技术领域technical field
本发明属于SDN网络环境构建技术领域;具体涉及一种SDN虚拟网络环境的构建方法及SDN虚拟网络环境。The invention belongs to the technical field of SDN network environment construction; in particular, it relates to a method for constructing an SDN virtual network environment and the SDN virtual network environment.
背景技术Background technique
应用服务的种类与需求在互联网技术与传统行业的逐渐融合中愈发变得繁复并且呈现多样化,尤其是新的业务和应用场景要求要有不断提高的服务质量与之适配。在此背景下,在设计之处只考虑到网络连通性的,基于TCP/IP的分布式传统互联网暴露出越来越多的缺点。为了解决弥补这些缺陷不足,许多新的算法、协议和网络结构被研究人员设计和提出出来。但是,要想获得可靠的实验数据来为这些网络创新技术在实网络中的应用提供支撑,就需要建设一些专门的网络试验平台,供网络创新研究人员进行相关网络创新技术的实验测试。The types and requirements of application services have become increasingly complex and diversified in the gradual integration of Internet technology and traditional industries, especially new business and application scenarios require continuously improved service quality to adapt to them. In this context, the TCP/IP-based distributed traditional Internet, which was designed only with network connectivity in mind, has exposed more and more shortcomings. In order to solve these deficiencies, many new algorithms, protocols and network structures have been designed and proposed by researchers. However, in order to obtain reliable experimental data to provide support for the application of these network innovation technologies in real networks, it is necessary to build some special network test platforms for network innovation researchers to conduct experimental tests on related network innovation technologies.
网络功能虚拟化(Network Function Virtualization,NFV),是以降低昂贵的网络设备成本为目的,通过x86等通用性硬件及虚拟化技术的使用,以使很多的软件处理功能得到承载。借助软硬件的解耦及功能抽象等技术手段,可以使相关网络功能的实现不再依赖于专用硬件设备,实现资源的灵活共享,使新业务的快速开发和部署得到实现。软件定义网络(Software Defined Network,SDN)是一种通过将网络的控制平面与数据平面进行分离,从而就可以借助集成在控制器中开放的可编程接口去实现对底层硬件设备的可编程化控制,实现灵活按需的对网络资源状态和结构进行动态的调配新型网络架构。在传统网络中,因为在每个路由器或交换机上都有各自不同的控制转发逻辑在运行着,因此要想对这些设备进行虚拟化就要涉及到分布式操作,会比较复杂。Network Function Virtualization (Network Function Virtualization, NFV) aims to reduce the cost of expensive network equipment, through the use of general-purpose hardware such as x86 and virtualization technology, so that many software processing functions can be carried. With the help of technical means such as software and hardware decoupling and functional abstraction, the realization of related network functions no longer depends on dedicated hardware devices, flexible sharing of resources, and rapid development and deployment of new services can be realized. Software Defined Network (Software Defined Network, SDN) is a method that separates the control plane of the network from the data plane, so that the programmable control of the underlying hardware devices can be realized by means of the open programmable interface integrated in the controller. , to realize flexible and on-demand dynamic allocation of network resource status and structure to a new network architecture. In a traditional network, since each router or switch has its own control and forwarding logic running, virtualizing these devices involves distributed operations, which will be more complicated.
传统的基于TCP/IP的网络架构的部署实现,主要依赖于一些专用的硬件设备,但是,这样的部署方案,存在着功能固化无法满足创新实现要求,以及需要大量资金投入的缺点。同时,网络环境与物理硬件的紧密耦合,导致了复杂的网络场景和高效的资源复用无法实现。SDN/NFV技术提供的灵活,动态的可编程新特性契合了网络创新研究人员测试验证新算法,新协议,新的网络架构的自由,以及对于网络便利的操作需求。同时,为了应对网络创新实验实施过程中对于网络环境多样,多变的需求。基于SDN/NFV技术的网络创新实验平台具备了更加灵活,开放,简单的对网络功能的虚拟化能力,在应对实验者需要按需分配虚拟实验资源并需要将这些资源与服务灵活自动编排的问题时,SDN提供了动态调用底层物理资源的功能。运用SDN/NFV技术构建部署实现的网络测试平台还具有把高度自定义的虚拟网络拓扑环境构建在有限的基础设施上的能力,从而可以对不同的网络实验环境进行适配。The deployment of the traditional TCP/IP-based network architecture mainly relies on some dedicated hardware devices. However, such a deployment solution has the disadvantages of fixed functions that cannot meet the requirements of innovative implementation, and requires a large amount of capital investment. At the same time, the tight coupling between the network environment and physical hardware has resulted in the impossibility of realizing complex network scenarios and efficient resource reuse. The flexible and dynamically programmable new features provided by SDN/NFV technology meet the freedom of network innovation researchers to test and verify new algorithms, new protocols, and new network architectures, as well as the convenient operation requirements for networks. At the same time, in order to cope with the diverse and changing needs of the network environment during the implementation of network innovation experiments. The network innovation experiment platform based on SDN/NFV technology has a more flexible, open, and simple virtualization capability for network functions, in response to the problem that experimenters need to allocate virtual experiment resources on demand and need to flexibly and automatically arrange these resources and services When , SDN provides the function of dynamically invoking the underlying physical resources. The network test platform implemented by using SDN/NFV technology to build and deploy also has the ability to build a highly customized virtual network topology environment on a limited infrastructure, so that it can be adapted to different network experiment environments.
发明内容Contents of the invention
本发明提供了一种SDN虚拟网络环境的构建方法及SDN虚拟网络环境;对网元功能进行抽象,并且通过引入虚拟网元的概念进行SDN网络中网元的构建,使SDN网络的可迁移性和可重构性大大增强,能够对不同的网络实验环境进行适配。The present invention provides a method for constructing an SDN virtual network environment and an SDN virtual network environment; the network element function is abstracted, and the network element in the SDN network is constructed by introducing the concept of a virtual network element, so that the SDN network can be migrated The reconfigurability and reconfigurability are greatly enhanced, and it can be adapted to different network experiment environments.
本发明的技术方案是:一种SDN虚拟网络环境的构建方法,包括虚拟节点和虚拟链路的建立;所述虚拟节点是根据具有不同网络功能的设备进行虚拟构建得到,虚拟节点为虚拟控制器、虚拟交换机或虚拟主机;所述虚拟链路是根据不同设备之间的通信方式虚拟构建得到,其中通信方式为有线方式或无线方式;针对目标网络环境,构建与其对应的虚拟网络环境:首先虚拟构建虚拟节点,虚拟节点与目标网络环境中的设备相对应;然后构建虚拟链路,虚拟链路与目标环境中的设备通信向对应;最终得到与目标网络环境相对应的虚拟网络实验环境。The technical solution of the present invention is: a method for constructing an SDN virtual network environment, including the establishment of virtual nodes and virtual links; the virtual nodes are obtained by virtual construction based on devices with different network functions, and the virtual nodes are virtual controllers , a virtual switch or a virtual host; the virtual link is obtained by virtual construction according to the communication mode between different devices, wherein the communication mode is a wired mode or a wireless mode; for the target network environment, a virtual network environment corresponding to it is constructed: first virtual Build a virtual node, which corresponds to the device in the target network environment; then build a virtual link, which corresponds to the communication direction of the device in the target environment; finally get a virtual network experiment environment corresponding to the target network environment.
更进一步的,本发明的特点还在于:Furthermore, the present invention is characterized in that:
其中一个虚拟节点上构建多个与目标网络环境中相对应的设备,且多个设备具有相同或不同的功能类型。Multiple devices corresponding to the target network environment are built on one of the virtual nodes, and the multiple devices have the same or different function types.
其中多个虚拟节点共同构建一个与目标网络环境中相对应的设备。Among them, multiple virtual nodes jointly construct a device corresponding to the target network environment.
其中虚拟链路包括对QoS、带宽和时延进行指定。The virtual link includes specifying QoS, bandwidth and delay.
其中虚拟节点还包括虚拟网关,将虚拟网关与虚拟交换机连接,并使通过一条虚拟链路连通外部网络。The virtual node also includes a virtual gateway, which connects the virtual gateway to the virtual switch and connects to the external network through a virtual link.
本发明的另一技术方案是:一种SDN虚拟网络环境,该虚拟网络环境根据权利要求1所述的方法构建得到,包括一个虚拟控制器,虚拟控制器通过虚拟链路连接一个或多个虚拟交换机,每个虚拟交换机通过虚拟链路连接一个或多个虚拟主机。Another technical solution of the present invention is: an SDN virtual network environment, the virtual network environment is constructed according to the method described in claim 1, including a virtual controller, and the virtual controller is connected to one or more virtual Each virtual switch is connected to one or more virtual hosts through a virtual link.
其中虚拟控制器为多个,且虚拟控制器之间通过虚拟链路连接。There are multiple virtual controllers, and the virtual controllers are connected through virtual links.
其中任意一个虚拟交换机通过虚拟链路连接虚拟网关,虚拟网关通过虚拟链路接入外网。Any one of the virtual switches is connected to the virtual gateway through the virtual link, and the virtual gateway is connected to the external network through the virtual link.
与现有技术相比,本发明的有益效果是:通过引入虚拟节点和虚拟链路的概念对SDN网络中的网元进行构建。并通过对网元功能的抽象,使网元的构建完全可以通过软件定义的方式实现。该方法中,在对真实物理网络中的设备功能进行了分析整合基础上,引入了和真实物理设备对应的虚拟网元的概念,将虚拟网元抽象细分为实现各种网络功能所必须的虚拟节点和虚拟设备间进行通信所必需的虚拟链路,并且在虚拟环境中构建与目标网络环境中对应的虚拟节点,并且构建相应的虚拟链路实现其虚拟连接关系,从而得到与目标网络环境相对应的虚拟网络试验环境;本方法构建与真实的网络实验环境功能相同的虚拟网络环境,该本方法区别于已有的基于真实固件设备的SDN网络构建方法,网络的可迁移性和可重构性大大增强,大大降低了网络的部署构建成本。Compared with the prior art, the invention has the beneficial effects of constructing network elements in the SDN network by introducing the concepts of virtual nodes and virtual links. And through the abstraction of network element functions, the construction of network elements can be realized in a software-defined manner. In this method, on the basis of analyzing and integrating the device functions in the real physical network, the concept of virtual network elements corresponding to real physical devices is introduced, and the abstraction of virtual network elements is subdivided into the network elements necessary to realize various network functions. The virtual link necessary for communication between the virtual node and the virtual device, and the virtual node corresponding to the target network environment is constructed in the virtual environment, and the corresponding virtual link is constructed to realize its virtual connection relationship, so as to obtain the target network environment Corresponding virtual network test environment; this method constructs a virtual network environment with the same function as the real network test environment. This method is different from the existing SDN network construction method based on real firmware devices, and the network is portable and reproducible. The structure is greatly enhanced, and the cost of network deployment and construction is greatly reduced.
更进一步的,构建虚拟节点更加灵活多变;当设备功能简单及对性能要求低的时候,一个虚拟节点能够对应多个功能相同或不同的虚拟设备;当设备对性能要求较高的时候,多个虚拟节点共同构建一个虚拟设备,同时保证了该虚拟设备能够达到实际硬件设备的性能。Furthermore, building a virtual node is more flexible and changeable; when the device has simple functions and low performance requirements, a virtual node can correspond to multiple virtual devices with the same or different functions; when the device has high performance requirements, multiple virtual nodes together to build a virtual device, while ensuring that the virtual device can achieve the performance of the actual hardware device.
更进一步的,在传统网络中通过VLAN将一台局域网交换机从逻辑上分为多个虚拟交换机,因此根据实际情况,在虚拟环境中实现相应的连接方式。Furthermore, in a traditional network, a LAN switch is logically divided into multiple virtual switches through VLAN, so according to the actual situation, a corresponding connection mode is realized in the virtual environment.
更进一步的,对QoS、带宽和时延性能进行选择性制定,能够使虚拟节点之间实现虚拟网络链路技术进行通信,并且能够为在逻辑上连接的虚拟节点间正常通信的进行提供保证。Furthermore, selective formulation of QoS, bandwidth and delay performance can enable virtual network link technology to communicate between virtual nodes, and can provide guarantee for normal communication between logically connected virtual nodes.
更进一步的,通过设置虚拟网关,实现虚拟网络实验环境接入外网。Furthermore, by setting up a virtual gateway, the virtual network experiment environment is connected to the external network.
本发明的有益效果还在于:通过上述方法构建得到的虚拟节点和虚拟链路,根据目标网络环境的不同,可以有不同的结构,其形式灵活多变,具有很好的可变性。The beneficial effect of the present invention is also that: the virtual nodes and virtual links constructed by the above method can have different structures according to different target network environments, and their forms are flexible and changeable, and have good variability.
附图说明Description of drawings
图1为本发明构建方法的流程示意图;Fig. 1 is a schematic flow chart of the construction method of the present invention;
图2为本发明中虚拟网络实验环境的拓扑图;Fig. 2 is the topological diagram of virtual network experiment environment among the present invention;
图3为本发明中在OpenStack虚拟环境中构建与图2对应的虚拟网络实验环境;Fig. 3 builds the virtual network experiment environment corresponding to Fig. 2 in the OpenStack virtual environment among the present invention;
图4为本发明中SDN虚拟网络环境的拓扑图一;Fig. 4 is the topological diagram one of SDN virtual network environment in the present invention;
图5为本发明中SDN虚拟网络环境的拓扑图二;Fig. 5 is the topology diagram two of the SDN virtual network environment in the present invention;
图6为本发明中SDN虚拟网络环境的拓扑图三。FIG. 6 is the third topology diagram of the SDN virtual network environment in the present invention.
具体实施方式Detailed ways
下面结合附图和具体实施例对本发明的技术方案进一步说明。The technical solution of the present invention will be further described below in conjunction with the accompanying drawings and specific embodiments.
本发明提供了一种SDN虚拟网络环境的构建方法,如图1所示,通过借鉴SDN/NFV的理念,在SDN网络的构建部署中引入和真实物理网络设备对应的虚拟网元的概念,通过对真实物理网络中设备功能的分析整合,将虚拟网元抽象细分为实现各种网络功能所必须的虚拟节点和虚拟设备间进行通信所必需的虚拟链路两部分,在物理服务器上构建出与真实的物理网元功能相同的虚拟网元,来进行SDN网络创新实验环境的部署和实现。The present invention provides a method for constructing an SDN virtual network environment. As shown in FIG. 1, by referring to the concept of SDN/NFV, the concept of a virtual network element corresponding to a real physical network device is introduced in the construction and deployment of an SDN network. Based on the analysis and integration of device functions in real physical networks, the virtual network elements are abstractly subdivided into two parts: virtual nodes necessary to realize various network functions and virtual links necessary for communication between virtual devices. The virtual network element with the same function as the real physical network element is used to deploy and realize the SDN network innovation experiment environment.
其中虚拟节点的抽象:向用户描述虚拟化节点的模型,是虚拟节点抽象中首先需要完成的工作,虚拟节点具体分为“一虚多”和“多虚一”两种,在实际的网络技术应用中比较常见的是“一虚多”模型,即在传统网络中通过VLAN将一台局域网交换机从逻辑上分为多个虚拟交换机;一些厂家的路由器也支持到多个虚拟路由器的实例化操作。类似地,虚拟节点能够被SDN虚拟化平台所生成和管理,并能完成物理节点到虚拟节点的映射。同时,转发表,不同节点间CPU等资源的相互隔离也由SDN网络虚拟化平台来实现。与此相反,在“多虚一”的架构模型中通过对多态物理设备中的资源进行组合,网络虚拟化创新实现平台可以向网络研究者提供呈现一个或多个虚拟设备。Among them, the abstraction of virtual nodes: describing the model of virtualized nodes to users is the first work that needs to be completed in the abstraction of virtual nodes. Virtual nodes are specifically divided into two types: "one virtual and many" and "multiple virtual and one". In actual network technology The "one virtual and many" model is more common in the application, that is, a LAN switch is logically divided into multiple virtual switches through VLAN in the traditional network; routers of some manufacturers also support the instantiation operation of multiple virtual routers . Similarly, virtual nodes can be generated and managed by the SDN virtualization platform, and can complete the mapping from physical nodes to virtual nodes. At the same time, the isolation of resources such as the forwarding table and CPU between different nodes is also realized by the SDN network virtualization platform. On the contrary, in the "many-virtual-one" architecture model, by combining resources in polymorphic physical devices, the network virtualization innovation implementation platform can present one or more virtual devices to network researchers.
在进行节点抽象的过程中,首先进行端口,CPU,转发表等虚拟节点上资源的隔离。在交换机与控制器握手时,SwitchFeatuers消息中物理OpenFlow交换机上的端口号被进行过滤后送给控制器,因此对于控制器而言,只有在逻辑上从属于本虚拟网络的端口是可见的。然后包括相应动作在内的流表被控制器下发,这些相应的动作被虚拟化平台映射成为多条流表项,只从属本网络切片的端口会对这些流表项进行转发。In the process of node abstraction, firstly isolate resources on virtual nodes such as ports, CPU, and forwarding tables. When the switch shakes hands with the controller, the port number on the physical OpenFlow switch in the SwitchFeatuers message is filtered and then sent to the controller. Therefore, for the controller, only the ports that logically belong to the virtual network are visible. Then the flow table including the corresponding actions is issued by the controller, and these corresponding actions are mapped into multiple flow entries by the virtualization platform, and only the ports belonging to the network slice will forward these flow entries.
具体的,虚拟节点根据网络功能不同的角度进行划分,可分为虚拟控制器,虚拟交换机,虚拟主机和虚拟网关等。虚拟机通常可以被用来构建实现这些虚拟网络设备,当然也可以采用Docker容器等其它技术方式来进行构建,在构建对设备实现的指定网络功能进行规划和描述。上述网络功能具体包括SDN网络的控制功能-控制器,数据的转发功能-交换机,虚网内本地IP地址的分配以及虚网内部节点连接外网时外网IP地址的分配功能-网关,数据的录入,接收等IO操作功能-虚拟主机,网络安全功能-防火墙。Specifically, virtual nodes are divided according to different aspects of network functions, and can be divided into virtual controllers, virtual switches, virtual hosts, and virtual gateways. Virtual machines can usually be used to build and realize these virtual network devices, of course, other technical methods such as Docker containers can also be used to build, and the specified network functions implemented by the device are planned and described in the construction. The above network functions specifically include the control function of the SDN network - the controller, the data forwarding function - the switch, the allocation of local IP addresses in the virtual network, and the allocation of external network IP addresses when the internal nodes of the virtual network are connected to the external network - gateways, data transfer Input, receiving and other IO operation functions-virtual host, network security function-firewall.
虚拟链路的抽象:在把虚拟化链路的模型描述给用户的基础上,虚拟链路抽象能够把虚拟节点间的连接恰当地表示出来。虚拟链路可以由物理交换机内部的一个通路组成,与实际的物理链路一一映射,也可以由多条物理链路和多台物理设备共同模拟。在VPN网络(虚拟专用网络)中,虚拟链路的实现则是通过隧道对数据分组的二次封装实现的。LSP标签的分发则实现模拟出了MPLS技术中的虚拟链路。在应对试验用户多样的实验拓扑需求的时候,SDN网络虚拟化平台要能够生成与无力脱贫完全解耦的逻辑拓扑,在应对解决这个问题的时候虚拟网元管理技术尤为重要。并且能够尽最大可能满足试验用户对于带宽等性能指标的需求。Abstraction of virtual link: On the basis of describing the model of virtual link to the user, the abstraction of virtual link can properly express the connection between virtual nodes. A virtual link can be composed of a channel inside a physical switch, which is mapped to an actual physical link one by one, or it can be simulated by multiple physical links and multiple physical devices. In the VPN network (virtual private network), the realization of the virtual link is realized through the secondary encapsulation of the data packet by the tunnel. The distribution of LSP labels simulates the virtual link in MPLS technology. When responding to the diverse experimental topology requirements of experimental users, the SDN network virtualization platform must be able to generate a logical topology that is completely decoupled from powerless poverty alleviation. Virtual network element management technology is particularly important when dealing with this problem. And it can meet the demands of test users for performance indicators such as bandwidth as much as possible.
相对于现实中网线的功能,为了实现虚拟节点之间通信而采用的虚拟网络链路技术,能够为在逻辑上连接的虚拟网元间正常通信的进行提供保证,在构建虚拟网链路时可以对包括QoS,带宽,时延等性能指标进行选择性的指定。数据平面和控制平面共同构成了实验网络中的虚网流量。不涉及控制管理的数据交换操作由数据平面的链路完成,而控制器对交换机之间的管理由控制平面的。Compared with the functions of network cables in reality, the virtual network link technology used to realize communication between virtual nodes can provide guarantee for normal communication between logically connected virtual network elements, and can be used when constructing virtual network links. Optionally specify performance indicators including QoS, bandwidth, and delay. The data plane and the control plane together constitute the virtual network traffic in the experimental network. The data exchange operation that does not involve control management is completed by the link of the data plane, and the management between the controller and the switch is performed by the control plane.
针对目标网络环境,构建与其对应的虚拟网络环境:首先构建虚拟节点,虚拟节点与目标网络环境中的设备相对应,虚拟节点的构建根据实际情况可选择多个虚拟节点对应一个目标网络环境设备,或者一个虚拟节点对应多个目标网络环境设备;然后构建虚拟链路,虚拟链路与目标环境中的设备通信相对应,实现虚拟节点之间的通信;最终得到与目标网络环境相对应的虚拟网络实验环境。Aiming at the target network environment, build the virtual network environment corresponding to it: first build a virtual node, which corresponds to the device in the target network environment. The construction of the virtual node can choose multiple virtual nodes corresponding to a target network environment device according to the actual situation. Or a virtual node corresponds to multiple target network environment devices; then build a virtual link, which corresponds to the device communication in the target environment, and realize communication between virtual nodes; finally obtain a virtual network corresponding to the target network environment lab environment.
下面对OpenStack虚拟环境中虚拟网络节点和虚拟链路之间的实现映射关系进行阐述。虚拟主机(vHost),虚拟交换机(vSwitch),虚拟控制器(vController)等虚拟节点的实现都由虚拟机来完成。虚拟节点间的联通通信则通过网络(network),子网(subnet)实现虚拟链路来完成。具体OpenStack虚拟环境和实验网络的对应关系如图3所示The implementation mapping relationship between virtual network nodes and virtual links in the OpenStack virtual environment is described below. Virtual nodes such as virtual host (vHost), virtual switch (vSwitch), and virtual controller (vController) are all implemented by virtual machines. Unicom communication among virtual nodes is accomplished through network and subnet to realize virtual links. The corresponding relationship between the specific OpenStack virtual environment and the experimental network is shown in Figure 3
依据OpenStack网络对象网络两层联通的实现原理,两层通信的实现只需要将虚拟主机和虚拟交换机接入统一网络对象中即可以实现。在部署实验环境构架实验网络的过程中,主要采用VxLAN隧道的模式来进行,虚拟节点之间的连接关系如图2。According to the realization principle of the two-layer communication of the OpenStack network object network, the realization of the two-layer communication can be realized only by connecting the virtual host and the virtual switch to the unified network object. In the process of deploying the experimental environment and building the experimental network, the VxLAN tunnel mode is mainly used. The connection relationship between virtual nodes is shown in Figure 2.
本发明通过上述方法构建得到的SDN虚拟网络环境,其基本结构具体有三种类型:进行通信的虚拟机处于同一计算节点,如图4所示;进行通信的虚拟机处于不同的计算节点,如图5所示;各个虚拟网元组成全局网并接入外网的连接方式,如图6所示。The present invention constructs the SDN virtual network environment obtained by the above method, and its basic structure specifically has three types: the virtual machine for communication is in the same computing node, as shown in Figure 4; the virtual machine for communication is in different computing nodes, as shown in Figure 4 5; each virtual network element forms a global network and connects to the external network, as shown in Figure 6.
进行通信的虚拟机处于同一计算节点,其结构为:虚拟控制器连接一个或多个虚拟交换机,并且每个虚拟交换机连接一个或多个虚拟主机。The communicating virtual machines are on the same computing node, and its structure is: a virtual controller is connected to one or more virtual switches, and each virtual switch is connected to one or more virtual hosts.
进行通信的虚拟机处于不同的计算节点,其具体结构为:虚拟控制器有多个,且互相通信,每个虚拟控制器的结构连接一个或多个虚拟交换机,并且每个虚拟交换机连接一个或多个虚拟主机。The virtual machines for communication are located on different computing nodes. The specific structure is: there are multiple virtual controllers and they communicate with each other. The structure of each virtual controller is connected to one or more virtual switches, and each virtual switch is connected to one or more virtual switches. Multiple virtual hosts.
各个虚拟网元组成全局网并接入外网的连接方式:在上述两种方式的基础上,在一个虚拟交换机上连接一个虚拟网关,然后通过一条虚拟链路连接外部网络,因此达到了该虚拟网元访问外网的目的。Each virtual network element forms a global network and connects to the external network: on the basis of the above two methods, a virtual gateway is connected to a virtual switch, and then connected to the external network through a virtual link, thus achieving the virtual The purpose of NEs accessing the extranet.
在虚拟环境下,在同一子网对象中接入虚拟网关和路由(Router),DHCP服务的提供,分配IP4地址给虚拟网关等操作便可以由子网来实现,加之由路由配置网关地址IP3,便可以将三层连通在虚拟网关与路由器之间实现;而与外部网络的联通,则可以通过路由配置外网地址IP1由静态路由的方式实现;对应到实验网络中,实现与外部网络的通信依赖虚拟网关即可,具体的连接关系如下图所示。以此类推,为了使虚拟控制器和虚拟交换机能分配到同一段IP地址,实现三层连通,进而实现虚拟控制器对虚拟交换机的管控,可以通过把它们二者接入同一个子网对象中来实现。In a virtual environment, accessing the virtual gateway and router (Router) in the same subnet object, providing DHCP services, and assigning IP4 addresses to the virtual gateway can be realized by the subnet. In addition, the gateway address IP3 is configured by the router, which is convenient The three-layer connection can be realized between the virtual gateway and the router; and the connection with the external network can be realized by configuring the external network address IP1 through routing and static routing; corresponding to the experimental network, the communication with the external network depends on The virtual gateway is sufficient, and the specific connection relationship is shown in the figure below. By analogy, in order to enable the virtual controller and the virtual switch to be assigned to the same segment of IP address, realize Layer 3 connectivity, and then realize the control of the virtual switch by the virtual controller, you can connect them to the same subnet object. accomplish.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810274426.4ACN108616386A (en) | 2018-03-29 | 2018-03-29 | A kind of construction method and SDN virtual network environments of SDN virtual network environments |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810274426.4ACN108616386A (en) | 2018-03-29 | 2018-03-29 | A kind of construction method and SDN virtual network environments of SDN virtual network environments |
| Publication Number | Publication Date |
|---|---|
| CN108616386Atrue CN108616386A (en) | 2018-10-02 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810274426.4APendingCN108616386A (en) | 2018-03-29 | 2018-03-29 | A kind of construction method and SDN virtual network environments of SDN virtual network environments |
| Country | Link |
|---|---|
| CN (1) | CN108616386A (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109542630A (en)* | 2019-01-29 | 2019-03-29 | 中国人民解放军火箭军工程大学 | A kind of mobile communication net network function virtual platform based on container cloud |
| CN109697328A (en)* | 2018-12-29 | 2019-04-30 | 昆山航宇华电电子科技有限公司 | The construction method of large-scale virtual Router Simulation system based on network training |
| CN109995641A (en)* | 2019-03-21 | 2019-07-09 | 新华三技术有限公司 | A kind of information processing method, calculate node and storage medium |
| WO2020103902A1 (en)* | 2018-11-23 | 2020-05-28 | 中兴通讯股份有限公司 | Method and device for realizing network slicing, and controller |
| CN111385236A (en)* | 2018-12-27 | 2020-07-07 | 北京卫达信息技术有限公司 | Dynamic defense system based on network spoofing |
| CN111416747A (en)* | 2020-03-27 | 2020-07-14 | 鹏城实验室 | Network fragmentation control method and network fragmentation system |
| CN112702269A (en)* | 2021-01-21 | 2021-04-23 | 国网新疆电力有限公司信息通信公司 | SDN and non-SDN intercommunication method and intercommunication system |
| CN112769600A (en)* | 2020-12-29 | 2021-05-07 | 新华三技术有限公司 | DHCP escape method, device, equipment and machine readable storage medium |
| CN113411296A (en)* | 2021-05-07 | 2021-09-17 | 上海纽盾科技股份有限公司 | Situation awareness virtual link defense method, device and system |
| CN113572652A (en)* | 2021-09-27 | 2021-10-29 | 之江实验室 | A Test Method for Wired Mesh Network |
| CN114465749A (en)* | 2021-09-28 | 2022-05-10 | 北京卫达信息技术有限公司 | Virtual gateway device based on network topology confusion and construction method |
| CN115412447A (en)* | 2022-08-19 | 2022-11-29 | 浪潮思科网络科技有限公司 | SDN-based service testing method, device and medium |
| CN116016164A (en)* | 2022-12-27 | 2023-04-25 | 商密信安(北京)科技有限公司 | A virtual service network construction method based on software-defined network |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104202266A (en)* | 2014-08-04 | 2014-12-10 | 福建星网锐捷网络有限公司 | Communication method, switch, controller and communication system |
| CN105207902A (en)* | 2015-10-13 | 2015-12-30 | 广州西麦科技股份有限公司 | Main-standby virtual gateway system and method based on SDN |
| CN105376133A (en)* | 2015-11-20 | 2016-03-02 | 南京优速网络科技有限公司 | Network experiment system based on virtualization technology and construction method |
| US20160149795A1 (en)* | 2014-11-25 | 2016-05-26 | Electronics And Telecommunications Research Institute | Overlay network-based original packet flow mapping apparatus and method therefor |
| CN106034077A (en)* | 2015-03-18 | 2016-10-19 | 华为技术有限公司 | A dynamic routing configuration method, device and system |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104202266A (en)* | 2014-08-04 | 2014-12-10 | 福建星网锐捷网络有限公司 | Communication method, switch, controller and communication system |
| US20160149795A1 (en)* | 2014-11-25 | 2016-05-26 | Electronics And Telecommunications Research Institute | Overlay network-based original packet flow mapping apparatus and method therefor |
| CN106034077A (en)* | 2015-03-18 | 2016-10-19 | 华为技术有限公司 | A dynamic routing configuration method, device and system |
| CN105207902A (en)* | 2015-10-13 | 2015-12-30 | 广州西麦科技股份有限公司 | Main-standby virtual gateway system and method based on SDN |
| CN105376133A (en)* | 2015-11-20 | 2016-03-02 | 南京优速网络科技有限公司 | Network experiment system based on virtualization technology and construction method |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20210089233A (en)* | 2018-11-23 | 2021-07-15 | 지티이 코포레이션 | How to implement network slicing, devices and controllers |
| EP3886493A4 (en)* | 2018-11-23 | 2022-08-17 | ZTE Corporation | METHOD AND DEVICE FOR ACHIEVING A NETWORK CUTTING AND CONTROL DEVICE |
| WO2020103902A1 (en)* | 2018-11-23 | 2020-05-28 | 中兴通讯股份有限公司 | Method and device for realizing network slicing, and controller |
| CN111225419A (en)* | 2018-11-23 | 2020-06-02 | 中兴通讯股份有限公司 | A method, device and controller for realizing network slicing |
| KR102653760B1 (en) | 2018-11-23 | 2024-04-01 | 지티이 코포레이션 | Network slicing implementation methods, devices and controllers |
| CN111225419B (en)* | 2018-11-23 | 2023-04-18 | 中兴通讯股份有限公司 | Method, device and controller for realizing network slicing |
| CN111385236A (en)* | 2018-12-27 | 2020-07-07 | 北京卫达信息技术有限公司 | Dynamic defense system based on network spoofing |
| CN109697328A (en)* | 2018-12-29 | 2019-04-30 | 昆山航宇华电电子科技有限公司 | The construction method of large-scale virtual Router Simulation system based on network training |
| CN109542630A (en)* | 2019-01-29 | 2019-03-29 | 中国人民解放军火箭军工程大学 | A kind of mobile communication net network function virtual platform based on container cloud |
| CN109995641B (en)* | 2019-03-21 | 2021-05-28 | 新华三技术有限公司 | Information processing method, computing node and storage medium |
| CN109995641A (en)* | 2019-03-21 | 2019-07-09 | 新华三技术有限公司 | A kind of information processing method, calculate node and storage medium |
| CN111416747B (en)* | 2020-03-27 | 2021-11-19 | 鹏城实验室 | Network fragmentation control method and network fragmentation system |
| CN111416747A (en)* | 2020-03-27 | 2020-07-14 | 鹏城实验室 | Network fragmentation control method and network fragmentation system |
| CN112769600A (en)* | 2020-12-29 | 2021-05-07 | 新华三技术有限公司 | DHCP escape method, device, equipment and machine readable storage medium |
| CN112769600B (en)* | 2020-12-29 | 2022-08-30 | 新华三技术有限公司 | DHCP escape method, device, equipment and machine readable storage medium |
| CN112702269A (en)* | 2021-01-21 | 2021-04-23 | 国网新疆电力有限公司信息通信公司 | SDN and non-SDN intercommunication method and intercommunication system |
| CN113411296A (en)* | 2021-05-07 | 2021-09-17 | 上海纽盾科技股份有限公司 | Situation awareness virtual link defense method, device and system |
| CN113411296B (en)* | 2021-05-07 | 2022-08-26 | 上海纽盾科技股份有限公司 | Situation awareness virtual link defense method, device and system |
| CN113572652A (en)* | 2021-09-27 | 2021-10-29 | 之江实验室 | A Test Method for Wired Mesh Network |
| CN114465749B (en)* | 2021-09-28 | 2022-11-15 | 北京卫达信息技术有限公司 | Virtual gateway device based on network topology confusion and construction method |
| CN114465749A (en)* | 2021-09-28 | 2022-05-10 | 北京卫达信息技术有限公司 | Virtual gateway device based on network topology confusion and construction method |
| CN115412447A (en)* | 2022-08-19 | 2022-11-29 | 浪潮思科网络科技有限公司 | SDN-based service testing method, device and medium |
| CN115412447B (en)* | 2022-08-19 | 2024-05-24 | 浪潮思科网络科技有限公司 | Service testing method, device and medium based on SDN |
| CN116016164A (en)* | 2022-12-27 | 2023-04-25 | 商密信安(北京)科技有限公司 | A virtual service network construction method based on software-defined network |
| Publication | Publication Date | Title |
|---|---|---|
| CN108616386A (en) | A kind of construction method and SDN virtual network environments of SDN virtual network environments | |
| CN114363021B (en) | Network target range system, virtual network implementation method and device of network target range system | |
| CN108123818B (en) | A simulation method for flexible and scalable fusion of virtual and real networks | |
| CN103346981B (en) | Virtual switch method, relevant apparatus and computer system | |
| CN112311606B (en) | Method for constructing virtual-real decoupling simulation network | |
| CN105407140B (en) | A kind of computing resource virtual method of networking test system | |
| CN110830357A (en) | Multi-cloud virtual computing environment provisioning using advanced topology description | |
| CN103997513B (en) | A Programmable Virtual Network Service System | |
| CN108737272B (en) | A high-performance routing and forwarding method in cloud computing | |
| Dixon et al. | Software defined networking to support the software defined environment | |
| CN103595772A (en) | Cloud data center network deployment scheme based on virtual router | |
| CN112039682A (en) | Application and practice method of software-defined data center in operator network | |
| WO2017173952A1 (en) | Method, device, and system for centralizing management of virtual machines and implementing communications between virtual machines | |
| CN103259735A (en) | Communication method of programmable virtualized router based on NetFPGA | |
| CN107003860B (en) | A software-defined network controller and its creation method | |
| CN108111383A (en) | A kind of cross-domain container virtual network construction method based on SDN | |
| CN108123819B (en) | A Simulation Method for Seamless Integration of Virtual and Real Networks | |
| US11050647B1 (en) | Simulation-based cross-cloud connectivity checks | |
| WO2016159113A1 (en) | Control device, control method, and program | |
| JP7113006B2 (en) | Distributed Customer Premises Equipment | |
| Huang et al. | Automatical end to end topology discovery and flow viewer on SDN | |
| CN111711536A (en) | Method for constructing firewall test environment under cloud architecture | |
| CN120281602B (en) | Network intercommunication method, system, electronic device, storage medium and program product | |
| Markowski et al. | Software defined networking research laboratory-experimental topologies and scenarios | |
| Sekigawa et al. | Toward a cloud-native telecom infrastructure: Analysis and evaluations of kubernetes networking |
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication | Application publication date:20181002 |