[go: up one dir, main page]

WO2020088340A1 - Method and system for providing cloud computing service - Google Patents

Method and system for providing cloud computing service Download PDF

Info

Publication number
WO2020088340A1
WO2020088340A1 PCT/CN2019/113039 CN2019113039W WO2020088340A1 WO 2020088340 A1 WO2020088340 A1 WO 2020088340A1 CN 2019113039 W CN2019113039 W CN 2019113039W WO 2020088340 A1 WO2020088340 A1 WO 2020088340A1
Authority
WO
WIPO (PCT)
Prior art keywords
virtual machine
area
service
control module
resources
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2019/113039
Other languages
French (fr)
Chinese (zh)
Inventor
向亚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Alibaba Group Holding Ltd
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Publication of WO2020088340A1 publication Critical patent/WO2020088340A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45562Creating, deleting, cloning virtual machine instances
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/4557Distribution of virtual machine instances; Migration and load balancing

Definitions

  • the invention relates to the field of cloud computing, and in particular to a method and system for providing cloud computing services.
  • IDC Internet Data Center
  • the present invention is proposed in order to provide a system for providing cloud computing services and a corresponding method for providing cloud computing services that overcome the above problems or at least partially solve the above problems.
  • a system for providing cloud computing services including:
  • the first virtual machine management and control module is deployed on the physical machine in the first area, and is adapted to create the first virtual machine based on the physical machine resources in the first area;
  • the second virtual machine management and control module is deployed on the first virtual machine and is adapted to create a second virtual machine based on the physical machine resources in the second area and provide cloud computing services based on the created second virtual machine;
  • the physical machine resources in the first area and the physical machine resources in the second area are connected through a network.
  • a method for providing cloud computing services including:
  • a first virtual machine management and control module is formed on the physical machine in the first area, and the first virtual machine management and control module creates the first virtual machine based on the physical machine resources in the first area;
  • a second virtual machine management and control module is formed on the first virtual machine, and the second virtual machine management and control module creates a second virtual machine based on the physical machine resources in the second area and provides cloud computing services based on the created second virtual machine;
  • the physical machine resources in the first area and the physical machine resources in the second area are connected through a network.
  • the regionalized virtual machine management and control module can be based on the physical machine in the area where the IDC is located Resources to create virtual machines and provide cloud computing services based on the created virtual machines, thereby quickly accessing IDCs in the region to cloud services.
  • FIG. 1 is a schematic diagram of a cloud computing architecture in the prior art
  • FIG. 2 is a schematic diagram of a cloud computing architecture according to an embodiment of the present invention.
  • the cloud computing architecture is a system composed of system virtualization, distributed storage services, database services, proprietary network services, virtual machine management and control systems and their dependent middleware. It can integrate the calculation of the underlying physical machine (virtual machine) ), Storage (such as cloud disk), network (virtualized network) and other resources are provided to users as services.
  • virtual machine virtual machine
  • Storage such as cloud disk
  • network virtualized network
  • FIG. 1 is a schematic diagram of a cloud computing architecture in the prior art.
  • the cloud computing architecture 100 includes an ECS management and control module, a VPN service module, a SLB service module, an RDB service module, a distributed storage service module, a middleware service module, and multiple physical machine resources. These modules are respectively deployed on physical machines .
  • the ECS management and control module can create virtual machines on physical machines based on ECS resource configuration; the VPN service module can provide private network services for the virtual machines; the SLB service module can provide load balancing services; and the RDB service module can provide database services.
  • each cloud computing platform deployed in an area must deploy ECS management and control modules on the physical machines in the area, and repeatedly deploy the other modules mentioned above, and the deployment of these modules may require hundreds of One physical machine leads to complicated implementation and high deployment cost. For example, if you want to connect the IDC of area A and the IDC of area B to the cloud service, you need to build the above cloud computing architecture separately in area A and area B.
  • the embodiments of the present invention provide a cloud architecture solution based on centralized management and control.
  • publicizing common components components that manage computing resources and network resources (ECS management and control Module) virtualization and centralization, which solves the problem of high cost in the process of accessing cloud services (clouds) for small IDCs with limited computer room capacity.
  • the cloud architecture based on centralized management and control also has the capabilities of operation and maintenance, monitoring, SLA, high availability, and rapid expansion of the original cloud architecture, and this new architecture provides public, private, and private clouds.
  • a virtual machine (ECS) is the capability of a public cloud infrastructure.
  • the cloud computing architecture can access at least one IDC to a cloud service at low cost and quickly, thereby enabling the IDC to provide cloud computing services.
  • the cloud computing architecture 100 includes a central virtual machine (ECS) management and control module, a private network (VPC) service module, a load balancing (SLB) service module, a database (RDB) service module, a distributed storage service module, and an intermediate Server service module and multiple physical machine resources, and these modules are deployed on the physical machines in the central area.
  • ECS central virtual machine
  • VPC private network
  • SLB load balancing
  • RDB database
  • distributed storage service module a distributed storage service module
  • an intermediate Server service module and multiple physical machine resources and these modules are deployed on the physical machines in the central area.
  • Region refers to the geographical area divided by cloud service providers, such as: North China, East China Three, Frankfurt, East China One, etc.
  • the physical machine resources in the central area are connected to the physical machine resources in other areas through the network. Only two areas are shown in the figure, namely area A and area B.
  • area A and area B only two areas are shown in the figure, namely area A and area B.
  • the central area refers to the area where centralized ECS management is deployed, and does not refer to the geographically central area; the other areas refer to the area where the IDC to be accessed to the cloud service is located
  • Each area includes a computer cluster composed of multiple physical machine resources.
  • the central area is connected to other areas through dedicated lines, such as Border Gateway Protocol (Border Gateway Protocol, BGP) dedicated lines.
  • BGP Border Gateway Protocol
  • the BGP dedicated line is used to open up the network between the central management and the physical machine resources in other regions, so that the central management and control can transmit relevant commands such as control and operation and maintenance to other regions.
  • the cloud server (Elastic Compute Service, ECS) refers to the elastic cloud computing service provided by the cloud service provider.
  • the ECS instance is also called a virtual machine (Virtual Machine, VM), which is a virtual host provided by virtualization technology, and Multiple virtual machines can be deployed on the physical machine.
  • VM Virtual Machine
  • the central ECS management and control module can create virtual machines on physical machines in the central area based on ECS resource configuration.
  • the user initiates a request to create a virtual machine to the central ECS management and control module, and the request includes relevant configuration parameters of the virtual machine selected by the user, such as CPU core number, memory capacity, disk capacity, operating system, etc .
  • the central ECS management and control module Receive the request, and refer to the remaining resource amount, remaining resource rate, network communication status and other factors of each physical machine, and allocate the request to the appropriate physical machine in the central area; the appropriate physical machine allocates the user setting based on the request Configure the resources indicated by the parameters and create a virtual machine based on the allocated resources.
  • the central ECS management and control module creates a virtual machine
  • Each regional ECS management and control module corresponds to an area (that is, the area where the IDC to be accessed to the cloud service is located).
  • the figure shows the regional ECS management and control module A corresponding to the area A and the regional ECS management and control module B corresponding to the area A .
  • the regional ECS management and control module A is deployed on the virtual machine A
  • the regional ECS management and control module B is deployed on the virtual machine B. Both the virtual machine A and the virtual machine B are created by the central ECS management and control module based on the physical machine resources in the central area.
  • the regional ECS management and control module can create a virtual machine based on the physical machine resources of the corresponding region, and provide cloud computing services based on the created virtual machine, where the operating system image required for creating the virtual machine can be distributed storage service module provide.
  • the regional ECS management and control module A can create a virtual machine based on the physical machine resources of the region A according to the user's request, and the virtual machine provides the cloud computing service of the region A, thereby accessing the IDC of the region A to the cloud service;
  • the ECS management and control module B can create a virtual machine based on the physical machine resources of the area B according to the user's request, and the virtual machine provides the cloud computing service of the area B, thereby accessing the IDC of the area B to the cloud service.
