CN100531138C - Operator's boundary notes, virtual special LAN service communication method and system - Google Patents

Operator's boundary notes, virtual special LAN service communication method and system Download PDF

Info

Publication number
CN100531138C
CN100531138C CNB2006101271415A CN200610127141A CN100531138C CN 100531138 C CN100531138 C CN 100531138C CN B2006101271415 A CNB2006101271415 A CN B2006101271415A CN 200610127141 A CN200610127141 A CN 200610127141A CN 100531138 C CN100531138 C CN 100531138C
Authority
CN
China
Prior art keywords
message
network
user
boundary point
forwarding information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CNB2006101271415A
Other languages
Chinese (zh)
Other versions
CN1929444A (en
Inventor
俞致伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CNB2006101271415A priority Critical patent/CN100531138C/en
Publication of CN1929444A publication Critical patent/CN1929444A/en
Application granted granted Critical
Publication of CN100531138C publication Critical patent/CN100531138C/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

This invention discloses one operator boundary point, virtual special local network communication method and system, wherein the method comprises the following steps: symmetric interfacing virtual special local network service user point to entrance operator by QinQ form type to analyze message two layers of head and common labels; according to analysis head part and common label adding relative transfer information in self MAC transfer list and sending the message tot eh operator boundary point; exit operator boundary point receives message to analyze label and sends the message to user point; user boundary point analyzes private network label.

Description

Operator boundary point, virtual special local area network communication for service method and system
Technical field
The present invention relates to the VPN (virtual private network) technology, relate in particular to operator boundary point, virtual special local area network communication for service method and system.
Background technology
Virtual special local area network service VPLS (Virtual Private LAN Service) is a kind of two-layer virtual private network VPN (Virtual Private Network) technology based on multiprotocol label switching MPLS (Multi Protocol Label Switch) and ethernet technology, the point while access network that the user is disperseed from a plurality of geographical position, visit mutually is just as these points directly are linked into local area network (LAN).VPLS makes user's local area network (LAN) extend to metropolitan area network, even wide area network.
In VPLS, in order to E-Packet, operator boundary point PE (provider edge device) needs to set up MAC by the method for message source medium access control MAC (Media Access Control) address learning and transmits.Each PE not only will learn from the MAC Address of the next Ethernet message of tseudo circuit PW (Pseudo Wire), also to learn connect the MAC Address that user's boundary node CE (customer edgedevice) comes, the application target MAC Address is searched MAC and is transmitted definite forward-path during forwarding.And all adopt the mode of broadcasting for the Ethernet message of unknown unicast address, broadcast address and the multicast address that can't in transmitting, find, the message of receiving is forwarded to all the other all users in the VPLS territory.Therefore VPLS requires to adopt between PE full the connection, and usage level is cut apart the loop of eliminating between PE among the VPLS simultaneously, and promptly the message of receiving from PE is not forwarded to other PE, both common guarantee VPLS accessibility and the loop free transmitted; Wherein, it is a kind of technology of avoiding the appearance of route ring and accelerating route assemblage that level is cut apart, because router may be received the routing iinformation that it sends itself, and this information is useless, horizontal cutting techniques is not oppositely announced any routing update information of receiving from terminal, can be owing to counting down to the infinite route of removing and only announce those.
Two labels (QinQ) agreement also can be referred to as the tunnel protocol based on 802.1Q, the initial main purpose that proposes of this agreement is in order to shield the inner virtual LAN VLAN of using (Virtual LocalArea Network) of user, thereby the VLAN number on the minimizing service provider network, its core concept is exactly only to distribute to public network vlan number of each enterprise customer, when the user's message of tape label TAG enters service provider's backbone network, all insert this newly assigned public network vlan number uniformly by force, pass backbone network with this new public network vlan number, when this message arrives the PE equipment of backbone network opposite side, peel off the public network VLAN TAG that this newly adds, restore the CE that sends the user behind the user's message again to.Because the message that transmits in backbone network has two-layer 802.1Q TAG head, one is public network TAG, and one is private network TAG, so be referred to as the QinQ agreement.
In actual networking, the QinQ agreement is widely applied in the VPLS network as the access technology of VPLS, existingly a kind ofly adopts networking that the QinQ agreement inserts VPLS as shown in Figure 1, as shown in the figure, this network comprises CE1 101, and CE3 102, PE1 103, PE3 104, and PE4 105, and PE2 106, CE4 107, CE2 108, and wherein CE1 is network 1a service, corresponding VLAN 200~300; CE2 is network 1b service, corresponding VLAN 200~300; CE3 is network 2a service, corresponding VLAN 400~500; CE4 is network 2b service, corresponding VLAN 400~500; And CE1 is configured to main line trunk attribute with the port that PE1, CE2 and PE2, CE3 and PE1, CE4 link to each other with PE2; PE3 is connected by VPLS with PE4, and PE1 and PE2 insert in VPLS with VLAN 4 with the QINQ agreement by public network VLAN3 with 1b, 2a respectively with 2b LAN 1a and carry out mutually between communicating by letter, transmit principle according to VPLS, the source MAC that PE need learn each user's message is set up MAC and is transmitted and table look-up and E-Packet, and handles then the message of receiving will be forwarded to all the other all users in the VPLS territory for broadcasting.Insert the situation of VPLS like this for the QINQ protocol interface, need could uniquely determine a user according to message MAC+ public network TAG+ private network TAG usually, and message all can be able to be duplicated portion for actual each QINQ user during broadcasting; Wherein, the trunk technology is used for setting up VLAN, adopts the 802.1Q standard, and the VLAN that is set up forms VLL in logic, the connection of setting up point-to-point as user's boundary node by router or main frame between two websites.
As shown in Figure 1, suppose that the user of VLAN 200 among the user network 1a will communicate with the user of VLAN200 among the network 1b, then can receive message as the described QINQ form of table 1 for PE3:
Table 1QinQ form message
Two layers of head Public network TAG (vlan 3) Private network TAG (vlan 200) Message payload
The PE3 analytic message, study message source MAC+ public network TAG+ private network TAG and source port information, set up a MAC forwarding-table item, sending the MAC that the message of returning just can use message purpose MAC to search in the VPLS for the user of VLAN 200 from network 1a like this transmits, obtain the true forwarding information of VLAN 200 users in the network 1, comprise public network TAG+ private network TAG and outbound port information, transmit again from message; And the broadcasting packet that sends for the user of VLAN 200 in the user network 1, PE can duplicate to except that own whole actual users, comprises whole users of user network 1a, 1b, 2a, 2b, common 400-1=399 part; Wherein, outbound port is exactly a source port, for no other reason than that from the flow direction of message, the port that receives message is exactly a source port, the port that E-Packets is exactly an outbound port.
From as can be seen last, if there are a plurality of user networks to use the QinQ protocol interface to insert the VPLS network, and the number of users in each user network is very many, then PE need duplicate a large amount of messages to each user when broadcasting is handled, and have only a little in these messages is useful, will cause the reduction of network resource utilization like this, also can cause the reduction of PE disposal ability simultaneously; Secondly, there is whole users' vlan information during MAC transmits on the PE equipment in the VPLS network, the fail safe of user network is reduced.
Summary of the invention
The technical problem to be solved in the present invention provides operator boundary point, virtual special local area network communication for service method and system, when in virtual private LAN service network, communicating by letter, operator boundary point can not resolved the private network tags of two label packets, makes vlan information transparent transmission in virtual private LAN service network of user.
For solving the problems of the technologies described above, the objective of the invention is to be achieved through the following technical solutions:
A kind of virtual special local area network communication for service method comprises:
The user node of the user network of symmetry access of virtual private local area network service sends QinQ form message to the inlet operator boundary point, after the inlet operator boundary point is received described message, two layers of head of analytic message and public network label, the connection attribute of described inlet operator boundary point are configured to the trunk symmetry and connect;
If this message is not a broadcasting packet,, message is forwarded to exit operator boundary point according to two layers of head of resolving and the public network label corresponding forwarding information of increase in self medium access control MAC transmits;
After exit operator boundary point is received message, two layers of head of analytic message and public network label, transmit middle corresponding forwarding information according to self MAC, this message is forwarded to the respective user boundary node, the connection attribute of described exit operator boundary point is configured to the trunk symmetry and connects;
User's boundary node is resolved private network tags and is determined the user, and message is sent to the user.
Preferably, further comprise after the inlet operator boundary point is received message:
Judge whether the symmetry that presets inserts flag bit effective, if enter the step of resolving two layers of head and public network label.
Preferably, exit operator boundary point further comprises after resolving two layers of head and public network label:
Judge whether self MAC has corresponding forwarding information in transmitting, if, enter according to self MAC and transmit middle corresponding forwarding information, this message is forwarded to the step of corresponding user's boundary node; If not, this message is sent to corresponding user's boundary node as broadcasting packet, user's boundary node is this message of broadcasting in self residing user network.
Preferably, described forwarding information comprises source MAC, public network label and source port.
A kind of virtual special local area network communication for service method comprises:
The user node of the user network of symmetry access of virtual private local area network service sends QinQ form message to the inlet operator boundary point, after the inlet operator boundary point is received described message, two layers of head of analytic message and public network label, the connection attribute of described inlet operator boundary point are configured to the trunk symmetry and connect;
Judge that according to the result who resolves this message is a broadcasting packet, for all user networks except that this message sender user network of living in duplicate this message;
The message that duplicates is sent to corresponding user's boundary node, and user's boundary node is broadcasted this message at its user network of living in.
Preferably, the message that duplicates further comprises after being sent to corresponding user's boundary node:
User's boundary node judges whether the private network tags of the message that receives is consistent with the private network tags of network of living in, if enter the step of broadcasting this message at user network.
A kind of operator boundary point is used for virtual private LAN service network, and the connection attribute of described operator boundary point is configured to the trunk symmetry and connects, and described node comprises:
The message receiving element is used to receive QinQ form message;
The packet parsing unit is used to resolve the two layers of head and the public network label of described message;
Forwarding information increases the unit, is used for transmitting the increase forwarding information at its MAC that safeguards when described message is sent to described message receiving element by the virtual private LAN service network exterior node, and described forwarding information is resolved by the packet parsing unit;
Forwarding information is searched the unit, be used for when described message is sent to described message receiving element by the virtual private LAN service network interior nodes, in described MAC transmits, search described message forwarding information according to the two layers of head and the public network label of packet parsing unit resolves;
Message retransmission unit in the net is used for according to the public network label of packet parsing unit resolves message being transmitted to operator boundary point in the network;
Net outer message retransmission unit, be used for searching the forwarding information of searching the unit and E-Packet according to forwarding information.
A kind of virtual special local area network communication for service system comprises: the inlet operator boundary point, and exit operator boundary point, user's boundary node, wherein:
The inlet operator boundary point is used to receive QinQ form message, two layers of head of message and public network label are resolved, increase forwarding information in the MAC of self maintained transmits, and this message is transmitted, the connection attribute of described inlet operator boundary point is configured to the trunk symmetry and connects;
Exit operator boundary point is used to receive the message that the inlet operator boundary point sends, two layers of head of message and public network label are resolved, and in transmitting, searches the MAC of self maintained corresponding forwarding information according to analysis result, according to forwarding information message is transmitted, the connection attribute of described exit operator boundary point is configured to the trunk symmetry and connects;
User's boundary node is used to receive the message that outlet service provider boundary node sends, and the private network tags of message is resolved, and according to private network tags message is transmitted to the user.
Preferably, the inlet operator boundary point is used to also judge whether the message of receiving is broadcasting packet, if broadcasting packet also will duplicate a message for each the user's boundary node except that the source user boundary node;
User's boundary node also is used for broadcasting described message at self user network of living in after receiving described broadcasting packet.
Preferably, described user's boundary node is used to also judge whether the private network tags of described message is consistent with the private network tags of network of living in, if, broadcast this message at self user network of living in, if not, abandon this message.
Preferably, exit operator boundary point is used for also judging that MAC transmits the message forwarding information that receives whether to some extent, if not, also is used for message is broadcasted.
Above technical scheme as can be seen, owing to when the present invention transmits message in the VPLS network, only resolve public network TAG, and private network TAG and message carried out transparent transmission together, the user vlan information of private network tags correspondence is transparent in the VPLS network like this, has improved the fail safe of user network; When needs are broadcasted message, in the VPLS network, only need duplicate a message for each user network, reduced the message copies of PE when broadcasting is handled, improved the disposal ability that PE handles other things, simultaneously also avoid a large amount of messages in the VPLS network, to transmit, improved utilization rate of network resource in the VPLS network; After user's boundary node is received broadcasting packet, also whether private network TAG is judged with the consistent of present networks,, prevent that useless message from propagating in user network, improved the network resource utilization of user network if inconsistently just abandon; PE safeguards that also a MAC transmits, and can directly transmit message according to forwarding information when message information is consistent with the forwarding information table, has improved message transferring speed.
Description of drawings
Fig. 1 is existing virtual special local area network communication for service system group network figure;
Fig. 2 is an operator boundary point structure chart of the present invention;
Fig. 3 is virtual special local area network communication for service system group network figure of the present invention;
Fig. 4 is the inventive method flow chart;
Fig. 5 is the particular flow sheet of the inventive method first embodiment;
Fig. 6 is the particular flow sheet of the inventive method second embodiment;
Fig. 7 is the particular flow sheet of the inventive method the 3rd embodiment.
Embodiment
The present invention is operator boundary point, virtual special local area network communication for service method and system, for make purpose of the present invention, technical scheme, and advantage clearer, below with reference to the accompanying drawing embodiment that develops simultaneously, the present invention is described in more detail.
Introduce operator boundary point provided by the invention earlier, referring to Fig. 2.
As shown in Figure 2, operator boundary point provided by the invention comprises message receiving element 201, packet parsing unit 202, and forwarding information increases unit 203, message retransmission unit 204 in the net, forwarding information is searched unit 205, nets outer message retransmission unit 206; Wherein:
The message receiving element is used to receive QinQ form message;
The message that receives can come the network internal at VPLS, also can be from the VPLS network-external; From sending of network internal, from then can sending of network-external by operator boundary point or user's boundary node by operator boundary point;
The packet parsing unit is used to resolve the two layers of head and the public network label of described message;
Two layers of also active MAC of head, purpose MAC transmits information such as port, and the corresponding corresponding user network of public network label can be determined the message forwarding path so these two resolved; Again because only the public network label is resolved, guaranteed user private network label transparent transmission in network, the fail safe that has improved user network simultaneously;
Forwarding information increases the unit, if described message is sent to described message receiving element by the virtual private LAN service network exterior node, is used for transmitting the increase forwarding information at its MAC that safeguards, described forwarding information is resolved by the packet parsing unit;
If this message is from network-external, the information that is resolved to is saved in during MAC transmits, when needs are sent to network-external with message, can directly E-Packet like this according to the forwarding information in the forwarding information table;
Forwarding information is searched the unit, if described message is sent to described message receiving element by the virtual private LAN service network interior nodes, be used for transmitting the described message forwarding information of searching at described MAC according to the two layers of head and the public network label of packet parsing unit resolves;
Send if message is the node of network internal, then from MAC transmits, search corresponding forwarding information and E-Packet;
Message retransmission unit in the net is used for according to the public network label of packet parsing unit resolves message being transmitted to operator boundary point in the network;
Net outer message retransmission unit, be used for searching the forwarding information of searching the unit and E-Packet according to forwarding information.
From the above, after operator boundary point provided by the invention is received QinQ form message, two layers of head of an analytic message and public network label, thus private network tags is carried out transparent transmission, the vlan information that makes the user has improved the fail safe of user network to the VPLS network readezvous point.
Introduce virtual private LAN service communication provided by the invention system below, referring to Fig. 3.
As shown in Figure 3, system of the present invention comprises CE1 301, and CE3 302, and PE1 303, and PE3 304, and PE4 305, and PE2 306, and CE4 307, and CE2 308.Wherein, CE1 is user network 1a service, and CE2 is user network 1b service, user network 1 corresponding private network VLAN 200~300 wherein, corresponding public network VLAN3; CE3 is user network 2a service, and CE4 is user network 2b service, user network 2 corresponding private network VLAN 400~500 wherein, corresponding public network VLAN 4; CE1 is connected with PE1 with CE3, link service provider's network, and CE2 is connected with PE2 with CE4, also link service provider's network; PE1 is connected with PE3, inserts the VPLS network, and PE2 is connected with PE4, inserts the VPLS network; PE3 and PE4 belong to the VPLS network, connect by tseudo circuit PW (Pseudo Wire) between them, be used for different local user network emulation are become a local area network (LAN), what PW adopted usually is the MPLS tunnel, also can adopt other tunnel, present embodiment adopts the MPLS tunnel, adopts which kind of tunnel and how to set up the tunnel not in VPLS considers category, also can not influence realization of the present invention; And PE3 and PE4 carried out following configuration:, connection attribute is configured to the trunk symmetry connects with each user network and corresponding vlan number correspondence thereof.User network 1a and 1b, user network 2a and 2b are to use symmetric mode to insert QinQ, and symmetric mode is meant that the user vlan that need communicate by letter at QinQ network two ends is symmetrical mutually, belongs to a scope, and this also is a kind of common networking mode in actual applications.
To communicate with the user of VLAN 200 among the user network 1b with the user of VLAN 200 among the user network 1a below and be example, introduce the working method of system of the present invention:
The present invention only improves the VPLS network, the description so CE1 and PE1 put together, and in actual applications, CE1 also can directly be connected with PE3, and PE1 can save; If among the user network 1a certain user of VLAN200 need with certain telex network among the user network 1b; CE1 adds private network TAG (VLAN 200) between the message payload that communicates by letter and two layers of head; and the interpolation of public network TAG (VLAN3) can be handled by CE1; also can handle by PE1; when in networking, not having PE1; then all be to add by CE1; no matter whose interpolation not influence realization of the present invention by; so the present invention does not limit whom adds public network TAG by, is that QinQ form as shown in table 2 all should be in protection scope of the present invention as long as be sent to the message of PE3.
Table 2QinQ form message
Two layers of head Public network TAG (vlan 3) Private network TAG (vlan 200) Message payload
After PE3 receives message, this message is resolved, only resolve two layers of head and public network TAG part, do not resolve and regard private network TAG and message payload as virtual payload, at PE3, the form of this message is as shown in table 3 in fact:
The handled message format of table 3PE3
Two layers of head Public network TAG (vlan 3) Virtual payload
What PE3 learnt in VPLS transmits like this is exactly: message source MAC+ public network TAG+ source port information, these information in transmitting, the MAC of self maintained are increased a record, wherein message source MAC is a MAC Address of initiating the user of communication, port when source port is the message input, MAC and port information are two layers of data in the head; At this moment PE3 no longer is concerned about private network TAG, and private network TAG and message payload are carried out transparent transmission, according to public network TAG, this message is transmitted to PE4; Need here to determine that PE4 is because in the VPLS network, generally all have a plurality of PE to be connected to each other, so need determine to PE4; After PE4 receives this message, the same with PE3 two layers of head and public network TAG are resolved, and, this message is transmitted to PE2 according to public network TAG.
After PE2 receives message, resolve public network TAG, determining needs this message is transmitted to CE2, and whether PE2 can peel off public network TAG and send to CE2 again this moment, also can public network TAG not peeled off and directly send to CE2, peel off and depend on network configuration; After CE2 receives message, resolve private network TAG, need to determine the user of forwarding, will all peel off except that the information two layers of head and the message payload then, the message after will peeling off is again issued corresponding user.
From the above, the present invention is in the VPLS network, and PE only resolves public network TAG, private network TAG then with message payload transparent transmission together, like this, user's private network vlan information is transparent to the VPLS network, has improved the fail safe of user network.
Above system of the present invention is realized that the message forwarding is described, and describes below the process that broadcasting is handled:
The condition that broadcasting takes place has following several: when needs are transmitted message, in transmitting, MAC can not find corresponding M AC address, need broadcast this message, when the target MAC (Media Access Control) address that also has message is special broadcasting or multicast mac address, also need message is broadcasted; Same user with VLAN 200 among the user network 1a will communicate with the user of VLAN 200 among the user network 1b and be example:
The processing of CE1 and PE1 is the same with the processing that E-Packets, here repeat no more, PE3 is to packet parsing the time, also only be resolved to public network TAG part, and private network TAG and message payload are not resolved, PE3 analyzes and determines and need broadcast this message, just this message satisfies the condition of broadcasting, this moment is because only resolve public network TAG, so the duplicating of message also just carried out at different public network TAG, at PE3, this moment user network 1a, 1b, 2a and 2b are four users, so message also only need duplicate 3 parts, almost can ignore for compared to existing technology 399 parts, when this broadcasting packet arrives user network 2a and 2b, be not dropped because there being corresponding private network TAG, in user network 1b, being duplicated 100 parts by CE2 again broadcasts in user network 1b, final arrival user, this broadcasting process is carried out in user network, is transparent with respect to the VPLS network.
From the above, when message is broadcasted processing, in the VPLS network, PE only needs duplicate network quantity to subtract a message, the number of users of relative prior art subtracts one and will lack a lot, and the broadcast data of propagating in the VPLS network is considerably less like this, has improved utilization rate of network resource greatly, PE also need not duplicate many unnecessary messages simultaneously, has improved the ability of handling other affairs.
Introduce method provided by the invention below, referring to Fig. 4, the core concept of the inventive method is:
The user node of the user network of step 401, the service of symmetrical access of virtual private local area network sends QinQ form message to the inlet operator boundary point, after the inlet operator boundary point is received described message, and two layers of head of analytic message and public network label;
The message that receives can be that the source user boundary node directly is sent to the inlet operator boundary point, also can be sent to the inlet operator boundary point by other operator boundary point by the inlet operator boundary point;
Step 402, in self medium access control MAC transmits, increase the forwarding information of correspondence, message is forwarded to exit operator boundary point according to two layers of head of resolving and public network label;
The forwarding information that increases in MAC transmits comprises source MAC, public network TAG and source port, after receiving message once more,, then directly this message is forwarded from the port that this record write down if target MAC (Media Access Control) address that message carries and public network TAG coincide with this record;
After step 403, exit operator boundary point are received message, two layers of head of analytic message and public network label, corresponding forwarding information in transmitting according to self MAC is forwarded to corresponding user's boundary node with this message;
The inlet operator boundary point also can be used as exit operator boundary point, and who receives the outer message of VPLS network just as the inlet operator boundary point;
Step 404, user's boundary node are resolved private network tags and are determined the user, and message is sent to the user.
From as can be seen last, adopt method provided by the invention, in the VPLS network, PE only is resolved to the public network TAG of message, and private network TAG is not resolved, and user's private network vlan information is transparent with respect to the VPLS network, has improved the fail safe of user network.
Referring to Fig. 5, Fig. 5 is the particular flow sheet of the inventive method first embodiment, and what present embodiment was described is the detailed process that message is transmitted, and present embodiment is realized in the described system of Fig. 2.
Step 500, CE1 and CE2 symmetry insert the VPLS network, and CE3 and CE4 symmetry insert the VPLS network; The port arrangement of the PE of VPLS network is the trunk attribute, and is configured to the symmetry connection;
Step 501, CE1 add private network TAG (VLAN 300) and are sent to PE1 to message;
Step 502, PE1 add public network TAG (VLAN 3) and are sent to PE3 to message;
The process that adds public network TAG herein also can be handled by CE1, if handled by CE1, PE1 only plays a logical effect that passes in the message transport process, message is left intact; Whom adds public network TAG by does not influence realization of the present invention, so the present invention does not limit whom adds public network TAG by;
After step 503, PE3 receive message, judge that this message is the QinQ form, symmetry connects and to come into force, and resolves the two layers of head and the public network TAG of this message;
Connect because the port arrangement of PE is a symmetry, and what insert is the message of QinQ form that PE resolves this message according to the rule that presets, and only is resolved to public network TAG, and to the part that private network TAG regards message payload as, does not resolve; The rule that presets disposes in system, specifically can add a symmetry and insert sign in interface, be about to counterpart and be configured to the symmetry connection, when QinQ form message sent by this interface like this, this sign was just effectively just only resolved two layers of head and public network TAG when PE resolves; Wherein, active MAC in two layers of head, information such as purpose MAC;
Step 504, PE3 increase the record of this message MAC correspondence in MAC transmits, and according to public network TAG (VLAN 3) this message will be sent to PE4;
The record that increases in MAC transmits is a message source MAC+ public network TAG+ source port information, when message is come, can find corresponding record in MAC transmits like this, directly according to this record message is transmitted;
After step 505, PE4 receive message, parse the public network TAG (VLAN 3) of this message, and this message is transmitted to PE2 according to public network TAG (VLAN 3);
Step 506, PE2 peel off the public network TAG (VLAN 3) of this message, and the message that will peel off behind the public network TAG sends to CE2;
This is peeled off also and can be gone to handle by CE2, if handled by CE2, PE2 will be left intact to message, and only play a logical effect that passes, and peeling off by whom of public network TAG do not influence realization of the present invention, so the present invention does not limit whom is peeled off public network TAG by;
After step 507, CE2 receive message, peel off the private network TAG (VLAN 300) of this message, and, this message is transmitted to the targeted customer according to the target MAC (Media Access Control) address of two layers of head.
From the above; the inventive method allows the user network symmetry insert the VPLS network; and PE in the VPLS network is configured, on its interface, increase symmetry and insert sign, when receiving QinQ form message; this sign effectively; PE only is resolved to public network TAG to the QinQ message of receiving, and private network TAG and message payload are carried out transparent transmission together, makes user private network vlan information transparent transmission in the VPLS network; well protected user's private network vlan information, thus the fail safe that has improved user network.
Referring to Fig. 6, Fig. 6 is the particular flow sheet of the inventive method second embodiment, and present embodiment is the processing procedure of time broadcasting of E-Packeting.
Step 601, CE1 and CE2 symmetry insert the VPLS network, and CE3 and CE4 symmetry insert the VPLS network; The port arrangement of VPLS network PE is the trunk attribute, and is configured to the symmetry connection;
Step 602, CE1 add private network TAG (VLAN 300) and public network TAG (VLAN 3) and are sent to PE1 to message;
Present embodiment, private network TAG and public network TAG are added by CE1, and PE1 and PE2 just only play a logical effect that passes;
Step 603, PE1 are transmitted to PE3 with this message;
Because public network TAG adds, what PE1 will do just just sends to this message the PE in the VPLS network;
After step 604, PE3 receive message, judge that this message meets the condition of broadcasting;
Under following several situations, message all can be as broadcast transmission: can not find corresponding M AC address in MAC transmits, need broadcast this message, when the target MAC (Media Access Control) address that also has message is special broadcasting or multicast mac address, also need message is broadcasted;
Step 605, PE3 subtract quantity part of one with this message duplicate network quantity, and all insert the user network of this VPLS network with message is sent to except that the source user network;
It is in order to make each network can both receive this message that duplicate network quantity subtracts quantity part of one;
After step 606, CE3 and CE4 receive this message, judge that private network TAG and present networks do not match, and abandon this message; After CE2 receives this message, judge private network TAG coupling;
User's boundary node can be distributed message to corresponding user according to TAG, and CE3 and CE4 can't find corresponding user from the TAG that message carries, and this moment, the private network TAG of two ends communication user can be inconsistent, so will be with this packet loss; CE2 judges that the private network TAG receive message is consistent with the private network TAG of corresponding user network 1b, then can broadcast this message in user network 1b;
After step 607, CE2 peel off the public network TAG and private network TAG of this message,, and this message is sent to each user in this network with the quantity of this message duplicate network number of users.
In the inventive method second embodiment, when in the VPLS network, needing message broadcasted, PE only need duplicate a message for each user network except that the source user network, alleviated the processing burden of PE greatly, also reduce simultaneously the flow of broadcast data in the VPLS, improved the network resource utilization when broadcasting is handled.
Referring to Fig. 7, Fig. 7 is the particular flow sheet of the inventive method the 3rd embodiment.
User network the one CE of step 701, the symmetrical VPLS of access network adds two-layer TAG for the message that needs to transmit, and the message behind the interpolation TAG is sent to VPLS Web portal PE;
The two-layer TAG that adds is this message sender's the private network TAG and the public network TAG of this user network correspondence; Message behind the interpolation message can directly send to the VPLS network PE, also can be transmitted to the VPLS network PE by the PE in the service provider network;
After step 702, VPLS Web portal PE receive message, judge whether symmetry inserts flag bit effective, if, enter step 703, if not, process ends;
It is to configure on the QinQ of PE equipment agreement access interface in advance that symmetry inserts flag bit, enter PE equipment by this port, and be to insert QinQ protocol massages that VPLS network C E sends by symmetry all can to trigger this flag bit effective, if this flag bit is invalid, this message or be not the QinQ form, the user network that is exactly asymmetric access VPLS network sends, and both of these case does not belong to limit of consideration of the present invention;
Step 703, entry PE are resolved the two layers of head and the public network TAG of this message, judge whether broadcasting packet of this message, if enter step 704; If not, enter step 707;
Whether, according to purpose MAC in two layer head be broadcasting MAC Address or multicast mac address judge, perhaps the situation that other can't unique definite targeted customer in these cases, all needs message is broadcasted if judging whether to be broadcasting packet;
Step 704, entry PE are duplicated a this message for each user network of all the access VPLS networks except that the source user network, and are sent to each user network;
For all duplicating, each user network can guarantee that message can not leak biography, and simultaneously because just duplicate portion for each user network, so the quantity that need duplicate can be not too many, reduced the message amount that PE need duplicate, also improved utilization rate of network resource simultaneously;
After step 705, user network CE receive message, judge whether the private network TAG of message is consistent with the private network TAG of user network, if not, process ends is if enter step 706;
If this message of the inconsistent explanation of private network TAG is not to be sent to this network, directly abandon this message;
Step 706, CE peel off the two-layer TAG in the message, and the message after will peeling off is broadcasted in user network; Process ends;
In user network,, after the user receives message, judge according to the information in two layers of head whether this message sends to oneself for each user duplicates a message, if, do corresponding response action, finish this time communication;
Step 707, entry PE increase a record in the MAC that safeguards transmits, and according to public network TAG message are transmitted to corresponding VPLS network egress PE;
The list item record that increases comprises message source MAC, public network TAG and source port, like this when needs E-Packet outside the VPLS network, can where send according to the very fast orientation really of the content in transmitting, in general there is message source MAC just can determine, but in order to prevent that MAC Address from repeating, so also need public network TAG further to judge, because be that the user who does not have identical MAC Address communicates by letter simultaneously in same network;
After step 708, outlet PE are received message, resolve two layers of head and public network TAG, judge whether MAC has the MAC of corresponding message and the forwarding record of public network TAG in transmitting, if enter step 709; If not, enter step 711;
Step 709, directly this message is forwarded to user network CE according to forwarding information;
Step 710, user network CE are sent to the user with this message; Process ends;
Step 711, this message is sent to user network CE as broadcasting packet;
Step 712, user network CE broadcast this message in network of living in.
From as can be seen last, the inventive method is only resolved the two layers of head and the public network TAG of QinQ message, makes user's private network TAG information transparent in the VPLS network, the fail safe that has improved user network; When broadcasting, only need reduce the data bulk that PE need handle simultaneously, also improve utilization rate of network resource simultaneously for a message of each network copy.
More than operator boundary point provided by the present invention, virtual special local area network communication for service method and system are described in detail, used specific case herein principle of the present invention and execution mode are set forth, the explanation of above embodiment just is used for helping to understand method of the present invention and core concept thereof; Simultaneously, for one of ordinary skill in the art, according to thought of the present invention, the part that all can change in specific embodiments and applications, in sum, this description should not be construed as limitation of the present invention.

Claims (11)

1, a kind of virtual special local area network communication for service method is characterized in that, comprising:
The user node of the user network of symmetry access of virtual private local area network service sends two label QinQ form messages to the inlet operator boundary point, after the inlet operator boundary point is received described message, two layers of head of analytic message and public network label, the connection attribute of described inlet operator boundary point are configured to the trunk symmetry and connect;
If this message is not a broadcasting packet,, message is forwarded to exit operator boundary point according to two layers of head of resolving and the public network label corresponding forwarding information of increase in self medium access control MAC transmits;
After exit operator boundary point is received message, two layers of head of analytic message and public network label, transmit middle corresponding forwarding information according to self MAC, this message is forwarded to the respective user boundary node, the connection attribute of described exit operator boundary point is configured to the trunk symmetry and connects;
User's boundary node is resolved private network tags and is determined the user, and message is sent to the user.
2, virtual special local area network communication for service method as claimed in claim 1 is characterized in that, further comprises after the inlet operator boundary point is received message:
Judge whether the symmetry that presets inserts flag bit effective, if enter the step of resolving two layers of head and public network label.
3, virtual special local area network communication for service method as claimed in claim 1 is characterized in that, exit operator boundary point further comprises after resolving two layers of head and public network label:
Judge whether self MAC has corresponding forwarding information in transmitting, if, enter according to self MAC and transmit middle corresponding forwarding information, this message is forwarded to the step of corresponding user's boundary node; If not, this message is sent to corresponding user's boundary node as broadcasting packet, user's boundary node is this message of broadcasting in self residing user network.
4, the method for virtual special local area network communication for service as claimed in claim 1 is characterized in that, described forwarding information comprises source MAC, public network label and source port.
5, a kind of virtual special local area network communication for service method is characterized in that, comprising:
The user node of the user network of symmetry access of virtual private local area network service sends QinQ form message to the inlet operator boundary point, after the inlet operator boundary point is received described message, two layers of head of analytic message and public network label, the connection attribute of described inlet operator boundary point are configured to the trunk symmetry and connect;
Judge that according to the result who resolves this message is a broadcasting packet, for all user networks except that this message sender user network of living in duplicate this message;
The message that duplicates is sent to corresponding user's boundary node, and user's boundary node is broadcasted this message at its user network of living in.
6, virtual special local area network communication for service method as claimed in claim 5 is characterized in that, the message that duplicates further comprises after being sent to corresponding user's boundary node:
User's boundary node judges whether the private network tags of the message that receives is consistent with the private network tags of network of living in, if enter the step of broadcasting this message at user network.
7, a kind of operator boundary point is used for virtual private LAN service network, it is characterized in that, the connection attribute of described operator boundary point is configured to the trunk symmetry and connects, and described node comprises:
The message receiving element is used to receive QinQ form message;
The packet parsing unit is used to resolve the two layers of head and the public network label of described message;
Forwarding information increases the unit, is used for transmitting the increase forwarding information at its MAC that safeguards when described message is sent to described message receiving element by the virtual private LAN service network exterior node, and described forwarding information is resolved by the packet parsing unit;
Forwarding information is searched the unit, be used for when described message is sent to described message receiving element by the virtual private LAN service network interior nodes, in described MAC transmits, search described message forwarding information according to the two layers of head and the public network label of packet parsing unit resolves;
Message retransmission unit in the net is used for according to the public network label of packet parsing unit resolves message being transmitted to operator boundary point in the network;
Net outer message retransmission unit, be used for searching the forwarding information of searching the unit and E-Packet according to forwarding information.
8, a kind of virtual special local area network communication for service system is characterized in that this system comprises: the inlet operator boundary point, and exit operator boundary point, user's boundary node, wherein:
The inlet operator boundary point is used to receive QinQ form message, two layers of head of message and public network label are resolved, increase forwarding information in the MAC of self maintained transmits, and this message is transmitted, the connection attribute of described inlet operator boundary point is configured to the trunk symmetry and connects;
Exit operator boundary point is used to receive the message that the inlet operator boundary point sends, two layers of head of message and public network label are resolved, and in transmitting, searches the MAC of self maintained corresponding forwarding information according to analysis result, according to forwarding information message is transmitted, the connection attribute of described exit operator boundary point is configured to the trunk symmetry and connects;
User's boundary node is used to receive the message that outlet service provider boundary node sends, and the private network tags of message is resolved, and according to private network tags message is transmitted to the user.
9, virtual special local area network communication for service as claimed in claim 8 system, it is characterized in that, the inlet operator boundary point is used to also judge whether the message of receiving is broadcasting packet, if broadcasting packet also will duplicate a message for each the user's boundary node except that the source user boundary node;
User's boundary node also is used for broadcasting described message at self user network of living in after receiving described broadcasting packet.
10, virtual special local area network communication for service as claimed in claim 9 system, it is characterized in that, described user's boundary node is used to also judge whether the private network tags of described message is consistent with the private network tags of network of living in, if, broadcast this message at self user network of living in, if not, abandon this message.
11, virtual special local area network communication for service as claimed in claim 8 system is characterized in that exit operator boundary point is used for also judging that MAC transmits the message forwarding information that receives whether to some extent, if not, also is used for message is broadcasted.
CNB2006101271415A 2006-09-05 2006-09-05 Operator's boundary notes, virtual special LAN service communication method and system Expired - Fee Related CN100531138C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNB2006101271415A CN100531138C (en) 2006-09-05 2006-09-05 Operator's boundary notes, virtual special LAN service communication method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB2006101271415A CN100531138C (en) 2006-09-05 2006-09-05 Operator's boundary notes, virtual special LAN service communication method and system

Publications (2)

Publication Number Publication Date
CN1929444A CN1929444A (en) 2007-03-14
CN100531138C true CN100531138C (en) 2009-08-19

Family

ID=37859233

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB2006101271415A Expired - Fee Related CN100531138C (en) 2006-09-05 2006-09-05 Operator's boundary notes, virtual special LAN service communication method and system

Country Status (1)

Country Link
CN (1) CN100531138C (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101170514B (en) * 2007-12-04 2010-06-02 华为技术有限公司 Method and device for access control between access circuit interfaces
CN101340349B (en) * 2008-08-07 2011-04-20 中兴通讯股份有限公司 Method for implementing horizontal split
CN101662426B (en) * 2009-09-30 2012-06-13 中兴通讯股份有限公司 T-MPLS tunnel protection processing method and system thereof
CN102148811B (en) * 2010-02-10 2015-01-28 中兴通讯股份有限公司 Flexible QinQ realization method and device
CN101860490B (en) * 2010-06-12 2015-01-28 中兴通讯股份有限公司 Method for communicating packet transport network (PTN) with double-layer Ethernet and system thereof
CN102347889B (en) * 2010-08-04 2014-08-13 杭州华三通信技术有限公司 Message forwarding method, system and device in H-VPLS (Hierarchical Virtual Private local area network service)
CN102164091B (en) * 2011-05-13 2015-01-21 北京星网锐捷网络技术有限公司 Method for building MAC (Media Access Control) address table and provider edge device
CN103036710B (en) * 2012-12-03 2016-03-30 杭州华三通信技术有限公司 A kind of method and edge device obtaining the geographical location information of website
CN103532848B (en) * 2013-10-25 2017-02-08 迈普通信技术股份有限公司 virtual private local area network service message processing method and system
CN103888356B (en) * 2014-04-12 2018-03-02 湖南省通信建设有限公司 VPLS realization method, system and provider edge
CN113810259A (en) * 2020-06-11 2021-12-17 中兴通讯股份有限公司 Message processing method, provider edge device and computer readable medium
CN112565050A (en) * 2020-11-28 2021-03-26 国网宁夏电力有限公司 Inter-station communication method and system for stable device

Also Published As

Publication number Publication date
CN1929444A (en) 2007-03-14

Similar Documents

Publication Publication Date Title
CN100531138C (en) Operator's boundary notes, virtual special LAN service communication method and system
CN102035729B (en) Multicast data forwarding method
CN101616014B (en) Method for realizing cross-virtual private local area network multicast
CN101160902B (en) Data forwarding method and switching arrangement
CN101616082B (en) Method for message processing in VPLS service network and device
CN101674249B (en) Method for forwarding provider backbone bridge (PBB) traffic and device thereof
CN101155130B (en) Method for learning MAC address and system and equipment for conveying VPLS client data
US10033539B1 (en) Replicating multicast state information between multi-homed EVPN routing devices
CN102413060B (en) User private line communication method and equipment used in VPLS (Virtual Private LAN (Local Area Network) Service) network
JP2003032287A (en) Method and apparatus for connecting networks, and system using the apparatus
CN102868614A (en) Packet forwarding method in TRILL (transparent interconnection of lots of links) network and routing bridge
US9112711B2 (en) Optimizing OTV multicast traffic flow for site local receivers
CN102932499A (en) Method and device for learning media access control (MAC) addresses in virtual private lan service (VPLS) networks
CN102098202B (en) Virtual private topology control method, device and system
CN102957616A (en) Method and system for transferring TRILL (transparent interconnection of lots of links) network messages in an ASIC(application specific integrated circuit )
CN103326918A (en) Message forwarding method and message forwarding equipment
CN102143026A (en) Method for avoiding loop circuit in virtual layer 2 network
CN103326940A (en) Method for forwarding message in network and edge device of operator
CN102404179B (en) Method and device for processing message
WO2013139270A1 (en) Method, device, and system for implementing layer3 virtual private network
WO2021093463A1 (en) Packet forwarding method, first network device, and first device group
CN100559772C (en) Mixed virtual private network system and backbone network edge apparatus and collocation method thereof
EP2897328B1 (en) Method, system and apparatus for establishing communication link
CN102064999B (en) Method and equipment for forwarding multicast message
CN104780090B (en) Method, apparatus, the PE equipment of VPN multicast transmissions

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20090819

Termination date: 20170905

CF01 Termination of patent right due to non-payment of annual fee