CN109347717B - VXLAN tunnel switching method and device - Google Patents

VXLAN tunnel switching method and device Download PDF

Info

Publication number
CN109347717B
CN109347717B CN201811126731.5A CN201811126731A CN109347717B CN 109347717 B CN109347717 B CN 109347717B CN 201811126731 A CN201811126731 A CN 201811126731A CN 109347717 B CN109347717 B CN 109347717B
Authority
CN
China
Prior art keywords
source port
vtep device
fault
vxlan tunnel
source
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811126731.5A
Other languages
Chinese (zh)
Other versions
CN109347717A (en
Inventor
黄李伟
王伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou H3C Technologies Co Ltd
Original Assignee
Hangzhou H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou H3C Technologies Co Ltd filed Critical Hangzhou H3C Technologies Co Ltd
Priority to CN201811126731.5A priority Critical patent/CN109347717B/en
Publication of CN109347717A publication Critical patent/CN109347717A/en
Application granted granted Critical
Publication of CN109347717B publication Critical patent/CN109347717B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0631Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0654Management of faults, events, alarms or notifications using network fault recovery
    • H04L41/0668Management of faults, events, alarms or notifications using network fault recovery by dynamic selection of recovery network elements, e.g. replacement by the most appropriate element after failure

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The disclosure relates to the technical field of network communication, and provides a VXLAN tunnel switching method and a VXLAN tunnel switching device, which are applied to a first VTEP device of EVPN networking, wherein the method comprises the following steps: when the first source port is detected to be in fault and the second source port is normal, switching the service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port; and sending the fault notification information of the first source port to the second VTEP device through the second source port so as to enable the second VTEP device to process the traffic flow. When the current source port has a fault, the method and the device can transmit the fault notification information through the detected VXLAN tunnels corresponding to other normal source ports, can ensure the reliable sending of the fault notification information and the correct switching of the service flow forwarding path, and improve the reliability of EVPN networking.

Description

VXLAN tunnel switching method and device
Technical Field
The disclosure relates to the technical field of network communication, in particular to a VXLAN tunnel switching method and device.
Background
An EVPN (Ethernet Virtual Private Network) is a two-layer VPN (Virtual Private Network) technology, a control layer of the EVPN uses MP-BGP (multi Protocol Border Gateway Protocol) to announce EVPN routing information, and a data layer uses VXLAN (Virtual eXtensible Local Area Network) encapsulation to forward a packet.
The basic EVPN networking architecture mainly includes: a VXLAN Tunnel is established between physical ports of a VM (Virtual Machine), a CE (customer edge) device, and a VTEP (VXLAN Tunnel End Point) device, and a physical port may fail in a message forwarding process, which results in insufficient reliability of EVPN networking.
Disclosure of Invention
The invention aims to provide a VXLAN tunnel switching method and a VXLAN tunnel switching device, which are used for improving reliability of EVPN networking.
In order to achieve the above purpose, the technical scheme adopted by the disclosure is as follows:
in a first aspect, the present disclosure provides a VXLAN tunnel switching method applied to a first VTEP device in an EVPN networking, where the EVPN networking further includes a second VTEP device, a first VXLAN tunnel is established between a first source port of the first VTEP device and a first destination port of the second VTEP device, and a second VXLAN tunnel is established between a second source port of the first VTEP device and a second destination port of the second VTEP device, and the method includes: when the first source port is detected to be in fault and the second source port is normal, switching service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port; and sending the fault notification information of the first source port to the second VTEP device through the second source port so that the second VTEP device processes the traffic flow.
In a second aspect, the present disclosure further provides a VXLAN tunnel switching apparatus, applied to a first VTEP device of an EVPN networking, where the EVPN networking further includes a second VTEP device, a first VXLAN tunnel is established between a first source port of the first VTEP device and a first destination port of the second VTEP device, a second VXLAN tunnel is established between a second source port of the first VTEP device and a second destination port of the second VTEP device, and the apparatus includes a first detection module and a first execution module. The first detection module is configured to switch a service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port when the first source port is detected to be faulty and the second source port is normal; the first execution module is configured to send the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow.
Compared with the prior art, the VXLAN tunnel switching method and device provided by the present disclosure forward a service flow through a first VXLAN tunnel between a first source port and a first destination port under a normal condition, when a failure of the first source port is detected, first detect whether other normal source ports exist, and when a failure of the second source port is detected, switch the service flow from the first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port; meanwhile, the fault information of the first source port is sent to the second VTEP device through the second source port, so that the second VTEP device can process the traffic flow. When the current source port has a fault, the method and the device can transmit the fault notification information through the detected VXLAN tunnels corresponding to other normal source ports, and can ensure the reliable sending of the fault notification information and the correct switching of the service flow forwarding path, thereby ensuring the normal forwarding of the service flow and improving the reliability of EVPN networking.
In order to make the aforementioned objects, features and advantages of the present disclosure more comprehensible, preferred embodiments accompanied with figures are described in detail below.
Drawings
To more clearly illustrate the technical solutions of the present disclosure, the drawings needed for the embodiments will be briefly described below, it should be understood that the following drawings only illustrate some embodiments of the present disclosure, and therefore should not be considered as limiting the scope, and those skilled in the art can also obtain other related drawings based on the drawings without inventive efforts.
Fig. 1 shows an error detection handover network architecture diagram provided by the present disclosure.
Fig. 2 shows a first block schematic diagram of EVPN networking provided by the present disclosure.
Fig. 3 shows a second block schematic diagram of EVPN networking provided by the present disclosure.
Fig. 4 shows a flowchart of a VXLAN tunnel switching method provided by the present disclosure.
Fig. 5 shows a block schematic diagram of a first VTEP apparatus provided by the present disclosure.
Fig. 6 shows a block schematic diagram of a VXLAN tunnel switching device provided by the present disclosure.
Icon: 10-error detection switching network; 20-EVPN networking; 30-a first VTEP device; 40-a second VTEP device; 50-a third VTEP device; 31-a processor; 32-a memory; 33-a bus; 34-a communication interface; 100-VXLAN tunnel switching device; 101-a first detection module; 102-a first execution module; 103-a second detection module; 104-a second execution module.
Detailed Description
The technical solutions in the present disclosure will be described clearly and completely with reference to the accompanying drawings in the present disclosure, and it is to be understood that the described embodiments are only a part of the embodiments of the present disclosure, and not all of the embodiments. The components of the present disclosure, as generally described and illustrated in the figures herein, may be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present disclosure, presented in the figures, is not intended to limit the scope of the claimed disclosure, but is merely representative of selected embodiments of the disclosure. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the disclosure without making creative efforts, shall fall within the protection scope of the disclosure.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, it need not be further defined and explained in subsequent figures. Meanwhile, in the description of the present disclosure, the terms "first", "second", and the like are used only for distinguishing the description, and are not to be construed as indicating or implying relative importance.
An error code is a bit error in a signal received by a communication device compared to the time the signal was sent out, and is usually represented as a packet error detected by the communication device according to a CRC check algorithm. The error code caused by the line fault can be eliminated by eliminating the fault; however, it is difficult to completely eliminate a probabilistic error caused by optical path jitter, line aging, and the like.
To reduce the adverse effects of bit errors, the bit error detection switching network 10 may be used to detect bit errors and perform line switching after the bit errors are detected. Referring to fig. 1, the error detection switching network 10 includes a # 1 CE device, a PE (Provider Edge) device, an UPE (User-end PE) device, an SPE (Superstratum PE, upper layer PE) device, and a # 2 CE device, where the UPE device is directly connected to a User device, the SPE device is connected to the UPE device and located inside the error detection switching network 10, and an MP-BGP is operated between the UPE and SPE. Under normal conditions, service traffic between the UPE device and the SPE device is forwarded through a main path, where the main path is a traffic forwarding path between the port1 of the SPE device and the port1' of the UPE device, that is, SPE to UPE. However, when an error fault occurs at the port1' of the UPE device, if traffic continues to be forwarded through the primary path, it will be affected by the error. At this time, it is necessary for the port1 'of the UPE device to send an error notification message to the SPE device, so that the service traffic is switched from the main path to the backup path for forwarding, where the backup path is composed of a traffic forwarding path between the port2 of the SPE device and the port2 ″ of the PE device, and between the port1 ″ of the PE device and the port2' of the UPE device, that is, SPE to PE to UPE. After receiving the error notification message sent by the UPE equipment, the SPE equipment switches the service flow from the SPE to UPE main path to the SPE to PE to UPE standby path for forwarding, so as to ensure normal forwarding of the service flow.
However, the EVPN protocol can detect the error code at present, but cannot perform line switching after detecting the error code; in addition, the current error detecting and switching network 10 cannot determine whether a line is switched completely, so that reliability is insufficient, for example, in fig. 1, when an error fault occurs at a port1 'of a UPE device, a port1' of the UPE device needs to send an error notification message to an SPE device, but due to the error fault existing at a port1', it cannot be ensured that the error notification message can correctly reach the SPE device, if the UPE device detects that an error fault occurs at a port1' and switches service traffic to PE-UPE, and the SPE device does not switch a path to SPE-PE due to not receiving the error notification message, so that the service traffic cannot be forwarded normally, and thus service may be affected.
Based on the above problems, the present disclosure provides a VXLAN tunnel switching method and apparatus, which, on one hand, expands EVPN protocol, so that the EVPN protocol can perform line switching after detecting error code failure of a physical port; on the other hand, when detecting that an error code fault occurs in the current source port, the service flow can be switched from the VXLAN tunnel corresponding to the current source port to the VXLAN tunnels corresponding to other normal source ports, and the transmission of the fault notification information is performed through the VXLAN tunnels corresponding to other normal source ports, so that reliable sending of the fault notification information and correct switching of the service flow forwarding path are ensured, which is described in detail below.
Referring to fig. 2, fig. 2 shows a first block schematic diagram of an EVPN networking 20 provided by the present disclosure. EVPN networking 20 includes a # 1 CE device, a first VTEP device 30, a second VTEP device 40, and a # 2 CE device, where the # 1 CE device is communicatively connected to the first VTEP device 30, the second VTEP device 40 is communicatively connected to the # 2 CE device, a first VXLAN tunnel is established between a first source port1 of the first VTEP device 30 and a first destination port1 'of the second VTEP device 40, and a second VXLAN tunnel is established between a second source port2 of the first VTEP device 30 and a second destination port2' of the second VTEP device 40.
The first VXLAN tunnel is a primary path for forwarding the service traffic between the first VTEP device 30 and the second VTEP device 40, and the second VXLAN tunnel is a backup path for forwarding the service traffic between the first VTEP device 30 and the second VTEP device 40.
In practical applications, in order to further improve reliability of the EVPN network 20, the EVPN network 20 may further include another VTEP device other than the first VTEP device 30 and the second VTEP device 40, for example, referring to fig. 3, the EVPN network 20 further includes a third VTEP device 50, a VXLAN tunnel 1 is established between the second source port2 of the first VTEP device 30 and the port1 ″ of the third VTEP device 50, a VXLAN tunnel 2 is established between the port2 ″ of the third VTEP device 50 and the second destination port2' of the second VTEP device 40, and the VXLAN tunnel 1 and the VXLAN tunnel 2 together form a backup path for forwarding traffic between the first VTEP device 30 and the second VTEP device 40, and the VXLAN tunnel 1 and the VXLAN tunnel 2 are equivalent to the second VXLAN tunnel.
As another embodiment, the number of other VTEP devices in the EVPN networking network 20 may also be multiple, and if the EVPN networking network 20 includes multiple other VTEP devices, for example, 1# VTEP device and 2# VTEP device, one of the multiple other VTEP devices establishes a 1# VXLAN tunnel with the second source port2 of the first VTEP device 30, another establishes a 2# VXLAN tunnel with the second destination port2' of the second VTEP device 40, and any two adjacent other VTEP devices establish VXLAN tunnels, the 1# VXLAN tunnel, the VXLAN tunnel established between any two adjacent other VTEP devices, and the 2# VXLAN tunnel together constitute a backup path for forwarding traffic between the first VTEP device 30 and the second VTEP device 40. For example, a 1# VXLAN tunnel is established between the 1# VTEP device and the second source port2 of the first VTEP device 30, a 2# VXLAN tunnel is established between the 2# VTEP device and the second destination port2' of the second VTEP device 40, a 3# VXLAN tunnel is established between the 1# VTEP device and the 2# VTEP device, and the 1# VXLAN tunnel, the 2# VXLAN tunnel, and the 3# VXLAN tunnel together form a backup path for forwarding traffic between the first VTEP device 30 and the second VTEP device 40, which corresponds to the second VXLAN tunnel. The number of other VTEP devices in the EVPN network 20 is not limited herein.
The first VTEP device 30, the second VTEP device 40, and the third VTEP device 50 may be hardware such as a switch and a router that implement VXLAN functions, or may be a virtual switch and a virtual router that are deployed in a host. The first VTEP apparatus 30 is a virtual switch, a virtual router, or the like deployed in the host, and a storage module of the host stores a program, such as the VXLAN tunnel switching apparatus 100 shown in fig. 6, and after receiving the execution instruction, the processing module of the host executes the program to implement the VXLAN tunnel switching method disclosed in the following embodiments of the present disclosure; when the first VTEP device 30 is hardware such as a switch or a router that implements a VXLAN function, a storage module of the first VTEP device 30 stores a program, for example, the VXLAN tunnel switching apparatus 100 shown in fig. 6, and a processing module of the first VTEP device 30 executes the program after receiving an execution instruction to implement a VXLAN tunnel switching method disclosed in the following embodiments of the present disclosure, which will be described in detail mainly by taking an example in which the EVPN network 20 includes a third VTEP device 50 that is another VTEP device.
Example of an embodiment
Referring to fig. 4, fig. 4 shows a flowchart of a VXLAN tunnel switching method provided by the present disclosure. The VXLAN tunnel switching method is applied to the first VTEP device 30 and comprises the following steps:
step S101, when detecting that the first source port is faulty and the second source port is normal, switching the service flow from the first VXLAN tunnel corresponding to the first source port to the second VXLAN tunnel corresponding to the second source port.
In this disclosure, the traffic may be data forwarded in the EVPN network 20, and in a normal case, the traffic between the first VTEP device 30 and the second VTEP device 40 is forwarded through the first VXLAN tunnel between the first source port1 and the first destination port1', when the first VTEP device 30 detects that the error fault exists in the first source port1, the first VTEP device 30 first detects whether the error fault also exists in other source ports except the first source port1, and if the second source port2 of the first VTEP device 30 is normal and the error fault is not detected, the first VTEP device 30 switches the traffic from the first VXLAN tunnel corresponding to the first source port1 to the second VXLAN tunnel corresponding to the second source port 2.
With reference to fig. 3, if the EVPN networking 20 further includes the third VTEP device 50, when the first VTEP device 30 detects that the error fault exists in the first source port1 and the second source port2 is normal, the first VTEP device 30 switches the traffic flow from the first VXLAN tunnel corresponding to the first source port1 to the VXLAN tunnel 1 corresponding to the second source port 2.
Step S102, sending the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow.
In the present disclosure, when first VTEP device 30 detects that first source port1 has an error fault and second source port2 is normal, the service traffic is switched from a first VXLAN tunnel corresponding to first source port1 to a second VXLAN tunnel corresponding to second source port2, and at the same time, first VTEP device 30 sends fault notification information to second VTEP device 40 through normal second source port2, so that second VTEP device 40 can process the service traffic, that is, second VTEP device 40 switches the processing of the service traffic from first destination port1 'associated with first source port1 to second destination port2' associated with second source port 2.
In fig. 3, if EVPN network 20 further includes a third VTEP device 50, first VTEP device 30 will send the fault notification information to third VTEP device 50 through normal second source port2, third VTEP device 50 will send the fault notification information to second VTEP device 40 through VXLAN tunnel 2, and second VTEP device 40 will switch the processing of the traffic from first destination port1 'associated with first source port1 to second destination port2' associated with second source port2 after receiving the fault notification information.
In the present disclosure, the fault notification information may be transmitted in a protocol packet manner, or may be transmitted in a data packet manner, and when the fault notification information is transmitted in the protocol packet manner, the fault notification information is transmitted at the control layer of the EVPN networking 20; when transmitting in data packets, the failure notification information is transmitted in the data layer of the EVPN network 20.
As an implementation manner, when the fault notification information is transmitted in a protocol packet manner, that is, transmitted through a BGP EVPN route, the fault notification information is an EVPN route, where the EVPN route includes a fault state flag and a first Source port1 associated with the fault state flag, and the information of the EVPN route includes information RD of the EVPN networking 20, link information Ethernet Segment Identifier, broadcast domain Ethernet Tag ID, Source IP address Source IP addresses, destination IP address destination IP addresses, the fault state flag, and a first Source port CRC error bit associated with the fault state flag.
When the failure notification information is an EVPN route, the first VTEP device 30 sends the EVPN route to the second VTEP device 40 through the second source port2, so that the second VTEP device 40 switches the processing of the traffic flow from the first destination port1 'associated with the first source port1 to the second destination port2' associated with the second source port2 according to the failure status flag.
As shown in fig. 3, if the EVPN networking 20 further includes a third VTEP device 50, the first VTEP device 30 first sends the EVPN route with the next hop being the address of the third VTEP device 50 through VXLAN tunnel 1, and after receiving the EVPN route, the third VTEP device 50 sends the EVPN route with the next hop being the address of the second VTEP device 40 through VXLAN tunnel 2. After receiving the EVPN route, second VTEP device 40 switches the processing of the traffic flow from first destination port1 'associated with first source port1 to second destination port2' associated with second source port2 according to the fault status flag. Specifically, after receiving the EVPN route, the second VTEP device 40 locates the VXLAN tunnel in the reverse direction according to the CRC error bit in the EVPN route, finds that a reverse association VXLAN tunnel to the first VTEP device 30 exists on the second VTEP device 40, and at the same time, a corresponding second destination port2' exists, and switches the processing of the traffic flow from the first destination port1' to the second destination port2 '.
As another embodiment, when the fault notification information is transmitted in a data packet manner, the fault notification information is a first encapsulated packet, and the reserved field of the first encapsulated packet stores the fault information of the first source port1, that is, if the VXLAN tunnel is used to transmit the fault notification information, the CRC error bit may be set in the reserved field of the encapsulated packet header of the VXLAN tunnel to obtain the first encapsulated packet.
When the failure notification information is the first encapsulated packet, the first VTEP device 30 sends the first encapsulated packet to the second VTEP device 40 through the second source port2, so that the second VTEP device 40 acquires the failure information of the first source port1 in the reserved field, and switches the processing of the traffic flow from the first destination port1 'associated with the first source port1 to the second destination port2' associated with the second source port2 according to the failure information.
With reference to fig. 3, if the EVPN networking 20 further includes the third VTEP device 50, the first VTEP device 30 sequentially passes through VXLAN tunnel 1 and VXLAN tunnel 2, and sends the first encapsulated packet to the second VTEP device 40, so that the second VTEP device 40 obtains the failure information of the first source port1 in the reserved field, and switches the processing of the traffic flow from the first destination port1 'associated with the first source port1 to the second destination port2' associated with the second source port2 according to the failure information, that is, after receiving the first encapsulated packet carrying the CRC error bit setting bit, the second VTEP device 40 directly switches the processing of the traffic flow from the first destination port1 'to the second destination port 2'.
When first VTEP device 30 detects that first source port1 has failed back, it needs to switch the traffic flow from the second VXLAN tunnel corresponding to second source port2 back to the first VXLAN tunnel corresponding to first source port1, and therefore, the present disclosure may further include steps S103 to S104.
Step S103, when it is detected that the failure of the first source port is recovered, switching the service traffic from the second VXLAN tunnel corresponding to the second source port back to the first VXLAN tunnel corresponding to the first source port.
In this disclosure, when the first VTEP device 30 detects that the error fault of its first source port1 is recovered, it needs to switch the traffic flow from the second VXLAN tunnel corresponding to the second source port2 back to the first VXLAN tunnel corresponding to the first source port 1.
In fig. 3, if EVPN networking 20 further includes third VTEP device 50, when first VTEP device 30 detects error recovery of first source port1, first VTEP device 30 switches the traffic from VXLAN tunnel 1 corresponding to second source port2 back to the first VXLAN tunnel corresponding to first source port 1.
Step S104, sending the failure recovery information of the first source port to the second VTEP device through the first source port, so that the second VTEP device processes the traffic flow.
In this disclosure, when first VTEP device 30 detects that first source port1 has failed back, the traffic flow is switched from the second VXLAN tunnel corresponding to second source port2 back to the first VXLAN tunnel corresponding to first source port1, and at the same time, first VTEP device 30 may send failure back information to second VTEP device 40 by recovering normal first source port1, so that second VTEP device 40 may process the traffic flow, that is, second VTEP device 40 switches the processing of the traffic flow from second destination port2 'associated with second source port2 back to first destination port1' associated with first source port 1.
In conjunction with fig. 3, if EVPN networking 20 further includes third VTEP device 50, first VTEP device 30 may send failure recovery information to second VTEP device 40 by recovering from normal first source port1, and second VTEP device 40 switches the processing of traffic from second destination port2 'associated with second source port2 back to first destination port1' associated with first source port1 after receiving the failure recovery information.
In the present disclosure, the failure recovery information may be transmitted in a protocol packet manner, or may be transmitted in a data packet manner, and when the failure recovery information is transmitted in the protocol packet manner, the failure recovery information is transmitted at the control layer of the EVPN networking 20; when transmitted in data packets, the failure recovery information is transmitted at the data layer of the EVPN network 20.
As an embodiment, when the failure recovery information is transmitted in a protocol packet manner, the failure recovery information is a route withdrawal request of the EVPN route, the first VTEP device 30 sends the route withdrawal request of the EVPN route to the second VTEP device 40 through the first source port1, and after receiving the route withdrawal request of the EVPN route, the second VTEP device 40 switches the processing of the traffic flow from the second destination port2 'back to the first destination port 1'.
As another embodiment, when the failure recovery information is transmitted in a data packet, the failure recovery information is a second encapsulated packet, where the second encapsulated packet is a packet obtained by deleting the failure information of the first source port1 in the reserved field of the first encapsulated packet. That is, after the first VTEP device 30 detects that the failure of the first source port1 is recovered, the CRC error bit may be reset in the reserved field of the VXLAN tunnel encapsulation packet header to obtain the second encapsulation packet. First VTEP device 30 sends the second encapsulated packet to second VTEP device 40 through first source port1, and after receiving the second encapsulated packet, second VTEP device 40 switches the processing of the traffic flow from second destination port2 'back to first destination port 1'.
The VXLAN tunnel switching method provided by the disclosure has the following beneficial effects:
firstly, the existing EVPN protocol is expanded, and a function of supporting error code detection linkage is added in the existing EVPN protocol, so that the EVPN protocol can carry out line switching after detecting the error code of the current source port;
secondly, a path selection mechanism of the fault notification information is provided, and the reliable sending of the fault notification information and the correct switching of the service flow forwarding path can be ensured by transmitting the fault notification information through the detected VXLAN tunnels corresponding to other normal source ports, so that the normal forwarding of the service flow is ensured, and the reliability of the EVPN networking 20 is improved.
Alternative embodiment
Referring to fig. 5, fig. 5 shows a block schematic diagram of a first VTEP apparatus 30 provided by the present disclosure. The first VTEP apparatus 30 includes a processor 31, a memory 32, a bus 33, and a communication interface 34, wherein the processor 31, the memory 32, and the communication interface 34 are connected by the bus 33; the processor 31 is arranged to execute executable modules, such as computer programs, stored in the memory 32.
The Memory 32 may include a Random Access Memory (RAM) and may also include a non-volatile Memory (non-volatile Memory), such as at least one disk Memory. The first VTEP device 30 is communicatively connected to at least one other network element via at least one communication interface 34 (which may be wired or wireless).
The bus 33 may be an ISA bus, a PCI bus, an EISA bus, or the like. Only one bi-directional arrow is shown in fig. 5, but this does not indicate only one bus or one type of bus.
The memory 32 is used for storing programs, such as the VXLAN tunnel switching device 100 shown in fig. 6. The VXLAN tunnel switching apparatus 100 includes at least one software function module which may be stored in the memory 32 in the form of software or firmware (firmware) or solidified in an Operating System (OS) of the first VTEP device 30. After receiving the execution instruction, the processor 31 executes the program to implement the VXLAN tunnel switching method disclosed in the first embodiment of the present disclosure.
The processor 31 may be an integrated circuit chip having signal processing capabilities. In implementation, the steps of the above method may be performed by integrated logic circuits of hardware or instructions in the form of software in the processor 31. The Processor 31 may be a general-purpose Processor, and includes a Central Processing Unit (CPU), a Network Processor (NP), and the like; but may also be a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), an off-the-shelf programmable gate array (FPGA) or other programmable logic device, discrete gate or transistor logic, discrete hardware components.
The present disclosure also provides a computer-readable storage medium on which a computer program is stored, the computer program, when executed by the processor 31, implementing the VXLAN tunnel switching method disclosed in the first embodiment described above.
Referring to fig. 6, fig. 6 shows a block schematic diagram of the VXLAN tunnel switching apparatus 100 provided by the present disclosure. The VXLAN tunnel switching apparatus 100 is applied to a first VTEP device 30, and includes a first detecting module 101, a first executing module 102, a second detecting module 103, and a second executing module 104.
The first detecting module 101 is configured to switch the service traffic from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port when the first source port is detected to be faulty and the second source port is normal.
The first executing module 102 is configured to send the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow.
In the disclosure, when the fault notification information is transmitted in a protocol message manner, the fault notification information is an EVPN route, and the EVPN route includes a fault state flag and a first source port associated with the fault state flag; the first executing module 102 is specifically configured to send the EVPN route to the second VTEP device 40 through the second source port, so that the second VTEP device 40 switches the processing of the traffic flow from the first destination port associated with the first source port to the second destination port associated with the second source port according to the fault status flag.
In the present disclosure, when the fault notification information is transmitted in a data packet manner, the fault notification information is a first encapsulated packet, and a reserved field of the first encapsulated packet stores fault information of a first source port; the first executing module 102 is specifically configured to send the first encapsulated packet to the second VTEP device 40 through the second source port, so that the second VTEP device 40 obtains the fault information of the first source port in the reserved field, and switches the processing of the traffic flow from the first destination port associated with the first source port to the second destination port associated with the second source port according to the fault information.
A second detecting module 103, configured to switch the service traffic from the second VXLAN tunnel corresponding to the second source port back to the first VXLAN tunnel corresponding to the first source port when detecting that the failure of the first source port is recovered.
A second executing module 104, configured to send the failure recovery information of the first source port to the second VTEP device through the first source port, so that the second VTEP device processes the traffic flow.
In this disclosure, when the failure recovery information is transmitted in a protocol packet manner, the failure recovery information is a route withdrawal request of the EVPN route.
In this disclosure, when the failure recovery information is transmitted in a data packet manner, the failure recovery information is a second encapsulated packet, where the second encapsulated packet is a packet obtained by deleting the failure information of the first source port in the reserved field of the first encapsulated packet.
In summary, the VXLAN tunnel switching method and apparatus provided by the present disclosure are applied to a first VTEP device of an EVPN networking, where the EVPN networking further includes a second VTEP device, a first VXLAN tunnel is established between a first source port of the first VTEP device and a first destination port of the second VTEP device, and a second VXLAN tunnel is established between a second source port of the first VTEP device and a second destination port of the second VTEP device, and the method includes: when the first source port is detected to be in fault and the second source port is normal, switching the service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port; and sending the fault notification information of the first source port to the second VTEP device through the second source port so as to enable the second VTEP device to process the traffic flow. The VXLAN tunnel switching method provided by the disclosure has the following beneficial effects: firstly, the existing EVPN protocol is expanded, and a function of supporting error code detection linkage is added in the existing EVPN protocol, so that the EVPN protocol can carry out line switching after detecting the error code of the current source port; and secondly, a path selection mechanism of the fault notification information is provided, and the fault notification information is transmitted through the detected VXLAN tunnels corresponding to other normal source ports, so that the reliable sending of the fault notification information and the correct switching of service flow forwarding paths can be ensured, the normal forwarding of service flow is ensured, and the reliability of EVPN networking is improved.
In the embodiments provided in the present application, it should be understood that the disclosed apparatus and method can be implemented in other ways. The apparatus embodiments described above are merely illustrative, and for example, the flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of apparatus, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
In addition, functional modules in the embodiments of the present disclosure may be integrated together to form an independent part, or each module may exist separately, or two or more modules may be integrated to form an independent part.
The functions, if implemented in the form of software functional modules and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present disclosure may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present disclosure. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes. It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The above description is only a preferred embodiment of the present disclosure and is not intended to limit the present disclosure, and various modifications and changes may be made to the present disclosure by those skilled in the art. Any modification, equivalent replacement, improvement and the like made within the spirit and principle of the present disclosure should be included in the protection scope of the present disclosure. It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, it need not be further defined and explained in subsequent figures.

Claims (10)

1. A VXLAN tunnel switching method applied to a first VTEP device of an EVPN networking, wherein the EVPN networking further includes a second VTEP device, a first VXLAN tunnel is established between a first source port of the first VTEP device and a first destination port of the second VTEP device, and a second VXLAN tunnel is established between a second source port of the first VTEP device and a second destination port of the second VTEP device, the method comprising:
when the first source port is detected to be in fault and the second source port is normal, switching service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port;
and sending the fault notification information of the first source port to the second VTEP device through the second source port so that the second VTEP device processes the traffic flow.
2. The method of claim 1, wherein the method further comprises:
when the fault recovery of the first source port is detected, switching the service flow from a second VXLAN tunnel corresponding to the second source port back to a first VXLAN tunnel corresponding to the first source port;
and sending the failure recovery information of the first source port to the second VTEP device through the first source port so that the second VTEP device processes the traffic flow.
3. The method of claim 2, wherein when the fault advertisement information is transmitted as a protocol packet, the fault advertisement information is an EVPN route that includes a fault status flag and a first source port associated with the fault status flag;
the step of sending the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow includes:
sending the EVPN route to the second VTEP device through the second source port to cause the second VTEP device to switch processing of the traffic flow from the first destination port associated with the first source port to the second destination port associated with the second source port in accordance with the fault status flag.
4. The method of claim 3, wherein the failure recovery information is a withdrawn routing request of an EVPN route when the failure recovery information is transmitted in a protocol packet manner.
5. The method of claim 2, wherein the fault notification information is a first capsule when the fault notification information is transmitted as a data packet, and a reserved field of the first capsule stores the fault information of the first source port;
the step of sending the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow includes:
and sending the first encapsulation packet to the second VTEP device through the second source port, so that the second VTEP device obtains the fault information of the first source port in the reserved field, and switches the processing of the service flow from the first destination port associated with the first source port to the second destination port associated with the second source port according to the fault information.
6. The method of claim 5, wherein the failure recovery information is a second encapsulation packet when the failure recovery information is transmitted as a data packet, wherein the second encapsulation packet is a packet after deleting the failure information of the first source port in the reserved field of the first encapsulation packet.
7. A VXLAN tunnel switching apparatus, applied to a first VTEP device of an EVPN networking, wherein the EVPN networking further includes a second VTEP device, a first VXLAN tunnel is established between a first source port of the first VTEP device and a first destination port of the second VTEP device, and a second VXLAN tunnel is established between a second source port of the first VTEP device and a second destination port of the second VTEP device, the apparatus comprising:
a first detecting module, configured to switch a service flow from a first VXLAN tunnel corresponding to the first source port to a second VXLAN tunnel corresponding to the second source port when the first source port is detected to be faulty and the second source port is normal;
a first execution module, configured to send the failure notification information of the first source port to the second VTEP device through the second source port, so that the second VTEP device processes the traffic flow.
8. The apparatus of claim 7, wherein the apparatus further comprises:
a second detecting module, configured to switch the service traffic from a second VXLAN tunnel corresponding to the second source port back to a first VXLAN tunnel corresponding to the first source port when it is detected that the first source port recovers from the failure;
a second execution module, configured to send, by the first source port, failure recovery information of the first source port to the second VTEP device, so that the second VTEP device processes the traffic flow.
9. The apparatus of claim 8, wherein when the fault advertisement information is transmitted as a protocol packet, the fault advertisement information is an EVPN route that includes a fault status flag and a first source port associated with the fault status flag; the first execution module is specifically configured to:
sending the EVPN route to the second VTEP device through the second source port to cause the second VTEP device to switch processing of the traffic flow from the first destination port associated with the first source port to the second destination port associated with the second source port in accordance with the fault status flag.
10. The apparatus of claim 8, wherein the fault notification information is a first capsule when the fault notification information is transmitted as a data packet, and a reserved field of the first capsule stores the fault information of the first source port; the first execution module is specifically configured to:
and sending the first encapsulation message to the second VTEP device through the second source port, so that the second VTEP device obtains the fault information of the first source port in the reserved field, and switches the processing of the service flow from a first destination port associated with the first source port to a second destination port associated with the second source port according to the fault information.
CN201811126731.5A 2018-09-26 2018-09-26 VXLAN tunnel switching method and device Active CN109347717B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811126731.5A CN109347717B (en) 2018-09-26 2018-09-26 VXLAN tunnel switching method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811126731.5A CN109347717B (en) 2018-09-26 2018-09-26 VXLAN tunnel switching method and device

Publications (2)

Publication Number Publication Date
CN109347717A CN109347717A (en) 2019-02-15
CN109347717B true CN109347717B (en) 2021-06-08

Family

ID=65306626

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811126731.5A Active CN109347717B (en) 2018-09-26 2018-09-26 VXLAN tunnel switching method and device

Country Status (1)

Country Link
CN (1) CN109347717B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112838982B (en) * 2019-11-22 2024-04-26 华为技术有限公司 Message transmission path switching method, device and system
CN113194019B (en) * 2021-05-12 2022-05-31 中国联合网络通信集团有限公司 Data transmission control method and electronic equipment

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108337158A (en) * 2018-01-23 2018-07-27 新华三技术有限公司 Unicast message retransmission method and device

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104270298B (en) * 2014-09-30 2018-10-09 新华三技术有限公司 Message forwarding method and device in a kind of VXLAN networks
US9667538B2 (en) * 2015-01-30 2017-05-30 Telefonaktiebolget L M Ericsson (Publ) Method and apparatus for connecting a gateway router to a set of scalable virtual IP network appliances in overlay networks
CN105391612B (en) * 2015-10-15 2018-09-11 北京星网锐捷网络技术有限公司 A kind of method and device of VXLAN VTEP adjoinings study
CN107846342B (en) * 2016-09-20 2020-11-06 华为技术有限公司 Method, device and system for forwarding VXLAN message
CN106899430B (en) * 2016-12-09 2020-05-29 新华三技术有限公司 Traffic forwarding processing method and device
CN106878072B (en) * 2017-02-10 2020-04-03 新华三技术有限公司 Message transmission method and device
CN106911548A (en) * 2017-02-24 2017-06-30 新华三技术有限公司 A kind of tunnel state changing method and device
CN107819677B (en) * 2017-10-26 2020-03-06 新华三技术有限公司 Message forwarding method and device

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108337158A (en) * 2018-01-23 2018-07-27 新华三技术有限公司 Unicast message retransmission method and device

Also Published As

Publication number Publication date
CN109347717A (en) 2019-02-15

Similar Documents

Publication Publication Date Title
US7944815B2 (en) System and method for network recovery from multiple link failures
US9871708B2 (en) Method and system for ring protection switching
US9001644B2 (en) Ethernet virtual private network system for providing fast protection for access rings
CN110730125B (en) Message forwarding method and device, dual-active system and communication equipment
CN110011839B (en) Message forwarding method and device, SPE (solid phase extraction) and storage medium
EP1958364B1 (en) Vpls remote failure indication
CN110417564B (en) Full-mesh link protection method, device, equipment and storage medium
US9806990B2 (en) Fast recovery method and device for STP-based backup port
CN105472049B (en) CGN backup protection method and device for carrier-grade network address conversion
CN109474495B (en) Tunnel detection method and device
JP2017034463A (en) Protection method, communication system, and end node
EP2521275B1 (en) Method and device for tunnel protection
US20200044964A1 (en) Defect detection in ip/mpls network tunnels
CN111817881A (en) Fault processing method and related device
CN109347717B (en) VXLAN tunnel switching method and device
WO2014206207A1 (en) Route withdrawal method and network device
CN104702431B (en) A kind of method and device of Virtual Private Network double break protection
JP2017011480A (en) Device, system and method for route control
CN109246005B (en) Message forwarding method and device
CN111131035A (en) Data transmission method and device
CN104601381A (en) Method and equipment for preventing flow interruption
CN112637054B (en) Networking optimization method and device for IP bearing network, computing equipment and storage medium
CN103404091A (en) Business protecting method, device and system
EP2898636B1 (en) Method for running a computer network
JP2019083449A (en) Network system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant