CN104363159A - Virtual open network building system and method based on software definition network - Google Patents

Virtual open network building system and method based on software definition network Download PDF

Info

Publication number
CN104363159A
CN104363159A CN201410724630.3A CN201410724630A CN104363159A CN 104363159 A CN104363159 A CN 104363159A CN 201410724630 A CN201410724630 A CN 201410724630A CN 104363159 A CN104363159 A CN 104363159A
Authority
CN
China
Prior art keywords
network
user
virtual
virtual network
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201410724630.3A
Other languages
Chinese (zh)
Other versions
CN104363159B (en
Inventor
王敬宇
李炜
廖建新
王纯
朱晓民
张磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing University of Posts and Telecommunications
Original Assignee
Beijing University of Posts and Telecommunications
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing University of Posts and Telecommunications filed Critical Beijing University of Posts and Telecommunications
Priority to CN201410724630.3A priority Critical patent/CN104363159B/en
Publication of CN104363159A publication Critical patent/CN104363159A/en
Application granted granted Critical
Publication of CN104363159B publication Critical patent/CN104363159B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

一种基于软件定义网络的开放虚拟网络构建系统,包括网络拓扑信息探测模块、网络性能探测模块、网络资源整合模块、网络资源呈现模块、用户虚拟节点选择模块、虚拟网络管理模块、网络资源虚拟化模块、主机资源虚拟化模块和用户交互界面模块;一种基于软件定义网络的开放虚拟网络构建方法,包括步骤:(1)用户登录开放虚拟网络构建系统;(2)系统收集网络资源信息并向用户进行直观显示;(3)用户为特定业务进行资源的发现,并提出服务请求;(4)系统向用户提供虚拟网络定制服务;本发明实现了用户开放、自主构建虚拟网络的目标。

An open virtual network construction system based on software-defined network, including network topology information detection module, network performance detection module, network resource integration module, network resource presentation module, user virtual node selection module, virtual network management module, network resource virtualization module, a host resource virtualization module, and a user interface module; a software-defined network-based open virtual network construction method, including steps: (1) users log in to the open virtual network construction system; (2) the system collects network resource information and sends The user visually displays; (3) the user discovers resources for a specific business and puts forward a service request; (4) the system provides the user with a customized virtual network service; the invention realizes the goal of the user to open and build a virtual network independently.

Description

一种基于软件定义网络的开放虚拟网络构建系统和方法A software-defined network-based open virtual network construction system and method

技术领域technical field

本发明涉及一种基于软件定义网络的开放虚拟网络构建系统和方法,属于因特网技术领域,特别是属于软件定义网络技术领域。The invention relates to a software-defined network-based open virtual network construction system and method, belonging to the technical field of the Internet, in particular to the technical field of software-defined networks.

背景技术Background technique

网络虚拟化是一种新兴的网络技术,它通过虚拟化技术对共用的底层基础设施(Infrastructure)进行抽象并提供统一的可编程接口,通过虚拟资源切片或者隧道的方式来虚拟化基础设施建设,在现有的基础架构之上构建将多个彼此隔离且异构的虚拟网络,为用户提供差异化服务。通过现有虚拟局域网(Virtual Local Area Network,VLAN)、虚拟专用网络(Virtual Private Networks,VPN)等技术可以在边缘网络对虚拟网络进行简单的隔离,在公用互联网上的数据传输仍然依赖尽力而为的传输机制;同时,这些操作仅支持由基础网络管理员提供,流程繁琐且虚拟网络构建的功能有限,不足以满足多用户灵活建网的多样化需求。Network virtualization is an emerging network technology. It abstracts the shared underlying infrastructure (Infrastructure) through virtualization technology and provides a unified programmable interface. It virtualizes infrastructure construction through virtual resource slicing or tunneling. Build multiple isolated and heterogeneous virtual networks on top of the existing infrastructure to provide users with differentiated services. Virtual networks can be simply isolated on the edge network through existing virtual local area network (Virtual Local Area Network, VLAN), virtual private network (Virtual Private Networks, VPN) and other technologies, and data transmission on the public Internet still relies on best effort At the same time, these operations are only supported by the basic network administrator, the process is cumbersome and the function of virtual network construction is limited, which is not enough to meet the diverse needs of multi-user flexible network construction.

在软件定义网络(Software Defined Networking,SDN)中,“软件定义”让用户更具主动性,用户可以根据自己的需求开发、控制自己的应用和硬件平台。对于SDN而言,其本身是一个集中控制架构,将多个网络节点统一控制起来,可以较容易地获取网络设备信息、控制网络设备,对应用/客户呈现一个统一的网络视图,其中有交换机,路由器,虚拟机、存储、虚拟子网以及用于虚拟子网之间通信的虚拟网关,用户可以按照自己的网络规划去配置虚拟机的IP地址、配置子网以及子网间的路由规则,这都为用户实现自主灵活构建私有网络及网络的灵活控制提供了良好的平台。In software-defined networking (Software Defined Networking, SDN), "software definition" makes users more proactive, and users can develop and control their own applications and hardware platforms according to their own needs. For SDN, it is a centralized control architecture, which can control multiple network nodes in a unified way, so that it is easier to obtain network device information, control network devices, and present a unified network view to applications/customers, including switches, Routers, virtual machines, storage, virtual subnets, and virtual gateways for communication between virtual subnets. Users can configure virtual machine IP addresses, subnets, and routing rules between subnets according to their own network planning. Both provide a good platform for users to realize independent and flexible construction of private networks and flexible control of networks.

如何利用SDN的开放定制和集中控制特性,解决因特网封闭、僵化的问题,赋予用户自定制网络体系和网络协议的能力,提升网络的可视性可控性,支持用户自主定义个性化的网络规则和控制策略,成为目前因特网技术领域急需解决的一个技术难题。How to use the open customization and centralized control features of SDN to solve the problem of closed and rigid Internet, give users the ability to customize the network system and network protocol, improve the visibility and controllability of the network, and support users to independently define personalized network rules and control strategies have become a technical problem that needs to be solved urgently in the field of Internet technology.

发明内容Contents of the invention

有鉴于此,本发明的目的是发明一种基于软件定义网络的开放虚拟网络定制方法及其相关系统,解决网络对用户不可见,用户仅能被动使用网络的问题,从而实现用户主动参与网络控制、自主选择网络资源、定制网络策略,最终实现提高用户业务体验,提供智能化、个性化服务的目标。In view of this, the purpose of the present invention is to invent a software-defined network-based open virtual network customization method and related systems to solve the problem that the network is invisible to users and users can only use the network passively, so as to realize the active participation of users in network control , Independently select network resources, customize network strategies, and finally achieve the goal of improving user service experience and providing intelligent and personalized services.

为了达到上述目的,本发明提出了一种基于软件定义网络的开放虚拟网络构建系统,所述系统包括如下功能模块:In order to achieve the above object, the present invention proposes a software-defined network-based open virtual network construction system, the system includes the following functional modules:

网络拓扑信息探测模块:该模块负责网络拓扑信息的探测,所述的网络拓扑主要指的是虚拟交换机之间的相对逻辑位置的拓扑结构,即拓扑结构是逻辑上的,而并非物理上;所述的网络拓扑信息由SDN控制器负责探测并将结果报给应用程序;由于网络拓扑信息是动态变化的,SDN控制器每隔一段时间向所负责的虚拟交换机发送探测包,以确定该虚拟交换机的有效性;每个虚拟交换机都与SDN控制器直接相连,构成了所述的网络拓扑图的结点;对于结点间的链路信息,可以将SDN控制器看做根结点利用Doubletree算法进行探测;Network topology information detection module: This module is responsible for the detection of network topology information. The network topology mainly refers to the topology structure of the relative logical positions between virtual switches, that is, the topology structure is logical, not physical; The above network topology information is detected by the SDN controller and reported to the application program; because the network topology information is dynamically changing, the SDN controller sends a detection packet to the responsible virtual switch at regular intervals to determine the virtual switch effectiveness; each virtual switch is directly connected to the SDN controller, forming the nodes of the network topology diagram; for link information between nodes, the SDN controller can be regarded as the root node using the Doubletree algorithm to detect;

当发生结点增加或失效时,在所述的网络拓扑图中添加或移除该结点及相连的边;当链路失效时,在所述的网络拓扑图中将对应边移除,以保证网络拓扑信息的正确性;When a node increases or fails, add or remove the node and connected edges in the network topology map; when a link fails, remove the corresponding edge in the network topology map to Ensure the correctness of network topology information;

探测内容包括节点的状态与链路的状态,分别是“活动”、“挂起”、“停机”,其中“活动”状态是指节点或链路工作正常且有流量经过,“挂起”状态是指节点或链路处于空闲状态,即工作正常但无流量经过,“停机”状态是指节点或链路出现异常,不可达;根据以上信息,所述网络拓扑信息探测模块构造节点和链路的状态数据结构表,并将其提交给网络资源整合模块;The detection content includes the state of the node and the state of the link, which are "active", "suspended" and "downtime". The "active" state means that the node or link is working normally and there is traffic passing, and the "suspended" state It means that the node or link is in an idle state, that is, it works normally but no traffic passes through, and the "downtime" state means that the node or link is abnormal and unreachable; according to the above information, the network topology information detection module constructs nodes and links The state data structure table of , and submit it to the network resource integration module;

网络性能探测模块:该模块负责探测网络的性能,探测内容包括:节点的处理能力、节点的缓冲区容量及队列长度、队列优先调度原则及参数、链路的时延与带宽、网络所使用的协议等,根据以上信息,所述网络性能探测模块构造节点和链路的性能信息表,并将其提交给网络资源整合模块;Network performance detection module: This module is responsible for detecting the performance of the network. The detection content includes: node processing capability, node buffer capacity and queue length, queue priority scheduling principle and parameters, link delay and bandwidth, network used protocol, etc., according to the above information, the network performance detection module constructs a performance information table of nodes and links, and submits it to the network resource integration module;

该模块探测网络的方式有主动探测方式和被动探测方式两种,所述的主动探测方式是指向网络中发送经过特殊组合的探测包,通过对探测包所受网络影响而发生特性变化的分析,得到网络状态和性能变化;被动探测方式是指在网络的测量点处部署数据采集器,收集流经该测量点的网络流量,周期性地轮询被动检测设备并采集信息,以判断网络性能和状态;The module detects the network in two ways: active detection and passive detection. The active detection method refers to sending a specially combined detection packet in the network, and through the analysis of the characteristic changes of the detection packet affected by the network, Obtain network status and performance changes; the passive detection method refers to deploying data collectors at network measurement points, collecting network traffic flowing through the measurement points, periodically polling passive detection devices and collecting information to judge network performance and state;

网络资源整合模块:该模块将所述的网络拓扑信息探测模块和所述的网络性能探测模块提供的信息进行整合,得到具有网络性能和网络拓扑结构的数据结构,包括描述节点和链路的数据结构表,以及描述网络整体的数据结构信息;Network resource integration module: this module integrates the information provided by the network topology information detection module and the network performance detection module to obtain a data structure with network performance and network topology, including data describing nodes and links Structure table, and data structure information describing the network as a whole;

网络资源呈现模块:该模块将网络资源整合模块提供的网络图绘制出来,提交到用户交互界面上直观地呈现给用户,具体为:该模块根据所述网络资源整合模块所提供的数据结构信息,描绘出网络拓扑结构图,并将该拓扑结构图展现给用户;用户可以根据需要放大或缩小局部网络信息;根据用户需要,该模块可以呈现当前网络性能参数及物理参数;用户可以以触摸方式自由选择结点及链路,方便地与所述的开放虚拟网络构建系统进行信息交互生成拓扑信息;Network resource presentation module: this module draws the network diagram provided by the network resource integration module, and submits it to the user interaction interface to present it intuitively to the user, specifically: this module according to the data structure information provided by the network resource integration module, Draw a network topology diagram and present the topology diagram to the user; the user can zoom in or zoom out the local network information according to the user's needs; according to the user's needs, the module can present the current network performance parameters and physical parameters; the user can freely touch the Select nodes and links, and conveniently exchange information with the open virtual network construction system to generate topology information;

所述的网络拓扑结构图是一个节点和链路都带有权重的复杂加权图,其中节点的权重反映了节点的当前处理能力,链路的权重是时延,或者是带宽,或者是时延和带宽的加权表达,该复杂加权图是用户定制虚拟网络的基础;The network topology diagram is a complex weighted diagram with weights for both nodes and links, wherein the weights of the nodes reflect the current processing capabilities of the nodes, and the weights of the links are delays, or bandwidths, or delays The weighted expression of bandwidth and bandwidth, the complex weighted graph is the basis of user-customized virtual network;

用户虚拟节点选择模块:用户根据所述可视化的物理网络资源界面,根据自己的具体需求,自主选择有限个数的虚拟节点及连接关系,然后将选择的虚拟节点提交到虚拟网络管理模块;选完后虚拟网络管理模块根据用户提供的拓扑关系,运行相应的映射算法重新构建虚拟网络,系统显示可预测的网络创建效果,用户根据效果决定是否进行再次选择;User virtual node selection module: the user independently selects a limited number of virtual nodes and connection relationships according to the visualized physical network resource interface and their own specific needs, and then submits the selected virtual nodes to the virtual network management module; The post-virtual network management module runs the corresponding mapping algorithm to rebuild the virtual network according to the topological relationship provided by the user, and the system displays predictable network creation effects, and the user decides whether to choose again according to the effect;

虚拟网络管理模块:该模块负责管理网络资源虚拟化模块以及主机资源虚拟化模块的虚拟资源,并进行虚拟网络的构建和管理;该模块通过收集、评估和管理底层网络中的所有资源信息从而了解整个网络的各种信息,能根据用户需求完成虚拟网络到现有网络拓扑的映射,能根据具体业务需求进行全局资源的调配和优化;该模块保证资源分配的过程中不会发生冲突,使得整个虚拟网络的映射运营过程便于维护调整,提升了网络控制的便捷性;该模块根据虚拟机计算和存储能力,路由器间链路的时延和相应的带宽,生成虚拟网络拓扑结构;该虚拟网络拓扑结构屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接;网络资源虚拟化为每一个用户提供逻辑上独立的拓扑视图,为用户定制虚拟网络提供方便;当所述用户需要创建多个虚拟网络时,所述系统对用户的不同虚拟网络进行的并行管理,满足同一用户不同虚拟网络的差异化需求,所述用户也能够动态的调整或取消所构建的虚拟网络;Virtual network management module: This module is responsible for managing the virtual resources of the network resource virtualization module and the host resource virtualization module, and constructing and managing the virtual network; this module learns about all resource information in the underlying network by collecting, evaluating and managing Various information of the entire network can complete the mapping from the virtual network to the existing network topology according to user needs, and can allocate and optimize global resources according to specific business needs; this module ensures that there will be no conflicts in the process of resource allocation, making the entire network The virtual network mapping operation process is easy to maintain and adjust, which improves the convenience of network control; this module generates a virtual network topology according to the computing and storage capabilities of the virtual machine, the delay of the link between routers and the corresponding bandwidth; the virtual network topology The structure shields the connection relationship of physical links and provides a point-to-point logical connection for the upper layer of the virtual network; network resource virtualization provides each user with a logically independent topology view, which provides convenience for users to customize the virtual network; when the When a user needs to create multiple virtual networks, the system manages different virtual networks of the user in parallel to meet the differentiated needs of different virtual networks of the same user, and the user can also dynamically adjust or cancel the constructed virtual network;

网络资源虚拟化模块:该模块根据用户需求完成虚拟路由器到现有路由器拓扑的映射;通过虚拟资源切片的方式,将多个彼此隔离且异构的虚拟网络同时映射到同一个物理网络上。网络资源虚拟化分为节点映射和链路映射两个阶段,底层物理网络可以支持灵活的路径分割和周期性的路径迁移。Network resource virtualization module: This module completes the mapping of virtual routers to existing router topologies according to user requirements; through virtual resource slicing, multiple isolated and heterogeneous virtual networks are mapped to the same physical network at the same time. Network resource virtualization is divided into two stages: node mapping and link mapping. The underlying physical network can support flexible path segmentation and periodic path migration.

主机资源虚拟化模块:该模块提供将物理主机虚拟成为多个虚拟主机的功能,虚拟出的主机资源将提交到所述的虚拟网络管理模块进行统一管理;该主机资源虚拟化模块在系统中为用户提供针对虚拟机的控制操作接口,实现创建虚拟主机、开关虚拟主机电源、设备操作等功能;实现用户对虚拟主机的灵活控制和动态调整;所述物理主机既作为命令的执行单元执行特定操作,同时也作为命令的转述单元将所述系统的部分操作命令及参数转发到虚拟主机中执行;所述系统利用终端套接字方式在物理主机和虚拟主机之间进行通信;Host resource virtualization module: This module provides the function of virtualizing a physical host into multiple virtual hosts, and the virtualized host resources will be submitted to the virtual network management module for unified management; the host resource virtualization module is used in the system as The user provides a control operation interface for the virtual machine to realize functions such as creating a virtual host, switching virtual host power, device operation, etc.; realizing the user's flexible control and dynamic adjustment of the virtual host; the physical host is used as the command execution unit to perform specific operations At the same time, it is also used as a command translation unit to forward part of the operating commands and parameters of the system to the virtual host for execution; the system communicates between the physical host and the virtual host by means of terminal sockets;

用户交互界面模块:该模块提供用户与所述的开放虚拟网络构建系统进行交互的接口,接口分为四类即:网络资源显示接口、虚拟网络资源管理接口和用户需求感知接口,这些接口都是双向的,即提供用户与系统交互传递参数的功能;User interaction interface module: This module provides an interface for users to interact with the open virtual network construction system. The interfaces are divided into four categories: network resource display interface, virtual network resource management interface and user demand perception interface. These interfaces are Two-way, that is, to provide the function of passing parameters between users and the system;

所述的网络资源显示接口的功能是:把系统经过整合探测到的网络信息周期性向用户显示,或用户主动提出需求,查询当前网络资源可否满足;The function of the network resource display interface is: to periodically display the network information detected by the system to the user through integration, or to query whether the current network resources can meet the demand, or the user actively proposes a demand;

所述的虚拟网络资源管理接口的功能是:用户通过虚拟节点的控制操作接口,实现虚拟节点创建、开关虚拟节点电源等;用户对虚拟节点进行设备操作,实现虚拟节点存储或网络接口的增加或删除、虚拟节点的整机迁移等,实现对虚拟节点的灵活控制和动态调整;所述虚拟节点建立后,物理机通过终端套接字调用特定脚本启动网络服务,建立与中心控制台通信连接;The function of the virtual network resource management interface is: the user realizes virtual node creation, switching virtual node power supply, etc. through the control operation interface of the virtual node; the user performs device operations on the virtual node to realize the addition or addition of virtual node storage or network interface Deletion, complete machine migration of virtual nodes, etc., to realize flexible control and dynamic adjustment of virtual nodes; after the virtual nodes are established, the physical machine calls specific scripts to start network services through terminal sockets, and establishes a communication connection with the central console;

所述的用户需求感知接口的功能是:系统通过该接口感知用户需求,包括需求的类型、时间、地点、偏好度等,进行资源优化调度。The function of the user demand perception interface is: the system perceives user demand through the interface, including the type, time, location, preference, etc. of the demand, and performs resource optimization scheduling.

为了达到上述目的,本发明提出了一种基于软件定义网络的开放虚拟网络构建方法,其特征在于:所述方法包括下列操作步骤:In order to achieve the above object, the present invention proposes a software-defined network-based open virtual network construction method, characterized in that: the method includes the following steps:

(1)用户通过用户交互界面登录开放虚拟网络构建系统;所述的用户既包括基础网络管理员、业务网络管理员,还包括普通网络用户;(1) The user logs in to the open virtual network construction system through the user interaction interface; the users include not only basic network administrators, business network administrators, but also ordinary network users;

(2)所述的开放虚拟网络构建系统通过软件定义网络中的控制器收集网络资源信息并向用户进行直观显示;(2) The open virtual network construction system collects network resource information through the controller in the software-defined network and displays it visually to the user;

(3)用户通过所述的开放虚拟网络构建系统为特定业务进行资源的发现,并提出服务请求;所述的用户通过系统进行的资源发现包括网络资源的发现和内容资源的发现;所述的特定业务是指该用户需要配置的某一个业务应用;(3) The user discovers resources for a specific business through the open virtual network construction system, and puts forward a service request; the resource discovery performed by the user through the system includes the discovery of network resources and the discovery of content resources; Specific business refers to a certain business application that the user needs to configure;

(4)所述的开放虚拟网络构建定制系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制。(4) The open virtual network construction and customization system provides users with virtual network customization services, and users customize virtual networks according to specific business needs.

所述步骤(1)中所述的用户交互界面指的是所述的开放虚拟网络构建系统提供给用户的终端的操作界面,用户能通过操作界面简单快速地使用所述系统提供的功能,既包括用户注册入口、网络拓扑图界面、搜索窗口、附近网络资源和内容资源位置显示、网络之间互连的协议Internet Protocol定位等基础网络管理功能;还包括虚拟网络方案显示界面、定制虚拟网络、应用程序编程接口API提供、内容位置的免费标注、第三方数据纠错等该开放虚拟网络构建方法特有的功能;所述的这些操作功能根据用户权限而有所不同,既包括基础网络管理员、企业网络管理员、还包括普通网络用户,并根据网络运营策略开放部分基础网络管理操作并开发新的策略定制功能给企业网络管理员或普通网络用户,来实现其自有虚拟网络的定制化构建。The user interaction interface described in the step (1) refers to the operation interface provided by the open virtual network construction system to the user's terminal, and the user can use the functions provided by the system simply and quickly through the operation interface, both Including basic network management functions such as user registration entrance, network topology map interface, search window, location display of nearby network resources and content resources, Internet Protocol positioning between networks; also includes virtual network solution display interface, customized virtual network, Application programming interface API provision, free labeling of content location, third-party data error correction and other functions unique to this open virtual network construction method; these operating functions vary according to user rights, including basic network administrators, Enterprise network administrators, including ordinary network users, open some basic network management operations according to network operation policies and develop new policy customization functions for enterprise network administrators or ordinary network users to realize the customized construction of their own virtual networks .

所述步骤(2)中系统收集网络资源并向用户进行直观显示的具体内容是:所述系统与软件定义网络中的控制器交互,获取整个网络的资源信息,包括网络拓扑图、网络状态、底层物理网络的链路故障、网络突发事件和网络层之上的业务层流量信息等实时信息;所述系统将所述的获取到的网络资源信息进行汇总,通过可视化控制界面向用户进行直观显示,将对整个网络的当前状况完全展示给用户,方便后续用户进行自定义构建虚拟网络以避开网络拥塞,不仅只是被动地接受网络;所述系统为应用提供基础性网络生成服务,可以为特定应用提供定制化虚拟网络策略接口;In the step (2), the system collects network resources and displays them visually to the user. The system interacts with the controller in the software-defined network to obtain resource information of the entire network, including network topology, network status, Real-time information such as link failures of the underlying physical network, network emergencies, and traffic information on the business layer above the network layer; the system summarizes the obtained network resource information, and intuitively displays to the user through a visual control interface Display, the current status of the entire network will be fully displayed to the user, which is convenient for subsequent users to customize and build a virtual network to avoid network congestion, not just passively accept the network; the system provides basic network generation services for applications, and can provide Provide customized virtual network policy interface for specific applications;

所述步骤(3)中,所述的网络资源的发现是指用户通过所述的开放虚拟网络构建系统对网元设备进行的查询,以帮助用户了解所查询的网络资源在网络中所处的具体位置;所述的内容资源的发现是指用户通过系统对内容资源进行的查询,以帮助用户了解所查询的内容资源在网络中分布的位置,便于用户选择所述内容资源的合理位置进行连接;所述的提出服务请求是指用户定制服务连接,该定制服务连接可以是简单的端到端的连接,也可以是用户根据具体要求定制多方服务节点之间的复杂互联关系,使得网络对外呈现出特定的拓扑结构特征;当某一业务服务器、某段网络负载较大时,所述的开放虚拟网络构建系统进行全局的资源负载均衡,对用户的请求进行优化调度,决定由哪些网络资源完成用户的服务请求。In the step (3), the discovery of the network resource refers to the query of the network element device by the user through the open virtual network construction system, so as to help the user understand the location of the network resource inquired in the network. Specific location; the discovery of the content resource refers to the query of the content resource by the user through the system, so as to help the user understand the distribution position of the content resource inquired in the network, so that the user can select a reasonable location of the content resource for connection The service request mentioned above refers to user-customized service connection, which can be a simple end-to-end connection, or a complex interconnection relationship between multi-party service nodes customized by the user according to specific requirements, so that the network appears externally Specific topological structure features; when a certain business server or a certain segment of the network has a large load, the open virtual network construction system performs global resource load balancing, optimizes scheduling of user requests, and determines which network resources are used to complete user requests. service request.

所述步骤(4)中系统向用户提供虚拟网络定制服务支持多个用户自由构建专有网络;所述的自由构建专有网络依赖网络虚拟化技术,自主选择网络资源,根据虚拟机的计算能力和存储能力,路由器间链路的时延和相应的带宽,生成多个彼此隔离且异构的虚拟网络,该网络屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接,为每一个用户提供逻辑上独立的拓扑视图,使得用户获得网络端到端的控制权。In the step (4), the system provides users with virtual network customization services to support multiple users to freely build a proprietary network; the free construction of a proprietary network depends on network virtualization technology, and independently selects network resources, according to the computing power of the virtual machine and storage capacity, the delay and corresponding bandwidth of the links between routers, generate multiple isolated and heterogeneous virtual networks, which shield the connection relationship of physical links, and provide point-to-point logic for the upper layer of the virtual network Connection provides each user with a logically independent topology view, allowing users to gain end-to-end control over the network.

所述步骤(4)中所述的开放虚拟网络构建定制系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制的具体内容是:所述的开放虚拟网络构建系统根据网络拓扑探测和性能探测所得到的信息,并定制个性化构建策略,依据不同的构建策略进行虚拟网络映射计算;所述的开放虚拟网络构建系统向用户推荐默认的构建方案,然后用户根据自身需求进行调整修改,以及更为直接地自行构建方式,具体操作是:依据该可视化的网络资源界面,用户根据业务需求、个人偏好、网络状态等信息,用户自主选择有限个数的虚拟节点;选完后虚拟网络计算模块根据用户提供的虚拟节点,运行相应的映射算法重新构建虚拟网络,系统显示可预测的网络创建效果,用户根据效果决定是否进行再次选择;当所述用户需要创建多个虚拟网络时,所述系统对用户的不同虚拟网络进行的并行管理,满足同一用户不同虚拟网络的差异化需求,所述用户也能够动态的调整或取消所构建的虚拟网络。The open virtual network construction and customization system described in the step (4) provides virtual network customization services to users, and the specific content of customizing the virtual network for users according to the needs of specific services is: the open virtual network construction system according to the network Based on the information obtained by topology detection and performance detection, and customizing personalized construction strategies, virtual network mapping calculations are performed according to different construction strategies; the described open virtual network construction system recommends default construction schemes to users, and then users perform Adjustment and modification, as well as a more direct self-construction method, the specific operation is: according to the visualized network resource interface, the user independently selects a limited number of virtual nodes according to business needs, personal preferences, network status and other information; after selection The virtual network calculation module runs the corresponding mapping algorithm to rebuild the virtual network according to the virtual nodes provided by the user, and the system displays predictable network creation effects, and the user decides whether to choose again according to the effect; when the user needs to create multiple virtual networks , the parallel management of different virtual networks of the user by the system meets the differentiated requirements of different virtual networks of the same user, and the user can also dynamically adjust or cancel the constructed virtual network.

所述步骤(4)中系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制具体包括如下操作步骤:In the step (4), the system provides virtual network customization services to users, and the customization of virtual networks by users according to specific business needs specifically includes the following steps:

(401)用户配置虚拟节点:用户通过虚拟节点的控制操作接口,实现虚拟节点创建、开关虚拟节点电源等;用户对虚拟节点进行设备操作,实现虚拟节点存储或网络接口的增加或删除、虚拟节点的整机迁移等,实现对虚拟节点的灵活控制和动态调整;所述虚拟节点建立后,物理机通过终端套接字调用特定脚本启动网络服务,建立与中心控制台通信连接;所述系统将虚拟节点之间的连接关系作为配置接口向用户开放,支持多个不同的拓扑结构并行部署;对不同的用户,所述系统可以同时提供相互隔离的虚拟网络环境,这些虚拟网络环境的拓扑结构均可由所述用户自行定制;(401) User configures virtual nodes: users create virtual nodes, switch virtual node power, etc. through virtual node control and operation interfaces; users perform device operations on virtual nodes to realize addition or deletion of virtual node storage or network interfaces, virtual node complete machine migration, etc., to achieve flexible control and dynamic adjustment of the virtual node; after the virtual node is established, the physical machine invokes a specific script through the terminal socket to start the network service, and establishes a communication connection with the central console; the system will The connection relationship between virtual nodes is opened to users as a configuration interface, which supports parallel deployment of multiple different topological structures; for different users, the system can provide mutually isolated virtual network environments at the same time, and the topological structures of these virtual network environments are Can be customized by the user;

(402)系统创建虚拟网络:所述系统建立用户账户,进行虚拟网络设置,创建软件路由器配置文件,进行网络服务初始化,并启动单独的虚拟路由器节点;所述系统以用户的配置信息为输入,或用户通过标记可视化图形界面上的节点,在相应的虚拟路由器之间建立虚链路,生成虚拟网络的拓扑结构;虚拟拓扑层屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接;(402) The system creates a virtual network: the system establishes a user account, performs virtual network settings, creates a software router configuration file, performs network service initialization, and starts a separate virtual router node; the system uses user configuration information as input, Or the user can mark the nodes on the visual graphical interface, establish virtual links between corresponding virtual routers, and generate the topology structure of the virtual network; the virtual topology layer shields the connection relationship of the physical links, and provides point-to-point logical connection of points;

(403)用户进行虚拟网络安全定制:所述系统可以根据用户的服务需求选配需要承载的安全服务,在新流量通路上选配安全设备,并针对不同网络元素加以配置,为通信提供可选级别的安全控制,建立起一条贯通整套基础设施的高定制化通道;所述的安全服务功能可以支持在特定逻辑环境下构建的虚拟服务,无需大量的手动配置;(403) User customizes virtual network security: the system can select security services that need to be carried according to the service requirements of users, select security devices on new traffic paths, and configure them for different network elements to provide optional security services for communication. Level-level security control establishes a highly customized channel through the entire infrastructure; the security service function can support virtual services built in a specific logical environment without a lot of manual configuration;

(404)对流量进行定制化转发:所述系统工作在虚拟拓扑之上,在虚拟节点之间提供逐跳的数据转发服务;转发层是虚拟网络的数据平面,执行路由查找功能,获得数据包到达目的地所经过的下一跳虚拟节点,然后对报文进行封装操作,利用相应的虚链路进行转发。(404) Customized forwarding of traffic: the system works on the virtual topology, and provides hop-by-hop data forwarding services between virtual nodes; the forwarding layer is the data plane of the virtual network, and performs routing lookup functions to obtain data packets After arriving at the next hop virtual node passed by the destination, the packet is encapsulated and forwarded using the corresponding virtual link.

本发明的有益效果在于充分利用了SDN的开放定制和集中控制特性,有效收集网络信息并直观地显示给用户,实现了用户开放、自主构建虚拟网络的目标,提高了网络应用的传输效率,有助于实现网络服务的智能化和个性化。The invention has the beneficial effects of making full use of the open customization and centralized control characteristics of SDN, effectively collecting network information and visually displaying it to users, realizing the goal of users opening up and building virtual networks independently, improving the transmission efficiency of network applications, and effectively It helps realize the intelligence and personalization of network services.

附图说明Description of drawings

图1是本发明提出的一种基于软件定义网络的开放虚拟网络构建系统的模块结构图。FIG. 1 is a block diagram of a software-defined network-based open virtual network construction system proposed by the present invention.

图2是本发明提出的一种基于软件定义网络的开放虚拟网络构建方法的流程图。FIG. 2 is a flow chart of a method for constructing an open virtual network based on software-defined networking proposed by the present invention.

图3是本发明仿真实验所用网络的网络拓扑结构示意图。Fig. 3 is a schematic diagram of the network topology structure of the network used in the simulation experiment of the present invention.

具体实施方式Detailed ways

为使本发明的目的、技术方案和优点更加清楚,下面结合附图对本发明作进一步的详细描述。In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings.

参见图1,本发明提出了一种基于软件定义网络的开放虚拟网络构建系统,所述系统包括如下功能模块:Referring to Fig. 1, the present invention proposes an open virtual network construction system based on software-defined network, and the system includes the following functional modules:

网络拓扑信息探测模块:该模块负责网络拓扑信息的探测,所述的网络拓扑主要指的是虚拟交换机之间的相对逻辑位置的拓扑结构,即拓扑结构是逻辑上的,而并非物理上;所述的网络拓扑信息由SDN控制器负责探测并将结果报给应用程序;由于网络拓扑信息是动态变化的,SDN控制器每隔一段时间向所负责的虚拟交换机发送探测包,以确定该虚拟交换机的有效性;每个虚拟交换机都与SDN控制器直接相连,构成了所述的网络拓扑图的结点;对于结点间的链路信息,可以将SDN控制器看做根结点利用Doubletree算法进行探测;Network topology information detection module: This module is responsible for the detection of network topology information. The network topology mainly refers to the topology structure of the relative logical positions between virtual switches, that is, the topology structure is logical, not physical; The above network topology information is detected by the SDN controller and reported to the application program; because the network topology information is dynamically changing, the SDN controller sends a detection packet to the responsible virtual switch at regular intervals to determine the virtual switch effectiveness; each virtual switch is directly connected to the SDN controller, forming the nodes of the network topology diagram; for link information between nodes, the SDN controller can be regarded as the root node using the Doubletree algorithm to detect;

当发生结点增加或失效时,在所述的网络拓扑图中添加或移除该结点及相连的边;当链路失效时,在所述的网络拓扑图中将对应边移除,以保证网络拓扑信息的正确性;When a node increases or fails, add or remove the node and connected edges in the network topology map; when a link fails, remove the corresponding edge in the network topology map to Ensure the correctness of network topology information;

探测内容包括节点的状态与链路的状态,分别是“活动”、“挂起”、“停机”,其中“活动”状态是指节点或链路工作正常且有流量经过,“挂起”状态是指节点或链路处于空闲状态,即工作正常但无流量经过,“停机”状态是指节点或链路出现异常,不可达;根据以上信息,所述网络拓扑信息探测模块构造节点和链路的状态数据结构表,并将其提交给网络资源整合模块;The detection content includes the state of the node and the state of the link, which are "active", "suspended" and "downtime". The "active" state means that the node or link is working normally and there is traffic passing, and the "suspended" state It means that the node or link is in an idle state, that is, it works normally but no traffic passes through, and the "downtime" state means that the node or link is abnormal and unreachable; according to the above information, the network topology information detection module constructs nodes and links The state data structure table of , and submit it to the network resource integration module;

网络性能探测模块:该模块负责探测网络的性能,探测内容包括:节点的处理能力、节点的缓冲区容量及队列长度、队列优先调度原则及参数、链路的时延与带宽、网络所使用的协议(如RIP或OSPF)等,根据以上信息,所述网络性能探测模块构造节点和链路的性能信息表,并将其提交给网络资源整合模块;Network performance detection module: This module is responsible for detecting the performance of the network. The detection content includes: node processing capability, node buffer capacity and queue length, queue priority scheduling principle and parameters, link delay and bandwidth, network used Protocol (such as RIP or OSPF), etc., according to the above information, the performance information table of the network performance detection module constructs nodes and links, and submits it to the network resource integration module;

该模块探测网络的方式有主动探测方式和被动探测方式两种,所述的主动探测方式是指向网络中发送经过特殊组合的探测包(如ping,traceroute,mtrace等),通过对探测包所受网络影响而发生特性变化的分析,得到网络状态和性能变化;被动探测方式是指在网络的测量点处部署数据采集器(Probe),收集流经该测量点的网络流量,周期性地轮询被动检测设备并采集信息,以判断网络性能和状态;There are two ways for this module to detect the network: the active detection method and the passive detection method. The active detection method refers to sending a specially combined detection packet (such as ping, traceroute, mtrace, etc.) The analysis of characteristic changes caused by network influence can obtain network status and performance changes; the passive detection method refers to deploying data collectors (Probes) at network measurement points to collect network traffic flowing through the measurement point and periodically polling Passively detect devices and collect information to judge network performance and status;

网络资源整合模块:该模块将所述的网络拓扑信息探测模块和所述的网络性能探测模块提供的信息进行整合,得到具有网络性能和网络拓扑结构的数据结构,包括描述节点和链路的数据结构表,以及描述网络整体的数据结构信息(例如节点的状态、带宽、容量、调度原则;链路的状态、时延、带宽;网络的路由算法等);Network resource integration module: this module integrates the information provided by the network topology information detection module and the network performance detection module to obtain a data structure with network performance and network topology, including data describing nodes and links Structure table, and data structure information describing the whole network (such as node status, bandwidth, capacity, scheduling principle; link status, delay, bandwidth; network routing algorithm, etc.);

网络资源呈现模块:该模块将网络资源整合模块提供的网络图绘制出来,提交到用户交互界面上直观地呈现给用户,具体为:该模块根据所述网络资源整合模块所提供的数据结构信息,描绘出网络拓扑结构图,并将该拓扑结构图展现给用户;用户可以根据需要放大或缩小局部网络信息;根据用户需要,该模块可以呈现当前网络性能参数(时延和带宽)及物理参数(IP、MAC地址等);用户可以以触摸方式自由选择结点及链路,方便地与所述的开放虚拟网络构建系统进行信息交互生成拓扑信息;Network resource presentation module: this module draws the network diagram provided by the network resource integration module, and submits it to the user interaction interface to present it intuitively to the user, specifically: this module according to the data structure information provided by the network resource integration module, Depict the network topology diagram and present the topology diagram to the user; the user can zoom in or zoom out the local network information according to the needs; according to the user's needs, the module can present the current network performance parameters (delay and bandwidth) and physical parameters ( IP, MAC address, etc.); the user can freely select nodes and links in a touch mode, and easily interact with the described open virtual network construction system to generate topology information;

所述的网络拓扑结构图是一个节点和链路都带有权重的复杂加权图,其中节点的权重反映了节点的当前处理能力,链路的权重是时延,或者是带宽,或者是时延和带宽的加权表达,该复杂加权图是用户定制虚拟网络的基础;The network topology diagram is a complex weighted diagram with weights for both nodes and links, wherein the weights of the nodes reflect the current processing capabilities of the nodes, and the weights of the links are delays, or bandwidths, or delays The weighted expression of bandwidth and bandwidth, the complex weighted graph is the basis of user-customized virtual network;

用户虚拟节点选择模块:用户根据所述可视化的物理网络资源界面,根据自己的具体需求,自主选择有限个数的虚拟节点及连接关系,然后将选择的虚拟节点提交到虚拟网络管理模块;选完后虚拟网络管理模块根据用户提供的拓扑关系,运行相应的映射算法重新构建虚拟网络,系统显示可预测的网络创建效果,用户根据效果决定是否进行再次选择;User virtual node selection module: the user independently selects a limited number of virtual nodes and connection relationships according to the visualized physical network resource interface and their own specific needs, and then submits the selected virtual nodes to the virtual network management module; The post-virtual network management module runs the corresponding mapping algorithm to rebuild the virtual network according to the topological relationship provided by the user, and the system displays predictable network creation effects, and the user decides whether to choose again according to the effect;

虚拟网络管理模块:该模块负责管理网络资源虚拟化模块以及主机资源虚拟化模块的虚拟资源,并进行虚拟网络的构建和管理;该模块通过收集、评估和管理底层网络中的所有资源信息从而了解整个网络的各种信息,能根据用户需求完成虚拟网络到现有网络拓扑的映射,能根据具体业务需求进行全局资源的调配和优化;该模块保证资源分配的过程中不会发生冲突,使得整个虚拟网络的映射运营过程便于维护调整,提升了网络控制的便捷性;该模块根据虚拟机计算和存储能力,路由器间链路的时延和相应的带宽,生成虚拟网络拓扑结构;该虚拟网络拓扑结构屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接;网络资源虚拟化为每一个用户提供逻辑上独立的拓扑视图,为用户定制虚拟网络提供方便;当所述用户需要创建多个虚拟网络时,所述系统对用户的不同虚拟网络进行的并行管理,满足同一用户不同虚拟网络的差异化需求,所述用户也能够动态的调整或取消所构建的虚拟网络;Virtual network management module: This module is responsible for managing the virtual resources of the network resource virtualization module and the host resource virtualization module, and constructing and managing the virtual network; this module learns about all resource information in the underlying network by collecting, evaluating and managing Various information of the entire network can complete the mapping from the virtual network to the existing network topology according to user needs, and can allocate and optimize global resources according to specific business needs; this module ensures that there will be no conflicts in the process of resource allocation, making the entire network The virtual network mapping operation process is easy to maintain and adjust, which improves the convenience of network control; this module generates a virtual network topology according to the computing and storage capabilities of the virtual machine, the delay of the link between routers and the corresponding bandwidth; the virtual network topology The structure shields the connection relationship of physical links and provides a point-to-point logical connection for the upper layer of the virtual network; network resource virtualization provides each user with a logically independent topology view, which provides convenience for users to customize the virtual network; when the When a user needs to create multiple virtual networks, the system manages different virtual networks of the user in parallel to meet the differentiated needs of different virtual networks of the same user, and the user can also dynamically adjust or cancel the constructed virtual network;

网络资源虚拟化模块:该模块根据用户需求完成虚拟路由器到现有路由器拓扑的映射;通过虚拟资源切片的方式,将多个彼此隔离且异构的虚拟网络同时映射到同一个物理网络上。网络资源虚拟化分为节点映射和链路映射两个阶段,底层物理网络可以支持灵活的路径分割和周期性的路径迁移。Network resource virtualization module: This module completes the mapping of virtual routers to existing router topologies according to user requirements; through virtual resource slicing, multiple isolated and heterogeneous virtual networks are mapped to the same physical network at the same time. Network resource virtualization is divided into two stages: node mapping and link mapping. The underlying physical network can support flexible path segmentation and periodic path migration.

主机资源虚拟化模块:该模块提供将物理主机虚拟成为多个虚拟主机的功能,虚拟出的主机资源将提交到所述的虚拟网络管理模块进行统一管理;该主机资源虚拟化模块在系统中为用户提供针对虚拟机的控制操作接口,实现创建虚拟主机、开关虚拟主机电源、设备操作(如存储或网络接口的增加删除、虚拟主机的整机迁移等)等功能;实现用户对虚拟主机的灵活控制和动态调整;所述物理主机既作为命令的执行单元执行特定操作,同时也作为命令的转述单元将所述系统的部分操作命令及参数转发到虚拟主机中执行;所述系统利用终端套接字方式在物理主机和虚拟主机之间进行通信;Host resource virtualization module: This module provides the function of virtualizing a physical host into multiple virtual hosts, and the virtualized host resources will be submitted to the virtual network management module for unified management; the host resource virtualization module is used in the system as The user provides the control operation interface for the virtual machine, realizes functions such as creating a virtual host, switching virtual host power, device operations (such as adding and deleting storage or network interfaces, whole machine migration of virtual hosts, etc.); realizes the flexibility of the user to the virtual host control and dynamic adjustment; the physical host not only performs specific operations as the execution unit of the command, but also forwards part of the operating commands and parameters of the system to the virtual host for execution as the command translation unit; the system utilizes the terminal socket Communicate between the physical host and the virtual host in word mode;

用户交互界面模块:该模块提供用户与所述的开放虚拟网络构建系统进行交互的接口,接口分为四类即:网络资源显示接口、虚拟网络资源管理接口和用户需求感知接口,这些接口都是双向的,即提供用户与系统交互传递参数的功能;User interaction interface module: This module provides an interface for users to interact with the open virtual network construction system. The interfaces are divided into four categories: network resource display interface, virtual network resource management interface and user demand perception interface. These interfaces are Two-way, that is, to provide the function of passing parameters between users and the system;

所述的网络资源显示接口的功能是:把系统经过整合探测到的网络信息周期性向用户显示,或用户主动提出需求,查询当前网络资源可否满足;The function of the network resource display interface is: to periodically display the network information detected by the system to the user through integration, or to query whether the current network resources can meet the demand, or the user actively proposes a demand;

所述的虚拟网络资源管理接口的功能是:用户通过虚拟节点的控制操作接口,实现虚拟节点创建、开关虚拟节点电源等;用户对虚拟节点进行设备操作,实现虚拟节点存储或网络接口的增加或删除、虚拟节点的整机迁移等,实现对虚拟节点的灵活控制和动态调整;所述虚拟节点建立后,物理机通过终端套接字调用特定脚本启动网络服务,建立与中心控制台通信连接;The function of the virtual network resource management interface is: the user realizes virtual node creation, switching virtual node power supply, etc. through the control operation interface of the virtual node; the user performs device operations on the virtual node to realize the addition or addition of virtual node storage or network interface Deletion, complete machine migration of virtual nodes, etc., to realize flexible control and dynamic adjustment of virtual nodes; after the virtual nodes are established, the physical machine calls specific scripts to start network services through terminal sockets, and establishes a communication connection with the central console;

所述的用户需求感知接口的功能是:系统通过该接口感知用户需求,包括需求的类型、时间、地点、偏好度等,进行资源优化调度。The function of the user demand perception interface is: the system perceives user demand through the interface, including the type, time, location, preference, etc. of the demand, and performs resource optimization scheduling.

参见图2,本发明提出了一种基于软件定义网络的开放虚拟网络构建方法,其特征在于:所述方法包括下列操作步骤:Referring to Fig. 2, the present invention proposes a method for constructing an open virtual network based on a software-defined network, wherein the method includes the following steps:

(1)用户通过用户交互界面登录开放虚拟网络构建系统;所述的用户既包括基础网络管理员、业务网络管理员,还包括普通网络用户;(1) The user logs in to the open virtual network construction system through the user interaction interface; the users include not only basic network administrators, business network administrators, but also ordinary network users;

(2)所述的开放虚拟网络构建系统通过软件定义网络中的控制器收集网络资源信息并向用户进行直观显示;(2) The open virtual network construction system collects network resource information through the controller in the software-defined network and displays it visually to the user;

(3)用户通过所述的开放虚拟网络构建系统为特定业务进行资源的发现,并提出服务请求;所述的用户通过系统进行的资源发现包括网络资源的发现和内容资源的发现;所述的特定业务是指该用户需要配置的某一个业务应用;(3) The user discovers resources for a specific business through the open virtual network construction system, and puts forward a service request; the resource discovery performed by the user through the system includes the discovery of network resources and the discovery of content resources; Specific business refers to a certain business application that the user needs to configure;

(4)所述的开放虚拟网络构建定制系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制。(4) The open virtual network construction and customization system provides users with virtual network customization services, and users customize virtual networks according to specific business needs.

所述步骤(1)中所述的用户交互界面指的是所述的开放虚拟网络构建系统提供给用户的终端的操作界面,用户能通过操作界面简单快速地使用所述系统提供的功能,既包括用户注册入口、网络拓扑图界面、搜索窗口、附近网络资源和内容资源位置显示、网络之间互连的协议Internet Protocol定位等基础网络管理功能;还包括虚拟网络方案显示界面、定制虚拟网络、应用程序编程接口API提供、内容位置的免费标注、第三方数据纠错等该开放虚拟网络构建方法特有的功能;所述的这些操作功能根据用户权限而有所不同,既包括基础网络管理员、企业网络管理员、还包括普通网络用户,并根据网络运营策略开放部分基础网络管理操作并开发新的策略定制功能给企业网络管理员或普通网络用户,来实现其自有虚拟网络的定制化构建。The user interaction interface described in the step (1) refers to the operation interface provided by the open virtual network construction system to the user's terminal, and the user can use the functions provided by the system simply and quickly through the operation interface, both Including basic network management functions such as user registration entrance, network topology map interface, search window, location display of nearby network resources and content resources, Internet Protocol positioning between networks; also includes virtual network solution display interface, customized virtual network, Application programming interface API provision, free labeling of content location, third-party data error correction and other functions unique to this open virtual network construction method; these operating functions vary according to user rights, including basic network administrators, Enterprise network administrators, including ordinary network users, open some basic network management operations according to network operation policies and develop new policy customization functions for enterprise network administrators or ordinary network users to realize the customized construction of their own virtual networks .

所述步骤(2)中系统收集网络资源并向用户进行直观显示的具体内容是:所述系统与软件定义网络中的控制器交互,获取整个网络的资源信息,包括网络拓扑图(如包括交换机、网关、网桥、防火墙、服务器、无线接入点等,和对应这些网络设备的名称描述,状态,物理含义等)、网络状态(如包括链路带宽、时延、拥塞、抖动、吞吐率、丢包率等)、底层物理网络的链路故障、网络突发事件和网络层之上的业务层流量信息(如业务类型、业务状态、业务空间分布、业务流量流向等)等实时信息;所述系统将所述的获取到的网络资源信息进行汇总,通过可视化控制界面向用户进行直观显示,将对整个网络的当前状况完全展示给用户,方便后续用户进行自定义构建虚拟网络以避开网络拥塞,不仅只是被动地接受网络;所述系统为应用提供基础性网络生成服务,可以为特定应用提供定制化虚拟网络策略接口;In the step (2), the system collects network resources and visually displays them to the user. The specific content is: the system interacts with the controller in the software-defined network to obtain resource information of the entire network, including network topology diagrams (such as including switches) , gateways, bridges, firewalls, servers, wireless access points, etc., and corresponding to these network equipment name description, state, physical meaning, etc.), network status (such as link bandwidth, delay, congestion, jitter, throughput rate , packet loss rate, etc.), link failures of the underlying physical network, network emergencies, and service layer traffic information above the network layer (such as service type, service status, service space distribution, service flow direction, etc.) and other real-time information; The system summarizes the obtained network resource information, visually displays it to the user through a visual control interface, and fully displays the current status of the entire network to the user, so that subsequent users can customize and build a virtual network to avoid Network congestion is not just a passive acceptance of the network; the system provides basic network generation services for applications, and can provide customized virtual network policy interfaces for specific applications;

所述步骤(3)中,所述的网络资源的发现是指用户通过所述的开放虚拟网络构建系统对网元设备进行的查询,以帮助用户了解所查询的网络资源在网络中所处的具体位置;所述的内容资源的发现是指用户通过系统对内容资源进行的查询,以帮助用户了解所查询的内容资源在网络中分布的位置,便于用户选择所述内容资源的合理位置进行连接;所述的提出服务请求是指用户定制服务连接,该定制服务连接可以是简单的端到端的连接,也可以是用户根据具体要求定制多方服务节点之间的复杂互联关系,使得网络对外呈现出特定的拓扑结构特征;当某一业务服务器、某段网络负载较大时,所述的开放虚拟网络构建系统进行全局的资源负载均衡,对用户的请求进行优化调度,决定由哪些网络资源完成用户的服务请求。In the step (3), the discovery of the network resource refers to the query of the network element device by the user through the open virtual network construction system, so as to help the user understand the location of the network resource inquired in the network. Specific location; the discovery of the content resource refers to the query of the content resource by the user through the system, so as to help the user understand the distribution position of the content resource inquired in the network, so that the user can select a reasonable location of the content resource for connection The service request mentioned above refers to user-customized service connection, which can be a simple end-to-end connection, or a complex interconnection relationship between multi-party service nodes customized by the user according to specific requirements, so that the network appears externally Specific topological structure features; when a certain business server or a certain segment of the network has a large load, the open virtual network construction system performs global resource load balancing, optimizes scheduling of user requests, and determines which network resources are used to complete user requests. service request.

所述步骤(4)中系统向用户提供虚拟网络定制服务支持多个用户自由构建专有网络;所述的自由构建专有网络依赖网络虚拟化技术,自主选择网络资源,根据虚拟机的计算能力和存储能力,路由器间链路的时延和相应的带宽,生成多个彼此隔离且异构的虚拟网络,该网络屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接,为每一个用户提供逻辑上独立的拓扑视图,使得用户获得网络端到端的控制权。In the step (4), the system provides users with virtual network customization services to support multiple users to freely build a proprietary network; the free construction of a proprietary network depends on network virtualization technology, and independently selects network resources, according to the computing power of the virtual machine and storage capacity, the delay and corresponding bandwidth of the links between routers, generate multiple isolated and heterogeneous virtual networks, which shield the connection relationship of physical links, and provide point-to-point logic for the upper layer of the virtual network Connection provides each user with a logically independent topology view, allowing users to gain end-to-end control over the network.

所述步骤(4)中所述的开放虚拟网络构建定制系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制的具体内容是:所述的开放虚拟网络构建系统根据网络拓扑探测和性能探测所得到的信息,并定制个性化构建策略,依据不同的构建策略进行虚拟网络映射计算;所述的开放虚拟网络构建系统向用户推荐默认的构建方案,然后用户根据自身需求进行调整修改,以及更为直接地自行构建方式,具体操作是:依据该可视化的网络资源界面,用户根据业务需求、个人偏好、网络状态等信息,用户自主选择有限个数的虚拟节点;选完后虚拟网络计算模块根据用户提供的虚拟节点,运行相应的映射算法重新构建虚拟网络,系统显示可预测的网络创建效果,用户根据效果决定是否进行再次选择;当所述用户需要创建多个虚拟网络时,所述系统对用户的不同虚拟网络进行的并行管理,满足同一用户不同虚拟网络的差异化需求,所述用户也能够动态的调整或取消所构建的虚拟网络。The open virtual network construction and customization system described in the step (4) provides virtual network customization services to users, and the specific content of customizing the virtual network for users according to the needs of specific services is: the open virtual network construction system according to the network Based on the information obtained by topology detection and performance detection, and customizing personalized construction strategies, virtual network mapping calculations are performed according to different construction strategies; the described open virtual network construction system recommends default construction schemes to users, and then users perform Adjustment and modification, as well as a more direct self-construction method, the specific operation is: according to the visualized network resource interface, the user independently selects a limited number of virtual nodes according to business needs, personal preferences, network status and other information; after selection The virtual network calculation module runs the corresponding mapping algorithm to rebuild the virtual network according to the virtual nodes provided by the user, and the system displays predictable network creation effects, and the user decides whether to choose again according to the effect; when the user needs to create multiple virtual networks , the parallel management of different virtual networks of the user by the system meets the differentiated requirements of different virtual networks of the same user, and the user can also dynamically adjust or cancel the constructed virtual network.

所述步骤(4)中系统向用户提供虚拟网络定制服务,用户根据特定业务的需要进行虚拟网络的定制具体包括如下操作步骤:In the step (4), the system provides virtual network customization services to users, and the customization of virtual networks by users according to specific business needs specifically includes the following steps:

(401)用户配置虚拟节点:用户通过虚拟节点的控制操作接口,实现虚拟节点创建、开关虚拟节点电源等;用户对虚拟节点进行设备操作,实现虚拟节点存储或网络接口的增加或删除、虚拟节点的整机迁移等,实现对虚拟节点的灵活控制和动态调整;所述虚拟节点建立后,物理机通过终端套接字调用特定脚本启动网络服务,建立与中心控制台通信连接;所述系统将虚拟节点之间的连接关系作为配置接口向用户开放,支持多个不同的拓扑结构并行部署;对不同的用户,所述系统可以同时提供相互隔离的虚拟网络环境,这些虚拟网络环境的拓扑结构均可由所述用户自行定制;(401) User configures virtual nodes: users create virtual nodes, switch virtual node power, etc. through virtual node control and operation interfaces; users perform device operations on virtual nodes to realize addition or deletion of virtual node storage or network interfaces, virtual node complete machine migration, etc., to achieve flexible control and dynamic adjustment of the virtual node; after the virtual node is established, the physical machine invokes a specific script through the terminal socket to start the network service, and establishes a communication connection with the central console; the system will The connection relationship between virtual nodes is opened to users as a configuration interface, which supports parallel deployment of multiple different topological structures; for different users, the system can provide mutually isolated virtual network environments at the same time, and the topological structures of these virtual network environments are Can be customized by the user;

(402)系统创建虚拟网络:所述系统建立用户账户,进行虚拟网络设置,创建软件路由器配置文件,进行网络服务初始化,并启动单独的虚拟路由器节点;所述系统以用户的配置信息为输入,或用户通过标记可视化图形界面上的节点,在相应的虚拟路由器之间建立虚链路,生成虚拟网络的拓扑结构;虚拟拓扑层屏蔽了物理链路的连接关系,为虚拟网络的上层提供点到点的逻辑连接;(402) The system creates a virtual network: the system establishes a user account, performs virtual network settings, creates a software router configuration file, performs network service initialization, and starts a separate virtual router node; the system uses user configuration information as input, Or the user can mark the nodes on the visual graphical interface, establish virtual links between corresponding virtual routers, and generate the topology structure of the virtual network; the virtual topology layer shields the connection relationship of the physical links, and provides point-to-point logical connection of points;

(403)用户进行虚拟网络安全定制:所述系统可以根据用户的服务需求选配需要承载的安全服务,在新流量通路上选配安全设备(诸如防火墙,IDS/IPS,负载平衡器,VPN等功能),并针对不同网络元素加以配置,为通信提供可选级别的安全控制,建立起一条贯通整套基础设施的高定制化通道;所述的安全服务功能可以支持在特定逻辑环境下构建的虚拟服务,无需大量的手动配置;(403) The user performs virtual network security customization: the system can select security services that need to be carried according to the user's service requirements, and select security devices (such as firewalls, IDS/IPS, load balancers, VPNs, etc.) on new traffic paths function), and configure it for different network elements, provide optional security control for communication, and establish a highly customized channel through the entire infrastructure; the security service function can support the virtual services without extensive manual configuration;

(404)对流量进行定制化转发:所述系统工作在虚拟拓扑之上,在虚拟节点之间提供逐跳的数据转发服务;转发层是虚拟网络的数据平面,执行路由查找功能,获得数据包到达目的地所经过的下一跳虚拟节点,然后对报文进行封装操作,利用相应的虚链路进行转发。(404) Customized forwarding of traffic: the system works on the virtual topology, and provides hop-by-hop data forwarding services between virtual nodes; the forwarding layer is the data plane of the virtual network, and performs routing lookup functions to obtain data packets After arriving at the next hop virtual node passed by the destination, the packet is encapsulated and forwarded using the corresponding virtual link.

参见图3,发明人采用因特网技术领域广泛认可的SDN仿真测试环境Mininet,对本发明所提的系统和方法进行了测试仿真实验。Referring to FIG. 3 , the inventor conducted a test simulation experiment on the system and method proposed by the present invention by using Mininet, an SDN simulation test environment widely recognized in the Internet technology field.

50名测试者参与了本次测试。用户的需求是在所提供的底层物理网络上构建满足自身需求的可控可管的虚拟网络。50 testers participated in this test. The user's demand is to build a controllable and manageable virtual network that meets their own needs on the provided underlying physical network.

实验中设想用户需要将虚拟网络请求1和2的虚拟节点和链路分配到底层物理网络的对应物理节点和链路上。虚拟网络请求1由a、b两节点和连接他们的链路组成,其中节点a要求40单位的CPU资源,节点b要求15单位的CPU资源,链路带宽资源要求为20单位。虚拟网络请求2由c、d、e三个节点和两两连接他们的三条链路组成,其中节点c和d分别要求10单位的CPU资源,节点e要求30单位的CPU资源,ce、de两条链路要求15单位的带宽资源,链路cd要求10单位的带宽资源。底层物理网络上节点和链路的资源情况可见表1:In the experiment, it is assumed that the user needs to allocate the virtual nodes and links of virtual network requests 1 and 2 to the corresponding physical nodes and links of the underlying physical network. Virtual network request 1 consists of nodes a and b and the link connecting them. Node a requires 40 units of CPU resources, node b requires 15 units of CPU resources, and link bandwidth resources require 20 units. The virtual network request 2 consists of three nodes c, d, e and three links connecting them in pairs, where nodes c and d require 10 units of CPU resources respectively, node e requires 30 units of CPU resources, and two nodes ce and de require A link requires 15 units of bandwidth resources, and link cd requires 10 units of bandwidth resources. The resources of nodes and links on the underlying physical network can be seen in Table 1:

表1底层物理网络资源情况Table 1 The underlying physical network resources

实验中一方面采用已有的一种经典虚拟网络映射算法和一种最新虚拟网络映射算法将两个虚拟网络请求进行映射,以作对照。经典算法是2008年Minlan Yu等人在文章“Rethinkingvirtual network embedding:substrate support for path splitting and migration”中提出的算法,最新算法是Jianxin Liao等人在2014年“Topology-aware Virtual Network Embedding Using MultipleCharacteristics”一文中提出的NDC算法。实验的另一方面由每名测试者扮演用户,在对算法映射结果和其他测试者测试结果完全不知情的情况下采用本发明所提的系统和方法进行节点和链路映射选择。On the one hand, the experiment uses an existing classic virtual network mapping algorithm and a new virtual network mapping algorithm to map two virtual network requests for comparison. The classic algorithm is the algorithm proposed by Minlan Yu et al. in the article "Rethinking virtual network embedding:substrate support for path splitting and migration" in 2008. The latest algorithm is Jianxin Liao et al. in the article "Topology-aware Virtual Network Embedding Using Multiple Characteristics" in 2014. The NDC algorithm proposed in this paper. On the other hand of the experiment, each tester acts as a user, and uses the system and method proposed by the present invention to select nodes and links without knowing the results of the algorithm mapping and the test results of other testers.

实验结果具体如下:The experimental results are as follows:

评价指标1:收益成本比(Revenue/Cost Ratio)Evaluation indicator 1: Revenue/Cost Ratio

对经典算法计算得到映射结果进行评价,映射的收益成本比为0.5344;对最新算法NDC计算得到映射结果进行评价,映射的收益成本比为0.5469;对50名测试者采用本发明所提的系统和方法得到的映射结果进行统计,映射的平均收益成本比为0.5587Evaluate the mapping result calculated by the classic algorithm, and the benefit-cost ratio of mapping is 0.5344; evaluate the mapping result obtained by the latest algorithm NDC calculation, the benefit-cost ratio of mapping is 0.5469; adopt the system and the proposed system of the present invention to 50 testers The mapping results obtained by the method are counted, and the average benefit-cost ratio of the mapping is 0.5587

情况2:主观服务满意程度Case 2: Subjective service satisfaction

对于每名测试者,我们将经典算法结果、最新算法结果以及其自身采用本发明所提的系统和方法得到的映射结果三者进行黑箱测试,测试者在无法得知具体算法与结果的情况下对映射得到的虚拟网络1和2进行实际运行测试,然后对三种情况下的两个虚拟网络的实际网络体验进行排序。对于虚拟网络1,50名测试者中有47名选择了采用本发明所提的系统和方法得到的映射结果作为最优结果;而对于虚拟网络2,50名测试者中则有43名选择了采用本发明所提的系统和方法得到的映射结果作为最优结果。For each tester, we conduct a black-box test on the classic algorithm results, the latest algorithm results, and the mapping results obtained by using the system and method proposed by the present invention. The tester cannot know the specific algorithm and results. The virtual network 1 and 2 obtained by mapping are actually tested, and then the actual network experience of the two virtual networks in the three situations is sorted. For virtual network 1, 47 of the 50 testers chose the mapping result obtained by the system and method proposed by the present invention as the optimal result; and for virtual network 2, 43 of the 50 testers chose The mapping result obtained by using the system and method proposed in the present invention is taken as the optimal result.

结果分析:Result analysis:

50名测试者采用发明人的自定制虚拟网络映射策略将两个虚拟网络映射到底层物理网络上,并将各自结果与经典算法结果和最新算法结果进行实际运行体验,并做出评价。我们则通过客观的收益成本比以及主观的服务满意程度两方面将自定制虚拟网络映射策略与经典算法和最新算法对比评价。实验结果表明,以客观的收益成本比作为评价指标,自定制虚拟网络映射策略能够得到比经典算法和最新算法效率更高的映射结果;以主观的服务满意程度作为评价指标,自定制虚拟网络映射策略在绝大多数情况下都得到了比经典算法和最新算法让用户更满意的映射结果。50 testers used the inventor's self-customized virtual network mapping strategy to map the two virtual networks to the underlying physical network, and compared their results with the classic algorithm results and the latest algorithm results for actual running experience and evaluation. We compare and evaluate the self-customized virtual network mapping strategy with the classic algorithm and the latest algorithm through the objective benefit-cost ratio and subjective service satisfaction. The experimental results show that with the objective benefit-cost ratio as the evaluation index, the self-customized virtual network mapping strategy can obtain more efficient mapping results than the classical algorithm and the latest algorithm; with the subjective service satisfaction as the evaluation index, the self-customized virtual network mapping strategy In most cases, the strategy has obtained mapping results that are more satisfying to users than the classical algorithm and the latest algorithm.

实验结果充分证明了利用定制化的虚拟网络映射策略来完成虚拟网络映射的任务是完全可行的。自定制的映射结果要比直接运行算法效率更高,更加灵活,也更贴近用户的需求,使用户参与决策成为可能。The experimental results fully prove that it is completely feasible to use the customized virtual network mapping strategy to complete the task of virtual network mapping. The customized mapping results are more efficient and flexible than running the algorithm directly, and are closer to the needs of users, making it possible for users to participate in decision-making.

发明人经过大量的实验和仿真,获得了满意的实验结果,证实本发明是可行且非常有效的。The inventor has obtained satisfactory experimental results through a large number of experiments and simulations, which proves that the present invention is feasible and very effective.

Claims (8)

1., based on an open virtual network constructing system for software defined network, it is characterized in that: described system comprises following functional module:
Network topological information detecting module: the detection of this module in charge network topological information, described network topology mainly refers to the topological structure of the relative logical location between virtual switch, and namely topological structure is in logic, and not physically; Described network topological information is responsible for detection by SDN controller and result is offered application program; Because network topological information is dynamic change, SDN controller sends detection packet, to determine the validity of this virtual switch to be responsible for virtual switch at set intervals; Each virtual switch is directly connected with SDN controller, constitutes the node of described network topological diagram; For the link information between node, SDN controller can be regarded as root node and utilize Doubletree algorithm to detect;
When node occurring and increasing or lost efficacy, add in described network topological diagram or remove this node and connected limit; When link failure, in described network topological diagram, corresponding sides are removed, to ensure the correctness of network topological information;
Detection content comprises the state of node and the state of link, " activity ", " hang-up ", " shutdown " respectively, wherein " activity " state refers to that node or antenna efficiency are normal and has flow to pass through, " hang-up " state refers to that node or link are in idle condition, namely working properly but pass through without flow, it is abnormal, unreachable that " shutdown " state refers to that node or link occur; According to above information, the status data structure table of described network topological information detecting module structure node and link, and submitted to network resource integration module;
Network performance detecting module: the performance of this module in charge detection network, detection content comprises: the agreement etc. that the time delay of the disposal ability of node, the buffer pool size of node and queue length, queue priority scheduling principle and parameter, link and bandwidth, network use, according to above information, the performance information table of described network performance detecting module structure node and link, and submitted to network resource integration module;
The mode of this module detection network has active probe mode and passive detection mode two kinds, described active probe mode points in network the detection packet sent through specific combination, the analysis of the occurrence features change by web influence suffered by detection packet, obtains network state and performance change; Passive detection mode refers to disposes data acquisition unit in the measurement point of network, collects and flows through the network traffics of this measurement point, periodically poll passive detection equipment Information Monitoring, to judge network performance and state;
Network resource integration module: the information that described network topological information detecting module and described network performance detecting module provide is integrated by this module, obtain the data structure with network performance and network topology structure, comprise the data structure table of description node and link, and describe the data structure information of overall network; Internet resources present module: the Drawing Network Diagram that network resource integration module provides by this module out, be submitted on User Interface and present to user intuitively, be specially: the data structure information that this module provides according to described network resource integration module, depict network topology structure figure, and this topology diagram is presented to user; User can zoom in or out partial network information as required; According to user's needs, this module can present current network performance parameter and physical parameter; User with touch manner unrestricted choice node and link, can carry out information interaction with described open virtual network constructing system and generates topology information easily;
Described network topology structure figure is that a node and link are all with the complicated weighted graph of weight, the weight of its interior joint reflects the current processing capabilities of node, the weight of link is time delay, or bandwidth, or the weighting of time delay and bandwidth is expressed, this complicated weighted graph is the basis of customization virtual network;
User's dummy node selects module: the dummy node of selection, according to described visual physical network resource interface, according to the real needs of oneself, from dummy node and the annexation of main separation finite number, is then submitted to virtual network administration module by user; The topological relation having selected rear virtual network administration module to provide according to user, runs corresponding mapping algorithm and rebuilds virtual network, and system shows predictable network creation effect, and user determines whether again select according to effect;
Virtual network administration module: the virtual resource of this module in charge network resource administration virtualization modules and host resource virtualization modules, and structure and the management of carrying out virtual network; This module is passed through all resource informations in collection, assessment and management bottom-layer network thus is understood the various information of whole network, the mapping of virtual network to existing network topology can be completed according to user's request, allotment and the optimization of global resource can be carried out according to concrete business demand; This module ensures can not clash in the process of Resourse Distribute, makes the mapping of whole virtual network process of runing be convenient to safeguard adjustment, improves the convenience of network control; This module calculates and storage capacity according to virtual machine, the time delay of link and corresponding bandwidth between router, generating virtual network topology structure; This virtual network topology shields the annexation of physical link, and the upper strata for virtual network provides the logic of point-to-point to connect; Internet resources are virtual turns to each user provides in logic independently topological view, for customization virtual network is provided convenience; When described user needs to create multiple virtual network, the concurrent management that the different virtual network of described system of users carries out, meet the differentiated demand of same user's different virtual network, described user also can adjust dynamically or cancel constructed virtual network;
Internet resources virtualization modules: this module completes the mapping of virtual router to existing route device topology according to user's request; By the mode that virtual resource is cut into slices, to be isolated from each other multiple and the virtual network of isomery is mapped on same physical network simultaneously; Internet resources are virtual is divided into node mapping and two stages of link maps, and bottom physical network can support path segmentation flexibly and periodic Path Migration;
Host resource virtualization modules: this module provides virtual for the physical host function becoming multiple fictitious host computer, the host resource fictionalized carries out unified management by being submitted to described virtual network administration module; This host resource virtualization modules provides the control operation interface for virtual machine for user in systems in which, realizes creating the functions such as fictitious host computer, switch fictitious host computer power supply, equipment operating; Realize user to the flexible control of fictitious host computer and dynamic conditioning; Described physical host both performs specific operation as the performance element of order, simultaneously also the part operation order of described system and parameter to be forwarded in fictitious host computer to perform as the unit of reporting of order; Described system utilizes terminal socket mode to communicate between physical host and fictitious host computer;
User Interface module: this module provides user and described open virtual network constructing system to carry out mutual interface, namely interface is divided into four classes: Internet resources display interface, virtual network resource management interface and user's request perception interface, these interfaces are all two-way, namely provide the function of user and system interaction Transfer Parameters;
The function of described Internet resources display interface is: system is periodically shown to user through integrating the network information detected, or user initiatively proposes demand, inquiry current network resources could meet;
The function of described virtual network resource management interface is: user, by the control operation interface of dummy node, realizes dummy node establishment, switch dummy node power supply etc.; User carries out equipment operating to dummy node, realize dummy node store or the increase of network interface or deletion, dummy node complete machine migration etc., realize the flexible control to dummy node and dynamic conditioning; After described dummy node is set up, physical machine starts network service by terminal socket call particular script, sets up and communicates to connect with central control board;
The function of described user's request perception interface is: system, by this interface perception user's request, comprises the type of demand, time, place, preference etc., carries out priority scheduling of resource.
2., based on an open virtual network construction method for software defined network, it is characterized in that: described method comprises following operative step:
(1) user logs in open virtual network constructing system by User Interface; Described user had both comprised basic network keeper, business network keeper, also comprised normal network users;
(2) the open virtual network constructing system described in is by the controller collection network resource information in software defined network and intuitively show to user;
(3) user is the discovery that specific transactions carries out resource by described open virtual network constructing system, and proposes service request; Described user comprises the discovery of Internet resources and the discovery of content resource by the resource discovering that system is carried out; Described specific transactions refers to that this user needs the some service application configured;
(4) the open virtual network described in builds custom-built system and provides virtual network customize services to user, and user needs according to specific transactions the customization carrying out virtual network.
3. a kind of open virtual network construction method based on software defined network according to claim 2, it is characterized in that: the User Interface described in described step (1) refers to the operation interface that described open virtual network constructing system is supplied to the terminal of user, the function that user uses described system to provide by operation interface quickly and easily, both comprise user and register entrance, network topological diagram interface, search window, neighbouring Internet resources and content resource position display, basic network management function is waited in the agreement Internet Protocol location interconnected between network, also comprise virtual network scheme display interface, customizing virtual network, application programming interface API provide, the distinctive function of this opening virtual network construction method such as free mark, third party's correcting data error of location of content, these described operating functions are different according to user right, both comprise basic network keeper, enterprise network administrator, also comprise normal network users, and develop new tactful customization function to enterprise network administrator or normal network users according to network operation strategy open portion basic network bookkeeping, the customization realizing its own virtual network builds.
4. a kind of open virtual network construction method based on software defined network according to claim 2, it is characterized in that: the particular content that systematic collection Internet resources also carry out display directly perceived to user in described step (2) is: the controller in described system and software defined network is mutual, obtain the resource information of whole network, comprise the real time information such as the operation layer flow information on network topological diagram, network state, the link failure of bottom physical network, network accident and network layer; The described network resource information got gathers by described system, intuitively shown to user by Visual controlling interface, user is showed completely by the present situation of whole network, facilitate subsequent user to carry out self-defined structure virtual network to avoid network congestion, not only just accept network passively; Described system provides basic network to generate service for application, can customize virtual network policy interface for application-specific provides.
5. a kind of open virtual network construction method based on software defined network according to claim 2, it is characterized in that: in described step (3), the discovery of described Internet resources refers to the inquiry that user is carried out network element device by described open virtual network constructing system, understands inquired about Internet resources particular location residing in a network to help user; The discovery of described content resource refers to the inquiry that user is carried out content resource by system, and the position understood inquired about content resource to help user and distribute in a network, is convenient to user and selects the rational position of described content resource to connect; Described proposition service request refers to that user customized service connects, it can be simply connect end to end that this customize services connects, also can be that user customizes the complicated interconnecting relation in many ways between service node according to specific requirement, make network externally present specific topological features; When a certain service server, certain section of offered load are larger, described open virtual network constructing system carries out the balancing resource load of the overall situation, is optimized scheduling, determines by the service request of which Internet resources completing user the request of user.
6. a kind of open virtual network construction method based on software defined network according to claim 2, is characterized in that: in described step (4) system provide virtual network customize services to support to user multiple user freely builds proprietary network; The described proprietary network that freely builds relies on network virtualization technology, from main separation Internet resources, according to computing capability and the storage capacity of virtual machine, the time delay of link and corresponding bandwidth between router, generate multiple being isolated from each other and the virtual network of isomery, this net mask annexation of physical link, the upper strata for virtual network provides the logic of point-to-point to connect, for each user provides in logic independently topological view, user is made to obtain the control of network end-to-end.
7. a kind of open virtual network construction method based on software defined network according to claim 2, it is characterized in that: the open virtual network described in described step (4) builds custom-built system and provides virtual network customize services to user, user according to the particular content of the customization carrying out virtual network that needs of specific transactions is: described open virtual network constructing system detects according to network topology probe and performance the information obtained, and customized personal construction strategy, carry out virtual network mapping calculation according to different construction strategy; Described open virtual network constructing system recommends the constructing plan given tacit consent to user, then user carries out redjustment and modification according to self-demand, and more directly building mode voluntarily, concrete operations are: according to this visual Internet resources interface, user is according to information such as business demand, individual preference, network states, and user is from the dummy node of main separation finite number; The dummy node having selected rear Virtual Networking Computing module to provide according to user, runs corresponding mapping algorithm and rebuilds virtual network, and system shows predictable network creation effect, and user determines whether again select according to effect; When described user needs to create multiple virtual network, the concurrent management that the different virtual network of described system of users carries out, meet the differentiated demand of same user's different virtual network, described user also can adjust dynamically or cancel constructed virtual network.
8. a kind of open virtual network construction method based on software defined network according to claim 2, it is characterized in that: in described step (4), system provides virtual network customize services to user, and user specifically comprises following operating procedure according to the customization carrying out virtual network that needs of specific transactions:
(401) user's configuration virtual node: user, by the control operation interface of dummy node, realizes dummy node establishment, switch dummy node power supply etc.; User carries out equipment operating to dummy node, realize dummy node store or the increase of network interface or deletion, dummy node complete machine migration etc., realize the flexible control to dummy node and dynamic conditioning; After described dummy node is set up, physical machine starts network service by terminal socket call particular script, sets up and communicates to connect with central control board; Annexation between dummy node opens as configuration interface to user by described system, supports that multiple different topological structure is parallel and disposes; To different users, described system can provide mutually isolated virtual network environment simultaneously, and the topological structure of these virtual network environments all can by described user's customized;
(402) system creation virtual network: described system sets up user account, carries out virtual network setting, creates software router configuration file, carries out network service initialization, and start independent virtual router node; Described system with the configuration information of user for input, or user by mark visualized graph interface on node, between corresponding virtual router, set up virtual link, generating virtual topology of networks; Virtual topology layer shields the annexation of physical link, and the upper strata for virtual network provides the logic of point-to-point to connect;
(403) user carries out virtual network security customization: described system can need the security service of carrying according to the demand for services apolegamy of user, new flow path matches safety means, and configured for heterogeneous networks element, for communication provides the security control of optional rank, the height setting up a through a whole set of infrastructure customizes passage; The Virtual Service built under described security service function can be supported in certain logic environment, without the need to a large amount of manual configuration;
(404) carry out customization to flow to forward: described system works, on virtual topology, provides the data forwarding service of hop-by-hop between dummy node; Forwarding is the datum plane of virtual network, performs route querying function, obtain packet arrive destination the down hop dummy node of process, then encapsulation operation is carried out to message, utilizes corresponding virtual link to forward.
CN201410724630.3A 2014-07-02 2014-12-02 A kind of opening virtual network constructing system and method based on software defined network Expired - Fee Related CN104363159B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410724630.3A CN104363159B (en) 2014-07-02 2014-12-02 A kind of opening virtual network constructing system and method based on software defined network

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN201410312516X 2014-07-02
CN201410312516 2014-07-02
CN201410312516.X 2014-07-02
CN201410724630.3A CN104363159B (en) 2014-07-02 2014-12-02 A kind of opening virtual network constructing system and method based on software defined network

Publications (2)

Publication Number Publication Date
CN104363159A true CN104363159A (en) 2015-02-18
CN104363159B CN104363159B (en) 2018-04-06

Family

ID=52530386

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410724630.3A Expired - Fee Related CN104363159B (en) 2014-07-02 2014-12-02 A kind of opening virtual network constructing system and method based on software defined network

Country Status (1)

Country Link
CN (1) CN104363159B (en)

Cited By (88)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104811479A (en) * 2015-03-31 2015-07-29 浙江工商大学 Virtual network node establishing method based on forwarding and control separation protocol
CN105024853A (en) * 2015-07-01 2015-11-04 中国科学院信息工程研究所 SDN resource matching and service path discovery method based on rumor propagation mechanism
CN105224692A (en) * 2015-11-03 2016-01-06 武汉烽火网络有限责任公司 Support the system and method for the SDN multilevel flow table parallel search of polycaryon processor
CN105515822A (en) * 2015-11-24 2016-04-20 武汉邮电科学研究院 Internet architecture driven by big data and realization method
CN105553882A (en) * 2015-12-23 2016-05-04 清华大学 Method for scheduling SDN data plane resources
CN105959275A (en) * 2016-04-26 2016-09-21 北京启明星辰信息安全技术有限公司 Security integrated machine system
WO2016169218A1 (en) * 2015-04-22 2016-10-27 中兴通讯股份有限公司 Gateway virtualization method and system, and computer storage medium
WO2016177049A1 (en) * 2015-08-31 2016-11-10 中兴通讯股份有限公司 Method and device for achieving capacity expansion and reduction of access apparatus
CN106301861A (en) * 2015-06-09 2017-01-04 北京智谷睿拓技术服务有限公司 Collision detection method, device and controller
CN106302216A (en) * 2015-05-20 2017-01-04 天脉聚源(北京)科技有限公司 A kind of method and system of Network Load Balance
WO2017008578A1 (en) * 2015-07-15 2017-01-19 华为技术有限公司 Data check method and device in network function virtualization framework
CN106470142A (en) * 2015-08-14 2017-03-01 中国电信股份有限公司 The self-service generation method of virtual network topology and system
CN106559358A (en) * 2015-09-29 2017-04-05 联想企业解决方案(新加坡)有限公司 Logical Switch Architecture for Network Virtualization
CN106657003A (en) * 2016-11-11 2017-05-10 浙江中烟工业有限责任公司 Flexible and software-definable network security isolation method
CN106685730A (en) * 2017-01-23 2017-05-17 郑州云海信息技术有限公司 SDN network system with separated configuration management and controlling
CN106888461A (en) * 2016-06-08 2017-06-23 阿里巴巴集团控股有限公司 The construction method and equipment of a kind of vulnerable network environment
WO2017120814A1 (en) * 2016-01-14 2017-07-20 华为技术有限公司 Method and system for managing resource objects
CN107027134A (en) * 2016-02-01 2017-08-08 上海无线通信研究中心 A kind of user-defined radio communication network side method and system
CN107133083A (en) * 2017-04-13 2017-09-05 大连理工大学 A kind of virtual data center resource provider method based on virtualization technology
CN107135095A (en) * 2017-04-10 2017-09-05 清华大学 Method and system for visual editing of virtual machine network topology
CN107222325A (en) * 2016-03-22 2017-09-29 中兴通讯股份有限公司 The generation method and device of a kind of virtual network
CN107294752A (en) * 2016-04-01 2017-10-24 中兴通讯股份有限公司 Realize framework, the method and device of network function communication
WO2017198004A1 (en) * 2016-05-20 2017-11-23 中兴通讯股份有限公司 Method and apparatus for processing sdn source, and storage medium
CN107479879A (en) * 2017-07-28 2017-12-15 扬州大学 The API and its use recommendation method that a kind of software-oriented function is safeguarded
WO2017219173A1 (en) * 2016-06-20 2017-12-28 Telefonaktiebolaget Lm Ericsson (Publ) Method and device for determining resource utilization
CN107659419A (en) * 2016-07-25 2018-02-02 华为技术有限公司 Network dicing method and system
CN107690830A (en) * 2015-05-04 2018-02-13 沙特阿拉伯石油公司 Systems, methods, and computer media for providing adaptive priority scheduling of communications over a network and dynamic resource allocation among devices in the network
CN107707381A (en) * 2017-08-04 2018-02-16 北京天元创新科技有限公司 Virtual NE intelligence section management system and method
WO2018040797A1 (en) * 2016-08-30 2018-03-08 中兴通讯股份有限公司 Network function virtualization management method and device
CN107959582A (en) * 2016-10-18 2018-04-24 华为技术有限公司 A kind of management method and device of example of cutting into slices
CN108011734A (en) * 2016-10-27 2018-05-08 常州市小先信息技术有限公司 Terminal management framework based on software definition
WO2018086569A1 (en) * 2016-11-10 2018-05-17 北京大学(天津滨海)新一代信息技术研究院 Dynamic sdn configuration method based on application awareness of virtual network
CN108540538A (en) * 2018-03-20 2018-09-14 西安电子科技大学 A kind of cloud and mist conjugate working application structure system based on SDN
CN108540307A (en) * 2018-03-01 2018-09-14 南京理工大学 Software and hardware based on SDN mixes virtual network custom-built system
CN108604334A (en) * 2016-02-13 2018-09-28 At&T知识产权部有限合伙公司 Method and apparatus for autonomous service composition
CN108718244A (en) * 2017-12-20 2018-10-30 北京时代民芯科技有限公司 A kind of frame of reference and method for multi-service fusion
CN108737261A (en) * 2018-05-10 2018-11-02 电子科技大学 A kind of two stage virtual network function forwarding G- Design method
CN108770025A (en) * 2018-05-31 2018-11-06 西安电子科技大学 Heterogeneous wireless network switching method based on RAN slices
CN108809794A (en) * 2017-05-04 2018-11-13 中兴通讯股份有限公司 Transmission net virtual network creation method and device based on SDN and transmission network system
CN108965015A (en) * 2018-07-25 2018-12-07 上海应用技术大学 A kind of network transmission system for testing stability based on SDN
CN109155758A (en) * 2016-04-06 2019-01-04 阿尔卡特朗讯公司 Virtual base framework
CN109150577A (en) * 2017-06-27 2019-01-04 中兴通讯股份有限公司 Business management method and network management system
CN109565467A (en) * 2016-08-05 2019-04-02 华为技术有限公司 Virtual network provisioning to support service-based traffic forwarding
CN109710382A (en) * 2018-12-29 2019-05-03 北京神舟航天软件技术有限公司 A kind of virtual platform construction method
CN109845201A (en) * 2016-08-08 2019-06-04 西门子股份公司 Method, software agent, networking device and SDN controller for software-defined networking of cyber-physical networks in different technical fields, especially industrial automation networks
CN109964451A (en) * 2016-11-22 2019-07-02 亚马逊科技公司 virtual network authentication service
CN109981307A (en) * 2017-12-27 2019-07-05 中国电信股份有限公司 Method and system for network simulation
CN110115055A (en) * 2016-12-23 2019-08-09 华为技术有限公司 Systems and methods for programming and/or managing core network slices
CN110298381A (en) * 2019-05-24 2019-10-01 中山大学 A kind of cloud security service functional tree Network Intrusion Detection System
CN110326345A (en) * 2017-03-24 2019-10-11 华为技术有限公司 A kind of methods, devices and systems of Configuration network slice
CN110493058A (en) * 2019-08-26 2019-11-22 奇安信科技集团股份有限公司 The construction method and device of network topology structure, storage medium, terminal
CN110865867A (en) * 2015-12-21 2020-03-06 华为技术有限公司 Method, device and system for discovering application topological relation
CN111049747A (en) * 2019-12-18 2020-04-21 北京计算机技术及应用研究所 An intelligent virtual network path planning method for large-scale container clusters
CN111405034A (en) * 2020-03-13 2020-07-10 黄东 Intelligent service private network architecture
CN111757390A (en) * 2019-03-29 2020-10-09 中兴通讯股份有限公司 A method and network management and control system for supporting network slicing
CN111934922A (en) * 2020-07-29 2020-11-13 深信服科技股份有限公司 Method, device, equipment and storage medium for constructing network topology
CN111950919A (en) * 2020-08-19 2020-11-17 重庆邮电大学 An Industrial Virtualization Production and Service Architecture Based on Network Virtualization Technology
CN112003825A (en) * 2020-07-24 2020-11-27 国家电网有限公司 An SDN-based virtual network isolation method and SDN controller
CN112073397A (en) * 2020-08-27 2020-12-11 北京计算机技术及应用研究所 Software definition security-based hybrid resource management system
CN112104491A (en) * 2020-09-04 2020-12-18 中国电子科技集团公司第二十研究所 Service-oriented network virtualization resource management method
CN112311582A (en) * 2019-07-23 2021-02-02 瞻博网络公司 Verifying user-defined wiring plans for computer networks based on physical wiring topology
CN112327667A (en) * 2020-11-10 2021-02-05 南京大学 Semi-physical simulation element design method for large-scale unmanned cluster network
CN112532428A (en) * 2020-11-10 2021-03-19 南京大学 Business-driven large-scale network simulation method and system
CN112653580A (en) * 2020-12-16 2021-04-13 国网河南省电力公司信息通信公司 Virtual network resource allocation method based on active detection under network slice
CN112804081A (en) * 2020-12-25 2021-05-14 中国科学院信息工程研究所 Method for constructing and dynamically changing virtual network topology
CN112825502A (en) * 2019-11-20 2021-05-21 中兴通讯股份有限公司 Network slice creation method, basic network controller, system, and storage medium
CN113015960A (en) * 2018-11-14 2021-06-22 微软技术许可有限责任公司 Infrastructure support in cloud environment
CN113079050A (en) * 2021-03-31 2021-07-06 广东电网有限责任公司电力调度控制中心 Virtual network resource allocation method and device based on active detection under network slice
CN113678406A (en) * 2019-04-30 2021-11-19 思科技术公司 Multi-structure deployment and management platform
CN113747150A (en) * 2021-11-02 2021-12-03 军事科学院系统工程研究院网络信息研究所 Method and system for testing video service system based on container cloud
WO2022001004A1 (en) * 2020-06-28 2022-01-06 中移(成都)信息通信科技有限公司 Secure network construction method and apparatus, device, and computer storage medium
CN113965515A (en) * 2021-09-26 2022-01-21 杭州安恒信息技术股份有限公司 Virtualized network link visualization method, system, computer and storage medium
CN114157718A (en) * 2021-11-12 2022-03-08 国网冀北电力有限公司信息通信分公司 SDN network system and control method thereof
CN114244650A (en) * 2021-11-25 2022-03-25 茂名市速网网络科技有限公司 Virtual network architecture method, storage medium and computer device
CN114363021A (en) * 2021-12-22 2022-04-15 绿盟科技集团股份有限公司 Network shooting range system, virtual network implementation method and device of network shooting range system
CN114500297A (en) * 2022-04-01 2022-05-13 中国科学技术大学 Large-scale network testing system based on virtual-real fusion
US11336548B1 (en) 2021-07-14 2022-05-17 Nanning Fulian Fugui Precision Industrial Co., Ltd. Method, apparatus, and computer readable storage medium for managing network slices for the benefit of users
CN114826915A (en) * 2021-01-27 2022-07-29 迪莲娜(上海)大数据服务有限公司 Virtual network interface packaging and calling method, system, medium and management platform
CN115051927A (en) * 2022-07-01 2022-09-13 中国信息通信研究院 Data network development method and system
CN115225508A (en) * 2022-04-06 2022-10-21 郑州信大先进技术研究院 Internet target range scene construction method
CN115357333A (en) * 2022-07-08 2022-11-18 电子科技大学 Large-scale topology arrangement management system facing virtual network
CN116016164A (en) * 2022-12-27 2023-04-25 商密信安(北京)科技有限公司 A virtual service network construction method based on software-defined network
CN116074389A (en) * 2022-12-27 2023-05-05 北京邮电大学 Wide area super fusion service customization system facing distributed cloud
US11671442B2 (en) 2018-06-27 2023-06-06 Amazon Technologies, Inc. Automated packetless network reachability analysis
CN116915621A (en) * 2023-06-30 2023-10-20 深圳市兆能讯通科技有限公司 PON-based FTTR enterprise networking method and system
CN117202239A (en) * 2023-11-06 2023-12-08 深圳市四海伽蓝电子科技有限公司 Method and system for unified management of wireless network bridge network
CN117707693A (en) * 2023-12-11 2024-03-15 之江实验室 Heterogeneous intelligent computing platform virtualization management system and method
US11934652B2 (en) 2020-10-14 2024-03-19 Samsung Electronics Co., Ltd. Display apparatus and control method thereof

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1455483A (en) * 2002-04-15 2003-11-12 夏普公司 Semiconductor laser and mfg. method thereof
CN102546232A (en) * 2011-11-03 2012-07-04 北京邮电大学 Multi-topology mapping method of virtual network
CN102932479A (en) * 2012-11-16 2013-02-13 北京邮电大学 A topology-aware virtual network mapping method based on historical data
CN103581329A (en) * 2013-11-14 2014-02-12 中国科学院大学 Construction method for topological structure based on clustered peer-to-peer network streaming media direct broadcast system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1455483A (en) * 2002-04-15 2003-11-12 夏普公司 Semiconductor laser and mfg. method thereof
CN102546232A (en) * 2011-11-03 2012-07-04 北京邮电大学 Multi-topology mapping method of virtual network
CN102932479A (en) * 2012-11-16 2013-02-13 北京邮电大学 A topology-aware virtual network mapping method based on historical data
CN103581329A (en) * 2013-11-14 2014-02-12 中国科学院大学 Construction method for topological structure based on clustered peer-to-peer network streaming media direct broadcast system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
李丹等: "软件定义的云数据中心网络基础理论与关键技术", 《电信科学》 *

Cited By (142)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104811479A (en) * 2015-03-31 2015-07-29 浙江工商大学 Virtual network node establishing method based on forwarding and control separation protocol
CN104811479B (en) * 2015-03-31 2018-02-09 浙江工商大学 A kind of creation method based on forwarding with the virtual network node of control separated protocol
WO2016169218A1 (en) * 2015-04-22 2016-10-27 中兴通讯股份有限公司 Gateway virtualization method and system, and computer storage medium
CN106161174A (en) * 2015-04-22 2016-11-23 中兴通讯股份有限公司 A kind of net virtual method and system
CN107690830A (en) * 2015-05-04 2018-02-13 沙特阿拉伯石油公司 Systems, methods, and computer media for providing adaptive priority scheduling of communications over a network and dynamic resource allocation among devices in the network
CN106302216A (en) * 2015-05-20 2017-01-04 天脉聚源(北京)科技有限公司 A kind of method and system of Network Load Balance
CN106301861A (en) * 2015-06-09 2017-01-04 北京智谷睿拓技术服务有限公司 Collision detection method, device and controller
CN105024853A (en) * 2015-07-01 2015-11-04 中国科学院信息工程研究所 SDN resource matching and service path discovery method based on rumor propagation mechanism
WO2017008578A1 (en) * 2015-07-15 2017-01-19 华为技术有限公司 Data check method and device in network function virtualization framework
CN106470142A (en) * 2015-08-14 2017-03-01 中国电信股份有限公司 The self-service generation method of virtual network topology and system
CN106487558B (en) * 2015-08-31 2019-03-15 中兴通讯股份有限公司 A method and device for realizing expansion and contraction of access equipment
CN106487558A (en) * 2015-08-31 2017-03-08 中兴通讯股份有限公司 A kind of method and apparatus realizing the scalable appearance of access device
WO2016177049A1 (en) * 2015-08-31 2016-11-10 中兴通讯股份有限公司 Method and device for achieving capacity expansion and reduction of access apparatus
CN106559358A (en) * 2015-09-29 2017-04-05 联想企业解决方案(新加坡)有限公司 Logical Switch Architecture for Network Virtualization
CN105224692A (en) * 2015-11-03 2016-01-06 武汉烽火网络有限责任公司 Support the system and method for the SDN multilevel flow table parallel search of polycaryon processor
CN105224692B (en) * 2015-11-03 2018-08-31 武汉烽火网络有限责任公司 Support the system and method for the SDN multilevel flow table parallel searchs of multi-core processor
CN105515822A (en) * 2015-11-24 2016-04-20 武汉邮电科学研究院 Internet architecture driven by big data and realization method
CN110865867A (en) * 2015-12-21 2020-03-06 华为技术有限公司 Method, device and system for discovering application topological relation
CN110865867B (en) * 2015-12-21 2023-08-25 华为云计算技术有限公司 Method, device and system for discovering application topological relation
CN105553882A (en) * 2015-12-23 2016-05-04 清华大学 Method for scheduling SDN data plane resources
CN105553882B (en) * 2015-12-23 2018-08-28 清华大学 Method for the scheduling of SDN data-plane resources
WO2017120814A1 (en) * 2016-01-14 2017-07-20 华为技术有限公司 Method and system for managing resource objects
CN107710196B (en) * 2016-01-14 2020-12-01 华为技术有限公司 A method and system for managing resource objects
CN107710196A (en) * 2016-01-14 2018-02-16 华为技术有限公司 A kind of method and system for managing resource object
CN107027134A (en) * 2016-02-01 2017-08-08 上海无线通信研究中心 A kind of user-defined radio communication network side method and system
US11222343B2 (en) 2016-02-13 2022-01-11 At&T Intellectual Property I, L.P. Method and apparatus for autonomous services composition
US11615425B2 (en) 2016-02-13 2023-03-28 At&T Intellectual Property I, L.P. Method and apparatus for autonomous services composition
CN108604334A (en) * 2016-02-13 2018-09-28 At&T知识产权部有限合伙公司 Method and apparatus for autonomous service composition
CN107222325A (en) * 2016-03-22 2017-09-29 中兴通讯股份有限公司 The generation method and device of a kind of virtual network
CN107294752A (en) * 2016-04-01 2017-10-24 中兴通讯股份有限公司 Realize framework, the method and device of network function communication
CN109155758B (en) * 2016-04-06 2021-07-09 阿尔卡特朗讯公司 Device and method for hierarchical management of virtual infrastructure resources
CN109155758A (en) * 2016-04-06 2019-01-04 阿尔卡特朗讯公司 Virtual base framework
CN105959275A (en) * 2016-04-26 2016-09-21 北京启明星辰信息安全技术有限公司 Security integrated machine system
CN107404507B (en) * 2016-05-20 2022-03-29 中兴通讯股份有限公司 SDN resource processing method and device
CN107404507A (en) * 2016-05-20 2017-11-28 中兴通讯股份有限公司 A kind of processing method and processing device of SDN resources
WO2017198004A1 (en) * 2016-05-20 2017-11-23 中兴通讯股份有限公司 Method and apparatus for processing sdn source, and storage medium
CN106888461A (en) * 2016-06-08 2017-06-23 阿里巴巴集团控股有限公司 The construction method and equipment of a kind of vulnerable network environment
US10924357B2 (en) 2016-06-20 2021-02-16 Telefonaktiebolaget Lm Ericsson (Publ) Method and device for determining resource utilization
WO2017219173A1 (en) * 2016-06-20 2017-12-28 Telefonaktiebolaget Lm Ericsson (Publ) Method and device for determining resource utilization
CN107659419A (en) * 2016-07-25 2018-02-02 华为技术有限公司 Network dicing method and system
US11381452B2 (en) 2016-07-25 2022-07-05 Huawei Technologies Co., Ltd. Network slicing method and system
US11882027B2 (en) 2016-08-05 2024-01-23 Huawei Technologies Co., Ltd. End point to edge node interaction in wireless communication networks
US11165689B2 (en) 2016-08-05 2021-11-02 Huawei Technologies Co., Ltd Service-based traffic forwarding in virtual networks
CN109565467A (en) * 2016-08-05 2019-04-02 华为技术有限公司 Virtual network provisioning to support service-based traffic forwarding
CN109845201A (en) * 2016-08-08 2019-06-04 西门子股份公司 Method, software agent, networking device and SDN controller for software-defined networking of cyber-physical networks in different technical fields, especially industrial automation networks
WO2018040797A1 (en) * 2016-08-30 2018-03-08 中兴通讯股份有限公司 Network function virtualization management method and device
CN107959582B (en) * 2016-10-18 2020-12-01 华为技术有限公司 A method and device for managing slice instances
US10819592B2 (en) 2016-10-18 2020-10-27 Huawei Technologies Co., Ltd. Slice instance management method and apparatus
CN107959582A (en) * 2016-10-18 2018-04-24 华为技术有限公司 A kind of management method and device of example of cutting into slices
WO2018072612A1 (en) * 2016-10-18 2018-04-26 华为技术有限公司 Method for managing slice instance and apparatus
CN108011734A (en) * 2016-10-27 2018-05-08 常州市小先信息技术有限公司 Terminal management framework based on software definition
WO2018086569A1 (en) * 2016-11-10 2018-05-17 北京大学(天津滨海)新一代信息技术研究院 Dynamic sdn configuration method based on application awareness of virtual network
CN106657003A (en) * 2016-11-11 2017-05-10 浙江中烟工业有限责任公司 Flexible and software-definable network security isolation method
CN109964451B (en) * 2016-11-22 2022-06-07 亚马逊科技公司 Method and system for providing virtual network authentication service
CN109964451A (en) * 2016-11-22 2019-07-02 亚马逊科技公司 virtual network authentication service
US12126495B2 (en) 2016-11-22 2024-10-22 Amazon Technologies, Inc. Virtual network verification service
CN110115055B (en) * 2016-12-23 2021-09-14 华为技术有限公司 System and method for programming and/or managing core network slices
US11102075B2 (en) 2016-12-23 2021-08-24 Huawei Technologies Co., Ltd. System and method for programming and/or management of core network slices
CN110115055A (en) * 2016-12-23 2019-08-09 华为技术有限公司 Systems and methods for programming and/or managing core network slices
CN106685730B (en) * 2017-01-23 2020-02-11 苏州浪潮智能科技有限公司 Sdn network system with separated configuration management and control
CN106685730A (en) * 2017-01-23 2017-05-17 郑州云海信息技术有限公司 SDN network system with separated configuration management and controlling
US11750453B2 (en) 2017-03-24 2023-09-05 Huawei Technologies Co., Ltd. Network slice configuration method, apparatus, and system
CN110326345B (en) * 2017-03-24 2021-12-24 华为技术有限公司 Method, device and system for configuring network slice
CN110326345A (en) * 2017-03-24 2019-10-11 华为技术有限公司 A kind of methods, devices and systems of Configuration network slice
US11265210B2 (en) 2017-03-24 2022-03-01 Huawei Technologies Co., Ltd. Network slice configuration method, apparatus, and system
US12113667B2 (en) 2017-03-24 2024-10-08 Huawei Technologies Co., Ltd. Network slice configuration method, apparatus, and system
CN107135095A (en) * 2017-04-10 2017-09-05 清华大学 Method and system for visual editing of virtual machine network topology
CN107133083B (en) * 2017-04-13 2020-01-17 大连理工大学 A method for providing virtual data center resources based on virtualization technology
CN107133083A (en) * 2017-04-13 2017-09-05 大连理工大学 A kind of virtual data center resource provider method based on virtualization technology
CN108809794A (en) * 2017-05-04 2018-11-13 中兴通讯股份有限公司 Transmission net virtual network creation method and device based on SDN and transmission network system
CN109150577A (en) * 2017-06-27 2019-01-04 中兴通讯股份有限公司 Business management method and network management system
CN107479879A (en) * 2017-07-28 2017-12-15 扬州大学 The API and its use recommendation method that a kind of software-oriented function is safeguarded
CN107707381A (en) * 2017-08-04 2018-02-16 北京天元创新科技有限公司 Virtual NE intelligence section management system and method
CN108718244A (en) * 2017-12-20 2018-10-30 北京时代民芯科技有限公司 A kind of frame of reference and method for multi-service fusion
CN109981307A (en) * 2017-12-27 2019-07-05 中国电信股份有限公司 Method and system for network simulation
CN108540307A (en) * 2018-03-01 2018-09-14 南京理工大学 Software and hardware based on SDN mixes virtual network custom-built system
CN108540307B (en) * 2018-03-01 2022-01-11 南京理工大学 Software and hardware mixed virtual network customization system based on SDN
CN108540538A (en) * 2018-03-20 2018-09-14 西安电子科技大学 A kind of cloud and mist conjugate working application structure system based on SDN
CN108540538B (en) * 2018-03-20 2021-01-26 西安电子科技大学 An SDN-based cloud and fog combined with IoT application construction system
CN108737261A (en) * 2018-05-10 2018-11-02 电子科技大学 A kind of two stage virtual network function forwarding G- Design method
CN108737261B (en) * 2018-05-10 2020-03-17 电子科技大学 Two-stage virtual network function forwarding graph design method
CN108770025A (en) * 2018-05-31 2018-11-06 西安电子科技大学 Heterogeneous wireless network switching method based on RAN slices
US11671442B2 (en) 2018-06-27 2023-06-06 Amazon Technologies, Inc. Automated packetless network reachability analysis
US12437080B2 (en) 2018-06-27 2025-10-07 Amazon Technologies, Inc. Automated packetless network reachability analysis
CN108965015A (en) * 2018-07-25 2018-12-07 上海应用技术大学 A kind of network transmission system for testing stability based on SDN
CN113015960A (en) * 2018-11-14 2021-06-22 微软技术许可有限责任公司 Infrastructure support in cloud environment
CN109710382A (en) * 2018-12-29 2019-05-03 北京神舟航天软件技术有限公司 A kind of virtual platform construction method
CN111757390A (en) * 2019-03-29 2020-10-09 中兴通讯股份有限公司 A method and network management and control system for supporting network slicing
CN113678406A (en) * 2019-04-30 2021-11-19 思科技术公司 Multi-structure deployment and management platform
CN110298381A (en) * 2019-05-24 2019-10-01 中山大学 A kind of cloud security service functional tree Network Intrusion Detection System
CN110298381B (en) * 2019-05-24 2022-09-20 中山大学 Cloud security service function tree network intrusion detection system
CN112311582B (en) * 2019-07-23 2023-08-08 瞻博网络公司 Validate user-defined wiring plans for computer networks based on physical wiring topology
CN112311582A (en) * 2019-07-23 2021-02-02 瞻博网络公司 Verifying user-defined wiring plans for computer networks based on physical wiring topology
CN110493058A (en) * 2019-08-26 2019-11-22 奇安信科技集团股份有限公司 The construction method and device of network topology structure, storage medium, terminal
CN112825502A (en) * 2019-11-20 2021-05-21 中兴通讯股份有限公司 Network slice creation method, basic network controller, system, and storage medium
CN111049747A (en) * 2019-12-18 2020-04-21 北京计算机技术及应用研究所 An intelligent virtual network path planning method for large-scale container clusters
CN111405034B (en) * 2020-03-13 2022-09-20 黄东 Intelligent service private network architecture
CN111405034A (en) * 2020-03-13 2020-07-10 黄东 Intelligent service private network architecture
WO2022001004A1 (en) * 2020-06-28 2022-01-06 中移(成都)信息通信科技有限公司 Secure network construction method and apparatus, device, and computer storage medium
CN112003825A (en) * 2020-07-24 2020-11-27 国家电网有限公司 An SDN-based virtual network isolation method and SDN controller
CN111934922A (en) * 2020-07-29 2020-11-13 深信服科技股份有限公司 Method, device, equipment and storage medium for constructing network topology
CN111934922B (en) * 2020-07-29 2023-07-14 深信服科技股份有限公司 Method, device, equipment and storage medium for constructing network topology
CN111950919B (en) * 2020-08-19 2023-12-12 重庆邮电大学 Industrial virtualization production and service system based on network virtualization technology
CN111950919A (en) * 2020-08-19 2020-11-17 重庆邮电大学 An Industrial Virtualization Production and Service Architecture Based on Network Virtualization Technology
CN112073397A (en) * 2020-08-27 2020-12-11 北京计算机技术及应用研究所 Software definition security-based hybrid resource management system
CN112073397B (en) * 2020-08-27 2022-08-23 北京计算机技术及应用研究所 Software-defined security-based hybrid resource management system
CN112104491B (en) * 2020-09-04 2022-06-10 中国电子科技集团公司第二十研究所 Service-oriented network virtualization resource management method
CN112104491A (en) * 2020-09-04 2020-12-18 中国电子科技集团公司第二十研究所 Service-oriented network virtualization resource management method
US11934652B2 (en) 2020-10-14 2024-03-19 Samsung Electronics Co., Ltd. Display apparatus and control method thereof
CN112327667A (en) * 2020-11-10 2021-02-05 南京大学 Semi-physical simulation element design method for large-scale unmanned cluster network
CN112327667B (en) * 2020-11-10 2022-02-08 南京大学 Semi-physical simulation element design method for large-scale unmanned cluster network
CN112532428A (en) * 2020-11-10 2021-03-19 南京大学 Business-driven large-scale network simulation method and system
CN112653580A (en) * 2020-12-16 2021-04-13 国网河南省电力公司信息通信公司 Virtual network resource allocation method based on active detection under network slice
CN112804081A (en) * 2020-12-25 2021-05-14 中国科学院信息工程研究所 Method for constructing and dynamically changing virtual network topology
CN114826915A (en) * 2021-01-27 2022-07-29 迪莲娜(上海)大数据服务有限公司 Virtual network interface packaging and calling method, system, medium and management platform
CN114826915B (en) * 2021-01-27 2024-04-19 迪莲娜(上海)大数据服务有限公司 Virtual network interface encapsulation and calling method, system, medium and management platform
CN113079050B (en) * 2021-03-31 2022-08-02 广东电网有限责任公司电力调度控制中心 Virtual network resource allocation method and device based on active detection under network slice
CN113079050A (en) * 2021-03-31 2021-07-06 广东电网有限责任公司电力调度控制中心 Virtual network resource allocation method and device based on active detection under network slice
US11336548B1 (en) 2021-07-14 2022-05-17 Nanning Fulian Fugui Precision Industrial Co., Ltd. Method, apparatus, and computer readable storage medium for managing network slices for the benefit of users
CN113965515A (en) * 2021-09-26 2022-01-21 杭州安恒信息技术股份有限公司 Virtualized network link visualization method, system, computer and storage medium
CN113747150B (en) * 2021-11-02 2022-02-22 军事科学院系统工程研究院网络信息研究所 Method and system for testing video service system based on container cloud
CN113747150A (en) * 2021-11-02 2021-12-03 军事科学院系统工程研究院网络信息研究所 Method and system for testing video service system based on container cloud
CN114157718B (en) * 2021-11-12 2023-07-25 国网冀北电力有限公司信息通信分公司 SDN network system and control method thereof
CN114157718A (en) * 2021-11-12 2022-03-08 国网冀北电力有限公司信息通信分公司 SDN network system and control method thereof
CN114244650B (en) * 2021-11-25 2023-06-27 茂名市速网网络科技有限公司 Virtual network architecture method, storage medium, and computer device
CN114244650A (en) * 2021-11-25 2022-03-25 茂名市速网网络科技有限公司 Virtual network architecture method, storage medium and computer device
CN114363021A (en) * 2021-12-22 2022-04-15 绿盟科技集团股份有限公司 Network shooting range system, virtual network implementation method and device of network shooting range system
CN114363021B (en) * 2021-12-22 2023-11-03 绿盟科技集团股份有限公司 Network target range system, virtual network implementation method and device of network target range system
CN114500297B (en) * 2022-04-01 2022-07-15 中国科学技术大学 Large-scale network test system based on virtual and real integration
CN114500297A (en) * 2022-04-01 2022-05-13 中国科学技术大学 Large-scale network testing system based on virtual-real fusion
CN115225508A (en) * 2022-04-06 2022-10-21 郑州信大先进技术研究院 Internet target range scene construction method
CN115225508B (en) * 2022-04-06 2024-06-18 郑州信大先进技术研究院 A method for constructing Internet shooting range scene
CN115051927B (en) * 2022-07-01 2023-09-19 中国信息通信研究院 Data network development method and system
CN115051927A (en) * 2022-07-01 2022-09-13 中国信息通信研究院 Data network development method and system
CN115357333A (en) * 2022-07-08 2022-11-18 电子科技大学 Large-scale topology arrangement management system facing virtual network
CN116074389A (en) * 2022-12-27 2023-05-05 北京邮电大学 Wide area super fusion service customization system facing distributed cloud
CN116016164A (en) * 2022-12-27 2023-04-25 商密信安(北京)科技有限公司 A virtual service network construction method based on software-defined network
CN116016164B (en) * 2022-12-27 2025-08-01 商密信安(北京)科技有限公司 Virtual service network construction method based on software defined network
CN116915621A (en) * 2023-06-30 2023-10-20 深圳市兆能讯通科技有限公司 PON-based FTTR enterprise networking method and system
CN117202239B (en) * 2023-11-06 2024-02-20 深圳市四海伽蓝电子科技有限公司 Method and system for unified management of wireless network bridge network
CN117202239A (en) * 2023-11-06 2023-12-08 深圳市四海伽蓝电子科技有限公司 Method and system for unified management of wireless network bridge network
CN117707693A (en) * 2023-12-11 2024-03-15 之江实验室 Heterogeneous intelligent computing platform virtualization management system and method

Also Published As

Publication number Publication date
CN104363159B (en) 2018-04-06

Similar Documents

Publication Publication Date Title
CN104363159B (en) A kind of opening virtual network constructing system and method based on software defined network
US11949568B1 (en) Wan link selection for SD-WAN services
CN104104718B (en) User autonomous routing customization system based on software-defined network
US11552841B2 (en) Method and apparatus for configuring service
CN114553665B (en) Method, controller and computer readable medium for computer network
Wibowo et al. Multi-domain software defined networking: research status and challenges
US9584369B2 (en) Methods of representing software defined networking-based multiple layer network topology views
US10742556B2 (en) Tactical traffic engineering based on segment routing policies
EP2774048B1 (en) Affinity modeling in a data center network
US9887777B2 (en) Affinity modeling in a data center network
US9288162B2 (en) Adaptive infrastructure for distributed virtual switch
US9697172B1 (en) Virtual network optimizing a physical network
US10924385B2 (en) Weighted multipath routing configuration in software-defined network (SDN) environments
CN108293001A (en) A kind of dispositions method of software definition data center and service cluster therein
WO2016089921A1 (en) System and method of discovering paths in a network
CN104639362A (en) OAM (operation administration and maintenance) performance monitoring method and OAM performance monitoring device
Chen et al. Deterministic quality of service guarantee for dynamic service chaining in software defined networking
Kumar et al. A programmable and managed software defined network
Vdovin et al. Network utilization optimizer for SD-WAN
US20250071021A1 (en) Configuring components of a software-defined network to automatically deploy and monitor logical edge routers for users
Chen et al. A dynamic security traversal mechanism for providing deterministic delay guarantee in SDN
Dayapala et al. Investigation of Routing Techniques to Develop a Model for Software-Defined Networks using Border Gateway Protocol
Zhang et al. Load-Balancing Routing Optimization in SDN: A QoS-Aware Approach with Improved Shortest Path and Adaptive Resource Allocation
Arnold Understanding Cloud Network Performance
Kapse Enhancement of Network Throughput in SDN Using Shortest Path Routing Algorithms

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
EXSB Decision made by sipo to initiate substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20180406