Traffic control method for address resolution protocol messages

An address resolution protocol and flow control technology, applied in the field of flow control of address resolution protocol packets, can solve the problems of preempting virtual machine traffic, affecting the availability of physical machines, and excessive virtual machines, preventing excessive token accumulation and preventing The effect of network resource contention and switch protection

Active Publication Date: 2014-12-24
ALIBABA GRP HLDG LTD
View PDF6 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this introduces a new problem: in the data center network, multiple VMs (Virtual Machines, virtual machines) are deployed on a physical machine node, and these virtual machines communicate with the external network or other virtual machines through the ARP protocol. addressing; if an attacker maliciously constructs a large number of ARP packets inside the virtual machine and sends them to the network, there will be a large number of ARP packets in the network, which will overload the CPU of the upper-layer switch, causing other functions of the switch to fail to operate normally or even Equipment paralyzed
[0009] The second is that there is a lack of fairness for the ARP packets sent by the virtual machine
The port-based rate limit limits the total amount of packets sent by all virtual machines that share the port. This has the problem that one virtual machine sends too many packets and preempts the traffic of other virtual machines.
[0010] The third is that when the port of the switch is temporarily closed, the physical machine cannot communicate normally, which will affect the availability of the physical machine, which is not allowed in the data center
[0014] The second is that it is not possible to limit the outbound packets for each virtual machine, and there is still the problem of traffic preemption, which lacks fairness

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Traffic control method for address resolution protocol messages
  • Traffic control method for address resolution protocol messages
  • Traffic control method for address resolution protocol messages

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0051] Embodiment 1, a flow control method of address resolution protocol message, such as figure 1 shown, including:

[0052] S101. Capture the ARP outbound packets sent from the virtual machine to the physical machine;

[0053] S102. Put the captured ARP outgoing packet in the queue corresponding to the virtual machine that sends the ARP outgoing packet;

[0054] S103. Polling each queue in turn, and each time a queue is polled, a token is taken out from the token bucket, and an ARP outbound packet is taken out from the polled queue for outbound processing.

[0055] Since each virtual machine on the physical machine node shares the network card device of the physical machine, that is to say, there is a problem of network resource preemption between virtual machines and between virtual machines and physical machines. Considering that the packet sending by the physical machine can be controlled in the data center, in this embodiment, the ARP outgoing packets of the physical ...

Embodiment 2

[0080] Embodiment 2, a flow control device for address resolution protocol messages, such as image 3 shown, including:

[0081] A message capture module 31, configured to capture the ARP outbound message sent from the virtual machine to the physical machine;

[0082] The allocation module 32 is configured to place the captured ARP outbound message in the queue S corresponding to the virtual machine that sends the ARP outbound message;

[0083] Packet-out control module 33, used to poll each queue S in turn, when each polling queue S, take out a token from the token bucket TB, take out an ARP packet-out message from the polled queue S Carry out package processing.

[0084] In an alternative solution of this embodiment, the allocation module 32 places the captured ARP outbound message in the queue corresponding to the virtual machine that sends the ARP outbound message, which may specifically refer to:

[0085] The distribution module 32 resolves the IP address of the virtua...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a traffic control method and device for address resolution protocol messages. The method comprises the steps that address resolution protocol packet output messages sent from virtual machines to a physical machine are captured; the captured address resolution protocol packet output messages are placed in queues corresponding to the virtual machines which send the address resolution protocol packet output messages; all the queues are polled in turn, and when each queue is polled, a token is taken out of a token bucket, and one address resolution protocol packet output message is taken out of the polled queue to be processed through packet output. According to the traffic control method for the address resolution protocol messages, the traffic of packet output of the address resolution protocol messages can be accurately controlled.

Description

technical field [0001] The invention relates to the network field, in particular to a flow control method of an address resolution protocol message. Background technique [0002] ARP (address resolution Protocol) is the abbreviation of Address Resolution Protocol, which is a TCP / IP protocol for obtaining physical addresses. Its main function is to implement address resolution, that is, to obtain the destination MAC address corresponding to a destination IP address through broadcasting, so as to use the obtained MAC address for data transmission. After node A broadcasts the ARP request of node B's IP address to the network, only node B with this IP address will give an ARP response packet, which carries the MAC address of node B, and node A receives the confirmation message of node B. The data packet can only be sent out after the response of the MAC address. [0003] However, there is a risk of ARP spoofing in this process. Since what is sent is an ARP request broadcast, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/801H04L29/06
Inventor 常磊马介悦
Owner ALIBABA GRP HLDG LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap