CN101286918A - Virtual private network system and data processing method thereof - Google Patents
Virtual private network system and data processing method thereof Download PDFInfo
- Publication number
- CN101286918A CN101286918A CNA200710065272XA CN200710065272A CN101286918A CN 101286918 A CN101286918 A CN 101286918A CN A200710065272X A CNA200710065272X A CN A200710065272XA CN 200710065272 A CN200710065272 A CN 200710065272A CN 101286918 A CN101286918 A CN 101286918A
- Authority
- CN
- China
- Prior art keywords
- vpn
- private network
- virtual private
- packet
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to a virtual private networking system and a data processing method thereof. The method comprises the steps as follows: a first service provider border router receives virtual private network identity sent by a second service provider border router in advance; the first service provider border router receives a first data packet and encapsulates the first data packet with an IP packet header; the virtual private network identity is added into the first data packet, and the data packet is sent to the second service provider border router; the second service provider border router receives the data packet and carries out route looking-up and transmitting according to the virtual private network identity. The system comprises the first service provider border router and the second service provider border router. By adopting the system and the data processing method of the invention, IP technology can be directly utilized to realize the virtual private network, which reduces the requirement for network equipment and operating costs.
Description
Technical field
The present invention relates to a kind of virtual private network system and data processing method thereof, be meant virtual private network system and data processing method thereof in the IP network especially.
Background technology
VPN (virtual private network) (Virtual Private Network, hereinafter to be referred as: VPN) technology is meant on a physical network and marks off a plurality of logical network by correlation technique, be isolated from each other between these logical network, invisible mutually, each user uses a logical network.So just set up a comparatively safe message reference passage for each user.
Present IP network use multi protocol label exchange (Multi-Protocol Label Switching, hereinafter to be referred as: MPLS) realize VPN.As shown in Figure 1, at first at first service supplier boundary router (the Provider Edge, hereinafter to be referred as: PE) and in the IP network under the 2nd PE enable the MPLS function, the mode of i.e. the 2nd PE employing hop-by-hop distributing labels is the label of distribution of flows from a PE to the two PE: the 2nd PE distributes a label A to give P2, P2 distributes a label B to give P1, and P1 distributes a label MPLSLabel1 to give a PE.Like this, when a PE sent data flow to the 2nd PE, a PE added MPLS Label1 to this data flow, sends to P1 then; After P1 receives the data flow of carrying MPLS Label1, again it is increased label B, send to P2 then; After P2 receives the data flow of carrying label B, again it is increased label A and sends to the 2nd PE.When MPLS VPN of suggestion between a PE to the two PE, for data flow from a PE to the two PE, at first the 2nd PE is a label MPLS of the MPLSVPN distribution of flows Label2 from a PE to the two PE, belongs to this VPN to represent this data flow.PE1 utilize Border Gateway Protocol (Border Gateway Protocol, hereinafter to be referred as: BGP) this label is sent to a PE.Belong to this VPN at a PE1 like this, and destination address is the data flow of the 2nd PE, when a PE sent to P1, carry two-layer MPLS label: the outermost layer label was MPLS Label1, is used for correctly arriving the 2nd PE from a PE; Vpn label is MPLS Label2, is used for identifying this packet at the 2nd PE and belongs to which VPN.
When IP network uses MPLS to realize VPN, must enable the MPLS function in the network,, and increase operation cost having relatively high expectations of the network equipment.
Summary of the invention
The objective of the invention is defective, a kind of virtual private network system and data processing method thereof are provided, thereby reduce requirement and minimizing operation cost the network equipment at prior art.
To achieve these goals, the invention provides a kind of VPN (virtual private network) data processing method, this method comprises the steps:
The first service supplier boundary router receives first packet, inquire about the virtual routing forwarding of this VPN (virtual private network) according to the VPN (virtual private network) under this first packet, in this virtual routing forwarding, determine the IP address of this second service supplier boundary router according to the purpose IP address of first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of this second service supplier boundary router, and adding VPN (virtual private network) sign, constitute second packet, this second packet is sent to this second service supplier boundary router.
After this second service supplier boundary router receives this second packet, according to the VPN (virtual private network) under definite this second packet of the sign of the VPN (virtual private network) in this second packet, and enter in this VPN (virtual private network) corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
Adopt said method realization VPN (virtual private network) need in network, not enable mpls protocol, therefore reduced requirement, reduced operation cost simultaneously, and on same system, can set up a plurality of VPN (virtual private network) simultaneously equipment in the network.
The invention allows for a kind of virtual private network system, this system comprises:
The first service supplier boundary router, be used for receiving in advance and preserving the VPN (virtual private network) sign that the second service supplier boundary router sends, receiving first packet and entering the virtual routing forwarding of this VPN (virtual private network) according to the VPN (virtual private network) under this first packet, in this virtual routing forwarding, determine the IP address of this second service supplier boundary router according to the purpose IP address of first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of this second service supplier boundary router, and, constitute second packet adding this VPN (virtual private network) sign;
The second service supplier boundary router, be connected with the described first service supplier boundary router network, be used for behind described second packet that receives described first service supplier boundary router transmission, according to the VPN (virtual private network) under definite this second packet of the sign of the VPN (virtual private network) in this second packet, and enter in this VPN (virtual private network) corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
Adopt said system to realize VPN (virtual private network), need not enable mpls protocol in system, reduced the requirement of equipment in the system and reduced operation cost, network configuration is simple, and on same system, can set up a plurality of VPN (virtual private network) simultaneously.
Description of drawings
Fig. 1 uses the multi protocol label exchange for existing IP network and realizes the structure chart of VPN;
Fig. 2 is the flow chart of a kind of VPN (virtual private network) data processing method of the present invention embodiment 1;
Fig. 3 is the flow chart of a kind of VPN (virtual private network) data processing method of the present invention embodiment 2;
Fig. 4 is the structure chart of a kind of virtual private network system of the present invention;
Fig. 5 is the structure chart of a kind of virtual private network system embodiment 1 of the present invention;
Fig. 6 is the structure chart of a kind of virtual private network system embodiment 2 of the present invention;
Fig. 7 is the structure chart of a kind of virtual private network system embodiment 3 of the present invention.
Embodiment
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
The invention provides a kind of method of VPN data processing method, comprise the steps:
The one PE receives first packet, can by first packet with parameter or by the VPN under first packet is judged in the definition of port in advance, virtual routing forwarding according to the inquiry of the VPN under this first packet VPN, in this virtual routing forwarding, determine the IP address of the 2nd PE according to the purpose IP address of first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of the 2nd PE, and in this first packet, add VPN ID, constitute second packet, and this second packet is sent to the 2nd PE;
After the 2nd PE receives this second packet, determine VPN under this second packet according to the VPN ID in this second packet, and enter in this VPN corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
At present the main IP tunnel tunneling that exists have the generalized routing protocol encapsulation (GenericRouting Encapsulation, hereinafter to be referred as: GRE), IPinIP etc.GRE has stipulated how to go to encapsulate another kind of agreement with a kind of procotol.GRE added a GRE packet header before raw data packets, add one deck agreement packet header then outside GRE packet header again, and outermost layer agreement packet header is used for transmitting at network.The IPinIP agreement has stipulated how to encapsulate another IPv4 packet header with a kind of IPv4 packet header.
Figure 2 shows that the flow chart of the method embodiment 1 of a kind of VPN data processing method of the present invention.VPN ID is written in the IP packet header among the embodiment 1, and the packaged type of packet just is similar to the packaged type of IPinIP in such PE.The work of VPN may further comprise the steps:
The 2nd PE utilizes bgp protocol to send VPN ID to a PE, and a PE receives and preserve the VPN ID that sends from the 2nd PE in advance;
The one PE receives first packet of sending from user side, and according to the VPN under first packet, first data envelope is loaded onto the IP packet header that purpose IP address is the IP address of the 2nd PE, in this IP packet header, add VPN ID, constitute second packet, and second packet sent in the network, other nodes in network are according in this IP packet header being that addressing is carried out in the order address of the IP address of the 2nd PE;
After the 2nd PE receives second packet, the 2nd PE is to the second packet decapsulation IP packet header, and determine VPN under second packet according to VPN ID, and enter in this VPN (virtual private network) corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
Figure 3 shows that the flow chart of the method embodiment 2 of a kind of VPN data processing method of the present invention.VPN ID is written into after the IP packet header among the embodiment 2, and the packaged type of packet just is similar to the packaged type of GRE in such PE.The work of VPN may further comprise the steps:
The 2nd PE utilizes bgp protocol to send VPN ID to a PE, and a PE receives and preserve the VPN ID that sends from the 2nd PE in advance;
The one PE receives first packet of sending from user side, and according to the VPN under first packet, first data envelope is loaded onto the IP packet header that purpose IP address is the IP address of the 2nd PE, behind the packaged IP packet header of first packet, add VPN ID, constitute second packet, and second packet sent in the network, other nodes in network are according in this IP packet header being that addressing is carried out in the order address of the IP address of the 2nd PE;
After the 2nd PE receives second packet, the 2nd PE is to the second packet decapsulation IP packet header and include packet header of VPN ID, and determine VPN under described second packet according to this VPN ID, enter in the VPN corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
In the above-described embodiments, VPN ID is written into and still is written in the IP packet header between IP packet header and the packet, specifically be pre-configured, as being configured at a PE and the 2nd PE in advance, or determine according to the parameter that the 2nd PE carries in the VPN ID that a PE sends according to network.
When the PE in the various embodiments described above encapsulates packet header, be that this parameter can be carried at the 2nd PE in the purpose IP address of the IP address of the 2nd PE in the VPN ID that a PE transmits, also can realize by static configuration.The 2nd PE above-mentioned information can also be sent to Router Reflector (RouterRefector, hereinafter to be referred as: RR), RR is distributed to a PE with above-mentioned information.By adopting RR, can reach the linking number that reduces between each PE.
Adopt above method to realize VPN,, therefore reduced requirement, reduced operation cost simultaneously equipment in the network owing to need in network, not enable mpls protocol.And compare with present IP tunneling, on same system, can set up a plurality of VPN simultaneously.
Based on the method for above-mentioned VPN data processing method, the present invention also provides a kind of vpn system, and as shown in Figure 4, this system comprises a PE and the 2nd PE.
The one PE, be used for receiving in advance and preserving the VPN ID that the 2nd PE sends, receive first packet and inquiring about the virtual routing forwarding of this VPN according to the VPN under this first packet, in this virtual routing forwarding, determine the IP address of the 2nd PE according to the purpose IP address of first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of the 2nd PE, and in this first packet, add this VPN ID, constitute second packet;
The 2nd PE, be connected with a described PE network, be used for behind described second packet that receives described PE transmission, determine VPN under this second packet according to the VPN ID in this second packet, and enter in this VPN corresponding virtual route forwarding table and carry out route querying, transmit second packet according to this route searching result.
Figure 5 shows that the structure chart of the embodiment 1 of vpn system of the present invention.This system mainly comprises a PE1 and the 2nd PE2.The one PE1 specifically comprises: the receiver module 11 that is used to receive first packet; Be used for receiving in advance and preserve the memory module 14 of the VPN ID that the 2nd PE2 sends; Be connected with receiver module 11, be used for inquiring about the virtual routing forwarding of this VPN, in this virtual routing forwarding, determine the routing message searching module 12 of the IP address of the 2nd PE2 according to the purpose IP address of first packet according to the VPN under this first packet; Be connected with routing message searching module 12 and memory module 14, be used to generate purpose IP address and be IP packet header of IP address of the IP address E of the 2nd PE2, and in this IP packet header, add the IP packet header generation module 13 of the VPN ID that memory module 14 preserved; Be connected with an IP packet header generation module 13, be used for first data envelope is loaded onto the IP packet header that an IP packet header generation module 13 generates, constitute an IP packet header package module 15 of second packet; Be connected with an IP packet header package module 15, be used for an IP is sealed the sending module 16 that second packet of adorning after module 15 encapsulates sends to the 2nd PE2.The 2nd PE2 specifically comprises: the VPN ID sending module 21 that is used for sending to a PE1 VPN ID; Determine the VPN determination module 22 of VPN under second packet according to VPN ID; The IP packet header pop-up module 23 that is used for decapsulation outermost layer IP packet header; Be used for this VPN (virtual private network) corresponding virtual route forwarding table carry out route querying and according to this lookup result with searching and forwarding module 24 that this first packet is transmitted; VPN determination module 22, IP packet header pop-up module 23 and searching with forwarding module 24 is connected in turn.VPN ID is written in the IP packet header in this embodiment, and the packaged type of packet just is similar to the packaged type of IPinIP in such PE1.
Fig. 6 is the structure chart of the embodiment 2 of a kind of vpn system of the present invention.This system mainly comprises a PE1 and the 2nd PE2.The one PE1 specifically comprises again: the receiver module 11 that is used to receive first packet; Be used for receiving in advance and preserve the memory module 14 of the VPN ID that the 2nd PE2 sends; Be connected with receiver module 11, be used for inquiring about the virtual routing forwarding of this VPN, in this virtual routing forwarding, determine the routing message searching module 12 of the IP address of the 2nd PE2 according to the purpose IP address of first packet according to the VPN under this first packet; Be connected with routing message searching module 12, be used to generate the two IP packet header generation module 17 of purpose IP address for the IP packet header of the IP address of the 2nd PE2; Be connected with described the 2nd IP packet header generation module 17 and memory module 14, be used for first packet is encapsulated the IP packet header that VPN ID that memory module 14 preserved and the 2nd IP packet header generation module 17 generate successively, the 2nd IP that constitutes second packet seals dress module 18; Be connected with the 2nd IP packet header package module 18, be used for second packet after 18 encapsulation of the 2nd IP packet header package module is sent to the sending module 16 of the 2nd PE2.Identical with the 2nd PE2 among first embodiment, the 2nd PE2 also comprises: VPN ID sending module 21, IP packet header pop-up module 23, VPN (virtual private network) determination module 22 and search and forwarding module 24.But the annexation difference, this IP packet header pop-up module 23, VPN (virtual private network) determination module 22 and searching with forwarding module 24 is connected in turn.Different with embodiment 1, VPN ID is written between IP packet header and the packet among the embodiment 2, and the packaged type of packet just is similar to the packaged type of GRE in such PE1.
In embodiment 1 and embodiment 2, can static configuration be the purpose IP address of the IP address of the 2nd PE2, this can realize by increase the destination address configuration module in system, in embodiment 1, the destination address configuration module is connected with an IP packet header generation module, in embodiment 2, the destination address configuration module is connected with the 2nd IP packet header generation module.
Can also in system, increase RR, thereby become embodiments of the invention 3, as shown in Figure 7, RR in network with the VPN ID sending module of the memory module of a PE1 and the 2nd PE2 respectively network is connected, will send to a PE1 for the destination address of the IP address of the 2nd PE2 and the VPN ID of the 2nd PE transmission.
Adopt said system to realize VPN (virtual private network), need not enable mpls protocol in system, reduced the requirement of equipment in the system and reduced operation cost, network configuration is simple, and on same system, can set up a plurality of VPN (virtual private network) simultaneously.
It should be noted last that, above embodiment is only unrestricted in order to technical scheme of the present invention to be described, although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that, can make amendment or be equal to replacement technical scheme of the present invention, and not break away from the spirit and scope of technical solution of the present invention.
Claims (16)
1. a VPN (virtual private network) data processing method wherein, comprises the steps:
The first service supplier boundary router receives first packet, search the virtual routing forwarding of this VPN (virtual private network) according to the VPN (virtual private network) under this first packet, in this virtual routing forwarding, determine the IP address of the second service supplier boundary router according to the purpose IP address of this first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of this second service supplier boundary router, and add the VPN (virtual private network) sign, constitute second packet.
After this second service supplier boundary router receives this second packet, according to the VPN (virtual private network) under definite this second packet of the sign of the VPN (virtual private network) in this second packet, and in this VPN (virtual private network) corresponding virtual route forwarding table, carry out route querying, transmit this second packet according to this route searching result.
2. VPN (virtual private network) data processing method according to claim 1, wherein, the described first service supplier boundary router comprises that also the described second service supplier boundary router sends the step of VPN (virtual private network) sign to the described first service supplier boundary router before receiving first packet.
3. VPN (virtual private network) data processing method according to claim 1, wherein, described this VPN (virtual private network) sign that adds in this first packet is specially: add described VPN (virtual private network) sign in the packaged described IP packet header of described first packet.
4. VPN (virtual private network) data processing method according to claim 2, wherein, describedly identify according to the VPN (virtual private network) in this second packet, determine that the VPN (virtual private network) under this second packet is specially: the described second service supplier boundary router is to the described IP of described second packet decapsulation packet header, and determines VPN (virtual private network) under described second packet according to described VPN (virtual private network) sign.
5. VPN (virtual private network) data processing method according to claim 1, wherein, describedly in described first packet, add described VPN (virtual private network) sign and be specially: behind the packaged described IP packet header of described first packet, add described VPN (virtual private network) sign.
6. VPN (virtual private network) data processing method according to claim 4, wherein, describedly identify according to the VPN (virtual private network) in this second packet, determine that the VPN (virtual private network) under this second packet is specially: the described second service supplier boundary router is to the described second packet decapsulation described IP packet header and include the packet header that described VPN (virtual private network) identifies, and according to the VPN (virtual private network) under definite described second packet of described VPN (virtual private network) sign.
7. VPN (virtual private network) data processing method according to claim 1, wherein, in described first packet, add described VPN (virtual private network) sign and specifically be pre-configured or according to the parameter that the described second service supplier boundary router carries in the described VPN (virtual private network) sign that the described first service supplier boundary router sends, determine in the packet header after the described IP packet header that described VPN (virtual private network) sign adds in the packaged described IP packet header of described first packet or described first packet is packaged according to network.
8. according to the arbitrary described VPN (virtual private network) data processing method of claim 1-6, wherein, also comprise step by static configuration or the IP address by the described second service supplier boundary router of parameter configuration of the described second service supplier boundary router in the described VPN (virtual private network) sign that the described first service supplier boundary router transmits.
9. according to the arbitrary described VPN (virtual private network) data processing method of claim 1-6, wherein, also comprise the step that the IP address of the described second service supplier boundary router and described VPN (virtual private network) sign is sent to the described first service supplier boundary router by Router Reflector.
10. virtual private network system wherein, comprising:
The first service supplier boundary router, be used for receiving in advance and preserving the VPN (virtual private network) sign that the second service supplier boundary router sends, receiving first packet and inquiring about the virtual routing forwarding of this VPN (virtual private network) according to the VPN (virtual private network) under this first packet, in this virtual routing forwarding, determine the IP address of this second service supplier boundary router according to the purpose IP address of first packet, this first data envelope is loaded onto the IP packet header of purpose IP address for the IP address of this second service supplier boundary router, and, constitute second packet adding this VPN (virtual private network) sign;
The second service supplier boundary router, be connected with the described first service supplier boundary router network, be used for behind described second packet that receives described first service supplier boundary router transmission, according to the VPN (virtual private network) under definite this second packet of the sign of the VPN (virtual private network) in this second packet, and in this VPN (virtual private network) corresponding virtual route forwarding table, carry out route querying, transmit this second packet according to this route searching result.
11. virtual private network system according to claim 9, wherein, the described first service supplier boundary router specifically comprises:
Receiver module is used to receive described first packet;
Memory module is used for receiving in advance and preserving the VPN (virtual private network) sign that the described second service supplier boundary router sends;
Routing message searching module, be connected with described receiver module, be used for inquiring about the virtual routing forwarding of this VPN (virtual private network), in this virtual routing forwarding, determine the IP address of this second service supplier boundary router according to the purpose IP address of first packet according to the VPN (virtual private network) under this first packet;
The one IP packet header generation module, be connected with described judge module and memory module, be used to generate the IP packet header of described purpose IP address, and in this IP packet header, add the described VPN (virtual private network) sign that described memory module is preserved for the IP address of this second service supplier boundary router;
The one IP seals the dress module, is connected with a described IP packet header generation module, is used for the IP packet header with the above the IP packet header generation module generation of described first packet encapsulation, constitutes described second packet;
Sending module is connected with a described IP packet header package module, is used for described second packet after the described IP packet header package module encapsulation is sent to this second service supplier boundary router.
12. virtual private network system according to claim 9, wherein, the described first service supplier boundary router specifically comprises:
Receiver module is used to receive described first packet;
Memory module is used for receiving in advance and preserving the VPN (virtual private network) sign that the second service supplier boundary router sends;
Routing message searching module, be connected with described receiver module, be used for inquiring about the virtual routing forwarding of this VPN (virtual private network), in this virtual routing forwarding, determine the IP address of this second service supplier boundary router according to the purpose IP address of first packet according to the VPN (virtual private network) under this first packet;
The 2nd IP packet header generation module is connected with described first routing message searching module, is used to generate the IP packet header of described purpose IP address for the IP address of this second service supplier boundary router;
The 2nd IP seals the dress module, be connected with described the 2nd IP packet header generation module and memory module, be used for described first packet is encapsulated the IP packet header that described VPN (virtual private network) identifies and described the 2nd IP packet header generation module generates that the above memory module is preserved successively, constitute described second packet;
Sending module is connected with described the 2nd IP packet header package module, is used for described second packet after described the 2nd IP packet header package module encapsulation is sent to this second service supplier boundary router.
13. virtual private network system according to claim 10, wherein, the described second service supplier boundary router specifically comprises: VPN (virtual private network) identifies sending module, VPN (virtual private network) determination module, IP packet header pop-up module and searches and forwarding module; This VPN (virtual private network) sign sending module is used for sending the VPN (virtual private network) sign to described receiver module; This VPN (virtual private network) determination module is according to the VPN (virtual private network) under definite described second packet of described VPN (virtual private network) sign; This IP packet header pop-up module is used for the described IP of decapsulation packet header; This is searched with forwarding module and is used for carrying out route querying and according to this lookup result this first packet being transmitted at this VPN (virtual private network) corresponding virtual route forwarding table; This VPN (virtual private network) determination module, this IP packet header pop-up module and this are searched with forwarding module and are connected in turn.
14. virtual private network system according to claim 11, wherein, the described second service supplier boundary router specifically comprises: VPN (virtual private network) identifies sending module, IP packet header pop-up module, VPN (virtual private network) determination module and searches and forwarding module; This VPN (virtual private network) sign sending module is used for sending the VPN (virtual private network) sign to the described first service supplier boundary router; This IP packet header pop-up module is used for the described IP of decapsulation packet header; This VPN (virtual private network) determination module is according to the VPN (virtual private network) under definite described second packet of described VPN (virtual private network) sign; This forwarding and search module and be used for carrying out route querying and this first packet being transmitted according to this lookup result at this VPN (virtual private network) corresponding virtual route forwarding table; This IP packet header pop-up module, VPN (virtual private network) determination module and searching with forwarding module is connected in turn.
15., wherein, also comprise purpose IP address configuration module according to claim 10 or 11 described virtual private network systems, be connected with a described IP packet header generation module, be used for static configuration purpose IP address.
16., wherein, also comprise purpose IP address configuration module according to claim 12 or 13 described virtual private network systems, be connected with described the 2nd IP packet header generation module, be used for static configuration purpose IP address.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710065272XA CN101286918A (en) | 2007-04-09 | 2007-04-09 | Virtual private network system and data processing method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710065272XA CN101286918A (en) | 2007-04-09 | 2007-04-09 | Virtual private network system and data processing method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101286918A true CN101286918A (en) | 2008-10-15 |
Family
ID=40058896
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA200710065272XA Pending CN101286918A (en) | 2007-04-09 | 2007-04-09 | Virtual private network system and data processing method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101286918A (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101448051B (en) * | 2008-12-23 | 2011-04-20 | 杭州华三通信技术有限公司 | Voice calling method and edge device combined with virtual private network |
| CN101557337B (en) * | 2009-05-04 | 2012-08-29 | 成都市华为赛门铁克科技有限公司 | Network tunnel establishing method, data transmission method, communication system and relevant equipment |
| WO2015014167A1 (en) * | 2013-07-30 | 2015-02-05 | 中兴通讯股份有限公司 | Method for processing raw ip packet, and corresponding apparatus |
| CN105812221A (en) * | 2014-12-31 | 2016-07-27 | 华为技术有限公司 | Data transmission device and method in virtual extensible local area network |
| CN105847158A (en) * | 2015-01-30 | 2016-08-10 | 迈塔斯威士网络有限公司 | Processing route data |
| CN110391984A (en) * | 2019-07-26 | 2019-10-29 | 新华三大数据技术有限公司 | A kind of message forwarding method and device |
| CN111901239A (en) * | 2019-05-06 | 2020-11-06 | 中国移动通信集团湖南有限公司 | Communication method, system, device and storage medium based on virtual network |
-
2007
- 2007-04-09 CN CNA200710065272XA patent/CN101286918A/en active Pending
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101448051B (en) * | 2008-12-23 | 2011-04-20 | 杭州华三通信技术有限公司 | Voice calling method and edge device combined with virtual private network |
| CN101557337B (en) * | 2009-05-04 | 2012-08-29 | 成都市华为赛门铁克科技有限公司 | Network tunnel establishing method, data transmission method, communication system and relevant equipment |
| WO2015014167A1 (en) * | 2013-07-30 | 2015-02-05 | 中兴通讯股份有限公司 | Method for processing raw ip packet, and corresponding apparatus |
| US10164937B2 (en) | 2013-07-30 | 2018-12-25 | Shanghai Zhongxing Software Company Limited | Method for processing raw IP packet and device thereof |
| CN105812221A (en) * | 2014-12-31 | 2016-07-27 | 华为技术有限公司 | Data transmission device and method in virtual extensible local area network |
| CN105812221B (en) * | 2014-12-31 | 2019-07-12 | 华为技术有限公司 | The device and method of data transmission in virtual expansible Local Area Network |
| CN105847158A (en) * | 2015-01-30 | 2016-08-10 | 迈塔斯威士网络有限公司 | Processing route data |
| CN105847158B (en) * | 2015-01-30 | 2020-09-08 | 迈塔斯威士网络有限公司 | Method and system for processing routing data |
| CN111901239A (en) * | 2019-05-06 | 2020-11-06 | 中国移动通信集团湖南有限公司 | Communication method, system, device and storage medium based on virtual network |
| CN110391984A (en) * | 2019-07-26 | 2019-10-29 | 新华三大数据技术有限公司 | A kind of message forwarding method and device |
| CN110391984B (en) * | 2019-07-26 | 2022-01-25 | 新华三大数据技术有限公司 | Message forwarding method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11652913B2 (en) | Ethernet virtual private network using segment routing | |
| US10164838B2 (en) | Seamless segment routing | |
| JP4511532B2 (en) | Device for connection-oriented transfer in packet-switched communication networks | |
| EP2600573B1 (en) | Method for transmitting addresses correspondence relationship in second-layer protocol using link status routing | |
| US7756125B2 (en) | Method and arrangement for routing pseudo-wire encapsulated packets | |
| EP2014035B1 (en) | Ethernet vll spoke termination at an ip interface | |
| US8861547B2 (en) | Method, apparatus, and system for packet transmission | |
| CN109873760A (en) | Handle the method and apparatus of routing and the method and apparatus of data transmission | |
| EP2750329B1 (en) | Method and device for sending internet protocol packets | |
| CN102413060B (en) | User private line communication method and equipment used in VPLS (Virtual Private LAN (Local Area Network) Service) network | |
| US9749239B2 (en) | Transparent Rbridge | |
| WO2015165311A1 (en) | Method for transmitting data packet and provider edge device | |
| CN101110745A (en) | Method, device and system for engaging second layer network and third layer network | |
| CN104660508A (en) | Message forwarding method and device | |
| CN101160902A (en) | Data forwarding method and switching arrangement | |
| US20090135833A1 (en) | Ingress node and egress node with improved packet transfer rate on multi-protocol label switching (MPLS) network, and method of improving packet transfer rate in MPLS network system | |
| EP3188422A1 (en) | Traffic black holing avoidance and fast convergence for active-active pbb-evpn redundancy | |
| EP2087419B1 (en) | Supporting bgp based ip-vpn in a routed network | |
| CN101286918A (en) | Virtual private network system and data processing method thereof | |
| KR102245989B1 (en) | Redundancy Administrating Method for a Virtual Private Network and Network Switching Apparatus with the method implemented on it | |
| CN102469010B (en) | A kind of method and network equipment distributing MPLS label | |
| CN112822097A (en) | Message forwarding method, first network device and first device group | |
| CN114520762B (en) | BIERv6 message sending method and first network equipment | |
| EP3190752B1 (en) | Method, apparatus and medium for avoiding traffic flooding due to asymmetric mac learning and achieving predictable convergence for pbb-evpn active-active redundancy | |
| US9853881B2 (en) | Autonomous system border router (ASBR) advertising routes with a same forwarding label |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20081015 |