  • the regional ECS management and control module can also provide functions for the management and control of regional ECS resources, including stop, start, pause, create, delete, schedule, downtime migration, management security group, network, sales and other management related to ECS resources
  • Private network (Virtual Private Cloud, VPC) is an isolated network environment constructed by cloud service providers, and can customize IP, address range, network segment, routing table and gateway, etc.
  • the VPC service module can provide private network services for virtual machines created by regional ECS management and control modules. Specifically, the regional ECS management and control module creates a virtual machine based on the physical machine resources of the associated area according to the user's request, obtains VPC resources by interacting with the VPC service module, and provides the obtained VPC resources to the created virtual machine machine.
  • SLB Server Load Balancer
  • the SLB service module can communicate with the regional ECS management and control module, and the regional ECS management and control module module creates multiple virtual machines for load balancing based on the physical machine resources of the associated area. Then, the SLB service module Control the traffic forwarding rules of multiple virtual machines to provide load balancing services.
  • the relational database (RDB) service is a relational database service based on virtual machine resources, providing off-site capacity, master-slave switching, rapid expansion, and visual operation and maintenance.
  • the RDB service module can communicate with the regional ECS management and control module, and the ECS management and control module creates multiple virtual machines that provide database services based on the physical machine resources of the associated area.
  • the RDB service module itself can also provide data storage services for the regional ECS management and control module, that is, the RDB service module can complete the database service components required by the regional ECS management and control service, and has the ability to switch between the master and backup.
  • the distributed storage service module can provide image resources for creating virtual machines for the regional ECS management and control module, that is, provide image storage services for ECS, and on the other hand, it can also provide distributed for the virtual machines created by the regional ECS management and control module.
  • Storage service, the distributed storage includes block storage and / or object storage.
  • the middleware service module is suitable for providing middleware services to other modules in the system.
  • Middleware is a common component, including: distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, virtual machine initialization (cloudinit) service.
  • cloudinit is a virtual machine initialization tool that can read relevant data from various data sources and configure the virtual machine accordingly.
  • ECS management and control, middleware, and distributed storage are the only dependencies.
  • ECS management and control have changed from one-to-one correspondence to the original middleware.
  • Regional ECS management and control can correspond to a set of middleware services and distributed storage services.
  • the central ECS management and control module and the regional ECS management and control module can provide basic cloud computing services, that is, the central ECS management and control module and the regional ECS management and control module can constitute a basic system for providing cloud computing services.
  • the central ECS management and control module, the regional ECS management and control module, and the VPC service module may constitute a system that provides a cloud computing service with a proprietary network function.
  • the system may include an RDB service module; when a load balancing service needs to be provided, the system may include a load balancing service module.
  • the process of creating a complete ECS service is as follows: providing mirroring services through distributed storage, providing cloud disk services through distributed storage, scheduling resources to different physical machines through ECS management, and providing isolation through VPC
  • the virtualized network service virtualizes computing resources, storage resources, and network resources into a computing unit through virtualization.
  • the method for providing a cloud computing service includes the following steps:
  • Deploy distributed storage services in the central area Through the deployment of physical machines in the central area, provide the ECS management and control of each area to create the operating system image required by the virtual machine. Each area has the ability to cache the image locally and control the area ECS Provide the ability to upload, export and create images.
  • the distributed storage service can also provide services such as block storage and / or object storage for virtual machines created by regional ECS management and control.
  • Deploy area A dedicated line Connect the network exit equipment and switches of the equipment room of the operator in the area A with the network of the central area computer room, open up the physical machine resources in the area A and the network in the center area, so that the network controlled by the central ECS and the area A operate Shang's computer room is in the same network security domain.
  • the physical and virtual machines in the central area can directly access the physical machines in the equipment room where the operator in area A is located, and ensure that the private line network is isolated from other networks in the equipment room.
  • middleware Deploying the mirror center, monitoring, operation and maintenance and cache components required by the cloud computing platform through the central area physical machine, which is mainly for RDB services, regional ECS management and control, SLB services, VPC Services and other modules provide general services.
  • Middleware is a common component, including: distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, virtual machine initialization (cloudinit) service
  • Mini RDB Deploy some RDB services in the central area: Deploy the Mini RDB services through the physical machines in the central area to complete the database service components required by the ECS management and control services, and have the ability to switch between the master and backup.
  • the VPC service module can provide proprietary network services for the virtual machines created by the regional ECS management and control module
  • ECS management and control of deployment area A The central ECS management and control creates a virtual machine on the physical machine in the central area, and then, the ECS management and control of the area A may be deployed on the created virtual machine.
  • the ECS control and VPC control of Region A use Mini RDB to store data, and manage computing resources, networks, authentication, general interfaces, storage resources, inventory scheduling, etc.
  • Deploy the SLB service in the central area Deploy SLB related services through the physical machine resources in the central area, and communicate with the regionalized ECS management and control.
  • the ECS control in the area A creates multiple virtual machines on the physical machines in the area A.
  • SLB Services to control the traffic forwarding rules of multiple virtual machines to provide load balancing services for internal and external services.
  • the IDC in Area A can provide basic cloud services to the outside world.
  • the centralized configuration of VPC, SLB, RDB, and ECS in area A is shown in Table 1.
  • Table 1 the first three columns of IP addresses are routing addresses provided internally, and the last column of IP addresses are service addresses provided externally.
  • step 1) above purchase the resources required for the implementation of the cloud computing architecture in Region B, deploy all hardware devices (including network devices, storage devices, and physical machine resources of various models) and network resources required by the cloud computing environment (IP resources, dedicated line bandwidth).
  • hardware devices including network devices, storage devices, and physical machine resources of various models
  • IP resources dedicated line bandwidth
  • step 3 deploy a dedicated line in area B, connect the network outlet equipment and switches of the equipment room of the operator in the area B to the network of the central area computer room, and open up the physical machine resources in the area B and the network in the central area to make the central ECS
  • the managed network is in the same network security domain as the regional B operator's computer room.
  • the physical and virtual machines in the central area can directly access the physical machines in the equipment room where the operator in area B is located, and ensure that the private line network is isolated from other networks in the equipment room.
  • step 7 deploy the ECS management and control of area B.
  • the virtual machine resources required for the RDB and SLB to be applied for by region B are configured into the ECS management and control of region B, and the distributed storage services required by it The central distributed storage service, so that RDB and SLB can provide services for area B.
  • the IDC in Region B can provide basic cloud services to the outside world.
  • the centralized configuration of VPC, SLB, RDB, and ECS in area B is shown in Table 2.
  • Region B VPC 10.0.0.1 10.0.1.2 10.0.0.15 10.0.1.5 Area
  • SLB 10.0.0.1 10.0.1.2 10.0.0.15 10.0.1.4
  • Region B RDB 10.0.0.1 10.0.1.2 10.0.0.15 10.0.1.3
  • the embodiments of the present invention provide a low-cost possibility for third-party operators and traditional IDC to access cloud services.
  • the BPG dedicated line is used to open up the operator network, and the centralized management and control is Third-party operators provide ECS with IDC capabilities and centralize common components (ie middleware), which greatly simplifies the resources required for management and control, and can reuse a set of control for the second area
  • the system reduces the overall cost of the newly built second area to 2-3 physical machines, which can quickly integrate the capabilities of second- and third-tier city operators and traditional IDCs.
  • modules in the device in the embodiment can be adaptively changed and set in one or more devices different from the embodiment.
  • the modules or units or components in the embodiments may be combined into one module or unit or component, and in addition, they may be divided into a plurality of submodules or subunits or subcomponents. Except that at least some of such features and / or processes or units are mutually exclusive, all features disclosed in this specification (including the accompanying claims, abstract and drawings) and any method so disclosed or All processes or units of equipment are combined. Unless expressly stated otherwise, each feature disclosed in this specification (including the accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

Disclosed are a method and a system for providing a cloud computing service. The system comprises: a first virtual machine management module deployed on a physical machine of a first region and adapted to create a first virtual machine on the basis of physical machine resources of the first region; and a second virtual machine management module deployed on the first virtual machine and adapted to create a second virtual machine on the basis of physical machine resources of a second region and providing a cloud computing service on the basis of the created second virtual machine, wherein the physical machine resources of the first region and the physical machine resources of the second region are connected via a network. The present invention reduces deployment costs of a regional cloud computing platform, and achieves fast capacity expansion for respective regions.

Description

一种提供云计算服务的方法及系统Method and system for providing cloud computing service

本申请要求2018年11月01日递交的申请号为201811295727.1、发明名称为“一种提供云计算服务的方法及系统”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application requires the priority of the Chinese patent application with the application number 201811295727.1 and the invention titled "A Method and System for Providing Cloud Computing Services" filed on November 01, 2018, the entire content of which is incorporated by reference in this application.

技术领域Technical field

本发明涉及云计算领域,具体涉及一种提供云计算服务的方法及系统。The invention relates to the field of cloud computing, and in particular to a method and system for providing cloud computing services.

背景技术Background technique

互联网数据中心(Internet Data Center,IDC),是指电信部门利用已有的互联网通信线路、带宽资源,建立标准化的电信专业级机房环境,为企业、政府提供服务器托管、租用以及相关增值等方面的全方位服务。传统IDC中,服务稳定性、安全性都不是很满足客户的需求。随着云计算的不断发展,云计算技术在异地容灾、低延迟以及区域保护等方面能够很好的满足客户需求。因此,各大运营商都会根据客户需求建立越来越多的区域化云计算平台,用以解决各类客户的地域化需求。Internet Data Center (IDC) refers to the use of existing Internet communication lines and bandwidth resources by the telecommunications department to establish a standardized telecommunications professional-grade computer room environment to provide server hosting, leasing and related value-added aspects for enterprises and governments. Full Service. In traditional IDC, service stability and security are not very satisfying customer needs. With the continuous development of cloud computing, cloud computing technology can meet customer needs in areas such as off-site disaster tolerance, low latency, and regional protection. Therefore, major operators will build more and more regional cloud computing platforms based on customer needs to address the regionalized needs of various customers.

但是,建立一个新的区域并同时考虑服务等级(Service-Level Agreement,SLA)的时候,动则就需要部署几百台物理机,导致建立新的区域化云计算平台成本太高。对于一些较小的IDC提供商,能对外提供服务的物理机资源有限,由于成本因素,导致很难将这些IDC接入到云服务。However, when establishing a new area and considering the service level (Service-Level Agreement, SLA) at the same time, hundreds of physical machines need to be deployed, resulting in the high cost of establishing a new regional cloud computing platform. For some smaller IDC providers, the physical machine resources that can provide external services are limited. Due to cost factors, it is difficult to connect these IDCs to cloud services.

发明内容Summary of the invention

鉴于上述问题,提出了本发明以便提供一种克服上述问题或者至少部分地解决上述问题的提供云计算服务的系统和相应的提供云计算服务的方法。In view of the above problems, the present invention is proposed in order to provide a system for providing cloud computing services and a corresponding method for providing cloud computing services that overcome the above problems or at least partially solve the above problems.

根据本发明的一个方面,提供了一种提供云计算服务的系统,包括:According to an aspect of the present invention, a system for providing cloud computing services is provided, including:

第一虚拟机管控模块,部署在第一区域的物理机上,适于基于第一区域的物理机资源创建第一虚拟机;The first virtual machine management and control module is deployed on the physical machine in the first area, and is adapted to create the first virtual machine based on the physical machine resources in the first area;

第二虚拟机管控模块,部署在第一虚拟机上,适于基于第二区域的物理机资源创建第二虚拟机,并基于所创建的第二虚拟机来提供云计算服务;The second virtual machine management and control module is deployed on the first virtual machine and is adapted to create a second virtual machine based on the physical machine resources in the second area and provide cloud computing services based on the created second virtual machine;

其中,所述第一区域的物理机资源与第二区域的物理机资源通过网络连。The physical machine resources in the first area and the physical machine resources in the second area are connected through a network.

根据本发明的另一方面,提供了提供云计算服务的方法,包括:According to another aspect of the present invention, a method for providing cloud computing services is provided, including:

在第一区域的物理机上形成第一虚拟机管控模块,由第一虚拟机管控模块基于第一区域的物理机资源创建第一虚拟机;A first virtual machine management and control module is formed on the physical machine in the first area, and the first virtual machine management and control module creates the first virtual machine based on the physical machine resources in the first area;

在第一虚拟机上形成第二虚拟机管控模块,由第二虚拟机管控模块基于第二区域的物理机资源创建第二虚拟机,并基于所创建的第二虚拟机来提供云计算服务;A second virtual machine management and control module is formed on the first virtual machine, and the second virtual machine management and control module creates a second virtual machine based on the physical machine resources in the second area and provides cloud computing services based on the created second virtual machine;

其中,所述第一区域的物理机资源与第二区域的物理机资源通过网络连接。The physical machine resources in the first area and the physical machine resources in the second area are connected through a network.

根据本发明实施例的技术方案,通过在中心区域的物理机上创建虚拟机,并在所创建的虚拟机上部署区域化虚拟机管控模块,区域化虚拟机管控模块能够基于IDC所在区域的物理机资源来创建虚拟机,并基于所创建的虚拟机提供云计算服务,从而快速地将该区域的IDC接入到了云服务。According to the technical solution of the embodiment of the present invention, by creating a virtual machine on a physical machine in the central area and deploying a regionalized virtual machine management and control module on the created virtual machine, the regionalized virtual machine management and control module can be based on the physical machine in the area where the IDC is located Resources to create virtual machines and provide cloud computing services based on the created virtual machines, thereby quickly accessing IDCs in the region to cloud services.

进一步,在部署多个区域的时候,只需在中心区域部署每个区域所需要的虚拟机管控模块,这些区域能够复用中心区域的专有网络服务模块、负载均衡服务模块、数据库服务模块、分布式存储服务模块和中间件服务模块,一方面能够降低区域化云计算平台的部署成本,另一方面能够快速的扩容各个区域。Further, when deploying multiple regions, only the virtual machine management and control modules required by each region need to be deployed in the central region. These regions can reuse the dedicated network service module, load balancing service module, and database service module in the central region. Distributed storage service modules and middleware service modules, on the one hand, can reduce the deployment cost of regional cloud computing platforms, on the other hand, they can quickly expand each area.

上述说明仅是本发明技术方案的概述,为了能够更清楚了解本发明的技术手段,而可依照说明书的内容予以实施,并且为了让本发明的上述和其它目的、特征和优点能够更明显易懂,以下特举本发明的具体实施方式。The above description is only an overview of the technical solutions of the present invention. In order to understand the technical means of the present invention more clearly, it can be implemented according to the content of the specification, and in order to make the above and other objects, features and advantages of the present invention more obvious The specific embodiments of the present invention are listed below.

附图说明BRIEF DESCRIPTION

通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。附图仅用于示出优选实施方式的目的,而并不认为是对本发明的限制。而且在整个附图中,用相同的参考符号表示相同的部件。在附图中:By reading the detailed description of the preferred embodiments below, various other advantages and benefits will become clear to those of ordinary skill in the art. The drawings are only for the purpose of showing the preferred embodiments, and are not considered to limit the present invention. Furthermore, the same reference numerals are used to denote the same parts throughout the drawings. In the drawings:

图1为现有技术的云计算架构的示意图;FIG. 1 is a schematic diagram of a cloud computing architecture in the prior art;

图2为根据本发明一个实施例的云计算架构的示意图。2 is a schematic diagram of a cloud computing architecture according to an embodiment of the present invention.

具体实施方式detailed description

下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Hereinafter, exemplary embodiments of the present disclosure will be described in more detail with reference to the accompanying drawings. Although the exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure can be implemented in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided to enable a more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

云计算架构是由系统虚拟化、分布式存储服务、数据库服务、专有网络服务、虚拟 机管理控制系统及其依赖的中间件所组成的一个系统,它能够将底层物理机的计算(虚拟机)、存储(例如云盘)、网络(虚拟化网络)等资源作为服务提供给用户。The cloud computing architecture is a system composed of system virtualization, distributed storage services, database services, proprietary network services, virtual machine management and control systems and their dependent middleware. It can integrate the calculation of the underlying physical machine (virtual machine) ), Storage (such as cloud disk), network (virtualized network) and other resources are provided to users as services.

图1为现有技术的云计算架构的示意图。参照图1,该云计算架构100包括ECS管控模块、VPN服务模块、SLB服务模块、RDB服务模块、分布式存储服务模块、中间件服务模块以及多台物理机资源,这些模块分别部署在物理机上。ECS管控模块能够基于ECS资源配置,在物理机上创建虚拟机;VPN服务模块能够为虚拟机提供专有网络服务;SLB服务模块能够提供负载均衡服务;RDB服务模块能够提供数据库服务。FIG. 1 is a schematic diagram of a cloud computing architecture in the prior art. Referring to FIG. 1, the cloud computing architecture 100 includes an ECS management and control module, a VPN service module, a SLB service module, an RDB service module, a distributed storage service module, a middleware service module, and multiple physical machine resources. These modules are respectively deployed on physical machines . The ECS management and control module can create virtual machines on physical machines based on ECS resource configuration; the VPN service module can provide private network services for the virtual machines; the SLB service module can provide load balancing services; and the RDB service module can provide database services.

可以看出,根据现有的云计算架构,每部署一个区域的云计算平台,都要在该区域的物理机上部署ECS管控模块,并重复部署上述其他模块,而部署这些模块有可能需要上百台物理机,导致实现方式复杂,且部署成本较高。比如:若要将区域A的IDC和区域B的IDC接入云服务,则需要分别在区域A和区域B单独构建上述的云计算架构。It can be seen that according to the existing cloud computing architecture, each cloud computing platform deployed in an area must deploy ECS management and control modules on the physical machines in the area, and repeatedly deploy the other modules mentioned above, and the deployment of these modules may require hundreds of One physical machine leads to complicated implementation and high deployment cost. For example, if you want to connect the IDC of area A and the IDC of area B to the cloud service, you need to build the above cloud computing architecture separately in area A and area B.

针对现有区域化云架构的不足,本发明实施例提供了一种基于中心化管控的云架构方案,通过将通用组件(中间件)公共化,将管理计算资源及网络资源的组件(ECS管控模块)虚拟化和中心化,解决了机房容量有限的小的IDC在接入云服务(上云)的过程中成本较高的问题。与此同时,基于中心化管控的云架构还具有原有云架构的运维、监控、SLA、高可用和快速扩容的能力,并且这种新的架构为公有云、专有云、私有云提供一种虚拟机(ECS)即公有云基础设施的能力。In view of the shortcomings of the existing regionalized cloud architecture, the embodiments of the present invention provide a cloud architecture solution based on centralized management and control. By publicizing common components (middleware), components that manage computing resources and network resources (ECS management and control Module) virtualization and centralization, which solves the problem of high cost in the process of accessing cloud services (clouds) for small IDCs with limited computer room capacity. At the same time, the cloud architecture based on centralized management and control also has the capabilities of operation and maintenance, monitoring, SLA, high availability, and rapid expansion of the original cloud architecture, and this new architecture provides public, private, and private clouds. A virtual machine (ECS) is the capability of a public cloud infrastructure.

图2为根据本发明一个实施例的云计算架构的示意图,该云计算架构能够低成本且快速地将至少一个IDC接入到云服务,从而使得该IDC能够提供云计算服务。2 is a schematic diagram of a cloud computing architecture according to an embodiment of the present invention. The cloud computing architecture can access at least one IDC to a cloud service at low cost and quickly, thereby enabling the IDC to provide cloud computing services.

参照图2,该云计算架构100包括中心虚拟机(ECS)管控模块、专有网络(VPC)服务模块、负载均衡(SLB)服务模块、数据库(RDB)服务模块、分布式存储服务模块、中间件服务模块以及多台物理机资源,且这些模块均部署在中心区域的物理机上。2, the cloud computing architecture 100 includes a central virtual machine (ECS) management and control module, a private network (VPC) service module, a load balancing (SLB) service module, a database (RDB) service module, a distributed storage service module, and an intermediate Server service module and multiple physical machine resources, and these modules are deployed on the physical machines in the central area.

区域(Region)指的是云服务提供商划分的地理区域,比如:华北、华东三、法兰克福、华东一等。中心区域的物理机资源与其他各区域的物理机资源通过网络连接,图中仅示出了两个区域,即区域A和区域B。需要说明的是,在本发明实施例中,中心区域是指部署中心化ECS管控的区域,并非指地理位置上处于中心的区域;其他各区域是指待接入到云服务的IDC所在的区域,每个区域均包括由多台物理机资源构成的计算机集群。Region refers to the geographical area divided by cloud service providers, such as: North China, East China Three, Frankfurt, East China One, etc. The physical machine resources in the central area are connected to the physical machine resources in other areas through the network. Only two areas are shown in the figure, namely area A and area B. It should be noted that in the embodiment of the present invention, the central area refers to the area where centralized ECS management is deployed, and does not refer to the geographically central area; the other areas refer to the area where the IDC to be accessed to the cloud service is located Each area includes a computer cluster composed of multiple physical machine resources.

根据本发明的一个实施例,中心区域与其他各区域通过专线,例如边界网关协议(Border Gateway Protocol,BGP)专线连接。BGP专线用于打通中心管控与其他区域物 理机资源之间的网络,使得中心管控可以传输控制、运维等相关指令到其他区域。According to an embodiment of the present invention, the central area is connected to other areas through dedicated lines, such as Border Gateway Protocol (Border Gateway Protocol, BGP) dedicated lines. The BGP dedicated line is used to open up the network between the central management and the physical machine resources in other regions, so that the central management and control can transmit relevant commands such as control and operation and maintenance to other regions.

云服务器(Elastic Compute Service,ECS)是指云服务商对外提供的弹性云计算服务,ECS实例又称为虚拟机(Virtual Machine,VM),即通过虚拟化技术提供的虚拟主机,并且在一台物理机上可以部署多台虚拟机。The cloud server (Elastic Compute Service, ECS) refers to the elastic cloud computing service provided by the cloud service provider. The ECS instance is also called a virtual machine (Virtual Machine, VM), which is a virtual host provided by virtualization technology, and Multiple virtual machines can be deployed on the physical machine.

中心ECS管控模块能够基于ECS资源配置,在中心区域的物理机上创建虚拟机。具体地,用户向中心ECS管控模块发起创建虚拟机的请求,该请求中包括用户选定的虚拟机的相关配置参数,例如CPU核数、内存容量、磁盘容量、操作系统等;中心ECS管控模块接收该请求,并参考各物理机的剩余资源量、剩余资源率、网络通信状况等因素,将该请求分配给中心区域中合适的物理机;该合适的物理机则基于该请求分配用户设置的配置参数所指示的资源,并基于已分配的资源创建虚拟机。The central ECS management and control module can create virtual machines on physical machines in the central area based on ECS resource configuration. Specifically, the user initiates a request to create a virtual machine to the central ECS management and control module, and the request includes relevant configuration parameters of the virtual machine selected by the user, such as CPU core number, memory capacity, disk capacity, operating system, etc .; the central ECS management and control module Receive the request, and refer to the remaining resource amount, remaining resource rate, network communication status and other factors of each physical machine, and allocate the request to the appropriate physical machine in the central area; the appropriate physical machine allocates the user setting based on the request Configure the resources indicated by the parameters and create a virtual machine based on the allocated resources.

中心ECS管控模块创建虚拟机后,则可以在所创建的虚拟机上部署区域ECS管控模块,并提供对中心ECS资源进行管控的功能,包括停止、启动、暂停、创建、删除、调度、宕机迁移、管理安全组、网络、售卖等和ECS资源相关的管理。After the central ECS management and control module creates a virtual machine, you can deploy a regional ECS management and control module on the created virtual machine and provide functions to control and control the central ECS resources, including stop, start, pause, create, delete, schedule, and downtime Migration, management of security groups, networks, sales, etc. related to ECS resource management.

每个区域ECS管控模块对应于一个区域(即待接入云服务的IDC所在的区域),图中示出了对应于区域A的区域ECS管控模块A和对应于区域A的区域ECS管控模块B。区域ECS管控模块A部署在虚拟机A上,区域ECS管控模块B部署在虚拟机B上,虚拟机A和虚拟机B均由中心ECS管控模块基于中心区域的物理机资源所创建。Each regional ECS management and control module corresponds to an area (that is, the area where the IDC to be accessed to the cloud service is located). The figure shows the regional ECS management and control module A corresponding to the area A and the regional ECS management and control module B corresponding to the area A . The regional ECS management and control module A is deployed on the virtual machine A, and the regional ECS management and control module B is deployed on the virtual machine B. Both the virtual machine A and the virtual machine B are created by the central ECS management and control module based on the physical machine resources in the central area.

区域ECS管控模块能够基于其所对应的区域的物理机资源创建虚拟机,并基于所创建的虚拟机来提供云计算服务,其中,创建虚拟机所需要的操作系统镜像可以由分布式存储服务模块提供。例如,区域ECS管控模块A可以根据用户的请求,基于区域A的物理机资源创建虚拟机,由该虚拟机来提供区域A的云计算服务,从而将区域A的IDC接入到云服务;区域ECS管控模块B可以根据用户的请求,基于区域B的物理机资源创建虚拟机,由该虚拟机来提供区域B的云计算服务,从而将区域B的IDC接入到云服务。同样地,区域ECS管控模块也能够提供对区域ECS资源进行管控的功能,包括停止、启动、暂停、创建、删除、调度、宕机迁移、管理安全组、网络、售卖等和ECS资源相关的管理The regional ECS management and control module can create a virtual machine based on the physical machine resources of the corresponding region, and provide cloud computing services based on the created virtual machine, where the operating system image required for creating the virtual machine can be distributed storage service module provide. For example, the regional ECS management and control module A can create a virtual machine based on the physical machine resources of the region A according to the user's request, and the virtual machine provides the cloud computing service of the region A, thereby accessing the IDC of the region A to the cloud service; The ECS management and control module B can create a virtual machine based on the physical machine resources of the area B according to the user's request, and the virtual machine provides the cloud computing service of the area B, thereby accessing the IDC of the area B to the cloud service. Similarly, the regional ECS management and control module can also provide functions for the management and control of regional ECS resources, including stop, start, pause, create, delete, schedule, downtime migration, management security group, network, sales and other management related to ECS resources

专有网络(Virtual Private Cloud,VPC)是云服务商构建出的一个隔离的网络环境,并可以自定义IP、地址范围、网段、路由表和网关等。VPC服务模块能够为区域ECS管控模块所创建的虚拟机提供专有网络服务。具体地,区域ECS管控模块根据用户的请求,基于所关联的区域的物理机资源创建虚拟机后,通过与VPC服务模块交互,获取 VPC资源,并将获取到的VPC资源提供给所创建的虚拟机。Private network (Virtual Private Cloud, VPC) is an isolated network environment constructed by cloud service providers, and can customize IP, address range, network segment, routing table and gateway, etc. The VPC service module can provide private network services for virtual machines created by regional ECS management and control modules. Specifically, the regional ECS management and control module creates a virtual machine based on the physical machine resources of the associated area according to the user's request, obtains VPC resources by interacting with the VPC service module, and provides the obtained VPC resources to the created virtual machine machine.

负载均衡(Server Load Balancer,SLB)是对多台虚拟机进行流量分发的负载均衡服务,可以通过流量分发扩展应用系统对外的服务能力,通过消除单点故障提升应用系统的可用性。在本发明实施例中,SLB服务模块能够与区域ECS管控模块进行通信,由区域ECS管控模块模块基于其关联的区域的物理机资源创建多个用于负载均衡的虚拟机,然后,SLB服务模块控制多个虚拟机的流量转发规则,从而提供负载均衡服务。Server Load Balancer (SLB) is a load balancing service that distributes traffic to multiple virtual machines. It can expand the external service capabilities of the application system through traffic distribution, and improve the availability of the application system by eliminating single points of failure. In the embodiment of the present invention, the SLB service module can communicate with the regional ECS management and control module, and the regional ECS management and control module module creates multiple virtual machines for load balancing based on the physical machine resources of the associated area. Then, the SLB service module Control the traffic forwarding rules of multiple virtual machines to provide load balancing services.

关系型数据库(Relational Database,RDB)服务是一个基于虚拟机资源提供的关系型数据库服务,提供了异地容、主备切换、快速扩展及可视化运维等。在本发明实施例中,RDB服务模块能够与区域ECS管控模块通信,由ECS管控模块基于其关联的区域的物理机资源创建多个提供数据库服务的虚拟机。The relational database (RDB) service is a relational database service based on virtual machine resources, providing off-site capacity, master-slave switching, rapid expansion, and visual operation and maintenance. In the embodiment of the present invention, the RDB service module can communicate with the regional ECS management and control module, and the ECS management and control module creates multiple virtual machines that provide database services based on the physical machine resources of the associated area.

在一个实施例中,RDB服务模块自身还能够为区域ECS管控模块提供数据存储服务,即RDB服务模块能够完成区域ECS管控服务所需要的数据库服务组件,并且拥有主备切换的能力。In one embodiment, the RDB service module itself can also provide data storage services for the regional ECS management and control module, that is, the RDB service module can complete the database service components required by the regional ECS management and control service, and has the ability to switch between the master and backup.

分布式存储服务模块一方面能够为区域ECS管控模块提供用于创建虚拟机的镜像资源,即为ECS提供镜像存储服务,另一方面,还能够为区域ECS管控模块所创建的虚拟机提供分布式存储服务,所述分布式存储包括块存储和/或对象存储。The distributed storage service module can provide image resources for creating virtual machines for the regional ECS management and control module, that is, provide image storage services for ECS, and on the other hand, it can also provide distributed for the virtual machines created by the regional ECS management and control module. Storage service, the distributed storage includes block storage and / or object storage.

中间件服务模块适于为系统中的其他模块提供中间件服务。中间件即公共组件,包含:分布式锁服务、消息中间件、统一路由、分布式内存对象缓存系统、镜像中心、监控中心、虚拟机初始化(cloudinit)服务。其中,cloudinit是虚拟机初始化工具,能够从各种数据源读取相关数据,并据此对虚拟机进行配置。The middleware service module is suitable for providing middleware services to other modules in the system. Middleware is a common component, including: distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, virtual machine initialization (cloudinit) service. Among them, cloudinit is a virtual machine initialization tool that can read relevant data from various data sources and configure the virtual machine accordingly.

可以看出,现有技术中ECS管控和中间件及分布式存储都是唯一的依赖关系,而本发明实施例中,ECS管控从对原有的中间件的一一对应关系变为了,多个区域ECS管控可以对应一套中间件服务和分布式存储服务。It can be seen that in the prior art, ECS management and control, middleware, and distributed storage are the only dependencies. In the embodiment of the present invention, ECS management and control have changed from one-to-one correspondence to the original middleware. Regional ECS management and control can correspond to a set of middleware services and distributed storage services.

需要说明的是,以上的云计算架构中的一个或多个模块并非是必须的,本领域技术人员可以根据具体的应用场景进行取舍。例如,由中心ECS管控模块和区域ECS管控模块就能够提供基本的云计算服务,即中心ECS管控模块和区域ECS管控模块可以构成一个基本的提供云计算服务的系统。又例如,中心ECS管控模块、区域ECS管控模块和VPC服务模块可以构成一个具有专有网络功能的提供云计算服务的系统。当需要提供数据库服务时,则该系统中可以包括RDB服务模块;当需要提供负载均衡服务时,则该系统中可以包括负载均衡服务模块。It should be noted that one or more modules in the above cloud computing architecture are not necessary, and those skilled in the art can make trade-offs according to specific application scenarios. For example, the central ECS management and control module and the regional ECS management and control module can provide basic cloud computing services, that is, the central ECS management and control module and the regional ECS management and control module can constitute a basic system for providing cloud computing services. For another example, the central ECS management and control module, the regional ECS management and control module, and the VPC service module may constitute a system that provides a cloud computing service with a proprietary network function. When a database service needs to be provided, the system may include an RDB service module; when a load balancing service needs to be provided, the system may include a load balancing service module.

根据上述的云计算架构,创建一个完备的ECS服务的过程如下:通过分布式存储提供镜像服务,通过分布式存储提供云盘的服务,通过ECS管控调度资源到不同的物理机上,通过VPC提供隔离化的网络服务,通过虚拟化将计算资源、存储资源、网络资源虚拟化化为一个计算单元。According to the above cloud computing architecture, the process of creating a complete ECS service is as follows: providing mirroring services through distributed storage, providing cloud disk services through distributed storage, scheduling resources to different physical machines through ECS management, and providing isolation through VPC The virtualized network service virtualizes computing resources, storage resources, and network resources into a computing unit through virtualization.

以部署两个区域的云计算平台为例,介绍本发明实施例的提供云计算服务(即将区域A和区域B的IDC接入到云服务)的方法,包括如下步骤:Taking the deployment of a cloud computing platform in two regions as an example, the method for providing a cloud computing service (that is, connecting the IDC of region A and region B to a cloud service) according to an embodiment of the present invention includes the following steps:

1)采购区域A的云计算架构实施所需要的资源,部署云计算环境所需要的所有硬件设备(包含网络设备,存储设备,各种机型物理机资源)、网络资源(IP资源,专线带宽)。1) Procurement of the resources required for the implementation of the cloud computing architecture in Region A, deployment of all hardware devices (including network devices, storage devices, and physical machine resources of various models) required by the cloud computing environment, network resources (IP resources, dedicated line bandwidth) ).

2)部署中心区域的分布式存储服务:通过中心区域的物理机部署,提供各个区域ECS管控创建虚拟机所需的操作系统镜像,各个区域拥有将镜像缓存到本地的能力,并对区域ECS管控提供镜像上传、导出和创建的能力。这里,分布式存储服务还能够为区域ECS管控所创建的虚拟机提供块存储和/或对象存储等服务。2) Deploy distributed storage services in the central area: Through the deployment of physical machines in the central area, provide the ECS management and control of each area to create the operating system image required by the virtual machine. Each area has the ability to cache the image locally and control the area ECS Provide the ability to upload, export and create images. Here, the distributed storage service can also provide services such as block storage and / or object storage for virtual machines created by regional ECS management and control.

3)部署区域A专线:将区域A运营商的机房的网络出口设备及交换机与中心区域机房网络相联通,打通区域A物理机资源和中心区域的网络,使得中心ECS管控的网络与区域A运营商的机房处在同一个网络安全域。处于中心区域的物理机和虚拟机可以直接访问区域A运营商所在的机房的物理机,并保证专线网络与机房中的其他网络隔离。3) Deploy area A dedicated line: Connect the network exit equipment and switches of the equipment room of the operator in the area A with the network of the central area computer room, open up the physical machine resources in the area A and the network in the center area, so that the network controlled by the central ECS and the area A operate Shang's computer room is in the same network security domain. The physical and virtual machines in the central area can directly access the physical machines in the equipment room where the operator in area A is located, and ensure that the private line network is isolated from other networks in the equipment room.

4)部署中心区域云计算平台中间件:通过中心区域物理机将云计算平台所需要的镜像中心、监控、运维及缓存组件部署完毕,其主要为RDB服务、区域ECS管控、SLB服务、VPC服务等模块提供通用服务。中间件即公共组件,包含:分布式锁服务、消息中间件、统一路由、分布式内存对象缓存系统、镜像中心、监控中心、虚拟机初始化(cloudinit)服务4) Deploying the central area cloud computing platform middleware: Deploying the mirror center, monitoring, operation and maintenance and cache components required by the cloud computing platform through the central area physical machine, which is mainly for RDB services, regional ECS management and control, SLB services, VPC Services and other modules provide general services. Middleware is a common component, including: distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, virtual machine initialization (cloudinit) service

5)部署中心区域RDB部分服务(Mini RDB):通过中心区域物理机部署Mini RDB服务,完成ECS管控服务所需要的数据库服务组件,并且拥有主备切换的能力。5) Deploy some RDB services in the central area (Mini RDB): Deploy the Mini RDB services through the physical machines in the central area to complete the database service components required by the ECS management and control services, and have the ability to switch between the master and backup.

6)部署中心区域VPC服务(只部署一次,下一个区域只更改配置即可),VPC服务模块能够为区域ECS管控模块所创建的虚拟机提供专有网络服务6) Deploy the VPC service in the central area (only once, only change the configuration in the next area), the VPC service module can provide proprietary network services for the virtual machines created by the regional ECS management and control module

7)部署区域A的ECS管控。由中心ECS管控在中心区域的物理机上创建虚拟机,然后,在所述创建的虚拟机上并可以部署区域A的ECS管控。区域A的ECS管控和VPC管控通过Mini RDB来存储数据,并管理计算资源、网络、认证、通用接口、存储资源、库存调度等。7) ECS management and control of deployment area A. The central ECS management and control creates a virtual machine on the physical machine in the central area, and then, the ECS management and control of the area A may be deployed on the created virtual machine. The ECS control and VPC control of Region A use Mini RDB to store data, and manage computing resources, networks, authentication, general interfaces, storage resources, inventory scheduling, etc.

8)部署中心区域SLB服务:通过中心区域的物理机资源部署SLB相关服务,并与区域化的ECS管控相互通信,由区域A的ECS管控在区域A的物理机上创建多台虚拟机,通过SLB服务来控制多台虚拟机的流量转发规则,从而为内部服务及外部服务提供负载均衡服务。8) Deploy the SLB service in the central area: Deploy SLB related services through the physical machine resources in the central area, and communicate with the regionalized ECS management and control. The ECS control in the area A creates multiple virtual machines on the physical machines in the area A. Through SLB Services to control the traffic forwarding rules of multiple virtual machines to provide load balancing services for internal and external services.

9)部署中心区域完整的RDB服务:通过区域A的ECS管控和中心化分布式存储服务提供的基础镜像,在区域A的物理机上创建RDB服务所需的虚拟机,并通过SLB服务完成RDB服务的应用容灾能力,完成RDB服务部署所需要的计算资源、存储资源和网络资源。并对外基于虚拟机提供关系型数据库mysql、sqlserver的能力。9) Deploy a complete RDB service in the central area: Create the virtual machine required for the RDB service on the physical machine in the area A through the ECS control and centralized distributed storage service in the area A, and complete the RDB service through the SLB service Application disaster tolerance capabilities, computing resources, storage resources and network resources required to complete the deployment of RDB services. And the ability to provide relational databases mysql and sqlserver based on virtual machines.

完成上述步骤后,区域A的IDC就可以对外提供基础云服务了。在一个应用实例中,区域A的VPC、SLB、RDB、ECS的中心化配置如表1。在表1中,前3列IP地址为对内提供的路由地址,最后1列IP地址为对外提供的服务地址。After completing the above steps, the IDC in Area A can provide basic cloud services to the outside world. In an application example, the centralized configuration of VPC, SLB, RDB, and ECS in area A is shown in Table 1. In Table 1, the first three columns of IP addresses are routing addresses provided internally, and the last column of IP addresses are service addresses provided externally.

服务service 中间件Middleware ECS服务ECS service 分布式存储Distributed storage 对外提供服务地址External service address 区域A VPCRegion A VPC 10.0.0.110.0.0.1 10.0.0.210.0.0.2 10.0.0.1510.0.0.15 10.0.0.510.0.0.5 区域A SLBArea A SLB 10.0.0.110.0.0.1 10.0.0.210.0.0.2 10.0.0.1510.0.0.15 10.0.0.410.0.0.4 区域A RDBRegion A RDB 10.0.0.110.0.0.1 10.0.0.210.0.0.2 10.0.0.1510.0.0.15 10.0.0.310.0.0.3 区域A ECSRegion A ECS 10.0.0.110.0.0.1 N/AN / A 10.0.0.1510.0.0.15 10.0.0.210.0.0.2

表1Table 1

接下来,部署区域B的云计算平台。Next, deploy the cloud computing platform in Region B.

首先,如上述步骤1),采购区域B的云计算架构实施所需要的资源,部署云计算环境所需要的所有硬件设备(包含网络设备,存储设备,各种机型物理机资源)、网络资源(IP资源,专线带宽)。First, as in step 1) above, purchase the resources required for the implementation of the cloud computing architecture in Region B, deploy all hardware devices (including network devices, storage devices, and physical machine resources of various models) and network resources required by the cloud computing environment (IP resources, dedicated line bandwidth).

其次,如上述步骤3),部署区域B的专线,将区域B运营商的机房的网络出口设备及交换机与中心区域机房网络相联通,打通区域B物理机资源和中心区域的网络,使得中心ECS管控的网络与区域B运营商的机房处在同一个网络安全域。处于中心区域的物理机和虚拟机可以直接访问区域B运营商所在的机房的物理机,并保证专线网络与机房中的其他网络隔离。Secondly, as in step 3) above, deploy a dedicated line in area B, connect the network outlet equipment and switches of the equipment room of the operator in the area B to the network of the central area computer room, and open up the physical machine resources in the area B and the network in the central area to make the central ECS The managed network is in the same network security domain as the regional B operator's computer room. The physical and virtual machines in the central area can directly access the physical machines in the equipment room where the operator in area B is located, and ensure that the private line network is isolated from other networks in the equipment room.

然后,如上述步骤7),部署区域B的ECS管控。Then, as in step 7) above, deploy the ECS management and control of area B.

最后,通过修改中心化RDB服务和SLB服务中的配置,将区域B要申请的RDB和SLB所需的虚拟机资源,配置到区域B的ECS管控中,将其所需要的分布式存储服务指向中心的分布式存储服务,从而使得RDB和SLB能够为区域B提供服务。Finally, by modifying the configuration in the centralized RDB service and SLB service, the virtual machine resources required for the RDB and SLB to be applied for by region B are configured into the ECS management and control of region B, and the distributed storage services required by it The central distributed storage service, so that RDB and SLB can provide services for area B.

完成上述步骤后,区域B的IDC就可以对外提供基础云服务了。在一个应用实例中,区域B的VPC、SLB、RDB、ECS的中心化配置如表2。After completing the above steps, the IDC in Region B can provide basic cloud services to the outside world. In an application example, the centralized configuration of VPC, SLB, RDB, and ECS in area B is shown in Table 2.

服务service 中间件Middleware ECS服务ECS service 分布式存储Distributed storage 对外提供服务地址External service address 区域B VPCRegion B VPC 10.0.0.110.0.0.1 10.0.1.210.0.1.2 10.0.0.1510.0.0.15 10.0.1.510.0.1.5 区域B SLBArea B SLB 10.0.0.110.0.0.1 10.0.1.210.0.1.2 10.0.0.1510.0.0.15 10.0.1.410.0.1.4 区域B RDBRegion B RDB 10.0.0.110.0.0.1 10.0.1.210.0.1.2 10.0.0.1510.0.0.15 10.0.1.310.0.1.3 区域B ECSRegion B ECS 10.0.0.110.0.0.1 N/AN / A 10.0.0.1510.0.0.15 10.0.1.210.0.1.2

表2Table 2

可见,区域B除了需要部署区域ECS模块之外,对于其他中心化模块,只需在修改区域A的配置基础上,就完成了部署。It can be seen that, in addition to the deployment of the regional ECS modules in area B, for other centralized modules, only the configuration of area A needs to be modified to complete the deployment.

综上所述,本发明实施例为第三方运营商及传统IDC接入云服务提供一种成本低廉的可能性,在原有的云架构下,利用BPG专线打通运营商网络,利用中心化管控为第三方运营商提供具有管控IDC能力的ECS,并同时将公共组件(即中间件)中心化,这样一来就极大的简化管控需要的资源,并且对于第二个区域可以复用一套管控系统使得新建第二个区域整体成本缩减为2-3台物理机,从而能够快速整合二、三线城市运营商及传统IDC的能力。In summary, the embodiments of the present invention provide a low-cost possibility for third-party operators and traditional IDC to access cloud services. Under the original cloud architecture, the BPG dedicated line is used to open up the operator network, and the centralized management and control is Third-party operators provide ECS with IDC capabilities and centralize common components (ie middleware), which greatly simplifies the resources required for management and control, and can reuse a set of control for the second area The system reduces the overall cost of the newly built second area to 2-3 physical machines, which can quickly integrate the capabilities of second- and third-tier city operators and traditional IDCs.

在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。The specification provided here explains a lot of specific details. However, it can be understood that the embodiments of the present invention can be practiced without these specific details. In some instances, well-known methods, structures, and techniques have not been shown in detail so as not to obscure the understanding of this description.

本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and set in one or more devices different from the embodiment. The modules or units or components in the embodiments may be combined into one module or unit or component, and in addition, they may be divided into a plurality of submodules or subunits or subcomponents. Except that at least some of such features and / or processes or units are mutually exclusive, all features disclosed in this specification (including the accompanying claims, abstract and drawings) and any method so disclosed or All processes or units of equipment are combined. Unless expressly stated otherwise, each feature disclosed in this specification (including the accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose.

Claims (18)

一种提供云计算服务的系统,包括:A system for providing cloud computing services, including: 第一虚拟机管控模块,部署在第一区域的物理机上,适于基于第一区域的物理机资源创建第一虚拟机;The first virtual machine management and control module is deployed on the physical machine in the first area, and is adapted to create the first virtual machine based on the physical machine resources in the first area; 第二虚拟机管控模块,部署在第一虚拟机上,适于基于第二区域的物理机资源创建第二虚拟机,并基于所创建的第二虚拟机来提供云计算服务;The second virtual machine management and control module is deployed on the first virtual machine and is adapted to create a second virtual machine based on the physical machine resources in the second area and provide cloud computing services based on the created second virtual machine; 其中,所述第一区域的物理机资源与第二区域的物理机资源通过网络连接。The physical machine resources in the first area and the physical machine resources in the second area are connected through a network. 如权利要求1所述的系统,还包括:The system of claim 1, further comprising: 分布式存储服务模块,部署在第一区域的物理机上,适于为第二虚拟机管控模块提供用于创建虚拟机的镜像资源。The distributed storage service module is deployed on the physical machine in the first area, and is adapted to provide the second virtual machine management and control module with image resources for creating virtual machines. 如权利要求2所述的系统,其中,所述分布式存储服务模块还适于:为第二虚拟机提供分布式存储服务,所述分布式存储包括块存储和/或对象存储。The system according to claim 2, wherein the distributed storage service module is further adapted to provide a distributed storage service for the second virtual machine, the distributed storage including block storage and / or object storage. 如权利要求1所述的系统,还包括:The system of claim 1, further comprising: 专有网络服务模块,部署在第一区域的物理机上,适于为第二虚拟机提供专有网络服务。The private network service module is deployed on the physical machine in the first area, and is adapted to provide the private network service for the second virtual machine. 如权利要求1所述的系统,还包括:The system of claim 1, further comprising: 负载均衡服务模块,部署在第一区域的物理机上,适于与第二虚拟机管控模块通信,由第二虚拟机管控模块基于第二区域的物理机资源创建多个用于负载均衡的虚拟机,并控制多个虚拟机的流量转发规则。The load balancing service module is deployed on the physical machine in the first area and is adapted to communicate with the second virtual machine management and control module. The second virtual machine management and control module creates a plurality of virtual machines for load balancing based on the physical machine resources in the second area , And control the traffic forwarding rules of multiple virtual machines. 如权利要求1所述的系统,还包括:The system of claim 1, further comprising: 数据库服务模块,部署在第一区域的物理机上,适于与第二虚拟机管控模块通信,由第二虚拟机管控模块基于第二区域的物理机资源创建多个提供数据库服务的虚拟机。The database service module is deployed on the physical machine in the first area and is adapted to communicate with the second virtual machine management and control module. The second virtual machine management and control module creates a plurality of virtual machines that provide database services based on the physical machine resources in the second area. 如权利要求6所述的系统,其中,所述数据库服务模块还适于:为第二虚拟机管控模块提供数据存储服务。The system of claim 6, wherein the database service module is further adapted to: provide a data storage service for the second virtual machine management and control module. 如权利要求1至7中任一项所述的系统,还包括:The system according to any one of claims 1 to 7, further comprising: 中间件服务模块,部署在第一区域的物理机上,适于为系统中的其他模块提供中间件服务。The middleware service module is deployed on the physical machine in the first area and is suitable for providing middleware services to other modules in the system. 如权利要求8所述的系统,其中,所述中间件服务包括如下的至少之一:The system of claim 8, wherein the middleware service includes at least one of the following: 分布式锁服务、消息中间件、统一路由、分布式内存对象缓存系统、镜像中心、监控中心、虚拟机初始化服务。Distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, virtual machine initialization service. 一种提供云计算服务的方法,包括:A method for providing cloud computing services, including: 在第一区域的物理机上形成第一虚拟机管控模块,由第一虚拟机管控模块基于第一区域的物理机资源创建第一虚拟机;A first virtual machine management and control module is formed on the physical machine in the first area, and the first virtual machine management and control module creates the first virtual machine based on the physical machine resources in the first area; 在第一虚拟机上形成第二虚拟机管控模块,由第二虚拟机管控模块基于第二区域的物理机资源创建第二虚拟机,并基于所创建的第二虚拟机来提供云计算服务;A second virtual machine management and control module is formed on the first virtual machine, and the second virtual machine management and control module creates a second virtual machine based on the physical machine resources in the second area and provides cloud computing services based on the created second virtual machine; 其中,所述第一区域的物理机资源与第二区域的物理机资源通过网络连接。The physical machine resources in the first area and the physical machine resources in the second area are connected through a network. 如权利要求10所述的方法,还包括:The method of claim 10, further comprising: 在第一区域的物理机上形成分布式存储服务模块,由分布式存储服务模块为第二虚拟机管控模块提供用于创建虚拟机的镜像资源。A distributed storage service module is formed on the physical machine in the first area, and the distributed storage service module provides the second virtual machine management and control module with image resources for creating a virtual machine. 如权利要求11所述的方法,还包括:The method of claim 11, further comprising: 由分布式存储服务模块为第二虚拟机提供分布式存储服务,所述分布式存储包括块存储和/或对象存储。The distributed storage service module provides a distributed storage service for the second virtual machine, and the distributed storage includes block storage and / or object storage. 如权利要求10所述的方法,还包括:The method of claim 10, further comprising: 在第一区域的物理机上形成专有网络服务模块,由专有网络服务模块为第二虚拟机提供专有网络服务。A dedicated network service module is formed on the physical machine in the first area, and the dedicated network service module provides the dedicated network service for the second virtual machine. 如权利要求10所述的方法,还包括:The method of claim 10, further comprising: 在第一区域的物理机上形成负载均衡服务模块,所述负载均衡服务模块与第二虚拟机管控模块通信,由第二虚拟机管控模块基于第二区域的物理机资源创建多个用于负载均衡的虚拟机,并控制多个虚拟机的流量转发规则。A load balancing service module is formed on the physical machine in the first area, the load balancing service module communicates with the second virtual machine management and control module, and the second virtual machine management and control module creates a plurality of load balancing services based on the physical machine resources in the second area Virtual machine and control the traffic forwarding rules of multiple virtual machines. 如权利要求10所述的方法,还包括:The method of claim 10, further comprising: 在第一区域的物理机上形成数据库服务模块,所述数据库服务模块与第二虚拟机管控模块通信,由第二虚拟机管控模块基于第二区域的物理机资源创建多个提供数据库服务的虚拟机。A database service module is formed on the physical machine in the first area, the database service module communicates with the second virtual machine management and control module, and the second virtual machine management and control module creates a plurality of virtual machines providing database services based on the physical machine resources in the second area . 如权利要求15所述的方法,其中,还包括:The method of claim 15, further comprising: 由数据库服务模块为第二虚拟机管控模块提供数据存储服务。The database service module provides a data storage service for the second virtual machine management and control module. 如权利要求10至16中任一项所述的方法,还包括:The method according to any one of claims 10 to 16, further comprising: 在第一区域的物理机上形成中间件服务模块,由中间件服务模块为所述方法的执行提供中间件服务。A middleware service module is formed on the physical machine in the first area, and the middleware service module provides the middleware service for the execution of the method. 如权利要求17所述的方法,其中,所述中间件服务包括如下的至少之一:The method of claim 17, wherein the middleware service includes at least one of the following: 分布式锁服务、消息中间件、统一路由、分布式内存对象缓存系统、镜像中心、监 控中心、虚拟机初始化服务。Distributed lock service, message middleware, unified routing, distributed memory object cache system, mirror center, monitoring center, and virtual machine initialization service.
PCT/CN2019/113039 2018-11-01 2019-10-24 Method and system for providing cloud computing service Ceased WO2020088340A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201811295727.1A CN111124595B (en) 2018-11-01 2018-11-01 Method and system for providing cloud computing service
CN201811295727.1 2018-11-01

Publications (1)

Publication Number Publication Date
WO2020088340A1 true WO2020088340A1 (en) 2020-05-07

Family

ID=70462966

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/113039 Ceased WO2020088340A1 (en) 2018-11-01 2019-10-24 Method and system for providing cloud computing service

Country Status (2)

Country Link
CN (1) CN111124595B (en)
WO (1) WO2020088340A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113543152A (en) * 2021-07-09 2021-10-22 大唐网络有限公司 5G communication system, data communication method, and non-volatile storage medium
WO2025123783A1 (en) * 2023-12-12 2025-06-19 阿里云计算有限公司 Cloud disk management and control method, cloud disk management and control system, and electronic device and storage medium

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111881476B (en) * 2020-07-28 2023-07-28 平安科技(深圳)有限公司 Object storage control method, device, computer equipment and storage medium
CN112328318B (en) * 2020-09-27 2024-05-14 北京华胜天成科技股份有限公司 Method, device and storage medium for automatic planning of proprietary cloud platform
CN113312142B (en) * 2021-02-26 2023-12-26 阿里巴巴集团控股有限公司 Virtualized processing system, method, device and equipment
CN113741908A (en) * 2021-08-25 2021-12-03 杭州安恒信息技术股份有限公司 High-availability deployment method, device, electronic device and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102681899A (en) * 2011-03-14 2012-09-19 金剑 Virtual computing resource dynamic management system of cloud computing service platform
CN103167003A (en) * 2011-12-16 2013-06-19 上海博腾信息科技有限公司 Cloud computing application platform
CN104731658A (en) * 2013-12-19 2015-06-24 国际商业机器公司 Method and system for optimally provisioning and merging shared resources to maximize resource availability
US9292351B2 (en) * 2012-06-15 2016-03-22 Verizon Patent And Licensing Inc. Distributed fabric architecture in a cloud computing environment

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101571880B1 (en) * 2009-02-02 2015-11-25 삼성전자 주식회사 Virtualized electronic apparatus virtual machine store and method for using virtual machine service
US9251115B2 (en) * 2013-03-07 2016-02-02 Citrix Systems, Inc. Dynamic configuration in cloud computing environments
WO2015099035A1 (en) * 2013-12-27 2015-07-02 株式会社Nttドコモ Management system, virtual communication-function management node, and management method
CN107979620B (en) * 2016-10-25 2020-05-19 北京计算机技术及应用研究所 Heterogeneous hybrid cloud computing system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102681899A (en) * 2011-03-14 2012-09-19 金剑 Virtual computing resource dynamic management system of cloud computing service platform
CN103167003A (en) * 2011-12-16 2013-06-19 上海博腾信息科技有限公司 Cloud computing application platform
US9292351B2 (en) * 2012-06-15 2016-03-22 Verizon Patent And Licensing Inc. Distributed fabric architecture in a cloud computing environment
CN104731658A (en) * 2013-12-19 2015-06-24 国际商业机器公司 Method and system for optimally provisioning and merging shared resources to maximize resource availability

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113543152A (en) * 2021-07-09 2021-10-22 大唐网络有限公司 5G communication system, data communication method, and non-volatile storage medium
WO2025123783A1 (en) * 2023-12-12 2025-06-19 阿里云计算有限公司 Cloud disk management and control method, cloud disk management and control system, and electronic device and storage medium

Also Published As

Publication number Publication date
CN111124595A (en) 2020-05-08
CN111124595B (en) 2023-03-21

Similar Documents

Publication Publication Date Title
WO2020088340A1 (en) Method and system for providing cloud computing service
KR102604082B1 (en) Multi-cluster ingress
US11425054B1 (en) User-configured multi-location service deployment and scaling
US11895081B2 (en) Distributed network address translation over network environments
CN104639372B (en) The correlating method and system of overlay network and physical network based on SDN
US10148493B1 (en) API gateway for network policy and configuration management with public cloud
CN104253865B (en) A kind of two-level management method of mixed type desktop cloud service platform
US10713071B2 (en) Method and apparatus for network function virtualization
CN109040276B (en) A method, device, computer storage medium and terminal for building a cloud platform
CN115380513A (en) Network management system for federated multi-site logical networks
CN112130965A (en) Method, equipment and storage medium for deploying distributed container arrangement management cluster
US11765244B1 (en) Latency-based service discovery and routing for multi-location service-oriented applications
CN105577723B (en) Virtualize the method and apparatus that load balancing is realized in network
US20100318609A1 (en) Bridging enterprise networks into cloud
JP5720324B2 (en) Thin client environment providing system, server, thin client environment management method, and thin client environment management program
CN111510310B (en) Network mode implementation method and device under public cloud architecture
CN104679608A (en) Infrastructure visualization platform building method and mirror management structure of infrastructure visualization platform building method
CN116132542B (en) Container network management method, container network plug-in and related equipment
CN103581325B (en) A kind of cloud computing resources cell system and its implementation method
CN116436838A (en) Network access controller and method
Ganesan Advancing Application Development through Containerization: Enhancing Automation, Scalability, and Consistency
De Cusatis et al. Managing multi-tenant services for software defined cloud data center networks
Kamla et al. An implementation of software routing for building a private cloud
CN112655185B (en) Apparatus, method and storage medium for service allocation in a software defined network
CN120937327A (en) Intelligent multi-operator network edge application deployment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19879937

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19879937

Country of ref document: EP

Kind code of ref document: A1