Policy-based container network resource isolation control method

A control method and technology for network resources, applied in the field of resource isolation control and container network-oriented resource isolation control, can solve the problem that container network resource isolation cannot flexibly customize network access policies according to tasks, etc.

Active Publication Date: 2019-04-02
NAT UNIV OF DEFENSE TECH
View PDF8 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] Aiming at the problem that existing technologies cannot flexibly customize network access policies according to tasks in container network resource isolation, a policy-based container net...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Policy-based container network resource isolation control method
  • Policy-based container network resource isolation control method
  • Policy-based container network resource isolation control method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0063] The present invention will be described in further detail below in conjunction with the accompanying drawings.

[0064] figure 1 It is a structure diagram of a policy-based container network resource isolation control method of the present invention, and the policy-based container network resource isolation control method of the present invention includes a three-layer architecture: a view layer, a control layer and a base layer. The view layer performs visual policy configuration interface configuration; the control layer generates isolation policy configuration based on SDN control; the base layer implements the corresponding isolation and access control mechanism according to the isolation policy configuration issued by the control layer, and the isolation technology is based on the OVS virtual bridge technology. To build a virtual network bridge for container communication, based on the VPN isolation technology under the landmark separation architecture, use the VLA...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a policy-based container network resource isolation control method in allusion to a problem that the container network resource isolation cannot flexibly customize a network access policy according to the task in the prior art. The method comprises the steps that S1, a user actively configures a container network isolation policy scheme through a visual policy configurationinterface according to the service scenario; S2, an SDN (Software Defined Network) controls to generate isolation policy configuration according to the isolation policy scheme configured by the user through the visual policy configuration interface and sends the isolation policy configuration to equipment; and S3, a base layer executes a corresponding isolation and access control mechanism according to the isolation policy configuration sent by the control layer. According to the invention, hierarchical container network isolation is realized in allusion to container network resource isolationcontrol requirements, and the conditions of container network mutual access is flexibly customized according to the service access scenario, thereby realizing the difference of an access relationshipof container network resources under different application scenarios, and ensuring the effective isolation of the network resources.

Description

technical field [0001] The invention relates to a resource isolation control technology in the virtual network field, in particular to a resource isolation control method oriented to a container network. Background technique [0002] With the decline of hardware costs, the improvement of performance and the maturity of virtualization technology, the industrial scale of cloud computing services has expanded rapidly. Based on the powerful computing power, massive storage capacity and low application cost of the cloud computing platform, more and more industries are joining the wave of cloud computing. From 2016 to 2020, the compound annual growth rate of the global cloud computing market is expected to reach 22. %. Virtualization technology is a key technical foundation of cloud computing services. It is based on virtualization technology that cloud computing services can abstract physical resources into virtual resources that can be used by users, and realize resource utiliz...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/02H04L63/10
Inventor 邓文平王承松陈瑶唐竹郦苏丹彭伟王宏汪泉
Owner NAT UNIV OF DEFENSE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap