Unlock instant, AI-driven research and patent intelligence for your innovation.

Method for controlling east-and-west data traffic of cloud platform

A traffic control and cloud platform technology, applied in the field of cloud computing network, can solve the problems of limited virtual firewall function, increase the speed of cloud platform virus spread, affect the normal use of virtual machines, etc., and achieve the effect of reducing the impact

Inactive Publication Date: 2017-12-08
G CLOUD TECH
View PDF5 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The internal security of the cloud platform is generally realized through the virtual firewall on the host machine, but the function of this virtual firewall is relatively limited, and generally only the security access rule function can be set
[0004] As viruses penetrate into the cloud platform, if there are no virus detection tools for east-west traffic, the virus will spread faster inside the cloud platform. The traditional method is to install relevant anti-virus software inside the virtual machine, but this method is different from The virtual machine is too closely combined, which affects the normal use of the virtual machine to a certain extent

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for controlling east-and-west data traffic of cloud platform

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0024] See figure 1 Shown, the basic process of the present invention is as follows:

[0025] 1. Create three virtual machines on the cloud platform. The virtual machine FC3A3DFC is the LAN test virtual machine, EC5A3D8 is the controlled virtual machine, and 797C33D1 controls the virtual machine.

[0026] 2. Assign two virtual network cards of the LAN to the 797C33D1 control virtual machine

[0027] Assign a virtual network card of the same LAN to the EC5A3D8 controlled virtual machine

[0028] Assign a virtual network card of the same LAN to the FC3A3DFC test virtual machine

[0029] The specific operation commands are as follows:

[0030] (1) Create a new virtual bridge br-797EC5 shared by 797C33D1 and EC5A3D8

[0031] (2) Create a new virtual network card for 797C33D1 (managed virtual machine) and EC5A3D8 (managed virtual machine) on the br-797EC5 bridge. The specific configuration is as follows:

[0032] The network configuration part of the libvirt part of 797C33D1 i...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of a cloud computing network, and particularly to a method for controlling an east-and-west data traffic of a cloud platform. The method comprises the steps of newly establishing a controlling virtual machine or container for the virtual machine, the container and the physical machine of the controlled east-and-west data traffic; establishing two virtual interfaces for the controlling virtual machine or container; connecting the back end of one virtual interface with a controlled network, and connecting the back end of the other virtual interface with a virtual switch for the east-and-west data traffic; and mounting a control module in the controlling virtual machine or container, thereby realizing controlling for the east-and-west data traffic. The method can satisfy different network safe transmission requirements in the cloud platform, and supplies safety functions in different types or different grades, such as anti-virus function and anti-SQL-injection function.

Description

technical field [0001] The invention relates to the technical field of cloud computing networks, in particular to a cloud platform east-west flow control method. Background technique [0002] With the development of the cloud platform, many application systems are migrated to the cloud management platform of virtual machines, containers, and physical machines. The traffic of the cloud platform is mainly divided into east-west traffic and north-south traffic. Most of the north-south traffic will be internally converted into traffic connecting storage, databases, and middleware, and these traffics are mainly east-west traffic; the traffic involves important data resources. Access, so east-west traffic in the cloud platform accounts for a high proportion of the entire platform, and its resources are more important. [0003] There are firewalls, intrusion detection and other related equipment on the external boundary of the cloud platform to ensure the security of the outside w...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/801H04L12/931H04L12/935H04L29/06G06F9/455H04L49/111
CPCH04L47/10H04L49/30H04L49/70H04L63/02H04L63/0236H04L63/1408H04L63/1441G06F9/45558G06F2009/45587G06F2009/4557
Inventor 罗义兵季统凯杨松
Owner G CLOUD TECH