CN104702479B - The method and apparatus that tunnel is established in SDN network - Google Patents
The method and apparatus that tunnel is established in SDN network Download PDFInfo
- Publication number
- CN104702479B CN104702479B CN201510104000.0A CN201510104000A CN104702479B CN 104702479 B CN104702479 B CN 104702479B CN 201510104000 A CN201510104000 A CN 201510104000A CN 104702479 B CN104702479 B CN 104702479B
- Authority
- CN
- China
- Prior art keywords
- tunnel
- port
- message
- outgoing interface
- endpoint device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The application provides a kind of method that tunnel is established in SDN network, using on the controller, including:The establishment message of tunnel port is issued to the endpoint device in tunnel, the tunnel port corresponds to tunnel to be established;The establishment message includes the packaging information in the tunnel and the physics outgoing interface in the endpoint device;It is issued to the endpoint device using the tunnel port as the flow table of outgoing interface, the flow table is sent for instructing the endpoint device after being packaged the original message for matching the flow table according to the packaging information from the physics outgoing interface.By the technical solution of the application, centralized control of the controller to tunnel forward-path is realized, is easy to implement the better flow control of SDN network.
Description
Technical field
This application involves network communication technology field more particularly to a kind of SDN (Software Defined Network,
Software defined network) method and apparatus that tunnel is established in network.
Background technology
SDN is a kind of the currently prevailing virtualization solution, and core concept is by original completely by interchanger/road
The message pass-through mode controlled by device is converted to the stream forwarding formula described based on multiple domain net packet packet header, while traditional network being set
Standby data plane (data plane) and control plane (control plane) phase separation, by route test function from network
It is stripped out in equipment, the decision of all forwarding behaviors all moves on the controller of centralization, by controller
(Controller) the various network equipments are managed and are configured with standardized interface, to the designs of Internet resources,
It manages and using the more possibilities of offer.In other words, the essence of SDN is to carry out centralized control to network, and realization being capable of dynamic
The flexible network of distribution is SDN network important goal.
Invention content
In view of this, the application provides a kind of method for establishing tunnel in SDN network, using on the controller, including:
The establishment message of tunnel port is issued to the endpoint device in tunnel, the tunnel port corresponds to tunnel to be established
Road;The establishment message includes the packaging information in the tunnel and the physics outgoing interface in the endpoint device;
It is issued to the endpoint device using the tunnel port as the flow table of outgoing interface, the flow table is for instructing the end
Point device is sent out after being packaged the original message for matching the flow table according to the packaging information from the physics outgoing interface
It send.
The method that tunnel is established in another kind SDN network provided by the present application, applies in the endpoint device in tunnel, wraps
It includes:
The tunnel port for receiving controller creates message;The establishment message includes the packaging information in tunnel and described
Physics outgoing interface in endpoint device;
It is generated according to the packaging information in the tunnel and the physics outgoing interface in the endpoint device and corresponds to the tunnel
The tunnel table of road port;
Receive controller issue using the tunnel port as the flow table of outgoing interface;
To match the original message of the flow table according to the packaging information in the tunnel table corresponding to the tunnel port into
After row encapsulation, sent from the physics outgoing interface in the tunnel table.
Present invention also provides the device for establishing tunnel in a kind of SDN network, using on the controller, including:
Create message issuance unit, the establishment message for issuing tunnel port to the endpoint device in tunnel, the tunnel
Port corresponds to tunnel to be established;The establishment message includes the packaging information in the tunnel and in the endpoint device
Physics outgoing interface;
Tunnel flow table issuance unit, for being issued to the endpoint device using the tunnel port as the flow table of outgoing interface,
The flow table is for instructing the endpoint device to be sealed according to the packaging information by the original message for matching the flow table
After dress, sent from the physics outgoing interface.
The device that tunnel is established in another kind SDN network provided by the present application, applies in the endpoint device in tunnel, wraps
It includes:
Message reception units are created, the tunnel port for receiving controller creates message;The establishment message includes
The packaging information in tunnel and the physics outgoing interface in the endpoint device;
Tunnel table generation unit, for going out to connect according to the packaging information in the tunnel and the physics in the endpoint device
Mouth generates the tunnel table corresponding to the tunnel port;
Tunnel flow table receiving unit, for receiving that controller issues using the tunnel port as the flow table of outgoing interface;
Enter tunnel unit, for the original message of the flow table will to be matched according to the tunnel table corresponding to the tunnel port
In packaging information be packaged after, from the tunnel table physics outgoing interface send.
By above technical scheme as it can be seen that tunnel is virtually turned to corresponding tunnel port, controller by embodiments herein
In encapsulation and the routing information for instructing endpoint device to issue tunnel when creating tunnel port, turned using tunnel in instruction endpoint device
Encapsulation and routing information are quoted by tunnel port when hair, realize centralized control of the controller to tunnel forward-path, just
In the realization better flow control of SDN network.
Description of the drawings
Fig. 1 is the hardware structure schematic diagram of the equipment or endpoint device in an example where SDN controls;
Fig. 2 is the flow chart for a kind of method for establishing tunnel in an example in application SDN network on the controller;
Fig. 3 is the stream for a kind of method for establishing tunnel in an example in the SDN network applied in endpoint of a tunnel equipment
Cheng Tu;
Fig. 4 is a kind of networking structure figure of SDN network in an example;
Fig. 5 is a kind of logical construction for the device for establishing tunnel in an example in application SDN network on the controller
Figure;
Fig. 6 is to establish the device in tunnel in an example in a kind of SDN network applied in endpoint of a tunnel equipment to patrol
Collect structure chart.
Specific implementation mode
Tunnel be it is a kind of transmitted between user network by the infrastructure of public network data in the way of.Tunnel is two
A kind of message encapsulation means are provided between a endpoint device, (it is reported by original message by the endpoint device as tunnel starting point
The address of address and destination of the head comprising sender) it is used as data load, it is encapsulated in tunnel packet (message after encapsulation)
It is transferred to tunnel opposite end.The address of sender and the address of destination are known as home address, the ground of tunnel packet in original message
Location is known as external address, and the source address and destination address of external address are typically two endpoint devices in tunnel when establishing tunnel
The address used.Endpoint device as termination point of a tunnel decapsulates tunnel packet, obtains original message, according to original report
The address of literary destination forwards it to destination.
The message of not common procotol can be transmitted by tunnel by public network, and it is privately owned can to hide user
Network address, additionally it is possible to increase the safety of data by encrypting all or part of content of original message, in SDN network
It is widely used, such as MPLS (Multi-Protocol Label Switching, multiprotocol label switching), IP tunnel etc..
In the prior art, when needing to establish tunnel in SDN network, network administrator is in SDN controllers and tunnel
Identical tunnel ID (index) is configured in two endpoint devices, for identifying the same tunnel.NM server or SDN controllers
The configuration-direct for creating tunnel is issued in two endpoint devices in tunnel by Network Management Protocol.Endpoint device runs road
The next hop address and physics outgoing interface in tunnel are obtained by agreement, or tunnel is specified by network administrator's static configuration
Next hop address and physics outgoing interface.Endpoint device creates the tunnel (i.e. the tunnel with tunnel ID), generates the tunnel
Tunnel table, including enter tunnel list item and to go out tunnel list item, wherein it includes next hop address to enter tunnel list item, and will be original
Message is encapsulated as other packaging informations required when tunnel packet, go out tunnel list item be included in tunnel packet is descapsulated into it is original
Required decapsulation information when message.
The flow table that the forwarding of message on network devices is issued dependent on controller in SDN network.Turned by tunnel when having
When the message of hair reaches endpoint device, due to not being matched to existing flow table, endpoint device is by the message up sending to controller.Control
Device processed issues the flow table that the message is forwarded by tunnel to endpoint device, and tunnel ID, tunnel label (such as MPLS are specified in flow table
Label, the source address of IP tunnel and destination address), but due to controller packaging information not related with next hop address and be somebody's turn to do
Physics outgoing interface information of the tunnel in endpoint device, the above will be lacked by being handed down in the flow table of endpoint device, need by
Endpoint device voluntarily fills these list items in flow table.In this way, controller can not be to actual transmissions road of the tunnel in common network
Diameter carries out centralized control, cannot carry out flow control according to the whole network state of common network.If tunnel is set in some endpoint
Standby upper physics outgoing interface changes, and controller is needed to the endpoint device issuing message, what update was forwarded by the tunnel
All flow tables;New physics outgoing interface is filled into flow table by endpoint device after receiving updated flow table.Due to from the end
The flow table for the message that point device is sent by tunnel is required for updating, and results in a large amount of message between controller and endpoint device and hands over
Mutually and in endpoint device a large amount of flow table operates.
In the example of the application, operation establishes tunnel with the SDN network operated in endpoint device on the controller
The control logic in road can realize centralized control of the controller to tunnel actual transmission paths, to reach better flow control.
Equipment or endpoint device where controller can have hardware configuration shown in FIG. 1, including processor 110, memory 120 with
And network interface 130, these hardware are connected with each other by internal bus 140.Processor 110 runs SDN nets in memory 120
Network establishes the control logic in tunnel, and operational process on the controller is as shown in Fig. 2, the operational process in endpoint device is such as schemed
Shown in 3.
On the controller, step 210, the establishment message of tunnel port is issued to the endpoint device in tunnel, the tunnel port
Corresponding to tunnel to be established.
The information that managed devices in its management domain are preserved in SDN network, on controller, such as the physics end of the network equipment
Mouth and its state, the connection topology of network, link state etc..When establishing tunnel between two network equipments in management domain
When, controller can calculate forward-path of the tunnel between the two endpoint devices according to the information preserved, wherein wrapping
Include physics outgoing interface of the tunnel in endpoint device.
In this example, tunnel is virtually turned to a corresponding logic port (tunnel port), tunnel end in endpoint device
The attribute of mouth includes the packaging information in corresponding tunnel and the physics outgoing interface in this endpoint device;When needing to establish tunnel
When, controller issues tunnel port to the endpoint device in tunnel and creates message, is carried in creating message and corresponds to created tunnel
The packaging information in the tunnel of road port and the physics outgoing interface in this endpoint device.
The packaging information in tunnel is different according to the difference of the transport protocol (also referred to as tunneling) in established tunnel.Example
Such as, to two layer tunnel, the MAC (Media of the outer layer source MAC of tunnel packet typically as the endpoint device of tunnel starting point
Access Control, media access control) address, endpoint device of the outer layer target MAC (Media Access Control) address typically as termination point of a tunnel
MAC Address, packaging information includes outer layer source MAC and outer layer target MAC (Media Access Control) address;To three layer tunnel, tunnel packet
Outer layer source MAC and outer layer source IP address are typically as the MAC Address and IP address of the endpoint device of tunnel starting point, outer layer
Purpose IP address is typically as the IP address of the endpoint device of termination point of a tunnel, and outer layer target MAC (Media Access Control) address is typically next-hop
The MAC Address of the network equipment (being determined according to the forward-path that controller calculates), packaging information includes outer layer source and destination MAC
Address, source and destination IP address;To the tunnels MPLS, packaging information includes label, if tunnel belongs to some Service Instance,
MPLS label will correspond to the Service Instance.
On controller and endpoint device, often it is used as the mark of each logic port or physical port with port numbers,
Controller usually specifies the port numbers of tunnel port when issuing tunnel port and creating message.Can be that tunnel port divides one
Port numbers value range divides another different port numbers value range, tunnel end for physical port with other logic ports
The range of port number of mouth is different from the range of port number of other ports, and such endpoint device can determine that the port by port numbers
Whether it is tunnel port.
In endpoint device, step 310, the tunnel port for receiving controller creates message;The establishment message includes tunnel
The packaging information in road and the physics outgoing interface in this endpoint device.
In endpoint device, step 320, set according to the packaging information in tunnel in tunnel port establishment message and in this endpoint
Standby upper physics outgoing interface generates the tunnel table corresponding to the tunnel port.
Endpoint device receives the tunnel port that controller issues and creates message, creates logic port as tunnel port, root
The tunnel table corresponding to the tunnel port is generated according to establishment message.The table entry structure and its content of tunnel table can be set according to endpoint
Standby specific implementation is different and different, includes usually into tunnel list item and going out tunnel list item, is used for wherein entering tunnel list item
It is forwarded after being encapsulated as tunnel packet as the original message of tunnel starting point using this endpoint device, including packaging information and physics go out to connect
Mouthful;Go out tunnel list item to be used for decapsulate by the tunnel packet of termination point of a tunnel of this endpoint device, including the letter needed for decapsulation
Breath.Therefore, it can be generated into tunnel list item according to the packaging information and physics outgoing interface that create in message, according to establishment message
In packaging information generate tunnel list item.
After generating corresponding tunnel table for tunnel port, controller and endpoint device can be quoted by tunnel port
Corresponding tunnel table, that completes original message enters tunnel processing.
On the controller, step 220, the flow table using the tunnel port as outgoing interface is issued to endpoint device, which uses
In instruct the endpoint device after the original message for matching the flow table is packaged according to the packaging information of the tunnel interface, from
The physics outgoing interface of the tunnel interface is sent.
According to specific application scenarios, controller can be issued in all cases to endpoint device and be forwarded using the tunnel
The flow table of original message.For example, when endpoint device receives the original message for failing to match existing flow table, this is given on controller
Original message, controller will be forwarded according to the destination address determination of the original message by tunnel, then being issued to endpoint device makes
The flow table forwarded with the tunnel.For another example, controller can receive the forward-path packet between source IP address and purpose IP address
After the ARP messages for including tunnel, due to that there will be the original message forwarded by the tunnel, is issued to endpoint device and use the tunnel
The flow table of forwarding.
The flow table forwarded using tunnel that controller is issued to endpoint device is to connect with the corresponding tunnel port in the tunnel
Mouthful.It is used for instructing endpoint device after receiving the original message for matching the flow table using tunnel port as the flow table of outgoing interface, it will be former
After beginning message is encapsulated as tunnel packet according to the packaging information of the tunnel interface, being sent from the physics outgoing interface of the tunnel interface should
Tunnel packet.The occurrence of flow table is referred to the occurrence of the flow table forwarded in the prior art by tunnel, repeats no more.
In endpoint device, step 330, receive controller issue using the tunnel port as the flow table of outgoing interface.Endpoint
The flow table that controller issues is stored in local by equipment.
In endpoint device, step 340, the original message of the flow table will be matched according to the tunnel corresponding to the tunnel port
After packaging information in table is packaged, sent from the physics outgoing interface in the tunnel table.
After endpoint device receives the original message from host, the flow table that can match the original message is searched.If
The outgoing interface for matching the flow table of the original message is tunnel port, then searches the tunnel table corresponding to the tunnel port, therefrom obtain
Obtain the packaging information and physics outgoing interface of the tunnel port.Original message is encapsulated as tunnel report by endpoint device using packaging information
Text, and tunnel packet is sent from physics outgoing interface.
It should be noted that in this example controller issue using tunnel port as the flow table of outgoing interface in do not include tunnel
Packaging information and physics outgoing interface, endpoint device need not also fill these contents in the flow table;But drawn by endpoint device
Packaging information and physics outgoing interface are obtained with the corresponding tunnel table of the tunnel port.
Controller can be in such a way that each network equipment in tunnel actual transmission paths issues flow table, for matching
The label of outer envelope or the tunnel packet of address specify outgoing interface, and tunnel packet is transferred to the endpoint as termination point of a tunnel
Equipment.After the endpoint device as termination point of a tunnel is received using this equipment as the tunnel packet of destination, searched in tunnel table
Tunnel packet is descapsulated into original message by the decapsulation information of the tunnel packet according to decapsulation information, and according to original report
The matched flow table of text is forwarded.The processing procedure for going out tunnel packet in this example is consistent with the prior art, repeats no more.
Tunnel is virtually turned to corresponding tunnel port, controller is by instructing endpoint device to create tunnel port in this example
Tunnel is established, issues encapsulation and the routing information in corresponding tunnel by issuing the attribute of tunnel port, controller is instructing
Endpoint device can quote encapsulation and routing information when being forwarded using tunnel by tunnel port, so as to realize controller
To the centralized control of tunnel creation, tunnel forward-path, lay a good foundation to reach better flow control.
Further, due to various reasons, controller may need to change packaging information of the tunnel in endpoint device, object
Manage outgoing interface etc..For example, when link failure occurs in the transmission path in original tunnel, need to change transmission path to avoid turning
Hair interrupts;For another example, when flow is excessive on original tunnel transmission path, transmission path can also be changed, it can under both of these case
It can be required for change physics outgoing interface.When changing packaging information and/or physics outgoing interface of the tunnel in endpoint device, control
Device issues the modification message of the corresponding tunnel port in the tunnel to endpoint device, and the encapsulation letter after variation is carried in changing message
Breath and/or physics outgoing interface.After endpoint device receives the modification message for the tunnel port that controller issues, more according to modification message
Newly correspond to the tunnel table of the tunnel port.In this way, when subsequent match is using the tunnel port as the original report of the flow table of outgoing interface
When text reaches endpoint device, will the encapsulation of the original message be carried out using updated packaging information and/or physics outgoing interface
And forwarding, it avoids and updates flow table when tunnel information changes, reduce the flow table update between controller and interchanger
Message reduces influence of the flow table update to endpoint device performance.
When no longer needing some tunnel in SDN network, controller can instruct the endpoint device in the tunnel to delete the tunnel
Road.Controller issues the deletion message of corresponding tunnel port to the endpoint device in the tunnel;Endpoint device receives tunnel port
Deletion message after, delete the corresponding tunnel table of the tunnel port and using the tunnel port as the flow table of outgoing interface.
In this example, the tunnel port that controller is issued to endpoint device creates message, tunnel port modification message and tunnel
Port deletes message and customized format may be used, and can also use the extension form of existing SDN control messages.For example,
In the SDN network of Openflow (open flows) agreement, (the ports Port Modification Message may be used in controller
Change message) change the port attribute on managed devices, shown in port change message Config fields are defined as follows:
enum ofp_port_config{
OFPPC_PORT_DOWN=1<<0,/*Port is administratively down.*/
OFPPC_NO_RECV=1<<2,/*Drop all packets received by port.*/
OFPPC_NO_FWD=1<<5,/*Drop packets forwarded to port..*/
OFPPC_TUNNEL_CRE=1<<7,/*Create Tunnel Port.*/
OFPPC_TUNNEL_MODIFY=1<<8,/*Modify Tunnel Port.*/
OFPPC_TUNNEL_DELETE=1<<9,/*Delete Tunnel Port.*/
Wherein, action type OFPPC_PORT_DOWN is used for that managed devices is instructed to close designated port;Action type
OFPPC_NO_RECV is used for that managed devices is instructed to abandon all messages that designated port receives;Action type OFPPC_NO_
FWD is used for that managed devices is instructed to abandon all messages for being forwarded to designated port;Action type OFPPC_TUNNEL_
CREATE, OFPPC_TUNNEL_MODIFY, OFPPC_TUNNEL_DELETE are increased extension config fields in this example.Expand
It opens up in field, action type OFPPC_TUNNEL_CREATE is used for that endpoint device is instructed to increase tunnel port, action type
OFPPC_TUNNEL_MODIFY is used for instructing the packaging information and/or physics outgoing interface of endpoint device modification tunnel port,
OFPPC_TUNNEL_DELETE is used for that endpoint device is instructed to delete tunnel port.The port numbers of tunnel port can use Port
Portno fields in Modification Message message carry;The packaging information and physics outgoing interface in tunnel pass through
Properties fields in Port Modification Message message carry, in the properties fields
Experimenter fields are the field that Openflow agreements are reserved, and can carry the above- mentioned information in tunnel.In order to it is common
Physical port distinguishes, and a section can be divided from the port numbers value range of Openflow agreements to identify tunnel end
Mouthful, the port numbers section of other ports is not overlapped in the port numbers and the Openflow network equipments in this section.
The Openflow network equipments are after receiving the Port Modification Message message that controller issues, such as
The action type of the config fields of fruit message is OFPPC_TUNNEL_CREATE, OFPPC_TUNNEL_MODIFY or OFPPC_
TUNNEL_DELETE then carries out the processing of tunnel port, adds, modifies or deletes tunnel;If action type is not above-mentioned
Three kinds then obtain other ports in this equipment according to flow in the prior art in portno fields, and phase is carried out to other ports
The processing answered.
In another example of the application, a kind of networking structure of SDN network is as shown in Figure 4.Controller 410 passes through pipe
It manages Management Of Resources, Accesses & Network equipment 420,430,440 and 450 to interact, host 460 connects the physical interface 423 of the network equipment 420, host
The physical interface 453 of the 470 connection network equipments 450.There are customer services, the customer service to belong to clothes between host 460 and 470
Pragmatic example 1, and need to transmit in two layer tunnel.
According to the topological structure of SDN network in Fig. 4, controller 410 learns needs with the network equipment 420 and 450 for endpoint
Equipment establishes tunnel.By calculating, controller 410 is determined using the path of the network equipment 420,430 to 450 as the reality in tunnel
Border forward-path, in this way, physics outgoing interface of the tunnel on the network equipment 420 is interface 421, the object on the network equipment 450
Reason outgoing interface is interface 451.
Controller 410 issues the establishment message of tunnel port, port numbers 0xFFFF0001, message to endpoint device 420
In packaging information include outer layer source MAC MAC-420 (MAC Address of endpoint device 420), outer layer target MAC (Media Access Control) address
MAC-450 (MAC Address of endpoint device 450) and tunnel label MPLS Label1 (correspond to Service Instance 1), in message
Physics outgoing interface is interface 421.After endpoint device 420 receives the establishment message, it is locally generated corresponding to port numbers
The tunnel table of 0xFFFF0001, wherein it includes above-mentioned packaging information and physics outgoing interface to enter tunnel list item, going out tunnel list item includes
Corresponding to the decapsulation information of packaging information.
Controller 410 issues the establishment message of tunnel port, port numbers 0xFFFF0002, message to endpoint device 450
In packaging information include outer layer source MAC MAC-450, outer layer target MAC (Media Access Control) address MAC-420 and tunnel label MPLS
Label1, the physics outgoing interface in message are interface 451.After endpoint device 450 receives the establishment message, it is locally generated correspondence
In the tunnel table of port numbers 0xFFFF0002, wherein it includes above-mentioned packaging information and physics outgoing interface to enter tunnel list item, go out tunnel
List item includes the decapsulation information corresponding to packaging information.
When mutually sending datagram between host 460 and 470, trigger controller 410 is to endpoint device 420 and endpoint
Equipment 450 issues flow table.
The occurrence that controller 410 is handed down to first flow table of endpoint device 420 is IP address and the service of host 470
Example 1, action refer to making interface as tunnel port 0xFFFF0001;It is handed down to of the Article 2 flow table of endpoint device 420
With the IP address and Service Instance 1 that item is host 460, action refers to making interface, and outgoing interface is interface 423.Endpoint device 420
After receiving first flow table that controller 110 issues, the corresponding tunnel tables of reference tunnel port 0xFFFF0001 generate forwarding table
, the occurrence of the forwarding-table item is the occurrence of flow table, and it is into tunnel to act, and the outer layer source MAC in tunnel is MAC-
420, outer layer target MAC (Media Access Control) address is MAC-450, tunnel label is MPLS Label1, outgoing interface 421.420 basis of endpoint device
The occurrence for the forwarding-table item that Article 2 flow table generates and action are identical as Article 2 flow table.
The occurrence that controller 410 is handed down to first flow table of endpoint device 450 is IP address and the service of host 460
Example 1, action refer to making interface as tunnel port 0xFFFF0002;It is handed down to of the Article 2 flow table of endpoint device 450
With the IP address and Service Instance 1 that item is host 470, action refers to making interface, and outgoing interface is interface 453.Endpoint device 450
After receiving first flow table that controller 110 issues, the corresponding tunnel tables of reference tunnel port 0xFFFF0002 generate forwarding table
, the occurrence of the forwarding-table item is the occurrence of flow table, and it is into tunnel to act, and the outer layer source MAC in tunnel is MAC-
450, outer layer target MAC (Media Access Control) address is MAC-420, tunnel label is MPLS Label1, outgoing interface 451.450 basis of endpoint device
The occurrence for the forwarding-table item that Article 2 flow table generates and action are identical as Article 2 flow table.
Endpoint device 420 receives after host 460 is sent to the message of host 470, and matching is generated according to first flow table
After the original message of host 460 is encapsulated as tunnel packet, the network equipment 430 is sent to from port 421 for forwarding-table item.Network
Tunnel packet is forwarded to endpoint device 450 by equipment 430.Endpoint device 450 receives the tunnel packet using this equipment as destination,
Tunnel list item is matched, tunnel packet is descapsulated into original message, original message matching turns according to what Article 2 flow table generated
Forwarding list item is forwarded to destination host 470 from interface 453.Host 470 is sent to processing and the repeating process of the message of host 460
It is similar to the above, it is not repeated.
When the network equipment 430 breaks down, the forward-path in tunnel is changed to network and set by controller 110 by calculating
Standby 420,440 to 450, it needs to change the physics outgoing interface in two endpoint devices in this way.It is issued to endpoint device 420 and 450
The modification message of tunnel port is handed down to the physics outgoing interface 422 carried in the message of endpoint device 420 after change, is handed down to
The physics outgoing interface 452 after change is carried in the message of endpoint device 450.Endpoint device 420 and 450 responds repairing for tunnel port
Change message, updates the physics outgoing interface in tunnel table, according to existing realization, quoting the forwarding-table item of tunnel table can automatically update
Its physics outgoing interface.In this way, controller 110 is directed to the flow table of host 460 and host 470 without update.Actual SDN network
In, the host number for carrying out message transmissions between two endpoint devices by tunnel is often quite a lot of, is changed using tunnel port
Mode can reduce a large amount of flow table new information, the protocol interaction efficiency between controller and interchanger can obtain prodigious
Improve.
Corresponding with the realization of above-mentioned flow, present invention also provides the devices that tunnel is established in SDN network, apply in controller
Or in the endpoint device in tunnel, which can be by software realization, can also be by way of hardware or software and hardware combining
It realizes.It, can be by the processor 110 in Fig. 1 in memory as the device on a logical meaning for implemented in software
It is run in SDN network in 120 and establishes the control logic in tunnel and formed.
The device that tunnel is established in a kind of SDN network that Fig. 5 is shown in one example of the application, is applied in controller
On, it functionally divides, including create message issuance unit and tunnel flow table issuance unit, wherein:Create message issuance unit
Establishment message for issuing from tunnel port to the endpoint device in tunnel, the tunnel port correspond to tunnel to be established;Institute
It includes the packaging information in the tunnel and the physics outgoing interface in the endpoint device to state and create message;Tunnel flow table issuance
Unit to the endpoint device for issuing using the tunnel port as the flow table of outgoing interface, and the flow table is for instructing the end
Point device is sent out after being packaged the original message for matching the flow table according to the packaging information from the physics outgoing interface
It send.
Described device can also include modification message issuance unit, for the envelope when change tunnel in the endpoint device
When filling information and/or physics outgoing interface, the modification message of corresponding tunnel port is issued to the endpoint device in the tunnel, it is described
Modification message includes the packaging information and/or physics outgoing interface after variation.
Described device can also include deleting message issuance unit, be used for when deleting tunnel, to the endpoint in the tunnel
Equipment issues the deletion message of corresponding tunnel port.
The device that tunnel is established in a kind of SDN network that Fig. 6 is shown in one example of the application, is applied at the end in tunnel
On point device, functionally divide, including create message reception units, tunnel table generation unit, tunnel flow table receiving unit and
Enter tunnel unit, wherein:Create the tunnel port establishment message that message reception units are used to receive controller;The establishment message
Include the packaging information in tunnel and the physics outgoing interface in the endpoint device;Tunnel table generation unit is used for according to
The packaging information in tunnel and the physics outgoing interface in the endpoint device generate the tunnel table corresponding to the tunnel port;Tunnel
Road flow table receiving unit is used to receive that controller to issue using the tunnel port as the flow table of outgoing interface;Enter tunnel unit to be used for
After the original message for matching the flow table is packaged according to the packaging information in the tunnel table corresponding to the tunnel port,
It is sent from the physics outgoing interface in the tunnel table.
In one example, the tunnel table includes into tunnel list item and going out tunnel list item;It is described enter tunnel list item according to institute
It states packaging information and physics outgoing interface generates, for the encapsulation and forwarding of the original message that this equipment is the tunnel starting point;
It is described go out tunnel list item generated according to the packaging information, for this equipment be the termination point of a tunnel tunnel packet deblocking
Dress.
Described device can also include modification message reception units and tunnel updating unit, wherein:Change message sink list
Modification message of the member for receiving the tunnel port that controller issues, the modification message includes that newer envelope is wanted in tunnel
Fill information and/or the physics outgoing interface in the endpoint device;Tunnel updating unit is used for according to the modification information updating
Corresponding to the tunnel table of the tunnel port.
Described device can also include delete message reception units and tunnel deleting unit, wherein:Delete message sink list
Deletion message of the member for receiving the tunnel port that controller issues;Tunnel deleting unit is for deleting the tunnel port
Corresponding tunnel table and using the tunnel port as the flow table of outgoing interface.
The foregoing is merely the preferred embodiments of the application, not limiting the application, all essences in the application
With within principle, any modification, equivalent substitution, improvement and etc. done should be included within the scope of the application protection god.
Claims (15)
1. a kind of method for establishing tunnel in software defined network SDN network, using on the controller, which is characterized in that described
Method includes:
Tunnel to be established virtually is turned into corresponding tunnel port;The attribute of the tunnel port includes corresponding tunnel
Packaging information and the physics outgoing interface in this endpoint device;
The establishment message of tunnel port is issued to the endpoint device in tunnel, the tunnel port corresponds to tunnel to be established;Institute
It includes the packaging information in the tunnel and the physics outgoing interface in the endpoint device to state and create message;
It is issued to the endpoint device using the tunnel port as the flow table of outgoing interface, the flow table is for instructing the endpoint to set
For after being packaged the original message for matching the flow table according to the packaging information, sent from the physics outgoing interface.
2. according to the method described in claim 1, it is characterized in that, the method further includes:When change tunnel is in the endpoint
When packaging information and/or physics outgoing interface in equipment, repairing for corresponding tunnel port is issued to the endpoint device in the tunnel
Change message, the modification message includes the packaging information and/or physics outgoing interface after variation.
3. according to the method described in claim 1, it is characterized in that, the method further includes:When deleting tunnel, to the tunnel
The endpoint device in road issues the deletion message of corresponding tunnel port.
4. according to the method described in claim 1, it is characterized in that, described create the end that message is open flows Openflow agreements
Mouth change message Port Modification Message;The range of port number of the tunnel port is different from other ports
Range of port number.
5. a kind of method for establishing tunnel in software defined network SDN network, is applied in the endpoint device in tunnel, feature exists
In, the method includes:
The tunnel port for receiving controller creates message;The establishment message includes the packaging information in tunnel and in the endpoint
Physics outgoing interface in equipment;The tunnel is virtualized into corresponding tunnel port on the controller;The tunnel end
The attribute of mouth includes the packaging information in corresponding tunnel and the physics outgoing interface in this endpoint device;
It is generated according to the packaging information in the tunnel and the physics outgoing interface in the endpoint device and corresponds to the tunnel end
The tunnel table of mouth;
Receive controller issue using the tunnel port as the flow table of outgoing interface;
The original message for matching the flow table is sealed according to the packaging information in the tunnel table corresponding to the tunnel port
After dress, sent from the physics outgoing interface in the tunnel table.
6. according to the method described in claim 5, it is characterized in that, the tunnel table includes into tunnel list item and going out tunnel table
;It is described enter tunnel list item generated according to the packaging information and physics outgoing interface, for this equipment for the tunnel starting point
Original message encapsulation and forwarding;It is described go out tunnel list item generated according to the packaging information, for this equipment being described
The decapsulation of the tunnel packet of termination point of a tunnel.
7. method according to claim 5 or 6, which is characterized in that the method further includes:
The modification message for the tunnel port that controller issues is received, the modification message includes that newer encapsulation is wanted in tunnel
Information and/or the physics outgoing interface in the endpoint device;
Correspond to the tunnel table of the tunnel port according to the modification information updating.
8. method according to claim 5 or 6, which is characterized in that the method further includes:
Receive the deletion message for the tunnel port that controller issues;
Delete the corresponding tunnel table of the tunnel port and using the tunnel port as the flow table of outgoing interface.
9. the device in tunnel is established in a kind of software defined network SDN network, using on the controller, which is characterized in that described
Device includes:
Message issuance unit is created, for tunnel to be established virtually to be turned to corresponding tunnel port;The tunnel port
Attribute includes the packaging information in corresponding tunnel and the physics outgoing interface in this endpoint device;To under the endpoint device in tunnel
The establishment message of tunnel port is sent out, the tunnel port corresponds to tunnel to be established;The establishment message includes the tunnel
The packaging information in road and the physics outgoing interface in the endpoint device;
Tunnel flow table issuance unit, it is described for being issued to the endpoint device using the tunnel port as the flow table of outgoing interface
Flow table is used to instruct the endpoint device after being packaged the original message for matching the flow table according to the packaging information,
It is sent from the physics outgoing interface.
10. device according to claim 9, which is characterized in that described device further includes:Message issuance unit is changed, is used
In when changing packaging information and/or physics outgoing interface of the tunnel in the endpoint device, to the endpoint device in the tunnel
Issue the modification message of corresponding tunnel port, the modification message includes that packaging information after changing and/or physics go out to connect
Mouthful.
11. device according to claim 9, which is characterized in that described device further includes:Message issuance unit is deleted, is used
In when deleting tunnel, the deletion message of corresponding tunnel port is issued to the endpoint device in the tunnel.
12. establishing the device in tunnel in a kind of software defined network SDN network, apply in the endpoint device in tunnel, feature
It is, described device includes:
Message reception units are created, the tunnel port for receiving controller creates message;The establishment message includes tunnel
Packaging information and the physics outgoing interface in the endpoint device;The tunnel is virtualized into correspondence on the controller
Tunnel port;The attribute of the tunnel port includes the packaging information in corresponding tunnel and the physics in this endpoint device
Outgoing interface;
Tunnel table generation unit, for being given birth to according to the packaging information in the tunnel and the physics outgoing interface in the endpoint device
At the tunnel table corresponding to the tunnel port;
Tunnel flow table receiving unit, for receiving that controller issues using the tunnel port as the flow table of outgoing interface;
Enter tunnel unit, for the original message of the flow table will to be matched according in the tunnel table corresponding to the tunnel port
After packaging information is packaged, sent from the physics outgoing interface in the tunnel table.
13. device according to claim 12, which is characterized in that the tunnel table includes into tunnel list item and going out tunnel table
;It is described enter tunnel list item generated according to the packaging information and physics outgoing interface, for this equipment for the tunnel starting point
Original message encapsulation and forwarding;It is described go out tunnel list item generated according to the packaging information, for this equipment being described
The decapsulation of the tunnel packet of termination point of a tunnel.
14. device according to claim 12 or 13, which is characterized in that described device further includes:
Change message reception units, the modification message for receiving the tunnel port that controller issues, the modification message
Include that newer packaging information and/or the physics outgoing interface in the endpoint device are wanted in tunnel;
Tunnel updating unit, the tunnel table for corresponding to the tunnel port according to the modification information updating.
15. device according to claim 12 or 13, which is characterized in that described device further includes:
Delete message reception units, the deletion message for receiving the tunnel port that controller issues;
Tunnel deleting unit, for deleting the corresponding tunnel table of the tunnel port and using the tunnel port as the stream of outgoing interface
Table.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510104000.0A CN104702479B (en) | 2015-03-10 | 2015-03-10 | The method and apparatus that tunnel is established in SDN network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510104000.0A CN104702479B (en) | 2015-03-10 | 2015-03-10 | The method and apparatus that tunnel is established in SDN network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104702479A CN104702479A (en) | 2015-06-10 |
| CN104702479B true CN104702479B (en) | 2018-08-24 |
Family
ID=53349268
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510104000.0A Active CN104702479B (en) | 2015-03-10 | 2015-03-10 | The method and apparatus that tunnel is established in SDN network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104702479B (en) |
Families Citing this family (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105049358B (en) * | 2015-06-25 | 2018-08-28 | 清华大学 | A kind of virtual forwarding platform and its communication means of SDN network |
| CN104954226A (en) * | 2015-07-28 | 2015-09-30 | 上海斐讯数据通信技术有限公司 | SDN-based QoS-supported communication tunnel establishment method and system |
| CN105610717B (en) * | 2015-12-30 | 2018-11-27 | 新华三技术有限公司 | A kind of route issuing method and device across SDN network |
| CN107453971B (en) * | 2016-05-30 | 2020-11-24 | 北京京东尚科信息技术有限公司 | Communication method, communication system, computer system, and computer-readable storage medium |
| CN107995031B (en) * | 2017-11-22 | 2021-02-23 | 郑州市景安网络科技股份有限公司 | SDN network establishing method, system and related device |
| CN108337111B (en) * | 2018-01-05 | 2021-07-30 | 新华三技术有限公司 | Method and device for acquiring network node topology |
| TW201933837A (en) * | 2018-01-19 | 2019-08-16 | 思銳科技股份有限公司 | Method and system for extracting in-tunnel flow data over a virtual network |
| CN108600021B (en) * | 2018-04-28 | 2021-06-18 | 盛科网络(苏州)有限公司 | Tunnel packaging chip implementation method and device capable of being flexibly programmed and configured |
| CN108768889A (en) * | 2018-05-07 | 2018-11-06 | 广州大学华软软件学院 | A kind of SDN network multichannel line bandwidth dynamic allocation method |
| CN110087252B (en) * | 2019-05-30 | 2022-08-30 | 深圳市中航比特通讯技术股份有限公司 | Dynamic changing technology for communication network service |
| CN112311697B (en) * | 2020-10-26 | 2022-05-24 | 新华三大数据技术有限公司 | Path configuration method and device |
| CN112468612A (en) * | 2020-11-30 | 2021-03-09 | 蔡俊龙 | NAT penetration control method and system |
| CN114006788B (en) * | 2020-11-30 | 2023-03-21 | 易识科技(广东)有限责任公司 | Control method and system for establishing bidirectional tunnel |
| CN112787926A (en) * | 2021-01-05 | 2021-05-11 | 北京信息科技大学 | Device, method and system for segmented routing of interest packets |
| CN113746739B (en) * | 2021-08-20 | 2022-10-21 | 新华三信息安全技术有限公司 | Routing table creating method, PE (provider edge) equipment, electronic equipment and storage medium |
| CN114301737B (en) * | 2021-12-29 | 2023-10-24 | 迈普通信技术股份有限公司 | Network configuration method, device, network equipment and computer readable storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104219149A (en) * | 2014-08-26 | 2014-12-17 | 杭州华三通信技术有限公司 | Virtual connection based message transmission method and device |
| WO2014198217A1 (en) * | 2013-06-14 | 2014-12-18 | 中兴通讯股份有限公司 | Tunnel processing method and system, control plane equipment and forwarding plane equipment |
| CN104243270A (en) * | 2014-09-25 | 2014-12-24 | 杭州华三通信技术有限公司 | Tunnel setup method and tunnel setup device |
| CN104243317A (en) * | 2014-09-26 | 2014-12-24 | 杭州华三通信技术有限公司 | Method and device for forwarding IP (internet protocol) routes |
-
2015
- 2015-03-10 CN CN201510104000.0A patent/CN104702479B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014198217A1 (en) * | 2013-06-14 | 2014-12-18 | 中兴通讯股份有限公司 | Tunnel processing method and system, control plane equipment and forwarding plane equipment |
| CN104219149A (en) * | 2014-08-26 | 2014-12-17 | 杭州华三通信技术有限公司 | Virtual connection based message transmission method and device |
| CN104243270A (en) * | 2014-09-25 | 2014-12-24 | 杭州华三通信技术有限公司 | Tunnel setup method and tunnel setup device |
| CN104243317A (en) * | 2014-09-26 | 2014-12-24 | 杭州华三通信技术有限公司 | Method and device for forwarding IP (internet protocol) routes |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104702479A (en) | 2015-06-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104702479B (en) | The method and apparatus that tunnel is established in SDN network | |
| CN105791463B (en) | A kind of method and apparatus for realizing virtual machine communication | |
| JP5991424B2 (en) | Packet rewriting device, control device, communication system, packet transmission method and program | |
| CN104243270B (en) | A kind of method and apparatus for establishing tunnel | |
| CN104283791B (en) | Three etale topologies in a kind of SDN determine method and apparatus | |
| CN107204867A (en) | A kind of information transferring method, device and system | |
| WO2018032961A1 (en) | Information management method, apparatus and system | |
| CN105634770B (en) | The method and apparatus for disposing virtual extended local area network | |
| CN107342941B (en) | A kind of optimization method and device of VXLAN control plane | |
| CN106936777A (en) | Cloud computing distributed network implementation method based on OpenFlow, system | |
| CN104363170B (en) | Forwarding data flow method and apparatus in a kind of software defined network | |
| CN106664252A (en) | Method, device and system for realizing service link | |
| CN106452857A (en) | Method for generating configuration information and network control unit | |
| CN107770073A (en) | A kind of method of synchronizing information, apparatus and system | |
| CN104579894B (en) | The IGMP Snooping implementation methods and device of the distributed virtual switch system | |
| CN108880968A (en) | Broadcast, method of realizing group broadcasting and device, storage medium in software defined network | |
| CN106712988A (en) | Virtual network management method and device | |
| CN105897465A (en) | Equipment configuration method and apparatus | |
| CN105515802B (en) | Network virtualization method and device | |
| WO2016124049A1 (en) | Method and apparatus for obtaining port path | |
| CN108111413A (en) | Method for routing, system and the equipment of stacking network | |
| CN108429680A (en) | A kind of method for configuring route, system, medium and equipment based on virtual private cloud | |
| CN106789748A (en) | A kind of distributed couple in multiplexer DAM stacking network system and its apparatus | |
| CN108964940A (en) | Message method and device, storage medium | |
| CN107171852A (en) | Two layer services configuration system and method based on OpenFlow |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant before: Huasan Communication Technology Co., Ltd. |
|
| CB02 | Change of applicant information | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |