CN114884905A - Flow mirroring method, device, equipment and computer storage medium - Google Patents

Flow mirroring method, device, equipment and computer storage medium Download PDF

Info

Publication number
CN114884905A
CN114884905A CN202210404016.3A CN202210404016A CN114884905A CN 114884905 A CN114884905 A CN 114884905A CN 202210404016 A CN202210404016 A CN 202210404016A CN 114884905 A CN114884905 A CN 114884905A
Authority
CN
China
Prior art keywords
message
target
virtual network
field
mirror image
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210404016.3A
Other languages
Chinese (zh)
Other versions
CN114884905B (en
Inventor
焦利涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sangfor Technologies Co Ltd
Original Assignee
Sangfor Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sangfor Technologies Co Ltd filed Critical Sangfor Technologies Co Ltd
Priority to CN202210404016.3A priority Critical patent/CN114884905B/en
Publication of CN114884905A publication Critical patent/CN114884905A/en
Application granted granted Critical
Publication of CN114884905B publication Critical patent/CN114884905B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/20Support for services
    • H04L49/208Port mirroring
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/30Peripheral units, e.g. input or output ports
    • H04L49/3009Header conversion, routing tables or routing tags
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/70Virtual switches

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The embodiment of the application provides a traffic mirroring method, a traffic mirroring device, electronic equipment and a computer storage medium, wherein the method is applied to source virtual network equipment and comprises the following steps: acquiring configuration information; the configuration information is related to the target virtual network device; when the original message passing through the self-body is obtained, copying the original message to obtain a mirror image message; packaging the customized data head and the mirror image message to obtain a first message; the self-defined data head comprises configuration information; packaging the preset information and the first message to obtain a target message; the preset information comprises address information of the target host; and sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.

Description

Flow mirroring method, device, equipment and computer storage medium
Technical Field
The present application relates to the field of computer technologies, and in particular, to a traffic mirroring method and apparatus, an electronic device, and a computer storage medium.
Background
At present, the mirror image from a Virtual machine to a Virtual machine in different hosts is to mirror the flow of the Virtual machine to an external switch, take a specific Virtual Local Area Network (VLAN), and send a message of the specific VLAN to a specific physical port of a destination host through a physical switch; and then the message of a specific VLAN on a specific physical port of the destination host is mirrored to the destination virtual machine on the host.
However, when the above-mentioned method is used to perform traffic mirroring, it is necessary to additionally configure a port attribute on the physical switch, which results in complicated configuration and is prone to error, and it is also necessary to add a forwarding table of the physical switch, which may lead to a failure of a switch service in a severe case and affect the traffic mirroring effect.
Disclosure of Invention
The application provides a traffic mirroring method, a traffic mirroring device, electronic equipment and a computer storage medium, which can reduce configuration complexity in a traffic mirroring process and reduce influence on a physical switch forwarding table.
The technical scheme of the application is realized as follows:
the embodiment of the application provides a flow mirroring method, which is applied to a source virtual network device, and comprises the following steps:
acquiring configuration information; the configuration information is related to the target virtual network equipment;
when an original message passing through the self-body is obtained, copying the original message to obtain a mirror image message;
packaging the self-defined data header and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host;
and sending the target message to the target host according to the preset information, so that the target host sends a mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
The embodiment of the present application further provides a traffic mirroring method, which is applied to a destination host, and the method includes:
receiving a target message sent by a source virtual network device according to preset information; the preset information comprises address information of the target host; the target message is obtained according to the following modes: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging preset information and the first message to obtain the target message; the self-defined data head comprises configuration information, and the configuration information is related to the target virtual network equipment;
and sending the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
The embodiment of the application provides a traffic mirroring device, which is applied to a source virtual network device and comprises an acquisition module, a copy module, an encapsulation module and a first sending module, wherein,
the acquisition module is used for acquiring configuration information; the configuration information is related to the target virtual network equipment;
the copying module is used for copying the original message to obtain a mirror image message when the original message passing through the copying module is obtained;
the encapsulation module encapsulates the self-defined data head and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host;
and the first sending module is used for sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
The embodiment of the present application further provides a traffic mirroring apparatus, applied in a destination host, the apparatus includes a receiving module and a second sending module, wherein,
the receiving module is used for receiving a target message sent by the source virtual network equipment according to preset information; the preset information comprises address information of the target host; the target message is obtained according to the following modes: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging preset information and the first message to obtain the target message; the self-defined data head comprises configuration information, and the configuration information is related to the target virtual network equipment;
and the second sending module is used for sending the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
An embodiment of the present application provides an electronic device, where the device includes a memory, a processor, and a computer program stored in the memory and executable on the processor, and the processor executes the computer program to implement any of the aforementioned traffic mirroring methods applied to a source virtual network device.
The embodiment of the present application provides another electronic device, where the device includes a memory, a processor, and a computer program stored in the memory and executable on the processor, and the processor executes the computer program to implement any of the aforementioned traffic mirroring methods applied to a destination host.
The embodiment of the application provides a computer storage medium, wherein a computer program is stored in the computer storage medium; the computer program can implement the traffic mirroring method provided by one or more of the above technical solutions after being executed.
The embodiment of the application provides a traffic mirroring method, a traffic mirroring device, electronic equipment and a computer storage medium, wherein the method is applied to source virtual network equipment and comprises the following steps: acquiring configuration information; the configuration information is related to the target virtual network equipment; when an original message passing through the self-body is obtained, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host; and sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
It can be seen that, in the embodiment of the present application, after a mirror image message is obtained by copying an original message, the mirror image message is encapsulated by using a custom data head, and the encapsulated mirror image message is sent to a destination host through address information of the destination host; after the target host is reached, the mirror image message is sent to the target virtual network equipment according to the target virtual network equipment information carried in the target message, so that the mirror image message is forwarded to a connected virtual machine network port or a physical network port through the target virtual network equipment; compared with the prior art, the process does not need to additionally increase the forwarding table of the physical switch and additionally configure the port attribute of the physical switch, so that the configuration complexity is reduced, and the influence on the forwarding table of the physical switch is reduced.
Drawings
Fig. 1A is a schematic view of a scenario in which a virtual network device performs traffic mirroring between different hosts in an embodiment of the present application;
fig. 1B is a schematic flow chart of a traffic mirroring method in an embodiment of the present application;
fig. 1C is a schematic flowchart of configuration information issuing in this embodiment of the present application;
fig. 1D is a schematic structural diagram of a Subheader in an embodiment of the present application;
FIG. 1E is a schematic structural diagram of another Subheader in the embodiment of the present application;
FIG. 1F is a schematic structural diagram of an erspan III head in an embodiment of the present application;
FIG. 1G is a schematic diagram of a gre head in an embodiment of the present application;
fig. 1H is a schematic structural diagram of an Internet Protocol Address (IP Address) header in an embodiment of the present application;
fig. 1I is a schematic structural diagram of a target packet encapsulation format in an embodiment of the present application;
FIG. 2A is a schematic flow chart diagram of another traffic mirroring method in an embodiment of the present application;
fig. 2B is a schematic flowchart of a process of obtaining a target packet in this embodiment of the present application;
fig. 2C is a schematic flowchart of a target host processing a target packet in this embodiment of the present application;
fig. 3A is a schematic structural diagram of a flow mirroring apparatus in an embodiment of the present application;
FIG. 3B is a schematic diagram of another flow mirroring apparatus in an embodiment of the present application;
fig. 4A is a schematic structural diagram of a first electronic device provided in an embodiment of the present application;
fig. 4B is a schematic structural diagram of a second electronic device provided in the embodiment of the present application.
Detailed Description
The present application will be described in further detail below with reference to the accompanying drawings and examples. It should be understood that the examples provided herein are merely illustrative of the present application and are not intended to limit the present application. In addition, the following examples are provided as partial examples for implementing the present application, not all examples for implementing the present application, and the technical solutions described in the examples of the present application may be implemented in any combination without conflict.
It should be noted that in the embodiments of the present application, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a method or apparatus that comprises a list of elements does not include only the elements explicitly recited, but also includes other elements not explicitly listed or inherent to the method or apparatus. Without further limitation, the use of the phrase "including a. -. said." does not exclude the presence of other elements (e.g., steps in a method or elements in a device, such as portions of circuitry, processors, programs, software, etc.) in the method or device in which the element is included.
The term "and/or" herein is merely an associative relationship that describes an associated object, meaning that three relationships may exist, e.g., I and/or J, may mean: the three cases of the single existence of I, the simultaneous existence of I and J and the single existence of J. In addition, the term "at least one" herein means any one of a plurality or any combination of at least two of a plurality, for example, including at least one of I, J, R, and may mean including any one or more elements selected from the group consisting of I, J and R.
