CN102724127B - Method and system for port blocking - Google Patents

Method and system for port blocking Download PDF

Info

Publication number
CN102724127B
CN102724127B CN201210220222.5A CN201210220222A CN102724127B CN 102724127 B CN102724127 B CN 102724127B CN 201210220222 A CN201210220222 A CN 201210220222A CN 102724127 B CN102724127 B CN 102724127B
Authority
CN
China
Prior art keywords
priority
device
network device
network
stp
Prior art date
Application number
CN201210220222.5A
Other languages
Chinese (zh)
Other versions
CN102724127A (en
Inventor
子康
陈卫
冯海生
王辉
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN201210220222.5A priority Critical patent/CN102724127B/en
Publication of CN102724127A publication Critical patent/CN102724127A/en
Application granted granted Critical
Publication of CN102724127B publication Critical patent/CN102724127B/en

Links

Abstract

本发明实施例公开了一种阻塞端口的方法,包括:当第一网络设备为虚拟路由冗余协议VRRP主设备时,设置第一网络设备在运行生成树协议STP的环网中的设备优先级最高,从而使得该STP环网的阻塞端口位于工作于VRRP备份设备的第二网络设备和接入设备之间的链路上。 Example discloses a method of the present invention, a blocked port, comprising: when the first network device is a Virtual Router Redundancy Protocol VRRP master device, a first set of devices to the priority of the Spanning Tree Protocol (STP) in the ring network the highest, so that the blocked port is located in the working ring STP on the link between the second network device and the access device of the VRRP backup device. 本发明实施例还提供相应的系统。 Embodiments of the invention also provides a corresponding system. 本发明实施例技术方案,通过将VRPP协议状态与STP的设备优先级设置联动起来,可以使得阻塞端口不会位于接入设备和VRRP主设备之间,导致业务流量不会流经第一网络设备和第二网络设备间的链路,从而减少了第一网络设备和第二网络设备间的链路的负担。 Technical solutions of the present embodiment of the invention, by the STP protocol state VRPP priority setting device linked together, so that can not be blocked port access device positioned between the master device and VRRP, service traffic does not flow through the first network device and a second link between the network device, thereby reducing the burden on the link between the first network device and a second network device.

Description

阻塞端口的方法和系统 Methods and systems for blocked ports

技术领域 FIELD

[0001] 本发明涉及通信技术领域,具体涉及一种阻塞端口的方法和系统。 [0001] The present invention relates to communication technologies, and particularly relates to a method and a system for blocking the port.

背景技术 Background technique

[0002] 在企业网数据中心中,经常在网关设备上部署虚拟路由冗余协议〈VI代皿1 1^6(11111(181107 ?1~01:00017 V册?)来进行冗余保护,接入设备以双归方式接入到运行 [0002] In the enterprise network data centers, often deploy virtual routing redundancy protocol on the gateway <VI-generation pan 1 1 ^ 6 (11111 (181107 1 ~ 01:?? 00017 V copies) to redundancy protection, access the device to run to the dual-homed

VI? VI? ! ? ? 协议的主、备网关设备上,主、备网关设备构成一个VI? The main protocol on the standby gateway device, the main and standby gateway devices constituting a Vl? ! ? ? 备份组,主网关设备是VI? Backup group, the main gateway device is VI? ! ? ? 主设备,备份网关设备是VI? Master, backup gateway device is VI? ! ? ? 备份设备,主、备网关设备之间直接通信。 Direct communication between the backup device, the master, standby gateway device. 在主、备网关设备和接入设备之间的相连端口都属于一个虚拟局域网011~1:皿1 100&1 ^1-68 ~6切01^,乂!^^),从而使得主、备网关设备和接入设备属于同一个以太网环网中,因此需要启动一种以太网环网保护协议来破环,自动计算产生环网阻塞端口,防止产生二层网络环路。 Is connected between the main port, standby gateway device and the access device belong to a virtual local area network 011 to 1: 1100 & dish 1 1-68 1-6 ^ 01 ^ cut, qe ^ ^), so that the main and standby gateway device! and an access device belong to the same Ethernet ring network, it is necessary activate a protocol to the Ethernet ring protection broken ring, the ring automatically calculated to produce the blocked port Layer prevent network loop. 例如,可以启动生成树协议(社^皿丨叩11-66 ?1~01:00017 ^!?)协议来破环。 For example, you can start Spanning Tree Protocol (social ^ dish Shu knock 11-661 ~ 01:? 00017 ^ !?) protocol to break the ring.

[0003] 现有技术中,31? [0003] prior art, 31? 会根据环网中各设备的31? Based ring network each device 31? 的设备优先级信息,自动计算出阻塞端口的位置。 Device priority information, automatically calculates the position of the blocking ports. 当阻塞端口位于接入设备和主网关设备之间时,会发生业务流量流经接入设备-› 备份网关设备主网关设备的情况,增加了主、备网关设备间的链路的负担。 When the blocked port is located between the primary gateway device and the access device, the access device traffic flows occur -> where backup gateway apparatus main gateway device, increasing the main burden of the link between the standby gateway device.

发明内容 SUMMARY

[0004] 本发明实施例提供一种阻塞端口的方法和系统,可以解决由于阻塞端口位于接入设备和主网关设备之间,导致业务流量流经接入设备-› 备份网关设备-› 主网关设备,增加了主、备网关设备间的链路的负担。 Method and system embodiments [0004] The present invention provides a blocked port, the blocked port is located can be solved since the access device and the master gateway device, resulting in traffic flowing through the access device -> backup gateway device -> primary gateway equipment, increasing the burden on the main link between the standby gateway device.

[0005] —方面,本发明实施例提供一种阻塞端口的方法,应用于包括第一网络设备、第二网络设备和接入设备的系统中,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VI? [0005] - a method aspect, the present invention provides a blocked port, a first network device applied to a system, device and a second network access device, the first device and the second network establishing a communication connection between network devices, the first network device and said second network enabled device virtual Router redundancy protocol Vl? ! ? ? ,从而使得所述第一网络设备和所述第二网络设备组成VI? Such that the first network device and the second network devices Vl? ! ? ? 备份组,在所述接入设备和所述第一网络设备之间建立通信连接,在所述接入设备和所述第二网络设备之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行生成树协议3丁? VRRP group is established between the first network access device and said communication device is connected, establishing a communication connection between the access device and the second network device, the first network device, said the second network device and the access device belonging to the same ring network, the ring network run spanning Tree protocol 3 D? ,所述方法包括: The method comprising:

[0006] 当所述第一网络设备是所述VI? [0006] When the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的31? When the primary backup device group, the first network device 31 disposed in the first network device in the ring? 的设备优先级为第一优先级;所述第二网络设备为所述VI? Priority device a first priority; the second network device to the Vl? ! ? ? 备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的31? Backup group backup device, the second network device 31 disposed in the second network device of said ring network? 的设备优先级为第二优先级;所述接入设备设置所述接入设备在所述环网中的3丁? Priority device a second priority; setting of the access device of the access device in the ring D 3 is? 的设备优先级为第三优先级,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级; Priority device the third priority, the first priority is higher than the third priority is higher than the first priority and the second priority;

[0007] 当所述第三优先级高于所述第二优先级时,所述第二网络设备在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上; [0007] When the third priority is higher than the second priority, said second network device generates a first blocked port on the second network device, the first blocking said second port is located port connected to the second network device and the access device;

[0008] 当所述第二优先级高于所述第三优先级时,所述接入设备在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 [0008] When the second priority is higher than said third priority, said apparatus generating a second access port on the access blocking device, blocking the second port is located in said access device a port connected to the second network device.

[0009] 另一方面,本发明实施例提供一种阻塞端口的系统,包括第一网络设备、第二网络设备和接入设备,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VI? [0009] In another aspect, embodiments of the present invention provides a blocked port system, comprising a first network device, the second network device and the access device, between the first network device and the second network device establish a communication connection, the first network device and said second network enabled device virtual Router redundancy protocol Vl? ! ? ? ,从而使得所述第一网络设备和所述第二网络设备组成VI? Such that the first network device and the second network devices Vl? ! ? ? 备份组,在所述接入设备和所述第一网络设备之间建立通信连接,在所述接入设备和所述第二网络设备之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行生成树协议3丁? VRRP group is established between the first network access device and said communication device is connected, establishing a communication connection between the access device and the second network device, the first network device, said the second network device and the access device belonging to the same ring network, the ring network run spanning Tree protocol 3 D? ;

[0010] 所述第一网络设备包括第一处理单元; [0010] the first network device comprises a first processing unit;

[0011] 所述第二网络设备包括第二处理单元和第一阻塞单元; [0011] The second network device comprises a first processing unit and a second blocking unit;

[0012] 所述接入设备包括第三处理单元和第二阻塞单元; [0012] The access device comprises a third processing unit and a second blocking unit;

[0013] 所述第一处理单元,用于当所述第一网络设备是所述VI? [0013] In the first processing unit, when the first network device is the Vl? ! ? ? 备份组中的主设备时,设置所述第一网络设备在所述环网中的31? When the primary backup device group, the first network device 31 is provided in the ring network? 的设备优先级为第一优先级; Priority device a first priority;

[0014] 所述第二处理单元,用于当所述第二网络设备为所述VI? [0014] The second processing unit configured to, when the second network device to the Vl? ! ? ? 备份组中的备份设备时,设置所述第二网络设备在所述环网中的31? When the backup device backup group, the second network device is provided in the ring 31? 的设备优先级为第二优先级; Priority device a second priority;

[0015] 所述第三处理单元,用于设置所述接入设备在所述环网中的31? [0015] The third processing unit, for the access device 31 is provided in the ring network? 的设备优先级为第二优先级; Priority device a second priority;

[0016] 其中,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级; [0016] wherein the first priority is higher than the third priority is higher than the first priority and the second priority;

[0017] 所述第一阻塞单元,用于当所述第三优先级高于所述第二优先级时,在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上; [0017] The first blocking means for, when the third priority is higher than the second priority, generating a first port blocked on the second network device, the first blocked port is located the second network device with the access port connected apparatus;

[0018] 所述第二阻塞单元,用于当所述第二优先级高于所述第三优先级时,在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 [0018] The second blocking means for, when the second priority is higher than said third priority, generating a second port on the access blocking device, blocking the second port is located in the port connected to said access device and the second network device.

[0019] 本发明实施例提供的一种阻塞端口的方法和系统,通过当所述第一网络设备为所述VI? [0019] A blocking method and system according to an embodiment of the present invention, the port, through the first network device when the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备、所述第二网络设备和所述接入设备分别设置各自在31? When the primary backup device group, the first network device, the second network device and the access device are each disposed at 31? 环网中的设备优先级,使得所述第一网络设备的优先级最高。 Ring network device priority, the highest priority such that the first network device. 31? 31? 根据上述优先级的设定,产生出所述第一环网的阻塞端口,该阻塞端口将位于所述第二网络设备和所述接入设备之间的链路上,使得业务流量流经的路径为接入设备和所述第一网络设备,而不会流经所述接入设备所述第二网络设备所述第一网络设备,从而减少了所述第一网络设备和所述第二网络设备中间的链路的负担。 Based on the priority setting, resulting in a blocked port of the first ring network, the blocked port is located on the link between the device and the second network access device, so that the traffic flows path access device and the first network device, but the device does not flow through the second network access device to the first network device, thereby reducing the first and the second network device burden intermediate network device link.

附图说明 BRIEF DESCRIPTION

[0020] 图1是本发明一个实施例中数据中心的组网示意图; [0020] FIG. 1 is a schematic diagram of a data center network of the embodiment of the present invention;

[0021] 图2是本发明一个实施例提供的一种阻塞端口的方法流程图; [0021] FIG. 2 is a method of blocking ports provided in the flow diagram of one embodiment of the present invention;

[0022] 图3是本发明一个实施例提供的一种阻塞端口的系统的示意图; [0022] FIG. 3 is a schematic diagram of a port system according to an embodiment of the blocking of the present invention;

[0023] 图4是本发明一个实施例提供的又一种阻塞端口的系统的示意图; [0023] FIG. 4 is a schematic view of a further embodiment of a blocked port system provided by the embodiment of the present invention;

[0024] 图5是本发明一个实施例提供的又一种阻塞端口的系统的示意图。 [0024] FIG. 5 is a schematic view of a further embodiment of a blocked port system provided by the embodiment of the present invention.

具体实施方式 Detailed ways

[0025] 下面通过附图和实施例,对本发明实施例的技术方案做进一步的详细描述。 [0025] accompanying drawings and the following embodiments, the technical solutions of the embodiments of the present invention will be further described in detail.

[0026] 如图1所示,本发明一个实施例中数据中心的组网示意图,包括第一网络设备、第二网络设备和接入设备的系统,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VI? [0026] As shown in FIG. 1, a schematic diagram of a data center network of the embodiment of the present invention, a system including a first network device, a second device and network access device, the first and the second network device establishing a communication connection between two network devices, the first network device and said second network enabled device virtual Router redundancy protocol Vl? ! ? ? ,从而使得所述第一网络设备和所述第二网络设备组成VI? Such that the first network device and the second network devices Vl? ! ? ? 备份组,在所述接入设备和所述第一网络设备通信之间建立通信连接,在所述接入设备和所述第二网络设备通信之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行3丁? Backup group, the first communication is established between the access network device and communication connection device, establishing a communication connection between the communication device and the second network access device, the first network device, the second network device and the access device belonging to the same ring network, the ring network operating 3-butoxy? .

[0027] 所述第一网络设备和所述第二网络设备,是同时支持VI? [0027] The first network device and the second network device, a support Vl? ! ? ? 协议和31? Agreement and 31? 的设备,例如可以是路由器,或宽带远程接入服务器出抓&此&仏1^611101:6 ^00688 等。 Device, for example, may be a router or Broadband Remote Access Server & illustrating this grip 1 & Fo ^ 611101: 00688 ^ 6 like.

[0028] 所述接入设备,是支持31? [0028] The access device 31 is supported? 的设备,例如可以是路由器,交换机等。 Device, for example, routers, switches and the like.

[0029] 需要说明的是,本文中的31? [0029] It should be noted that article 31? ,包括31? Including 31? 、快速生成树协议¢£¢1(1社^皿丨叩了『66?1~0七0。01,尺3丁?)和多生成树协议(11111:11)16 8^)81111111^ 丁! , Rapid Spanning Tree Protocol ¢ £ ¢ 1 (1 ^ dish Shu knock the club "661 ~ 0 seven 0.01-foot-3 D??) And Multiple Spanning Tree Protocol (11111: 11) 168 ^) 81,111,111 ^ D ! '66 ? '66? 1~0七0。01,13丁?),通常情况下,上述协议可以统称为3丁? 1 ~ 0 seven 0.01,13 D?), In general, the above-described protocol may be referred to as 3-butoxy? .

[0030] 所述第一网络设备和所述第二网络设备之间的链路,可以是以太捆绑 [0030] The link between the first network device and the second network device, the ether may be bundled

链路。 link.

[0031] 所述接入设备和所述第一网络设备之间以及所述第二网络设备的链路,可以是百兆或千兆的以太网链路。 The second network device and a link between the [0031] device and the first network access device may be a Fast or Gigabit Ethernet links.

[0032] 从应用场景上,举例来说,所述第一网络设备和所述第二网络设备,可以是数据中心中的网关设备,所述接入设备,可以是该数据中心中的用户接入设备。 [0032] From the application scenario, for example, the first network device and the second network device, the data center may be a gateway device, the access device, which may be connected to the data center user into the device. 所述第一网络设备包括端口1和端口2,所述第二网络设备包括端口3和端口4,所述接入设备包括端口5和端口6。 The first network device includes ports 1 and 2, the second network device comprises ports 3 and 4, the apparatus comprises access ports 5 and 6. 端口1至端口6都属于一个例如,属于10。 Port 1 to port 6 are a part of e.g., 10 belong. 在端口1至端口6上运行3丁? Ding Run 3 on port 1 to port 6? ,从而使得所述第一网络设备、所述第二网络设备和所述接入设备都属于同一个31? Such that the first network device, the second network device and the access device 31 are in the same? 环网。 Ring. 在所述第一网络设备上配置礼^^接口 11^61^21(36)1,在所述第一网络设备上配置乂1他接口1扯6忖狀61和71^^ 10 绑定,111^01-^002也和10绑定。 Li ^^ interface 11 arranged on the first network device ^ 61 ^ 21 (36) 1, on the first network device is configured to pull qe 1 1 6 other interfaces 61 and 71 shaped to speculate binding ^^ 10, ^ ^ 01- 111 10 002 and also bound. 所述第一网络设备在1社6忖%61上运行V册?,所述第二网络设备在111^61-^062上运行V册?,所述第一网络设备是VI? The first network device runs on a guess Co. 6% 61 V books?, The second network device 111 operating in the volumes V ^ ^ 61- 062?, The first network device is Vl? ! ? ? 主设备,所述第二网络设备是VI? The master device, the second network device is Vl? ! ? ? 备份设备,所述第一网络设备和所述第二网络设备组成VI? Backup device, the first network device and the second network devices Vl? ! ? ? 备份组。 Backup group.

[0033] 如图2所示,本发明实施例提供一种阻塞端口的方法,应用于如图1所示的组网场景中,包括: Method [0033] As shown, the embodiment provides a blocking port 2 of the present invention, applied to network scenario shown in FIG. 1, comprising:

[0034] 201、当所述第一网络设备是所述VI? [0034] 201, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的31? When the primary backup device group, the first network device 31 disposed in the first network device in the ring? 的设备优先级为第一优先级;所述第二网络设备为所述VI? Priority device a first priority; the second network device to the Vl? ! ? ? 备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的31? Backup group backup device, the second network device 31 disposed in the second network device of said ring network? 的设备优先级为第二优先级;所述接入设备设置所述接入设备在所述环网中的81? Priority device a second priority; setting of the access device of the access device 81 in the ring network? 的设备优先级为第三优先级,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级。 Priority device the third priority, the first priority is higher than the third priority is higher than the first priority and the second priority.

[0035] 202、当所述第三优先级高于所述第二优先级时,所述第二网络设备在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上;当所述第二优先级高于所述第三优先级时,所述接入设备在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 [0035] 202, when the third priority is higher than the second priority, said second network device generates a first blocked port on the second network device, the port is located in the first blocking said second port connected to the network device and the access device; when the second priority is higher than said third priority, said apparatus generating a second access port on the access blocking device the second blocking access port is located on the device connected to the port of the second network device.

[0036] 31? [0036] 31? 中,同一个31? , The same 31? 环网上的各个网络设备会相互之间传递各自的31? Ring network each network device will pass each other between the respective 31? 的设备优先级信息,31? The device priority information, 31? 会根据以下规则自动计算出阻塞端口的位置: It will automatically calculate the position of the blocked ports according to the following rules:

[0037] (1)阻塞端口位于31? [0037] (1) blocked port is located 31? 的设备优先级最低的网络设备上; The device has the lowest priority of network devices;

[0038] (2)当两个网络设备的31? [0038] (2) when two network devices 31? 的设备优先级相同时,比较这两个网络设备的系统媒体接入控制(16(113 ^00688 0011^01,^0地址,阻塞端口位于系统嫩0地址最大的网络设备上。 The apparatus of the same priority, the system comparing these two media access control network device (16 (006880011 ^ 01 ^ 113, ^ 0 address, a blocked port is located on the system address 0 tender largest network equipment.

[0039] 在所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级的情况下: [0039] In the first priority is higher than the third lower priority than the first priority and the second priority is the case:

[0040] 举例来说,当所述第三优先级高于所述第二优先级时,所述第二网络设备会在图1中的端口4上产生阻塞端口;当所述第二优先级高于所述第三优先级时,所述接入设备会在图1中的端口6上产生阻塞端口。 [0040] For example, when the third priority is higher than the second priority, the network device generates the second port in the blocked port 4 in FIG. 1; and when the second priority higher than the third priority, the access device generates blocked ports in the port 6 of FIG. 1. 进一步地,当所述第三优先级等于所述第二优先级时,所述第二网络设备和所述接入设备比较各自的系统傲0地址,在系统傲0地址大的设备上产生阻塞端口,例如如果所述第二网络设备的系统歡地址大于所述接入设备的系统歡地址,所述第二网络设备会在图1中的端口4上产生阻塞端口。 Further, when the third priority is equal to the second priority, the second network device and the access device to compare their proud system address 0 is generated on the system blocking proud large device address 0 port, for example, if the address of the second network device Huan system is greater than the address of the access system Huan device, the second network device generates blocked port on port 1 in FIG. 4.

[0041] 举例来说,设置所述第一优先级、所述第二优先级和所述第三优先级,以使得所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级的方法,可以包括预先静态配置、采用协议规定的特殊值或动态传递的方式,下面分别进行描述: [0041] For example, provided the first priority, the second priority and the third priority, such that the first priority and the third priority is higher than the first higher priority than the second priority method may include pre-configured statically or dynamically by way of a special value of a predetermined transmission protocol, are described below:

[0042] (1)预先静态配置:举例来说,可以在第一网络设备成为所述VI? [0042] (1) pre-static configuration: for example, could be the first network device in a VI? ! ? ? 备份组中的主设备前,通过命令行或简单网络管理协议(31,16 ^6切01^ 18118^61116111:3匪?)等方式,在所述第一网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第一网络设备为所述VI? Group before backup master device, the command line or through simple network management protocol (31, 16 ^ 6 01 ^ 18118 ^ cut 61116111:? Bandit 3), etc., on the first of the first network device is preconfigured priority and the second priority, the first priority corresponding to the first network device to the Vl? ! ? ? 备份组中的主设备时的优先级,所述第二优先级对应所述第一网络设备为所述VI? Priority when a master device in the VRRP group, the second priority corresponding to the first network device to the Vl? ! ? ? 备份组中的备份设备时的优先级,所述第一优先级高于所述第二优先级;在所述第二网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第二网络设备为所述VI? Priority when backup group backup device, the first priority is higher than the second priority; pre-configuring the first priority and the second priority in the second network device, the first priority corresponding to the second network device to the Vl? ! ? ? 备份组中的主设备时的优先级,所述第二优先级对应所述第二网络设备为所述VI? Priority when a master device in the VRRP group, the second priority of the second network device corresponding to the Vl? ! ? ? 备份组中的备份设备时的优先级;在所述接入设备上预先配置所述第三优先级,所述第三优先级低于所述第一优先级。 The priority of the backup device backup group; in the access device is preconfigured on the third priority, and the third priority is lower than the first priority. 例如,预先配置所述第一优先级为50,所述第二优先级为100,所述第三优先级为大于50的值,例如是70,或120,或100。 For example, the first priority is preconfigured to 50, 100 to the second priority and the third priority value greater than 50, for example, 70, or 120, or 100.

[0043] 说明:在X? [0043] Description: X? 中,数值越小表明优先级越高。 , The smaller the value, the higher the priority.

[0044] (2)采用协议规定的特殊值:31? [0044] (2) the use of the special value of the agreement: 31? 协议规定最高优先级对应的值是0,最低优先级对应的值是61440,缺省值为32768。 Agreement corresponding to the highest priority value is 0, a value corresponding to the lowest priority is 61440, the default value is 32768. 举例来说,当所述第一网络设备是所述VI? For example, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的优先级为0 ;所述第二网络设备为所述VI? When the primary backup device group, the first network device of the first network device disposed in the priority in the ring is 0; the second network device to the Vl? ! ? ? 备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的优先级为61440 ;所述接入设备设置所述接入设备在所述环网中的优先级为32768。 Backup group backup device, the second network device to the second network device disposed in the priority ring network is 61440; the access device of the access device provided in the ring network priority is 32,768. 又举例来说,当所述第一网络设备是所述VI? For another example, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的优先级为0 ;所述第二网络设备为所述VI? When the primary backup device group, the first network device of the first network device disposed in the priority in the ring is 0; the second network device to the Vl? ! ? ? 备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的优先级为32768,所述接入设备设置所述接入设备在所述环网中的优先级为61440 ;又举例来说,当所述第一网络设备是所述VI? Backup group backup device, the second network device to the second network device disposed in the priority 32768 ring network, the access device of the access device provided in the ring network priority 61440; for another example, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的优先级为0;所述第二网络设备为所述VI? When the primary backup device group, the first network device of the first network device disposed in the priority in the ring is 0; the second network device to the Vl? ! ? ? 备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的优先级为32768,所述接入设备设置所述接入设备在所述环网中的优先级为32768。 Backup group backup device, the second network device to the second network device disposed in the priority 32768 ring network, the access device of the access device provided in the ring network priority is 32,768.

[0045] (3)动态传递:例如,当所述第一网络设备是所述VI? [0045] (3) dynamic transmission: for example, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的31? When the primary backup device group, the first network device 31 disposed in the first network device in the ring? 的设备优先级为第一优先级,例如是50。 Device priority first priority, for example, 50. 所述第一网络设备分别向所述第二网络设备和所述接入设备发送扩展31? The first network device are transmitted to the expansion device and the second network access device 31? 报文,所述扩展31? Message, the extension 31? 报文中携带所述第一优先级和所述第二优先级,下面以所述第二优先级是100举例: Message carrying the first priority and the second priority, the second priority to the following is Example 100:

[0046] 所述第二网络设备接收到所述31? [0046] The second network device receives the 31? 报文后,确定自身是所述VI? Packet, determine its own is the VI? ! ? ? 备份组中的备份设备,设置自身在所述环网中的31? Backup group backup device 31 itself is provided in said ring network? 的设备优先级为所述第二优先级,即100。 Priority device the second priority, i.e., 100.

[0047] 所述接入设备接收到所述31? [0047] The access device 31 receives the? 报文后,设置自身在所述环网中的31? After the packet 31 itself is provided in said ring network? 的设备优先级为所述第三优先级,所述第三优先级低于所述第一优先级,例如所述第三优先级可以设置为70,或120,或100。 Device priority and the third priority, and the third priority is lower than the first priority, for example, the third priority can be set to 70, or 120, or 100.

[0048] 所述扩展31? [0048] The extension 31? 报文,以醫协议举例,可以扩展131? Message to the medical protocol, for example, can be extended 131? 协议的桥协议数据单元? Bridge protocol data unit protocol? 1~01:0001 0^1:8 11=11:,89011),在所述8?011 中的多生成树实例配置消息(11111:11)16 1 to 01: 1 ^ 00 010: 811 = 11:?, 89,011), more than 8 in the MSTI configuration message 011 (11111: 11) 16

8^)81111111^ 丁! 8 ^) ^ 81,111,111 Ding! '66 11181:81106 16888^68, 18X1 16888^68)字段后面新增字段,在所述新增字段中增加所述第二优先级的信息。 '66 11181: 81106 16888 ^ 68, 18X1 16888 ^ 68) behind the new field field, increasing the second priority information in the new field.

[0049] 本发明实施例提供的一种阻塞端口的方法,通过当所述第一网络设备为所述VI? [0049] A method for blocking the port to an embodiment of the present invention, when the first network device through the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备、所述第二网络设备和所述接入设备分别设置各自在31? When the primary backup device group, the first network device, the second network device and the access device are each disposed at 31? 环网中的设备优先级,使得所述第一网络设备的优先级最高。 Ring network device priority, the highest priority such that the first network device. 31? 31? 根据上述优先级的设定,产生出所述第一环网的阻塞端口,该阻塞端口将位于所述第二网络设备和所述接入设备之间的链路上,使得业务流量流经的路径为所述接入设备和所述第一网络设备,而不会流经所述接入设备所述第二网络设备所述第一网络设备,从而减少了所述第一网络设备和所述第二网络设备中间的链路的负担。 Based on the priority setting, resulting in a blocked port of the first ring network, the blocked port is located on the link between the device and the second network access device, so that the traffic flows path to the access device and the first network device, but the device does not flow through the second network access device to the first network device, thereby reducing the first network device and said a second link load intermediate network device.

[0050] 请参考图3,本发明的一个实施例提供一种阻塞端口的系统,包括:第一网络设备、第二网络设备和接入设备,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VI? [0050] Please refer to FIG. 3, an embodiment of the present invention provides a blocked port system, comprising: a first network device, the second network device and the access device, the first and the second network device establishing a communication connection between network devices, the first network device and said second network enabled device virtual Router redundancy protocol Vl? ! ? ? ,从而使得所述第一网络设备和所述第二网络设备组成VI? Such that the first network device and the second network devices Vl? ! ? ? 备份组,在所述接入设备和所述第一网络设备之间建立通信连接,在所述接入设备和所述第二网络设备之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行3丁? VRRP group is established between the first network access device and said communication device is connected, establishing a communication connection between the access device and the second network device, the first network device, said the second network device and the access device belonging to the same ring network, the ring network operating 3-butoxy? .

[0051] 关于所述系统的应用场景,请参考图1中的方法实施例中的应用场景的描述,在此不再赘述。 [0051] For the application scenario of the system described with reference to FIG example application scenario in an embodiment of the method, which is not repeated herein.

[0052] 所述第一网络设备包括第一处理单元301,所述第二网络设备包括第二处理单元302和第一阻塞单元305,所述接入设备包括第三处理单元303和第二阻塞单元307。 [0052] the first network device comprises a first processing unit 301, the second network device comprises a second processing unit 302 and the first blocking unit 305, the access device comprises a third processing unit 303 and the second blocking unit 307.

[0053] 所述第一处理单元301,用于当所述第一网络设备是所述VI? [0053] The first processing unit 301, when the first network device is the Vl? ! ? ? 备份组中的主设备时,设置所述第一网络设备在所述环网中的31? When the primary backup device group, the first network device 31 is provided in the ring network? 的设备优先级为第一优先级。 Priority device a first priority.

[0054] 所述第二处理单元302,用于当所述第二网络设备为所述VI? [0054] The second processing unit 302, configured to, when the second network device to the Vl? ! ? ? 备份组中的备份设备时,设置所述第二网络设备在所述环网中的31? When the backup device backup group, the second network device is provided in the ring 31? 的设备优先级为第二优先级。 Device priority second priority.

[0055] 所述第三处理单元303,用于设置所述接入设备在所述环网中的31? [0055] The third processing unit 303, for the access device 31 is provided in the ring network? 的设备优先级为第三优先级。 The priority of the device as a third priority.

[0056] 其中,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级。 [0056] wherein the first priority is higher than the third priority is higher than the first priority and the second priority.

[0057] 举例来说,所述第一优先级为所述V? [0057] For example, the first priority of the V? 中规定的最高优先级,所述第二优先级为所述31? Specified in the highest priority, the second priority is the 31? 中规定的最低优先级或者为所述31? Specified as the lowest priority, or 31? 中规定的缺省优先级,和所述第三优先级为所述31? The default priority and the third priority is specified in the 31? 中规定的最低优先级或者为所述31? Specified as the lowest priority, or 31? 中规定的缺省优先级。 The default priority specified.

[0058] 所述第一阻塞单元305,用于当所述第三优先级高于所述第二优先级时,在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上。 When [0058] the first blocking unit 305, configured to, when the third priority is higher than the second priority, generating a first port blocked on the second network device, the first port blocking located on the second port connected to the network device and the access device.

[0059] 所述第二阻塞单元307,用于当所述第二优先级高于所述第三优先级时,在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 When [0059] the second blocking unit 307, configured to, when the second priority is higher than the third priority, generating a second port on the access blocking device, blocking the second port is located the access port connected to the network device and the second device.

[0060] 举例来说,如图4所示, [0060] For example, as shown in FIG. 4,

[0061] 可选地,第一网络设备还可以包括: [0061] Alternatively, the first network device may further comprise:

[0062] 第一配置单元308,用于在所述第一网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第一网络设备为所述VI? [0062] a first configuration unit 308, a network device on the first pre-configuring the first priority and the second priority, the first priority corresponding to the first device to the network said VI? ! ? ? 备份组中的主设备时的优先级,所述第二优先级对应所述第一网络设备为所述VI? Priority when a master device in the VRRP group, the second priority corresponding to the first network device to the Vl? ! ? ? 备份组中的备份设备时的优先级,所述第一优先级高于所述第二优先级。 Priority when backup group backup device, the first priority is higher than the second priority.

[0063] 所述第二网络设备还可以包括: [0063] The second network device may further comprise:

[0064] 第二配置单元309,用于在所述第二网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第二网络设备为所述VI? [0064] The second configuration unit 309, for pre-configuring the first priority and the second priority, the first priority corresponding to the second network device on the second network device is the said VI? ! ? ? 备份组中的主设备时的优先级,所述第二优先级对应所述第二网络设备为所述VI? Priority when a master device in the VRRP group, the second priority of the second network device corresponding to the Vl? ! ? ? 备份组中的备份设备时的优先级。 The priority of the backup in the backup group.

[0065] 所述接入设备还可以包括: [0065] The access device may further comprises:

[0066] 第三配置单元310,用于在所述接入设备上预先配置所述第三优先级,所述第三优先级低于所述第一优先级。 [0066] The third configuration unit 310, the access device for pre-configuring the third priority, and the third priority is lower than the first priority.

[0067] 举例来说,如图5所示, [0067] For example, as shown in Figure 5,

[0068] 可选地,所述第一网络设备还包括: [0068] Alternatively, the first network device further comprises:

[0069] 发送单元311,用于当所述第一网络设备是所述VI? [0069] The transmitting unit 311, when the first network device is the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备分别向所述第二网络设备和所述接入设备发送扩展31? When the primary backup device group, the first network device are transmitted to the expansion device and the second network access device 31? 报文,所述扩展3丁? Message, the extension 3 D? 报文中携带所述第一优先级和所述第二优先级,所述第一优先级高于所述第二优先级。 Message carrying the first priority and the second priority, the first priority is higher than the second priority.

[0070] 相应地,所述第二处理单元302还用于在所述第二网络设备接收到所述扩31? [0070] Accordingly, the second processing unit 302 is further configured in the second network device 31 receives the spread? 报文后,确定所述第二网络设备为所述VI? Packet, the second network device to determine the Vl? ! ? ? 备份组中的备份设备,设置所述第二网络设备在所述环网中的31? Backup group backup device, the second network device 31 disposed in the ring network? 的设备优先级为所述第二优先级。 Priority device the second priority.

[0071] 相应地,所述第三处理单元还303用于在所述接入设备接收到所述扩展31? [0071] Accordingly, the third processing unit is further configured to receive the extension 303 of the access device 31? 报文后,设置所述接入设备在所述环网中的31? The packet, the access device 31 is provided in the ring network? 的设备优先级为所述第三优先级,所述第三优先级低于所述第一优先级。 Device priority and the third priority, and the third priority is lower than the first priority.

[0072] 本发明实施例提供的一种阻塞端口的系统,通过当所述第一网络设备为所述VI? [0072] A blocking port according to an embodiment of the system of the present invention, by the first network device when the Vl? ! ? ? 备份组中的主设备时,所述第一网络设备、所述第二网络设备和所述接入设备分别设置各自在31? When the primary backup device group, the first network device, the second network device and the access device are each disposed at 31? 环网中的设备优先级,使得所述第一网络设备的优先级最高。 Ring network device priority, the highest priority such that the first network device. 31? 31? 根据上述优先级的设定,产生出所述第一环网的阻塞端口,该阻塞端口将位于所述第二网络设备和所述接入设备之间的链路上,使得业务流量流经的路径为所述接入设备和所述第一网络设备,而不会流经所述接入设备所述第二网络设备所述第一网络设备,从而减少了所述第一网络设备和所述第二网络设备中间的链路的负担。 Based on the priority setting, resulting in a blocked port of the first ring network, the blocked port is located on the link between the device and the second network access device, so that the traffic flows path to the access device and the first network device, but the device does not flow through the second network access device to the first network device, thereby reducing the first network device and said a second link load intermediate network device.

[0073] 如果环网运行的以太网环网保护协议是匕8032协议,当所述第二网络设备检测自身为所述VI? [0073] Ethernet ring protection protocol if the ring network is run dagger 8032 protocol, detecting when the second network device itself to the Vl? ! ? ? 备份组中的备份设备时,设置图1中的端口4为匕8032协议中的阻塞端口,同样可以到达使得业务流量不会流经所述第一网络设备和所述第二网络设备间的链路,从而减少了所述第一网络设备和所述第二网络设备间的链路的负担的目的。 When the backup device backup group, the port 1 is provided in FIG. 4 is a dagger 8032 protocol blocked port, you can also reach such traffic does not flow through the strand between the first network device and the second network device road, thereby reducing the burden on the purpose of a link between said first network device and the second network device.

[0074] 举例来说,图3至和图5所示实施例中的单元可以合并为一个或者多个单元。 [0074] For example, FIGS. 3 to 5 and the embodiment shown in FIG units can be combined into one or more units.

[0075] 又举例来说,所述单元或子单元均可通过硬件来实现。 [0075] For another example, the unit or subunit may be implemented in hardware. 本领域普通技术人员可以理解上述实施例的各种方法中的全部或部分步骤是可以通过程序来指令相关的硬件来完成,该程序可以存储于一计算机可读存储介质中,举例来说,存储介质可以包括:只读存储器、随即读取存储器、磁盘或光盘等。 Those of ordinary skill in the art can appreciate that various embodiments of the method of the above-described embodiments all or part of the steps may be relevant hardware instructed by a program, the program may be stored in a computer-readable storage medium, for example, storage medium may include: a read only memory, then read the memory, magnetic or optical disk and the like.

[0076] 以上对本发明实施例所提供的阻塞端口的方法和系统进行了详细介绍,但以上实施例的说明只是用于帮助理解本发明的方法及其核心思想,不应理解为对本发明的限制。 The methods and systems provided by embodiments blocked port [0076] The above embodiment of the present invention has been described in detail, but the above described embodiment is for the purpose to help understanding the method and core ideas of the present invention should not be construed as limiting the present invention. . 本技术领域的技术人员在本发明揭露的技术范围内,可轻易想到的变化或替换,都应涵盖在本发明的保护范围之内。 Those skilled in the art within the technical scope of the present invention is disclosed, variations or substitutions readily occur, shall fall within the protection scope of the present invention.

Claims (9)

1.一种阻塞端口的方法,其特征在于,应用于包括第一网络设备、第二网络设备和接入设备的系统中,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VRRP,从而使得所述第一网络设备和所述第二网络设备组成VRRP备份组,在所述接入设备和所述第一网络设备之间建立通信连接,在所述接入设备和所述第二网络设备之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行生成树协议STP,所述方法包括: 当所述第一网络设备是所述VRRP备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的STP的设备优先级为第一优先级;所述第二网络设备为所述VRRP备份组中的备份设备,所述第二网络设备设置所述第二网络设备 1. A method of blocked ports, characterized in that the device is applied to a system including a first network, a second network device and an access device, is established between the first network device and the second network device a communication connection, the first network device and said second network enabled device virtual Router redundancy protocol VRRP, such that the first network device and the second network device form a VRRP group, in the access established between the first apparatus and the network communication device is connected, establishing a communication connection between the access device and the second network device, the first network device, the second network device and the ground the device belonging to the same ring network, the ring network run the STP spanning tree protocol, the method comprising: when the first network device is a master device in the VRRP backup group, said first set of said network device STP device priority first network device in the ring network as a first priority; the second network device in the VRRP backup group as the backup device, the second network device of the second set Network equipment 所述环网中的STP的设备优先级为第二优先级;所述接入设备设置所述接入设备在所述环网中的STP的设备优先级为第三优先级,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级; 当所述第三优先级高于所述第二优先级时,所述第二网络设备在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上; 当所述第二优先级高于所述第三优先级时,所述接入设备在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 Device priority of the STP in the ring as a second priority; STP device priority the access device of the access device disposed in said ring network is a third priority, the first higher priority than the third priority is higher than the first priority and the second priority; when the third priority is higher than the second priority, said second network device generating the first blocking device on a second network port, the blocked port is located on the first port is connected to the second network device and the access device; when the second priority is higher than the third when the priority, the access device generates a second port on the access blocking device, blocking the second port is located on said access port device connected to the second network device.
2.根据权利要求1所述的方法,其特征在于,在当所述第一网络设备是所述VRRP备份组中的主设备时之前,所述方法还包括: 在所述第一网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第一网络设备为所述VRRP备份组中的主设备时的优先级,所述第二优先级对应所述第一网络设备为所述VRRP备份组中的备份设备时的优先级; 在所述第二网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第二网络设备为所述VRRP备份组中的主设备时的优先级,所述第二优先级对应所述第二网络设备为所述VRRP备份组中的备份设备时的优先级; 在所述接入设备上预先配置所述第三优先级。 The method according to claim 1, characterized in that, prior to when the first network device is the master VRRP backup group of devices, said method further comprising: on the first network device pre-configuring the first priority and the second priority, the first priority for the network device corresponding to the first priority when the VRRP backup group master device, the second priority network device corresponding to the first priority when the backup VRRP backup group of devices; pre-configured on the second network device the first priority and the second priority, the first corresponding to the priority of the second network device when the priority of the VRRP backup group master device, the second priority corresponding to the second network device when the backup VRRP group priority devices level; on the access device is preconfigured the third priority.
3.根据权利要求1所述的方法,其特征在于,所述当所述第一网络设备是所述VRRP备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的STP的设备优先级为第一优先级;所述第二网络设备为所述VRRP备份组中的备份设备,所述第二网络设备设置所述第二网络设备在所述环网中的STP的设备优先级为第二优先级;所述接入设备设置所述接入设备在所述环网中的STP的设备优先级为第三优先级,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级,具体包括: 当所述第一网络设备是所述VRRP备份组中的主设备时,所述第一网络设备设置所述第一网络设备在所述环网中的STP的设备优先级为第一优先级; 所述第一网络设备分别向所述第二网络设备和所述接入设备发送扩展STP报文,所述扩展STP报文中携带所述第一优先级 3. The method of claim 1, the first network device, characterized in that said first network device when the VRRP backup group is the master device, the first network device provided in the STP network device priority in the ring is a first priority; the second network device in the VRRP backup group as the backup device, the second network device is provided a second device in said network device priority STP in the ring as a second priority; STP device priority the access device of the access device disposed in said ring network is a third priority, the first priority and the third priority is higher than the first priority is higher than the second priority, comprises: when the first network device is a master device in the VRRP backup group, said first STP device priority is provided a first network device the network device in the ring network as a first priority; the first network device are transmitted to the STP expansion device and the second network access device packet, the extended STP message carries the first priority 所述第二优先级; 所述第二网络设备接收到所述扩展STP报文后,确定所述第二网络设备为所述VRRP备份组中的备份设备,设置所述第二网络设备在所述环网中的STP的设备优先级为所述第二优先级; 所述接入设备接收到所述扩展STP报文后,设置所述接入设备在所述环网中的STP的设备优先级为所述第三优先级。 The second priority; the second network device after receiving the extended STP packet, determining a second network device in the VRRP backup group backup device, the second network device provided in the said ring network device priority STP for the second priority; the access device after receiving the extended STP packet, the access priority of STP is provided in the ring network apparatus device the third priority level is.
4.根据权利要求1所述的方法,其特征在于,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级,具体包括: 所述第一优先级为所述STP中规定的最高优先级,所述第二优先级为所述STP中规定的最低优先级或者为所述STP中规定的缺省优先级,和所述第三优先级为所述STP中规定的最低优先级或者为所述STP中规定的缺省优先级。 4. The method according to claim 1, wherein the first priority is higher than the third priority is higher than the first priority and the second priority, comprises: the highest priority, the second priority is the first priority of the specified default priority for STP, the STP and the third priority in the predetermined priority or the lowest of said predetermined STP the lowest priority to the STP or predetermined default priority level is predetermined in the STP.
5.根据权利要求3所述的方法,其特征在于,当所述STP为多生成树协议MSTP时,所述扩展STP报文中携带所述第二优先级的方式,包括: 在MSTP的桥协议数据单元BPDU的多生成树实例配置消息字段MSTI后新增字段,通过所述新增字段携带所述第二优先级。 5. The method according to claim 3, wherein, when the STP to MSTP Multiple Spanning Tree Protocol, the extension of the second priority class carries the STP packet, comprising: a bridge in the MSTP after MSTI configuration protocol data unit, BPDU message field MSTI field added by the new field carries the second priority.
6.一种阻塞端口的系统,其特征在于,包括第一网络设备、第二网络设备和接入设备,在所述第一网络设备和所述第二网络设备之间建立通信连接,所述第一网络设备和所述第二网络设备使能虚拟路由冗余协议VRRP,从而使得所述第一网络设备和所述第二网络设备组成VRRP备份组,在所述接入设备和所述第一网络设备之间建立通信连接,在所述接入设备和所述第二网络设备之间建立通信连接,所述第一网络设备、所述第二网络设备和所述接入设备属于同一环网,所述环网运行生成树协议STP ; 所述第一网络设备包括第一处理单元; 所述第二网络设备包括第二处理单元和第一阻塞单元; 所述接入设备包括第三处理单元和第二阻塞单元; 所述第一处理单元,用于当所述第一网络设备是所述VRRP备份组中的主设备时,设置所述第一网络设备在所述环网中的STP A blocking system port, wherein the device comprises a first network, a second network device and the access device, establishing a communication connection between said first network device and the second network device, the a first network device and said second network enabled device virtual Router redundancy protocol VRRP, such that the first network device and the second network device form a VRRP group, in the access device and the second establishing a communication connection between network devices, establishing a communication connection between the access device and the second network device, the first network device, the second network device and the access device belonging to the same ring network, a ring network running the STP spanning tree protocol; the first network device comprises a first processing unit; the second network device comprises a first processing unit and a second blocking unit; said access device comprises a third process and a second blocking unit cell; the first processing unit for, when the first network device is the master VRRP backup group of devices, STP is provided in the first network device in the ring network 的设备优先级为第一优先级; 所述第二处理单元,用于当所述第二网络设备为所述VRRP备份组中的备份设备时,设置所述第二网络设备在所述环网中的STP的设备优先级为第二优先级; 所述第三处理单元,用于设置所述接入设备在所述环网中的STP的设备优先级为第三优先级; 其中,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级; 所述第一阻塞单元,用于当所述第三优先级高于所述第二优先级时,在所述第二网络设备上产生第一阻塞端口,所述第一阻塞端口位于所述第二网络设备与所述接入设备相连的端口上; 所述第二阻塞单元,用于当所述第二优先级高于所述第三优先级时,在所述接入设备上产生第二阻塞端口,所述第二阻塞端口位于所述接入设备与所述第二网络设备相连的端口上。 Priority device a first priority; the second processing unit, configured to, when the second network device when the VRRP group backup device, the second network device is provided in the ring network the device priority is a second priority STP; a third processing unit, for setting the priority of the access device in the apparatus of STP in the ring is a third level; wherein said the first priority is higher than the third priority is higher than the first priority and the second priority; the first blocking means for, when the third priority is higher than the second when the priority is generated on the second network device a first blocked port, the blocked port is located on the first port of the second network device connected to the access device; the second blocking means, with when the second priority to the third priority is higher than when generating the second port on the access blocking device, blocking the second port is located in the access network device and the second device a port connected.
7.根据权利要求6所述的系统,其特征在于, 所述第一网络设备还包括: 第一配置单元,用于在所述第一网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第一网络设备为所述VRRP备份组中的主设备时的优先级,所述第二优先级对应所述第一网络设备为所述VRRP备份组中的备份设备时的优先级; 所述第二网络设备还包括: 第二配置单元,用于在所述第二网络设备上预先配置所述第一优先级和所述第二优先级,所述第一优先级对应所述第二网络设备为所述VRRP备份组中的主设备时的优先级,所述第二优先级对应所述第二网络设备为所述VRRP备份组中的备份设备时的优先级; 所述接入设备还包括: 第三配置单元,用于在所述接入设备上预先配置所述第三优先级。 7. The system according to claim 6, wherein the first network device further comprises: a first configuration unit for pre-configuring the network device on the first priority and the first second priority, the first priority for the network device corresponding to the first priority when the VRRP backup group master device, the second priority corresponding to the first network device to the VRRP the priority of the backup device backup group; the second network device further comprises: a second configuration unit configured to pre-configure the first priority and the second priority in the second network device , the first priority corresponding to the second network device is the priority of the VRRP backup group master device, the second priority corresponding to the second network device in the VRRP backup group the priority of the backup device; and the access device further comprising: a third means arranged for pre-configured on the access device of the third priority.
8.根据权利要求6所述的系统,其特征在于, 所述第一网络设备还包括: 发送单元,用于当所述第一网络设备是所述VRRP备份组中的主设备时,所述第一网络设备分别向所述第二网络设备和所述接入设备发送扩展STP报文,所述扩展STP报文中携带所述第一优先级和所述第二优先级; 相应地,所述第二处理单元还用于在所述第二网络设备接收到所述扩展STP报文后,确定所述第二网络设备为所述VRRP备份组中的备份设备,设置所述第二网络设备在所述环网中的STP的设备优先级为所述第二优先级; 相应地,所述第三处理单元还用于在所述接入设备接收到所述扩展STP报文后,设置所述接入设备在所述环网中的STP的设备优先级为所述第三优先级。 8. The system according to claim 6, wherein the first network device further comprises: a sending unit, configured to, when the first network device in the VRRP backup group is the master device, the a first network device are transmitted extended STP packets to the second network device and the access device, the extended STP message carries the first priority and the second priority; accordingly, the said second processing unit is further configured to the second network device receives the extended STP packet after determining the second network device in the VRRP backup group as the backup device, the second network device is provided STP in the ring network device priority the second priority; accordingly, the third processing unit is further configured in the access device after receiving the extended STP packet, provided the STP said device priority access device of said ring network to the third priority.
9.根据权利要求6所述的系统,其特征在于,所述第一优先级高于所述第三优先级并且所述第一优先级高于所述第二优先级,具体包括: 所述第一优先级为所述STP中规定的最高优先级,所述第二优先级为所述STP中规定的最低优先级或者为所述STP中规定的缺省优先级,和所述第三优先级为所述STP中规定的最低优先级或者为所述STP中规定的缺省优先级。 9. The system according to claim 6, wherein the first priority is higher than the third priority is higher than the first priority and the second priority, comprises: the highest priority, the second priority is the first priority of the specified default priority for STP, the STP and the third priority in the predetermined priority or the lowest of said predetermined STP the lowest priority to the STP or predetermined default priority level is predetermined in the STP.
CN201210220222.5A 2012-06-29 2012-06-29 Method and system for port blocking CN102724127B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210220222.5A CN102724127B (en) 2012-06-29 2012-06-29 Method and system for port blocking

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210220222.5A CN102724127B (en) 2012-06-29 2012-06-29 Method and system for port blocking

Publications (2)

Publication Number Publication Date
CN102724127A CN102724127A (en) 2012-10-10
CN102724127B true CN102724127B (en) 2015-01-21

Family

ID=46949792

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210220222.5A CN102724127B (en) 2012-06-29 2012-06-29 Method and system for port blocking

Country Status (1)

Country Link
CN (1) CN102724127B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7209435B1 (en) * 2002-04-16 2007-04-24 Foundry Networks, Inc. System and method for providing network route redundancy across Layer 2 devices
CN101051951A (en) * 2006-05-29 2007-10-10 华为技术有限公司 Method and device for securing server connection reliability
CN101557343A (en) * 2009-04-03 2009-10-14 联想天工网络(深圳)有限公司 Detecting and protecting method of double-layer loop in VRRP topological network
CN101588304A (en) * 2009-06-30 2009-11-25 杭州华三通信技术有限公司 Implementation method of VRRP
US7760668B1 (en) * 2006-06-20 2010-07-20 Force 10 Networks, Inc. Self-reconfiguring spanning tree

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7209435B1 (en) * 2002-04-16 2007-04-24 Foundry Networks, Inc. System and method for providing network route redundancy across Layer 2 devices
CN101051951A (en) * 2006-05-29 2007-10-10 华为技术有限公司 Method and device for securing server connection reliability
US7760668B1 (en) * 2006-06-20 2010-07-20 Force 10 Networks, Inc. Self-reconfiguring spanning tree
CN101557343A (en) * 2009-04-03 2009-10-14 联想天工网络(深圳)有限公司 Detecting and protecting method of double-layer loop in VRRP topological network
CN101588304A (en) * 2009-06-30 2009-11-25 杭州华三通信技术有限公司 Implementation method of VRRP

Also Published As

Publication number Publication date
CN102724127A (en) 2012-10-10

Similar Documents

Publication Publication Date Title
US9054958B2 (en) System and method for reducing information loss in an aggregated information handling system
CN104488238B (en) A system and method in a network environment, the cluster link aggregation control
US9705735B2 (en) System and method using RSVP hello suppression for graceful restart capable neighbors
CN102130834B (en) Internet protocol (IP) routing method and router
CN101964746A (en) Routing frames in a shortest path computer network for a multi-homed legacy bridge node
US8943490B1 (en) Intelligent non-stop software upgrade
US8971173B1 (en) Methods and apparatus for scalable resilient networks
CN1815979A (en) Method and apparatus for providing network connector
CN101640644B (en) Method and equipment for flow equilibrium based on flexible link group
US9143444B2 (en) Virtual link aggregation extension (VLAG+) enabled in a TRILL-based fabric network
CN101656732A (en) Routing control system
CN101155109B (en) Ethernet switching system and equipment
CN103782552A (en) Method for protecting service path, controller, device and system
CN102077521A (en) Method and system for link aggregation
CN102227890A (en) In-band signalling for point-point packet protection switching
CN103986651B (en) A software defined network controller and control method
CN101068139A (en) Media gateway upper connection link main spare protecting method
CN101605102A (en) Load sharing method and apparatus in IRF stacking
US9049106B2 (en) Multipath virtual router redundancy
US20080181233A1 (en) Redundant far-end pseudo-wire connectivity
CN101420332B (en) Notifying method and network device for member terminal port configuring condition
CN102340434B (en) Multihoming access-based loop avoidance method and edge devices
CN102546222B (en) Backup system and fault detection and processing method
JP2011160363A (en) Computer system, controller, switch, and communication method
EP2922254A1 (en) Method for establishing control channel, forwarding point and controller

Legal Events

Date Code Title Description
C06 Publication
C10 Request of examination as to substance
C14 Granted