Search

CN-122001881-A - Elastic public network IP configuration method based on hybrid cloud scene and public cloud system

CN122001881ACN 122001881 ACN122001881 ACN 122001881ACN-122001881-A

Abstract

The application discloses an elastic public network IP configuration method and a public cloud system based on a hybrid cloud scene, which can improve public network access experience of tenants to a certain extent. The method comprises the steps that tenants can provide access point information of an elastic public network IP used by resources under cloud and cloud gateway creation information for a cloud management platform, and the cloud management platform can create the cloud gateway in a target data center and create a network connection channel between the cloud gateway and the resources under cloud because the access point information is used for indicating a target cloud data center where the access point of the elastic public network IP is located and the cloud gateway creation information is used for indicating a cloud gateway to be created and bound to the elastic public network IP. When the other tenants in the public network send the first message with the destination address of the elastic public network IP to the access point, the access point can inform the cloud gateway to send the first message to cloud resources of the tenants through the network connection channel so that the cloud resources of the tenants process the first message.

Inventors

  • WANG PING

Assignees

  • 华为云计算技术有限公司

Dates

Publication Date
20260508
Application Date
20241108

Claims (15)

  1. 1. An elastic public network IP configuration method based on a hybrid cloud scenario, wherein the method is used for a cloud management platform of a public cloud system, the cloud management platform is used for managing an infrastructure of the public cloud system, the infrastructure comprises a plurality of cloud data centers, and the method comprises: The cloud management platform receives access point information of an elastic public network IP input by a tenant of the infrastructure, wherein the access point information comprises position information of an access point bound with the elastic public network IP, and the position information is used for indicating that the access point is arranged in a target cloud data center of the plurality of cloud data centers; The cloud management platform receives cloud gateway creation information input by the tenant, wherein the cloud gateway creation information is used for indicating the elastic public network IP to be bound of the cloud gateway to be created; The cloud management platform establishes the cloud gateway in the target cloud data center, a network connection channel is established between the cloud gateway and the data center which does not belong to the public cloud system, a first forwarding rule is recorded in the cloud gateway, and the first forwarding rule is used for indicating the cloud gateway to send a message with a destination address being the elastic public network IP to the data center; The cloud gateway receives a first superposition message sent by the access point, wherein an inner layer message of the first superposition message is a message received by the access point from the Internet outside the infrastructure, and a destination address of the inner layer message of the first superposition message is the elastic public network IP; And the cloud gateway sends a first message to the data center through the network connection channel according to the first forwarding rule, wherein the first message is an inner layer message of the first superposition message.
  2. 2. The method of claim 1, wherein the cloud gateway further records a second forwarding rule, and the second forwarding rule is used to instruct the cloud gateway to send a message with a destination address being a network address of the internet to the access point; The method further comprises the steps of: the cloud gateway receives a second message sent by the data center through the network connection channel, wherein the destination address of the second message is a public network IP outside the infrastructure, and the source address is the elastic public network IP; The cloud gateway generates a second superposition message according to the second message, and sends the second superposition message to the access point according to the second forwarding rule, wherein an inner layer message of the second superposition message is the second message; and the access point receives the second superposition message and sends the second message to the Internet.
  3. 3. The method according to claim 1 or 2, characterized in that the method further comprises: And the cloud gateway records the flow of the network connection channel.
  4. 4. A method according to claim 3, characterized in that the method further comprises: the cloud management platform charges the tenant based on the traffic.
  5. 5. The method according to any of claims 1 to 4, wherein the network connection path comprises a private line network path and/or a VPN network path.
  6. 6. The method of any one of claims 1 to 5, wherein the data center is a local data center or a cloud data center of a third party public cloud system.
  7. 7. A public cloud system comprising a cloud management platform for managing an infrastructure comprising a plurality of cloud data centers and an infrastructure, wherein: The cloud management platform is used for receiving access point information of an elastic public network IP input by a tenant of the infrastructure, wherein the access point information comprises position information of an access point bound with the elastic public network IP, and the position information is used for indicating that the access point is arranged in a target cloud data center of the plurality of cloud data centers; the cloud management platform is further used for receiving cloud gateway creation information input by the tenant, wherein the cloud gateway creation information is used for indicating the elastic public network IP to be bound of the cloud gateway to be created; The cloud management platform is further configured to create the cloud gateway in the target cloud data center, wherein a network connection channel is established between the cloud gateway and a data center not belonging to the public cloud system, the cloud gateway records a first forwarding rule, and the first forwarding rule is used for indicating the cloud gateway to send a message with a destination address being the elastic public network IP to the data center; the cloud gateway is configured to receive a first superposition packet sent by the access point, where an inner layer packet of the first superposition packet is a packet received by the access point from an internet outside the infrastructure, and a destination address of the inner layer packet of the first superposition packet is the elastic public network IP; The cloud gateway is further configured to send a first message to the data center through the network connection channel according to the first forwarding rule, where the first message is an inner layer message of the first stack message.
  8. 8. The system of claim 7, wherein the cloud gateway further records a second forwarding rule, and the second forwarding rule is used to instruct the cloud gateway to send a message with a destination address being a network address of the internet to the access point; The cloud gateway is further configured to receive a second packet sent by the data center through the network connection channel, where a destination address of the second packet is a public network IP outside the infrastructure, and a source address is the elastic public network IP; The cloud gateway is further configured to generate a second superposition packet according to the second packet, and send the second superposition packet to the access point according to the second forwarding rule, where an inner layer packet of the second superposition packet is the second packet; the access point is configured to receive the second superposition message, and send the second message to the internet.
  9. 9. The system of claim 7 or 8, wherein the cloud gateway is further configured to record traffic of the network connection channel.
  10. 10. The system of claim 9, wherein the cloud management platform is further configured to charge the tenant based on the traffic.
  11. 11. The system according to any of claims 7 to 10, wherein the network connection path comprises a private line network path and/or a VPN network path.
  12. 12. The system of any one of claims 7to 11, wherein the data center is a local data center or a cloud data center of a third party public cloud system.
  13. 13. A cluster of computing devices, the cluster of computing devices comprising at least one computing device, each computing device comprising a processor and memory: The memory is used for storing instructions; the processor is configured to cause the cluster of computing devices to perform the method of any one of claims 1 to 6 in accordance with the instructions.
  14. 14. A computer storage medium storing one or more instructions which, when executed by one or more computers, cause the one or more computers to implement the method of any one of claims 1 to 6.
  15. 15. A computer program product, characterized in that it stores instructions that, when executed by a computer, cause the computer to implement the method of any one of claims 1 to 6.

Description

Elastic public network IP configuration method based on hybrid cloud scene and public cloud system Technical Field The embodiment of the application relates to the technical field of clouds, in particular to an elastic public network IP configuration method based on a hybrid cloud scene and a public cloud system. Background Under the cloud computing scenario, cloud resources deployed by tenants in an infrastructure of a cloud vendor have requirements of accessing and being accessed by a public network, so the cloud vendor provides a public network resource access service, wherein the public network resources comprise an elastic public network IP (ELASTIC IP, EIP), a bandwidth and the like. In the related art, cloud vendors can provide public network-oriented access points for cloud resources of tenants, and the access points can provide public network resources such as elastic public network IP and bandwidth for cloud resources of tenants, so that the cloud resources of tenants can access or be accessed by public networks by utilizing the public network resources such as the elastic public network IP and the bandwidth provided by the access points, thereby meeting the service requirements of tenants. However, as the service of the tenant can be deployed on the cloud resources and also can be deployed on the cloud resources of the tenant, how to enable the cloud resources of the tenant to communicate with the public network to meet the increasingly complex service demands of the tenant becomes a problem to be solved urgently by cloud vendors. Disclosure of Invention The embodiment of the application provides an elastic public network IP configuration method and a public cloud system based on a hybrid cloud scene, which can provide diversified public network access services for tenants, thereby improving the public network access experience of the tenants to a certain extent. A first aspect of an embodiment of the present application provides a method for configuring an elastic public network IP based on a hybrid cloud scenario, where the method may be implemented by a public cloud system, where the public cloud system includes infrastructure and a cloud management platform for managing the infrastructure, where the infrastructure includes a plurality of cloud data centers. The method comprises the following steps: When a tenant needs to communicate with a public network by using cloud resources (data centers not belonging to a public cloud system and the like), the tenant can input access point information of an elastic public network IP used by the cloud resources and cloud gateway creation information to a configuration interface provided by a cloud management platform, wherein the access point information can be used for indicating that the access point is arranged in a target cloud data center of a plurality of cloud data centers of the public cloud system, and the cloud gateway creation information is used for indicating a cloud gateway to be created and bound with the elastic public network IP. Based on the access point information and the cloud gateway information, the cloud management platform may create a cloud gateway in the target cloud data center and establish a network connection channel between the cloud gateway and cloud resources of the tenant. The cloud gateway records a first forwarding rule, and the first forwarding rule is used for indicating the cloud gateway to send a message with a destination address of an elastic public network IP to cloud resources of a tenant. When the rest tenants in the public network send the first message with the destination address of the elastic public network IP to the access point, the access point can take the first message as an inner layer message of the first superposition message and send the first superposition message to the cloud gateway. Due to the existence of the first forwarding rule, the cloud gateway can send the first message in the first superposition message to the cloud resources of the tenant through the network connection channel, so that the cloud resources of the tenant can process the first message, and the service requirements between the tenant and other tenants are met. According to the method, the cloud management platform can provide the cloud resources of the tenant with the access point of the elastic public network IP which can be used by the cloud resources and the cloud gateway which is bound to the elastic public network IP according to the needs of the tenant, so that the cloud resources of the tenant can utilize the access point and the cloud gateway to realize communication with the public network, thus meeting the service demands of the tenant on the cloud resources, providing diversified public network access services for the tenant, and improving the public network access experience of the tenant to a certain extent. In a possible implementation manner, the cloud gateway further records a second forwarding rule, the