CN103685082A - Method and device for realizing virtual device on switchboard - Google Patents
Method and device for realizing virtual device on switchboard Download PDFInfo
- Publication number
- CN103685082A CN103685082A CN201210356094.7A CN201210356094A CN103685082A CN 103685082 A CN103685082 A CN 103685082A CN 201210356094 A CN201210356094 A CN 201210356094A CN 103685082 A CN103685082 A CN 103685082A
- Authority
- CN
- China
- Prior art keywords
- message
- port
- forwarding chip
- outbound
- layers
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method and device for realizing a virtual device on a switchboard. The scheme is that: configuring a double-layer meter for each forwarding chip in each VD of the switchboard; carrying a source port in a message when an external port of a forwarding chip receives the message and the message is forwarded through an internal port of the forwarding chip; judging whether the message belongs to the VD which the forwarding chip is in according to the source port of the message and the double-layer meter configured for the forwarding chip when the internal port of the forwarding chip receives the message,; and determining whether or not to filter an output port of the message according to the judgment result so that the message can only enter and exit from the same VD. The method and device for realizing the virtual device on the switchboard are capable of meeting demands of flow isolation among VDs of the switchboard so that application scenarios of the switchboard are expanded.
Description
Technical field
The application relates to communication technical field, particularly a kind of method and apparatus of realizing virtual unit (Virtual Device, VD) on switch.
Background technology
The network equipment is virtual can invent many skinny devices a large physical equipment, is also virtual unit.Each VD for user just as the skinny device of a platform independent, have own independent operating routing daemon, two or three layer protocols, forwarding-table item, interface, can add oneself user, can restart alone and read the configuration file of oneself.Resource between each VD can be carried out allocation manager by order, is independent of each other, and when the resource taking as VD surpasses the resource limitation distributing, can not seize other VD resource.
Equipment supports that after VD function, whole physical equipment is exactly a VD, is called default VD, when user logins physical equipment, actual log be exactly default VD.The configuration essence of user on physical equipment is exactly the configuration to default VD.Default VD is numbered 1, does not need to create, can not be deleted.The default VD of the right and wrong corresponding with default VD, the i.e. new VD creating on this physical equipment.
Product will be supported VD characteristic, need on same veneer, issue the configuration of a plurality of VD simultaneously, and come into force simultaneously; Concrete, the message entering from different port, according to port place VD, goes the configuration and the forwarding-table item that mate this VD to process.For router product, generally by CPU, NP etc., realize message repeating, can arrange flexibly by software mode, the difference configuration of each VD can coexist on same veneer, does not have conflict.And most switches is owing to restricted by chip, the configuration of different VD may conflict, L2_entry for example, and Fib etc., can not accomplish that the list item of conflict issues simultaneously, mate respectively.
In order to solve the configuration conflict problem of different VD, switch is divided VD port according to chip conventionally, all outside ports of regulation same chip only belong to a VD, when this VD becomes effective VD, on this chip, only issue configuration and the forwarding-table item relevant with this VD, can solve configuration conflict problem possible between different VD.In addition, realize by chip and divide VD port, also need to solve the problems such as flow isolation between VD, communication between plates, Mac address learning.
Summary of the invention
In order to achieve the above object, the object of the present invention is to provide a kind of method that realizes virtual unit on switch, the method can solve the demand of switch to VD characteristic, has expanded the application scenarios of switch.
In order to achieve the above object, the invention provides a kind of method that realizes virtual unit on switch, described switch be take forwarding chip as adding and exit the minimum unit of VD, and sets up the corresponding relation that has forwarding chip and VD; The method comprises:
According to the corresponding relation of forwarding chip and VD, be two layers of segregation table that in current VD, each forwarding chip is configured for the message of the non-current VD of isolation;
Current VD, when the outside port of the arbitrary forwarding chip of self receives message, determines the outbound port of message, to belonging to each outbound port of the outside port of this forwarding chip, from this outbound port, E-Packets; To not belonging to each outbound port of the outside port of this forwarding chip, the source port using the port that receives message as message is carried in message and the internal port by this forwarding chip E-Packets;
Current VD is when the internal port of the arbitrary forwarding chip of self receives the message that carries source port, determine the outbound port of message, according to the source port of message with for two layers of segregation table of this forwarding chip configuration, judge whether message belongs to current VD, if, from definite outbound port, E-Packet, otherwise, in the outbound port of filtering message, belonging to the outside port of this forwarding chip, outbound port remaining from filtering E-Packets.
The present invention also provides a kind of virtual unit VD, is applied to switch, and described switch be take forwarding chip as adding and exit the minimum unit of VD, and sets up the corresponding relation that has forwarding chip and VD; This VD comprises: dispensing unit, receiving element, processing unit, transmitting element;
Described dispensing unit, is configured for two layers of segregation table of the message of non-VD of isolation for the corresponding relation of the forwarding chip set up according to described switch and VD for each forwarding chip of this VD;
Described receiving element, for the outside port reception message of the arbitrary forwarding chip at this VD; Internal port for the arbitrary forwarding chip at this VD receives the message that carries source port;
Described processing unit, when the outside port of arbitrary forwarding chip of this VD receives message, determines the outbound port of message for receiving element, and to belonging to each outbound port of the outside port of this forwarding chip, notice transmitting element E-Packets from this outbound port; To not belonging to each outbound port of the outside port of this forwarding chip, the source port of notice transmitting element using the port that receives message as message is carried in message and the internal port by this forwarding chip E-Packets; While receiving for the internal port of arbitrary forwarding chip of this VD of receiving element the message that carries source port, determine the outbound port of message, according to the source port of message and dispensing unit, be that two layers of segregation table that this forwarding chip configures judge whether message belongs to this VD, if, notify transmitting element to E-Packet from definite outbound port, otherwise, in the outbound port of filtering message, belong to the outside port of this forwarding chip, and notify transmitting element remaining outbound port from filtering to E-Packet.
From technical scheme above, the present invention is by the two layers of segregation table of each forwarding chip configuration for each VD in switch and according to the port that receives message, be forwarding chip internal port or outside port are carried out different disposal flow process to message: the message receiving when the outside port at forwarding chip while E-Packeting from the internal port of forwarding chip carries source port in message; When the internal port at forwarding chip receives message, according to the source port of message and for two layers of segregation table of this forwarding chip configuration, judge whether message belongs to this forwarding chip place VD, according to judged result, determine the outbound port of message is filtered or do not filtered, and carry out accordingly message repeating, message can only be passed in and out from same VD.The present invention can meet the demand of switch to the flow isolation between VD, has expanded the application scenarios of switch.
Accompanying drawing explanation
Fig. 1 is the broadcasting packet handling process schematic diagram that the embodiment of the present invention realizes VD in switch;
Fig. 2 is the known unicast message handling process schematic diagram that the embodiment of the present invention realizes VD in switch;
Fig. 3 is the known multicast message handling process schematic diagram that the embodiment of the present invention realizes VD in switch;
Fig. 4 is the structural representation of the virtual unit that provides of the embodiment of the present invention.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearer, below in conjunction with the accompanying drawing embodiment that develops simultaneously, technical scheme of the present invention is elaborated.
In the present invention, for convenience of description, will on forwarding chip, for connecting the port of the network equipment beyond this forwarding chip place switch, be called the outside port of forwarding chip; The internal port of forwarding chip will be called for connecting the port of other forwarding chip of the switch at this forwarding chip place on forwarding chip; To on forwarding chip, for connecting the port of the CPU on this forwarding chip place veneer, be called cpu port.
In order to realize VD in switch, the present invention divides VD according to forwarding chip, take forwarding chip as adding and exit the minimum unit of VD, and set up the corresponding relation of forwarding chip and VD in switch; Each forwarding chip that is each VD according to the corresponding relation of forwarding chip and VD is configured for two layers of segregation table of the message of non-this VD of isolation; VD is when the outside port of the arbitrary forwarding chip of self receives message, if need to E-Packet other forwarding chip, the source port using the port that receives message as message is carried in message and the internal port by this forwarding chip forwards, by VD under the source port sign message of message; VD is when the internal port of the arbitrary forwarding chip of self receives the message that carries source port, according to the source port of message with for two layers of segregation table of this forwarding chip configuration, judge whether message belongs to this VD, when message does not belong to this VD, do not allow message to forward from the outside port of this forwarding chip, the message that makes non-this VD can not forward from the outside port of arbitrary forwarding chip of this VD, can realize two laminar flow amounts isolation between VD.
Above-mentioned have following two kinds according to the corresponding relation of forwarding chip and VD for the method for two layers of segregation table that each forwarding chip of each VD is configured for the message of non-this VD of isolation:
The first: two layers of segregation table that the outside port that does not belong to all forwarding chips of this VD are added to the outside port configuration of this forwarding chip.In this case, according to the source port of message with for two layers of segregation table of this forwarding chip configuration judges the method whether message belongs to this VD, be: if the source port of message is to be the outside port in two layers of segregation table configuring of this forwarding chip, can determine that message does not belong to this VD, otherwise, determine that message belongs to this VD.
The second: two layers of segregation table that the outside port that belongs to all forwarding chips of this VD are added to the outside port configuration of this forwarding chip.In this case, according to the source port of message with for two layers of segregation table of this forwarding chip configuration judges the method whether message belongs to this VD, be: if the source port of message is to be the outside port in two layers of segregation table configuring of this forwarding chip, determine that message belongs to this VD, otherwise, determine that message does not belong to this VD.
Above-mentioned message comprises broadcasting packet, unicast message (comprising known unicast message and unknown unicast message), multicast message (comprising known multicast message and unknown unicast message), message is different, and the handling process of VD is not identical yet, below in conjunction with Fig. 1, Fig. 2 and Fig. 3, describes respectively.
First the handling process of broadcasting packet is described:
In order to realize VD in switch, need to carry out two layers of isolation to the broadcasting packet between VD.The method of two layers of segregation table of each forwarding chip configuration of each VD for this reason, need to be configured for for each forwarding chip of each VD two layers of segregation table of message of non-this forwarding chip place VD of isolation, for can be any one of above-mentioned two kinds of collocation methods.In addition, because same VD can comprise a plurality of forwarding chips, from the outside port of one of them forwarding chip, enter the broadcasting packet of VD, need to forward from the outside port (except receiving port) of all forwarding chips of this VD, this just need to forward broadcasting packet across forwarding chip, in order to forward broadcasting packet across forwarding chip, the internal port of each forwarding chip in switch need to be added in the VLAN of all VD in switch, make the internal port of each forwarding chip can allow all broadcasting packets to pass through.Above-mentioned setting can be realized the two layer isolation of broadcasting packet between VD.
Referring to Fig. 1, Fig. 1 is the broadcasting packet handling process schematic diagram that the embodiment of the present invention realizes VD in switch, comprises the following steps:
The port of step 103, reception broadcasting packet is the outside port of this forwarding chip, search VLAN broadcast table and determine the outbound port of message, for each outbound port, if this outbound port is the outside port of this forwarding chip, from this outbound port, forward broadcasting packet, if this outbound port is the internal port of this forwarding chip, the source port using the outside port of reception broadcasting packet as broadcasting packet is carried in broadcasting packet and from this outbound port and forwards broadcasting packet.
The outbound port of the broadcasting packet receiving at the outside port of forwarding chip adds all of the port (except receiving port) of VLAN under broadcasting packet in comprising this forwarding chip, can be outside port and/or the internal port of this forwarding chip.Because the internal port of this forwarding chip has added in switch in the VLAN of all VD, all internal ports of forwarding chip are all outbound ports of broadcasting packet; In addition, on this forwarding chip, joining all outside ports of VLAN under broadcasting packet is also the outbound port of broadcasting packet.
For each outbound port of the outside port that belongs to this forwarding chip of broadcasting packet, only need forward broadcasting packet from this outbound port.Each outbound port for the internal port that belongs to this forwarding chip of broadcasting packet, need source port using the outside port that receives broadcasting packet as broadcasting packet with VD under identification of broadcast message, and forwarding broadcasting packet from this internal port, the neighbours' forwarding chip that makes to be connected on this internal port can receive and forward this broadcasting packet.
The port of step 104, reception broadcasting packet is the internal port of this forwarding chip, search VLAN broadcast table and determine the outbound port of broadcasting packet, according to the source port of broadcasting packet with for two layers of segregation table of this forwarding chip configuration, judge whether broadcasting packet belongs to VD under this forwarding chip, if, from each outbound port, forward broadcasting packet, otherwise, will in all outbound ports, belonging to the outside port filtering of this forwarding chip, each outbound port remaining from filtering forwards broadcasting packet.
The outbound port of the broadcasting packet receiving at the internal port of forwarding chip adds all of the port (except receiving port) of VLAN described in broadcasting packet in comprising this forwarding chip, can be outside port and/or the internal port of this forwarding chip.Because the internal port of this forwarding chip has added in switch in the VLAN of all VD, all internal ports of forwarding chip are all outbound ports of broadcasting packet; In addition, on this forwarding chip, joining all outside ports of VLAN under broadcasting packet is also the outbound port of broadcasting packet.
The broadcasting packet receiving at the internal port of forwarding chip carries source port.When belong to this forwarding chip according to the source port of broadcasting packet with for two layers of segregation tables judgement broadcasting packet of this forwarding chip configuration under during VD, permission forwards broadcasting packet from the outside port of this forwarding chip, therefore do not need the outbound port of broadcasting packet to filter, from all outbound ports, forward broadcasting packet.When do not belong to this forwarding chip according to the source port of broadcasting packet with for two layers of segregation tables judgement broadcasting packet of this forwarding chip configuration under during VD, do not allow to forward broadcasting packet from the outside port of this forwarding chip, therefore all outbound ports of broadcasting packet need to be belonged to the outside port filtering of this forwarding chip, all outbound ports remaining from filtering forward broadcasting packet.
From the embodiment of the present invention shown in Fig. 1, can find out, VD is when the outside port of the forwarding chip of self receives broadcasting packet, source port using the outside port that receives broadcasting packet as broadcasting packet carrys out VD under identification of broadcast message, while making other forwarding chips receive this broadcasting packet, can according to the source port of broadcasting packet and for two layers of segregation table of described other forwarding chips configuration judge broadcasting packet whether belong to described in VD under other forwarding chips, and then the outside port of selecting to filter the outside port of described other forwarding chips or not filtering described other forwarding chips according to judged result, so that message passes in and out from same VD, realize two layers of isolation of broadcasting packet between VD.It should be noted that, VD is identical with the handling process to broadcasting packet to the handling process of unknown unicast message, unknown multicast packets, can realize two layers of isolation of unknown unicast message and unknown multicast packets between VD, repeats no more.
In actual applications, when VD receives message when (comprising broadcasting packet, unknown unicast message and unknown multicast packets) at the internal port of the arbitrary forwarding chip of self, also need message to carry out MAC address learning.The message that VD receives at the internal port of the arbitrary forwarding chip of self, is divided into two kinds of situations according to VD under message:
One, message belongs to this forwarding chip place VD.In this case, need to carry out MAC address learning to message, the source MAC of study message, to the source port of message, generates MAC address entries corresponding to source MAC, to instruct the forwarding of the unicast message of follow-up this source MAC of target MAC (Media Access Control) address receiving.
Two, message does not belong to VD described in this forwarding chip.In this case, need to forbid message to carry out MAC address learning, to avoid the MAC address entries conflict of different VD and to reduce the MAC address entries number that each VD generates.
Secondly, the handling process of known unicast message is described:
In order to realize VD in switch, need to carry out to the known unicast message between VD two layers of isolation.The method of two layers of segregation table of each forwarding chip configuration of each VD for this reason, need to be configured for for each forwarding chip of each VD two layers of segregation table of message of non-this forwarding chip place VD of isolation, for can be any one of above-mentioned two kinds of collocation methods.In addition, because same VD can comprise a plurality of forwarding chips, from the outside port of one of them forwarding chip, enter the known unicast message of VD, may forward from the outside port of another forwarding chip of this VD, this just need to forward known unicast message across forwarding chip, in order to forward known unicast message across forwarding chip, the internal port of each forwarding chip in switch need to be added in the VLAN of all VD in switch, make the internal port of each forwarding chip can allow all known unicast messages to pass through.Above-mentioned setting can be realized the two layer isolation of known unicast message between VD.
Referring to Fig. 2, Fig. 2 is the known unicast message handling process schematic diagram that the embodiment of the present invention realizes VD in switch, comprises the following steps:
The outbound port of the known unicast message receiving at the outside port of forwarding chip can be other outside ports of this forwarding chip or with the outside port of other forwarding chip of VD, can transmit definite by searching MAC.When the outbound port of known unicast message is the outside port of this forwarding chip, can forward known unicast message from this outbound port.When the outbound port of known unicast message is the outside port of other forwarding chips, need to be carried in known unicast message by the source port using the outside port of known unicast message as known unicast message, in addition, also need the outbound port place forwarding chip of the outbound port of known unicast message, known unicast message as object outbound port, the object forwarding chip of known unicast message, to be carried in known unicast message respectively, then the internal port by this forwarding chip forwards known unicast message.
In actual applications, in forwarding chip, store chip and forward mapping table, comprising a plurality of chips, forward mapping item, chip forwards mapping item and comprises object forwarding chip information and internal port information, which while representing that forwarding chip need to forward the packet to object forwarding chip, need to forward from internal port of forwarding chip.
In this step, when determining that the outbound port of known unicast message is the outside port of other forwarding chip, need to forward the packet described other forwarding chip, this just need to determine described internal port corresponding to other forwarding chip by searching forwarding chip mapping table, thereby known unicast message is forwarded from this internal port, being connected to this internal port neighbours forwarding chip receives after this known unicast message, can be according to the source port carrying in known unicast message, object outbound port and object forwarding chip, carry out the outbound port of determining known unicast message, the operation such as VD and forwarding known unicast message under judgement known unicast message.
Here, the method that internal port by this forwarding chip forwards known unicast message is identical with the retransmission method in step 203, be all to search internal port corresponding to object forwarding chip that forwarding chip mapping table is determined known unicast message, then from this internal port, forward known unicast message.
The known unicast message receiving at the internal port of forwarding chip carries source port, object outbound port, object forwarding chip, and wherein, the object outbound port that known unicast message carries is the outbound port of known unicast message.Under the known unicast message receiving at forwarding chip belongs to this forwarding chip during VD, permission forwards known unicast message from the outside port of this forwarding chip, therefore do not need the outbound port of known unicast message to filter, from the outbound port of known unicast message, forward known unicast message.Under the known unicast message receiving at forwarding chip does not belong to this forwarding chip during VD, do not allow to forward known unicast message from the outside port of this forwarding chip, the outbound port of known unicast message need to be filtered, if the outbound port of known unicast message is the outside port of this forwarding chip, can be filtered, otherwise, can not be filtered.
From the embodiment of the present invention shown in Fig. 2, can find out, when the outbound port that VD receives known unicast message and known unicast message at the outside port of the forwarding chip of self is the outside port of other forwarding chip, the outside port of known unicast message will be received, the outbound port of known unicast message, the outbound port place forwarding chip of known unicast message is respectively as the source port of known unicast message, object outbound port, object forwarding chip is carried at message repeating, the forwarding chip that makes to receive this known unicast message can be according to the source port carrying in known unicast message, object outbound port and object forwarding chip, carry out the outbound port of determining known unicast message, the operation such as VD and forwarding known unicast message under judgement known unicast message, realize two layers of isolation of the known unicast message between VD.
In addition, VD is when the internal port of the arbitrary forwarding chip of self receives known unicast message, if known unicast message belongs to this forwarding chip place VD, also need known unicast message to carry out MAC address learning, refresh corresponding MAC address entries, if known unicast message does not belong to this forwarding chip place VD, also need to forbid known unicast message to carry out MAC address learning.
Finally, the handling process of known multicast message is described:
In order to realize VD in switch, need to carry out to the known multicast message between VD two layers of isolation.The method of two layers of segregation table of each forwarding chip configuration of each VD for this reason, need to be configured for for each forwarding chip of each VD two layers of segregation table of message of non-this forwarding chip place VD of isolation, for can be any one of above-mentioned two kinds of collocation methods.In addition, because same VD can comprise a plurality of forwarding chips, from the outside port of one of them forwarding chip, enter the known multicast message of VD, need to from the outside port of all forwarding chips of this VD, join all of the port (except receiving port) of multicast group under this known multicast message forwards, this just need to forward known multicast message across forwarding chip, in order to forward known multicast message across forwarding chip, the internal port of each forwarding chip in switch need to be joined in the outbound port list of multicast list corresponding to all multicast group, make the internal port of each forwarding chip can allow all known multicast messages to pass through.Above-mentioned setting can be realized the two layer isolation of known multicast message between VD.
Referring to Fig. 3, Fig. 3 is the known multicast message handling process schematic diagram that the embodiment of the present invention realizes VD in switch, comprises the following steps:
The outbound port of the known multicast message receiving at the outside port of forwarding chip adds all of the port (except receiving port) of multicast group under known multicast message in comprising this forwarding chip, can be outside port and/or the internal port of this forwarding chip.Because the internal port of this forwarding chip has joined in the outgoing interface list of multicast list corresponding to all multicast group, therefore, all internal ports of forwarding chip are all outbound ports of known multicast message; In addition, all outside ports that join the outgoing interface list of multicast list corresponding to multicast group under known multicast message on this forwarding chip are also the outbound ports of known multicast message.
For each outbound port of the outside port that belongs to this forwarding chip of known multicast message, only need forward known multicast message from this outbound port.Each outbound port for the internal port that belongs to this forwarding chip of known multicast message, need source port using the outside port that receives known multicast message as known multicast message to identify VD under known multicast message, and forwarding known multicast message from this internal port, the neighbours' forwarding chip that makes to be connected on this internal port can receive and forward this known multicast message.
The outbound port of the known multicast message receiving at the internal port of forwarding chip adds all of the port (except receiving port) of multicast group under known multicast message in comprising this forwarding chip, can be outside port and/or the internal port of this forwarding chip.Because the internal port of this forwarding chip has joined in the outgoing interface list of multicast list corresponding to all multicast group, therefore, all internal ports of forwarding chip are all outbound ports of known multicast message; In addition, all outside ports that join the outgoing interface list of multicast list corresponding to multicast group under known multicast message on this forwarding chip are also the outbound ports of known multicast message.
The known multicast message receiving at the internal port of forwarding chip carries source port.When judging that according to the source port of known multicast message with for two layers of segregation table of this forwarding chip configuration known multicast message belongs under this forwarding chip VD, permission forwards known multicast message from the outside port of this forwarding chip, therefore do not need the outbound port of known multicast message to filter, from all outbound ports, forward known multicast message.When judging that according to the source port of known multicast message with for two layers of segregation table of this forwarding chip configuration known multicast message does not belong under this forwarding chip VD, do not allow to forward known multicast message from the outside port of this forwarding chip, therefore all outbound ports of known multicast message need to be belonged to the outside port filtering of this forwarding chip, all outbound ports remaining from filtering forward known multicast message.
From the embodiment of the present invention shown in Fig. 1, can find out, VD is when the outside port of the forwarding chip of self receives known multicast message and forwards known multicast message from internal port, source port using the outside port that receives known multicast message as known multicast message identifies VD under known multicast message, while making other forwarding chips receive this known multicast message, can judge whether known multicast message belongs to VD under described other forwarding chips according to the source port of known multicast message with for two layers of segregation table of described other forwarding chips configuration, and then the outside port of selecting to filter the outside port of described other forwarding chips or not filtering described other forwarding chips according to judged result, so that known multicast message passes in and out from same VD, realize two layers of isolation of known multicast message between VD.
In addition, VD is when the internal port of the arbitrary forwarding chip of self receives known multicast message, if known multicast message belongs to this forwarding chip place VD, also need known multicast message to carry out MAC address learning, refresh corresponding MAC address entries, if known multicast message does not belong to this forwarding chip place VD, also need to forbid known multicast message to carry out MAC address learning.
The handling process of the broadcasting packet that the embodiment of the present invention shown in above-mentioned Fig. 1, Fig. 2, Fig. 3 receives at self arbitrary forwarding chip VD, known unicast message, known multicast message has been described in detail.In fact, VD is as a logical device, also can initiatively outwards send Radio Broadcasting Agreements message, the cpu port of arbitrary forwarding chip of the VD that Radio Broadcasting Agreements message is is initiatively generated and sent by CPU, and the outside port of final each forwarding chip via VD sends, and do not allow from the outside port of the forwarding chip of other VD to send, this just need to carry out two layers of isolation to the cpu port of each forwarding chip of each VD in switch and arrange.
The Radio Broadcasting Agreements message initiatively sending in order to distinguish each VD, can be in advance for each VD distributes a CPU source port.If adopting the first is the method for two layers of segregation table of forwarding chip configuration,, when the outside port that does not belong to all forwarding chips of this VD being added to two layers of segregation table of outside port configuration of this forwarding chip, also will be added to two layers of segregation table that this forwarding chip configures for the pre-assigned CPU source port of other each VD except this VD simultaneously.If adopting the second is the method for two layers of segregation table of forwarding chip configuration,, when the outside port that belongs to all forwarding chips of this VD being added to two layers of segregation table of outside port configuration of this forwarding chip, also will be added to for the pre-assigned CPU source port of this VD two layers of segregation table of this forwarding chip configuration simultaneously.
Like this, when VD is when the cpu port of the arbitrary forwarding chip of self receives Radio Broadcasting Agreements message, can search VLAN broadcast table and determine all outbound ports of message, for each outbound port, if this outbound port is the outside port of this forwarding chip, Radio Broadcasting Agreements message is forwarded from this outbound port, if this outbound port is the internal port of this forwarding chip, the source port using the CPU source port distributing for this VD in advance as Radio Broadcasting Agreements message is carried at Radio Broadcasting Agreements message with VD under identification of broadcast protocol massages, and forwards Radio Broadcasting Agreements message from this outbound port.
When VD is when the internal port of the arbitrary forwarding chip of self receives the Radio Broadcasting Agreements message that carries source port, can search VLAN broadcast table and determine all outbound ports of Radio Broadcasting Agreements message, and judge according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration whether Radio Broadcasting Agreements message belongs to this VD, if, from all outbound ports, forward Radio Broadcasting Agreements message, otherwise, the outside port that belongs to this forwarding chip in all outbound ports is filtered, and all outbound ports from filtering forward Radio Broadcasting Agreements message.
Wherein, when adopting the first to be the method for two layers of segregation table of forwarding chip configuration, according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration judges the method whether Radio Broadcasting Agreements message belongs to this VD, be: if the source port of Radio Broadcasting Agreements message is to be the CPU source port in two layers of segregation table configuring of this forwarding chip, determine that Radio Broadcasting Agreements message does not belong to this VD, otherwise, determine that Radio Broadcasting Agreements message belongs to this VD;
When adopting the second to be the method for two layers of segregation table of forwarding chip configuration, according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration judges the method whether Radio Broadcasting Agreements message belongs to this VD, be: if the source port of Radio Broadcasting Agreements message is to be the CPU source port in two layers of segregation table configuring of this forwarding chip, determine that Radio Broadcasting Agreements message belongs to this VD, otherwise, determine that Radio Broadcasting Agreements message does not belong to this VD.
The processing procedure of the Radio Broadcasting Agreements message cpu port of the arbitrary forwarding chip at self or internal port being received by above-mentioned VD, can make Radio Broadcasting Agreements message that VD initiatively sends be merely able to forward from the outside port of each forwarding chip of this VD, and can not forward from the outside port of the forwarding chip of other VD, can realize two layers of isolation between VD of the Radio Broadcasting Agreements message that each VD initiatively sends.
In addition, from the above-mentioned method of two layers of segregation table that is configured for the message of non-this VD of isolation for each forwarding chip of VD, can find out, the present invention does not arrange carrying out two layers of isolation between the cpu port of each forwarding chip, therefore, can intercommunication communication between plates message between the cpu port of each forwarding chip, realize communication between plates.
Above the method for the embodiment of the present invention is had been described in detail, the present invention gives a kind of virtual unit, is applied to switch.
Referring to Fig. 4, Fig. 4 is the structural representation of the virtual unit that provides of the embodiment of the present invention, is applied to switch, and described switch be take forwarding chip as adding and exit the minimum unit of VD, and sets up the corresponding relation that has forwarding chip and VD; This VD comprises: dispensing unit 401, receiving element 402, processing unit 403, transmitting element 404; Wherein,
Receiving element 402, for the outside port reception message of the arbitrary forwarding chip at this VD; Internal port for the arbitrary forwarding chip at this VD receives the message that carries source port;
In above-mentioned VD, when the internal port of described transmitting element 404 in the source port using the port that receives message as message is carried at message and by this forwarding chip E-Packets, be used for: if the internal port that this outbound port is this forwarding chip, the source port using the port of reception message as message is carried in message and from this outbound port and E-Packets; If this outbound port is the outside port of other forwarding chip, port, this outbound port, this outbound port place forwarding chip of receiving message are carried in message as source port, object outbound port, the object forwarding chip of message respectively, and search internal port corresponding to object forwarding chip that forwarding chip mapping table is determined message, from definite internal port, E-Packet;
Described transmitting element 404 is when outbound port remaining from filtering E-Packets, be used for: for each outbound port remaining after filtering, if this outbound port is the internal port of this forwarding chip, from this outbound port, E-Packet, if this outbound port is the outside port of other forwarding chip, search forwarding chip mapping table and determine the internal port corresponding to object forwarding chip of message, from definite internal port, E-Packet.
Described dispensing unit 401 is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, further each internal port of this forwarding chip is joined in the VLAN of all VD in described switch, and this internal port is joined in the outbound port list of multicast list corresponding to all multicast group;
Described processing unit 403 is when determining the outbound port of the message that the outside port of receiving element 402 at arbitrary forwarding chip of this VD receives, be used for: if message is unicast message, search MAC and transmit the outbound port of determining message, if message is multicast message, the outbound port of message is determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for transmit the unicast message of failing to determine port according to MAC, according to the outgoing interface list of multicast list, fail to determine multicast message and the broadcasting packet of port, search VLAN broadcast table and determine the outbound port of message, when determining the outbound port of the message that the internal port of receiving element 402 at arbitrary forwarding chip of this VD receives, be used for: if message is unicast message and carries object outbound port, the outbound port of determining message is this object outbound port, if message is multicast message, the outbound port of message is determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for the unknown unicast message that does not carry object outbound port, according to the outgoing interface list of multicast list, fail to determine multicast message and the broadcasting packet of port, search VLAN broadcast table and determine the outbound port of message.
In above-mentioned VD, described processing unit 403, after determining that message that the internal port of receiving element 402 at arbitrary forwarding chip of this VD receives belongs to this VD, is further used for: learn the source MAC of this message to the source port of message; After determining that message that the internal port of receiving element 402 at arbitrary forwarding chip of this VD receives does not belong to this VD, be further used for: forbid this message to carry out MAC address learning.
In above-mentioned VD, described receiving element 402, is further used for the cpu port reception Radio Broadcasting Agreements message at arbitrary forwarding chip of this VD; Be further used for receiving at the internal port of arbitrary forwarding chip of this VD the Radio Broadcasting Agreements message that carries source port;
Described processing unit 403, be further used for receiving element 402 when the cpu port of arbitrary forwarding chip of this VD receives Radio Broadcasting Agreements message, search VLAN broadcast table and determine the outbound port of message, for each outbound port, if this outbound port is the outside port of this forwarding chip, notify transmitting element 404 to forward Radio Broadcasting Agreements message from this outbound port, if this outbound port is the internal port of this forwarding chip, notify the source port of transmitting element 404 using the CPU source port distributing for this VD in advance as Radio Broadcasting Agreements message to be carried at Radio Broadcasting Agreements message, and forward Radio Broadcasting Agreements message from this outbound port, be further used for receiving element 402 when the internal port of arbitrary forwarding chip of this VD receives the Radio Broadcasting Agreements message that carries source port, search VLAN broadcast table and determine the outbound port of Radio Broadcasting Agreements message, according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration, judge whether Radio Broadcasting Agreements message belongs to this VD, if, notify transmitting element 404 to forward Radio Broadcasting Agreements message from the outbound port of message, otherwise, the outside port that belongs to this forwarding chip in the outbound port of message is filtered, and notify the outbound port of transmitting element 404 from filtering to forward Radio Broadcasting Agreements message.
Described dispensing unit 401 is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, be used for: the outside port that does not belong to all forwarding chips of this VD is added to two layers of segregation table of this forwarding chip configuration, will for the pre-assigned CPU source port of other each VD except this VD, be added to two layers of segregation table of this forwarding chip configuration;
Described processing unit 403 is when judging according to the source port of message with for two layers of segregation table of this forwarding chip configuration whether message belongs to this VD, be used for: if the source port of message is the outside port for two layers of segregation table of this forwarding chip configuration, determine that message does not belong to this VD, otherwise, determine that message belongs to this VD; When judging according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration whether Radio Broadcasting Agreements message belongs to this VD, be used for: if the source port of Radio Broadcasting Agreements message is the CPU source port for two layers of segregation table of this forwarding chip configuration, determine that Radio Broadcasting Agreements message does not belong to this VD, otherwise, determine that Radio Broadcasting Agreements message belongs to this VD;
Or,
Described dispensing unit 401 is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, be used for: two layers of segregation table that the outside port that belongs to all forwarding chips of this VD are added to this forwarding chip configuration, to be that the pre-assigned CPU source port of this VD is added to this forwarding chip configuration, two layers of segregation table;
Described processing unit 403 is when judging according to the source port of message with for two layers of segregation table of this forwarding chip configuration whether message belongs to this VD, be used for: if the source port of message is the outside port for two layers of segregation table of this forwarding chip configuration, determine that message belongs to this VD, otherwise, determine that message does not belong to this VD; When judging according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration whether Radio Broadcasting Agreements message belongs to this VD, be used for: if the source port of Radio Broadcasting Agreements message is the CPU source port for two layers of segregation table of this forwarding chip configuration, determine that Radio Broadcasting Agreements message belongs to this VD, otherwise, determine that Radio Broadcasting Agreements message does not belong to this VD.
The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of making, be equal to replacement, improvement etc., within all should being included in the scope of protection of the invention.
Claims (12)
1. on switch, realize a method of virtual unit VD, described switch be take forwarding chip as adding and exit the minimum unit of VD, and sets up the corresponding relation that has forwarding chip and VD; It is characterized in that, the method comprises:
According to the corresponding relation of forwarding chip and VD, be two layers of segregation table that in current VD, each forwarding chip is configured for the message of the non-current VD of isolation;
Current VD, when the outside port of the arbitrary forwarding chip of self receives message, determines the outbound port of message, to belonging to each outbound port of the outside port of this forwarding chip, from this outbound port, E-Packets; To not belonging to each outbound port of the outside port of this forwarding chip, the source port using the port that receives message as message is carried in message and the internal port by this forwarding chip E-Packets;
Current VD is when the internal port of the arbitrary forwarding chip of self receives the message that carries source port, determine the outbound port of message, according to the source port of message with for two layers of segregation table of this forwarding chip configuration, judge whether message belongs to current VD, if, from definite outbound port, E-Packet, otherwise, in the outbound port of filtering message, belonging to the outside port of this forwarding chip, outbound port remaining from filtering E-Packets.
2. the method that realizes VD on switch according to claim 1, is characterized in that,
Described to not belonging to each outbound port of the outside port of this forwarding chip, the method that source port using the port that receives message as message is carried in message and the internal port by this forwarding chip E-Packets is: if the internal port that this outbound port is this forwarding chip, the source port using the port that receives message as message is carried in message and from this outbound port and E-Packets; If this outbound port is the outside port of other forwarding chip, port, this outbound port, this outbound port place forwarding chip of receiving message are carried in message as source port, object outbound port, the object forwarding chip of message respectively, and search internal port corresponding to object forwarding chip that forwarding chip mapping table is determined message, from definite internal port, E-Packet;
The method that described outbound port remaining from filtering E-Packets is: for each outbound port remaining after filtering, if this outbound port is the internal port of this forwarding chip, from this outbound port, E-Packet, if this outbound port is the outside port of other forwarding chip, search forwarding chip mapping table and determine the internal port corresponding to object forwarding chip of message, from definite internal port, E-Packet.
3. the method that realizes VD on switch according to claim 2, is characterized in that,
Described is when in current VD, each forwarding chip is configured for two layers of segregation table of the message of isolating non-current VD according to the corresponding relation of forwarding chip and VD, further each internal port of this forwarding chip is joined in the VLAN of all VD in described switch, and this internal port is joined in the outbound port list of multicast list corresponding to all multicast group;
Current VD is when the outside port of the arbitrary forwarding chip of self receives message, the method of determining the outbound port of message is: if message is unicast message, search MAC and transmit the outbound port of determining message, if message is multicast message, all outbound ports of message are determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for transmit the unicast message of failing to determine port according to MAC, according to the outgoing interface list of multicast list, fail to determine multicast message and the broadcasting packet of port, search VLAN broadcast table and determine all outbound ports of message,
Current VD is when the internal port of the arbitrary forwarding chip of self receives message, the method of determining the outbound port of message is: if message is unicast message and carries object outbound port, the outbound port of determining message is this object outbound port, if message is multicast message, all outbound ports of message are determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for the unicast message of not carrying object outbound port, according to the outgoing interface list of multicast list, fail to determine multicast message and the broadcasting packet of port, search VLAN broadcast table and determine all outbound ports of message.
4. the method that realizes VD on switch according to claim 1, is characterized in that,
Current VD, after the internal port of arbitrary forwarding chip receives message and determines that message belongs to current VD, further comprises: learn the source MAC of this message to the source port of message;
Current VD, after the internal port of arbitrary forwarding chip receives message and determines that message does not belong to current VD, further comprises: forbid this message to carry out MAC address learning.
5. according to the method that realizes VD on switch described in the arbitrary claim of claim 2-4, it is characterized in that, the method further comprises:
Current VD is when the cpu port of the arbitrary forwarding chip of self receives Radio Broadcasting Agreements message, search VLAN broadcast table and determine all outbound ports of message, for each outbound port, if this outbound port is the outside port of this forwarding chip, from this outbound port, forward Radio Broadcasting Agreements message, if this outbound port is the internal port of this forwarding chip, the source port using the CPU source port distributing for current VD in advance as Radio Broadcasting Agreements message is carried at Radio Broadcasting Agreements message, and forwards Radio Broadcasting Agreements message from this outbound port;
Current VD is when the internal port of the arbitrary forwarding chip of self receives the Radio Broadcasting Agreements message that carries source port, search VLAN broadcast table and determine all outbound ports of Radio Broadcasting Agreements message, according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration, judge whether Radio Broadcasting Agreements message belongs to current VD, if, from all outbound ports, forward Radio Broadcasting Agreements message, otherwise, the outside port that belongs to this forwarding chip in all outbound ports is filtered, and all outbound ports from filtering forward Radio Broadcasting Agreements message.
6. the method that realizes VD on switch according to claim 5, is characterized in that,
The described method that is two layers of segregation table of the message that in current VD, each forwarding chip is configured for the non-current VD of isolation according to the corresponding relation of forwarding chip and VD is: the outside port that does not belong to all forwarding chips of current VD is added to two layers of segregation table of this forwarding chip configuration, will for the pre-assigned CPU source port of other each VD except current VD, be added to two layers of segregation table of this forwarding chip configuration;
Describedly according to the source port of message with for two layers of segregation table of this forwarding chip configuration judges the method whether message belongs to current VD, be: if the source port of message is to be the outside port in two layers of segregation table configuring of this forwarding chip, determine that message does not belong to current VD, otherwise, determine that message belongs to current VD;
Describedly according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration judges the method whether Radio Broadcasting Agreements message belongs to current VD, be: if the source port of Radio Broadcasting Agreements message is to be the CPU source port in two layers of segregation table configuring of this forwarding chip, determine that Radio Broadcasting Agreements message does not belong to current VD, otherwise, determine that Radio Broadcasting Agreements message belongs to current VD;
Or,
The described method that is two layers of segregation table of the message that in current VD, each forwarding chip is configured for the non-current VD of isolation according to the corresponding relation of forwarding chip and VD is: the outside port that belongs to all forwarding chips of current VD is added to two layers of segregation table of this forwarding chip configuration, will for the pre-assigned CPU source port of current VD, be added to two layers of segregation table of this forwarding chip configuration;
Describedly according to the source port of message with for two layers of segregation table of this forwarding chip configuration judges the method whether message belongs to current VD, be: if the source port of message is to be the outside port in two layers of segregation table configuring of this forwarding chip, determine that message belongs to current VD, otherwise, determine that message does not belong to current VD;
Describedly according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration judges the method whether Radio Broadcasting Agreements message belongs to current VD, be: if the source port of Radio Broadcasting Agreements message is to be the CPU source port in two layers of segregation table configuring of this forwarding chip, determine that Radio Broadcasting Agreements message belongs to current VD, otherwise, determine that Radio Broadcasting Agreements message does not belong to current VD.
7. a virtual unit VD, is applied to switch, and described switch be take forwarding chip as adding and exit the minimum unit of VD, and sets up the corresponding relation that has forwarding chip and VD; It is characterized in that, this VD comprises: dispensing unit, receiving element, processing unit, transmitting element;
Described dispensing unit, is configured for two layers of segregation table of the message of non-VD of isolation for the corresponding relation of the forwarding chip set up according to described switch and VD for each forwarding chip of this VD;
Described receiving element, for the outside port reception message of the arbitrary forwarding chip at this VD; Internal port for the arbitrary forwarding chip at this VD receives the message that carries source port;
Described processing unit, when the outside port of arbitrary forwarding chip of this VD receives message, determines the outbound port of message for receiving element, and to belonging to each outbound port of the outside port of this forwarding chip, notice transmitting element E-Packets from this outbound port; To not belonging to each outbound port of the outside port of this forwarding chip, the source port of notice transmitting element using the port that receives message as message is carried in message and the internal port by this forwarding chip E-Packets; While receiving for the internal port of arbitrary forwarding chip of this VD of receiving element the message that carries source port, determine the outbound port of message, according to the source port of message and dispensing unit, be that two layers of segregation table that this forwarding chip configures judge whether message belongs to this VD, if, notify transmitting element to E-Packet from definite outbound port, otherwise, in the outbound port of filtering message, belong to the outside port of this forwarding chip, and notify transmitting element remaining outbound port from filtering to E-Packet.
8. VD according to claim 7, is characterized in that,
When the internal port of described transmitting element in the source port using the port that receives message as message is carried at message and by this forwarding chip E-Packets, be used for: if the internal port that this outbound port is this forwarding chip, the source port using the port of reception message as message is carried in message and from this outbound port and E-Packets; If this outbound port is the outside port of other forwarding chip, port, this outbound port, this outbound port place forwarding chip of receiving message are carried in message as source port, object outbound port, the object forwarding chip of message respectively, and search internal port corresponding to object forwarding chip that forwarding chip mapping table is determined message, from definite internal port, E-Packet;
Described transmitting element is when outbound port remaining from filtering E-Packets, be used for: for each outbound port remaining after filtering, if this outbound port is the internal port of this forwarding chip, from this outbound port, E-Packet, if this outbound port is the outside port of other forwarding chip, search forwarding chip mapping table and determine the internal port corresponding to object forwarding chip of message, from definite internal port, E-Packet.
9. VD according to claim 8, is characterized in that,
Described dispensing unit is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, further each internal port of this forwarding chip is joined in the VLAN of all VD in described switch, and this internal port is joined in the outbound port list of multicast list corresponding to all multicast group;
Described processing unit is when determining the outbound port of the message that the outside port of receiving element at arbitrary forwarding chip of this VD receives, be used for: if message is known unicast message, search MAC and transmit the outbound port of determining message, if message is known multicast message, the outbound port of message is determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for transmit the unicast message of failing to determine port according to MAC, according to the outgoing interface list of multicast list fail to determine port multicast message and or broadcasting packet, search VLAN broadcast table and determine the outbound port of message, when determining the outbound port of the message that the internal port of receiving element at arbitrary forwarding chip of this VD receives, be used for: if message is unicast message and carries object outbound port, the outbound port of determining message is this object outbound port, if message is multicast message, the outbound port of message is determined in the outgoing interface list of searching multicast list corresponding to the affiliated multicast group of message, for the unicast message of not carrying object outbound port, according to the outgoing interface list of multicast list, fail to determine multicast message and the broadcasting packet of port, search VLAN broadcast table and determine the outbound port of message.
10. VD according to claim 7, is characterized in that,
Described processing unit, after determining that message that the internal port of receiving element at arbitrary forwarding chip of this VD receives belongs to this VD, is further used for: learn the source MAC of this message to the source port of message; After determining that message that the internal port of receiving element at arbitrary forwarding chip of this VD receives does not belong to this VD, be further used for: forbid this message to carry out MAC address learning.
11. according to the VD described in the arbitrary claim of claim 7-10, it is characterized in that,
Described receiving element, is further used for the cpu port reception Radio Broadcasting Agreements message at arbitrary forwarding chip of this VD; Be further used for receiving at the internal port of arbitrary forwarding chip of this VD the Radio Broadcasting Agreements message that carries source port;
Described processing unit, be further used for receiving element when the cpu port of arbitrary forwarding chip of this VD receives Radio Broadcasting Agreements message, search VLAN broadcast table and determine the outbound port of message, for each outbound port, if this outbound port is the outside port of this forwarding chip, notify transmitting element to forward Radio Broadcasting Agreements message from this outbound port, if this outbound port is the internal port of this forwarding chip, notify the source port of transmitting element using the CPU source port distributing for this VD in advance as Radio Broadcasting Agreements message to be carried at Radio Broadcasting Agreements message, and forward Radio Broadcasting Agreements message from this outbound port, be further used for receiving element when the internal port of arbitrary forwarding chip of this VD receives the Radio Broadcasting Agreements message that carries source port, search VLAN broadcast table and determine the outbound port of Radio Broadcasting Agreements message, according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration, judge whether Radio Broadcasting Agreements message belongs to this VD, if, notify transmitting element to forward Radio Broadcasting Agreements message from the outbound port of message, otherwise, the outside port that belongs to this forwarding chip in the outbound port of message is filtered, and notify the outbound port of transmitting element from filtering to forward Radio Broadcasting Agreements message.
12. VD according to claim 11, is characterized in that,
Described dispensing unit is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, be used for: the outside port that does not belong to all forwarding chips of this VD is added to two layers of segregation table of this forwarding chip configuration, will for the pre-assigned CPU source port of other each VD except this VD, be added to two layers of segregation table of this forwarding chip configuration;
Described processing unit is when judging according to the source port of message with for two layers of segregation table of this forwarding chip configuration whether message belongs to this VD, be used for: if the source port of message is the outside port for two layers of segregation table of this forwarding chip configuration, determine that message does not belong to this VD, otherwise, determine that message belongs to this VD; When judging according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration whether Radio Broadcasting Agreements message belongs to this VD, be used for: if the source port of Radio Broadcasting Agreements message is the CPU source port for two layers of segregation table of this forwarding chip configuration, determine that Radio Broadcasting Agreements message does not belong to this VD, otherwise, determine that Radio Broadcasting Agreements message belongs to this VD;
Or,
Described dispensing unit is when being configured for two layers of segregation table of the message of isolating non-VD according to the corresponding relation of forwarding chip and VD for each forwarding chip in this VD, be used for: the outside port that belongs to all forwarding chips of this VD is added to two layers of segregation table of this forwarding chip configuration, will for the pre-assigned CPU source port of this VD, be added to two layers of segregation table of this forwarding chip configuration;
Described processing unit is when judging according to the source port of message with for two layers of segregation table of this forwarding chip configuration whether message belongs to this VD, be used for: if the source port of message is the outside port for two layers of segregation table of this forwarding chip configuration, determine that message belongs to this VD, otherwise, determine that message does not belong to this VD; When judging according to the source port of Radio Broadcasting Agreements message with for two layers of segregation table of this forwarding chip configuration whether Radio Broadcasting Agreements message belongs to this VD, be used for: if the source port of Radio Broadcasting Agreements message is the CPU source port for two layers of segregation table of this forwarding chip configuration, determine that Radio Broadcasting Agreements message belongs to this VD, otherwise, determine that Radio Broadcasting Agreements message does not belong to this VD.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210356094.7A CN103685082B (en) | 2012-09-21 | 2012-09-21 | A kind of method and apparatus for realizing virtual unit on switches |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210356094.7A CN103685082B (en) | 2012-09-21 | 2012-09-21 | A kind of method and apparatus for realizing virtual unit on switches |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103685082A true CN103685082A (en) | 2014-03-26 |
| CN103685082B CN103685082B (en) | 2017-06-16 |
Family
ID=50321435
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210356094.7A Active CN103685082B (en) | 2012-09-21 | 2012-09-21 | A kind of method and apparatus for realizing virtual unit on switches |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103685082B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110247928B (en) * | 2019-06-29 | 2020-09-15 | 河南信大网御科技有限公司 | Simulation switch safety flow control device and method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7286491B1 (en) * | 1999-03-01 | 2007-10-23 | Cisco Technology, Inc. | Virtual local area network membership registration protocol for multiple spanning tree network environments |
| CN101729355A (en) * | 2009-12-08 | 2010-06-09 | 中兴通讯股份有限公司 | Method for realizing particular virtual local area network and device |
| CN102215152A (en) * | 2010-04-01 | 2011-10-12 | 杭州华三通信技术有限公司 | Method and system for realizing flow intervals among virtual devices |
| CN102469021A (en) * | 2010-11-18 | 2012-05-23 | 杭州华三通信技术有限公司 | Method of transmitting business flow and member equipment in intelligent resilience frame system |
-
2012
- 2012-09-21 CN CN201210356094.7A patent/CN103685082B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7286491B1 (en) * | 1999-03-01 | 2007-10-23 | Cisco Technology, Inc. | Virtual local area network membership registration protocol for multiple spanning tree network environments |
| CN101729355A (en) * | 2009-12-08 | 2010-06-09 | 中兴通讯股份有限公司 | Method for realizing particular virtual local area network and device |
| CN102215152A (en) * | 2010-04-01 | 2011-10-12 | 杭州华三通信技术有限公司 | Method and system for realizing flow intervals among virtual devices |
| CN102469021A (en) * | 2010-11-18 | 2012-05-23 | 杭州华三通信技术有限公司 | Method of transmitting business flow and member equipment in intelligent resilience frame system |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110247928B (en) * | 2019-06-29 | 2020-09-15 | 河南信大网御科技有限公司 | Simulation switch safety flow control device and method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103685082B (en) | 2017-06-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9363207B2 (en) | Private virtual local area network isolation | |
| CN108768692B (en) | Network creation method, related equipment and system | |
| CN111800326B (en) | Message transmission method and device, processing node and storage medium | |
| EP2725749B1 (en) | Method, apparatus and system for processing service flow | |
| CN103795623A (en) | Method and device for realizing traffic interflow between virtual devices | |
| CN108964940B (en) | Message sending method and device and storage medium | |
| CN105323136A (en) | Information processing method and device | |
| CN102255785B (en) | Network isolation method in VPLS (Virtual Private Lan Service) and device thereof | |
| CN104506408A (en) | Data transmission method and device based on SDN | |
| CN104104570A (en) | Aggregation processing method in IRF (Intelligent Resilient Framework) system and device | |
| US10382391B2 (en) | Systems and methods for managing network address information | |
| CN105162704A (en) | Multicast replication method and device in Overlay network | |
| WO2015139166A1 (en) | Address identifier allocation method, and related device and system | |
| CN111132170A (en) | Communication method and device of virtual firewall, virtual firewall and topological structure | |
| WO2014028730A1 (en) | Auto management of a virtual device context enabled network infrastructure | |
| WO2018068588A1 (en) | Method and software-defined networking (sdn) controller for providing multicast service | |
| CN105939267B (en) | Outband management method and device | |
| US9465703B2 (en) | Edge virtual bridging station with primary and secondary physical network cards | |
| CN104852846A (en) | Data forwarding control method and system | |
| CN111711536A (en) | Method for constructing firewall test environment under cloud architecture | |
| CN103532863A (en) | Method and device for realizing software stacking | |
| WO2016177180A1 (en) | Method and device for reporting openflow switch capability | |
| EP3503484A1 (en) | Message transmission method, device and network system | |
| CN107465582B (en) | Data sending method, device and system, physical home gateway and access node | |
| CN103685082A (en) | Method and device for realizing virtual device on switchboard |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Applicant before: Huasan Communication Technology Co., Ltd. |
|
| GR01 | Patent grant |