CN104836753A - Software-defined networking (SDN) data plane strip state exchange device, SDN exchange system and SDN data plane strip state forwarding and processing method - Google Patents

Software-defined networking (SDN) data plane strip state exchange device, SDN exchange system and SDN data plane strip state forwarding and processing method Download PDF

Info

Publication number
CN104836753A
CN104836753A CN201510140958.5A CN201510140958A CN104836753A CN 104836753 A CN104836753 A CN 104836753A CN 201510140958 A CN201510140958 A CN 201510140958A CN 104836753 A CN104836753 A CN 104836753A
Authority
CN
China
Prior art keywords
state
message
sdn
forwarding
processing module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510140958.5A
Other languages
Chinese (zh)
Other versions
CN104836753B (en
Inventor
毕军
朱树永
孙晨
吴承辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tsinghua University
Original Assignee
Tsinghua University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tsinghua University filed Critical Tsinghua University
Priority to CN201510140958.5A priority Critical patent/CN104836753B/en
Publication of CN104836753A publication Critical patent/CN104836753A/en
Application granted granted Critical
Publication of CN104836753B publication Critical patent/CN104836753B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/10Packet switching elements characterised by the switching fabric construction

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention discloses a SDN data plane strip state exchange device, a SDN exchange system and a SDN data plane strip state forwarding and processing method. The SDN data plane strip state exchange device comprises a SDN data plane strip state forwarding processor which comprises the state processing modules and the strategy modules arranged for a plurality of application protocols, wherein the state processing modules are used to maintain the data plane data packets, the data flows, the states of the connection or a network and determine the control instructions and the message processing instructions according to the processing strategies provided by the strategy modules; and a forwarding engine which analyzes the received data message headers, sends the messages to the corresponding state processing modules according to the information matching forwarding tables of the data message headers, and queries the forwarding tables to forward the data flows according to the control instructions returned by the state processing modules. According to the present invention, the data messages, the data flows, the state information of the connection and the network can be processed on a SDN data plane.

Description

SDN datum plane carrier state switching equipment, system and method for processing forwarding
Technical field
The present invention relates to Internet technical field, specifically, relate to SDN datum plane carrier state switching equipment, system and method for processing forwarding.
Background technology
Software defined network SDN (Software-Defined Networking) proposed by Stanford Univ USA Nick McKeown professor and University of California Berkeley Scott professor Shenker etc. are common in 2010, its starting point is by the abstract network system rebuilding a Forwarding plane and be separated with control plane to network control, the continuous evolution of network enabled function.
Computer Architecture thought is introduced network research field by software defined network, and opening is the intrinsic propesties of software defined network.By the opening of the opening of the network equipment, the opening of control plane and protocol realization, make network be no longer a closed system, thus realize the evolve of network architecture.The basic thought of software defined network is the increase unrestrictedly should not conniving network complexity, and network complexity has more and more been difficult to control, and needs to carry out abstract to network, to shield bottom complexity, for upper strata provides simple disposition and management efficiently.The essential characteristic of SDN has: control and forward separating, the open interface between control plane and Forwarding plane, centralized control in logic.
OpenFlow agreement is proposed in 2008 by Stanford University.The basic thought of OpenFlow is separated with logic routing decision part (control plane) the rapid message forwarding part (datum plane) in legacy network devices, datum plane resides in network device internal, control plane then shifts out from the network equipment and is concentrated to Control Server, and both sides are communicated by standardized message interface.Meanwhile, devise new example, in hardware at datum plane----stream table (Flow Table), as the abstract model of network equipment datum plane, is supplied to the external world and uses, then extraneous can the datum plane of management and control unified be Flow Table form; At control plane, the control logic of the network equipment adopts centralized analysis, calculating and operation, by standardized message mode, control command is sent to the network equipment, realize the Long-distance Control to the network equipment, to complete the basic function under traditional distributed Network operation mode, as message reception, message repeating, amendment are transmitted, obtained equipment state etc.
OpenFlow protocol data planes " coupling+action " although forward process normal form can meet the demand of some agreements, but still there is larger limitation.OpenFlow switch can only provide the matching treatment function to message, can not support the process to state information.In existing OpenFlow framework, state information can only process on the controller.Due to the bottleneck of switch and controller communication bandwidth and controller disposal ability, all state informations all on the controller process can bring the problem of performance and extensibility.
The forward process normal form of OpenFlow protocol data planes of the prior art " coupling+action " can not the forward process of supported data planar band state, because OpenFlow flow table lacks the function of carrier state forward process, this process normal form for a lot of application needed at datum plane treatment state, as carrier state fire compartment wall, load balancing etc. have significant limitation.Due to the bottleneck of SDN controller and switch communication bandwidth sum controller disposal ability, all state informations all concentrate process be on the controller have circumscribed very greatly.
Below illustrate the new types of data plane forward process normal form proposed in the present embodiment.
Embodiments of the invention devise the new datum plane forward process normal form of one " coupling+state+action ", as shown in Figure 1.In this forward process normal form, embodiment adds state table and state of operation instruction, the state information being supported in datum plane convection current or message carries out recording and safeguarding.State table is used for the state information of recorded stream or message, and state table operational order is used for maintenance state table.When some application (as carrier state fire compartment wall) need at datum plane treatment state, according to the message that the state information process of datum plane arrives, state table upgrades according to the message arrived and other event (as the state table operational order that controller issues) simultaneously.This process normal form can direct process state information on switches, does not need the participation of SDN controller.Under this normal form, the input of datum plane has two parts, and one is the stream or message that input, and another is state information.Outgoing message and new state under the effect of the transfer function that they issue at SDN controller.Wherein, transfer function for represent that SDN controller issues node transition rule and Message processing rule.Like this, SDN controller can be message repeating and the processing policy of various application flexible configuration in SDN.
Above-mentioned functions realizes particular by increasing state table State Table (ST) at datum plane.Each state list item represents the known legal connection of switch.The form of state table is as shown in table 1.In SFA framework, switch is that each needs the agreement of recording status all to set up a state table.
Table 1
Matching domain State Instruction
Wherein, matching domain field identification message/stream or the matching field connected, the concrete matching domain specific to its state list item of different agreements may be different.
Mode field represents arrival data message/stream, connects or the state information of network.
Instruction field comprises three class instructions, comprises control command, state table operational order and message handling instruction.Wherein, control command is used for realizing message and is transmitting (or traditional routing table), circulation between forwarding processor FP (Forwarding Processor) and SDN controller, state table operational order is used for carrying out maintenance update according to the message arrived or event to state, and message handling instruction is used to the instruction processed message.
Conversion between state table carries out according to certain strategy, and each state table has corresponding state transitions Policy Table.In the present embodiment, the structure of state transitions Policy Table is as shown in table 2.
Table 2
Current state Event NextState Instruction
Wherein, current state field list shows data message/stream, connects or the current state of network.Event field represents datum plane event, and such as judge by the flag field of monitoring Transmission Control Protocol header the change that TCP connects, outside SDN controller issues configuration information for another example, SDN link connection state changes.NextState field list shows the state value that data message/stream, connection or network needs upgrade.Instruction field in Policy Table represents the process action to message, such as to the amendment of message data, resolve, give up.
It should be noted that, the application different for switch can arrange different state forwarding strategies in table 2, can comprise data message/stream, connection or network state transition rule and Message processing rule.
Such as, for carrier state fire compartment wall, need the change monitoring TCP connection status.The flag field can carried according to message carrys out the event that monitor data message carries, the event of the change of the TCP connection status that namely can trigger.The finite state machine of the Transmission Control Protocol that state transitions Policy Table describes then is followed in the change of TCP connection status.Give dependent instruction in state table simultaneously, comprise state table operational order, control command and message handling instruction.
In order to distinguish multiple different application in SDN framework, judge that the data flow message arrived belongs to any application protocol, the present embodiment devises a protocol filtering table in SDN controller, as shown in table 3.
Table 3
Matching domain Agreement
Wherein, matching domain field represents the territory needing matching message, and protocol fields represents that SDN controller judges that the data flow message arrived belongs to any application protocol.For different application protocols, SDN controller issues and flows list item accordingly, for being processed to corresponding state table by this message repeating.
Below describe foundation, the update mechanism of state transitions Policy Table and state table in detail.
First, SDN controller passes through the whole list items in initialization directive pre-configured state transitions Policy Table according to different application protocols, namely the value of current state field, event field, NextState field and instruction field is set, the corresponding finite state machine of study on its developing agreement, and the matching domain field in pre-configured described state table.
The update mode of state table has two kinds, and a kind of is can upgrade corresponding state list item according to the message arrived, and the configuration information that another kind of thing sends according to SDN controller upgrades.
Embodiment adds time limit (timeout) mechanism of state list item, by monitoring period, whether time-out realizes state table entry deletion.Each state list item all has (idle_timeout) territory of idle time limit and Hard link time limit (hard_timeout) territory, the time not having message to mate is recorded in idle_timeout territory, hard_timeout territory record list item is inserted into the time in state table, namely records the time that list item is set up.Once the value of free time or Hard link time exceedes predetermined threshold value, then this list item is automatically left out, send the deleted message of a list item to SDN controller, to make the content of the switch status table stored in SDN controller consistent with the actual content of switch status table simultaneously.
As described above, because in the present embodiment, state table is corresponding with application protocol, the list item in state table can be deleted flexibly according to the different agreement arriving data flow by setting time limit mechanism.
The state how judging data flow is described for TCP connection below.The present embodiment records the state of TCP connection by monitoring TCP mark (TCP flag).Five connection status that definition of T CP connects, respectively: monitor (LISTEN), newly-built (NEW), set up (ESTALBISHED), transmission (TRANSFER), will close (CLOING), close (CLOSED).Be described as follows.
Monitor (LISTEN), monitor whether to have to connect and initiate message.
Newly-built (NEW), when monitoring the first message of a connection, connection status is labeled as NEW.When monitoring TCP flag and being SYN, connection status is updated to NEW.
Set up (ESTALBISHED), represent that link is set up, the message of same connection can be normal through.When monitoring the SYN ACK message of TCP connection, connection status is updated to ESTABLISHED.
Transmission (TRANSFER), message transmissions.
Will close (CLOING), represent that connection will be closed.As monitored the FIN message that TCP connects, connection status is updated to CLOSING.
Close (CLOSED), represent to connect and close.As monitored the FIN ACK message that TCP connects, representing to connect and closing.
In addition, because the matching domain of OpenFlow switch Message processing in prior art and process action need predefined, according to the demand flexible expansion of application, certain limitation can not be had.Propose in the embodiment of the present invention to arrange protocol filtering table in SDN controller, matching domain can be set respectively according to no application protocol.And SDN controller by the whole list items in initialization directive pre-configured state transitions Policy Table, thus according to the content of no application strategy table instruction field, sets different Message processing actions according to different application protocols.Therefore, the embodiment of the present invention has the remarkable result that can set matching domain, flexible expansion Message processing mode according to applying flexible.
Summary of the invention
One of technical problem solved by the invention is the process realizing data message, data flow, connection and network state information at SDN datum plane, solve under switch and controller communication bandwidth and controller disposal ability exist the condition of bottleneck, the defect that network performance is limited.
The embodiment provides a kind of SDN datum plane carrier state switching equipment, comprising:
SDN datum plane carrier state forwarding processor, it comprises status processing module for multiple application protocol is arranged and policy module, described status processing module is used for the state of service data panel data bag, data flow, connection or network, and the processing policy determination control command provided according to policy module and message handling instruction;
Forwarding engine, it is resolved the data message head received, information matches according to data message head is transmitted, and message is sent to corresponding status processing module, and transmits according to the control command inquiry that status processing module returns and forward data stream.
In one embodiment, message is sent to corresponding status processing module by one or more transmitting by described forwarding engine, described transmit in matching domain and domain of instruction are set, the content representation message matching area of described matching domain, described in the domain of instruction transmitted comprise the message repeating that receives to the control command of state table in status processing module.
In one embodiment, described status processing module comprises the state table for multiple application protocol is arranged, and arranges the state transitions Policy Table corresponding with state table in described policy module;
Described status processing module is based on datum plane event and current-status query state transitions Policy Table, state table operational order is determined according to described state transitions Policy Table, upgrade the state information of packet in described state table, data flow, connection or network, and determine corresponding control command and message handling instruction.
In one embodiment, message transmitted in parallel to the multiple state tables in status processing module, is arbitrated rear execution to the instruction of conflict that has that multiple state table returns by described forwarding engine.
In one embodiment, described forwarding engine can support each state table message serial be sent in status processing module, carries out state updating and instruction execution successively.
Embodiments of the invention also provide a kind of SDN switching system, comprise SDN controller and SDN datum plane carrier state switching equipment as described above, arrange protocol filtering table in described SDN controller;
Wherein, when forwarding engine is transmitted unsuccessful according to the information matches of data message head, this message is sent to its SDN controller by SDN switching equipment, SDN controller mates described protocol filtering table to identify that this data flow belongs to any application protocol, and issues corresponding forwarding-table item to transmitting.
In one embodiment, arrange matching domain and protocol domain in described protocol filtering table, in described protocol filtering table, the content representation of matching domain is for the message matching area of application protocol, the agreement of the content representation message of described protocol domain.
Embodiments of the invention also provide a kind of SDN datum plane carrier state method for processing forwarding, comprise the following steps:
Forwarding engine is resolved the message received and is sent to corresponding status processing module in SDN datum plane carrier state forwarding processor;
Status processing module is based on the message matching status table received, state transitions Policy Table in query strategy module, determines packet, data flow, connection or the NextState of network, corresponding control command and message handling instruction according to state transitions Policy Table;
Status processing module upgrades the state information of packet in described state table, data flow, connection or network, processes data flow or packet according to described message handling instruction;
Forwarding engine inquiry is transmitted and is forwarded data stream.
In one embodiment, described forwarding engine to be resolved and the step sent comprises the message received:
Forwarding engine is transmitted according to the information matches of data message head;
When the match is successful, forwarding engine forwards the packet to corresponding status processing module according to the control command of forwarding-table item;
When mating unsuccessful, the first packet arriving data flow is uploaded to SDN controller by forwarding engine, issues new forwarding-table item by SDN controller to transmitting.
In one embodiment, also initialization step is comprised:
SDN controller issues the matching domain in the pre-configured described state table of initialization command;
SDN controller issues the value of current state field in the pre-configured described state transitions Policy Table of initialization command, field of events, NextState territory and Policy Table's domain of instruction, the corresponding finite state machine of study on its developing agreement.
The present invention can at SDN datum plane deal with data message, data flow, connection and network state information.Wherein, forwarding processor FP can be inquired about and the state information of memorying data flow or message by state table ST, makes corresponding process to the event of arrival (comprising the configuration information that the message of arrival or SDN controller issue).SDN controller has complete control to forwarding processor FP.
Forwarding processor FP provide programmable interface, can the action of flexible expansion Message processing, realizes the process to header or load, support the process to message 4 to 7 layers of information, strengthens the programmability of datum plane further.
Embodiments of the invention can set matching domain, flexible expansion Message processing mode according to applying flexible.Protocol filtering table is set in SDN controller, identifies that message belongs to any agreement.According to the matching domain of no application protocol difference set condition table.SDN controller passes through initialization directive configuration status transition strategy table according to different application protocols, the finite state machine of preliminary setting data flat state transfer and dependent instruction.
Other features and advantages of the present invention will be set forth in the following description, and, partly become apparent from specification, or understand by implementing the present invention.Object of the present invention and other advantages realize by structure specifically noted in specification, claims and accompanying drawing and obtain.
Accompanying drawing explanation
Accompanying drawing is used to provide a further understanding of the present invention, and forms a part for specification, with embodiments of the invention jointly for explaining the present invention, is not construed as limiting the invention.In the accompanying drawings:
Fig. 1 is the schematic diagram of the SDN datum plane carrier state forward process according to the embodiment of the present invention one;
Fig. 2 is the configuration diagram of the SDN switching system according to the embodiment of the present invention one;
Fig. 3 forwards abstract SFA principle schematic according to the carrier state of the embodiment of the present invention one;
Fig. 4 is the flow chart of steps of the SDN datum plane carrier state method for processing forwarding according to the embodiment of the present invention two.
Embodiment
For making the object, technical solutions and advantages of the present invention clearly, below in conjunction with accompanying drawing, the present invention is described in further detail.
Embodiments of the invention, for the limitation of traditional OpenFlow agreement, devise a kind of technical scheme supporting SDN datum plane carrier state forward process, and namely carrier state forwards abstract SFA (StatefulForwarding Abstraction) technology.Embodiments of the invention provide a kind of new datum plane forward process normal form, by increasing forwarding processor (Forwarding Processor) and state table (State Table) at SDN datum plane, realize in the process of datum plane to state information.
embodiment one
The present embodiment provides a kind of SDN switching system, comprises SDN controller and SDN switching equipment.The SDN switching equipment that the present embodiment provides is in traditional SDN switching equipment, increase SDN datum plane carrier state forwarding processor FP (Forwarding Processor), realizes maintenance to state information and process by increasing intelligence at datum plane.SDN datum plane carrier state forwarding processor FP specifically can be realized by modes such as CPU, NPU, multinuclears.The maintenance realizing mutual between stream table, FP, controller of message by extended instruction and realize message and state information and process.
Fig. 2 is the configuration diagram of SDN switching system in the present embodiment, and Fig. 3 is that in SDN switching system, carrier state forwards abstract SFA (Stateful Forwarding Abstraction) principle schematic.Below in conjunction with Fig. 2 and Fig. 3, the forward process process of SDN switching system in the present embodiment is described in detail.
As shown in Figure 2, SDN switching equipment is connected to SDN by multiple network interface, and multiple interface is connected with packet buffer unit, and then is connected to forwarding engine.Network interface is directly connected with physical link, includes the function of process corresponding data message, completes reception and the transmission work of network message, be operated in physical layer and link layer.The data flow arrived is buffered in packet buffer unit through interface, and by forwarding engine determination forward-path.
Arrange in forwarding engine and transmit and executable operations module.Wherein, all forwarding informations containing and can complete message and correctly forward are transmitted.Transmit and play a part to form a connecting link in whole repeater system.Transmit and issued by SDN controller, for forwarding engine returns correct forwarding lookup result, complete the forwarding of message.Executable operations module is used for data flow to export to network interface.
As shown in Figure 3, transmit the forwarding-table item that middle storage is issued by SDN controller, for arranging the matching domain corresponding to the application protocol in SDN, and forwarding domain of instruction is set.The content forwarding domain of instruction is used to indicate the control command of the data flow of reception to carrier state forwarding processor FP.
The forward-path of forwarding engine determination data message, specifically, it is resolved the data message head received, and then searches in transmitting according to the class indication of data message, obtains the destination interface of forwarding operation.
Forwarding engine is connected with forwarding processor FP.Forwarding processor FP is SDN datum plane carrier state forwarding processor, wherein Provisioning Policy module and status processing module.Policy module comprises for the data flow of various protocols in SDN prestores multiple state transitions Policy Tables (State Transition Table) of node transition rule and Message processing rule.Status processing module is connected with described policy module, and status processing module comprises the multiple state tables (State Table) corresponding with state transitions Policy Table.State table is for recording the state information with service data planar flow or message data bag, data flow, connection or network.In addition, the state table message handling instruction that also can record the state of operation instruction that state table is safeguarded, the control command realizing message circulation and data stream packet is processed.
Forwarding processor FP by state table and instruction realize datum plane safeguard and handle packet, data flow, connection or network state information, and the process to header and load information.Forwarding processor FP provide DLL (dynamic link library) simultaneously, realizes the flexible expansion to instruction, enriches the function of datum plane further and strengthen the programmability of datum plane.
In concrete enforcement, forwarding processor FP can realize based on various ways such as CPU, GPU, NetFPGA, ASIC polycaryon processors, and state table can realize based on RAM and TCAM.
Instruction set is provided to realize, to the process of message and state, being strengthened the disposal ability of datum plane further by the expansion of instruction in the present embodiment.Instruction set comprises control command, state of operation instruction and message handling instruction.The content of state table instruction field and Policy Table's instruction field be respectively in control command, state of operation instruction and message handling instruction one or more.
Wherein, control command, for realizing the circulation of message transmitting, between forwarding processor FP and SDN controller, comprises GOTO_ST (n), GOTO_FT (m) etc.
The configuration information etc. that state of operation instruction is used for issuing according to the message arrived, SDN controller realizes maintenance and the renewal of state table, comprises INIT, CLEAR, FIND, INSERT, UPDATE, ERASE, ISEMPTY, SIZE etc.
Message handling instruction is used for realizing in forwarding processor FP the process of message, comprises MATCH, ADD, DELETE, MODIFY, DROP, OUTPUT, PARSE, QUEUE etc.
In the present embodiment, status processing module is based on the message query State transition strategy table arriving data flow, upgrade the state information of data flow in described state table according to the instruction of described node transition rule determination state of operation, and determine that control command and/or message handling instruction carry out forward process to data stream packet according to described Message processing rule.Like this, forwarding processor FP can be inquired about and the state information of memorying data flow or message by state table ST, makes corresponding process to the event of arrival (comprising the configuration information that the message of arrival or SDN controller issue).In this enforcement, SDN controller is communicated by asynchronous information with FP, complete control is had to forwarding processor FP, forwarding processor FP provide programmable interface, can the action of flexible expansion Message processing, realize the process to header or load, strengthen the programmability of datum plane further.
embodiment two
The present embodiment provides a kind of SDN datum plane carrier state method for processing forwarding, and steps flow chart as shown in Figure 4.Connect for example with TCP in carrier state fire compartment wall below, composition graphs 3 and Fig. 4 are described in detail.
Before switch processes incoming message, protocol filtering table is as shown in Figure 3 pre-set in SDN controller, and issue initialization command by SDN controller to forwarding processor FP, current state field in configuration status transition strategy table, event field, NextState field and Policy Table's instruction field, and the matching domain field in state table, the corresponding finite state machine of study on its developing agreement.As shown in Figure 3, state transitions Policy Table corresponding to m group and state table are set according to the different application agreement in SDN.What in fact arrange in state transitions Policy Table is the node transition rule of carrier state fire compartment wall and Message processing rule.Such as, in state transitions Policy Table 1, store the various situations that State Transferring occurs in permission (ALLOW), and connect which kind of event and which kind of state variation corresponding occur at input TCP.Similar, also need storage not allow (DROP) that the various situations (not shown in Fig. 3) of State Transferring occur.
After incoming message arrives, forwarding engine is resolved the data flow message received and is sent to status processing module corresponding to message protocol in SDN datum plane forwarding processor.Specifically, as shown in Figure 4, forwarding engine is transmitted (step S401) according to the information matches of data message head.When the match is successful, forwarding engine forwards the packet to corresponding status processing module (step S402) according to the control command GOTO_ST (n) of forwarding-table item.
When mating unsuccessful, the first packet arriving data flow is uploaded to SDN controller (step S403) by forwarding engine, issues new forwarding-table item (step S404) by SDN controller to transmitting.Specifically, in packet input (Packet-in) message that SDN controller acquisition forwarding engine is uploaded, the first packet information of data flow, inquiring about this message by matching domain and belongs to which kind of application protocol, then issuing forwarding-table item for transmitting.
As shown in the stream table 0 in Fig. 3, forwarding-table item is for arranging the matching domain corresponding to the application protocol in SDN, and setting is used to indicate the control command of the data flow of reception to the status processing module of carrier state forwarding processor FP.Wherein, GOTO_ST (1) expression imports data message into state table 1.
After step S402 completes, status processing module is based on the message matching status table received, state transitions Policy Table in query strategy module, determines NextState, corresponding control command and message handling instruction (step S405) according to state transitions Policy Table.In the example of fig. 3, state table 1 is according to current state and incoming event (flag as TCP header), and the State Transferring Policy Table 1 that inquiry is corresponding, draws next state and corresponding processing instruction.Then, status processing module upgrades the state information of packet in described state table, data flow, connection or network, processes (step S406) data flow or packet according to described message handling instruction.Message is sent to forwarding engine by status processing module, and forwarding engine inquiry is transmitted and forwarded (step S407) data stream.
In the example of fig. 3, one or more transmitting is set in forwarding engine.The control command GOTO_FT (n) of state table 1 represents message to be sent to and transmits that (n), message can continue processing forward to stream table in transmitting, and is finally outputted to the destination interface of switch by executable operations module.
It should be noted that, in step S402 and step S405, have parallel processing and serial process two kinds of modes.Forwarding engine by message transmitted in parallel to the multiple state tables in status processing module, can arbitrate rear execution to the instruction of conflict that has that multiple state table returns.Each state table message serial be sent in status processing module can also be supported, carry out state updating and instruction execution successively.
Although execution mode disclosed in this invention is as above, the execution mode that described content just adopts for the ease of understanding the present invention, and be not used to limit the present invention.Technical staff in any the technical field of the invention; under the prerequisite not departing from spirit and scope disclosed in this invention; any amendment and change can be done what implement in form and in details; but scope of patent protection of the present invention, the scope that still must define with appending claims is as the criterion.

Claims (10)

1. a SDN datum plane carrier state switching equipment, is characterized in that, comprising:
SDN datum plane carrier state forwarding processor, it comprises status processing module for multiple application protocol is arranged and policy module, described status processing module is used for the state of service data panel data bag, data flow, connection or network, and the processing policy determination control command provided according to policy module and message handling instruction;
Forwarding engine, it is resolved the data message head received, information matches according to data message head is transmitted, and message is sent to corresponding status processing module, and transmits according to the control command inquiry that status processing module returns and forward data stream.
2. equipment according to claim 1, it is characterized in that, message is sent to corresponding status processing module by one or more transmitting by described forwarding engine, described transmit in matching domain and domain of instruction are set, the content representation message matching area of described matching domain, described in the domain of instruction transmitted comprise the message repeating that receives to the control command of state table in status processing module.
3. equipment according to claim 1, is characterized in that, described status processing module comprises the state table for multiple application protocol is arranged, and arranges the state transitions Policy Table corresponding with state table in described policy module;
Described status processing module is based on datum plane event and current-status query state transitions Policy Table, state table operational order is determined according to described state transitions Policy Table, upgrade the state information of packet in described state table, data flow, connection or network, and determine corresponding control command and message handling instruction.
4. equipment according to claim 3, is characterized in that, message transmitted in parallel to the multiple state tables in status processing module, is arbitrated rear execution to the instruction of conflict that has that multiple state table returns by described forwarding engine.
5. equipment according to claim 3, is characterized in that, described forwarding engine can support each state table message serial be sent in status processing module, carries out state updating and instruction execution successively.
6. a SDN switching system, is characterized in that, comprises SDN controller and the SDN datum plane carrier state switching equipment according to any one of claim 1-5, arranges protocol filtering table in described SDN controller;
Wherein, when forwarding engine is transmitted unsuccessful according to the information matches of data message head, this message is sent to its SDN controller by SDN switching equipment, SDN controller mates described protocol filtering table to identify that this data flow belongs to any application protocol, and issues corresponding forwarding-table item to transmitting.
7. SDN switching system according to claim 6, it is characterized in that, arrange matching domain and protocol domain in described protocol filtering table, in described protocol filtering table, the content representation of matching domain is for the message matching area of application protocol, the agreement of the content representation message of described protocol domain.
8. a SDN datum plane carrier state method for processing forwarding, is characterized in that, comprise the following steps:
Forwarding engine is resolved the message received and is sent to corresponding status processing module in SDN datum plane carrier state forwarding processor;
Status processing module is based on the message matching status table received, state transitions Policy Table in query strategy module, determines packet, data flow, connection or the NextState of network, corresponding control command and message handling instruction according to state transitions Policy Table;
Status processing module upgrades the state information of packet in described state table, data flow, connection or network, processes data flow or packet according to described message handling instruction;
Forwarding engine inquiry is transmitted and is forwarded data stream.
9. method according to claim 8, is characterized in that, described forwarding engine is resolved the message received and the step sent comprises:
Forwarding engine is transmitted according to the information matches of data message head;
When the match is successful, forwarding engine forwards the packet to corresponding status processing module according to the control command of forwarding-table item;
When mating unsuccessful, the first packet arriving data flow is uploaded to SDN controller by forwarding engine, issues new forwarding-table item by SDN controller to transmitting.
10. method according to claim 8, is characterized in that, also comprises initialization step:
SDN controller issues the matching domain in the pre-configured described state table of initialization command;
SDN controller issues the value of current state field in the pre-configured described state transitions Policy Table of initialization command, field of events, NextState territory and Policy Table's domain of instruction, the corresponding finite state machine of study on its developing agreement.
CN201510140958.5A 2015-03-27 2015-03-27 SDN data plane carrier states switching equipment, system and method for processing forwarding Active CN104836753B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510140958.5A CN104836753B (en) 2015-03-27 2015-03-27 SDN data plane carrier states switching equipment, system and method for processing forwarding

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510140958.5A CN104836753B (en) 2015-03-27 2015-03-27 SDN data plane carrier states switching equipment, system and method for processing forwarding

Publications (2)

Publication Number Publication Date
CN104836753A true CN104836753A (en) 2015-08-12
CN104836753B CN104836753B (en) 2018-10-02

Family

ID=53814397

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510140958.5A Active CN104836753B (en) 2015-03-27 2015-03-27 SDN data plane carrier states switching equipment, system and method for processing forwarding

Country Status (1)

Country Link
CN (1) CN104836753B (en)

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105207908A (en) * 2015-09-30 2015-12-30 浪潮(北京)电子信息产业有限公司 Message processing method and system framework
CN105515975A (en) * 2015-11-24 2016-04-20 武汉烽火网络有限责任公司 Realization method and system for software defined networking based on application layer forwarding
CN105681223A (en) * 2015-12-31 2016-06-15 清华大学 SDN data packet forwarding method and method
CN105812179A (en) * 2016-03-09 2016-07-27 中国科学院信息工程研究所 Protocol independent forwarding network event processing method
CN106559323A (en) * 2016-10-28 2017-04-05 上海斐讯数据通信技术有限公司 A kind of method and apparatus sent on SDN equipment first packet
WO2018082537A1 (en) 2016-11-03 2018-05-11 Huawei Technologies Co., Ltd. Method and apparatus for stateful control of forwarding elements
CN108924200A (en) * 2018-06-21 2018-11-30 国家电网有限公司 A kind of message processing method and device
CN110290092A (en) * 2018-03-19 2019-09-27 中国科学院沈阳自动化研究所 A kind of SDN network configuring management method based on programmable switch
CN110896371A (en) * 2016-02-14 2020-03-20 华为技术有限公司 Virtual network equipment and related method
CN112367278A (en) * 2020-11-03 2021-02-12 清华大学 Cloud gateway system based on programmable data switch and message processing method thereof
CN113282296A (en) * 2021-05-31 2021-08-20 河南信大网御科技有限公司 Data forwarding method and device based on data plane programming
US11681972B2 (en) 2020-10-14 2023-06-20 Coupang Corp. Centralized status monitoring in a multidomain network

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103428771A (en) * 2013-09-05 2013-12-04 迈普通信技术股份有限公司 Communication method, software defined network SDN switch and communication system
CN103595647A (en) * 2013-11-27 2014-02-19 北京邮电大学 OpenFlow-based downlink signaling processing method for SDN (Software Defined Network) virtualization platform
CN104104561A (en) * 2014-08-11 2014-10-15 武汉大学 SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol
CN104426789A (en) * 2013-08-23 2015-03-18 杭州华三通信技术有限公司 Forwarding equipment control method in software defined network and equipment

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104426789A (en) * 2013-08-23 2015-03-18 杭州华三通信技术有限公司 Forwarding equipment control method in software defined network and equipment
CN103428771A (en) * 2013-09-05 2013-12-04 迈普通信技术股份有限公司 Communication method, software defined network SDN switch and communication system
CN103595647A (en) * 2013-11-27 2014-02-19 北京邮电大学 OpenFlow-based downlink signaling processing method for SDN (Software Defined Network) virtualization platform
CN104104561A (en) * 2014-08-11 2014-10-15 武汉大学 SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
SHUYONG ZHU: ""SFA:Stateful Forwarding Abstraction in SDN Data Plane", 《CONFERENCE:USENIX/OPEN NETWORKING SUMMIT RESEACH TRACK(ONS14)》 *

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105207908A (en) * 2015-09-30 2015-12-30 浪潮(北京)电子信息产业有限公司 Message processing method and system framework
CN105207908B (en) * 2015-09-30 2018-09-18 浪潮(北京)电子信息产业有限公司 A kind of message processing method and system
CN105515975A (en) * 2015-11-24 2016-04-20 武汉烽火网络有限责任公司 Realization method and system for software defined networking based on application layer forwarding
CN105515975B (en) * 2015-11-24 2019-01-04 武汉烽火网络有限责任公司 Software-oriented defines the realization method and system that network is forwarded based on application layer
CN105681223A (en) * 2015-12-31 2016-06-15 清华大学 SDN data packet forwarding method and method
CN105681223B (en) * 2015-12-31 2019-05-14 清华大学 A kind of data packet forwarding method and device of SDN
CN110896371A (en) * 2016-02-14 2020-03-20 华为技术有限公司 Virtual network equipment and related method
CN110896371B (en) * 2016-02-14 2022-07-26 华为技术有限公司 Virtual network equipment and related method
US11381507B2 (en) 2016-02-14 2022-07-05 Huawei Technologies Co., Ltd. Virtual network device and related method
CN105812179A (en) * 2016-03-09 2016-07-27 中国科学院信息工程研究所 Protocol independent forwarding network event processing method
CN105812179B (en) * 2016-03-09 2019-02-15 中国科学院信息工程研究所 A kind of unrelated forwarding network event processing method of agreement
CN106559323A (en) * 2016-10-28 2017-04-05 上海斐讯数据通信技术有限公司 A kind of method and apparatus sent on SDN equipment first packet
WO2018082537A1 (en) 2016-11-03 2018-05-11 Huawei Technologies Co., Ltd. Method and apparatus for stateful control of forwarding elements
CN109863724A (en) * 2016-11-03 2019-06-07 华为技术有限公司 The method and apparatus of stateful control for forwarding elements
CN110290092A (en) * 2018-03-19 2019-09-27 中国科学院沈阳自动化研究所 A kind of SDN network configuring management method based on programmable switch
CN110290092B (en) * 2018-03-19 2021-05-28 中国科学院沈阳自动化研究所 SDN network configuration management method based on programmable switch
CN108924200A (en) * 2018-06-21 2018-11-30 国家电网有限公司 A kind of message processing method and device
US11681972B2 (en) 2020-10-14 2023-06-20 Coupang Corp. Centralized status monitoring in a multidomain network
CN112367278A (en) * 2020-11-03 2021-02-12 清华大学 Cloud gateway system based on programmable data switch and message processing method thereof
CN113282296A (en) * 2021-05-31 2021-08-20 河南信大网御科技有限公司 Data forwarding method and device based on data plane programming

Also Published As

Publication number Publication date
CN104836753B (en) 2018-10-02

Similar Documents

Publication Publication Date Title
CN104836753A (en) Software-defined networking (SDN) data plane strip state exchange device, SDN exchange system and SDN data plane strip state forwarding and processing method
US9497118B2 (en) Communication system, communication device, controller, and method and program for controlling forwarding path of packet flow
EP2680513B1 (en) Methods and apparatus for providing services in a distributed switch
EP2823605B1 (en) Methods of operating forwarding elements including shadow tables and related forwarding elements
CN104012052A (en) System And Method For Flow Management In Software-Defined Networks
US9203743B2 (en) Packet forwarding system, control device, forwarding device and method and program for preparing processing rules
WO2013115177A1 (en) Network system and topology management method
CN104836749A (en) Software-defined networking (SDN) data plane strip state forwarding processor
CN110061897A (en) Data on flows acquisition methods and system in virtual network tunnel
US10645006B2 (en) Information system, control apparatus, communication method, and program
CN103069756A (en) Communication system, controller, node controlling method and program
CN105812340B (en) A kind of method and apparatus of virtual network access outer net
EP2680536B1 (en) Methods and apparatus for providing services in a distributed switch
JP2012090058A (en) Communication system, control device, method for setting processing rule, and program
CN103119900A (en) Communication system, control apparatus, node control method and program
CN108471389B (en) Switch system based on service function chain
CN104782087B (en) Switching equipment, controller, switching equipment configuration, message processing method and system
CN105978762A (en) Redundant Ethernet data transmission device, system and method thereof
JP2002009866A (en) Method for distributing frame and information processor having its function
CN104221338A (en) Control apparatus, communication system, node control method and program
JP6079348B2 (en) Switch device, switch device control method, and network system
EP3073685B1 (en) Network control device, network control method, and program
CN111585791B (en) Data synchronization configuration method, system and storage medium
CN104737503A (en) Communication node, communication system, control device, packet transfer method, and program
CN113965470B (en) Aviation information network experiment simulation system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
EXSB Decision made by sipo to initiate substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant