WO2019080010A1 - Cloud computing-based virtual machine control system and method therefor - Google Patents

Cloud computing-based virtual machine control system and method therefor

Info

Publication number
WO2019080010A1
WO2019080010A1 PCT/CN2017/107680 CN2017107680W WO2019080010A1 WO 2019080010 A1 WO2019080010 A1 WO 2019080010A1 CN 2017107680 W CN2017107680 W CN 2017107680W WO 2019080010 A1 WO2019080010 A1 WO 2019080010A1
Authority
WO
WIPO (PCT)
Prior art keywords
virtual machine
novnc
browser
client
cloudstack
Prior art date
Application number
PCT/CN2017/107680
Other languages
French (fr)
Chinese (zh)
Inventor
李凡成
张永苏
曾令云
Original Assignee
深圳市互盟科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳市互盟科技股份有限公司 filed Critical 深圳市互盟科技股份有限公司
Priority to CN201780060469.6A priority Critical patent/CN109997345B/en
Priority to PCT/CN2017/107680 priority patent/WO2019080010A1/en
Publication of WO2019080010A1 publication Critical patent/WO2019080010A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/40Support for services or applications

Definitions

  • the present invention relates to the technical field of Internet cloud computing platform management, and in particular, to a virtual machine control system for cloud computing and a method thereof.
  • isolation is mainly used as a security means, which is divided into physical isolation, internal and external network isolation, and encryption isolation. It has been proved that this isolation method can effectively protect traditional IT architecture.
  • this traditional information security which is isolated as the main idea, has become increasingly difficult to deal with in the new IT architecture.
  • the typical scenario of public cloud is multi-tenant sharing, but compared with the traditional IT architecture, the original trusted boundary is completely broken, and the threat may come directly from neighboring tenants. Cloud security becomes especially important.
  • CloudStack is the world's leading application service software solution provider Citrix Inc., an open source cloud platform management software that works with the Apache Foundation on CloudStack Infrastructure as a Service (IaaS) product source code. CloudStack accelerates the deployment, management, and configuration of highly scalable public and private clouds (IaaS). Using CloudStack as a foundation, data center operators can quickly and easily build their own cloud services on existing infrastructure. As an open source cloud management platform, CloudStack installation and configuration is relatively simple, providing support for a variety of virtual machine platforms, based on WEB browser management is more convenient, the operation interface is also more beautiful. Now, not only telecom operators are adopting CloudStack, but more and more enterprises are also using CloudStack to build cloud platforms.
  • CloudStack uses a variety of host virtualization/network virtualization/storage virtualization technologies to build virtual machines and configure management to form an elastically scalable resource pool.
  • Host virtualization supports the management of most major hypervisors, such as KVM virtual machine, XenServer, VMware, Oracle VM, Xen, etc.; network virtualization support such as security group, VLan, GRE, VxLan, etc.; storage virtualization supports local storage, ISCSI storage, network storage (Sharepoint, distributed storage, etc.) .
  • FIG. 1 is a schematic structural diagram of a prior art CloudStack-based virtual machine control system 100.
  • the virtual machine control system 100 in FIG. 1 includes a browser 110 and a VNC client. 120.
  • the VNC client 120 can be implemented by a program in the Console Proxy VM (CPVM), while the VNC server 130 and the virtual machine console 140 run in the host.
  • the user uses the browser 110 to initiate a request for remote access to the target virtual machine using HTTPS technology on the web page.
  • CPVM Console Proxy VM
  • the VNC client 120 (e.g., CPWM) establishes a connection (TCP/HTTPS connection) with the VNC server 130 and returns data from the VNC server 130 to the browser 110.
  • the browser 110 displays the returned data in a graphical interface to the customer for viewing.
  • CPVM is a single system virtual machine of CloudStack, which has a single point of failure and may cause a Caton failure.
  • An embodiment of the present invention provides a cloud computing-based virtual machine control system, including a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein the browser is configured to use the noVNC client to
  • the CloudStack management server issues a viewing console request; the CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, a port, and a password, and the CloudStack management server uses the virtual machine
  • the machine information is encrypted into a token, and the password password and the token generation uniform resource locator are returned to the browser; the browser requests the noVNC client to parse according to the returned uniform resource locator The uniform resource locator to locate a resource location; the noVNC client matches whether the positioning resource exists, and if so, establish a remote connection between the noVNC client and the VNC server; the noVNC client Returning data from the VNC server to the browser; and browsing Parse the returned data is displayed to the user.
  • said virtual machine control system further comprises one or more load balancers coupled between said browser and one or more of said noVNC clients for selecting one or more based on current load conditions
  • one of the noVNC clients works.
  • the CloudStack management server is further configured to determine whether the request is legal by verifying the identity of the user, whether the session is expired, and whether the access target has authority.
  • the noVNC client is configured to: match whether the positioning resource exists by retrieving whether a local file has a resource matching the uniform resource locator.
  • the virtual machine control system further includes a virtual machine console coupled to the VNC server, the VNC server and the virtual machine console forming a XenServer host, an EsXi host, or a KVM host.
  • the embodiment of the invention further provides a cloud computing-based virtual machine control method, which is applicable to a virtual machine control system including a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein the browser passes through the
  • the noVNC client sends a view console request to the CloudStack management server;
  • the CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, port, password password,
  • the CloudStack management server encrypts the virtual machine information into a token, and returns the password password and the token generation uniform resource locator to the browser;
  • the browser requests according to the returned uniform resource locator
  • the noVNC client locates a resource location by parsing the uniform resource locator; the noVNC client matches whether the positioning resource exists, and if so, establishes a remote between the noVNC client and the VNC server Connecting; the noVNC client returns data from the VNC server to the Browser; and the browser parses the user to
  • the virtual machine control method further comprises: selecting one or more according to a current load condition by one or more load balancers coupled between the browser and one or more of the noVNC clients One of the noVNC clients works.
  • the step of determining, by the CloudStack management server, whether the request is legal comprises: determining whether the request is legal by verifying the identity of the user, whether the session is expired, and whether the access target has authority.
  • the step of the noVNC client matching whether the positioning resource exists comprises: matching whether the positioning resource exists by retrieving whether a local file has a resource matching the uniform resource locator.
  • the virtual machine control system further includes a virtual machine console coupled to the VNC server, the VNC server and the virtual machine console forming a XenServer host, an EsXi host, or a KVM host.
  • the noVNC client in the embodiment of the present invention can be deployed at any location capable of communicating with the management network, and combined with the load balancer connection of the front end, solves the jamon problem caused in the prior art and prevents single point of failure.
  • a CloudStack-based virtual machine control system according to an embodiment of the present invention And its method enables the compatibility of the VNC server and the noVNC client in the client-server proxy (ACS).
  • FIG. 1 is a schematic structural diagram of a prior art CloudStack-based virtual machine control system.
  • FIG. 2 is a schematic structural diagram of a CloudStack-based virtual machine control system according to an embodiment of the present invention.
  • FIG. 3 is a schematic flowchart diagram of a CloudStack-based virtual machine control method according to an embodiment of the present invention.
  • FIG. 2 is a schematic structural diagram of a CloudStack-based virtual machine control system 200 according to an embodiment of the present invention.
  • the CloudStack-based virtual machine control system 200 includes a browser 210, one or more load balancers 220, one or more noVNC clients (eg, 230_1 to 230_3), one or more VNC servers ( For example, 240_1 to 240_3), and one or more virtual machine consoles (eg, 250_1 to 250_3).
  • the corresponding VNC server and virtual machine console can form a hypervisor.
  • the browser 210 is configured to issue a viewing console request by the client to a CloudStack management server (eg, a hypervisor composed of a VNC server and a virtual machine console).
  • a CloudStack management server eg, a hypervisor composed of a VNC server and a virtual machine console.
  • One or more load balancers 220 are coupled between the browser 210 and one or more noVNC clients (eg, 230_1 through 230_3) for selecting one or more noVNC clients based on current load conditions (eg, 230_1) One of the work to 230_3).
  • One or more noVNC clients 230_1 through 230_3 can be implemented using HTML 5 WebSockets, Canvas and JavaScript.
  • noVNC is commonly used in cloud computing and virtual machine control panels.
  • the noVNC client can be deployed anywhere that can communicate with the management network and combined with the front-end load balancer to prevent single points of failure.
  • the VNC server 240_1 and the virtual machine console 250_1 form a XenServer host, and one of the one or more noVNC clients (eg, noVNC clients 230_1 through 230_3) uses the HTTPS protocol 443 port for data communication.
  • the VNC server 240_2 and the virtual machine console 250_2 constitute an EsXi host, and one of the one or more noVNC clients (for example, noVNC clients 230_1 to 230_3) uses the TCP protocol 5900+i port for data communication.
  • the VNC server 240_3 and the virtual machine console 250_3 constitute a KVM host, and one of the one or more noVNC clients (for example, noVNC clients 230_1 to 230_3) uses the TCP protocol 5900+i port for data communication.
  • FIG. 3 is a schematic flowchart diagram of a CloudStack-based virtual machine control method 300 according to an embodiment of the present invention. The working principle of FIG. 2 is further understood in conjunction with FIG. 3.
  • the CloudStack-based virtual machine control method 300 includes the following steps:
  • Step S302 The user logs in to the browser to issue a viewing console request to the CloudStack management server (for example, the CloudStack management service program).
  • a request to view a virtual machine console may be issued by the browser 210 to one of the one or more noVNC clients (eg, noVNC clients 230_1 through 230_3) to the CloudStack management server.
  • the selection of which of the noVNC clients 230_1 to 230_3 can be made by the load balancer 220.
  • Step S304 If the request is legal, the virtual machine information including the virtual machine host IP, port, password password, and the like is acquired accordingly.
  • the verification of the validity of the request may include verifying the identity of the user, expiring the session, and whether the access target has rights. If the request is legal, the CloudStack management server acquires virtual machine information of the virtual machine host IP, port, password, and the like according to the universal unique identifier (UUID) of the virtual machine carried in the request.
  • UUID universal unique identifier
  • Step S306 Encrypt the virtual machine information into a token, and return the password and the token generation uniform resource locator (URL) to the browser.
  • the CloudStack management server constructs a token for the UUID, host IP, and port of the virtual machine, and encrypts it and stores it in a database or file system.
  • the CloudStack management server returns the password password of the virtual machine and the token generation URL to the browser 210.
  • Step S308 According to the returned URL, the noVNC client parses the URL to locate the resource. Specifically, the browser 210 requests a noVNC client (eg, noVNC client 230_2) based on the returned URL, and the noVNC client locates the resource location by parsing the URL.
  • a noVNC client eg, noVNC client 230_2
  • Step S310 Matching whether the positioning resource exists, and if so, establishing a remote connection between the noVNC client and the VNC server.
  • the noVNC client 230_2 may retrieve, after obtaining the request from the browser 210, whether the local file has a resource that matches the requested URL parameter. If there is a match, the noVNC client 230_2 establishes a remote connection with the VNC server running in the remote host via the HTTPS/TCP protocol. At the same time, the verification of the connection is made by the password entered by the user on the webpage of the browser 210.
  • Step S312 The noVNC client returns data from the VNC server running in the remote host to the browser.
  • Step S314 The browser parses and displays the returned data.
  • the noVNC client 230_2 can return data from the VNC server 240_2 to the browser 210, and the browser 210 parses and displays the returned data to the user.
  • the noVNC client in the embodiment of the present invention can be deployed at any location capable of communicating with the management network, and combined with the load balancer connection of the front end, solves the jamon problem caused in the prior art and prevents single point of failure.
  • the CloudStack-based virtual machine control system and method thereof according to an embodiment of the present invention can implement compatible use of a VNC server and a noVNC client in a client-server proxy (ACS).
  • ACS client-server proxy

Landscapes

  • Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer And Data Communications (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

A cloud computing-based virtual machine control system: a browser issues a console viewing request to a CloudStack management server; the CloudStack management server determines whether the request is legitimate, acquires virtual machine information if the request is legitimate, encrypts the virtual machine information into a token, and uses a password and a token to generate a uniform resource locator (URL) and returns the URL to the browser; the browser, according to the URL, requests that a noVNC client locate a resource position by means of parsing the URL; the noVNC client matches to determine whether the located resource exists, and establishes a remote connection if the resource exists; the noVNC client returns data from a VNC server to the browser; and the browser parses and displays the returned data. The described system and the method therefor may be used to realize the compatible use of the VNC server and the noVNC client, thereby solving the problem in existing technology of lagging occurring and preventing single-point fault.

Description

基于云计算的虚拟机控制***及其方法Cloud computing based virtual machine control system and method thereof 技术领域Technical field
本发明涉及互联网云计算平台管理的技术领域,尤其涉及一种云计算的虚拟机控制***及其方法。The present invention relates to the technical field of Internet cloud computing platform management, and in particular, to a virtual machine control system for cloud computing and a method thereof.
背景技术Background technique
在传统的信息安全时代主要采用隔离作为安全的手段,具体分为物理隔离、内外网隔离、加密隔离,实践证明这种隔离手段针对传统IT架构能起到有效的防护。随着云计算的兴起,这种隔离为主体思想的传统信息安全在新的IT架构中已经日益难以应对了。公有云的典型场景是多租户共享,但和传统IT架构相比,原来的可信边界彻底被打破了,威胁可能直接来自于相邻租户,云安全变得尤为重要。In the traditional information security era, isolation is mainly used as a security means, which is divided into physical isolation, internal and external network isolation, and encryption isolation. It has been proved that this isolation method can effectively protect traditional IT architecture. With the rise of cloud computing, this traditional information security, which is isolated as the main idea, has become increasingly difficult to deal with in the new IT architecture. The typical scenario of public cloud is multi-tenant sharing, but compared with the traditional IT architecture, the original trusted boundary is completely broken, and the threat may come directly from neighboring tenants. Cloud security becomes especially important.
CloudStack是世界领先的应用服务软件方案提供商思杰公司(Citrix)公司将CloudStack基础设施即服务(IaaS)产品源代码与Apache Foundation合作的一个开源云平台管理软件。CloudStack可以加速高伸缩性的公共和私有云(IaaS)的部署、管理、配置。使用CloudStack作为基础,数据中心操作者可以快速方便地在现有的架构上构建自己的云服务。作为开源云管理平台,CloudStack安装和配置相对比较简单,提供多种虚拟机平台的支持,基于WEB浏览器管理比较方便,操作界面也比较美观大方。现在,不仅是电信运营商在采用CloudStack,越来越多的企业也在利用CloudStack构建云平台。CloudStack is the world's leading application service software solution provider Citrix Inc., an open source cloud platform management software that works with the Apache Foundation on CloudStack Infrastructure as a Service (IaaS) product source code. CloudStack accelerates the deployment, management, and configuration of highly scalable public and private clouds (IaaS). Using CloudStack as a foundation, data center operators can quickly and easily build their own cloud services on existing infrastructure. As an open source cloud management platform, CloudStack installation and configuration is relatively simple, providing support for a variety of virtual machine platforms, based on WEB browser management is more convenient, the operation interface is also more beautiful. Now, not only telecom operators are adopting CloudStack, but more and more enterprises are also using CloudStack to build cloud platforms.
CloudStack利用多种主机虚化/网络虚拟化/存储虚拟化技术构建虚拟机并进行配置管理,从而形成可弹性伸缩的资源池,其中主机虚拟化支持管理大部分主流的管理程序(hypervisor),如KVM虚拟机、XenServer、VMware、Oracle VM、Xen等;网络虚拟化支持如安全组、VLan、GRE、VxLan等;存储虚拟化支持本地存储、ISCSI存储、网络存储(Sharepoint、分布式存储等)等。CloudStack uses a variety of host virtualization/network virtualization/storage virtualization technologies to build virtual machines and configure management to form an elastically scalable resource pool. Host virtualization supports the management of most major hypervisors, such as KVM virtual machine, XenServer, VMware, Oracle VM, Xen, etc.; network virtualization support such as security group, VLan, GRE, VxLan, etc.; storage virtualization supports local storage, ISCSI storage, network storage (Sharepoint, distributed storage, etc.) .
图1所示为现有技术的基于CloudStack的虚拟机控制***100的结构示意图。如图1所示,图1中的虚拟机控制***100包括浏览器110、VNC客户端 120、VNC服务器130、以及虚拟机控制台140。VNC客户端120可通过控制台代理虚拟机(Console Proxy VM,CPVM)中的程序来实现,而VNC服务器130和虚拟机控制台140运行于宿主机中。用户利用浏览器110在网页上采用HTTPS技术发起远程访问目标虚拟机的请求。响应于来自浏览器的所述请求,VNC客户端120(例如,CPWM)建立与VNC服务器130的连接(TCP/HTTPS连接),并将来自VNC服务器130的数据返回给浏览器110。浏览器110将所述返回的数据以图形界面的形式显示给客户查看。FIG. 1 is a schematic structural diagram of a prior art CloudStack-based virtual machine control system 100. As shown in FIG. 1, the virtual machine control system 100 in FIG. 1 includes a browser 110 and a VNC client. 120. A VNC server 130 and a virtual machine console 140. The VNC client 120 can be implemented by a program in the Console Proxy VM (CPVM), while the VNC server 130 and the virtual machine console 140 run in the host. The user uses the browser 110 to initiate a request for remote access to the target virtual machine using HTTPS technology on the web page. In response to the request from the browser, the VNC client 120 (e.g., CPWM) establishes a connection (TCP/HTTPS connection) with the VNC server 130 and returns data from the VNC server 130 to the browser 110. The browser 110 displays the returned data in a graphical interface to the customer for viewing.
然而,这种方式是使用CPVM实现VNC客户端,显示效果非常差,基本上很难满足用户的正常使用需求。此外,CPVM是CloudStack的单个***虚拟机,存在单点故障,可能导致卡顿故障。However, this method is to use VVM to implement VNC client, the display effect is very poor, and it is basically difficult to meet the normal use requirements of users. In addition, CPVM is a single system virtual machine of CloudStack, which has a single point of failure and may cause a Caton failure.
发明内容Summary of the invention
本发明实施例提供一种基于云计算的虚拟机控制***,包括浏览器、noVNC客户端、CloudStack管理服务器、以及VNC服务器,其特征在于:所述浏览器用于经由所述noVNC客户端向所述CloudStack管理服务器发出查看控制台请求;所述CloudStack管理服务器判断所述请求是否合法,如果合法则获取包括虚拟机宿主机IP、端口、密码口令的虚拟机信息,所述CloudStack管理服务器将所述虚拟机信息加密成令牌,并将所述密码口令和令牌生成统一资源定位符返回给所述浏览器;所述浏览器根据所述返回的统一资源定位符而请求所述noVNC客户端通过解析所述统一资源定位符来定位资源位置;所述noVNC客户端匹配所述定位资源是否存在,如果存在,则建立所述noVNC客户端与所述VNC服务器之间的远程连接;所述noVNC客户端将来自所述VNC服务器的数据返回到所述浏览器;以及所述浏览器解析并向用户显示返回的数据。An embodiment of the present invention provides a cloud computing-based virtual machine control system, including a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein the browser is configured to use the noVNC client to The CloudStack management server issues a viewing console request; the CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, a port, and a password, and the CloudStack management server uses the virtual machine The machine information is encrypted into a token, and the password password and the token generation uniform resource locator are returned to the browser; the browser requests the noVNC client to parse according to the returned uniform resource locator The uniform resource locator to locate a resource location; the noVNC client matches whether the positioning resource exists, and if so, establish a remote connection between the noVNC client and the VNC server; the noVNC client Returning data from the VNC server to the browser; and browsing Parse the returned data is displayed to the user.
优选地,所述虚拟机控制***还包括一个或多个负载均衡器,耦合在所述浏览器与一个或多个所述noVNC客户端之间,用于根据当前负载情况而选择一个或多个所述noVNC客户端中的其中一个工作。Advantageously, said virtual machine control system further comprises one or more load balancers coupled between said browser and one or more of said noVNC clients for selecting one or more based on current load conditions One of the noVNC clients works.
优选地,所述CloudStack管理服务器还配置为:通过验证用户身份、会话是否到期、以及访问目标是否有权限来而判断所述请求是否合法。Preferably, the CloudStack management server is further configured to determine whether the request is legal by verifying the identity of the user, whether the session is expired, and whether the access target has authority.
优选地,所述noVNC客户端配置为:通过检索本地文件是否存在与所述统一资源定位符匹配的资源来匹配所述定位资源是否存在。 Preferably, the noVNC client is configured to: match whether the positioning resource exists by retrieving whether a local file has a resource matching the uniform resource locator.
优选地,所述虚拟机控制***还包括耦合于所述VNC服务器的虚拟机控制台,所述VNC服务器和所述虚拟机控制台构成XenServer主机、EsXi主机、或KVM主机。Preferably, the virtual machine control system further includes a virtual machine console coupled to the VNC server, the VNC server and the virtual machine console forming a XenServer host, an EsXi host, or a KVM host.
本发明实施例还提供一种基于云计算的虚拟机控制方法,适用于包括浏览器、noVNC客户端、CloudStack管理服务器、以及VNC服务器的虚拟机控制***,其特征在于:所述浏览器经由所述noVNC客户端向所述CloudStack管理服务器发出查看控制台请求;所述CloudStack管理服务器判断所述请求是否合法,如果合法则获取包括虚拟机宿主机IP、端口、密码口令的虚拟机信息,所述CloudStack管理服务器将所述虚拟机信息加密成令牌,并将所述密码口令和令牌生成统一资源定位符返回给所述浏览器;所述浏览器根据所述返回的统一资源定位符而请求所述noVNC客户端通过解析所述统一资源定位符来定位资源位置;所述noVNC客户端匹配所述定位资源是否存在,如果存在,则建立所述noVNC客户端与所述VNC服务器之间的远程连接;所述noVNC客户端将来自所述VNC服务器的数据返回到所述浏览器;以及所述浏览器解析并向所述用户显示返回的数据。The embodiment of the invention further provides a cloud computing-based virtual machine control method, which is applicable to a virtual machine control system including a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein the browser passes through the The noVNC client sends a view console request to the CloudStack management server; the CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, port, password password, The CloudStack management server encrypts the virtual machine information into a token, and returns the password password and the token generation uniform resource locator to the browser; the browser requests according to the returned uniform resource locator The noVNC client locates a resource location by parsing the uniform resource locator; the noVNC client matches whether the positioning resource exists, and if so, establishes a remote between the noVNC client and the VNC server Connecting; the noVNC client returns data from the VNC server to the Browser; and the browser parses the user to display the returned data.
优选地,所述虚拟机控制方法还包括:由耦合在所述浏览器与一个或多个所述noVNC客户端之间的一个或多个负载均衡器,根据当前负载情况而选择一个或多个所述noVNC客户端中的其中一个工作。Preferably, the virtual machine control method further comprises: selecting one or more according to a current load condition by one or more load balancers coupled between the browser and one or more of the noVNC clients One of the noVNC clients works.
优选地,所述CloudStack管理服务器判断所述请求是否合法的步骤包括:通过验证用户身份、会话是否到期、以及访问目标是否有权限来而判断所述请求是否合法。Preferably, the step of determining, by the CloudStack management server, whether the request is legal comprises: determining whether the request is legal by verifying the identity of the user, whether the session is expired, and whether the access target has authority.
优选地,所述noVNC客户端匹配所述定位资源是否存在的步骤包括:通过检索本地文件是否存在与所述统一资源定位符匹配的资源来匹配所述定位资源是否存在。Preferably, the step of the noVNC client matching whether the positioning resource exists comprises: matching whether the positioning resource exists by retrieving whether a local file has a resource matching the uniform resource locator.
优选地,所述虚拟机控制***还包括耦合于所述VNC服务器的虚拟机控制台,所述VNC服务器和所述虚拟机控制台构成XenServer主机、EsXi主机、或KVM主机。Preferably, the virtual machine control system further includes a virtual machine console coupled to the VNC server, the VNC server and the virtual machine console forming a XenServer host, an EsXi host, or a KVM host.
有利地,本发明实施例中的noVNC客户端可以部署于能与管理网络通信的任何位置,并且结合前端的负载均衡器连接,解决现有技术中导致的卡顿问题,防止单点故障。此外,根据本发明实施例的基于CloudStack的虚拟机控制*** 及其方法能够实现客户端-服务器代理(ACS)中兼容使用VNC服务器和noVNC客户端。Advantageously, the noVNC client in the embodiment of the present invention can be deployed at any location capable of communicating with the management network, and combined with the load balancer connection of the front end, solves the jamon problem caused in the prior art and prevents single point of failure. In addition, a CloudStack-based virtual machine control system according to an embodiment of the present invention And its method enables the compatibility of the VNC server and the noVNC client in the client-server proxy (ACS).
附图说明DRAWINGS
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the embodiments or the description of the prior art will be briefly described below. Obviously, the drawings in the following description are only It is a certain embodiment of the present invention, and other drawings can be obtained from those skilled in the art without any inventive labor.
图1所示为现有技术的基于CloudStack的虚拟机控制***的结构示意图。FIG. 1 is a schematic structural diagram of a prior art CloudStack-based virtual machine control system.
图2所示为根据本发明实施例的基于CloudStack的虚拟机控制***的结构示意图。FIG. 2 is a schematic structural diagram of a CloudStack-based virtual machine control system according to an embodiment of the present invention.
图3所示为根据本发明实施例的基于CloudStack的虚拟机控制方法的流程示意图。FIG. 3 is a schematic flowchart diagram of a CloudStack-based virtual machine control method according to an embodiment of the present invention.
具体实施方式Detailed ways
下面结合附图和具体实施方式对本发明的技术方案作进一步更详细的描述。显然,所描述的实施例仅仅是本发明的一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动的前提下所获得的所有其他实施例,都应属于本发明保护的范围。The technical solutions of the present invention are further described in detail below with reference to the accompanying drawings and specific embodiments. It is apparent that the described embodiments are only a part of the embodiments of the invention, and not all of them. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts shall fall within the scope of the present invention.
图2所示为根据本发明实施例的基于CloudStack的虚拟机控制***200的结构示意图。如图2所示,基于CloudStack的虚拟机控制***200包括浏览器210、一个或多个负载均衡器220、一个或多个noVNC客户端(例如,230_1至230_3)、一个或多个VNC服务器(例如,240_1至240_3)、以及一个或多个虚拟机控制台(例如,250_1至250_3)。对应的VNC服务器和虚拟机控制台可组成管理程序hypervisor。FIG. 2 is a schematic structural diagram of a CloudStack-based virtual machine control system 200 according to an embodiment of the present invention. As shown in FIG. 2, the CloudStack-based virtual machine control system 200 includes a browser 210, one or more load balancers 220, one or more noVNC clients (eg, 230_1 to 230_3), one or more VNC servers ( For example, 240_1 to 240_3), and one or more virtual machine consoles (eg, 250_1 to 250_3). The corresponding VNC server and virtual machine console can form a hypervisor.
浏览器210用于由客户向CloudStack管理服务器(例如,由VNC服务器和虚拟机控制台组成的管理程序hypervisor)发出查看控制台请求。The browser 210 is configured to issue a viewing console request by the client to a CloudStack management server (eg, a hypervisor composed of a VNC server and a virtual machine console).
一个或多个负载均衡器220耦合于浏览器210与一个或多个noVNC客户端(例如,230_1至230_3)之间,用于根据当前负载情况而选择一个或多个noVNC客户端(例如,230_1至230_3)中的其中一个工作。 One or more load balancers 220 are coupled between the browser 210 and one or more noVNC clients (eg, 230_1 through 230_3) for selecting one or more noVNC clients based on current load conditions (eg, 230_1) One of the work to 230_3).
一个或多个noVNC客户端230_1至230_3可采用HTML 5 WebSockets,Canvas和JavaScript来实现。noVNC普遍用于云计算、虚拟机控制面板。noVNC客户端可以分别部署于能与管理网络通信的任何位置,并且结合前端的负载均衡器连接,防止单点故障。One or more noVNC clients 230_1 through 230_3 can be implemented using HTML 5 WebSockets, Canvas and JavaScript. noVNC is commonly used in cloud computing and virtual machine control panels. The noVNC client can be deployed anywhere that can communicate with the management network and combined with the front-end load balancer to prevent single points of failure.
如图所示,VNC服务器240_1和虚拟机控制台250_1构成XenServer主机,与一个或多个noVNC客户端中的其中一个(例如,noVNC客户端230_1至230_3)采用HTTPS协议443端口进行数据通信。VNC服务器240_2和虚拟机控制台250_2构成EsXi主机,与一个或多个noVNC客户端中的其中一个(例如,noVNC客户端230_1至230_3)采用TCP协议5900+i端口进行数据通信。VNC服务器240_3和虚拟机控制台250_3构成KVM主机,与一个或多个noVNC客户端中的其中一个(例如,noVNC客户端230_1至230_3)采用TCP协议5900+i端口进行数据通信。As shown, the VNC server 240_1 and the virtual machine console 250_1 form a XenServer host, and one of the one or more noVNC clients (eg, noVNC clients 230_1 through 230_3) uses the HTTPS protocol 443 port for data communication. The VNC server 240_2 and the virtual machine console 250_2 constitute an EsXi host, and one of the one or more noVNC clients (for example, noVNC clients 230_1 to 230_3) uses the TCP protocol 5900+i port for data communication. The VNC server 240_3 and the virtual machine console 250_3 constitute a KVM host, and one of the one or more noVNC clients (for example, noVNC clients 230_1 to 230_3) uses the TCP protocol 5900+i port for data communication.
图3所示为根据本发明实施例的基于CloudStack的虚拟机控制方法300的流程示意图。结合图3来进一步理解图2的工作原理,基于CloudStack的虚拟机控制方法300包括以下步骤:FIG. 3 is a schematic flowchart diagram of a CloudStack-based virtual machine control method 300 according to an embodiment of the present invention. The working principle of FIG. 2 is further understood in conjunction with FIG. 3. The CloudStack-based virtual machine control method 300 includes the following steps:
步骤S302:用户登录浏览器,向CloudStack管理服务器(例如,CloudStack管理服务程序)发出查看控制台请求。例如,可由浏览器210经由一个或多个noVNC客户端中的其中一个(例如,noVNC客户端230_1至230_3)向CloudStack管理服务器发出查看虚拟机控制台的请求。noVNC客户端230_1至230_3中具体哪个的选择可由负载均衡器220作出。Step S302: The user logs in to the browser to issue a viewing console request to the CloudStack management server (for example, the CloudStack management service program). For example, a request to view a virtual machine console may be issued by the browser 210 to one of the one or more noVNC clients (eg, noVNC clients 230_1 through 230_3) to the CloudStack management server. The selection of which of the noVNC clients 230_1 to 230_3 can be made by the load balancer 220.
步骤S304:如果请求合法,相应获取包括虚拟机宿主机IP、端口、密码口令等的虚拟机信息。所述请求合法性的验证可以包含验证用户身份、会话是否到期、以及访问目标是否有权限。如果该请求合法,则CloudStack管理服务器根据所述请求中携带的虚拟机的通用唯一识别码(UUID),获取虚拟机宿主机IP、端口、密码口令等的虚拟机信息。Step S304: If the request is legal, the virtual machine information including the virtual machine host IP, port, password password, and the like is acquired accordingly. The verification of the validity of the request may include verifying the identity of the user, expiring the session, and whether the access target has rights. If the request is legal, the CloudStack management server acquires virtual machine information of the virtual machine host IP, port, password, and the like according to the universal unique identifier (UUID) of the virtual machine carried in the request.
步骤S306:将虚拟机信息加密成令牌,并将密码和令牌生成统一资源定位符(URL)返回给浏览器。例如,CloudStack管理服务器将虚拟机的UUID、宿主机IP、端口构造出一个令牌,加密后存储到数据库或文件***中。此外,CloudStack管理服务器将虚拟机的密码口令与该令牌生成URL返回给浏览器210。 Step S306: Encrypt the virtual machine information into a token, and return the password and the token generation uniform resource locator (URL) to the browser. For example, the CloudStack management server constructs a token for the UUID, host IP, and port of the virtual machine, and encrypts it and stores it in a database or file system. In addition, the CloudStack management server returns the password password of the virtual machine and the token generation URL to the browser 210.
步骤S308:根据返回的URL,noVNC客户端解析URL来定位资源。具体地,浏览器210根据返回的URL而请求noVNC客户端(例如,noVNC客户端230_2),noVNC客户端通过解析URL来定位资源位置。Step S308: According to the returned URL, the noVNC client parses the URL to locate the resource. Specifically, the browser 210 requests a noVNC client (eg, noVNC client 230_2) based on the returned URL, and the noVNC client locates the resource location by parsing the URL.
步骤S310:匹配定位资源是否存在,如果存在,则建立noVNC客户端与VNC服务器之间的远程连接。具体地,noVNC客户端230_2可在获取来自浏览器210的请求后检索本地文件是否存在与所请求的URL参数匹配的资源。如果匹配,则noVNC客户端230_2通过HTTPS/TCP协议建立与远程宿主机中运行的VNC服务器之间的远程连接。同时,通过用户在浏览器210的网页上输入的密码进行连接的验证通过。Step S310: Matching whether the positioning resource exists, and if so, establishing a remote connection between the noVNC client and the VNC server. Specifically, the noVNC client 230_2 may retrieve, after obtaining the request from the browser 210, whether the local file has a resource that matches the requested URL parameter. If there is a match, the noVNC client 230_2 establishes a remote connection with the VNC server running in the remote host via the HTTPS/TCP protocol. At the same time, the verification of the connection is made by the password entered by the user on the webpage of the browser 210.
步骤S312:noVNC客户端将来自远程宿主机中运行的VNC服务器的数据返回到浏览器。Step S312: The noVNC client returns data from the VNC server running in the remote host to the browser.
步骤S314:浏览器解析并显示返回的数据。Step S314: The browser parses and displays the returned data.
例如,在noVNC客户端230_2与VNC服务器240_2之间建立远程连接后,noVNC客户端230_2可将来自VNC服务器240_2的数据返回到浏览器210,并且浏览器210解析并向用户显示返回的数据。For example, after a remote connection is established between the noVNC client 230_2 and the VNC server 240_2, the noVNC client 230_2 can return data from the VNC server 240_2 to the browser 210, and the browser 210 parses and displays the returned data to the user.
有利地,本发明实施例中的noVNC客户端可以部署于能与管理网络通信的任何位置,并且结合前端的负载均衡器连接,解决现有技术中导致的卡顿问题,防止单点故障。此外,根据本发明实施例的基于CloudStack的虚拟机控制***及其方法能够实现客户端-服务器代理(ACS)中兼容使用VNC服务器和noVNC客户端。Advantageously, the noVNC client in the embodiment of the present invention can be deployed at any location capable of communicating with the management network, and combined with the load balancer connection of the front end, solves the jamon problem caused in the prior art and prevents single point of failure. In addition, the CloudStack-based virtual machine control system and method thereof according to an embodiment of the present invention can implement compatible use of a VNC server and a noVNC client in a client-server proxy (ACS).
需要说明的是,通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到本发明可借助软件加必需的硬件平台的方式来实现,当然也可以全部通过硬件来实施。基于这样的理解,本发明的技术方案对背景技术做出贡献的全部或者部分可以以软件产品的形式体现出来,该计算机软件产品可以存储在存储介质中,如ROM/RAM、磁碟、光盘等,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本发明各个实施例或者实施例的某些部分所述的方法。It should be noted that, through the description of the above embodiments, those skilled in the art can clearly understand that the present invention can be implemented by means of software plus a necessary hardware platform, and of course, all can be implemented by hardware. Based on such understanding, all or part of the technical solution of the present invention contributing to the background art may be embodied in the form of a software product, which may be stored in a storage medium such as a ROM/RAM, a magnetic disk, an optical disk, or the like. A number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform the methods described in various embodiments of the present invention or in some portions of the embodiments.
以上所揭露的仅为本发明实施例中的较佳实施例而已,当然不能以此来限定本发明之权利范围,因此依本发明权利要求所作的等同变化,仍属本发明所涵盖的范围。 The above are only the preferred embodiments of the present invention, and the scope of the present invention is not limited thereto, and the equivalent changes made by the claims of the present invention are still within the scope of the present invention.

Claims (10)

  1. 一种基于云计算的虚拟机控制***,包括浏览器、noVNC客户端、CloudStack管理服务器、以及VNC服务器,其特征在于:A cloud computing-based virtual machine control system includes a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein:
    所述浏览器用于经由所述noVNC客户端向所述CloudStack管理服务器发出查看控制台请求;The browser is configured to send a viewing console request to the CloudStack management server via the noVNC client;
    所述CloudStack管理服务器判断所述请求是否合法,如果合法则获取包括虚拟机宿主机IP、端口、密码口令的虚拟机信息,所述CloudStack管理服务器将所述虚拟机信息加密成令牌,并将所述密码口令和令牌生成统一资源定位符返回给所述浏览器;The CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, port, and password password, and the CloudStack management server encrypts the virtual machine information into a token, and The password password and the token generation uniform resource locator are returned to the browser;
    所述浏览器根据所述返回的统一资源定位符而请求所述noVNC客户端通过解析所述统一资源定位符来定位资源位置;Determining, by the browser, the noVNC client to locate a resource location by parsing the uniform resource locator according to the returned uniform resource locator;
    所述noVNC客户端匹配所述定位资源是否存在,如果存在,则建立所述noVNC客户端与所述VNC服务器之间的远程连接;The noVNC client matches whether the positioning resource exists, and if so, establishes a remote connection between the noVNC client and the VNC server;
    所述noVNC客户端将来自所述VNC服务器的数据返回到所述浏览器;以及Returning, by the noVNC client, data from the VNC server to the browser;
    所述浏览器解析并向用户显示返回的数据。The browser parses and displays the returned data to the user.
  2. 如权利要求1所述的虚拟机控制***,其特征在于,所述虚拟机控制***还包括一个或多个负载均衡器,耦合在所述浏览器与一个或多个所述noVNC客户端之间,用于根据当前负载情况而选择一个或多个所述noVNC客户端中的其中一个工作。The virtual machine control system of claim 1 wherein said virtual machine control system further comprises one or more load balancers coupled between said browser and one or more of said noVNC clients And for selecting one of the one or more of the noVNC clients to work according to the current load situation.
  3. 如权利要求1所述的虚拟机控制***,其特征在于,所述CloudStack管理服务器还配置为:通过验证用户身份、会话是否到期、以及访问目标是否有权限来而判断所述请求是否合法。The virtual machine control system according to claim 1, wherein the CloudStack management server is further configured to: determine whether the request is legal by verifying the identity of the user, whether the session is expired, and whether the access target has authority.
  4. 如权利要求1所述的虚拟机控制***,其特征在于,所述noVNC客户端配置为:通过检索本地文件是否存在与所述统一资源定位符匹配的资源来匹配所述定位资源是否存在。 The virtual machine control system according to claim 1, wherein the noVNC client is configured to match whether the positioning resource exists by retrieving whether a local file has a resource matching the uniform resource locator.
  5. 如权利要求1所述的虚拟机控制***,其特征在于,所述虚拟机控制***还包括耦合于所述VNC服务器的虚拟机控制台,所述VNC服务器和所述虚拟机控制台构成XenServer主机、EsXi主机、或KVM主机。The virtual machine control system of claim 1 wherein said virtual machine control system further comprises a virtual machine console coupled to said VNC server, said VNC server and said virtual machine console forming a XenServer host , EsXi host, or KVM host.
  6. 一种基于云计算的虚拟机控制方法,适用于包括浏览器、noVNC客户端、CloudStack管理服务器、以及VNC服务器的虚拟机控制***,其特征在于:A cloud computing-based virtual machine control method, applicable to a virtual machine control system including a browser, a noVNC client, a CloudStack management server, and a VNC server, wherein:
    所述浏览器经由所述noVNC客户端向所述CloudStack管理服务器发出查看控制台请求;The browser issues a viewing console request to the CloudStack management server via the noVNC client;
    所述CloudStack管理服务器判断所述请求是否合法,如果合法则获取包括虚拟机宿主机IP、端口、密码口令的虚拟机信息,所述CloudStack管理服务器将所述虚拟机信息加密成令牌,并将所述密码口令和令牌生成统一资源定位符返回给所述浏览器;The CloudStack management server determines whether the request is legal, and if so, obtains virtual machine information including a virtual machine host IP, port, and password password, and the CloudStack management server encrypts the virtual machine information into a token, and The password password and the token generation uniform resource locator are returned to the browser;
    所述浏览器根据所述返回的统一资源定位符而请求所述noVNC客户端通过解析所述统一资源定位符来定位资源位置;Determining, by the browser, the noVNC client to locate a resource location by parsing the uniform resource locator according to the returned uniform resource locator;
    所述noVNC客户端匹配所述定位资源是否存在,如果存在,则建立所述noVNC客户端与所述VNC服务器之间的远程连接;The noVNC client matches whether the positioning resource exists, and if so, establishes a remote connection between the noVNC client and the VNC server;
    所述noVNC客户端将来自所述VNC服务器的数据返回到所述浏览器;以及Returning, by the noVNC client, data from the VNC server to the browser;
    所述浏览器解析并向所述用户显示返回的数据。The browser parses and displays the returned data to the user.
  7. 如权利要求6所述的虚拟机控制方法,还包括:由耦合在所述浏览器与一个或多个所述noVNC客户端之间的一个或多个负载均衡器,根据当前负载情况而选择一个或多个所述noVNC客户端中的其中一个工作。The virtual machine control method of claim 6 further comprising: selecting one of the one or more load balancers coupled between said browser and one or more of said noVNC clients based on current load conditions Or one of the plurality of noVNC clients working.
  8. 如权利要求6所述的虚拟机控制方法,其特征在于,所述CloudStack管理服务器判断所述请求是否合法的步骤包括:通过验证用户身份、会话是否到期、以及访问目标是否有权限来而判断所述请求是否合法。The virtual machine control method according to claim 6, wherein the step of determining, by the CloudStack management server, whether the request is legal comprises: judging by verifying the identity of the user, whether the session is expired, and whether the access target has authority Whether the request is legal.
  9. 如权利要求6所述的虚拟机控制方法,其特征在于,所述noVNC客户端匹配所述定位资源是否存在的步骤包括:通过检索本地文件是否存在与所述 统一资源定位符匹配的资源来匹配所述定位资源是否存在。The virtual machine control method according to claim 6, wherein the step of matching the noVNC client to the presence of the positioning resource comprises: by searching whether a local file exists and The resource matched by the uniform resource locator matches whether the located resource exists.
  10. 如权利要求6所述的虚拟机控制方法,其特征在于,所述虚拟机控制***还包括耦合于所述VNC服务器的虚拟机控制台,所述VNC服务器和所述虚拟机控制台构成XenServer主机、EsXi主机、或KVM主机。 The virtual machine control method according to claim 6, wherein the virtual machine control system further comprises a virtual machine console coupled to the VNC server, the VNC server and the virtual machine console forming a XenServer host , EsXi host, or KVM host.
PCT/CN2017/107680 2017-10-25 2017-10-25 Cloud computing-based virtual machine control system and method therefor WO2019080010A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201780060469.6A CN109997345B (en) 2017-10-25 2017-10-25 Virtual machine control system and method based on cloud computing
PCT/CN2017/107680 WO2019080010A1 (en) 2017-10-25 2017-10-25 Cloud computing-based virtual machine control system and method therefor

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2017/107680 WO2019080010A1 (en) 2017-10-25 2017-10-25 Cloud computing-based virtual machine control system and method therefor

Publications (1)

Publication Number Publication Date
WO2019080010A1 true WO2019080010A1 (en) 2019-05-02

Family

ID=66247185

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/107680 WO2019080010A1 (en) 2017-10-25 2017-10-25 Cloud computing-based virtual machine control system and method therefor

Country Status (2)

Country Link
CN (1) CN109997345B (en)
WO (1) WO2019080010A1 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111371885A (en) * 2020-02-29 2020-07-03 苏州浪潮智能科技有限公司 Method, device, equipment and medium for transmitting file to VMWare virtual machine
CN111683091A (en) * 2020-06-08 2020-09-18 平安科技(深圳)有限公司 Method, device, equipment and storage medium for accessing cloud host console
CN115150382A (en) * 2022-07-25 2022-10-04 浪潮卓数大数据产业发展有限公司 VNC-based method, equipment and medium for server to remotely execute command
CN116594739A (en) * 2023-07-10 2023-08-15 武汉吧哒科技股份有限公司 Control method of virtual machine, computer equipment and storage medium

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111611075B (en) * 2020-05-19 2024-03-05 北京达佳互联信息技术有限公司 Virtual resource request processing method and device, electronic equipment and storage medium
CN111741091B (en) * 2020-06-11 2022-12-20 华云数据控股集团有限公司 Method and device for hiding IP and port number of NoVNC server and electronic equipment
CN112231109A (en) * 2020-11-20 2021-01-15 深圳前海微众银行股份有限公司 Buffer resource management system, method and device
CN114465995B (en) * 2022-01-25 2023-07-14 苏州浪潮智能科技有限公司 Cloud host console access method, device, equipment and medium
CN115134344B (en) * 2022-06-29 2024-06-14 郑州浪潮数据技术有限公司 Control method and component of virtual machine console

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110099374A1 (en) * 2009-10-27 2011-04-28 Red Hat, Inc. Authentication of a secure virtual network computing (vnc) connection
CN103200215A (en) * 2012-01-08 2013-07-10 佳都新太科技股份有限公司 Method achieving XenServer virtual machine remote control on https
CN103685536A (en) * 2013-12-20 2014-03-26 国云科技股份有限公司 Monopolized type virtual desktop management method
CN105376216A (en) * 2015-10-12 2016-03-02 华为技术有限公司 Remote access method, agent server and client end
CN106775950A (en) * 2016-12-29 2017-05-31 郑州云海信息技术有限公司 A kind of virtual machine remote access method and device

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9769085B2 (en) * 2012-05-04 2017-09-19 Citrix Systems, Inc. Systems and methods for adaptive application provisioning
CN102821091A (en) * 2012-06-28 2012-12-12 用友软件股份有限公司 Control device and control method of virtual machine
CN104317639B (en) * 2014-10-17 2017-08-22 中国电子科技集团公司第二十八研究所 The method of the existing virtual machines of computer cloud platform adapter vCenter
CN104702624A (en) * 2015-03-27 2015-06-10 深圳市研唐科技有限公司 Method and system for logging virtual machine based on Cloud Stack platform
CN105373417A (en) * 2015-11-04 2016-03-02 浪潮(北京)电子信息产业有限公司 Method and system for virtual machine management in cloud computing

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110099374A1 (en) * 2009-10-27 2011-04-28 Red Hat, Inc. Authentication of a secure virtual network computing (vnc) connection
CN103200215A (en) * 2012-01-08 2013-07-10 佳都新太科技股份有限公司 Method achieving XenServer virtual machine remote control on https
CN103685536A (en) * 2013-12-20 2014-03-26 国云科技股份有限公司 Monopolized type virtual desktop management method
CN105376216A (en) * 2015-10-12 2016-03-02 华为技术有限公司 Remote access method, agent server and client end
CN106775950A (en) * 2016-12-29 2017-05-31 郑州云海信息技术有限公司 A kind of virtual machine remote access method and device

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111371885A (en) * 2020-02-29 2020-07-03 苏州浪潮智能科技有限公司 Method, device, equipment and medium for transmitting file to VMWare virtual machine
CN111371885B (en) * 2020-02-29 2022-02-18 苏州浪潮智能科技有限公司 Method, device, equipment and medium for transmitting file to VMWare virtual machine
CN111683091A (en) * 2020-06-08 2020-09-18 平安科技(深圳)有限公司 Method, device, equipment and storage medium for accessing cloud host console
CN115150382A (en) * 2022-07-25 2022-10-04 浪潮卓数大数据产业发展有限公司 VNC-based method, equipment and medium for server to remotely execute command
CN115150382B (en) * 2022-07-25 2024-04-12 浪潮卓数大数据产业发展有限公司 Method, equipment and medium for remotely executing command by server based on VNC
CN116594739A (en) * 2023-07-10 2023-08-15 武汉吧哒科技股份有限公司 Control method of virtual machine, computer equipment and storage medium
CN116594739B (en) * 2023-07-10 2023-10-10 武汉吧哒科技股份有限公司 Control method of virtual machine, computer equipment and storage medium

Also Published As

Publication number Publication date
CN109997345A (en) 2019-07-09
CN109997345B (en) 2022-03-11

Similar Documents

Publication Publication Date Title
WO2019080010A1 (en) Cloud computing-based virtual machine control system and method therefor
US9411973B2 (en) Secure isolation of tenant resources in a multi-tenant storage system using a security gateway
CN102404314B (en) Remote resources single-point sign on
US8601265B2 (en) Method and system for improving storage security in a cloud computing environment
US9191384B2 (en) Maintaining privacy in a multi-tenant cloud service participating in a federated identity platform
US10176335B2 (en) Identity services for organizations transparently hosted in the cloud
US20140330936A1 (en) Secure isolation of tenant resources in a multi-tenant storage systemwith inter-server communication
US9444808B1 (en) System and method for providing multtenant access to shared resources
CA2905024A1 (en) Systems and methods for establishing cloud-based instances with independent permissions
US11645102B2 (en) Connection leasing system and related methods for use with legacy virtual delivery appliances
JP2016509725A (en) Secure interface for invoking privileged operations
WO2016082548A1 (en) User login method, device and system for windows desktop
US11838285B2 (en) Single sign-on from desktop to network
US9973488B1 (en) Authentication in a multi-tenant environment
JP2016036064A (en) Virtual communication system
US11062049B2 (en) Concealment of customer sensitive data in virtual computing arrangements
US20220021532A1 (en) Tracking Tainted Connection Agents
KR102149209B1 (en) Apparatus and method for providing virtual machines
Rathod et al. Secure live vm migration in cloud computing: A survey
WO2019080011A1 (en) Cloudstack cloud platform-based method for monitoring virtual machine

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17929903

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17929903

Country of ref document: EP

Kind code of ref document: A1