Search Images Maps Play YouTube News Gmail Drive More »
Sign in
Screen reader users: click this link for accessible mode. Accessible mode has the same essential features but works better with your reader.

Patents

  1. Advanced Patent Search
Publication numberCN104168200 A
Publication typeApplication
Application numberCN 201410328769
Publication date26 Nov 2014
Filing date10 Jul 2014
Priority date10 Jul 2014
Also published asCN104168200B
Publication number201410328769.6, CN 104168200 A, CN 104168200A, CN 201410328769, CN-A-104168200, CN104168200 A, CN104168200A, CN201410328769, CN201410328769.6
Inventors张群轼
Applicant汉柏科技有限公司
Export CitationBiBTeX, EndNote, RefMan
External Links: SIPO, Espacenet
Open vSwitch-based method and system for realizing ACL function
CN 104168200 A
Abstract
The invention provides an open virtual switching (vSwitch)-based method for realizing an access control list (ACL) function. The method comprises: a host sends a new ACL rule related to a certain virtual machine to a network control server; after the network control server receives the ACL rule, the ACL rule is converted into a flow rule used by the Open vSwitch and the flow rule is sent to a network agent server of a host that the virtual machine is located at; and the network agent server converts the received flow rule into an OVS command, the OVS command is executed at the local host, and the flow rule is inserted into a flow table of the Open vSwitch. According to the method, the ACL function of the virtual machine flow is realized by using the Open vSwitch way, thereby achieving an objective of virtual machine data flow controlling.
Claims(9)  translated from Chinese
1.一种基于Open vSwitch实现ACL功能的方法,其特征在于,该方法包括: 51:第一主机将设置的关于某虚拟机的访问控制列表ACL规则发送到第一主机的网络控制服务端; 52:网络控制服务端接收到ACL规则后,将所述ACL规则转换成开放虚拟交换标准OpenvSwitch所使用的流Flow规则,并将所述Flow规则发送到所述虚拟机所在第二主机的网络代理服务端; 53:网络代理服务端将接收到的Flow规则转换成OVS命令,并在第二主机上执行所述OVS命令,以将所述Flow规则插入Open vSwitch的流Flow表中。 1. A method to achieve Open vSwitch based ACL function, wherein the method comprises: 51: sent to the first host of the network control server will set the first host on a virtual machine access control list ACL rule; 52: Network Control Service terminated after receiving the ACL rule, the ACL rule will be converted into an open standard virtual exchange flow Flow rules OpenvSwitch used, and the Flow rule is transmitted to the second host of the virtual machine network proxy server; 53: Web proxy server received Flow rule converted into OVS command, and execute the OVS command on the second host to the Open vSwitch Flow rule insertion flow Flow table.
2.根据权利要求1所述的方法,其特征在于,该方法步骤S3后还包括: 当虚拟机内有流量进入到Open vSwitch中,Open vSwitch会在Flow表中进行对比,并执行相应Flow规则所定义的动作。 2. The method according to claim 1, wherein, wherein the method further comprises after step S3: When a virtual machine traffic into the Open vSwitch, Open vSwitch will be compared in Flow table and perform the appropriate Flow Rules defined actions.
3.根据权利要求1所述的方法,其特征在于,该方法步骤S2还包括: 网络控制服务端将接收到的ACL规则保存到分布式数据库中。 3. The method according to claim 1, characterized in that the method further comprises the step S2: network control server to save the received ACL rule to distributed databases.
4.根据权利要求1所述的方法,其特征在于,所述ACL规则适用于网络或虚拟网卡。 4. The method according to claim 1, characterized in that the ACL rule applies to a network or virtual LAN.
5.根据权利要求4所述的方法,其特征在于,所述ACL规则之间的优先级从高到低依次为:不可覆盖的网络级别、虚拟网卡级别以及可覆盖的网络级别。 5. The method according to claim 4, wherein the priority between the ACL rules in the order of: non-coverage network level, virtual NIC level and network level can be covered.
6.一种基于Open vSwitch实现ACL功能的系统,其特征在于,该系统包括虚拟机、OpenvSwitch、网络代理服务端及网络控制服务端; 网络控制服务端,用于将接收到的ACL规则转换成Open vSwitch所使用的Flow规则,将所述Flow规则发送到所述虚拟机所在主机的网络代理服务端; 网络代理服务端,用于将将接收到的Flow规则转换成OVS命令,并在本地主机上执行所述OVS命令,以并将所述Flow规则插入所述Open vSwitch中的Flow表中; Open vSwitch,用于根据进入到Open vSwitch中虚拟机的流量,在其Flow表中进行对t匕,并执行相应Flow规则所定义的动作。 6. Based on Open vSwitch implement ACL-enabled systems, wherein the system includes a virtual machine, OpenvSwitch, network proxy server and network control server; network control server, for the received ACL rule converted into Open vSwitch Flow rule used to send the Flow rule to network proxy server host where the virtual machine; network proxy server for the received Flow rule converted into OVS command, and the local host OVS executing the command on to the Flow rules and inserted in the Open vSwitch Flow table; Open vSwitch, according to flow into the Open vSwitch virtual machine, carried on t dagger in its Flow table and perform the appropriate actions defined Flow rules.
7.根据权利要求6所述的系统,其特征在于,所述网络控制服务端的功能还包括:将接收到的ACL规则保存到分布式数据库中。 7. The system of claim 6, wherein the network control server features include: Save the received ACL rule to distributed databases.
8.根据权利要求6所述的系统,其特征在于,所述虚拟机、所述Open vSwitch和所述网络代理服务位于同一主机,所述网络控制服务端位于另一主机。 8. The system of claim 6, wherein the virtual machine, the Open vSwitch and the network proxy service in the same host, the network control server located in another host.
9.根据权利要求6所述的系统,其特征在于,该系统还包括物理交换机,用于通过物理网卡连接不同主机。 9. The system of claim 6, wherein the system further includes a physical switch for connecting different host via a physical NIC.
Description  translated from Chinese
—种基于Open vSwitch实现ACL功能的方法及系统 - Methods and systems based on Open vSwitch achieve ACL function

技术领域 Technical Field

[0001] 本发明涉及计算机网络技术领域,具体涉及一种基于Open vSwitch实现ACL功能的方法及系统。 [0001] The present invention relates to the field of computer network technology, specifically to a method and a system based on Open vSwitch achieve ACL functionality.

背景技术 Background

[0002] 由于一个虚拟机上可能存在多个虚拟后的系统,系统之间通讯就需要通过网络,但和普通的物理系统间通过实体网络设备互联不同,虚拟系统的网络接口也是虚拟的,因此不能直接通过实体网络设备互联,目前流行的一种解决方案是:虚拟交换(VirtualSwitching,简称vSwitch)技术。 [0002] Since there may be multiple virtual systems after a virtual machine, you need communication between systems over a network, but among ordinary physical systems and physical network devices connected via different network interfaces virtual system is virtual, and therefore not directly through the physical network devices connected, now a popular solution: virtual exchange (VirtualSwitching, referred to as vSwitch) technology. 所谓的vSwitch,是指将虚拟网桥完全在服务器(终端)硬件上实现,不涉及外部交换机的协作。 The so-called vSwitch, refers to the virtual bridge fully implemented in the server (terminal) hardware does not involve coordination of external switch.

[0003] 跟普通服务器设备一样,每个虚拟机有着自己的虚拟网卡(virtual NIC),每个virtual NIC有着自己的MAC地址和IP地址。 [0003] with common server device, each virtual machine has its own virtual NIC (virtual NIC), each virtual NIC has its own MAC address and IP address. vSwitch相当于一个虚拟的二层交换机,该交换机连接虚拟网卡和物理网卡,将虚拟机上的数据报文从物理网口转发出去。 vSwitch is equivalent to a virtual Layer 2 switch, which connect the virtual and physical network adapter card, the data packets are forwarded through the virtual machine from the physical network port. 根据需要,vSwitch还可以支持二层转发、安全控制、端口镜像等功能。 According to need, vSwitch can also support Layer 2 forwarding security control, port mirroring function.

[0004] 但现有技术中,利用传统的vSwitch实现访问控制列表(Access Control list,简称ACL)功能需要消耗CPU资源,对服务器的性能有影响。 [0004] However, the prior art, the use of traditional vSwitch implement access control lists (Access Control list, referred to as the ACL) functions need to consume CPU resources on the server performance impact.

发明内容 DISCLOSURE

[0005] 针对现有技术的缺陷,本发明提供的实现ACL功能的方法,采用Open vSwitch解决虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的。 [0005] for the deficiencies of the prior art, the method of the present invention to achieve ACL functions provided by the use of Open vSwitch solve virtual machine traffic ACL function, so as to achieve the purpose of controlling virtual machine data traffic.

[0006] 第一方面,本发明提供了一种基于Open vSwitch实现ACL功能的方法,该方法包括: [0006] The first aspect, the present invention provides a method based on the Open vSwitch achieve ACL functions, the method comprising:

[0007] S1:第一主机将设置的关于某虚拟机的访问控制列表ACL规则发送到第一主机的网络控制服务端; [0007] S1: The first panel will set the rules for a list of ACL controls access to a virtual machine is sent to the first host of the network control server;

[0008] S2:网络控制服务端接收到ACL规则后,将所述ACL规则转换成开放虚拟交换标准Open vSwitch所使用的流Flow规则,并将所述Flow规则发送到所述虚拟机所在第二主机的网络代理服务端; [0008] S2: Network Control Service terminated after receiving the ACL rule, the ACL rule will be converted into a stream Flow rule criteria used by the Open vSwitch virtual switch is open, and the Flow rule is transmitted to the virtual machine where the second network proxy server host;

[0009] S3:网络代理服务端将接收到的Flow规则转换成OVS命令,并在第二主机上执行所述OVS命令,以将所述Flow规则插入Open vSwitch的流Flow表中。 [0009] S3: network proxy server received Flow rule converted into OVS command, and execute the OVS command on the second host to the Open vSwitch Flow rule insertion flow Flow table.

[0010] 优选地,该方法步骤S3后还包括: [0010] Preferably, the method further comprises after step S3:

[0011] 当虚拟机内有流量进入到Open vSwitch中,Open vSwitch会在Flow表中进行对t匕,并执行相应Flow规则所定义的动作。 [0011] When traffic enters the Open vSwitch virtual machine, Open vSwitch will be on t dagger in Flow table and perform the appropriate action Flow rules defined.

[0012] 优选地,该方法步骤S2还包括: [0012] Preferably, the method further comprises the step S2:

[0013] 网络控制服务端将接收到的ACL规则保存到分布式数据库中。 [0013] The network control server to save the received ACL rule to distributed databases.

[0014] 优选地,所述ACL规则适用于网络Network或虚拟网卡。 [0014] Preferably, the ACL rule applies to a network or virtual LAN Network.

[0015] 优选地,所述ACL规则之间的优先级从高到低依次为:不可覆盖的网络Network级另|J、虚拟网卡级别以及可覆盖的Network级别。 [0015] Preferably, the low priority level between the ACL rules as follows: non-covered stage another network Network | J, virtual NIC level and Network level can be covered.

[0016] 第二方面,本发明提供了一种基于Open vSwitch实现ACL功能的系统,该系统包括虚拟机、Open vSwitch、网络代理服务端及网络控制服务端; [0016] The second aspect, the present invention provides a method based on the Open vSwitch achieve ACL functional system that includes a virtual machine, Open vSwitch, network proxy server and network control server;

[0017] 网络控制服务端,用于将接收到的ACL规则转换成Open vSwitch所使用的Flow规则,将所述Flow规则发送到所述虚拟机所在主机的网络代理服务端; [0017] The network control server, for the received ACL rule converted into Flow Rules Open vSwitch used to send the Flow rule to the virtual machine where the host network proxy server;

[0018] 网络代理服务端,用于将将接收到的Flow规则转换成OVS命令,并在本地主机上执行所述OVS命令,并将所述Flow规则插入所述Open vSwitch中的Flow表中; [0018] The network proxy server for the received Flow rule converted into OVS command, and execute the OVS command on the local host, and the rule is inserted into the Open vSwitch Flow of Flow table;

[0019] Open vSwitch,用于根据进入到Open vSwitch中虚拟机的流量,在其Flow表中进行对比,并执行相应Flow规则所定义的动作。 [0019] Open vSwitch, for action in accordance into the Open vSwitch virtual machine traffic compared in its Flow table and perform the appropriate rules defined Flow.

[0020] 优选地,所述网络控制服务端的功能还包括:将接收到的ACL规则保存到分布式数据库中。 [0020] Preferably, the network control server features include: Save the received ACL rule to distributed databases.

[0021] 优选地,所述虚拟机、所述Open vSwitch和所述网络代理服务位于同一主机,所述网络控制服务端位于另一主机。 [0021] Preferably, the virtual machine, the Open vSwitch and the network proxy service in the same host, the network control server located in another host.

[0022] 优选地,所述系统还包括物理交换机,用于通过物理网卡连接不同主机。 [0022] Preferably, the system further includes a physical switch for connecting different host via a physical NIC.

[0023] 由上述技术方案可知,本发明提供的一种实现ACL功能的方法和系统,采用OpenvSwitch及分布式的结构解决了虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的,由于整个系统分布于不同的主机,使得服务器性能明显提高。 [0023] From the above technical solutions, the method and system of the present invention provides an implementation of ACL function, using OpenvSwitch and distributed architecture to solve the ACL function virtual machine traffic, so as to achieve the purpose of controlling virtual machine data traffic, due to the the entire system distributed in different host, so the server performance has improved significantly.

附图说明 Brief Description

[0024] 为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些图获得其他的附图。 [0024] In order to more clearly illustrate the embodiments or the prior art technical solutions embodiment of the present invention, it will implement the following figures for the cases described in the prior art or require the use of a simple introduction, Obviously, in the following description The drawings are only some embodiments of the present invention, those of ordinary skill in terms of creative work without paying the premise, you can also obtain other drawings based on these figures.

[0025] 图1是本发明实施例提供的基于Open vSwitch实现ACL功能的方法的流程图; [0025] FIG. 1 is a flowchart of a method to achieve Open vSwitch based ACL function according to an embodiment of the present invention;

[0026] 图2是本发明实施例提供的基于Open vSwitch实现ACL功能的系统的结构示意图; [0026] FIG. 2 is a block diagram illustrating provided based ACL Open vSwitch achieve functional system embodiment of the present invention;

[0027] 图3是本发明另一实施例提供的Open vSwitch在Flow表中进行对比的流程示意图。 [0027] FIG. 3 is a flow diagram Open vSwitch cases provided for comparison in Flow table to another embodiment of the present invention.

具体实施方式 DETAILED DESCRIPTION

[0028] 下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。 [0028] The present invention will now be combined with the implementation of the drawings, were a clear example of the technical solutions of the present invention, a complete description of, obviously, the described embodiments are only part of the embodiments of the present invention, but not all embodiments Example. 基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。 Based on the embodiments of the present invention, all other embodiments by those of ordinary skill in the creative work did not make the premise obtained are within the scope of protection of the present invention.

[0029] Open vSwitch是一种软件,Open vSwitch即开放虚拟交换标准。 [0029] Open vSwitch is a software, Open vSwitch virtual switch that is open standards. 如图1所示,图1示出了本发明提供的基于Open vSwitch实现ACL功能的方法的流程图,该方法包括: Figure 1, Figure 1 illustrates a method based ACL Open vSwitch achieve functional flowchart provided by the invention, the method comprising:

[0030] S1:第一主机将设置的关于某虚拟机的访问控制列表ACL规则发送到第一主机的网络控制服务端; [0030] S1: The first panel will set the rules for a list of ACL controls access to a virtual machine is sent to the first host of the network control server;

[0031 ] S2:网络控制服务端接收到ACL规则后,将所述ACL规则转换成开放虚拟交换标准Open vSwitch所使用的流Flow规则,并将所述Flow规则发送到所述虚拟机所在第二主机的网络代理服务端; [0031] S2: Network Control Service terminated after receiving the ACL rule, the ACL rule will be converted into a stream Flow rule criteria used by the Open vSwitch virtual switch is open, and the Flow rule is transmitted to the virtual machine where the second network proxy server host;

[0032] S3:网络代理服务端将接收到的Flow规则转换成OVS命令,并在第二主机上执行所述OVS命令,以将所述Flow规则插入Open vSwitch的流Flow表中。 [0032] S3: network proxy server received Flow rule converted into OVS command, and execute the OVS command on the second host to the Open vSwitch Flow rule insertion flow Flow table.

[0033] 其中,该方法步骤S3后还包括: [0033] wherein the method further comprises after step S3:

[0034] 当虚拟机内有流量进入到Open vSwitch中,Open vSwitch会在Flow表中进行对t匕,并执行相应Flow规则所定义的动作。 [0034] When traffic enters the Open vSwitch virtual machine, Open vSwitch will be on t dagger in Flow table and perform the appropriate action Flow rules defined.

[0035] 因此若新设定的ACL规则为不允许TCP协议的8080端口的流量通过,则当虚拟机流量是TCP协议,且端口是8080时,就会执行DROP动作。 [0035] Therefore, if the ACL rule does not allow a new set of TCP protocol traffic by 8080, when the virtual machine traffic is TCP protocol, and the port is 8080, it will execute DROP action.

[0036] 如图3所不,图3不出了Open vSwitch中Flow表,共包括3个Flow表TableO、Tablel和Table2,由图可知,当有流量进入Open vSwitch中时,Open vSwitch在Flow表中进行对比的过程为: [0036] As shown three no, not the Open vSwitch Figure 3 Flow table in total including 3 Flow table TableO, Tablel and Table2, the figure shows that when there is traffic entering the Open vSwitch, Open vSwitch in Flow table In comparing the process:

[0037] (I)当有流量进入Open vSwitch时,TableO判断该流量是都为虚拟机网卡中出来的流量,若是,则加上VLAN Tag,并跳转到Tablel ; [0037] (I), when there is traffic entering the Open vSwitch, TableO determine the flow rate is at a virtual machine NIC flow out, and if so, plus VLAN Tag, and jump to Tablel;

[0038] (2) Tablel根据优先级依次判断该流量是否与不可覆的Network级别的Flows、虚拟网卡级别的Flows及可覆盖的Network级别Flows中的Flow规则匹配,若与其中某个Flow规则匹配,则执行该Flow规则所定义的动作(act1n),而若需执行的动作为允许(normal)动作,跳转到Table2 ; [0038] (2) Tablel according to priority order to determine whether the flow and can not cover the level of Network Flows, virtual NIC and Network Flows grade level Flows Flow can be covered in the rule matching, if the rule matches one of these Flow , the Flow rule defined actions (act1n) execution, and the action is allowed to execute For (normal) action jumps to Table2;

[0039] (3) Table2判断该流量是否为虚拟机网卡出来的流量,若是,则去掉VLAN Tag。 [0039] (3) Table2 determine whether the traffic flow out of the virtual machine network adapter, and if so, remove VLAN Tag.

[0040] 上述方法中的步骤S2还包括: [0040] The above method further comprises the step S2:

[0041] 网络控制服务端将接收到的ACL规则保存到分布式数据库中。 [0041] The network control server to save the received ACL rule to distributed databases.

[0042] 可选地,所述ACL规则适用于网络Network或虚拟网卡。 [0042] Alternatively, the ACL rule applies to a network or virtual LAN Network. 具体来说,它们分别针对的是某一个网络和某一个虚拟机上的虚拟网卡。 In particular, they are aimed at a particular network and virtual network adapter in a virtual machine on. 当用户给一个虚拟机的虚拟网卡设置ACL后,那么Flow只下发到虚拟机所在的主机上。 When the user to a virtual machine's virtual network adapter installed ACL, then Flow is only issued to the host virtual machine resides. 当用户给一个虚拟网络设置ACL后,那么首先会查找出所有属于这个虚拟网络的虚拟网卡,之后再找出这个虚拟网卡对应的虚拟机在那些主机上,最后把这个Flow下发到这些主机上。 When the user to set up a virtual network ACL, it will first find out all belong to this virtual network virtual network card, and then find the virtual NIC after corresponding virtual machines on those hosts, and finally put this issue to the next Flow on them .

[0043] 优选地,所述ACL规则之间的优先级从高到低依次为:不可覆盖的网络Network级另I1、虚拟网卡级别以及可覆盖的Network级别。 [0043] Preferably, the low priority level between the ACL rules as follows: Network level not covered by another network I1, virtual NIC level and Network level can be covered.

[0044] 如图2所示,图2示出了本发明提供的基于Open vSwitch实现ACL功能的系统的结构示意图,该系统包括虚拟机、Open vSwitch、网络代理服务端及网络控制服务端。 [0044] Figure 2, Figure 2 shows a schematic diagram of the present invention provides a structure based on the Open vSwitch achieve ACL functionality of the system, the system includes a virtual machine, Open vSwitch, network proxy server and network control server.

[0045] 具体来说,网络控制服务端,用于将接收到的ACL规则转换成Open vSwitch所使用的Flow规则,并将所述Flow规则发送到所述虚拟机所在主机的网络代理服务端;网络代理服务端,用于将将接收到的Flow规则转换成OVS命令,并在本地主机上执行所述OVS命令,并将所述Flow规则插入所述Open vSwitch中的Flow表中;0pen vSwitch,用于根据进入到Open vSwitch中虚拟机的流量,在其Flow表中进行对比,并执行相应Flow规则所定义的动作。 [0045] Specifically, the network control server, for the received ACL rule converted into Flow rules used Open vSwitch, and the transmission Flow rule to the virtual machine where the host network proxy server; network proxy server for the received Flow rule converted into OVS command, and execute the OVS command on the local host, and the rule is inserted into the Open vSwitch Flow of Flow table; 0pen vSwitch, according into the Open vSwitch virtual machine traffic compared in its Flow table and perform the appropriate action Flow rules defined.

[0046] 而且,所述系统还包括物理交换机,用于通过物理网卡连接不同主机。 [0046] In addition, the system also includes a physical switch for connecting different host via a physical NIC.

[0047] 其中,所述虚拟机、所述Open vSwitch和所述网络代理服务位于同一主机B,所述网络控制服务端位于另一主机A。 [0047] wherein the virtual machine, the Open vSwitch and the network proxy service in the same host B, the network control server located in another host A.

[0048] 优选地,所述网络控制服务端的功能还包括:将接收到的ACL规则保存到分布式数据库中。 [0048] Preferably, the network control server features include: Save the received ACL rule to distributed databases.

[0049] 由上述技术方案可知,本发明提供的一种实现ACL功能的方法和系统,采用OpenvSwitch及分布式的结构解决了虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的,由于整个系统分布于不同的主机,使得服务器性能明显提高。 [0049] From the above technical solutions, the method and system of the present invention provides an implementation of ACL function, using OpenvSwitch and distributed architecture to solve the ACL function virtual machine traffic, so as to achieve the purpose of controlling virtual machine data traffic, due to the the entire system distributed in different host, so the server performance has improved significantly.

[0050] 以上实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解;其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的精神和范围。 Implementation [0050] above example only describing the technical solutions of the present invention, but not intended to limit; although reference to the embodiments of the present invention has been described in detail, those skilled in the art will appreciate that; it is still possible to the preceding technical solutions described in Example modify, or for some technical features equivalent replacements; and such modifications or replacements do not make the essence of corresponding technical solutions depart from the spirit of embodiments of the present invention and scope of the technical program.

Patent Citations
Cited PatentFiling datePublication dateApplicantTitle
CN103701822A *31 Dec 20132 Apr 2014曙光云计算技术有限公司Access control method
CN103763309A *31 Dec 201330 Apr 2014曙光云计算技术有限公司Safety domain control method and system based on virtual network
US20110299537 *5 Jun 20118 Dec 2011Nakul Pratap SaraiyaMethod and system of scaling a cloud computing network
Non-Patent Citations
Reference
1 *李锐等: "基于Open vSwitch的虚拟网络访问控制研究", 《计算机应用与软件》
Referenced by
Citing PatentFiling datePublication dateApplicantTitle
WO2017063511A1 *5 Oct 201620 Apr 2017成都电科致远网络科技有限公司Sdn-based residential cell network control system
Classifications
International ClassificationH04L12/741
Legal Events
DateCodeEventDescription
26 Nov 2014C06Publication
24 Dec 2014C10Entry into substantive examination
25 Aug 2017GR01