The prior art is based on whole service traffics level for the monitoring of network, and the state based on different business stream is receivedCollection, perception and not having still for abilities such as the subdivision automatic routing tuning of Business Stream, protections on this basis, need handWork intervention, network element configuration one by one, the response time is slow, cannot it is automatic based on the abnormal conditions occurred in network, rapidly take phaseThe movement answered is to ensure service security and user experience.
User demand differentiation, customer service demand increasingly mobilism, increasingly personalization, quickly delivers new businessRequirement it is also higher and higher.
With the development of the application models such as cloud computing, mobile Internet and the change of discharge model, net is many times neededNetwork can actively " adaptations " service traffics, accomplish using with need and become, but due to current network in management be mainly towardsEquipment and non-traffic management are more visual angles based on node rather than global on visual angle, and therefore, producing can not much solveCertainly the problem of:
(1) service deployment is slow, and the online period is long:
Equipment dispersion, needs when service fulfillment to dispose by platform, manual configuration, and deployment workload is very big;
Business is numerous, and configuration is complicated, and manual configuration is easy error, and it is long to open the period;
(2) flow scheduling is difficult, lacks flexibility:
Due to lacking whole net visual angle, equipment is each based on routing and carries out routing, elect be shortest path and it is non-optimalPath, bandwidth availability ratio are low;Automatic, quickly adjustment Business Stream routing can not be changed according to Network status, user experience can notIt is protected.
Traditional policybased routing and traffic engineering, limitation is big, and configuration is complicated, can not dynamically adapting network state and applicationThe variation of demand.
(3) the O&M experience of network maintenance staff is poor:
Network management means are limited, higher to the skill requirement of network maintenance staff based on craft.
Flow and business are presented without visualization, cause failure not identify and position quickly, O&M difficulty is big.
(4) network open ability is weak, can not adapt to requirement of the business to network:
The device is complicated, and network closing, programmability is weak, is unable to satisfy business rapid deployment and flexible customization demand.
In conclusion metropolitan area network business application scenarios are also gradually fixed from traditional offer as network becomes increasingly complexNetwork service becomes flexible diversity business.These variations bring challenge to network and service management, need to pass through industryBusiness composer realizes flexible arranging service and network cooperating.
Summary of the invention
It is an object of the invention to overcome above-mentioned the deficiencies in the prior art, one kind is provided and is applied to carry out in Metropolitan Area Network (MAN)Network unified management and data configuration, can be applicable in the different producer's arranging service device of Metropolitan Area Network (MAN) of diversity network service.
In order to achieve the above objectives, the present invention is implemented as follows: a kind of different producer's arranging service device of Metropolitan Area Network (MAN), the composerApplied in Metropolitan Area Network (MAN), including application layer, access layer, operation layer, service layer, data Layer and physical layer, in which:
The application layer is used to initiate business access request to the access layer;
Access control, access authentication, signature of the business access request that the access layer initiates the application layer is recognizedCard, permission judge and the logic analysis of service routing, then initiates business processing request to the operation layer;
The operation layer is based on business access request design service template, and the network implementations of layout business simultaneously executes business hairThe network implementations of business are issued to service layer by the operation put;
The network implementations of business are flexibly adapted to by the service layer, to be compatible with the control of different manufacturers in Metropolitan Area Network (MAN)Device processed generates sending down service instruction, and sends physical layer for sending down service instruction;
The sending down service instruction that the data Layer is generated for service layer described in persistence;
Sending down service instruction is sent Metropolitan Area Network (MAN) Zhong Yi producer controller, different producer's controller pair by the physical layerSending down service instruction is handled, and the business access request of application layer is received, and the result of processing is passed sequentially through service layer, industryBusiness layer, access layer finally reach application layer, and relevant information is presented in application layer.
Preferably, it is open-minded to include at least the end PC, mobile terminal, resource management end, comprehensive network pipe end and service for the application layerSystem end.
Preferably, the operation layer includes at least model management module, service design module, service creation module, businessChange module, business removing module, policy management module and transaction management module.
Preferably, the model management: for defining the business of smallest particles degree, outgoing traffic model, and to outputBusiness model is managed;
The service design: for carrying out layout combination to the business model, service product is formed;
The service creation: for configuring relevant parameter, creating the example of business and issue according to business related productsIt executes;The business change: for modifying the parameter in the srvice instance disposed and issuing execution;
The business is deleted: for deleting the srvice instance disposed;
The tactical management: for the network operation state according to perception, service creation, business change, Yi Jiye are triggeredBusiness delete operation.
Transaction management: being managed the process of sending down service, change, delete operation, cooperates with the consistent of each network element operationProperty, integrality;
Preferably, the service layer includes at least authentication management module, authority management module, log management module, dataManagement module and workflow management module.
Preferably, the authentication management module guarantees entire management system for providing unified safety and Audit MechanismReliability service;
The grouping management of Role Management and equipment is formed two-dimensional combination for Authority and Domain Based Management management by authority management moduleManagement, the combination of these resources and operating right form two-dimensional Authority and Domain Based Management model, form new permission set, to divideAllocating system manages user, achievees the purpose that control system manages user right;
The log management module is used to record the security log of system, in operation log and system running log etc.Hold, the basis of Administrator system maintenance and audit is provided, it is ensured that system breaks down and can position rapidly after problem, log pipeIt manages while providing to the record of system log and operation log, inquiry, deleting function;
The data management module is for providing DB Backup, restoring function;
The whole process that the workflow management module is used to execute business is managed.
Preferably, the data Layer includes at least data cached module, business data module and data conversion module.
Preferably, the data of access for being carried out unified conversion by the data conversion module;
The data cached module is used to data cached store various;
The business data module is for muchly storing business datum.
Preferably, the physical layer includes at least server, network and database.
Preferably, the physical layer is provided with REST api interface, the different producer control that can be flexibly adapted in docking Metropolitan Area Network (MAN)Device processed.
Beneficial effects of the present invention: composer of the invention realizes the flexible layout of metropolitan area network business, various to Metropolitan Area Network (MAN)Abstract and encapsulation, the flexible combination of Internet resources and network capabilities provide the api interface of standard for the exploitation of business, openNetwork capabilities supports customized development;Variation automated tuning network based on business, network, realizes scheduled business and networkStrategy ensures that each network element cooperates, shields underlying device difference, provides automation, intelligent O&M means;General pumping is providedAs interface, it is flexibly adapted to the SDN controller of docking different manufacturers by REST api interface, realizes that composer and controller are quickDocking.
Specific embodiment
Below in conjunction with the attached drawing in the embodiment of the present application, technical solutions in the embodiments of the present application carries out clear, completeSite preparation description, it is clear that described embodiments are only a part of embodiments of the present application, instead of all the embodiments.It is based onEmbodiment in the application, it is obtained by those of ordinary skill in the art without making creative efforts all otherEmbodiment shall fall in the protection scope of this application.
As shown in Figure 1-Figure 3, the different producer's arranging service device of a kind of Metropolitan Area Network (MAN), the composer are applied in Metropolitan Area Network (MAN), metropolitan areaNet refers to that Metropolitan Area Network (MAN) (Metropolitan Area Network) is the computer communication established in a city scopeNet.The composer includes application layer, access layer, operation layer, service layer, data Layer and physical layer, in which:
The application layer is used to initiate business access request to the access layer;Here service request be move network service orOpen-minded, change or the deletion of person's fixed network services, specifically, for example the mutual of a 100M bandwidth is opened in the request of a certain corporate clientIt networks special line, or the internet special line raising speed of original 20M bandwidth is changed to 100M bandwidth or a certain mobile subscriber thinksOpen the flow monthly business etc. of mobile phone.
Access control, access authentication, signature of the business access request that the access layer initiates the application layer is recognizedCard, permission judge and the logic analysis of service routing, then initiates business processing request to the operation layer;
The operation layer carries out the relevant flow processing of business, and then issuing service processes request to service layer, i.e., describedOperation layer is based on business access request design service template, arranges the network implementations of business and executes the operation of business granting,The network implementations of business are issued to service layer;
Business processing request is flexibly adapted to by the service layer, to be compatible with the controller of different manufacturers in Metropolitan Area Network (MAN),Sending down service instruction is generated, and sends physical layer for sending down service instruction;
Sending down service instruction of the data Layer for being generated described in persistence in the service layer;
Sending down service instruction is sent Metropolitan Area Network (MAN) Zhong Yi producer controller, different producer's controller pair by the physical layerSending down service instruction is handled, and the business access request of application layer is received, and the result of processing is passed sequentially through service layer, industryBusiness layer, access layer are finally sent to application layer, and relevant information is presented in application layer.
Wherein, different producer's controller refers to the controller of different manufacturers production, and devices from different manufacturers here includes Huawei, inIt is emerging, the telecommunication apparatus such as Bell and Cisco manufacturer.
Specifically, the application layer includes at least the end PC, mobile terminal, resource management end, comprehensive network pipe end and services open-mindedSystem (referred to as taking open system) end, wherein application layer (is supplied to other producers or operator is connect by northbound interface accessThe interface for entering and managing, i.e., the interface provided upwards) arrive access layer.
Wherein, resource management end is for resource data needed for obtaining service fulfillment;Comprehensive network pipe end is for obtaining networkTopology, network element state information are realized the collection of network resource information, are presented;Service release system end for receive service fulfillment,The instruction such as change and deletion.
Northbound interface further includes WEB U/I interface, and WEB U/I interface is used to provide API opening, from service interface, realizes netNetwork resource checks, service operation condition monitoring, network performance monitoring, from functions such as services.By northbound interface, the present invention can be withThe form of software programming calls various Internet resources;The resource status of control whole network, and United Dispatching is carried out to resource.
The operation layer includes model management module, service design module, service creation module, business change module, industryBe engaged in removing module, policy management module and transaction management module cooperative cooperating realize, service request based on user's input andService design template arranges the network implementations of business and executes the operation of business granting, carries out to the Life cycle of businessManagement.
Specifically, the model management: (business of smallest particles degree refers to basis to the business for defining smallest particles degreeThe business that can not be split again), outgoing traffic model, and the business model of output is managed;The service design: it is used forLayout combination is carried out to the business model, forms service product;The service creation: being used for according to business related products,Relevant parameter is configured, the example of business is created and issues execution;The business change: for in the srvice instance disposedParameter is modified and issues execution;The business is deleted: for deleting the srvice instance disposed and issuing execution;The strategy pipeReason: for the network operation state according to perception, service creation, business change and business delete operation, affairs pipe are triggeredReason: being managed the process of service creation, change, delete operation, cooperates with consistency, the integrality of each network element operation.
The operation layer further includes the service such as offer business and network resource management, is that service design and business granting prepareThe service resources module of resource, network resource module, Topology Management module, data acquisition module, data analysis module and eventMonitoring module.
Service resources module: inquiring and managed including service resources, including IP address, VPN, VLAN, AS, coding resourceDeng support and resource management system docking.Network resource module: including network node control, device configuration management, repeated linkConfiguration management, circuit configuration management, network topological diagram management etc..Topology Management module: for will be between the network element that managedThe information such as logical relation, the operating status of network element, link circuit resource service condition summarize presentation in a manner of figure or list, and mentionFor further accessing the application link of net element information.Data acquisition module: for receiving data that SDN equipment reports and storage is arrivedWork can simply be inquired and be handled to database, system user by these databases.Data analysis: for utilizingDistributed data base or distributed computing cluster converge to carry out common analysis and classification to the mass data of storage in the innerIt is total etc., to meet most of common analysis demands;Event-monitoring module: for handle emerged in operation provided with business,The detection and diagnosis of operational administrative, the relevant various anomalous events of operation and maintenance and failure.
As shown in Fig. 2, on the whole, the operation flow of operation layer is: with service design, service creation, business change, industryBusiness deletes lifecycle management and serves as theme, main with resource management, equipment management, model management, tactical management, transaction management etc.Module is wanted to cooperate.Model management module is interacted with service design module;Resource management, equipment management, tactical management,Transaction management module and service creation, business change, business removing module carry out information exchange respectively.
The service layer includes at least authentication management module, authority management module, log management module, data management moduleAnd workflow management module.
Wherein the authentication management module is for providing unified safety and Audit Mechanism, and guarantee entire management system canBy operation;The grouping management of Role Management and equipment is formed two-dimensional combination for Authority and Domain Based Management management by authority management moduleManagement, the combination of these resources and operating right form two-dimensional Authority and Domain Based Management model, form new permission set, to divideAllocating system manages user, achievees the purpose that control system manages user right;The log management module is for recording systemSecurity log, the contents such as operation log and system running log, provide Administrator system maintenance and audit basis, reallyInsurance system break down and problem after can position rapidly, log management provide simultaneously to the record of system log and operation log,Function is deleted in inquiry;The data management module is for providing DB Backup, restoring function;The workflow management module is usedIt is managed in the whole process that business executes.
The data Layer includes at least data cached module, business data module and data conversion module.The dataThe data of access for being carried out unified conversion by conversion module;The data cached module is used for various data cached progressStorage;The business data module is for muchly storing business datum.
The physical layer includes at least server, network and database.
The physical layer is provided with REST api interface, different producer's controller for being flexibly adapted in docking Metropolitan Area Network (MAN),The YANG model for calling controller configuration is realized across producer, cross-domain and controller docking across local network.
Treatment process of the lower service request of the invention in arranging service device is illustrated with an example below:
The user client of application layer sends the service request for opening the internet special line of 100M bandwidth, this businessRequest is sent to operation layer by access layer, right by service creation module after the operation layer receives this service requestThe specified corresponding metropolitan area network equipment of the internet private line service product of 100M, application configuration resource (such as port, IP address etc.) are matchedDevice parameter and service parameter are set, assembling REST api interface, which instructs and passes through southbound interface, is handed down to designated equipment execution.UnderSend out implementation procedure in, the implementation procedure that service layer operate service creation is managed, Logistics networks configuration consistency, completelyProperty.As specified all devices are completed to configure and feed back normal as a result, operation layer will be to the client feedback business of application layerOpen success;As one or more specified equipment does not complete configuration and feeds back abnormal as a result, operation layer will be to all devicesRolling back action is executed, and open-minded not successfully to client feedback business, subsequent will be followed up by maintenance personnel investigates configuration failureReason simultaneously solves the problems, such as.
The present invention is positioned at arranging service and network cooperating within the scope of Metropolitan Area Network (MAN), is described in detail below:
(1) arranging service: the flexible layout of metropolitan area business is realized, to the pumping of the various Internet resources of Metropolitan Area Network (MAN) and network capabilitiesAs and encapsulation, flexible combination provide the api interface of standard for the exploitation of business, open network ability, support customized development.
(2) network cooperating: the variation automated tuning network based on business, network realizes scheduled business and network strategy,It ensures that each network element cooperates, shields underlying device difference, automation, intelligent O&M means are provided.
In terms of Technical Architecture, composer has model-driven (design, operation separation), cross-domain layout, closed-loop control, in incognitoFive big features are docked in business framework, more producers:
Model-driven: using design and operation separation architecture, design state completes offline design and validation test, run mode intoRow automatic deployment and management.Design state complete resource import, service template design, the test and certification of resource and service template,Service template storage and distribution;Run mode is based on service template and decompose execution resource instancesization to realize the automatic portion of businessAdministration and life cycle management.
Cross-domain layout: composer realizes " end-to-end ", cross-domain arranging service and collaboration, according to business towards SDN networkTemplate issues and coordinates SDN layout task;SDN-C is responsible for SDN layout realization.
Closed-loop control: construct based on acquisition, analysis, strategy control closed loop, realize operation management automation, data acquisitionAnalysis module is responsible for data collection and analysis, and policy management module carries out event matches and strategy triggers, and sending down service module is responsible forStrategy execution.
Micro services framework: using the micro services framework of full mesh, realizing utility component, provides service registration hairWhile the utilities such as existing, authentication framework keep service module relatively independent, realize that the flexible combination of functional module avoids weightMultiple exploitation.
More producer's docking: it supports flexibly adaptation, the SDN controller of different manufacturers is docked by REST api interface, realizeDifferent producer's rapid abutting joint.
The above, the only specific embodiment of the application, but the protection scope of the application is not limited thereto, it is anyChange or replacement within the technical scope of the present application should all be covered within the scope of protection of this application.Therefore, this ShenProtection scope please should be subject to the protection scope in claims according to the disclosure and teachings of the above specification, belonging to the present inventionThe technical staff in field can also change and modify the above embodiment.Therefore, the invention is not limited to take off aboveThe specific embodiment shown and described should also be as falling into the protection of claim of the invention to some modifications and changes of inventionIn range.In addition, these terms are merely for convenience of description although using some specific terms in this specification, andIt does not form any restrictions to the present invention.