For example, the traffic mirroring method provided in the embodiment of the present application includes a series of steps, but the traffic mirroring method provided in the embodiment of the present application is not limited to the described steps, and similarly, the traffic mirroring apparatus provided in the embodiment of the present application includes a series of modules, but the traffic mirroring apparatus provided in the embodiment of the present application is not limited to include the modules explicitly described, and may further include modules that are required to be set for acquiring relevant task data or performing processing based on the task data.
Embodiments of the application are operational with numerous other general purpose or special purpose computing system environments or configurations. Here, the server may be a distributed cloud computing technology environment including a small computer system, a large computer system, and the like.
The electronic device such as the server can realize corresponding functions through the execution of the program module. Generally, program modules may include routines, programs, objects, components, logic, data structures, etc. that perform particular tasks or implement particular abstract data types. The computer system/server may be practiced in distributed cloud computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed cloud computing environment, program modules may be located in both local and remote computer system storage media including memory storage devices.
In some embodiments of the present Application, the traffic mirroring method may be implemented by using a Processor in a traffic mirroring Device, and the Processor may be at least one of an Application Specific Integrated Circuit (ASIC), a Digital Signal Processor (DSP), a Digital Signal Processing Device (DSPD), a Programmable Logic Device (PLD), a Field Programmable Gate Array (FPGA), a Central Processing Unit (CPU), a controller, a microcontroller, and a microprocessor.
In the embodiment of the present application, the traffic mirroring method may be applicable to any cloud scenario, for example, the method may be a cluster corresponding to a Hyper Converged Infrastructure (HCI), which is referred to as a Hyper-Converged cluster for short, or may be another type of cloud scenario; the following examples illustrate super-fusion clusters.
Fig. 1A is a schematic view of a scenario in which virtual network devices among different hosts perform traffic mirroring in this embodiment, as shown in fig. 1A, a super-convergence cluster may include a source host 10, a source virtual network device 11, a destination host 12, and a destination virtual network device 13, where the source virtual network device 11 is connected to a network port of the source host 10, and the destination host 12 is connected to the destination virtual network device 13; here, when the original packet passes through the port of the source virtual network device 11, the original packet is encapsulated and directly transmitted to the destination host 12 through end-to-end forwarding, and the destination host 12 transmits the decapsulated packet to the destination virtual network device 13 according to the destination virtual device information carried in the packet.
Fig. 1B is a schematic flowchart of a traffic mirroring method in this embodiment, which is applied to a source virtual network device, and as shown in fig. 1B, the method includes the following steps:
step 100: acquiring configuration information; the configuration information is associated with the destination virtual network device.
In the embodiment of the application, the traffic mirroring method can be applied to the source virtual network device of the super-convergence cluster; where a hyper-converged cluster may represent an HCI that integrates server, storage, network, virtualized resources, end-to-end system management, and operations management functions.
Exemplarily, the port of the source virtual network device and the port of the destination virtual network device are sequentially connected to the source host port and the destination host port; the source host network port represents a virtual machine network port or a physical network port on a source host, and the destination host network port represents a virtual machine network port or a physical network port on a destination host; which may be referred to hereinafter simply as source port and destination port.
Exemplarily, in the super-converged cluster, any virtual network device (e.g., the source virtual network device or the destination virtual network device) can be uniquely determined by triplet information (i.e., the IP address of the host, the type of the virtual network device, and the id of the virtual network device); the port of any virtual network device can be uniquely determined by four-tuple information (the IP address of the host, the type of the virtual network device, the id of the virtual network device and the port id of the virtual network device); the virtual network device may include a virtual switch and a virtual router, among others. Here, the IP address denotes a Virtual eXtensible Local Area Network (VXLAN) interface IP address.
In the embodiment of the application, in order to implement the flow mirroring of every two hosts (a source host and a destination host), before configuration information is acquired, an administrator or related personnel is required to perform configuration on an HCI platform; here, the HCI platform is used to manage the super converged cluster; for example, referring to the schematic flow chart of configuration information issue shown in fig. 1C, when the HCI platform performs configuration, a source port and a destination port are first selected; for example, a virtual machine port or a physical machine port may be selected as a source port on the source host, and similarly, a virtual machine port or a physical machine port may be selected as a destination port on the destination host; then, acquiring a source virtual network device name VDEV connected with a source network port and a port name SPORT of the source virtual network device; then, obtaining the four-tuple information of the port of the target virtual network equipment; the quadruple information comprises configuration information related to the target virtual network equipment; finally, the obtained four-tuple information is issued to the source virtual network equipment; thus, the source virtual network device can acquire the configuration information related to the destination virtual network device. And finally setting the source network port of the mirror image as SPORT, wherein the target network port of the mirror image corresponds to the quadruple information.
For example, the implementation manner of obtaining the quadruple information of the port of the destination virtual network device may be: and acquiring the selected destination network port name, and converting the destination network port name into the four-tuple information of the port of the destination virtual network equipment connected with the destination network port.
For example, the configuration information may include identification information of the destination virtual network device, and the identification information has uniqueness, that is, a uniquely corresponding destination virtual network device may be determined according to the identification information. In combination with the above four-tuple information, the configuration information obtained by the source virtual network device may include: type, id, and port id of the destination virtual network device.
Step 101: when the original message passing through the self-body is obtained, the original message is copied to obtain a mirror image message.
In an embodiment, when an original message passes through a port of a source virtual network device, the source virtual network device may obtain the original message of itself; at this time, a mirror image message can be obtained by copying the original message; wherein, the mirror image message and the original message are the same message.
In another embodiment, when an original message passes through a port of a source virtual network device, the source virtual network device matches a port id of the source virtual network device with a pre-established mirror rule to obtain a matching result; if the matching is determined to be successful according to the matching result, the original message passing through the port id is used for realizing the flow mirror image subsequently; at this time, the original message needs to be copied to obtain a mirror image message; otherwise, if the matching is determined to be unsuccessful according to the matching result, the original message passing through the port id is not required to be used for realizing subsequent flow mirroring; at this time, the original message does not need to be copied.
Illustratively, the mirroring rule may be created by the source virtual network device according to the configuration information after acquiring the configuration information according to step 100; here, the mirroring rule may include: mirror image rule name, port information of mirror image source virtual network equipment, port information of mirror image destination virtual network equipment, enable switch and the like; among them, the port information may include a port id.
It can be understood that by matching the port id of the source virtual network device with the pre-created mirroring rule, it can be ensured that the original packet for subsequently implementing the mirroring function is copied, and other packets are not copied, so that a certain number of operands can be reduced.
Step 102: packaging the self-defined data header and the mirror image message to obtain a first message; the self-defined data head comprises configuration information; packaging the preset information and the first message to obtain a target message; the preset information includes address information of the destination host.
In the embodiment of the application, after the mirror image message is obtained, the self-defined data header and the mirror image message can be packaged to obtain a first message; illustratively, the following steps may be included: determining a set field in a self-defined data header according to the identification information of the target virtual network equipment; and encapsulating the data header and the mirror image message after the set field is determined to obtain a first message.
Here, the setting fields in the custom header may include: a device type field, a device id field, and a port id field; as can be seen from the above, the identification information of the destination virtual network device may include: type, id, and port id of the destination virtual network device.
For example, determining a setting field in the custom data header according to the identification information of the destination virtual network device may include: sequentially determining a device type field, a device id field and a port id field in a self-defined data header according to the device type, the device id and the port id of the target virtual network device; at this time, the device type field includes the type of the destination virtual network device, the device id field includes the id of the destination virtual network device, and the port id field includes the port id of the destination virtual network device.
Illustratively, the custom header may further include a bit number determination field for determining a bit number length of the device type field, the device id field, and the port id field.
Illustratively, the bit number determination field may include three fields, and the bit number lengths of the device type field, the device id field, and the port id field may be sequentially determined using the three fields; assuming that the three fields are a tlen field, a dlen field, and a plen field, respectively, the bit length of the device type field, the device id field, and the port id field may be sequentially determined according to the tlen field, the dlen field, and the plen field.
In one embodiment, a tlen field, a dlen field and a plen field respectively have a corresponding relationship of one byte with a device type field, a device id field and a port id field, and one byte represents 8 bits; specifically, the bit length of the tlen field is the bit length of the device type field (occupying a multiple of 8 bits) divided by 8, the bit length of the dlen field is the bit length of the device id field (occupying a multiple of 8 bits) divided by 8, and the bit length of the plen field is the bit length of the port id field (occupying a multiple of 8 bits) divided by 8. Here, the description will be given taking the device type field as an example, and assuming that the bit length of the device type field is 16 bits, the bit length of the len field is 2 bits.
Illustratively, in the case where the bit length of the tlen field, dlen field, and plen field is known, the bit length of the device type field, the device id field, and the port id field may be determined from the tlen field, dlen field, and plen field, respectively.
Illustratively, the bit length of at least one of the device type field, the device id field and the port id field is dynamically scalable; here, the maximum bit length of any one of the device type field, the device id field, and the port id field may be set according to actual conditions, and is usually defaulted to 8 bytes.
It can be understood that, under the condition that the maximum bit length is 8 bytes, since the bit length of the at least one field is dynamically scalable, that is, the at least one field can be dynamically adjusted within the length of 8 bytes, it is not only convenient to subsequently increase the number of ports of the destination virtual network device or the destination virtual network device, but also solve the problem that the device or the device ports are increased to cause abnormal use; the utilization rate of the byte number in the self-defined data head can be improved.
Illustratively, the custom header may further include a message indication field; the message indication field is used for indicating whether a message packaged with the self-defined data header is a mirror image message.
Illustratively, the message indication field may include a plat id field and an f flag bit; under the condition that the field of the play id is determined to be 0x3f and the flag bit of f is determined to be 1, the message encapsulated with the self-defined data header is a mirror image message; otherwise, the message encapsulated with the self-defined data header is not a mirror image message.
Exemplarily, assuming that a custom data header is represented by using a Subheader, referring to the structural diagram of the Subheader shown in fig. 1D, it can be seen that the Subheader may include a place id field, a tlen field, a dlen field, a plen field, a f flag bit, a device type field, a device id field, a port id field, and a reversed field; here, the number of bits occupied by reversed is set to 0; under the condition that the maximum digit length of the device type field, the device id field, the port id field and the reversed field is 8 bytes, the value range can be [0-0xffffffffffffff ].
Exemplarily, referring to fig. 1D and 1E, it can be seen that since the value of the device type field is 0x6 and the occupied bit number is an integer multiple of 8, if 8 bits are used for storage, the bit length of the corresponding tlen field is 0x 1; the value of the device id field is 0xffff, which occupies 16 bits and is just a multiple of 8, so dlen is 0x 2; the value of the port id field is 0xffff, which takes 16 bits and is also a multiple of 8, so plen is 0x 2.
In this embodiment of the application, after the Subheader shown in fig. 1D and the mirror packet are encapsulated to obtain the first packet, the predetermined information and the first packet are encapsulated to obtain the target packet, which may include: and encapsulating the indication information and the first message to obtain a target message.
In this embodiment of the present application, the preset information may include indication information, where the indication information is used to indicate whether the target packet includes a custom data header, that is, a Subheader header. Illustratively, the indication information may be a field in the erspan III header, assuming that the field is an Optional sub header field; here, when the Optional Subheader field is determined to be 1, it is described that the target packet includes a Subheader; otherwise, it indicates that the target packet does not include a Subheader.
Illustratively, the meaning of encapsulating the indication information and the first message is that the erspan III header is encapsulated with the first message, and the Optional Subheader field is determined to be 1; fig. 1F is a schematic structural diagram of an erspan III head in the embodiment of the present application.
Illustratively, a packet encapsulated using the erspan III header needs to be further encapsulated based on the gre header; after encapsulating the erspan III header and the first message, encapsulating the gre header; fig. 1G is a schematic structural diagram of a gre header in this embodiment of the present application, and as shown in fig. 1G, an initial value of a sequence num field is 0, and a value of the sequence num field of each encapsulated mirror message is increased by 1; the protocol type field is determined to be 0x22eb, and is used for indicating that the encapsulation format of the next layer message is erspan III.
Further, after obtaining the message after the gre header is encapsulated, encapsulating the address information of the destination host included in the preset information with the first message, specifically, encapsulating the message by using an outer layer IP header; here, the destination IP in the outer IP header corresponds to the IP address of the host where the destination virtual network device is located, that is, the IP address of the destination host, and corresponds to the first item in the quadruple information; the source IP in the outer IP header corresponds to the IP address of the source host; if the protocol field in the outer IP header is determined to be 47, indicating that the encapsulation format of the next layer message is a gre header; fig. 1H is a schematic structural diagram of an IP header in the embodiment of the present application.
Then, using Media Access Control (MAC) header to continue encapsulating the message encapsulated by the outer IP header, and obtaining the encapsulated final message, i.e. the target message; here, the destination MAC in the MAC header corresponds to the MAC address of the destination host; the source MAC in the MAC header corresponds to the MAC address of the source host. Fig. 1I is a schematic structural diagram of a target packet encapsulation format in this embodiment.
Step 103: and sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
Illustratively, the preset information includes address information of the destination host, and the address information of the destination host includes an IP address of the destination host. Therefore, the source virtual network equipment can send the target message to the destination host through the underlay network according to the IP address of the destination host.
In the embodiment of the application, after the target host receives the target message, the target host can send the mirror image message in the target message to the target virtual network device according to the self-defined data header in the target message; then, the target virtual network device sends the mirror image message in the target message to the target network port, and further, flow mirror image between the source host and the target host is realized; the processing procedure of the destination host on the target packet will be described in detail later by another embodiment.
The embodiment of the application provides a traffic mirroring method, a traffic mirroring device, electronic equipment and a computer storage medium, wherein the method is applied to source virtual network equipment and comprises the following steps: acquiring configuration information; the configuration information is related to the target virtual network device; when the original message passing through the message is obtained, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; the self-defined data head comprises configuration information; packaging the preset information and the first message to obtain a target message; the preset information comprises address information of the target host; and sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
It can be seen that, in the embodiment of the present application, after a mirror image message is obtained by copying an original message, the mirror image message is encapsulated by using a custom data head, and the encapsulated mirror image message is sent to a destination host through address information of the destination host; after the target host is reached, the mirror image message is sent to the target virtual network equipment according to the target virtual network equipment information carried in the target message, so that the mirror image message is forwarded to a connected virtual machine network port or a physical network port through the target virtual network equipment; compared with the prior art, the process does not need to additionally increase a forwarding table of the physical switch or additionally configure the port attribute of the physical switch, so that the configuration complexity is reduced, and the influence on the forwarding table of the physical switch is reduced.
Fig. 2A is a schematic flowchart of another traffic mirroring method in this embodiment, which is applied to a destination host, and as shown in fig. 2A, the flow may include:
step 200: receiving a target message sent by a source virtual network device according to preset information; the preset information comprises address information of the target host;
step 201: and sending the mirror image message in the target message to the target virtual network equipment according to the self-defined data head in the target message.
In some embodiments, the target message is obtained according to the following method: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging the preset information and the first message to obtain a target message; the custom header includes configuration information associated with the destination virtual network device. Here, the implementation processes of sending the target packet according to the preset information and obtaining the target packet have been described in the above embodiments, and are not described herein again.
In the embodiment of the application, after the target host receives the target message, the IP address and the MAC address included in the IP header and the MAC header in the target message are first obtained, and then the IP address and the MAC address are compared with the IP address and the MAC address of the target host, so as to determine that the target message is the message sent to the target host.
In some embodiments, sending the mirror image packet in the target packet to the destination virtual network device according to the custom data header in the target packet may include: determining identification information of the target virtual network equipment according to the self-defined data head in the target message; and searching the target virtual network equipment according to the identification information of the target virtual network equipment, and sending the mirror image message in the target message to the target virtual network equipment.
Exemplarily, determining the identification information of the destination virtual network device according to a custom data header in the target message may include: acquiring indication information in a target message, and judging whether the target message comprises a self-defined data header according to the indication information in the target message; if so, acquiring a first message encapsulated with the indication information, and determining the identification information of the target virtual network equipment according to a self-defined data header in the first message.
In the embodiment of the application, after determining that the target message is a message sent to the target host, first, an outer IP header in the target message is obtained, and if it is determined that a protocol field in the outer IP header is 47, a gre header in the target message is obtained; if the protocol type field in the gre header is determined to be 0x22eb, acquiring the erspan III header in the target message.
As can be seen from the above, the indication information may be an Optional header field in the erspan III header; that is, whether the target packet includes a custom data header (i.e., a Subheader) may be determined according to the Optional Subheader field. If the Optional sub header field is determined to be 1, indicating that the target message comprises a self-defined data header, and acquiring a first message encapsulated with the indication information; otherwise, if the Optional sub header field is determined not to be 1, it indicates that the target packet does not include the custom data header, and the current flow is ended.
Exemplarily, determining the identification information of the destination virtual network device according to the customized data header in the first packet may include: extracting a set field in a self-defined data header in the first message; and determining the identification information of the target virtual network equipment according to a set field in a data header in the first message.
Before determining the identification information of the destination virtual network device, the method may further include: acquiring a message indication field in a first message; and judging whether the message packaged with the self-defined data head in the first message is a mirror image message or not according to the message indication field in the first message to obtain a judgment result.
According to the above content, the message indication field may include a play id field and an f flag bit in the Subheader; after the plat id field and the f flag bit in the first message are obtained, whether the message encapsulated by the self-defined data header in the first message is a mirror image message or not can be judged according to the two fields, and a judgment result is obtained.
If the play id field is determined to be 0x3f according to the judgment result, and the f flag bit is determined to be 1, indicating that the message encapsulated with the Subheader head in the first message is a mirror image message; otherwise, it indicates that the packet encapsulated with the Subheader in the first packet is not a mirror packet, and the current flow ends.
Further, the method may further include: when the message packaged with the self-defined data head in the first message is determined to be a mirror image message according to the judgment result, acquiring a bit number determining field in the self-defined data head in the first message; as can be seen from the above, the bit number determination field is used to determine the bit number length of the setting field.
In some embodiments, determining the identification information of the destination virtual network device according to the customized data header in the first packet may include: determining a field according to the bit number in the self-defined data head in the first message, and extracting a set field in the self-defined data head in the first message; and determining the identification information of the target virtual network equipment according to the set field in the self-defined data header in the first message.
Exemplarily, after determining that a message encapsulated with a Subheader in a first message is a mirror image message, determining fields according to the number of bits in the Subheader in the first message, that is, a tlen field, a dlen field, and a plen field in the Subheader, and determining the bit length of a setting field in the Subheader in the first message, where the setting field includes a device type field, a device id field, and a port id field; the implementation of determining the bit length of the setting field according to the bit number determination field has been described in the above embodiments, and is not described herein again.
In some embodiments, determining the identification information of the destination virtual network device according to a set field in a custom data header in the first packet may include: determining the type of a target device, the id of the target device and the id of a target port of a mirror image message in sequence according to a device type field, a device id field and a port id field in a self-defined data header in a first message; and determining the identification information of the target virtual network equipment according to the determined target equipment type, the target equipment id and the target port id of the mirror image message.
Exemplarily, after extracting a device type field, a device id field, and a port id field in a Subheader in a first message, a destination device type, a destination device id, and a destination port id of a mirror image message may be sequentially determined according to the device type field, the device id field, and the port id field in the Subheader in the first message; thus, the identification information of the destination virtual network device can be determined according to the destination device type, the destination device id and the destination port id of the determined mirror image message. And then, determining a port of the target virtual network equipment according to the identification information of the target virtual network equipment, finding a connected target network port through the port, and sending the mirror image message to the target network port.
In order to further embody the object of the present application, the present application will be further described with reference to the above-described embodiments.
Fig. 2B is a schematic flowchart of a process of obtaining a target packet in this embodiment, and as shown in fig. 2B, the process may include: when an original message passes through a port SPORT of a source virtual network device, the source virtual network device copies the original message to obtain a mirror image message; and then, encapsulating the mirror image message with a custom Subheader, and setting a place id field, a tlen field, a dlen field, a plen field, a f zone bit, a device type field, a device id field and a port id field in the Subheader. Then, encapsulating the encapsulated message with a erspan III header, and setting an Optional sub header field in the erspan III header to be 1; and encapsulating the encapsulated message with a gre header, determining a protocol type field as 0x22eb, and setting a sequence num field. Finally, packaging an outer IP header and an MAC header; the specific implementation has been described in the above embodiments, and is not described herein again.
Fig. 2C is a schematic diagram of a process of a destination host processing a target packet in this embodiment, and as shown in fig. 2C, the process may include:
step A1: the destination host receives the destination message.
Step A2: and judging whether the IP address and the MAC address are the same. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A5.
For example, after the destination host receives the target packet, it is first determined whether the IP address and the MAC address in the target packet are the same as the IP address and the MAC address of the destination host.
Step A3: and determining that the inner layer message in the target message is not a mirror image message.
Step A4: go through other procedures.
Illustratively, the other flows may be other related flows except for traffic mirroring, and here, the types of the other flows are not limited, for example, the other flows may be a message request flow, a message forwarding flow, and the like.
Step A5: and judging whether the target message comprises a gre header. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A6.
Step A6: it is determined whether the protocol type field in the gre header is 0x22 eb. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A7.
Step A7: a determination is made as to whether the Optional header field in the erspan III header is 1. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A8.
Step A8: and judging whether the play id field in the Subheader header is 0x3 f. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A9.
Step A9: and judging whether the f flag bit in the Subheader is 1 or not. If not, executing the step A3 and the step A4 in sequence, otherwise executing the step A10.
It should be noted that, the execution sequence of step A8 and step a9 is not sequential.
Step A10: and extracting a device type field, a device id field and a port id field in the Subheader.
Illustratively, the device type field, the device id field, and the port id field are sequentially extracted from the tlen field, dlen field, and plen field in the Subheader header.
Step A11: and extracting the packaged mirror image message.
Step a12 determines the destination device type, id, and port id of the mirror message.
Illustratively, the destination device type, the device id field, and the port id of the mirror packet are sequentially determined according to the device type field, the device id field, and the port id field in the Subheader.
Step A13: and sending the mirror image message to a destination network port through a port of the destination virtual network equipment.
Illustratively, the identification information of the destination virtual network device may be determined based on the destination device type, the destination device id, and the destination port id of the mirror packet. And then, determining a port of the target virtual network equipment according to the identification information of the target virtual network equipment, finding a connected target network port through the port, and sending the mirror image message to the target network port.
It can be seen that, in the super-fusion cluster configuration plane, the mirror image effect from the virtual machine network port or the physical network port to the virtual machine network port or the physical network port in different hosts and even in the whole connected domain can be realized without knowing the bottom layer connection condition of the virtual machine network port or the physical network port, and the operation difficulty of related personnel is reduced.
Fig. 3A is a schematic structural diagram of a component of a traffic mirroring apparatus in an embodiment of the present application, which is applied to a source virtual network device, and as shown in fig. 3A, the apparatus includes: an obtaining module 300, a copying module 301, an encapsulating module 302, and a first sending module 303, wherein:
an obtaining module 300, configured to obtain configuration information; the configuration information is related to the target virtual network equipment;
the copying module 301 is configured to copy an original message when the original message passing through the copying module is acquired, so as to obtain a mirror image message;
the encapsulation module 302 encapsulates the customized data header and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host;
a first sending module 303, configured to send the target packet to the destination host according to the preset information, so that the destination host sends a mirror packet in the target packet to the destination virtual network device according to a self-defined data header in the target packet.
In some embodiments, the configuration information comprises: identification information of the destination virtual network device; the encapsulating module 302 is configured to encapsulate the customized data header and the mirror packet to obtain a first packet, and includes:
determining a set field in the self-defined data header according to the identification information of the target virtual network equipment;
and encapsulating the data header after the setting field is determined and the mirror image message to obtain a first message.
In some embodiments, the encapsulating module 302 is configured to determine a set field in the custom data header according to the identification information of the destination virtual network device, and includes:
and sequentially determining a device type field, a device id field and a port id field in the self-defined data header according to the device type, the device id and the port id of the target virtual network device.
In some embodiments, the custom header further comprises a message indication field; the message indication field is used for indicating whether a message packaged with the self-defined data header is the mirror image message.
In some embodiments, the custom data header further comprises a bit number determination field for determining a bit number length of the device type field, the device id field, and the port id field.
In some embodiments, a length of a number of bits of at least one of the device type field, the device id field, and the port id field is dynamically scalable.
In some embodiments, the encapsulating module 302 is configured to further include indication information for the preset information, and encapsulate the preset information and the first packet to obtain a target packet, where the encapsulation includes:
packaging the indication information and the first message to obtain a target message; the indication information is used for indicating whether the target message comprises the self-defined data header.
In some embodiments, the address information of the destination host comprises an IP address and/or a MAC address of the destination host.
Fig. 3B is a schematic diagram of another traffic mirroring apparatus in the embodiment of the present application, which is applied to a destination host, and as shown in fig. 3B, the apparatus includes a receiving module 304 and a second sending module 305, wherein,
a receiving module 304, configured to receive a target packet sent by a source virtual network device according to preset information; the preset information comprises address information of the target host; the target message is obtained according to the following modes: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging preset information and the first message to obtain the target message; the self-defined data head comprises configuration information, and the configuration information is related to the target virtual network equipment;
a second sending module 305, configured to send the mirror image packet in the target packet to the destination virtual network device according to the custom data header in the target packet.
In some embodiments, the configuration information comprises: identification information of the destination virtual network device; the second sending module 305 is configured to send the mirror image packet in the target packet to the destination virtual network device according to the self-defined data header in the target packet, and includes:
determining the identification information of the target virtual network equipment according to the self-defined data header in the target message;
and searching the target virtual network equipment according to the identification information of the target virtual network equipment, and sending the mirror image message in the target message to the target virtual network equipment.
In practical applications, the obtaining module 300, the copying module 301, the encapsulating module 302, the first sending module 303, the receiving module 304, and the second sending module 305 may be implemented by a processor located in an electronic device, where the processor may be at least one of an ASIC, a DSP, a DSPD, a PLD, an FPGA, a CPU, a controller, a microcontroller, and a microprocessor.
In addition, each functional module in this embodiment may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware or a form of a software functional module.
Based on the understanding that the technical solution of the present embodiment essentially or a part contributing to the related art, or all or part of the technical solution, may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for enabling a computer device (which may be a personal computer, a server, or a network device, etc.) or a processor (processor) to execute all or part of the steps of the method of the present embodiment. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read Only Memory (ROM), a RAM, a magnetic disk, or an optical disk.
Specifically, the computer program instructions corresponding to a traffic mirroring method in the present embodiment may be stored on a storage medium such as an optical disc, a hard disc, or a usb disk, and when the computer program instructions corresponding to a traffic mirroring method in the storage medium are read or executed by an electronic device, any one of the traffic mirroring methods that the foregoing embodiments are applied to the source virtual network device is implemented.
Based on the same technical concept of the foregoing embodiment, referring to fig. 4A, it illustrates a first electronic device 400 provided in an embodiment of the present application, which may include: a first memory 401 and a first processor 402; wherein,
a first memory 401 for storing computer programs and data;
a first processor 402 for executing a computer program stored in a memory to implement any of the traffic mirroring methods of the foregoing embodiments applied to the destination host.
Referring to fig. 4B, a second electronic device 500 provided in the embodiment of the present application is shown, which may include: a second memory 501 and a second processor 502; wherein,
a second memory 501 for storing computer programs and data;
a second processor 502 for executing a computer program stored in a memory to implement any of the traffic mirroring methods of the previous embodiments.
In practical applications, the first memory 401 and the second memory 501 may be volatile memories (RAMs); or a non-volatile memory (non-volatile memory) such as a ROM, a flash memory (flash memory), a Hard Disk (HDD), or a Solid-State Drive (SSD); or a combination of the above types of memories; wherein the first memory 401 provides instructions and data to the first processor 402 and the second memory 501 provides instructions and data to the second processor 502.
The first processor 402 and the second processor 502 may be at least one of an ASIC, a DSP, a DSPD, a PLD, an FPGA, a CPU, a controller, a microcontroller, and a microprocessor. It is understood that the electronic devices for implementing the above-described processor functions may be other devices for different traffic mirroring apparatuses, and the embodiments of the present application are not particularly limited.
In some embodiments, functions of or modules included in the apparatus provided in the embodiments of the present application may be used to execute the method described in the above method embodiments, and specific implementation thereof may refer to the description of the above method embodiments, and for brevity, will not be described again here.
The foregoing description of the various embodiments is intended to highlight various differences between the embodiments, and the same or similar parts may be referred to each other, and for brevity, will not be described again herein.
The methods disclosed in the method embodiments provided by the present application can be combined arbitrarily without conflict to obtain new method embodiments.
Features disclosed in various product embodiments provided by the application can be combined arbitrarily to obtain new product embodiments without conflict.
The features disclosed in the various method or apparatus embodiments provided herein may be combined in any combination to arrive at new method or apparatus embodiments without conflict.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of a hardware embodiment, a software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above description is only a preferred embodiment of the present application, and is not intended to limit the scope of the present application.

Claims (15)

1. A traffic mirroring method is applied to a source virtual network device, and comprises the following steps:
acquiring configuration information; the configuration information is related to the target virtual network equipment;
when an original message passing through the self-body is obtained, copying the original message to obtain a mirror image message;
packaging the self-defined data header and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host;
and sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
2. The method of claim 1, wherein the configuration information comprises: identification information of the destination virtual network device; the encapsulating the customized data header and the mirror image message to obtain a first message includes:
determining a set field in the self-defined data header according to the identification information of the target virtual network equipment;
and encapsulating the data header after the setting field is determined and the mirror image message to obtain a first message.
3. The method of claim 2, wherein the determining a set field in the custom header according to the identification information of the destination virtual network device comprises:
and sequentially determining a device type field, a device id field and a port id field in the self-defined data header according to the device type, the device id and the port id of the target virtual network device.
4. The method according to any of claims 1-3, wherein the custom header further comprises a message indication field; the message indication field is used for indicating whether a message packaged with the self-defined data header is the mirror image message.
5. The method of claim 3, wherein the custom header further comprises a bit number determination field, and wherein the bit number determination field is used for determining bit number lengths of the device type field, the device id field, and the port id field.
6. The method of claim 5, wherein a bit length of at least one of the device type field, device id field, and port id field is dynamically scalable.
7. The method according to claim 1, wherein the preset information further includes indication information, and the encapsulating the preset information with the first packet to obtain a target packet includes:
packaging the indication information and the first message to obtain a target message; the indication information is used for indicating whether the target message comprises the self-defined data header.
8. The method of claim 1, wherein the address information of the destination host comprises an Internet Protocol (IP) address and/or a Media Access Control (MAC) address of the destination host.
9. A traffic mirroring method, applied to a destination host, includes:
receiving a target message sent by a source virtual network device according to preset information; the preset information comprises address information of the target host; the target message is obtained according to the following modes: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging preset information and the first message to obtain the target message; the self-defined data head comprises configuration information, and the configuration information is related to the target virtual network equipment;
and sending the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
10. The method of claim 9, wherein the configuration information comprises: identification information of the destination virtual network device; the sending the mirror image message in the target message to the target virtual network device according to the self-defined data header in the target message includes:
determining the identification information of the target virtual network equipment according to the self-defined data header in the target message;
and searching the target virtual network equipment according to the identification information of the target virtual network equipment, and sending the mirror image message in the target message to the target virtual network equipment.
11. A traffic mirroring apparatus, applied in a source virtual network device, the apparatus comprising:
the acquisition module is used for acquiring configuration information; the configuration information is related to the target virtual network equipment;
the copying module is used for copying the original message to obtain a mirror image message when the original message passing through the copying module is obtained;
the encapsulation module is used for encapsulating the self-defined data head and the mirror image message to obtain a first message; the custom header comprises the configuration information; packaging preset information and the first message to obtain a target message; the preset information comprises address information of a target host;
and the first sending module is used for sending the target message to the target host according to the preset information, so that the target host sends the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
12. A traffic mirroring apparatus for use in a destination host, the apparatus comprising:
the receiving module is used for receiving a target message sent by the source virtual network equipment according to preset information; the preset information comprises address information of the target host; the target message is obtained according to the following modes: when the source virtual network equipment acquires an original message passing through the source virtual network equipment, copying the original message to obtain a mirror image message; packaging the self-defined data header and the mirror image message to obtain a first message; packaging preset information and the first message to obtain the target message; the self-defined data head comprises configuration information, and the configuration information is related to the target virtual network equipment;
and the second sending module is used for sending the mirror image message in the target message to the target virtual network equipment according to the self-defined data header in the target message.
13. An electronic device, characterized in that the device comprises a memory, a processor and a computer program stored on the memory and executable on the processor, which when executing the program implements the method of any of claims 1 to 8.
14. An electronic device, characterized in that the device comprises a memory, a processor and a computer program stored on the memory and executable on the processor, which when executing the program implements the method of any of claims 9 to 10.
15. A computer storage medium on which a computer program is stored, characterized in that the computer program realizes the method of any one of claims 1 to 10 when executed by a processor.
CN202210404016.3A 2022-04-18 2022-04-18 Traffic mirroring method, traffic mirroring device, traffic mirroring equipment and computer storage medium Active CN114884905B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210404016.3A CN114884905B (en) 2022-04-18 2022-04-18 Traffic mirroring method, traffic mirroring device, traffic mirroring equipment and computer storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210404016.3A CN114884905B (en) 2022-04-18 2022-04-18 Traffic mirroring method, traffic mirroring device, traffic mirroring equipment and computer storage medium

Publications (2)

Publication Number Publication Date
CN114884905A true CN114884905A (en) 2022-08-09
CN114884905B CN114884905B (en) 2023-11-07

Family

ID=82670476

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210404016.3A Active CN114884905B (en) 2022-04-18 2022-04-18 Traffic mirroring method, traffic mirroring device, traffic mirroring equipment and computer storage medium

Country Status (1)

Country Link
CN (1) CN114884905B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115952515A (en) * 2022-12-05 2023-04-11 广州柏瀚信息科技有限公司 Data security processing method and device based on big data

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101707557A (en) * 2009-11-20 2010-05-12 中兴通讯股份有限公司 CPU protocol message remote mirroring method, device and system
CN105743734A (en) * 2016-01-22 2016-07-06 北京航空航天大学 Virtual machine mirror image flow transmission control method and virtual machine mirror image flow transmission control device
WO2017008584A1 (en) * 2015-07-15 2017-01-19 中兴通讯股份有限公司 Virtual machine starting method and device, and management node
US20180349163A1 (en) * 2017-05-30 2018-12-06 Nicira, Inc. Port mirroring in a virtualized computing environment
US20200092299A1 (en) * 2018-09-18 2020-03-19 Microsoft Technology Licensing, Llc Mirroring virtual network traffic
CN111078366A (en) * 2019-12-20 2020-04-28 深信服科技股份有限公司 Virtual machine migration method, system, equipment and computer readable storage medium
CN111224899A (en) * 2019-10-31 2020-06-02 北京浪潮数据技术有限公司 Method, device, equipment and medium for mirroring flow of virtual port
CN111913782A (en) * 2020-07-29 2020-11-10 上海云轴信息科技有限公司 Method and equipment for realizing virtual machine flow mirror image based on tunnel technology
CN112953949A (en) * 2021-03-01 2021-06-11 恒安嘉新(北京)科技股份公司 Message header processing method, device, equipment and storage medium of network message
CN112995009A (en) * 2021-03-10 2021-06-18 山石网科通信技术股份有限公司 Method and device for enabling virtual machine to mirror image flow of local virtualization network
US20210334124A1 (en) * 2020-04-28 2021-10-28 International Business Machines Corporation Virtual machine live migration with seamless network connectivity
CN114172854A (en) * 2021-11-30 2022-03-11 新华三大数据技术有限公司 Message mirror image, mirror image configuration method, virtual switch and mirror image configuration device

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101707557A (en) * 2009-11-20 2010-05-12 中兴通讯股份有限公司 CPU protocol message remote mirroring method, device and system
WO2017008584A1 (en) * 2015-07-15 2017-01-19 中兴通讯股份有限公司 Virtual machine starting method and device, and management node
CN105743734A (en) * 2016-01-22 2016-07-06 北京航空航天大学 Virtual machine mirror image flow transmission control method and virtual machine mirror image flow transmission control device
US20180349163A1 (en) * 2017-05-30 2018-12-06 Nicira, Inc. Port mirroring in a virtualized computing environment
US20200092299A1 (en) * 2018-09-18 2020-03-19 Microsoft Technology Licensing, Llc Mirroring virtual network traffic
CN111224899A (en) * 2019-10-31 2020-06-02 北京浪潮数据技术有限公司 Method, device, equipment and medium for mirroring flow of virtual port
CN111078366A (en) * 2019-12-20 2020-04-28 深信服科技股份有限公司 Virtual machine migration method, system, equipment and computer readable storage medium
US20210334124A1 (en) * 2020-04-28 2021-10-28 International Business Machines Corporation Virtual machine live migration with seamless network connectivity
CN111913782A (en) * 2020-07-29 2020-11-10 上海云轴信息科技有限公司 Method and equipment for realizing virtual machine flow mirror image based on tunnel technology
CN112953949A (en) * 2021-03-01 2021-06-11 恒安嘉新(北京)科技股份公司 Message header processing method, device, equipment and storage medium of network message
CN112995009A (en) * 2021-03-10 2021-06-18 山石网科通信技术股份有限公司 Method and device for enabling virtual machine to mirror image flow of local virtualization network
CN114172854A (en) * 2021-11-30 2022-03-11 新华三大数据技术有限公司 Message mirror image, mirror image configuration method, virtual switch and mirror image configuration device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
易帆;曹源;闾琳;: "基于镜像分割技术的虚拟机启动方法研究", 成都工业学院学报, no. 04 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115952515A (en) * 2022-12-05 2023-04-11 广州柏瀚信息科技有限公司 Data security processing method and device based on big data
CN115952515B (en) * 2022-12-05 2023-09-26 广州柏瀚信息科技有限公司 Data security processing method and device based on big data

Also Published As

Publication number Publication date
CN114884905B (en) 2023-11-07

Similar Documents

Publication Publication Date Title
CN109845218B (en) Channel data encapsulation system and method for use with client-server data channels
CN107925677B (en) Method and switch for offloading data object replication and service function chain management
CN113326228B (en) Message forwarding method, device and equipment based on remote direct data storage
US10084647B2 (en) Data forwarding to server via virtual network card or to external network via network interface, based on fusion descriptor
JP6445015B2 (en) System and method for providing data services in engineered systems for execution of middleware and applications
EP4040743B1 (en) Message transmission method and proxy node
CN109804607B (en) System and method for stateless processing in a fault tolerant microservice environment
US8428087B1 (en) Framework for stateless packet tunneling
US9571338B2 (en) Scalable distributed control plane for network switching systems
CN113055127B (en) Data message duplicate removal and transmission method, electronic equipment and storage medium
US11398966B2 (en) Cluster wide packet tracing
CN112787921A (en) Message transmission method, proxy node and storage medium
US10841313B2 (en) Substituting callback URLs when using OAuth protocol exchanges
CN112887229B (en) Session information synchronization method and device
CN114884905A (en) Flow mirroring method, device, equipment and computer storage medium
US11528222B2 (en) Decentralized control plane
CN113839894A (en) Message processing method and system
CN114362985A (en) Message processing method and device
US10484304B2 (en) Determining actions to be immediately performed on a network packet with an application specific integrated circuit
WO2023078031A1 (en) Message sending method and apparatus
CN111726236A (en) State identification information generation method, system, device and storage medium thereof
CN114301960A (en) Processing method and device for asymmetric flow of cluster, electronic equipment and storage medium
CN115459942A (en) Flow monitoring method and device
CN116800867A (en) Message processing method and system
CN118282928A (en) Message forwarding method, communication system and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant