CN103023783B - A kind of data transmission method and equipment based on DVPN - Google Patents
A kind of data transmission method and equipment based on DVPN Download PDFInfo
- Publication number
- CN103023783B CN103023783B CN201210507271.7A CN201210507271A CN103023783B CN 103023783 B CN103023783 B CN 103023783B CN 201210507271 A CN201210507271 A CN 201210507271A CN 103023783 B CN103023783 B CN 103023783B
- Authority
- CN
- China
- Prior art keywords
- spoke
- neighbours
- data
- equipment
- messages
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a kind of data transmission method based on DVPN and equipment, this method includes:Spoke sends Cost Request messages to neighbours Spoke;The Spoke receives the Cost values carried in the Cost Response messages that the neighbours Spoke is returned, the Cost Response messages between the neighbours Spoke and purpose Spoke;The Spoke compares Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke, and when needing to send data to the purpose Spoke, data are sent to the purpose Spoke by the minimum path of Cost values.In the present invention, the forward delay of data can be reduced.
Description
Technical field
It is more particularly to a kind of to be based on DVPN the present invention relates to communication technical field(DynamicVirtualPrivateNetwork, Dynamic VPN network)Data transmission method and equipment.
Background technology
Increasing enterprise is desirable with public network and sets up VPN(VirtualPrivateNetwork, VPN), multiple branches different to connect geographical position;But enterprise branch office generally accesses public network using dynamic address so that communication one end can not know the public network address of opposite end in advance, problem is proposed to set up VPN.DVPN technologies are proposed for this, it passes through NHRP(NextHopResolutionProtocol, Next Hop Resolution Protocol)Or VAM(VPNAddressManagement, VPN address administration)Agreement is collected, safeguards and distribute the public network address information of dynamic change, so that in the case where each branch of enterprise network uses dynamic address access public network, VPN is set up between each branch.
DVPN includes Full-Mesh(Full interconnection)Network, in Full-Mesh networks, can set up direct between Spoke(It is direct-connected)Tunnel is directly communicated, and Hub is mainly as the center of Routing Information Exchange;Specifically, Spoke is to Server(Server)Hub information can be obtained after registration, and permanent tunnel is set up with Hub and is connected;And direct tunnels can be set up between any two Spoke, the direct tunnels are dynamic, need to be deleted when not having data interaction within one section of stipulated time.
In Full-Mesh networks, tunnel establishment procedure comprises the following steps:
Step 1, Site as shown in Figure 1(Node)The original state schematic diagram of access network;In an initial condition, each Site is linked into network, but does not set up tunnel each other.
Step 2, Site as shown in Figure 2 register schematic diagram to Server;During each Site is registered to Server, each Site by the interaction of registration request message and back message, can obtain Hub or Spoke identity, and set up between Spoke and Hub tunnel;Wherein, the Server can be NHS(The mode realized corresponding to NHRP)Or VAMServer(The mode realized corresponding to VAM).
Direct tunnels schematic diagram is set up between step 3, Spoke as shown in Figure 3;During direct tunnels are set up between Spoke, assuming that Spoke1 is connected with PC1, Spoke2 is connected with PC2, when PC1 needs to send data to PC2, Spoke1 sends next-hop analysis request message to Server, the public network address that Server registers Spoke2 is by next-hop resolution response message notifying to Spoke1, and Spoke1 can set up the direct tunnels to Spoke2 using Spoke2 public network address afterwards.
All set up after direct tunnels between all Spoke, a Full-Mesh network can be formed, as shown in figure 4, being the schematic diagram of Full-Mesh networks;The network includes the direct tunnels between tunnel and Spoke and Spoke between Spoke and Hub;Now, the data between each Spoke can be forwarded directly by the direct tunnels between Spoke, without carrying out transfer by Hub.
In the prior art, between Spoke when carrying out data forwarding by direct tunnels, the not necessarily most short forward-path in direct tunnels between Spoke.As shown in figure 5, being Full-Mesh forwardeds path Cost(Expense)Schematic diagram;The direct tunnels that Spoke1 reaches Spoke2 need experience 8 to jump(This forward-path passes through 8 routers or three-tier switch), and Spoke1 to Hub to Spoke2 path needs experience 2+4=6 to jump, Spoke1 to Spoke3 to Spoke2 path needs experience 2+2=4 to jump.
The content of the invention
The present invention provides a kind of data transmission method and equipment based on DVPN, to transmit data by less path cost, and reduces the forward delay of data.
In order to achieve the above object, the embodiment of the present invention provides a kind of data transmission method based on Dynamic VPN network DVPN, applied in the network including multiple Spoke, safeguard there are neighbours' expense Cost tables on each Spoke, the Cost values between this equipment and neighbours Spoke are have recorded in the neighbours Cost tables, this method comprises the following steps:
Spoke sends the information that purpose Spoke is carried in expense request CostRequest messages, the CostRequest messages to neighbours Spoke;By the neighbours Spoke after the CostRequest messages are received, using neighbours' Cost tables of the information inquiry local maintenance of the purpose Spoke, the Cost values between this equipment and the purpose Spoke are obtained;
The Spoke receives the Cost values carried in the expense response CostResponse messages that neighbours Spoke is returned, the CostResponse messages between the neighbours Spoke and the purpose Spoke;
The Spoke compares Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke, and when needing to send data to the purpose Spoke, data are sent to the purpose Spoke by the minimum path of Cost values.
Also include server in the network, the process of each Spoke maintenance of neighbor Cost tables further comprises:Each Spoke is received in the registration reply message from the server, the registration reply message during registration is initiated to the server and is carried life span ttl value N;
Each Spoke sends in keep-alive Keepalive messages, the Keepalive messages to the neighbours Spoke of this equipment and carries the ttl value N;
Each Spoke obtains the ttl value M carried in Keepalive messages, and determine that the Cost values between this equipment and neighbours Spoke are after the Keepalive messages from neighbours Spoke are received(N-M);
Each Spoke records the information and the Cost values of the neighbours Spoke in neighbours' Cost tables of local maintenance(N-M)Between corresponding relation.
The information of the purpose Spoke includes purpose Spoke public network address;The Spoke sends the process that expense asks CostRequest messages to neighbours Spoke, further comprises:
The Spoke sends the CostRequest messages for the public network address for carrying the purpose Spoke to neighbours Spoke when needing to send data to purpose Spoke.
The Spoke sends data by the minimum path of Cost values to the purpose Spoke, specifically includes:When the Spoke is the Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, first layer encapsulation is carried out to the data by the direct tunnel address between the Spoke and purpose Spoke, and the data after being encapsulated by the direct tunnel address between the Spoke and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to the neighbours Spoke;
By the neighbours Spoke in the data after receiving second layer encapsulation, solution second layer encapsulation obtains the data after first layer encapsulation, and the data after first layer is encapsulated are sent to the purpose Spoke.
The Spoke sends data by the minimum path of Cost values to the purpose Spoke, specifically includes:When the Spoke is the Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, the data are packaged by the direct tunnel address between the Spoke and neighbours Spoke, and the public network address of the purpose Spoke is carried in the specific field of data after packaging, and the data after encapsulation are sent to the neighbours Spoke;
By the neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in the specific field, and amended data are sent to the purpose Spoke.
The embodiment of the present invention provides a kind of data transmission set based on Dynamic VPN network DVPN, and as Spoke applied in the network for including multiple Spoke, the equipment includes:
Maintenance module, for maintenance of neighbor expense Cost tables, have recorded the Cost values between this equipment and neighbours Spoke in the neighbours Cost tables;
Message sending module, purpose Spoke information is carried for being sent to neighbours Spoke in expense request CostRequest messages, the CostRequest messages;By the neighbours Spoke after the CostRequest messages are received, using neighbours' Cost tables of the information inquiry local maintenance of the purpose Spoke, the Cost values between this equipment and the purpose Spoke are obtained;
Receiver module, the expense for receiving neighbours Spoke returns responds the Cost values carried in CostResponse messages, the CostResponse messages between the neighbours Spoke and purpose Spoke;
Comparison module, for comparing Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke;
Data transmission blocks, for when needing to send data to the purpose Spoke, data to be sent to the purpose Spoke by the minimum path of Cost values.
Also include server in the network;The maintenance module, is further used for during registration is initiated to the server, receiving in the registration reply message from the server, and the registration reply message and carrying life span ttl value N;Sent to the neighbours Spoke of this equipment in keep-alive Keepalive messages, the Keepalive messages and carry the ttl value N;After the Keepalive messages from neighbours Spoke are received, the ttl value M carried in Keepalive messages is obtained, and determine that the Cost values between this equipment and neighbours Spoke are(N-M);The information and the Cost values of the neighbours Spoke is recorded in neighbours' Cost tables of local maintenance(N-M)Between corresponding relation.
The information of the purpose Spoke includes the public network address of the purpose Spoke;The message sending module, specifically for when needing to send data to purpose Spoke, the CostRequest messages for the public network address for carrying the purpose Spoke are sent to neighbours Spoke.
The data transmission blocks, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, first layer encapsulation is carried out to the data by the direct tunnel address between this equipment and purpose Spoke, and the data after being encapsulated by the direct tunnel address between this equipment and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving second layer encapsulation, solution second layer encapsulation obtains the data after first layer encapsulation, and the data after first layer is encapsulated are sent to the purpose Spoke.
The data transmission blocks, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, the data are packaged by the direct tunnel address between this equipment and neighbours Spoke, and the public network address of the purpose Spoke is carried in the specific field of data after packaging, and the data after encapsulation are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in the specific field, and amended data are sent to the purpose Spoke.
Compared with prior art, the embodiment of the present invention at least has advantages below:In the embodiment of the present invention, it can determine the shortest path for forwarding data in DVPN between each Spoke, it is possible to which data are transmitted by shortest path, so as to transmit data with less path cost, and reduce the forward delay of data.
Brief description of the drawings
Fig. 1 be prior art Full-Mesh networks in Site access networks original state schematic diagram;
Fig. 2 be prior art Full-Mesh networks in Site to Server register schematic diagram;
Fig. 3 is to set up direct tunnels schematic diagram between Spoke in the Full-Mesh networks of prior art;
Fig. 4 is the schematic diagram of the Full-Mesh networks of prior art;
Fig. 5 is the Full-Mesh forwardeds path Cost schematic diagrames of prior art;
Fig. 6 is a kind of data transmission method flow chart based on DVPN provided in an embodiment of the present invention;
Fig. 7 is the concrete application scene schematic diagram of the embodiment of the present invention;
Fig. 8 is a kind of data transmission set structure chart based on DVPN that the embodiment of the present invention is proposed.
Embodiment
The embodiment of the present invention is described in detail below in conjunction with the accompanying drawings.
For problems of the prior art, the embodiment of the present invention proposes a kind of data transmission method based on DVPN, and this method can be applied in DVPN Full-Mesh networks;And in Full-Mesh networks, can at least include server(Server)With multiple Spoke(Include Hub and Spoke).
Safeguard there are the Cost values that have recorded in neighbours' Cost tables, and neighbours' Cost tables between this equipment and neighbours Spoke in the embodiment of the present invention, on each Spoke(Forward hop count or policy priority level etc.).Assuming that Full-Mesh networks include Spoke1, Spoke2 and Spoke3, then:The Cost values between Cost values, Spoke1 and the Spoke3 between Spoke1 and Spoke2 are recorded on Spoke1;The Cost values between Cost values, Spoke2 and the Spoke3 between Spoke2 and Spoke1 are recorded on Spoke2;The Cost values between Cost values, Spoke3 and the Spoke2 between Spoke3 and Spoke1 are recorded on Spoke3.
Specifically, for maintenance of neighbor Cost tables on each Spoke, then one kind is preferred embodiment:
Each Spoke receives the registration reply message from server during registration is initiated to server(Registerreplay messages), TTL is carried in the registration reply message(TimeToLive, life span)Value N;Ttl value N is the ttl value of Full-Mesh networks, and in the registration reply message transmitted by each Spoke of the server into the Full-Mesh networks, carries identical ttl value N.
Each Spoke is obtained from server after ttl value N, if each Spoke sets up Full-Mesh tunnel connection(Direct tunnels are set up between i.e. all Spoke), then each Spoke is to the neighbours Spoke transmissions Keepalive of this equipment(Keep-alive)Message(Keepalive messages can regularly be sent), and carry ttl value N in the IP heads of the Keepalive messages;For example, Spoke1 sends the Keepalive messages for carrying ttl value N to Spoke2, and the Keepalive messages for carrying ttl value N are sent to Spoke3;Spoke2 sends the Keepalive messages for carrying ttl value N to Spoke1, and the Keepalive messages for carrying ttl value N are sent to Spoke3;Spoke3 sends the Keepalive messages for carrying ttl value N to Spoke1, and the Keepalive messages for carrying ttl value N are sent to Spoke2.
Each Spoke obtains the ttl value M carried in Keepalive messages, and determine that the Cost values between this equipment and neighbours Spoke are after the Keepalive messages from neighbours Spoke are received(N-M);By taking the processing between Spoke1 and Spoke2 as an example, Spoke1 sends the Keepalive messages for carrying ttl value N by the direct tunnels between this equipment and Spoke2 to Spoke2, and Spoke2 sends the Keepalive messages for carrying ttl value N by the direct tunnels between this equipment and Spoke1 to Spoke1;Spoke1 obtains ttl value M, and determine that the Cost values between Spoke1 and Spoke2 are after the Keepalive messages from Spoke2 are received from the IP heads of Keepalive messages(N-M);Spoke2 obtains ttl value M, and determine that the Cost values between Spoke2 and Spoke1 are after the Keepalive messages from Spoke1 are received from the IP heads of Keepalive messages(N-M).
Each Spoke records neighbours Spoke information in the neighbours' Cost tables locally safeguarded(Such as neighbours Spoke public network address)With Cost values(N-M)Between corresponding relation.For example, on Spoke1 neighbours' Cost tables, Spoke2 public network address and Cost values will be recorded(N-M)Between corresponding relation, and record Spoke3 public network address and Cost values(N-M)Between corresponding relation;On Spoke2 neighbours' Cost tables, Spoke1 public network address and Cost values will be recorded(N-M)Between corresponding relation, and record Spoke3 public network address and Cost values(N-M)Between corresponding relation;On Spoke3 neighbours' Cost tables, Spoke1 public network address and Cost values will be recorded(N-M)Between corresponding relation, and record Spoke2 public network address and Cost values(N-M)Between corresponding relation.
In the embodiment of the present invention, due to being the processing for Full-Mesh networks, therefore Full-Mesh networks each Spoke handled in the manner described above after, neighbours Spoke information and Cost values can record in neighbours' Cost tables of local maintenance(N-M)Between corresponding relation.
Neighbours' Cost tables based on local maintenance, as shown in fig. 6, the data transmission method based on DVPN that the embodiment of the present invention is proposed may comprise steps of:
Step 601, Spoke is to neighbours Spoke(That is other neighbours Spoke outside purpose Spoke)Send CostRequest(Expense is asked)Purpose Spoke information is carried in message, the CostRequest messages;Purpose Spoke information includes but is not limited to purpose Spoke public network address.
In the embodiment of the present invention, Spoke sends the process of CostRequest messages to neighbours Spoke, further comprises:Spoke sends the CostRequest messages for the public network address for carrying purpose Spoke to neighbours Spoke when needing to send data to purpose Spoke;For example, Spoke1 sends the CostRequest messages for the public network address for carrying Spoke2 to neighbours Spoke when needing to send data to Spoke2;Or, Spoke clocked flips send the CostRequest messages for the public network address for carrying purpose Spoke to neighbours Spoke;For example, Spoke1 clocked flips send the CostRequest messages for the public network address for carrying Spoke2 to neighbours Spoke and carry the CostRequest messages of Spoke3 public network address.
Using Fig. 7 as the application scenarios schematic diagram of the embodiment of the present invention, then for Spoke1, when there is data to need to be transmitted to Spoke2 by Spoke1, the Spoke1 is needed to all neighbours Spoke(That is Spoke3, SpokeN and Hub)Send CostRequest messages;Wherein, Spoke2 public network address is carried in the CostRequest messages, and the CostRequest messages are used to make each neighbours Spoke inquire about the Cost values that this equipment reaches Spoke2 direct tunnels.
Step 602, neighbours Spoke, using neighbours' Cost tables of purpose Spoke information inquiry local maintenance, obtains the Cost values between this equipment and purpose Spoke after CostRequest messages are received.
Specifically, information and Cost values due to have recorded neighbours Spoke in neighbours' Cost tables of neighbours' Spoke local maintenances(N-M)Between corresponding relation, therefore neighbours Spoke is after CostRequest messages are received, can be directly using purpose Spoke information inquiry to the corresponding Cost values of purpose Spoke, the corresponding Cost values of purpose Spoke are the Cost values between this equipment and purpose Spoke.
Step 603, neighbours Spoke returns to CostResponse to Spoke(Expense is responded)The Cost values between neighbours Spoke and purpose Spoke are carried in message, the CostResponse messages.
Step 604, Spoke is after CostResponse messages are received, compare Cost values and this equipment between this equipment and purpose Spoke to neighbours Spoke to the Cost values between purpose Spoke, and when needing to send data to purpose Spoke, data are sent to purpose Spoke by the minimum path of Cost values.
As shown in fig. 7, Spoke1 is to all neighbours Spoke(That is Spoke3, SpokeN and Hub)Send after CostRequest messages, the CostResponse messages from all neighbours Spoke can be received;Cost values 2 are carried in CostResponse messages from Spoke3(That is the Cost values between Spoke3 and Spoke2 are 2);Cost values 5 are carried in CostResponse messages from SpokeN(That is the Cost values between SpokeN and Spoke2 are 5);Cost values 4 are carried in CostResponse messages from Hub(That is the Cost values between Hub and Spoke2 are 4).
Based on above-mentioned neighbours Spoke to the Spoke CostResponse messages returned and neighbours' Cost tables of Spoke local maintenances, Spoke1 can be known:Cost values between Spoke1 and Spoke2 be 8, Spoke1 to Spoke3 to the Cost values between Spoke2 be 4(2+2), Spoke1 to SpokeN to the Cost values between Spoke2 is 7(2+5), Spoke1 to Hub to the Cost values between Spoke2 is 6(2+4);By comparing Cost values and this equipment between this equipment and purpose Spoke to neighbours Spoke to the Cost values between purpose Spoke, the minimum path of Cost values is Spoke1 to Spoke3 to Spoke2, therefore Spoke1 can pass through the minimum path of Cost values when needing to send data to Spoke2:Spoke1 to Spoke3 to Spoke2 path sends data to purpose Spoke.
In summary, the embodiment of the present invention can optimize tunnel forward-path, and reduce forwarding delay.For example, Spoke1 to Spoke3 to Spoke2 Cost values are 4, it is shortest path;Now PC1 can be sent to PC2 data and is switched to from direct tunnels on Spoke1 to Spoke3 to Spoke2 tunnel by Spoke1 is forwarded, due to reducing the hop count of forward-path, so as to reduce forward delay.
In the embodiment of the present invention, Spoke is before the CostResponse messages that neighbours Spoke is returned to Spoke are received, if Spoke needs to send data to purpose Spoke, Spoke directly can forward data by the direct tunnels between Spoke and purpose Spoke;Or, Spoke can also forward data by Spoke to Hub to the path between purpose Spoke.
In the embodiment of the present invention, by way of Spoke sends data the minimum path of Cost values to purpose Spoke, following manner is specifically including but not limited to:
When mode one, Spoke are Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, first layer encapsulation is carried out to data by the direct tunnel address between Spoke and purpose Spoke, and the data after being encapsulated by the direct tunnel address between Spoke and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to neighbours Spoke;Further, neighbours Spoke can solve second layer encapsulation in the data after receiving second layer encapsulation, to obtain the data after first layer encapsulation, and the data after first layer is encapsulated are sent to purpose Spoke.
As shown in fig. 7, Spoke1 by the direct tunnel address between Spoke1 and Spoke2 to data(PC1 is sent to PC2 data)First layer encapsulation is carried out, but is not sent, and the data after being encapsulated by the direct tunnel address between Spoke1 and Spoke3 to first layer carry out second layer encapsulation, and the data after the second layer is encapsulated are sent to Spoke3;Spoke3 takes off second layer encapsulation in the data after receiving second layer encapsulation, is reduced to the data after the first layer encapsulation that is packaged by the direct tunnel address between Spoke1 and Spoke2, and the data after first layer is encapsulated are sent to Spoke2.
When mode two, Spoke are Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, data are packaged by the direct tunnel address between Spoke and neighbours Spoke, and purpose Spoke public network address is carried in the specific field of data after packaging, and the data after encapsulation are sent to neighbours Spoke;By neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in specific field, and amended data are sent to purpose Spoke.
As shown in fig. 7, Spoke1 by the direct tunnel address between Spoke1 and Spoke3 to data(PC1 is sent to PC2 data)It is packaged, the specific field of data after packaging(Such as proprietary protocol heading)Middle carrying Spoke2 public network address, and the data after encapsulation are sent to Spoke3;Spoke3 is in the data after receiving encapsulation, if it find that the public network address carried in proprietary protocol heading is not the public network address of this equipment, the then source address of retention data, the public network address that the destination address of data after encapsulation is revised as carrying in proprietary protocol heading, and amended data are sent to Spoke2.
Based on the inventive concept same with the above method, the embodiment of the present invention also proposed a kind of data transmission set based on Dynamic VPN network DVPN, as Spoke applied in the network for including multiple Spoke, as shown in figure 8, the equipment(That is Spoke)Including:
Maintenance module 11, for maintenance of neighbor expense Cost tables, have recorded the Cost values between this equipment and neighbours Spoke in the neighbours Cost tables;
Message sending module 12, purpose Spoke information is carried for being sent to neighbours Spoke in expense request CostRequest messages, the CostRequest messages;By the neighbours Spoke after the CostRequest messages are received, using neighbours' Cost tables of the information inquiry local maintenance of the purpose Spoke, the Cost values between this equipment and the purpose Spoke are obtained;
Receiver module 13, the expense for receiving neighbours Spoke returns responds the Cost values carried in CostResponse messages, the CostResponse messages between neighbours Spoke and purpose Spoke;
Comparison module 14, for comparing Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke;
Data transmission blocks 15, for when needing to send data to the purpose Spoke, data to be sent to the purpose Spoke by the minimum path of Cost values.
Also include server in the network;The maintenance module 11, is further used for during registration is initiated to the server, receiving in the registration reply message from the server, and the registration reply message and carrying life span ttl value N;Sent to the neighbours Spoke of this equipment in keep-alive Keepalive messages, the Keepalive messages and carry the ttl value N;After the Keepalive messages from neighbours Spoke are received, the ttl value M carried in Keepalive messages is obtained, and determine that the Cost values between this equipment and neighbours Spoke are(N-M);The information and the Cost values of the neighbours Spoke is recorded in neighbours' Cost tables of local maintenance(N-M)Between corresponding relation.
The information of the purpose Spoke includes the public network address of the purpose Spoke;The message sending module 12, specifically for when needing to send data to purpose Spoke, the CostRequest messages for the public network address for carrying the purpose Spoke are sent to neighbours Spoke.
The data transmission blocks 15, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, first layer encapsulation is carried out to the data by the direct tunnel address between this equipment and purpose Spoke, and the data after being encapsulated by the direct tunnel address between this equipment and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving second layer encapsulation, solution second layer encapsulation obtains the data after first layer encapsulation, and the data after first layer is encapsulated are sent to the purpose Spoke.
The data transmission blocks 15, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, the data are packaged by the direct tunnel address between this equipment and neighbours Spoke, and the public network address of the purpose Spoke is carried in the specific field of data after packaging, and the data after encapsulation are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in the specific field, and amended data are sent to the purpose Spoke.
Wherein, the modules of apparatus of the present invention can be integrated in one, and can also be deployed separately.Above-mentioned module can merge into a module, can also be further split into multiple submodule.
Through the above description of the embodiments, those skilled in the art can be understood that the present invention can be realized by hardware, the mode of necessary general hardware platform can also be added to realize by software.Understood based on such, technical scheme can be embodied in the form of software product, and the software product can be stored in a non-volatile memory medium(Can be CD-ROM, USB flash disk, mobile hard disk etc.)In, including some instructions are to cause a computer equipment(Can be personal computer, server, or network equipment etc.)Perform the method described in each embodiment of the invention.
It will be appreciated by those skilled in the art that accompanying drawing is the schematic diagram of a preferred embodiment, the module or flow in accompanying drawing are not necessarily implemented necessary to the present invention.
It will be appreciated by those skilled in the art that the module in device in embodiment can carry out being distributed in the device of embodiment according to embodiment description, respective change can also be carried out and be disposed other than in one or more devices of the present embodiment.The module of above-described embodiment can merge into a module, can also be further split into multiple submodule.
The invention described above sequence number is for illustration only, and the quality of embodiment is not represented.
Disclosed above is only several specific embodiments of the present invention, and still, the present invention is not limited to this, and the changes that any person skilled in the art can think of should all fall into protection scope of the present invention.
Claims (8)
1. a kind of data transmission method based on Dynamic VPN network DVPN, applied in the network including multiple access layer equipment Spoke, it is characterized in that, safeguard there are neighbours' expense Cost tables on each Spoke, the Cost values between this equipment and neighbours Spoke are have recorded in the neighbours Cost tables, this method comprises the following steps:
Spoke sends the information that purpose Spoke is carried in expense request CostRequest messages, the CostRequest messages to neighbours Spoke;By the neighbours Spoke after the CostRequest messages are received, using neighbours' Cost tables of the information inquiry local maintenance of the purpose Spoke, the Cost values between this equipment and the purpose Spoke are obtained;
The Spoke receives the Cost values carried in the expense response CostResponse messages that neighbours Spoke is returned, the CostResponse messages between the neighbours Spoke and the purpose Spoke;
The Spoke compares Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke, and when needing to send data to the purpose Spoke, data are sent to the purpose Spoke by the minimum path of Cost values;
Wherein, server is also included in the network, the process of each Spoke maintenance of neighbor Cost tables further comprises:
Each Spoke is received in the registration reply message from the server, the registration reply message during registration is initiated to the server and is carried life span ttl value N;
Each Spoke sends in keep-alive Keepalive messages, the Keepalive messages to the neighbours Spoke of this equipment and carries the ttl value N;
Each Spoke obtains the ttl value M carried in Keepalive messages, and determine that the Cost values between this equipment and neighbours Spoke are N-M after the Keepalive messages from neighbours Spoke are received;
Each Spoke records the corresponding relation between the information of the neighbours Spoke and the Cost values N-M in neighbours' Cost tables of local maintenance.
2. the method as described in claim 1, it is characterised in that the information of the purpose Spoke includes purpose Spoke public network address;The Spoke sends the process that expense asks CostRequest messages to neighbours Spoke, further comprises:
The Spoke sends the CostRequest messages for the public network address for carrying the purpose Spoke to neighbours Spoke when needing to send data to purpose Spoke.
3. the method as described in claim 1, it is characterised in that the Spoke sends data by the minimum path of Cost values to the purpose Spoke, specifically includes:
When the Spoke is the Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, first layer encapsulation is carried out to the data by the direct tunnel address between the Spoke and purpose Spoke, and the data after being encapsulated by the direct tunnel address between the Spoke and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to the neighbours Spoke;
By the neighbours Spoke in the data after receiving second layer encapsulation, solution second layer encapsulation obtains the data after first layer encapsulation, and the data after first layer is encapsulated are sent to the purpose Spoke.
4. the method as described in claim 1, it is characterised in that the Spoke sends data by the minimum path of Cost values to the purpose Spoke, specifically includes:
When the Spoke is the Spoke to neighbours Spoke to purpose Spoke in the minimum path of Cost values, the data are packaged by the direct tunnel address between the Spoke and neighbours Spoke, and the public network address of the purpose Spoke is carried in the specific field of data after packaging, and the data after encapsulation are sent to the neighbours Spoke;
By the neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in the specific field, and amended data are sent to the purpose Spoke.
5. a kind of data transmission set based on Dynamic VPN network DVPN, as Spoke applied in the network for including multiple access layer equipment Spoke, it is characterised in that the equipment includes:
Maintenance module, for maintenance of neighbor expense Cost tables, have recorded the Cost values between this equipment and neighbours Spoke in the neighbours Cost tables;
Message sending module, purpose Spoke information is carried for being sent to neighbours Spoke in expense request CostRequest messages, the CostRequest messages;By the neighbours Spoke after the CostRequest messages are received, using neighbours' Cost tables of the information inquiry local maintenance of the purpose Spoke, the Cost values between this equipment and the purpose Spoke are obtained;
Receiver module, the expense for receiving neighbours Spoke returns responds the Cost values carried in CostResponse messages, the CostResponse messages between the neighbours Spoke and purpose Spoke;
Comparison module, for comparing Cost values and this equipment between this equipment and the purpose Spoke to the neighbours Spoke to the Cost values between the purpose Spoke;
Data transmission blocks, for when needing to send data to the purpose Spoke, data to be sent to the purpose Spoke by the minimum path of Cost values;
Wherein, server is also included in the network;
The maintenance module, is further used for during registration is initiated to the server, receiving in the registration reply message from the server, and the registration reply message and carrying life span ttl value N;Sent to the neighbours Spoke of this equipment in keep-alive Keepalive messages, the Keepalive messages and carry the ttl value N;After the Keepalive messages from neighbours Spoke are received, the ttl value M carried in Keepalive messages is obtained, and determine that the Cost values between this equipment and neighbours Spoke are N-M;The corresponding relation between the information of the neighbours Spoke and the Cost values N-M is recorded in neighbours' Cost tables of local maintenance.
6. equipment as claimed in claim 5, it is characterised in that the information of the purpose Spoke includes the public network address of the purpose Spoke;
The message sending module, specifically for when needing to send data to purpose Spoke, the CostRequest messages for the public network address for carrying the purpose Spoke are sent to neighbours Spoke.
7. equipment as claimed in claim 5, it is characterised in that
The data transmission blocks, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, first layer encapsulation is carried out to the data by the direct tunnel address between this equipment and purpose Spoke, and the data after being encapsulated by the direct tunnel address between this equipment and neighbours Spoke to first layer carry out second layer encapsulation, and data after the second layer is encapsulated are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving second layer encapsulation, solution second layer encapsulation obtains the data after first layer encapsulation, and the data after first layer is encapsulated are sent to the purpose Spoke.
8. equipment as claimed in claim 5, it is characterised in that
The data transmission blocks, when being further used in the minimum path of Cost values as this equipment to neighbours Spoke to purpose Spoke, the data are packaged by the direct tunnel address between this equipment and neighbours Spoke, and the public network address of the purpose Spoke is carried in the specific field of data after packaging, and the data after encapsulation are sent to the neighbours Spoke;By the neighbours Spoke in the data after receiving encapsulation, if it find that the public network address carried in specific field is not the public network address of this equipment, the destination address of data after encapsulation is then revised as to the public network address carried in the specific field, and amended data are sent to the purpose Spoke.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210507271.7A CN103023783B (en) | 2012-12-03 | 2012-12-03 | A kind of data transmission method and equipment based on DVPN |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210507271.7A CN103023783B (en) | 2012-12-03 | 2012-12-03 | A kind of data transmission method and equipment based on DVPN |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103023783A CN103023783A (en) | 2013-04-03 |
| CN103023783B true CN103023783B (en) | 2016-06-29 |
Family
ID=47971928
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210507271.7A Active CN103023783B (en) | 2012-12-03 | 2012-12-03 | A kind of data transmission method and equipment based on DVPN |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103023783B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105099926B (en) * | 2015-06-30 | 2019-03-15 | 新华三技术有限公司 | A kind of routing cost determines method and apparatus |
| CN108259292B (en) * | 2016-12-29 | 2020-12-15 | 华为技术有限公司 | Method and device for establishing tunnel |
| CN110995600B (en) * | 2019-12-10 | 2021-12-17 | 迈普通信技术股份有限公司 | Data transmission method and device, electronic equipment and readable storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1736064A (en) * | 2002-12-17 | 2006-02-15 | 思科技术公司 | Method and apparatus for advertising a link cost in a data communications network |
| CN102594678A (en) * | 2012-02-15 | 2012-07-18 | 杭州华三通信技术有限公司 | Method for large-scale networking of dynamic virtual private network (DVPN) and client |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7602737B2 (en) * | 2006-03-01 | 2009-10-13 | Cisco Technology, Inc. | Methods and apparatus for providing an enhanced dynamic multipoint virtual private network architecture |
| US8239569B2 (en) * | 2006-05-01 | 2012-08-07 | Cisco Technology, Inc. | OSPF optimization for hub and spoke environment |
| US8400945B2 (en) * | 2008-09-10 | 2013-03-19 | Cisco Technology, Inc. | Transit prevention in hub-and-spoke topologies using link state protocols |
-
2012
- 2012-12-03 CN CN201210507271.7A patent/CN103023783B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1736064A (en) * | 2002-12-17 | 2006-02-15 | 思科技术公司 | Method and apparatus for advertising a link cost in a data communications network |
| CN102594678A (en) * | 2012-02-15 | 2012-07-18 | 杭州华三通信技术有限公司 | Method for large-scale networking of dynamic virtual private network (DVPN) and client |
Non-Patent Citations (1)
| Title |
|---|
| "基于DMVPN技术的广域网设计和实现";梁玉柱;《信息系统工程》;20120220(第2期);正文第119页第3.1节、第120页第3.3节 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103023783A (en) | 2013-04-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP1774750B1 (en) | Method, apparatuses and computer readable medium for establishing secure end-to-end connections by binding IPSec Security Associations | |
| CN103036809B (en) | For having the method and apparatus of the scalable network that active link utilizes | |
| US8272046B2 (en) | Network mobility over a multi-path virtual private network | |
| US7917948B2 (en) | Method and apparatus for dynamically securing voice and other delay-sensitive network traffic | |
| CN105791457B (en) | A kind of data processing method and device | |
| US20160036773A1 (en) | Internet protocol address resolution | |
| JP4971312B2 (en) | Terminal apparatus having handover function based on SCTP and handover method | |
| JP2018515974A (en) | System and method for providing virtual interfaces and advanced smart routing in a global virtual network (GVN) | |
| CN103139075B (en) | A kind of message transmitting method and equipment | |
| CN103166858A (en) | Message transmission method and device | |
| CN103957161B (en) | A kind of message forwarding method and its device | |
| CN103209108A (en) | Dynamic virtual private network (DVPN)-based route generation method and equipment | |
| CN108512755B (en) | Method and device for learning routing information | |
| CN103905284A (en) | EVI-network-based flow load sharing method and device | |
| CN103023783B (en) | A kind of data transmission method and equipment based on DVPN | |
| WO2022142905A1 (en) | Packet forwarding method and apparatus, and network system | |
| CN113472913B (en) | Communication method and device | |
| CN102946350B (en) | A kind of data transmission method based on priority and equipment | |
| CN102355402A (en) | Method, system and router for establishing LSP (Label Switched Path) based on VPN (Virtual Private Network) route | |
| CN103391251B (en) | A kind of method and apparatus reducing redundant flow in PBB network | |
| JP4773239B2 (en) | Fast database migration | |
| CN104683238A (en) | Method and device for transmitting data messages in LISP (List Processor) network | |
| CN106817727B (en) | Transmission networking method for multiple movable wireless broadband systems | |
| CN105099926B (en) | A kind of routing cost determines method and apparatus | |
| CN102045198B (en) | Fixed-network multiprotocol label-switching virtual private network backup transmission method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Patentee after: NEW H3C TECHNOLOGIES Co.,Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Patentee before: HANGZHOU H3C TECHNOLOGIES Co.,Ltd. |
|
| CP03 | Change of name, title or address | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20230625 Address after: 310052 11th Floor, 466 Changhe Road, Binjiang District, Hangzhou City, Zhejiang Province Patentee after: H3C INFORMATION TECHNOLOGY Co.,Ltd. Address before: 310052 Changhe Road, Binjiang District, Hangzhou, Zhejiang Province, No. 466 Patentee before: NEW H3C TECHNOLOGIES Co.,Ltd. |
|
| TR01 | Transfer of patent right |