CN104702708A - Method, equipment and system for obtaining address resolution protocol information, and network virtualization endpoint - Google Patents

Method, equipment and system for obtaining address resolution protocol information, and network virtualization endpoint Download PDF

Info

Publication number
CN104702708A
CN104702708A CN201310658962.1A CN201310658962A CN104702708A CN 104702708 A CN104702708 A CN 104702708A CN 201310658962 A CN201310658962 A CN 201310658962A CN 104702708 A CN104702708 A CN 104702708A
Authority
CN
China
Prior art keywords
host
arp
address
nvo3
ternary
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310658962.1A
Other languages
Chinese (zh)
Other versions
CN104702708B (en
Inventor
杨坚锐
杨继尚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201310658962.1A priority Critical patent/CN104702708B/en
Publication of CN104702708A publication Critical patent/CN104702708A/en
Application granted granted Critical
Publication of CN104702708B publication Critical patent/CN104702708B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/10Mapping addresses of different types
    • H04L61/103Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention provides a method, equipment and a system for obtaining address resolution protocol information and a network virtualization endpoint. Address resolution protocol information proxy equipment receives an ARP (Address Resolution Protocol) request, which is sent by a source network virtualization endpoint connected to a first host and is packaged by an NOV3 (Network Virtualization Over Layer3) based on a layer3 overlay network, wherein the ARP request comprises an Internet protocol IP address of a second host; ternary ARP information of the second host is obtained according to the IP address of the second host, wherein the ternary ARP information comprises the corresponding relation of among the IP address of the second host, an MAC (Media Access Control) address and a PA (Public Address) of the NVE (Network Virtualization Endpoint) connected to the second host; an ARP response packaged by the NVO3 is generated according to the ternary ARP information, and the ARP response packaged by the NVO3 carries the ternary ARP information; the ARP response packaged by the NVO3 is sent to the source NVE connected to the first host. According to the method, the equipment and the system for obtaining the address resolution protocol information and the network virtualization endpoint, the problem that deployment of a message transmission path in the NVO3 network of the APR proxy equipment is not optimized is solved, so that a message does not need to pass the APR proxy equipment in a transmission process, and the network flow is saved further.

Description

Method, equipment and system for acquiring address resolution protocol information and network virtualization endpoint
Technical Field
The invention relates to the field of network communication, in particular to a method, equipment and a system for acquiring address resolution protocol information and a network virtualization endpoint.
Background
The Address Resolution Protocol (ARP) is a Protocol for resolving an Internet Protocol (IP) Address into a Media Access Control (MAC) Address (or a physical Address). When an ARP request is sent from a host on one network to a host on the other network, the routing device connecting the two networks can respond to the request, which is called ARP proxy, where the host sending the ARP request is called the first host, the host to which the ARP request is intended is called the second host, and the routing device implementing the ARP proxy is called ARP proxy device. Network Virtualization (Network Virtualization Over Layer3, NVO 3) based on a three-Layer overlay Network is an ideal two-Layer technology, and the range of the Network is expanded. And the ARP proxy process described above may be applied in NVO3 networks.
However, in the NVO3 Network with the ARP proxy device deployed, when a first host sends an ARP request to a second host, the ARP request is first sent to a source Network Virtualization Endpoint (NVE) connected to the first host. And the ARP request is sent to ARP proxy equipment after being encapsulated by the source NVE. Then, the ARP proxy device uses its MAC address as a response to the ARP request, so that the first host can only obtain the MAC address of the ARP proxy device. Because the first host only acquires the MAC address of the ARP proxy device, a packet sent from the first host to the second host must first be sent to the source NVE, and then sent to the ARP proxy device according to the MAC address of the ARP proxy device after being encapsulated by the source NVE, and finally forwarded to the second host through the destination NVE connected to the second host, because the first host in the NVO3 network cannot directly send the packet to the destination NVE through the source NVE, the packet is forwarded to the second host by the destination NVE, and the packet can be successfully sent only through the forwarding of the ARP proxy device by a third party. Compared with the direct transmission of the message, the forwarding of the ARP proxy equipment makes the transmission path of the message complicated, thereby causing the waste of network flow.
Disclosure of Invention
The invention provides a method, equipment and a system for acquiring address resolution protocol information and a network virtualization endpoint, which can enable a first host to directly send a message to a second host connected with a target NVE through a source NVE under the condition of not forwarding by a third party, thereby optimizing a message transmission path and saving network flow.
Therefore, the embodiment of the invention provides the following technical scheme:
in a first aspect, the present invention provides a method for obtaining address resolution protocol information, where the method is applied to an address resolution protocol ARP proxy device, and the method includes:
receiving an Address Resolution Protocol (ARP) request packaged by a network virtualization (NVO 3) based on a triple-layer overlay network and sent by a source network virtualization endpoint connected with a first host, wherein the ARP request packaged by the NVO3 comprises an Internet Protocol (IP) address of a second host;
acquiring ternary ARP information of the second host according to the IP address of the second host, wherein the ternary ARP information comprises the corresponding relation between the IP address of the second host, a Media Access Control (MAC) address and an operator address of a network virtualization endpoint connected with the second host;
generating an ARP response packaged by NVO3 according to the ternary ARP information, wherein the ARP response packaged by NVO3 carries the ternary ARP information;
sending the NVO3 encapsulated ARP reply to a source Network Virtualization Endpoint (NVE) connected to the first host.
In a first possible implementation manner of the first aspect, the generating an ARP reply encapsulated by NVO3 according to the ternary ARP information includes:
generating a message header of an ARP response packaged by NVO3 according to the MAC address in the ternary ARP information and the operator address of the network virtualization endpoint connected with the second host;
and generating a message load of the ARP response packaged by the NVO3 according to the IP address and the MAC address of the second host in the ternary ARP information.
With reference to the first aspect or the first possible implementation manner of the first aspect, in a second possible implementation manner, the obtaining, according to the IP address of the second host, ternary ARP information of the second host includes:
when determining that ternary ARP information comprising the IP address of the second host exists in a local ARP table, acquiring the ternary ARP information of the second host;
or,
when the fact that ternary ARP information comprising the IP address of the second host does not exist in a local ARP table is determined, a signaling request comprising the IP address of the second host is broadcasted to request the ternary ARP information corresponding to the IP address of the second host, and when a signaling response comprising the ternary ARP information is received, the ternary ARP information is obtained according to the signaling response.
In a second aspect, the present invention provides a method for obtaining address resolution protocol information, where the method is applied to a source NVE, the source NVE is connected to a first host, and the method includes:
receiving an ARP response packaged by network virtualization NVO3 based on a three-layer overlay network, wherein the ARP response packaged by the NVO3 comprises ternary ARP information of a second host, and the ternary ARP information comprises the corresponding relation between an IP address and an MAC address of the second host and an operator address of a network virtualization endpoint connected with the second host;
decapsulating the ARP reply encapsulated by the NVO3, obtaining the MAC address and an operator address of a network virtualization endpoint connected to the second host, and obtaining an ARP reply, where the ARP reply includes an IP address and an MAC address of the second host;
sending the ARP reply to the first host.
In a first possible implementation manner of the second aspect, the method further includes:
receiving a message which is sent by the first host and comprises an MAC address of a second host, and acquiring an operator address of a network virtualization endpoint corresponding to the MAC address;
packaging the message according to the operator address of the network virtualization endpoint to obtain an NVO3 packaging message, wherein the NVO3 packaging message carries the operator address of the network virtualization endpoint;
and sending the NVO3 encapsulation message to a target NVE so that the target NVE sends the de-encapsulated NVO3 encapsulation message to the second host, wherein the target NVE is connected with the second host.
With reference to the second aspect or the first possible implementation manner of the second aspect, in a second possible implementation manner, after decapsulating the ARP reply encapsulated by the NVO3, obtaining the MAC address and an operator address of a network virtualization endpoint connected to the second host, and obtaining an ARP reply, where the ARP reply includes an IP address and a MAC address of the second host, including:
acquiring the MAC address and the operator address of the network virtualization endpoint connected with the second host according to the message header of the ARP response packaged by the NVO 3;
and acquiring the IP address and the MAC address of the second host according to the message load of the ARP response packaged by the NVO 3.
With reference to the first possible implementation manner of the second aspect, in a third possible implementation manner, the sending the NVO3 encapsulated packet to the target NVE so that the target NVE sends the decapsulated NVO3 encapsulated packet to the second host includes:
establishing a tunnel according to an operator address of the network virtualization endpoint, the tunnel being used for communication between the source NVE and the target NVE;
and sending the NVO3 encapsulated message to the target NVE through the tunnel, so that the target NVE sends the de-encapsulated NVO3 encapsulated message to a second host corresponding to the MAC address.
In a third aspect, the present invention provides an apparatus for acquiring address resolution protocol information, where the apparatus includes:
the network virtualization system comprises a receiving module, a processing module and a processing module, wherein the receiving module is used for receiving an Address Resolution Protocol (ARP) request which is sent by a source network virtualization endpoint connected with a first host and is packaged by a Network Virtualization (NVO) 3 based on a three-layer overlay network, and the ARP request packaged by the NVO3 comprises an Internet Protocol (IP) address of a second host;
an obtaining module, configured to obtain ternary ARP information of the second host according to an IP address of the second host, where the ternary ARP information includes a correspondence between an IP address and a media access control MAC address of the second host and an operator address of a network virtualization endpoint connected to the second host;
an encapsulating module, configured to generate an ARP reply encapsulated by NVO3 according to the ternary ARP information, where the ARP reply encapsulated by NVO3 carries the ternary ARP information;
and a sending module, configured to send the ARP reply encapsulated by the NVO3 to a source network virtualization endpoint NVE connected to the first host.
In a first possible implementation manner of the third aspect, the encapsulation module includes:
a first encapsulation submodule, configured to generate a message header of an ARP reply encapsulated by NVO3 according to an MAC address in the ternary ARP information and an operator address of a network virtualization endpoint connected to the second host;
and the second packaging submodule is used for generating a message load of the ARP response packaged by the NVO3 according to the IP address and the MAC address of the second host in the ternary ARP information.
With reference to the third aspect or the first possible implementation manner of the third aspect, in a second possible implementation manner, the obtaining module includes:
the first obtaining sub-module is used for obtaining the ternary ARP information of the second host when the ternary ARP information comprising the IP address of the second host exists in a local ARP table;
or,
a broadcast sub-module, configured to broadcast a signaling request including the IP address of the second host to request ternary ARP information corresponding to the IP address of the second host when it is determined that ternary ARP information including the IP address of the second host does not exist in a local ARP table;
and the second obtaining submodule is used for obtaining the ternary ARP information according to the signaling response when the signaling response comprising the ternary ARP information is received.
In a fourth aspect, the present invention provides a network virtualization endpoint, connected to a first host, including:
a receiving module, configured to receive an ARP reply encapsulated by network virtualization NVO3 based on a three-layer overlay network, where the ARP reply encapsulated by NVO3 includes ternary ARP information of a second host, and the ternary ARP information includes a correspondence between an IP address and an MAC address of the second host and an operator address of a network virtualization endpoint connected to the second host;
a first obtaining module, configured to obtain the MAC address and an operator address of a network virtualization endpoint connected to the second host after decapsulating the ARP reply encapsulated by NVO3, and obtain an ARP reply, where the ARP reply includes an IP address and an MAC address of the second host;
and the first sending module is used for sending the ARP response to the first host.
In a first possible implementation manner of the fourth aspect, the network virtualization endpoint further includes:
a second obtaining module, configured to receive a message that includes an MAC address of a second host and is sent by the first host, and obtain an operator address of a network virtualization endpoint corresponding to the MAC address;
the encapsulating module is configured to encapsulate the packet according to the operator address of the network virtualization endpoint to obtain an NVO3 encapsulated packet, where the NVO3 encapsulated packet carries the operator address of the network virtualization endpoint;
a second sending module, configured to send the NVO3 encapsulated packet to a target NVE, so that the target NVE sends the decapsulated NVO3 encapsulated packet to the second host, where the target NVE is connected to the second host.
With reference to the fourth aspect or the first possible implementation manner of the fourth aspect, in a second possible implementation manner, the first obtaining module includes:
a first obtaining sub-module, configured to obtain, according to a header of the ARP reply encapsulated by the NVO3, the MAC address and an operator address of a network virtualization endpoint connected to the second host;
and the second obtaining sub-module is used for obtaining the IP address and the MAC address of the second host according to the message load of the ARP response packaged by the NVO 3.
With reference to the first possible implementation manner of the fourth aspect, in a third possible implementation manner, the second sending module includes:
the establishing submodule is used for establishing a tunnel according to an operator address of the network virtualization endpoint, and the tunnel is used for communication between the source NVE and the target NVE;
and the sending submodule is used for sending the NVO3 encapsulated message to the target NVE through the tunnel, so that the target NVE sends the decapsulated NVO3 encapsulated message to a second host corresponding to the MAC address.
In a fifth aspect, the present invention further provides a system for acquiring ARP information, where the system includes an ARP proxy device and a source network virtualization endpoint;
the ARP proxy equipment is the equipment for acquiring the ARP information, and the source NVE is the network virtualization endpoint.
The ARP proxy equipment generates an encapsulated ARP response according to the acquired ternary ARP information of the second host, and sends the encapsulated ARP response to the source NVE connected with the first host, and the source NVE decapsulates the encapsulated ARP response to obtain an MAC address and PA in the ternary ARP information. When the first host sends the message to the second host, firstly, the MAC address of the second host can be determined according to the corresponding relation between the IP address and the MAC address in the first host, secondly, the PA of the target NVE connected with the second host can be determined according to the MAC address and the PA in the source NVE, and then the message to be sent is packaged according to the PA and then sent to the target NVE, and finally the message is sent. Therefore, the invention solves the problem of complex message transmission path in the NVO3 network with the ARP proxy equipment, so that the message does not need to pass through the ARP proxy equipment in the transmission process, thereby saving network flow.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments are briefly introduced below, it is obvious that the drawings in the following description are only some embodiments described in the present application, and other drawings can be obtained by those skilled in the art according to the drawings.
Fig. 1 is a flowchart of a method for obtaining arp information according to a first embodiment of the present invention;
fig. 2 is a signaling diagram of a process of acquiring arp information according to a first embodiment of the present invention;
fig. 3 is an interaction diagram of the ARP proxy device acquiring ternary ARP information of the second host according to the first embodiment of the present invention;
fig. 4 is an interaction diagram of a process in which a first host sends a message to a second host according to a first embodiment of the present invention;
fig. 5 is a schematic diagram of a method for acquiring address resolution protocol information, which is applied to an NVO3 network across data centers according to a first embodiment of the present invention;
fig. 6 is a schematic diagram of a message format according to a first embodiment of the present invention;
FIG. 7 is a flowchart of a method for obtaining ARP information according to a second embodiment of the present invention;
FIG. 8 is a flowchart of a method for obtaining ARP information according to a second embodiment of the present invention;
fig. 9 is a structural diagram of an apparatus for acquiring arp information according to a third embodiment of the present invention;
fig. 10 is a schematic structural diagram of a package module 903 according to a third embodiment of the present invention;
fig. 11 is a schematic structural diagram of a network virtualization endpoint according to a third embodiment of the present invention;
fig. 12 is a schematic structural diagram of a network virtualization endpoint according to a third embodiment of the present invention;
fig. 13 is a system configuration diagram for acquiring arp information according to the third embodiment of the present invention;
fig. 14 is a schematic hardware configuration diagram of an apparatus for acquiring arp information according to a third embodiment of the present invention;
fig. 15 is a schematic hardware configuration diagram of a network virtualization endpoint according to a third embodiment of the present invention.
Detailed Description
In order to make the technical field of the invention better understand the scheme of the invention, the following detailed description of the embodiments of the invention is provided in conjunction with the accompanying drawings and the implementation mode.
Network Virtualization (NVO 3) based on a three-Layer overlay Network is an ideal large two-Layer technology, the range of a two-Layer Network is expanded, even the range of a cross Data Center (DC) can be expanded, and the Network Virtualization (NVO 3) is also an ideal deployment technology of inter-Data Center Interconnection (DCI). The NVO3 realizes data center virtualization two-layer network coverage by adopting message secondary packaging and tunnel technology, and has a good application prospect in a network virtualization process in the cloud computing era.
Example one
Referring to fig. 1, fig. 1 is a flowchart illustrating a method for acquiring ARP information according to this embodiment, where the method is applied to an ARP proxy device, and the method may include the following steps:
step 101: receiving an ARP request encapsulated by a network virtualization over three-layer overlay Network (NVO) 3 sent by a source network virtualization endpoint connected to a first host, the ARP request encapsulated by the NVO3 including an Internet Protocol (IP) address of a second host.
The ARP is a protocol that resolves an IP address into an MAC address, and in this embodiment, an ARP request sent by a first host includes an IP address of a second host to be requested. After receiving the ARP request including the IP address, the ARP proxy device may resolve the MAC address of the second host according to the IP address of the second host in the ARP request.
In actual operation, the first host may send an ARP request to the ARP proxy device via a source NVE connected to the first host, and when the ARP request reaches the source NVE, the source NVE encapsulates the ARP request by NVO3 and sends the encapsulated ARP request to the ARP proxy device. In particular, the NVE may be a switch or a server, etc.
Step 102: and acquiring ternary ARP information of the second host according to the IP Address of the second host, wherein the ternary ARP information comprises the corresponding relation between the IP Address and the MAC Address of the second host and the operator Address (English: Provider Address, abbreviation: PA) of NVE (network video express) connected with the second host.
The operator address of the NVE connected to the second host refers to an outer IP address used by the NVE connected to the second host when NVO3 encapsulation is performed on a message sent by the second host.
The ARP proxy device in this embodiment may obtain, according to the IP address in the received ARP request, ternary ARP information corresponding to the IP address. The ternary ARP information includes a correspondence between the IP address and the MAC address of the second host and the PA of the NVE connected to the second host, that is, a correspondence between the IP address and the MAC address of the second host and a correspondence between the MAC address and the PA of the NVE connected to the second host can be obtained according to the ternary ARP information.
Step 103: and generating an ARP response packaged by NVO3 according to the ternary ARP information, wherein the ARP response packaged by NVO3 carries the ternary ARP information.
In this embodiment, after acquiring the ternary ARP information of the second host, the ARP proxy device generates an ARP reply encapsulated by NVO3 according to the ternary ARP information, where the ARP reply encapsulated by NVO3 carries the ternary ARP information.
Specifically, the ARP proxy device may use a virtual extensible local area network (VXLAN), a network virtualization using general Routing Encapsulation (NVGRE), or a Stateless Transport Tunnel (STT) as an Encapsulation technique for the NVO3 network, and generate an ARP reply encapsulated by NVO3 according to the ternary ARP information by using a certain Encapsulation technique.
Notably, when the NVO3 network is established, the ARP proxy devices in the NVO3 network have determined which encapsulation technique can be used to generate the NVO3 encapsulated ARP reply.
Step 104: sending the NVO3 encapsulated ARP reply to a source Network Virtualization Endpoint (NVE) connected to the first host.
The ARP reply encapsulated by NVO3 is used to enable the source NVE to obtain the MAC address and PA of the second host, and establish a corresponding relationship between the MAC address and PA. And then, the source NVE decapsulates the ARP response encapsulated by the NVO3 to obtain an ARP response, and sends the ARP response to the first host, so that the first host acquires an IP address and an MAC address in the ARP response, updates a locally stored ARP table according to the IP address and the MAC address, and establishes a corresponding relation between the IP address and the MAC address. The correspondence between the IP address and the MAC address is used when the first host sends a message to the second host, and the first host may obtain the MAC address corresponding to the IP address of the second host according to the correspondence between the IP address and the MAC address and send out the message including the MAC address of the second host; after receiving the message, the source NVE firstly acquires the PA corresponding to the MAC address according to the previously established corresponding relation between the MAC address and the PA, encapsulates the message according to the PA to send to the target NVE connected with the second host, and decapsulates the message and sends the decapsulated message to the second host.
In this embodiment, the first host is connected to the source NVE, and the ARP proxy device obtains the ternary ARP information of the second host after receiving the ARP request, and generates an ARP reply encapsulated by NVO3 according to the ternary ARP information. And sends the NVO3 encapsulated ARP reply to the source NVE connected to the first host. When the NVO3 encapsulated ARP reply reaches the source NVE, the source NVE learns and saves the MAC address and PA in the ternary ARP information contained in the NVO3 encapsulated ARP reply NVO3 encapsulated packet. And when the source NVE acquires the MAC address and PA and then transmits the ARP reply encapsulated by the de-tunneling NVO3 to the first host, the first host may acquire the IP address and MAC address in the NVO3 encapsulated message.
In practical application, the method for the ARP proxy device to obtain the ternary ARP information of the second host is not limited, and the ARP proxy device may first search a local ARP table to determine whether the ARP table includes the ternary ARP information of the second host, where the local ARP table includes the ternary ARP information. And when the local ARP table comprises the ternary ARP information of the second host, acquiring the ternary ARP information of the second host. When the local ARP table does not include the ternary ARP information of the second host, a signaling request including the IP address of the second host may be broadcast to other ARP proxy devices to request the ternary ARP information of the second host, and when a signaling response including the ternary ARP information is received, the signaling response is parsed to obtain the ternary ARP information of the second host. The signaling request is a new control protocol message provided by the embodiment of the invention, and the new control protocol message carries an ARP identifier, wherein the ARP identifier is used for indicating that the signaling request message is used for acquiring the ternary ARP information.
When the ARP proxy devices in other networks receive the signaling request including the IP address of the second host broadcasted by the ARP proxy device, the ARP proxy devices in other networks may first search a local ARP table, if the search is not successful, reconstruct an ARP request to the second host using themselves as a source, and broadcast in the data center where the ARP request is located, obtain the ternary ARP information of the second host, and finally send the obtained ternary ARP information of the second host to the ARP proxy device of the first host.
To facilitate understanding of the process of acquiring the ARP information in this embodiment, a signaling diagram of the process of acquiring the ARP information is now provided, and referring to fig. 2, fig. 2 is a signaling diagram of the process of acquiring the ARP information in this embodiment, where Proxy1 is used to indicate an ARP Proxy device. The method comprises the steps that a first host firstly sends an ARP request comprising an IP address to a source NVE, the source NVE sends the packaged ARP request to Proxy1 after carrying out NVO3 packaging on the ARP request, the Proxy1 obtains the original ARP request after carrying out de-packaging on the packaged ARP request after receiving the packaged ARP request, and obtains ternary ARP information according to the IP address in the ARP request. After the Proxy1 acquires the ternary ARP information, generating an ARP response packaged by NVO3 according to the ternary ARP information, sending the ARP response packaged by NVO3 to a source NVE connected with the first host, learning and storing the corresponding relation between the MAC address and the PA in the ARP response packaged by NVO3 by the source NVE, decapsulating the ARP response packaged by NVO3 to obtain the ARP response, sending the ARP response to the first host, and acquiring the corresponding relation between the IP address and the MAC address by the first host through the ARP response.
Based on the characteristics of the NVO3 network, the ARP proxy device can not only obtain the ternary ARP information of the second host inside the data center, but also obtain the ternary ARP information of the second host across the data center. Referring to fig. 3, fig. 3 is an interaction diagram of the ARP Proxy device in this embodiment obtaining the ternary ARP information of the second host, where Proxy1 is still used to indicate the ARP Proxy device of the first host, and ProxyN is used to indicate the ARP Proxy device in a different data center from Proxy1, where ProxyN may be the ARP Proxy device of the second host. When Proxy1 receives an ARP request that includes an IP address, it first looks up a local ARP table to determine whether the ARP table includes ternary ARP information for the second host. When the local ARP table includes the ternary ARP information of the second host, the Proxy1 may directly obtain the ternary ARP information of the second host, generate an ARP reply encapsulated by NVO3 according to the ternary ARP information, feed back the ARP reply encapsulated by NVO3 to a source NVE connected to the first host, decapsulate the ARP reply encapsulated by NVO3 by the source NVE, obtain an MAC address and a PA, obtain an ARP reply at the same time, and send the ARP reply to the first host, so that the first host obtains the IP address and the MAC address of the second host in the ARP reply. When the ternary ARP information for the second host is not included in the local ARP table, Proxy1 may broadcast a signaling request across the data center to ARP Proxy devices ProxyN of other data centers, the signaling request being used to obtain the ternary ARP information. When the ProxyN receives the broadcasted signaling request, the ProxyN also searches a local ARP table at first, when the local ARP table includes the ternary ARP information of the second host, the ternary ARP information is replied to the Proxy1, and when the local ARP table does not include the ternary ARP information of the second host, the ProxyN reconstructs an ARP request to the second host by taking itself as a source and broadcasts in the data center to acquire the ternary ARP information. And when the ternary ARP information of the second host is successfully acquired, the proxyN replies the ternary ARP information to the Proxy1 in a signaling mode.
In this embodiment, after the ARP proxy device of the first host acquires the ternary ARP information of the second host, the ARP proxy device generates an ARP reply encapsulated by NVO3 according to the ternary ARP information, and sends the ARP reply encapsulated by NVO3 to a source NVE connected to the first host. And the source NVE learns the MAC address and the PA in the ARP response packaged by the NVO3, establishes the corresponding relation between the MAC address and the PA, decapsulates the ARP response packaged by the NVO3 to obtain the ARP response, and sends the ARP response to the first host. The first host acquires the IP address and the MAC address in the ARP response and establishes a corresponding relation between the IP address and the MAC address. In practical application, when the first host sends a message to the second host, the first host sends the message to the source NVE without forwarding by the ARP proxy device, the source NVE generates an NVO3 encapsulated message according to the PA of the NVE connected to the second host, and sends the NVO3 encapsulated message to the target NVE connected to the second host, and the target NVE decapsulates the NVO3 encapsulated message and then directly sends the encapsulated message to the second host, thereby saving network resources for forwarding the message.
Referring to fig. 4, fig. 4 is an interaction diagram of a process of sending a message from a first host to a second host in this embodiment, where when the first host wants to send a message to the second host, a MAC address corresponding to an IP address of the second host may be first obtained according to a corresponding relationship between the IP address and the MAC address, and the message including the MAC address is sent to a source NVE. Secondly, because the corresponding relationship between the MAC address and the PA is pre-established in the source NVE, the source NVE determines the PA corresponding to the MAC address according to the MAC address in the packet, and encapsulates the packet according to the PA, thereby obtaining an NVO3 encapsulated packet. And the source NVE sends the NVO3 encapsulated message to the target NVE through the tunnel, and the target NVE decapsulates the NVO3 encapsulated message to obtain the MAC address. And finally, the target NVE sends the decapsulated message to the second host corresponding to the MAC address, and the message sending process is finished.
To more clearly illustrate the application process of the method for obtaining address resolution protocol information, the application of the method for obtaining address resolution protocol information in the NVO3 network across data centers is described below with reference to fig. 5, and fig. 5 is a schematic diagram of the method for obtaining address resolution protocol information applied in the NVO3 network across data centers with reference to fig. 5. VM10.0.0.1 at Data Center1 (Data Center1, DC 1) as the first master, VM10.0.0.8 at Data Center n (DCn) as the second master, Proxy1 is used to represent ARP Proxy devices.
Step 1 in the figure shows that the first host VM10.0.0.1 sends out an ARP request including the IP address 10.0.0.8 of the second host, the Proxy1 connected to the first host VM10.0.0.1 receives the ARP request, searches a local ARP table, determines whether an ARP entry with an IP address of 10.0.0.8 exists in the local ARP table, when the local ARP table includes the ARP entry, the Proxy1 can directly obtain the ARP entry, generates an ARP reply encapsulated by NVO3 according to the ARP entry, and sends the ARP reply to the source NVE connected to the first host, and after receiving the ARP reply encapsulated by NVO3, the source NVE connected to the first host decapsulates the ARP reply, obtains the MAC address and the PA, obtains the ARP reply at the same time, and sends the ARP reply to the first host. And the first host acquires the MAC address and PA of the second host according to the ARP response, and establishes the corresponding relation between the MAC address and PA of the second host.
Step 2 in the figure shows that when there is no second host with IP address 10.0.0.8 in the local ARP table, Proxy1 broadcasts a signaling request with IP address 10.0.0.8, when Proxy n at DC n receives the request, first looks up the local ARP table, determines whether there is an ARP entry with IP address 10.0.0.8 in the local ARP table, and if so, replies the ARP entry to Proxy1 through signaling.
Step 3 in the figure shows that when Proxy n does not find out the ARP entry with IP address 10.0.0.8 in the local ARP table, it reconstructs an ARP request to the second host VM10.0.0.8, using itself as the source, and broadcasts in DC n to obtain the ternary ARP information of the second host.
Step 4 in the figure shows that after the Proxy1 receives the ternary ARP information of the second host acquired by the Proxy n, an ARP reply encapsulated by NVO3 is generated according to the ternary ARP information and sent to the source NVE connected to the first host VM10.0.0.1, and after the source NVE receives the ARP reply encapsulated by NVO3, the ARP reply encapsulated by NVO3 is unpacked, the MAC address and PA therein are acquired, the corresponding relationship between the MAC address and PA is established, and an ARP reply is obtained at the same time, wherein the ARP reply includes the IP address and the MAC address of the second host. The first host VM10.0.0.1 acquires the IP address and the MAC address in the ARP reply, and establishes a correspondence between the IP address and the MAC address.
It is noted that in the NVO3 network, if it is desired to implement a message sending process in which a first host directly sends a message to a target NVE connected to a second host through a source NVE without passing through an ARP proxy device, the source NVE must learn a correspondence relationship between a MAC address of the second host VM10.0.0.8 and a PA. Specifically, in this embodiment, the ARP proxy device may be sent to a packet of the source NVE to obtain an ARP reply encapsulated by NVO3, where an inner SMAC of the ARP reply encapsulated by NVO3 is a MAC address of the second host, and an outer SIP of the ARP reply encapsulated by NVO3 is a PA of the target NVE, and the ARP reply encapsulated by NVO3 is returned to the source NVE connected to the first host VM10.0.0.1 through the NVO3 network tunnel.
Specifically, the message format of the ARP reply encapsulated by NVO3 may be as shown in fig. 6, where fig. 6 is a schematic diagram of a message format. The message comprises an external Ethernet header, an external IP header, an NVO3 header, an internal Ethernet header and an ARP response payload, wherein the external IP header of the message is PA of a destination NVE connected with the second host, the internal Ethernet header is MAC address of the second host, and the ARP response payload carries ARP response. In actual operation, the message may be sent to a target NVE connected to the second host according to the external IP header of the message, and after decapsulation of the target NVE, the ARP reply carried by the message may be sent to the second host corresponding to the MAC address according to the MAC address of the second host of the internal ethernet header of the message.
In addition, step 5 in fig. 5 shows that after the first host VM10.0.0.1 establishes the correspondence between the IP address and the MAC address of the second host, and the source NVE establishes the correspondence between the MAC address of the second host and the PA, the first host VM10.0.0.1 sends a packet to the source NVE, the source NVE encapsulates the packet, and directly sends the encapsulated packet to the target NVE connected to the second host VM10.0.0.8 without passing through the ARP Proxy device Proxy1, and the target NVE decapsulates the encapsulated packet after receiving the encapsulated packet, and forwards the encapsulated packet to the second host. When the first host VM10.0.0.1 needs to send a message to the second host VM10.0.0.8, the first host may obtain the MAC address corresponding to the IP address 10.0.0.8 of the second host according to the correspondence between the IP address and the MAC address pre-stored by the first host itself, and send out the message containing the MAC address. After receiving a message which is sent by the first host and contains the MAC address of the second host, the source NVE acquires the PA corresponding to the MAC address according to the pre-learned correspondence between the MAC address and the PA, packages the message according to the PA, and sends the NVO3 packaged message to the target NVE connected with the second host VM10.0.0.8. After receiving the NVO3 encapsulated packet, the target NVE decapsulates the NVO3 encapsulated packet and sends the encapsulated packet to the second host VM10.0.0.8 to complete sending the packet.
The ARP proxy device of this embodiment encapsulates the obtained ternary ARP information of the second host and sends the encapsulated ternary ARP information to the source NVE connected to the first host, so that the source NVE connected to the first host can learn the correspondence between the MAC address and the PA in the ternary ARP information. The source NVE sends the ARP response packaged by the NVO3 solution to the first host, the first host can acquire the IP address and the MAC address in the ARP response and establish the corresponding relation between the IP address and the MAC address, so that when the first host sends a message to the second host, the MAC address of the second host can be determined according to the corresponding relation between the IP address and the MAC address in the first host, and the PA of the target NVE connected with the second host can be determined according to the corresponding relation between the MAC address and the PA in the source NVE.
Example two
In order to more clearly describe the process of acquiring the arp information, this embodiment protects a method for acquiring the arp information applied to the source NVE, referring to fig. 7, where fig. 7 is a flowchart of the method for acquiring the arp information of this embodiment, and specifically includes the following steps:
step 701: and receiving an ARP response packaged by NVO3, wherein the ARP response packaged by NVO3 comprises ternary ARP information of the second host, and the ternary ARP information comprises the corresponding relation between the IP address and the MAC address of the second host and the operator address of the network virtualization endpoint connected with the second host.
After receiving an ARP request packaged by NVO3 sent by an NVE connected with the first host, the ARP proxy device generates an ARP response packaged by NVO3 according to the obtained ternary ARP information, and sends the ARP response packaged by NVO3 to a source NVE connected with the first host.
Step 702: and after the ARP response packaged by the NVO3 is unpacked, acquiring the MAC address and the operator address of the network virtualization endpoint connected with the second host, and acquiring the ARP response, wherein the ARP response comprises the IP address and the MAC address of the second host.
In this embodiment, after receiving the ARP reply encapsulated by NVO3, the source NVE decapsulates the ARP reply encapsulated by NVO3, obtains the MAC address and PA in the ternary ARP information of the second host, and establishes a correspondence between the MAC address and PA. Meanwhile, the source NVE decapsulates the ARP reply encapsulated by NVO3 to obtain an ARP reply, where the ARP reply includes the IP address and the MAC address of the second host.
Step 703: sending the ARP reply to the first host.
In this embodiment, after the source NVE acquires the ARP reply including the IP address and the MAC address of the second host, the source NVE sends the ARP reply to the first host, so that the first host can acquire the MAC address and the IP address in the ARP reply and establish a correspondence between the MAC address and the IP address.
In the above method of the present invention, before step 701, the method may further include the following steps: and receiving an ARP request sent by a first host, carrying out NVO3 encapsulation on the ARP request to obtain an ARP request encapsulated by NVO3, and sending the ARP request encapsulated by NVO3 to the address resolution protocol proxy equipment.
Referring to fig. 8, fig. 8 is a flowchart of a method for acquiring address resolution protocol information according to this embodiment, where the method includes:
step 801: and receiving an ARP response packaged by NVO3, wherein the ARP response packaged by NVO3 comprises ternary ARP information of the second host, and the ternary ARP information comprises the corresponding relation between the IP address and the MAC address of the second host and the operator address of the network virtualization endpoint connected with the second host.
Step 802: and after the ARP response packaged by the NVO3 is unpacked, acquiring the MAC address and the operator address of the network virtualization endpoint connected with the second host, and acquiring the ARP response, wherein the ARP response comprises the IP address and the MAC address of the second host.
Step 803: sending the ARP reply to the first host.
Steps 801 to 803 are the same as steps 701 to 703, and are not described herein again. Step 804: and receiving a message which is sent by the first host and comprises the MAC address of the second host, and acquiring the operator address of the network virtualization endpoint corresponding to the MAC address.
In practical application, when a first host sends a message to a second host, after receiving the message including the MAC address of the second host, a source NVE connected to the first host determines a PA corresponding to the MAC address of the second host according to a previously established correspondence between the MAC address and the PA, where the PA may be used to determine a target NVE connected to the second host.
Step 805: and encapsulating the message according to the operator address of the network virtualization endpoint to obtain an NVO3 encapsulated message, wherein the NVO3 encapsulated message carries the operator address of the network virtualization endpoint.
In this embodiment, after determining the PA of the target NVE, the source NVE encapsulates the message sent by the first host according to the PA, so as to obtain an NVO3 encapsulated message. Wherein the NVO3 encapsulation packet carries the PA of the network virtualization endpoint.
Because the NVO3 encapsulation packet carrying the PA of the network virtualization endpoint may be directly sent to the target NVE connected to the second host, this embodiment may directly complete the process of sending the packet from the first host to the target NVE of the second host through the source NVE without passing through the ARP proxy device.
Step 806: and sending the NVO3 encapsulation message to a target NVE so that the target NVE sends the de-encapsulated NVO3 encapsulation message to the second host, wherein the target NVE is connected with the second host.
In this embodiment, after obtaining the NVO3 encapsulation message, the source NVE sends the NVO3 encapsulation message to the target NVE, and the target NVE decapsulates the NVO3 encapsulation message to obtain a decapsulated message and sends the decapsulated message to the second host to complete sending the message.
Specifically, the source NVE may establish a tunnel communicating with the target NVE according to the PA after acquiring the PA of the target NVE. Correspondingly, the source NVE may send the encapsulated packet including the MAC address to the target NVE through the tunnel. And after receiving the encapsulated message, the target NVE de-encapsulates the encapsulated message to obtain an original message and sends the original message to the second host.
Therefore, the problem that the transmission path of the message in the NVO3 network with the ARP proxy equipment is not optimized is solved, so that the message does not need to pass through the ARP proxy equipment in the transmission process, and the network flow is saved.
EXAMPLE III
Referring to fig. 9, fig. 9 is a structural diagram of an apparatus for acquiring address resolution protocol information according to this embodiment, where the apparatus may include:
a receiving module 901, configured to receive an address resolution protocol, ARP, request encapsulated by network virtualization over three-tiered network NVO3 sent by a source network virtualization endpoint connected to a first host, where the ARP request encapsulated by NVO3 includes an internet protocol, IP, address of a second host;
an obtaining module 902, configured to obtain ternary ARP information of the second host according to the IP address of the second host, where the ternary ARP information includes a correspondence between the IP address of the second host, a media access control MAC address, and an operator address of a network virtualization endpoint connected to the second host;
and an encapsulating module 903, configured to generate an ARP reply encapsulated by NVO3 according to the ternary ARP information, where the ARP reply encapsulated by NVO3 carries the ternary ARP information.
A sending module 904, configured to send the NVO3 encapsulated ARP reply to a source network virtualization endpoint NVE connected to the first host.
To describe the structure and the operation principle of the package module more clearly, referring to fig. 10, fig. 10 is a structural diagram of the package module 903 provided in this embodiment, and the package module 903 may specifically include:
a first encapsulation submodule 9031, configured to generate a packet header of an ARP reply encapsulated by NVO3 according to the MAC address in the ternary ARP information and the operator address of the network virtualization endpoint connected to the second host;
and the second encapsulating submodule 9032 is configured to generate a message load of the ARP reply encapsulated by the NVO3 according to the IP address and the MAC address of the second host in the ternary ARP information.
In addition, the obtaining module 902 may specifically include:
the first obtaining sub-module is used for obtaining the ternary ARP information of the second host when the ternary ARP information comprising the IP address of the second host exists in a local ARP table;
or,
a broadcast sub-module, configured to broadcast a signaling request including the IP address of the second host to request ternary ARP information corresponding to the IP address of the second host when it is determined that ternary ARP information including the IP address of the second host does not exist in a local ARP table;
and the second obtaining submodule is used for obtaining the ternary ARP information according to the signaling response when the signaling response comprising the ternary ARP information is received.
Referring to fig. 11, fig. 11 is a structural diagram of a network virtualization endpoint provided in this embodiment, where the network virtualization endpoint may include:
a receiving module 1101, configured to receive an ARP reply encapsulated by network virtualization NVO3 based on a three-layer overlay network, where the ARP reply encapsulated by NVO3 includes ternary ARP information of a second host, and the ternary ARP information includes a correspondence between an IP address and a MAC address of the second host and an operator address of a network virtualization endpoint connected to the second host;
a first obtaining module 1102, configured to obtain the MAC address and an operator address of a network virtualization endpoint connected to the second host after decapsulating the ARP reply encapsulated by NVO3, and obtain an ARP reply, where the ARP reply includes an IP address and an MAC address of the second host;
specifically, the first obtaining module 1102 may specifically include:
a first obtaining sub-module, configured to obtain, according to a header of the ARP reply encapsulated by the NVO3, the MAC address and an operator address of a network virtualization endpoint connected to the second host;
and the second obtaining sub-module is used for obtaining the IP address and the MAC address of the second host according to the message load of the ARP response packaged by the NVO 3.
A first sending module 1103, configured to send the ARP reply to the first host.
Fig. 12 shows a schematic structural diagram of a network virtualization endpoint provided in this embodiment, where the network virtualization endpoint includes not only the receiving module 1101, the first obtaining module 1102, and the first sending module 1103, but also includes:
a second obtaining module 1201, configured to receive a message that includes an MAC address of a second host and is sent by the first host, and obtain an operator address of a network virtualization endpoint corresponding to the MAC address;
an encapsulating module 1202, configured to encapsulate the packet according to the operator address of the network virtualization endpoint to obtain an NVO3 encapsulated packet, where the NVO3 encapsulated packet carries the operator address of the network virtualization endpoint;
a second sending module 1203, configured to send the NVO3 encapsulated packet to a target NVE, so that the target NVE sends the decapsulated NVO3 encapsulated packet to the second host, where the target NVE is connected to the second host.
Since the network virtualization endpoint may directly communicate through the tunnel, the second sending module in this embodiment may specifically include:
the establishing submodule is used for establishing a tunnel according to an operator address PA of the network virtualization endpoint, and the tunnel is used for communication between the source NVE and the target NVE;
and the sending submodule is used for sending the NVO3 encapsulated message to the target NVE through the tunnel, so that the target NVE sends the de-encapsulated NVO3 encapsulated message to a second host of the target host corresponding to the MAC address.
The receiving module in the network virtualization endpoint in each embodiment of the present invention is further configured to receive an ARP request sent by the first host, perform NVO3 encapsulation on the ARP request, obtain an ARP request encapsulated by NVO3, and send the ARP request encapsulated by NVO3 to the address resolution protocol proxy device.
Referring to fig. 13, fig. 13 is a structural diagram of a system for acquiring address resolution protocol information according to this embodiment, where the system may include an ARP proxy device 1301 and a source NVE 1302;
the ARP proxy 1301 may have the structure shown in fig. 9, and the source NVE1302 may have the structure shown in fig. 11 or fig. 12.
The ARP proxy device in the system provided in this embodiment encapsulates the obtained ternary ARP information of the second host and sends the encapsulated ternary ARP information to the source NVE connected to the first host, and the source NVE decapsulates the encapsulated ternary ARP information and obtains the PA of the target NVE and the MAC of the second host. And simultaneously, the decapsulated ARP response is sent to the first host, so that the first host can acquire the IP address and the MAC address of the second host. When the first host sends a message to the second host, firstly, the MAC address of the second host can be determined according to the IP address and the MAC address in the first host, secondly, the PA of the target NVE connected to the second host can be determined according to the MAC address and the PA in the source NVE, thirdly, the message is packaged according to the PA and then sent to the target NVE, and finally, the message sending to the second host is completed. Therefore, the problem that the transmission path of the message in the NVO3 network with the ARP proxy equipment is not optimized is solved, so that the message does not need to pass through the ARP proxy equipment in the transmission process, and the network flow is saved.
Embodiments of the present invention also provide a hardware configuration of an apparatus for obtaining address resolution protocol information, which may include at least one processor (e.g., CPU), at least one network interface or other communication interface, a memory, and at least one communication bus. The communication bus is used for realizing connection communication among the components. The processor is used to execute executable modules, such as computer programs, stored in the memory. The Memory may comprise a Random Access Memory (RAM) and may further comprise a non-volatile Memory (non-volatile Memory), such as at least one disk Memory. The communication connection between the apparatus for acquiring arp information and at least one other network element is implemented through at least one network interface (which may be wired or wireless), and the communication connection may be implemented using the internet, a wide area network, a local network, a metropolitan area network, and the like.
Referring to fig. 14, in some embodiments, a memory stores program instructions, which can be executed by a processor, wherein the program instructions include a receiving module 901, an obtaining module 902, an encapsulating module 903 and a sending module 904, and specific implementation of each unit can refer to corresponding units disclosed in fig. 9. Or the program instructions may also include other elements disclosed in fig. 10 and will not be described in detail herein.
Further, embodiments of the present invention also provide a hardware configuration of a network virtualization endpoint, which may include at least one processor (e.g., CPU), at least one network interface or other communication interface, a memory, and at least one communication bus. The communication bus is used to enable connection communication between these components. The processor is used to execute executable modules, such as computer programs, stored in the memory. The Memory may comprise a Random Access Memory (RAM) and may also include a non-volatile Memory, such as at least one disk Memory. The communication connection between the network virtualization endpoint and at least one other network element is realized through at least one network interface (which may be wired or wireless), and the communication connection can be realized by using the internet, a wide area network, a local network, a metropolitan area network and the like.
Referring to fig. 15, in some embodiments, a memory stores program instructions, and the program instructions may be executed by a processor, where the program instructions include a receiving module 1101, a first obtaining module 1102, and a first sending module 1103, and specific implementations of each unit may refer to corresponding units disclosed in fig. 11. Or the program instructions may also include other elements disclosed in fig. 12 and will not be described in detail herein.
Aspects of the invention may be described in the general context of computer-executable instructions, such as program elements, being executed by a computer. Generally, program elements include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The inventive arrangements may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program elements may be located in both local and remote computer storage media including memory storage devices.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the apparatus embodiment, since it is substantially similar to the method embodiment, it is relatively simple to describe, and reference may be made to some descriptions of the method embodiment for relevant points. The above-described embodiments of the apparatus are merely illustrative, and the units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment. One of ordinary skill in the art can understand and implement it without inventive effort.
The above detailed description of the embodiments of the present invention, and the detailed description of the embodiments of the present invention used herein, is merely intended to facilitate the understanding of the methods and apparatuses of the present invention; meanwhile, for a person skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.

Claims (15)

1. A method for obtaining address resolution protocol information is applied to Address Resolution Protocol (ARP) proxy equipment, and the method comprises the following steps:
receiving an Address Resolution Protocol (ARP) request packaged by a network virtualization (NVO 3) based on a triple-layer overlay network and sent by a source network virtualization endpoint connected with a first host, wherein the ARP request packaged by the NVO3 comprises an Internet Protocol (IP) address of a second host;
acquiring ternary ARP information of the second host according to the IP address of the second host, wherein the ternary ARP information comprises the corresponding relation between the IP address of the second host, a Media Access Control (MAC) address and an operator address of a network virtualization endpoint connected with the second host;
generating an ARP response packaged by NVO3 according to the ternary ARP information, wherein the ARP response packaged by NVO3 carries the ternary ARP information;
sending the NVO3 encapsulated ARP reply to a source Network Virtualization Endpoint (NVE) connected to the first host.
2. The method of claim 1, wherein generating an NVO3 encapsulated ARP reply from the ternary ARP information comprises:
generating a message header of an ARP response packaged by NVO3 according to the MAC address in the ternary ARP information and the operator address of the network virtualization endpoint connected with the second host;
and generating a message load of the ARP response packaged by the NVO3 according to the IP address and the MAC address of the second host in the ternary ARP information.
3. The method according to claim 1 or 2, wherein the obtaining the ternary ARP information of the second host according to the IP address of the second host comprises:
when determining that ternary ARP information comprising the IP address of the second host exists in a local ARP table, acquiring the ternary ARP information of the second host;
or,
when the fact that ternary ARP information comprising the IP address of the second host does not exist in a local ARP table is determined, a signaling request comprising the IP address of the second host is broadcasted to request the ternary ARP information corresponding to the IP address of the second host, and when a signaling response comprising the ternary ARP information is received, the ternary ARP information is obtained according to the signaling response.
4. A method for obtaining address resolution protocol information is applied to a source NVE, wherein the source NVE is connected with a first host, and the method comprises the following steps:
receiving an ARP response packaged by network virtualization NVO3 based on a three-layer overlay network, wherein the ARP response packaged by the NVO3 comprises ternary ARP information of a second host, and the ternary ARP information comprises the corresponding relation between an IP address and an MAC address of the second host and an operator address of a network virtualization endpoint connected with the second host;
decapsulating the ARP reply encapsulated by the NVO3, obtaining the MAC address and an operator address of a network virtualization endpoint connected to the second host, and obtaining an ARP reply, where the ARP reply includes an IP address and an MAC address of the second host;
sending the ARP reply to the first host.
5. The method of claim 4, further comprising:
receiving a message which is sent by the first host and comprises an MAC address of a second host, and acquiring an operator address of a network virtualization endpoint corresponding to the MAC address;
packaging the message according to the operator address of the network virtualization endpoint to obtain an NVO3 packaging message, wherein the NVO3 packaging message carries the operator address of the network virtualization endpoint;
and sending the NVO3 encapsulation message to a target NVE so that the target NVE sends the de-encapsulated NVO3 encapsulation message to the second host, wherein the target NVE is connected with the second host.
6. The method according to claim 4 or 5, wherein decapsulating the NVO 3-encapsulated ARP response, obtaining the MAC address and an operator address of a network virtualization endpoint connected to the second host, and obtaining an ARP response, the ARP response including the IP address and the MAC address of the second host, comprises:
acquiring the MAC address and the operator address of the network virtualization endpoint connected with the second host according to the message header of the ARP response packaged by the NVO 3;
and acquiring the IP address and the MAC address of the second host according to the message load of the ARP response packaged by the NVO 3.
7. The method of claim 5, wherein sending the NVO3 encapsulated packet to a target NVE, such that the target NVE sends the decapsulated NVO3 encapsulated packet to the second host, comprises:
establishing a tunnel according to an operator address of the network virtualization endpoint, the tunnel being used for communication between the source NVE and the target NVE;
and sending the NVO3 encapsulated message to the target NVE through the tunnel, so that the target NVE sends the de-encapsulated NVO3 encapsulated message to a second host corresponding to the MAC address.
8. An apparatus for obtaining address resolution protocol information, the apparatus comprising:
the network virtualization system comprises a receiving module, a processing module and a processing module, wherein the receiving module is used for receiving an Address Resolution Protocol (ARP) request which is sent by a source network virtualization endpoint connected with a first host and is packaged by a Network Virtualization (NVO) 3 based on a three-layer overlay network, and the ARP request packaged by the NVO3 comprises an Internet Protocol (IP) address of a second host;
an obtaining module, configured to obtain ternary ARP information of the second host according to an IP address of the second host, where the ternary ARP information includes a correspondence between an IP address and a media access control MAC address of the second host and an operator address of a network virtualization endpoint connected to the second host;
an encapsulating module, configured to generate an ARP reply encapsulated by NVO3 according to the ternary ARP information, where the ARP reply encapsulated by NVO3 carries the ternary ARP information;
and a sending module, configured to send the ARP reply encapsulated by the NVO3 to a source network virtualization endpoint NVE connected to the first host.
9. The apparatus of claim 8, wherein the encapsulation module comprises:
a first encapsulation submodule, configured to generate a message header of an ARP reply encapsulated by NVO3 according to an MAC address in the ternary ARP information and an operator address of a network virtualization endpoint connected to the second host;
and the second packaging submodule is used for generating a message load of the ARP response packaged by the NVO3 according to the IP address and the MAC address of the second host in the ternary ARP information.
10. The apparatus of claim 8 or 9, wherein the obtaining module comprises:
the first obtaining sub-module is used for obtaining the ternary ARP information of the second host when the ternary ARP information comprising the IP address of the second host exists in a local ARP table;
or,
a broadcast sub-module, configured to broadcast a signaling request including the IP address of the second host to request ternary ARP information corresponding to the IP address of the second host when it is determined that ternary ARP information including the IP address of the second host does not exist in a local ARP table;
and the second obtaining submodule is used for obtaining the ternary ARP information according to the signaling response when the signaling response comprising the ternary ARP information is received.
11. A network virtualization endpoint connected to a first host, comprising:
a receiving module, configured to receive an ARP reply encapsulated by network virtualization NVO3 based on a three-layer overlay network, where the ARP reply encapsulated by NVO3 includes ternary ARP information of a second host, and the ternary ARP information includes a correspondence between an IP address and an MAC address of the second host and an operator address of a network virtualization endpoint connected to the second host;
a first obtaining module, configured to obtain the MAC address and an operator address of a network virtualization endpoint connected to the second host after decapsulating the ARP reply encapsulated by NVO3, and obtain an ARP reply, where the ARP reply includes an IP address and an MAC address of the second host;
and the first sending module is used for sending the ARP response to the first host.
12. The network virtualization endpoint of claim 11, further comprising:
a second obtaining module, configured to receive a message that includes an MAC address of a second host and is sent by the first host, and obtain an operator address of a network virtualization endpoint corresponding to the MAC address;
the encapsulating module is configured to encapsulate the packet according to the operator address of the network virtualization endpoint to obtain an NVO3 encapsulated packet, where the NVO3 encapsulated packet carries the operator address of the network virtualization endpoint;
a second sending module, configured to send the NVO3 encapsulated packet to a target NVE, so that the target NVE sends the decapsulated NVO3 encapsulated packet to the second host, where the target NVE is connected to the second host.
13. The network virtualization endpoint of claim 11 or 12, wherein the first obtaining module comprises:
a first obtaining sub-module, configured to obtain, according to a header of the ARP reply encapsulated by the NVO3, the MAC address and an operator address of a network virtualization endpoint connected to the second host;
and the second obtaining sub-module is used for obtaining the IP address and the MAC address of the second host according to the message load of the ARP response packaged by the NVO 3.
14. The network virtualization endpoint of claim 12, wherein the second sending module comprises:
the establishing submodule is used for establishing a tunnel according to an operator address of the network virtualization endpoint, and the tunnel is used for communication between the source NVE and the target NVE;
and the sending submodule is used for sending the NVO3 encapsulated message to the target NVE through the tunnel, so that the target NVE sends the decapsulated NVO3 encapsulated message to a second host corresponding to the MAC address.
15. A system for obtaining address resolution protocol information is characterized in that the system comprises an Address Resolution Protocol (ARP) proxy device and a source network virtualization endpoint;
the ARP proxy device is the device of any of claims 8-10, and the source NVE is the network virtualization endpoint of any of claims 11-14.
CN201310658962.1A 2013-12-06 2013-12-06 Obtain method, equipment, system and the network virtualization endpoint of ARP information Active CN104702708B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310658962.1A CN104702708B (en) 2013-12-06 2013-12-06 Obtain method, equipment, system and the network virtualization endpoint of ARP information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310658962.1A CN104702708B (en) 2013-12-06 2013-12-06 Obtain method, equipment, system and the network virtualization endpoint of ARP information

Publications (2)

Publication Number Publication Date
CN104702708A true CN104702708A (en) 2015-06-10
CN104702708B CN104702708B (en) 2018-04-27

Family

ID=53349466

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310658962.1A Active CN104702708B (en) 2013-12-06 2013-12-06 Obtain method, equipment, system and the network virtualization endpoint of ARP information

Country Status (1)

Country Link
CN (1) CN104702708B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106209641A (en) * 2016-06-24 2016-12-07 迈普通信技术股份有限公司 A kind of method, system and device of Message processing
CN110062057A (en) * 2018-12-18 2019-07-26 华为技术有限公司 The proxy gateway and communication means of message are handled for hot-backup system

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1863129A (en) * 2005-12-01 2006-11-15 华为技术有限公司 System based on two layer VPN foreign medium communication and method thereof
CN1921441A (en) * 2006-09-28 2007-02-28 华为技术有限公司 Method and device for message transfer of virtual private local area network
CN102148766A (en) * 2011-05-11 2011-08-10 烽火通信科技股份有限公司 Method for service interworking in PON (passive optical network) under three-layer function networking
CN103200069A (en) * 2013-03-29 2013-07-10 华为技术有限公司 Message processing method and device
US20130254359A1 (en) * 2012-03-23 2013-09-26 Cisco Technology, Inc. Address resolution suppression for data center interconnect

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1863129A (en) * 2005-12-01 2006-11-15 华为技术有限公司 System based on two layer VPN foreign medium communication and method thereof
CN1921441A (en) * 2006-09-28 2007-02-28 华为技术有限公司 Method and device for message transfer of virtual private local area network
CN102148766A (en) * 2011-05-11 2011-08-10 烽火通信科技股份有限公司 Method for service interworking in PON (passive optical network) under three-layer function networking
US20130254359A1 (en) * 2012-03-23 2013-09-26 Cisco Technology, Inc. Address resolution suppression for data center interconnect
CN103200069A (en) * 2013-03-29 2013-07-10 华为技术有限公司 Message processing method and device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
王聪: "面向云计算的数据中心网络体系结构设计", 《计算机研究与发展》 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106209641A (en) * 2016-06-24 2016-12-07 迈普通信技术股份有限公司 A kind of method, system and device of Message processing
CN110062057A (en) * 2018-12-18 2019-07-26 华为技术有限公司 The proxy gateway and communication means of message are handled for hot-backup system

Also Published As

Publication number Publication date
CN104702708B (en) 2018-04-27

Similar Documents

Publication Publication Date Title
US11765000B2 (en) Method and system for virtual and physical network integration
US10476796B2 (en) Packet processing method, and device and system
US9281955B2 (en) Interoperability of data plane based overlays and control plane based overlays in a network environment
CN107872542B (en) Data transmission method and network equipment
CN110999265B (en) Managing network connectivity between cloud computing service endpoints and virtual machines
US20150358232A1 (en) Packet Forwarding Method and VXLAN Gateway
CN104702476B (en) Message processing method based on distributed network gate and network virtualization marginal point
US10461958B2 (en) Packet transmission method and apparatus
JP6722816B2 (en) Packet transfer
CN108900414B (en) Forwarding table generation method and device
CN110213148B (en) Data transmission method, system and device
CN107645433B (en) Message forwarding method and device
KR20170005129A (en) Network packet encapsulation and routing
WO2015113410A1 (en) Data packet processing method and apparatus
CN104579954A (en) Message cross-domain forwarding method and device as well as communication device
US20160323184A1 (en) Generic Packet Encapsulation For Virtual Networking
CN107547338B (en) Message forwarding method and device
CN108512755B (en) Method and device for learning routing information
CN113364660A (en) Data packet processing method and device in LVS load balancing
CN109246016B (en) Cross-VXLAN message processing method and device
CN113766569B (en) Data transmission method, device, system and storage medium
CN104702708B (en) Obtain method, equipment, system and the network virtualization endpoint of ARP information
CN107547691B (en) Address resolution protocol message proxy method and device
CN112187584A (en) Path fault detection method, system, server and storage medium
CN108471374B (en) Data message forwarding method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
EXSB Decision made by sipo to initiate substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant