计算机应用与软件2016,Vol.33Issue(11):93-98,6.DOI:10.3969/j.issn.1000-386x.2016.11.022
云计算网络中多租户虚拟网络隔离的分布式实现研究
RESEARCH ON DISTRIBUTED VIRTUAL NETWORK ISOLATION IN MULTI-TENANT CLOUD-COMPUTING NETWORK
摘要
Abstract
In recent years,with the rapid development of network virtualization technology,cloud service providers can provide virtual net-works abstracted from one set of physical network for tenants.In the multi-tenant network environment,tenants should be guaranteed that their virtual networks are isolated and won’t be accessed illegally from other tenants or outer networks.The definition of the virtual network borders is more obscure than physical network borders,so more fine-grained network isolation is required.Mainstream open source cloud platforms like OpenStack uses centralized network border to realize the isolation of virtual networks,and most traffic of VMs (virtual machines)is con-verged into single physical node,which may lead to SPOF (single point of failure).Thus,a distributed realization of virtual network isolation is proposed,which distributes the centralized border to each physical server,and the network traffic is distributed to physical servers so that the possibility of loss caused by SPOF will be reduced.Finally,experiments prove the availability of the distributed deployment and the lower network latency of VMcommunication in the distributed realization.关键词
多租户虚拟网络隔离/虚拟网络边界/虚拟路由器/分布式/单点故障Key words
Multi-tenant virtual network isolation/Border of virtual networks/Virtual routers/Distribution/Single point of failure分类
信息技术与安全科学引用本文复制引用
严立宇,祖立军,叶家炜,周雍恺,吴承荣..云计算网络中多租户虚拟网络隔离的分布式实现研究[J].计算机应用与软件,2016,33(11):93-98,6.基金项目
严立宇,硕士生,主研领域信息安全,网络虚拟化。 ()
