CN102857416A - Method for implementing virtual network and virtual network - Google Patents

Method for implementing virtual network and virtual network Download PDF

Info

Publication number
CN102857416A
CN102857416A CN2012103464579A CN201210346457A CN102857416A CN 102857416 A CN102857416 A CN 102857416A CN 2012103464579 A CN2012103464579 A CN 2012103464579A CN 201210346457 A CN201210346457 A CN 201210346457A CN 102857416 A CN102857416 A CN 102857416A
Authority
CN
China
Prior art keywords
data packet
destination
virtual
forwarding
controller
Prior art date
Application number
CN2012103464579A
Other languages
Chinese (zh)
Other versions
CN102857416B (en
Inventor
马苏安
汪军
胡永生
梁亮
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Priority to CN201210346457.9A priority Critical patent/CN102857416B/en
Publication of CN102857416A publication Critical patent/CN102857416A/en
Application granted granted Critical
Publication of CN102857416B publication Critical patent/CN102857416B/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport

Abstract

The embodiment of the invention provides a method for implementing a virtual network and the virtual network. The method comprises the following g steps: step (1), obtaining a transfer type, a source and a destination of a data packet sent by a host computer by a controller of the virtual network; step (2), formulating a forwarding strategy according to the transfer type, a port identifier of the source and a target identifier of the destination; and step (3), sending the forwarding strategy to each virtual access exchanger and each middle exchanger through which the data packet is to be passed, and executing the forwarding strategy to the received data packet received by the virtual access exchanger and the middle exchanger. In the forwarding process of the data packet, the controller can obtain various attributes of the data packet as target identifiers, formulate the forwarding strategy according to the target identifiers and forward the data packet more intensively and flexibly; and multi-user and multi-path forwarding is supported, flow load is balanced, and network resources are utilized more efficiently.

Description

ー种实现虚拟网络的方法和虚拟网络ー kinds of virtual networks and virtual network method

技术领域 FIELD

[0001] 本发明涉及数据交换技木,特别是指ー种实现虚拟网络的方法和虚拟网络。 [0001] The present invention relates to data exchange technology of wood, particularly to seed ー virtual network and virtual network methods.

背景技术 Background technique

[0002] 数据中心提供资源出租业务,针对不同的租户,数据中心需要提供ー个虚拟网络实现数据交换,使租户在虚拟网络中互不干扰的使用资源。 [0002] the data center rental business to provide resources for different tenants, data centers need to provide ー virtual network for data exchange, the use of resources tenant without disturbing each other in the virtual network. 同时,数据中心业务的发展,使数据中心对网络的要求日益提高,需要更大带宽,更可靠的数据网络。 At the same time, development of data center operations, data center network requirements for the increasing need for greater bandwidth and more reliable data network.

[0003] 租户的数量可能达到数十万以上,现有技术中,一般采用虚拟局域网(vLan,Virtual Local Area Network)来隔离租户,由于vLan的个数最大为4096,因而限制了租户的数量,不能满足数据中心为多租户提供业务的需求。 [0003] the number of tenants could reach hundreds of thousands more than in the prior art, generally use virtual local area network (vLan, Virtual Local Area Network) to isolate tenants, because the maximum number of vLan of 4096, thus limiting the number of tenants, data centers can not meet the demand for multi-tenant service. 如图I所示,在IP网上叠加ニ层网络,将以太网包封装在M)P包中,添加ー个VXLan包头,包头中添加24位的VXLan网络标识以区分不同的虚拟网络;UDP包转发路径由路由协议来确定;这种方式能够支持大量租户,多路径支持依靠下层IP网络实现。 As shown in FIG. I, the Ni layer overlay network over IP, Ethernet packets encapsulated in M) P package, adding the 24-bit add ー VXLan VXLan a network identifier header, packet header to distinguish different virtual networks; the UDP packet forwarding path determined by the routing protocol; in this way can support a large number of tenants, multipath support relies on the underlying IP networks. IP网络106中,原始数据包101从源Hostl04发送到通道端点(VTEP,VXLAN tunnel end point) 105,VTEP将原始数据包101封装在UDP包中形成封装后的数据包102,在数据包102中附加ー个VXLan Header,VXLan Header内部包含ー个VNI (VXLan Network IDentifier)来标识不同的虚拟网络。 IP network 106, the original packet 101 sent from the source Hostl04 to the tunnel end (VTEP, VXLAN tunnel end point) 105, VTEP packet encapsulated 102 original packet 101 encapsulated form in the UDP packet, the data packet 102 additional ー a VXLan Header, internal VXLan Header contains ー a VNI (VXLan network iDentifier) ​​to identify different virtual networks. 封装后的数据包102通过IP网络106发送到对端VTEP,VTEP解封装,还原出原始数据包103,再转发给目的Hostl07。 Encapsulated data packet 102 through the IP network 106 transmits to the peer VTEP, VTEP decapsulates restore the original data packet 103 and forwards to the object Hostl07. 可以看出,原始数据包101封装进UDP包后,底层IP网络将其作为载荷进行转发,不能识别原始数据包101属于哪个租户,也不能识别原始数据包101内部的IP地址等信息,因而,不能根据这些信息做任何的优化和控制。 As can be seen, the original data packet encapsulated into UDP packet 101, the underlying IP network which is forwarded as load, can not recognize the original packet 101 to which the tenant belongs, not the identification information of the internal IP address of the original packet 101 or the like, therefore, We can not do any optimization and control based on the information.

[0004] 现有技术存在如下问题:底层IP网络和虚拟网络是分离的,当虚拟网络的数据包在底层IP网络中传输吋,IP网络并不能识别数据包内部封装的信息,不能针对租户的需求实施优化措施或其他策略;虚拟网络也不识别数据包在底层IP网络中的转发方式,无法对转发过程进行控制。 [0004] The following problems exist in the prior art: the underlying IP and virtual networks are separated, the virtual network when the data packet transmission inch in the underlying IP network, the IP network does not recognize the data packets encapsulated inside information, not for the tenant demand implementation of optimization measures and other policies; virtual network packet forwarding mode is not recognized in the underlying IP network, can not control the forwarding process.

发明内容 SUMMARY

[0005] 本发明要解决的技术问题是提供ー种实现虚拟网络的方法和虚拟网络,解决由于底层IP网络和虚拟网络分离,当虚拟网络的数据包在底层IP网络中传输吋,IP网络并不能识别数据包内部封装的信息,不能针对租户的需求实施优化或其他策略;虚拟网络也不识别数据包在底层IP网络中的转发方式,无法对转发过程进行控制的缺陷。 [0005] The present invention is to solve the technical problem of providing ー kinds of virtual network methods and virtual networks, to resolve since the underlying IP network and virtual network separation, when the virtual network packets in the underlying IP network transmission inches, the IP network and information can not recognize the packet inside the package, or other optimization strategy can not be implemented for the needs of tenants; virtual network identification packet is not in the underlying IP network forwarding mode, the defect can not control the forwarding process.

[0006] 为解决上述技术问题,本发明的实施例提供ー种实现虚拟网络的方法,包括:步骤一,虚拟网络的控制器获取由主机发出的数据包的传送类型,来源地和目的地;步骤ニ,根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略;步骤三,将所述转发策略发送给所述数据包将要经过的各个虚拟访问交換机和中间交换机;由所述虚拟访问交換机和中间交换机对接收到的数据包,执行所述转发策略。 [0006] To solve the above problems, embodiments of the present invention provides a method for implementing a virtual network ー species, comprising the steps of: a virtual network controller acquires the transmission type of the data packet issued by the host, source and destination; ni step, according to the transmission type, the source terminal ro identifier, the destination identification purposes to develop a forwarding policy; step three, sending the forwarding policy to the packet will go through each of the virtual access switch and intermediate switch ; access by the virtual switches and intermediate switches received data packet, perform the forwarding policy.

[0007] 所述的方法中,执行所述转发策略包括:将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包。 [0007] The method of performing the forwarding policy comprises: receiving a first data packet as a data packet, the second packet is formed after the object identifier of the first data packet is encapsulated; transmitting the said second data packet.

[0008] 所述的方法中,所述传送类型为同一个子网内转发数据包;发送数据包的主机与接收数据包的目的主机位于同一个子网;所述目的标识包括:根据所述端ロ标识确定的发送数据包的主机所在子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 [0008] In the method, the transmission type to forward packets on the same subnet; destination host and the host receiving data packets transmitted packets on the same subnet; identifying the object comprising: the end of the ro the purpose virtual network identifier subnet host where to send the packet to determine the identity and purpose of virtual access switch routing identification purposes. [0009] 所述的方法中,所述传送类型为子网之间转发数据包;所述目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 The method [0009] In the transmission type to forward packets between the subnets; identifying the object comprising: a destination virtual network identifier of the destination subnet, the route and a destination access switch of virtual identification purposes.

[0010] 所述的方法中,传送类型为单播;步骤ニ还包括:计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径;执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将还原后的所述第一数据包发给目的主机。 [0010] The method, unicast transmission type; ni further comprising the step of: calculating at least one optimal path between the host and the destination of the transmission data packet; forwarding said policy comprises at least one of the optimal path ; performing the forwarding policy comprises: the destination from the destination subnet virtual access switch the second data packet is a first data packet to restore, the restore the first data packet to the destination host.

[0011] 所述的方法中,所述传送类型为广播;步骤一之前包括:在每ー个子网中建立覆盖整个所述子网的第一类广播树;或者,在每ー个子网中建立第二类广播树,每ー个所述第ニ类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 The method according to [0011], the type is a broadcast transmission; prior to step a comprises: establishing a first type covering the entire broadcast of the subnet tree in each subnet ー; alternatively, one based on each subnet ーthe second type broadcast tree, each of said first Ni-based ー broadcast tree, the selected host with a subnet virtual connection to the second access switch as the root category tree broadcast.

[0012] 所述的方法中,所述目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识;执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将所述第一数据包发给目的主机。 The method according to [0012], the object identifier comprises: identifying a first object of the destination multicast tree type or the second type of broadcast subnet tree corresponding to the object; performing the forwarding policy comprises: by the destination sub the object of virtual network access switch to restore the second data packet is a first data packet, the first data packet to the destination host.

[0013] 所述的方法中,所述控制器采用Openflow协议下发所述转发策略;所述转发策略由流表实现;或者,所述控制器采用网管接口下载协议下发所述转发策略;所述转发策略由网管配置条目实现;或者,所述控制器采用选定的私有协议下发所述转发策略。 The method according to [0013], the controller is made using a forwarding policy at the Openflow protocol; the forwarding policy is implemented by a flow table; alternatively, the controller uses the NMS interface to send the download protocol forwarding policy; the forwarding policy configuration achieved by a network entry; or the hair under said private protocol controller using a forwarding policy selected.

[0014] 一种控制器,包括:信息获取单元,用于获取由主机发出的数据包的传送类型,来源地和目的地;策略制定単元,用于根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略;策略下发单元,用于将所述转发策略发送给所述数据包将要经过的各个所述虚拟访问交换机和中间交换机;由所述虚拟访问交换机和中间交换机对接收到的数据包执行所述转发策略。 [0014] A controller comprising: an information acquisition unit for acquiring transmission type packet sent by the host, source and destination; strategies developed radiolabeling element, according to the type of transfer, the source terminal ro identification, a destination identification purposes to develop a forwarding policy; policy issuing unit, configured to send the forwarding policy to each of the virtual access switch and said intermediate packet switch to be passed; by the virtual intermediate access switch and switch the received data packet forwarding implementation of the strategy.

[0015] 所述的控制器中,策略制定単元包括:第一制定模块,用于当所述传送类型为同一个子网内转发数据包时;设置所述目的标识包括:根据所述端ロ标识确定的发送数据包的主机所在子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 The controller [0015] according to the policy developed radiolabeling element comprising: a first decision block, when the transmission type to be used when forwarding packets on the same subnet; the destination identifier is provided comprising: the identity of the end ro the purpose virtual network identifier subnet host where to send packets determined, and the purpose of virtual access switch routing identification purposes.

[0016] 所述的控制器中,策略制定単元包括:第二制定模块,用于当所述传送类型为子网之间转发数据包吋,设置所述目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交換机的目的路由标识。 The controller according to [0016], the policy maker radiolabeling element comprises: a second decision block, when said transmission type to forward packets between the subnets inches, the destination identifier is provided comprising: a virtual subnet Purpose network identity, purpose and virtual access to the switch routing identification purposes.

[0017] 所述的控制器中,策略制定単元包括:第三制定模块,用于当所述传送类型为单播时,计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径。 The controller according to [0017], the policy maker radiolabeling element comprising: a third developing means for transmitting the time when the unicast type, the at least one calculated optimal path between the host and the destination of the transmission data packet; the forwarding policy comprises at least one of said optimal path.

[0018] 所述的控制器中,还包括:广播树単元,用于在每一个子网中建立覆盖整个所述子网的第一类广播树;或者,在每ー个子网中建立第二类广播树,每ー个所述第二类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 Controller [0018], wherein, further comprising: a broadcast tree radiolabeling element, for establishing cover the entire sub-tree of a first type broadcast in each subnet; or establishing a second subnet in each ーbased multicast tree, each of said second type broadcast ー tree, a selected one of the host subnet virtual connection to the second access switch as the root category tree broadcast. [0019] 所述的控制器中,策略制定単元包括:第四制定模块,用于当所述传送类型为广播吋,设置所述目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识。 The controller [0019] according to the policy developed radiolabeling element comprises: a fourth developing means for the transfer of a broadcast when inches, the destination identifier is provided comprising: a first class or a second broadcast destination category tree identifying a broadcast object corresponding destination subnet tree. [0020] ー种虚拟网络,包括:虚拟访问交换机、中间交换机和控制器;每一个虚拟访问交换机具有一个路由标识,并与所述控制器连接;每ー个中间交换机与虚拟访问交换机连接,并与所述控制器连接;每ー个主机均位于ー个子网中,子网内的所有主机在ー个ニ层广播域内,ニ层广播域具有虚拟网络标识;一个主机一个与虚拟访问交換机通过端ロ连接,端ロ具有端ロ标识;还包括控制器,控制器包括:信息获取单元,用于获取由主机发出的数据包的传送类型,来源地和目的地;策略制定単元,用于根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略;策略下发单元,用于将所述转发策略发送给所述数据包将要经过的各个所述虚拟访问交換机和中间交換机;由所述虚拟访问交換机和中间交換机对接收到的数据包执行所述转发策略。 [0020] Species ー virtual network, comprising: virtual access switch, an intermediate switch, and a controller; each virtual access switch having a routing identifier, and connected to the controller; ー intermediate switch and each virtual access switch connection, and connected to the controller; each are located ー ー host subnet, all hosts on the subnet broadcast domain ー a Ni layer, Ni layer having a virtual broadcast domain identifier in the network; a host to access a virtual switch by ro connection terminal, having a terminal end ro ro identifier; further includes a controller, the controller comprising: an information acquisition unit for acquiring transmission type packet sent by the host, source and destination; strategies developed radiolabeling element, according to the transmission type, the source terminal ro identifier, identifying a destination object to develop a forwarding policy; policy issuing unit, for each of the virtual access switch to send the data packet to the forwarding policy to be passed and intermediate switch; the data packets by the virtual intermediate access switch and the switch forwarding the received policy.

[0021] 所述的虚拟网络中,虚拟访问交换机包括:第一策略执行单元,用于将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包;以及,第二中间交换机包括:策略执行单元,用于将接收到的数据包作为第ー数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包。 [0021] The virtual network, virtual access switch comprising: a first policy enforcement unit for the received data packet as a first packet, the destination identification to be formed after the first data packet encapsulation a second data packet; transmitting said second data packet; and, a second intermediate switch comprising: a policy enforcement means, for converting the received data packet as the first packet ー, the object identifier of the first data after the encapsulated packet to form a second data packet; transmitting said second data packet.

[0022] 本发明的上述技术方案的有益效果如下:在数据包转发过程中,控制器能够获取数据包的各种属性,如Broadcast ID,Route ID、以太网包头、IP包头、TCP/UDP端口号等作为目的标识,根据目的标识制定转发策略,更精细和灵活的转发数据包;支持了多租户、多路径转发、流量负载均衡,更有效的利用了网络资源。 [0022] Advantageous effects of the above aspect of the present invention is as follows: in the data packet forwarding process, the controller can acquire attribute data packet, such as the Broadcast ID, Route ID, the Ethernet header, the IP header, TCP / UDP port as the purpose of identification number, etc., to develop forward strategies based on the purpose of identification, more sophisticated and flexible forwarding packets; supports multi-tenant, multi-path forwarding, traffic load balancing, and more efficient use of network resources.

附图说明 BRIEF DESCRIPTION

[0023] 图I表示现有vxLan技术的工作原理示意图; [0023] Figure I a schematic diagram showing the working principle of the prior art vxLan;

[0024] 图2表示本发明的虚拟网络的系统架构图; [0024] FIG. 2 shows a system architecture diagram of a virtual network of the present invention;

[0025] 图3表示本发明的数据包封装结构示意图; [0025] FIG. 3 shows a schematic structure of a data packet encapsulated according to the present invention;

[0026] 图4表示本发明的子网间路由功能示意图; [0026] FIG. 4 shows a schematic view of subnets routing function of the present invention;

[0027] 图5表示本发明的子网内单播示意图; [0027] FIG. 5 shows a schematic view of a unicast sub-network of the present invention;

[0028] 图6表示本发明的实现最优路径流程图; [0028] FIG. 6 shows optimum path according to the present invention, a flow chart;

[0029] 图7表示本发明的子网内广播流程图; [0029] FIG. 7 shows a flowchart of a broadcast subnet of the present invention;

[0030] 图8表示本发明的一种控制器的结构示意图。 [0030] FIG. 8 shows a schematic structure of a controller according to the present invention.

具体实施方式 Detailed ways

[0031] 为使本发明要解决的技术问题、技术方案和优点更加清楚,下面将结合附图及具体实施例进行详细描述。 [0031] For the present invention to solve the technical problem, technical solutions and advantages clearer, the accompanying drawings and will be described in detail specific embodiments.

[0032] 软件定义网络(SDN, Software Defined Network)技术是一种通信网络实现方法,核心思想是控制-转发-分离。 [0032] software-defined network (SDN, Software Defined Network) technology is a method to realize a communication network, the core idea is to control - forward - separation. SDN的控制面由集中的控制器(Forwarding Policy Server)组成,并通过Open flow协议控制转发面的行为,控制方式是下发流表,流表包括匹配规则和行为,指示与匹配规则相匹配的数据包所应采取的行为。 SDN controlled by a centralized control plane (Forwarding Policy Server) composition and behavior of the forwarding plane by Open flow control protocol, control is issued flow table, the flow table includes matching rules and behavior, indicating a matching rule that matches the packet should take action. SDN的转发面收到数据包后,按顺序匹配流表项,发现匹配项后执行相应的指令;如果未匹配,可以将数据包转发给控制器,由控制器处理。 SDN forwarding plane after receiving the data packet, sequentially matching flow table entry, the match is found corresponding instruction executed; if no match, the packet may be forwarded to the controller, processed by the controller.

[0033] 租户可以拥有多个子网,租户的每台主机(Host)都属于某个子网,子网作为ー个ニ层广播域,每个ニ层广播域都分配有ー个虚拟网络标识Broadcast ID (又称为:广播域标识)。 [0033] can have a plurality of sub-tenant, the tenant each host (the Host) belong to a subnet, a subnet broadcast domain ー a Ni layer, Ni layer each broadcast domain is assigned virtual network identifier ー Broadcast ID (also known as: broadcast domain identifier). 姆台主机连接在一台虚拟访问交换机(Virtual Access Switch)的ー个端口上,姆个端ロ有一个卩隹一的端ロ标识,姆个Virtual Access Switch都由控制器分配ー个路由标识Route ID0 Farm hosts connected to access a virtual switch (Virtual Access Switch) is ー a port, a terminal Farm ro a ro Jie Zhui a terminal identifier, a Virtual Access Switch by the Beam controller identifier assigned ー routes Route ID0

[0034] 本发明实施例提供了ー种实现虚拟网络的方法,如图2所示,包括: [0034] The embodiment provides a method for implementing a virtual network ー species of the present invention, shown in Figure 2, comprising:

[0035] 步骤一,虚拟网络的控制器获取由主机发出的数据包的传送类型,来源地和目的地; [0035] Step a virtual network controller acquires the transmission type of the data packet issued by the host, source and destination;

[0036] 步骤ニ,根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略; [0036] Step ni, type, source identification ro end, the purpose of identification of the destination forwarding policy formulated in accordance with the transfer;

[0037] 步骤三,将所述转发策略发送给所述数据包将要经过的各个虚拟访问交換机和中间交换机; [0037] Step three, sending the packet to the forwarding policy will go through each of the virtual access switch and intermediate switch;

[0038] 由所述虚拟访问交換机和中间交换机对接收到的数据包,执行所述转发策略。 [0038] accessed by the virtual switches and intermediate switches received data packet, perform the forwarding policy.

[0039] 应用本发明实施例提供的技术,在数据包转发过程中,控制器能够获取数据包的各种属性,如fcoadcast ID,Route ID、以太网包头、IP包头、TCP/UDP端口号等作为目的标识,根据目的标识制定转发策略,由转发面更精细和灵活的转发数据包;支持了多租户、多路径转发、流量负载均衡,更有效的利用了网络资源。 Technique according to an embodiment [0039] Application of the present invention, the packet forwarding process, the controller can acquire attribute data packets, such as fcoadcast ID, Route ID, the Ethernet header, the IP header, TCP / UDP port number as identification purposes, in accordance with the purpose of developing strategies to identify forward by the forward face more sophisticated and flexible forwarding packets; supports multi-tenant, multi-path forwarding, traffic load balancing, and more efficient use of network resources.

[0040] 虚拟网络的结构如图2所示,虚拟网络包括转发面和控制面: , The virtual network comprising a control plane and a forwarding plane structure shown in FIG. 2 [0040] FIG virtual network:

[0041] 转发面,包括虚拟访问交换机202和中间交换机206 ;中间交换机206不直接连接主机203,负责中间转发数据包。 [0041] Forward surface 202 includes a virtual access switch 206 and the intermediate switch; intermediate switch 206 is not directly connected host 203 is responsible for forwarding packets intermediate. 主机203通过虚拟访问交换机202接入虚拟网络,主机203包括物理机和虚拟机。 Virtual host 203 through switch 202 to access the virtual network access, including physical host 203 and virtual machines.

[0042] 控制面,包括控制器201,它与虚拟访问交换机202和中间交换机206互联,向虚拟访问交換机202和中间交换机206下发转发策略,以控制转发面的转发行为;转发策略包括控制数据包从哪个具体的端ロ转发、修改数据包的属性等。 [0042] The control plane includes a controller 201, which switches the virtual access network 202 and the intermediate switch 206, switch 202 and to access virtual intermediate switch 206 delivers a forwarding policy to control the forwarding behavior of the forwarding plane; comprises forwarding control ro forwarding packets from which a particular terminal to modify the properties of the packet and the like.

[0043] 虚拟网络中各个器件的工作原理包括: [0043] virtual network each device works include:

[0044] 控制器201,是组成控制面的设备,整个虚拟网络的控制逻辑都在控制器201上制定,控制器201对来自转发面的网络事件进行响应,根据虚拟网络需求下发转发策略到各个虚拟访问交换机202和中间交换机206上,以实现对整个虚拟网络的控制。 [0044] controller 201, the device is composed of a control surface, the control logic of the entire virtual network are established at controller 201, network controller 201 forwards the events from the surface in response, made according to the forwarding virtual network policy needs to on each access switch 202 and the intermediate virtual switch 206 to achieve control of the entire virtual network.

[0045] 虚拟访问交换机202,是组成转发面的设备,负责将主机203接入到虚拟网络。 [0045] The virtual access switch 202, the device is composed of the forwarding plane, host 203 is responsible for access to the virtual network.

[0046] 中间交换机206,是组成转发面的设备,是虚拟网络的中间节点,不直接接入主机203。 [0046] The intermediate switch 206, the device is composed of the forwarding plane, a virtual network is an intermediate node, not directly connected to the host 203. 虚拟访问交换机202和中间交换机206根据控制器201下载的转发策略对数据包进行转发。 Virtual access switch 202 and the switch 206 pairs of intermediate packets forwarded according to the forwarding controller 201 downloads.

[0047] 主机203,每个主机203连接在ー个虚拟访问交换机202的端口上。 [0047] The host 203, host 203 is connected to each port in the virtual ー access the switch 202.

[0048] 控制器201与转发面的接ロ204,可采用开放流(Openflow)协议、网管协议或者私有协议。 [0048] controller 201 and the forward face 204 of the contact ro, open flow may be employed (the Openflow) protocol, network management protocol or a proprietary protocol.

[0049] 虚拟机管理器(VM Manager) 205,负责管理主机203,将主机203的信息-包括Broadcast ID、所在端ロ的端ロ标识,以及Route ID等,传送给控制器201。 [0049] Virtual Machine Manager (VM Manager) 205, is responsible for the management host 203, host 203 of information - including Broadcast ID, where the terminal end ro ro identifier Route ID, and the like, to the controller 201. [0050] 主机203的标识,端ロ标识,以及主机203所属的子网的虚拟网络标识,以及它们之间的对应关系都存储在控制器201中。 [0050] The host identifier 203, an end ro identifier, and a virtual network identifier 203 belongs to a subnet of the host, and the correspondence between them are stored in the controller 201.

[0051] 在数据包的各种属性中,目的标识至少包括虚拟网络标识Broadcast ID,还可以包括目的路由标识Route ID0 [0051] In various attributes of the data packet, destination identifier comprises at least a virtual network identifier Broadcast ID, routing may further include object identification Route ID0

[0052] 来源地是指发出数据包的源主机,源主机所在的子网; [0052] Origin refers sent subnet packet source host, the source host belongs;

[0053]目的地是指接收数据包的目的主机,目的主机所在的子网。 [0053] Destination subnet refers to the received packet destination host, the destination host is located.

[0054] 在一个优选实施例中,这些信息由其他系统,如虚拟化管理平台(VM Manager),通过接ロ204传送给控制器201。 [0054] In a preferred embodiment, the information provided by other systems, such as Virtualization Manager (VM Manager), then by ro 204 to the controller 201.

[0055] 数据包进入虚拟网络时,打上虚拟网络标识、路由标识;数据包在虚拟网络传输过程中,转发面根据数据包的路由标识进行转发;转发面根据数据包的虚拟网络标识区分不同的虚拟网络,只能将数据包发送给同一个虚拟网络的主机。 When [0055] the packet entered virtual network, marked virtual network identifier, the route identifier; packet in the virtual network transmission, forwarding plane for forwarding the routing identification data packet; forwarding plane according to the virtual network identifier to distinguish data packets of different virtual network, data packets can be sent to the host the same virtual network.

[0056] 数据包的封装方式如图3所示,源主机304发出的数据包301,包括ニ层包头(L2Header)和数据(Data),在虚拟访问交换机202封装为数据包302,这ー过程中,采用实际存在的网络标签,如MPLS 20bit标签来实现Broadcast ID和Route ID,与数据包301封装在一起形成数据包302,或者只将Broadcast ID与数据包301封装在一起形成数据包303 broadcast ID和Route ID,分别表示虚拟网络标识和目的虚拟访问交换机202b ;此时MPLS标签仅作为Broadcast ID和Route ID的载体,不具有MPLS tag原本的意义。 Encapsulation [0056] FIG packet, the data packet 301 sent by the source host 304 in FIG. 3, comprises a Ni layer header (L2Header) and data (the Data), a virtual access switch 202 into packets 302, this process ー, the actual presence of a network label, labels such as MPLS 20bit achieved Broadcast ID and Route ID, the data packet 302 and data packet 301 together to form a package, or only together with the forming Broadcast ID packet 301 encapsulated packet 303 broadcast the Route ID and ID, respectively, virtual network identifier of the destination virtual access switch 202b; in this case only as a support MPLS label the Route Broadcast ID and the ID does not have the original meaning MPLS tag. 20bit的Broadcast ID能够支持超过100万独立子网,因此能够支持大量租户。 20bit of Broadcast ID can support more than one million independent subnets, it can support a large number of tenants.

[0057] 目的虚拟访问交换机202b接到数据包302后,去除Broadcast ID和Route ID的数据包304,恢复到了初始的数据包301的状态,发送给目的主机305。 [0057] The object of the virtual access switch 202b after receiving the data packet 302, the packet is removed Broadcast ID and Route ID 304, back to the initial state of the packet 301, 305 sent to the destination host.

[0058] 广播数据包303由于不是具体转发给特定的Host,而是发给广播域内所有Host,所以不需要封装Route ID,仅仅封装Broadcast ID。 [0058] Since the broadcast packet 303 is not forwarded to a particular Host particular, but to all Host broadcast domain, there is no need package Route ID, the package only Broadcast ID.

[0059] 控制器201与转发面之间的接ロ204协议可有多种选择,如可采用Openf low协议,转发策略通过流表实现;也可以采用网管接口下载策略,转发策略由网管配置条目实现。 [0059] The protocol controller 204 connected between ro and the forwarding plane 201 may have a variety of options, such as may be employed Openf low protocols, forwarding policies implemented by the flow table; network management interface may also be used to download policy, policy forwarded by the network management configuration entries achieve.

[0060] 在一个优选实施例中,控制器201采用Openflow协议下发所述转发策略;所述转发策略由流表实现; [0060] In a preferred embodiment, the send controller 201 uses the forwarding policy Openflow protocol; the forwarding policy is implemented by a flow table;

[0061]或者, [0061] Alternatively,

[0062] 所述控制器采用网管接口下载协议下发所述转发策略;所述转发策略由网管配置条目实现; [0062] The controller uses the NMS interface to send the forwarding policy download protocol; the forwarding policy implemented by the network management configuration entries;

[0063]或者, [0063] Alternatively,

[0064] 所述控制器采用私有协议下发所述转发策略。 The [0064] controller using a proprietary protocol delivers the forwarding policy.

[0065] 在一个优选实施例中,执行所述转发策略包括: [0065] In a preferred embodiment, the implementation of the forwarding policy comprises:

[0066] 将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包; [0066] The received data packet as the first packet, the second packet is formed after the object identifier of the first data packet encapsulated;

[0067] 发送所述第二数据包。 [0067] transmitting the second data packet.

[0068] 所提供的技术方案能够在同ー个子网内转发数据包。 [0068] The technical solution provided ー able to forward packets within the same subnet.

[0069] 在一个优选实施例中,所述传送类型为同一个子网内转发数据包; [0069] In a preferred embodiment, the transmission type to forward packets on the same subnet;

[0070] 所述目的标识包括:根据所述端ロ标识找出的发送数据包的主机所在子网的目的虚拟网络标识Broadcast ID,以及目的虚拟访问交换机的目的路由标识Route ID。 [0070] The object identifier comprising: a virtual network identifier Broadcast ID, and a destination routing identifier Route ID virtual object according to the destination access switch of the subnet where the host terminal identification ro identified transmission packets.

[0071] 在ー个应用场景中,在虚拟网络中转发数据包时,控制器201通过下发的转发策略为数据包打上两种目的标识:Broadcast ID和Route ID。 When [0071] In one application scenario ー forwarding data packets in the virtual network, the controller 201 by forwarding policies issued identification object is marked with two kinds of packets: Broadcast ID and Route ID.

[0072] 步骤01,当主机发送数据包时,控制器201根据主机所在端ロ查询数据库,找出主机所在子网对应的Broadcast ID,以及目的虚拟访问交换机的目的路由标识Route ID,以此形成转发策略; [0072] Step 01, when the host sends a data packet, the controller 201 queries the database according to the host terminal where ro, the purpose of finding the route identifier Route ID corresponding to the subnet where the host Broadcast ID, access switch and the virtual object, thereby forming forwarding policy;

[0073] 步骤02,控制器201下发转发策略给主机所连接的第一虚拟访问交換机,以及中间交换机,中间交换机与第一虚拟访问交換机或者其他的中间交换机连接。 [0073] Step 02, the controller 201 delivers to the connected host forwarding a first virtual access switch and an intermediate switch, the switch connected to the first intermediate virtual intermediate access switch or other switches.

[0074] 步骤03,执行转发策略时将Broadcast ID和Route ID封转在第一数据包中形成 [0074] Step 03, when performing forwarding policy formed Broadcast ID and Route ID sealed packet forwarding in the first

第二数据包。 A second data packet.

[0075] 在同一个子网内转发需要打上虚拟网络标识Broadcast ID,否则就无法区分此数据包是哪个虚拟网络的。 [0075] forward the need marked virtual network identifier Broadcast ID, otherwise it is impossible to distinguish this packet which virtual network within the same subnet. 带有Broadcast ID和Route ID的第二数据包在子网内传输时,中间交换机匹配此目的标识,保证此数据包只会发到同一子网内的目的主机,以此实现在同一个子网内传输数据包以及子网之间的隔离。 With the second packet Broadcast ID and Route ID are transmitted in the sub-network, this destination identifier matching the intermediate switch, to ensure that the packet will be sent to the destination host within the same subnet, in order to achieve the same subnet isolation between the transport packets and subnet.

[0076] 所提供的技术方案能够在不同的子网之间转发数据包。 [0076] The technical solution can be provided by forwarding data packets between different subnets. 在数据包中封装目的主机所在的虚拟网络的虚拟网络标识,以保证只有目的虚拟网络内的主机能够收到此数据包。 Package destination host virtual network identifier in the packet where the virtual network, to ensure that only the destination virtual host in the network can receive this packet.

[0077] 在一个优选实施例中,传送类型为子网之间转发数据包; [0077] In a preferred embodiment, the transmission type to forward packets between the subnets;

[0078]目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识Route ID。 [0078] The object identifier comprising: a destination virtual network identifier of the destination subnet, the route identifier Route ID and a destination access switch of the virtual object. 目的虚拟访问交换机位于目的子网内。 The purpose virtual access switch is located within the destination subnet.

[0079] 子网间路由过程类似子网内单播流程,不同的是,子网间路由要替换数据包的Mac地址,这是因为:数据包发出时,源Mac地址为源主机的Mac地址,目的Mac地址为路由器Mac地址;其中,路由器Mac地址是主机配置的路由器的MAC地址(不是虚拟访问交換机202a的Mac地址),主机配置的路由器是虚拟的,每个主机会配置路由器IP地址,当主机要发送子网间的数据包吋,主机会通过ARP协议获取此路由器IP对应的Mac地址,控制器201此时代替虚拟的路由器应答这一ARP请求,给主机返回虚拟路由器的路由器Mac地址。 [0079] subnets unicast routing process similar to the process within the subnet, except that the routing subnets to replace the Mac address of the packet, because: when a data packet is sent, the source address of the source host Mac Mac Address purpose Mac address of the router Mac address; where the router Mac address is the MAC address of the router host configuration (not virtual access switch 202a of the Mac address), the router is a virtual host configuration, each host will configure the router IP address when the host sends a packet inch subnets, the hosts will be acquired by the Mac address of the ARP protocol corresponding to the IP router, the controller 201 at this time instead of the virtual router ARP request response, to the host returns the virtual router that Mac address.

[0080] 数据包经过虚拟访问交换机,源Mac地址替换为路由器Mac地址,目的Mac地址替换为目的主机Mac地址。 [0080] After the virtual access packet switch, a router source address substitution Mac Mac address, the destination address is replaced with Mac Mac address of the destination host. 这ー过程中需要设置ー个虚拟路由器地址,但不需设置物理路由器,仅通过Mac地址的替换来完成路由功能。 This process needs to be set ー ー virtual router address, but do not need to set the physical router to complete the routing function is only by replacing the Mac address.

[0081] 在ー个应用场景中,如图4所示,以openflow协议作为控制器201与转发面之间的接ロ协议为例进行说明,转发策略对应openflow协议所定义的流表,步骤包括: [0081] In one application scenario ー, 4, connected to openflow ro protocol as the protocol between the controller 201 and forwarding plane as an example, the forwarding policy corresponds to the flow table openflow defined by the protocol, including the step of :

[0082] 步骤401,源主机发送第一数据包给与它相连的源虚拟访问交换机202a。 [0082] Step 401, the source host sends a first data packet and its source connected to a virtual access switch 202a.

[0083] 步骤402,源虚拟访问交换机202a由于没有匹配的流表,将第一数据包通过PacketIn消息转发给控制器201。 [0083] Step 402, the source virtual access switch 202a because there is no matching flow table, the packet is forwarded to the first controller 201 via PacketIn message.

[0084] 步骤403,控制器201向源虚拟访问交换机202a下发流表,流表负责封装Broadcast ID、Route ID和替换Mac地址,包括:将源Mac地址替换为路由器Mac地址,目的地址替换为目的主机Mac地址。 [0084] Step 403, hair flow table, the flow table is responsible for packaging Broadcast ID, Route ID Mac address and substitutions, including the virtual source 202a to the access controller 201 switches: Mac replaces the source address of the router Mac address, destination IP address of Mac address of the destination host.

[0085] 步骤404,控制器201向目的虚拟访问交换机202b下发流表,这些流表负责从接收到的第二数据包中弹出Broadcast ID和Route ID以实现还原数据包,以及转发还原后的数据包到合适的目的主机。 [0085] Step 404, the controller 201 access to the destination virtual switch 202b delivers a flow table, the flow table is responsible pop Broadcast ID and Route ID data received from the second package to achieve a reduction of the data packet, and forwarding the restored packet to the appropriate destination host. [0086] 步骤405,控制器201将第一数据包通过PacketOut消息发回给源虚拟访问交换机202a。 [0086] Step 405, the controller 201 of the first data packet back to the source 202a via the virtual access switch PacketOut message.

[0087] 步骤406,源虚拟访问交换机202a匹配步骤403中提到的流表,给数据包封装Broadcast ID和Route ID,将源Mac地址替换为路由器Mac地址,目的地址替换为目的主机Mac地址,形成第二数据包。 [0087] Step 406, the flow table virtual source access switch 202a mentioned matching step 403, the data packet encapsulated Broadcast ID and Route ID, replaces the source address of the router Mac Mac address, destination IP address of the destination host Mac address, forming a second data packet.

[0088] 步骤407,源虚拟访问交换机202a匹配步骤403中提到的流表,按最优路径转发第 [0088] Step 407, the flow table virtual source access switch 202a mentioned matching step 403, according to the optimal path forwarding of

ニ数据包。 Ni packet.

[0089] 步骤408,中间交换机206匹配流表,按最优路径转发第二数据包。 [0089] Step 408, the intermediate switch 206 matching flow table, according to the second best path to forward packets.

[0090] 步骤409,目的虚拟访问交换机202b匹配步骤404中提到的流表,弹出BroadcastID和Route ID,从第二数据包中还原出第一数据包; [0091] 步骤410,目的虚拟访问交换机202b匹配流表,转发第一数据包到目的主机。 [0090] Step 409, the destination virtual switch 202b matching flow table access mentioned in step 404, and the pop-up BroadcastID Route ID, to restore the first data packet from the second packet; [0091] Step 410, the destination virtual access switch 202b matching flow table, first forwards the packet to the destination host.

[0092] 所提供的技术方案也能够转发单播的数据包。 [0092] The technical solution provided it is possible to forward unicast packets.

[0093] 在一个优选实施例中,传送类型为单播; [0093] In a preferred embodiment, the unicast transmission type;

[0094] 步骤ニ还包括:计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径; [0094] ni further comprising the step of: at least one optimal path between the calculated and sent the packet destination host; the forwarding policy comprises at least one of the optimal path;

[0095] 执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将所述第一数据包发给目的主机。 [0095] performing the forwarding policy comprises: the destination subnet by the destination access switch to said second virtual data packet restore a first data packet, the first data packet to the destination host.

[0096] 主机发送单播数据包时,控制器201查询目的主机所在虚拟访问交换机的RouteID,下发相应转发策略,虚拟访问交换机执行转发策略时将此Route ID封装在数据包中。 [0096] When the host sends a unicast packet, the controller 201 queries the destination host resides RouteID virtual access switch, a respective forwarding policy issued, the virtual access switch performs this forwarding Route ID when encapsulated in a data packet.

[0097] 控制器201在每两个虚拟访问交换机之间计算最优路径,井下发转发策略,转发策略匹配数据包中的Route ID,使其沿着特定路径转发,直到到达目的虚拟访问交换机202b,由目的虚拟访问交换机202b转发给目的主机。 [0097] The controller 201 calculates the optimal path between each of the two virtual access switches, hair downhole forwarding policy, policy matching forwarding Route ID packet, it forwards along a particular path, until reaching the destination virtual access switch 202b , forwarded by the destination virtual access switch 202b to the destination host.

[0098] 控制器201也可以同时计算多条路径,让当前的数据包按预定义的转发策略选择一条路径转发,从而实现多路径负载均衡。 [0098] The controller 201 may calculate multiple paths simultaneously, so that a current packet is forwarded according to the forwarding path select a predefined policy so as to achieve load balancing multipath. 由控制器201决定采用不同的转发方式,可以根据需要随时确定不同的选择。 The controller 201 is determined by a different forwarding mode may be determined at any time according to need different options.

[0099] 子网内单播包需要打上Broadcast ID和Route ID,这两个标识都由MPLS标签实现,Route ID用于标识目的虚拟访问交换机202b,Broadcast ID用于唯一标识ー个ニ层广播域(子网),保证同一个子网内的主机才能收到此数据包,良好地实现子网之间的隔离。 Unicast packets within [0099] Broadcast ID and the subnet needs marked Route ID, by identifying the two MPLS label implemented, Route ID for identifying the access destination virtual switch 202b, Broadcast ID is used to uniquely identify a Ni layer broadcast domain ー(subnet), hosts in the same subnet in order to receive this packet, to achieve good isolation between subnets.

[0100] 在ー个应用场景中,如图5所示,以openflow协议作为控制器201与转发面之间的接ロ协议进行说明,转发策略对应openflow协议定义的流表,步骤包括: [0100] In one application scenario ー, shown in Figure 5, to be described as a ground openflow ro protocol between the protocol controller 201 and forwarding plane, a forwarding policy corresponding to the protocol definition openflow flow table, comprising the step of:

[0101] 步骤501,源主机发送第一数据包到与它相连的源虚拟访问交换机202a。 [0101] Step 501, the source host sends a first data packet to its source connected to a virtual access switch 202a.

[0102] 步骤502,第一数据包在源虚拟访问交换机202a上没有匹配的流表,源虚拟访问交换机202a向控制器201发送PacketIn消息,消息包含第一数据包的内容和输入端ロ。 [0102] Step 502, the flow table does not match the first data packet in the source virtual access switch 202a, the switch 202a 201 virtual access source PacketIn send a message to the controller, and a message including the contents input of the first data packet ro.

[0103] 步骤503,控制器201根据PacketIn消息的内容判断需要匹配的流表,向源虚拟访问交换机202a下发流表,这些流表负责封装Broadcast ID和Route ID ; [0103] Step 503, the flow controller 201 according to the determination table of contents PacketIn message need to match, access to the source virtual switch 202a issued flow table, the flow table is responsible for packaging Broadcast ID and Route ID;

[0104] 步骤504,控制器201向目的虚拟访问交换机202b下发流表,这些流表负责从第二数据包中弹出Broadcast ID和Route ID,以及转发第一数据包到合适的主机; [0104] Step 504, the virtual controller 201 to access the object table hair flow switch 202b, which is responsible for the flow table pop Broadcast ID and Route ID from the second data packet, and forwarding the first data packet to the appropriate host;

[0105] 流表可以在收到PacketIn消息时下载,也可以选择在主机发送数据包前下载。 [0105] stream can be downloaded when receiving PacketIn message can also choose to download data packets transmitted before the host.

[0106] 步骤505,控制器201将原数据包通过PacketOut消息发回给源虚拟访问交换机202a ; [0106] Step 505, the controller 201 of the original packet back to the source 202a via the virtual access switch PacketOut message;

[0107] 步骤506,源虚拟访问交换机202a将此数据包匹配流表,执行流表规定的行为,给第一数据包封装Broadcast ID和Route ID形成第二数据包; [0107] Step 506, the source access switch 202a virtual packet matches this data stream table, a predetermined execution behavior of a flow table to the first data packet encapsulating Route ID Broadcast ID and the second packet is formed;

[0108] 步骤507,源虚拟访问交换机202a匹配流表,按最优路径转发第二数据包; [0108] Step 507, the source virtual access switch 202a matching flow table, according to the optimal route to forward a second data packet;

[0109] 步骤508,中间交换机206匹配流表,按最优路径转发第二数据包; [0109] Step 508, the intermediate switch 206 matching flow table, according to the optimal route to forward a second data packet;

[0110] 步骤509,目的虚拟访问交换机202b将第二数据包匹配流表,从第二数据包中弹出Broadcast ID和Route ID,还原出第一数据包; [0111] 步骤510,目的虚拟访问交换机202b匹配流表,转发还原后的第一数据包到目的主机。 [0110] Step 509, the destination virtual access switch 202b second data packet matching flow table, pop Broadcast ID and Route ID from the second data packet, to restore the first data packet; [0111] Step 510, the destination virtual access switch matching flow table 202b, and transfers the restored first data packet to the destination host.

[0112] 每个数据包都采用最优路径转发,也可以根据租户对应的特定策略转发,具体地,可以根据租户所属的级别来选择不同路由路径,这ー过程中需要在路由路径中的各节点上设置相应的流表。 [0112] Each packet forwarding using best path, in accordance with certain policies may be forwarded corresponding to the tenant, in particular, different routing paths may be selected depending on the level of the tenant belongs, this process requires ー on each routing path set the corresponding flow table node.

[0113] 各实施例中,下发实现最优路径的转发策略的方式有多种,可以是在网络拓扑结构发生变化时即刻下发转发策略,也可以先计算出最优路径,当有数据包发送时再下发转发策略,如图6所示,实现最优路径的流程包括: [0113] In various embodiments, a variety of forwarding policy issued optimum path mode, can be instantly issued forwarding policy at the network topology changes, it is possible to calculate the optimum path, when data then issued when forwarding the packet transmission, as shown in FIG. 6, the optimal path in a process comprising:

[0114] 步骤601,控制器201为每个虚拟访问交换机202分配Route ID,并探测网络拓扑结构。 [0114] Step 601, the controller 201 assigned to each virtual access switch 202 Route ID, and the detection of the network topology.

[0115] 当采用openflow作为控制面和转发面之间的协议时,控制器201探测网络拓扑结构包括:控制器201可以指示姆个端ロ发送链路层发现协议(LLDP,Link Layer DiscoveryProtocol)包,如果在转发面的另ー个端ロ收到此LLDP包,则认为两个端ロ之间有一条链路。 [0115] When openflow as the protocol between the control plane and the forwarding plane, the controller 201 detect network topology comprising: a controller 201 may indicate the end ro Farm transmitting link layer discovery protocol (LLDP, Link Layer DiscoveryProtocol) packet If the forwarding plane further ー ro receive the end of a LLDP package, there is considered a link between the two ends ro.

[0116] 步骤602,计算每个虚拟访问交換机202到其他虚拟访问交換机202之间的最优路径。 [0116] Step 602, switch 202 is calculated for each virtual access to the optimal path between the switches 202 of other virtual access.

[0117] 步骤603,控制器201向相应的虚拟访问交换机202和中间交换机206下发转发策略,转发策略中指示了从ー个虚拟访问交换机202到目的虚拟访问交换机202b的数据包应输出的所述端ロ,匹配字段为Route ID。 [0117] Step 603, the controller 201 206 issued to respective forwarding policy virtual access switch and intermediate switch 202, indicated in the forwarding policy from ー virtual switch 202 to access the access destination virtual packet switch 202b to be output said end ro, match field Route ID.

[0118] 所提供的技术方案也能够转发广播数据包。 [0118] The technical solution can be provided to forward broadcast packets.

[0119] 在一个优选实施例中,传送类型为广播; [0119] In a preferred embodiment, the transmission type broadcast;

[0120] 步骤一之前包括: [0120] Before step a comprises:

[0121] 在每ー个子网中建立覆盖整个所述子网的第一类广播树; [0121] establishing a first cover the entire sub-trees in each category broadcast in subnet ー;

[0122] 或者,在每ー个子网中建立第二类广播树,每ー个所述第二类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 [0122] Alternatively, the second type of multicast tree established in each ー subnet, each of said second type broadcast ー tree, the selected host with a virtual subnet as the access switch is connected to the first two types of broadcast root node of the tree.

[0123] 建立广播树的方式有多种,可以在发送广播包时建立广播树,也可以预先建立广播树;广播树可以每个子网建立ー个,也可以以每个子网中与每个主机相连的VirtualAccess Switch为根建立多个。 There are a variety of [0123] way to build multicast tree can be established when a broadcast packet transmitted multicast tree, multicast tree can be established in advance; multicast tree can be established for each subnet ー months, with each host may be a per subnet VirtualAccess Switch connected to create multiple root. 由于广播树的节点与主机的位置相关,因此主机位置变更时,要重新建立广播树,并更新流表。 Since the position of the node with a host of broadcast-related tree, so the host location changes, to re-establish radio tree, and updates the flow table.

[0124] 在一个优选实施例中,目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识; [0124] In a preferred embodiment, the object identifier comprises: identifying a first object of the multicast tree type or the second type broadcast destination tree corresponding destination subnet;

[0125] 执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将所述第一数据包发给目的主机。 [0125] performing the forwarding policy comprises: the destination subnet by the destination access switch to said second virtual data packet restore a first data packet, the first data packet to the destination host.

[0126] 在ー个应用场景中,如图7所示,子网内广播包需要封装上由MPLS标签实现的Broadcast ID。 [0126] In one application scenario ー, shown in FIG. 7, the broadcast packet Broadcast ID on a package need to be implemented by the sub-network MPLS labels. 以openflow协议为控制器201与转发面之间的接ロ协议为例进行说明,转发策略对应openflow协议定义的流表。 In openflow protocol as an example for the connection protocol between the controller 201 ro and forwarding plane, a forwarding policy corresponding to the protocol definition openflow flow table. 控制器201通过下发流表建立ー个广播树,使数据包按广播树传播,步骤包括: Issued by the controller 201 to establish a multicast tree ー flow table, spread so that the data packet by broadcast tree, comprising the step of:

[0127] 步骤701,源主机发送第一数据包给与源主机相连接的源虚拟访问交换机202a。 [0127] Step 701, the source transmits a first data packet to the host accessing the virtual source switch 202a is connected to the source host.

[0128] 步骤702,源虚拟访问交换机202a没有匹配的流表,将第一数据包通过PacketIn消息转发给控制器201。 [0128] Step 702, the flow table virtual source access switch 202a does not match the first data packet to the controller 201 via PacketIn message.

[0129] 步骤703,控制器201向源虚拟访问交换机202a下发流表,这些流表负责为第一数据包封装Broadcast ID。 [0129] Step 703, the controller 201 access to the source virtual switch 202a issued flow table, the flow table responsible for encapsulating a first data packet Broadcast ID.

[0130] 步骤704,控制器201根据网络拓扑建立广播树,根据建立广播树的结果向广播树节点对应的中间交换机206下发流表,这些流表负责第二数据包在广播树中转发。 [0130] Step 704, the controller 201 to establish the network topology tree according to the broadcast corresponding to the broadcast tree node based on the results of the multicast tree establishment intermediate switch 206 delivers the flow table, the flow table is responsible for packet forwarding in the second broadcast tree.

[0131] 步骤705,控制器201向目的虚拟访问交换机202b下发流表;这些流表负责从第ニ数据包中弹出Broadcast ID,以及转发第二数据包到合适的目的主机。 [0131] Step 705, the controller 201 to the virtual object under the access switch hair flow table 202b; list responsible eject streams from Ni Broadcast ID packet, and forward the second packet to the appropriate destination host.

[0132] 步骤706,控制器201将原第一数据包通过PacketOut消息发回给源虚拟访问交换机202a。 [0132] Step 706, the controller 201 of the first original data packet back to the source 202a via the virtual access switch PacketOut message.

[0133] 步骤707,源虚拟访问交换机202a匹配流表,给第一数据包封装上Broadcast ID形成第二数据包。 [0133] Step 707, the source access switch virtual matching flow table 202a, to the first data packet encapsulating a second packet Broadcast ID is formed.

[0134] 步骤708,源虚拟访问交换机202a匹配流表,按广播树转发第二数据包。 [0134] Step 708, the source virtual access switch 202a matching flow table, by a second packet forwarding multicast tree.

[0135] 步骤709,中间交换机206配流表,按广播树转发数据包;数据包会到达目的虚拟访问交換机202b。 [0135] Step 709, the switch 206 with the intermediate flow table, by forwarding packets multicast tree; virtual data packets will reach the destination access switch 202b.

[0136] 步骤710,目的虚拟访问交换机202b匹配流表,从第二数据包中弹出BroadcastID,还原出第一数据包。 [0136] Step 710, the destination virtual access switch 202b matching flow table, BroadcastID eject from the second data packet, to restore the first data packet.

[0137] 步骤711,目的虚拟访问交换机202b匹配流表,转发第一数据包到目的主机。 [0137] Step 711, the destination virtual access switch 202b matching flow table, first forwards the packet to the destination host.

[0138] 本发明实施例提供一种控制器,如图8所示,包括: [0138] The present invention provides a controller 8, comprising:

[0139] 信息获取单元801,用于获取由主机发出的数据包的传送类型,来源地和目的地; [0139] The information acquisition unit 801 for acquiring the data packet issued by the host of the transmission type, origin and destination;

[0140] 策略制定単元802,用于根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略; [0140] strategizer radiolabeling element 802, the type, source identification ro end, the purpose of identifying destination forwarding policy formulated according to the transfer;

[0141] 策略下发单元803,用于将所述转发策略发送给所述数据包将要经过的各个所述虚拟访问交换机和中间交换机; [0141] Hair unit 803 under the policy, for transmitting the data packet to the forwarding policy will go through each of the virtual access switch and intermediate switch;

[0142] 由所述虚拟访问交換机和中间交换机对接收到的数据包执行所述转发策略。 [0142] Data packets performed by the virtual intermediate access switch and the switch forwarding the received policy.

[0143] 在一个优选实施例中,策略制定单元802包括: [0143] In a preferred embodiment, the policy maker unit 802 comprises:

[0144] 第一制定模块,用于当所述传送类型为同一个子网内转发数据包时; [0144] The first decision block, when the transmission type is used for forwarding data packets in the same subnet;

[0145] 设置所述目的标识包括:根据所述端ロ标识确定的发送数据包的主机所在子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 [0145] The object identifier is provided comprising: a virtual network identifier, the route identifier and the destination virtual object according to the destination access switch of the subnet where the host terminal identification ro determined transmission data packet.

[0146] 在一个优选实施例中,策略制定单元802包括: [0146] In a preferred embodiment, the policy maker unit 802 comprises:

[0147] 第二制定模块,用于当所述传送类型为子网之间转发数据包吋, [0147] The second decision block, when said transmission type to forward packets between the subnets inches,

[0148] 设置所述目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 [0148] The object identifier is provided comprising: a destination virtual network identifier of the destination subnet, the route and a destination access switch of virtual identification purposes. [0149] 在一个优选实施例中,策略制定单元802包括: [0149] In a preferred embodiment, the policy maker unit 802 comprises:

[0150] 第三制定模块,用于当所述传送类型为单播吋, [0150] The third decision block, when the transmission type is used for unicast inches,

[0151] 计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径。 [0151] Optimization is calculated at least between a host and a destination of the transmission path of the data packet; forwarding said policy comprises at least one of said optimal path.

[0152] 在一个优选实施例中,还包括: [0152] In a preferred embodiment, further comprising:

[0153] 广播树単元,用于在每一个子网中建立覆盖整个所述子网的第一类广播树; [0153] multicast tree radiolabeling element, for establishing cover the entire sub-tree of a first type broadcast in each subnet;

[0154] 或者,在每ー个子网中建立第二类广播树,每ー个所述第二类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 [0154] Alternatively, the second type of multicast tree established in each ー subnet, each of said second type broadcast ー tree, the selected host with a virtual subnet as the access switch is connected to the first two types of broadcast root node of the tree.

[0155] 在一个优选实施例中,策略制定单元802包括: [0155] In a preferred embodiment, the policy maker unit 802 comprises:

[0156] 第四制定模块,用于当所述传送类型为广播吋, [0156] The fourth decision block, when for the transfer of a broadcast inches,

[0157] 设置所述目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识。 [0157] The object identifier is provided comprising: a first object of the destination tree type or the second type broadcast multicast tree corresponding destination subnet identifier.

[0158] 本发明实施例提供ー种虚拟网络,如图2所示,包括:虚拟访问交换机、中间交换机和控制器; Embodiment [0158] The present invention provides ー virtual network types, as shown in FIG. 2, comprising: a virtual access switch, an intermediate switch, and a controller;

[0159] 每ー个虚拟访问交换机具有一个路由标识,并与所述控制器连接; [0159] Each ー virtual access switch having a routing identifier and connected to the controller;

[0160] 每ー个中间交换机与虚拟访问交换机连接,并与所述控制器连接; [0160] Each virtual switch ー intermediate access switch and is also connected to the controller;

[0161 ] 每ー个主机均位于ー个子网中,子网内的所有主机在一个ニ层广播域内,ニ层广播域具有虚拟网络标识; [0161] Each host ー ー subnets are located in all hosts within a subnet broadcast domain Ni layer, Ni layer having a virtual network broadcast domain identifier;

[0162] 一个主机一个与虚拟访问交換机通过端ロ连接,端ロ具有端ロ标识; [0162] with a host virtual switch through a ro terminal connected with an end ro ro terminal identifier;

[0163] 还包括控制器,如图8所示,控制器中: [0163] further includes a controller, shown in FIG. 8, the controller:

[0164] 信息获取单元801,用于获取由主机发出的数据包的传送类型,来源地和目的地; [0164] The information acquisition unit 801 for acquiring the data packet issued by the host of the transmission type, origin and destination;

[0165] 策略制定単元802,用于根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略; [0165] strategizer radiolabeling element 802, the type, source identification ro end, the purpose of identifying destination forwarding policy formulated according to the transfer;

[0166] 策略下发单元803,用于将所述转发策略发送给所述数据包将要经过的各个所述虚拟访问交换机和中间交换机; [0166] Hair unit 803 under the policy, for transmitting the data packet to the forwarding policy will go through each of the virtual access switch and intermediate switch;

[0167] 由所述虚拟访问交換机和中间交换机对接收到的数据包执行所述转发策略。 [0167] Data packets performed by the virtual intermediate access switch and the switch forwarding the received policy.

[0168] 在一个优选实施例中,虚拟访问交换机包括: [0168] In a preferred embodiment, the virtual access switch comprising:

[0169] 第一策略执行单元,用于将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包; [0169] a first policy enforcement unit for the received data packet as the first packet, the first object identifier and the packet is encapsulated to form a second data packet; transmitting said second data packet ;

[0170]以及, [0170] and,

[0171] 第二中间交换机包括: [0171] The second intermediate switch comprises:

[0172] 策略执行单元,用于将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包。 [0172] policy enforcement unit for the received data packet as a first packet, the second packet is formed after the object identifier of the first data packet is encapsulated; transmitting the second data packet.

[0173] 采用本方案之后的优势是:通过为数据包打上虚拟网络标签和路由标签,提供多租户支持、多路径、流量负载均衡能力,而且能够对数据网络进行更全面的管理,实施更灵活的数据转发策略,甚至针对特定租户的需求实施流量的优化和控制。 [0173] advantage after the adoption of this program is: through the data packets marked with a virtual network tag and routing label, providing multi-tenant support, multi-path, traffic load balancing capabilities, but also more comprehensive management of data networks and implement more flexible data forwarding policy, and even the implementation of optimization and control traffic for the needs of specific tenants.

[0174] 以上所述是本发明的优选实施方式,应当指出,对于本技术领域的普通技术人员来说,在不脱离本发明所述原理的前提下,还可以作出若干改进和润饰,这些改进和润饰也应视为本发明的保护范围。 [0174] The above embodiment is a preferred embodiment of the present invention, it should be noted that those of ordinary skill in the art, in the present invention without departing from the principles of the premise, further improvements and modifications may be made, these improvements and modifications should also be regarded as the protection scope of the present invention.

Claims (16)

1. ー种实现虚拟网络的方法,其特征在于,包括: 步骤一,虚拟网络的控制器获取由主机发出的数据包的传送类型,来源地和目的地;步骤ニ,根据所述传送类型、来源地的端ロ标识、目的地的目的标识制定转发策略;步骤三,将所述转发策略发送给所述数据包将要经过的各个虚拟访问交換机和中间交换机; 由所述虚拟访问交換机和中间交换机对接收到的数据包,执行所述转发策略。 1. A method of implementations ー virtual network, wherein, comprising the steps of: a virtual network controller acquires the transmission type of the data packet issued by the host, source and destination; ni step, according to the transmission type, ro terminal identification of source, destination identification purposes to develop a forwarding policy; step three, the forwarding policy sending the packets to go through each of the virtual access switches and intermediate switches; access by the virtual switch and intermediate switches received data packet, perform the forwarding policy.
2.根据权利要求I所述的方法,其特征在于,执行所述转发策略包括: 将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第ニ数据包; 发送所述第二数据包。 2. The method as claimed in claim I, wherein, performing the forwarding policy comprises: receiving a first data packet as a data packet, the destination identifier of the first data packet after encapsulation Formation ni data packet; transmitting said second data packet.
3.根据权利要求2所述的方法,其特征在于,所述传送类型为同一个子网内转发数据包;发送数据包的主机与接收数据包的目的主机位于同一个子网; 所述目的标识包括:根据所述端ロ标识确定的发送数据包的主机所在子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 3. The method according to claim 2, wherein said transmission type to forward packets on the same subnet; destination host and the host receiving data packets transmitted packets on the same subnet; the destination identifier comprises : virtual network identifier, the route identifier and the destination access switch of the virtual object according to the destination subnet where the host terminal identification ro determined transmission data packet.
4.根据权利要求2所述的方法,其特征在于,所述传送类型为子网之间转发数据包; 所述目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 Purpose The purpose of the virtual network destination subnet identifier and destination virtual access switch: the object identifier comprising; 4. The method according to claim 2, wherein said transmission type to forward packets between the subnets route identification.
5.根据权利要求I所述的方法,其特征在于,所述传送类型为单播; 步骤ニ还包括:计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径; 执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将还原后的所述第一数据包发给目的主机。 The method according to claim I, wherein the transmission type is unicast; ni further comprising the step of: calculating at least one optimal path between the host and the destination of the transmission data packet; forwarding the policy comprising at least one of the optimal path; performing the forwarding policy comprises: a virtual object to the destination sub-network access switch to said second data packet is a first data packet to restore, the restore after the first data packet to the destination host.
6.根据权利要求I所述的方法,其特征在于,所述传送类型为广播; 步骤一之前包括: 在每ー个子网中建立覆盖整个所述子网的第一类广播树; 或者,在每ー个子网中建立第二类广播树,每ー个所述第二类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 6. The method as claimed in claim I, wherein said transmission is a broadcast type; a prior step comprises: establishing a first cover the entire sub-trees in each category broadcast in subnet ー; or, in establishing a second multicast tree for each category ー subnet, each of said second type broadcast ー tree, a selected one of the host subnet virtual connection to the second access switch as the root of the tree-based broadcast node.
7.根据权利要求6所述的方法,其特征在干, 所述目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识; 执行所述转发策略包括:由所述目的子网的目的虚拟访问交换机将所述第二数据包还原为第一数据包,将所述第一数据包发给目的主机。 7. The method according to claim 6, characterized in that the dry, the destination identifier comprises: identifying a first object of the destination multicast tree type or the second type of broadcast subnet tree corresponding to the object; performing the forwarding policy comprising: the destination subnet by the destination access switch to said second virtual data packet restore a first data packet, the first data packet to the destination host.
8.根据权利要求I所述的方法,其特征在干, 所述控制器采用Openflow协议下发所述转发策略;所述转发策略由流表实现; 或者, 所述控制器采用网管接ロ下载协议下发所述转发策略;所述转发策略由网管配置条目实现; 或者, 所述控制器采用选定的私有协议下发所述转发策略。 The method according to claim I, characterized in that the dry, the controller uses the lower hair Openflow protocol forwarding policy; the forwarding policy is implemented by a flow table; or the network access controller using ro downloads issued protocol of the forwarding policy; said forwarding entry policy implemented by the network management configuration; or the hair under said private protocol controller using a forwarding policy selected.
9. 一种控制器,其特征在于,包括: 信息获取单元,用于获取由主机发出的数据包的传送类型,来源地和目的地; 策略制定单元,用于根据所述传送类型、来源地的端口标识、目的地的目的标识制定转发策略; 策略下发单元,用于将所述转发策略发送给所述数据包将要经过的各个所述虚拟访问交换机和中间交换机; 由所述虚拟访问交换机和中间交换机对接收到的数据包执行所述转发策略。 A controller comprising: an information acquisition unit for acquiring the data packet issued by the host of the transmission type, origin and destination; strategy development unit, according to the type of transfer, Origin port identifier, the destination identification purposes to develop a forwarding policy; policy issuing unit, configured to send the forwarding policy to each of the virtual access switch and said intermediate packet switch to be passed; by the virtual access switch and intermediate switches received data packet forwarding executing the policy.
10.根据权利要求9所述的控制器,其特征在于,策略制定单元包括: 第一制定模块,用于当所述传送类型为同一个子网内转发数据包时; 设置所述目的标识包括:根据所述端口标识确定的发送数据包的主机所在子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 10. The controller according to claim 9, characterized in that the strategic planning unit comprises: a first decision block, when the transmission type to be used when forwarding packets on the same subnet; provided the destination identifier comprises: the object of the subnet where the host port identifier determines a transmission data packet virtual network identifier, and a destination access switch of the virtual object identified routes.
11.根据权利要求9所述的控制器,其特征在于,策略制定单元包括: 第二制定模块,用于当所述传送类型为子网之间转发数据包时, 设置所述目的标识包括:目的子网的目的虚拟网络标识,以及目的虚拟访问交换机的目的路由标识。 11. The controller of claim 9, characterized in that the strategic planning unit comprises: a second decision block, when said transmission type packet is forwarded between subnets, provided the object identifier including: the purpose virtual network identification purposes subnets, virtual access switch and the purpose of routing identification purposes.
12.根据权利要求9所述的控制器,其特征在于,策略制定单元包括: 第三制定模块,用于当所述传送类型为单播时, 计算出发送数据包的主机与目的地之间的至少一条优化路径;所述转发策略中包括所述至少一条优化路径。 Between the third decision block, when said transfer type unicast, transmitted to the destination host and the calculated packet: 12. The controller according to claim 9, characterized in that the strategic planning unit comprises at least one optimal path; the forwarding policy comprises at least one of said optimal path.
13.根据权利要求9所述的控制器,其特征在于,还包括: 广播树单元,用于在每一个子网中建立覆盖整个所述子网的第一类广播树; 或者,在每一个子网中建立第二类广播树,每一个所述第二类广播树中,选定所述子网中的一个与主机有连接的虚拟访问交换机作为该第二类广播树的根节点。 13. The controller according to claim 9, characterized in that, further comprising: a broadcast tree units, for establishing a first cover the entire sub-tree type broadcast in each subnet; or, in each establishing a second subnet broadcast category tree, each of the second type broadcast tree, the selected host with a subnet virtual connection to the second access switch as the root category tree broadcast.
14.根据权利要求12所述的控制器,其特征在于,策略制定单元包括: 第四制定模块,用于当所述传送类型为广播时, 设置所述目的标识包括:目的地的第一类广播树或者第二类广播树对应的目的子网的目的标识。 14. The controller according to claim 12, characterized in that the strategic planning unit comprises: a fourth developing means for, when the transmission of a broadcast, the destination identifier is provided comprising: a first type destination object identifier or a second type broadcast multicast tree corresponding destination subnet tree.
15. 一种虚拟网络,其特征在于,包括:虚拟访问交换机、中间交换机和控制器; 每一个虚拟访问交换机具有一个路由标识,并与所述控制器连接; 每一个中间交换机与虚拟访问交换机连接,并与所述控制器连接; 每一个主机均位于一个子网中,子网内的所有主机在一个二层广播域内,二层广播域具有虚拟网络标识; 一个主机一个与虚拟访问交换机通过端口连接,端口具有端口标识; 还包括如权利要求扩14中的控制器。 A virtual network, characterized by comprising: a virtual access switch, an intermediate switch, and a controller; each virtual access switch having a routing identifier, and connected to the controller; each intermediate switch connected to the virtual access switch , and connected to the controller; each subnet hosts are located in one, all hosts on the subnet has the virtual network identifier in a broadcast domain Layer, Layer broadcast domain; and a host virtual switch through a port connection port having a port identifier; 14 further comprising expanding in the controller as claimed in claim.
16.根据权利要求15所述的虚拟网络,其特征在于, 虚拟访问交换机包括: 第一策略执行单元,用于将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包; 以及,第二中间交换机包括: 策略执行单元,用于将接收到的数据包作为第一数据包,将所述目的标识与所述第一数据包封装后形成第二数据包;发送所述第二数据包。 16. The virtual network according to claim 15, wherein the virtual access switch comprising: a first policy enforcement unit for the received data packet as the first packet, the identifier of the second object forming a data packet after a second encapsulated data packet; transmitting said second data packet; and, a second intermediate switch comprising: a policy enforcement means, for converting the received data packet as the first data packet, the destination identification forming a second data with the first data packet encapsulated packet; transmitting said second data packet.
CN201210346457.9A 2012-09-18 2012-09-18 A method for implementing virtual networks, and virtual network controller CN102857416B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210346457.9A CN102857416B (en) 2012-09-18 2012-09-18 A method for implementing virtual networks, and virtual network controller

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210346457.9A CN102857416B (en) 2012-09-18 2012-09-18 A method for implementing virtual networks, and virtual network controller
PCT/CN2013/080734 WO2013185715A1 (en) 2012-09-18 2013-08-02 Method for implementing virtual network and virtual network

Publications (2)

Publication Number Publication Date
CN102857416A true CN102857416A (en) 2013-01-02
CN102857416B CN102857416B (en) 2016-09-28

Family

ID=47403620

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210346457.9A CN102857416B (en) 2012-09-18 2012-09-18 A method for implementing virtual networks, and virtual network controller

Country Status (2)

Country Link
CN (1) CN102857416B (en)
WO (1) WO2013185715A1 (en)

Cited By (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013185715A1 (en) * 2012-09-18 2013-12-19 中兴通讯股份有限公司 Method for implementing virtual network and virtual network
CN103580909A (en) * 2013-05-22 2014-02-12 杭州华三通信技术有限公司 Method and device for customizing hardware resource
CN103607348A (en) * 2013-11-27 2014-02-26 北京邮电大学 Virtual network flow classifying method based on OpenFlow protocol
CN103701822A (en) * 2013-12-31 2014-04-02 曙光云计算技术有限公司 Access control method
CN103746892A (en) * 2013-11-27 2014-04-23 北京邮电大学 SDN virtualization platform uplink signaling flow label processing method based on OpenFlow
CN103763367A (en) * 2014-01-17 2014-04-30 浪潮(北京)电子信息产业有限公司 Method and system for designing distributed virtual network in cloud calculating data center
CN103795805A (en) * 2014-02-27 2014-05-14 中国科学技术大学苏州研究院 Distributed server load balancing method based on SDN
CN103814554A (en) * 2013-12-11 2014-05-21 华为技术有限公司 Communication method, device and system of virtual extensible local area network
CN103888369A (en) * 2014-04-10 2014-06-25 何顺民 Ethernet communication method and system and SDN exchanger
CN103973568A (en) * 2013-02-05 2014-08-06 上海贝尔股份有限公司 Method and equipment for forwarding SDN (software defined network) flow on MPLS (multi-protocol label switching) core network
CN104022953A (en) * 2013-02-28 2014-09-03 杭州华三通信技术有限公司 Message forwarding method and device based on Open Flow
CN104022960A (en) * 2013-02-28 2014-09-03 杭州华三通信技术有限公司 Method and device realizing PVLAN through OpenFlow protocol
CN104052644A (en) * 2013-03-14 2014-09-17 国际商业机器公司 Method and system for packet distribution in a virtual networking system
WO2014139383A1 (en) * 2013-03-12 2014-09-18 International Business Machines Corporation Virtual gateways and implicit routing in distributed overlay virtual environments
CN104079492A (en) * 2013-03-28 2014-10-01 华为技术有限公司 Method, device and system of configuring flow table in OpenFlow network
CN104113513A (en) * 2013-04-19 2014-10-22 华为技术有限公司 Host computer discovering method, device and system
CN104115453A (en) * 2013-12-31 2014-10-22 华为技术有限公司 Method and device for achieving virtual machine communication
CN104144082A (en) * 2013-05-08 2014-11-12 杭州华三通信技术有限公司 Method for detecting loop in two-layer network and controller
CN104185972A (en) * 2012-03-05 2014-12-03 日本电气株式会社 Network system, switch, and network building method
CN104202264A (en) * 2014-07-31 2014-12-10 华为技术有限公司 Carrying resource allocation method for clouded data center network, device and system
CN104253770A (en) * 2013-06-27 2014-12-31 杭州华三通信技术有限公司 Method and equipment for realizing distributed virtual switch system
CN104283756A (en) * 2013-07-02 2015-01-14 杭州华三通信技术有限公司 Method and device for realizing distributed type multi-tenant virtual network
CN104301246A (en) * 2014-10-27 2015-01-21 盛科网络(苏州)有限公司 Large-flow load balanced forwarding method and device based on SDN
WO2015006970A1 (en) * 2013-07-19 2015-01-22 华为技术有限公司 Switching device, controller, and method and system for switching device configuration and packet processing
WO2015014187A1 (en) * 2013-07-31 2015-02-05 华为技术有限公司 Data forwarding method and apparatus that support multiple tenants
CN104363170A (en) * 2014-11-25 2015-02-18 杭州华三通信技术有限公司 Data flow forwarding method and device in software defined network (SDN)
CN104518993A (en) * 2014-12-29 2015-04-15 华为技术有限公司 Allocation method, device and system for communication paths of cloud network
CN104618240A (en) * 2013-11-05 2015-05-13 国际商业机器公司 Dynamic multipath forwarding in software defined data center networks
WO2015081734A1 (en) * 2013-12-04 2015-06-11 华为技术有限公司 Sending method for sending arp packet in vxlan, vtep, and vxlan controller
CN104735001A (en) * 2013-12-24 2015-06-24 中兴通讯股份有限公司 Link discovery method, device and system in software-defined network
WO2015089985A1 (en) * 2013-12-19 2015-06-25 中兴通讯股份有限公司 Service processing method, network controller and forwarding device
CN104753751A (en) * 2013-12-27 2015-07-01 中兴通讯股份有限公司 Method and system for dynamically determining virtual network
CN104811382A (en) * 2014-01-28 2015-07-29 华为技术有限公司 Data packet processing method and device
WO2015117385A1 (en) * 2014-07-25 2015-08-13 中兴通讯股份有限公司 Network virtualization processing method, device and system
US9112801B2 (en) 2013-03-15 2015-08-18 International Business Machines Corporation Quantized congestion notification in a virtual networking system
CN104869058A (en) * 2015-06-04 2015-08-26 北京京东尚科信息技术有限公司 Method and device for transmitting data message
US9143582B2 (en) 2013-03-08 2015-09-22 International Business Machines Corporation Interoperability for distributed overlay virtual environments
CN104935516A (en) * 2015-06-17 2015-09-23 武汉邮电科学研究院 Communication system based on software defined network and communication method
CN104954281A (en) * 2014-03-31 2015-09-30 中国移动通信集团公司 Communication method, system thereof, resource pool management system, switches, and control device
CN105227462A (en) * 2014-06-11 2016-01-06 上海贝尔股份有限公司 Method and equipment for updating OpenFlow flow table
CN105245363A (en) * 2015-09-23 2016-01-13 盛科网络(苏州)有限公司 Open Flow based linear protection method
CN105323077A (en) * 2014-07-01 2016-02-10 上海宽带技术及应用工程研究中心 Network broadcast method and system based on Openflow technology
WO2016045608A1 (en) * 2014-09-26 2016-03-31 Hangzhou H3C Technologies Co., Ltd. Processing a flow entry in vxlan
CN105577723A (en) * 2014-10-16 2016-05-11 杭州华三通信技术有限公司 Method of realizing load sharing in virtualization network and apparatus thereof
CN105591974A (en) * 2014-10-20 2016-05-18 华为技术有限公司 Message processing method, device and system
CN105594180A (en) * 2014-01-29 2016-05-18 华为技术有限公司 Inter-node communication processing method and routing determination node
US9350607B2 (en) 2013-09-25 2016-05-24 International Business Machines Corporation Scalable network configuration with consistent updates in software defined networks
CN105612722A (en) * 2013-09-13 2016-05-25 微软技术许可有限责任公司 Virtual network routing
CN105637910A (en) * 2014-01-29 2016-06-01 华为技术有限公司 Downlink data processing method, device and system
CN105656814A (en) * 2016-02-03 2016-06-08 浪潮(北京)电子信息产业有限公司 SDN (Software-Defined Network) forwarding system and method
CN105993149A (en) * 2013-11-28 2016-10-05 Kt株式会社 Method and apparatus for dynamic traffic control in SDN environment
CN106302182A (en) * 2015-06-08 2017-01-04 上海宽带技术及应用工程研究中心 Host discovery method and system based on SDN
CN106302466A (en) * 2016-08-17 2017-01-04 东软集团股份有限公司 Management method and system for firewall
CN106487687A (en) * 2015-08-28 2017-03-08 电信科学技术研究院 Method and device for determining transmission path in SoftNet network
TWI636679B (en) * 2017-02-07 2018-09-21 財團法人工業技術研究院 Virtual LAN configuration system and method and computer program product
US10263889B2 (en) 2014-12-17 2019-04-16 Huawei Technologies Co., Ltd. Data forwarding method, device, and system in software-defined networking
CN106302466B (en) * 2016-08-17 2019-04-26 东软集团股份有限公司 A kind of management method and system of firewall

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103974380B (en) * 2013-01-24 2018-05-15 新华三技术有限公司 A terminal access location method and apparatus for keep alive
CN104980373B (en) * 2014-04-04 2018-06-19 上海宽带技术及应用工程研究中心 System and method for its application control server
CN105474587B (en) * 2014-06-19 2019-02-12 华为技术有限公司 A kind of method and device sending data packet
CN104219240B (en) * 2014-09-03 2018-01-09 新华三技术有限公司 Host learning one kind of method and apparatus
CN104410541B (en) * 2014-11-18 2017-09-15 盛科网络(苏州)有限公司 Method and apparatus Vxlan inner virtual machine traffic statistics on the intermediate switch
CN106549871A (en) * 2015-09-22 2017-03-29 华为技术有限公司 Message processing method and system, and devices

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101478803A (en) * 2009-01-21 2009-07-08 东北大学 Self-organizing QoS routing method based on ant colony algorithm
CN101595688A (en) * 2007-01-30 2009-12-02 微软公司 Private virtual LAN spanning a public network for connection of arbitrary hosts
US7693048B1 (en) * 2001-12-14 2010-04-06 Cisco Technology, Inc. Enhanced internal router redundancy
US20110019676A1 (en) * 2009-07-21 2011-01-27 Cisco Technology, Inc. Extended subnets
US20110235545A1 (en) * 2009-03-26 2011-09-29 Force 10 Networks, Inc. MAC-Address Based Virtual Route Aggregation
CN102215158A (en) * 2010-04-08 2011-10-12 杭州华三通信技术有限公司 Method for realizing VRRP (Virtual Router Redundancy Protocol) flow transmission and routing equipment
WO2011162215A1 (en) * 2010-06-23 2011-12-29 日本電気株式会社 Communication system, control apparatus, node control method and program
WO2012023604A1 (en) * 2010-08-20 2012-02-23 日本電気株式会社 Communication system, control apparatus, communication method and program
CN102546428A (en) * 2012-02-03 2012-07-04 神州数码网络(北京)有限公司 System and method for internet protocol version 6 (IPv6) message switching based on dynamic host configuration protocol for IPv6 (DHCPv6) interception

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102857416B (en) * 2012-09-18 2016-09-28 中兴通讯股份有限公司 A method for implementing virtual networks, and virtual network controller

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7693048B1 (en) * 2001-12-14 2010-04-06 Cisco Technology, Inc. Enhanced internal router redundancy
CN101595688A (en) * 2007-01-30 2009-12-02 微软公司 Private virtual LAN spanning a public network for connection of arbitrary hosts
CN101478803A (en) * 2009-01-21 2009-07-08 东北大学 Self-organizing QoS routing method based on ant colony algorithm
US20110235545A1 (en) * 2009-03-26 2011-09-29 Force 10 Networks, Inc. MAC-Address Based Virtual Route Aggregation
US20110019676A1 (en) * 2009-07-21 2011-01-27 Cisco Technology, Inc. Extended subnets
CN102215158A (en) * 2010-04-08 2011-10-12 杭州华三通信技术有限公司 Method for realizing VRRP (Virtual Router Redundancy Protocol) flow transmission and routing equipment
WO2011162215A1 (en) * 2010-06-23 2011-12-29 日本電気株式会社 Communication system, control apparatus, node control method and program
WO2012023604A1 (en) * 2010-08-20 2012-02-23 日本電気株式会社 Communication system, control apparatus, communication method and program
CN102546428A (en) * 2012-02-03 2012-07-04 神州数码网络(北京)有限公司 System and method for internet protocol version 6 (IPv6) message switching based on dynamic host configuration protocol for IPv6 (DHCPv6) interception

Cited By (109)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104185972A (en) * 2012-03-05 2014-12-03 日本电气株式会社 Network system, switch, and network building method
US9548933B2 (en) 2012-03-05 2017-01-17 Nec Corporation Network system, switch, and methods of network configuration
WO2013185715A1 (en) * 2012-09-18 2013-12-19 中兴通讯股份有限公司 Method for implementing virtual network and virtual network
CN103973568B (en) * 2013-02-05 2017-03-08 上海贝尔股份有限公司 Method and apparatus for forwarding sdn flow in the core network mpls
CN103973568A (en) * 2013-02-05 2014-08-06 上海贝尔股份有限公司 Method and equipment for forwarding SDN (software defined network) flow on MPLS (multi-protocol label switching) core network
CN104022953A (en) * 2013-02-28 2014-09-03 杭州华三通信技术有限公司 Message forwarding method and device based on Open Flow
US9565104B2 (en) 2013-02-28 2017-02-07 Hewlett Packard Enterprise Development Lp Switch controller
WO2014131274A1 (en) * 2013-02-28 2014-09-04 Hangzhou H3C Technologies Co., Ltd. Vepa switch message forwarding
CN104022960B (en) * 2013-02-28 2017-05-31 新华三技术有限公司 Based on the method and apparatus of OpenFlow protocol PVLAN
CN104022960A (en) * 2013-02-28 2014-09-03 杭州华三通信技术有限公司 Method and device realizing PVLAN through OpenFlow protocol
CN104022953B (en) * 2013-02-28 2018-02-09 新华三技术有限公司 Based packet forwarding method and apparatus of the open flow Openflow
US9749145B2 (en) 2013-03-08 2017-08-29 International Business Machines Corporation Interoperability for distributed overlay virtual environment
US9143582B2 (en) 2013-03-08 2015-09-22 International Business Machines Corporation Interoperability for distributed overlay virtual environments
US9374316B2 (en) 2013-03-08 2016-06-21 International Business Machines Corporation Interoperability for distributed overlay virtual environment
WO2014139383A1 (en) * 2013-03-12 2014-09-18 International Business Machines Corporation Virtual gateways and implicit routing in distributed overlay virtual environments
US9923732B2 (en) 2013-03-12 2018-03-20 International Business Machines Corporation Virtual gateways and implicit routing in distributed overlay virtual environments
US9432287B2 (en) 2013-03-12 2016-08-30 International Business Machines Corporation Virtual gateways and implicit routing in distributed overlay virtual environments
CN104052644A (en) * 2013-03-14 2014-09-17 国际商业机器公司 Method and system for packet distribution in a virtual networking system
US9602307B2 (en) 2013-03-14 2017-03-21 International Business Machines Corporation Tagging virtual overlay packets in a virtual networking system
US9374241B2 (en) 2013-03-14 2016-06-21 International Business Machines Corporation Tagging virtual overlay packets in a virtual networking system
US9112801B2 (en) 2013-03-15 2015-08-18 International Business Machines Corporation Quantized congestion notification in a virtual networking system
CN104079492A (en) * 2013-03-28 2014-10-01 华为技术有限公司 Method, device and system of configuring flow table in OpenFlow network
CN104079492B (en) * 2013-03-28 2017-10-10 华为技术有限公司 A method of flow table OpenFlow network configuration, apparatus and system
US9755967B2 (en) 2013-03-28 2017-09-05 Huawei Technologies Co., Ltd. Method, apparatus, and system for configuring flow table in OpenFlow network
CN104113513B (en) * 2013-04-19 2018-01-02 华为技术有限公司 One kind of host discovery method, apparatus and system for
CN104113513A (en) * 2013-04-19 2014-10-22 华为技术有限公司 Host computer discovering method, device and system
CN104144082A (en) * 2013-05-08 2014-11-12 杭州华三通信技术有限公司 Method for detecting loop in two-layer network and controller
CN104144082B (en) * 2013-05-08 2017-10-27 新华三技术有限公司 The method of detecting the Layer 2 network loop, and a controller
CN103580909A (en) * 2013-05-22 2014-02-12 杭州华三通信技术有限公司 Method and device for customizing hardware resource
CN103580909B (en) * 2013-05-22 2018-06-19 新华三技术有限公司 Customization of hardware resources, methods and devices
CN104253770B (en) * 2013-06-27 2017-07-14 新华三技术有限公司 Method and apparatus for implementing distributed virtual switching system
CN104253770A (en) * 2013-06-27 2014-12-31 杭州华三通信技术有限公司 Method and equipment for realizing distributed virtual switch system
CN104283756B (en) * 2013-07-02 2017-12-15 新华三技术有限公司 Method and apparatus for implementing a distributed multi-tenant virtual networks
CN104283756A (en) * 2013-07-02 2015-01-14 杭州华三通信技术有限公司 Method and device for realizing distributed type multi-tenant virtual network
RU2628476C1 (en) * 2013-07-19 2017-08-17 Хуавэй Текнолоджиз Ко., Лтд. Switching device, controller, switching device configuration method and method and system for the package processing
WO2015006970A1 (en) * 2013-07-19 2015-01-22 华为技术有限公司 Switching device, controller, and method and system for switching device configuration and packet processing
US10103988B2 (en) 2013-07-19 2018-10-16 Huawei Technologies Co., Ltd. Switching device, controller, method for configuring switching device, and method and system for processing packet
WO2015014187A1 (en) * 2013-07-31 2015-02-05 华为技术有限公司 Data forwarding method and apparatus that support multiple tenants
CN104348724A (en) * 2013-07-31 2015-02-11 华为技术有限公司 Multi-tenant supporting data forwarding method and device
CN105612722A (en) * 2013-09-13 2016-05-25 微软技术许可有限责任公司 Virtual network routing
US9350607B2 (en) 2013-09-25 2016-05-24 International Business Machines Corporation Scalable network configuration with consistent updates in software defined networks
CN104618240A (en) * 2013-11-05 2015-05-13 国际商业机器公司 Dynamic multipath forwarding in software defined data center networks
CN104618240B (en) * 2013-11-05 2017-09-26 国际商业机器公司 Method and apparatus for network definition data center software dynamic multipath forwarding
US9112794B2 (en) 2013-11-05 2015-08-18 International Business Machines Corporation Dynamic multipath forwarding in software defined data center networks
CN103607348A (en) * 2013-11-27 2014-02-26 北京邮电大学 Virtual network flow classifying method based on OpenFlow protocol
CN103746892A (en) * 2013-11-27 2014-04-23 北京邮电大学 SDN virtualization platform uplink signaling flow label processing method based on OpenFlow
CN103746892B (en) * 2013-11-27 2016-01-13 北京邮电大学 OpenFlow-based SDN virtualization platform uplink signaling flow label processing method
CN105993149A (en) * 2013-11-28 2016-10-05 Kt株式会社 Method and apparatus for dynamic traffic control in SDN environment
WO2015081734A1 (en) * 2013-12-04 2015-06-11 华为技术有限公司 Sending method for sending arp packet in vxlan, vtep, and vxlan controller
CN103814554A (en) * 2013-12-11 2014-05-21 华为技术有限公司 Communication method, device and system of virtual extensible local area network
US9992717B2 (en) 2013-12-19 2018-06-05 Zte Corporation Service processing method, network controller and forwarding device
WO2015089985A1 (en) * 2013-12-19 2015-06-25 中兴通讯股份有限公司 Service processing method, network controller and forwarding device
CN104735001A (en) * 2013-12-24 2015-06-24 中兴通讯股份有限公司 Link discovery method, device and system in software-defined network
WO2015096421A1 (en) * 2013-12-27 2015-07-02 中兴通讯股份有限公司 Method and system for dynamically determining virtual network, and storage medium
CN104753751A (en) * 2013-12-27 2015-07-01 中兴通讯股份有限公司 Method and system for dynamically determining virtual network
CN104115453A (en) * 2013-12-31 2014-10-22 华为技术有限公司 Method and device for achieving virtual machine communication
AU2014366588B2 (en) * 2013-12-31 2016-05-12 Huawei Technologies Co., Ltd. Method and apparatus for implementing communication between virtual machines
CN103701822A (en) * 2013-12-31 2014-04-02 曙光云计算技术有限公司 Access control method
US9577958B2 (en) 2013-12-31 2017-02-21 Huawei Technologies Co., Ltd. Method and apparatus for implementing communication between virtual machines
WO2015100953A1 (en) * 2013-12-31 2015-07-09 华为技术有限公司 Method and device for implementing virtual machine communication
WO2015100656A1 (en) * 2013-12-31 2015-07-09 华为技术有限公司 Method and device for implementing virtual machine communication
CN105791463A (en) * 2013-12-31 2016-07-20 华为技术有限公司 Method and device for achieving communication of virtual machine
CN104115453B (en) * 2013-12-31 2016-06-22 华为技术有限公司 A method and apparatus for implementing a virtual machine communication
US10003571B2 (en) 2013-12-31 2018-06-19 Huawei Technologies Co., Ltd. Method and apparatus for implementing communication between virtual machines
US9325615B2 (en) 2013-12-31 2016-04-26 Huawei Technologies Co., Ltd. Method and apparatus for implementing communication between virtual machines
CN103763367A (en) * 2014-01-17 2014-04-30 浪潮(北京)电子信息产业有限公司 Method and system for designing distributed virtual network in cloud calculating data center
CN104811382B (en) * 2014-01-28 2018-05-29 华为技术有限公司 A packet processing method and apparatus
CN104811382A (en) * 2014-01-28 2015-07-29 华为技术有限公司 Data packet processing method and device
WO2015113410A1 (en) * 2014-01-28 2015-08-06 华为技术有限公司 Data packet processing method and apparatus
CN105594180A (en) * 2014-01-29 2016-05-18 华为技术有限公司 Inter-node communication processing method and routing determination node
CN105637910A (en) * 2014-01-29 2016-06-01 华为技术有限公司 Downlink data processing method, device and system
CN103795805A (en) * 2014-02-27 2014-05-14 中国科学技术大学苏州研究院 Distributed server load balancing method based on SDN
CN103795805B (en) * 2014-02-27 2017-08-25 中国科学技术大学苏州研究院 Distributed server load balancing method of sdn
CN104954281A (en) * 2014-03-31 2015-09-30 中国移动通信集团公司 Communication method, system thereof, resource pool management system, switches, and control device
CN104954281B (en) * 2014-03-31 2018-08-03 中国移动通信集团公司 The communication method, system, resource pool management system, and the switch control means
CN103888369A (en) * 2014-04-10 2014-06-25 何顺民 Ethernet communication method and system and SDN exchanger
CN103888369B (en) * 2014-04-10 2019-02-05 广州市高科通信技术股份有限公司 Ethernet communication method, system and SDN switch
CN105227462A (en) * 2014-06-11 2016-01-06 上海贝尔股份有限公司 Method and equipment for updating OpenFlow flow table
CN105227462B (en) * 2014-06-11 2018-06-29 上海诺基亚贝尔股份有限公司 Kinds of method and apparatus for updating flow table OpenFlow
CN105323077B (en) * 2014-07-01 2018-08-31 上海宽带技术及应用工程研究中心 A broadcast network based method and system technology Openflow
CN105323077A (en) * 2014-07-01 2016-02-10 上海宽带技术及应用工程研究中心 Network broadcast method and system based on Openflow technology
WO2015117385A1 (en) * 2014-07-25 2015-08-13 中兴通讯股份有限公司 Network virtualization processing method, device and system
CN105282004A (en) * 2014-07-25 2016-01-27 中兴通讯股份有限公司 Network virtualization processing method, device and system
WO2016015559A1 (en) * 2014-07-31 2016-02-04 华为技术有限公司 Bearer resource allocation method, apparatus and system for cloudified data center network
CN104202264A (en) * 2014-07-31 2014-12-10 华为技术有限公司 Carrying resource allocation method for clouded data center network, device and system
WO2016045608A1 (en) * 2014-09-26 2016-03-31 Hangzhou H3C Technologies Co., Ltd. Processing a flow entry in vxlan
CN105515992A (en) * 2014-09-26 2016-04-20 杭州华三通信技术有限公司 Method and device for processing flow table items of VXLAN network
CN105577723B (en) * 2014-10-16 2019-04-05 新华三技术有限公司 Virtualize the method and apparatus that load balancing is realized in network
CN105577723A (en) * 2014-10-16 2016-05-11 杭州华三通信技术有限公司 Method of realizing load sharing in virtualization network and apparatus thereof
CN105591974A (en) * 2014-10-20 2016-05-18 华为技术有限公司 Message processing method, device and system
CN105591974B (en) * 2014-10-20 2019-02-05 华为技术有限公司 Message processing method, apparatus and system
CN104301246A (en) * 2014-10-27 2015-01-21 盛科网络(苏州)有限公司 Large-flow load balanced forwarding method and device based on SDN
CN104363170A (en) * 2014-11-25 2015-02-18 杭州华三通信技术有限公司 Data flow forwarding method and device in software defined network (SDN)
CN104363170B (en) * 2014-11-25 2017-08-11 新华三技术有限公司 Data forwarding method and apparatus for software-defined network
US10263889B2 (en) 2014-12-17 2019-04-16 Huawei Technologies Co., Ltd. Data forwarding method, device, and system in software-defined networking
CN104518993A (en) * 2014-12-29 2015-04-15 华为技术有限公司 Allocation method, device and system for communication paths of cloud network
WO2016107418A1 (en) * 2014-12-29 2016-07-07 华为技术有限公司 Allocation method, apparatus and system for cloud network communication path
CN104869058A (en) * 2015-06-04 2015-08-26 北京京东尚科信息技术有限公司 Method and device for transmitting data message
CN106302182A (en) * 2015-06-08 2017-01-04 上海宽带技术及应用工程研究中心 Host discovery method and system based on SDN
CN104935516B (en) * 2015-06-17 2018-05-11 武汉邮电科学研究院 Software-defined network communication system and method based on
CN104935516A (en) * 2015-06-17 2015-09-23 武汉邮电科学研究院 Communication system based on software defined network and communication method
CN106487687A (en) * 2015-08-28 2017-03-08 电信科学技术研究院 Method and device for determining transmission path in SoftNet network
CN105245363A (en) * 2015-09-23 2016-01-13 盛科网络(苏州)有限公司 Open Flow based linear protection method
CN105245363B (en) * 2015-09-23 2019-01-25 盛科网络(苏州)有限公司 Linear protection method based on OpenFlow
CN105656814A (en) * 2016-02-03 2016-06-08 浪潮(北京)电子信息产业有限公司 SDN (Software-Defined Network) forwarding system and method
CN105656814B (en) * 2016-02-03 2019-01-01 浪潮(北京)电子信息产业有限公司 A kind of SDN network repeater system and method
CN106302466B (en) * 2016-08-17 2019-04-26 东软集团股份有限公司 A kind of management method and system of firewall
CN106302466A (en) * 2016-08-17 2017-01-04 东软集团股份有限公司 Management method and system for firewall
TWI636679B (en) * 2017-02-07 2018-09-21 財團法人工業技術研究院 Virtual LAN configuration system and method and computer program product

Also Published As

Publication number Publication date
CN102857416B (en) 2016-09-28
WO2013185715A1 (en) 2013-12-19

Similar Documents

Publication Publication Date Title
EP2829031B1 (en) Virtual router terminating an overlay tunnel in a storage area network
CN104580024B (en) Extended Ethernet interconnect fabric switch
US9794084B2 (en) Method and apparatus for implementing a flexible virtual local area network
JP5864758B2 (en) System and method for controlling the network traffic through the virtual switch
US8811409B2 (en) Routing VLAN tagged packets to far end addresses of virtual forwarding instances using separate administrations
CN104937885B (en) Global VLAN for fabric switch
CN101827009B (en) Routing frames in a trill network using service vlan identifiers
EP2777220B1 (en) Method to carry fcoe frames over a trill based network
EP2600573B1 (en) Method for transmitting addresses correspondence relationship in second-layer protocol using link status routing
US8953590B1 (en) Layer two virtual private network having control plane address learning supporting multi-homed customer networks
US20160006651A1 (en) Stacking Metadata Contexts for Service Chains
CN102986172B (en) Virtual Chassis
EP2618535A1 (en) Method and system for realizing virtual machine mobility
US8948181B2 (en) System and method for optimizing next-hop table space in a dual-homed network environment
CN102918808B (en) VLAN information the transmission station in the virtual interface discovery and configuration protocol Method
US20180173557A1 (en) Physical path determination for virtual network packet flows
Mudigonda et al. NetLord: a scalable multi-tenant network architecture for virtualized datacenters
CN104350467B (en) Cloud security of the elastic layer implementation using sdn
US9397942B2 (en) Packet forwarding
EP3072264B1 (en) Method for performing network service insertion
US7260648B2 (en) Extension of address resolution protocol (ARP) for internet protocol (IP) virtual networks
CN102594711B (en) Message forwarding method and edge device therefor
US9497123B2 (en) Method and system for load balancing in a software-defined networking (SDN) system upon server reconfiguration
JP6004405B2 (en) System and method for managing network packet transfer controller
US7593352B2 (en) Discovering MPLS VPN services in a network

Legal Events

Date Code Title Description
C06 Publication
C10 Entry into substantive examination
C14 Grant of patent or utility model