CN107453930B - Method for realizing multi-service customization on router - Google Patents
Method for realizing multi-service customization on router Download PDFInfo
- Publication number
- CN107453930B CN107453930B CN201710868649.9A CN201710868649A CN107453930B CN 107453930 B CN107453930 B CN 107453930B CN 201710868649 A CN201710868649 A CN 201710868649A CN 107453930 B CN107453930 B CN 107453930B
- Authority
- CN
- China
- Prior art keywords
- single board
- osu
- router
- board
- control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/30—Routing of multiclass traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/56—Routing software
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/60—Router architectures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
Abstract
A method for realizing multi-service customization on a router is a method for customizing different services on the router according to user requirements and realizing DIY services of the router. The method comprises the following steps: 1) hardware configuration; 2) managing a server single board; 3) and forwarding the message. The invention provides a hardware platform capable of loading third-party software, wherein the flow can be sent to the hardware platform from a router, and then returned to the router or directly forwarded to a destination end after being processed by the software on the hardware platform.
Description
Technical Field
The invention relates to the technical field of communication, in particular to a method for realizing multi-service customization on a router.
Background
At present, the application scenarios of the router are quite wide. Can be used as an exit gateway of an enterprise headquarter and different branches; or as an exit gateway of mechanisms such as campus networks and parks; in the vertical network of the industries such as petroleum, electric power, finance and the like, the method also becomes an important component element of the information network and the service network; carrying access and convergence of various services in a unified metropolitan area network; in the operator as a reselling device, a DCN network component, a CDN data egress, etc.
In such a wide application scenario, the service requirements on the router are more and more, and the traditional service on the router is more and more detailed, which cannot meet the requirements of various industries. If different services are added and perfected on the router according to the requirements of different scenes, the requirements on hardware resources of the router are greatly improved, the cost is increased, meanwhile, the method is also a challenge for a service developer, and a plurality of characteristic requirements need to be customized.
If the carrier exists, third-party software can be operated, so that the requirements of different application scenes are met, and the modification of hardware and software can be avoided. The platform is put into a product with a requirement to meet the service requirement, and the traditional router architecture is still used in the common application. The service customization based on the server unit (OSU) single board can well meet the requirements. Different third-party application software can be installed on the server single board according to different requirements, different service requirements are met, and various functions of the router service can be customized as desired.
Disclosure of Invention
The method for realizing multi-service customization on the router, which is provided by the invention, can customize different services on the router according to the user requirements and realize the DIY service of the router.
In order to achieve the purpose, the invention adopts the following technical scheme:
a method for realizing multi-service customization on a router comprises the following steps:
1) hardware configuration;
11) designing a hardware platform OSU single board capable of installing third-party application software;
12) the OSU single board is used as a component of the router, is compatible with the router single board in the arrangement of the connection part of the back board, is powered by the back board and provides a single board in-place signal;
13) the OSU single board panel provides USB, UART and VGA interfaces;
14) a network device which can be connected with a router forwarding surface channel is arranged in the OSU single board, and an internal network card of the OSU single board is connected with the back board through an SGMII bus to realize forwarding data communication between the OSU single board and the router main control single board;
2) managing a server single board;
the method comprises an OSU single board operation system and a completely independent router device operation system, wherein an internal communication mechanism does not exist between the OSU single board and a router control single board, and the physical position of the OSU single board is determined by adopting a command configuration mode, and the specific implementation steps are as follows:
21) the router control single board is configured with a certain slot position through a command and only can be loaded with an OSU single board;
22) the router control single board determines whether the server single board normally operates or not on a slot position configured with the OSU single board through the single board in-place signal and whether control surface communication exists between the router control single board and the server single board;
23) the control single board manages the OSU single board in place;
24) the management of the OSU single board is realized by newly creating a peripheral board management process (EXBRDMGR) on the control single board;
3) forwarding the message;
the flow on the router is delivered to the OSU single board through the internal network equipment connected with the router control single board and the OSU single board, the OSU single board processes the message transmitted by the router according to the configuration, then the message is sent back to the router through the internal network equipment, and the output interface of the router sends the message to the destination end.
Further, in the step (11), the OSU board selects an X86CPU that is mainly used on a PC, and may be installed with a windows or LINUX operating system.
Further, the step 1) further includes a step of designing a flow outlet on the OSU single board panel, and the processed forwarding message may be selectively output from the OSU single board panel port.
Further, step 23) further includes that the OSU board supports hot plug, and notifies the control board through an interrupt signal of the plug board, so as to implement in-place management of the OSU board by the control board.
Therefore, the invention provides a hardware platform capable of loading third-party software, and the traffic can be sent from the router to the hardware platform, then processed by the software on the hardware platform and then returned to the router or directly forwarded to the destination.
With the platform, a client can install various application programs on the platform to meet the functions required by the client, such as ISAM, Portal, SSL VPN, DPI, IPBX, data encryption, proxy firewall and the like, so that not only are the basic functions of the router expanded, but also the services can be synchronized and updated in real time, personalized requirements such as authentication, charging management and the like are carried out on the user, the multifunctional integration of products is realized, and the router can meet the application in more scenes.
Drawings
FIG. 1 is a connection diagram of forwarding traffic between an OSU board and a router according to the present invention;
fig. 2 is a flowchart illustrating a management process of an OSU board by a router control board according to the present invention;
FIG. 3 is a flow forwarding diagram of the OSU board as a plug-in device for processing messages according to the present invention;
fig. 4 is a forwarding diagram of a message when the OSU board of the present invention is used as a transparent transmission device.
Detailed Description
The invention is further described below with reference to the accompanying drawings:
fig. 1 is a diagram illustrating a forwarding traffic connection between an OSU board and a router according to the present invention;
(1) and designing a hardware platform-OSU single board which can be used for conveniently installing third-party application software. The OSU single board selects an X86CPU which is mainly used on a PC, and can be provided with a windows or LINUX operating system.
(2) The OSU single board is used as a component of the router, the part connected with the back board adopts a design compatible with the router single board, and the back board supplies power and provides single board in-place signals and the like.
(3) The OSU single board panel provides USB, UART and VGA interfaces, can be connected with a mouse, a keyboard, a serial port and display equipment, and performs configuration, setting and other operations on an operating system on the OSU single board.
(4) The OSU board has a network device inside which can be connected with the router forwarding plane channel, and the network card inside the OSU board is connected with the back board through SGMII bus to realize the forwarding data communication with the router main control board, as shown in fig. 1.
(5) A flow outlet is designed on the OSU single board panel, and the processed forwarding message can be selectively output from the OSU single board panel port.
Fig. 2 is a flowchart illustrating a management of an OSU board by a specific router control board according to the present invention;
the OSU single board runs an operating system completely independent of the router equipment, an internal communication mechanism does not exist between the OSU single board and the router control single board, the physical position of the OSU single board is determined by adopting a command configuration mode, and the specific implementation scheme is as follows:
(1) the router control single board is configured with a certain slot position through a command and only can be loaded with an OSU single board.
(2) The router control single board determines whether the server single board normally operates or not on the slot position configured with the OSU single board through the single board in-place signal and whether control surface communication exists between the router control single board and the server single board. Because the OSU board needs to occupy two normal interface card slot positions, two upper and lower slot positions are needed together when judging, as shown in fig. 2.
(3) The OSU single board supports hot plug, and informs the control single board through an interrupt signal of the plug board, so that the control single board can manage the OSU single board in place.
(4) The management of the OSU single board is realized by newly creating a peripheral board management process (EXBRDMGR) on the control single board to manage
The message forwarding scheme comprises the following steps:
the flow on the router is delivered to the OSU single board through the internal network equipment connected with the router control single board and the OSU single board, the OSU single board processes the message transmitted by the router according to the configuration, the message can be sent back to the router through the internal network equipment connected with the router, and the message is sent to the destination end through the output interface of the router.
Example 1:
the system of the invention is composed as shown in fig. 3, the message on the router is sent to the OSU single board through the forwarding surface channel, the OSU single board returns the message to the router device after being processed by the firewall software, and then the message is sent to the destination end through the output interface of the router device, belonging to the network connection in the redirection mode.
Networking configuration of a redirection mode, comprising the steps of:
step 1: the slot position 3 on the router frame is configured into an OSU single board enabling mode, and only the OSU single board can be loaded;
step 2: on the router equipment, an internal interface connected between an OSU single board and a forwarding plane is configured with two sub-interfaces gei-3/1.1 and gei-3/1.2, which are respectively added with a vlan100 and a vlan200, one is used as an inlet of traffic and the other is used as an outlet of the traffic and is respectively designated as an outside area and an inside area;
and step 3: two interfaces on the designated router equipment are respectively connected with interfaces gei-4/3 added in the inside area, gei-4/1 added in the outside area, and two sub-interfaces on the OSU single board form different expansion areas: gei-3/1.1 and gei-4/1 constitute outside extension regions, gei-3/1.2 and gei-4/3 constitute inside extension regions;
and 4, step 4: on the OSU single board, configuring vlan100 and vlan200 for the OSU network equipment eth2 connected with gei-3/1, and bridging vlan100 and vlan200
And 5: and configuring a firewall strategy on the OSU single board to filter the message.
After the method of the embodiment is used, the OSU board is used as a plug-in device, the traffic is redirected to the OSU board, the message is filtered according to different configuration strategies and then returned to the router device, and the router device delivers the traffic to the designated output interface.
Example 2:
the system of the invention is composed, as shown in fig. 4, the message on the router is sent to the OSU single board through the forwarding surface channel, the OSU single board sends the message to the destination end through the output interface of the router device after being processed by the firewall software, which belongs to the networking of the penetration mode.
Networking configuration in a pass-through mode, comprising the steps of:
step 1: configuring the routes from interfaces gei-4/1 to gei-3/1 on the router equipment, so that the traffic can be uploaded to the OSU single board;
step 2: configuring an internal interface eth2 of the OSU single board to an ip address of an eth0 of a panel and a panel port on the OSU single board, and configuring routing entries from eth2 to eth 0;
and step 3: and configuring routing entries from the OSU single board eth2 to the router interfaces gei-4/1 on the OSU single board.
And 4, step 4: and configuring the route of an OSU single-board output interface eth0, and configuring a correct output address for the message.
And 5: and configuring a firewall strategy on the OSU single board to filter the message.
After the method of this embodiment is used, the OSU board serves as a transparent transmission device, and after the traffic is transmitted to the OSU board, the message is filtered according to different configuration strategies, and then the traffic is forwarded through the panel port of the OSU board.
The above-mentioned embodiments are merely illustrative of the preferred embodiments of the present invention, and do not limit the scope of the present invention, and various modifications and improvements of the technical solutions of the present invention by those skilled in the art should fall within the protection scope of the present invention without departing from the design spirit of the present invention.
Claims (4)
1. A method for realizing multi-service customization on a router is characterized in that: the method comprises the following steps:
1) hardware configuration;
11) designing a hardware platform OSU single board capable of installing third-party application software;
12) the OSU single board is used as a component of the router, is compatible with the router single board in the arrangement of the connection part of the back board, is powered by the back board and provides a single board in-place signal;
13) the OSU single board panel provides USB, UART and VGA interfaces;
14) a network device which can be connected with a router forwarding surface channel is arranged in the OSU single board, and an internal network card of the OSU single board is connected with the back board through an SGMII bus to realize forwarding data communication between the OSU single board and the router main control single board;
2) managing a server single board;
the method comprises an OSU single board operation system and a completely independent router device operation system, wherein an internal communication mechanism does not exist between the OSU single board and a router control single board, and the physical position of the OSU single board is determined by adopting a command configuration mode, and the specific implementation steps are as follows:
21) the router control single board is configured with a certain slot position through a command and only can be loaded with an OSU single board;
22) the router control single board determines whether the server single board normally operates or not on a slot position configured with the OSU single board through the single board in-place signal and whether control surface communication exists between the router control single board and the server single board;
23) the control single board manages the OSU single board in place;
24) the management of the OSU single board is realized by newly establishing a peripheral board management process, namely EXBRDMGR, on the control single board;
3) forwarding the message;
the flow on the router is delivered to the OSU single board through the internal network equipment connected with the router control single board and the OSU single board, the OSU single board processes the message transmitted by the router according to the configuration, then the message is sent back to the router through the internal network equipment, and the output interface of the router sends the message to the destination end.
2. The method of claim 1, wherein the method comprises: in the step (11), the OSU board selects an X86CPU that is mainly used on a PC, and may be installed with a windows or LINUX operating system.
3. The method of claim 2, wherein the method comprises: the step 1) further comprises the step of designing a flow outlet on the OSU single board panel, wherein the processed forwarding message can be selectively output from the OSU single board panel port.
4. A method according to claim 3, wherein the method comprises: the step 23) further includes that the OSU board supports hot plug, and notifies the control board through an interrupt signal of the plug board, so as to realize in-place management of the control board on the OSU board.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710868649.9A CN107453930B (en) | 2017-09-22 | 2017-09-22 | Method for realizing multi-service customization on router |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710868649.9A CN107453930B (en) | 2017-09-22 | 2017-09-22 | Method for realizing multi-service customization on router |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107453930A CN107453930A (en) | 2017-12-08 |
| CN107453930B true CN107453930B (en) | 2020-05-26 |
Family
ID=60497254
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710868649.9A Active CN107453930B (en) | 2017-09-22 | 2017-09-22 | Method for realizing multi-service customization on router |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107453930B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108415866B (en) * | 2018-02-27 | 2020-01-17 | 深圳市风云实业有限公司 | Intelligent platform management controller |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1809035A (en) * | 2006-02-10 | 2006-07-26 | 江苏华丽网络工程有限公司 | Novel firewall device integrating routing and switching function |
| CN2891496Y (en) * | 2006-02-24 | 2007-04-18 | 长沙湘计海盾科技有限公司 | Signal-board integrated router |
| CN101196823A (en) * | 2007-12-24 | 2008-06-11 | 杭州华三通信技术有限公司 | Method, system and equipment for on-line software upgrade in open application structure |
| CN101442442A (en) * | 2008-12-17 | 2009-05-27 | 华为技术有限公司 | Management apparatus, control apparatus, management control apparatus and router system |
| CN105591950A (en) * | 2015-09-22 | 2016-05-18 | 杭州华三通信技术有限公司 | Network device and assembly thereof |
-
2017
- 2017-09-22 CN CN201710868649.9A patent/CN107453930B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1809035A (en) * | 2006-02-10 | 2006-07-26 | 江苏华丽网络工程有限公司 | Novel firewall device integrating routing and switching function |
| CN2891496Y (en) * | 2006-02-24 | 2007-04-18 | 长沙湘计海盾科技有限公司 | Signal-board integrated router |
| CN101196823A (en) * | 2007-12-24 | 2008-06-11 | 杭州华三通信技术有限公司 | Method, system and equipment for on-line software upgrade in open application structure |
| CN101442442A (en) * | 2008-12-17 | 2009-05-27 | 华为技术有限公司 | Management apparatus, control apparatus, management control apparatus and router system |
| CN105591950A (en) * | 2015-09-22 | 2016-05-18 | 杭州华三通信技术有限公司 | Network device and assembly thereof |
Non-Patent Citations (2)
| Title |
|---|
| 以太网路由器链路聚合的设计与实现;刘佃村;《中国优秀硕士学位论文全文数据库 信息科技辑》;20160615;I139-15 * |
| 基于Linux的路由器操作系统及E1接口软件设计与实现;盛勤;《中国优秀硕士学位论文全文数据库 信息科技辑》;20160315;I138-5271 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107453930A (en) | 2017-12-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3522485B1 (en) | Application-aware firewall policy enforcement by data center controller | |
| CN107786613B (en) | Broadband remote access server BRAS forwarding implementation method and device | |
| US7099912B2 (en) | Integrated service management system | |
| US20070168499A1 (en) | Configurable Modular Networking System and Method Thereof | |
| US7962601B2 (en) | Intergrated service management system | |
| EP2806601B1 (en) | Tunnels between virtual machines | |
| US20140280809A1 (en) | Remote management system for configuring and/or controlling a computer network switch | |
| CN109391533B (en) | Virtual private network service provisioning system supporting diverse end-to-end isolation | |
| CN107733795B (en) | Ethernet virtual private network EVPN and public network intercommunication method and device | |
| JP5679343B2 (en) | Cloud system, gateway device, communication control method, and communication control program | |
| CN110417603B (en) | Method and system for realizing multi-WAN connection service processing based on PON uplink home gateway | |
| US11805011B2 (en) | Bulk discovery of devices behind a network address translation device | |
| CN112602292B (en) | Inter-slice sharing in a 5G core network | |
| EP3804238B1 (en) | Method and apparatus for service provision in a communication network | |
| EP3066786A1 (en) | Enabling load balancing in a network virtualization overlay architecture | |
| CN104092684A (en) | Method and device for supporting VPN based on OpenFlow protocol | |
| KR20180104377A (en) | Method for inter-cloud virtual networking over packet optical transport network | |
| CN107453930B (en) | Method for realizing multi-service customization on router | |
| KR101629089B1 (en) | Hybrid openFlow method for combining legacy switch protocol function and SDN function | |
| US9344487B2 (en) | Method for networking cPaaS components for application on-boarding | |
| CN101909021A (en) | BGP (Border Gateway Protocol) gateway equipment and method for realizing gateway on-off function by utilizing equipment | |
| CN112671811B (en) | Network access method and equipment | |
| CN114189485A (en) | Network port management method and system of switch and computer readable storage medium | |
| CN114095158A (en) | Network slice selection method, system, device and storage medium | |
| CN113014559A (en) | Message processing method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |