Check patentability & draft patents in minutes with Patsnap Eureka AI!

A way to isolate the network under a docker swarm cluster

A technology of network and private network, applied in algorithm, network agent and container field, can solve problems such as intrusion code, unfriendliness, increased burden, etc., and achieve the effect of controlling security

Active Publication Date: 2022-07-08
江苏艾佳家居用品有限公司
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002] In the current swarm cluster, under normal circumstances, all applications are in the same network, and some applications that we need to do special control (such as network calls, permission control, intelligent routing) cannot be effectively controlled
In the case of relying on many additional components, some of the functions mentioned above can be realized, but for the application itself, relying on too many components will increase its own burden, and many components will invade the code, which is extremely unfriendly

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A way to isolate the network under a docker swarm cluster
  • A way to isolate the network under a docker swarm cluster
  • A way to isolate the network under a docker swarm cluster

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] Several main solution steps of the method of the present invention are as follows:

[0031] A way to isolate the network under a docker swarm cluster like Figure 4 shown, including the following steps:

[0032] Step 1, based on the interaction with the docker daemon process, call the relevant service docker swarmapi provided by the daemon process to build an application publishing system;

[0033] Step 2, push the relevant information of the application container image, container environment variable, resource qualification, and service name to be published to the kafka message queue through the message queue client program;

[0034] Step 3, the publishing system pulls the kafka message and prepares to publish it, determines the association relationship of the applications to be published through a similar topology sorting algorithm, and determines the order of installation;

[0035] Step 4: Start the linking docker daemon program through the docker api to create the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for isolating a network under a docker swarm cluster, and relates to the technical fields of container technology, network technology and proxy principle. By binding an agent to each application container that needs to be monitored, the network requests of the container are forced to be forwarded through the agent. By establishing a dedicated network for the application and binding the agent program, all the requests of the application can be forwarded through the agent route, so that the agent can Record all the actions of the application; and we can control the agent program to control access rights. By setting the application's exclusive network, it ensures that all activities of the application are limited to the exclusive network, and all operations on the public network are forwarded through the agent program. , which effectively controls the security of the application and avoids some uncontrollable phenomena. Record all operations of each application on the public network. Later, you can analyze the dependence of each application on the public network and its impact on the public network through big data.

Description

technical field [0001] The invention relates to the fields of containers, algorithms and network agents, in particular to a method for isolating a network under a docker swarm cluster. Background technique [0002] In the current swarm cluster, in general, all applications are in a network, and some applications that we need to do special control (such as network calls, permission control, intelligent routing) cannot be effectively controlled. In the case of relying on many additional components, some of the above-mentioned functions can be implemented, but for the application itself, too many dependent components will increase its own burden, and many components will invade the code, which is not friendly. The present invention achieves the effect of monitoring by binding the corresponding agent to run in the exclusive network together with the agent during the process of installing the application, and the agent controls the application. SUMMARY OF THE INVENTION [0003...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F9/455G06F9/54G06F21/53
CPCG06F9/45558G06F9/546G06F21/53G06F2009/45587G06F2009/45562G06F2209/548Y02D30/50
Inventor 陈旋王冲朱凯
Owner 江苏艾佳家居用品有限公司
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com