CN106341299B - Message forwarding method and device in a kind of VXLAN - Google Patents
Message forwarding method and device in a kind of VXLAN Download PDFInfo
- Publication number
- CN106341299B CN106341299B CN201610719881.1A CN201610719881A CN106341299B CN 106341299 B CN106341299 B CN 106341299B CN 201610719881 A CN201610719881 A CN 201610719881A CN 106341299 B CN106341299 B CN 106341299B
- Authority
- CN
- China
- Prior art keywords
- message
- vtep
- certificate server
- sent
- cashing indication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The embodiment of the invention provides the message forwarding methods and device in a kind of virtual expansible local area network VXLAN, which comprises detects to the first message from the first VXLAN tunneling termination node VTEP received;Cashing indication is not carried in the first message if detecting, and there is the second message to match with the first VTEP in the local cache of certificate server, then the second message and the first message are sent to the 2nd VTEP;If detecting in the first message and carrying cashing indication, the first message is cached.Safety, reliability and the user experience of message forwarding can be effectively promoted through the invention.
Description
Technical field
The present invention relates to fields of communication technology, more particularly to the message forwarding method and device in a kind of VXLAN.
Background technique
VXLAN (Virtual eXtensible LAN, virtual expansible local area network) be one by two layer message with three layers
The technology that agreement is packaged can be extended double layer network within the scope of three-layer network.
VTEP (VXLAN Tunnel End Point, VXLAN tunneling termination node) is the edge device in VXLAN,
Related service in VXLAN carries out on VTEP, such as: VXLAN belonging to identification ethernet data frame, it is based on VXLAN pairs
Data frame carries out the business such as two layers of forwarding and encapsulation/decapsulation message.Wherein, VTEP can be an independent physics and set
It is standby, be also possible to be fictionalized by virtual server Lai equipment.
Currently, the VMware certification networking application based on VXLAN technology is usually to carry out system by the way of redundancy to take
It builds, source VTEP can be forwarded the packet by coupled certificate server to purpose VTEP, thus the report between realizing VTEP
Text interaction.
Summary of the invention
The embodiment of the present invention the technical problem to be solved is that the message forwarding method and device that provide in a kind of VXLAN,
To promote safety, reliability and the user experience of message forwarding.
To solve the above-mentioned problems, the embodiment of the invention discloses the message forwarding method in a kind of VXLAN, applied to recognizing
Demonstrate,prove server, comprising:
The first message from the first VXLAN tunneling termination node VTEP received is detected;
Cashing indication is not carried in the first message if detecting, and is existed and first in the local cache of certificate server
The second message that VTEP matches, then be sent to the 2nd VTEP for the second message and the first message;
If detecting in the first message and carrying cashing indication, the first message is cached.
The message forwarding method in a kind of VXLAN is also disclosed in another embodiment of the invention, is applied to VTEP, packet
It includes:
Message is sent to two or more certificate servers;
Wherein, it is added into the message at least one server being sent in two or more certificate servers slow
Deposit mark, cashing indication, which is used to indicate, to be received the certificate server of the message for carrying cashing indication and detecting cashing indication
When, cache message.
Correspondingly, the device is applied to certification the embodiment of the invention also discloses the apparatus for forwarding message in a kind of VXLAN
Server, comprising:
Detection module, for being examined to the first message from the first VXLAN tunneling termination node VTEP received
It surveys;
First sending module, if not carrying cashing indication in the first message for detecting, and the local of certificate server
There is the second message to match with the first VTEP in caching, then the second message and the first message is sent to the 2nd VTEP;
Cache module caches the first message if carrying cashing indication for detecting in the first message.
The apparatus for forwarding message in a kind of VXLAN, the device application are also disclosed in another embodiment of the present invention
In VTEP, comprising:
Second sending module, for sending message to two or more certificate servers;
Adding module, for the message at least one server being sent in two or more certificate servers
Middle addition cashing indication, cashing indication, which is used to indicate, to be received the certificate server of the message for carrying cashing indication and is detecting
When cashing indication, message is cached.
In conclusion the technical solution in the embodiment of the present invention, by coming from the first VXLAN tunneling termination to what is received
The first message of node VTEP is detected;If detecting and not carrying cashing indication in the first message, and the sheet of certificate server
There is the second message to match with the first VTEP in ground caching, then the second message and the first message is sent to the 2nd VTEP;
If detecting in the first message and carrying cashing indication, the first message is cached.So as to guarantee to send out in master assurance server
It when raw failure, still ensures that business is not interrupted, while avoiding the risk of packet loss, effectively improves the reliability of message forwarding
And safety.
Detailed description of the invention
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below by institute in the description to the embodiment of the present invention
Attached drawing to be used is needed to be briefly described, it should be apparent that, the accompanying drawings in the following description is only some implementations of the invention
Example, for those of ordinary skill in the art, without any creative labor, can also be according to these attached drawings
Obtain other attached drawings.
Fig. 1 is the network connection schematic diagram in the certification networking application based on VXLAN technology;
Fig. 2 is one of the step flow chart of message forwarding method embodiment in a kind of VXLAN of the invention;
Fig. 3 is the two of the step flow chart of the message forwarding method embodiment in a kind of VXLAN of the invention;
Fig. 4 is the network architecture diagram in the embodiment of the present invention;
Fig. 5 is one of the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the invention;
Fig. 6 is the two of the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the invention;
Fig. 7 is the three of the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the invention;
Fig. 8 is the four of the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the invention.
Specific embodiment
In order to make the foregoing objectives, features and advantages of the present invention clearer and more comprehensible, with reference to the accompanying drawing and specific real
Applying mode, the present invention is described in further detail.
It will be appreciated that though various information, but this may be described using term first, second, third, etc. in the application
A little information should not necessarily be limited by these terms.These terms are only used to for same type of information being distinguished from each other out.For example, not departing from
In the case where the application range, the first information can also be referred to as the second information, and similarly, the second information can also be referred to as
One information.Depending on context, in addition, used word " if " can be construed to " ... when " or " when ... "
Or " in response to determination "
Referring to Fig.1, the network connection schematic diagram in the certification networking application based on VXLAN technology is shown.In Fig. 1:
Source terminal (being illustrated as VTEP1) and VM1 (Virtual Machine, virtual machine) are connected.Also, VTEP1 and certification
Server 1-3 is respectively connected with.
Purpose terminal (being illustrated as VTEP2) is connected with VM2.Also, VTEP2 is equally respectively connected with certificate server 1-3.
In one embodiment, VTEP can establish interface channel with each VMware server being connected, as shown in figure 1
Shown in tunnel tunnel1, tunnel2, tunnel3.Wherein, VTEP1 is when receiving the message that VM1 is sent, VTEP1 according to
The rule that itself is formulated, selects the main tunnel for forwarding the message from the tunnel being connected, such as: based on tunnel1
Tunnel, tunnel2 and tunnel3 are over run tunnel.Message is sent to VMware service by main tunnel tunnel1 by VTEP1
Device 1, VMware server 1 are forwarded the packet again to VTEP2.When communication failure occurs between VTEP1 and VMware server 1
When, VTEP1 selects the tunnel for taking over main tunnel tunnel1, such as tunnel2 from over run tunnel.VTEP1 is by service switching
To over run tunnel tunnel2, message is sent to by spare VMware server 2 by tunnel2, then by VMware server 2
It forwards the packet to VTEP2.
Therefore, in this embodiment if the communication link between master assurance server and VTEP1 breaks down, master authentication
Ongoing business will be switched to standby certificate server on server, and business can interrupt in handoff procedure, and
And there are the risks of packet loss.
For the technical problem, one of the core concepts in the embodiments of the present invention is to provide the messages in a kind of VXLAN to turn
Forwarding method and device, existing packet loss and service disconnection when overcoming the problems, such as service switching effectively promote message forwarding
Safety and reliability.
Referring to Fig. 2, the step flow chart of the message forwarding method embodiment in a kind of VXLAN of the invention is shown, it should
Method is applied to certificate server, can specifically include following steps:
Step 201, the first message from the first VXLAN tunneling termination node VTEP received is detected.
Specifically, certificate server detects the first message from the first VTEP received.Wherein, this first
Message is sent to the first VTEP by VM (Virtual Machine, virtual machine).
Step 202, cashing indication is not carried in the first message if detecting, and existed in the local cache of certificate server
Second message and the first message are then sent to the 2nd VTEP by the second message to match with the first VTEP.
Specifically, being searched in local cache if certificate server, which detects in the first message, does not carry cashing indication
With the presence or absence of the second message to match with the first VTEP.In a preferred embodiment of the invention, certificate server can
By searching for whether there is identification information corresponding with the first VTEP in local cache, (identification information can be believed for the address of VTEP
Breath etc. is for uniquely determining the information of VTEP), to find out the match with the first VTEP second report by the identification information
Text.Also, if there is the second message to match with the first VTEP, then the spare clothes that itself is other certificate servers are confirmed
Business device, also, at this point, the communication link between master assurance server and the first VTEP has broken down.So the present invention is implemented
The second message in the first message received and caching is sent to the 2nd VTEP by the certificate server in example.It can be seen that
According to the technical solution of the present invention, the communication link between master assurance server and the first VTEP break down go forward side by side industry business
When switching, message master assurance server is sent to if there is the first VTEP, but master assurance server is not also by message
It is forwarded to the scene of the 2nd VTEP, due to being cached with the message in the caching of spare certificate server, when spare certification takes
When the message being currently received is sent to two VTEP by business device together with the message in caching, must effectively packet loss can be avoided to lead
The phenomenon that service disconnection of cause, occurs.
In a preferred embodiment of the invention, if certificate server, which detects, does not carry caching in the first message
Mark, and do not find the second message to match with the first VTEP in being locally stored, then yet certificate server confirms certainly
The 2nd VTEP is forwarded to as primary server, and by the first message.
Step 203, cashing indication is carried if detecting in the first message, caches the first message.
Specifically, if certificate server, which detects, carries cashing indication in the first message, directly by first message
It is cached in local cache.Wherein, cache the first message when, also record the corresponding relationship of the first message and the first VTEP.
In conclusion the technical solution in the embodiment of the present invention, by coming from the first VXLAN tunneling termination to what is received
The first message of node VTEP is detected;If detecting and not carrying cashing indication in the first message, and the sheet of certificate server
There is the second message to match with the first VTEP in ground caching, then the second message and the first message is sent to the 2nd VTEP;
If detecting in the first message and carrying cashing indication, the first message is cached.So as to guarantee to send out in master assurance server
When raw failure, caused by preventing because of the switching between active and standby certificate server the problem of service disconnection, while packet loss is avoided
Risk effectively improves the reliability and safety of message forwarding.
Optionally, in a preferred embodiment of the invention, if step 203 can also include: to detect the first report
Cashing indication is not carried in text, then retrieves the matching relationship between the message and VTEP being locally stored;If retrieving and first
Matched second message of VTEP, then be sent to the 2nd VTEP for the second message and the first message.
In a preferred embodiment of the invention, if the step of retrieving the second message matched with the first VTEP,
It specifically includes: retrieving the index information being locally stored, wherein record has cache pool and VTEP in local cache in index information
Identification information between corresponding relationship, also, message is stored in cache pool.In a preferred embodiment of the invention
In, if certificate server retrieves in index information there are the identification information of the first VTEP, it can determine that this record has first
The index information of the identification information of VTEP is target index information, and then, certificate server can be according to the target index information, really
Fixed target cache pond corresponding with the first VTEP, and the message cached in target cache pond (i.e. the second message) and first are reported
It is sent to the 2nd VTEP.
The message forwarding method in a kind of VXLAN is additionally provided in another embodiment of the present invention, referring to Fig. 3, is shown
The step flow chart for having gone out the message forwarding method embodiment in the VXLAN, can specifically include following steps:
Step 301, message is sent to two or more certificate servers.
Wherein, add into the message at least one certificate server being sent in two or more certificate servers
Add cashing indication, cashing indication, which is used to indicate, to be received the certificate server of the message for carrying cashing indication and detecting caching
When mark, message is cached.
Specifically, VTEP sends the report from VM to two or more certificate servers for being in communication with connection
Text.
Wherein, VTEP will select one from above-mentioned two or more than two certificate servers during sending message
A certificate server directly transmits the message as master assurance server, to the master assurance server, also, will take except master authentication
At least one certificate server other than business device is as standby server.
VTEP adds cashing indication in the message that at least one certificate server (standby server) is sent.Make to receive
The certificate server of cashing indication message is carried when detecting cashing indication, it will store the message.
It optionally, in a preferred embodiment of the invention, can also include: at two or two in above-mentioned steps
Selection meets at least one certificate server of pre-defined rule in the above certificate server.
Specifically, VTEP according to pre-defined rule, in above-mentioned two or more than two servers, is selected for receiving not
Carry the certificate server of the message of cashing indication and for receiving the certificate server for carrying the message of cashing indication.
In order to better understand the present invention, it is described in detail below with specific embodiment.
Referring to Fig. 4, the network architecture diagram in the embodiment of the present invention is shown.In Fig. 4: VTEP1 passes through tunnel
Tunnel1, tunnel2, tunnel3 are connected with certificate server 1, certificate server 2, certificate server 3 respectively.VTEP1 with
VM1 is connected, VTEP2 is connected with VM2.
In an embodiment of the present invention, before service begins, VTEP1 is according to preset rules, from the company of being in communication with
In the multiple certificate servers (certificate server 1-3) connect, master assurance server, and standby certificate server are selected.At this
In embodiment, using certificate server 1 as master assurance server, using certificate server 2 as standby certificate server.In other realities
It applies in example, also can choose certificate server 2 and 3 while the standby certificate server as certificate server 1.User can be according to reality
Border needs to carry out the selection of active and standby certificate server, and which is not limited by the present invention.
It should be understood that the VTEP in the embodiment of the present invention is the edge device in VXLAN, the related industry in VXLAN
Business carries out on VTEP, such as: two layers turns VXLAN belonging to identification ethernet data frame, are carried out to data frame based on VXLAN
The business such as hair and encapsulation/decapsulation message.Wherein, VTEP can be an independent physical equipment, be also possible to by virtual
The equipment that server virtual comes out.In the present embodiment, it is described in detail by physical equipment of VTEP.
With continued reference to Fig. 4, in the state that network environment is normal, VTEP1 receives the message from VM1, and message is answered
It is made as two parts.A copy of it is normally encapsulated, and the message after encapsulation is sent to certificate server 1.And another part needs
Cashing indication is added in message after packaging.
In a preferred embodiment of the invention, it can be to the mode of message addition cashing indication in encapsulation package
Head, so that certificate server be enable to identify cashing indication.
The specific method of dirty bit or reserved field can be with are as follows:
1) by specified bit position 0.In the present embodiment, specified R bit is the last one ratio of header
Special position is also possible to other bits in other embodiments.Also, in other embodiments, bit position 1 can also be made
For cashing indication.
2) at least one Reserved field is modified.Wherein, the Reserved field being located above has 4 bytes, position
In lower section Reserved field have 1 byte, user can self-setting Reserved field modification mode.The present invention couple
This is without limitation.
In an embodiment of the present invention, in the 1st kind of mode as an example, that is, in the message of VTEP1 after packaging, by VXLAN
The last one bit position 0 (that is, 0 is cashing indication) in Header.With continued reference to Fig. 4, certificate server 1 sends out VTEP1
The message come is decapsulated, and is detected to the message after decapsulation.When detecting last in VXLAN Header
When a bit is 1, then the message is forwarded to VTEP2.
Certificate server 2 equally decapsulates the message that VTEP1 is sent, and examines to the message after decapsulation
It surveys.When detecting the last one bit in VXLAN Header is 0, certificate server 2 is by the packet storage to local
Cache pool.In an embodiment of the present invention, each VTEP and cache pool correspond, such as: VTEP1 is corresponding with cache pool 1,
VTEP2 is corresponding with cache pool 2.When certificate server 2 receives the message for the carrying cashing indication that VTEP1 is sent, certification clothes
Being engaged in device 2 will be in the packet buffer to cache pool 1 corresponding with VTEP1.Meanwhile it being recorded in index list related to the cache pool
The index information of connection.The corresponding relationship between identification information and cache pool in index information including VTEP1.Wherein, mark letter
Breath includes but is not limited to: the IP address of VTEP.
