CN116781509A - Cloud private line configuration device, method, computer equipment and storage medium - Google Patents

Cloud private line configuration device, method, computer equipment and storage medium Download PDF

Info

Publication number
CN116781509A
CN116781509A CN202310911614.4A CN202310911614A CN116781509A CN 116781509 A CN116781509 A CN 116781509A CN 202310911614 A CN202310911614 A CN 202310911614A CN 116781509 A CN116781509 A CN 116781509A
Authority
CN
China
Prior art keywords
cloud
private
virtual
private line
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310911614.4A
Other languages
Chinese (zh)
Inventor
郭立民
孔维亭
郭涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jinan Inspur Data Technology Co Ltd
Original Assignee
Jinan Inspur Data Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jinan Inspur Data Technology Co Ltd filed Critical Jinan Inspur Data Technology Co Ltd
Priority to CN202310911614.4A priority Critical patent/CN116781509A/en
Publication of CN116781509A publication Critical patent/CN116781509A/en
Pending legal-status Critical Current

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention relates to the technical field of cloud private lines, and discloses a cloud private line configuration device, a method, computer equipment and a storage medium, wherein the device comprises: the private line switch management module is used for dividing a first virtual local area network on the private line switch and configuring static routes pointing to the virtual private cloud for the private line switch; the private line network module is used for creating a second virtual local area network on the edge switch, and the network section of the second virtual local area network is the same as that of the first virtual local area network; the virtual private cloud module is used for creating a virtual router on the virtual private cloud and the leaf switch so as to communicate the spine switch and the virtual private cloud; and the private line gateway module is used for creating a virtual router on the edge switch to connect the spine switch and the private line switch. Compared with the configuration of the cloud private line directly in the hardware network equipment, the configuration of the cloud private line through the cloud platform is more convenient and efficient.

Description

Cloud private line configuration device, method, computer equipment and storage medium
Technical Field
The invention relates to the technical field of cloud private lines, in particular to a cloud private line configuration device, a cloud private line configuration method, computer equipment and a storage medium.
Background
In recent years, with the continuous development of cloud computing technology, more and more enterprises migrate services to the cloud. Through cloud computing, the cloud resources can be utilized more efficiently by the enterprise, and the management and maintenance cost of the enterprise can be reduced. Meanwhile, enterprises face various problems of high data security risk, low data transmission speed and the like in cloud computing business, and in order to solve the problems, a cloud private line technology is developed.
The cloud private line is a cloud computing network solution based on physical private line connection. Cloud private lines provide greater security and stability, which in turn also provide higher bandwidth performance and lower network latency. However, in the conventional cloud private line solution, the user needs to configure the cloud private line directly on the hardware network device, which is cumbersome and inefficient, and is a great burden for the user.
Disclosure of Invention
In view of the above, the invention provides a cloud private line configuration device, a cloud private line configuration method, a computer device and a storage medium, so as to solve the problem that a user has complicated and low-efficiency operation when configuring a cloud private line on hardware network equipment.
In a first aspect, the present invention provides a cloud private line configuration device, including the following modules:
the private line exchanger management module is used for dividing a first virtual local area network on the private line exchanger and setting network segments of the first virtual local area network according to the virtual local area network configuration information; the private line switch management module is also used for configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud;
the private line network module is used for creating a second virtual local area network on the edge switch according to the private line network creation information, and the network segment of the second virtual local area network is the same as the network segment of the first virtual local area network;
the virtual private cloud module is used for creating virtual private cloud of a virtual local area network type and creating a first virtual router on the leaf switch according to the virtual private cloud creation information, and the first virtual router is used for establishing communication between the spine switch and the virtual private cloud;
and the private line gateway module is used for creating a second virtual router on the edge switch, and the second virtual router is used for establishing communication between the spine switch and the private line switch.
The hardware network equipment of the cloud private line is configured on the cloud platform through the device, the problem that the operation is complicated and low-efficiency when the hardware network equipment configures the cloud private line is avoided, and the effect that the hardware network equipment of the cloud private line is simpler and more efficient when the hardware network equipment of the cloud private line is configured is achieved.
In an alternative embodiment, the method further comprises the following modules:
and the associated subnet module is used for creating an associated subnet according to the associated subnet creation information, and the associated subnet is used for connecting the virtual private cloud to be communicated with the cloud external sub-gateway.
The associated subnet creation information required for creating the associated subnet can be obtained through the associated subnet module. According to the associated sub-network creation information, the virtual private cloud to be communicated and the cloud external sub-network can be associated more conveniently and efficiently.
In an optional implementation manner, the associated subnet module of the device is configured to obtain associated subnet creation information, where the associated subnet creation information includes a subnet of the virtual private cloud and a network segment of an external cloud network.
The associated subnet creation information required for creating the associated subnet can be obtained through the associated subnet module, wherein the associated subnet creation information comprises: a subnet of the virtual private cloud and a network segment of the extracloud network. According to the associated sub-network creation information, the virtual private cloud to be communicated and the cloud external sub-network can be associated more conveniently and efficiently.
In an optional implementation manner, the private line switch management module of the device is configured to obtain the configuration information of the virtual local area network, where the configuration information of the virtual local area network includes a name of the first virtual local area network, an identifier of the private line switch, and a network segment of the first virtual local area network. The private line switch management module of the device is also used for acquiring static route adding information, wherein the static route adding information comprises a static route name, the identification of the private line switch, a target network segment and next hop information.
The virtual local area network configuration information required by the configuration of the virtual local area network can be obtained through the private line switch management module, wherein the virtual local area network configuration information comprises: the name of the first virtual local area network, the identity of the private line exchange and the network segment of the first virtual local area network. According to the configuration information of the virtual local area network, the first virtual local area network on the private line exchange can be divided, and network segments can be set for the first virtual local area network.
Through the private line switch management module, static route adding information required by adding static routes can also be obtained, wherein the static route adding information comprises: static route name, private line switch identification, target network segment and next hop information. According to the static route adding information, the second virtual local area network on the edge switch can be conveniently and efficiently created, wherein the network segment of the second virtual local area network is identical to the network segment of the first virtual local area network.
In an optional implementation manner, the private line network module of the device is configured to obtain private line network creation information, where the private line network creation information includes a name of a private line network, a network type of the private line network, an identifier of an edge switch, and a network segment of the private line network.
The private network creation information required for creating the private network can be obtained through the private network module, wherein the private network creation comprises: the name of the private line network, the network type of the private line network, the identification of the edge switch and the network segment of the private line network. According to the private network creation information, the virtual private cloud of the virtual local area network type and the first virtual router on the leaf switch can be created conveniently and efficiently. Communication between the spine switch and the virtual private cloud can be established through a first virtual router therein.
In an optional embodiment, the vpn cloud module of the present apparatus is configured to obtain vpn cloud creation information, where the vpn cloud creation information includes a name of a vpn subnet, a network type of the vpn subnet, and a network segment of the vpn subnet.
The virtual private cloud module is capable of acquiring virtual private cloud creation information required for creating a virtual private cloud, wherein the virtual private cloud creation information comprises: the name of the virtual private cloud subnet, the network type of the virtual private cloud subnet, and the network segment of the virtual private cloud subnet. According to the virtual private cloud creation information, the virtual private cloud and the first virtual router on the leaf switch can be created conveniently and efficiently. Communication between the spine switch and the virtual private cloud can be established through a first virtual router therein.
In an optional embodiment, the private line gateway module of the apparatus is configured to obtain cloud private line creation information, and create a second virtual router on the edge switch according to the cloud private line creation information, where the cloud private line creation information includes a name of a cloud private line, a name of a virtual data center, a name of a virtual private cloud, a name of a private line network, a name of a private line gateway, and a name of an external cloud network.
The private line gateway module can acquire cloud private line creation information required for creating a cloud private line and creating a second virtual router on the edge switch, wherein the cloud private line creation information comprises: the name of the cloud private line, the name of the virtual data center, the name of the virtual private cloud, the name of the private line network, the name of the private line gateway and the name of the cloud external network. According to the cloud private line creation information, the second virtual router on the edge switch can be created more conveniently and efficiently. Communication between the spine switch and the private line switch can be established through a second virtual router therein.
In a second aspect, the present invention provides a cloud private line configuration method, including the following steps:
dividing a first virtual local area network on a private line exchanger and setting network segments of the first virtual local area network according to the configuration information of the virtual local area network;
creating a second virtual local area network on the edge switch according to the private network creation information, wherein the network segment of the second virtual local area network is the same as the network segment of the first virtual local area network;
creating a virtual private cloud of a virtual local area network type and creating a first virtual router on a leaf switch according to the virtual private cloud creation information, wherein the first virtual router is used for establishing communication between a spine switch and the virtual private cloud;
creating a second virtual router on the edge switch according to the cloud private line creation information, wherein the second virtual router is used for establishing communication between the spine switch and the private line switch;
and configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud.
In a third aspect, the present invention provides a computer device comprising: the cloud private line configuration method comprises the steps of storing computer instructions in a memory, and executing the computer instructions by the processor, wherein the memory and the processor are in communication connection, and the processor executes the cloud private line configuration method according to the second aspect or any corresponding implementation mode.
In a fourth aspect, the present invention provides a computer readable storage medium, where computer instructions are stored on the computer readable storage medium, where the computer instructions are configured to cause a computer to execute the cloud private line configuration method according to the second aspect or any one of the embodiments corresponding to the second aspect.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are needed in the description of the embodiments or the prior art will be briefly described, and it is obvious that the drawings in the description below are some embodiments of the present invention, and other drawings can be obtained according to the drawings without inventive effort for a person skilled in the art.
Fig. 1 is a block diagram of a cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 2 is a block diagram of another cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 3 is a network topology diagram of a cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 4 is a network topology diagram of a private line switch management module of the cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 5 is a network topology diagram of a private network module of a cloud private configuration device according to an embodiment of the present invention;
fig. 6 is a network topology diagram of a virtual private cloud module of a cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 7 is a network topology diagram of a private gateway module of a cloud private configuration device according to an embodiment of the present invention;
fig. 8 is a network topology diagram of an associated subnet module of a cloud private line configuration device according to an embodiment of the invention;
fig. 9 is a network topology diagram of a private line switch management module of another cloud private line configuration apparatus according to an embodiment of the present invention;
fig. 10 is a flow chart of a cloud private line configuration method according to an embodiment of the present invention;
fig. 11 is a schematic diagram of a hardware structure of a computer device according to an embodiment of the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are some embodiments of the present invention, but not all embodiments of the present invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
In recent years, with the continuous development of cloud computing technology, more and more enterprises migrate services to the cloud. Through cloud computing, the cloud resources can be utilized more efficiently by the enterprise, and the management and maintenance cost of the enterprise can be reduced. Meanwhile, enterprises face various problems of high data security risk, low data transmission speed and the like in cloud computing business, and in order to solve the problems, a cloud private line technology is developed.
The cloud private line is a cloud computing network solution based on physical private line connection. Cloud private lines provide greater security and stability, which in turn also provide higher bandwidth performance and lower network latency. However, in the conventional cloud private line solution, the user needs to configure the cloud private line directly on the hardware network device, which is cumbersome and inefficient, and is a great burden for the user.
The embodiment of the invention provides a cloud private line configuration device, which is used for avoiding the problem of complicated and low-efficiency operation when the hardware network device is used for configuring the cloud private line directly by configuring the hardware network device of the cloud private line on a cloud platform, and achieves the effect of being simpler and more efficient when the hardware network device of the cloud private line is configured.
According to the embodiment of the invention, an embodiment of a cloud private line configuration device is provided. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. While the means described in the following embodiments are preferably implemented in software, implementation in hardware, or a combination of software and hardware, is also possible and contemplated.
In this embodiment, a cloud private line configuration device is provided, which may be used for the cloud platform described above, and fig. 1 is a structural block diagram of the cloud private line configuration device according to an embodiment of the present invention, as shown in fig. 1, where the device includes the following modules:
the private line switch management module 101 is configured to divide a first virtual local area network on the private line switch and set a network segment of the first virtual local area network according to the configuration information of the virtual local area network; the private line switch management module 101 is further configured to configure a static route for the private line switch according to the static route adding information, where the static route points to the virtual private cloud.
The virtual local area network configuration information required for configuring the virtual local area network can be obtained through the private line switch management module 101. According to the configuration information of the virtual local area network, the first virtual local area network on the private line exchanger can be divided conveniently and efficiently, and network segments can be set for the first virtual local area network.
Static route addition information required for adding a static route can also be acquired through the private line switch management module 101. According to the static route adding information, static routes can be conveniently and efficiently configured for the private line switch, wherein the static routes point to the virtual private cloud.
The private line network module 102 is configured to create a second virtual local area network on the edge switch according to the private line network creation information, where a network segment of the second virtual local area network is the same as a network segment of the first virtual local area network.
The private network creation information required for creating the private network can be acquired through the private network module 102. According to the private line network creation information, the second virtual local area network on the edge switch can be created more conveniently and efficiently, wherein the network segment of the second virtual local area network is identical to the network segment of the first virtual local area network.
The virtual private cloud module 103 is configured to create a virtual private cloud of a virtual local area network type and create a first virtual router on the leaf switch according to the virtual private cloud creation information, where the first virtual router is configured to establish communication between the spine switch and the virtual private cloud.
Through the virtual private cloud module 103, virtual private cloud creation information required for creating a virtual private cloud can be acquired. According to the virtual private cloud creation information, the virtual private cloud of the virtual local area network type and the first virtual router on the leaf switch can be created more conveniently and efficiently. Communication between the spine switch and the virtual private cloud can be established through a first virtual router therein.
The private line gateway module 104 is configured to create a second virtual router on the edge switch according to the cloud private line creation information, where the second virtual router is configured to establish communication between the spine switch and the private line switch.
The private line gateway module 104 can obtain cloud private line creation information required for creating the second virtual router on the edge switch. According to the cloud private line creation information, the second virtual router on the edge switch can be created more conveniently and efficiently. Communication between the spine switch and the private line switch can be established through a second virtual router therein.
In this embodiment, a cloud private line configuration device is provided, which may be used for the cloud platform described above, and fig. 2 is a structural block diagram of the cloud private line configuration device according to an embodiment of the present invention, as shown in fig. 2, where the device includes the following modules:
the private line switch management module 201 is configured to divide a first virtual local area network on the private line switch and set a network segment of the first virtual local area network according to the configuration information of the virtual local area network; the private line switch management module is also used for configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud. Please refer to the module 101 in the embodiment shown in fig. 1 in detail, and will not be described herein.
The private line network module 202 is configured to create a second virtual local area network on the edge switch according to the private line network creation information, where a network segment of the second virtual local area network is the same as a network segment of the first virtual local area network. Please refer to the module 102 in the embodiment shown in fig. 1 in detail, which is not described herein.
The virtual private cloud module 203 is configured to create a virtual private cloud of a virtual local area network type and create a first virtual router on the leaf switch according to the virtual private cloud creation information, where the first virtual router is configured to establish communication between the spine switch and the virtual private cloud. Please refer to the module 103 in the embodiment shown in fig. 1 in detail, which is not described herein.
Private line gateway module 204 is used to create a second virtual router on the edge switch that is used to establish communications between the spine switch and the private line switch. Please refer to the dedicated gateway module 104 in the embodiment shown in fig. 1 in detail, which is not described herein.
The association subnet module 205 is configured to create an association subnet according to the association subnet creation information, where the association subnet is configured to associate the virtual private cloud subnet to be communicated with the cloud external sub-gateway.
The associated subnet creation information required for creating the associated subnet can be acquired through the associated subnet module 205. According to the creation information of the associated sub-network, the virtual private cloud to be communicated and the cloud external sub-network can be associated more conveniently and efficiently.
In some optional embodiments, the associated subnet module 205 in the above apparatus is further configured to obtain associated subnet creation information, where the associated subnet creation information includes network segments of the virtual private cloud and the extracloud network.
By the associated subnet module 205, associated subnet creation information required for creating an associated subnet can be obtained, wherein the associated subnet creation information includes: a subnet of the virtual private cloud and a network segment of the extracloud network. According to the associated sub-network creation information, the virtual private cloud to be communicated and the cloud external sub-network can be associated more conveniently and efficiently.
In some optional embodiments, the private line switch management module 201 in the above apparatus is configured to obtain virtual local area network configuration information, where the virtual local area network configuration information includes a name of the first virtual local area network, an identifier of the private line switch, and a network segment of the first virtual local area network.
The private line switch management module 201 in the above device is further configured to obtain static route adding information, where the static route adding information includes a static route name, an identifier of the private line switch, a target network segment, and next hop information.
The private line exchange management module 201 can obtain the configuration information of the virtual local area network required for configuring the virtual local area network, where the configuration information of the virtual local area network includes: the name of the first virtual local area network, the identity of the private line exchange and the network segment of the first virtual local area network. According to the configuration information of the virtual local area network, the first virtual local area network on the private line exchange can be divided, and network segments can be set for the first virtual local area network.
The private line switch management module 201 can also obtain static route adding information required for adding a static route, where the static route adding information includes: static route name, private line switch identification, target network segment and next hop information. According to the static route adding information, the second virtual local area network on the edge switch can be conveniently and efficiently created, wherein the network segment of the second virtual local area network is identical to the network segment of the first virtual local area network.
In some optional embodiments, the private network module 202 in the above apparatus is configured to obtain private network creation information, where the private network creation information includes a name of a private network, a network type of the private network, an identifier of an edge switch, and a network segment of the private network.
The private network creation information required for creating the private network can be obtained through the private network module 202, where the private network creation includes: the name of the private line network, the network type of the private line network, the identification of the edge switch and the network segment of the private line network. According to the private network creation information, the virtual private cloud of the virtual local area network type and the first virtual router on the leaf switch can be created conveniently and efficiently. Communication between the spine switch and the virtual private cloud can be established through a first virtual router therein.
In some optional embodiments, the vpn cloud module 203 in the foregoing apparatus is configured to obtain vpn cloud creation information, where the vpn cloud creation information includes a name of a vpn subnet, a network type of the vpn subnet, and a network segment of the vpn subnet.
Through the vpn cloud module 203, vpn cloud creation information required for creating a vpn cloud can be obtained, where the vpn cloud creation information includes: the name of the virtual private cloud subnet, the network type of the virtual private cloud subnet, and the network segment of the virtual private cloud subnet. According to the virtual private cloud creation information, the virtual private cloud and the first virtual router on the leaf switch can be created conveniently and efficiently. Communication between the spine switch and the virtual private cloud can be established through a first virtual router therein.
In some optional embodiments, the private line gateway module 204 in the foregoing apparatus is configured to obtain cloud private line creation information, and create the second virtual router on the edge switch according to the cloud private line creation information, where the cloud private line creation information includes a name of a cloud private line, a name of a virtual data center, a name of a virtual private cloud, a name of a private line network, a name of a private line gateway, and a name of an external cloud network.
The private line gateway module 204 can obtain cloud private line creation information required for creating a cloud private line and creating a second virtual router on the edge switch, where the cloud private line creation information includes: the name of the cloud private line, the name of the virtual data center, the name of the virtual private cloud, the name of the private line network, the name of the private line gateway and the name of the cloud external network. According to the cloud private line creation information, the second virtual router on the edge switch can be created more conveniently and efficiently. Communication between the spine switch and the private line switch can be established through a second virtual router therein.
In connection with the various embodiments provided by the present invention, the application may be performed in the following scenarios:
in recent years, with the continuous development of cloud computing technology, more and more enterprises migrate services to the cloud. Through cloud computing, the cloud resources can be utilized more efficiently by the enterprise, and the management and maintenance cost of the enterprise can be reduced. Meanwhile, enterprises face various problems of high data security risk, low data transmission speed and the like in cloud computing business, and in order to solve the problems, a cloud private line technology is developed.
The cloud private line is a cloud computing network solution based on physical private line connection. Cloud private lines provide greater security and stability, which in turn also provide higher bandwidth performance and lower network latency. However, in the conventional cloud private line solution, the user needs to configure the cloud private line directly on the hardware network device, which is cumbersome and inefficient, and is a great burden for the user.
In order to solve the problems in the above-mentioned scene, a cloud private line configuration device based on a cloud platform is provided. Through the device, the user can configure the hardware network equipment of the cloud private line on the cloud platform, and the problem that the user is complicated and low-efficiency in operation when the hardware network equipment configures the cloud private line directly is avoided.
The device is based on a cloud platform, and the network architecture topology of the device adopts a classical leaf-spine architecture, so that the flexibility and the expandability of the network topology are improved, and particularly, the device is shown in fig. 3. The cloud platform back end is written in JAVA language, and NETCONF (network configuration) protocol is utilized to reduce the dependence of the cloud platform on third party SDN (software defined network). When a user configures the hardware network device of the cloud private line on the cloud platform, a command is issued to the designated hardware network device, and the hardware network device receiving the command is configured. The device comprises six functional modules: the system comprises a private line switch management module, a private line network module, a virtual private cloud module, a private line gateway module, an associated subnet module and a physical private line module.
The user selects a private line switch on a Virtual Local Area Network (VLAN) creation page on the cloud platform, and fills in the name of the virtual local area network and the network segment of the virtual local area network, for example: the name of the filling virtual local area network is 1000, and the network segment of the filling virtual local area network is 100.2.124.1/24. After the private line exchange management module obtains the information of creating the virtual local area networks, a virtual local area network is divided on the private line exchange according to the information, and network segments are set for the virtual local area network, such as the virtual local area network 1000 and the network segments 100.2.124.1/24 shown in fig. 4. The private line switch management module defaults to the virtual lan to which the physical port used by the cloud private line is assigned, and sets IP (Internet Protocol ) for the physical port. This completes the network topology configuration shown in fig. 4.
On a private network creation page on the cloud platform, a user selects a network type and an edge (Border) switch of the private network, fills in a name and a network segment of the private network, for example: the network type of the private line network is selected as a virtual local area network, the name of the private line network is 1000, and the network segment of the private line network is 100.2.124.2/24. After the private line network module obtains the private line network creation information, a virtual local area network which is a private line network is created on the edge switch according to the information, and network segments of the virtual local area network, such as the virtual local area network 1000 and the network segments 100.2.124.2/24 shown in fig. 5, are set. The private line network module creates a virtual interface (SVI) of the private line switch to associate with the virtual lan and designates a physical outlet of the cloud private line on the edge switch. This completes the network topology configuration shown in fig. 5.
A user selects a network type of a virtual private cloud subnet on a Virtual Private Cloud (VPC) creation page on a cloud platform, and inputs a name of the virtual private cloud subnet and a network segment of the virtual private cloud subnet, for example: the network type of the private line network is selected as a virtual local area network, and the network segment of the input virtual private cloud sub-network is 192.168.1.0/24. After the vpn cloud module obtains the vpn cloud creation information, a vpn cloud and a subnet of the vpn cloud are created according to the information, where a network segment of the vpn cloud subnet shown in fig. 6 is 192.168.1.0/24, and a default router of the vpn cloud is connected to the subnet of the vpn cloud. The virtual private cloud module creates a Virtual Router (VRF) on a Leaf switch and binds the virtual router to a default physical port of the Leaf switch. Through the virtual router, communication between the spine switch and the virtual private cloud is established. This completes the network topology configuration shown in fig. 6.
And the user selects a virtual private cloud, a private network and an external network on a cloud private line creation page on the cloud platform, and inputs the name of the cloud private line and the name of the private gateway. After the private line gateway module obtains the cloud private line creation information, a cloud private line and a private line gateway inside the cloud private line are created according to the information, wherein the cloud private line is used for opening a virtual private cloud and a cloud external subnet. The private line gateway module creates a virtual router on the edge switch and binds the virtual router to a default physical port of the edge switch, and binds the virtual router to a physical outlet of the cloud private line on the edge switch. Through the virtual router, communication between the spine switch and the virtual private cloud is established. This completes the network topology configuration shown in fig. 7.
Through the private line gateway module, based on ECMP (equal cost multi-path routing) mechanism, the same or different private line networks can be selected for the same virtual private cloud in one cloud private line, so that a plurality of private line gateways can be created, and the effect of improving the bandwidth and reliability of the private line is achieved.
On an associated subnet creation page on the cloud platform, a user selects a subnet of the virtual private cloud and inputs a network segment of the external cloud network, for example: the network segment of the input cloud outside network is 10.10.10.0/24. After the associated subnet module obtains the associated subnet information, the virtual private cloud subnet to be communicated is associated with the cloud external subnet according to the information. The associated subnet module will add static routes to the virtual router created on the leaf switch and the virtual router created on the edge switch. This completes the network topology configuration shown in fig. 8.
The user adds an information page on the cloud platform by static route, selects a private line switch, and inputs a static route name, a target network segment and a next hop, for example: the input target network segment is 192.168.1.0/24, and the next hop is 100.2.124.2. After the private line switch management module obtains the static route adding information, a static route is added for the virtual router on the private line switch according to the information, wherein the static route points to the virtual private cloud subnet. This completes the network topology configuration shown in fig. 9.
The cloud private line in the physical private line module is a physical private line laid by an operator. The cloud private line can be used for communicating the virtual private cloud with the cloud external sub-network, so that stable, safe and high-speed network communication between the virtual private cloud at two ends of the cloud private line and the cloud external sub-network is ensured.
Compared with the configuration of the cloud private line on the hardware network device directly, the configuration of the hardware network device of the cloud private line can be conveniently and efficiently completed by a user through completing the steps on the cloud platform.
According to an embodiment of the present invention, a cloud private line configuration method embodiment is provided, it should be noted that the steps illustrated in the flowchart of the drawings may be performed in a computer system such as a set of computer executable instructions, and that although a logical order is illustrated in the flowchart, in some cases, the steps illustrated or described may be performed in an order different from that herein.
In this embodiment, a cloud private line configuration method is provided, which may be used for the cloud platform described above, and fig. 10 is a flowchart of the cloud private line configuration method according to an embodiment of the present invention, as shown in fig. 10, where the flowchart includes the following steps:
in step S1001, the first virtual local area network on the private line switch is divided and the network segment of the first virtual local area network is set according to the configuration information of the virtual local area network.
Step S1002, according to the private network creation information, creates a second virtual local area network on the edge switch, where the network segment of the second virtual local area network is the same as the network segment of the first virtual local area network.
In step S1003, a virtual private cloud of a virtual local area network type and a first virtual router on a leaf switch are created according to the virtual private cloud creation information, wherein the first virtual router is used for establishing communication between a spine switch and the virtual private cloud.
Step S1004, creating a second virtual router on the edge switch according to the cloud private line creation information, wherein the second virtual router is used for establishing communication between the spine switch and the private line switch.
Step S1005, configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud.
Further functional descriptions of the above steps are the same as those of the above corresponding embodiments, and are not repeated here.
The cloud private line configuration apparatus in this embodiment is presented in the form of functional units, where the units refer to ASIC (Application Specific Integrated Circuit ) circuits, processors and memories that execute one or more software or firmware programs, and/or other devices that can provide the above-described functions.
The embodiment of the invention also provides computer equipment, which is provided with the cloud private line configuration device shown in the figure 1.
Referring to fig. 11, fig. 11 is a schematic structural diagram of a computer device according to an alternative embodiment of the present invention, as shown in fig. 11, the computer device includes: one or more processors 1101, memory 1102, and interfaces for connecting the various components, including a high speed interface and a low speed interface. The various components are communicatively coupled to each other using different buses and may be mounted on a common motherboard or in other manners as desired. The processor may process instructions executing within the computer device, including instructions stored in or on memory to display graphical information of the GUI on an external input/output device, such as a display device coupled to the interface. In some alternative embodiments, multiple processors and/or multiple buses may be used, if desired, along with multiple memories and multiple memories. Also, multiple computer devices may be connected, each providing a portion of the necessary operations (e.g., as a server array, a set of blade servers, or a multiprocessor system). In fig. 11, a processor 1101 is taken as an example.
The processor 1101 may be a central processor, a network processor, or a combination thereof. The processor 1101 may further include a hardware chip, among others. The hardware chip may be an application specific integrated circuit, a programmable logic device, or a combination thereof. The programmable logic device may be a complex programmable logic device, a field programmable gate array, a general-purpose array logic, or any combination thereof.
The memory 1102 stores instructions executable by the at least one processor 1101 to cause the at least one processor 1101 to perform a method for implementing the embodiments described above.
Memory 1102 may include a storage program area that may store an operating system, at least one application program required for functionality, and a storage data area; the storage data area may store data created according to the use of the computer device, etc. In addition, memory 1102 may include high-speed random access memory, and may also include non-transitory memory, such as at least one magnetic disk storage device, flash memory device, or other non-transitory solid-state storage device. In some alternative embodiments, memory 1102 may optionally include memory located remotely from processor 1101, which may be connected to the computer device via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
Memory 1102 may include volatile memory, such as random access memory; the memory may also include non-volatile memory, such as flash memory, hard disk, or solid state disk; memory 1102 may also include a combination of the above types of memory.
The computer device also includes a communication interface 1103 for the computer device to communicate with other devices or communication networks.
The embodiments of the present invention also provide a computer readable storage medium, and the method according to the embodiments of the present invention described above may be implemented in hardware, firmware, or as a computer code which may be recorded on a storage medium, or as original stored in a remote storage medium or a non-transitory machine readable storage medium downloaded through a network and to be stored in a local storage medium, so that the method described herein may be stored on such software process on a storage medium using a general purpose computer, a special purpose processor, or programmable or special purpose hardware. The storage medium can be a magnetic disk, an optical disk, a read-only memory, a random access memory, a flash memory, a hard disk, a solid state disk or the like; further, the storage medium may also comprise a combination of memories of the kind described above. It will be appreciated that a computer, processor, microprocessor controller or programmable hardware includes a storage element that can store or receive software or computer code that, when accessed and executed by the computer, processor or hardware, implements the methods illustrated by the above embodiments.
Although embodiments of the present invention have been described in connection with the accompanying drawings, various modifications and variations may be made by those skilled in the art without departing from the spirit and scope of the invention, and such modifications and variations fall within the scope of the invention as defined by the appended claims.

Claims (10)

1. A cloud private line configuration device, characterized in that the device comprises:
the private line exchanger management module is used for dividing a first virtual local area network on the private line exchanger and setting network segments of the first virtual local area network according to the virtual local area network configuration information; the private line switch management module is also used for configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud;
the private line network module is used for creating a second virtual local area network on the edge switch according to the private line network creation information, wherein the network segment of the second virtual local area network is the same as the network segment of the first virtual local area network;
the virtual private cloud module is used for creating the virtual private cloud of a virtual local area network type and creating a first virtual router on a leaf switch according to virtual private cloud creation information, and the first virtual router is used for establishing communication between a spine switch and the virtual private cloud;
and the private line gateway module is used for creating a second virtual router on the edge switch according to the cloud private line creation information, and the second virtual router is used for establishing communication between the spine switch and the private line switch.
2. The cloud private line configuration apparatus according to claim 1, wherein the apparatus further comprises:
and the associated subnet module is used for creating an associated subnet according to the associated subnet creation information, and the associated subnet is used for connecting the virtual private cloud to be communicated with an external cloud sub-gateway.
3. The cloud private configuring apparatus according to claim 2, wherein,
the associated subnet module is used for acquiring associated subnet creation information, and the associated subnet creation information comprises a subnet of the virtual private cloud and a network segment of an external cloud network.
4. A cloud private line configuration apparatus according to any one of claims 1 to 3,
the private line exchanger management module is used for acquiring the virtual local area network configuration information, wherein the virtual local area network configuration information comprises the name of the first virtual local area network, the identifier of the private line exchanger and the network segment of the first virtual local area network;
the private line switch management module is further configured to obtain the static route adding information, where the static route adding information includes a static route name, an identifier of the private line switch, a target network segment, and next hop information.
5. A cloud private line configuration apparatus according to any one of claims 1 to 3,
the private line network module is configured to obtain the private line network creation information, where the private line network creation information includes a name of a private line network, a network type of the private line network, an identifier of an edge switch, and a network segment of the private line network.
6. A cloud private line configuration apparatus according to any one of claims 1 to 3,
the virtual private cloud module is configured to obtain virtual private cloud creation information, where the virtual private cloud creation information includes a name of a virtual private cloud subnet, a network type of the virtual private cloud subnet, and a network segment of the virtual private cloud subnet.
7. A cloud private line configuration apparatus according to any one of claims 1 to 3,
the private line gateway module is used for acquiring cloud private line creation information and creating a second virtual router on the edge switch according to the cloud private line creation information, wherein the cloud private line creation information comprises a cloud private line name, a virtual data center name, a virtual private cloud name, a private line network name, a private line gateway name and an external cloud network name.
8. A cloud private line configuration method, the method comprising:
dividing a first virtual local area network on a private line exchanger and setting network segments of the first virtual local area network according to virtual local area network configuration information;
creating a second virtual local area network on an edge switch according to the private network creation information, wherein the network segment of the second virtual local area network is the same as the network segment of the first virtual local area network;
creating a virtual private cloud of a virtual local area network type and creating a first virtual router on a leaf switch according to virtual private cloud creation information, wherein the first virtual router is used for establishing communication between a spine switch and the virtual private cloud;
creating a second virtual router on an edge switch according to cloud private line creation information, wherein the second virtual router is used for establishing communication between the spine switch and the private line switch;
and configuring a static route for the private line switch according to the static route adding information, wherein the static route points to the virtual private cloud.
9. A computer device, comprising:
the cloud private line configuration method of claim 8 comprises a memory and a processor, wherein the memory and the processor are in communication connection, the memory stores computer instructions, and the processor executes the computer instructions, so that the cloud private line configuration method is executed.
10. A computer-readable storage medium having stored thereon computer instructions for causing a computer to perform the cloud private configuration method of claim 8.
CN202310911614.4A 2023-07-24 2023-07-24 Cloud private line configuration device, method, computer equipment and storage medium Pending CN116781509A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310911614.4A CN116781509A (en) 2023-07-24 2023-07-24 Cloud private line configuration device, method, computer equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310911614.4A CN116781509A (en) 2023-07-24 2023-07-24 Cloud private line configuration device, method, computer equipment and storage medium

Publications (1)

Publication Number Publication Date
CN116781509A true CN116781509A (en) 2023-09-19

Family

ID=88010031

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310911614.4A Pending CN116781509A (en) 2023-07-24 2023-07-24 Cloud private line configuration device, method, computer equipment and storage medium

Country Status (1)

Country Link
CN (1) CN116781509A (en)

Similar Documents

Publication Publication Date Title
CN112470436B (en) Systems, methods, and computer-readable media for providing multi-cloud connectivity
US10708125B1 (en) Gateway configuration using a network manager
US11470001B2 (en) Multi-account gateway
CN108293019B (en) Flow table processing method and device
US10127055B2 (en) iSCSI based bare metal OS image deployment and diskless boot
CN111224821B (en) Security service deployment system, method and device
CN112688814B (en) Equipment access method, device, equipment and machine readable storage medium
EP3905598A1 (en) Message processing method and apparatus, control plane device, and computer storage medium
CN107733795B (en) Ethernet virtual private network EVPN and public network intercommunication method and device
US20170302526A1 (en) Communication via a connection management message that uses an attribute having information on queue pair objects of a proxy node in a switchless network
CN108833472B (en) System is established in the connection of cloud host
CN110620706B (en) Parameter adjusting method and equipment
CN111416732B (en) Method and device for automatically configuring service for capacity expansion of network equipment in SDN
CN113612702A (en) Method, system, equipment and storage medium for realizing bare metal inspection process
CN112187489B (en) Network management system and method based on software defined network
CN110768870B (en) Quality monitoring method and device for intelligent special line
CN116566830A (en) Network configuration method, device, system, edge equipment and storage medium
CN116781509A (en) Cloud private line configuration device, method, computer equipment and storage medium
CN112994915A (en) SD-WAN service arranging method, system, equipment and storage medium
US9344487B2 (en) Method for networking cPaaS components for application on-boarding
CN113965456A (en) Host interface expanding method, device, equipment and storage medium
CN114615108B (en) Method, platform and equipment for opening special line of virtual private network
CN116915585B (en) Software-defined wide area network networking method, device, electronic equipment and storage medium
CN117176673A (en) Method, system, device and computer equipment for realizing peer-to-peer connection between subnetworks
US20240056498A1 (en) Scalable creation of connections

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination