Search

KR-20260066918-A - METHOD, APPARATUS AND PROGRAM FOR SUPPORTING ACCESS TO CONSOLE OF VIRTUAL MACHINE

KR20260066918AKR 20260066918 AKR20260066918 AKR 20260066918AKR-20260066918-A

Abstract

According to one embodiment of the present disclosure, a computer program stored on a computer-readable storage medium may perform the following methods to support access to a console of a virtual machine (VM). The method may include: receiving a request for access to a console of the virtual machine pre-generated on the cloud platform from a user's device; obtaining a connection address for accessing a console proxy virtual machine that provides access to the console of the virtual machine through the cloud platform; and tuning the connection address and transmitting the tuned connection address to the user's device.

Inventors

  • 강경구

Assignees

  • (주) 케이티클라우드

Dates

Publication Date
20260512
Application Date
20241105

Claims (15)

  1. A computer program stored on a computer-readable storage medium, wherein the computer program performs the following methods to support console access to a virtual machine (VM), and the methods are A step of receiving a request to access a console to the virtual machine pre-created on the cloud platform from a user's device; A step of obtaining a connection address for connecting to a console proxy virtual machine that provides access to the console of the virtual machine through the cloud platform; and A step of tuning the above connection address and transmitting the tuned connection address to the user's device; including, A computer program stored on a computer-readable storage medium.
  2. In paragraph 1, The step of tuning the above connection address and transmitting the tuned connection address to the user's device is A step of generating a console URL (uniform resource locator) including the public internet protocol (IP) of the console proxy virtual machine and a token for authentication; and A step of transmitting the above console URL to the user's device; including, A computer program stored on a computer-readable storage medium.
  3. In paragraph 2, After the step of transmitting the above console URL to the user's device, When a request for connection to the console proxy virtual machine is received from the user's device via the console URL, a step of establishing a network connection between the user's device and the console proxy virtual machine; including, A computer program stored on a computer-readable storage medium.
  4. In paragraph 3, After the step of establishing a network connection between the user's device and the console proxy virtual machine, A step of network connecting a host providing resources to the virtual machine and the console proxy virtual machine based on the token included in the console URL; and A step of providing access to a console for the virtual machine to the user's device through a session for the virtual machine running on the host; including, A computer program stored on a computer-readable storage medium.
  5. In paragraph 2, After the step of generating the console URL above, A step of encrypting the console URL using a secret key corresponding to the virtual machine; and A step of transmitting the encrypted console URL to the user's device; including, A computer program stored on a computer-readable storage medium.
  6. In paragraph 5, The above secret key is, Created when the virtual machine is created on the cloud platform, and shared between the user's device and a computing device including the cloud platform, A computer program stored on a computer-readable storage medium.
  7. In paragraph 5, The above secret key is, A combination of information about the virtual machine, information about a computing device including the cloud platform, and information about the user, A computer program stored on a computer-readable storage medium.
  8. In Paragraph 7, Information regarding the above virtual machine is, It includes at least one of virtual machine identification information, the creation time and specifications of the virtual machine, and Information regarding the above computing device is, Includes computing device identification information, and Information regarding the above user is, including at least one of user identification information, age, gender and name, A computer program stored on a computer-readable storage medium.
  9. In paragraph 8, The virtual machine identification information above is a value that distinguishes it from other virtual machines, and includes a UUID (universally unique identifier) and the IP address of the virtual machine. The above computing device identification information is a value that is distinguished from the configuration of other devices among the configurations of the computing device, and includes the production number of the hardware constituting the computing device and the IP address of the computing device, and The above user identification information is a value that distinguishes it from other users, including an identification number, A computer program stored on a computer-readable storage medium.
  10. In paragraph 1, After the step of receiving a request to access the console of the virtual machine, the step of performing authentication for the user; including, A computer program stored on a computer-readable storage medium.
  11. In Paragraph 10, The step of performing authentication for the above user is, A step of receiving information about the user from the user's device; A step of determining whether the user and the requester are the same person by comparing information about the user and information about the requester who requested the creation of the virtual machine; and If the above user and the above requester are not the same person, the step of sending a notification to the user's device rejecting access to the console of the virtual machine; including, A computer program stored on a computer-readable storage medium.
  12. In paragraph 1, The above-mentioned cloud platform is, Software that provides virtualized computing resources upon the request of the above user, comprising CloudStack, A computer program stored on a computer-readable storage medium.
  13. In Paragraph 12, The above CloudStack is, As an IaaS (Infrastructure as a Service) cloud platform, open source software designed to deploy and manage at least one of servers, storage, and networks, A computer program stored on a computer-readable storage medium.
  14. As a computing device including a cloud platform, One or more processors; Memory for storing instructions executable on the above-mentioned cloud platform and one or more processors; and Network Department; Includes, The above one or more processors, A process of receiving a request to access a console for a virtual machine pre-created on the cloud platform from a user's device; A process of obtaining a connection address for connecting to a console proxy virtual machine that provides access to the console of the virtual machine through the cloud platform; and A process of tuning the above connection address and transmitting the tuned above connection address to the user's device; performing, Computing device.
  15. A method for supporting console access to a virtual machine (VM) performed on a computing device including a cloud platform, A step of receiving a request from a user's device to access a console for the virtual machine pre-created on the cloud platform; A step of obtaining a connection address for connecting to a console proxy virtual machine that provides access to the console of the virtual machine through the cloud platform; and A step of tuning the above connection address and transmitting the tuned connection address to the user's device; including, method.

Description

Method, apparatus and program for supporting access to console of virtual machine The present disclosure relates to a technology that supports access to a virtual machine console, and specifically, to support access to a virtual machine console of a cloud platform from an external network. A cloud platform is a platform that utilizes internet technology to provide highly scalable IT resources as a service to a large number of customers. Through a cloud platform, users can create virtual machines (VMs) and use them like a personal desktop environment. However, the console view feature inherent to cloud platforms has a problem in that the access URL for the virtual machine console is designed to be the internal network IP of the cloud platform server, making it difficult to access the virtual machine console from the external network. Consequently, users attempt to connect to the virtual machine from the external network by additionally using SSH (Secure Shell) or RDP (Remote Desktop Protocol); however, if SSH or RDP connections are impossible, there is a problem in that the user's virtual machine can only be accessed through the cloud service provider. These problems make it inconvenient for users to use virtual machines on cloud platforms, and new technologies and methods are required to resolve them. In this regard, Korean Published Patent Application No. 10-2024-0009546 discloses a business management system using a cloud computing-based platform. FIG. 1 is an exemplary diagram of a system for supporting access to a console of a virtual machine according to one embodiment of the present disclosure. FIGS. 2 to 8 are flowcharts illustrating a method for supporting access to a console of a virtual machine according to one embodiment of the present disclosure. FIG. 9 illustrates a brief and general schematic diagram of an exemplary computing environment in which embodiments of the present disclosure may be implemented. Various embodiments are now described with reference to the drawings. In this specification, various descriptions are provided to provide an understanding of the present disclosure. However, it is evident that these embodiments can be practiced without such specific descriptions. As used herein, terms such as “component,” “module,” “system,” etc. refer to computer-related entities, hardware, firmware, software, combinations of software and hardware, or executions of software. For example, a component may be, but is not limited to, a procedure executed on a processor, a processor, an object, an execution thread, a program, and/or a computer. For example, both an application executed on a computer device and the computer device itself may be a component. One or more components may reside within a processor and/or an execution thread. A component may be localized within a single computer. A component may be distributed among two or more computers. Additionally, these components may be executed from various computer-readable media having various data structures stored therein. Components may communicate through local and/or remote processes, for example, according to signals having one or more data packets (e.g., data from a component interacting with another component in a local system or distributed system, and/or data transmitted through signals to other systems and networks such as the Internet). Furthermore, the term "or" is intended to mean an implicit "or" rather than an exclusive "or." That is, unless otherwise specified or evident from the context, "X uses A or B" is intended to mean one of the natural implicit substitutions. In other words, if X uses A; if X uses B; or if X uses both A and B, "X uses A or B" may apply to any of these cases. Additionally, the term "and/or" as used herein should be understood to refer to and include all possible combinations of one or more of the enumerated related items. Additionally, the terms “comprising” and/or “comprising” should be understood to mean that such features and/or components are present. However, the terms “comprising” and/or “comprising” should be understood not to exclude the presence or addition of one or more other features, components and/or groups thereof. Furthermore, unless otherwise specified or clearly evident from the context to indicate a singular form, the singular in this specification and claims should generally be interpreted to mean “one or more.” And, the term “at least one of A or B” should be interpreted to mean “a case including only A,” “a case including only B,” or “a combination of A and B.” Those skilled in the art should recognize that the various exemplary logical blocks, configurations, modules, circuits, means, logics, and algorithmic steps described in connection with the embodiments disclosed herein may be implemented in electronic hardware, computer software, or a combination of both. To clearly exemplify the interchangeability of hardware and software, various exemplary components, blocks, configurations, m