Network communication method and network communication architectureTechnical Field
The present invention relates to the field of network communications, and in particular, to a network communication method and a network communication architecture.
Background
With the development of the times, the IT system plays a very important role in daily operation and maintenance of each department unit. However, the existing IT system has the following disadvantages due to the limitation of the data center: 1. the investment cost is high, hardware equipment is not fully utilized due to the construction mode of a chimney-type server island, and the construction cost and the system complexity are greatly increased by the traditional scheme for improving the usability of an application system; 2. the management is complex, the efficiency is low, along with the increasing number of servers, an IT department often needs to manage various devices, various operating system platforms and various applications, and the maintenance of the existing application system platform is a major challenge; 3. the operation and maintenance difficulty is high, the operation environment system needs frequent system maintenance, but the operation needs continuous and uninterrupted operation, so that only a little time is left for IT management personnel to maintain and upgrade equipment, in addition, the operation system needs to implement regular backup on data, and along with the increase of data volume, how to implement quick backup and recovery becomes a difficult problem which troubles the IT management personnel; 4. the operation cost is high; the increasing number of servers and storage devices greatly increases the operation and management cost of other resources including machine room space, heat dissipation, power supply and the like, besides the increase of hardware purchasing cost; 5. data security cannot be guaranteed.
Disclosure of Invention
The invention aims to solve the problems in the prior art and provides a network communication method and a network communication architecture with higher security guarantee.
The invention relates to a network communication method, which comprises the following steps: after receiving a service request sent by a client, a load balancing server sends the service request to a management node of a corresponding type in a management node cluster according to the request type; the cluster arbitration node determines a corresponding service request processing strategy according to the acquired working state of the management node receiving the service request, and synchronizes the service request processing result to other management nodes in the management node cluster, wherein the request types comprise: a system management request, a safety management request, an audit service request and a query service request; the types of the management nodes comprise a system management node, a safety management node, an audit management node and a query management node,
the network service addresses of the management nodes are configured on the load balancing server in advance.
Preferably, the management node operating state includes: the management nodes are normal and abnormal, wherein the abnormal management nodes comprise that the CPU utilization rate of the management nodes is larger than an early warning value, the service request quantity of the management nodes is larger than a preset quantity, and the management nodes crash,
preferably, the process that the cluster arbitration node determines the corresponding service request processing policy according to the acquired working state of the management node receiving the service request, and synchronizes the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is normal, the cluster arbitration node indicates the management node receiving the service request to process the service request, the management node synchronizes the service request processing result to other management nodes in the management node cluster through the cluster arbitration node, the cluster arbitration node determines a corresponding service request processing strategy according to the obtained working state of the management node receiving the service request, and the process of synchronizing the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is as follows: if the CPU utilization rate is greater than the early warning value or the service request quantity is greater than the preset quantity, the cluster arbitration node selects a corresponding standby management node and migrates the service request to the selected standby management node for processing, the standby management node synchronizes the service request processing result to other management nodes in the management node cluster through the cluster arbitration node, the cluster arbitration node registers the network service address of the standby management node to the load balancing server, the cluster arbitration node determines a corresponding service request processing strategy according to the acquired management node working state for receiving the service request, and the process of synchronizing the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is crash, the cluster arbitration node selects one management node from the same type of management nodes or other types of management nodes as a target management node, all the service requests on the crash management nodes are transferred to the target management node for processing, and the target management node synchronizes the processing result of the service requests to other management nodes in the management node cluster through the cluster arbitration node.
Preferably, when different types of management nodes communicate, corresponding data communication encryption modes are respectively adopted, where the data communication encryption modes include: symmetric encryption and asymmetric encryption.
Preferably, the system comprises a virtualization base platform management server, a virtual server cluster, a data center storage server and a data security server, wherein the virtualization base platform management server is used for uniformly managing virtualization resources on a virtualization base platform and distributing the virtualization resources to the virtualization server cluster;
the virtualization server cluster is used for configuring a network routing strategy and a storage address for a virtualization resource;
the data center storage server is used for storing the virtualized resources according to the configured network routing strategy and the storage address;
the data security server is used for respectively providing security services for the virtualization base platform management server, the virtual server cluster and the data center storage server, and ensuring normal and stable operation of the virtualization base platform management server, the virtual server cluster and the data center storage server.
Preferably, a load balancer is further arranged between the virtual server cluster and the data center storage server.
Preferably, the virtualized server cluster configures the routing policy according to the load balancer, and the routing policy is an intelligent balanced routing policy.
Preferably, the data center storage server adopts a dual-activity data center architecture.
Preferably, the type of the operating system adopted by the data center storage server is a cloud computing operating system with a dynamic architecture.
Compared with the prior art, the invention has the following advantages: the invention relates to a data center virtualization architecture system, which adopts a virtualization foundation platform management server, a virtual server cluster and a data center storage server to virtualize a data center of an IT system, uniformly manages, operates and maintains IT foundation resources and applications in a virtualization mode, quickly allocates calculation and storage resources for new applications from the existing virtual server cluster, and can expand and configure network routing strategies and storage addresses for original applications to store virtualized resources without reinstalling and deploying applications, so that the applications are expanded flexibly and quickly, basic physical resources can be dynamically added at any time, the resource utilization rate is improved, maintenance management operation is simplified, and the service continuity is improved; meanwhile, the data security server provides a security interaction system for the virtualization base platform management server, the virtual server cluster and the data center storage server, and normal and stable operation of the virtualization base platform management server, the virtual server cluster and the data center storage server is guaranteed.
Detailed Description
The present invention will be described in further detail with reference to the following detailed description so that the above objects, features and advantages of the invention can be more clearly understood.
The invention relates to a network communication method, which comprises the following steps: after receiving a service request sent by a client, a load balancing server sends the service request to a management node of a corresponding type in a management node cluster according to the request type; the cluster arbitration node determines a corresponding service request processing strategy according to the acquired working state of the management node receiving the service request, and synchronizes the service request processing result to other management nodes in the management node cluster, wherein the request types comprise: a system management request, a safety management request, an audit service request and a query service request; the types of the management nodes comprise a system management node, a safety management node, an audit management node and a query management node,
the network service addresses of the management nodes are configured on the load balancing server in advance.
The management node working state comprises the following steps: the management nodes are normal and abnormal, wherein the abnormal management nodes comprise that the CPU utilization rate of the management nodes is larger than an early warning value, the service request quantity of the management nodes is larger than a preset quantity, and the management nodes crash,
the cluster arbitration node determines a corresponding service request processing strategy according to the acquired working state of the management node receiving the service request, and the process of synchronizing the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is normal, the cluster arbitration node indicates the management node receiving the service request to process the service request, the management node synchronizes the service request processing result to other management nodes in the management node cluster through the cluster arbitration node, the cluster arbitration node determines a corresponding service request processing strategy according to the obtained working state of the management node receiving the service request, and the process of synchronizing the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is as follows: if the CPU utilization rate is greater than the early warning value or the service request quantity is greater than the preset quantity, the cluster arbitration node selects a corresponding standby management node and migrates the service request to the selected standby management node for processing, the standby management node synchronizes the service request processing result to other management nodes in the management node cluster through the cluster arbitration node, the cluster arbitration node registers the network service address of the standby management node to the load balancing server, the cluster arbitration node determines a corresponding service request processing strategy according to the acquired management node working state for receiving the service request, and the process of synchronizing the service request processing result to other management nodes in the management node cluster is as follows: if the working state of the management node receiving the service request is crash, the cluster arbitration node selects one management node from the same type of management nodes or other types of management nodes as a target management node, all the service requests on the crash management nodes are transferred to the target management node for processing, and the target management node synchronizes the processing result of the service requests to other management nodes in the management node cluster through the cluster arbitration node.
When different types of management nodes communicate, corresponding data communication encryption modes are respectively adopted, wherein the data communication encryption modes comprise: symmetric encryption and asymmetric encryption.
The system comprises a virtualization base platform management server, a virtualization server cluster, a data center storage server and a data security server, wherein the virtualization base platform management server is used for uniformly managing virtualization resources on a virtualization base platform and distributing the virtualization resources to the virtualization server cluster;
the virtualization server cluster is used for configuring a network routing strategy and a storage address for a virtualization resource;
the data center storage server is used for storing the virtualized resources according to the configured network routing strategy and the storage address;
the data security server is used for respectively providing security services for the virtualization base platform management server, the virtual server cluster and the data center storage server, and ensuring normal and stable operation of the virtualization base platform management server, the virtual server cluster and the data center storage server.
And a load balancer is also arranged between the virtual server cluster and the data center storage server.
And the virtualized server cluster configures the routing strategy according to the load balancer, and the routing strategy is an intelligent balanced routing strategy.
The data center storage server adopts a double-activity data center architecture.
The type of the operating system adopted by the data center storage server is a cloud computing operating system with a dynamic architecture.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.