CN115185637A - Communication method and device for PaaS component management end and virtual machine agent - Google Patents
Communication method and device for PaaS component management end and virtual machine agent Download PDFInfo
- Publication number
- CN115185637A CN115185637A CN202210762175.0A CN202210762175A CN115185637A CN 115185637 A CN115185637 A CN 115185637A CN 202210762175 A CN202210762175 A CN 202210762175A CN 115185637 A CN115185637 A CN 115185637A
- Authority
- CN
- China
- Prior art keywords
- virtual
- network card
- virtual machine
- paas component
- paas
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 67
- 238000000034 method Methods 0.000 title claims abstract description 58
- 238000012544 monitoring process Methods 0.000 claims description 20
- 238000004590 computer program Methods 0.000 claims description 19
- 238000007726 management method Methods 0.000 abstract description 65
- 238000005516 engineering process Methods 0.000 abstract description 5
- 239000000306 component Substances 0.000 description 76
- 239000003795 chemical substances by application Substances 0.000 description 41
- 238000010586 diagram Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 4
- 230000008569 process Effects 0.000 description 3
- 238000012423 maintenance Methods 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 239000003818 cinder Substances 0.000 description 1
- 239000008358 core component Substances 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000007667 floating Methods 0.000 description 1
- 238000013508 migration Methods 0.000 description 1
- 230000005012 migration Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45595—Network integration; Enabling network access in virtual machine instances
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a communication method and a communication device for a PaaS component management end and a virtual machine agent, wherein the method comprises the following steps: a plurality of host ports are established in a private network corresponding to the PaaS component, and the number of the host ports is the same as that of the control nodes; establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port; dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron; and creating a virtual IP of a private network plane based on keepalived for an agent inside the virtual machine to respond to the RPC request of the PaaS component management end. According to the application, the Open vSwich technology is utilized, the two-layer communication between the PaaS component management end and the virtual machine agent is realized, and the dependence of the PaaS component on the external network of the virtual machine and the network planning of the physical machine is broken through.
Description
Technical Field
The invention relates to the technical field of cloud computing, in particular to a communication method and device for a PaaS component management end and a virtual machine agent.
Background
With the development of cloud computing technology, cloud service modes are continuously evolving from underlying IaaS layer virtualization, and various PaaS services and SaaS services appear.
The PaaS service needs to continuously package software inside the IaaS layer virtual machine, and provides the software product which can be directly used by a user, so that a user deployment and maintenance process is omitted. The management end of the PaaS component needs to manage and maintain the state of the internal software of the virtual machine, so that the management end and the virtual machine need to realize communication on a network. The virtual machine is located inside the private network, the private network needs to be connected to a specific external network, then the virtual machine goes out from the service network card, communication between the virtual machine and a PaaS component management end of the management node can be achieved through the three layers of switches, the limitation is large, and an upper layer network cannot be flexibly selected. In network planning in some environments, the service network card and the management network card are in different switches, and intercommunication cannot be achieved.
Disclosure of Invention
In order to solve the problems in the prior art, the application provides a communication method and device for a PaaS component management end and a virtual machine agent.
In a first aspect, the present invention provides a communication method between a PaaS component management end and a virtual machine agent, including:
creating a plurality of host ports in a private network corresponding to the PaaS component, wherein the number of the host ports is the same as that of the control nodes;
establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port;
dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron;
and creating a virtual IP of a private network plane based on keepalived, wherein the virtual IP is used for responding to a communication request of a PaaS component management end by an agent in a virtual machine.
Optionally, the method further comprises:
when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Optionally, the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron includes:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Optionally, the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
In a second aspect, the present application further provides a communication device between a PaaS component management end and a virtual machine agent, including:
the system comprises a host port creating module, a control node creating module and a client side module, wherein the host port creating module is used for creating a plurality of host ports in a private network corresponding to a PaaS component, and the number of the host ports is the same as that of the control nodes;
the virtual network card constructing module is used for constructing a virtual network card on the br-int network bridge of each control node by using Open vSwitch, and the information of the virtual network card is associated with the information of the corresponding host port;
the IP address acquisition module is used for dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron;
and the virtual IP creating module is used for creating a virtual IP of the private network plane based on keepalive, and the virtual IP is used for responding a communication request of a PaaS component management end by an agent in the virtual machine.
In a third aspect, the present invention further provides an electronic device, which includes a memory, a processor, and a computer program stored in the memory and executable on the processor, where the processor executes the computer program to implement any one of the communication methods between the PaaS component management side and the virtual machine agent as described in the first aspect.
In a fourth aspect, the present invention further provides a non-transitory computer-readable storage medium, on which a computer program is stored, which, when executed by a processor, implements any of the communication methods of the PaaS component management side and the virtual machine agent as described in the first aspect above.
In a fifth aspect, the present invention further provides a computer program product, including a computer program, where the computer program, when executed by a processor, implements any of the communication methods between the PaaS component manager and the virtual machine agent as described in the first aspect.
According to the communication method and device for the PaaS component management end and the virtual machine agent, provided by the invention, the Open vSwich technology is utilized, the two-layer communication between the OpenStack PaaS component management end and the virtual machine agent is realized, the dependence of the PaaS component on the external network of the virtual machine and the network planning of the physical machine is broken through, and the adaptability of the PaaS component to different physical network architectures is improved.
Drawings
In order to more clearly illustrate the technical solutions of the present invention or the prior art, the drawings needed for the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and those skilled in the art can also obtain other drawings according to the drawings without creative efforts.
Fig. 1 is a schematic flowchart of a communication method between a PaaS component management side and a virtual machine agent according to an embodiment of the present application;
fig. 2 is a schematic structural diagram of a PaaS component management end and a communication device of a virtual machine agent according to an embodiment of the present application;
fig. 3 is a schematic structural diagram of an electronic device provided in an embodiment of the present application.
Detailed Description
In order to better describe the technical solutions in the embodiments of the present application, the following introduces related knowledge.
(1) Cloud computing
The cloud computing can be classified into the following three types of ground modes according to the types of services provided:
(1) IaaS: infrastructure is a service from which a user can apply for hardware or virtual hardware, including bare and virtual machines, and then install an operating system or other application.
(2) PaaS: the platform is a service, a user can directly apply for software from the PaaS service and directly use the software, for the software applied by the PaaS service, the user does not have the authority of logging in the underlying virtual machine, the underlying virtual machine cannot be perceived, and the PaaS service is needed to maintain the software state.
(3) SaaS: software is a service, and users can use some software in a renting mode through a network instead of purchasing the software, and a common mode is to provide a set of account passwords. The difference with PaaS is that PaaS's software is developer-oriented, is part of the overall Application (APP) architecture, and SaaS's software is user-oriented overall APP software.
(2)OpenStack
OpenStack currently covers seven core components, namely, compute (computer), object Storage (Object Storage), authentication (Identity), user interface (Dashboard), block Storage (Block Storage), network (Network), and Image Service (Image Service). Each component is a collection of services, one service meaning one process running.
Computer (Nova): the code of computer is Nova, which provides virtual machine services according to requirements, such as creating a virtual machine or performing live migration on the virtual machine.
Object Storage (Swift): it allows storing or retrieving objects, it can also be considered to allow storing or retrieving files, it can manage large amounts of unstructured data in a cost-effective way.
Identity (Keystone): provide authentication and authorization for all OpenStack services, track users and their privileges, and provide a list of available services and Application Programming Interfaces (APIs).
Dash Board (Horizon): the system provides a modularized Django-based interface for all OpenStack services, and most operations such as starting a virtual machine, allocating an Internet Protocol (IP) address, dynamically migrating and the like can be finished by the interface no matter an end user or an operation and maintenance person.
Block Storage (shader): a block storage service is provided.
Network (Neutron): the network connection service is provided, and allows users to create own virtual networks and connect various network equipment interfaces.
Image Service (company): the storage, query and retrieval service of the virtual machine image is provided, and the image service is provided for the Nova virtual machine by providing a directory and a storage library of the virtual disk image.
Among them, nova, neutron, and Cinder take over computation, network, and storage.
The management end of the PaaS component needs to manage and maintain the state of the internal software of the virtual machine, so that the management end and the virtual machine need to realize communication on a network. The virtual machine is located inside the private network, the private network needs to be connected to a specific external network, then the virtual machine goes out from the service network card, communication between the virtual machine and a PaaS component management end of the management node can be achieved through the three layers of switches, the limitation is large, and an upper layer network cannot be flexibly selected.
In network planning in some environments, the service network card and the management network card are in different switches, and intercommunication cannot be realized. The communication method and device of the PaaS component management end and the virtual machine Agent are provided, the OpenStack private network and the service of a management node are opened on a two-layer network, the communication method and device are not limited by external network configuration and user three-layer network selection any more, and high availability and high reliability are achieved.
In order to make the objects, technical solutions and advantages of the present invention clearer, the technical solutions of the present invention will be clearly and completely described below with reference to the accompanying drawings, and it is obvious that the described embodiments are some, but not all embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The communication method and device for the PaaS component management end and the virtual machine proxy are suitable for scenes with communication requirements of the PaaS component management end and the virtual machine, and the supported PaaS services include but are not limited to database service DBaaS (Trove component) and balanced load service LBaaS (Octavia component).
Fig. 1 is a schematic flowchart of a communication method between a PaaS component management side and a virtual machine agent according to an embodiment of the present application, where as shown in fig. 1, the method at least includes the following steps:
Specifically, a plurality of Host ports (Host ports) are created in a private network corresponding to the PaaS component, and the number of the Host ports is the same as that of the control nodes, so that each control node is ensured to have communication capability, and high availability and high reliability of a communication method of a PaaS component management end and a virtual machine agent are ensured.
Optionally, the network mode of the private network corresponding to the OpenStack PaaS component includes, but is not limited to: virtual Local Area Network (VLAN), virtual eXtensible Local Area Network (VXLAN), flat (Flat), GRE.
And 102, constructing a virtual network card on the br-int network bridge of each control node by using Open vSwitch, wherein the information of the virtual network card is associated with the information of the corresponding host port.
Specifically, the Open vSwitch is similar to Linux bridge, can realize abstraction of a two-layer network, provides a distributed switch function for a virtual network, and realizes a distributed architecture virtual switch by a plurality of vswitches running on various or the same virtualization platforms in a cloud environment.
And (3) constructing a virtual network card on the br-int network bridge of each control node by using Open vSwitch, wherein the quantity of the virtual network card, the quantity of the control node and the quantity of the host port are the same, so that the availability and the flexibility of communication are improved. The information of the virtual network card is associated with the information of the corresponding host port, where the information may include port identification, media access control address, and the like, and the information association of the two information may mean that the information of the two information has the same content.
When OpenStack uses Open vSwitch as a network plug-in, the intercommunication between an OpenStack private network and a host on a two-layer network plane can be realized.
And 103, dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron.
Specifically, an IP address corresponding to the virtual network card is dynamically obtained from a Dynamic Host Configuration Protocol (DHCP) service provided by the neutron.
The OpenStack instance can automatically acquire an IP address corresponding to the virtual network card from a DHCP service provided by Neutron during the starting process. The OpenStack virtual machine instance can allocate two types of addresses, one type is a private IP address, and the address can be viewed by an IP a command; the other type is a floating IP address, which is a service provided by a Neutron component, does not need a DHCP service, and can be statically set at a client side directly.
The DHCP major components include:
and the DHCP proxy (neutron-DHCP-agent) provides a DHCP function for the project network and provides a Metadata Request (Metadata Request) service.
And (3) DHCP driving: the management server is DNSmasq by default, and the management server is 1 open source software for providing DHCP and DNS service and providing DNS cache and DHCP service functions.
And the DHCP Agent Scheduler is responsible for scheduling the DHCP Agent and the Network (Network).
And 104, creating a virtual IP of a private network plane based on keepalive, wherein the virtual IP is used for an agent in the virtual machine to respond to a communication request of a PaaS component management end.
Specifically, a keepalived (keepalived) is used for pulling up a Virtual Internet Protocol (VIP) on the host, and the VIP of the private network plane of the PaaS component is created and used for realizing communication between the Virtual machine internal agent and the PaaS component management end.
The virtual machine agent accesses the host management side service through the VIP, for example, in response to a Remote Procedure Call (RPC) request of the PaaS component management side, the management side service may directly access the virtual machine IP.
According to the communication method for the PaaS component management end and the virtual machine agent, the Open vSwich technology is utilized, the two-layer communication between the OpenStack PaaS component management end and the virtual machine agent is achieved, the dependence of the PaaS component on the external network of the virtual machine and the network planning of the physical machine is broken through, and the adaptability of the PaaS component to different physical network architectures is improved.
Optionally, the method further comprises:
when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Specifically, at step 102: when a virtual network card is constructed on a br-int network bridge of each Control node by using Open vSwitch, information such as a network card type, a state, an Identity (ID), a Media Access Control (MAC) Address, and a Maximum packet Transmission Unit (MTU) value of the virtual network card needs to be specified.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Specifically, at step 102: when the Open vSwitch is used for constructing the virtual network card on the br-int network bridge of each control node, the port ID, the MAC address and the MTU value of the specified virtual network card are respectively the same as the port ID, the MAC address and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Specifically, at step 102: when the Open vSwitch is used for constructing the virtual network card on the br-int network bridge of each control node, the type of the virtual network card is Internal, and the state is Active.
Optionally, the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron includes:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Specifically, the method for acquiring the IP address corresponding to the virtual network card is dhclient dynamic acquisition.
The function of the dhclient command is to dynamically acquire or release an IP address. Before using the dhclient command, the network card mode can be set to DHCP automatic acquisition, otherwise the network card in the static mode can not actively acquire the network card information such as IP address from the server.
Optionally, the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
Specifically, in step 101: before a plurality of host ports are created in a private network corresponding to the PaaS component, a monitoring port of a management service depended on by the PaaS component can be adjusted to be monitored by a whole network end, and all network planes of the control node can be ensured to access the corresponding service.
Optionally, after adjusting a monitoring port of a management service relied on by the PaaS component to be network segment monitoring, before creating a plurality of host ports in a private network corresponding to the PaaS component, a security group may be created in OpenStack to restrict a security policy, so as to enhance security of communication.
The following describes the technical solution provided by the present application with a specific example.
The embodiment of the application provides a communication method for a PaaS component management end and a virtual machine agent, which comprises the following steps:
step 1, adjusting a monitoring port of a management service depended by the PaaS component to be full-network-segment monitoring, and ensuring that all network planes of a control node can access the service.
And 2, creating a security group in OpenStack and limiting a security strategy.
And 3, creating a plurality of host ports in the private network corresponding to the PaaS component, wherein the number of the host ports is equal to that of the control nodes. The host port uses the security group created in step 2, and each host port puts through the VIP address of the same IP, so that the network packet of the VIP address can normally pass through the host port.
And 4, checking the following information of the host port established in the step 3: port ID, MAC address, MTU value.
And 5, creating a virtual network card on the br-int network bridge of each control node. The network card type is internal, active, port ID, MAC address and MTU value use the information of the host Port checked in step 4.
And 6, setting a link test port by the control node, wherein the MAC address is the same as the MAC address of the host port in the step 5.
And 7, acquiring the IP information corresponding to the current node network card from the neutron dhcp agent by using a dhclient command.
And 8, after all the control nodes are configured with the ports, using keepalived to pull up the VIP, and solving the single-point problem.
And 9, the virtual machine agent of the PaaS component can communicate with the management service through the VIP.
According to the communication method of the PaaS component management end and the virtual machine agent, the Open vSwich technology is utilized, the two-layer communication between the OpenStack PaaS component management end and the virtual machine agent is achieved, the dependence of the PaaS component on the external network of the virtual machine and the network planning of the physical machine is broken through, and the adaptability of the PaaS component to different physical network architectures is improved.
The PaaS component management end and the communication device of the virtual machine agent provided by the present invention are described below, and the communication devices of the PaaS component management end and the virtual machine agent described below and the communication methods of the PaaS component management end and the virtual machine agent described above may be referred to in correspondence.
Fig. 2 is a schematic structural diagram of a communication apparatus between a PaaS component management side and a virtual machine agent according to an embodiment of the present application, and as shown in fig. 2, the apparatus at least includes:
a host port creation module 201, configured to create multiple host ports in a private network corresponding to a PaaS component, where the number of the host ports is the same as that of control nodes;
a virtual network card constructing module 202, configured to construct a virtual network card by using Open vSwitch on the br-int network bridge of each control node, where information of the virtual network card is associated with information of a corresponding host port;
the IP address obtaining module 203 is configured to dynamically obtain an IP address corresponding to the virtual network card from a DHCP service provided by a neutron;
the virtual IP creating module 204 is configured to create a virtual IP of a private network plane based on keepalive, where the virtual IP is used for an agent inside a virtual machine to respond to a communication request of a PaaS component management end.
Optionally, the apparatus further comprises:
and the information specifying module is used for specifying the information of the virtual network card when the virtual network card is constructed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Optionally, the IP address obtaining module is further configured to:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Optionally, the apparatus further comprises:
and the monitoring adjusting module is used for adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
Fig. 3 is a schematic structural diagram of an electronic device provided in an embodiment of the present application, and as shown in fig. 3, the electronic device may include: a processor (processor) 301, a communication Interface (communication Interface) 302, a memory (memory) 303 and a communication bus 304, wherein the processor 301, the communication Interface 302 and the memory 303 complete communication with each other through the communication bus 304.
In addition, the logic instructions in the memory 303 may be implemented in the form of software functional units and stored in a computer readable storage medium when the logic instructions are sold or used as independent products. Based on such understanding, the technical solution of the present invention or a part thereof which substantially contributes to the prior art may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk, and various media capable of storing program codes.
The processor 301 may call the logic instructions in the memory 303 to execute a communication method between the PaaS component management end and the virtual machine agent, where the method includes:
creating a plurality of host ports in a private network corresponding to the PaaS component, wherein the number of the host ports is the same as that of the control nodes;
establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port;
dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron;
and creating a virtual IP of a private network plane based on keepalived, wherein the virtual IP is used for responding to a communication request of a PaaS component management end by an agent in a virtual machine.
Optionally, the method further comprises:
and when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Optionally, the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron includes:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Optionally, the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
In another aspect, the present invention further provides a computer program product, where the computer program product includes a computer program, the computer program may be stored on a non-transitory computer-readable storage medium, and when the computer program is executed by a processor, the computer is capable of executing the communication method between a PaaS component management side and a virtual machine agent provided in the foregoing methods, where the method includes:
creating a plurality of host ports in a private network corresponding to the PaaS component, wherein the number of the host ports is the same as that of the control nodes;
establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port;
dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron;
and creating a virtual IP of a private network plane based on keepalived, wherein the virtual IP is used for responding to a communication request of a PaaS component management end by an agent in a virtual machine.
Optionally, the method further comprises:
and when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Optionally, the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron includes:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Optionally, the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
In another aspect, the present invention also provides a non-transitory computer-readable storage medium, on which a computer program is stored, where the computer program is implemented by a processor to execute a communication method between a PaaS component management side and a virtual machine agent provided by the foregoing methods, where the method includes:
creating a plurality of host ports in a private network corresponding to the PaaS component, wherein the number of the host ports is the same as that of the control nodes;
establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port;
dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron;
and creating a virtual IP of a private network plane based on keepalived, wherein the virtual IP is used for responding to a communication request of a PaaS component management end by an agent in a virtual machine.
Optionally, the method further comprises:
and when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
Optionally, the port ID, the MAC address, and the MTU value of the virtual network card are respectively the same as the port ID, the MAC address, and the MTU value of the corresponding host port.
Optionally, the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
Optionally, the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron includes:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
Optionally, the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
The above-described embodiments of the apparatus are merely illustrative, and the units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment. One of ordinary skill in the art can understand and implement it without inventive effort.
Through the above description of the embodiments, those skilled in the art will clearly understand that each embodiment can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware. With this understanding in mind, the above-described technical solutions may be embodied in the form of a software product, which can be stored in a computer-readable storage medium such as ROM/RAM, magnetic disk, optical disk, etc., and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the methods described in the embodiments or some parts of the embodiments.
Finally, it should be noted that: the above examples are only intended to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it should be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.
Claims (10)
1. A communication method for a PaaS component management end and a virtual machine agent is characterized by comprising the following steps:
creating a plurality of host ports in a private network corresponding to the PaaS component, wherein the number of the host ports is the same as that of the control nodes;
establishing a virtual network card by using Open vSwitch on a br-int network bridge of each control node, wherein the information of the virtual network card is associated with the information of a corresponding host port;
dynamically acquiring an IP address corresponding to the virtual network card from a DHCP service provided by the neutron;
and establishing a virtual IP of a private network plane based on keepalived, wherein the virtual IP is used for responding a communication request of a PaaS component management end by an agent in a virtual machine.
2. The communication method between the PaaS component manager and the virtual machine agent according to claim 1, wherein the method further comprises:
when the virtual network card is constructed, the information of the virtual network card is appointed, wherein the information comprises the type, the state, the port ID, the MAC address and the MTU value of the network card.
3. The PaaS component management side and virtual machine agent communication method according to claim 2, wherein the port ID, MAC address and MTU value of the virtual network card are respectively the same as the port ID, MAC address and MTU value of the corresponding host port.
4. The communication method between the PaaS component management terminal and the virtual machine agent according to claim 2 or 3, wherein the network card type of the virtual network card is Internal, and the state of the virtual network card is Active.
5. The communication method between the PaaS component management side and the virtual machine agent according to claim 1, wherein the dynamically obtaining the IP address corresponding to the virtual network card from the DHCP service provided by the neutron comprises:
and dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron through a dhclient command.
6. The communication method between the PaaS component manager and the virtual machine agent according to claim 1, wherein the method further comprises:
and adjusting a monitoring port of the management service depended by the PaaS component to be full-network-segment monitoring.
7. A communication apparatus between a PaaS component management side and a virtual machine agent, comprising:
the system comprises a host port creating module, a control node creating module and a client side module, wherein the host port creating module is used for creating a plurality of host ports in a private network corresponding to a PaaS component, and the number of the host ports is the same as that of the control nodes;
the virtual network card constructing module is used for constructing a virtual network card on the br-int network bridge of each control node by using Open vSwitch, and the information of the virtual network card is associated with the information of the corresponding host port;
the IP address acquisition module is used for dynamically acquiring the IP address corresponding to the virtual network card from the DHCP service provided by the neutron;
and the virtual IP creating module is used for creating a virtual IP of the private network plane based on keepalive, and the virtual IP is used for responding a communication request of a PaaS component management end by an agent in the virtual machine.
8. An electronic device comprising a memory, a processor, and a computer program stored on the memory and executable on the processor, wherein the processor implements the communication method of the PaaS component manager and the virtual machine agent according to any one of claims 1 to 6 when executing the program.
9. A non-transitory computer-readable storage medium having stored thereon a computer program, wherein the computer program, when executed by a processor, implements the communication method of the PaaS component manager and the virtual machine agent according to any one of claims 1 to 6.
10. A computer program product comprising a computer program, wherein the computer program, when executed by a processor, implements the communication method between the PaaS component manager and the virtual machine agent according to any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210762175.0A CN115185637A (en) | 2022-06-29 | 2022-06-29 | Communication method and device for PaaS component management end and virtual machine agent |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210762175.0A CN115185637A (en) | 2022-06-29 | 2022-06-29 | Communication method and device for PaaS component management end and virtual machine agent |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115185637A true CN115185637A (en) | 2022-10-14 |
Family
ID=83515336
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210762175.0A Pending CN115185637A (en) | 2022-06-29 | 2022-06-29 | Communication method and device for PaaS component management end and virtual machine agent |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115185637A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115550182A (en) * | 2022-11-30 | 2022-12-30 | 维塔科技(北京)有限公司 | Virtual network card configuration method and device, electronic equipment and storage medium |
-
2022
- 2022-06-29 CN CN202210762175.0A patent/CN115185637A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115550182A (en) * | 2022-11-30 | 2022-12-30 | 维塔科技(北京)有限公司 | Virtual network card configuration method and device, electronic equipment and storage medium |
| CN115550182B (en) * | 2022-11-30 | 2023-03-07 | 维塔科技(北京)有限公司 | Virtual network card configuration method and device, electronic equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11418512B2 (en) | Method for virtual machine to access physical server in cloud computing system, apparatus, and system | |
| US11252228B2 (en) | Multi-tenant multi-session catalogs with machine-level isolation | |
| US11469964B2 (en) | Extension resource groups of provider network services | |
| US10719369B1 (en) | Network interfaces for containers running on a virtual machine instance in a distributed computing environment | |
| US8973098B2 (en) | System and method for virtualized resource configuration | |
| CN109194502B (en) | Management method of multi-tenant container cloud computing system | |
| CN109067877B (en) | Control method for cloud computing platform deployment, server and storage medium | |
| CN106850324B (en) | Virtual network interface object | |
| US9674103B2 (en) | Management of addresses in virtual machines | |
| CN109254831B (en) | Virtual machine network security management method based on cloud management platform | |
| CN112099913B (en) | Method for realizing virtual machine security isolation based on OpenStack | |
| US11563799B2 (en) | Peripheral device enabling virtualized computing service extensions | |
| US10938619B2 (en) | Allocation of virtual interfaces to containers | |
| US11520530B2 (en) | Peripheral device for configuring compute instances at client-selected servers | |
| US20200159555A1 (en) | Provider network service extensions | |
| US20230109231A1 (en) | Customizable network virtualization devices using multiple personalities | |
| CN115185637A (en) | Communication method and device for PaaS component management end and virtual machine agent | |
| CN111818081A (en) | Virtual encryption machine management method and device, computer equipment and storage medium | |
| CN113342457A (en) | Kubernetes scheduling method based on registration and discovery of Eureka service | |
| CN113132295B (en) | Method and device for accessing extranet through intranet of cluster, storage medium and electronic equipment | |
| CN111488248A (en) | Control method, device and equipment for hosting private cloud system and storage medium | |
| CN117499318B (en) | Cloud computing virtual network system, and use method, device, equipment and medium thereof | |
| US20240095739A1 (en) | Identity management for virtual private label clouds | |
| CN109885380B (en) | Session processing method and device, storage medium and electronic device | |
| CN116775054A (en) | Service deployment method and device, equipment and medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |