WO2020108438A1 - Système, procédé et dispositif d'accès - Google Patents

Système, procédé et dispositif d'accès Download PDF

Info

Publication number
WO2020108438A1
WO2020108438A1 PCT/CN2019/120649 CN2019120649W WO2020108438A1 WO 2020108438 A1 WO2020108438 A1 WO 2020108438A1 CN 2019120649 W CN2019120649 W CN 2019120649W WO 2020108438 A1 WO2020108438 A1 WO 2020108438A1
Authority
WO
WIPO (PCT)
Prior art keywords
service data
local area
area network
virtual local
network
Prior art date
Application number
PCT/CN2019/120649
Other languages
English (en)
Chinese (zh)
Inventor
张争宪
谢华国
赵海飞
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2020108438A1 publication Critical patent/WO2020108438A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks

Definitions

  • This application relates to the field of communication technology, and in particular, to an access system, method, and device.
  • cloud resources have been widely used.
  • different networks or hardware all require access to cloud resources.
  • bare metal servers bare metal servers, BMS
  • hosting area networks and new hardware (such as encryption machines) all require access to cloud resources.
  • new hardware such as encryption machines
  • FIG. 1a BMS accesses cloud resources through an open source virtual switch (openvswitch, OVS).
  • OVS open source virtual switch
  • FIG. 1b the hosted zone network accesses cloud resources through the next generation firewall (ngfw).
  • FIG. 1c new hardware accesses cloud resources through OVS. Because different networks or hardware have different ways of accessing cloud resources, the way of accessing cloud resources is more complicated.
  • Embodiments of the present application provide an access system, method, and device to simplify access to cloud resources.
  • an access system including at least one of a network or a hardware device, a virtual local area network gateway, and cloud resources;
  • the network or hardware device is used to send service data;
  • the virtual local area network gateway is used to receive service data sent by at least one of the network or hardware devices, and convert the service data into a unified protocol Business data, and sending the unified protocol business data to a cloud resource;
  • the cloud resource is used to receive the unified protocol business data sent by the virtual local area network gateway.
  • the network or hardware devices are connected to the cloud resources through the virtual local area network gateway, and the type of the network or hardware devices is not limited. That is, no matter what type of network or hardware device can access the cloud resources through the virtual LAN gateway.
  • different types of network or hardware devices can access cloud resources in different ways, which can simplify the access method of cloud resources.
  • the system further includes a switch; the switch is configured to receive service data sent by at least one of the network or hardware device, perform capacity expansion processing on the service data, and send the capacity expansion processing Service data to the virtual local area network gateway, the expansion process is used to increase the number of cloud resources accessible to the network or hardware devices; the virtual local area network gateway is used to receive the expanded service data sent by the switch, Converting the expanded business data into unified protocol business data, and sending the unified protocol business data to the cloud resource.
  • the number of networks and hardware devices that can access cloud resources can be expanded through switches, thereby solving the problem that cloud resources cannot be expanded on a large scale.
  • the service data sent by the network or hardware device includes a header part, and the header part includes at least a virtual local area network identification field, and the virtual local area network identification field includes a virtual local area network identification, the The virtual local area network identifier is the cloud resource allocated in advance to the network or hardware device;
  • the switch When the switch performs capacity expansion processing on the service data, it is specifically used for: the switch adds a virtual local area network identification field in the header portion of the service data; or, the switch adds a header in the service data In the virtual local area network identification field included in the section, the number of bits corresponding to the virtual local area network identification is increased.
  • the number of cloud resources that can be accessed to the network and hardware devices can be expanded.
  • the service data sent by the network or hardware device includes a source Internet protocol IP address field, and the source IP address field is allocated by the network or hardware device itself.
  • the solution of using the network or hardware device to assign the IP address as the source IP address compared with the solution of using cloud resources to assign the IP address of the network device or the hardware device as the source IP address, can solve the problem
  • the number of IP addresses is limited.
  • the virtual local area network gateway is further configured to: receive service data sent by the cloud resource, where the service data includes a destination IP address field, and the destination IP address field is the cloud resource Assigned to the network or hardware device; according to a pre-configured routing table, sending the service data to the corresponding network or hardware device, the routing table stores the IP address and cloud resources allocated by the network or hardware device itself is Correspondence between IP addresses assigned by the network or hardware.
  • an access method including: a virtual local area network gateway receiving service data sent by at least one of a network or a hardware device; the virtual local area network gateway converting the service data into unified protocol service data; The virtual local area network gateway sends the unified protocol service data to cloud resources.
  • the service data sent by at least one of the network or hardware device includes a source Internet protocol IP address field, and the source IP address field is allocated by the network or hardware device itself.
  • the method further includes: the virtual local area network gateway receives service data sent by the cloud resource, the service data includes a destination IP address field, and the destination IP address field is the cloud Resources are allocated by the network or hardware devices; the virtual LAN gateway sends the service data to the corresponding network or hardware device according to a pre-configured routing table, and the routing table stores the IP assigned by the network or hardware itself The correspondence between the address and the IP address assigned by the cloud resource to the network or hardware.
  • the virtual local area network gateway receiving service data sent by at least one of a network or a hardware device includes: the virtual local area network gateway receives service data after capacity expansion processing sent by a switch, and after the capacity expansion processing The business data is generated based on the business data sent by at least one of the network or the hardware device; the conversion of the business data into unified protocol business data by the virtual local area network gateway includes: The business data after the expansion processing is converted into unified protocol business data.
  • an access method which includes: a switch receiving service data sent by at least one of a network or a hardware device; the switch performing capacity expansion processing on the service data, and sending the service data after the capacity expansion processing to a virtual local area network Gateway, the expansion process is used to increase the number of cloud resources that can be accessed to the network or hardware devices.
  • the header portion of the service data includes at least a virtual local area network identification field, and the virtual local area network identification field includes a virtual local area network identification, and the virtual local area network identification is the cloud resource provided to the network or hardware in advance Equipment assigned;
  • the switch performs capacity expansion processing on the service data, including: the switch adds a virtual local area network identification field in the service data header; or, the switch includes the service data header In the field of virtual local area network identification, increase the number of bits corresponding to the virtual local area network identification.
  • the present application provides a communication device, which is suitable for a first computing node or a chip in a first computing node, and includes a unit or means for performing the steps of the above second aspect or third aspect.
  • the present application provides a communication device, which is suitable for a terminal device or a chip in a terminal device, and includes at least one processing element and at least one storage element, wherein the at least one storage element is used to store programs and data. At least one processing element is used to perform the method provided in the second or third aspect of the present application.
  • the present application provides a communication device including at least one processing element (or chip) for performing the method of the above second aspect or third aspect.
  • the present application provides a computer program product, the computer program product comprising computer instructions, which when executed by a computer, causes the computer to perform the method of any of the above aspects.
  • the present application provides a computer-readable storage medium that stores computer instructions, and when the computer instructions are executed by a computer, causes the computer to perform the method of any of the above aspects.
  • FIG. 1a to 1c are schematic diagrams of an access system provided by an embodiment of this application.
  • FIGS. 2a to 2c are schematic diagrams of an access system provided by an embodiment of this application.
  • 3a to 3c are schematic diagrams of an access system provided by an embodiment of this application.
  • FIG 7 and 8 are schematic structural diagrams of an access device provided by an embodiment of the present application.
  • FIG. 2a shows an access system 200a.
  • the access system 200a includes a network 201a, a virtual local area network gateway (virtual local area network gateway, VLAN GW) 202, and a cloud resource 203.
  • the first end of the virtual local area network gateway 202 is connected to the network 201a, and the second end is connected to the cloud resource 203.
  • the network 201a is used to send service data to the virtual LAN gateway 202.
  • the network 201a may include one network, or multiple networks, and the types of the multiple networks are the same or different.
  • the network 201a may be, but not limited to, a hosted area network.
  • the virtual local area network gateway 202 is used to convert the service data sent by the network 201a into a unified protocol service data, and send the unified protocol service data to the cloud resource 203, wherein the unified protocol is that the cloud resource 203 can be identified and decoded Agreement.
  • the cloud resource 203 is used to receive the unified protocol service number sent by the virtual local area network gateway 202.
  • the service data sent by the network 201a may include two parts, namely a header part and a data part.
  • the header part may include the source Internet protocol (IP) address and the destination IP address.
  • IP Internet protocol
  • the source IP address is the IP address of the network 201a
  • the destination IP address is the IP address of the cloud resource 203.
  • the source IP address is the IP address assigned by the network itself, or the source IP address is the IP address assigned by the cloud resource to the network. Because the IP addresses allocated by cloud resources are limited, the solution of using the network's own assigned IP address as the source IP address can be solved compared with the solution of using cloud resources to assign the IP address of the network device as the source IP address. Restrictions on the number of IP addresses.
  • the virtual LAN gateway 202 may perform the following operations: according to the IP address and cloud resources assigned by the network 201a itself 203 generates a routing table for the IP address assigned by the network 201a.
  • the IP address allocated by the network 201a itself may be referred to as the first IP address of the network 201a
  • the IP address allocated by the cloud resource 203 to the network 201a may be referred to as the second IP address of the network 201a.
  • the routing table may include a correspondence between the first IP address and the second IP address.
  • the words "first" and “second” are only used to distinguish the description, and cannot be understood as indicating or implying relative importance, nor as an indication. Or suggest the order.
  • the cloud resource 203 can send service data to the virtual local area network gateway 202.
  • the service data sent by the cloud resource 203 may include a header part and a data part, and the header part may include a source IP address and a destination IP address, where the source IP address is the IP address of the cloud resource 203, and the destination The IP address is the second IP address of the network 201a.
  • the virtual local area network gateway 202 may convert the second IP address in the service data to the first IP address according to the above routing table, and send the converted service data after the IP To the network 201a.
  • the access system 200a may further include a switch 204, which is used to expand the number of networks or hardware devices that the cloud resources can access.
  • the switch 204 may be a hardware switch or a software switch.
  • the switch may be an open source virtual switch (open vswitch, OVS) or a top-level (TOR) switch.
  • the first end of the switch 204 is connected to the network 201a, the second end of the switch 204 is connected to the first end of the virtual LAN gateway 202, and the second end of the virtual LAN gateway 202 is connected to the cloud resource 203.
  • the network 201a is used to send service data to the switch 204;
  • the switch 204 is used for performing capacity expansion processing on the service data sent by the network 201a, and sending the service data after the capacity expansion processing to the virtual local area network gateway 202.
  • the capacity expansion processing is used to increase the number of cloud resources 203 that can access the network or hardware devices.
  • the virtual local area network gateway 202 is used to receive the expanded service data sent by the switch 204, and convert the expanded service data to unified protocol service data.
  • the cloud resource 203 is used to receive unified protocol service data sent by the virtual local area network gateway 202.
  • the service data sent by the network 201a may include two parts, a header part and a data part, respectively.
  • the header portion may include a virtual local area network identification field, which is a cloud resource pre-allocated by the network device 201a, and the virtual local area network identification field is used to identify a network or hardware device that accesses the cloud resource.
  • the switch 204 may add a virtual local area network identification field to the header of the service data.
  • the header portion of the service data sent by the network device 201a includes a virtual local area network identification field, and the virtual local area network identification field includes 4 bit data.
  • the switch 204 may add a virtual local area network identification field to the header of the service data, and the newly added virtual local area network identification field may also include 4-bit data. Since the virtual local area network identifier is used to identify the network or hardware device that accesses the cloud resource 203, when the original service data includes a virtual local area network field, the entire cloud resource can access 24 (16) network or hardware devices. After the expansion of the switch, the entire cloud resource can access 28 (256) networks or hardware devices.
  • the switch 204 may increase the number of bits corresponding to the virtual local area network identifier in the virtual local area network identification field included in the header portion of the service data.
  • the header portion of the service data sent by the network 201a includes a virtual local area network identification field, and the virtual local area network identification field includes 4-bit data, and the 4-bit data is used to indicate the virtual local area network ID corresponding to the network 201a .
  • the switch 204 can increase the number of bits in the virtual local area network identification field.
  • the number of bits in the virtual local area field can be increased from 4 bits to 8 bits.
  • the maximum number of network and hardware devices that access cloud resources can be increased from 24 to 28.
  • the double-layer VLAN technology is adopted to solve the problem that cloud resources cannot be expanded on a large scale.
  • FIG. 2b shows an access system 200b.
  • the access system 200b includes a hardware device 201b, a virtual local area network gateway (virtual local area network gateway, VLAN GW) 202, and a cloud resource 203.
  • the first end of the virtual local area network gateway 202 is connected to the hardware device 201b, and the second end is connected to the cloud resource 203.
  • the hardware device 201b is used to send service data to the virtual LAN gateway 202.
  • the hardware device 201b may include one hardware device, or multiple hardware devices, and the types of the multiple hardware devices are the same or different.
  • the hardware device 201b may be a bare metal server (bare metal server, BMS) or an encryption machine.
  • the virtual local area network gateway 202 is used to convert the service data sent by the hardware device 201b into unified protocol service data, and send the unified protocol service data to the cloud resource 203.
  • the cloud resource 203 is used to receive unified protocol service data sent by the virtual local area network gateway 202.
  • Cloud resources can simplify the access method of cloud resources.
  • the service data sent by the hardware device 201b may also include two parts, namely a header part and a data part.
  • the header part may include a source IP address and a destination IP address.
  • the source IP address is the IP address of the hardware device
  • the destination IP address is the IP address of the cloud resource.
  • the source IP address is an IP address allocated by the hardware itself, or the source IP address is an IP address allocated by the cloud resource to the hardware device. Since the IP addresses allocated by cloud resources are limited, the solution of using the IP addresses allocated by the network as the source IP address can be solved compared with the solution of using the IP addresses allocated by the cloud resources for hardware devices as the source IP address. Restrictions on the number of IP addresses.
  • the virtual LAN gateway 202 may perform the following operations: According to the IP address assigned by the hardware device 201b itself and The cloud resource 203 generates a routing table for the IP address allocated by the hardware device 201b.
  • the routing table may include a correspondence between the first IP address and the second IP address.
  • the service data sent by the cloud resource 203 may also include a header part and a data part, and the header part may include a source IP address and a destination IP address.
  • the source IP address is the IP address of the cloud resource 203
  • the destination IP address is the second IP address of the hardware device 201b.
  • the virtual local area network gateway 202 may convert the second IP address in the service data to the first IP address according to the above routing table, and send the converted service data after the IP To hardware device 201b.
  • the access system 200b may further include a switch 204, which is used to expand the number of networks or hardware devices that the cloud resources can access.
  • the switch 204 may be a hardware switch or a software switch.
  • the first end of the switch 204 is connected to the hardware device 201b, the second end of the switch 204 is connected to the first end of the virtual LAN gateway 202, and the second end of the virtual LAN gateway 202 is connected to the cloud resource 203.
  • the hardware device 201b is used to send service data to the switch 204;
  • the switch 204 is used for performing expansion processing on the service data sent by the hardware device 201b, and sending the expanded expanded business data to the virtual LAN gateway 202.
  • the expansion processing is used to increase the number of cloud resources 203 that can access the network or hardware devices .
  • the virtual local area network gateway 202 is used to receive the expanded service data sent by the switch 204, and convert the expanded service data to unified protocol service data.
  • the cloud resource 203 is used to receive unified protocol service data sent by the virtual local area network gateway 202.
  • the hardware device is a BMS server
  • the switch is a TOR switch
  • the cloud resources include a dedicated gateway (GW), a virtual router (virtual, VR, Router), and a Linux virtual server (linux virtual server) , LVS), destination network address translation (destination network address translation, DNAT), soft network address translation (network address translation, NAT and next generation firewall (ngfw) as examples, detailing the process of this application:
  • the BMS server may include a virtual local area network (Virtual Local Area Network, VLAN) interface.
  • VLAN Virtual Local Area Network
  • the BMS server is connected to the first end of the TOR switch through the VLAN interface, and the second end of the TOR switch is connected to the first end of the virtual LAN gateway.
  • the second end of the virtual LAN gateway is connected to the first end of the dedicated line GW in the cloud resource, the second end of the dedicated line GW is connected to the first end of the VR, the second end of the VR is connected to the LVS, and the third end of the VR
  • the end is connected to the first end of DNAT, the second end of DNAT is connected to the first end of soft NAT, the second end of soft NAT is connected to the first end of ngfw, and the second end of ngfw is connected to the public network.
  • the console of the virtual local area network gateway provides an interface to support the creation of VLAN GW subnets, and this subnet can communicate with other subnets in the cloud resources by configuring dedicated lines.
  • the dedicated line GW is responsible for connecting the VLAN GW subnet with the customer's offline data center.
  • LVS is responsible for establishing a VLANX tunnel between VR and LVS, using the floating IP of VR as VTEP IP, the console transparently transmits the virtualization identification field to LVS, and LVS sends the virtualized traffic to VR.
  • DNAT is responsible for all ports mapping of EIP and VLAN GW subnet IP.
  • the BMS server may further include a virtual private cloud (virtual private cloud, VPC) interface.
  • VPC virtual private cloud
  • the BMS is connected to the TOR switch through the VPC interface, and the TOR switch is connected to the BMGW.
  • Cloud resources such as private clouds.
  • FIG. 2c shows an access system 200c.
  • the access system 200c includes a network 201a, a hardware device 201b, a virtual local area network gateway 202, and a cloud resource 203.
  • the first end of the virtual local area network gateway 202 is respectively connected to the network 201a and the hardware device 201b, and the second end is connected to the cloud resource 203.
  • the network 201a and the hardware device 201b are used to send service data to the virtual local area network gateway 202.
  • the network 201a may include one or more networks, and the types of the multiple networks may be the same or different, and the hardware device 201b may include one or more hardware devices, and the types of the multiple hardware devices may be different or different.
  • the virtual local area network gateway 202 is configured to receive service data sent by the network 201a and the hardware device 201b, convert the service data into unified protocol service data, and send the unified protocol service data to the cloud resource 203.
  • the virtual local area network gateway 202 can refer to the description in FIG. 2a or FIG. 2b respectively, and will not be described here.
  • the cloud resource 203 is used to receive unified protocol service data sent by the virtual local area network gateway 202.
  • the network or hardware devices are all connected to the cloud resources 203 through the virtual local area network gateway 202, and the network or hardware devices are not limited type. That is, no matter what type of network or hardware device can access the cloud resource 203 through the virtual local area network gateway 202.
  • different types of network or hardware devices can access the cloud resource 203 in different ways, which can simplify the access method of the cloud resource.
  • FIG. 3c shows an access system 300c.
  • the access system 300c includes a network device 301a, a hardware device 301b, a switch 204, a virtual local area network gateway 202, and a cloud resource 203.
  • the first end of the switch 204 is respectively connected to the network 201a and the hardware device 201b, the second end of the switch 204 is connected to the first end of the virtual LAN gateway 202, and the second end of the virtual LAN gateway 202 is connected to the cloud resource 203.
  • the network device 201a and the hardware device 201b are used to send service data to the switch 204.
  • the switch 204 is configured to receive the service data sent by the network device 201a and the hardware device 201b, and perform capacity expansion processing on the service data, and send the service data after the capacity expansion processing to the virtual local area network gateway 202.
  • capacity expansion processing please refer to the descriptions in FIG. 3a and FIG. 3b above, and no further description will be given here.
  • the virtual local area network gateway 202 is configured to receive the expanded service data sent by the switch 204, convert the expanded service data into unified protocol service data, and send the unified protocol service data to the cloud resource 203.
  • the cloud resource 203 is used to receive unified protocol service data sent by the virtual local area network gateway 202.
  • FIG. 5 a process of providing an access method is provided.
  • the virtual LAN gateway, network, hardware device, and cloud resources in the process may be the above-mentioned FIG. 2a, FIG. 2b, FIG. 2c, FIG. 3a, FIG. 3b or The virtual LAN gateway, network, hardware resources, and cloud resources in Figure 3c.
  • the process is:
  • At least one of the network or the hardware device sends service data to the virtual local area network gateway.
  • At least one of the network or the hardware device may include only the network, or only the hardware device, or include the network or the hardware device at the same time, the number of the network may be one or more, the types of multiple networks are the same or different, the number of the hardware device There may be one or more, and the types of multiple hardware devices are the same or different.
  • the virtual local area network gateway receives service data sent by at least one of a network or a hardware device, converts the service data into unified protocol business data, and sends the unified protocol business data to cloud resources.
  • service data sent by at least one of a network or a hardware device
  • converts the service data into unified protocol business data and sends the unified protocol business data to cloud resources.
  • processing process of the service data by the virtual local area network gateway please refer to the above records, which will not be described here.
  • the cloud resource receives business data of a unified protocol.
  • the virtual LAN gateway, switch, network, hardware equipment, and cloud resources in the flow may be the virtual LAN gateway in FIG. 3a, FIG. 3b, or FIG. 3c, respectively. Switches, networks, hardware resources, and cloud resources.
  • the process is:
  • At least one of the network or the hardware device sends service data to the switch.
  • the switch receives the service data sent by at least one of the network or the hardware device, performs capacity expansion processing on the service data, and sends the service data after the capacity expansion processing to the virtual local area network gateway.
  • the virtual local area network gateway receives the expanded business data, converts the expanded business data into unified protocol business data, and sends the unified protocol business data to cloud resources.
  • the cloud resource receives business data of a unified protocol.
  • the present application provides an apparatus 700, including a communication unit 701 and a processing unit 702.
  • the device 700 may be applied to a virtual local area network gateway, which is used to perform the steps shown in FIG. 5 with the virtual local area network gateway as the main body.
  • the communication unit 701 is configured to receive service data sent by at least one of a network or a hardware device.
  • the processing unit 702 is configured to convert the business data into unified protocol business data.
  • the communication unit 701 is also used to send the unified protocol service data to cloud resources.
  • the apparatus 700 may be applied to a switch, and is used to perform the steps shown in FIG. 6 with the switch as the main body.
  • the communication unit 701 is configured to receive service data sent by at least one of a network or a hardware device.
  • the processing unit 702 is configured to perform capacity expansion processing on the service data, and send the service data after the capacity expansion processing to the virtual local area network gateway.
  • the capacity expansion processing is used to increase the number of cloud resources that can be accessed to the network or hardware devices.
  • the present application provides an apparatus 800 that can be applied to the virtual LAN gateway or switch in the process shown in FIG. 5 or FIG. 6 above.
  • the communication device 800 may include a processor 801 and a memory 802. Further, the device may further include a communication interface 804, and the communication interface may be a transceiver. Further, the device may further include a bus system 803.
  • the processor 801, the memory 802 and the communication interface 804 can be connected through a bus system 803, the memory 802 can be used to store instructions, the processor 801 can be used to execute the instructions stored in the memory 802 to control the communication interface 804 to receive or send signals, Complete the steps in the method shown in FIG. 5 or FIG. 6 with the virtual LAN gateway or switch as the main body.
  • the memory 802 may be integrated in the processor 801, or may be a physical entity different from the processor 801.
  • the function of the communication interface 804 may be implemented through a transceiver circuit or a dedicated chip for transceiver.
  • the processor 801 may be realized by a dedicated processing chip, a processing circuit, a processor, or a general-purpose chip.
  • the general-purpose processor may implement the functions of the processor 801 and the communication interface 804 by executing the codes in the memory.
  • the communication device 800 may be used to execute the steps shown in FIG. 5 above, using a virtual local area network gateway as the main body.
  • the communication interface 804 can receive service data sent by at least one of a network or a hardware device; the processor 801 can convert the service data into unified protocol service data; the communication interface 804 can send the unified protocol service data To cloud resources.
  • the communication device 800 may be used to execute the steps shown in FIG. 6 above, with the switch as the main body.
  • the communication interface 804 may receive service data sent by at least one of a network or a hardware device; the processor 801 may perform capacity expansion processing on the service data, and send the service data after capacity expansion processing to the virtual LAN gateway, and the capacity expansion processing Used to increase the number of cloud resources that can be connected to the network or hardware devices.
  • the embodiments of the present application further provide a computer storage medium in which a software program is stored, which can realize any one or more of the above when read and executed by one or more processors The method provided by the embodiment.
  • the computer storage medium may include various media that can store program codes, such as a U disk, a mobile hard disk, a read-only memory, a random access memory, a magnetic disk, or an optical disk.
  • embodiments of the present application also provide a computer program product, the computer program product includes computer instructions, and when the computer instructions are executed by a computer, the computer is caused to perform any one or more of the above implementations Examples provided.
  • an embodiment of the present application further provides a chip including a processor for implementing the functions involved in any one or more of the above embodiments, such as acquiring or processing information involved in the above method or News.
  • the chip further includes a memory, which is used to store program instructions and data executed by the processor.
  • the chip may also contain chips and other discrete devices.
  • the processor may be a central processing unit (CPU), and the processor may also be other general-purpose processors, digital signal processors (DSPs), and dedicated integration Circuit (application-specific integrated circuit, ASIC), field programmable gate array (FPGA) or other programmable logic devices, transistor logic devices, discrete hardware components, etc.
  • the general-purpose processor may be a microprocessor or any conventional processor.
  • the memory may include read-only memory and random access memory, and provide instructions and data to the processor.
  • a portion of the memory may also include non-volatile random access memory.
  • the bus system may also include a power bus, a control bus, and a status signal bus.
  • various buses are marked as bus systems in the figure.
  • each step of the above method may be completed by an integrated logic circuit of hardware in the processor or instructions in the form of software.
  • the steps of the method disclosed in conjunction with the embodiments of the present application may be directly embodied and executed by a hardware processor, or may be executed and completed by a combination of hardware and software modules in the processor.
  • the software module may be located in a mature storage medium in the art, such as random access memory, flash memory, read-only memory, programmable read-only memory, or electrically erasable programmable memory, and registers.
  • the storage medium is located in the memory, and the processor reads the information in the memory and completes the steps of the above method in combination with its hardware. In order to avoid repetition, they will not be described in detail here.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

L'invention concerne un système, un procédé et un dispositif d'accès. Le système d'accès comprend au moins un élément parmi un réseau ou un dispositif matériel, une passerelle de réseau local virtuel et une ressource en nuage. Le réseau ou le dispositif matériel est utilisé pour transmettre des données de service. La passerelle de réseau local virtuel est utilisée pour recevoir les données de service transmises par le réseau et/ou le dispositif matériel, convertir les données de service en données de service d'un protocole unifié, et transmettre les données de service du protocole unifié à la ressource en nuage. La ressource en nuage est utilisée pour recevoir les données de service du protocole unifié, transmis par la passerelle de réseau local virtuel. L'utilisation du système, du procédé ou du dispositif de la présente invention simplifie l'accès à la ressource en nuage.
PCT/CN2019/120649 2018-11-26 2019-11-25 Système, procédé et dispositif d'accès WO2020108438A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201811417167.2 2018-11-26
CN201811417167.2A CN109728984B (zh) 2018-11-26 2018-11-26 一种接入***、方法及装置

Publications (1)

Publication Number Publication Date
WO2020108438A1 true WO2020108438A1 (fr) 2020-06-04

Family

ID=66294685

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/120649 WO2020108438A1 (fr) 2018-11-26 2019-11-25 Système, procédé et dispositif d'accès

Country Status (2)

Country Link
CN (1) CN109728984B (fr)
WO (1) WO2020108438A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124678A (zh) * 2021-11-30 2022-03-01 中国工商银行股份有限公司 知识图谱展示方法及装置

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109728984B (zh) * 2018-11-26 2021-01-29 华为技术有限公司 一种接入***、方法及装置
US10965592B2 (en) * 2019-05-31 2021-03-30 Juniper Networks, Inc. Inter-network service chaining
CN110764987A (zh) * 2019-10-21 2020-02-07 西安电子科技大学 基于虚拟化技术的网络仿真测试***中硬件设备接入方法
CN111314461B (zh) * 2020-02-14 2022-05-17 北京百度网讯科技有限公司 Ip挂载、数据处理方法和装置
CN114827079B (zh) * 2022-03-25 2024-04-30 阿里云计算有限公司 网络地址转换网关的扩容方法、设备及存储介质

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101437002A (zh) * 2007-11-16 2009-05-20 ***通信集团公司 移动代理服务器***
US20100306396A1 (en) * 2007-10-24 2010-12-02 Zte Corporation Uniform Service Access System And Access Method
CN104639515A (zh) * 2013-11-15 2015-05-20 上海信游网络科技有限公司 基于银行核心业务的第三方通讯转换平台
CN104917758A (zh) * 2015-05-21 2015-09-16 浪潮集团有限公司 一种socket协议连接转换为其它协议连接的实现方法
CN106936857A (zh) * 2015-12-29 2017-07-07 中国电信股份有限公司 一种混合云的连接管理方法、sdn控制器及混合云***
CN109728984A (zh) * 2018-11-26 2019-05-07 华为技术有限公司 一种接入***、方法及装置

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101064720A (zh) * 2006-04-28 2007-10-31 华为技术有限公司 提高基站接入业务流的方法
US8233486B2 (en) * 2006-12-11 2012-07-31 Verizon Patent And Licensing Inc. Remote management of network devices
CN102045896A (zh) * 2010-11-22 2011-05-04 中山爱科数字科技有限公司 实现多协议及网络自适应的虚拟物联网网关***
CN103067397B (zh) * 2012-12-31 2017-06-13 华为技术有限公司 一种桌面云***的安全认证方法、接入网关及认证服务器
CN103812930B (zh) * 2014-01-16 2017-10-17 华为技术有限公司 一种资源调度的方法及装置
CN104734926B (zh) * 2015-03-20 2018-07-06 武汉兴火源科技有限责任公司 一纤通式家庭网关的数据传输方法
US10367655B2 (en) * 2016-01-25 2019-07-30 Alibaba Group Holding Limited Network system and method for connecting a private network with a virtual private network
CN108683659A (zh) * 2018-05-11 2018-10-19 新华三技术有限公司成都分公司 多协议数据通信方法及装置
CN108768817B (zh) * 2018-05-22 2020-07-28 腾讯科技(深圳)有限公司 一种虚拟化网络组网***、数据包发送方法

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100306396A1 (en) * 2007-10-24 2010-12-02 Zte Corporation Uniform Service Access System And Access Method
CN101437002A (zh) * 2007-11-16 2009-05-20 ***通信集团公司 移动代理服务器***
CN104639515A (zh) * 2013-11-15 2015-05-20 上海信游网络科技有限公司 基于银行核心业务的第三方通讯转换平台
CN104917758A (zh) * 2015-05-21 2015-09-16 浪潮集团有限公司 一种socket协议连接转换为其它协议连接的实现方法
CN106936857A (zh) * 2015-12-29 2017-07-07 中国电信股份有限公司 一种混合云的连接管理方法、sdn控制器及混合云***
CN109728984A (zh) * 2018-11-26 2019-05-07 华为技术有限公司 一种接入***、方法及装置

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124678A (zh) * 2021-11-30 2022-03-01 中国工商银行股份有限公司 知识图谱展示方法及装置

Also Published As

Publication number Publication date
CN109728984B (zh) 2021-01-29
CN109728984A (zh) 2019-05-07

Similar Documents

Publication Publication Date Title
WO2020108438A1 (fr) Système, procédé et dispositif d'accès
WO2021136311A1 (fr) Procédé et dispositif de communication entre vpc
CN108449282B (zh) 一种负载均衡方法及其装置
US10541836B2 (en) Virtual gateways and implicit routing in distributed overlay virtual environments
CN116057910B (zh) 虚拟私有云通信及配置方法以及相关装置
CN107872542B (zh) 一种数据传输的方法及网络设备
CN108347493B (zh) 混合云管理方法、装置和计算设备
US10320738B2 (en) Address allocation method, CGN device, and CGN dual-active system
US8650326B2 (en) Smart client routing
CN108566445B (zh) 一种报文传输方法及装置
US11153262B1 (en) System and method for enabling communication between networks with overlapping IP address ranges
WO2020253631A1 (fr) Procédé, dispositif et système de configuration d'adresse ip
US11444808B1 (en) Scaling network address translation (NAT) and firewall functionality to support public cloud networks
WO2017113300A1 (fr) Procédé de détermination de route, procédé de configuration de réseau et dispositif associé
JP2022541381A (ja) ハイブリッドクラウド環境における通信方法、ゲートウェイ、並びに管理方法及び装置
CN112671938B (zh) 业务服务提供方法及***、远端加速网关
US11121969B2 (en) Routing between software defined networks and physical networks
CN110691150A (zh) 一种基于SDN的IPv4与IPv6互联方法及***
US20230370375A1 (en) Data processing method and system, encapsulation node, and de-encapsulation node
CN114679370B (zh) 一种服务器托管方法、装置、***及存储介质
CN106656718B (zh) VxLAN网关以及基于VxLAN网关实现的主机接入互联网的方法
WO2024001549A1 (fr) Procédé de configuration d'adresse et dispositif électronique
CN116582516B (zh) 数据传输方法、设备、***、介质及程序产品
US11909624B2 (en) Communication method, apparatus, device, system, and computer-readable storage medium
US20240250849A1 (en) System for scaling network address translation (nat) and firewall functions

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19891386

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19891386

Country of ref document: EP

Kind code of ref document: A1