[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN113206776A - Hybrid cloud network connection method, system and controller - Google Patents

Hybrid cloud network connection method, system and controller Download PDF

Info

Publication number
CN113206776A
CN113206776A CN202110455703.3A CN202110455703A CN113206776A CN 113206776 A CN113206776 A CN 113206776A CN 202110455703 A CN202110455703 A CN 202110455703A CN 113206776 A CN113206776 A CN 113206776A
Authority
CN
China
Prior art keywords
network
target
cloud service
service provider
controller
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110455703.3A
Other languages
Chinese (zh)
Inventor
张桂玉
马季春
李彤
高星
易昕昕
宋骏
周旭晖
安皓波
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
China Information Technology Designing and Consulting Institute Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
China Information Technology Designing and Consulting Institute Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd, China Information Technology Designing and Consulting Institute Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN202110455703.3A priority Critical patent/CN113206776A/en
Publication of CN113206776A publication Critical patent/CN113206776A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/141Setup of application sessions

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application provides a hybrid cloud network connection method, a system and a controller, relates to the technical field of cloud computing, and can realize automatic connection of hybrid cloud networks and safe mutual access among private networks of different cloud service providers. The method comprises the following steps: the method comprises the steps that a global controller receives a hybrid cloud network connection request sent by a hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network; the global controller sends a first message to a first controller; the first message comprises information of the target private network; the global controller sends a second message to a second controller; the second message includes information of the target cloud service provider network.

Description

Hybrid cloud network connection method, system and controller
Technical Field
The present application relates to the field of cloud computing technologies, and in particular, to a method, a system, and a controller for connecting a hybrid cloud network.
Background
With the rapid development of the internet, enterprises deploy infrastructure, management and services to the cloud through the network, and the purposes of reducing information cost and sharing economic development are achieved by utilizing the convenience and high efficiency of the network. While the global cloud computing market has steadily grown in size, hybrid clouds have become the dominant model and development direction of cloud computing in recent years. As the name implies, a hybrid cloud is a combination of a public cloud and a private cloud in a target architecture. For an enterprise, the private cloud and the public cloud are not two independent individuals, and more often need to be coordinated to work together. For example, core and key services are operated in the private cloud, medium-high-end storage, a database and high-quality resource services of the private cloud are fully utilized, and in a demand peak period and a demand burst period, a public cloud is fully utilized to meet the requirement of mass data processing under the condition that extra hardware is not required to be purchased.
The key point of using the hybrid cloud by enterprises is to create a Virtual Private Cloud (VPC) network, the VPC service is a basic service provided by mainstream cloud service providers at present, and a user can isolate a private network (VPC network is also called private network) on a public cloud by using the VPC service, and then realize interconnection between the VPC and an own data center on the cloud through a physical private line or a Virtual Private Network (VPN) gateway, so as to construct a hybrid cloud system. However, a user creates a VPC in a public cloud provided by a plurality of cloud service providers, and if the VPC networks of different cloud service providers need to be intercommunicated, complicated manual configuration is required, and the process is complicated, so that automatic interconnection between the VPCs on the cloud service provider side cannot be realized. Moreover, the existing network architecture for hybrid cloud provisioning generally realizes network intercommunication among cloud service providers based on an internet network, and the method cannot completely guarantee the security, so that the hybrid cloud environment is very vulnerable to vulnerability attacks.
Disclosure of Invention
The application provides a hybrid cloud network connection method, a system and a controller, which can realize automatic connection of hybrid cloud networks and realize safe mutual access among private networks of different cloud service providers.
In order to achieve the purpose, the technical scheme is as follows:
in a first aspect, the present application provides a hybrid cloud network connection method, which may include: the method comprises the steps that a global controller receives a hybrid cloud network connection request sent by a hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network; the global controller sends a first message to a first controller; the first message comprises information of the target private network; the first message is used for indicating the first controller to complete the configuration of the required network equipment in the target private network according to the information of the target private network; the global controller sends a second message to a second controller; the second message comprises information of the target cloud service provider network, the second controller is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the second message is used for indicating the second controller to call the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network, so that a private line channel between the target cloud service provider network and the target private network is created.
In a second aspect, the present application provides a hybrid cloud network connection method, which may include: the second controller receives a second message sent by the global controller; the second message comprises information of a target cloud service provider network, the second controller integrates private access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the private access capabilities are used for the target cloud service provider network to access the target private network; the hybrid cloud service is borne through the target private network and the target cloud service provider network; the second controller calls the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network, and instructs the target cloud service provider network equipment to create a private line channel with the target private network equipment; the target cloud service provider network device is a network device which is located in the target cloud service provider network and is adjacent to the target private network, and the target private network device is a network device which is located in the target private network and is used for establishing connection with the target cloud service provider network.
In a third aspect, the present application provides a controller, as a global controller, comprising: the receiving module is used for receiving a hybrid cloud network connection request sent by the hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network; the sending module is used for sending a first message to the first controller; the first message comprises information of the target private network; the first message is used for indicating the first controller to complete the configuration of the required network equipment in the target private network according to the information of the target private network; the sending module is further configured to send a second message to a second controller; the second message comprises information of the target cloud service provider network, the second controller is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the second message is used for indicating the second controller to call the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network, so that a private line channel between the target cloud service provider network and the target private network is created.
In a fourth aspect, the present application provides a controller, where the controller is used as a second controller and integrated with private access capabilities of multiple cloud service providers corresponding to the hybrid cloud service, where the private access capabilities are used for accessing the target private network by using the target cloud service provider network, and the second controller includes: the receiving module is used for receiving a second message sent by the global controller; wherein the second message comprises information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network; the processing module is used for calling the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network and indicating the target cloud service provider network equipment to create a private line channel with the target private network equipment; the target cloud service provider network device is a network device which is located in the target cloud service provider network and is adjacent to the target private network, and the target private network device is a network device which is located in the target private network and is used for establishing connection with the target cloud service provider network.
In a fifth aspect, the present application provides a controller, as a global controller, comprising: a processor, a communication interface, and a memory. Wherein the memory is used to store one or more programs. The one or more programs include computer executable instructions that, when executed by the global controller, the processor executes the computer executable instructions stored by the memory to cause the global controller to perform the hybrid cloud network connection method of the first aspect and any of its various alternative implementations.
In a sixth aspect, the present application provides a controller comprising as a second controller: a processor, a communication interface, and a memory. Wherein the memory is used to store one or more programs. The one or more programs include computer executable instructions that, when executed by the second controller, cause the second controller to perform the hybrid cloud network connection method of the second aspect and any of its various alternative implementations.
In a seventh aspect, the present application provides a computer-readable storage medium, where instructions are stored in the computer-readable storage medium, and when the instructions are executed by a computer, the computer executes the hybrid cloud network connection method described in any one of the first aspect and various optional implementation manners thereof or any one of the second aspect and various optional implementation manners thereof.
In an eighth aspect, the present application provides a computer program product containing instructions, which when run on a computer, causes the computer to execute the hybrid cloud network connection method of any one of the first aspect and its various alternative implementations or any one of the second aspect and its various alternative implementations.
In a ninth aspect, the present application provides a hybrid cloud network connection system, which includes a hybrid cloud management platform, the global controller and the first controller described in any one of the fifth aspect and various optional implementations thereof, and the second controller described in any one of the sixth aspect and various optional implementations thereof.
According to the hybrid cloud network connection method and system, the global controller and the second controller, the global controller receives a hybrid cloud network connection request sent by a hybrid cloud management platform, wherein the hybrid cloud network connection request comprises network information required by a hybrid cloud service, the global controller sends information of a target private network to the first controller, instructs the first controller to complete configuration of network equipment required in the target private network according to the information of the target private network, sends information of the target cloud service provider network to the second controller, instructs the second controller to call a private line access capability of a corresponding cloud service provider according to the information of the target cloud service provider network, and creates a private line channel between the target cloud service provider network and the target private network, so that automatic connection of the hybrid cloud network is achieved. Compared with the prior art, private networks of different cloud service providers are manually configured, and mutual access of the private networks is realized through the Internet. According to the hybrid cloud network connection method, automatic connection of the hybrid cloud network can be achieved, labor cost and the probability of failure of manual configuration are reduced, and the safety of a hybrid cloud network architecture is guaranteed by means of the high reliability and controllability of a private network.
Drawings
Fig. 1 is a schematic structural diagram of a hybrid cloud network architecture provided in an embodiment of the present application;
fig. 2 is a schematic structural diagram of a hybrid cloud network connection system provided in an embodiment of the present application;
fig. 3 is a first flowchart illustrating a hybrid cloud network connection method according to an embodiment of the present application;
fig. 4 is a second flowchart illustrating a hybrid cloud network connection method according to an embodiment of the present application;
fig. 5 is a first schematic structural diagram of a global controller according to an embodiment of the present application;
fig. 6 is a first schematic structural diagram of a second controller according to an embodiment of the present disclosure;
fig. 7 is a schematic structural diagram of a global controller according to an embodiment of the present application;
fig. 8 is a schematic structural diagram of a second controller according to an embodiment of the present application.
Detailed Description
The hybrid cloud network connection method and system, the global controller, and the second controller provided in the embodiments of the present application are described in detail below with reference to the accompanying drawings.
The term "and/or" herein is merely an association describing an associated object, meaning that three relationships may exist, e.g., a and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone.
The terms "first" and "second" and the like in the description and drawings of the present application are used for distinguishing different objects or for distinguishing different processes for the same object, and are not used for describing a specific order of the objects.
Furthermore, the terms "including" and "having," and any variations thereof, as referred to in the description of the present application, are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those steps or elements but may alternatively include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
It should be noted that in the embodiments of the present application, words such as "exemplary" or "for example" are used to indicate examples, illustrations or explanations. Any embodiment or design described herein as "exemplary" or "e.g.," is not necessarily to be construed as preferred or advantageous over other embodiments or designs. Rather, use of the word "exemplary" or "such as" is intended to present concepts related in a concrete fashion.
In the description of the present application, the meaning of "a plurality" means two or more unless otherwise specified.
The hybrid cloud network connection method provided by the embodiment of the application is used for constructing a hybrid cloud network architecture. By way of example, fig. 1 provides a schematic structural diagram of a hybrid cloud network architecture.
As shown in fig. 1, the network architecture includes: a plurality of cloud service provider networks and an operator network connected to the plurality of cloud service provider networks. Firstly, a cloud virtual network meeting the requirements of multi-tenant service needs to be established at a cloud end, and the safe access of an enterprise network and the cloud virtual network is established; secondly, flexible interconnection of cloud virtual networks is required to be established, and even interconnection among virtual networks in various cloud service providers is included.
Running a modern business is complex, often meaning that multiple cloud service providers are required to deploy multiple clouds in different geographic locations in order to support all the functionality required in the business process. Therefore, the plurality of cloud service provider networks may include virtual networks of users among a plurality of cloud service providers, for example, the cloud service provider network a belongs to the ari cloud, the cloud service provider network B belongs to the hua cheng cloud, and the cloud service provider network C belongs to the Tencent cloud. The plurality of cloud service provider networks may be located in different countries/regions, for example, the cloud service provider network a belongs to south china, and the cloud service provider network B and the cloud service provider network C belong to north china. The operator mainly provides network service for the user, helps the user to complete access with the cloud service provider network, and completes interconnection and intercommunication among the cloud service provider networks.
At present, the operator network is generally an internet network, and the security of the operator network cannot be guaranteed. Moreover, when the cloud service provider network is a private network created by a user in different cloud service providers, if the cloud service provider networks are to be intercommunicated, complicated manual configuration is required, and the process is complicated, so that automatic interconnection between the private networks on the cloud service provider side cannot be realized.
Therefore, in order to implement automatic interconnection and secure mutual access between private networks of different cloud service providers, embodiments of the present application provide a hybrid cloud network connection method, which can be implemented by a hybrid cloud network connection system as shown in fig. 2. As shown in fig. 2, the system may include: hybrid cloud management platform 201, global controller 202, first controller 203, second controller 204. The hybrid cloud network architecture built by the system includes a private network 205 and a cloud service provider network 206. The hybrid cloud management platform 201 is configured to receive service requirement information input by a user, manage and allocate relevant network resources, and send a hybrid cloud service request to the global controller 202. The global controller 202 is a Software Defined Network (SDN) controller, and the global controller 202 is communicatively connected to the hybrid cloud management platform 201 through a northbound interface and is communicatively connected to the first controller 203 and the second controller 204 through a southbound interface, respectively. The first controller 203 is in communication connection with the private network 205 through a southbound interface, and is used for controlling and managing private network resources. The second controller 204 is in communication connection with the cloud service provider network 206 through a southbound interface, and the second controller 204 integrates the private access capabilities of a plurality of cloud service providers, so as to realize control and management of the cloud service provider network resources.
The private network 205, which is a private communication network provided by an operator for enterprise users, covers a specific area, serves a specific object, and has high reliability and controllability. Cloud service provider network 206 includes a cloud service provider network 206A that the user creates within cloud service provider a, and a cloud service provider network 206B that the user creates within cloud service provider B.
It should be noted that fig. 2 is only an exemplary architecture diagram, and the network architecture may include other functional units besides the functional units shown in fig. 2, which is not limited in this embodiment of the present application.
The embodiment of the application provides a hybrid cloud network connection method, which is applied to a hybrid cloud network connection system shown in fig. 2. For example, fig. 3 provides a flow chart of a hybrid cloud network connection method. As shown in fig. 3, the method may include S301-S305:
s301, the global controller receives a hybrid cloud network connection request sent by the hybrid cloud management platform.
The hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; and the hybrid cloud service is carried through the target private network and the target cloud service provider network.
To construct a hybrid cloud network, a cloud virtual network meeting business requirements needs to be created, secure access between an enterprise network and the cloud virtual network is established, and interconnection between the cloud virtual networks is established. The business requirement of the user is to construct a hybrid cloud network, so the target also has a meaning corresponding to the business requirement. The hybrid cloud service is borne by a target private network and a target cloud service provider network, and comprises the steps of establishing a cloud virtual network meeting service requirements in the target cloud service provider network, realizing the safe access of the private network and the cloud service provider network through a private line channel, and further realizing the interconnection between the target cloud service provider networks through cross-domain connection in the target private network. The private network is a private communication network provided by an operator for enterprise users, covers a specific area, serves specific objects, and has high reliability and controllability.
The global controller is provided with a plurality of northbound interfaces which are communicated with the hybrid cloud management platform, and the global controller receives various service requests sent by the hybrid cloud management platform through the northbound interfaces. The hybrid cloud management platform encapsulates the hybrid cloud network connection request into a representational layer state transfer (RESTFUL) message, and sends the message to the global controller.
The hybrid cloud network connection request includes network information required for constructing the hybrid cloud network, that is, information of network devices included in the hybrid cloud network and corresponding device configuration information, and can be divided into information of a target private network or information of a target cloud service provider network according to a network side. Optionally, the information of the target private network includes: a location of each first network device of the one or more first network devices, an identification of each first network device, and one or more ports of each first network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each first network device, VLAN-I D for each port, bandwidth for each port, routing protocol for each port, network address for each port; wherein the first network device comprises a device in the target private network. The information of the target cloud service provider network comprises: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
After receiving the hybrid cloud network connection request, the global controller analyzes the type of the network information in the hybrid cloud network connection request, namely the information belonging to the target private network or the information of the target cloud service provider network, and sends communication messages to the first controller or the second controller according to the type of the network information, so that the target private network and the target cloud service provider network are deployed respectively.
S302, the global controller sends a first message to the first controller.
The first message comprises information of a target private network and is used for indicating the first controller to complete configuration of required network equipment in the target private network according to the information of the target private network.
Illustratively, the information of the target private network included in the first message can instruct the first controller to send corresponding configuration information to each first network device, so as to complete the configuration of the required network device in the target private network. On one hand, the first message instructs the first controller to determine a target private network device in the first network device, that is, a network device in the target private network for establishing a connection with a target cloud service provider network, complete configuration of the target private network device, and instruct the target private network device to create a private line channel with the cloud service provider network. On the other hand, the target private network device is located in a service area of the target cloud service provider network, and the first message is also used for indicating the first controller to complete configuration of other first network devices because the target private network is located in different countries/regions, so that cross-domain connection in the target private network is realized.
Accordingly, the first controller performs the following step S303 after receiving the first message.
S303, the first controller completes configuration of the first network equipment according to the information of the target private network and indicates the target private network equipment to establish a private line channel with the target cloud service provider network equipment.
Optionally, the first controller receives the first message, stores the first message in the database, cyclically reads the information of the first network device and the configuration message thereof included in the first message, converts the configuration message of the first network device into configuration protocol messages, and sends the configuration protocol messages to the corresponding first network devices respectively, thereby completing configuration of the first network device and connecting cross-domain connection in the target private network. For a target private network device in the first network device, the first controller further needs to configure a route between the target private network device and a target cloud service provider network device, and instruct the target private network device to establish a private line channel with the target cloud service provider network device.
The sequence numbers of step S302 and step S304 do not mean the execution sequence, and for the global controller, S302 and S304 belong to a parallel relationship.
And S304, the global controller sends a second message to the second controller.
The second message comprises information of a target cloud service provider network and is used for indicating the second controller to call the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network and create a private line channel between the target cloud service provider network and the target private network. In other words, the information of the target cloud service provider network included in the second message is used to instruct the second controller to create cloud resources required for the hybrid cloud service in the target cloud service provider network and instruct the target cloud service provider network to create a private channel with the target private network.
Accordingly, the second controller performs the following step S305 after receiving the second message.
S305, the second controller calls the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network, and instructs the target cloud service provider network equipment to create a private line channel with the target private network equipment.
The second controller integrates the private access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the private access capabilities are used for the target cloud service provider network to access the target private network; the target cloud service provider network device is a network device located in the target cloud service provider network and adjacent to the target private network.
Illustratively, the target cloud service provider network device is a virtual border router.
Different cloud service providers have own set of private access rules and own controllers to manage and control their cloud resources. The second controller provided in the embodiment of the application integrates the private line access capability of each cloud service provider into one controller, and the cloud service provider provides the private line access capability and a stable and open Software Development Kit (SDK) to the second controller, so that when the private line access capability of a certain cloud service provider is needed, the cloud resource of the cloud service provider can be managed and controlled only by calling the corresponding private line access capability of the cloud service provider.
In one example, the second controller instructs the target cloud service provider network device to create a private line channel with the target private network device by:
the method comprises the following steps: the second controller creates a private network VPC of the user in a service area of the target cloud service provider network.
Optionally, the second controller first queries whether the user has a VPC in the service area, and if so, does not create the VPC.
Step two: a virtual border router is created for accessing the VPC.
Illustratively, the second controller selects network equipment adjacent to the target private network according to the existing circuit physical channel of the cloud service provider district where the VPC is located and the position of the target private network equipment, and creates the virtual boundary router.
Step three: and configuring a routing table of the virtual boundary router.
Wherein the virtual border router is further configured to access the target private network, and the routing table is configured to indicate a route between the virtual border router and the VPC and a route between the virtual border router and the target private network device.
According to the hybrid cloud network connection method, a global controller receives a hybrid cloud network connection request sent by a hybrid cloud management platform, wherein the hybrid cloud network connection request comprises network information required by a hybrid cloud service, the global controller sends information of a target private network to a first controller, instructs the first controller to complete configuration of network equipment required in the target private network according to the information of the target private network, sends information of a target cloud service provider network to a second controller, instructs the second controller to call private line access capacity of a corresponding cloud service provider according to the information of the target cloud service provider network, and creates a private line channel between the target cloud service provider network and the target private network, so that automatic connection of the hybrid cloud network is achieved. Compared with the prior art, private networks of different cloud service providers are manually configured, and mutual access of the private networks is realized through the Internet. According to the hybrid cloud network connection method, automatic connection of the hybrid cloud network can be achieved, labor cost and the probability of failure of manual configuration are reduced, and the safety of a hybrid cloud network architecture is guaranteed by means of the high reliability and controllability of a private network.
In order to enhance the consistent experience of the user and help the user to better manage the cloud computing resources of the user, the embodiment of the present application provides another hybrid cloud network connection method, which is applied to the hybrid cloud network connection system shown in fig. 2. As shown in fig. 4, before step S301, the method further comprises S401-S402:
s401: the hybrid cloud management platform receives service requirement information input by a user.
The hybrid cloud network architecture includes two parts: the cloud and the intercommunication link between the clouds correspondingly, the service requirement information input by the user also comprises two parts: the method comprises the steps of cloud creation requirement information and intercommunication requirement information between clouds. The cloud creation demand information comprises the cloud service provider type and the local city of the target cloud service provider network; the cloud intercommunication demand information comprises a source end, a destination end, link on-off information, link bandwidth and a routing protocol of an intercommunication link between target cloud service provider networks.
Illustratively, the hybrid cloud management platform provides a front-end interface facing a user, and the user logs in an account number of the user in the interface, fills in service information, builds a custom hybrid cloud network, and defines a communication target of the hybrid cloud network. For example: creating cloud A in the Beijing cloud resource pool in Tencent, creating cloud B in the Shenzhen cloud resource pool in Huaye, creating cloud C in the Shanghai cloud resource pool in Ali, and communicating cloud A and cloud C with cloud B.
Further illustratively, the user may also define its communication details for the hybrid cloud network, such as: the communication detail information which is not defined by a user, such as link bandwidth, QoS (quality of service) grade, routing protocol, link on-off information and the like, is set by the hybrid cloud management platform in a default mode.
S402: and the hybrid cloud management platform converts the service requirement information into network information.
The network information comprises information of a target private network and information of a target cloud service provider network.
For a detailed description of the information of the target private network and the information of the target cloud service provider network, refer to step 301 above, which is not described herein again.
For example, the hybrid cloud management platform first needs to determine, according to the cloud creation requirement information, a cloud service provider domain to which a target cloud service provider network belongs and an existing circuit physical channel of the cloud service provider domain, determine second network equipment for carrying the target cloud service provider network, and determine equipment configuration information of the second network equipment according to the service requirement information. The hybrid cloud management platform determines first network equipment for bearing the target private network according to the cloud intercommunication requirement information, and determines equipment configuration information according to the service requirement information.
Further exemplarily, the hybrid cloud management platform supports enterprise resource integration, flexible business deployment, and management of a set of detailed resources and distribution rules. The hybrid cloud management platform firstly combines the bandwidth utilization rate of equipment ports in various cities, allocates equipment ports and port bandwidths for first Network equipment and second Network equipment, and sequentially pre-allocates VLAN-ID for each port in a Virtual Local Area Network (VLAN) range of a physical port planned in advance; allocating interconnection IP addresses in advance for each port in a preset Border Gateway Protocol (BGP) resource pool according to allocation rules such as a sequential allocation principle and a non-conflict principle of the resource pool; and distributing related network resources such as vrf, RD/RT and the like according to the first network equipment or the second network equipment.
By the hybrid cloud network connection system and the hybrid cloud connection method, the target cloud resources are created, the intercommunication links among the target cloud resources are connected, and the hybrid cloud network requested by the user is successfully constructed. For a user, the hybrid cloud network connection system provided by the embodiment of the application helps the user shield many implementation details, and the user only needs to build a required hybrid cloud network according to an application scene. The user does not need to log in a control console of each cloud service provider to complete configuration operation locally, and the hybrid cloud management platform can help the user to solve the problem of cross-account and cross-region management, so that the resource management speed of the user can be improved by several orders of magnitude.
It should be understood that the sequence numbers of the above-mentioned processes do not mean the execution sequence, and the execution sequence of each process should be determined by its function and inherent logic, and should not constitute any limitation to the implementation process of the embodiments of the present application.
In the embodiment of the present application, the global controller and the second controller may be divided into the functional modules or the functional units according to the above method examples, for example, each functional module or functional unit may be divided corresponding to each function, or two or more functions may be integrated into one processing module. The integrated module may be implemented in a form of hardware, or may be implemented in a form of a software functional module or a functional unit. The division of the modules or units in the embodiment of the present application is schematic, and is only a logic function division, and there may be another division manner in actual implementation.
Fig. 5 shows a schematic diagram of a possible structure of the global controller involved in the above embodiments. The global controller comprises a receiving module 501 and a sending module 502.
The receiving module 501 is configured to receive a hybrid cloud network connection request sent by a hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; and the hybrid cloud service is carried through the target private network and the target cloud service provider network.
The sending module 502 is configured to send a first message to a first controller; the first message comprises information of the target private network; the first message is used for indicating the first controller to complete the configuration of the required network equipment in the target private network according to the information of the target private network.
The sending module 502 is further configured to send a second message to a second controller; the second message comprises information of the target cloud service provider network, the second controller is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the second message is used for indicating the second controller to call the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network, so that a private line channel between the target cloud service provider network and the target private network is created.
Optionally, the information of the target private network includes: a location of each first network device of the one or more first network devices, an identification of each first network device, and one or more ports of each first network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each first network device, VLAN-ID of each port, bandwidth of each port, routing protocol of each port, network address of each port; wherein the first network device comprises a device in the target private network.
Optionally, the information of the target cloud service provider network includes: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
The global controller provided by the embodiment of the application receives a hybrid cloud network connection request sent by a hybrid cloud management platform, wherein the hybrid cloud network connection request includes network information required by a hybrid cloud service, the global controller sends information of a target private network to a first controller, instructs the first controller to complete configuration of network equipment required in the target private network according to the information of the target private network, sends information of a target cloud service provider network to a second controller, and instructs the second controller to call a private line access capability of a corresponding cloud service provider according to the information of the target cloud service provider network, and creates a private line channel between the target cloud service provider network and the target private network, so that automatic connection of the hybrid cloud network is achieved. Compared with the prior art, private networks of different cloud service providers are manually configured, and mutual access of the private networks is realized through the Internet. According to the hybrid cloud network connection method, automatic connection of the hybrid cloud network can be achieved, labor cost and the probability of failure of manual configuration are reduced, and the safety of a hybrid cloud network architecture is guaranteed by means of the high reliability and controllability of a private network.
Fig. 6 shows a schematic diagram of a possible structure of the second controller involved in the above embodiment. The second controller includes a receiving module 601 and a processing module 602.
The second controller integrates the private access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the private access capabilities are used for the target cloud service provider network to access the target private network.
The receiving module 601 is configured to receive a second message sent by the global controller; wherein the second message comprises information of a target cloud service provider network; and the hybrid cloud service is carried through the target private network and the target cloud service provider network.
The processing module 602 is configured to invoke a private line access capability of a corresponding cloud service provider according to the information of the target cloud service provider network, and instruct the target cloud service provider network device to create a private line channel with the target private network device; the target cloud service provider network device is a network device which is located in the target cloud service provider network and is adjacent to the target private network, and the target private network device is a network device which is located in the target private network and is used for establishing connection with the target cloud service provider network.
Optionally, the information of the target cloud service provider network includes: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
Optionally, the target cloud service provider network device is a virtual border router; the processing module 602 is specifically configured to: creating a private network (VPC) of a user in a service area of the target cloud service provider network; creating a virtual border router for accessing the VPC; configuring a routing table of the virtual border router; wherein the virtual border router is further configured to access the target private network, and the routing table is configured to indicate a route between the virtual border router and the VPC and a route between the virtual border router and the target private network device.
The second controller provided by the embodiment of the application is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, the private line access capabilities are used for accessing the target private network of the target cloud service provider network, the second controller receives the second message sent by the global controller, calls the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network in the second message, creates a private line channel between the second controller and the target private network, and constructs the hybrid cloud network. Compared with the prior art, private networks of different cloud service providers are manually configured, and mutual access of the private networks is realized through the Internet. According to the hybrid cloud network connection method, automatic connection of the hybrid cloud network can be achieved, labor cost and the probability of failure of manual configuration are reduced, and the safety of a hybrid cloud network architecture is guaranteed by means of the high reliability and controllability of a private network.
Fig. 7 shows a schematic diagram of another possible structure of the global controller involved in the above embodiments. The global controller includes: a processor 701 and a communications interface 703. Processor 701 is used to control and manage the actions of the global controller and/or other processes for performing the techniques described herein. The communication interface 703 is used to support communication between the global controller and other network entities, for example, the steps performed by the receiving module 501 and the sending module 502 are performed. The global controller may also include a memory 702 and a bus 704, the memory 702 being used to store program codes and data for the global controller.
Fig. 8 shows a schematic diagram of a further possible structure of the second controller involved in the above-described embodiment. The second controller includes: a processor 801 and a communication interface 803. The processor 801 is configured to control and manage the actions of the second controller, for example, to perform the steps performed by the processing module 602 described above, and/or to perform other processes for the techniques described herein. The communication interface 803 is used to support the communication of the second controller with other network entities, for example, to perform the steps performed by the receiving module 601 described above. The second controller may also include a memory 802 and a bus 804, the memory 802 for storing program codes and data for the second controller.
The processors 701, 801 may be, among other things, various illustrative logical blocks, modules, and circuits described in connection with the disclosure herein implemented or performed. The processor may be a central processing unit, general purpose processor, digital signal processor, application specific integrated circuit, field programmable gate array or other programmable logic device, transistor logic device, hardware component, or any combination thereof. Which may implement or perform the various illustrative logical blocks, modules, and circuits described in connection with the disclosure. The processor may also be a combination of computing functions, e.g., comprising one or more microprocessors, DSPs, and microprocessors, among others.
The memory 702, the memory 802 may be a memory in a global controller, a second controller, etc., and the memory may include a volatile memory, such as a random access memory; the memory may also include non-volatile memory, such as read-only memory, flash memory, a hard disk, or a solid state disk; the memory may also comprise a combination of memories of the kind described above.
The buses 704 and 804 may be Extended Industry Standard Architecture (EISA) buses or the like. The buses 704, 804 may be divided into address buses, data buses, control buses, and the like. For ease of illustration, fig. 7 and 8 are shown with only one thick line, but do not indicate only one bus or one type of bus.
The embodiment of the application provides a hybrid cloud connection system, which can comprise a hybrid cloud management platform, a global controller, a first controller and a second controller, wherein the hybrid cloud management platform is used for receiving service requirements of users; the global controller is in communication connection with the hybrid cloud management platform through a northbound interface, and is in communication connection with the first controller and the second controller through a southbound interface; the first controller is used for realizing control and management of private network resources; the second controller is used for controlling and managing network resources of the cloud service provider. For the description of the hybrid cloud management platform, the global controller, the first controller, and the second controller, reference may be specifically made to the related descriptions in the foregoing method embodiment and apparatus embodiment, and details are not described here again.
Through the above description of the embodiments, it is clear to those skilled in the art that, for convenience and simplicity of description, the foregoing division of the functional modules is merely used as an example, and in practical applications, the above function distribution may be completed by different functional modules according to needs, that is, the internal structure of the device may be divided into different functional modules to complete all or part of the above described functions. For the specific working processes of the system, the apparatus and the unit described above, reference may be made to the corresponding processes in the foregoing method embodiments, and details are not described here again.
The embodiment of the present application provides a computer program product containing instructions, which when running on a computer, causes the computer to execute the hybrid cloud network connection method described in the above method embodiment.
An embodiment of the present application further provides a computer-readable storage medium, where instructions are stored in the computer-readable storage medium, and when the global controller executes the instructions, the global controller executes each step executed by the global controller in the method flow shown in the foregoing method embodiment.
An embodiment of the present application further provides a computer-readable storage medium, where instructions are stored in the computer-readable storage medium, and when the second controller executes the instructions, the second controller executes each step executed by the second controller in the method flow shown in the foregoing method embodiment.
The computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination thereof. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a Read-Only Memory (ROM), an Erasable Programmable Read-Only Memory (EPROM), a register, a hard disk, an optical fiber, a portable Compact Disc Read-Only Memory (CD-ROM), an optical storage device, a magnetic storage device, any suitable combination of the above, or any other form of computer readable storage medium known in the art. An exemplary storage medium is coupled to the processor such the processor can read information from, and write information to, the storage medium. Of course, the storage medium may also be integral to the processor. The processor and the storage medium may reside in an Application Specific Integrated Circuit (ASIC). In embodiments of the present application, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device.
The above description is only an embodiment of the present application, but the scope of the present application is not limited thereto, and any changes or substitutions within the technical scope of the present disclosure should be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.

Claims (14)

1. A hybrid cloud network connection method, the method comprising:
the method comprises the steps that a global controller receives a hybrid cloud network connection request sent by a hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network;
the global controller sends a first message to a first controller; the first message comprises information of the target private network; the first message is used for indicating the first controller to complete the configuration of the required network equipment in the target private network according to the information of the target private network;
the global controller sends a second message to a second controller; the second message comprises information of the target cloud service provider network, the second controller is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the second message is used for indicating the second controller to call the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network, so that a private line channel between the target cloud service provider network and the target private network is created.
2. The method of claim 1,
the information of the target private network comprises: a location of each first network device of the one or more first network devices, an identification of each first network device, and one or more ports of each first network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each first network device, VLAN-ID of each port, bandwidth of each port, routing protocol of each port, network address of each port; wherein the first network device comprises a device in the target private network;
the information of the target cloud service provider network comprises: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
3. A hybrid cloud network connection method, the method comprising:
the second controller receives a second message sent by the global controller; the second message comprises information of a target cloud service provider network, the second controller integrates private access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the private access capabilities are used for the target cloud service provider network to access the target private network; the hybrid cloud service is borne through the target private network and the target cloud service provider network;
the second controller calls the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network, and instructs the target cloud service provider network equipment to create a private line channel with the target private network equipment; the target cloud service provider network device is a network device which is located in the target cloud service provider network and is adjacent to the target private network, and the target private network device is a network device which is located in the target private network and is used for establishing connection with the target cloud service provider network.
4. The method of claim 3, wherein the information of the target cloud service provider network comprises: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
5. The method of claim 3 or 4, wherein the target cloud service provider network device is a virtual border router;
the second controller calls the private line access capability of the target cloud service provider according to the information of the target cloud service provider network, and instructs the target cloud service provider network equipment to create a private line channel with the target private network equipment, and the method comprises the following steps:
the second controller creates a private network (VPC) of a user in a service area of the target cloud service provider network;
creating a virtual border router for accessing the VPC;
configuring a routing table of the virtual border router; wherein the virtual border router is further configured to access the target private network, and the routing table is configured to indicate a route between the virtual border router and the VPC and a route between the virtual border router and the target private network device.
6. A controller, characterized in that the controller comprises as a global controller:
the receiving module is used for receiving a hybrid cloud network connection request sent by the hybrid cloud management platform; the hybrid cloud network connection request comprises network information required by a hybrid cloud service; the network information comprises information of a target private network and information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network;
the sending module is used for sending a first message to the first controller; the first message comprises information of the target private network; the first message is used for indicating the first controller to complete the configuration of the required network equipment in the target private network according to the information of the target private network;
the sending module is further configured to send a second message to a second controller; the second message comprises information of the target cloud service provider network, the second controller is integrated with the private line access capabilities of a plurality of cloud service providers corresponding to the hybrid cloud service, and the second message is used for indicating the second controller to call the private line access capabilities of the corresponding cloud service providers according to the information of the target cloud service provider network, so that a private line channel between the target cloud service provider network and the target private network is created.
7. The controller of claim 6,
the information of the target private network comprises: a location of each first network device of the one or more first network devices, an identification of each first network device, and one or more ports of each first network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each first network device, VLAN-ID of each port, bandwidth of each port, routing protocol of each port, network address of each port; wherein the first network device comprises a device in the target private network;
the information of the target cloud service provider network comprises: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
8. A controller, as a second controller, integrated with dedicated access capabilities of a plurality of cloud service providers corresponding to a hybrid cloud service, where the dedicated access capabilities are used for a target cloud service provider network to access a target private network, and the second controller includes:
the receiving module is used for receiving a second message sent by the global controller; wherein the second message comprises information of a target cloud service provider network; the hybrid cloud service is borne through the target private network and the target cloud service provider network;
the processing module is used for calling the private line access capability of the corresponding cloud service provider according to the information of the target cloud service provider network and indicating the target cloud service provider network equipment to create a private line channel with the target private network equipment; the target cloud service provider network device is a network device which is located in the target cloud service provider network and is adjacent to the target private network, and the target private network device is a network device which is located in the target private network and is used for establishing connection with the target cloud service provider network.
9. The controller of claim 8, wherein the information of the target cloud service provider network comprises: a cloud service provider of the target cloud service provider network, a service area of the target cloud service provider network, a location of each of one or more second network devices, an identification of each second network device and one or more ports of each second network device, virtual route forwarding vrf and route distinguisher/route target RD/RT of each second network device, a VLAN-ID of each port, a bandwidth of each port, a routing protocol of each port, a network address of each port; wherein the second network device comprises a device in the target cloud service provider network.
10. The controller of claim 8 or 9, wherein the target cloud service provider network device is a virtual border router; the processing module is specifically configured to:
creating a private network (VPC) of a user in a service area of the target cloud service provider network;
creating a virtual border router for accessing the VPC;
configuring a routing table of the virtual border router; wherein the virtual border router is further configured to access the target private network, and the routing table is configured to indicate a route between the virtual border router and the VPC and a route between the virtual border router and the target private network device.
11. A controller, characterized in that the controller comprises as a global controller: a processor, a communication interface, and a memory; wherein the memory is used for storing one or more programs, the one or more programs comprising computer-executable instructions, and when the global controller is operated, the processor executes the computer-executable instructions stored in the memory to make the global controller execute the hybrid cloud network connection method of claim 1 or 2.
12. A controller characterized in that the controller comprises as a second controller: a processor, a communication interface, and a memory; wherein the memory is used to store one or more programs, the one or more programs including computer-executable instructions, which when executed by the second controller, are executed by the processor to cause the second controller to perform the hybrid cloud network connection method of any of claims 3 to 5.
13. A computer-readable storage medium having instructions stored therein, which when executed by a computer, the computer performs the hybrid cloud network connection method of any of the above claims 1 or 2, or 3 to 5.
14. A hybrid cloud network connection system, the system comprising:
a hybrid cloud management platform, the global controller of claim 11, the first controller, the second controller of claim 12;
the hybrid cloud management platform is used for receiving business requirements of users; the global controller is in communication connection with the hybrid cloud management platform through a northbound interface, and is in communication connection with the first controller and the second controller through a southbound interface; the first controller is used for realizing control and management of private network resources; the second controller is used for controlling and managing network resources of the cloud service provider.
CN202110455703.3A 2021-04-26 2021-04-26 Hybrid cloud network connection method, system and controller Pending CN113206776A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110455703.3A CN113206776A (en) 2021-04-26 2021-04-26 Hybrid cloud network connection method, system and controller

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110455703.3A CN113206776A (en) 2021-04-26 2021-04-26 Hybrid cloud network connection method, system and controller

Publications (1)

Publication Number Publication Date
CN113206776A true CN113206776A (en) 2021-08-03

Family

ID=77028828

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110455703.3A Pending CN113206776A (en) 2021-04-26 2021-04-26 Hybrid cloud network connection method, system and controller

Country Status (1)

Country Link
CN (1) CN113206776A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113992672A (en) * 2021-10-26 2022-01-28 中国电信股份有限公司 Multi-cloud network management method and related equipment
CN114785670A (en) * 2022-04-21 2022-07-22 中国建设银行股份有限公司 Private line access method and device
CN115865608A (en) * 2022-12-08 2023-03-28 中国建设银行股份有限公司 Network management method, system, electronic equipment and computer storage medium
WO2023109200A1 (en) * 2021-12-13 2023-06-22 华为技术有限公司 Route advertisement method, communication system, and related device
WO2023217113A1 (en) * 2022-05-09 2023-11-16 华为云计算技术有限公司 Public cloud-based cloud connection service configuration method, and cloud management platform

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106936857A (en) * 2015-12-29 2017-07-07 中国电信股份有限公司 A kind of connection management method of mixed cloud, SDN controllers and mixing cloud system
CN109936629A (en) * 2019-02-27 2019-06-25 山东浪潮云信息技术有限公司 A kind of mixed cloud network interconnecting method and system
CN110213147A (en) * 2019-02-22 2019-09-06 企商在线(北京)网络股份有限公司 A kind of cloud network interoperability methods, device, storage medium and terminal device
CN110557332A (en) * 2018-05-31 2019-12-10 阿里巴巴集团控股有限公司 Network construction method, system and routing equipment
US20200028758A1 (en) * 2018-07-17 2020-01-23 Cisco Technology, Inc. Multi-cloud connectivity using srv6 and bgp
CN111030912A (en) * 2018-10-09 2020-04-17 华为技术有限公司 Method for intercommunication between virtual private cloud VPCs
CN111130975A (en) * 2018-11-01 2020-05-08 深信服科技股份有限公司 Hybrid cloud network intercommunication system and method
CN111742525A (en) * 2018-02-19 2020-10-02 华为技术有限公司 Multi-cloud VPC routing and registration

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106936857A (en) * 2015-12-29 2017-07-07 中国电信股份有限公司 A kind of connection management method of mixed cloud, SDN controllers and mixing cloud system
CN111742525A (en) * 2018-02-19 2020-10-02 华为技术有限公司 Multi-cloud VPC routing and registration
CN110557332A (en) * 2018-05-31 2019-12-10 阿里巴巴集团控股有限公司 Network construction method, system and routing equipment
US20200028758A1 (en) * 2018-07-17 2020-01-23 Cisco Technology, Inc. Multi-cloud connectivity using srv6 and bgp
CN111030912A (en) * 2018-10-09 2020-04-17 华为技术有限公司 Method for intercommunication between virtual private cloud VPCs
CN111130975A (en) * 2018-11-01 2020-05-08 深信服科技股份有限公司 Hybrid cloud network intercommunication system and method
CN110213147A (en) * 2019-02-22 2019-09-06 企商在线(北京)网络股份有限公司 A kind of cloud network interoperability methods, device, storage medium and terminal device
CN109936629A (en) * 2019-02-27 2019-06-25 山东浪潮云信息技术有限公司 A kind of mixed cloud network interconnecting method and system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
陶高峰,顾艳雷,殷康: ""运营商多云专网一体化业务的策略与实践"", 《移动通信》 *

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113992672A (en) * 2021-10-26 2022-01-28 中国电信股份有限公司 Multi-cloud network management method and related equipment
CN113992672B (en) * 2021-10-26 2024-08-27 中国电信股份有限公司 Multi-cloud network management method and related equipment
WO2023109200A1 (en) * 2021-12-13 2023-06-22 华为技术有限公司 Route advertisement method, communication system, and related device
CN114785670A (en) * 2022-04-21 2022-07-22 中国建设银行股份有限公司 Private line access method and device
WO2023217113A1 (en) * 2022-05-09 2023-11-16 华为云计算技术有限公司 Public cloud-based cloud connection service configuration method, and cloud management platform
CN115865608A (en) * 2022-12-08 2023-03-28 中国建设银行股份有限公司 Network management method, system, electronic equipment and computer storage medium
CN115865608B (en) * 2022-12-08 2024-09-06 中国建设银行股份有限公司 Network management method, system, electronic equipment and computer storage medium

Similar Documents

Publication Publication Date Title
CN113206776A (en) Hybrid cloud network connection method, system and controller
CN110401588B (en) Method and system for realizing VPC (virtual private network) peer-to-peer connection in public cloud platform based on openstack
CN111224821B (en) Security service deployment system, method and device
CN108768692B (en) Network creation method, related equipment and system
US20170257269A1 (en) Network controller with integrated resource management capability
JP2017522800A (en) Active panel classification
JP2021530912A (en) Network slice control method and device, computer readable storage medium
CN113765874B (en) Private network and dual-mode networking method based on 5G mobile communication technology
CN109450905B (en) Method, device and system for transmitting data
CN112688814B (en) Equipment access method, device, equipment and machine readable storage medium
CN107733795B (en) Ethernet virtual private network EVPN and public network intercommunication method and device
WO2018201787A1 (en) Virtual network creation method and device, apparatus, transport network system, and storage medium
CN111556110B (en) Automatic adaptation method for different physical service networks of private cloud system
US9590855B2 (en) Configuration of transparent interconnection of lots of links (TRILL) protocol enabled device ports in edge virtual bridging (EVB) networks
WO2017162030A1 (en) Method and apparatus for generating virtual network
CN105939267B (en) Outband management method and device
CN110351135B (en) Network equipment configuration method and device in multiple DCs
CN113794763B (en) Method and apparatus for providing a traffic forwarder via a dynamic overlay network
CN107579898B (en) Method and device for interconnection communication among multiple containers
US20210021537A1 (en) Sdn-based vpn traffic scheduling method and sdn-based vpn traffic scheduling system
CN117997734A (en) Management method and system for multi-resource pool network
CN112769584B (en) Method, device and storage medium for sharing upper link by network slice
CN105516397A (en) Method for accessing multiple operating system terminals into network and multiple operating system terminals
CN109347715B (en) Private network access method and system for external tenant
WO2022142905A1 (en) Packet forwarding method and apparatus, and network system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20210803