CN117081912A - A method, device, equipment and medium for host switching with source address translation - Google Patents

Abstract

The invention provides a method, a device, equipment and a readable medium for host switching of source address conversion, wherein the method comprises the following steps: creating a priority table entry in response to the number of service nodes in the cluster being greater than a threshold, and ordering the service nodes in the priority table entry; a BFD bidirectional forwarding detection mechanism is established between every two service nodes, and source address conversion is started in the service node of the first bit of the priority list item; in response to detecting a service node failure, the failed service node is placed in the last bit of the priority table entry, and other service nodes in the priority table entry are shifted forward, and source address translation is initiated in the service node of the first bit of the priority table entry. By using the scheme of the invention, the high availability of the snat function can be improved, and technical staff is not required to be arranged for processing under the condition that the service node fails, so that the manpower resource is effectively reduced.

Description

A method, device, equipment and medium for host switching with source address translation

Technical field

The present invention relates to the field of computers, and more specifically to a method, device, equipment and readable medium for source address translation and host switching.

Background technique

With the continuous development of science and technology and the development of the times, various large enterprises and organizations have an increasing demand for cloud computing. Cloud computing can provide a more efficient, flexible, secure and reliable infrastructure for the operation of information systems and adapt to Massive information storage, processing, exchange and real-time data analysis in operation management can effectively coordinate the business in all aspects, achieve a high degree of integration of information flow and business flow, greatly improve the enterprise's ability to optimize resource allocation, and promote the efficiency and efficiency of management operations. Safety.

Computing and storage resources in cloud computing are provided by computing virtualization and storage virtualization respectively. As an important IT resource, the network also has corresponding virtualization technology, and network resources are provided by network virtualization. Snat (Source Network Address Translation, source address translation) technology in the virtualized network needs to be attached to each service computing node, and communicates with the external network through the bridge network of the virtual network, the virtual switch uplink link, and the physical switch link. When the host fails or other communication failures occur, the Snat function will be unavailable, which will cause related businesses to be blocked, and operation and maintenance personnel will need to be excluded for maintenance and troubleshooting.

Contents of the invention

In view of this, the purpose of the embodiments of the present invention is to propose a method, device, equipment and readable medium for host switching of source address translation. By using the technical solution of the present invention, the high availability of the snat function can be improved. In the event of a failure, there is no need to arrange technical personnel to handle it, effectively reducing human resources.

Based on the above objectives, one aspect of the embodiment of the present invention provides a method for host switching of source address translation, which includes the following steps:

In response to the number of service nodes in the cluster being greater than the threshold, create a priority table entry and sort each service node in the priority table entry;

Establish BFD (Bidirectional Forwarding Detection, a network protocol bidirectional forwarding detection mechanism used to detect failures between two forwarding points) between each two service nodes, and open the source in the service node with the first priority entry address translation;

In response to detecting a service node failure, the failed service node is placed at the last position of the priority table entry, and other service nodes in the priority table entry are shifted forward and placed at the first position of the priority table entry. Enable source address translation in the service node.

According to an embodiment of the present invention, it further includes:

Determine whether the service node has failed based on the BFD bidirectional forwarding detection mechanism.

According to an embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, determine whether the second service node is the master node;

In response to the second service node being the primary node, determining that the primary node has failed;

In response to the second service node not being the primary node, it is determined that the second node has not failed.

According to an embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, it is determined whether other service nodes that have established a BFD bidirectional forwarding detection mechanism with the second service node within the preset time. Able to receive a preset number of data packets sent by the second service node;

In response to other service nodes being unable to receive the preset number of data packets sent by the second service node within the preset time, obtaining the information that the preset number of data packets sent by the second service node cannot be received within the preset time. The number of other service nodes;

In response to the value of the number of other service nodes plus 1 being greater than the preset value, it is determined that the second service node fails.

According to an embodiment of the present invention, it further includes:

In response to the number of service nodes in the cluster being 2, configure the arbitration IP for each service node;

Enable source address translation in the first service node;

Ping the arbitration IP via the first service node every preset time;

In response to the first service node not receiving a preset number of response messages within a preset time, the source address translation of the first service node is switched to the second service node.

According to an embodiment of the present invention, in response to the first service node not receiving a preset number of response messages within a preset time, switching the source address translation of the first service node to the second service node includes:

In response to the first service node receiving less than five ICMP_ECHO_RELAY (echo response message) response messages returned within five seconds from the echo request message, switch the source address translation of the first node to the second service node;

The arbitration IP is pinged through the second service node every preset time.

According to an embodiment of the present invention, in response to the number of service nodes in the cluster exceeding a threshold, establishing a priority table entry, and sorting each service node in the priority table entry includes:

Obtain the number of service nodes in the cluster and compare the obtained number with the threshold;

In response to the number obtained being greater than the threshold, create a priority entry in the cluster and place the master node first in the priority entry;

The remaining service nodes are sorted in the priority table entries in a random order.

Another aspect of the embodiment of the present invention also provides a device for source address translation and host switching. The device includes:

Create a module configured to respond to the number of service nodes in the cluster being greater than a threshold, create a priority table entry, and sort each service node in the priority table entry;

Establish a module. The establishment module is configured to establish a BFD bidirectional forwarding detection mechanism between every two service nodes, and enable source address translation in the service node with the first priority entry;

The switching module is configured to, in response to detecting a service node failure, place the failed service node at the last position of the priority table entry, and shift other service nodes in the priority table entry forward and place them in the priority table. Enable source address translation in the first service node of the table entry.

Another aspect of the embodiments of the present invention also provides a computer device, the computer device includes:

at least one processor; and

The memory stores computer instructions that can be run on the processor. When the instructions are executed by the processor, the steps of any of the above methods are implemented.

Another aspect of the embodiments of the present invention also provides a computer-readable storage medium. The computer-readable storage medium stores a computer program. When the computer program is executed by a processor, the steps of any of the above methods are implemented.

The present invention has the following beneficial technical effects: The source address conversion host switching method provided by the embodiment of the present invention creates a priority table entry in response to the number of service nodes in the cluster being greater than the threshold, and places each service node in the priority table entry. Sort in the middle; establish a BFD bidirectional forwarding detection mechanism between each two service nodes, and enable source address translation in the service node with the first priority entry; in response to detecting a service node failure, the failed service node The technical solution of placing it at the last position of the priority table entry, shifting other service nodes in the priority table entry forward, and enabling source address translation in the first service node of the priority table entry can improve The snat function is highly available. When a service node fails, there is no need to arrange technical personnel to handle it, effectively reducing human resources.

Description of the drawings

In order to explain the embodiments of the present invention or the technical solutions in the prior art more clearly, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below. Obviously, the drawings in the following description are only These are some embodiments of the present invention. For those of ordinary skill in the art, other embodiments can be obtained based on these drawings without exerting creative efforts.

Figure 1 is a schematic flow chart of a method for source address translation and host switching according to an embodiment of the present invention;

Figure 2 is a schematic diagram of changes in service node failure priority table entries according to an embodiment of the present invention;

Figure 3 is a schematic diagram of Snat host switching when the service master node fails according to an embodiment of the present invention;

Figure 4 is a schematic diagram of Snat host switching between two service nodes according to an embodiment of the present invention;

Figure 5 is a schematic diagram of a service node establishing BFD according to an embodiment of the present invention;

Figure 6 is a schematic diagram of a device for source address translation and host switching according to an embodiment of the present invention;

Figure 7 is a schematic diagram of a computer device according to an embodiment of the present invention;

Figure 8 is a schematic diagram of a computer-readable storage medium according to one embodiment of the present invention.

Detailed ways

In order to make the purpose, technical solutions and advantages of the present invention more clear, the embodiments of the present invention will be further described in detail below with reference to specific embodiments and the accompanying drawings.

Based on the above purpose, a first aspect of the embodiment of the present invention provides an embodiment of a source address translation host switching method. Figure 1 shows a schematic flow chart of the method.

As shown in Figure 1, the method may include the following steps:

In response to the number of service nodes in the cluster being greater than the threshold, S1 creates a priority table entry and sorts each service node in the priority table entry. Obtain the number of service nodes in the cluster and compare the obtained number with the threshold. In one embodiment, the threshold can be set to 2. If the obtained number is greater than the threshold, create a priority table entry in the cluster and set the primary The node is placed first in the priority table entry, and the remaining service nodes are sorted in the priority table entry in a random order.

S2 establishes a BFD bidirectional forwarding detection mechanism between each two service nodes, and enables source address translation in the service node with the first priority entry.

In response to detecting a service node failure, S3 places the failed service node at the last position of the priority table entry, and shifts other service nodes forward in the priority table entry, and places it at the first position of the priority table entry. Enable source address translation in the service node. When it is found that a host is judged to be faulty, all hosts will move the node ID in the priority table entry to the last position, and the hosts of other nodes will be moved forward, while ensuring that the first position in the priority table entry is The service node enables source address translation. As shown in Figure 2, the first priority entry is ACDB. When the host of the D service node fails, D is moved to the end and the priority entry becomes ACBD. As shown in Figure 3, when the Snat host node fails, the node identification bit is updated to the last bit of the entry, and the host with the identification bit C is the first. Therefore, the host with the identification bit C is recognized and starts Snat. The host with bit A turns off the Snat function. At this time, the host with the flag bit C is the Snat host.

By using the technical solution of the present invention, the high availability of the snat function can be improved, and when the service node fails, there is no need to arrange technical personnel to handle it, effectively reducing human resources.

In a preferred embodiment of the present invention, it also includes:

Determine whether the service node has failed based on the BFD bidirectional forwarding detection mechanism. BFD bidirectional forwarding detection can achieve rapid detection of links. BFD can achieve rapid route convergence by linking with upper-layer routing protocols to ensure business continuity. BFD can establish a peer relationship with neighboring nodes, and then each node monitors the BFD rate from other nodes at a negotiated rate. The monitoring rate can be set in millisecond increments. When the peer node does not receive a preset number of packet, it infers that the BFD-protected software or hardware infrastructure has failed.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, determine whether the second service node is the master node;

In response to the second service node being the primary node, determining that the primary node has failed;

In response to the second service node not being the primary node, it is determined that the second node has not failed. A BFD bidirectional forwarding detection mechanism is established between the hosts of every two service nodes. The two hosts receive data packets sent by each other. If the number of data packets received within the preset time is less than the preset value, then It can be considered that there may be an abnormality in the other party's host. If the service node connected to the master node does not receive the preset number of data packets, it is directly considered that the master node is faulty. At this time, the master node needs to be moved from the first to the last position in the priority table, and then the No. The second position is moved to the first position, the third position is moved to the second position, and so on, and Snat is enabled on the host currently in the first position. A service node is not considered to have failed if it is not the master node. In another embodiment, if all other service nodes connected to a service node do not receive a preset number of data packets within a preset time, the service node is considered to have failed.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, it is determined whether other service nodes that have established a BFD bidirectional forwarding detection mechanism with the second service node within the preset time. Able to receive a preset number of data packets sent by the second service node;

In response to other service nodes being unable to receive the preset number of data packets sent by the second service node within the preset time, obtaining the information that the preset number of data packets sent by the second service node cannot be received within the preset time. The number of other service nodes;

In response to the value of the number of other service nodes plus 1 being greater than the preset value, it is determined that the second service node fails. When determining whether a node has failed, it can be determined based on the number of service nodes with abnormal communication between the service node and other service nodes. Specifically, for example, there are 5 nodes connected to the first node, and among these 5 nodes When three nodes do not receive the preset number of data packets within the preset time, the first node is considered to have failed. At this time, there is no need to distinguish whether the first node is the master node. And the specific values in the above examples can be set as needed.

In a preferred embodiment of the present invention, it also includes:

In response to the number of service nodes in the cluster being 2, configure the arbitration IP for each service node;

Enable source address translation in the first service node;

Ping the arbitration IP via the first service node every preset time;

In response to the first service node not receiving a preset number of response messages within a preset time, the source address translation of the first service node is switched to the second service node.

In a preferred embodiment of the present invention, in response to the first service node not receiving a preset number of response messages within a preset time, switching the source address of the first service node to the second service node includes:

In response to the first service node receiving less than five ICMP_ECHO_RELAY response messages returned within five seconds from the echo request message, switch the source address translation of the first node to the second service node;

The arbitration IP is pinged through the second service node every preset time. As shown in Figure 4, when there are 2 service nodes in the service cluster, add an arbitration IP to the two-node host configuration. The arbitration IP needs to be reachable at three layers with the Snat address, and must be a stable, reliable, and pingable IP. The arbitration IP connectivity is used to determine whether Snat switches. The checking mechanism is to receive ICMP_ECH0_RELAY response messages returned by ICMP_ECHO_REQUEST from at least five floating IP addresses within five seconds. If not, the Snat host is switched to continue detection.

In a preferred embodiment of the present invention, in response to the number of service nodes in the cluster exceeding the threshold, establishing a priority table, and sorting each service node in the priority table includes:

Obtain the number of service nodes in the cluster and compare the obtained number with the threshold;

In response to the number obtained being greater than the threshold, create a priority entry in the cluster and place the master node first in the priority entry;

The remaining service nodes are sorted in the priority table entries in a random order. As shown in Figure 5, the threshold can be set to 2. When there are more than 2 service nodes in the service cluster, the master node automatically creates a priority table entry and performs periodic synchronization with other interoperable hosts. The hosts of each node pass the BFD bidirectional forwarding detection mechanism. Provides millisecond-level detection and reporting to the master node, ranks the master node priority first, and then sorts all nodes currently detecting normal communication through random sorting. The host with the highest current priority generates a priority table entry and Synchronously deliver it to other hosts. At this time, the host of each node determines whether the first priority entry is the local machine. If so, Snat is enabled.

By using the technical solution of the present invention, the high availability of the snat function can be improved, and when the service node fails, there is no need to arrange technical personnel to handle it, effectively reducing human resources.

It should be noted that those of ordinary skill in the art can understand that all or part of the processes in the methods of the above embodiments can be implemented by instructing relevant hardware through computer programs. The above programs can be stored in computer-readable storage media. When the program is executed, it may include the processes of the above method embodiments. The storage medium may be a magnetic disk, an optical disk, a read-only memory (Read-Only Memory, ROM) or a random access memory (Random Access Memory, RAM), etc. The foregoing computer program embodiments can achieve the same or similar effects as any of the corresponding foregoing method embodiments.

In addition, the method disclosed according to the embodiment of the present invention can also be implemented as a computer program executed by a CPU, and the computer program can be stored in a computer-readable storage medium. When the computer program is executed by the CPU, the above functions defined in the method disclosed in the embodiment of the present invention are performed.

Based on the above purpose, a second aspect of the embodiment of the present invention proposes a device for source address translation and host switching. As shown in Figure 6, the device 200 includes:

Create a module configured to respond to the number of service nodes in the cluster being greater than a threshold, create a priority table entry, and sort each service node in the priority table entry;

Establish a module. The establishment module is configured to establish a BFD bidirectional forwarding detection mechanism between every two service nodes, and enable source address translation in the service node with the first priority entry;

The switching module is configured to, in response to detecting a service node failure, place the failed service node at the last position of the priority table entry, and shift other service nodes in the priority table entry forward and place them in the priority table. Enable source address translation in the first service node of the table entry.

Based on the above objectives, a third aspect of the embodiments of the present invention provides a computer device. FIG. 7 shows a schematic diagram of an embodiment of a computer device provided by the present invention. As shown in Figure 7, the embodiment of the present invention includes the following device: at least one processor 21; and a memory 22. The memory 22 stores computer instructions 23 that can be run on the processor. When the instructions are executed by the processor, the following methods are implemented:

In response to the number of service nodes in the cluster being greater than the threshold, create a priority table entry and sort each service node in the priority table entry;

Establish a BFD bidirectional forwarding detection mechanism between each two service nodes, and enable source address translation in the service node with the first priority entry;

In response to detecting a service node failure, the failed service node is placed at the last position of the priority table entry, and other service nodes in the priority table entry are shifted forward and placed at the first position of the priority table entry. Enable source address translation in the service node.

In a preferred embodiment of the present invention, it also includes:

Determine whether the service node has failed based on the BFD bidirectional forwarding detection mechanism.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, determine whether the second service node is the master node;

In response to the second service node being the primary node, determining that the primary node has failed;

In response to the second service node not being the primary node, it is determined that the second node has not failed.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, it is determined whether other service nodes that have established a BFD bidirectional forwarding detection mechanism with the second service node within the preset time. Able to receive a preset number of data packets sent by the second service node;

In response to other service nodes being unable to receive the preset number of data packets sent by the second service node within the preset time, obtaining the information that the preset number of data packets sent by the second service node cannot be received within the preset time. The number of other service nodes;

In response to the value of the number of other service nodes plus 1 being greater than the preset value, it is determined that the second service node fails.

In a preferred embodiment of the present invention, it also includes:

In response to the number of service nodes in the cluster being 2, configure the arbitration IP for each service node;

Enable source address translation in the first service node;

Ping the arbitration IP via the first service node every preset time;

In response to the first service node not receiving a preset number of response messages within a preset time, the source address translation of the first service node is switched to the second service node.

In a preferred embodiment of the present invention, in response to the first service node not receiving a preset number of response messages within a preset time, switching the source address of the first service node to the second service node includes:

In response to the first service node receiving less than five ICMP_ECHO_RELAY response messages returned within five seconds from the echo request message, switch the source address translation of the first node to the second service node;

The arbitration IP is pinged through the second service node every preset time.

In a preferred embodiment of the present invention, in response to the number of service nodes in the cluster exceeding the threshold, establishing a priority table, and sorting each service node in the priority table includes:

Obtain the number of service nodes in the cluster and compare the obtained number with the threshold;

In response to the number obtained being greater than the threshold, create a priority entry in the cluster and place the master node first in the priority entry;

The remaining service nodes are sorted in the priority table entries in a random order.

Based on the above objectives, a fourth aspect of the embodiments of the present invention provides a computer-readable storage medium. FIG. 8 shows a schematic diagram of an embodiment of a computer-readable storage medium provided by the present invention. As shown in Figure 8, the computer-readable storage medium 31 stores a computer program 32 that performs the following methods when executed by a processor:

In response to the number of service nodes in the cluster being greater than the threshold, create a priority table entry and sort each service node in the priority table entry;

Establish a BFD bidirectional forwarding detection mechanism between each two service nodes, and enable source address translation in the service node with the first priority entry;

In response to detecting a service node failure, the failed service node is placed at the last position of the priority table entry, and other service nodes in the priority table entry are shifted forward and placed at the first position of the priority table entry. Enable source address translation in the service node.

In a preferred embodiment of the present invention, it also includes:

Determine whether the service node has failed based on the BFD bidirectional forwarding detection mechanism.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, determine whether the second service node is the master node;

In response to the second service node being the primary node, determining that the primary node has failed;

In response to the second service node not being the primary node, it is determined that the second node has not failed.

In a preferred embodiment of the present invention, determining whether a service node fails based on the BFD bidirectional forwarding detection mechanism includes:

The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node;

Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time;

In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, it is determined whether other service nodes that have established a BFD bidirectional forwarding detection mechanism with the second service node within the preset time. Able to receive a preset number of data packets sent by the second service node;

In response to other service nodes being unable to receive the preset number of data packets sent by the second service node within the preset time, obtaining the information that the preset number of data packets sent by the second service node cannot be received within the preset time. The number of other service nodes;

In response to the value of the number of other service nodes plus 1 being greater than the preset value, it is determined that the second service node fails.

In a preferred embodiment of the present invention, it also includes:

In response to the number of service nodes in the cluster being 2, configure the arbitration IP for each service node;

Enable source address translation in the first service node;

Ping the arbitration IP via the first service node every preset time;

In response to the first service node not receiving a preset number of response messages within a preset time, the source address translation of the first service node is switched to the second service node.

In a preferred embodiment of the present invention, in response to the first service node not receiving a preset number of response messages within a preset time, switching the source address of the first service node to the second service node includes:

In response to the first service node receiving less than five ICMP_ECHO_RELAY response messages returned within five seconds from the echo request message, switch the source address translation of the first node to the second service node;

The arbitration IP is pinged through the second service node every preset time.

In a preferred embodiment of the present invention, in response to the number of service nodes in the cluster exceeding the threshold, establishing a priority table, and sorting each service node in the priority table includes:

Obtain the number of service nodes in the cluster and compare the obtained number with the threshold;

In response to the number obtained being greater than the threshold, create a priority entry in the cluster and place the master node first in the priority entry;

The remaining service nodes are sorted in the priority table entries in a random order.

In addition, the method disclosed according to the embodiment of the present invention can also be implemented as a computer program executed by a processor, and the computer program can be stored in a computer-readable storage medium. When the computer program is executed by the processor, the above functions defined in the method disclosed in the embodiment of the present invention are performed.

In addition, the above-mentioned method steps and system units can also be implemented using a controller and a computer-readable storage medium for storing a computer program that enables the controller to implement the above-mentioned steps or unit functions.

Those of skill would further appreciate that the various illustrative logical blocks, modules, circuits, and algorithm steps described in connection with the disclosure herein may be implemented as electronic hardware, computer software, or combinations of both. To clearly illustrate this interchangeability of hardware and software, various illustrative components, blocks, modules, circuits and steps have been described generally in terms of their functionality. Whether this functionality is implemented as software or hardware depends on the specific application and the design constraints imposed on the overall system. Those skilled in the art may implement the functionality in various ways for each specific application, but such implementation decisions should not be interpreted as causing a departure from the scope of the disclosed embodiments of the present invention.

In one or more example designs, functionality may be implemented in hardware, software, firmware, or any combination thereof. If implemented in software, the functionality may be stored on or transmitted over as one or more instructions or code on a computer-readable medium. Computer-readable media includes computer storage media and communication media including any medium that facilitates transfer of a computer program from one place to another. Storage media can be any available media that can be accessed by a general purpose or special purpose computer. By way of example and not limitation, the computer-readable medium may include RAM, ROM, EEPROM, CD-ROM or other optical disk storage devices, magnetic disk storage devices or other magnetic storage devices, or may be used to carry or store instructions in the form of or any other medium containing the required program code for the data structures and capable of being accessed by a general-purpose or special-purpose computer or a general-purpose or special-purpose processor. Also, any connection is properly termed a computer-readable medium. For example, if coaxial cable, fiber optic cable, twisted pair, digital subscriber line (DSL), or wireless technologies such as infrared, radio, and microwave are used to deliver software from a website, server, or other remote source, the coaxial cable Cable, fiber optic cable, twisted pair, DSL or wireless technologies such as infrared, radio and microwave are included in the definition of media. As used herein, disks and optical disks include compact disks (CDs), laser disks, optical disks, digital versatile disks (DVDs), floppy disks, and Blu-ray disks, where disks typically reproduce data magnetically, while optical disks reproduce data optically using lasers. . Combinations of the above should also be included within the scope of computer-readable media.

The above are exemplary embodiments disclosed by the present invention, but it should be noted that various changes and modifications can be made without departing from the scope of the disclosed embodiments of the present invention defined by the claims. The functions, steps and/or actions of the method claims in accordance with the disclosed embodiments described herein need not be performed in any particular order. In addition, although the elements disclosed in the embodiments of the present invention may be described or claimed in individual form, they may also be understood as plural unless expressly limited to the singular.

It will be understood that, as used herein, the singular form "a" and "an" are intended to include the plural form as well, unless the context clearly supports an exception. It will also be understood that as used herein, "and/or" is meant to include any and all possible combinations of one or more of the associated listed items.

The embodiment numbers disclosed in the above embodiments of the present invention are only for description and do not represent the advantages or disadvantages of the embodiments.

Those of ordinary skill in the art can understand that all or part of the steps to implement the above embodiments can be completed by hardware, or can be completed by instructing the relevant hardware through a program. The program can be stored in a computer-readable storage medium. The above-mentioned The storage medium can be a read-only memory, a magnetic disk or an optical disk, etc.

Those of ordinary skill in the art should understand that the above discussion of any embodiments is only illustrative, and is not intended to imply that the scope of the disclosure of the embodiments of the present invention (including the claims) is limited to these examples; under the thinking of the embodiments of the present invention , the above embodiments or technical features in different embodiments can also be combined, and there are many other changes in different aspects of the above embodiments of the present invention, which are not provided in details for the sake of simplicity. Therefore, any omissions, modifications, equivalent substitutions, improvements, etc. made within the spirit and principles of the embodiments of the present invention shall be included in the protection scope of the embodiments of the present invention.

Claims (10)

1. A method of host switching for source address translation, characterized by comprising the following steps: In response to the number of service nodes in the cluster being greater than the threshold, create a priority table entry and sort each service node in the priority table entry; Establish a BFD bidirectional forwarding detection mechanism between each two service nodes, and enable source address translation in the service node with the first priority entry; In response to detecting a service node failure, the failed service node is placed at the last position of the priority table entry, and other service nodes in the priority table entry are shifted forward and placed at the first position of the priority table entry. Enable source address translation in the service node. 2. The method of claim 1, further comprising: Determine whether the service node has failed based on the BFD bidirectional forwarding detection mechanism. 3. The method according to claim 2, wherein determining whether the service node fails based on the BFD bidirectional forwarding detection mechanism includes: The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node; Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time; In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, determine whether the second service node is the master node; In response to the second service node being the primary node, determining that the primary node has failed; In response to the second service node not being the primary node, it is determined that the second node has not failed. 4. The method according to claim 2, wherein determining whether the service node fails based on the BFD bidirectional forwarding detection mechanism includes: The first service node among the two service nodes connected by the BFD bidirectional forwarding detection mechanism receives the data packet sent by the second service node; Determine whether the first service node can receive a preset number of data packets sent by the second service node within a preset time; In response to the first service node being unable to receive the preset number of data packets sent by the second service node within the preset time, it is determined whether other service nodes that have established a BFD bidirectional forwarding detection mechanism with the second service node within the preset time. Able to receive a preset number of data packets sent by the second service node; In response to other service nodes being unable to receive the preset number of data packets sent by the second service node within the preset time, obtaining the information that the preset number of data packets sent by the second service node cannot be received within the preset time. The number of other service nodes; In response to the value of the number of other service nodes plus 1 being greater than the preset value, it is determined that the second service node fails. 5. The method of claim 1, further comprising: In response to the number of service nodes in the cluster being 2, configure the arbitration IP for each service node; Enable source address translation in the first service node; Ping the arbitration IP via the first service node every preset time; In response to the first service node not receiving a preset number of response messages within a preset time, the source address translation of the first service node is switched to the second service node. 6. The method according to claim 5, characterized in that, in response to the first service node not receiving a preset number of response messages within a preset time, switching the source address translation of the first service node to the second Service nodes include: In response to the first service node receiving less than five ICMP_ECHO_RELAY response messages returned within five seconds from the echo request message, switch the source address translation of the first node to the second service node; The arbitration IP is pinged through the second service node every preset time. 7. The method according to claim 1, characterized in that, in response to the number of service nodes in the cluster exceeding a threshold, establishing a priority table entry, and sorting each service node in the priority table entry includes: Obtain the number of service nodes in the cluster and compare the obtained number with the threshold; In response to the number obtained being greater than the threshold, create a priority entry in the cluster and place the master node first in the priority entry; The remaining service nodes are sorted in the priority table entries in a random order. 8. A device for source address translation and host switching, characterized in that the device includes: Create a module, the creation module is configured to create a priority table entry in response to the number of service nodes in the cluster being greater than a threshold, and sort each service node in the priority table entry; Establishing a module, the establishing module is configured to establish a BFD bidirectional forwarding detection mechanism between every two service nodes, and enable source address translation in the service node with the first priority entry; A switching module, the switching module is configured to, in response to detecting a service node failure, place the failed service node in the last position of the priority table entry, and shift other service nodes forward in the priority table entry, and place the failed service node in the last position of the priority table entry. Enable source address translation on the service node with the first priority entry. 9. A computer device, characterized in that it includes: at least one processor; and A memory that stores computer instructions executable on the processor, and when executed by the processor, the instructions implement the steps of the method of any one of claims 1-7. 10. A computer-readable storage medium, the computer-readable storage medium stores a computer program, characterized in that, when the computer program is executed by a processor, the steps of the method described in any one of claims 1-7 are implemented.