In addition, in one embodiment, the size of cache pool can be configured by user.In another embodiment, delay
Depositing the message in pond is arranged in a manner of queue.In a preferred embodiment of the invention, certificate server 2 will
New packet buffer is received into cache pool, new message will be placed in the tail portion of buffer queue.When the size of cache pool is more than
When preset value, then the message positioned at buffer queue first place will be dropped.
With continued reference to Fig. 4, if the communication link between VTEP1 and certificate server 1 breaks down, that is, tunnel1 hair
Raw failure, then the message from VM1 being currently received is sent directly to certificate server 2 by VTEP1.Wherein, if
It is message is packaged and add cashing indication, then it needs to cancel cashing indication, then sent.In one embodiment, by
Master assurance server is had turned into standby certificate server (certificate server 2), then VTEP1 will be reselected standby according to pre-defined rule
Use certificate server.In an embodiment of the present invention, using certificate server 3 as the standby certificate server of certificate server 2.When
While message is sent to certificate server 2 by VTEP1, VTEP1 can also be sent to certificate server 3 by tunnel3 and be carried
The message of cashing indication.Subsequent step is similar with above content, and details are not described herein again.
After certificate server 2 receives the message that VTEP1 is sent, VLAN Header in the message is had found by detection
In the last one bit be 1, it is determined that bit changes.Certificate server 2 passes through the institute in search index list
There is index information, find out the index information of the identification information with VTEP1, and is found by the index information and VTEP1
Associated cache pool.Certificate server 2 extracts all messages in the cache pool, and the message extracted is received with new
To message be forwarded to VTEP2 together.To so effective that avoid packet loss present in active and standby certificate server handoff procedure
Risk.
In another preferred embodiment of the invention, if there are multiple certificate servers, citings for certificate server 1
Illustrate: if certificate server 2 and 3 is the standby certificate server of certificate server 1.Then VTEP1 will not carry caching mark
While the message of knowledge is sent to certificate server 1, also the message with cashing indication can be sent to certificate server 2 and 3.
If VTEP1 breaks down with certificate server 1, VTEP1 can be selected from certificate server 2 and 3 according to pre-defined rule
As taking over certificate server of the certificate server 1 as master assurance server.It is assumed that certificate server 2, which is used as, takes over certification
The master assurance server of server 1, then VTEP1 can send the message for not carrying cashing indication to certificate server 2.Meanwhile
VTEP1 can also one certificate server of reselection and the conduct together of certificate server 3 from other certificate servers being connected
The standby certificate server of certificate server 2, and to the standby certificate server and certificate server 3 newly selected while sending carrying
The message of cashing indication.Backuped by multiple standby certificate servers to master assurance server in the present embodiment, so as to
Master assurance server for certificate server while in the case where breaking down, still is able to the normal of guarantee business with one of them
Operating further improves the safety and reliability of message forwarding.
On the basis of the above embodiments, this implementation additionally provides the apparatus for forwarding message in a kind of VXLAN.
Referring to Fig. 5, the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the present invention, the device are shown
Applied to certificate server, following module can specifically include:
Detection module 51, for being carried out to the first message from the first VXLAN tunneling termination node VTEP received
Detection.
First sending module 52, if not carrying cashing indication in the first message for detecting, and the sheet of certificate server
There is the second message to match with the first VTEP in ground caching, then the second message and the first message is sent to the 2nd VTEP.
Cache module 53 caches the first message if carrying cashing indication for detecting in the first message.
Optionally, as shown in fig. 6, in a preferred embodiment of the invention, on the basis of Fig. 5, first is sent
Module 52 can also include:
It retrieves submodule 521 and retrieves the report being locally stored if not carrying cashing indication for detecting in the first message
Matching relationship between text and VTEP
Sending submodule 522, if for retrieve with matched second message of the first VTEP, by the second message and first
Message is sent to the 2nd VTEP.
Optionally, referring to Fig. 7, in a preferred embodiment of the invention, on the basis of Fig. 6, sending submodule
522 can also include:
Retrieval unit 522a, for retrieving the index information being locally stored, wherein record has local cache in index information
In cache pool and VTEP identification information between corresponding relationship, also, message is stored in cache pool.
Determination unit 522b, if for retrieving the target that there is record in index information and have the identification information of the first VTEP
Index information determines target cache pond corresponding with the first VTEP then according to target index information.
Transmission unit 522c, for the message cached in target cache pond and the first report to be sent to the 2nd VTEP.
On the basis of the above embodiments, this implementation additionally provides the apparatus for forwarding message in a kind of VXLAN.
Referring to Fig. 8, the structural block diagram of the apparatus for forwarding message embodiment in a kind of VXLAN of the present invention, the device are shown
Applied in VTEP, following module can specifically include:
Second sending module 81, for sending message to two or more certificate servers;
Adding module 82, for at least one certificate server being sent in two or more certificate servers
Message in add cashing indication, cashing indication, which is used to indicate, to be received the certificate server of the message for carrying cashing indication and exists
When detecting cashing indication, message is cached.
Optionally, adding module 82 can also include:
Submodule 821 is selected, meets pre-defined rule at least for selecting in two or more certificate servers
One certificate server.
For device embodiment, since it is basically similar to the method embodiment, related so being described relatively simple
Place illustrates referring to the part of embodiment of the method.
In conclusion the technical solution in the embodiment of the present invention, by introducing caching mechanism, thus in the first authentication service
When device is switched to the second certificate server, it ensure that business is not interrupted.Also, the second certificate server is as the first authentication service
The standby server of device, in message repeating process, the first VTEP to the first certification by taking the message of identical content respectively
Business device and the second certificate server are sent, to avoid the risk of packet loss during service switching, effectively improve
The reliability and safety of message forwarding.
All the embodiments in this specification are described in a progressive manner, the highlights of each of the examples are with
The difference of other embodiments, the same or similar parts between the embodiments can be referred to each other.
It should be understood by those skilled in the art that, the embodiment of the embodiment of the present invention can provide as method, apparatus or calculate
Machine program product.Therefore, the embodiment of the present invention can be used complete hardware embodiment, complete software embodiment or combine software and
The form of the embodiment of hardware aspect.Moreover, the embodiment of the present invention can be used one or more wherein include computer can
With in the computer-usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) of program code
The form of the computer program product of implementation.
The embodiment of the present invention be referring to according to the method for the embodiment of the present invention, terminal device (system) and computer program
The flowchart and/or the block diagram of product describes.It should be understood that flowchart and/or the block diagram can be realized by computer program instructions
In each flow and/or block and flowchart and/or the block diagram in process and/or box combination.It can provide these
Computer program instructions are set to general purpose computer, special purpose computer, Embedded Processor or other programmable data processing terminals
Standby processor is to generate a machine, so that being held by the processor of computer or other programmable data processing terminal devices
Capable instruction generates for realizing in one or more flows of the flowchart and/or one or more blocks of the block diagram
The device of specified function.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing terminal devices
In computer-readable memory operate in a specific manner, so that instruction stored in the computer readable memory generates packet
The manufacture of command device is included, which realizes in one side of one or more flows of the flowchart and/or block diagram
The function of being specified in frame or multiple boxes.
These computer program instructions can also be loaded into computer or other programmable data processing terminal devices, so that
Series of operation steps are executed on computer or other programmable terminal equipments to generate computer implemented processing, thus
The instruction executed on computer or other programmable terminal equipments is provided for realizing in one or more flows of the flowchart
And/or in one or more blocks of the block diagram specify function the step of.
Although the preferred embodiment of the embodiment of the present invention has been described, once a person skilled in the art knows bases
This creative concept, then additional changes and modifications can be made to these embodiments.So the following claims are intended to be interpreted as
Including preferred embodiment and fall into all change and modification of range of embodiment of the invention.
Finally, it is to be noted that, herein, relational terms such as first and second and the like be used merely to by
One entity or operation are distinguished with another entity or operation, without necessarily requiring or implying these entities or operation
Between there are any actual relationship or orders.Moreover, the terms "include", "comprise" or its any other variant meaning
Covering non-exclusive inclusion, so that process, method, article or terminal device including a series of elements not only wrap
Those elements are included, but also including other elements that are not explicitly listed, or further includes for this process, method, article
Or the element that terminal device is intrinsic.In the absence of more restrictions, being wanted by what sentence "including a ..." limited
Element, it is not excluded that there is also other identical elements in process, method, article or the terminal device for including the element.
Above to the message forwarding method and device in a kind of VXLAN provided by the present invention, it is described in detail, this
Apply that a specific example illustrates the principle and implementation of the invention in text, the explanation of above example is only intended to
It facilitates the understanding of the method and its core concept of the invention;At the same time, for those skilled in the art, think of according to the present invention
Think, there will be changes in the specific implementation manner and application range, in conclusion the content of the present specification should not be construed as pair
Limitation of the invention.
Claims (10)
1. the message forwarding method in a kind of virtual expansible local area network VXLAN, is applied to certificate server, which is characterized in that
Include:
The first message from the first VXLAN tunneling termination node VTEP received is detected;
Cashing indication is not carried in first message if detecting, and is existed and institute in the local cache of the certificate server
The second message that the first VTEP matches is stated, then second message and first message are sent to the 2nd VTEP;
If detecting in first message and carrying the cashing indication, first message is cached.
2. the method according to claim 1, wherein if described detect in first message does not carry caching
Mark, and there is the second message to match with the first VTEP in the local cache of the certificate server, then it will be described
The step of second message and first message are sent to two VTEP, specifically includes:
If detecting in first message and not carrying the cashing indication, retrieve between the message and VTEP being locally stored
Matching relationship;
If retrieve with matched second message of the first VTEP, second message and first message are sent to
2nd VTEP.
3. according to the method described in claim 2, it is characterized in that, if described retrieve and the first VTEP matched second
The step of message, specifically includes:
Retrieve the index information that is locally stored, wherein in the index information record have cache pool in the local cache with
Corresponding relationship between the identification information of VTEP, also, message is stored in the cache pool;
If retrieving and there is the target index information that record has the identification information of the first VTEP in the index information, root
According to the target index information, target cache pond corresponding with the first VTEP is determined;
The message cached in the target cache pond and first report are sent to the 2nd VTEP.
4. the message forwarding method in a kind of virtual expansible local area network VXLAN, is applied to VXLAN tunneling termination node VTEP,
It is characterised by comprising:
Message is sent to two or more certificate servers;
Wherein, it is added into the message at least one server being sent in described two or more than two certificate servers slow
Deposit mark, the cashing indication, which is used to indicate, to be received the certificate server of the message for carrying the cashing indication and detecting
When the cashing indication, the message is cached.
5. according to the method described in claim 4, it is characterized in that, described to being sent to described two or more than two certifications clothes
The step of being engaged in adding cashing indication in the message of at least one certificate server in device, specifically includes:
Selection meets at least one certificate server described in pre-defined rule in described two or more than two certificate servers.
6. the apparatus for forwarding message in a kind of virtual expansible local area network VXLAN, is applied to certificate server, which is characterized in that
Include:
Detection module, for being detected to the first message from the first VXLAN tunneling termination node VTEP received;
First sending module, if cashing indication is not carried in first message for detecting, and the certificate server
There is the second message to match with the first VTEP in local cache, then sends out second message and first message
It send to the 2nd VTEP;
Cache module caches first message if carrying the cashing indication for detecting in first message.
7. device according to claim 6, which is characterized in that first sending module specifically includes:
Submodule is retrieved, if the cashing indication is not carried in first message for detecting, what retrieval was locally stored
Matching relationship between message and VTEP;
Sending submodule, if for retrieve with matched second message of the first VTEP, by second message and institute
It states the first message and is sent to the 2nd VTEP.
8. device according to claim 6, which is characterized in that the sending submodule specifically includes:
Retrieval unit, for retrieving the index information being locally stored, wherein record has the local cache in the index information
In cache pool and VTEP identification information between corresponding relationship, also, be stored with message in the cache pool;
Determination unit, if for retrieving the target that there is record in the index information and have the identification information of the first VTEP
Index information determines target cache pond corresponding with the first VTEP then according to the target index information;
Transmission unit, for the message cached in the target cache pond and first report to be sent to described second
VTEP。
9. the apparatus for forwarding message in a kind of virtual expansible local area network VXLAN, is applied to VXLAN tunneling termination node VTEP,
It is characterised by comprising:
Second sending module, for sending message to two or more certificate servers;
Adding module, for at least one certificate server being sent in described two or more than two certificate servers
Cashing indication is added in message, the cashing indication is used to indicate the certification clothes for receiving the message for carrying the cashing indication
Device be engaged in when detecting the cashing indication, caches the message.
10. device according to claim 9, which is characterized in that the adding module specifically includes:
Submodule is selected, is met described in pre-defined rule at least for being selected in described two or more than two certificate servers
One certificate server.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610719881.1A CN106341299B (en) | 2016-08-23 | 2016-08-23 | Message forwarding method and device in a kind of VXLAN |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610719881.1A CN106341299B (en) | 2016-08-23 | 2016-08-23 | Message forwarding method and device in a kind of VXLAN |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106341299A CN106341299A (en) | 2017-01-18 |
CN106341299B true CN106341299B (en) | 2019-08-30 |
Family
ID=57825693
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610719881.1A Active CN106341299B (en) | 2016-08-23 | 2016-08-23 | Message forwarding method and device in a kind of VXLAN |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106341299B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106911548A (en) * | 2017-02-24 | 2017-06-30 | 新华三技术有限公司 | A kind of tunnel state changing method and device |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103391246A (en) * | 2013-08-02 | 2013-11-13 | 盛科网络(苏州)有限公司 | Message processing method and device |
US9769088B2 (en) * | 2014-07-31 | 2017-09-19 | Arista Networks, Inc. | Method and system for VTEP redundancy in a multichassis link aggregation domain |
CN104270298B (en) * | 2014-09-30 | 2018-10-09 | 新华三技术有限公司 | Message forwarding method and device in a kind of VXLAN networks |
CN104468394B (en) * | 2014-12-04 | 2018-02-09 | 新华三技术有限公司 | Message forwarding method and device in a kind of VXLAN networks |
-
2016
- 2016-08-23 CN CN201610719881.1A patent/CN106341299B/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN106341299A (en) | 2017-01-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10361956B2 (en) | Traffic flow forwarding path redirection method and apparatus, and traffic flow forwarding system | |
CN111092801B (en) | Data transmission method and device | |
US9698994B2 (en) | Loop detection and repair in a multicast tree | |
EP3437259B1 (en) | Interworking between physical network and virtual network | |
RU2493677C2 (en) | Method and router for implementing mirroring | |
CN106254256B (en) | Data message forwarding method and equipment based on three layers of VXLAN gateway | |
WO2018019131A1 (en) | Method and device for forwarding message | |
US9225592B2 (en) | System and method for protection against edge node failure | |
WO2017092400A1 (en) | Failure recovery method and device, controller, and software defined network | |
WO2017100365A1 (en) | Directing data traffic between intra-server virtual machines | |
CN106936939A (en) | A kind of message processing method, relevant apparatus and NVO3 network systems | |
US20170085479A1 (en) | Network control method, network system, apparatus, and program | |
US9660902B2 (en) | Apparatus, method and computer-readable medium of providing acceptable transmission unit | |
CN109474495B (en) | Tunnel detection method and device | |
US10044770B2 (en) | Method and apparatus for managing a plurality of sessions in a multi-path routing based network | |
US20170338976A1 (en) | Method for Obtaining Port Path and Apparatus | |
CN106559280A (en) | Bidirectional forwarding detection (BFD) method and device | |
CN109218200A (en) | A kind of message processing method and device | |
CN109167700B (en) | Detection method and device for Segment Routing (SR) tunnel | |
CN105379201A (en) | Path switching method and device | |
CN109189549A (en) | Virtual machine migration method and device | |
WO2018107974A1 (en) | Routing switching-back method, and controller and system | |
US8432790B2 (en) | Hierarchical protection switching framework | |
CN106341299B (en) | Message forwarding method and device in a kind of VXLAN | |
CN109218176B (en) | Message processing method and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou science and Technology Development Zone, Zhejiang high tech park, No. six and road, No. 310 Applicant before: Huasan Communication Technology Co., Ltd. |
|
CB02 | Change of applicant information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |