CN105915400A - Data stream switching method and system - Google Patents

Data stream switching method and system Download PDF

Info

Publication number
CN105915400A
CN105915400A CN201610495144.8A CN201610495144A CN105915400A CN 105915400 A CN105915400 A CN 105915400A CN 201610495144 A CN201610495144 A CN 201610495144A CN 105915400 A CN105915400 A CN 105915400A
Authority
CN
China
Prior art keywords
forwarding unit
virtual
forwarding
address
link
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610495144.8A
Other languages
Chinese (zh)
Inventor
孙翔宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NSFOCUS Information Technology Co Ltd
Beijing NSFocus Information Security Technology Co Ltd
Original Assignee
NSFOCUS Information Technology Co Ltd
Beijing NSFocus Information Security Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by NSFOCUS Information Technology Co Ltd, Beijing NSFocus Information Security Technology Co Ltd filed Critical NSFOCUS Information Technology Co Ltd
Priority to CN201610495144.8A priority Critical patent/CN105915400A/en
Publication of CN105915400A publication Critical patent/CN105915400A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0823Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability
    • H04L41/0836Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability to enhance reliability, e.g. reduce downtime
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/22Alternate routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/38Flow based routing

Abstract

The invention discloses a data stream switching method and system. The method comprises the steps of: monitoring upstream and downstream links by utilizing a VRRP (Virtual Router Redundancy Protocol), triggering primary and standby states of first forwarding equipment and second forwarding equipment to be switched when primary and standby equipment switching conditions are met, and sending a free ARP (Address Resolution Protocol) notification message to a switch at a network side; deleting a first static route of a communication link between the first forwarding equipment and an upstream router, and generating a second static route of the communication link between the second forwarding equipment and the upstream router; and updating forwarding information of the switch according to the free ARP notification message sent to the switch at the network side by the second forwarding equipment, redistributing information of a connected route and the second static route to the upstream router so as to enable the router to recalculate a routing table of an optimal link path, and according to the routing table obtained by calculation, switching a flow direction of data stream of the upstream router so as to solve the problem of a flow direction error of the data after primary and standby switching in the prior art.

Description

A kind of data stream switching method and system
Technical field
The present invention relates to network safety filed, particularly relate to a kind of data stream switching method and system.
Background technology
Along with transmission control protocol/Internet Protocol (TCP/IP, Transmission Control Protocol/Internet Protocol) the extensive application of network, more and more higher to the requirement in terms of network reliability. Wherein in the base network device such as router and/or switch, it is provided with fire wall, it is achieved network and safeguard protection Very high integrity, be the most increasingly widely applied.
Wherein, use fire wall concrete such as the reliability networking plan of LAN server safeguard protection Shown in Fig. 1, first, comprising switch in the network in the downstream of fire wall, two network equipments are by virtual Route redundancy protocol (VRRP, Virtual Router Redundancy Protocol) forms a virtual flow-line Equipment, as the redundancy backup default gateway of server each in LAN.The downstream connection route device of fire wall, Ospf protocol is enabled between fire wall and router.Host apparatus timing sends VRRP group to stand-by equipment Broadcasting protocol massages and notice the duty of this main equipment, when host apparatus breaks down, stand-by equipment can Take over job in time, thus ensure the seriality that each server service is applied.
In above-mentioned networking plan, completed the two-node cluster hot backup of fire wall by VRRP agreement and ospf protocol, Achieve the redundancy protecting of key node in LAN.When VRRP host apparatus breaks down, by VRRP Stand-by equipment is taken over job in time, when two fire walls are operated in active-standby mode, VRRP shape often occurs State is own through switching, but the OSPF of upstream (Open Shortest Path First, OSPF) The problem that routing iinformation does not update, or, OSPF traffic path changes, but VRRP state does not has The problem having switching.Wherein, OSPF is autonomous system interior routing protocol based on Link State, is also mesh Front the most widely used IGRP.Therefore cause business datum to flow to mistake, affect user Data communication, the seamless switching of business data flow can not be guaranteed.
Summary of the invention
The embodiment of the present invention provides a kind of data stream switching method and system, in order to solve to work as in prior art master The problem of Data flow direction mistake after standby switching.
The inventive method one data stream switching method, the method includes: utilize Virtual Router Redundancy Protocol VRRP monitors upstream and downstream link, triggers the first forwarding unit and second turn when meeting master/slave device switching condition The activestandby state of the equipment of sending out switches, and deletes the virtual internet IP address that described first forwarding unit is preset, And be that described second forwarding unit adds described virtual ip address, wherein, described first forwarding unit and described The static ip address of the second forwarding unit is configured to sky, and described first forwarding unit forwards with described second and sets The described VRRP backup group of standby composition, described first forwarding unit is preset as the primary of described VRRP backup group Equipment, described second forwarding unit is preset as the stand-by equipment of described VRRP backup group, and described first forwards Equipment is preset with virtual ip address, and described second forwarding unit is without virtual ip address;
Virtual ip address according to described second forwarding unit generates between the network side of described second forwarding unit The direct-connected route of communication links, and delete the direct-connected route between described first forwarding unit and upstream router;
Delete the first static routing of communication links between described first forwarding unit and upstream router, generate Second static routing of communication links between described second forwarding unit and upstream router;
The gratuitous ARP notification packet that switch according to described second forwarding unit downstream network side sends, Update the forwarding information of described switch, described forwarding information be described second forwarding unit virtual ip address, Virtual mac address and the corresponding relation of network interface;
Direct-connected route and the information of the second static routing described in upstream router redistribution, so that described road OSPF OSPF is utilized to recalculate the routing table in optimum link path, according to meter by device The flow direction of the routing table switching upstream router data stream obtained.
Based on same inventive concept, the embodiment of the present invention provides a kind of data flow handoff system further, This system includes: switch unit, is used for utilizing Virtual Router Redundancy Protocol VRRP to monitor upstream and downstream link, The activestandby state triggering the first forwarding unit and the second forwarding unit when meeting master/slave device switching condition occurs Switching, deletes the virtual internet IP address that described first forwarding unit is preset, and sets for described second forwarding The described virtual ip address of standby interpolation, wherein, described first forwarding unit and the static state of described second forwarding unit IP address is configured to sky, and it is standby that described first forwarding unit and described second forwarding unit form described VRRP Part group, described first forwarding unit is preset as the host apparatus of described VRRP backup group, and described second forwards Equipment is preset as the stand-by equipment of described VRRP backup group, and described first forwarding unit is preset with virtual IP address ground Location, described second forwarding unit is without virtual ip address;Virtual ip address according to described second forwarding unit is raw Become the direct-connected route of communication links between the network side of described second forwarding unit, and delete described first forwarding Direct-connected route between equipment and upstream router;Delete between described first forwarding unit and upstream router First static routing of communication links, generates communication links between described second forwarding unit and upstream router The second static routing;
TMU transmission message unit, for according to switch from described second forwarding unit to network side send free ARP notification packet, updates the forwarding information of described switch, and described forwarding information is that described second forwarding sets The corresponding relation of standby virtual ip address, virtual mac address and network interface;
Route redistribution unit, for the static road of direct-connected route described in upstream router redistribution and second By information so that described router utilizes OSPF OSPF to recalculate optimum link The routing table in path, according to the flow direction of calculated routing table switching upstream router data stream.
The embodiment of the present invention forwards engine by exploitation, and fire wall supports that network interface is furnished with static IP and virtual IP address, Wherein, the static IP of fire wall supporting interface being configured to sky, successor virtual IP dynamically moves between master/slave device Moving, specifically, the virtual IP address of each forwarding unit of configuration VRRP backup group, when the active and standby shape of forwarding unit When state switches, dynamically add virtual ip address for host apparatus, dynamically delete on stand-by equipment Virtual ip address, has virtual ip address because only having in VRRP backup group on host apparatus, and dynamically Delete direct-connected and first static routing of communication links between described first forwarding unit and upstream router, dynamic State ground generates states direct-connected and second static routing of communication links between the second forwarding unit and upstream router, So being only configured with direct-connected and static routing, when the second forwarding unit becoming host apparatus on host apparatus When sending free ARP message, the switch of network side will update network interface information according to ARP message.Separately Outward, upstream router sends described direct-connected route and the second static routing, and the ospf protocol of upstream also can Static routing according to host apparatus and the routing iinformation of direct-connected routing update upstream, each router utilizes open The routing table of each router of OSPF OSPF redistribution, switches according to the routing table after redistribution The flow direction of upstream router data stream.The direct-connected route the most not corresponding with virtual IP address due to the first forwarding unit and First static routing, there is the direct-connected route corresponding with virtual IP address and the second static routing in the second forwarding unit, Data stream thus can be guided into the second forwarding unit, thus ensure that when master/slave device switches, The seamless switching of data stream.
Accompanying drawing explanation
For the technical scheme being illustrated more clearly that in the embodiment of the present invention, institute in embodiment being described below The accompanying drawing used is needed to briefly introduce, it should be apparent that, the accompanying drawing in describing below is only the present invention's Some embodiments, from the point of view of those of ordinary skill in the art, on the premise of not paying creative work, Other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is that in prior art, a kind of two fire walls form two-node cluster hot backup relation;
Fig. 2 provides a kind of data stream switching method schematic flow sheet for the embodiment of the present invention;
Fig. 3 provides network topology during a kind of first forwarding unit master firewall fault for the embodiment of the present invention Figure;
Fig. 4 provides a kind of first any one link of forwarding unit outgoing interface not use for the embodiment of the present invention Time, the network topological diagram after active-standby switch;
Fig. 5 embodiment of the present invention also provides for a kind of data flow handoff system.
Detailed description of the invention
In order to make the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing to this Bright it is described in further detail, it is clear that described embodiment is only some embodiments of the present invention, Rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not doing Go out all other embodiments obtained under creative work premise, broadly fall into the scope of protection of the invention.
Forming two-node cluster hot backup relation in Fig. 1 between existing two pieces of fire walls, double-machine standby technology the most again may be used It is divided into active-standby mode and main holotype.For ease of illustrating, referred to as master firewall and slave firewall.Tool Body ground, active-standby mode refers to be in the whole business of network device processing of master state session entry is standby Part in the network equipment being in resting state, it is in the network equipment of resting state and only backups process, no Participation message forwards, and when the network equipment being in master state breaks down, message forwards and can cut rapidly Change to be in the network equipment of resting state, store the meeting of backup owing to being in the network equipment of resting state Words list item, therefore the message after switching can continue with, will not be interrupted.Main holotype then refers to two The platform network equipment is all the primary network equipment being in master state, is i.e. involved in forwarding and processing business, with Time backup each other again, when wherein a host apparatus breaks down, another persistently processes whole business. Embodiment of the present invention technique proposed herein scheme, is based primarily upon active-standby mode.I.e. it is in the net of resting state Network equipment, only backs up, and is not involved in the forwarding of message.
For ease of illustrate, in embodiment of the present invention technique proposed herein scheme, by integrated in the network device The fire wall being currently at master state be referred to as master firewall, by integrated in the network device current The fire wall being in resting state is referred to as slave firewall.
Embodiment of the present invention technique proposed herein scheme, can configure network interface on current master firewall Static ip address be empty, and VRRP gateway address, specifically, the static ip address of such as network interface For the virtual ip address information that 0.0.0.0/0, VRRP gateway is corresponding, then configure virtual ID, switch unit The virtual mac address calculated according to virtual ID.
In order to solve in prior art when the problem of Data flow direction mistake, the embodiment of the present invention after active-standby switch Thering is provided a kind of data stream switching method schematic flow sheet, shown in Figure 2, specifically implementation method includes:
Step S101, utilizes Virtual Router Redundancy Protocol VRRP to monitor upstream and downstream link, active and standby when meeting The activestandby state triggering the first forwarding unit and the second forwarding unit during equipment switching condition switches, and deletes The virtual ip address that described first forwarding unit is preset, and be that described second forwarding unit adds described virtual IP address Address, wherein, the static ip address of described first forwarding unit and described second forwarding unit is configured to sky, Described first forwarding unit and described second forwarding unit form described VRRP backup group, and described first forwards Equipment is preset as the host apparatus of described VRRP backup group, and described second forwarding unit is preset as described VRRP The stand-by equipment of backup group, described first forwarding unit is preset with virtual ip address, described second forwarding unit Without virtual ip address.
Step S102, generates described second forwarding unit according to the virtual ip address of described second forwarding unit The direct-connected route of communication links between network side, and delete between described first forwarding unit and upstream router Direct-connected route.
Step S103, deletes the first static state of communication links between described first forwarding unit and upstream router Route, generates the second static routing stating communication links between the second forwarding unit and upstream router.
Step S104, notices according to the gratuitous ARP that described second forwarding unit sends to the switch of network side Message, updates the forwarding information of described switch, and described forwarding information is the virtual of described second forwarding unit The corresponding relation of IP address, virtual mac address and network interface.
Step S105, direct-connected route and the information of the second static routing described in upstream router redistribution, So that described router utilizes OSPF OSPF to recalculate the road in optimum link path By table, according to the flow direction of calculated routing table switching upstream router data stream.
In embodiments of the present invention, in order to realize redundancy protecting, at the first forwarding unit, the second forwarding unit Interface on enable VRRP agreement provide backup functionality for it, i.e. by run VRRP agreement create one VRRP backup group, this VRRP backup group by first forwarding unit (as host apparatus) and several Second forwarding unit (as stand-by equipment) forms, and user uplink access service is held by host apparatus under normal circumstances Load, when host apparatus breaks down or during link exception, can be upgraded to host apparatus by stand-by equipment, by standby Equipment takes over host apparatus work.VRRP by becoming a router by multiple router virtuals, and to granddad Accuse a virtual ip address, it is achieved a quick backup switching during equipment fault.It is in Master (main With) gateway of state or router be responsible for forwarding packet, other are in Backup (standby) state Equipment is in hot standby state, and many visual plants all use the method for designing of this main-apparatus protection, as code division is many Network control module, calling in location (Code Division Multiple Access, CDMA) base station sub-system Processing module, Communications Processor Module all have employed this mode.
It addition, the static ip address of described first forwarding unit and described second forwarding unit is configured to sky, Above-mentioned virtual ip address belongs to dynamic IP addressing, and the direct-connected and static routing corresponding with virtual ip address, Can dynamically add and delete, the router in LAN uses OSPF (Open Shortest Path First, OSPF) carry out routeing redistribution, in OSPF is autonomous system based on Link State Portion's Routing Protocol, is also currently used most commonly used IGRP.
Further, if what following three kinds of situations at least occurred meets master/slave device switching condition first, described Three kinds of situations are respectively as follows: described first forwarding unit and can not use;Appointing of described first forwarding unit incoming interface A link of anticipating can not use;Any one link of described first forwarding unit outgoing interface can not use.
Further, VRRP backup group configures VRRP and monitor interface;By described monitoring interface profit Link with each forwarding unit of VRRP backup group described in link failure detection technology for detection Yu upstream router Connection situation, the result of informing VRRP upstream link detection;
By each forwarding unit and the switch of VRRP backup group described in described link failure detection technology for detection Between link connection situation, informing VRRP downstream links detection result.
Wherein, described link failure detection technology be two-way converting detection technique, Network Quality Analysis technology, In service-level agreement technology, ethernet operation and maintenance technology or perception transmitting warning technology any one Kind.
Two kinds of data flow handoff scenes that above-mentioned three kinds of situations are corresponding, as shown in Figure 3 and Figure 4, separately below Illustrate for two kinds of scenes.
Scene one
Data stream switching method that the embodiment of the present invention provide, net Fig. 3 and Fig. 4 shown in are exemplified below Network topological diagram comprises UE (subscriber equipment, User Equipment), access point AP (for by subscriber equipment UE access network), router 1 to router 4, host apparatus, stand-by equipment, server and network In switch, described host apparatus and stand-by equipment can be router, it is also possible to for other number such as gateway According to forwarding unit.Host apparatus, stand-by equipment and router 1 to router 4 can use OSPF to assist View.Wherein, the thick lines of equipment room represent communication link, and the numeral on link represents the label of link, Fig. 3 In, link 1 to 7 can use (8 is heartbeat, is used for transmitting heartbeat data), and is now currently in use Host apparatus carries out data transmission, but the master firewall network interface card event of host apparatus in data transmission procedure Barrier, causes link 7 to disconnect, and dotted line in figs. 3 and 4 represents link or equipment unusable state.
In figure 3 because the master firewall net card failure of the first forwarding unit causes link 6 to disconnect, therefore The embodiment of the present invention performs following step by exploitation business data flow forwarding engine modules and carries out data stream Switching, specific as follows:
Step 201, because the master firewall net card failure of the first forwarding unit, by link failure detection skill Art detection finds that link 6 disconnects, and the activestandby state triggering the first forwarding unit and the second forwarding unit is cut Changing, the i.e. first forwarding unit becomes stand-by equipment, and the second forwarding unit becomes host apparatus.
Step 202, because activestandby state switches, so the virtual IP address ground deleted on the first forwarding unit Location, and the direct-connected route of correspondence and the first static routing information, be that the second forwarding unit adds this void simultaneously Intend IP address, direct-connected route, and the corresponding static routing information adding the second forwarding unit.
Step 203, because only that have virtual ip address and direct-connected route on the second forwarding unit, so second Forwarding unit utilizes link 7 to send gratuitous ARP notice message to the switch of network side, and gratuitous ARP notifies Message includes virtual ip address, the information of virtual mac address, because the second forwarding unit is to pass through chain The gratuitous ARP notice message that the network interface on road 7 sends out, so the switch of network side is from the network interface of link 7 Receive gratuitous ARP notice message, just learn that be currently operating is the second forwarding unit.So switch The corresponding relation of virtual ip address, virtual mac address and network interface will be updated., and by flow entrance link 7。
Step 204, business data flow forwards engine modules by the second static routing of the second forwarding unit and direct-connected The information of route sends to the router of upstream, meanwhile, and also can be by the first static routing of the first forwarding unit The information being deleted with direct-connected route notifies the router to upstream, and the most each router is according to the route received Information Pull ospf protocol recalculates optimum link coordinates measurement routing table, when generating new routing table letter After breath, the data stream of upstream has also guided the second forwarding unit into by new routing table.
Visible, in this scene, when in the first forwarding unit, master firewall network interface card breaks down, also Or first link 6 of forwarding unit incoming interface when can not use, all can be according to the switching of above-mentioned data stream Method switches over, and the fire wall of the second forwarding unit just enables, and is the most also guided by the data stream of upstream and downstream Come on the second forwarding unit, accomplished the seamless switching of data stream.
Scene two
In the diagram because the link 1 of the first forwarding unit outgoing interface disconnects, therefore the embodiment of the present invention is passed through Exploitation business data flow forwarding engine modules performs following step and carries out the switching of data stream, specific as follows:
Step 301, business data flow forwards engine modules monitoring to find link 1 and the disconnection of link 3 interface, because of OSPF between this upstream router and fire wall has recalculated optimum link path, is drawn by the flow of upstream Leading the second forwarding unit, i.e. business data flow forwards engine modules by the second static routing of the second forwarding unit Sending the router to upstream with the information of direct-connected route, the most each router is according to the routing iinformation profit received Regenerating routing table by ospf protocol, after generating new routing table information, the data stream of upstream is also Guide the second forwarding unit into.
Step 302, VRRP monitoring interface listens to upstream link by described link failure detection technology for detection 1 and link 3 interface disconnect, therefore trigger VRRP re-elect, the i.e. first forwarding unit and second forward set Standby activestandby state switches, and the first forwarding unit becomes stand-by equipment, and the second forwarding unit becomes primary Equipment.
Step 303, because activestandby state switches, so the virtual IP address ground deleted on the first forwarding unit Location, and the direct-connected route of correspondence and the first static routing information, be that the second forwarding unit adds this void simultaneously Intend IP address, and correspondence adds direct-connected route and the static routing information of the second forwarding unit.
Step 304, because only that have virtual ip address on the second forwarding unit, so the second forwarding unit profit Sending gratuitous ARP notice message with link 7 to the switch of network side, gratuitous ARP notice message includes Virtual ip address, the information of virtual mac address, because the second forwarding unit is the network interface by link 7 The gratuitous ARP notice message sent out, so the switch of network side receives freely from the network interface of link 7 ARP notifies message, just learns that be currently operating is the second forwarding unit.So switch will update The corresponding relation of virtual ip address, virtual mac address and network interface, causes the second forwarding unit by data stream, And sent to the network side in downstream by the second forwarding unit.
Based on identical technology design, the embodiment of the present invention also provides for a kind of data flow handoff system, this system Be equivalent to business data flow above and forward engine, above-mentioned data stream switching method embodiment can be performed.This The system that bright embodiment provides is as it is shown in figure 5, include: switch unit 401, TMU transmission message unit 402, road By redistribution unit 403, wherein:
Switch unit 401, is used for utilizing Virtual Router Redundancy Protocol VRRP to monitor upstream and downstream link, when full The activestandby state triggering the first forwarding unit and the second forwarding unit during foot master/slave device switching condition is cut Change, delete the virtual internet IP address that described first forwarding unit is preset, and be described second forwarding unit Add described virtual ip address, wherein, described first forwarding unit and the static IP of described second forwarding unit Address is configured to sky, and described first forwarding unit forms described VRRP backup with described second forwarding unit Group, described first forwarding unit is preset as the host apparatus of described VRRP backup group, and described second forwarding sets The standby stand-by equipment being preset as described VRRP backup group, described first forwarding unit is preset with virtual ip address, Described second forwarding unit is without virtual ip address;Virtual ip address according to described second forwarding unit generates institute State the direct-connected route of communication links between the network side of the second forwarding unit, and delete described first forwarding unit And the direct-connected route between upstream router;Delete UNICOM between described first forwarding unit and upstream router First static routing of link, generates between described second forwarding unit and upstream router the of communication links Two static routing;
TMU transmission message unit 402, for according to described second forwarding unit exempting to the switch transmission of network side Taking ARP notification packet, update the forwarding information of described switch, described forwarding information is described second forwarding The corresponding relation of the virtual ip address of equipment, virtual mac address and network interface;
Route redistribution unit 403, sends described direct-connected route and second for upstream router redistribution The information of static routing, so that described router utilizes OSPF OSPF to recalculate The routing table of excellent link paths, according to the flow direction of calculated routing table switching upstream router data stream.
Further, if what following three kinds of situations at least occurred meets master/slave device switching condition first, described Three kinds of situations are respectively as follows:
Described first forwarding unit can not use;
Any one link of described first forwarding unit incoming interface can not use;
Any one link of described first forwarding unit outgoing interface can not use.
Further, the static ip address of described first forwarding unit and described second forwarding unit is configured to Empty.
Further, also include monitoring unit 404, for configuring VRRP monitoring in VRRP backup group Interface;
Each forwarding of VRRP backup group described in link failure detection technology for detection is utilized by described monitoring interface Equipment connects situation, the result of informing VRRP upstream link detection with the link of upstream router;
By each forwarding unit and the switch of VRRP backup group described in described link failure detection technology for detection Between link connection situation, informing VRRP downstream links detection result.
Wherein, described link failure detection technology be two-way converting detection technique, Network Quality Analysis technology, In service-level agreement technology, ethernet operation and maintenance technology or perception transmitting warning technology any one Kind.
To sum up, the embodiment of the present invention is sky by configuring the static IP of each forwarding unit of VRRP backup group, When the activestandby state of forwarding unit switches, dynamically add virtual ip address for host apparatus, delete Virtual ip address on stand-by equipment, has virtual IP address ground because only having in VRRP backup group on host apparatus Location, and dynamic delete the direct-connected of communication links between described first forwarding unit and upstream router and first Static routing, is dynamically generated and states the direct-connected of communication links between the second forwarding unit and upstream router and Two static routing, so being only configured with direct-connected and static routing, when becoming host apparatus on host apparatus When second forwarding unit sends free ARP message, the switch of network side will update according to ARP message Network interface information, switch is incorporated into the second forwarding unit flow.It addition, upstream router sends institute State direct-connected route and the second static routing, the ospf protocol of upstream also can according to the static routing of host apparatus and The routing iinformation of direct-connected routing update upstream, each router utilizes OSPF OSPF heavily to divide The routing table sending out router each, switches the flow direction of upstream router data stream according to the routing table after redistribution. The direct-connected route the most corresponding with virtual IP address due to the first forwarding unit and the first static routing, the second forwarding sets Standby there is the direct-connected route corresponding with virtual IP address and the second static routing, data stream thus can be guided into the Two forwarding units, thus ensure that when master/slave device switches, the seamless switching of data stream.
The present invention is with reference to method, equipment (system) and computer program according to embodiments of the present invention Flow chart and/or block diagram describe.It should be understood that can by computer program instructions flowchart and/ Or flow process in each flow process in block diagram and/or square frame and flow chart and/or block diagram and/or The combination of square frame.These computer program instructions can be provided to general purpose computer, special-purpose computer, embedded The processor of datatron or other programmable data processing device is to produce a machine so that pass through computer Or the instruction that the processor of other programmable data processing device performs produces for realizing at flow chart one stream The device of the function specified in journey or multiple flow process and/or one square frame of block diagram or multiple square frame.
These computer program instructions may be alternatively stored in and can guide computer or other programmable data processing device In the computer-readable memory worked in a specific way so that be stored in this computer-readable memory Instruction produces the manufacture including command device, and this command device realizes at one flow process of flow chart or multiple stream The function specified in journey and/or one square frame of block diagram or multiple square frame.
These computer program instructions also can be loaded in computer or other programmable data processing device, makes Sequence of operations step must be performed to produce computer implemented place on computer or other programmable devices Reason, thus the instruction performed on computer or other programmable devices provides for realizing flow chart one The step of the function specified in flow process or multiple flow process and/or one square frame of block diagram or multiple square frame.
Although preferred embodiments of the present invention have been described, but those skilled in the art once know base This creativeness concept, then can make other change and amendment to these embodiments.So, appended right is wanted Ask and be intended to be construed to include preferred embodiment and fall into all changes and the amendment of the scope of the invention.
Obviously, those skilled in the art can carry out various change and modification without deviating from this to the present invention Bright spirit and scope.So, if the present invention these amendment and modification belong to the claims in the present invention and Within the scope of its equivalent technologies, then the present invention is also intended to comprise these change and modification.

Claims (8)

1. a data stream switching method, it is characterised in that the method includes:
Virtual Router Redundancy Protocol VRRP is utilized to monitor upstream and downstream link, when meeting master/slave device switching bar The activestandby state triggering the first forwarding unit and the second forwarding unit during part switches, and deletes described first turn The virtual internet IP address that the equipment of sending out is preset, and be that described second forwarding unit adds described virtual ip address, Wherein, the static ip address of described first forwarding unit and described second forwarding unit is configured to sky, described First forwarding unit forms described VRRP backup group, described first forwarding unit with described second forwarding unit Being preset as the host apparatus of described VRRP backup group, it is standby that described second forwarding unit is preset as described VRRP Part group stand-by equipment, described first forwarding unit is preset with virtual ip address, described second forwarding unit without Virtual ip address;
Virtual ip address according to described second forwarding unit generates between the network side of described second forwarding unit The direct-connected route of communication links, and delete the direct-connected route between described first forwarding unit and upstream router;
Delete the first static routing of communication links between described first forwarding unit and upstream router, generate Second static routing of communication links between described second forwarding unit and upstream router;
The gratuitous ARP notification packet that switch according to described second forwarding unit downstream network side sends, Update the forwarding information of described switch, described forwarding information be described second forwarding unit virtual ip address, Virtual mac address and the corresponding relation of network interface;
Direct-connected route and the information of the second static routing described in upstream router redistribution, so that described road OSPF OSPF is utilized to recalculate the routing table in optimum link path, according to meter by device The flow direction of the routing table switching upstream router data stream obtained.
2. the method for claim 1, it is characterised in that also include:
If what following three kinds of situations at least occurred meets master/slave device switching condition first, described three kinds of situations are divided It is not:
Master firewall in described first forwarding unit breaks down or network interface card is unplugged;
Any one link of described first forwarding unit incoming interface can not use;
Any one link of described first forwarding unit outgoing interface can not use.
3. the method for claim 1, it is characterised in that described utilize Virtual Router Redundancy Protocol VRRP monitors upstream and downstream link, including:
In VRRP backup group, configure VRRP monitor interface;
Each forwarding of VRRP backup group described in link failure detection technology for detection is utilized by described monitoring interface Equipment connects situation, the result of informing VRRP upstream link detection with the link of upstream router;
By each forwarding unit and the switch of VRRP backup group described in described link failure detection technology for detection Between link connection situation, informing VRRP downstream links detection result.
4. method as claimed in claim 3, it is characterised in that described link failure detection technology is two-way Forward detection technique, Network Quality Analysis technology, service-level agreement technology, ethernet operation and safeguard skill Any one of art or perception transmitting warning technology.
5. a data flow handoff system, it is characterised in that this system includes:
Switch unit, is used for utilizing Virtual Router Redundancy Protocol VRRP to monitor upstream and downstream link, when meeting The activestandby state triggering the first forwarding unit and the second forwarding unit during master/slave device switching condition switches, Delete the virtual internet IP address that described first forwarding unit is preset, and be that described second forwarding unit adds Described virtual ip address, wherein, described first forwarding unit and the static ip address of described second forwarding unit Being configured to sky, described first forwarding unit forms described VRRP backup group with described second forwarding unit, Described first forwarding unit is preset as the host apparatus of described VRRP backup group, and described second forwarding unit is pre- Being set to the stand-by equipment of described VRRP backup group, described first forwarding unit is preset with virtual ip address, institute State the second forwarding unit without virtual ip address;Virtual ip address according to described second forwarding unit generates described The direct-connected route of communication links between the network side of the second forwarding unit, and delete described first forwarding unit with Direct-connected route between upstream router;Delete UNICOM's chain between described first forwarding unit and upstream router First static routing on road, generates between described second forwarding unit and upstream router the second of communication links Static routing;
TMU transmission message unit, for according to switch from described second forwarding unit to network side send free ARP notification packet, updates the forwarding information of described switch, and described forwarding information is that described second forwarding sets The corresponding relation of standby virtual ip address, virtual mac address and network interface;
Route redistribution unit, for the static road of direct-connected route described in upstream router redistribution and second By information so that described router utilizes OSPF OSPF to recalculate optimum link The routing table in path, according to the flow direction of calculated routing table switching upstream router data stream.
6. system as claimed in claim 5, it is characterised in that also include:
If what following three kinds of situations at least occurred meets master/slave device switching condition first, described three kinds of situations are divided It is not:
Master firewall fault or the network interface card of described first forwarding unit are unplugged;
Any one link of described first forwarding unit incoming interface can not use;
Any one link of described first forwarding unit outgoing interface can not use.
7. system as claimed in claim 5, it is characterised in that also include:
Monitoring unit, monitors interface for configuring VRRP in VRRP backup group;
Each forwarding of VRRP backup group described in link failure detection technology for detection is utilized by described monitoring interface Equipment connects situation, the result of informing VRRP upstream link detection with the link of upstream router;
By each forwarding unit and the switch of VRRP backup group described in described link failure detection technology for detection Between link connection situation, informing VRRP downstream links detection result.
8. system as claimed in claim 7, it is characterised in that described link failure detection technology is two-way Forward detection technique, Network Quality Analysis technology, service-level agreement technology, ethernet operation and safeguard skill Any one of art or perception transmitting warning technology.
CN201610495144.8A 2016-06-28 2016-06-28 Data stream switching method and system Pending CN105915400A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610495144.8A CN105915400A (en) 2016-06-28 2016-06-28 Data stream switching method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610495144.8A CN105915400A (en) 2016-06-28 2016-06-28 Data stream switching method and system

Publications (1)

Publication Number Publication Date
CN105915400A true CN105915400A (en) 2016-08-31

Family

ID=56758880

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610495144.8A Pending CN105915400A (en) 2016-06-28 2016-06-28 Data stream switching method and system

Country Status (1)

Country Link
CN (1) CN105915400A (en)

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108063761A (en) * 2017-12-11 2018-05-22 新华三云计算技术有限公司 Network processing method, cloud platform and software defined network SDN controllers
CN108306777A (en) * 2018-04-20 2018-07-20 平安科技(深圳)有限公司 Virtual gateway main/standby switching method and device based on SDN controllers
CN108322364A (en) * 2018-03-06 2018-07-24 国电南瑞科技股份有限公司 A kind of mutual Preparation Method of double netcard redundancy suitable for wide area dispatch automated system
CN109005051A (en) * 2018-06-27 2018-12-14 中国铁路信息科技有限责任公司 Routing high availability method and system based on OpenStack
CN109309617A (en) * 2018-08-08 2019-02-05 华为技术有限公司 Disaster tolerance switching method, relevant device and computer storage medium
CN109698767A (en) * 2018-12-20 2019-04-30 杭州迪普科技股份有限公司 A kind of main/standby switching method and device
CN109815065A (en) * 2019-01-31 2019-05-28 杭州迪普科技股份有限公司 Main/standby switching method, device, the electronic equipment of two-shipper
CN109818858A (en) * 2017-11-20 2019-05-28 中国电信股份有限公司 For realizing the methods, devices and systems of topological relation automatic Mosaic between domain
CN110022236A (en) * 2019-05-30 2019-07-16 新华三技术有限公司 A kind of message forwarding method and device
CN110474802A (en) * 2019-08-12 2019-11-19 聚好看科技股份有限公司 Equipment switching method and device, service system
CN110891018A (en) * 2019-11-25 2020-03-17 新华三大数据技术有限公司 Network traffic recovery method and device, SDN controller and storage medium
CN111343700A (en) * 2018-12-19 2020-06-26 南宁富桂精密工业有限公司 Wireless sensor network communication method
CN112787939A (en) * 2020-12-30 2021-05-11 迈普通信技术股份有限公司 Method for updating path forwarding table, method and device for switching network transmission path
CN112887921A (en) * 2021-01-23 2021-06-01 深圳市智开科技有限公司 Method and equipment for reducing packet loss during switching of WAPI CPE (wireless local area network interface) equipment between APs (access points)
CN112887201A (en) * 2019-11-29 2021-06-01 北京华为数字技术有限公司 VRRP (virtual router redundancy protocol) -based interface updating method and device and storage medium
CN113497756A (en) * 2020-04-08 2021-10-12 中国移动通信集团广东有限公司 Shunt processing method and network equipment
CN114301842A (en) * 2021-12-30 2022-04-08 山石网科通信技术股份有限公司 Route searching method and device, storage medium, processor and network system
CN114451009A (en) * 2019-09-29 2022-05-06 苹果公司 Conditional switching for pre-forwarded data packets
CN114531424A (en) * 2020-10-31 2022-05-24 华为技术有限公司 Service data transmission method, communication network, service receiving device and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951345A (en) * 2010-10-15 2011-01-19 杭州华三通信技术有限公司 Message transmitting method and equipment
CN103051538A (en) * 2012-12-27 2013-04-17 华为技术有限公司 Method, control equipment and system for generating ARP (Address Resolution Protocol) table entry
CN103095571A (en) * 2013-01-17 2013-05-08 成都西加云杉科技有限公司 Method and system achieving network redundancy and data flow seamless switching
US20130135989A1 (en) * 2011-11-24 2013-05-30 Hangzhou H3C Technologies Co., Ltd. Data forwarding apparatus with redundancy
CN104579953A (en) * 2013-10-09 2015-04-29 中国移动通信集团广东有限公司 A method for releasing routing, and a virtual router redundancy protocol backup group and network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951345A (en) * 2010-10-15 2011-01-19 杭州华三通信技术有限公司 Message transmitting method and equipment
US20130135989A1 (en) * 2011-11-24 2013-05-30 Hangzhou H3C Technologies Co., Ltd. Data forwarding apparatus with redundancy
CN103051538A (en) * 2012-12-27 2013-04-17 华为技术有限公司 Method, control equipment and system for generating ARP (Address Resolution Protocol) table entry
CN103095571A (en) * 2013-01-17 2013-05-08 成都西加云杉科技有限公司 Method and system achieving network redundancy and data flow seamless switching
CN104579953A (en) * 2013-10-09 2015-04-29 中国移动通信集团广东有限公司 A method for releasing routing, and a virtual router redundancy protocol backup group and network

Cited By (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109818858A (en) * 2017-11-20 2019-05-28 中国电信股份有限公司 For realizing the methods, devices and systems of topological relation automatic Mosaic between domain
CN108063761A (en) * 2017-12-11 2018-05-22 新华三云计算技术有限公司 Network processing method, cloud platform and software defined network SDN controllers
CN108063761B (en) * 2017-12-11 2019-09-13 新华三云计算技术有限公司 Network processing method, cloud platform and software defined network SDN controller
CN108322364A (en) * 2018-03-06 2018-07-24 国电南瑞科技股份有限公司 A kind of mutual Preparation Method of double netcard redundancy suitable for wide area dispatch automated system
CN108306777B (en) * 2018-04-20 2021-04-13 平安科技(深圳)有限公司 SDN controller-based virtual gateway active/standby switching method and device
WO2019200728A1 (en) * 2018-04-20 2019-10-24 平安科技(深圳)有限公司 Primary and backup switching method and device in virtual gateway, and computer readable storage medium
CN108306777A (en) * 2018-04-20 2018-07-20 平安科技(深圳)有限公司 Virtual gateway main/standby switching method and device based on SDN controllers
CN109005051A (en) * 2018-06-27 2018-12-14 中国铁路信息科技有限责任公司 Routing high availability method and system based on OpenStack
CN109309617A (en) * 2018-08-08 2019-02-05 华为技术有限公司 Disaster tolerance switching method, relevant device and computer storage medium
CN111343700A (en) * 2018-12-19 2020-06-26 南宁富桂精密工业有限公司 Wireless sensor network communication method
CN109698767A (en) * 2018-12-20 2019-04-30 杭州迪普科技股份有限公司 A kind of main/standby switching method and device
CN109815065A (en) * 2019-01-31 2019-05-28 杭州迪普科技股份有限公司 Main/standby switching method, device, the electronic equipment of two-shipper
CN109815065B (en) * 2019-01-31 2022-09-30 杭州迪普科技股份有限公司 Main-standby switching method and device for dual computers and electronic equipment
CN110022236A (en) * 2019-05-30 2019-07-16 新华三技术有限公司 A kind of message forwarding method and device
CN110474802A (en) * 2019-08-12 2019-11-19 聚好看科技股份有限公司 Equipment switching method and device, service system
CN114451009B (en) * 2019-09-29 2024-05-03 苹果公司 Conditional handoff of pre-forwarded data packets
US11706674B2 (en) 2019-09-29 2023-07-18 Apple Inc. Pre-forwarding data packets for conditional handover
CN114451009A (en) * 2019-09-29 2022-05-06 苹果公司 Conditional switching for pre-forwarded data packets
CN110891018A (en) * 2019-11-25 2020-03-17 新华三大数据技术有限公司 Network traffic recovery method and device, SDN controller and storage medium
CN110891018B (en) * 2019-11-25 2022-02-22 新华三大数据技术有限公司 Network traffic recovery method and device, SDN controller and storage medium
CN112887201A (en) * 2019-11-29 2021-06-01 北京华为数字技术有限公司 VRRP (virtual router redundancy protocol) -based interface updating method and device and storage medium
CN113497756A (en) * 2020-04-08 2021-10-12 中国移动通信集团广东有限公司 Shunt processing method and network equipment
CN113497756B (en) * 2020-04-08 2023-04-07 中国移动通信集团广东有限公司 Shunt processing method and network equipment
CN114531424A (en) * 2020-10-31 2022-05-24 华为技术有限公司 Service data transmission method, communication network, service receiving device and storage medium
CN114531424B (en) * 2020-10-31 2023-11-10 华为技术有限公司 Service data transmission method, communication network, service receiving device and storage medium
CN112787939A (en) * 2020-12-30 2021-05-11 迈普通信技术股份有限公司 Method for updating path forwarding table, method and device for switching network transmission path
CN112887921B (en) * 2021-01-23 2022-02-01 深圳市智开科技有限公司 Method and equipment for reducing packet loss during switching of WAPI CPE (wireless local area network interface) equipment between APs (access points)
CN112887921A (en) * 2021-01-23 2021-06-01 深圳市智开科技有限公司 Method and equipment for reducing packet loss during switching of WAPI CPE (wireless local area network interface) equipment between APs (access points)
CN114301842A (en) * 2021-12-30 2022-04-08 山石网科通信技术股份有限公司 Route searching method and device, storage medium, processor and network system
CN114301842B (en) * 2021-12-30 2024-03-15 山石网科通信技术股份有限公司 Route searching method and device, storage medium, processor and network system

Similar Documents

Publication Publication Date Title
CN105915400A (en) Data stream switching method and system
CN102904818B (en) A kind of ARP information entry updating method and device
EP3082309B1 (en) Sdn controller, data centre system and router connection method
EP3016316B1 (en) Network control method and apparatus
EP2533475B1 (en) Method and system for host route reachability in packet transport network access ring
EP2320610B1 (en) A control packet transmission method and apparatus based on multi-ring ethernet
CN104113459A (en) Method for smoothly migrating virtual machine in Ethernet virtual interconnection (EVI) network, and device for smoothly migrating virtual machine in EVI network
CN101841462B (en) Method, device and system for informing VRRP state information
CN104869057A (en) OpeFlow switch graceful restart processing method, device and OpeFlow controller
CN102638389A (en) Redundancy backup method and system of TRILL (Transparent Interconnection over Lots of Links) network
CN102148677A (en) Method for updating address resolution protocol table entries and core switch
CN102142948A (en) Data forwarding method, device and system
CN105162704A (en) Multicast replication method and device in Overlay network
CN103166800B (en) Message transmission method for dual-network redundant message bus in cross failure
CN108337161A (en) Method for smoothly switching M L AG interface fault three-layer data flow
CN102710520A (en) Method and device for backing up lonworks network service (LNS)
CN113259235A (en) IPv 6-based dual-active route redundancy method and system
CN104160667A (en) Method, Device, and System for Dual-Uplink Tangent Ring Convergence
CN106533771B (en) Network equipment and control information transmission method
CN103036781A (en) Method and device for processing main path link failures
CN102769571B (en) Graceful restart realization method and equipment
CN105338127A (en) Media access control MAC address table updating method, switch and system
US20080212610A1 (en) Communication techniques and generic layer 3 automatic switching protection
CN108337162B (en) System and method for supporting dual-homing protection
CN103607306B (en) The switching method and apparatus of multi-host hot swap system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20160831

RJ01 Rejection of invention patent application after publication