OpenStack traffic collection method based on tunneling protocol

A technology of traffic collection and tunneling protocol, which is applied in the direction of data exchange, digital transmission system, and electrical components through path configuration.

Inactive Publication Date: 2018-06-01
北京科来数据分析有限公司
View PDF6 Cites 11 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Usually, the traffic of OpenStack virtual machines and virtual networks must pass through the vswitch. At present, even if packets are captured on the vswitch on each physical machine, due to the multi-tenant characteristics of OpenStack, it is difficult to distinguish which business or which virtual machine the traffic belongs to after the traffic is aggregated. machine or which virtual network, and there is no visual way for users to select virtual ports for mirroring according to their needs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • OpenStack traffic collection method based on tunneling protocol
  • OpenStack traffic collection method based on tunneling protocol
  • OpenStack traffic collection method based on tunneling protocol

Examples

Experimental program
Comparison scheme
Effect test

specific Embodiment 1

[0028] A kind of OpenStack flow collection method based on tunneling protocol, concrete method is: mirror image proxy and mirror image management center are set; Described mirror image proxy is deployed on the network node or computing node of OpenStack; Described mirror image management center is deployed on other physical devices (such as server) or a virtual machine; the mirroring management center sends a mirroring command to the mirroring proxy; after the mirroring proxy receives the mirroring command, through the tunnel established with the destination IP, the traffic of the specified source port copied plus the tunnel head is sent to the corresponding traffic analysis applications.

[0029] The tunnel protocol can be GRE protocol or VXLAN protocol. Using the tunneling protocol, the local traffic is quickly copied to the physical network card, with superior performance, and analysis applications can be freely deployed (as long as the IP network is connected).

specific Embodiment 2

[0030] On the basis of specific embodiment 1, the specific method steps are:

[0031] S1. The mirroring agent connects to the mirroring management center, and reports the virtual port information list of the machine where the mirroring agent is located to the mirroring management center;

[0032] S2. The mirror management center sends a mirror command to the mirror agent at the port where the destination mirror is located;

[0033] S3. The mirroring agent receives the mirroring command, copies the traffic of the specified source port, adds a tunnel header, and sends it to the destination IP where the traffic analysis application is located through the tunnel port;

[0034] The virtual port refers to the port on the integrated bridge (br-int) created by OpenStack; the information of each port includes port ID, tenant name, corresponding port name and IP address on the integrated bridge.

[0035] When the mirror agent starts, read the local mirror list saved locally (in this sp...

specific Embodiment 3

[0036] On the basis of specific embodiment 1 or 2, wherein, the acquisition of the virtual port information among the described S1 is by calling the API of OpenStack, first obtains all port lists of all OpenStack environments, and then screens out the ports on the local integration bridge port.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an OpenStack traffic collection method based on a tunneling protocol. The method specifically includes the following steps: a mirroring proxy and a mirroring management center are set, wherein the mirroring proxy is deployed on a network node or a computing node of OpenStack, and the mirroring management center is deployed on other physical equipment or virtual machines; themirroring management center sends a mirroring command to the mirroring proxy; and after receiving the mirroring command, the mirroring proxy adds a tunnel header to the traffic of a specified sourceport that is copied and sends the tunnel header and the traffic to a corresponding traffic analysis application through a tunnel established with a destination IP. Compared with the prior art, the virtual machines or virtual networks or services to which the aggregated traffic belongs can be conveniently distinguished, and the traffic of a mirroring virtual machine, the traffic of the virtual networks to the outside and the traffic of a virtual router to a public network can be conveniently and freely selected.

Description

technical field [0001] The invention relates to an OpenStack traffic collection method based on a tunnel protocol, in particular to a tunnel protocol-based OpenStack traffic collection method. Background technique [0002] Today, OpenStack has evolved into a widely adopted cloud management framework. While OpenStack is growing rapidly, there are more and more requirements for security and network fault analysis of the OpenStack cloud platform. One of the requirements is to be able to monitor data in the OpenStack data center. Discovered traffic based on the virtual network structure. Usually, the traffic of OpenStack virtual machines and virtual networks must pass through the vswitch. At present, even if packets are captured on the vswitch on each physical machine, due to the multi-tenant characteristics of OpenStack, it is difficult to distinguish which business or which virtual machine the traffic belongs to after the traffic is aggregated. machine or which virtual networ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/46H04L12/713H04L12/721H04L12/741H04L29/08H04L29/12H04L45/586H04L45/74
CPCH04L12/4633H04L45/38H04L45/586H04L45/74H04L67/1095H04L61/5007H04L67/56H04L67/75
Inventor 林康游浣权谭春海
Owner 北京科来数据分析有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap