TWI659631B - Method and system for establishing virtual backup network and virtual network card - Google Patents

Abstract

This case provides a method and system for building a virtual backup network and a virtual network card. In some embodiments, the network coordinator module generates an installation template for the virtual backup network to reserve resources required by the software-based network management module to establish the virtual backup network. Thereafter, the IP assignment module sets the IP address in a computer room to only be assigned to a virtual network card used in the computer room to complete the virtual backup network according to the installation template and reserved resources. To quickly set up a secure and reliable backup network.

Description

Method and system for building virtual backup network and virtual network card

The invention relates to a technology for constructing a virtual backup network and a virtual network card, in particular to a technology for constructing a large second-layer (L2) virtual backup network and a virtual network card in the second layer Methods and systems.

Traditionally, when the network path in the network environment is damaged, the opening with other network paths (that is, the connection to the backup network) is performed, and the original network path is switched to the backup network. . However, such a passive activation method often requires extra time to switch the network path in order for the network communication to return to normal. In this way, it will bring great distress and inconvenience to users who are eager to communicate on the Internet.

In addition, to set up a virtual and / or physical backup network in a network environment (such as a large two-tier network environment, a cross-machine room network environment, etc.), it is often necessary for the network and system administrator to manually set up for each link . However, such a manual setting method not only consumes a lot of time, but also increases a lot of labor costs in today's rapidly growing network environment, which becomes impractical.

Furthermore, in addition to the need to quickly set up a backup network, it is also necessary to ensure the safety and reliability of the backup network in use. In this way, users can use the redundant network without worrying about data being accessed by third parties in other non-redundant networks or in different network segments, and having data leakage concerns.

In view of the foregoing problems, it is really necessary to provide a method for effectively constructing a backup network and using the backup network to quickly set up a secure and reliable backup network.

Based on the problems existing in the prior art, the present invention discloses a method and system for building a virtual backup network and a virtual network card. Compared with the prior art, an embodiment of the present invention discloses that a backup network is set up by using the cooperation of a network coordinator (Orchestrator) module, a software-based network management module, and an IP dispatching module to improve the backup network. Road setting efficiency.

An embodiment of the present invention provides a system for constructing a virtual backup network, including: a virtual backup network operation and presentation module that receives a construction request for the virtual backup network; A network coordinator module that analyzes the construction request to determine whether the current network equipment resources in the computer room are sufficient to establish the virtual backup network for the network coordinator module to generate and the virtual backup A network-related one for installing a template; a software-based network management module that reserves the resources required to establish the virtual standby network among the network equipment resources; and an IP dispatching module that is based on the For the installation template and the reserved resources, the IP address in the computer room is set to only bind with the virtual network card of a virtual machine in the computer room to complete the construction of the virtual backup network.

Another embodiment of the present invention provides a method for constructing a virtual backup network, including the following steps: (1) receiving a construction request for the virtual backup network; (2) confirming the current Whether the network equipment resources are sufficient to establish the virtual backup network; (3) generating a provision template related to the virtual backup network; (4) according to the provisioning template, among the network equipment resources Reserve the resources required to establish the virtual backup network; and (5) set the IP address in the computer room to only match the virtual machine in the computer room according to the provisioning template and the reserved resources. The virtual network card is bound to complete the construction of the virtual backup network.

In another embodiment, after the virtual backup network is constructed, the firewall rules of the virtual backup network are set to use the virtual machine of the virtual backup network only with the virtual machine. Other virtual machines on the virtual standby network communicate.

In another embodiment, the network equipment resources include at least one of the following: a heterogeneous SDN controller, a homogeneous SDN controller, an SDN virtual switch, an SDN physical switch, and an available IP address.

In another embodiment, the installation template describes at least one of a network ID, a network name, an IP network segment, and a gateway IP required to build the virtual backup network.

In another embodiment, the installation template is an installation template conforming to the Open Stack Heat format or the TOSCA format.

An embodiment of the present invention provides a system for constructing a virtual network card, including: a virtual machine network card operation and presentation module, which receives a construction request for one of the virtual network cards; a network Coordinator module, which is based on The establishment request generates a virtual network card installation template; a virtual basic resource management module that installs the virtual network card according to the virtual network card installation template; and an IP distribution module , Which binds the MAC address of the virtual network card to an IP address in a virtual standby network.

Another embodiment of the present invention provides a method for constructing a virtual network card, including the following steps: (1) receiving a construction request for one of the virtual network cards; (2) generating based on the construction request A virtual network card installation template; (3) the virtual network card is installed according to the virtual network card installation template; and (4) the virtual network card MAC address and a virtual backup An IP address is bound in the network.

In another embodiment, the step (1) includes providing a user interface for the user to input the establishment request for the virtual network card in the user interface, and querying which virtual backup networks are currently available. .

In another embodiment, step (2) includes configuring a resource for the construction request based on the construction request to generate a virtual network card installation template describing the resource.

In another embodiment, the resources include one or more of the following: an identification code of the virtual backup network, a name of the virtual backup network, and the MAC address of the virtual network card.

In another embodiment, the virtual network card installation template is an installation template conforming to the Open Stack Heat format or the TOSCA format.

In another embodiment, the method further includes the following steps: (5) Analyze related parameters of the establishment request to generate a cross-machine room virtual network card connection for installation template.

In another embodiment, the related parameters include at least one of the following By: the name of the virtual backup network, the identification code of the physical network device associated with the virtual backup network, the IP address bound to the virtual network card, and the MAC bit of the virtual network card Address and cross-computer room connectivity requirements of the virtual network card.

In another embodiment, it further includes an installation template based on the cross-computer room virtual network card connection, and a software-defined network controller module is used to set the virtual network card to cross-computer room communication.

It should be understood that the subject matter described above may be implemented as a computer-controlled device, computer program, computing system, or as a product, such as a computer-readable storage medium.

In order to make the above features and advantages of the present invention more comprehensible, embodiments are described below in detail with reference to the accompanying drawings. Additional features and advantages of the present invention will be partially explained in the following description, and these features and advantages will be partially obvious from the description, or may be learned through practice of the present invention. The features and advantages of the invention are realized and achieved by means of elements and combinations specifically pointed out in the scope of the patent application. It should be understood that both the foregoing general description and the following detailed description are merely exemplary and explanatory and are not intended to limit the scope of the invention as claimed.

200‧‧‧ Dynamically open L2 backup network to multi-computer room system through the controller

210‧‧‧ Cross-machine room virtual backup network construction subsystem

211‧‧‧Virtual backup network operation and presentation module

212‧‧‧Reliability database for network resources and topology dependencies

213‧‧‧Orchestrator module

214‧‧‧Software Network Management Module

215‧‧‧Virtual Network Function Management Module

216‧‧‧Virtual Basic Resource Management Module

217‧‧‧Software-defined network controller module

218‧‧‧IP Distribution Module

219‧‧‧Virtual Firewall Module

220‧‧‧ Virtual machine network card connection and IP acquisition mechanism subsystem

221‧‧‧Virtual Machine Network Card Operation and Presentation Module

222‧‧‧Virtual Machine Virtual Network Card Resource Database

S310-S390‧‧‧step

S361-S369‧‧‧step

S381-S384‧‧‧step

S391-S394‧‧‧step

S401-S410‧‧‧step

S501-S507‧‧‧step

Figure 1 shows the system architecture diagram of the present invention for dynamically opening a large second-tier redundant network to multiple computer rooms through a controller; Figure 2 shows the virtual redundant network building sub-computer room of the present invention. System architecture diagram of the system; Figure 3 shows the virtual machine network card connection and IP acquisition of the present invention System architecture diagram of the mechanism subsystem; FIG. 4 shows a flowchart of a method for constructing a virtual backup network across computer rooms according to an embodiment of the present invention; and FIG. 5 shows one of the methods according to the present invention. In the embodiment, a flowchart of a method for installing a virtual backup network using a network coordinator module is shown in FIG. 6. FIG. 6 shows an example of using the network coordinator module to start IP allocation according to an embodiment of the present invention. A flowchart of a method for module setting; FIG. 7 is a flowchart of a method for setting a virtual firewall using a network coordinator module according to an embodiment of the present invention; and FIG. 8 is a flowchart according to the present invention According to one embodiment, a method flowchart of a virtual machine network card connection and IP obtaining mechanism is shown in FIG. 9; and FIG. 9 shows an embodiment of the present invention using a network coordinator module to perform cross-machine room virtual network card connection. Provided method flow chart.

The following implementations are directed to the concept and technology of building a virtual backup network and a virtual network card. According to the concepts and technologies described herein, a computing device can execute algorithms, steps, and processes for building a virtual backup network and a virtual network card.

Although the subject matter described herein is presented in the general context of execution with operating systems and application programs on computer systems, those skilled in the art will understand that other implementations can also be performed in other ways. In general, modules can be implemented in software, hardware, and firmware, including but not limited to systems, devices, routines, programs, components, data structures, and other tasks that perform specific tasks or implement specific types of abstract data. Type of knot 结构。 Structure.

In the following embodiments, reference is made to the accompanying drawings, which form a part of the embodiment, and specific embodiments or examples are shown in the drawings by diagrams. Referring now to the drawings, in these drawings, the same component symbols are used to represent the same components through several figures, and the methods and systems for building a virtual redundant network and a virtual network card will be presented.

Referring now to FIG. 1, it is a system architecture diagram of the present invention for dynamically opening a large second-layer backup network to multiple computer rooms through a controller. Among them, the system 200 for dynamically opening a large-scale second-layer backup network to multiple computer rooms through a controller includes a virtual backup network construction subsystem 210 across computer rooms, which is connected to a virtual machine network card and an IP acquisition mechanism subsystem 220.

The cross-machine room virtual backup network construction subsystem 210 can be used to establish a virtual backup network that spans multiple computer rooms to achieve the dynamic creation and management of a virtual backup network (hereinafter also referred to as the "backup network") Technical effects. In addition, the cross-machine room virtual backup network construction subsystem 210 can prepare and reserve the resources required to establish the virtual backup network before generating virtual machines.

In one embodiment, the virtual backup network construction subsystem 210 across the computer rooms can also use the mechanisms of IP allocation and firewall settings to improve the security of the backup network.

In addition, the virtual machine network card connection and IP acquisition mechanism subsystem 220 can obtain the network IP for the virtual network card of the virtual machine, and perform network device setting of Software Defined Networking (SDN) across the computer room. , So that the virtual network adapter of the virtual machine can use the redundant network to connect to the network that spans multiple computer rooms, and achieve the built-in redundant network function.

In an embodiment, the virtual machine network card connection and IP obtaining mechanism subsystem 220 may use an network coordinator (Orchestrator) module to perform the connection setting of the SDN network device for the virtual network card of the virtual machine, and configure the virtual machine. The MAC Address of the virtual network card is bound to a dedicated IP address in the backup network, and the network connection function of the virtual machine is enabled.

In one embodiment, the virtual backup network construction subsystem 210 across the computer rooms may first establish a virtual backup network for each computer room, and prepare and provide the resources required during the virtual backup network establishment process. Reserved. After that, the virtual machine network card connection and IP acquisition mechanism subsystem 220 binds the virtual network card of the virtual machine to the IP address in the backup network, so that the virtual network card of the virtual machine can use the virtual backup network. Resources.

Please refer to FIG. 2, which is a system architecture diagram of a virtual backup network construction subsystem across computer rooms according to the present invention.

Among them, the virtual backup network operation and presentation module 211 can provide a user interface to the user, whereby the user can view the current status of the virtual backup network in each computer room in the user interface, and query and control it Virtual backup network.

In one embodiment, the user interface provided by the virtual backup network operation and presentation module 211 may display the connection with the computer room where each backup network is located by visual presentation methods such as options and icons. When the user selects an option or clicks an icon, the virtual backup network operation and presentation module 211 may present a screen of related information of the computer room where the corresponding backup network is located to the user to browse.

Network coordinator module 213 can collect software and hardware resources of each computer room in advance (Such as: heterogeneous and homogeneous SDN controllers, SDN virtual switches, SDN entity switches, available IP addresses, and network topology relationships, etc.) in order to uniformly allocate and manage resources in each computer room to establish a span The backup network of different computer rooms achieves the effect of providing a virtual machine backup network.

In one embodiment, the network coordinator module 213 can analyze the input requirements of the system manager, system maintainer, and users to establish a backup network for installation according to the requirements, and generate a description describing related installation parameters. Install templates. Thereafter, the generated installation template is transmitted to the software-based network management module 214, the virtual network function management module 215, and the virtual basic resource management module 216.

The software-based network management module 214 can manage network device resources by managing different software-defined network controller modules 217 (eg, homogeneous software-defined network controllers and heterogeneous software-defined network controllers). Control.

The virtual network function management module 215 is a component for managing Network Functions Virtualization (NFV). In one embodiment, the virtual network function management module 215 uses a meta-data method to process the installation process in order to manage various NFV network components.

In addition, the virtual network function management module 215 can call the IP assignment module 218 and the virtual firewall module 219 to perform subsequent IP assignment tasks and firewall setting functions.

In one embodiment, the IP dispatching module 218 uses Dynamic Host Configuration Protocol (DHCP) for IP dispatching, and the virtual firewall module 219 can be used to set a firewall dedicated to each redundant network. As such, the virtual network function management module 215 The call of the IP dispatch module 218 and the virtual firewall module 219 can provide a backup network with communication security and flexible architecture.

Please refer to FIG. 3, which is a system architecture diagram of a virtual machine network card connection and IP obtaining mechanism subsystem of the present invention.

As shown in Figure 3, the virtual machine network card operation and presentation module 221 can provide a user interface to the user, so that the user can create a virtual network card for the virtual machine through the interface operation, and let the user choose the desired Backup network. The virtual machine virtual network card resource database 222 stores data related to the relationship between the virtual network card and the virtual standby network.

In one embodiment, the network coordinator (Orchestrator) module 213 has a virtual machine network card generation management function, which can perform program management for process installation. The network coordinator module 213 analyzes the input requirements of the system manager, system maintainer, and user, and refers to the relationship between the virtual network card and the virtual backup network recorded in the virtual machine virtual network card resource database 222. To start the installation step planning and installation parameter generation operation, and generate virtual machine virtual network adapters to use the backup network installation template in the process.

In one embodiment, the software-based network management module 214 provides the Spine-Leaf physical device connection function. It uses the software-defined network controller module 217's physical network device management function to connect the virtual network card to the virtual network card. The MAC address information is transmitted across the computer room, so the virtual network card information of the virtual machine can be transmitted to other computer rooms through the redundant network.

In addition, the virtual network function management module 215 can set the IP distribution module 218 in each computer room.

In one embodiment, the virtual network function management module 215 can divide the IP The dispatch module 218 is set to only bind the IP in the computer room with the virtual network card of the virtual machine in the same computer room, and ignore the IP binding request of the virtual network card of the virtual machine from the other computer room. In this way, the IP dispatching module 218 in each machine room can achieve an independent architecture for the IP binding system, but the virtual machine system network connectivity in different machine rooms is flexible, so as to reduce the impact of using broadcast packets in different machine rooms. .

Please refer to FIG. 4, which is a flowchart of a method for constructing a virtual backup network across computer rooms according to an embodiment of the present invention.

First, in step S310, the user can query the virtual private cloud and virtual backup network topology composed of the virtual backup network on the user interface provided by the virtual machine network card operation and presentation module 221. Information. At this time, it is possible to know which virtual private clouds and virtual backup networks currently exist by querying the backup network resources and the topology dependency database 212.

In step S320, the user can input the requirements for establishing a virtual backup network across the computer rooms in the user interface provided by the virtual machine network card operation and presentation module 221.

Next, in step S330, the network coordinator module 213 can query the backup network resource and topology dependency database 212 according to this requirement, so as to confirm whether the network resources of the network equipment of the computer room to be crossed are sufficient .

If the result of the confirmation is that the network resources of the network equipment of the computer room to be crossed are insufficient, it will proceed to step S350, and at this time, the network coordinator module 213 will return a message that the current backup network installation is not available. To the user and end the installation process.

On the contrary, if you need to recharge the network resources of the network equipment across the computer room If it is sufficient, it will proceed to step S340. At this time, the network coordinator module 213 will analyze the needs of the user and configure the network ID, network name, IP network segment, and gateway required for the virtual backup network. Parameters such as the server IP to create the required installation template (such as: Open Stack Heat installation template, TOSCA installation template).

Thereafter, it proceeds to step S370, which is a supply operation for a single computer room. Step S370 can be subdivided into three steps: step S360, step S380, and step S390.

In step S360, the network coordinator module 213 performs virtual backup network installation. Among them, the network coordinator module 213 reserves exclusive network resources in the network equipment of the equipment room and sets the network equipment of the equipment room.

In an embodiment, the network coordinator module 213 may send the installation template to the virtual basic resource management module 216 for the establishment of the virtual standby network, the gateway, and the IP network segment. In addition, the network coordinator module 213 may send the installation template to the software-based network management module 214 to perform pre-reserved operations on the backup network resources of the physical network device.

In one embodiment, the software-based network management module 214 can manage heterogeneous software-defined network controller modules 217. Among them, the software-based network management module 214 can configure the SDN network equipment and virtual network parameters required by the software-defined network controller module 217, and can call the software-defined network controller module 217 to perform a physical network. Construction of backup network on road equipment.

In step S380, the network coordinator module 213 activates the setting of the IP dispatch module 218. Among them, the network coordinator module 213 can call the virtual network function management module 215, and then the virtual network function management module 215 The IP dispatch module 218 is called for IP assignment.

In one embodiment, when the virtual network function management module 215 calls the IP dispatch module 218, the IP dispatch module 218 can be set to a virtual network card that can only set the IP in the computer room and the virtual machines in the same computer room. Perform binding, and ignore IP binding requests from virtual machine virtual network cards of other computer rooms.

In step S390, the network coordinator module 213 performs virtual firewall settings. The network coordinator module 213 can call the virtual network function management module 215, and then the virtual network function management module 215 calls the virtual firewall module 219 to set the firewall.

In an embodiment, the virtual network function management module 215 can set the firewall to: only virtual machines (virtual network cards) using the same backup network can communicate on the network, and reject virtual machines from different backup networks (Virtual network card) connection to enhance the security of data transmission in the backup network (such as backup data).

In an embodiment, steps S360 to S380 need to be performed in each computer room in sequence. The network coordinator module 213 will perform the backup only after the backup network related functions in all computer rooms are installed. The network provisioning message is written back to the backup network resource and topology dependency database 212.

For details of the foregoing steps S360, S380, and S390, refer to FIGS. 5 to 7.

Please refer to FIG. 5, which is a flowchart of a method for installing a virtual backup network using a network coordinator module according to an embodiment of the present invention.

First, in step S361, the network coordinator module 213 sends the virtual backup network installation template to the virtual basic resource management module 216.

Thereafter, in step S362, the virtual basic resource management module 216 evaluates whether the network resources of the computer room are sufficient to establish a new virtual backup network. If the resources are insufficient, it will proceed to step S350, return the message that the backup network cannot be installed currently to the user, and end the installation process.

If the resources are sufficient, the process proceeds to step S363. At this time, the virtual basic resource management module 216 performs the installation of the backup network, the subnet, and the gateway virtual network card, and monitors the installation status.

After that, it proceeds to step S364, at which time it is determined whether the installation of the virtual basic resource management module 216 is successful. If not, it will proceed to step S350, returning the message that the backup network cannot be installed currently to the user, and end the installation process.

If the installation of the virtual basic resource management module 216 is successful, the process proceeds to step S365. In step S365, the network coordinator module 213 calls the software-based network management module 214 to analyze the supply requirements, perform resource integration with the physical network equipment, and specify that backups can be made through the physical network equipment. Network category.

Next, in step S366, it is determined whether the supply and demand analysis and resource integration are successful. If not, it will proceed to step S350, returning the message that the backup network cannot be installed currently to the user, and end the installation process.

Conversely, if the supply demand analysis and resource integration are successful, the process proceeds to step S367. At this time, the software-based network management module 214 configures the SDN required by the software-defined network controller module 217 in the computer room. The network equipment and virtual network parameters are called by the software-defined network controller module 217 to build a redundant network.

In step S368, the software-defined network controller module 217 establishes a backup network on the SDN network device, and also monitors the network status.

After that, in step S369, it is determined whether a backup network is successfully established on the SDN network device. If the software-defined network controller module 217 successfully establishes a backup network on the SDN network device, it will report a success message to the network coordinator module 213. Conversely, if the software-defined network controller module 217 cannot establish a backup network on the SDN network device, it proceeds to step S350, and returns a message that the backup network cannot be installed currently to the user, and End the supply process.

Please refer to FIG. 6, which is a flowchart of a method for using a network coordinator module to start an IP dispatch module setting according to an embodiment of the present invention.

In step S381, the network coordinator module 213 transmits the installation template of the backup network (particularly for the IP assignment part) to the virtual network function management module 215.

Next, in step S382, the virtual network function management module 215 checks whether the IP dispatching module 218 operates normally.

If the IP dispatching module 218 operates abnormally, it will proceed to step S350, return the message that the backup network cannot be installed currently to the user, and end the installation process. Otherwise, it proceeds to step S383. At this time, the virtual network function management module 215 analyzes the installation requirements to configure the settings of the exclusive distribution function of the IP distribution module 218 according to the installation requirements.

Thereafter, in step S384, the virtual network function management module 215 calls the IP dispatch module 218 to set the dedicated dispatch function. For example, the IP dispatch module 218 can only accept specific virtual machines (virtual network adapters). IP binding requirements (ie, exclusive allocation of IP), regardless of IP binding requirements from other computer rooms and other virtual machines.

Please refer to FIG. 7, which is a flowchart of a method for setting a virtual firewall using a network coordinator module according to an embodiment of the present invention.

In step S391, the network coordinator module 213 may transmit the installation template of the backup network (particularly for the part of the firewall settings) to the virtual network function management module 215 and request the virtual network function management module. Group 215 performs firewall settings for the virtual firewall module 219.

In one embodiment, the virtual firewall module 219 is a gateway firewall used in a current backup network.

Next, in step S392, the virtual network function management module 215 confirms whether the virtual firewall module 219 operates normally.

If the virtual firewall module 219 operates abnormally, it will proceed to step S350, returning the message that the backup network cannot be installed currently to the user, and end the installation process.

Conversely, if the virtual firewall module 219 works normally, it proceeds to step S393. At this time, the virtual network function management module 215 analyzes the supply requirements and configures the firewall settings of the virtual firewall module 219 according to the supply requirements.

Next, in step S394, the virtual network function management module 215 will call the virtual firewall module 219 to set the firewall, for example, restricting computers in a specific computer room or a specific network domain from sending packets to the backup network through routing. . In this way, the security of the backup network in communication can be strengthened.

Please refer to FIG. 8, which is a flowchart of a method for a virtual machine network card connection and IP obtaining mechanism according to an embodiment of the present invention.

In step S401, the user can query the backup network currently available in the virtual private cloud on the user interface provided by the virtual machine network card operation and presentation module 221.

At this time, the user can be informed of the available backup network information in the current virtual private cloud by querying the backup network resource and topology dependency database 212.

In step S402, the user performs activation or connection (ie, establishment) of the virtual network card across the computer room. At this time, the user will use the backup network established by the virtual backup network construction subsystem 210 across the computer room to send the demand for the construction of the virtual network card to the network coordinator module 213.

Next, in step S404, the network coordinator module 213 confirms whether the backup network of each computer room related to the requirement for establishing the virtual network card is operating normally.

If the backup network of each computer room is not in normal operation, it will proceed to step S350, returning the message that the backup network cannot be installed currently to the user, and end the installation process.

Conversely, if the backup network of each equipment room is in normal operation, the action of analyzing the requirements and configuring the supply parameters is started, and the process proceeds to step S405.

In one embodiment, the network coordinator module 213 analyzes the requirements and configures the backup network identification code (ID), the backup network name, the IP used by the virtual network card, and the virtual network card. Software and hardware resources such as MAC Address used by the network card.

In step S405, the network coordinator module 213 will describe a virtual machine network card installation template (such as an Open Stack Heat installation template and a TOSCA installation template) for configuring the software and hardware resources (parameters) required by the redundant network. ) To the virtual basic resource management module 216 to request the virtual basic resource management module 216 to perform the installation of the virtual network card and bind the virtual network card to the backup network.

In step S406, the virtual basic resource management module 216 performs installation of the virtual network adapter of the backup network, and monitors the installation status.

After that, in step 407, it is determined whether the installation of the virtual network card is successful. If the installation fails, it will proceed to step S350, returning the message that the installation on the backup network is currently unavailable to the user, and ending the installation process. Conversely, if the virtual network card is successfully installed, a success message is sent to the network coordinator module 213.

After that, in step S408, the network coordinator module 213 analyzes the supply requirements to perform the supply configuration according to the supply requirements. Among them, the network coordinator module 213 calls the virtual network function management module 215, and the virtual network function management module 215 calls the IP dispatching module 218 to set a dedicated virtual network card MAC Address. At this time, the IP dispatching module 218 assigns the IP address of the available backup network to the virtual network card (that is, binds the dedicated IP location to the virtual network card MAC address).

In step S409, the network coordinator module 213 analyzes related parameters (such as the backup network name used by the virtual network card, the IP of the virtual network card, and the virtual network) in the installation requirements (building requirements). MAC address of Luca, physical network equipment identification code (ID) related to the backup network, cross-machine room virtual network Card connection requirements, etc.), and generate a cross-machine room virtual network card connection supply template for a single machine room. After that, the physical network device settings are sequentially performed for other computer rooms covered by the redundant network so that the MAC Address of this virtual network card can be connected to other computer rooms covered by the redundant network.

Next, it proceeds to step S410, which is a supply operation for a single computer room. Among them, the network coordinator module 213 will call the software-based network management module 214 to perform the cross-machine room virtual network card connection and installation process. At this time, the software-based network management module 214 configures the SDN network equipment and virtual network card parameters required by the software-defined network controller module 217 in the computer room. Thereafter, the software-defined network controller module 217 is used to open and connect the virtual network card across the computer room. For details of step S410, refer to FIG. 9.

Please refer to FIG. 9, which is a flowchart of a method for using a network coordinator module to connect and install virtual network cards across a computer room according to an embodiment of the present invention. In step S501, the network coordinator module 213 will cross a computer room. The virtual network card is connected to the installation template and sent to the software-based network management module 214.

In step S502, the software-based network management module 214 analyzes the supply requirements and confirms whether the physical network equipment resources related to the supply requirements are sufficient.

In step S504, the software-based network management module 214 confirms whether the software-defined network controller module 217 is operating normally and whether resources used by the backup network are reserved in the physical network device.

If the requirements analysis and resource confirmation are successful, it will proceed to step S505, at which time the software-based network management module 214 will configure a local software-defined network For the virtual network card related parameters required by the controller module 217, the software-defined network controller module 217 is called to perform the cross-computer room connection setting of the local physical software-defined network switch.

Conversely, if the demand analysis and resource confirmation fails, it will proceed to step S350, returning the message that the current backup network installation is not available to the user, and end the installation process.

Next, in step S506, the software-defined network controller module 217 performs cross-machine room backup node construction on the local physical network equipment (for example, a physical software-defined network switch) on the network equipment. Establish virtual network card connection settings and monitor network status.

After that, in step S507, it is confirmed whether the cross-computer room connection setting of the virtual network card is successful. If successful, it means that the automatic installation is complete.

Conversely, if the cross-machine room connection setting of this virtual network card fails, it will proceed to step S350, returning the message that the backup network installation is currently unavailable to the user, and ending the installation process.

The above-mentioned embodiments merely exemplify the principles, features, and effects of the present invention, and are not intended to limit the implementable scope of the present invention. Anyone who is familiar with this technology can perform the above operations without departing from the spirit and scope of the present invention. Modifications and changes to the implementation form. Any equivalent changes and modifications made by using the disclosure of the present invention should still be covered by the scope of patent application. Therefore, the scope of protection of the rights of the present invention should be as listed in the scope of patent application.

Claims (15)

A system for constructing a virtual backup network includes: a virtual backup network operation and presentation module, which receives a construction request for the virtual backup network; a network coordinator module, which Analyze the construction request to confirm whether the current network equipment resources in the computer room are sufficient to establish the virtual backup network, and for the network coordinator module to generate a provisioning template related to the virtual backup network ; A software-based network management module, which reserves the resources required to establish the virtual backup network among the network equipment resources; and an IP dispatch module, which is based on the provisioning template and the reserved resources , Set the IP address in the computer room to only bind with the virtual network card of a virtual machine in the computer room to complete the construction of the virtual backup network, and ignore the virtual machines from other computer rooms IP binding request of the virtual network card. A method for constructing a virtual backup network includes the following steps: (1) receiving a construction request for the virtual backup network; (2) confirming whether the current network equipment resources in the computer room are sufficient to establish The virtual backup network; (3) generating an installation template related to the virtual backup network; (4) reserve the virtual backup network among the network equipment resources according to the installation template And (5) according to the installation template and the reserved resources, set the IP address in the computer room to only bind with the virtual network card of a virtual machine in the computer room to Complete the construction of the virtual backup network, and ignore the IP binding request of the virtual network card of the virtual machine from other computer rooms. The method described in item 2 of the scope of patent application further includes setting the firewall rule of the virtual backup network to the virtual machine using the virtual backup network after the virtual backup network is completed. Can only communicate with other virtual machines using the virtual standby network. The method according to item 2 of the scope of patent application, wherein the network equipment resources include at least one of the following: heterogeneous SDN controller, homogeneous SDN controller, SDN virtual switch, SDN entity switch, and available IP Address. The method as described in any one of claims 2 to 4, wherein the installation template describes a network ID, a network name, an IP network segment, and a gate required for constructing the virtual backup network. At least one of the router IPs. The method according to any one of claims 2 to 4, wherein the installation template is an installation template conforming to the Open Stack Heat format or the TOSCA format. A system for constructing a virtual network card includes: a virtual machine network card operation and presentation module, which receives a construction request for one of the virtual network cards; a network coordinator module, which is based on the The establishment request generates a virtual network card installation template; a virtual basic resource management module that installs the virtual network card according to the virtual network card installation template; and an IP dispatch module, which Only bind the MAC address of the virtual network card to an IP address in a virtual standby network, and ignore the IP binding requirements from other computer rooms and other virtual machines. A method for constructing a virtual network card includes the following steps: (1) receiving a construction request for one of the virtual network cards; (2) generating a virtual network card for installation based on the construction request; (3) Install the virtual network card according to the installation template of the virtual network card; and (4) Only the MAC address of the virtual network card and an IP bit in a virtual backup network Address binding, regardless of IP binding requirements from other computer rooms and other virtual machines. The method according to item 8 of the scope of patent application, wherein step (1) includes providing a user interface for the user to input the establishment request for the virtual network card in the user interface, and querying the current What virtual backup networks are there. The method as described in item 8 of the scope of patent application, wherein step (2) includes configuring a resource for the construction request based on the construction request to generate a virtual network card installation template describing the resource. . The method according to item 10 of the scope of patent application, wherein the resource includes one or more of the following: the identification code of the virtual backup network, the name of the virtual backup network, and the virtual network card The MAC address. The method according to item 8 of the scope of patent application, wherein the virtual network card installation template is an installation template conforming to the Open Stack Heat format or the TOSCA format. According to the method described in any one of claims 8 to 12, after step (4), the method further includes the following steps: (5) Analyze related parameters of the construction request to generate a cross-machine room virtual network card connection For the template. The method according to item 13 of the scope of patent application, wherein the relevant parameters include at least one of the following: the name of the virtual backup network, the identification code of the physical network device related to the virtual backup network, Cross-machine room connectivity requirements of the IP address bound to the virtual network card, the MAC address of the virtual network card, and the virtual network card. The method described in item 13 of the scope of the patent application further includes installing a template for the virtual network card connection across the computer room, and using a software-defined network controller module to set the virtual network card to be connected across the computer room.