CN115225733B - Identification resolution method and device based on direct routing and dynamic quantization resolution load - Google Patents

Identification resolution method and device based on direct routing and dynamic quantization resolution load Download PDF

Info

Publication number
CN115225733B
CN115225733B CN202210162591.7A CN202210162591A CN115225733B CN 115225733 B CN115225733 B CN 115225733B CN 202210162591 A CN202210162591 A CN 202210162591A CN 115225733 B CN115225733 B CN 115225733B
Authority
CN
China
Prior art keywords
server
resolution
quantitative
identity resolution
load
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202210162591.7A
Other languages
Chinese (zh)
Other versions
CN115225733A (en
Inventor
谢人超
王志远
黄韬
刘江
刘韵洁
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing University of Posts and Telecommunications
Original Assignee
Beijing University of Posts and Telecommunications
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing University of Posts and Telecommunications filed Critical Beijing University of Posts and Telecommunications
Priority to CN202210162591.7A priority Critical patent/CN115225733B/en
Publication of CN115225733A publication Critical patent/CN115225733A/en
Application granted granted Critical
Publication of CN115225733B publication Critical patent/CN115225733B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明提出一种基于直接路由和动态量化解析负载的标识解析方法及装置,其中方法包括,获取待解析数据包并发送至LVS服务器;基于LSV服务器执行目的网络地址转换协议,根据轮询算法将待解析数据包转发到标识解析服务真正网络节点;通过标识解析服务真正网络节点对应的标识解析服务器处理待解析数据包,并记录解析过程中的参数指标;通过标识解析服务器返回待解析数据包处理结果。本发明实现了基于直接路由模型和动态量化解析负载算法的标识解析机制。

The present invention proposes an identity resolution method and device based on direct routing and dynamic quantization resolution load, wherein the method includes: obtaining a data packet to be resolved and sending it to an LVS server; executing a destination network address translation protocol based on the LSV server, forwarding the data packet to be resolved to a real network node of the identity resolution service according to a polling algorithm; processing the data packet to be resolved by an identity resolution server corresponding to the real network node of the identity resolution service, and recording parameter indicators during the resolution process; and returning the processing result of the data packet to be resolved by the identity resolution server. The present invention realizes an identity resolution mechanism based on a direct routing model and a dynamic quantization resolution load algorithm.

Description

基于直接路由和动态量化解析负载的标识解析方法及装置Identification resolution method and device based on direct routing and dynamic quantization resolution load

技术领域Technical Field

本发明属于电子信息技术领域。The invention belongs to the technical field of electronic information.

背景技术Background technique

工业网络的链路负载具备与传统网络截然不同的特性,在进行工业设备路由时所面临的大量异构设备接入、时延敏感场景限制、瞬时高并发冲击等问题,要求工业互联的标识解析网络具备极强的健壮性和灵活的负载均衡策略。The link load of industrial networks has characteristics that are completely different from those of traditional networks. When routing industrial equipment, problems such as the access of a large number of heterogeneous devices, limitations on latency-sensitive scenarios, and instantaneous high-concurrency impacts are faced. These problems require that the identity resolution network of the industrial Internet has extremely strong robustness and flexible load balancing strategies.

标识解析系统与传统网络的域名解析系统功能类似,工业互联网也需要把设备的标识转换成存有信息的服务器的IP地址,进而获取信息资源,标识解析系统在整个工业互联网架构中充当着互联互通的神经枢纽。但是从OSI网络七层模型分析,标识解析是工作于网络的第七层应用层的,因此标识解析协议的运行,需要在传输层建立可靠连接链路的基础之上实现。而基于TCP协议的三次握手机制虽然能保证传输链路的可靠,但是却对系统性能产生巨大损耗。在面对工业互联网海量并发的场景下,难以保证复杂的TCP连接要求同时充分发挥系统的性能。同时工业互联网的链路具备复杂性,单一链路的负载情况波动率较大,相邻生产网络可能存在分时情况,这就决定了,如果增大每一个生产网络的链路带宽,会造成网络空闲时间资源的大量浪费,因此工业互联网场景下的负载均衡问题十分迫切。The identity resolution system is similar to the domain name resolution system of the traditional network. The industrial Internet also needs to convert the device's identity into the IP address of the server that stores the information, and then obtain information resources. The identity resolution system acts as the nerve hub of interconnection in the entire industrial Internet architecture. However, from the analysis of the OSI network seven-layer model, identity resolution works on the seventh layer application layer of the network. Therefore, the operation of the identity resolution protocol needs to be implemented on the basis of establishing a reliable connection link at the transport layer. Although the three-way handshake mechanism based on the TCP protocol can ensure the reliability of the transmission link, it causes huge loss to the system performance. In the face of massive concurrency scenarios of the industrial Internet, it is difficult to ensure complex TCP connection requirements while giving full play to the performance of the system. At the same time, the links of the industrial Internet are complex, the load fluctuation rate of a single link is large, and adjacent production networks may have time-sharing situations. This determines that if the link bandwidth of each production network is increased, it will cause a large waste of network idle time resources. Therefore, the load balancing problem in the industrial Internet scenario is very urgent.

目前有很多标识解析相关的技术方案,工业互联网标识类似互联网中的IP地址,对网络中的设备进行精确定位,标识解析就是设备资源的检索过程。根据解析架构的不同,现有的标识解析方案可以分为基于ONS架构的和非ONS架构的方案,在基于ONS架构的标识解析系统中包括EPC等方案。而基于非ONS架构的方案中包括Handle以及应用最广泛基于分布式散列表(DHT,Distributed Hash Table)实现的方案,各解析节点以点对点的方式进行组网,解析条目根据DHT映射到不同的存储地址。这种点对点对等组网的模式保证了解析节点的分布式架构,防止单个节点作恶对全局的影响。At present, there are many technical solutions related to identity resolution. The industrial Internet identity is similar to the IP address in the Internet, which accurately locates the devices in the network. Identity resolution is the retrieval process of device resources. According to the different resolution architectures, the existing identity resolution solutions can be divided into ONS architecture-based and non-ONS architecture-based solutions. The identity resolution system based on the ONS architecture includes EPC and other solutions. The solutions based on the non-ONS architecture include Handle and the most widely used solution based on the distributed hash table (DHT). Each resolution node is networked in a point-to-point manner, and the resolution entries are mapped to different storage addresses according to the DHT. This peer-to-peer networking mode ensures the distributed architecture of the resolution nodes and prevents the impact of a single node on the global situation.

随着标识解析技术的快速发展,许多行业企业通过对接二级节点,利用标识解析技术实现了产品的供应链管理以及生命周期管理。标识的注册量以及解析量也因此达到了海量级别,如何让标识解析系统有效处理高并发的标识解析服务请求迫在眉睫。面向高并发的请求,负载均衡是主要的解决方案之一。With the rapid development of identity resolution technology, many industry enterprises have realized product supply chain management and life cycle management by connecting to secondary nodes and using identity resolution technology. The number of identity registrations and resolutions has therefore reached a massive level, and it is urgent to make the identity resolution system effectively handle high-concurrency identity resolution service requests. For high-concurrency requests, load balancing is one of the main solutions.

在一般解决方案中,通过将服务器IP前置来进行请求转发,即在真实提供标识解析服务的服务器集群之前放置一个专门分发请求的服务器,这就是负载均衡服务器。负载均衡服务器将接收到的请求根据配置的算法来进行规定方式的转发,比如随机转发算法、快速轮询算法等,以实现标识解析请求均衡抵达标识解析服务器的效果。In general solutions, requests are forwarded by prepending the server IP address, that is, a server dedicated to distributing requests is placed before the server cluster that actually provides the identity resolution service. This is the load balancing server. The load balancing server forwards the received requests in a prescribed manner according to the configured algorithm, such as the random forwarding algorithm, the fast polling algorithm, etc., to achieve the effect of balancing the identity resolution requests to the identity resolution server.

传统方案中存在以下问题:The traditional solution has the following problems:

1)标识随机存储不利用聚合查询1) Random storage of identifiers does not utilize aggregate queries

无论是基于ONS的标识解析方案还是非ONS的标识解析方案,都未考虑针对行业企业对标识进行聚类,方便行业内的快速查询。Whether it is an ONS-based identity resolution solution or a non-ONS identity resolution solution, neither considers clustering the identities for industry enterprises to facilitate quick queries within the industry.

2)标识数据难以监管2) Identification data is difficult to regulate

随着国家对于数据安全的重视以及相关法律法规的推进,标识解析数据的监管方案也需要变革。As the country pays more attention to data security and the advancement of relevant laws and regulations, the regulatory scheme for identity resolution data also needs to change.

3)负载均衡服务器单点问题3) Single point problem of load balancing server

该过程看似解决了服务器负载不均衡问题,但是却将多个服务器共同承担的负载汇聚到了负载均衡服务器上,之前单一服务器无法处理的并发请求,负载均衡服务器如何承接住成为问题的关键。不难发现问题的症结就在于标识解析服务请求延迟,标识解析服务在网络模型中位于第七层应用层,在通信层次当中本身就是效率最低的一层,而应用层的服务需要调用传输控制层进行传输,此过程比较繁琐。This process seems to solve the problem of unbalanced server load, but it aggregates the load shared by multiple servers onto the load balancing server. The key to the problem is how the load balancing server can handle the concurrent requests that a single server could not handle before. It is not difficult to find that the crux of the problem lies in the delay of the identity resolution service request. The identity resolution service is located in the seventh application layer in the network model, which is the least efficient layer in the communication layer. The service of the application layer needs to call the transmission control layer for transmission, which is a cumbersome process.

4)负载均衡算法性能问题4) Load balancing algorithm performance issues

在工业互联网场景下,不同设备的性能是相差巨大的,普通的基于最小连接数、轮询的负载均衡算法,难以做到各标识解析服务器真正的物尽其用。In the industrial Internet scenario, the performance of different devices varies greatly. Ordinary load balancing algorithms based on minimum number of connections and polling make it difficult to fully utilize the identity resolution servers.

发明内容Summary of the invention

本发明旨在至少在一定程度上解决相关技术中的技术问题之一。The present invention aims to solve one of the technical problems in the related art at least to a certain extent.

为此,本发明的第一个目的在于提出一种基于直接路由和动态量化解析负载的标识解析方法,用于解决工业互联网场景下的负载均衡问题。To this end, the first purpose of the present invention is to propose an identity resolution method based on direct routing and dynamic quantization resolution load, which is used to solve the load balancing problem in the industrial Internet scenario.

本发明的第二个目的在于提出一种基于直接路由和动态量化解析负载的标识解析装置。The second objective of the present invention is to provide an identification resolution device based on direct routing and dynamic quantization resolution load.

本发明的第三个目的在于提出一种计算机设备。A third object of the present invention is to provide a computer device.

本发明的第四个目的在于提出一种计算机可读存储介质。A fourth object of the present invention is to provide a computer-readable storage medium.

为达上述目的,本发明第一方面实施例提出了一种基于直接路由和动态量化解析负载的标识解析方法,包括:获取待解析数据包并发送至LVS服务器;基于LSV服务器执行目的网络地址转换协议,根据轮询算法将待解析数据包转发到标识解析服务真正网络节点;通过标识解析服务真正网络节点对应的标识解析服务器处理待解析数据包,并记录解析过程中的参数指标;通过标识解析服务器返回待解析数据包处理结果。To achieve the above-mentioned purpose, the first aspect of the embodiment of the present invention proposes an identity resolution method based on direct routing and dynamic quantization of resolution load, including: obtaining a data packet to be resolved and sending it to an LVS server; executing a destination network address translation protocol based on the LSV server, and forwarding the data packet to be resolved to the real network node of the identity resolution service according to a polling algorithm; processing the data packet to be resolved through the identity resolution server corresponding to the real network node of the identity resolution service, and recording parameter indicators during the resolution process; and returning the processing result of the data packet to be resolved through the identity resolution server.

本发明实施例提出的基于直接路由和动态量化解析负载的标识解析方法,基于工业互联网标识解析系统的演进,设计了一种基于Chord路由协议的分层标识解析架构,为国家监管标识解析数据预留全局域,可以实现数据的安全可控。并针对工业互联网的特点设计了基于直接路由模型的动态量化解析负载均衡模型,最终实现了承载工业互联网海量并发的标识解析网络架构。The identification resolution method based on direct routing and dynamic quantitative resolution load proposed in the embodiment of the present invention is based on the evolution of the industrial Internet identification resolution system, and designs a hierarchical identification resolution architecture based on the Chord routing protocol, which reserves a global domain for national regulatory identification resolution data, and can achieve data security and controllability. In addition, a dynamic quantitative resolution load balancing model based on the direct routing model is designed according to the characteristics of the industrial Internet, and finally realizes an identification resolution network architecture that carries the massive concurrency of the industrial Internet.

另外,根据本发明上述实施例的基于直接路由和动态量化解析负载的标识解析方法还可以具有以下附加的技术特征:In addition, the identity resolution method based on direct routing and dynamic quantization resolution load according to the above embodiment of the present invention may also have the following additional technical features:

进一步地,在本发明的一个实施例中,还包括,当标识解析次数到达设定阈值时,将轮询算法切换为动态量化解析负载算法,其中动态量化解析负载算法包括:Furthermore, in one embodiment of the present invention, when the number of identification resolutions reaches a set threshold, the polling algorithm is switched to a dynamic quantization resolution load algorithm, wherein the dynamic quantization resolution load algorithm includes:

构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators:

S=Squantitative+SqualitativeS=S quantitative +S qualitative ,

其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index;

根据解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将LSV服务器的轮询算法切换为动态量化解析负载算法。According to the parameter index in the parsing process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LSV server is switched to a dynamic quantitative parsing load algorithm.

进一步地,在本发明的一个实施例中,还包括:Furthermore, in one embodiment of the present invention, it also includes:

周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value;

根据负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes in load values, the weight value of each server is calculated to evaluate the real-time processing capability of the server, and the request volume is allocated according to the real-time processing capability to balance the load among the servers in each cycle.

进一步地,在本发明的一个实施例中,还包括:Furthermore, in one embodiment of the present invention, it also includes:

在标识解析服务真正网络节点之上设立全局监管层,对标识解析数据进行追溯和安全监控。A global supervision layer is established above the actual network nodes of the identity resolution service to trace and monitor the security of the identity resolution data.

进一步地,在本发明的一个实施例中,在LVS服务器接收到待解析数据包之后,还包括:Further, in one embodiment of the present invention, after the LVS server receives the data packet to be parsed, the method further includes:

根据设定查看数据包的目标端口号是否为指定的标识解析进程的端口号,如果是,则根据轮询算法将所述待解析数据包转发到标识解析服务真正网络节点;反之,则按照设定的异常处理方案处理。Check whether the target port number of the data packet is the port number of the specified identity resolution process according to the setting. If so, forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; otherwise, handle it according to the set exception handling plan.

为达上述目的,本发明第二方面实施例提出了一种基于直接路由和动态量化解析负载的标识解析装置,其特征在于,包括以下模块:获取模块,用于获取待解析数据包并发送至LVS服务器;传输模块,用于基于LSV服务器执行目的网络地址转换协议,根据轮询算法将待解析数据包转发到标识解析服务真正网络节点;解析模块,通过标识解析服务真正网络节点对应的标识解析服务器处理待解析数据包,并记录解析过程中的参数指标;返回模块,通过标识解析服务器返回待解析数据包处理结果。To achieve the above-mentioned purpose, the second aspect of the embodiment of the present invention proposes an identity resolution device based on direct routing and dynamic quantization of resolution load, characterized in that it includes the following modules: an acquisition module, used to obtain the data packet to be resolved and send it to the LVS server; a transmission module, used to execute the destination network address translation protocol based on the LSV server, and forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; a resolution module, which processes the data packet to be resolved through the identity resolution server corresponding to the real network node of the identity resolution service, and records the parameter indicators in the resolution process; a return module, which returns the processing result of the data packet to be resolved through the identity resolution server.

进一步地,在本发明的一个实施例中,还包括动态更新模块,用于:Furthermore, in one embodiment of the present invention, a dynamic update module is also included, which is used to:

构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators:

S=Squantitative+SqualitativeS=S quantitative +S qualitative ,

其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index;

根据解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将LSV服务器的轮询算法切换为动态量化解析负载算法。According to the parameter index in the parsing process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LSV server is switched to a dynamic quantitative parsing load algorithm.

进一步地,在本发明的一个实施例中,动态更新模块,还用于:Furthermore, in one embodiment of the present invention, the dynamic update module is also used to:

周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value;

根据负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes in load values, the weight value of each server is calculated to evaluate the real-time processing capability of the server, and the request volume is allocated according to the real-time processing capability to balance the load among the servers in each cycle.

为达上述目的,本发明第三方面实施例提出了一种计算机设备,其特征在于,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述处理器执行所述计算机程序时,实现如上所述的基于直接路由和动态量化解析负载的标识解析方法。To achieve the above-mentioned purpose, the third aspect of the present invention proposes a computer device, characterized in that it includes a memory, a processor, and a computer program stored in the memory and executable on the processor. When the processor executes the computer program, the identification resolution method based on direct routing and dynamic quantization resolution load as described above is implemented.

为达上述目的,本发明第四方面实施例提出了一种计算机可读存储介质,其上存储有计算机程序,其特征在于,所述计算机程序被处理器执行时实现如上所述的基于直接路由和动态量化解析负载的标识解析方法。To achieve the above-mentioned purpose, the fourth aspect of the present invention proposes a computer-readable storage medium on which a computer program is stored, characterized in that when the computer program is executed by a processor, the identification resolution method based on direct routing and dynamic quantization resolution load as described above is implemented.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

本发明上述的和/或附加的方面和优点从下面结合附图对实施例的描述中将变得明显和容易理解,其中:The above and/or additional aspects and advantages of the present invention will become apparent and easily understood from the following description of the embodiments in conjunction with the accompanying drawings, in which:

图1为本发明实施例所提供的一种基于直接路由和动态量化解析负载的标识解析方法的流程示意图。FIG1 is a schematic flow chart of an identity resolution method based on direct routing and dynamic quantization resolution load provided by an embodiment of the present invention.

图2为本发明实施例所提供的一种基于直接路由和动态量化解析负载的标识解析装置的流程示意图。FIG. 2 is a schematic diagram of a flow chart of an identity resolution device based on direct routing and dynamic quantization resolution load provided by an embodiment of the present invention.

图3为本发明实施例所提供的标识解析网络架构图。FIG. 3 is a diagram of an identity resolution network architecture provided by an embodiment of the present invention.

图4为本发明实施例所提供的基于DR模型实现负载均衡的标识解析网络示意图。FIG4 is a schematic diagram of an identity resolution network for implementing load balancing based on a DR model provided in an embodiment of the present invention.

图5为本发明实施例所提供的基于直接路由模型和动态量化解析负载算法的标识解析流程图。FIG5 is a flowchart of identity resolution based on a direct routing model and a dynamic quantization resolution load algorithm provided by an embodiment of the present invention.

具体实施方式Detailed ways

下面详细描述本发明的实施例,所述实施例的示例在附图中示出,其中自始至终相同或类似的标号表示相同或类似的元件或具有相同或类似功能的元件。下面通过参考附图描述的实施例是示例性的,旨在用于解释本发明,而不能理解为对本发明的限制。Embodiments of the present invention are described in detail below, examples of which are shown in the accompanying drawings, wherein the same or similar reference numerals throughout represent the same or similar elements or elements having the same or similar functions. The embodiments described below with reference to the accompanying drawings are exemplary and are intended to be used to explain the present invention, and should not be construed as limiting the present invention.

下面参考附图描述本发明实施例的基于直接路由和动态量化解析负载的标识解析方法和装置。The following describes an identity resolution method and device based on direct routing and dynamic quantization resolution load according to an embodiment of the present invention with reference to the accompanying drawings.

图1为本发明实施例所提供的一种基于直接路由和动态量化解析负载的标识解析方法的流程示意图。FIG1 is a schematic flow chart of an identity resolution method based on direct routing and dynamic quantization resolution load provided by an embodiment of the present invention.

如图1所示,该基于直接路由和动态量化解析负载的标识解析方法包括以下步骤:As shown in FIG1 , the identity resolution method based on direct routing and dynamic quantization resolution load includes the following steps:

S1:获取待解析数据包并发送至LVS服务器;S1: Get the data packet to be parsed and send it to the LVS server;

S2:基于LSV服务器执行目的网络地址转换协议,根据轮询算法将待解析数据包转发到标识解析服务真正网络节点;S2: Execute the destination network address translation protocol based on the LSV server, and forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm;

S3:通过标识解析服务真正网络节点对应的标识解析服务器处理待解析数据包,并记录解析过程中的参数指标;S3: The identity resolution server corresponding to the real network node of the identity resolution service processes the data packet to be resolved and records the parameter indicators in the resolution process;

S4:通过标识解析服务器返回待解析数据包处理结果。S4: The processing result of the data packet to be resolved is returned to the identity resolution server.

本发明将基于工业互联网标识解析系统的演进,设计了一种基于Chord路由协议的分层标识解析架构,为国家监管标识解析数据预留全局域,可以实现数据的安全可控。并针对工业互联网的特点设计了基于直接路由模型的动态量化解析负载均衡模型,最终实现了承载工业互联网海量并发的标识解析网络架构。Based on the evolution of the industrial Internet identity resolution system, this paper designs a hierarchical identity resolution architecture based on the Chord routing protocol, reserves a global domain for national regulatory identity resolution data, and can achieve data security and controllability. In addition, a dynamic quantitative resolution load balancing model based on a direct routing model is designed based on the characteristics of the industrial Internet, and finally realizes an identity resolution network architecture that carries massive concurrency of the industrial Internet.

进一步地,在本发明的一个实施例中,还包括:Furthermore, in one embodiment of the present invention, it also includes:

在标识解析服务真正网络节点之上设立全局监管层,对标识解析数据进行追溯和安全监控。A global supervision layer is established above the actual network nodes of the identity resolution service to trace and monitor the security of the identity resolution data.

本发明实现的工业互联网标识解析架构,如图1所示。该架构基于点对点协议进行局部域组网,对网内每个节点的IP和开启标识解析服务的端口进行hash运算得到节点的标号,根据Chord路由协议,组建DHT网络,每一个行业按照此逻辑进行组网。并选出一个节点作为边界节点,此边界节点连接到全局域网络,与全局域的某一节点连接,同时全局域在解析发生时用日志进行记录,以备国家数据监管的需求,具体标识解析处理流程如图3所示。The industrial Internet identity resolution architecture implemented by the present invention is shown in Figure 1. The architecture is based on the point-to-point protocol for local domain networking, and the IP of each node in the network and the port that opens the identity resolution service are hashed to obtain the node number. According to the Chord routing protocol, a DHT network is established, and each industry is networked according to this logic. A node is selected as a boundary node, and this boundary node is connected to the global domain network and connected to a node in the global domain. At the same time, the global domain uses logs to record when the resolution occurs, in order to meet the needs of national data supervision. The specific identity resolution process is shown in Figure 3.

进一步地,在本发明的一个实施例中,在LVS服务器接收到待解析数据包之后,还包括:Further, in one embodiment of the present invention, after the LVS server receives the data packet to be parsed, the method further includes:

根据设定查看数据包的目标端口号是否为指定的标识解析进程的端口号,如果是,则根据轮询算法将所述待解析数据包转发到标识解析服务真正网络节点;反之,则按照设定的异常处理方案处理。Check whether the target port number of the data packet is the port number of the specified identity resolution process according to the setting. If so, forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; otherwise, handle it according to the set exception handling plan.

LVS可以实现接近于网线传输的通信性能,用户连接LVS服务器不需要进行三次握手连接。LVS服务器接收到客户端发送的数据包之后,可以根据设定查看数据包的目标端口号是不是指定的标识解析进程的端口号,如果是,则运行内置的负载均衡算法,按照规则转发给真正处理标识解析服务的集群;反之,则直接将数据包转发出去。客户端与LVS之间的通信始终控制在内核级别,且不进行任何数据处理,真实的标识解析服务由LVS连接的标识解析集群中的某一台服务器进行处理,其中就包括了TCP三次握手的数据包。这与Nginx的基于反向代理的负载均衡有本质不同,Nginx服务器需要与客户端建立TCP连接,官方给出的最大并发量在5万QPS级别,但是LVS的最大负载可以随着服务器性能无限扩展。因此本文对标识解析网络中的节点可以进行如下集群化,然后用负载均衡服务器进行负载,网络结构图如图4所示,用户所有的请求都直接发给负载均衡服务器的公网IP地址,再由负载均衡服务器转发给标识解析服务器进行处理。LVS can achieve communication performance close to that of network cable transmission. Users do not need to perform a three-way handshake connection to connect to the LVS server. After the LVS server receives the data packet sent by the client, it can check whether the target port number of the data packet is the port number of the specified identity resolution process according to the settings. If it is, it runs the built-in load balancing algorithm and forwards it to the cluster that actually handles the identity resolution service according to the rules; otherwise, it directly forwards the data packet. The communication between the client and LVS is always controlled at the kernel level, and no data processing is performed. The real identity resolution service is processed by a server in the identity resolution cluster connected to LVS, including the TCP three-way handshake data packet. This is essentially different from Nginx's reverse proxy-based load balancing. The Nginx server needs to establish a TCP connection with the client. The official maximum concurrency is at the level of 50,000 QPS, but the maximum load of LVS can be infinitely expanded with the server performance. Therefore, this article can cluster the nodes in the identity resolution network as follows, and then use the load balancing server to load. The network structure diagram is shown in Figure 4. All user requests are directly sent to the public IP address of the load balancing server, and then forwarded by the load balancing server to the identity resolution server for processing.

客户端请求被负载给标识解析服务器集群当中的某一台服务器,但是这就存在一个问题。因为客户端发过来的标识解析请求数据包的目的IP地址是负载均衡服务器的VIP,而不是被负载到的服务器的RIP,主机不会处理目标地址不是自己的数据包。这就需要NAT协议进行网络地址转换,大多数情况下使用的IP地址是只能在一个局域网使用的私网地址,这些IP地址其实不是真正的IP地址,只有路由器上的IP地址才是真正的公网地址。互联网上是看不到这些私有地址,路由器上有两个地址一个是公网地址,一个是私有地址。路由器通过公网地址连接到运营商ISP,最终连接到要访问的互联网上的主机。由此也说明要访问互联网上的主机,必须要有公网地址。The client request is loaded to a server in the identity resolution server cluster, but there is a problem. Because the destination IP address of the identity resolution request data packet sent by the client is the VIP of the load balancing server, rather than the RIP of the server to which it is loaded, the host will not process data packets whose destination address is not its own. This requires the NAT protocol to perform network address translation. In most cases, the IP addresses used are private network addresses that can only be used in a local area network. These IP addresses are not real IP addresses. Only the IP addresses on the router are real public network addresses. These private addresses are not visible on the Internet. There are two addresses on the router, one is a public network address and the other is a private address. The router connects to the operator ISP through the public network address, and finally connects to the host on the Internet to be accessed. This also shows that to access a host on the Internet, a public network address is required.

利用LVS转发负载到标识解析服务器,标识解析服务器处理完标识解析请求之后便可以自行返回。对客户端来说,负载均衡服务器是透明的,客户端不知道自己请求的IP地址上其实除了转发功能之外一无所有,真正的服务都是在其后面的集群中实现的。同时该模型中也不需要利用NAT协议进行IP地址的转换,极大的减轻了负载均衡服务器的压力。LVS is used to forward the load to the identity resolution server. After the identity resolution server processes the identity resolution request, it can return on its own. For the client, the load balancing server is transparent. The client does not know that the IP address it requested actually has nothing except the forwarding function. The real service is implemented in the cluster behind it. At the same time, this model does not need to use the NAT protocol to convert IP addresses, which greatly reduces the pressure on the load balancing server.

进一步地,在本发明的一个实施例中,还包括,当标识解析次数到达设定阈值时,将轮询算法切换为动态量化解析负载算法,其中动态量化解析负载算法包括:Furthermore, in one embodiment of the present invention, when the number of identification resolutions reaches a set threshold, the polling algorithm is switched to a dynamic quantization resolution load algorithm, wherein the dynamic quantization resolution load algorithm includes:

构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators:

S=Squantitative+SqualitativeS=S quantitative +S qualitative ,

其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index;

根据解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将LSV服务器的轮询算法切换为动态量化解析负载算法。According to the parameter index in the parsing process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LSV server is switched to a dynamic quantitative parsing load algorithm.

进一步地,在本发明的一个实施例中,还包括:Furthermore, in one embodiment of the present invention, it also includes:

周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value;

根据负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes in load values, the weight value of each server is calculated to evaluate the real-time processing capability of the server, and the request volume is allocated according to the real-time processing capability to balance the load among the servers in each cycle.

根据SPEC、HPCC等针对处理器性能、服务器系统性能、高性能计算机的性能给出了量化的评价,这些测评方案主要是针对服务器的基本性能参数或单独针对某一性能的测试,但这些指标与工业互联网标识解析服务器性能的评价指标相差甚远,因此本发明首先设了一个针对标识解析服务器性能评价的模型。首先需要一些反应服务器各种资源和性能的测试参数用以判断服务器性能的优劣,参考服务器性能评价模型,主要引入两类参数:定量指标和定性指标。其中定量指标包括:标识解析请求的并发量,解析请求响应带宽,标识解析时延以及延迟抖动,丢包率,标识解析服务器CPU的有效利用率和服务器的I/O读写操作平均等待时间;定性指标包括:可靠性,可扩展性,可用性。对于第一类指标,因为可以通过服务运行时获取到准确数值,只需要不同行业对于标识解析服务的要求确定加权系数做线性加权。而对于第二类指标,则可以模糊化处理,据此可以得出加权定量指标和定性指标的服务器评价模型:According to SPEC, HPCC and other methods, quantitative evaluations are given for processor performance, server system performance, and high-performance computer performance. These evaluation schemes are mainly aimed at the basic performance parameters of the server or the test of a certain performance alone, but these indicators are far from the evaluation indicators of the performance of the industrial Internet identity resolution server. Therefore, the present invention first sets up a model for the performance evaluation of the identity resolution server. First, some test parameters that reflect the various resources and performance of the server are needed to judge the pros and cons of the server performance. Referring to the server performance evaluation model, two types of parameters are mainly introduced: quantitative indicators and qualitative indicators. Among them, the quantitative indicators include: the concurrency of identity resolution requests, the resolution request response bandwidth, the identity resolution delay and delay jitter, the packet loss rate, the effective utilization rate of the identity resolution server CPU and the average waiting time of the server's I/O read and write operations; the qualitative indicators include: reliability, scalability, and availability. For the first type of indicators, because the accurate value can be obtained when the service is running, it is only necessary to determine the weighting coefficient for linear weighting based on the requirements of different industries for identity resolution services. For the second type of indicators, fuzzy processing can be performed, and the server evaluation model of weighted quantitative indicators and qualitative indicators can be derived based on this:

S=Squantitative+Squalitative, (式1)S=S quantitative +S qualitative , (Formula 1)

其中,定量指标中存在正负指标之分,比如时延和丢包率就是负指标,因此在处理时可以将负指标处理为qi=1/qi,正向指标直接乘以权重系数,可以得到进一步表达式:Among them, there are positive and negative indicators in quantitative indicators. For example, delay and packet loss rate are negative indicators. Therefore, when processing, negative indicators can be processed as q i = 1/q i , and positive indicators can be directly multiplied by the weight coefficient to obtain a further expression:

Squantitative=∑wiqi(i in qps,bandwidth,delay,tremble,loss,usage,wait), (式2)S quantitative = ∑wiqi (i in qps , bandwidth, delay, vibration, loss, usage, wait), (Formula 2)

而对于定性指标,通过为每一项设计评价集合V=(v1,v2,v3),当该服务器的相应指标为v1时,将其隶属度模糊化为:For qualitative indicators, by designing an evaluation set V = (v 1 ,v 2 ,v 3 ) for each item, when the corresponding indicator of the server is v 1 , its membership degree is fuzzified as:

同时根据相对比较法,三项指标权重系数分别设置为:At the same time, according to the relative comparison method, the weight coefficients of the three indicators are set as follows:

w2=[0.5,0.3,0.2], (式4)w 2 = [0.5, 0.3, 0.2], (Formula 4)

同时假设该标识解析服务器的客观评定结果为P,那么定性指标的量化结果为:At the same time, assuming that the objective evaluation result of the identity resolution server is P, the quantitative result of the qualitative indicator is:

Squalitative=w2RP。 (式5)S qualitatively = w 2 RP. (Formula 5)

根据上述动态量化指标实现的DQRB(Dynamic Quantitative ResolutionBalance)算法,根据服务器的关键性能指标量化服务器的性能,而不是主观设置单一权重值;以请求对服务器各项性能指标造成的压力大小来量化负载,不再以连接数作为负载衡量的标准。DQRB算法的具体流程如下:The DQRB (Dynamic Quantitative Resolution Balance) algorithm implemented based on the above dynamic quantitative indicators quantifies the performance of the server based on the key performance indicators of the server, rather than subjectively setting a single weight value; the load is quantified based on the pressure caused by the request on each performance indicator of the server, and the number of connections is no longer used as the standard for load measurement. The specific process of the DQRB algorithm is as follows:

1)首先需要根据(式2)量化公式计算出各个参数,因此需要先采用轮询算法接收标识解析请求并响应,在运行满足计算标准周期之后,求得各个服务器的量化指标S。1) First, it is necessary to calculate each parameter according to the quantitative formula (Formula 2). Therefore, it is necessary to first use a polling algorithm to receive and respond to the identity resolution request. After running the calculation standard cycle, the quantitative index S of each server is obtained.

2)根据收集上来的指标S,初始化各服务器的权重值,将LVS的负载均衡切换到DQRB算法。2) Based on the collected indicator S, initialize the weight value of each server and switch the LVS load balancing to the DQRB algorithm.

3)周期性的获取各台服务器的负载参数并建立合理的数学模型量化个服务器的负载值;根据量化负载的实时变化,计算每台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,做到在每个周期内均衡各台服务器间的负载。3) Periodically obtain the load parameters of each server and establish a reasonable mathematical model to quantify the load value of each server; according to the real-time changes of the quantified load, calculate the weight value of each server to evaluate the real-time processing capability of the server, allocate the request volume according to the real-time processing capability, and balance the load between the servers in each cycle.

整个标识解析系统负载均衡算法运行流程如图5所示。The operation process of the load balancing algorithm of the entire identity resolution system is shown in Figure 5.

本发明实施例提出的基于直接路由和动态量化解析负载的标识解析方法,第一方面,借助Chord路由协议实现的标识解析网络架构,由于现在应用的标识解析架构没有考虑对行业企业对标识进行聚类和标识解析数据的监管方案,本发明通过设计局部域和全局域的分层方案,既方便行业内的查询,又可以应对国家网络安全部门对标识解析数据监管的需要;第二方面,设计了基于Linux虚拟服务器技术实现的标识解析节点负载均衡方案,标识解析服务在网络模型中位于第七层应用层,在通信层次当中本身就是效率最低的一层,而应用层的服务需要调用传输控制层进行传输,但是LVS技术可以在网络层实现负载均衡,增强网络整体的并发能力;第三方面,首先设计了一个针对标识解析服务器性能评价的模型,主要引入两类参数:定量指标和定性指标;对于第一类指标,因为可以通过服务运行时获取到准确数值,只需要不同行业对于标识解析服务的要求确定加权系数做线性加权,而对于第二类指标,则可以模糊化处理,据此可以得出加权定量指标和定性指标的服务器评价模型;第四方面,根据动态量化指标实现的DQRB(Dynamic Quantitative ResolutionBalance)算法,根据服务器的关键性能指标量化服务器的性能,而不是主观设置单一权重值,以请求对服务器各项性能指标造成的压力大小来量化负载,不再以连接数作为负载衡量的标准,最终实现了基于直接路由模型和动态量化解析负载算法的标识解析机制。The embodiment of the present invention proposes an identity resolution method based on direct routing and dynamic quantization of resolution load. On the one hand, the identity resolution network architecture is realized by means of the Chord routing protocol. Since the identity resolution architecture currently used does not consider the clustering of identities for industry enterprises and the supervision scheme of identity resolution data, the present invention designs a layered scheme of local domains and global domains, which is convenient for inquiries within the industry and can meet the needs of national network security departments for the supervision of identity resolution data; on the other hand, an identity resolution node load balancing scheme based on Linux virtual server technology is designed. The identity resolution service is located at the seventh application layer in the network model, which is the least efficient in the communication layer. On the first layer, the services at the application layer need to call the transmission control layer for transmission, but the LVS technology can achieve load balancing at the network layer and enhance the overall concurrency capability of the network; on the third aspect, a model for the performance evaluation of the identity resolution server is first designed, which mainly introduces two types of parameters: quantitative indicators and qualitative indicators; for the first type of indicators, because the accurate value can be obtained through the service runtime, it is only necessary to determine the weighting coefficient for linear weighting according to the requirements of the identity resolution service in different industries, while for the second type of indicators, fuzzy processing can be used, based on which a server evaluation model of weighted quantitative indicators and qualitative indicators can be derived; on the fourth aspect, the DQRB (Dynamic Quantitative Resolution Balance) algorithm implemented according to the dynamic quantitative indicators quantifies the performance of the server according to the key performance indicators of the server, rather than subjectively setting a single weight value, and quantifies the load by the pressure caused by the request on the various performance indicators of the server, and no longer uses the number of connections as the standard for load measurement, and finally realizes the identity resolution mechanism based on the direct routing model and the dynamic quantitative resolution load algorithm.

为了实现上述实施例,本发明还提出一种基于直接路由和动态量化解析负载的标识解析装置。In order to implement the above embodiment, the present invention also proposes an identity resolution device based on direct routing and dynamic quantization resolution load.

图2为本发明实施例提供的一种基于直接路由和动态量化解析负载的标识解析装置的结构示意图。FIG2 is a schematic diagram of the structure of an identity resolution device based on direct routing and dynamic quantization resolution load provided by an embodiment of the present invention.

如图2所示,该基于直接路由和动态量化解析负载的标识解析装置包括:获取模块10,传输模块20,解析模块30,返回模块40,其中,获取模块,用于获取待解析数据包并发送至LVS服务器;传输模块,用于基于LSV服务器执行目的网络地址转换协议,根据轮询算法将待解析数据包转发到标识解析服务真正网络节点;解析模块,通过标识解析服务真正网络节点对应的标识解析服务器处理待解析数据包,并记录解析过程中的参数指标;返回模块,通过标识解析服务器返回待解析数据包处理结果。As shown in Figure 2, the identity resolution device based on direct routing and dynamic quantification resolution load includes: an acquisition module 10, a transmission module 20, a resolution module 30, and a return module 40, wherein the acquisition module is used to obtain the data packet to be resolved and send it to the LVS server; the transmission module is used to execute the destination network address translation protocol based on the LSV server, and forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; the resolution module processes the data packet to be resolved through the identity resolution server corresponding to the real network node of the identity resolution service, and records the parameter indicators in the resolution process; the return module returns the processing result of the data packet to be resolved through the identity resolution server.

进一步地,在本发明的一个实施例中,还包括动态更新模块,用于:Furthermore, in one embodiment of the present invention, a dynamic update module is also included, which is used to:

构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators:

S=Squantitative+SqualitativeS=S quantitative +S qualitative ,

其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index;

根据解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将LSV服务器的轮询算法切换为动态量化解析负载算法。According to the parameter index in the parsing process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LSV server is switched to a dynamic quantitative parsing load algorithm.

进一步地,在本发明的一个实施例中,动态更新模块,还用于:Furthermore, in one embodiment of the present invention, the dynamic update module is also used to:

周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value;

根据负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes in load values, the weight value of each server is calculated to evaluate the real-time processing capability of the server, and the request volume is allocated according to the real-time processing capability to balance the load among the servers in each cycle.

为达上述目的,本发明第三方面实施例提出了一种计算机设备,其特征在于,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述处理器执行所述计算机程序时,实现如上所述的基于直接路由和动态量化解析负载的标识解析方法。To achieve the above-mentioned purpose, the third aspect of the present invention proposes a computer device, characterized in that it includes a memory, a processor, and a computer program stored in the memory and executable on the processor. When the processor executes the computer program, the identification resolution method based on direct routing and dynamic quantization resolution load as described above is implemented.

为达上述目的,本发明第四方面实施例提出了一种计算机可读存储介质,其上存储有计算机程序,其特征在于,所述计算机程序被处理器执行时实现如上所述的基于直接路由和动态量化解析负载的标识解析方法。To achieve the above-mentioned purpose, the fourth aspect of the present invention proposes a computer-readable storage medium on which a computer program is stored, characterized in that when the computer program is executed by a processor, the identification resolution method based on direct routing and dynamic quantization resolution load as described above is implemented.

在本说明书的描述中,参考术语“一个实施例”、“一些实施例”、“示例”、“具体示例”、或“一些示例”等的描述意指结合该实施例或示例描述的具体特征、结构、材料或者特点包含于本发明的至少一个实施例或示例中。在本说明书中,对上述术语的示意性表述不必须针对的是相同的实施例或示例。而且,描述的具体特征、结构、材料或者特点可以在任一个或多个实施例或示例中以合适的方式结合。此外,在不相互矛盾的情况下,本领域的技术人员可以将本说明书中描述的不同实施例或示例以及不同实施例或示例的特征进行结合和组合。In the description of this specification, the description with reference to the terms "one embodiment", "some embodiments", "example", "specific example", or "some examples" etc. means that the specific features, structures, materials or characteristics described in conjunction with the embodiment or example are included in at least one embodiment or example of the present invention. In this specification, the schematic representations of the above terms do not necessarily refer to the same embodiment or example. Moreover, the specific features, structures, materials or characteristics described may be combined in any one or more embodiments or examples in a suitable manner. In addition, those skilled in the art may combine and combine the different embodiments or examples described in this specification and the features of the different embodiments or examples, without contradiction.

此外,术语“第一”、“第二”仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括至少一个该特征。在本发明的描述中,“多个”的含义是至少两个,例如两个,三个等,除非另有明确具体的限定。In addition, the terms "first" and "second" are used for descriptive purposes only and should not be understood as indicating or implying relative importance or implicitly indicating the number of the indicated technical features. Therefore, the features defined as "first" and "second" may explicitly or implicitly include at least one of the features. In the description of the present invention, the meaning of "plurality" is at least two, such as two, three, etc., unless otherwise clearly and specifically defined.

尽管上面已经示出和描述了本发明的实施例,可以理解的是,上述实施例是示例性的,不能理解为对本发明的限制,本领域的普通技术人员在本发明的范围内可以对上述实施例进行变化、修改、替换和变型。Although the embodiments of the present invention have been shown and described above, it is to be understood that the above embodiments are exemplary and are not to be construed as limitations of the present invention. A person skilled in the art may change, modify, replace and modify the above embodiments within the scope of the present invention.

Claims (6)

1.一种基于直接路由和动态量化解析负载的标识解析方法,其特征在于,包括以下步骤:1. A method for identity resolution based on direct routing and dynamic quantization of resolution load, characterized by comprising the following steps: 获取待解析数据包并发送至LVS服务器;Get the data packet to be parsed and send it to the LVS server; 基于所述LVS服务器执行目的网络地址转换协议,根据轮询算法将所述待解析数据包转发到标识解析服务真正网络节点;Based on the LVS server executing the destination network address translation protocol, forwarding the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; 通过所述标识解析服务真正网络节点对应的标识解析服务器处理所述待解析数据包,并记录解析过程中的参数指标;Processing the data packet to be resolved by the identity resolution server corresponding to the real network node of the identity resolution service, and recording parameter indicators in the resolution process; 通过所述标识解析服务器返回所述待解析数据包处理结果;Return the processing result of the data packet to be resolved through the identity resolution server; 当标识解析次数到达设定阈值时,将所述轮询算法切换为动态量化解析负载算法,其中所述动态量化解析负载算法包括:When the number of identification resolution times reaches a set threshold, the polling algorithm is switched to a dynamic quantization resolution load algorithm, wherein the dynamic quantization resolution load algorithm includes: 构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators: S=Squantitative+SqualitativeS=S quantitative +S qualitative , 其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;其中,将负指标处理为qi=1/qi,正向指标直接乘以权重系数,可以得到进一步表达式:Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index; among them, the negative index is processed as q i =1/q i , and the positive index is directly multiplied by the weight coefficient, and the further expression can be obtained: Squantitative=Σwiqi(i in qps,bandwidth,delay,tremble,loss,usage,wait),S quantitative = Σwiqi (i in qps , bandwidth, delay, vibration, loss, usage, wait), 对于定性指标,通过为每一项设计评价集合V=(v1,v2,v3),当该服务器的相应指标为v1时,将其隶属度模糊化为:For qualitative indicators, by designing an evaluation set V = (v 1 ,v 2 ,v 3 ) for each item, when the corresponding indicator of the server is v 1 , its membership degree is fuzzified as: 同时根据相对比较法,三项指标权重系数分别设置为:At the same time, according to the relative comparison method, the weight coefficients of the three indicators are set as follows: w2=[0.5,0.3,0.2],w 2 = [0.5, 0.3, 0.2], 同时假设该标识解析服务器的客观评定结果为P,那么定性指标的量化结果为:At the same time, assuming that the objective evaluation result of the identity resolution server is P, the quantitative result of the qualitative indicator is: Squalitative=w2RP;S qualitative = w 2 RP; 根据所述解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将所述LVS服务器的轮询算法切换为动态量化解析负载算法;According to the parameter index in the analysis process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LVS server is switched to a dynamic quantitative analysis load algorithm; 周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value; 根据所述负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes of the load value, the weight value of each server is calculated to evaluate the real-time processing capability of the server, the request amount is allocated according to the real-time processing capability, and the load between the servers is balanced in each cycle. 2.根据权利要求1所述的方法,其特征在于,还包括:2. The method according to claim 1, further comprising: 在所述标识解析服务真正网络节点之上设立全局监管层,对标识解析数据进行追溯和安全监控。A global supervision layer is established above the real network nodes of the identity resolution service to trace and monitor the security of the identity resolution data. 3.根据权利要求1所述的方法,其特征在于,在所述LVS服务器接收到待解析数据包之后,还包括:3. The method according to claim 1, characterized in that after the LVS server receives the data packet to be parsed, it also includes: 根据设定查看数据包的目标端口号是否为指定的标识解析进程的端口号,如果是,则根据轮询算法将所述待解析数据包转发到标识解析服务真正网络节点;反之,则按照设定的异常处理方案处理。Check whether the target port number of the data packet is the port number of the specified identity resolution process according to the setting. If so, forward the data packet to be resolved to the real network node of the identity resolution service according to the polling algorithm; otherwise, handle it according to the set exception handling plan. 4.一种基于直接路由和动态量化解析负载的标识解析装置,其特征在于,包括以下模块:4. An identity resolution device based on direct routing and dynamic quantization resolution load, characterized by comprising the following modules: 获取模块,用于获取待解析数据包并发送至LVS服务器;The acquisition module is used to obtain the data packet to be parsed and send it to the LVS server; 传输模块,用于基于所述LVS服务器执行目的网络地址转换协议,根据轮询算法将所述待解析数据包转发到标识解析服务真正网络节点;A transmission module, configured to execute a destination network address translation protocol based on the LVS server and forward the data packet to be resolved to a real network node of the identity resolution service according to a polling algorithm; 解析模块,通过所述标识解析服务真正网络节点对应的标识解析服务器处理所述待解析数据包,并记录解析过程中的参数指标;A parsing module, which processes the data packet to be parsed through the identity resolution server corresponding to the real network node of the identity resolution service, and records parameter indicators during the parsing process; 返回模块,通过所述标识解析服务器返回所述待解析数据包处理结果;A return module returns the processing result of the data packet to be parsed through the identity resolution server; 还包括,动态更新模块,用于:Also included is a dynamic update module for: 构建加权定量指标和定性指标的服务器评价模型:Construct a server evaluation model with weighted quantitative and qualitative indicators: S=Squantitative+SqualitativeS=S quantitative +S qualitative , 其中,S为服务器的量化指标,Squantitative为定量指标的加权结果,Squalitative为定性指标的加权结果;Among them, S is the quantitative index of the server, S quantitative is the weighted result of the quantitative index, and S qualitative is the weighted result of the qualitative index; 根据所述解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将所述LVS服务器的轮询算法切换为动态量化解析负载算法;其中,将负指标处理为qi=1/qi,正向指标直接乘以权重系数,可以得到进一步表达式:The quantitative index S of each server is obtained according to the parameter index in the analysis process, the weight value of each server is initialized, and the polling algorithm of the LVS server is switched to a dynamic quantitative analysis load algorithm; wherein, the negative index is processed as q i =1/q i , and the positive index is directly multiplied by the weight coefficient, and a further expression can be obtained: Squantitative=Σwiqi(i in qps,bandwidth,delay,tremble,loss,usage,wait),S quantitative = Σwiqi (i in qps , bandwidth, delay, vibration, loss, usage, wait), 对于定性指标,通过为每一项设计评价集合V=(v1,v2,v3),当该服务器的相应指标为v1时,将其隶属度模糊化为:For qualitative indicators, by designing an evaluation set V = (v 1 ,v 2 ,v 3 ) for each item, when the corresponding indicator of the server is v 1 , its membership degree is fuzzified as: 同时根据相对比较法,三项指标权重系数分别设置为:At the same time, according to the relative comparison method, the weight coefficients of the three indicators are set as follows: w2=[0.5,0.3,0.2],w 2 = [0.5, 0.3, 0.2], 同时假设该标识解析服务器的客观评定结果为P,那么定性指标的量化结果为:At the same time, assuming that the objective evaluation result of the identity resolution server is P, the quantitative result of the qualitative indicator is: Squalitative=w2RP;S qualitative = w 2 RP; 根据所述解析过程中的参数指标求得各个服务器的量化指标S,初始化各个服务器的权重值,将所述LVS服务器的轮询算法切换为动态量化解析负载算法;According to the parameter index in the analysis process, the quantitative index S of each server is obtained, the weight value of each server is initialized, and the polling algorithm of the LVS server is switched to a dynamic quantitative analysis load algorithm; 周期性的获取各台服务器的量化指标S并建立数学模型量化服务器的负载值;Periodically obtain the quantitative index S of each server and establish a mathematical model to quantify the server load value; 根据所述负载值的实时变化,计算各台服务器的权重值来评估服务器的实时处理能力,按实时处理能力分配请求量,在每个周期内均衡各台服务器间的负载。According to the real-time changes of the load value, the weight value of each server is calculated to evaluate the real-time processing capability of the server, and the request amount is allocated according to the real-time processing capability, so as to balance the load among the servers in each cycle. 5.一种计算机设备,其特征在于,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述处理器执行所述计算机程序时,实现如权利要求1-3中任一所述的方法。5. A computer device, characterized in that it comprises a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein when the processor executes the computer program, the method according to any one of claims 1 to 3 is implemented. 6.一种计算机可读存储介质,其上存储有计算机程序,其特征在于,所述计算机程序被处理器执行时实现如权利要求1-3任意一项所述的方法。6. A computer-readable storage medium having a computer program stored thereon, wherein when the computer program is executed by a processor, the method according to any one of claims 1 to 3 is implemented.
CN202210162591.7A 2022-02-22 2022-02-22 Identification resolution method and device based on direct routing and dynamic quantization resolution load Active CN115225733B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210162591.7A CN115225733B (en) 2022-02-22 2022-02-22 Identification resolution method and device based on direct routing and dynamic quantization resolution load

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210162591.7A CN115225733B (en) 2022-02-22 2022-02-22 Identification resolution method and device based on direct routing and dynamic quantization resolution load

Publications (2)

Publication Number Publication Date
CN115225733A CN115225733A (en) 2022-10-21
CN115225733B true CN115225733B (en) 2024-04-05

Family

ID=83606272

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210162591.7A Active CN115225733B (en) 2022-02-22 2022-02-22 Identification resolution method and device based on direct routing and dynamic quantization resolution load

Country Status (1)

Country Link
CN (1) CN115225733B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN118250962B (en) * 2024-03-05 2024-12-06 广东志享信息科技有限公司 Linkage management system for air conditioner in machine room

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103220354A (en) * 2013-04-18 2013-07-24 广东宜通世纪科技股份有限公司 Method for achieving load balancing of server cluster
WO2017050117A1 (en) * 2015-09-25 2017-03-30 网宿科技股份有限公司 Network load balance processing system, method, and apparatus
CN108092798A (en) * 2017-11-27 2018-05-29 西安财经学院 A kind of cloud service preferred method, Cloud Server based on change granularity
CN111930511A (en) * 2020-08-24 2020-11-13 北京工业大学 Identifier resolution node load balancing device based on machine learning
CN113014689A (en) * 2021-03-01 2021-06-22 杭州迪普科技股份有限公司 Method and device for network address translation
WO2021218068A1 (en) * 2020-04-28 2021-11-04 网络通信与安全紫金山实验室 Icn-based industrial internet identifier analysis system and data access method
CN113794739A (en) * 2021-11-16 2021-12-14 北京邮电大学 Double-layer active defense method and device for man-in-the-middle attack
CN113938488A (en) * 2021-09-24 2022-01-14 浙江理工大学 Load balancing method based on dynamic and static weighted polling
CN114051049A (en) * 2021-02-10 2022-02-15 中国信息通信研究院 Proxy forwarding method of identifier, server and computer readable storage medium

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6665702B1 (en) * 1998-07-15 2003-12-16 Radware Ltd. Load balancing
US8635350B2 (en) * 2006-06-12 2014-01-21 Icontrol Networks, Inc. IP device discovery systems and methods
US10819673B2 (en) * 2016-02-23 2020-10-27 Level 3 Communications, Llc Systems and methods for content server rendezvous in a dual stack protocol network
US10911570B2 (en) * 2017-11-02 2021-02-02 Utech, Inc. System and method for content parsing

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103220354A (en) * 2013-04-18 2013-07-24 广东宜通世纪科技股份有限公司 Method for achieving load balancing of server cluster
WO2017050117A1 (en) * 2015-09-25 2017-03-30 网宿科技股份有限公司 Network load balance processing system, method, and apparatus
CN108092798A (en) * 2017-11-27 2018-05-29 西安财经学院 A kind of cloud service preferred method, Cloud Server based on change granularity
WO2021218068A1 (en) * 2020-04-28 2021-11-04 网络通信与安全紫金山实验室 Icn-based industrial internet identifier analysis system and data access method
CN111930511A (en) * 2020-08-24 2020-11-13 北京工业大学 Identifier resolution node load balancing device based on machine learning
CN114051049A (en) * 2021-02-10 2022-02-15 中国信息通信研究院 Proxy forwarding method of identifier, server and computer readable storage medium
CN113014689A (en) * 2021-03-01 2021-06-22 杭州迪普科技股份有限公司 Method and device for network address translation
CN113938488A (en) * 2021-09-24 2022-01-14 浙江理工大学 Load balancing method based on dynamic and static weighted polling
CN113794739A (en) * 2021-11-16 2021-12-14 北京邮电大学 Double-layer active defense method and device for man-in-the-middle attack

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
基于工作负载预测的虚拟机整合算法;魏亮;黄韬;陈建亚;刘韵洁;;电子与信息学报(第06期);全文 *
基于软件定义网络的服务器集群负载均衡技术研究;于天放;芮兰兰;邱雪松;;电子与信息学报(第12期) *

Also Published As

Publication number Publication date
CN115225733A (en) 2022-10-21

Similar Documents

Publication Publication Date Title
CN114090244B (en) Service arrangement method, device, system and storage medium
CN110191148B (en) A method and system for distributed execution of statistical functions for edge computing
CN105812351B (en) Realize the shared method and system of session
WO2021249490A1 (en) Communication method and service data transmission method in blockchain network
CN105554065A (en) Method, conversion unit and application unit for message processing
JP2002091936A (en) Load distribution device and load estimation method
CN115801896A (en) Calculation network node distribution method and device, electronic equipment and storage medium
CN101801036B (en) Network traffic management method and system, common node
CN102970242A (en) Method for achieving load balancing
CN115858152B (en) A DNS load balancing performance optimization solution based on a single port
Ke et al. Load balancing using P4 in software-defined networks
CN115225733B (en) Identification resolution method and device based on direct routing and dynamic quantization resolution load
Yang et al. Network shortcut in data plane of service mesh with ebpf
Fan et al. An edge computing service model based on information-centric networking
CN102934396B (en) The method and system of the data communication in controlling network
CN111294285B (en) Network data distribution method and load balancer
WO2023040203A1 (en) Data acquisition method and apparatus for artificial intelligence platform, device and medium
KR100475668B1 (en) Apparatus and method of providing information for grid resources in grid network and computer readable recording medium of recording process thereof
CN109981794B (en) Processing method and device based on block chain node point network and electronic equipment
Chen et al. Building a scalable web server with global object space support on heterogeneous clusters
KR20030014513A (en) Meshod and System of Sharing Client Data For Distributing Load of Server
Altangerel et al. Study on emerging applications on data plane and optimization possibilities
Dong et al. [Retracted] Design of IoT Gateway for Crop Growth Environmental Monitoring Based on Edge‐Computing Technology
CN119127455A (en) Load balancing method, data processing method, data migration method and electronic device
Sridhar et al. Decision Tree based Classification of Profiled Mobile Device Resource Status Information for Data Offloading in Private Network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant