CN104836753B - SDN data plane carrier states switching equipment, system and method for processing forwarding - Google Patents
SDN data plane carrier states switching equipment, system and method for processing forwarding Download PDFInfo
- Publication number
- CN104836753B CN104836753B CN201510140958.5A CN201510140958A CN104836753B CN 104836753 B CN104836753 B CN 104836753B CN 201510140958 A CN201510140958 A CN 201510140958A CN 104836753 B CN104836753 B CN 104836753B
- Authority
- CN
- China
- Prior art keywords
- state
- message
- forwarding
- data
- instruction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/10—Packet switching elements characterised by the switching fabric construction
Abstract
The invention discloses a kind of SDN data planes carrier state switching equipment, system and method for processing forwarding.The SDN data planes carrier state switching equipment, including SDN data plane carrier state forwarding processors, it includes the status processing module being arranged for a variety of application protocols and policy module, the status processing module is used to safeguard the state of data plane data packet, data flow, connection or network, and determines control instruction and message handling instruction according to the processing strategy that policy module provides;Forward engine, it parses the data message head of reception, according to the information matches forwarding table on data message head, message is sent to corresponding status processing module, and the control instruction inquiry forwarding table returned according to status processing module forwards data stream.The present invention can handle data message, data flow, connection and network state information in SDN data planes.
Description
Technical field
The present invention relates to Internet technical fields, specifically, being related to SDN data plane carrier states switching equipment, system
And method for processing forwarding.
Background technology
Software defined network SDN (Software-Defined Networking) is in 2010 by Stanford Univ USA
Nick McKeown professors and University of California Berkeley Scott professors Shenker etc. are common to be proposed, starting point is logical
The abstract network system for rebuilding a Forwarding plane and control plane separation to network-control is crossed, supports network function
Continuous evolution.
Computer Architecture thought is introduced network research field by software defined network, and opening is software defined network
Intrinsic propesties.Pass through the opening of the network equipment, the opening of the opening of control plane and protocol realization so that network is no longer one
A closed system, to realize the lasting evolution of network architecture.The basic thought of software defined network is should be not unlimited
The increase of network complexity, network complexity is connived to be increasingly difficult to, to control, need to be abstracted network, with screen in system ground
Bottom complexity is covered, the configuration and management being simple and efficient are provided for upper layer.The essential characteristic of SDN has:Control and forward separating, control
Open interface between plane processed and Forwarding plane, centralized control in logic.
OpenFlow agreements were proposed by Stanford University in 2008.The basic thought of OpenFlow is to set traditional network
Rapid message forwarding part (data plane) and logic routing decision part (control plane) in standby are detached, data plane
Network device internal is resided in, and control plane is then concentrated to control server from network equipment removal, both sides pass through standardization
Message interface communicated.Meanwhile new example, in hardware being devised in data plane ----flow table (Flow Table) is made
For the abstract model of network equipment data plane, the external world is supplied to be used, then it is extraneous can the data plane of management and control be unified for
Flow Table forms;Mark is passed through using centralization analysis, calculating and operation in the control logic of control plane, the network equipment
Control instruction is sent to the network equipment by the message mode of standardization, realizes the remote control to the network equipment, to complete tradition point
Basic function under cloth Network operation mode, such as message receives, message forwarding, modification forwarding table, obtains equipment state.
The forward process normal form of OpenFlow protocol data planes " matching+action " although disclosure satisfy that the need of some agreements
It asks, but still there is larger limitation.OpenFlow interchangers can only provide the matching treatment function to message, cannot support
Processing to status information.In existing OpenFlow frameworks, status information can only be handled on the controller.Due to interchanger
With the bottleneck of controller communication bandwidth and controller processing capacity, all status informations, all processing can be brought on the controller
The problem of performance and scalability.
Invention content
One of technical problem solved by the invention be SDN data planes realize to data message, data flow, connection and
The processing of network state information, solves that there are the conditions of bottleneck in interchanger and controller communication bandwidth and controller processing capacity
Under, the limited defect of network performance.
The embodiment provides a kind of SDN data planes carrier state switching equipment, including:
SDN data plane carrier state forwarding processors comprising for a variety of application protocols setting status processing module and
Policy module, the status processing module are used to safeguard the state of data plane data packet, data flow, connection or network, and
The processing strategy provided according to policy module determines control instruction and message handling instruction;
Engine is forwarded, the data message head of reception is parsed, is turned according to the information matches on data message head
It delivers, message is sent to corresponding status processing module, and forwarding is inquired according to the control instruction that status processing module returns
Table forwards data stream.
In one embodiment, message is sent to corresponding shape by the forwarding engine by one or more forwarding tables
State processing module, setting matching domain and domain of instruction, the content representation message matching area of the matching domain, institute in the forwarding table
The domain of instruction for stating forwarding table includes the control instruction that the message of reception is forwarded to state table in status processing module.
In one embodiment, the status processing module includes the state table being arranged for a variety of application protocols, described
State transition strategy table corresponding with state table is set in policy module;
The event and current-status query state transition strategy table that the status processing module is occurred based on data plane, root
Determine state table operational order according to the state transition strategy table, update data packet in the state table, data flow, connection or
The status information of network, and determine corresponding control instruction and message handling instruction.
In one embodiment, the forwarding engine is by multiple states in message transmitted in parallel to status processing module
Table, to multiple state tables return there is the instruction of conflict to arbitrate after execute.
In one embodiment, the forwarding engine can be supported message being serially sent to each in status processing module
A state table carries out state update and instruction execution successively.
The embodiment of the present invention also provides a kind of SDN exchange systems, including SDN controllers and SDN numbers as described above
According to planar band state switching equipment, protocol filtering table is set in the SDN controllers;
Wherein, in the case where forwarding engine failed according to the information matches forwarding table on data message head, SDN is exchanged
The message is sent to its SDN controller by equipment, and SDN controllers match the protocol filtering table to identify which the data flow belongs to
A kind of application protocol, and issue corresponding forwarding-table item to forwarding table.
In one embodiment, matching domain and protocol domain be set in the protocol filtering table, in the protocol filtering table
Content representation with domain is directed to the message matching area of application protocol, the agreement of the content representation message of the protocol domain.
The embodiment of the present invention also provides a kind of SDN data planes carrier state method for processing forwarding, includes the following steps:
Forwarding engine parses the message of reception and is sent in SDN data plane carrier state forwarding processors corresponding
Status processing module;
Message matching status table of the status processing module based on reception, query strategy mould state transition strategy table in the block,
NextState, corresponding control instruction and the report of data packet, data flow, connection or network are determined according to state transition strategy table
Literary process instruction;
Status processing module updates the status information of data packet in the state table, data flow, connection or network, according to
The message handling instruction handles data flow or data packet;
Forwarding engine queries forwarding table forwards data stream.
In one embodiment, the step of forwarding engine is parsed and sent to the message of reception include:
Forward engine according to the information matches forwarding table on data message head;
In the case of successful match, forwarding engine is forwarded the packet according to the control instruction of forwarding-table item to corresponding shape
State processing module;
In the case where matching is failed, the first packet for reaching data flow is uploaded to SDN controllers by forwarding engine, by SDN
Controller issues new forwarding-table item to forwarding table.
In one embodiment, further include initialization step:
SDN controllers issue the matching domain that initialization command is pre-configured in the state table;
SDN controllers issue current state field, the event that initialization command is pre-configured in the state transition strategy table
The value in domain, NextState domain and Policy Table's domain of instruction builds finite state machine corresponding with application protocol.
The present invention can handle data message, data flow, connection and network state information in SDN data planes.Wherein, turn
Hair processor FP can be inquired and be stored data flow or the status information of message by state table ST, to the event (packet of arrival
Include the message of arrival or configuration information that SDN controllers issue) make corresponding processing.SDN controllers are to forwarding processor FP
Possess complete control.
Forwarding processor FP provides programmable interface, can act with flexible expansion Message processing, realization to header or
The processing of load supports the processing to 4 to 7 layers of information of message, further enhances the programmability of data plane.
The embodiment of the present invention can flexibly set matching domain, flexible expansion Message processing mode according to application.It is controlled in SDN
Protocol filtering table is set in device processed, and identification message belongs to any agreement.State table is set separately according to no application protocol
Matching domain.SDN controllers, by initialization directive configuration status transition strategy table, are preset according to different application protocols
The finite state machine and dependent instruction of data plane state transfer.
Other features and advantages of the present invention will be illustrated in the following description, also, partly becomes from specification
It obtains it is clear that understand through the implementation of the invention.The purpose of the present invention and other advantages can be by specification, rights
Specifically noted structure is realized and is obtained in claim and attached drawing.
Description of the drawings
Attached drawing is used to provide further understanding of the present invention, and a part for constitution instruction, the reality with the present invention
It applies example and is used together to explain the present invention, be not construed as limiting the invention.In the accompanying drawings:
Fig. 1 is the schematic diagram of according to embodiments of the present invention one SDN data plane carrier state forward process;
Fig. 2 is the configuration diagram of according to embodiments of the present invention one SDN exchange systems;
Fig. 3 is the according to embodiments of the present invention one abstract SFA principle schematics of carrier state forwarding;
Fig. 4 is the step flow chart of according to embodiments of the present invention two SDN data plane carrier state method for processing forwarding.
Specific implementation mode
To make the object, technical solutions and advantages of the present invention clearer, the present invention is made below in conjunction with attached drawing further
Ground is described in detail.
The embodiment of the present invention is directed to the limitation of tradition OpenFlow agreements, devises a kind of support SDN data planes
The forwarding of the technical solution of carrier state forward process, i.e. carrier state is abstracted SFA (Stateful Forwarding Abstraction)
Technology.The embodiment of the present invention provides a kind of new data plane forward process normal form, is forwarded by increasing in SDN data planes
Processor (Forwarding Processor) and state table (State Table) are realized in data plane to status information
Processing.
The forward process normal form of OpenFlow protocol data planes " matching+action " in the prior art cannot support data
The forward process of planar band state, since OpenFlow flow table lacks the function of carrier state forward process, this processing normal form pair
There is significant limitation in many applications for needing to handle state in data plane, such as carrier state fire wall, load balancing.
Due to the bottleneck of SDN controllers and switch communication bandwidth and controller processing capacity, all status informations are all concentrated on
Processing has significant limitations on controller.
The new types of data plane forward process normal form proposed in detailed description below the present embodiment.
The embodiment of the present invention devises the new data plane forward process normal form of a kind of " matching+state+action ", such as
Shown in Fig. 1.In this forward process normal form, embodiment adds state table and state operational order, support flat in data
Status information in face of stream or message is recorded and is safeguarded.State table is used to record the status information of stream or message, shape
State table handling is instructed for safeguarding state table.When some applications (such as carrier state fire wall) need to handle state in data plane
When, handle the message reached according to the status information of data plane, while state table according to the message of arrival and other events (such as
The state table operational order that controller issues) it is updated.This processing normal form can directly handle state letter on switches
Breath, does not need the participation of SDN controllers.Under this normal form, the input of data plane has two parts, one be input stream or
Person's message, the other is status information.Their outgoing message and new shapes under the action of the transfer function that SDN controllers issue
State.Wherein, transfer function is used to indicate the node transition rule and Message processing rule that SDN controllers issue.Since in this way,
SDN controllers can be that the various flexible messages of application configuration forward in SDN network and processing is tactful.
Above-mentioned function is realized particular by state table State Table (ST) are increased in data plane.Each shape
State list item represents connection legal known to interchanger.The form of state table is as shown in table 1.In SFA frameworks, interchanger is every
It is a kind of that the agreement of recording status is needed all to establish a state table.
Table 1
| Matching domain | State | Instruction |
Wherein, matching domain field identification message/stream or the matching field of connection, specific to its state table of different agreements
The specific matching domain of item may be different.
Mode field indicates to reach the status information of data message/stream, connection or network.
Instruction field includes three classes instruction, including control instruction, state table operational order and message handling instruction.Wherein,
Control instruction is for realizing message in forwarding table (or traditional routing table), forwarding processor FP (Forwarding
Processor) the circulation between SDN controllers, state table operational order are used for message or event according to arrival to shape
State carries out maintenance update, and message handling instruction is the instruction for being handled message.
Conversion between state table is carried out according to certain strategy, each state table has corresponding state to shift
Policy Table.The structure of state transition strategy table is as shown in table 2 in the present embodiment.
Table 2
| Current state | Event | NextState | Instruction |
Wherein, current state field list shows the current state of data message/stream, connection or network.Event field indicates
The event that data plane occurs, such as judge the variation of TCP connection by monitoring the flag fields of Transmission Control Protocol header, then compare
As external SDN controllers issue configuration information, SDN link connection states change.NextState field list show data message/
Stream, connection or network need newer state value.Instruction field in Policy Table indicates that the processing to message acts, such as right
The modification of message data parses, gives up.
It should be noted that different state forwarding strategies can be arranged in table 2 for the different application of interchanger, can wrap
Include data message/stream, connection or network state transition rule and Message processing rule.
For example, being directed to carrier state fire wall, the variation for monitoring TCP connection state is needed.It can be carried according to message
Flag fields come the event of monitoring data message carrying, the event of the variation for the TCP connection state that can be triggered.And TCP connects
The variation for connecing state then follows the finite state machine for the Transmission Control Protocol that state transition strategy table describes.It is given simultaneously in state table
Dependent instruction, including state table operational order, control instruction and message handling instruction.
In order to distinguish a variety of different applications in SDN frameworks, judge that the data stream packet reached belongs to any application
Agreement, the present embodiment devise a protocol filtering table in SDN controllers, as shown in table 3.
Table 3
| Matching domain | Agreement |
Wherein, matching domain field indicates that the domain of matching message, protocol fields is needed to indicate that SDN controllers judge the number reached
Belong to any application protocol according to stream packet.For different application protocols, SDN controllers issue corresponding flow table item, are used for
The message is forwarded to corresponding state table to handle.
Foundation, the update mechanism of state transition strategy table and state table described further below.
First, SDN controllers are pre-configured with state transition strategy table according to different application protocols by initialization directive
In whole list items, that is, current state field, the value of event field, NextState field and instruction field are set, builds and answers
With the corresponding finite state machine of agreement, and the matching domain field being pre-configured in the state table.
There are two types of the update modes of state table, and one is can be carried out more to corresponding state list item according to the message of arrival
Newly, another thing is updated according to the configuration information that SDN controllers are sent.
Embodiment adds the time limit of state list item (timeout) mechanism, by monitoring period, whether time-out is realized
State table entry deletion.There are one the domain (idle_timeout) of idle time limit and Hard link time limit (hard_ for each state list item
Timeout) domain, the domains idle_timeout record no message matched time, and the domains hard_timeout record list item is inserted into
Time in state table records the time that list item is established.Once the value of free time or Hard link time are more than default threshold
Value, then the list item is automatically left out, while sending out the deleted message of a list item to SDN controllers, so that SDN controllers
The content of the switch status table of middle storage is consistent with the actual content of switch status table.
As described above, corresponding with application protocol by state table in this present embodiment, it can be with by setting time limit mechanism
The list item in state table is flexibly deleted according to the different agreement for reaching data flow.
Illustrate how to judge the state of data flow by taking TCP connection as an example below.The present embodiment identifies (TCP by monitoring TCP
Flag) state of TCP connection is recorded.Define TCP connection five connection status, be respectively:It monitors (LISTEN), creates
(NEW), it has been established (ESTALBISHED), transmits (TRANSFER), (CLOING) will be closed, be turned off (CLOSED).Specifically
It is described as follows.
It monitors (LISTEN), whether monitoring has connection to initiate message.
Newly-built (NEW), when monitoring the first message of a connection, connection status is labeled as NEW.When monitoring TCP
When flag is SYN, connection status is updated to NEW.
It has been established (ESTALBISHED), indicates link it has been established that the message of the same connection can be normal through.Work as prison
The SYN ACK messages of TCP connection are controlled, connection status is updated to ESTABLISHED.
It transmits (TRANSFER), message transmissions.
It will close (CLOING), and indicate that connection will close.The FIN messages of TCP connection are such as monitored, connection status is more
It is newly CLOSING.
It is turned off (CLOSED), indicates that connection has been switched off.The FIN ACK messages of TCP connection are such as monitored, indicate connection
It has been switched off.
Further, since the matching domain of OpenFlow interchangers Message processing and processing action are to need in advance in the prior art
Definition, there cannot be certain limitation according to the demand flexible expansion of application.It proposes to control in SDN in the embodiment of the present invention
Protocol filtering table is set in device processed, matching domain can be set separately according to no application protocol.And SDN controllers are not according to
Same application protocol is pre-configured with whole list items in state transition strategy table by initialization directive, to be answered according to no
With the content of Policy Table's instruction field, acted to set different Message processings.Therefore, having for the embodiment of the present invention being capable of root
According to the flexible setting matching domain of application, the remarkable result of flexible expansion Message processing mode.
Embodiment one
The present embodiment provides a kind of SDN exchange systems, including SDN controllers and SDN switching equipment.It is provided in this embodiment
SDN switching equipment are to increase SDN data plane carrier state forwarding processors FP in traditional SDN switching equipment
(Forwarding Processor) realizes the maintenance and processing to status information by increasing intelligence in data plane.SDN
Data plane carrier state forwarding processor FP can specifically be realized by modes such as CPU, NPU, multinuclears.It is realized by extended instruction
Interaction and realization maintenance and processing to message and status information of the message between flow table, FP, controller.
Fig. 2 is the configuration diagram of SDN exchange systems in the present embodiment, and Fig. 3 is that carrier state forwarding is taken out in SDN exchange systems
As SFA (Stateful Forwarding Abstraction) principle schematic.Below in conjunction with Fig. 2 and Fig. 3 in the present embodiment
The forward process process of SDN exchange systems is described in detail.
As shown in Fig. 2, SDN switching equipment are connected to SDN network, multiple interfaces and packet buffer by multiple network interfaces
Unit connects, and then is connected to forwarding engine.Network interface is connected directly with physical link, includes processing corresponding data message
Function, that completes network message sends and receivees work, is operated in physical layer and link layer.The data flow of arrival passes through interface
It is buffered in packet buffer unit, and forward-path is determined by forwarding engine.
It forwards setting forwarding table in engine and executes operation module.Wherein, forwarding table contains that can to complete message correct
All forwarding informations of forwarding.Forwarding table plays a part of forming a connecting link in entire repeater system.Forwarding table is by SDN controllers
It issues, returns to correct forwarding lookup for forwarding engine as a result, completing the forwarding of message.Operation module is executed to be used for data flow
It is sent to network interface and exports.
As shown in figure 3, the forwarding-table item issued by SDN controllers is stored in forwarding table, in setting and SDN network
The corresponding matching domain of application protocol, and setting forwarding domain of instruction.The content of forwarding domain of instruction is used to indicate the data of reception
Stream is sent to the control instruction of carrier state forwarding processor FP.
The forward-path of forwarding engine determination data message specifically solves the data message head of reception
Analysis, is then searched according to the class indication of data message in forwarding table, and the destination interface of forwarding operation is obtained.
Forwarding engine is connect with forwarding processor FP.Forwarding processor FP is SDN data plane carrier state forwarding processors,
It is provided with policy module and status processing module.Policy module includes being deposited in advance for the data flow of various protocols in SDN network
Store up multiple state transition strategy tables (State Transition Table) of node transition rule and Message processing rule.State
Processing module is connect with the policy module, and status processing module includes multiple state tables corresponding with state transition strategy table
(State Table).State table is for recording and safeguarding data plane stream either message data packet, data flow, connection or net
The status information of network.In addition, the also recordable state operational order safeguarded to state table of state table, realization message circulate
Control instruction and the message handling instruction that data stream packet is handled.
Forwarding processor FP is realized by state table and instruction safeguards and handles data packet, data flow, company in data plane
It connects or the status information of network, and the processing to header and load information.Forwarding processor FP provides programming simultaneously and connects
Mouthful, realize the flexible expansion to instruction, the programmability of the function and enhancing data plane of further abundant data plane.
In specific implementation, forwarding processor FP can be based on CPU, GPU, NetFPGA, and ASIC multi-core processors etc. are a variety of
Mode realizes that state table can be realized based on RAM and TCAM.
Processing of the instruction set realization to message and state is provided in the present embodiment, number is further enhanced by the extension of instruction
According to the processing capacity of plane.Instruction set includes control instruction, state operational order and message handling instruction.State table instruction field
Content with Policy Table's instruction field is respectively control instruction, state operational order and one kind or more in message handling instruction
Kind.
Wherein, circulation of the control instruction for realizing message between forwarding table, forwarding processor FP and SDN controller,
Including GOTO_ST (n), GOTO_FT (m) etc..
Configuration information that state operational order is used to be issued according to message, the SDN controllers of arrival etc. realizes state table
It safeguards and updates, including INIT, CLEAR, FIND, INSERT, UPDATE, ERASE, ISEMPTY, SIZE etc..
Message handling instruction is used for processing of the realization to message in forwarding processor FP, including MATCH, ADD,
DELETE, MODIFY, DROP, OUTPUT, PARSE, QUEUE etc..
Status processing module inquires state transition strategy table based on the message for reaching data flow in the present embodiment, according to described
Node transition rule determines state operational order to update the status information of data flow in the state table, and according to the message
Processing rule determines control instruction and/or message handling instruction to be forwarded processing to data stream packet.Since in this way, forwarding
Processor FP can be inquired and be stored data flow or the status information of message by state table ST, to the event of arrival (including
The configuration information that the message or SDN controllers of arrival issue) make corresponding processing.SDN controllers and FP pass through in this implementation
Asynchronous information is communicated, and possesses complete control to forwarding processor FP, and forwarding processor FP provides programmable interface, can be with
Flexible expansion Message processing acts, and realizes the processing to header or load, further enhances the programmability of data plane.
Embodiment two
The present embodiment provides a kind of SDN data planes carrier state method for processing forwarding, steps flow chart is as shown in Figure 4.Below
Using TCP connection in carrier state fire wall as example, it is described in detail in conjunction with Fig. 3 and Fig. 4.
Before interchanger handles incoming message, agreement mistake as shown in Figure 3 is pre-set in SDN controllers
Table is filtered, and initialization command, the current state in configuration status transition strategy table are issued from SDN controllers to forwarding processor FP
Matching domain field in field, event field, NextState field and Policy Table's instruction field and state table, builds and answers
With the corresponding finite state machine of agreement.As shown in figure 3, according to the corresponding state of different application agreement setting m groups in SDN network
Transition strategy table and state table.Actually be provided that in state transition strategy table carrier state fire wall node transition rule and
Message processing rule.For example, the various situations of permission (ALLOW) generating state conversion are stored in state transition strategy table 1,
And which kind of event occurs in input TCP connection and which kind of state change corresponded to.Similar, it is also desirable to storage does not allow (DROP)
The various situations (being not shown in Fig. 3) of generating state conversion.
After incoming message reaches, forwarding engine parses the data stream packet of reception and is sent to SDN data and put down
Status processing module corresponding with message protocol in the forwarding processor of face.Specifically, as shown in figure 4, forwarding engine is according to number
According to the information matches forwarding table (step S401) of header.In the case of successful match, forwarding engine is according to forwarding-table item
Control instruction GOTO_ST (n) forward the packet to corresponding status processing module (step S402).
In the case where matching is failed, the first packet for reaching data flow is uploaded to SDN controller (steps by forwarding engine
S403), new forwarding-table item (step S404) is issued from SDN controllers to forwarding table.Specifically, SDN controllers, which obtain, turns
Carry out the coffin upon burial hold up upload data packet input (Packet-in) message in data flow first packet information, which is inquired by matching domain
Which kind of application protocol belonged to, then issues forwarding-table item for forwarding table.
As shown in the flow table 0 in Fig. 3, forwarding-table item is used to that matching domain corresponding with the application protocol in SDN network to be arranged,
And setting is used to indicate and refers to the control for the status processing module that the data flow of reception is sent to carrier state forwarding processor FP
It enables.Wherein, GOTO_ST (1) indicates data message being passed to state table 1.
After step S402 is completed, message matching status table of the status processing module based on reception, query strategy module
In state transition strategy table, determine that NextState, corresponding control instruction and Message processing refer to according to state transition strategy table
It enables (step S405).In the example of fig. 3, state table 1 is looked into according to current state and incoming event (flag of such as TCP header)
Corresponding state switching strategy table 1 is ask, obtains next state and corresponding process instruction.Then, status processing module updates
Data packet in the state table, data flow, the status information of connection or network, according to the message handling instruction to data flow
Or data packet is handled (step S406).Message is sent to forwarding engine by status processing module, and forwarding engine queries turn
It delivers and data stream is forwarded (step S407).
In the example of fig. 3, it forwards in engine and one or more forwarding tables is set.The control instruction GOTO_FT of state table 1
(n) indicate message being sent to forwarding table that (flow table n), message can continue processing forward in forwarding table, finally by executing operation
Module is output to the destination interface of interchanger.
It should be noted that in step S402 and step S405, there are parallel processing and serial process two ways.Forwarding
Multiple state tables in message transmitted in parallel to status processing module can be had conflict by engine to what multiple state tables returned
Instruction executes after being arbitrated.It can also support each state table being serially sent to message in status processing module, successively
The update of carry out state and instruction execution.
While it is disclosed that embodiment content as above but described only to facilitate understanding the present invention and adopting
Embodiment is not limited to the present invention.Any those skilled in the art to which this invention pertains are not departing from this
Under the premise of the disclosed spirit and scope of invention, any modification and change can be made in the implementing form and in details,
But the scope of patent protection of the present invention, still should be subject to the scope of the claims as defined in the appended claims.
Claims (7)
1. a kind of SDN data planes carrier state switching equipment, which is characterized in that including:
SDN data plane carrier state forwarding processors comprising for the status processing module and strategy of the setting of a variety of application protocols
Module, state of the status processing module for safeguarding data plane data packet, data flow, connection or network, and according to
The processing strategy that policy module provides determines control instruction and message handling instruction;And forwarding engine, to the data of reception
Header is parsed, and according to the information matches forwarding table on data message head, message is sent to corresponding state processing
Module, and the control instruction inquiry forwarding table returned according to status processing module forwards data stream;Wherein, the state
Processing module includes the multiple state tables being arranged for a variety of application protocols, is arranged in the policy module corresponding with state table
State transition strategy table;
The event and current-status query state transition strategy table that the status processing module is occurred based on data plane, according to institute
It states state transition strategy table and determines state table operational order, update data packet, data flow, connection or network in the state table
Status information, and determine corresponding control instruction and message handling instruction,
Wherein, message is sent to corresponding status processing module, institute by the forwarding engine by one or more forwarding tables
It states and matching domain and domain of instruction, the content representation message matching area of the matching domain, the finger of the forwarding table is set in forwarding table
It includes the control instruction that the message of reception is forwarded to state table in status processing module to enable domain;The forwarding engine is by message
Multiple state tables in transmitted in parallel to status processing module, to multiple state tables return there is the instruction of conflict to arbitrate after
It executes;
Confinement and confinement when Hard link when being arranged idle in the state table, confinement record sheet item does not have message when described idle
The time matched, the time that confinement record sheet item is established when the Hard link, during idle time or the value of Hard link time is more than
In the case of predetermined threshold value, the list item of state table is deleted;
Wherein, current state field, field of events, NextState domain and domain of instruction, the thing are set in the state transition strategy table
Event entrained by data packet that the internal representation data plane in part domain reaches, data flow, or thing that connection, network occur
Part, described instruction domain include control instruction, state operational order and message handling instruction.
2. equipment according to claim 1, which is characterized in that the forwarding engine can be supported message being serially sent to
Each state table in status processing module carries out state update and instruction execution successively.
3. a kind of SDN exchange systems, which is characterized in that flat including SDN controllers and SDN data as claimed in claim 1 or 2
Protocol filtering table is arranged in the SDN controllers for face carrier state switching equipment;
Wherein, in the case where forwarding engine failed according to the information matches forwarding table on data message head, SDN switching equipment
The message is sent to its SDN controller, SDN controllers match the protocol filtering table to identify that the data flow belongs to any
Application protocol, and issue corresponding forwarding-table item to forwarding table.
4. SDN exchange systems according to claim 3, which is characterized in that in the protocol filtering table be arranged matching domain and
Protocol domain, the content representation of matching domain is directed to the message matching area of application protocol, the protocol domain in the protocol filtering table
Content representation message agreement.
5. a kind of SDN data planes carrier state method for processing forwarding, which is characterized in that include the following steps:
Forwarding engine parses the message of reception and is sent to corresponding shape in SDN data plane carrier state forwarding processors
State processing module;
Message matching status table of the status processing module based on reception, query strategy mould state transition strategy table in the block, according to
State transition strategy table determines at NextState, corresponding control instruction and the message of data packet, data flow, connection or network
Reason instruction;
Status processing module updates the status information of data packet in the state table, data flow, connection or network, according to described
Message handling instruction handles data flow or data packet;And
Forwarding engine queries forwarding table forwards data stream,
Wherein, message is sent to corresponding status processing module by forwarding engine by one or more forwarding tables, described turn
Deliver middle setting matching domain and domain of instruction, the content representation message matching area of the matching domain, the domain of instruction of the forwarding table
It include the control instruction that the message of reception is forwarded to state table in status processing module;The forwarding engine is parallel by message
The multiple state tables being sent in status processing module, to multiple state tables return there is the instruction of conflict to arbitrate after hold
Row,
Wherein, current state field, field of events, NextState domain and domain of instruction, the thing are set in the state transition strategy table
Event entrained by data packet that the internal representation data plane in part domain reaches, data flow, or thing that connection, network occur
Part, described instruction domain include control instruction, state operational order and message handling instruction;
Confinement and confinement when Hard link when being arranged idle in the state table, confinement record sheet item does not have message when described idle
The time matched, the time that confinement record sheet item is established when the Hard link, during idle time or the value of Hard link time is more than
In the case of predetermined threshold value, the list item of state table is deleted.
6. according to the method described in claim 5, it is characterized in that, the forwarding engine to the message of reception parse concurrently
The step of sending include:
Forward engine according to the information matches forwarding table on data message head;
In the case of successful match, forwarding engine is forwarded the packet according to the control instruction of forwarding-table item to corresponding state
Manage module;
In the case where matching is failed, the first packet for reaching data flow is uploaded to SDN controllers by forwarding engine, is controlled by SDN
Device issues new forwarding-table item to forwarding table.
7. according to the method described in claim 5, it is characterized in that, further including initialization step:
SDN controllers issue the matching domain that initialization command is pre-configured in the state table;
SDN controllers issue the current state field that initialization command is pre-configured in the state transition strategy table, field of events, under
The value of one status field and Policy Table's domain of instruction builds finite state machine corresponding with application protocol.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510140958.5A CN104836753B (en) | 2015-03-27 | 2015-03-27 | SDN data plane carrier states switching equipment, system and method for processing forwarding |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510140958.5A CN104836753B (en) | 2015-03-27 | 2015-03-27 | SDN data plane carrier states switching equipment, system and method for processing forwarding |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104836753A CN104836753A (en) | 2015-08-12 |
| CN104836753B true CN104836753B (en) | 2018-10-02 |
Family
ID=53814397
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510140958.5A Active CN104836753B (en) | 2015-03-27 | 2015-03-27 | SDN data plane carrier states switching equipment, system and method for processing forwarding |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104836753B (en) |
Families Citing this family (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105207908B (en) * | 2015-09-30 | 2018-09-18 | 浪潮(北京)电子信息产业有限公司 | A kind of message processing method and system |
| CN105515975B (en) * | 2015-11-24 | 2019-01-04 | 武汉烽火网络有限责任公司 | Software-oriented defines the realization method and system that network is forwarded based on application layer |
| CN105681223B (en) * | 2015-12-31 | 2019-05-14 | 清华大学 | A kind of data packet forwarding method and device of SDN |
| CN105610632B (en) | 2016-02-14 | 2019-12-24 | 华为技术有限公司 | Virtual network equipment and related method |
| CN105812179B (en) * | 2016-03-09 | 2019-02-15 | 中国科学院信息工程研究所 | A kind of unrelated forwarding network event processing method of agreement |
| CN106559323A (en) * | 2016-10-28 | 2017-04-05 | 上海斐讯数据通信技术有限公司 | A kind of method and apparatus sent on SDN equipment first packet |
| US20180124183A1 (en) * | 2016-11-03 | 2018-05-03 | Futurewei Technologies, Inc. | Method and Apparatus for Stateful Control of Forwarding Elements |
| CN110290092B (en) * | 2018-03-19 | 2021-05-28 | 中国科学院沈阳自动化研究所 | SDN network configuration management method based on programmable switch |
| CN108924200B (en) * | 2018-06-21 | 2021-11-23 | 国家电网有限公司 | Message processing method and device |
| US11062253B1 (en) | 2020-10-14 | 2021-07-13 | Coupang Corp. | Centralized status monitoring in a multidomain network |
| CN112367278B (en) * | 2020-11-03 | 2021-07-20 | 清华大学 | Cloud gateway system based on programmable data switch and message processing method thereof |
| CN113282296B (en) * | 2021-05-31 | 2022-12-13 | 河南信大网御科技有限公司 | Data forwarding method and device based on data plane programming |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103428771A (en) * | 2013-09-05 | 2013-12-04 | 迈普通信技术股份有限公司 | Communication method, software defined network SDN switch and communication system |
| CN103595647A (en) * | 2013-11-27 | 2014-02-19 | 北京邮电大学 | OpenFlow-based downlink signaling processing method for SDN (Software Defined Network) virtualization platform |
| CN104104561A (en) * | 2014-08-11 | 2014-10-15 | 武汉大学 | SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol |
| CN104426789A (en) * | 2013-08-23 | 2015-03-18 | 杭州华三通信技术有限公司 | Forwarding equipment control method in software defined network and equipment |
-
2015
- 2015-03-27 CN CN201510140958.5A patent/CN104836753B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104426789A (en) * | 2013-08-23 | 2015-03-18 | 杭州华三通信技术有限公司 | Forwarding equipment control method in software defined network and equipment |
| CN103428771A (en) * | 2013-09-05 | 2013-12-04 | 迈普通信技术股份有限公司 | Communication method, software defined network SDN switch and communication system |
| CN103595647A (en) * | 2013-11-27 | 2014-02-19 | 北京邮电大学 | OpenFlow-based downlink signaling processing method for SDN (Software Defined Network) virtualization platform |
| CN104104561A (en) * | 2014-08-11 | 2014-10-15 | 武汉大学 | SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol |
Non-Patent Citations (1)
| Title |
|---|
| "SFA:Stateful Forwarding Abstraction in SDN Data Plane;Shuyong Zhu;《Conference:USENIX/Open Networking Summit Reseach Track(ONS14)》;20140331;第2节及图1-5 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104836753A (en) | 2015-08-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104836753B (en) | SDN data plane carrier states switching equipment, system and method for processing forwarding | |
| CN104836749B (en) | A kind of SDN data planes carrier state forwarding processor | |
| CN1875585B (en) | Dynamic unknown L2 flooding control with MAC limits | |
| EP2680513B1 (en) | Methods and apparatus for providing services in a distributed switch | |
| DE102005032479B4 (en) | Remote control of a switching node in a stack of switching nodes | |
| CN103155497B (en) | Communication system, control device, node, processing rule setting method and program | |
| CN103477593B (en) | Network system, switch and connection endpoint detection methods | |
| CN103370911B (en) | Streaming communication system | |
| US20130155902A1 (en) | System and method for non-disruptive management of servers in a network environment | |
| CN107211036B (en) | Networking method for data center network and data center network | |
| EP3844911B1 (en) | Systems and methods for generating network flow information | |
| DE112012002080T5 (en) | Switching network architecture according to the Distributed Fabric Protocol (DFP) | |
| US9008080B1 (en) | Systems and methods for controlling switches to monitor network traffic | |
| CN103069756A (en) | Communication system, controller, node controlling method and program | |
| DE112012001320T5 (en) | Priority Flow Control in a Distributed Fabric Protocol (DFP) Switching Network Architecture | |
| CN105978762B (en) | Redundant Ethernet data transmission set, system and method | |
| CN110034983A (en) | Home equipment interlock method and system based on Publish-subscribe message processing facility | |
| CN104782087B (en) | Switching equipment, controller, switching equipment configuration, message processing method and system | |
| US11847108B2 (en) | System and method for capturing data to provide to a data analyser | |
| US9838305B2 (en) | Method, system and apparatus for an OpenFlow hybrid architecture network device | |
| CN111049747A (en) | Intelligent virtual network path planning method for large-scale container cluster | |
| EP3560148B1 (en) | Database functions-defined network switch | |
| CN106230753B (en) | Port expander PE downlink port control method and device | |
| CN107659505A (en) | The route selecting method and SDN controllers of a kind of SDN | |
| JP2002009866A (en) | Method for distributing frame and information processor having its function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |