the embodiment of the invention, the network server realizes the IPv6 network configuration of the cloud platform virtual machine node by running the radvd process and the ndppd process.
Fig. 2 is a schematic flow chart of a cloud platform network configuration method according to an embodiment of the present invention, where an execution subject of this embodiment may be a network server in the embodiment shown in fig. 1. As shown in fig. 2, the method includes:
s201: receiving a networking instruction carrying network information to be configured, wherein the network information to be configured comprises a first subnet resource pool and a second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool.
In the embodiment of the invention, the IPv6 address range allocated to the cloud platform is stored in the database in the control server. Specifically, when the cloud platform applies for an IPv6 address from an operator, an IPv6 address range of a specified mask bit number is obtained, and the IPv6 address range is used as an IPv6 address pool of the cloud platform, such as 2008: db8:0:1: 1/48. This IPv6 address range may be divided into 16 power networks of 2 according to traffic specific needs. In the embodiment of the invention, in order to realize the IPv6 communication of a cloud platform, all subnets in an IPv6 address pool are divided into a first subnet resource pool and a second subnet resource pool, network data of the first subnet resource pool and the second subnet resource pool which are well distributed are stored in a database, a Neutron server in a control server sends a networking instruction to a network server according to an IPv6 address range stored in the database, the networking instruction carries network information to be configured, and the network information to be configured comprises information of the first subnet resource pool and the second subnet resource pool. The subnet addresses in the first subnet resource pool are used for configuring the external network of the virtual router, and the subnet addresses in the second subnet resource pool are used for configuring the internal network of the virtual router.
S202: and configuring external interface addresses of N virtual routers and network addresses of physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets, wherein M and N are positive integers.
Fig. 3 is a schematic diagram of a cloud platform network according to an embodiment of the present invention. As shown in FIG. 3, the proxy in the Neutron service component configures the external interface addresses of the N virtual routers and the network address of the physical router according to the first subnet resource pool, i.e. configures the network address of the Gateway (Gateway) to 2008: db8:0:1: 1/48. Specifically, an IPv6 subnet is allocated to the physical router in the first subnet resource pool, specifically, the address is 2008: db8:0:1: 1/64, but the mask of the network address of the interface of the physical router needs to be set to 48, that is, all packets of the network are transmitted from the interface of the physical router, i.e., 2008: db8:0:1: 1/64 is set. The external interface addresses of the virtual router VR0 and the virtual router VR1 are configured as 2008: db8:0:1::2/48 and 2008: db8:0:1::3/48, respectively. And configuring network addresses of all the virtual machines and gateway addresses of the M subnets according to the second subnet resource pool, namely allocating IPv6 network addresses to the virtual machines VM according to IPv6 contained in the second subnet resource pool, respectively configuring gateway addresses of subnet1 and subnet2 under VR0 as 2008: db8:0:2: 64 and 2008: db8:0:3: 64, and configuring gateway addresses of subnet1 and subnet2 under VR1 as 2008: db8:0:4: 64 and 2008: db8:0:5: 64.
In the embodiment of the invention, the subnet1, the subnet2 and the VR0 are bound, and in order to realize that the subnet1 and the subnet2 respectively carry out data with the VR0 through internal interfaces, the addresses of the internal interfaces are configured to be the network addresses of the VR 0. In the embodiment of the invention, the virtual router is controlled to operate the radvd component, so that the virtual router sends the route advertisement to the corresponding subnet according to the network address of the internal interface, wherein the route advertisement identifies that the gateway address of the subnet is the network address of the internal interface of the virtual router. By controlling the VR0 to start a radvd process, the VR0 listens to the internal interfaces with the subnet1 and subnet2 and sends route advertisements to all VMs under the subnet1 and subnet2 at regular time. The advertisement is a Dynamic Host Configuration Protocol (DHCP) IPv6 routing advertisement, and is used to inform all VMs under subnet1 and subnet2 that the default gateway address is an internal interface address of VR 0.
S203: and controlling the virtual router to operate the ndppd component, so that the virtual router generates a confirmation message according to a destination address contained in the communication message after receiving the communication message, and sends the confirmation message to the physical router, so that the physical router communicates with the virtual router according to the confirmation message, wherein the confirmation message contains a local area network address of the virtual router.
In the embodiment of the invention, the communication message is an external neighbor solicitation message, and the destination address is an IPv6 network address. In the embodiment of the present invention, on the basis of the cloud platform network configuration provided in fig. 3, when a physical router receives a data packet belonging to the network 2008: db8:0:1: 1/48 from the outside, a neighbor discovery message is sent to all virtual machine routers through an interface 2008: db8:0:1: 1/48, that is, a GW sends communication messages to VR0 and VR1 through an interface 2008: db8:0:1: 1/48, where the communication messages are neighbor discovery messages. And after the group sending of the neighbor discovery message, controlling the virtual machine router to run the ndppd component. The ndppd component is used for enabling the virtual machine router to generate a confirmation message and send the confirmation message to the physical router after receiving the neighbor discovery message and judging that a target network address contained in the communication message belongs to a network segment of the virtual router. Specifically, the virtual router generates a confirmation message, that is, a reply message of the neighbor discovery message, where the reply message of the neighbor discovery message includes the local area network address of the virtual router, so that the physical router establishes external communication with the virtual router according to the local area network address of the virtual router after receiving the confirmation message.
According to the cloud platform network configuration method provided by the embodiment, the virtual router is controlled to operate the ndppd component, so that external communication between the virtual router and the physical router is realized, the flow of the physical router can be sent to a virtual machine of a cloud platform according to an IPv6 network address, and IPv6 network communication of the cloud platform is realized.
Fig. 4 is a schematic flow chart of a cloud platform network configuration method according to an embodiment of the present invention. In the embodiment of the present invention, based on the embodiment provided in fig. 2, a specific implementation method for configuring network addresses of all virtual machines according to the second subnet resource pool in S202 is described in detail. As shown in fig. 4, the method includes:
s401: and receiving a configuration request sent by a Dynamic Host Configuration Protocol (DHCP) client on the virtual machine, and acquiring a corresponding IPv6 network address from the second subnet resource pool according to the configuration request.
In a cloud platform realized based on an OpenStack cloud computing management platform, a Neutron service component is provided in a network server, and the Neutron service component comprises a DHCP component of a dynamic host configuration protocol. In the cloud platform network configuration method provided by the embodiment of the invention, in order to implement IPv6 network communication of the cloud platform, an IPv6 network needs to be configured for all virtual machines in the cloud platform. Specifically, when the virtual machine is created, the computing server configures the virtual machine in the cloud platform to support the IPv6 communication protocol. In the embodiment of the invention, the virtual machine is allocated with the IPv6 network address according to the IPv6 network address in the second subnet resource pool. Specifically, after receiving a configuration request sent by a DHCP client on the virtual machine, the corresponding IPv6 network address is obtained from the second subnet resource pool according to the identifier of the virtual machine included in the configuration request.
S402: the IPv6 network address is sent to the virtual machine, causing the virtual machine to deploy the network according to the IPv6 network address.
In the embodiment of the invention, after the IPv6 network address corresponding to the virtual machine is obtained, the allocated IPv6 network address is sent to the virtual machine according to the DHCP protocol, so that the virtual machine configures the network address according to the IPv6 network address.
According to the cloud platform network configuration method provided by the embodiment, an IPv6 network address is allocated to the virtual machine according to the IPv6 network address in the reserved second subnet resource pool, so that the virtual machine in the cloud platform deploys the network according to the second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool, so that the virtual machine in the cloud platform communicates with the virtual machine router and the physical router through an IPv6 communication protocol, and the IPv6 network deployment of the cloud platform is realized.
Fig. 5 is a schematic structural diagram of a cloud platform network configuration device according to an embodiment of the present invention. As shown in fig. 5, the cloud platform network configuration apparatus includes: a receiving module 501, a configuration module 502 and a first control module 503.
A receiving module 501, configured to receive a networking instruction carrying network information to be configured, where the network information to be configured includes a first subnet resource pool and a second subnet resource pool, where the first subnet resource pool and the second subnet resource pool belong to a same IPv6 address pool;
a configuration module 502, configured to configure, according to the first subnet resource pool, external interface addresses of N virtual routers and network addresses of the physical routers, configure, according to the second subnet resource pool, network addresses of all virtual machines and gateway addresses of M subnets, and configure, according to the gateway addresses of M subnets, internal interface addresses of N virtual routers, where M and N are positive integers;
a first control module 503, configured to control the virtual router to run an ndppd component, so that after receiving a communication packet, the virtual router generates a confirmation packet according to a destination address included in the communication packet, and sends the confirmation packet to a physical router, so that the physical router communicates with the virtual router according to the confirmation packet, where the confirmation packet includes a local area network address of the virtual router.
In a possible implementation manner, the cloud platform network configuration device further includes a second control module, where the second control module is configured to control the virtual router to operate the radvd component, so that the virtual router sends a route advertisement to a corresponding subnet according to a network address of the internal interface, where the route advertisement identifies that a gateway address of the subnet is a network address of the internal interface of the virtual router.
The apparatus provided in this embodiment may be used to implement the technical solutions of the above method embodiments, and the implementation principles and technical effects are similar, which are not described herein again.
Fig. 6 is a schematic hardware structure diagram of a network server according to an embodiment of the present invention. As shown in fig. 6, the web server of the present embodiment includes: a processor 601 and a memory 602; wherein
A memory 602 for storing computer-executable instructions;
the processor 601 is configured to execute the computer execution instructions stored in the memory to implement the steps performed by the network server in the above embodiments. Reference may be made in particular to the description relating to the method embodiments described above.
Alternatively, the memory 602 may be separate or integrated with the processor 601.
When the memory 602 is separately provided, the network server further includes a bus 603 for connecting the memory 602 and the processor 601.
The embodiment of the invention also provides a computer storage medium, wherein a computer execution instruction is stored in the computer storage medium, and when a processor executes the computer execution instruction, the cloud platform network configuration method is realized.
An embodiment of the present invention further provides a computer program product, which includes a computer program, and when the computer program is executed by a processor, the cloud platform network configuration method described above is implemented.
In the embodiments provided in the present invention, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described device embodiments are merely illustrative, and for example, the division of the modules is only one logical division, and other divisions may be realized in practice, for example, a plurality of modules may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or modules, and may be in an electrical, mechanical or other form.
The modules described as separate parts may or may not be physically separate, and parts displayed as modules may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to implement the solution of the present embodiment.
In addition, functional modules in the embodiments of the present invention may be integrated into one processing unit, or each module may exist alone physically, or two or more modules are integrated into one unit. The unit formed by the modules can be realized in a hardware form, and can also be realized in a form of hardware and a software functional unit.
The integrated module implemented in the form of a software functional module may be stored in a computer-readable storage medium. The software functional module is stored in a storage medium and includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device) or a processor to execute some steps of the methods described in the embodiments of the present application.
It should be understood that the Processor may be a Central Processing Unit (CPU), other general purpose Processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), etc. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. The steps of a method disclosed in connection with the present invention may be embodied directly in a hardware processor, or in a combination of the hardware and software modules within the processor.
The memory may comprise a high-speed RAM memory, and may further comprise a non-volatile storage NVM, such as at least one disk memory, and may also be a usb disk, a removable hard disk, a read-only memory, a magnetic or optical disk, etc.
The bus may be an Industry Standard Architecture (ISA) bus, a Peripheral Component Interconnect (PCI) bus, an Extended ISA (Extended Industry Standard Architecture) bus, or the like. The bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, the buses in the figures of the present application are not limited to only one bus or one type of bus.
The storage medium may be implemented by any type or combination of volatile or non-volatile memory devices, such as Static Random Access Memory (SRAM), electrically erasable programmable read-only memory (EEPROM), erasable programmable read-only memory (EPROM), programmable read-only memory (PROM), read-only memory (ROM), magnetic memory, flash memory, magnetic or optical disks. A storage media may be any available media that can be accessed by a general purpose or special purpose computer.
An exemplary storage medium is coupled to the processor such the processor can read information from, and write information to, the storage medium. Of course, the storage medium may also be integral to the processor. The processor and the storage medium may reside in an Application Specific Integrated Circuits (ASIC). Of course, the processor and the storage medium may reside as discrete components in an electronic device or host device.
Those of ordinary skill in the art will understand that: all or a portion of the steps of implementing the above-described method embodiments may be performed by hardware associated with program instructions. The program may be stored in a computer-readable storage medium. When executed, the program performs steps comprising the method embodiments described above; and the aforementioned storage medium includes: various media that can store program codes, such as ROM, RAM, magnetic or optical disks.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present invention.
Claims (10)
1. A cloud platform network configuration method is characterized by comprising the following steps:
receiving a networking instruction carrying network information to be configured, wherein the network information to be configured comprises a first subnet resource pool and a second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool;
configuring external interface addresses of N virtual routers and network addresses of physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets, wherein M and N are positive integers;
controlling the virtual router to operate an ndppd component, so that after receiving a communication message, the virtual router generates a confirmation message according to a destination address contained in the communication message, and sends the confirmation message to a physical router, so that the physical router communicates with the virtual router according to the confirmation message, wherein the confirmation message contains a local area network address of the virtual router.
2. The method of claim 1, further comprising, after said configuring the internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets:
and controlling the virtual router to operate the radvd component, so that the virtual router sends a routing advertisement to a corresponding subnet according to the network address of the internal interface, wherein the routing advertisement identifies that the gateway address of the subnet is the network address of the internal interface of the virtual router.
3. The method of claim 1, wherein the configuring network addresses of all virtual machines according to the second subnet resource pool comprises:
receiving a configuration request sent by a dynamic host configuration protocol client on the virtual machine, and acquiring a corresponding IPv6 network address from a second subnet resource pool according to the configuration request;
sending the IPv6 network address to a virtual machine, so that the virtual machine deploys a network according to the IPv6 network address.
4. The method according to any one of claims 1 to 3, wherein the communication message is an external neighbor solicitation message and the destination address is an IPv6 network address.
5. A network security configuration apparatus, comprising:
the device comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a networking instruction carrying network information to be configured, and the network information to be configured comprises a first subnet resource pool and a second subnet resource pool, and the first subnet resource pool and the second subnet resource pool belong to the same IPv6 address pool;
the configuration module is used for configuring external interface addresses of N virtual routers and network addresses of physical routers according to the first subnet resource pool, configuring network addresses of all virtual machines and gateway addresses of M subnets according to the second subnet resource pool, and configuring internal interface addresses of the N virtual routers according to the gateway addresses of the M subnets, wherein M and N are positive integers;
the first control module is used for controlling the virtual router to operate the ndppd component, so that after the virtual router receives a communication message, a confirmation message is generated according to a destination address contained in the communication message, the confirmation message is sent to a physical router, and the physical router communicates with the virtual router according to the confirmation message, wherein the confirmation message contains a local area network address of the virtual router.
6. The apparatus of claim 5, further comprising a second control module, configured to control the virtual router to operate the radvd component, so that the virtual router sends a routing advertisement to a corresponding subnet according to the network address of the internal interface, wherein the routing advertisement identifies that the gateway address of the subnet is the network address of the internal interface of the virtual router.
7. A network server, comprising: at least one processor and memory;
the memory stores computer-executable instructions;
the at least one processor executing the memory-stored computer-executable instructions cause the at least one processor to perform the cloud platform network configuration method of any of claims 1 to 4.
8. A computer storage medium having computer executable instructions stored therein, which when executed by a processor, implement the cloud platform network configuration method of any one of claims 1 to 4.
9. A cloud platform system, comprising: at least one control server, at least one network server, and at least one computing server;
the network server is used for executing the cloud platform network configuration method of any one of claims 1 to 4;
the control server is used for controlling the network server and the computing server;
and the computing server is responsible for running the virtual machine in the cloud platform.
10. The network of claim 9, wherein the computing server is further configured to configure a virtual machine in the cloud platform to support an IPv6 communication protocol.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111612758.7A CN114338397B (en) | 2021-12-27 | 2021-12-27 | Cloud platform network configuration method, device, server, storage medium and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111612758.7A CN114338397B (en) | 2021-12-27 | 2021-12-27 | Cloud platform network configuration method, device, server, storage medium and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114338397A true CN114338397A (en) | 2022-04-12 |
| CN114338397B CN114338397B (en) | 2023-11-03 |
Family
ID=81013553
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111612758.7A Active CN114338397B (en) | 2021-12-27 | 2021-12-27 | Cloud platform network configuration method, device, server, storage medium and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114338397B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115277639A (en) * | 2022-05-30 | 2022-11-01 | 紫光建筑云科技(重庆)有限公司 | Method for realizing VPC supporting IPv6 |
| CN115334036A (en) * | 2022-08-11 | 2022-11-11 | 江苏安超云软件有限公司 | Method and device for intelligently controlling source address conversion, electronic equipment and storage medium |
| WO2024012001A1 (en) * | 2022-07-11 | 2024-01-18 | 广东省新一代通信与网络创新研究院 | Method and system for implementing access to open source community in multi-modal network |
Citations (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070153810A1 (en) * | 2006-01-04 | 2007-07-05 | Samsung Electronics Co., Ltd. | Emulation device and method for supporting IPv6 in WiBro terminal |
| CN101741824A (en) * | 2008-11-14 | 2010-06-16 | 华为技术有限公司 | IPv6 address resolution method, device and neighbor discovery message processing method |
| WO2012051872A1 (en) * | 2010-10-18 | 2012-04-26 | 中兴通讯股份有限公司 | Method for expanding layer 2 network and expanded layer 2 network |
| CN103346900A (en) * | 2013-05-31 | 2013-10-09 | 华为技术有限公司 | Route configuration method and gateway after thermal migration of virtual machine in large two-layer network |
| CN103731820A (en) * | 2014-01-12 | 2014-04-16 | 绵阳师范学院 | Method for access control based on MAC address conversion in IPv6 wireless router |
| WO2015021629A1 (en) * | 2013-08-15 | 2015-02-19 | 华为技术有限公司 | Resource allocation method |
| WO2015069157A1 (en) * | 2013-11-07 | 2015-05-14 | Telefonaktiebolaget L M Ericsson (Publ) | Setting up a virtual machine for an ip device |
| CN104660479A (en) * | 2015-02-13 | 2015-05-27 | 南京华讯方舟通信设备有限公司 | Networking method and network system |
| CN105207853A (en) * | 2015-10-12 | 2015-12-30 | 深圳市万网博通科技有限公司 | Local area network monitoring management method |
| CN105813055A (en) * | 2014-12-30 | 2016-07-27 | 华为技术有限公司 | Roaming method based on IP and roaming device |
| WO2017032300A1 (en) * | 2015-08-25 | 2017-03-02 | 华为技术有限公司 | Data transmission method, virtual network management apparatus, and data transmission system |
| CN106487695A (en) * | 2015-08-25 | 2017-03-08 | 华为技术有限公司 | A kind of data transmission method, virtual network managing device and data transmission system |
| CN108600415A (en) * | 2018-05-28 | 2018-09-28 | 郑州云海信息技术有限公司 | A kind of virtual network accesses method, system and the SDN controllers of outer net |
| CN109688241A (en) * | 2018-12-25 | 2019-04-26 | 武汉烽火信息集成技术有限公司 | IPv4/IPv6 dual stack conversion method and system based on SDN |
| CN113438329A (en) * | 2020-03-23 | 2021-09-24 | 华为技术有限公司 | MAC address sending method, device and system |
| US20210314190A1 (en) * | 2020-04-01 | 2021-10-07 | Vmware, Inc. | Virtual network custom resource definition |
-
2021
- 2021-12-27 CN CN202111612758.7A patent/CN114338397B/en active Active
Patent Citations (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070153810A1 (en) * | 2006-01-04 | 2007-07-05 | Samsung Electronics Co., Ltd. | Emulation device and method for supporting IPv6 in WiBro terminal |
| CN101741824A (en) * | 2008-11-14 | 2010-06-16 | 华为技术有限公司 | IPv6 address resolution method, device and neighbor discovery message processing method |
| WO2012051872A1 (en) * | 2010-10-18 | 2012-04-26 | 中兴通讯股份有限公司 | Method for expanding layer 2 network and expanded layer 2 network |
| CN103346900A (en) * | 2013-05-31 | 2013-10-09 | 华为技术有限公司 | Route configuration method and gateway after thermal migration of virtual machine in large two-layer network |
| WO2015021629A1 (en) * | 2013-08-15 | 2015-02-19 | 华为技术有限公司 | Resource allocation method |
| WO2015069157A1 (en) * | 2013-11-07 | 2015-05-14 | Telefonaktiebolaget L M Ericsson (Publ) | Setting up a virtual machine for an ip device |
| CN103731820A (en) * | 2014-01-12 | 2014-04-16 | 绵阳师范学院 | Method for access control based on MAC address conversion in IPv6 wireless router |
| CN105813055A (en) * | 2014-12-30 | 2016-07-27 | 华为技术有限公司 | Roaming method based on IP and roaming device |
| CN104660479A (en) * | 2015-02-13 | 2015-05-27 | 南京华讯方舟通信设备有限公司 | Networking method and network system |
| CN106487695A (en) * | 2015-08-25 | 2017-03-08 | 华为技术有限公司 | A kind of data transmission method, virtual network managing device and data transmission system |
| WO2017032300A1 (en) * | 2015-08-25 | 2017-03-02 | 华为技术有限公司 | Data transmission method, virtual network management apparatus, and data transmission system |
| CN105207853A (en) * | 2015-10-12 | 2015-12-30 | 深圳市万网博通科技有限公司 | Local area network monitoring management method |
| CN108600415A (en) * | 2018-05-28 | 2018-09-28 | 郑州云海信息技术有限公司 | A kind of virtual network accesses method, system and the SDN controllers of outer net |
| CN109688241A (en) * | 2018-12-25 | 2019-04-26 | 武汉烽火信息集成技术有限公司 | IPv4/IPv6 dual stack conversion method and system based on SDN |
| CN113438329A (en) * | 2020-03-23 | 2021-09-24 | 华为技术有限公司 | MAC address sending method, device and system |
| US20210314190A1 (en) * | 2020-04-01 | 2021-10-07 | Vmware, Inc. | Virtual network custom resource definition |
Non-Patent Citations (4)
| Title |
|---|
| TAO ZHANG; ZHILONG WANG: "Research on IPv6 Neighbor Discovery Protocol (NDP) security", 2016 2ND IEEE INTERNATIONAL CONFERENCE ON COMPUTER AND COMMUNICATIONS (ICCC) * |
| 与非朋仔: "openwrt+ndp+ndppd+radvd+dhcpv6, ipv6穿透配置指南", Retrieved from the Internet <URL:https://www.cnblogs.com/flintlovesam/p/5329241.html> * |
| 孙彩兰;: "私有云研究与设计", 好家长, no. 59 * |
| 柯林;: "局域网中的IPv6", 数字技术与应用, no. 01 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115277639A (en) * | 2022-05-30 | 2022-11-01 | 紫光建筑云科技(重庆)有限公司 | Method for realizing VPC supporting IPv6 |
| WO2024012001A1 (en) * | 2022-07-11 | 2024-01-18 | 广东省新一代通信与网络创新研究院 | Method and system for implementing access to open source community in multi-modal network |
| CN115334036A (en) * | 2022-08-11 | 2022-11-11 | 江苏安超云软件有限公司 | Method and device for intelligently controlling source address conversion, electronic equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114338397B (en) | 2023-11-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11063819B2 (en) | Managing use of alternative intermediate destination computing nodes for provided computer networks | |
| US11516080B2 (en) | Using virtual networking devices and routing information to associate network addresses with computing nodes | |
| CN114338397B (en) | Cloud platform network configuration method, device, server, storage medium and system | |
| EP3466037B1 (en) | Subnet stretching via layer three communications | |
| CN108347493B (en) | Hybrid cloud management method and device and computing equipment | |
| US9794116B2 (en) | Managing use of intermediate destination computing nodes for provided computer networks | |
| US9973379B1 (en) | Managing integration of external nodes into provided computer networks | |
| CN116057910B (en) | Virtual private cloud communication and configuration method and related device | |
| US9491002B1 (en) | Managing communications involving external nodes of provided computer networks | |
| CN108924268B (en) | Container cloud service system and pod creation method and device | |
| US9356860B1 (en) | Managing external communications for provided computer networks | |
| US10084851B1 (en) | Managing use of intermediate destination hardware devices for provided computer networks | |
| EP2866389A1 (en) | Method and device thereof for automatically finding and configuring virtual network | |
| CN110063045B (en) | Message processing method and device in cloud computing system | |
| CN101753460B (en) | Method and device for processing internet protocol version 6(IPV6) routing prefix | |
| CN111277674A (en) | Managing address space across network elements | |
| CN116319529A (en) | Auxiliary replication in software defined networks | |
| WO2018045992A1 (en) | Address management method and apparatus | |
| JP2019510406A (en) | Addressing for customer premises LAN expansion | |
| CN104104749A (en) | Method and device for allocating tunnel IP addresses | |
| CN111277506B (en) | Method for improving reliability of SLAAC (slow ranging Access control) distribution IPv6 address | |
| CN113014680B (en) | Broadband access method, device, equipment and storage medium | |
| CN114765601A (en) | Address prefix obtaining method and device | |
| JP2022058267A (en) | Route processing method and network device | |
| CN111147345B (en) | Cloud environment network isolation device and method and cloud system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |