Disclosure of Invention
In view of the shortcomings or shortcomings of the prior art, the technical problem to be solved by the present invention is to provide a SDN architecture-based traffic supervision method in which a traffic supervision process is uniformly controlled by an SDN controller.
In order to solve the above technical problems, the present invention has the following configurations:
a traffic supervision method based on an SDN architecture comprises the following steps: s101: a user configures a flow supervision strategy on an SDN controller; s102: the SDN controller receives a message from the SDN switch and analyzes a target IP and a source IP; s103: the SDN controller receives a private extended expermer message from the SDN switch and analyzes the expermer message; s104: and the SDN switch detects the flow rate and reports the flow rate to the SDN controller according to a detection result.
The SDN controller supports SDN-based traffic supervision configuration tasks, and the configuration tasks comprise traffic supervision tables and SDN-based traffic supervision functions; the flow monitoring table comprises flow characteristics and threshold values specified by a user and monitoring states reported by the SDN switch; the SDN-based traffic supervision function is configured to turn on or off the SDN-based traffic supervision function.
The system also comprises a private traffic supervision table which is statically configured or dynamically created by a user, and the priority of the static entry is higher than that of the dynamic entry; the private flow monitoring table comprises a destination IP, a source IP, a green threshold, a yellow threshold and a monitoring state; the destination IP and the source IP are used for specifying flow; comparing the flow rate with a green threshold and a yellow threshold respectively, and reporting the flow rate to an SDN controller after the SDN switch carries out flow statistics; the supervision state represents the marked color of the report reported by the SDN switch.
The format of the private extended expermer message received by the SDN controller from the SDN switch is that the expermer value is 1, which indicates that the message is directed from the SDN switch to the SDN controller, and the expermer value is 255; reporting the private extended Experimenter message to an SDN controller by an SDN switch on a forwarding path; the destination IP and the source IP uniquely determine a stream; the regulatory status indicates what color traffic is marked.
The step S101 is specifically: reporting a message of the unmatched flow table by the SDN switch; the SDN controller issues a flow table based on a flow supervision strategy and a forwarding path; and reporting a flow monitoring result by the SDN switch.
Inquiring a flow supervision table according to the destination IP and the source IP, and if the flow supervision table is hit, obtaining a threshold value and a priority level from the matched entry; then acquiring a message forwarding path, and issuing flow tables to all SDN switches on the forwarding path according to the matched entries; inquiring a flow monitoring table according to the destination IP and the source IP, and if the flow monitoring table is not hit, dynamically generating a new monitoring item; finally, a message forwarding path is obtained, and flow tables are issued to all SDN switches on the forwarding path according to the matched entries; and if the monitoring item is not hit, the SDN controller dynamically generates a new monitoring item, the threshold value is a default value, the priority level is taken from the message, and no change is made.
In step S103, the supervision state of the traffic supervision table is updated according to the Experimenter packet analyzed by the SDN controller.
If the detection rate of the SDN switch is less than or equal to a green threshold value, the flow is marked to be green, and the SDN switch reports the flow to the controller after carrying out flow statistics; the flow statistics comprises byte number and message number statistics; if the detection rate of the SDN switch is larger than a green threshold value and is smaller than or equal to a yellow threshold value, marking the flow into yellow, re-marking the priority of the SDN switch, and reporting the priority to an SDN controller; the priority re-marking processing mode is priority reduction processing; if the snooping rate of the SDN switch is greater than the yellow threshold, the traffic is marked red and reported to the SDN controller.
When the traffic is marked red, the SDN switch performs packet loss processing.
The SDN controller and the SDN switch both support expansion of flow tables; the Match field of the expansion flow table comprises a source IP and a destination IP; the action field of the extended flow table is the rate of the detected flow.
The extended flow table specifically includes: when the detection rate is less than or equal to a green threshold value, the flow is marked to be green, and the SDN switch carries out flow statistics and reports the flow to the controller; when the detection rate is less than or equal to a yellow threshold value, marking the flow as yellow, and the SDN switch carries out priority re-marking and reports the priority re-marking to the SDN controller; and when the detection rate is greater than the yellow threshold value, marking the flow as red, and reporting the packet to an SDN controller by the SDN switch.
Compared with the prior art, the flow supervision process based on the SDN framework is uniformly calculated and managed by the SDN controller, all flow supervision configurations are centralized on the SDN controller, and management and later-stage operation are facilitated; SDN controllers regulate the specification of a certain amount of traffic entering the network, limit it to a reasonable range, or "penalize" the excess traffic to protect network resources and operator benefits.
Detailed Description
The conception, the specific structure and the technical effects of the present invention will be further described with reference to the accompanying drawings to fully understand the objects, the features and the effects of the present invention.
As shown in fig. 1, the traffic supervision method based on the SDN architecture of the present invention includes the following steps: s101: a user configures a flow supervision strategy on an SDN controller; s102: the SDN controller receives a message from the SDN switch and analyzes a target IP and a source IP; s103: the SDN controller receives a private extended expermer message from the SDN switch and analyzes the expermer message; s104: and the SDN switch detects the flow rate and reports the flow rate to the SDN controller according to a detection result. The flow monitoring process based on the SDN framework is uniformly calculated and managed by the SDN controller, all flow monitoring configurations are centralized on the SDN controller, and management, operation and maintenance are facilitated.
The specific supervision of the different steps will be specifically described below:
step S101, see fig. 2: and configuring a flow supervision strategy on the SDN controller by a user.
Specifically, the SDN switch reports a message that does not match a flow table; the SDN controller issues a flow table based on a flow supervision strategy and a forwarding path; and reporting a flow monitoring result by the SDN switch.
The SDN controller supports SDN-based traffic supervision configuration tasks including traffic supervision tables and SDN-based traffic supervision functions. The flow monitoring table comprises flow characteristics and threshold values specified by a user and monitoring states reported by the SDN switch. The SDN-based traffic supervision function is configured to turn on or off the SDN-based traffic supervision function.
Step S102, see fig. 3: and the SDN controller receives a message from the SDN switch and analyzes a destination IP and a source IP.
Inquiring a private flow supervision table according to the destination IP and the source IP, and if the private flow supervision table is hit, obtaining a threshold value and a priority level from the matched entry; and then acquiring a message forwarding path, and issuing flow tables to all SDN switches on the forwarding path according to the matched entries.
And inquiring a private flow monitoring table according to the destination IP and the source IP, if the private flow monitoring table is not hit, dynamically generating a new monitoring entry by the SDN controller, wherein the threshold value is a default value, the priority level is taken from the message, and the priority level is not changed. And finally, acquiring a message forwarding path, and issuing flow tables to all SDN switches on the forwarding path according to the matched entries.
The private traffic policing table is statically configured or dynamically created by the user, and static entries have a higher priority than dynamic entries.
The private flow monitoring table comprises a destination IP, a source IP, a green threshold, a yellow threshold and a monitoring state; the destination IP and the source IP are used for specifying flow; comparing the flow rate with a green threshold and a yellow threshold respectively, and reporting the flow rate to an SDN controller after the SDN switch carries out flow statistics; the supervision state represents the marked color of the report reported by the SDN switch.
Step S103, see fig. 4: the SDN controller receives a private extended Experimenter message from the SDN switch, analyzes the Experimenter message, and then updates the monitoring state of the flow monitoring table.
The format of the private extended expermer message received by the SDN controller from the SDN switch is that the expermer value is 1, which indicates that the message is directed from the SDN switch to the SDN controller, and the expermer value is 255; reporting the private extended Experimenter message to an SDN controller by an SDN switch on a forwarding path; the destination IP and the source IP uniquely determine a stream; the regulatory status indicates what color the flow is marked (see description below).
The regulatory status typically indicates that the traffic is labeled in three colors: green, yellow and red, when the traffic is marked as green, the SDN switch performs traffic statistics and reports the traffic statistics to the controller; when the flow is marked to be yellow, the SDN switch carries out priority re-marking and reports to the SDN controller; and when the traffic is marked to be red, the SDN switch carries out packet loss processing and reports the packet loss processing to the SDN controller.
Step S104, see fig. 5: and the SDN switch detects the flow rate and reports the flow rate to the SDN controller according to a detection result.
Specifically, if the detection rate of the SDN switch is less than or equal to a green threshold, the traffic is marked green, and the SDN switch performs traffic statistics and reports the traffic statistics to the controller. The flow statistics comprises byte number and message number statistics.
And if the detection rate of the SDN switch is greater than the green threshold and is less than or equal to the yellow threshold, marking the flow as yellow, and the SDN switch carries out priority re-marking and reports the priority re-marking to the SDN controller. The priority re-marking is processed in a priority reduction mode.
And if the detection rate of the SDN switch is greater than the yellow threshold, marking the flow as red, and reporting the packet loss to the SDN controller by the SDN switch.
With the above different threshold settings, the SDN controller supervises the specification of a certain traffic entering the network, limits it within a reasonable range, or "penalizes" the excess traffic to protect the network resources and the benefit of the operator.
As a further improvement, the SDN controller and the SDN switch both support an extended flow table. The Match field of the augmented flow table includes a source IP and a destination IP. The action field of the extended flow table is the rate of the detected flow.
The augmented flow table is specifically described as: when the detection rate is less than or equal to a green threshold value, the flow is marked to be green, and the SDN switch performs flow statistics (statistics of the number of bytes and the number of messages to be supported) and reports the flow to the controller; when the detection rate is less than or equal to a yellow threshold value, marking the flow as yellow, carrying out priority re-marking (priority reduction) on the SDN switch, and reporting to an SDN controller; and when the detection rate is greater than the yellow threshold, marking the traffic as red, and reporting the SDN controller by the SDN switch when the SDN switch loses the packet.
The SDN-based traffic supervision method according to the present invention will be specifically described below with reference to a specific test environment.
Firstly, as shown in fig. 6, a test environment is established, and a user configures a traffic supervision policy on an SDN controller.
The SDN controller supports SDN-based traffic supervision configuration tasks including traffic supervision tables and SDN-based traffic supervision functions. The flow monitoring table comprises flow characteristics and threshold values specified by a user and monitoring states reported by the SDN switch. The SDN-based traffic supervision function is configured to turn on or off the SDN-based traffic supervision function.
In addition, the SDN controller and SDN switch both support an augmented flow table. The extended flow table comprises a Match field and an action field, the Match field comprises a source IP and a destination IP, and the action field of the extended flow table is the speed of the detection flow.
The augmented flow table is specifically described as: when the detection rate is less than or equal to a green threshold value, the flow is marked to be green, and the SDN switch performs flow statistics (statistics of the number of bytes and the number of messages to be supported) and reports the flow to the controller; when the detection rate is less than or equal to a yellow threshold value, marking the flow as yellow, carrying out priority re-marking (priority reduction) on the SDN switch, and reporting to an SDN controller; and when the detection rate is greater than the yellow threshold, marking the traffic as red, and reporting the SDN controller by the SDN switch when the SDN switch loses the packet.
In the test environment, the green threshold is 100 PPS, the yellow threshold is 200PPS, and the new priority level is 1. The flow from the client C to the server is 50PPS, the flow from the client A to the server is 120 PPS, and the flow from the client B to the server is 220 PPS.
The SDN controller then receives the packet from the SDN switch, parses the destination IP and the source IP, and follows a private traffic policing table. The private traffic supervision table comprises a destination IP, a source IP, a green threshold, a yellow threshold and a supervision state.
The destination IP and the source IP are used for specifying flow; comparing the flow rate with a green threshold and a yellow threshold respectively, and reporting the flow rate to an SDN controller after the SDN switch carries out flow statistics; the supervision state represents a color of the SDN switch reporting message being marked.
The specific comparison result of the flow rate in the test environment is that the flow from the client C to the server is 50PPS, and the value is smaller than the green threshold value of 100 PPS.
The client a traffic to the server is 120 PPS, which is greater than the green threshold and less than the yellow threshold of 200 PPS.
Client B traffic to the server is 220 PPS, which is greater than the yellow threshold of 200 PPS.
Then, the SDN controller receives a private extended Experimenter message from the SDN switch and analyzes the Experimenter message.
The SDN controller receives a private extended expermer message from an SDN switch in a format that the expermer value is 1, the message is from the SDN switch to the SDN controller, and the expermer value is 255 and needs to apply to an ONF organization; reporting the private extended Experimenter message to an SDN controller by an SDN switch on a forwarding path; the destination IP and the source IP uniquely determine a stream; the regulatory status indicates what color the flow is marked, and the regulatory status typically indicates that the flow is marked in three colors, green, yellow, and red.
The steps are as follows:
the client C traffic to the server is marked green.
The client a traffic to the server is marked yellow.
Client B traffic to the server is marked red.
And finally, the SDN switch detects the flow rate and reports the flow rate to the SDN controller according to a detection result.
The specific analysis process is that if the detection rate of the SDN switch is less than or equal to a green threshold value, the flow is marked to be green, and the SDN switch performs flow statistics and reports the flow statistics to the SDN controller. The flow statistics comprises byte number and message number statistics.
And if the detection rate of the SDN switch is greater than the green threshold and is less than or equal to the yellow threshold, marking the flow as yellow, and the SDN switch carries out priority re-marking and reports the priority re-marking to the SDN controller. The priority re-marking is processed in a priority reduction mode.
And if the detection rate of the SDN switch is greater than the yellow threshold, marking the flow as red, and reporting the packet loss to the SDN controller by the SDN switch.
According to the analysis, the flow from the client C to the server is 50PPS < green threshold 100 PPS, the flow is marked as green, and the SDN switch reports the flow to the SDN controller after performing flow statistics (statistics of the number of bytes and the number of messages to be supported).
If the traffic 120 PPS from the client a to the server is greater than the green threshold 100 PPS and is less than the yellow threshold 200PPS, the traffic is marked to be yellow, the SDN switch performs priority re-marking, that is, the priority of the traffic from the client a to the server is modified to be 1 (the priority of 1 is the lowest), and reports the traffic to the SDN controller.
If the traffic 220 PPS from the client B to the server is greater than the yellow threshold 200PPS, the traffic is marked red, directly discarded by S0, and reported to the SDN controller.
Through the setting of the different thresholds, the SDN controller monitors the specification of a certain flow entering the network, and limits the certain flow to a reasonable range, that is, monitors the flows of the client a, the client B and the client C, and "punishes" the partial flow that exceeds the certain flow, that is, directly discards the flow data of the client B and performs degradation processing on the flow data of the client a, so as to protect the network resources and the benefits of the operator.
The SDN controller calculates the flow supervision process based on the SDN framework in a unified mode, the flow supervision process is managed in a centralized mode, all flow supervision configurations are centralized on the SDN controller, management and later-stage operation are facilitated, the supervision effect is obviously superior to that of a traditional working mode, control is more convenient and efficient, and the SDN controller has a very wide market application prospect.
It will be appreciated by those skilled in the art that the drawings are merely schematic representations of one preferred embodiment and that the elements or processes in the drawings are not necessarily required to practice the invention. The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
The above embodiments are merely to illustrate the technical solutions of the present invention, not to limit the present invention, and the present invention has been described in detail with reference to the preferred embodiments. It will be understood by those skilled in the art that various modifications and equivalent arrangements may be made without departing from the spirit and scope of the present invention and it is intended to cover the appended claims.