CN104348716A - Message processing method and equipment - Google Patents
Message processing method and equipment Download PDFInfo
- Publication number
- CN104348716A CN104348716A CN201310315236.XA CN201310315236A CN104348716A CN 104348716 A CN104348716 A CN 104348716A CN 201310315236 A CN201310315236 A CN 201310315236A CN 104348716 A CN104348716 A CN 104348716A
- Authority
- CN
- China
- Prior art keywords
- stream table
- stream
- message
- sort
- agreement
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a message processing method applied to the network comprising control equipment based on an OpenFlow protocol and data forwarding equipment. The method comprises steps that a message is received by the data forwarding equipment; a message head portion of the message is analyzed by the data forwarding equipment to acquire protocol information corresponding to data fields borne by the message; a corresponding flow graph category of the message is determined by the data forwarding equipment according to pre-established corresponding relations between the protocol information and flow graph categories; matching flow graph items are searched in the determined flow graph category by the data forwarding equipment, and processing on the message is carried out. The invention further discloses the data forwarding equipment. Through the method, the flow graph matching efficiency can be improved.
Description
Technical field
The present invention relates to network communication technology field, particularly a kind of message processing method and equipment.
Background technology
Message repeating in conventional switch and forwarding strategy are separated by Openflow switch, adopt a special control appliance (controller) to be connected with switch by netting twine.Original like this message repeating function (hardware chip realization) on a switch device and the message repeating strategy (various software protocol) of coexisting just has been separated on different hardware devices.Basic Openflow network comprises: the network controller of chain of command and the Openflow switch in the face of forwarding, be referred to as control appliance and data transfer equipment.The method of the forwarding data packets in Openflow network carries out data message forwarding for utilizing stream table, is specially: control appliance is by standardized Openflow protocol integrated test system data transfer equipment and issue stream and show to data transfer equipment; Data transfer equipment receives and preserves stream table; After data transfer equipment receives the data message that network sends, check the stream list item whether having coupling in stream table, if having, then according to the action forwarding data packets in stream list item; If do not find the stream list item of coupling, then the header of data message is encapsulated as Packet-in message and issues control appliance by escape way, carry out decision-making corelation behaviour by control appliance.
In prior art, the storage of stream table is very chaotic, when message carries out coupling stream table, needs to mate all stream table data, the efficiency that impact forwards.For huge stream table data, after each message enters data transfer equipment, travel through all stream list items according to prioritization.If stream table data are too huge, the efficiency of algorithm will reduce very much.
Summary of the invention
The object of the present invention is to provide a kind of message processing method and equipment, stream table matching efficiency can be improved.
For achieving the above object, the invention provides a kind of message processing method, be applied to and comprise based in the control appliance of OpenFlow agreement and the network of data transfer equipment, the method comprises:
Data transfer equipment receives message;
The header of data transfer equipment to described message is resolved, and obtains the protocol information that the data field of described message carrying is corresponding;
Data transfer equipment, according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding;
Data transfer equipment searches the stream list item of coupling in determined stream table sort, processes described message.
For achieving the above object, present invention also offers a kind of data transfer equipment, be applied to and comprise based in the control appliance of OpenFlow agreement and the network of data transfer equipment; This equipment comprises:
Receiving element, for receiving message;
Resolution unit, for resolving the header of described message, obtains the protocol information that the data field of described message carrying is corresponding;
Corresponding relation determining unit, for according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding;
Matching unit, for searching the stream list item of coupling in determined stream table sort, processes described message.
In sum, embodiment of the present invention data transfer equipment receives message; The header of data transfer equipment to described message is resolved, and obtains the protocol information that the data field of described message carrying is corresponding; Data transfer equipment, according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding; Data transfer equipment searches the stream list item of coupling in determined stream table sort, processes described message.Due to control appliance in the present invention issue stream table time, convection current table is classified, during message coupling stream table, do not need as prior art, carry out traversal coupling, directly in corresponding stream table sort, carry out stream table coupling, so substantially increase stream table matching efficiency, optimize the mechanism such as the generation of stream table, coupling and management.
Accompanying drawing explanation
Fig. 1 is the schematic flow sheet of embodiment of the present invention message processing method.
Fig. 2 is that the present invention returns the schematic diagram of stream table sort value according to the flow chart of Openflow protocol analysis message.
Fig. 3 is embodiment of the present invention multilevel flow table schematic diagram.
Fig. 4 is the structural representation of the data transfer equipment being applied to said method in the specific embodiment of the invention.
Embodiment
For making object of the present invention, technical scheme and advantage clearly understand, to develop simultaneously embodiment referring to accompanying drawing, scheme of the present invention is described in further detail.
Core concept of the present invention is: different to the packet parsing result of different agreement type for Openflow agreement, devise the stream table sort matched with it, utilize the policy control ability of control appliance, sorted multiple stream table is handed down to data transfer equipment, when data transfer equipment carries out stream table coupling to message, the result obtained according to packet parsing returns stream table sort value, searches coupling stream list item in the stream table sort of correspondence.Due to control appliance in the present invention issue stream table time, convection current table is classified, during message coupling stream table, do not need as prior art, carry out traversal coupling, directly in corresponding stream table sort, carry out stream table coupling, so substantially increase stream table matching efficiency, optimize the mechanism such as the generation of stream table, coupling and management.
Embodiments provide a kind of message processing method, be applied to and comprise in the Openflow network of control appliance and data transfer equipment; As shown in Figure 1, the method comprises its schematic flow sheet:
Step 11, data transfer equipment receive message;
Step 12, the data transfer equipment header to described message is resolved, and obtains the protocol information that the data field of described message carrying is corresponding;
Wherein, when resolving header, according to the frame type field in the Ethernet stem of described message and/or the IP protocol fields in IP stem, determine the protocol information that data field that described message carries is corresponding.
Protocol information specifically comprises: frame type field is ARP agreement; Frame type field is other agreements outside ARP agreement and IP agreement; Non-IP fragmentation message and IP protocol fields is UDP or Transmission Control Protocol; Non-IP fragmentation message and IP protocol fields is ICMP agreement; Non-IP fragmentation message and IP protocol fields is other agreements outside UDP, Transmission Control Protocol or ICMP agreement; Fragment message and IP protocol fields is UDP, Transmission Control Protocol or ICMP agreement.
Step 13, data transfer equipment, according to the corresponding relation between the protocol information set up in advance and stream table sort, determine the stream table sort that described message is corresponding;
Step 14, data transfer equipment search the stream list item of coupling in determined stream table sort, process described message.
For clearly demonstrating the present invention, enumerating embodiment below and said method is described in detail.Fig. 2 is that the present invention returns the schematic diagram of stream table sort value according to the flow chart of Openflow protocol analysis message.Wherein, the process of Openflow protocol analysis message is identical with existing.
Data transfer equipment to be resolved header according to Openflow agreement and the method returning stream table sort value comprises:
Step 21, parsing inbound port, source MAC and target MAC (Media Access Control) address and frame type field (Ethernet Type);
Whether step 22, judgment frame type field are 0x8100, if so, then perform step 23, parse the information such as Virtual Local Area Network mark;
Whether step 24, judgment frame type field are 0x0806, if so, are then ARP(Address Resolution Protocol) message, perform step 25, parse object IP and source IP, return stream table sort value 01000, carry out stream table coupling; If not, step 26 is performed;
Whether step 26, judgment frame type field are 0x0800, if not, be then the Ethernet protocol message except ARP, IP, return stream table sort value 10000, carry out stream table coupling;
If so, be then IP message, perform step 27, parse object IP and source IP and type of service (tos) field; Further execution step 28, judge whether it is IP fragmentation, if IP fragmentation, then return stream table sort value 00010 or 00011, carry out stream table coupling;
Particularly, if transmission control protocol/User Datagram Protoco (UDP)/internet control message protocol (TCP/UDP/ICMP) fragment message, then return 00010, if the fragment message of other IP protocol types, then return 00011;
If not IP fragmentation, perform step 29, judge whether IP protocol fields (IP Protocol) is 6 or 17, is if it is UDP/TCP message further, perform step 30, parse source port number and destination slogan, return stream table sort value 00000, carry out stream table coupling;
If not IP fragmentation, and IP protocol fields is not 6 or 17, then perform step 31, judge whether IP protocol fields is 1 further, if so, be then icmp packet, perform step 32, parse source port number and destination slogan, return stream table sort value 00001, carry out stream table coupling;
If not IP fragmentation, and IP protocol fields is not 1,6 or 17, be then the IP layer message except TCP/UDP/ICMP, returns stream table sort value 00011, carries out stream table coupling.
Therefore, according to the result that the flow process of above-mentioned analytic message obtains, returning stream table sort value has 6, so stream table is divided into 6 classes, one of corresponding above-mentioned 6 return values of each class stream table, carries stream table sort value, distinguishes each class stream table in the flow_class field that each stream is shown.
Why returning 6 kinds of stream table sort values according to the result of above-mentioned analytic message, is design the packet parsing result difference of different agreement type based on existing Openflow agreement.The message that the embodiment of the present invention distinguishes different agreement type by 5 bits (bit) is as shown in table 1.
Table 1
According to network communication protocol specification, message encapsulation comprises ethernet layer, network layer and transport layer etc., represents that the upper-layer protocol of Ethernet is IP agreement with 00; Represent that the upper-layer protocol of Ethernet is ARP agreement with 01; Represent that the upper-layer protocol of Ethernet is other three layer protocols except IP and ARP with 10; Represent all Ethernet protocols with 11, namely two layers is all three layer protocols of Ethernet; Represent that the upper-layer protocol of IP agreement is UDP/TCP agreement with 000; Represent that the upper-layer protocol of IP agreement is ICMP agreement with 001; The fragment message of UDP/TCP/ICMP agreement is represented with 010; Represent that the upper-layer protocol of IP agreement is other four layer protocols except ICMP/UDP/TCP with 011; 100 represent all IP layer protocols, and namely three layers is all four layer protocols of IP agreement.By the Ethernet protocol flag bit in table 1 and network layer protocol flag bit being combined, just obtain above-mentioned 6 kinds of stream table sort values: 00000,00001,00010,00011,01000 and 10000.By combination, it can also be seen that to there is stream table sort value 00100 and 11000, these two kinds stream table sorts, the higher level's stream table as above-mentioned 6 kinds of stream tables is described in detail later again.First by the sorting technique of these 8 kinds stream tables, be introduced in table 2.
Table 2
A stream table comprises multiple stream list item, and each stream list item comprises occurrence and action item.As can be seen from Table 2, the occurrence comprised according to the stream list item of the stream table of dissimilar protocol classification is different with the content of action item.That is, when control appliance of the present invention generates stream table, just get rid of and illegally flow table, according to different agreement, generate stream table according to pre-defined rule.
In summary, control appliance is according to following generate rule stream table:
For the message that frame type field is IP agreement, could generate in stream table occurrence there is IP protocol fields and IP tos field, stream table that action item exists the action of amendment source IP address and/or object IP address;
For the message that frame type field is IP agreement or ARP agreement, the stream table that there is source IP address and/or object IP address field in stream table occurrence could be generated;
Be IP agreement for frame type field, and IP protocol fields is the non-fragment message of TCP/UDP agreement, the stream table that there is amendment source port number and/or destination slogan in action item could be generated;
Be IP agreement for frame type field, and IP protocol fields is the non-fragment message of TCP/UDP/ICMP agreement, could generate the stream table that there is source port number and/or destination slogan in stream table occurrence.
Such as, the message that data transfer equipment receives is ARP message, by resolve, the analysis result of acquisition is inbound port number (Input_port) a, source and destination MAC Address (b1 and b2), frame type field (e_type) c(0x0806), source and destination IP address (d1 and d2).It is noted herein that, the parsing of message is carried out according to existing Openflow agreement, because ARP message is three layer protocol messages be carried on Ethernet protocol, so only proceed to this one deck of Ethernet to the parsing of ARP message, IP layer can not be resolved to, that is can not parse source port number and destination slogan.
Because the protocol type parsing message is ARP message, namely frame type field is 0x0806, so the stream table sort value returned is 01000, thus find corresponding stream table sort 01000, flow_class field be 01000 stream table sort define the stream table of this class like this:
In occurrence, Ethernet type can be only 0x0806, and occurrence can not comprise IP proto, IP ToS, source port and destination interface.Amendment (modify) source IP address, object IP address, IP ToS, source port and destination interface is not comprised in action item.
After finding this stream table sort, and then find coupling stream list item, suppose that occurrence is Input_port=a, src_mac=b1, dst_mac=b2, e_type=c, src_ip=d1, dst_ip=d2, because as prior art, because stream table stores chaotic, amendment source port number and destination slogan can not be there is in action item, so after matching above-mentioned stream list item, can forward according to action item smoothly.Therefore, as prior art, the field (source port number and destination slogan) of host-host protocol would not be there is in action item, causes data transfer equipment cannot process the forwarding of this message.
Further, the information of data transfer equipment also higher level's stream table of each stream table sort of issuing of receiving control apparatus and stream table sort corresponding to this higher level's stream table, and the higher level's stream table received is kept at corresponding higher level and flows in table sort.
Then all stream tables of being issued by control appliance of data transfer equipment pre-set level relation between stream table sort according to depth-first matching principle, set up multilevel flow table, and the coupling degree of depth of next stage stream table is higher than the coupling degree of depth of upper level stream table; When not finding coupling stream list item in the stream table sort in correspondence, coupling stream list item is searched in upper level stream table, until match stream list item, or when not matching stream list item yet in most upper level stream table, the message up sending control appliance received is processed.Here, at the stream table occurrence of first-class table sort more than second table sort, and when including all stream table occurrences of second table sort, first-class table sort is subordinate's stream table of second table sort, second table sort is higher level's stream table of first-class table sort.
00100 and 11000 these two stream table sorts are that control appliance initiatively issues, and the higher level as above-mentioned 6 kinds of stream table sorts flows table.Above-mentioned 6 kinds of stream table sorts are triggered by message, and when the message namely entering data transfer equipment does not first find and mates stream list item, by this message up sending control appliance, control appliance is resolved message, then issues the stream table with respective streams table sort value.
Multilevel flow table schematic diagram as shown in Figure 3.00000,00001,00010 and 00011 be 00100 next stage stream table, 00100 be 11000 next stage stream table; Simultaneously 01000 and 10000 be all 11000 next stage stream table.
Because set up according to depth-first matching principle between multilevel flow table, so next stage stream table is compared to upper level stream table, the content that occurrence and action item comprise is more, and that is as the stream table of minimum one-level, it must be grow coupling most, and coupling granularity is the thinnest.Like this, after data transfer equipment receives message, according to Openflow agreement, message is resolved, and according to the result after parsing, find the stream table sort of corresponding minimum one-level, when not finding coupling stream list item in the stream table sort in correspondence, in upper level stream table, search coupling stream list item, until match stream list item; If do not match stream list item in most upper level stream table, then the message up sending control appliance received is processed.
Embodiment one:
The frame type field of IPv6 protocol massages to be 0x86DD, IP proto be 41, IPv6 message is after resolving, and the value returned is 10000, searches the stream list item of coupling in the stream table sort of correspondence.
Due in the stream table sort of 10000 correspondences, the occurrence frame type field of each stream list item can be only other Ethernet protocols number of removing 0x0806 and 0x0800.Suppose that, in the stream table sort of 10000 correspondences, it is 0x86DD field that occurrence does not exist frame type field, data transfer equipment just cannot find the stream list item of coupling in the stream table sort 10000 of correspondence.And then data transfer equipment points to the upper level stream table sort 11000 of 10000.Why using 11000 as 10000 upper level stream table, because the coupling Relative Size of 11000 is a little thick, in the stream table sort of 11000 correspondences, the occurrence of each stream list item does not comprise frame type field field, source IP address, object IP address, IP proto, IP ToS, source port and destination interface.Modify source IP address, object IP address, IP ToS, source port and destination interface is not comprised in action item.Owing to being all not construed as limiting frame type field and IP protocol fields, just can realize forwarding so match relatively less item.
And in the stream table sort of 11000 correspondences, occurrence comprises source MAC and target MAC (Media Access Control) address, action item comprises forwarding or dropping packets action etc.So the 11000 stream table sorts that control appliance is issued, the regulation and control of the access control list (ACL) of corresponding Ethernet or service quality (QoS).That is, when data transfer equipment receives the information of higher level's stream table of each stream table sort that control appliance issues and stream table sort corresponding to this higher level's stream table, this higher level's stream table is judged, match with the stream table occurrence of this higher level's stream table when this higher level flows in subordinate's stream table sort of table sort to have, and flow the unmatched stream table of stream table action item of table with this higher level, then delete this subordinate's stream table.
Such as, the first situation: suppose in the stream table sort of 10000 correspondences, it is 0x86DD field that occurrence does not exist frame type field, data transfer equipment just cannot find the stream list item of coupling in the stream table sort 10000 of correspondence, when IPv6 message matches the stream table sort of 11000 correspondences, and then in 11000 stream table sorts, search the stream list item of coupling, after matching source MAC and target MAC (Media Access Control) address, perform the action of forwarding or dropping packets.
The second situation: suppose in the stream table sort of 10000 correspondences, the source MAC src_mac=c1 of occurrence, target MAC (Media Access Control) address dst_mac=c2, action item is for abandoning; Simultaneously in the stream table sort of 11000 correspondences, the source MAC src_mac=c1 of occurrence, target MAC (Media Access Control) address dst_mac=c2, action item is for forwarding.Then data transfer equipment is when receiving the stream table of 11000 correspondences, will by the stream list deletion of 10000 correspondences.IPv6 message directly will match the stream table sort of 11000 correspondences, and then in 11000 stream table sorts, search the stream list item of coupling, after matching source MAC and target MAC (Media Access Control) address, perform the action E-Packeted, thus realize ACL or the QoS regulation and control of Ethernet.
Embodiment two
The frame type field of ICMP protocol massages is 0x0800, IP proto is 1, and icmp packet is after resolving, and the value returned is 00001, searches the stream list item of coupling in the stream table sort of correspondence.
If do not find the stream list item of coupling, and then point to the upper level stream table sort 00100 of 00001, in the stream table sort of 00100 correspondence, search the stream list item of coupling.
If still do not find the stream list item of coupling, and then point to the upper level stream table sort 11000 of 00100, in the stream table sort of 11000 correspondences, search the stream list item of coupling.
If still do not find the stream list item of coupling, will process icmp packet being delivered to control appliance.
And in the stream table sort of 00100 correspondence, occurrence does not comprise IP Proto field, comprises source IP address and object IP address, action item comprises forwarding or dropping packets action etc.So the 00100 stream table sort that control appliance is issued, the regulation and control of ACL or QoS of corresponding IP layer.That is, when data transfer equipment receives the information of higher level's stream table of each stream table sort that control appliance issues and stream table sort corresponding to this higher level's stream table, this higher level's stream table is judged, match with the stream table occurrence of this higher level's stream table when this higher level flows in subordinate's stream table sort of table sort to have, and flow the unmatched stream table of stream table action item of table with this higher level, then delete this subordinate's stream table.
Such as, the first situation: data transfer equipment cannot find the stream list item of coupling in the stream table sort 00001 of correspondence, when icmp packet matches the stream table sort of 00100 correspondence, and then in 00100 stream table sort, search the stream list item of coupling, after matching source IP address and object IP address, perform the action of forwarding or dropping packets.
The second situation: suppose in the stream table sort of 00001 correspondence, the frame type field of occurrence is 0x0800, source IP address src_ip=p1, object IP address dst_ip=p2, and action item is for forwarding; Simultaneously in the stream table sort of 00100 correspondence, the frame type field of occurrence is 0x0800, and source IP address src_ip=p1, object IP address dst_ip=p2, action item is for abandoning.Then data transfer equipment is when receiving the stream table of 00100 correspondence, will by the stream list deletion of 00001 correspondence.Icmp packet directly will match the stream table sort of 00100 correspondence, and then in 00100 stream table sort, search the stream list item of coupling, after matching source IP address and object IP address, perform the action of dropping packets, thus realize ACL or the QoS regulation and control of IP layer.
It should be noted that, the stream table sort of the embodiment of the present invention, based on existing Openflow agreement, when the flow process of Openflow protocol analysis message changes, stream table sort also changes thereupon.Existing Openflow agreement is do not resolve source IP and object IP to Ipv6 message, be expanded if Openflow agreement is follow-up, IPv6 agreement is carried out to the parsing of source IP and object IP, so, just after IPv6 agreement carries out the parsing of source IP and object IP, a stream table sort value can be returned according to method of the present invention.Because embodiment of the present invention Ethernet protocol flag bit 2bit represents four kinds of situations, if after adding the analysis result for IPv6 agreement, just need to increase Ethernet protocol flag bit, to meet this analysis result added, that is Ethernet flag bit 3bit or more bits can be distinguished.In the same way, except specific embodiments of the invention, Ethernet protocol flag bit or IP layer protocol flag bit can be increased, so just when Openflow protocol extension, coupling and the operating function of more multi-field can be completed.
Message processing method of the present invention, can bring following benefit:
One, stream table matching efficiency is improved;
Two, the stream table database of data transfer equipment preservation is more orderly;
Three, stream table sort can be upgraded flexibly according to the expansion of Openflow agreement.
Based on same inventive concept, the present invention also proposes a kind of data transfer equipment, is applied to and comprises based in the control appliance of OpenFlow agreement and the network of data transfer equipment; It is the structural representation of the data transfer equipment being applied to said method in the specific embodiment of the invention see Fig. 4, Fig. 4.This data transfer equipment comprises:
Receiving element 401, for receiving message;
Resolution unit 402, for resolving the header of described message, obtains the protocol information that the data field of described message carrying is corresponding;
Corresponding relation determining unit 403, for according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding;
Matching unit 404, for searching the stream list item of coupling in determined stream table sort, processes described message.
Described equipment also comprises multilevel flow table and sets up unit 405;
Described multilevel flow table sets up unit, and for pre-setting the level relation between stream table sort, wherein, the coupling degree of depth of next stage stream table sort is greater than the coupling degree of depth of upper level stream table sort;
Described matching unit 404, for when not finding coupling stream list item in the stream table sort that described message is corresponding, coupling stream list item is searched further in upper level stream table, until match stream list item, or when not matching stream list item yet in most upper level stream table, the message up sending control appliance received is processed.
Described receiving element 401, also generates for receiving control apparatus and issues the information for the stream table sort belonging to the stream table of described message and this stream table, and being kept at by the stream table received in corresponding stream table sort.
Described receiving element 401, the information of higher level's stream table of each stream table sort also issued for receiving control apparatus and stream table sort corresponding to this higher level's stream table, and the higher level's stream table received is kept at corresponding higher level and flows in table sort;
Described equipment also comprises and judges control unit 406, for judging this higher level's stream table, match with the stream table occurrence of this higher level's stream table when this higher level flows in subordinate's stream table sort of table sort to have, and flow the unmatched stream table of stream table action item of table with this higher level, then delete this subordinate's stream table.
In sum, in the specific embodiment of the invention, stream table sort is issued by message activation control apparatus, this stream table sort designs the packet parsing result difference of different agreement type according to Openflow agreement, such message is by after data transfer equipment, parse the message of respective classes, return corresponding stream table sort value, this value show with stream in value in flow_class field corresponding, so just can improve stream table search efficiency, not need as prior art, carry out traversal coupling.Further, control appliance also initiatively issues higher level's stream table of sorted multiple stream table, and the coupling degree of depth of next stage stream table is higher than the coupling degree of depth of upper level stream table; When not finding coupling stream list item in the stream table sort in correspondence, in upper level stream table, search coupling stream list item, until match stream list item.By the management of multilevel flow table, the stream table database that data transfer equipment is preserved is more orderly.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (11)
1. a message processing method, be applied to and comprise based in the control appliance of OpenFlow agreement and the network of data transfer equipment, it is characterized in that, the method comprises:
Data transfer equipment receives message;
The header of data transfer equipment to described message is resolved, and obtains the protocol information that the data field of described message carrying is corresponding;
Data transfer equipment, according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding;
Data transfer equipment searches the stream list item of coupling in determined stream table sort, processes described message.
2. the method for claim 1, is characterized in that, the method comprises further:
Pre-set the level relation between stream table sort, wherein, the coupling degree of depth of next stage stream table sort is greater than the coupling degree of depth of upper level stream table sort;
When not finding coupling stream list item in the stream table sort that described message is corresponding, coupling stream list item is searched further in upper level stream table, until match stream list item, or when not matching stream list item yet in most upper level stream table, the message up sending control appliance received is processed.
3. method as claimed in claim 2, it is characterized in that, after by described message up sending control appliance, described method also comprises:
Data transfer equipment receiving control apparatus generates and issues the information for the stream table sort belonging to the stream table of described message and this stream table, and is kept at by the stream table received in corresponding stream table sort.
4. method as claimed in claim 3, is characterized in that,
The information of described data transfer equipment also higher level's stream table of each stream table sort of issuing of receiving control apparatus and stream table sort corresponding to this higher level's stream table, and the higher level's stream table received is kept at corresponding higher level and flows in table sort;
Described data transfer equipment judges this higher level's stream table, match with the stream table occurrence of this higher level's stream table when this higher level flows in subordinate's stream table sort of table sort to have, and flow the unmatched stream table of stream table action item of table with this higher level, then delete this subordinate's stream table.
5. the method for claim 1, it is characterized in that, described data transfer equipment, further according to the frame type field in the Ethernet stem of described message and/or the IP protocol fields in IP stem, determines the protocol information that data field that described message carries is corresponding.
6. method as claimed in claim 5, it is characterized in that, described protocol information specifically comprises: frame type field is ARP agreement; Frame type field is other agreements outside ARP agreement and IP agreement; Non-IP fragmentation message and IP protocol fields is UDP or Transmission Control Protocol; Non-IP fragmentation message and IP protocol fields is ICMP agreement; Non-IP fragmentation message and IP protocol fields is other agreements outside UDP, Transmission Control Protocol or ICMP agreement; Fragment message and IP protocol fields is UDP, Transmission Control Protocol or ICMP agreement.
7. method as claimed in claim 6, it is characterized in that, described data transfer equipment receives the stream table of described control appliance according to following generate rule further:
For the message that frame type field is IP agreement, could generate in stream table occurrence there is IP protocol fields and IP tos field, stream table that action item exists the action of amendment source IP address and/or object IP address;
For the message that frame type field is IP agreement or ARP agreement, the stream table that there is source IP address and/or object IP address field in stream table occurrence could be generated;
Be IP agreement for frame type field, and IP protocol fields is the non-fragment message of TCP/UDP agreement, the stream table that there is amendment source port number and/or destination slogan in action item could be generated;
Be IP agreement for frame type field, and IP protocol fields is the non-fragment message of TCP/UDP/ICMP agreement, could generate the stream table that there is source port number and/or destination slogan in stream table occurrence.
8. a data transfer equipment, is applied to and comprises based in the control appliance of OpenFlow agreement and the network of data transfer equipment; This equipment comprises:
Receiving element, for receiving message;
Resolution unit, for resolving the header of described message, obtains the protocol information that the data field of described message carrying is corresponding;
Corresponding relation determining unit, for according to the corresponding relation between the protocol information set up in advance and stream table sort, determines the stream table sort that described message is corresponding;
Matching unit, for searching the stream list item of coupling in determined stream table sort, processes described message.
9. equipment as claimed in claim 8, it is characterized in that, described equipment also comprises multilevel flow table and sets up unit;
Described multilevel flow table sets up unit, and for pre-setting the level relation between stream table sort, wherein, the coupling degree of depth of next stage stream table sort is greater than the coupling degree of depth of upper level stream table sort;
Described matching unit, for when not finding coupling stream list item in the stream table sort that described message is corresponding, coupling stream list item is searched further in upper level stream table, until match stream list item, or when not matching stream list item yet in most upper level stream table, the message up sending control appliance received is processed.
10. equipment as claimed in claim 9, it is characterized in that, described receiving element, also generates for receiving control apparatus and issues the information for the stream table sort belonging to the stream table of described message and this stream table, and being kept at by the stream table received in corresponding stream table sort.
11. equipment as claimed in claim 10, it is characterized in that, described receiving element, the information of higher level's stream table of each stream table sort also issued for receiving control apparatus and stream table sort corresponding to this higher level's stream table, and the higher level's stream table received is kept at corresponding higher level and flows in table sort;
Described equipment also comprises judgement control unit, for judging this higher level's stream table, match with the stream table occurrence of this higher level's stream table when this higher level flows in subordinate's stream table sort of table sort to have, and flow the unmatched stream table of stream table action item of table with this higher level, then delete this subordinate's stream table.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310315236.XA CN104348716B (en) | 2013-07-23 | 2013-07-23 | A kind of message processing method and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310315236.XA CN104348716B (en) | 2013-07-23 | 2013-07-23 | A kind of message processing method and equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104348716A true CN104348716A (en) | 2015-02-11 |
| CN104348716B CN104348716B (en) | 2018-03-23 |
Family
ID=52503568
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310315236.XA Active CN104348716B (en) | 2013-07-23 | 2013-07-23 | A kind of message processing method and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104348716B (en) |
Cited By (31)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104821923A (en) * | 2015-05-15 | 2015-08-05 | 杭州华三通信技术有限公司 | Method and device for transmitting upper-supply controller protocol message in SDN network |
| CN105515995A (en) * | 2015-12-01 | 2016-04-20 | 华为技术有限公司 | Message processing method and apparatus, and flow table generation method and apparatus |
| CN105553851A (en) * | 2015-12-10 | 2016-05-04 | 中国电子科技集团公司第三十二研究所 | SDN-based network processor microcode and flow table implementation device and method |
| CN105959222A (en) * | 2016-04-25 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Message forwarding method, route nodes, and software defined network |
| CN106357535A (en) * | 2016-08-29 | 2017-01-25 | 广州西麦科技股份有限公司 | Issuing method, system and controller of SDN flow table |
| WO2017024571A1 (en) * | 2015-08-12 | 2017-02-16 | 华为技术有限公司 | Packet processing method, apparatus and system |
| CN106453144A (en) * | 2015-08-10 | 2017-02-22 | 华为技术有限公司 | Message processing method and device in software-defined network |
| CN107070693A (en) * | 2017-01-12 | 2017-08-18 | 烽火通信科技股份有限公司 | The method and device of rapid configuration POTN business based on OpenFlow flow table |
| CN107124362A (en) * | 2016-02-24 | 2017-09-01 | 中移(苏州)软件技术有限公司 | A kind of flow table storage optimization method and device split based on subflow table |
| CN107147578A (en) * | 2017-03-27 | 2017-09-08 | 联想(北京)有限公司 | Information processing method and electronic equipment |
| CN107431658A (en) * | 2015-03-24 | 2017-12-01 | 日本电气株式会社 | Communication system, control device, control method and program |
| CN107666429A (en) * | 2016-07-29 | 2018-02-06 | 平安科技(深圳)有限公司 | Switch logic dispositions method and terminal in a kind of Overlay networks |
| CN108055202A (en) * | 2017-12-07 | 2018-05-18 | 锐捷网络股份有限公司 | A kind of message processor and method |
| CN109005120A (en) * | 2018-10-31 | 2018-12-14 | 新华三技术有限公司 | A kind of message processing method and the network equipment |
| CN109428792A (en) * | 2017-08-29 | 2019-03-05 | 中兴通讯股份有限公司 | A kind of method and device, the equipment of consumer wideband access processing |
| CN109600318A (en) * | 2018-11-29 | 2019-04-09 | 新华三技术有限公司合肥分公司 | A kind of method and SDN controller monitoring application program in SDN |
| CN109672594A (en) * | 2017-10-13 | 2019-04-23 | 中国电信股份有限公司 | IPoE message processing method, device and Broadband Remote Access Server |
| CN110852391A (en) * | 2019-11-13 | 2020-02-28 | 中国人民解放军91977部队 | Ethernet message classification method and device based on multiple classifiers |
| CN111131320A (en) * | 2019-12-31 | 2020-05-08 | 奇安信科技集团股份有限公司 | Asset identification method, device, system, medium, and program product |
| CN111182085A (en) * | 2018-11-12 | 2020-05-19 | 中移(杭州)信息技术有限公司 | Method, system, device and storage medium for controlling message forwarding based on multi-stage flow table |
| CN111353018A (en) * | 2020-02-24 | 2020-06-30 | 杭州迪普信息技术有限公司 | Data processing method and device based on deep packet inspection and network equipment |
| CN112491710A (en) * | 2020-11-09 | 2021-03-12 | 锐捷网络股份有限公司 | Message forwarding method and device based on Openflow |
| CN112511438A (en) * | 2020-11-19 | 2021-03-16 | 锐捷网络股份有限公司 | Method and device for forwarding message by using flow table and computer equipment |
| CN112787847A (en) * | 2020-12-24 | 2021-05-11 | 凌云天博光电科技股份有限公司 | Method and device for rapidly processing large number of Trap based on network management system EPON |
| CN113542125A (en) * | 2018-03-31 | 2021-10-22 | 华为技术有限公司 | Method and device for forwarding message based on integrated flow table |
| CN113765857A (en) * | 2020-06-04 | 2021-12-07 | 华为技术有限公司 | Message forwarding method, device, equipment and storage medium |
| CN114356418A (en) * | 2022-03-10 | 2022-04-15 | 之江实验室 | Intelligent table entry controller and control method |
| CN114390120A (en) * | 2022-01-04 | 2022-04-22 | 烽火通信科技股份有限公司 | Method and device for processing protocol frame |
| CN116055586A (en) * | 2022-08-15 | 2023-05-02 | 荣耀终端有限公司 | Fragment message matching method, router and storage medium |
| CN116684358A (en) * | 2023-07-31 | 2023-09-01 | 之江实验室 | Flow table management system and method for programmable network element equipment |
| CN117439953A (en) * | 2023-12-20 | 2024-01-23 | 珠海星云智联科技有限公司 | Equivalent cost multi-path selection system, method, equipment, cluster and medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1937574A (en) * | 2005-09-19 | 2007-03-28 | 北京大学 | Network flow classifying, state tracking and message processing device and method |
| CN102685006A (en) * | 2012-05-03 | 2012-09-19 | 中兴通讯股份有限公司 | Method and device for forwarding data messages |
| CN102769576A (en) * | 2012-08-17 | 2012-11-07 | 北京傲天动联技术有限公司 | Flow table self learning method, message transferring method and switch board |
| CN102957603A (en) * | 2012-11-09 | 2013-03-06 | 盛科网络(苏州)有限公司 | Multilevel flow table-based Openflow message forwarding method and system |
| WO2013059991A1 (en) * | 2011-10-25 | 2013-05-02 | 华为技术有限公司 | Data message processing method and system, message forwarding device |
| CN103141058A (en) * | 2010-09-23 | 2013-06-05 | 思科技术公司 | Network interface controller for virtual and distributed services |
-
2013
- 2013-07-23 CN CN201310315236.XA patent/CN104348716B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1937574A (en) * | 2005-09-19 | 2007-03-28 | 北京大学 | Network flow classifying, state tracking and message processing device and method |
| CN103141058A (en) * | 2010-09-23 | 2013-06-05 | 思科技术公司 | Network interface controller for virtual and distributed services |
| WO2013059991A1 (en) * | 2011-10-25 | 2013-05-02 | 华为技术有限公司 | Data message processing method and system, message forwarding device |
| CN102685006A (en) * | 2012-05-03 | 2012-09-19 | 中兴通讯股份有限公司 | Method and device for forwarding data messages |
| CN102769576A (en) * | 2012-08-17 | 2012-11-07 | 北京傲天动联技术有限公司 | Flow table self learning method, message transferring method and switch board |
| CN102957603A (en) * | 2012-11-09 | 2013-03-06 | 盛科网络(苏州)有限公司 | Multilevel flow table-based Openflow message forwarding method and system |
Non-Patent Citations (1)
| Title |
|---|
| OPENFLOW CONSORTIUM: "《OpenFlow Switch Specification》", 《OPENFLOW SWITCH SPECIFICATION VERSION 1.1.0 IMPLEMENTED》 * |
Cited By (50)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107431658A (en) * | 2015-03-24 | 2017-12-01 | 日本电气株式会社 | Communication system, control device, control method and program |
| CN104821923A (en) * | 2015-05-15 | 2015-08-05 | 杭州华三通信技术有限公司 | Method and device for transmitting upper-supply controller protocol message in SDN network |
| CN106453144A (en) * | 2015-08-10 | 2017-02-22 | 华为技术有限公司 | Message processing method and device in software-defined network |
| WO2017024571A1 (en) * | 2015-08-12 | 2017-02-16 | 华为技术有限公司 | Packet processing method, apparatus and system |
| CN107210973B (en) * | 2015-08-12 | 2020-09-29 | 华为技术有限公司 | Message processing method, device and system |
| CN107210973A (en) * | 2015-08-12 | 2017-09-26 | 华为技术有限公司 | A kind of message processing method, apparatus and system |
| CN105515995A (en) * | 2015-12-01 | 2016-04-20 | 华为技术有限公司 | Message processing method and apparatus, and flow table generation method and apparatus |
| CN105515995B (en) * | 2015-12-01 | 2018-09-21 | 华为技术有限公司 | Message processing method and device |
| CN105553851A (en) * | 2015-12-10 | 2016-05-04 | 中国电子科技集团公司第三十二研究所 | SDN-based network processor microcode and flow table implementation device and method |
| CN107124362A (en) * | 2016-02-24 | 2017-09-01 | 中移(苏州)软件技术有限公司 | A kind of flow table storage optimization method and device split based on subflow table |
| CN105959222A (en) * | 2016-04-25 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Message forwarding method, route nodes, and software defined network |
| CN107666429A (en) * | 2016-07-29 | 2018-02-06 | 平安科技(深圳)有限公司 | Switch logic dispositions method and terminal in a kind of Overlay networks |
| CN107666429B (en) * | 2016-07-29 | 2020-12-18 | 平安科技(深圳)有限公司 | Switch logic deployment method and terminal in Overlay network |
| CN106357535A (en) * | 2016-08-29 | 2017-01-25 | 广州西麦科技股份有限公司 | Issuing method, system and controller of SDN flow table |
| CN107070693B (en) * | 2017-01-12 | 2019-10-11 | 烽火通信科技股份有限公司 | The method and device of rapid configuration POTN business based on OpenFlow flow table |
| CN107070693A (en) * | 2017-01-12 | 2017-08-18 | 烽火通信科技股份有限公司 | The method and device of rapid configuration POTN business based on OpenFlow flow table |
| CN107147578A (en) * | 2017-03-27 | 2017-09-08 | 联想(北京)有限公司 | Information processing method and electronic equipment |
| CN109428792A (en) * | 2017-08-29 | 2019-03-05 | 中兴通讯股份有限公司 | A kind of method and device, the equipment of consumer wideband access processing |
| CN109428792B (en) * | 2017-08-29 | 2021-12-14 | 中兴通讯股份有限公司 | Method, device and equipment for user broadband access processing |
| CN109672594B (en) * | 2017-10-13 | 2021-12-03 | 中国电信股份有限公司 | IPoE message processing method and device and broadband remote access server |
| CN109672594A (en) * | 2017-10-13 | 2019-04-23 | 中国电信股份有限公司 | IPoE message processing method, device and Broadband Remote Access Server |
| CN108055202B (en) * | 2017-12-07 | 2020-11-20 | 锐捷网络股份有限公司 | Message processing equipment and method |
| CN108055202A (en) * | 2017-12-07 | 2018-05-18 | 锐捷网络股份有限公司 | A kind of message processor and method |
| CN113542125A (en) * | 2018-03-31 | 2021-10-22 | 华为技术有限公司 | Method and device for forwarding message based on integrated flow table |
| US11496393B2 (en) | 2018-03-31 | 2022-11-08 | Huawei Technologies Co., Ltd. | Method and apparatus for forwarding packet based on integrated flow table |
| CN113542125B (en) * | 2018-03-31 | 2022-11-25 | 华为技术有限公司 | Method and device for forwarding message based on integrated flow table |
| CN109005120B (en) * | 2018-10-31 | 2020-11-06 | 新华三技术有限公司 | Message processing method and network equipment |
| CN109005120A (en) * | 2018-10-31 | 2018-12-14 | 新华三技术有限公司 | A kind of message processing method and the network equipment |
| CN111182085A (en) * | 2018-11-12 | 2020-05-19 | 中移(杭州)信息技术有限公司 | Method, system, device and storage medium for controlling message forwarding based on multi-stage flow table |
| CN111182085B (en) * | 2018-11-12 | 2022-06-28 | 中移(杭州)信息技术有限公司 | Method, system, device and storage medium for controlling message forwarding based on multi-stage flow table |
| CN109600318A (en) * | 2018-11-29 | 2019-04-09 | 新华三技术有限公司合肥分公司 | A kind of method and SDN controller monitoring application program in SDN |
| CN109600318B (en) * | 2018-11-29 | 2022-07-12 | 新华三技术有限公司合肥分公司 | Method for monitoring application program in SDN and SDN controller |
| CN110852391A (en) * | 2019-11-13 | 2020-02-28 | 中国人民解放军91977部队 | Ethernet message classification method and device based on multiple classifiers |
| CN111131320B (en) * | 2019-12-31 | 2022-06-14 | 奇安信科技集团股份有限公司 | Asset identification method, device, system and medium |
| CN111131320A (en) * | 2019-12-31 | 2020-05-08 | 奇安信科技集团股份有限公司 | Asset identification method, device, system, medium, and program product |
| CN111353018B (en) * | 2020-02-24 | 2023-11-10 | 杭州迪普信息技术有限公司 | Data processing method and device based on deep packet inspection and network equipment |
| CN111353018A (en) * | 2020-02-24 | 2020-06-30 | 杭州迪普信息技术有限公司 | Data processing method and device based on deep packet inspection and network equipment |
| CN113765857A (en) * | 2020-06-04 | 2021-12-07 | 华为技术有限公司 | Message forwarding method, device, equipment and storage medium |
| CN112491710A (en) * | 2020-11-09 | 2021-03-12 | 锐捷网络股份有限公司 | Message forwarding method and device based on Openflow |
| CN112511438A (en) * | 2020-11-19 | 2021-03-16 | 锐捷网络股份有限公司 | Method and device for forwarding message by using flow table and computer equipment |
| CN112787847A (en) * | 2020-12-24 | 2021-05-11 | 凌云天博光电科技股份有限公司 | Method and device for rapidly processing large number of Trap based on network management system EPON |
| CN114390120B (en) * | 2022-01-04 | 2023-06-09 | 烽火通信科技股份有限公司 | Method and device for processing protocol frames |
| CN114390120A (en) * | 2022-01-04 | 2022-04-22 | 烽火通信科技股份有限公司 | Method and device for processing protocol frame |
| CN114356418A (en) * | 2022-03-10 | 2022-04-15 | 之江实验室 | Intelligent table entry controller and control method |
| CN116055586A (en) * | 2022-08-15 | 2023-05-02 | 荣耀终端有限公司 | Fragment message matching method, router and storage medium |
| CN116055586B (en) * | 2022-08-15 | 2023-09-01 | 荣耀终端有限公司 | Fragment message matching method, router and storage medium |
| CN116684358A (en) * | 2023-07-31 | 2023-09-01 | 之江实验室 | Flow table management system and method for programmable network element equipment |
| CN116684358B (en) * | 2023-07-31 | 2023-12-12 | 之江实验室 | Flow table management system and method for programmable network element equipment |
| CN117439953A (en) * | 2023-12-20 | 2024-01-23 | 珠海星云智联科技有限公司 | Equivalent cost multi-path selection system, method, equipment, cluster and medium |
| CN117439953B (en) * | 2023-12-20 | 2024-03-26 | 珠海星云智联科技有限公司 | Equivalent cost multi-path selection system, method, equipment, cluster and medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104348716B (en) | 2018-03-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104348716B (en) | A kind of message processing method and equipment | |
| US20210359939A1 (en) | Packet processing method and network apparatus | |
| CN108289104B (en) | Industrial SDN network DDoS attack detection and mitigation method | |
| US7289498B2 (en) | Classifying and distributing traffic at a network node | |
| US9749226B2 (en) | Flow-based network switching system | |
| CN101247308B (en) | Tunnel packet processing method for implementing IPv6 traversing IPv4 based on network processor | |
| CN104243315B (en) | Device and method for uniquely enumerating the path in analytic tree | |
| CN104320304B (en) | A kind of core network user flow application recognition methods of the multimode fusion easily extended | |
| US7684400B2 (en) | Logarithmic time range-based multifield-correlation packet classification | |
| CN104579940B (en) | Search the method and device of accesses control list | |
| EP2541854B1 (en) | Hybrid port range encoding | |
| US9356844B2 (en) | Efficient application recognition in network traffic | |
| CN105429879B (en) | Flow entry querying method, equipment and system | |
| CN104823416A (en) | Packet prioritization in a software-defined network implementing OpenFlow | |
| US20060262789A1 (en) | Method and corresponding device for packets classification | |
| CN112437009B (en) | SRv6 method, router, routing system and storage medium for end-to-end flow policy | |
| WO2011060436A1 (en) | Iterative parsing and classification | |
| CN108353022A (en) | A kind of processing method of data message, apparatus and system | |
| CN105357142A (en) | Method for designing network load balancer system based on ForCES | |
| CN108881028A (en) | The SDN network resource regulating method of application perception is realized based on deep learning | |
| US20180167319A1 (en) | Application identification cache | |
| US7864776B2 (en) | Method and equipment for making a routing decision dependent on a quality-of-service class | |
| CN101714948B (en) | A kind of sorting technique of net bag of multiple domain and device | |
| CN102014065A (en) | Method for analyzing packet headers, header analysis preprocessing device and network processor | |
| US7953017B2 (en) | Application specific service ping packet |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Applicant before: Huasan Communication Technology Co., Ltd. |
|
| CB02 | Change of applicant information | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |