Method for realizing distributed virtual networks applicable to cloud platform

Abstract

The invention relates to the technical field of cloud computing management, in particular to a method for distributed virtual networks applicable to a cloud platform. According to the method, any number of physical nodes are selected as network nodes of the cloud platform, and the network nodes establish and provide virtual network service; establishment of the network nodes includes the steps that (1), a virtual switch module is installed and started, and a virtual switch and an intranet network bridge are established; (2), an intranet network card is connected into the intranet network bridge; (3), the virtual switch and the intranet network bridge are connected, and a communication module for the node and other intranet nodes is set; (4), local VLAN ports are added; (5), the multiple virtual networks are established; (6), a virtual route is established; (7), an extranet network bridge is established, and an extranet network card is connected in; (8), a virtual route is established. Single-point failures of centralized network service of the cloud platform can be avoided, load balance of the network service nodes is achieved, the virtual networks can be managed flexibly and conveniently, and the method can be used for realizing the distributed virtual networks.

Description

Technical field [0001] The invention relates to the technical field of cloud computing management, in particular to a method for implementing a distributed virtual network suitable for a cloud platform. Background technique [0002] In virtualized cloud platforms, many use a single network node to centrally provide virtual network services. Virtual networks generally have two forms to choose from: bridging and host NAT conversion. In the bridge mode, the virtual machine exists as a complete network host, and all ports are exposed on the network by default. In the host NAT translation mode, the virtual machine uses the IP address of the host, and the port of the virtual machine communicates by mapping to other unused ports on the host. [0003] Under the large-scale cloud platform, the virtual network needs unified management. In the bridge mode, the network of the virtual machine and the network of the physical machine are equal. In this case, the unified management of the virtual...

AI Technical Summary

Problems solved by technology

[0004] 1. The virtual network and the network identifier on the physical switch do not correspond well, and it is easy to make mistakes during the operation;

[0005] 2. Network troubleshooting is difficult. In the case of an attack on the intranet, it is necessary to search for the source of the attack every time in the entire network range, and the workload of operation and maintenance is relatively large;

[0006] 3. The granularity of security isolation between virtual machines is relatively single, and the network security of virtual machines cannot be protected from multiple dimensions

[0008] 1. Each port of virtual machine communication needs to be mapped, which is inconvenient to manage;

[0009] 2. Only the virtual machines on a single host can be controlled in isolation, and unified control under the entire platform cannot be performed

Images