CN103297338B - A kind of VPN route advertising method and equipment - Google Patents
A kind of VPN route advertising method and equipment Download PDFInfo
- Publication number
- CN103297338B CN103297338B CN201310249708.6A CN201310249708A CN103297338B CN 103297338 B CN103297338 B CN 103297338B CN 201310249708 A CN201310249708 A CN 201310249708A CN 103297338 B CN103297338 B CN 103297338B
- Authority
- CN
- China
- Prior art keywords
- route
- equipment
- public network
- network tunnel
- vpn
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention discloses a kind of VPN route advertising method: the first via receives the VPN route information of the 2nd route equipment issue as VPN neighbours by equipment, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing; The first via by equipment according to whether the public network tunnel the public network tunnel path attribute of VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result; The first via by equipment for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up. Adopt the present invention can restrain the time by route optimization.
Description
Technical field
The present invention relates to network communication technology field, in particular to a kind of VPN route advertising method and equipment.
Background technology
BGP(BorderGatewayProtocol, Border Gateway Protocol) be a kind of for AS(AutonomousSystem, autonomous system) between dynamic routing agreement. AS refers to the one group of router having same routing strategy, running under same technical supervision department, when BGP runs between different AS, is called EBGP(ExternalBGP, BGP between territory), when BGP runs between same AS, it is called IBGP(InternalBGP, BGP in territory). Border Gateway Protocol/multiprotocol label switching (BGP/MPLS) Virtual Private Network (VPN) is a kind of three-layer VPN technology, it utilizes the VPN route of the multi-protocols expansion attribute transfer tape label of BGP, and carried out the isolation forwarding of business by the tag feature of MPLS, thus VPN is provided to serve.
Fig. 1 is prior art network structural representation. MPLS backbone network is made up of AS100 and AS200 two autonomous systems, operator's edge device (PE) 1 and PE2 in AS100, PE3 in AS200. Assuming to there is VPN route 10.1.1.1 on user's edge device (CE) 1, prior art to be sent the Business Stream of object IP as 10.1.1.1 to CE1 for CE3, describes CE1 as follows to the process of CE3 notice VPN route 10.1.1.1:
Step 11, by configuring EBGP, IGP(InteriorGatewayProtocol, Interior Gateway Protocol between PE1 and CE1) or static routing, VPN route (the object address being assumed to be this route is 10.1.1.1) is communicated to PE1 by CE1.
VPN route 10.1.1.1, according to the interface receiving VPN route, is write local corresponding VPN example and transmits in (being assumed to be VRF1), and be this route assignment private network tags 1024, can write following entry in the VRF1 of PE1 by step 12, PE1:
| Object IP | Outgoing interface | Down hop |
| 10.1.1.1 | E0 | Direct-connected |
Wherein, outgoing interface E0 represents that the outgoing interface of this route is E0, and down hop is direct-connected, represents that this route is direct routing, and namely place, the point of destination network of this route is directly connected with PE.
PE1 enters the following entry of write in label mapping table (ILM) at self:
| Enter label | Operation type | Go out direction forwarding information |
| 1024 | Eject | Look into VRFl and carry out IP forwarding |
Step 13, PE1, by the IBGP session between PE2, notice to PE2 and are distributed the VPN route 10.1.1.1 that private network tags is 1024.
Local for the write of this VPN route VPN example, according to route objective attribute target attribute (VPNTarget), is transmitted in VRF1, can be write following entry in the VRF1 of PE2 by step 14, PE2:
| Object IP | Outgoing interface | Down hop | Public network label | Private network tags |
| 10.1.1.1 | E0 | 1.1.1.1 | 20 | 1024 |
Wherein, outgoing interface E0 represents the outgoing interface of PE2 to be E0,1.1.1.1 is the loopback address of PE1, represents the down hop address of VPN route 10.1.1.1, and private network tags 1024 represents that PE1 is the private network tags of this VPN route assignment. Learn after this VPN route at PE2, using the public network tunnel that the down hop 1.1.1.1 in the VRF1 of PE2 associates as VPN route 10.1.1.1. What public network tag representation VPN message used when being sent to PE1 along public network tunnel from PE2 enters label.
Step 15, PE2 are VPN route assignment private network tags 1025, and check the public network tunnel (namely forwarding the LSP that class 1.1.1.1 of equal value is corresponding) that VPN route associates, if public network tunnel is set up, then enter the following entry of write in label mapping table (ILM) at PE2:
| Enter label | Operation type | Go out label | Go out direction forwarding information |
| 1025 | Exchange | 1024 | PEl (tunnel 1.1.1.1/32) |
Wherein, using PE1 be the private network tags 1024 of this route assignment as going out label, using PE2 for this route assignment private network tags 1025 is as entering label, the dynamic in return label of label, using the down hop in the VRF1 of PE2 as going out direction forwarding information.
Step 16, when associated public network tunnel is set up, by between PE2 and PE3 configuration EBGP, PE2 to PE3 notice distributed the VPN route 10.1.1.1 that private network tags is 1025.
Step 17, PE3, by EBGP, IGP of configuration between CE3 or static routing, notice above-mentioned VPN route 10.1.1.1 to CE3, so that CE3 receives this VPN route, and write local routing table.
In prior art, before performing step 16, it is necessary to check whether the public network tunnel of VPN route association is set up, if set up, noticing VPN route to PE3, if do not set up, then not performing step 16. Before the public network tunnel in the association of VPN route will be caused like this to break down and do not recover, CE3 cannot receive this VPN route, after will waiting until that public network tunnel is set up, VPN route just can be sent to CE3 through PE3 by PE2 successively, therefore, when switching in tunnel, route convergence is chronic, poor performance.
Summary of the invention
It is an object of the invention to provide a kind of VPN route advertising method and equipment, it is possible to the route optimization convergence time.
For achieving the above object, the present invention provides a kind of VPN route advertising method, is applied between the route equipment using Border Gateway Protocol (BGP), and the method comprises:
The first via receives the VPN route information of the 2nd route equipment issue as VPN neighbours by equipment, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing;
The first via by equipment according to whether the public network tunnel the public network tunnel path attribute of VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result;
The first via by equipment for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up.
For achieving the above object, present invention also offers a kind of first via by equipment, this first via is comprised by equipment:
Receiver module, for receiving the VPN route information that the 2nd route equipment as VPN neighbours is issued, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing;
More new module, for whether the public network tunnel between the public network tunnel path attribute according to VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result;
Route prefix preferred module, for for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up.
In sum, in the embodiment of the present invention, 2nd route equipment to the first via by devices advertise route time, carry the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing, after the first via receives route notice by equipment, whether the public network tunnel between public network tunnel path attribute according to VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is upgraded according to described determination result, it is carried at next the route equipment being sent in path in route notice message. not needing due to route equipment as prior art, to be waited that the public network tunnel associated by self is set up, just noticing route messages, so effectively reducing the convergence time required when public network tunnel changes.
Accompanying drawing explanation
Fig. 1 is prior art network structural representation.
Fig. 2 is the schematic flow sheet of embodiment of the present invention route advertising method
Fig. 3 is the schematic network structure with backup link.
Fig. 4 is the structural representation of route equipment in the embodiment of the present invention.
Embodiment
For making the object of the present invention, technical scheme and advantage clearly understand, develop simultaneously embodiment referring to accompanying drawing, scheme of the present invention is described in further detail.
The embodiment of the present invention provides a kind of VPN route advertising method, it is applied between the route equipment using BGP, the first via receives the VPN route information of the 2nd route equipment issue as VPN neighbours by equipment, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing; The first via by equipment according to whether the public network tunnel the public network tunnel path attribute of VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result; The first via by equipment for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up. This just illustrates, no matter the first via is by whether the public network tunnel equipment to the 2nd route equipment is set up, the first via all can send route information to other route equipment by equipment, so that it is guaranteed that have good constringency performance when tunnel switches. And, the first via by equipment for the VPN route of same routing address prefix carry out route preferred time, the VPN route that public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up, when can guarantee that on main chain road, tunnel failure occurs in any node, backup link can be switched in time.
Wherein, the first via, by VPN neighbours each other between equipment and the 2nd route equipment, refers to enable the BGP neighbours of VPN.
Below in conjunction with specific embodiment, the present invention is described in detail. First a kind of new path attribute that the present invention introduces is introduced:
The public network tunnel path attribute whether the public network tunnel that the present invention relies on for representing VPN route has been set up is LSP_MED, attribute type: 33; Option: Optional(is optional), Transitive(can transmit); Length: 1 byte; Value is 0 or 1; If being 1, representing and carrying out forwarding along this route, there will be in path and forward obstructed situation because public network tunnel does not exist; If being 0, representing and carrying out forwarding along this route, there will not be in path because public network tunnel not exist and cause forwarding obstructed situation.
Still for the networking of Fig. 1, being described by the route advertising method of the present invention, Fig. 2 is the schematic flow sheet of embodiment of the present invention route advertising method, and it comprises the following steps:
Step 21, CE1 represent, by being used for, the public network tunnel path attribute whether set up in the public network tunnel that VPN route relies on, and are sent to PE1 by route notice message.
Specifically, by configuring EBGP, IGP or static routing between PE1 and CE1, when VPN route 10.1.1.1 is advertised to PE1 by CE1, also the path attribute that LSP_MED value is 0 is sent to PE1.
Step 22, PE1 represent, by being used for, the public network tunnel path attribute whether set up in the public network tunnel that VPN route relies on, and are sent to PE2 by route notice message.
Specifically, VPN route 10.1.1.1, according to the interface receiving VPN route, is write local VPN example and transmits in VRF1, and be this route assignment private network tags 1024, can write following entry in the VRF1 of PE1 by PE1:
| Object IP | Outgoing interface | Down hop |
| 10.1.1.1 | E0 | Direct-connected |
Wherein, outgoing interface E0 represent this route outgoing interface be E0, down hop is direct-connected, represents that this route is direct routing, and namely place, the point of destination network of this route is directly connected with PE.
PE1 enters the following entry of write in label mapping table (ILM) at self:
| Enter label | Operation type | Go out direction forwarding information |
| 1024 | Eject (pop) | Look into VRFI and carry out IP forwarding |
Owing to PE1 and CE1 is direct-connected, there is not the public network tunnel associated by self in PE1, therefore there is not situation about not setting up in public network tunnel yet, so PE1 is by the IBGP session between PE2, when being distributed, to PE2 notice, the VPN route 10.1.1.1 that private network tags is 1024, directly the path attribute that LSP_MED value is 0 is sent to PE2.
Step 23, PE2 check whether self sets up to the public network tunnel of PE1, whether the public network tunnel between public network tunnel path attribute according to VPN route and this equipment to PE1 is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is upgraded according to described determination result, it is sent to PE3 by route notice message.
Specifically, local for the write of this VPN route VPN example is transmitted in VRF1 according to route objective attribute target attribute by PE2, can write following entry in the VRF1 of PE2:
| Object IP | Outgoing interface | Down hop | Public network label | Private network tags |
| 10.1.1.1 | E0 | 1.1.1.1 | 20 | 1024 |
Wherein, outgoing interface E0 represents that the outgoing interface of PE2 is E0,1.1.1.1 be the loopback address of PE1, represent the down hop address of VPN route 10.1.1.1, private network tags 1024 represents that PE1 is the private network tags of this VPN route assignment, and what public network label 20 represented that VPN message uses when being sent to PE1 along public network tunnel from PE2 enters label. Learn after this VPN route at PE2, using the public network tunnel that the down hop 1.1.1.1 in the VRF1 of PE2 associates as VPN route 10.1.1.1.
PE2 is that VPN route redistributes private network tags 1025, and check the public network tunnel that VPN route associates, if public network tunnel is set up, PE2 notices to PE3 when being distributed the VPN route 10.1.1.1 that private network tags is 1025, and the LSP_MED path attribute value carried is 0; If public network tunnel is not set up, then by LSP_MED path attribute value by 0 be updated to 1, PE2 to PE3 notice distributed the VPN route 10.1.1.1 that private network tags is 1025 time, the LSP_MED path attribute value carried is 1.
Step 24, PE3 check self is to whether PE2 public network tunnel is set up, whether the public network tunnel between public network tunnel path attribute according to VPN route and this equipment to PE2 is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is upgraded according to described determination result, it is sent to CE3 by route notice message.
Specifically, local for the write of this VPN route VPN example is transmitted in VRF1 according to route objective attribute target attribute by PE3, can write following entry in the VRF1 of PE3:
| Object IP | Outgoing interface | Down hop | Private network tags |
| 10.1.1.1 | E0 | 2.2.2.2 | 1025 |
Wherein, outgoing interface E0 represents the outgoing interface of PE3 to be E0,2.2.2.2 is the loopback address of PE2, represents the down hop address of VPN route 10.1.1.1, and private network tags 1025 represents that PE2 is the label of this VPN route assignment. Learn after this VPN route at PE3, using the public network tunnel that the down hop 2.2.2.2 in the VRF1 of PE3 associates as VPN route 10.1.1.1.
Whether the public network tunnel that PE3 checks between PE2 is set up, according to check result, the LSP_MED path attribute value received is upgraded, PE3 is by EBGP, IGP of configuration between CE3 or static routing, when noticing above-mentioned VPN route 10.1.1.1 to CE3, carry the LSP_MED path attribute value after renewal.
Wherein, if PE3 checks that the public network tunnel associated by self (the public network tunnel between PE3 and PE2) is set up, but the LSP_MED path attribute value that PE3 receives is 1, then by route notice message, the path attribute that LSP_MED value is 1 is sent to CE3;
If PE3 checks that the public network tunnel associated by self (the public network tunnel between PE3 and PE2) is set up, and the LSP_MED path attribute value that PE3 receives is 0, then by route notice message, the path attribute that LSP_MED value is 0 is sent to CE3;
If PE3 checks the public network tunnel associated by self, (the public network tunnel between PE3 and PE2) is not set up, and the LSP_MED path attribute value no matter received is 0 or 1, all by route notice message, the path attribute that LSP_MED value is 1 is sent to CE3.
So far, CE3 receives the route notice message carrying and representing the path attribute whether public network tunnel is set up in path, by the VPN route 10.1.1.1 in route notice message, and write local routing table.
In above-mentioned steps 23, the embodiment of the present invention when the public network tunnel (the public network tunnel between PE1 and PE2) associated by PE2 checks self is set up, then enters the following entry of write in label mapping table (ILM) at PE2:
| Enter label | Operation type | Go out label | Go out direction forwarding information |
| 1025 | Exchange (swap) | 1024 | PEl (tunnel 1.1.1.1) |
Wherein, using PE1 be the private network tags 1024 of this route assignment as going out label, using PE2 be the private network tags 1025 of this route assignment as entering label, using the down hop in the VRF1 of PE2 as going out direction forwarding information. It should be noted that, if PE2 checks that the public network tunnel associated by self is not set up, although can not issuing for the ILM that message forwards, but still can noticing route to PE3, just carry the path attribute for representing in path, whether public network tunnel is set up when noticing route. Therefore, can not as prior art, only public network tunnel between PE1 and PE2 is deposited in case, PE2 could notice route to PE3, like this, as long as the public network tunnel one between PE1 and PE2 is set up, as long as PE2 issues ILM, table item can E-Packet, and greatly reduces convergence time when tunnel switches.
With reason, in above-mentioned steps 24, the embodiment of the present invention when the public network tunnel (the public network tunnel between PE3 and PE2) associated by PE3 checks self is set up, then enters to write in label mapping table (ILM) following entry at PE3:
| Enter label | Operation type | Go out direction forwarding information |
| 1025 | Press-in (push) | PE2 (tunnel 2.2.2.2) |
Wherein, using the private network tags 1025 in the VRF1 of PE3 as entering label, using the down hop in the VRF1 of PE3 as going out direction forwarding information.
It should be noted that, if PE3 checks that the public network tunnel associated by self is not set up, although can not issue for the ILM that message forwards, but still route can be noticed to CE3, just when noticing route, carry the path attribute for representing in path, whether public network tunnel is set up. Therefore, can not as prior art, only public network tunnel between PE2 and PE3 is deposited in case, could notice route to CE3, greatly reduces convergence time when tunnel switches.
Further, there are two links in networking as shown in Figure 2, main chain road is CE1-> PE1-> PE2-> PE3-> CE3, and backup link is CE1-> PE1-> PE3-> CE3 between CE1 and CE3. So the route 10.1.1.1 on CE1 is by CE1-> this two paths of PE1-> PE2-> PE3 and CE1-> PE1-> PE3 is distributed to PE3, PE3 issues from CE1 the route come and has two parts, the prefix of two parts of routes is identical, neighbours are different, and all carry LSP_MED path attribute value when issuing route.
Under this scene, when link changes, assume that the public network tunnel between PE1 and PE2 is by original fault recovering state, then PE2 needs again by main chain road, route to be advertised to PE3, and the local route that there is CE1 and come by backup link advertisement of PE3. At this moment the route of same prefix is carried out preferably according to the path attribute after each routing update by PE3, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up. It should be noted that, when PE3 triggering prefix is preferred, it is not that directly to carry out route according to the LSP_MED value carried in route notice message preferred, but to be checked whether the public network tunnel associated by self is set up, after the LSP_MED value carried in route notice message being upgraded according to check result, just the route of same prefix is carried out preferably.
Over the primary link, owing to PE1 and CE1 is direct-connected, there is not the public network tunnel associated by self in PE1, therefore there is not situation about not setting up in public network tunnel yet, so when PE1 sends route notice to PE2, the path attribute that LSP_MED value is 0 being sent to PE2;
Assuming that the public network tunnel between PE1 and PE2 recovers, PE2 is checked through the public network tunnel associated by self (the public network tunnel between PE1 and PE2) and sets up, then, when PE2 sends route notice to PE3, still the path attribute that LSP_MED value is 0 is sent to PE3;
Assume the public network tunnel failure between PE2 and PE3, PE3 receives route notice message, be checked through the public network tunnel associated by self (the public network tunnel between PE2 and PE3) not set up, then the path attribute that LSP_MED value is 0 is updated to LSP_MED value by PE3 is 1.
On backup link, owing to PE1 and CE1 is direct-connected, there is not the public network tunnel associated by self in PE1, therefore there is not situation about not setting up in public network tunnel yet, so when PE1 sends route notice to PE3, the path attribute that LSP_MED value is 0 being sent to PE3;
Assuming that the public network tunnel between PE1 and PE3 is set up, PE3 receives route notice message, is checked through the public network tunnel associated by self (the public network tunnel between PE1 and PE3) and sets up, then on PE3, determined LSP_MED value is still 0.
LSP_MED value is 0, represents and carries out forwarding along this route, there will not be in path because public network tunnel not exist and causes forwarding obstructed situation; LSP_MED value is 1, represents and carries out forwarding along this route, there will be in path because public network tunnel and does not exist and forward obstructed situation. PE3 from the LSP_MED value finally determined just it can be seen that main chain road there will be because public network tunnel (the public network tunnel between PE2 and PE3) does not exist and forward obstructed situation. Therefore PE3 triggers prefix preferred, it is preferable that time contrast the LSP_MED value of two routes, be worth big route priority low, will back up link as preferred route, thus timely by flow switch to backing up on link. Therefore, when there is backup link, the advantage that the present invention carries LSP_MED value in route notice message is, when tunnel failure occurs in any node on main chain road, can be switched to backup link in time.
It should be noted that, embodiment of the present invention LSP_MED path attribute, be the one in the attribute of multiple path, other path attributes have: ORIGIN, AS_PATH, NEXT_HOP etc. Owing to whether attribute representation path, LSP_MED path having public network tunnel not exist, namely represent that whether path is unobstructed, thus even more important compared to other path attributes, when therefore triggering prefix is preferred, pay the utmost attention to LSP_MED path attribute. When LSP_MED path attribute is identical, then other path attributes are contrasted successively. That is, when the VPN route of multiple identical routing address prefix is carried out preferred by route equipment, if the VPN route that the public network tunnel in all VPN routes between this equipment to described routing address prefix is not all set up or public network tunnel between this equipment to described routing address prefix has been set up has more than two, then according to pre-set priority order, other predetermined path attributes are contrasted successively.
Based on same invention design, the present invention also proposes a kind of first via by equipment, is the structural representation of the first via by equipment being applied to aforesaid method in the specific embodiment of the invention see Fig. 4, Fig. 4. This first via is comprised by equipment:
Receiver module 401, for receiving the VPN route information that the 2nd route equipment as VPN neighbours is issued, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing;
More new module 402, for whether the public network tunnel between the public network tunnel path attribute according to VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result;
Route prefix preferred module 403, for for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up.
Described more new module 402, specifically for:
The public network tunnel relied in VPN route described in the public network tunnel path attribute representation of VPN route is set up, and, public network tunnel between this equipment to the 2nd route equipment is immediately built, the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is set up;
Otherwise, it is determined that the public network tunnel between this equipment to the routing address prefix of described VPN route is not set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is not set up.
Described equipment comprises sending module 404 further, for preferred by route, after selecting a VPN route, to the VPN route selected described in other route equipment issue as VPN neighbours, and carrying the public network tunnel path attribute after renewal.
Described equipment comprises further: table item issues module 405, the public network tunnel detected out between this equipment to the 2nd route equipment for working as is immediately built, issue for message forward enter label mapping table ILM, described ILM at least comprise point to the 2nd route equipment go out direction forwarding information.
Described equipment comprises further: relating module 406, for receiving as after the VPN route information of the 2nd route equipment issue of VPN neighbours, associates the public network tunnel between this equipment to the 2nd route equipment.
In sum, specific embodiment of the invention route equipment is when noticing route, carrying the public network tunnel path attribute whether the public network tunnel of VPN route dependence has been set up, when guaranteeing that tunnel switches when there is not backup path, having good route constringency performance. Backup link can be switched in time, preferred by communication process of Dominating paths when tunnel failure occurs in any node on main path when there is backup link.
It should be noted that, Fig. 1 and Fig. 2 of networking schematic diagram of the present invention be a kind of typical case's networking example just, the method of the present invention is not limited to above-mentioned networking structure, as long as path exists public network tunnel, route notice message can carry the public network tunnel path attribute whether set up in the public network tunnel that VPN route relies on for representing of the present invention, therefore, the networking structure being applicable to the present invention is illustrated no longer one by one at this.
The above, be only the better embodiment of the present invention, be not intended to limit protection scope of the present invention. Within the spirit and principles in the present invention all, any amendment of doing, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (9)
1. a virtual private network route advertising method, is applied between the route equipment using Border Gateway Protocol (BGP), it is characterised in that, the method comprises:
The first via receives the VPN route information of the 2nd route equipment issue as VPN neighbours by equipment, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing;
The first via by equipment according to whether the public network tunnel the public network tunnel path attribute of VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result;
The first via by equipment for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up;
Wherein, whether the described public network tunnel determined between this equipment to described routing address prefix is set up, and the public network tunnel path attribute upgrading described VPN route according to described determination result comprises:
The public network tunnel relied in VPN route described in the public network tunnel path attribute representation of VPN route is set up, and, public network tunnel between this equipment to the 2nd route equipment is immediately built, the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is set up;
Otherwise, it is determined that the public network tunnel between this equipment to the routing address prefix of described VPN route is not set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is not set up.
2. the method for claim 1, it is characterised in that, the first via is by equipment preferred by route, and after selecting a VPN route, described method also comprises:
The VPN route selected described in issuing to other route equipment as VPN neighbours, and carry the public network tunnel path attribute after renewal.
3. method as claimed in claim 2, it is characterized in that, represent that the public network tunnel path attribute whether the public network tunnel that VPN route relies on has been set up is LSP_MED, when the VPN route of multiple identical routing address prefix is undertaken preferred by equipment by the first via, if the public network tunnel in all VPN routes between this equipment to described routing address prefix is not all set up, or the VPN route that the public network tunnel between this equipment to described routing address prefix has been set up has more than two, then according to pre-set priority order, other predetermined path attributes are contrasted successively.
4. method as claimed in claim 2, it is characterized in that, when the first via, go out the public network tunnel this equipment to the 2nd route equipment by equipment Inspection immediately built, the method comprises further: issue for message forward enter label mapping table ILM, described ILM at least comprise point to the 2nd route equipment go out direction forwarding information.
5. method as claimed in claim 4, it is characterized in that, after the first via receives, by equipment, the VPN route information that the 2nd route equipment as VPN neighbours is issued, before whether the public network tunnel detected between this equipment to the 2nd route equipment is set up, the method comprises further: the step associating the public network tunnel between this equipment to the 2nd route equipment.
6. the first via is by an equipment, and this equipment comprises:
Receiver module, for receiving the VPN route information that the 2nd route equipment as VPN neighbours is issued, the routing address prefix that described VPN route information carries VPN route and the public network tunnel path attribute whether set up in the public network tunnel that described VPN route relies on for representing;
More new module, for whether the public network tunnel between the public network tunnel path attribute according to VPN route and this equipment to the 2nd route equipment is set up, whether the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and upgrades the public network tunnel path attribute of described VPN route according to described determination result;
Route prefix preferred module, for for the VPN route of same routing address prefix carry out route preferred time, the VPN route that the public network tunnel between this equipment of prioritizing selection to described routing address prefix has been set up;
Described more new module, specifically for:
The public network tunnel relied in VPN route described in the public network tunnel path attribute representation of VPN route is set up, and, public network tunnel between this equipment to the 2nd route equipment is immediately built, the public network tunnel determined between this equipment to the routing address prefix of described VPN route is set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is set up;
Otherwise, it is determined that the public network tunnel between this equipment to the routing address prefix of described VPN route is not set up, and the public network tunnel path attribute of described VPN route is updated to and represents that the public network tunnel that described VPN route relies on is not set up.
7. equipment as claimed in claim 6, it is characterized in that, described equipment comprises sending module further, for preferred by route, after selecting a VPN route, the VPN route selected described in issuing to other route equipment as VPN neighbours, and carry the public network tunnel path attribute after renewal.
8. equipment as claimed in claim 6, it is characterized in that, described equipment comprises further: table item issues module, the public network tunnel detected out between this equipment to the 2nd route equipment for working as is immediately built, issue for message forward enter label mapping table ILM, described ILM at least comprise point to the 2nd route equipment go out direction forwarding information.
9. equipment as claimed in claim 8, it is characterised in that, described equipment comprises further:
Relating module, for receiving as after the VPN route information of the 2nd route equipment issue of VPN neighbours, associates the public network tunnel between this equipment to the 2nd route equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310249708.6A CN103297338B (en) | 2013-06-20 | 2013-06-20 | A kind of VPN route advertising method and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310249708.6A CN103297338B (en) | 2013-06-20 | 2013-06-20 | A kind of VPN route advertising method and equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103297338A CN103297338A (en) | 2013-09-11 |
| CN103297338B true CN103297338B (en) | 2016-06-01 |
Family
ID=49097678
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310249708.6A Active CN103297338B (en) | 2013-06-20 | 2013-06-20 | A kind of VPN route advertising method and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103297338B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112468398B (en) * | 2015-12-31 | 2022-03-25 | 华为技术有限公司 | VPN processing method, PE equipment and system |
| CN112787935B (en) * | 2016-02-01 | 2022-12-06 | 华为技术有限公司 | VPN route notification method, data flow forwarding method and related equipment |
| CN107666723B (en) | 2016-07-22 | 2021-04-09 | 华为技术有限公司 | Information transmission method, convergence gateway and system |
| CN111092801B (en) | 2018-10-23 | 2021-05-18 | 华为技术有限公司 | Data transmission method and device |
| CN110661713B (en) * | 2019-10-22 | 2021-09-21 | 新华三信息安全技术有限公司 | Message forwarding method and device |
| CN111405639B (en) * | 2020-03-09 | 2022-05-13 | 深圳前海百递网络有限公司 | Wireless network connection method and device, readable storage medium and computer equipment |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101277245A (en) * | 2008-05-06 | 2008-10-01 | 华为技术有限公司 | Method, system and apparatus for implementing L2VPN field across |
| CN101355487A (en) * | 2007-07-23 | 2009-01-28 | 中国移动通信集团公司 | Method and apparatus for distributing label |
| CN102195844A (en) * | 2010-03-02 | 2011-09-21 | 杭州华三通信技术有限公司 | Method and equipment for managing forwarding table entry |
-
2013
- 2013-06-20 CN CN201310249708.6A patent/CN103297338B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101355487A (en) * | 2007-07-23 | 2009-01-28 | 中国移动通信集团公司 | Method and apparatus for distributing label |
| CN101277245A (en) * | 2008-05-06 | 2008-10-01 | 华为技术有限公司 | Method, system and apparatus for implementing L2VPN field across |
| CN102195844A (en) * | 2010-03-02 | 2011-09-21 | 杭州华三通信技术有限公司 | Method and equipment for managing forwarding table entry |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103297338A (en) | 2013-09-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102664788B (en) | CE dual-homed link protection method in MPLS L3VPN and system thereof | |
| US8199755B2 (en) | Method and apparatus establishing forwarding state using path state advertisements | |
| CN101330424B (en) | Method, system and apparatus for processing service fault of virtual special network | |
| CN103297338B (en) | A kind of VPN route advertising method and equipment | |
| CN105634940B (en) | SR information acquisition method and method for establishing segment routing network | |
| CN101582834B (en) | Updating method and system of forwarding table during service transmission of Ethernet | |
| CN101999224B (en) | Redundant Ethernet automatic protection switching access to virtual private lan services | |
| US8179900B2 (en) | Edge node redundant system in label switching network | |
| CN102035729B (en) | Multicast data forwarding method | |
| CN100450039C (en) | Fast convergence method and device of the end-to-end service | |
| CN102025646B (en) | Link switching method and device thereof | |
| CN101047636B (en) | Method and system for end-to-end pseudo-line simulation virtual leased line access virtual special network | |
| CN100512148C (en) | Convergence method and device based on VPLS dual home full connection network | |
| CN101227399B (en) | Message transmission method, system and forwarding node | |
| CN104135418B (en) | It is a kind of to realize two layers of method and device for coordinating to switch with Layer3 Virtual Private Network | |
| CN102932499B (en) | Method and device for learning media access control (MAC) addresses in virtual private lan service (VPLS) networks | |
| GB2443549A (en) | Engineered paths in a link state protocol controlled Ethernet network | |
| CN101924654B (en) | Point-to-multipoint service-based path switching method and system | |
| CN101710877A (en) | Method, device and system for processing traffic flow based on pseudowire | |
| CN101217457A (en) | A method to realize fast reroute and router | |
| CN102035740B (en) | Multi-protocol label switching three-layer private virtual net fast rerouting method and system | |
| CN101106519A (en) | Distribution method for boundary routers of autonomous system and boundary router | |
| CN103326915A (en) | Method, device and system for achieving three-layer VPN | |
| CN102316014A (en) | Load sharing method and router under hierarchical virtual dedicated local area network service environment | |
| CN107888493B (en) | Method and device for establishing label switching path |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Patentee after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Patentee before: Huasan Communication Technology Co., Ltd. |
|
| CP03 | Change of name, title or address |