摘要
防火墙服务(FWaaS)是云资源池网络服务的关键组件之一,要求具备自动开通、按需灵活调整的能力,适合采用软件形态的虚拟防火墙(virtualfirewall,v FW)承载。对于云资源池而言,虚拟防火墙具有特殊性,本身既是网络服务需要被业务系统编排,又是网元组件需要被网络系统配置。云资源池环境下,虚拟防火墙面临与云平台、SDN等其他组件集成的问题。研究了现有云资源池集成虚拟防火墙的主要方案,分析了云资源池集成虚拟防火墙的主要问题,提出了基于可扩展的模型框架实现云资源池集成虚拟防火墙的方法。
FWaaS is one of the key cloud network services,which requires ability of auto provisioning and flexibility of on-demand adjustment.It is suitable for cloud platforms to provide FWaaS based on virtual firewalls(vFW)appliance.vFW has its own particularity comparing to other cloud components.It is not only a network service but also a network element,which should be orchestrated by business systems and should be automatically configured by network systems.In the environment of cloud resource pool,vFW faces the integration problem with other cloud components like SDN and cloud management platform.The main method of integrating vFW in cloud resource pool was studied,the existing integration problems were analyzed,and an integration method based on extensible model driven framework was proposed.
作者
黄志兰
樊勇兵
樊宁
陈楠
吴林泽
林宝洪
HUANG Zhilan;FAN Yongbing;FAN Ning;CHEN Nan;WU Linze;LIN Baohong(Guangzhou Research Institute of China Telecom Co.,Ltd.,Guangzhou 510630,China)
出处
《电信科学》
2019年第5期140-148,共9页
Telecommunications Science
