CN104219149B - A kind of message transmitting method and equipment based on virtual connections - Google Patents
A kind of message transmitting method and equipment based on virtual connections Download PDFInfo
- Publication number
- CN104219149B CN104219149B CN201410425612.5A CN201410425612A CN104219149B CN 104219149 B CN104219149 B CN 104219149B CN 201410425612 A CN201410425612 A CN 201410425612A CN 104219149 B CN104219149 B CN 104219149B
- Authority
- CN
- China
- Prior art keywords
- network device
- flow table
- access link
- network
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 42
- 238000005538 encapsulation Methods 0.000 claims description 20
- 230000005540 biological transmission Effects 0.000 claims description 10
- 230000008569 process Effects 0.000 description 9
- 238000010586 diagram Methods 0.000 description 5
- 230000004044 response Effects 0.000 description 5
- 101100048435 Caenorhabditis elegans unc-18 gene Proteins 0.000 description 4
- 238000001914 filtration Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 208000033748 Device issues Diseases 0.000 description 1
- 230000004069 differentiation Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a kind of message transmitting method and equipment based on virtual connections, this method include:Controller, which determines, to be needed to establish virtual connections between first network equipment and second network equipment;The controller is that first network equipment generates the first flow table, and first flow table is handed down to the first network equipment, in first flow table record have the corresponding first user side access link of the virtual connections, exit port and second network equipment MAC Address;The controller is that second network equipment generates the second flow table, and second flow table is handed down to second network equipment, and record has the corresponding second user side access link of the virtual connections in second flow table.In the embodiment of the present invention, controller need not learn the target MAC (Media Access Control) address carried in message when generating flow table, be also not needed upon target MAC (Media Access Control) address and generate flow table.
Description
Technical Field
The present invention relates to the field of communications, and in particular, to a virtual connection-based message transmission method and apparatus.
Background
SDN (Software Defined Network) is a novel Network innovation architecture, and a core idea thereof is to separate a control plane and a forwarding plane of a Network device to realize flexible control on traffic, so as to provide a good platform for innovation of a core Network and application. In an SDN network, network devices (e.g., switches) and controllers are included. The controller is configured to generate a Flow Table (Flow Table) according to a configuration of a user or a dynamically operating protocol, and send the Flow Table to the network device. The network equipment is used for receiving the flow table from the controller and matching and processing the message according to the flow table.
In the process of forwarding the message, the network device sends a first message corresponding to a destination MAC (Media Access Control) address to the controller, and the controller generates a flow table by using the destination MAC address carried in the message and issues the flow table matching the destination MAC address to the network device. And when the network equipment receives the message corresponding to the destination MAC address again, forwarding the message by inquiring the flow table.
When the controller generates the flow table, it needs to learn the destination MAC address carried in the packet, and generate the flow table based on the destination MAC address. Currently, the SDN network supports multiple services, such as a two-layer service, an IP service, an MPLS (Multi-protocol label Switching) service, and the like. For the IP service, the message carries the destination MAC address, so the controller may generate a flow table based on the destination MAC address. However, for non-IP services (such as a two-layer service and an MPLS service), the message may not carry a destination MAC address, for example, a multicast message and a two-layer protocol message in the non-IP service do not carry the destination MAC address, so that the controller cannot learn the destination MAC address carried in the message, and then cannot generate a flow table based on the destination MAC address, and cannot issue the flow table to the network device.
Disclosure of Invention
The embodiment of the invention provides a message transmission method based on virtual connection, which is applied to a Software Defined Network (SDN) comprising a controller and a plurality of network devices, and comprises the following steps:
the controller determines that a virtual connection needs to be established between the first network device and the second network device;
the controller generates a first flow table for a first network device, and issues the first flow table to the first network device, wherein the first flow table records a first user side access link, an output port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection; the first flow table is used for indicating that the first network device performs virtual connection tunnel encapsulation on the message when receiving the message from the first user side access link, carries the MAC address of the second network device in the head of the encapsulated message, and sends the encapsulated message through the output port;
the controller generates a second flow table for a second network device, and issues the second flow table to the second network device, wherein a second user side access link corresponding to the virtual connection is recorded in the second flow table; and the second flow table is used for indicating that when the second network equipment receives the encapsulated message, if the MAC address carried in the head of the encapsulated message is the MAC address of the second network equipment, the encapsulated message is de-encapsulated to obtain the message, and the message is sent through the second user side access link.
The method further comprises: when the virtual connection between the first network device and the second network device corresponds to a plurality of user side access link pairs, the controller determines tunnel labels uniquely corresponding to the first user side access link and the second user side access link;
when the controller generates the first flow table, the tunnel tag is recorded in the first flow table, and the encapsulated header of the packet also carries the tunnel tag;
when the controller generates the second flow table, the tunnel tag is recorded in the second flow table, and before the second network device sends the packet, the second flow table is queried through the tunnel tag carried in the header of the encapsulated packet, so as to obtain a corresponding second user side access link.
Before the controller establishes the virtual connection between the first network device and the second network device, the method further comprises:
the controller determining a network topology among the plurality of network devices in the SDN and determining topological shortest paths from each network device to other network devices using the network topology;
for each network device, the controller generates a third flow table for the network device by using the topological shortest path from the network device to other network devices, and issues the third flow table to the network device, where the third flow table records the MAC address of the other network device and an output port of the topological shortest path from the network device to the other network devices; and the third flow table is used for indicating that when the network device receives the encapsulated message sent to the second network device by the first network device, if the MAC address carried in the head of the encapsulated message is the MAC address of the other network device recorded in the third flow table, the encapsulated message is forwarded through the corresponding output port.
The embodiment of the invention provides a message transmission method based on virtual connection, which is applied to a Software Defined Network (SDN) comprising a controller and a plurality of network devices, and comprises the following steps:
when the controller determines that a virtual connection needs to be established between the first network device and the second network device,
the network equipment receives a flow table issued to the network equipment by a controller; when the network device is used as a first network device, the flow table is a first flow table, and a first user side access link, an egress port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection are recorded in the first flow table; when the network device is used as a second network device, the flow table is a second flow table, and a second user side access link corresponding to the virtual connection is recorded in the second flow table;
when the network device receives a message from the first user side access link, the first flow table is inquired through the first user side access link, virtual connection tunnel encapsulation is carried out on the message by using information recorded in the first flow table, the MAC address of the second network device is carried in the head of the encapsulated message, and the encapsulated message is sent through the output port;
when the network equipment receives the packaged message, the network equipment obtains an MAC address carried in the head of the packaged message; and if the MAC address is the MAC address of the network equipment, decapsulating the encapsulated message, and sending the decapsulated message through a second user side access link recorded in the second flow table.
When the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs, the method further comprises:
when the network device is used as a first network device, a tunnel tag is further recorded in the first flow table, and the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; when the network device performs virtual connection tunnel encapsulation on the message, the tunnel label is also carried in the head of the encapsulated message; or,
when the network device is used as a second network device, a tunnel label is further recorded in the second flow table, and the tunnel label is a tunnel label uniquely corresponding to the first user side access link and the second user side access link; when the network device sends the decapsulated message through the second user side access link recorded in the second flow table, the network device queries the second flow table through a tunnel label carried in a header of the encapsulated message to obtain a corresponding second user side access link, and sends the decapsulated message through the second user side access link.
Before the virtual connection needs to be established between the first network device and the second network device, the method further includes:
the network device receives a third flow table issued to the network device by the controller, the third flow table is generated and issued for the network device by the controller by using the topological shortest path from the network device to other network devices, and the third flow table records the MAC address of other network devices and the output port of the topological shortest path from the network device to other network devices;
when the network device receives the encapsulated message sent to the second network device by the first network device, if the MAC address carried in the head of the encapsulated message is the MAC address of the other network device recorded in the third flow table, the network device forwards the encapsulated message through the corresponding output port.
The method further comprises:
when the network equipment receives the packaged message, determining an output port corresponding to a source MAC address corresponding to the packaged message in an MAC table; if the output port is the same as the receiving port of the encapsulated message received on the network equipment, the network equipment allows the encapsulated message to be forwarded; and if the output port is different from the receiving port, the network equipment directly discards the packaged message.
An embodiment of the present invention provides a controller, which is applied to a software defined network SDN including the controller and a plurality of network devices, where the controller specifically includes:
a determining module, configured to determine that a virtual connection needs to be established between a first network device and a second network device;
a generating module, configured to generate a first flow table for the first network device and a second flow table for the second network device; wherein, the first flow table records a first user side access link, an egress port and a media access control MAC address of the second network device corresponding to the virtual connection; a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a sending module, configured to send the first flow table to the first network device, where the first flow table is used to indicate that the first network device performs virtual connection tunnel encapsulation on a packet when receiving the packet from the first user side access link, and a header of the encapsulated packet carries an MAC address of the second network device, and sends the encapsulated packet through the egress port;
and issuing the second flow table to the second network device, where the second flow table is used to indicate that, when the second network device receives the encapsulated packet, if the MAC address carried in the header of the encapsulated packet is the MAC address of the second network device, decapsulate the encapsulated packet to obtain the packet, and send the packet through the second user-side access link.
The determining module is further configured to determine, when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs, a tunnel label uniquely corresponding to the first user-side access link and the second user-side access link;
when the generation module generates the first flow table, the tunnel tag is recorded in the first flow table, and the encapsulated header of the packet also carries the tunnel tag;
when the generating module generates the second flow table, the tunnel tag is further recorded in the second flow table, and before the second network device sends the packet, the second flow table is queried through the tunnel tag carried in the header of the encapsulated packet, so as to obtain a corresponding second user side access link.
The generation module is further configured to determine a network topology among the plurality of network devices in the SDN, and determine a topological shortest path from each network device to other network devices using the network topology; for each network device, generating a third flow table for the network device using a topological shortest path from the network device to other network devices; the third flow table records the MAC addresses of the other network devices and the exit ports of the shortest topology path from the network device to the other network devices;
the sending module is further configured to send the third flow table to the network device, where the third flow table is used to instruct the network device to forward the encapsulated packet through a corresponding egress port if the MAC address carried in the head of the encapsulated packet is the MAC address of another network device recorded in the third flow table when the network device receives the encapsulated packet sent to the second network device by the first network device.
An embodiment of the present invention provides a network device, which is applied to a software defined network SDN including a controller and a plurality of network devices, where the network device specifically includes:
the receiving module is used for receiving a flow table issued by the controller to the network equipment when the controller determines that virtual connection needs to be established between the first network equipment and the second network equipment; when the network device is used as a first network device, the flow table is a first flow table, and a first user side access link, an egress port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection are recorded in the first flow table; when the network device is used as a second network device, the flow table is a second flow table, and a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a processing module, configured to query the first flow table through the first user-side access link when receiving a packet from the first user-side access link, perform virtual connection tunnel encapsulation on the packet by using information recorded in the first flow table, carry an MAC address of the second network device in a header of the encapsulated packet, and send the encapsulated packet through the egress port;
when receiving the packaged message, obtaining an MAC address carried in the head of the packaged message; and if the MAC address is the MAC address of the network equipment, decapsulating the encapsulated message, and sending the decapsulated message through a second user side access link recorded in the second flow table.
When the virtual connection between the first network device and the second network device corresponds to multiple user-side access link pairs,
when the network device is used as a first network device, a tunnel tag is further recorded in a first flow table received by the receiving module, wherein the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; when the processing module performs virtual connection tunnel encapsulation on the message, the tunnel label is also carried in the head of the encapsulated message; or,
when the network device is used as a second network device, a tunnel tag is recorded in a second flow table received by the receiving module, wherein the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; and when the processing module sends the decapsulated message through the second user side access link recorded in the second flow table, querying the second flow table through a tunnel label carried in the header of the encapsulated message to obtain a corresponding second user side access link, and sending the decapsulated message through the second user side access link.
The receiving module is further configured to receive a third flow table issued by the controller to the network device, where the third flow table is generated and issued by the controller for the network device by using a topological shortest path from the network device to another network device, and an MAC address of the another network device and an output port of the topological shortest path from the network device to the another network device are recorded in the third flow table;
the processing module is further configured to, when receiving an encapsulated packet sent to the second network device by the first network device, forward the encapsulated packet through the corresponding egress port if the MAC address carried in the header of the encapsulated packet is the MAC address of the other network device recorded in the third flow table.
The processing module is further configured to determine, when the encapsulated packet is received, an output port corresponding to a source MAC address corresponding to the encapsulated packet in an MAC table; if the output port is the same as the receiving port of the packaged message received on the network equipment, the packaged message is allowed to be forwarded; and if the output port is different from the receiving port, directly discarding the encapsulated message.
Based on the technical scheme, in the embodiment of the invention, the point-to-point virtual connection is established between the network equipment in the SDN network and the network equipment, and the flow table corresponding to the virtual connection is issued on the network equipment, so that the controller does not need to learn the destination MAC address carried in the message or generate the flow table based on the destination MAC address when generating the flow table, and a large number of learning tasks of hosts are omitted.
Drawings
Fig. 1 is a schematic diagram of an application scenario proposed by an embodiment of the present invention;
fig. 2 is a flowchart of a virtual connection-based message transmission method according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of a controller according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a network device according to an embodiment of the present invention.
Detailed Description
To solve the problems in the prior art, an embodiment of the present invention provides a virtual connection-based packet transmission method, which is applied to an SDN network including a controller and a plurality of network devices, and an application scenario diagram of the embodiment of the present invention is shown in fig. 1, and an SDN network including 4 network devices is described as an example. Among them, terminal device 1 is provided under LAN1(Local Area Network) connected to Network device 1, terminal device 2 is provided under LAN2 connected to Network device 1, terminal device 3 is provided under LAN1 connected to Network device 3, and terminal device 4 is provided under LAN2 connected to Network device 3.
In order to support a virtual connection tunnel in an SDN network, in the embodiment of the present invention, a controller needs to generate a flow table from each network device in the SDN network to another network device, and for convenience of subsequent differentiation, the flow table from the network device to the other network device is referred to as a third flow table, and each network device issues the third flow table, where the third flow table is used to enable the network device to forward a packet by using the third flow table when the network device is used as an intermediate network device of network devices at two ends of the virtual connection tunnel.
To generate the third flow table, the controller determines a network topology among a plurality of network devices in the SDN and determines topological shortest paths for each network device to other network devices using the network topology. For example, after the controller determines the network topology shown in fig. 1 (the determination method of the network topology is the same as the existing method, and is not described herein again), for the network device 1, the shortest topology path from the network device 1 to the network device 4 is the network device 1 to the network device 4, the shortest topology path from the network device 1 to the network device 3 is the network device 1 to the network device 4 to the network device 3, and the shortest topology path from the network device 1 to the network device 2 is the network device 1 to the network device 2. The detailed description of the shortest path of the topology of other network devices is omitted.
Further, after determining the topological shortest path from each network device to another network device, for each network device, the controller generates a third flow table for the network device by using the topological shortest paths from the network device to the other network device, and issues the third flow table to the network device.
The third flow table records MAC addresses of other network devices, and the MAC addresses of the other network devices may be a unique identifier of a bridge MAC address of the other network devices.
The third flow table records an egress port of the shortest topology path from the network device to another network device, that is, the egress port specified in the third flow table is a forwarding port from the network device to another destination network device. Further, since each network device is an independently computed egress port, and since the topology is uniformly maintained, the egress port of each network device is a shortest path port.
To enable the controller to generate a third flow table for each network device in the SDN network, the controller needs to obtain a MAC address of each network device in the SDN network. In order to implement this process, in this embodiment of the present invention, each network device needs to send the MAC address of the network device to the controller. Further, each network device may send the MAC address of the network device to the controller through a Description (Description) packet, and the controller generates the third flow table using the MAC address of each network device.
Further, when the controller generates the third flow table, the output port recorded in the third flow table is calculated by the controller according to the network topology of the SDN network, and the calculation process is not described herein again.
In the application scenario shown in fig. 1, for the network device 1, the controller generates a third flow table 1 from the network device 1 to the network device 2 for the network device 1, generates a third flow table 2 from the network device 1 to the network device 3, and generates a third flow table 3 from the network device 1 to the network device 4. And then, the controller issues the third flow table 1, the third flow table 2 and the third flow table 3 to the network device 1 respectively. The third flow table 1 records the MAC address of the network device 2 and an egress port of the shortest topology path from the network device 1 to the network device 2 (i.e., a port on the network device 1 connected to the network device 2); the third flow table 2 records the MAC address of the network device 3 and an egress port of the shortest topology path from the network device 1 to the network device 3 (i.e., a port on the network device 1 connected to the network device 4); the third flow table 3 records the MAC address of the network device 4 and the exit port of the shortest topology path from the network device 1 to the network device 4 (i.e., the port on the network device 1 connected to the network device 4). For the cases of the network device 2, the network device 3, and the network device 4, a process of generating the third flow table for the network device by the controller is similar to a process of generating the third flow table for the network device 1 by the controller, and details are not described here again.
Based on the above processing, as shown in fig. 2, the message transmission method based on the virtual connection includes the following steps:
in step 201, the controller determines that a virtual connection needs to be established between a first network device and a second network device. In the embodiment of the invention, the virtual connection is associated with the user side access link pairs, each user side access link pair only corresponds to one virtual connection, but one virtual connection can correspond to a plurality of user side access link pairs.
In the application scenario shown in fig. 1, for a virtual connection 1 between a network device 1 and a network device 3, a user-side access link pair corresponding to the virtual connection 1 may include: AC10(Access Circuit) -AC30, AC10-AC31, AC11-AC30, and AC11-AC31, where the user-side Access link pairs each correspond to only one virtual connection 1. For the virtual connection 2 between the network device 3 and the network device 1, the pair of user-side access links corresponding to the virtual connection 2 may include: the user side access link pairs only correspond to the unique virtual connection 2, and comprise AC30-AC10, AC30-AC11, AC31-AC10 and AC31-AC 11.
In the embodiment of the invention, when the traffic needs to be transmitted between the user side access link pair, the controller determines that the virtual connection needs to be established between the first network device and the second network device. For convenience of description, taking the user side access link pair as AC10-AC30 as an example for illustration, when traffic needs to be transmitted between AC10 and AC30 at present, the controller determines that a virtual connection needs to be established between the first network device (i.e., network device 1) and the second network device (i.e., network device 3), that is, the first network device and the second network device at two ends of the virtual connection corresponding to the user side access link are network device 1 and network device 3, respectively, the first user side access link corresponding to the virtual connection is user side access link AC10 of network device 1, and the second user side access link corresponding to the virtual connection is user side access link 30 of network device 3. The user-side access link can be uniquely identified by a port and a VLAN (Virtual Local Area Network), for example, AC10 can be uniquely identified by a port 1 and a LAN1, AC11 can be uniquely identified by a port 2 and a LAN2, AC30 can be uniquely identified by a port 3 and a LAN1, and AC31 can be uniquely identified by a port 4 and a LAN 2.
Step 202, the controller generates a first flow table for the first network device, issues the first flow table to the first network device, generates a second flow table for the second network device, and issues the second flow table to the second network device.
In the embodiment of the present invention, the first flow table records a first user side access link, an egress port (i.e., an egress port of the shortest topology path from the first network device to the second network device) and an MAC address of the second network device, which correspond to the virtual connection. And a second user side access link corresponding to the virtual connection is recorded in the second flow table. For example, taking the pair of user-side access links as AC10-AC30 as an example, the first flow table issued to the network device 1 records the user-side access link AC10, the MAC address of the network device 3, and the egress port of the shortest topology path from the network device 1 to the network device 3 (i.e., the port connected to the network device 4 on the network device 1), and the second flow table issued to the network device 3 records the user-side access link AC 30.
In the embodiment of the present invention, when the virtual connection between the first network device and the second network device corresponds to a user side access link pair, the first flow table records a first user side access link, an egress port, and an MAC address of the second network device, which correspond to the virtual connection, and the second flow table records a second user side access link, which corresponds to the virtual connection. Alternatively, when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs, the controller further needs to determine the tunnel labels uniquely corresponding to the first user-side access link and the second user-side access link. Further, when the controller generates the first flow table, a tunnel label is recorded in the first flow table, that is, a first user side access link, a tunnel label, an egress port and an MAC address of the second network device corresponding to the virtual connection are recorded in the first flow table; when the controller generates the second flow table, a tunnel label is recorded in the second flow table, that is, a second user side access link and a tunnel label corresponding to the virtual connection are recorded in the second flow table.
Wherein, the tunnel label only identifies the user side access link pair on the virtual connection. For different user side access link pairs on the same virtual connection, each user side access link pair needs to correspond to a unique tunnel label. The same tunnel label may be used for user-side access link pairs on different virtual connections.
For example, the user-side access link pair corresponding to virtual connection 1 between network device 1 and network device 3 includes: AC10-AC30, AC10-AC31, AC11-AC30, AC11-AC31, thus, different tunnel labels will be used for AC10-AC30, AC10-AC31, AC11-AC30, AC11-AC 31. For example, AC10-AC30 uses tunnel tag 1, AC10-AC31 uses tunnel tag 2, AC11-AC30 uses tunnel tag 3, and AC11-AC31 uses tunnel tag 4. Based on this, the user side access link pair is AC10-AC30, and the first flow table records the first user side access link AC10 corresponding to the virtual connection, the tunnel label 1, the exit port of the corresponding network device 3 on the network device 1 (i.e. the port of the network device 4 connected on the network device 1), and the MAC address of the network device 3; the second flow table records the second user-side access link AC30 and tunnel label 1 corresponding to the virtual connection.
Step 203, when receiving the message from the first user side access link, the first network device performs virtual connection tunnel encapsulation on the message, and sends the encapsulated message through the output port recorded in the first flow table.
In the embodiment of the present invention, the first flow table records the first user side access link, the egress port and the MAC address of the second network device corresponding to the virtual connection. Therefore, when the first network device receives a message corresponding to the first user-side access link recorded in the first flow table, the first network device performs virtual connection tunnel encapsulation for the message by using the MAC address of the second network device corresponding to the first user-side access link recorded in the first flow table, the tunnel header of the encapsulated message carries the MAC address of the second network device, that is, the destination MAC address is the MAC address of the second network device, and then the first network device sends the encapsulated message through the output port corresponding to the first user-side access link recorded in the first flow table.
Step 204, when the network device (i.e. the intermediate network device between the first network device and the second network device) receives the encapsulated packet sent to the second network device by the first network device, if the MAC address (i.e. the destination MAC address) carried in the header of the encapsulated packet is the MAC address of the other network device recorded in the third flow table, the encapsulated packet is forwarded through the corresponding egress port.
In the embodiment of the present invention, the third flow table records MAC addresses of other network devices and output ports from the network device to the other network devices (i.e., output ports on the network device to the shortest topology path of the other network devices). Therefore, after receiving the encapsulated packet sent by the first network device to the second network device, the network device queries the third flow table through the MAC address carried in the header of the encapsulated packet (i.e., the destination MAC address carried in the header of the encapsulated packet). If the destination MAC address carried in the header of the encapsulated packet is the MAC address of the other network device (i.e., the MAC address of the second network device) recorded in the third flow table, the network device forwards the encapsulated packet through the corresponding egress port (i.e., the forwarding port of the shortest topology path from the network device to the other network device) of the MAC address of the other network device (i.e., the second network device) in the third flow table.
Step 205, when the second network device receives the encapsulated packet, if the MAC address carried in the header of the encapsulated packet (i.e. the destination MAC address carried in the header of the encapsulated packet) is the MAC address of the second network device, the second network device decapsulates the encapsulated packet to obtain the decapsulated packet, and sends the decapsulated packet through the second user-side access link.
In the embodiment of the present invention, since the second flow table records the second user-side access link corresponding to the virtual connection, after the second network device receives the encapsulated packet, if the destination MAC address carried in the header of the encapsulated packet is the MAC address of the second network device, the second network device decapsulates the encapsulated packet to obtain the decapsulated packet, and sends the decapsulated packet through the second user-side access link recorded in the second flow table.
In the embodiment of the present invention, when the virtual connection between the first network device and the second network device corresponds to a plurality of user side access link pairs, the first flow table records a first user side access link, a tunnel tag, an egress port, and an MAC address of the second network device corresponding to the virtual connection, and the second flow table records a second user side access link and a tunnel tag corresponding to the virtual connection. Based on this, when the first network device performs virtual connection tunnel encapsulation on the message, the tunnel header of the encapsulated message also carries a tunnel label; before sending the message through the second user side access link, the second network device also queries the second flow table through the tunnel label carried in the head of the encapsulated message to obtain the corresponding second user side access link.
In step 203, when the first network device receives a packet corresponding to the first user-side access link recorded in the first flow table, the first network device performs virtual connection tunnel encapsulation for the packet by using the MAC address and the tunnel tag of the second network device recorded in the first flow table, that is, the tunnel header of the encapsulated packet carries the MAC address and the tunnel tag of the second network device, and the first network device sends the encapsulated packet through the egress port recorded in the first flow table.
In step 204, after receiving the encapsulated packet, the intermediate network device between the first network device and the second network device queries a third flow table through the destination MAC address carried in the header of the encapsulated packet. If the destination MAC address carried in the header of the encapsulated packet is the MAC address of the other network device (i.e., the MAC address of the second network device) recorded in the third flow table, the network device forwards the encapsulated packet at the corresponding output port (from the network device to the forwarding port of the other network device) in the third flow table through the MAC address of the other network device (i.e., the MAC address of the second network device).
In step 205, after the second network device receives the encapsulated packet, if it is determined that the destination MAC address carried in the header of the encapsulated packet is the MAC address of the second network device, the second network device decapsulates the encapsulated packet to obtain the decapsulated packet, queries the second flow table through the tunnel tag carried in the header of the encapsulated packet to obtain the corresponding second user-side access link, and sends the decapsulated packet through the second user-side access link recorded in the second flow table.
In the application scenario shown in fig. 1, a terminal device 1 under the user side access link AC10 and a terminal device 3 under the access user side access link AC30 in the SDN network are taken as examples for explanation. In this application scenario, it is assumed that the terminal device 1 and the terminal device 3 have mutually learned ARP (Address Resolution Protocol) information and directly perform IP access.
In step 203, the network device 1 receives the message sent by the terminal device 1, and recognizes that the message is a message corresponding to the user-side access link AC10 according to the ingress port and the VLAN of the message. The network device 1 queries the first flow table by using the user side access link AC10, and obtains that the MAC address of the second network device corresponding to the user side access link AC10 is the MAC address of the network device 3, and the tunnel label corresponding to the user side access link AC10 is the tunnel label 1. The network device 1 performs virtual connection tunnel encapsulation for the packet by using the MAC address and the tunnel label of the second network device recorded in the first flow table, that is, the destination MAC address carried in the header of the encapsulated packet is the MAC address of the network device 3, and the tunnel label carried in the header of the encapsulated packet is the tunnel label 1. The network device 1 sends the encapsulated packet through the output port corresponding to the user-side access link AC10 (i.e., the output port connected to the network device 4 on the network device 1) recorded in the first flow table, and it is assumed that the encapsulated packet is sent to the network device 4.
In step 204, after receiving the encapsulated packet, the network device 4 queries the third flow table through the destination MAC address carried in the header of the encapsulated packet, and finds that the destination MAC address carried in the header of the encapsulated packet is the MAC address of the network device 3, so that the network device 4 forwards the encapsulated packet through the corresponding exit port (i.e., the forwarding port from the network device 4 to the network device 3) in the third flow table through the MAC address of the network device 3, that is, the network device 4 sends the encapsulated packet to the network device 3.
In step 205, after the network device 3 receives the encapsulated packet, because the destination MAC address carried in the header of the encapsulated packet is the MAC address of the network device 3, the network device 3 decapsulates the encapsulated packet to obtain the decapsulated packet, and queries the second flow table through the tunnel tag 1 carried in the header of the encapsulated packet to identify that the corresponding second user-side access link is AC30, so that the network device 3 sends the decapsulated packet through the second user-side access link AC30 recorded in the second flow table, and the decapsulated packet is forwarded to the terminal device 3 through the AC 30.
Then, the terminal device 3 generates a response message, and after the response message reaches the network device 3, the process of the network device 3 sending the response message to the network device 1 is similar to the process of the network device 1 sending the message to the network device 3, and is not described herein again. After receiving the response message, the network device 1 transfers the response message to the terminal device 1 through the AC10, thereby completing the message interaction between the terminal device 1 and the terminal device 3.
In the embodiment of the present invention, when the network topology is changed, the controller further needs to determine the updated network topology, and generate a third flow table for each network device again by using the updated network topology, and generate a first flow table for the first network device again by using the updated network topology, and generate a second flow table for the second network device again by using the updated network topology. The generating process of the first flow table, the second flow table, and the third flow table is similar to the above manner, and is not repeated here.
In the embodiment of the invention, the flow table query process on each network device comprises source MAC address filtering and destination MAC address searching. The source MAC address filtering refers to searching a source MAC address of a received message, and if a message input port is not a port in an MAC table, the message is discarded. If the message input port is the port in the MAC table, the target MAC address is searched, if the target MAC address is found, the message is forwarded, and if the target MAC address is not found, the message is directly discarded.
Based on this, when the network device receives the encapsulated packet, the network device further needs to determine an egress port corresponding to the source MAC address corresponding to the encapsulated packet in the MAC table (i.e., the third flow table); if the output port is the same as the receiving port of the encapsulated message on the network equipment, the network equipment allows the encapsulated message to be forwarded; if the output port is different from the receiving port, the network device directly discards the encapsulated message.
In summary, in the embodiment of the present invention, a point-to-point virtual connection is established between a network device and a network device in an SDN network, and a flow table corresponding to the virtual connection is issued on the network device, so that when a controller generates the flow table, it is not necessary to learn a destination MAC address carried in a packet or to generate the flow table based on the destination MAC address, thereby avoiding a large number of learning tasks of a host. Further, virtual connections are established between any two network devices in the SDN network, and all service packets (which may be ethernet packets and non-ethernet packets) are carried through the virtual connections, so that the SDN network does not perceive the packet type, and only needs to identify the virtual connection to which the packet belongs. Further, a Virtual connection function is realized in the SDN Network, the Virtual connection is generated by the controller according to the topology, a VPN (Virtual Private Network) function is not required to be relied on, a loop can be prevented, and transparent transmission of the packet is realized.
Based on the same inventive concept as the method, an embodiment of the present invention further provides a controller, which is applied in a software defined network SDN including the controller and a plurality of network devices, as shown in fig. 3, where the controller specifically includes:
a determining module 11, configured to determine that a virtual connection needs to be established between a first network device and a second network device;
a generating module 12, configured to generate a first flow table for the first network device, and generate a second flow table for the second network device; wherein, the first flow table records a first user side access link, an egress port and a media access control MAC address of the second network device corresponding to the virtual connection; a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a sending module 13, configured to send the first flow table to the first network device, where the first flow table is used to indicate that the first network device performs virtual connection tunnel encapsulation on a packet when receiving the packet from the first user side access link, and a header of the encapsulated packet carries an MAC address of the second network device, and sends the encapsulated packet through the egress port;
and issuing the second flow table to the second network device, where the second flow table is used to indicate that, when the second network device receives the encapsulated packet, if the MAC address carried in the header of the encapsulated packet is the MAC address of the second network device, decapsulate the encapsulated packet to obtain the packet, and send the packet through the second user-side access link.
The determining module 11 is further configured to determine, when the virtual connection between the first network device and the second network device corresponds to multiple user-side access link pairs, tunnel labels uniquely corresponding to the first user-side access link and the second user-side access link;
when the generating module 12 generates the first flow table, the tunnel tag is further recorded in the first flow table, and the header of the encapsulated packet also carries the tunnel tag;
when the generating module 12 generates the second flow table, the tunnel tag is further recorded in the second flow table, and before the second network device sends the packet, the second flow table is queried through the tunnel tag carried in the header of the encapsulated packet, so as to obtain the corresponding second user-side access link.
The generating module 12 is further configured to determine a network topology among the plurality of network devices in the SDN, and determine a topological shortest path from each network device to other network devices by using the network topology; for each network device, generating a third flow table for the network device using a topological shortest path from the network device to other network devices; the third flow table records the MAC addresses of the other network devices and the exit ports of the shortest topology path from the network device to the other network devices;
the sending module 13 is further configured to send the third flow table to the network device, where the third flow table is used to instruct the network device to forward the encapsulated packet through a corresponding egress port if the MAC address carried in the head of the encapsulated packet is the MAC address of another network device recorded in the third flow table when the network device receives the encapsulated packet sent by the first network device to the second network device.
The modules of the device can be integrated into a whole or can be separately deployed. The modules can be combined into one module, and can also be further split into a plurality of sub-modules.
Based on the same inventive concept as the method, an embodiment of the present invention further provides a network device, which is applied in a software defined network SDN including a controller and a plurality of network devices, as shown in fig. 4, where the network device specifically includes:
a receiving module 21, configured to receive a flow table issued by a controller to a first network device when the controller determines that a virtual connection needs to be established between the first network device and a second network device; when the network device is used as a first network device, the flow table is a first flow table, and a first user side access link, an egress port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection are recorded in the first flow table; when the network device is used as a second network device, the flow table is a second flow table, and a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a processing module 22, configured to, when receiving a packet from the first user-side access link, query the first flow table through the first user-side access link, perform virtual connection tunnel encapsulation on the packet by using information recorded in the first flow table, carry an MAC address of the second network device in a header of the encapsulated packet, and send the encapsulated packet through the egress port;
when receiving the packaged message, obtaining an MAC address carried in the head of the packaged message; and if the MAC address is the MAC address of the network equipment, decapsulating the encapsulated message, and sending the decapsulated message through a second user side access link recorded in the second flow table.
In this embodiment of the present invention, when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs,
when the network device is a first network device, a tunnel tag is further recorded in the first flow table received by the receiving module 21, where the tunnel tag is a tunnel tag uniquely corresponding to the first user-side access link and the second user-side access link; when the processing module 22 performs virtual connection tunnel encapsulation on the packet, the tunnel tag is also carried in the header of the encapsulated packet; or,
when the network device is a second network device, a tunnel tag is further recorded in the second flow table received by the receiving module 21, where the tunnel tag is a tunnel tag uniquely corresponding to the first user-side access link and the second user-side access link; when the decapsulated message is sent through the second user-side access link recorded in the second flow table, the processing module 22 queries the second flow table through a tunnel tag carried in a header of the encapsulated message to obtain a corresponding second user-side access link, and sends the decapsulated message through the second user-side access link.
The receiving module 21 is further configured to receive a third flow table issued by the controller to the network device, where the third flow table is generated and issued by the controller for the network device by using a shortest topology path from the network device to another network device, and an MAC address of the another network device and an output port of the shortest topology path from the network device to the another network device are recorded in the third flow table;
the processing module 22 is further configured to, when receiving an encapsulated packet sent by the first network device to the second network device, forward the encapsulated packet through the corresponding egress port if the MAC address carried in the header of the encapsulated packet is the MAC address of the other network device recorded in the third flow table.
The processing module 22 is further configured to determine, when the encapsulated packet is received, an egress port corresponding to the source MAC address corresponding to the encapsulated packet in the MAC table; if the output port is the same as the receiving port of the packaged message received on the network equipment, the packaged message is allowed to be forwarded; and if the output port is different from the receiving port, directly discarding the encapsulated message.
The modules of the device can be integrated into a whole or can be separately deployed. The modules can be combined into one module, and can also be further split into a plurality of sub-modules.
Through the above description of the embodiments, those skilled in the art will clearly understand that the present invention may be implemented by software plus a necessary general hardware platform, and certainly may also be implemented by hardware, but in many cases, the former is a better embodiment. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute the methods according to the embodiments of the present invention. Those skilled in the art will appreciate that the drawings are merely schematic representations of one preferred embodiment and that the blocks or flow diagrams in the drawings are not necessarily required to practice the present invention. Those skilled in the art will appreciate that the modules in the devices in the embodiments may be distributed in the devices in the embodiments according to the description of the embodiments, and may be correspondingly changed in one or more devices different from the embodiments. The modules of the above embodiments may be combined into one module, or further split into multiple sub-modules. The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments. The above disclosure is only for a few specific embodiments of the present invention, but the present invention is not limited thereto, and any variations that can be made by those skilled in the art are intended to fall within the scope of the present invention.
Claims (14)
1. A message transmission method based on virtual connection is applied to a Software Defined Network (SDN) comprising a controller and a plurality of network devices, and the method comprises the following steps:
the controller determines that a virtual connection needs to be established between the first network device and the second network device;
the controller generates a first flow table for a first network device, and issues the first flow table to the first network device, wherein the first flow table records a first user side access link, an output port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection; the first flow table is used for indicating that the first network device performs virtual connection tunnel encapsulation on the message when receiving the message from the first user side access link, carries the MAC address of the second network device in the head of the encapsulated message, and sends the encapsulated message through the output port;
the controller generates a second flow table for a second network device, and issues the second flow table to the second network device, wherein a second user side access link corresponding to the virtual connection is recorded in the second flow table; and the second flow table is used for indicating that when the second network equipment receives the encapsulated message, if the MAC address carried in the head of the encapsulated message is the MAC address of the second network equipment, the encapsulated message is de-encapsulated to obtain the message, and the message is sent through the second user side access link.
2. The method of claim 1, wherein the method further comprises:
when the virtual connection between the first network device and the second network device corresponds to a plurality of user side access link pairs, the controller determines tunnel labels uniquely corresponding to the first user side access link and the second user side access link;
when the controller generates the first flow table, the tunnel tag is recorded in the first flow table, and the encapsulated header of the packet also carries the tunnel tag;
when the controller generates the second flow table, the tunnel tag is recorded in the second flow table, and before the second network device sends the packet, the second flow table is queried through the tunnel tag carried in the header of the encapsulated packet, so as to obtain a corresponding second user side access link.
3. The method of claim 1, wherein prior to the controller establishing the virtual connection between the first network device and the second network device, the method further comprises:
the controller determining a network topology among the plurality of network devices in the SDN and determining topological shortest paths from each network device to other network devices using the network topology;
for each network device, the controller generates a third flow table for the network device by using the topological shortest path from the network device to other network devices, and issues the third flow table to the network device, where the third flow table records the MAC address of the other network device and an output port of the topological shortest path from the network device to the other network devices; and the third flow table is used for indicating that when the network device receives the encapsulated message sent to the second network device by the first network device, if the MAC address carried in the head of the encapsulated message is the MAC address of the other network device recorded in the third flow table, the encapsulated message is forwarded through the corresponding output port.
4. A message transmission method based on virtual connection is applied to a Software Defined Network (SDN) comprising a controller and a plurality of network devices, and the method comprises the following steps:
when the controller determines that a virtual connection needs to be established between the first network device and the second network device,
the network equipment receives a flow table issued to the network equipment by a controller; when the network device is used as a first network device, the flow table is a first flow table, and a first user side access link, an egress port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection are recorded in the first flow table; when the network device is used as a second network device, the flow table is a second flow table, and a second user side access link corresponding to the virtual connection is recorded in the second flow table;
when the network device receives a message from the first user side access link, the first flow table is inquired through the first user side access link, virtual connection tunnel encapsulation is carried out on the message by using information recorded in the first flow table, the MAC address of the second network device is carried in the head of the encapsulated message, and the encapsulated message is sent through the output port;
when the network equipment receives the packaged message, the network equipment obtains an MAC address carried in the head of the packaged message; and if the MAC address is the MAC address of the network equipment, decapsulating the encapsulated message, and sending the decapsulated message through a second user side access link recorded in the second flow table.
5. The method of claim 4, wherein when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs, the method further comprises:
when the network device is used as a first network device, a tunnel tag is further recorded in the first flow table, and the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; when the network device performs virtual connection tunnel encapsulation on the message, the tunnel label is also carried in the head of the encapsulated message; or,
when the network device is used as a second network device, a tunnel label is further recorded in the second flow table, and the tunnel label is a tunnel label uniquely corresponding to the first user side access link and the second user side access link; when the network device sends the decapsulated message through the second user side access link recorded in the second flow table, the network device queries the second flow table through a tunnel label carried in a header of the encapsulated message to obtain a corresponding second user side access link, and sends the decapsulated message through the second user side access link.
6. The method of claim 4, wherein the need to establish the virtual connection between the first network device and the second network device is preceded by:
the network device receives a third flow table issued to the network device by the controller, the third flow table is generated and issued for the network device by the controller by using the topological shortest path from the network device to other network devices, and the third flow table records the MAC address of other network devices and the output port of the topological shortest path from the network device to other network devices;
when the network device receives the encapsulated message sent to the second network device by the first network device, if the MAC address carried in the head of the encapsulated message is the MAC address of the other network device recorded in the third flow table, the network device forwards the encapsulated message through the corresponding output port.
7. The method of claim 6, wherein the method further comprises:
when the network equipment receives the packaged message, determining an output port corresponding to a source MAC address corresponding to the packaged message in an MAC table; if the output port is the same as the receiving port of the encapsulated message received on the network equipment, the network equipment allows the encapsulated message to be forwarded; and if the output port is different from the receiving port, the network equipment directly discards the packaged message.
8. A controller, applied in a Software Defined Network (SDN) comprising the controller and a plurality of network devices, specifically comprising:
a determining module, configured to determine that a virtual connection needs to be established between a first network device and a second network device;
a generating module, configured to generate a first flow table for the first network device and a second flow table for the second network device; wherein, the first flow table records a first user side access link, an egress port and a media access control MAC address of the second network device corresponding to the virtual connection; a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a sending module, configured to send the first flow table to the first network device, where the first flow table is used to indicate that the first network device performs virtual connection tunnel encapsulation on a packet when receiving the packet from the first user side access link, and a header of the encapsulated packet carries an MAC address of the second network device, and sends the encapsulated packet through the egress port;
and issuing the second flow table to the second network device, where the second flow table is used to indicate that, when the second network device receives the encapsulated packet, if the MAC address carried in the header of the encapsulated packet is the MAC address of the second network device, decapsulate the encapsulated packet to obtain the packet, and send the packet through the second user-side access link.
9. The controller of claim 8,
the determining module is further configured to determine, when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs, a tunnel label uniquely corresponding to the first user-side access link and the second user-side access link;
when the generation module generates the first flow table, the tunnel tag is recorded in the first flow table, and the encapsulated header of the packet also carries the tunnel tag;
when the generating module generates the second flow table, the tunnel tag is further recorded in the second flow table, and before the second network device sends the packet, the second flow table is queried through the tunnel tag carried in the header of the encapsulated packet, so as to obtain a corresponding second user side access link.
10. The controller of claim 8,
the generation module is further configured to determine a network topology among the plurality of network devices in the SDN, and determine a topological shortest path from each network device to other network devices using the network topology; for each network device, generating a third flow table for the network device using a topological shortest path from the network device to other network devices; the third flow table records the MAC addresses of the other network devices and the exit ports of the shortest topology path from the network device to the other network devices;
the sending module is further configured to send the third flow table to the network device, where the third flow table is used to instruct the network device to forward the encapsulated packet through a corresponding egress port if the MAC address carried in the head of the encapsulated packet is the MAC address of another network device recorded in the third flow table when the network device receives the encapsulated packet sent to the second network device by the first network device.
11. A network device, applied in a software defined network SDN including a controller and a plurality of network devices, specifically comprising:
the receiving module is used for receiving a flow table issued by the controller to the network equipment when the controller determines that virtual connection needs to be established between the first network equipment and the second network equipment; when the network device is used as a first network device, the flow table is a first flow table, and a first user side access link, an egress port and a Media Access Control (MAC) address of a second network device corresponding to the virtual connection are recorded in the first flow table; when the network device is used as a second network device, the flow table is a second flow table, and a second user side access link corresponding to the virtual connection is recorded in the second flow table;
a processing module, configured to query the first flow table through the first user-side access link when receiving a packet from the first user-side access link, perform virtual connection tunnel encapsulation on the packet by using information recorded in the first flow table, carry an MAC address of the second network device in a header of the encapsulated packet, and send the encapsulated packet through the egress port;
when receiving the packaged message, obtaining an MAC address carried in the head of the packaged message; and if the MAC address is the MAC address of the network equipment, decapsulating the encapsulated message, and sending the decapsulated message through a second user side access link recorded in the second flow table.
12. The network device of claim 11, wherein when the virtual connection between the first network device and the second network device corresponds to a plurality of user-side access link pairs,
when the network device is used as a first network device, a tunnel tag is further recorded in a first flow table received by the receiving module, wherein the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; when the processing module performs virtual connection tunnel encapsulation on the message, the tunnel label is also carried in the head of the encapsulated message; or,
when the network device is used as a second network device, a tunnel tag is recorded in a second flow table received by the receiving module, wherein the tunnel tag is a tunnel tag uniquely corresponding to the first user side access link and the second user side access link; and when the processing module sends the decapsulated message through the second user side access link recorded in the second flow table, querying the second flow table through a tunnel label carried in the header of the encapsulated message to obtain a corresponding second user side access link, and sending the decapsulated message through the second user side access link.
13. The network device of claim 11,
the receiving module is further configured to receive a third flow table issued by the controller to the network device, where the third flow table is generated and issued by the controller for the network device by using a topological shortest path from the network device to another network device, and an MAC address of the another network device and an output port of the topological shortest path from the network device to the another network device are recorded in the third flow table;
the processing module is further configured to, when receiving an encapsulated packet sent to the second network device by the first network device, forward the encapsulated packet through the corresponding egress port if the MAC address carried in the header of the encapsulated packet is the MAC address of the other network device recorded in the third flow table.
14. The network device of claim 13,
the processing module is further configured to determine, when the encapsulated packet is received, an output port corresponding to a source MAC address corresponding to the encapsulated packet in an MAC table; if the output port is the same as the receiving port of the packaged message received on the network equipment, the packaged message is allowed to be forwarded; and if the output port is different from the receiving port, directly discarding the encapsulated message.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410425612.5A CN104219149B (en) | 2014-08-26 | 2014-08-26 | A kind of message transmitting method and equipment based on virtual connections |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410425612.5A CN104219149B (en) | 2014-08-26 | 2014-08-26 | A kind of message transmitting method and equipment based on virtual connections |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104219149A CN104219149A (en) | 2014-12-17 |
| CN104219149B true CN104219149B (en) | 2018-07-13 |
Family
ID=52100298
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410425612.5A Active CN104219149B (en) | 2014-08-26 | 2014-08-26 | A kind of message transmitting method and equipment based on virtual connections |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104219149B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104618194B (en) * | 2015-02-15 | 2018-03-20 | 新华三技术有限公司 | Software defined network monitoring messages method and SDN controllers, switching equipment |
| CN104702479B (en) * | 2015-03-10 | 2018-08-24 | 新华三技术有限公司 | The method and apparatus that tunnel is established in SDN network |
| CN105763465B (en) * | 2016-01-29 | 2019-01-22 | 新华三技术有限公司 | A kind of distributed group interflow amount control method and device |
| CN108429652A (en) * | 2017-02-14 | 2018-08-21 | 中兴通讯股份有限公司 | Distal end traffic mirroring control method, implementation method and relevant device based on SDN |
| CN107241254B (en) * | 2017-05-19 | 2020-06-05 | 北京知道创宇信息技术股份有限公司 | Network connection device, network system and networking method |
Family Cites Families (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPWO2012133060A1 (en) * | 2011-03-29 | 2014-07-28 | 日本電気株式会社 | Network system and VLAN tag information acquisition method |
| US8762501B2 (en) * | 2011-08-29 | 2014-06-24 | Telefonaktiebolaget L M Ericsson (Publ) | Implementing a 3G packet core in a cloud computer with openflow data and control planes |
| JP2013105308A (en) * | 2011-11-14 | 2013-05-30 | Nippon Telegr & Teleph Corp <Ntt> | Load distribution system, load distribution device, load distribution method and load distribution program |
| US9210615B2 (en) * | 2012-09-17 | 2015-12-08 | Brocade Communications Systems, Inc. | Method and system for elastic and resilient 3G/4G mobile packet networking for subscriber data flow using virtualized switching and forwarding |
| US8693374B1 (en) * | 2012-12-18 | 2014-04-08 | Juniper Networks, Inc. | Centralized control of an aggregation network with a reduced control plane |
| CN103888386B (en) * | 2012-12-24 | 2017-10-17 | 华为技术有限公司 | The transmission method and device, system of expansible virtual local area network packet |
| CN103346981B (en) * | 2013-06-28 | 2016-08-10 | 华为技术有限公司 | Virtual switch method, relevant apparatus and computer system |
| CN103607347B (en) * | 2013-11-15 | 2017-07-28 | 华为技术有限公司 | Set up the method and controller of transmission channel |
| CN103746925B (en) * | 2013-12-13 | 2017-06-30 | 北京邮电大学 | A kind of FiWi UNEs and the communication means based on FiWi UNEs |
| CN103747502B (en) * | 2014-02-18 | 2017-06-23 | 中国联合网络通信集团有限公司 | The processing method and system of a kind of GTP tunnel |
-
2014
- 2014-08-26 CN CN201410425612.5A patent/CN104219149B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN104219149A (en) | 2014-12-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109873760B (en) | Method and device for processing route, and method and device for data transmission | |
| EP3863237B1 (en) | Packet forwarding method, packet transmission device, and packet reception device | |
| US20220078114A1 (en) | Method and Apparatus for Providing Service for Traffic Flow | |
| US7787480B1 (en) | Routing frames in a trill network using service VLAN identifiers | |
| US8509248B2 (en) | Routing frames in a computer network using bridge identifiers | |
| CN102857416B (en) | A kind of realize the method for virtual network, controller and virtual network | |
| CN104243270B (en) | A kind of method and apparatus for establishing tunnel | |
| US20120099602A1 (en) | End-to-end virtualization | |
| EP3197107B1 (en) | Message transmission method and apparatus | |
| US10284461B2 (en) | Method and related apparatus for probing packet forwarding path | |
| WO2012090996A1 (en) | Information system, control device, virtual network provision method and program | |
| CN104219149B (en) | A kind of message transmitting method and equipment based on virtual connections | |
| EP3069471B1 (en) | Optimized multicast routing in a clos-like network | |
| EP2099180B1 (en) | Switching device and method for Layer-2 forwarding of OAM frames with multicast Layer-3 addresses | |
| WO2014176740A1 (en) | Stream classifier, service routing trigger, and message processing method and system | |
| EP3382955A1 (en) | Service function chaining (sfc) communication method and device | |
| WO2018214809A1 (en) | Message transmission method and device, and storage medium | |
| CN105812259A (en) | Packet forwarding method and device | |
| EP3113425B1 (en) | Encapsulation method for service routing packet, service forwarding entity and control plane | |
| CN103490968B (en) | Method and device for interconnecting across data centers in FCoE network | |
| US9699117B2 (en) | Integrated fibre channel support in an ethernet fabric switch | |
| JP6525256B2 (en) | Virtual network system and virtual network route setting method | |
| JP6206493B2 (en) | CONTROL DEVICE, COMMUNICATION SYSTEM, RELAY DEVICE CONTROL METHOD, AND PROGRAM | |
| JP7273125B2 (en) | Method and first network device for transmitting BIERv6 packets | |
| JP2013078087A (en) | Vpn termination device, communication system, packet forwarding method, and program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant before: Huasan Communication Technology Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |