CN107896188A - Data forwarding method and device - Google Patents

Data forwarding method and device Download PDF

Info

Publication number
CN107896188A
CN107896188A CN201711414871.8A CN201711414871A CN107896188A CN 107896188 A CN107896188 A CN 107896188A CN 201711414871 A CN201711414871 A CN 201711414871A CN 107896188 A CN107896188 A CN 107896188A
Authority
CN
China
Prior art keywords
subnet
host computer
fictitious host
address
forwarded
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201711414871.8A
Other languages
Chinese (zh)
Other versions
CN107896188B (en
Inventor
左义建
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Maipu Communication Technology Co Ltd
Original Assignee
Maipu Communication Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Maipu Communication Technology Co Ltd filed Critical Maipu Communication Technology Co Ltd
Priority to CN201711414871.8A priority Critical patent/CN107896188B/en
Publication of CN107896188A publication Critical patent/CN107896188A/en
Application granted granted Critical
Publication of CN107896188B publication Critical patent/CN107896188B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The embodiments of the invention provide a kind of data forwarding method and device, is closed applied to VXLAN three-layer networks, and methods described includes:Obtain the message to be forwarded that the first fictitious host computer being subordinated in first network is sent to the second fictitious host computer belonged in the second network;Purpose IP address is obtained from message to be forwarded;The targeted subnet information matched with purpose IP address being pre-configured with is shut in lookup in VXLAN three-layer networks;When finding purpose IP address and targeted subnet IP address the match is successful, targeted subnet mark is obtained;Targeted subnet mark is added in message to be forwarded, and corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table that message to be forwarded is shut according to the VXLAN three-layer networks.Present method solves VXLAN three-layer networks close communicate with the second fictitious host computer when, due to targeted subnet identify can not obtain and caused by VXLAN three-layer networks pass can not be communicated with second fictitious host computer the problem of.

Description

Data forwarding method and device
Technical field
The present invention relates to network communication field, in particular to a kind of data forwarding method and device.
Background technology
With the fast development of cloud computing, the virtualization degree more and more higher of data center, the requirement to physical network Increasingly harshness, such as TOR interchangers need to support big specification mac address table;4094 VLAN (Virtual Local AreaNetwork, VLAN) magnanimity virtual machine can not be divided;Need to support Network Isolation of multi-tenant etc..Exactly these Demand causes stacking network technology VXLAN (Virtual Extensible Local Area Network, virtual expansible office Domain net) arise at the historic moment.
VXLAN between different VNI (VXLAN Network Identifier, virtual expansible LAN ID), and Can not directly it be communicated between VXLAN and non-VXLAN.In order that between different VNI VXLAN, and VXLAN and non- It can be communicated between VXLAN, VXLAN introduces VXLAN gateways.
But in actual applications, data center's website (DC-Site) (ethernet) may be accessed in a manner of ether VXLAN networks, the VM data messages sent of data center's website and the data message received are required to carry particular vlan Tag, normal intercommunication can be closed by VXLAN three-layer networks.
The content of the invention
In view of this, the purpose of the embodiment of the present invention is to provide a kind of data forwarding method and device.
In a first aspect, the embodiments of the invention provide a kind of data forwarding method, closed applied to VXLAN three-layer networks, it is described Method includes:The first fictitious host computer being subordinated in first network is obtained to send to the second fictitious host computer belonged in the second network Message to be forwarded;Purpose IP address is obtained from the message to be forwarded, the purpose IP address is described second virtual main The IP address of machine;The targeted subnet matched with the purpose IP address being pre-configured with is shut in lookup in the VXLAN three-layer networks Information, targeted subnet corresponding to targeted subnet IP address and the targeted subnet of the targeted subnet information including targeted subnet Mark;When finding the purpose IP address and the targeted subnet IP address the match is successful, the targeted subnet mark is obtained Know;Targeted subnet mark is added in the message to be forwarded, and by the message to be forwarded according to the VXLAN tri- Corresponding routing iinformation is forwarded to second fictitious host computer in route forwarding table on layer gateway.This method by existing in advance VXLAN three-layer networks shut the related subnet information of configuration, so that VXLAN three-layer networks, which close, need to be forwarded to message to be forwarded the During two fictitious host computers, lookup and the mesh can be shut in VXLAN three-layer networks according to the purpose IP address in the message to be forwarded of acquisition IP address matching targeted subnet information, so as to obtain the mark of the targeted subnet in targeted subnet information, thus tri- layers of VXLAN The targeted subnet that message to be forwarded is forwarded to the second fictitious host computer and need to carried by gateway can be known identifies, so as to solve VXLAN Three-layer network is closed when communicate with the second fictitious host computer, due to targeted subnet mark can not obtain and caused by VXLAN three-layer networks pass and The problem of second fictitious host computer can not communicate.
Further, by the message to be forwarded according to corresponding in the route forwarding table that the VXLAN three-layer networks are shut Routing iinformation is forwarded to second fictitious host computer, including:Based on the purpose IP address, it is in the routing forwarding table search It is no have the message to be forwarded is forwarded to routing iinformation corresponding to second fictitious host computer;Have in the route forwarding table During the routing iinformation, then the message to be forwarded is forwarded to by second fictitious host computer according to the routing iinformation.That is, exist In the embodiment of the present invention, treat to E-Packet being forwarded based on routing iinformation, the forwarding effect of message to be forwarded can be effectively improved Rate.
Further, by the message to be forwarded according to corresponding in the route forwarding table that the VXLAN three-layer networks are shut Routing iinformation is forwarded to second fictitious host computer, including:Based on the purpose IP address, it is in the routing forwarding table search It is no have the message to be forwarded is forwarded to routing iinformation corresponding to second fictitious host computer;Do not have in the route forwarding table When having the routing iinformation, then the broadcast transmission ARP request message in VXLAN networks, the ARP request message carry described Targeted subnet identifies;Obtain second fictitious host computer and respond the arp reply message that the ARP request message is sent;To described Arp reply message is parsed, and obtains the subnet of the affiliated subnet of the second fictitious host computer carried in the arp reply message Identify and generate the Host routes of second fictitious host computer;By the Subnet Identification of the affiliated subnet of the second fictitious host computer and It is described second virtual that the Host routes of second fictitious host computer, which recorded corresponding destination address in the route forwarding table, In the routing iinformation of main frame;The message to be forwarded is forwarded to by second fictitious host computer according to the routing iinformation.That is, exist In the embodiment of the present invention, VXLAN three-layer networks close obtained by the affiliated subnet of the second fictitious host computer that carries in arp reply message Subnet Identification, so as to can determine that Subnet Identification that message to be forwarded should carry, and then can realize VXLAN three-layer networks close with it is second empty Intend the communication of main frame.
Further, by the master of the Subnet Identification of the affiliated subnet of the second fictitious host computer and second fictitious host computer Machine route record into the route forwarding table corresponding destination address for second fictitious host computer routing iinformation in after, Methods described also includes:Judge that the targeted subnet identifies whether the Subnet Identification one with the affiliated subnet of the second fictitious host computer Cause;If when the targeted subnet mark and the inconsistent Subnet Identification of the affiliated subnet of the second fictitious host computer, generate and defeated Go out warning information.User can be prompted by warning information so that user knows to shut target of configuration in VXLAN three-layer networks Network mark knowledge is incorrect, and then user takes measures to be changed in time, improves the operating efficiency of VXLAN three-layer networks pass.
Further, if targeted subnet mark is inconsistent with the Subnet Identification of the affiliated subnet of the second fictitious host computer When, then simultaneously outputting alarm information is generated, including:If the targeted subnet mark and the son of the affiliated subnet of the second fictitious host computer When network mark knows inconsistent, then interval generates simultaneously outputting alarm information in preset time period, to prompt user to know targeted subnet Mark configuration inaccuracy need to be changed in time, and VXLAN three-layer networks close the interval generation in preset time period and outputting alarm information subtracts The extra work consumption of VXLAN three-layer networks pass is lacked.
Further, the targeted subnet information also includes the targeted subnet mask of the targeted subnet, searches described VXLAN three-layer networks shut the targeted subnet information matched with the purpose IP address being pre-configured with, and are finding the purpose IP address and the subnet of ip address obtain the Subnet Identification when the match is successful, including:By the purpose IP address with it is described Targeted subnet mask carries out and computing, obtains the first operation result;The targeted subnet IP address is covered with the targeted subnet Code carries out and computing, obtains the second operation result;Judge whether first operation result and second operation result are identical; When first operation result is identical with second operation result, it is determined that the purpose IP address belongs to the VXLAN The targeted subnet that three-layer network is shut, then obtain targeted subnet corresponding to the targeted subnet and identify, so as to can determine whether purpose IP Address whether with targeted subnet IP address in the same network segment, and then determine targeted subnet mark corresponding to targeted subnet.
Second aspect, the embodiments of the invention provide a kind of data forwarding device, runs on VXLAN three-layer networks pass, described Device includes:Receive message module to be forwarded, for obtaining the first fictitious host computer for being subordinated in first network to belonging to second The message to be forwarded that the second fictitious host computer in network is sent;Purpose IP address acquisition module, for from the message to be forwarded Middle acquisition purpose IP address, the purpose IP address are the IP address of second fictitious host computer;Subnet information searching modul, use The targeted subnet information matched with the purpose IP address being pre-configured with is shut in the VXLAN three-layer networks in lookup, it is described Targeted subnet mark corresponding to targeted subnet IP address and the targeted subnet of the targeted subnet information including targeted subnet;Target Subnet Identification acquisition module, for when finding the purpose IP address and the targeted subnet IP address the match is successful, obtaining The targeted subnet is taken to identify;Forwarding module, for targeted subnet mark to be added in the message to be forwarded, and will Corresponding routing iinformation is forwarded to described in the route forwarding table that the message to be forwarded is shut according to the VXLAN three-layer networks Two fictitious host computers.The present apparatus in VXLAN three-layer networks by shutting the related subnet information of configuration in advance, so that VXLAN tri- Layer gateway be by message to be forwarded when need to be forwarded to the second fictitious host computer, can be according to the purpose IP address in the message to be forwarded of acquisition The targeted subnet information searched and matched with the purpose IP address is shut in VXLAN three-layer networks, so as to obtain in targeted subnet information Targeted subnet mark, thus VXLAN three-layer networks close can be known message to be forwarded is forwarded to what the second fictitious host computer need to carry Targeted subnet identifies, when being communicated so as to solve VXLAN three-layer networks pass with the second fictitious host computer, because targeted subnet mark can not Obtain and caused by VXLAN three-layer networks close the problem of can not being communicated with second fictitious host computer.
Further, the forwarding module, including:Route querying unit, for based on the purpose IP address, described Route forwarding table has searched whether the message to be forwarded being forwarded to routing iinformation corresponding to second fictitious host computer;Forwarding Unit, during for having the routing iinformation in the route forwarding table, then according to the routing iinformation by the report to be forwarded Text is forwarded to second fictitious host computer.I.e., in embodiments of the present invention, treat to E-Packet based on routing iinformation and turned Hair, the forward efficiency of message to be forwarded can be effectively improved.
Further, the forwarding module, in addition to:Message broadcasting unit, for not having in the route forwarding table During the routing iinformation, then the broadcast transmission ARP request message in VXLAN networks, the ARP request message carry the mesh Mark Subnet Identification;Response message acquiring unit, respond what the ARP request message was sent for obtaining second fictitious host computer Arp reply message;Packet parsing unit, for being parsed to the arp reply message, obtain in the arp reply message The Subnet Identification of the affiliated subnet of the second fictitious host computer carried simultaneously generates the Host routes of second fictitious host computer;Record Unit, for the Host routes of the Subnet Identification of the affiliated subnet of the second fictitious host computer and second fictitious host computer to be remembered It is in the routing iinformation of second fictitious host computer to record corresponding destination address in the route forwarding table.That is, in the present invention In embodiment, the subnet mark of the affiliated subnet of the second fictitious host computer carried in arp reply message obtained by VXLAN three-layer networks pass Know, so as to can determine that Subnet Identification that message to be forwarded should carry, and then can realize that VXLAN three-layer networks close and the second fictitious host computer Communication.
Further, described device also includes:Subnet Identification judge module, for judging that the targeted subnet identifies whether It is consistent with the Subnet Identification of the affiliated subnet of the second fictitious host computer;Warning information output module, in the targeted subnet When mark and the inconsistent Subnet Identification of the affiliated subnet of the second fictitious host computer, then simultaneously outputting alarm information is generated.It can lead to Crossing warning information prompting user so that user knows that the targeted subnet mark that configuration is shut in VXLAN three-layer networks is incorrect, and then User takes measures to be changed in time, improves the operating efficiency of VXLAN three-layer networks pass.
Further, the warning information output module, specifically for empty in targeted subnet mark and described second When the Subnet Identification of the plan affiliated subnet of main frame is inconsistent, then interval generates simultaneously outputting alarm information in preset time period, to carry Show that user knows that targeted subnet mark configuration inaccuracy need to be changed in time, VXLAN three-layer networks close is spaced life in preset time period Reduce the extra work consumption of VXLAN three-layer networks pass into simultaneously outputting alarm information.
Further, the targeted subnet information also includes the targeted subnet mask of the targeted subnet, the subnet letter Searching modul is ceased, including:First arithmetic element, for carrying out and transporting the purpose IP address and the targeted subnet mask Calculate, obtain the first operation result;Second arithmetic element, for the targeted subnet IP address and the targeted subnet mask to be entered Row and computing, obtain the second operation result;Operation result comparing unit, for judging first operation result and described second Whether operation result is identical;The targeted subnet identifier acquisition module, specifically in first operation result and described the When two operation results are identical, it is determined that the purpose IP address belongs to the targeted subnet that the VXLAN three-layer networks are shut, then Targeted subnet is obtained corresponding to the targeted subnet to identify, so as to can determine whether purpose IP address whether with targeted subnet IP address same One network segment, and then determine targeted subnet mark corresponding to targeted subnet.
Other features and advantages of the present invention will illustrate in subsequent specification, also, partly become from specification It is clear that or by implementing understanding of the embodiment of the present invention.The purpose of the present invention and other advantages can be by saying what is write Specifically noted structure is realized and obtained in bright book, claims and accompanying drawing.
Brief description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below by embodiment it is required use it is attached Figure is briefly described, it will be appreciated that the following drawings illustrate only certain embodiments of the present invention, therefore be not construed as pair The restriction of scope, for those of ordinary skill in the art, on the premise of not paying creative work, can also be according to this A little accompanying drawings obtain other related accompanying drawings.
Fig. 1 is a kind of VXLAN schematic network structures provided in an embodiment of the present invention;
Fig. 2 is a kind of flow chart of data forwarding method provided in an embodiment of the present invention;
Fig. 3 is a kind of structural representation of data forwarding device provided in an embodiment of the present invention;
Fig. 4 is a kind of structural representation of transmission equipment provided in an embodiment of the present invention.
Embodiment
Below in conjunction with accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Ground describes, it is clear that described embodiment is only part of the embodiment of the present invention, rather than whole embodiments.Generally exist The component of the embodiment of the present invention described and illustrated in accompanying drawing can be configured to arrange and design with a variety of herein.Cause This, the detailed description of the embodiments of the invention to providing in the accompanying drawings is not intended to limit claimed invention below Scope, but it is merely representative of the selected embodiment of the present invention.Based on embodiments of the invention, those skilled in the art are not doing The every other embodiment obtained on the premise of going out creative work, belongs to the scope of protection of the invention.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi It is defined, then it further need not be defined and explained in subsequent accompanying drawing in individual accompanying drawing.Meanwhile the present invention's In description, term " first ", " second " etc. are only used for distinguishing description, and it is not intended that instruction or hint relative importance.
In VXLAN networks, VXLAN subnets different VNI directly can not be communicated directly, VXLAN subnets with it is non- Can not directly be communicated between VXLAN networks, in order that between VXLAN subnets different VNI, and VXLAN subnets with It can be communicated between non-VXLAN networks, VXLAN technologies introduce VXLAN gateways.
VXLAN gateways are divided into two-layer gateway and three-layer network closes, and two-layer gateway is used for solving tenant's (VNI expression one Tenant, even if multiple main frames belong to same VNI, also illustrate that a tenant) access VXLAN networks the problem of, can be used for same Communicated in the subnet of one VXLAN networks, three-layer network closes the access across subnetwork communicating and external network for VXLAN networks.
Deployment way difference is closed according to three-layer network, VXLAN three-layer networks close can be divided into centralized gateway and distributed network again Close.
Wherein, centralized gateway is that three-layer network pass concentration is deployed on a routing device, all flows across subnet All capable forwarding is put into by three-layer network, realize the centralized management of flow.
And distributed network gate is then to close three-layer network to be deployed in respectively on multiple devices so that the VTEP in VXLAN networks Equipment can serve as VXLAN three-layer networks pass.Now, the routing device of VTEP equipment connection does not perceive VXLAN tunnels, only does common Three layers of IP forwarding.
Data center's website (Data Center Site, DC-Site) refer to it is being connected with VTEP, be deployed with it is a large amount of virtual Main frame VM (Virtual Machine, fictitious host computer) data center network, in practical application, data center's website may be with Ether mode accesses VXLAN networks, and the VM data messages sent of data center's website and the data message received are required to take , can proper communication with specific VLAN TAG (VLANID, network identity).
If dispose VXLAN three-layer networks in the VXLAN networks to close, because whether the VM data messages sent carry VLAN TAG and and the VLAN TAG values that carry it is unknown, VXLAN three-layer networks close and can not obtain and be taken when being communicated with particular VM The VLAN TAG of band, then the communication with VM can not be actively initiated, causing VXLAN three-layer networks to close can not communicate with VM.
Above present in scheme of the prior art the defects of, be that inventor is drawing after putting into practice and carefully studying Result, therefore, the solution that the discovery procedure of above mentioned problem and the hereinafter embodiment of the present invention are proposed regarding to the issue above Scheme, all should be the contribution that inventor makes in process of the present invention to the present invention.
Therefore, in order to solve when data center's website accesses VXLAN networks in a manner of ether and dispose VXLAN three-layer networks close When, VXLAN three-layer networks, which close, can not obtain the VLAN TAG that should be carried when being sent datagram to particular VM, cause VXLAN tri- The problem of layer gateway can not communicate with VM, the embodiments of the invention provide a kind of data forwarding method.
It refer to Fig. 1, Fig. 1 is a kind of VXLAN schematic network structures provided in an embodiment of the present invention, the NVE in Fig. 1 (Network Virtrualization Edge, network virtual fringe node) is the functional entity VM for realizing network virtualization (Virtual Machine, virtual machine) inner message is after NVE is encapsulated, and can is in the network foundation based on L3 between NVE On set up L2 virtual networks.In practice, those skilled in the art can be by network equipment entity and server entity VSwitch as NVE.
Wherein, VTEP (VXLAN Tunnel Endpoints, VXLAN endpoint of a tunnel) is the end points in VXLAN tunnels, is encapsulated In NVE, encapsulation and decapsulation for VXLAN messages.VTEP is connected with physical network, and the address of distribution is physical network IP address.Source IP address can be the VTEP addresses of this section point in VXLAN messages, and purpose IP address can be in VXLAN messages The VTEP addresses of peer node, a pair of VTEP addresses just correspond to a VXLAN tunnel.
VTEP is the edge device of VXLAN networks, is the beginning and end in VXLAN tunnels, the relevant treatment of VXLAN messages Carried out in VXLAN tunnels.In practice, VTEP both can be an independent network equipment or virtual machine place Server.VTEP is the role that switching equipment undertakes, and is a part for switching equipment function.
In the embodiment of the present application, VXLAN tunnels are a concepts in logic, and effect is to carry out " bag to original message Dress ", can allow message to be transmitted on bearer network (such as IP network), just look like rising for original message from the point of view of main frame Between point and terminal, there is that a straight-through link is the same, and this link is exactly tunnel, " VXLAN tunnels " is exactly for transmitting By the VXLAN messages encapsulated, it is built upon a tunnel between two VTEP.
VNI(VXLAN Network Identifier):VXLAN network identities, VNI is similar to VLAN ID, for distinguishing VXLAN sections, the virtual machines of different VXLAN sections generally can not direct two layers be in communication with each other.One VNI represents a tenant, Can be that a terminal user belongs to a VNI or multiple terminal users belong to same VNI in practice.In reality In, VNI can be made up of 24 bits, support up to 16M ((2^24-1)/1024^2) tenant.
It refer to Fig. 2, Fig. 2 is a kind of flow chart of data forwarding method provided in an embodiment of the present invention, this method application Closed in above-mentioned VXLAN three-layer networks, methods described comprises the following steps:
Step S110:The first fictitious host computer for being subordinated in first network is obtained to belonging to second virtual in the second network The message to be forwarded that main frame is sent.
Wherein, first network and the second network are different networks, for example, first network is VXLAN networks, the second network It is then non-VXLAN networks, first network and the second network can also be respectively the different VXLAN subnets of VNI.
First fictitious host computer can be the fictitious host computer in data center's website, and the second fictitious host computer can be another number According to the fictitious host computer in central site, two data central sites belong to different networks.Or first fictitious host computer and Two fictitious host computers can also belong to a data central site, then the first fictitious host computer and the second fictitious host computer belong to respectively Different networks.
When the first fictitious host computer sends data to the second fictitious host computer, data are transmitted in the form of message, the number Capable forwarding is put into according to VXLAN three-layer networks need to be passed through, and VXLAN three-layer networks close and then obtain the data that the first virtual machine is sent, that is, wait to turn Transmit messages text.
Step S120:Purpose IP address is obtained from the message to be forwarded.
First fictitious host computer is with being sent to IP that the first fictitious host computer is carried in the message to be forwarded of the second fictitious host computer Location, i.e. purpose IP address, VXLAN three-layer networks are closed after the message to be forwarded is obtained, and purpose IP address is obtained from the message.
Step S130:The mesh matched with the purpose IP address being pre-configured with is shut in lookup in the VXLAN three-layer networks Mark subnet information.
After data center's website access VXLAN networks, each fictitious host computer in data center's website can be obtained VLAN division informations, IP subnet configuration informations etc., i.e., fictitious host computer is divided into the vlan network for the VNI for belonging to different, such as Fig. 1 In, VM1 belongs to the vlan network that VNI is 5, and VM2 is the vlan network that VNI is 6, for example, VM1 belongs to 10.1.10.0/24 nets Section, VM2 belong to the 10.1.20.0/24 network segments, then shut in VXLAN three-layer networks and are configured according to these information got The configuration of subnet information, that is, configure subnet of ip address, subnet mask and the Subnet Identification of each subnet.
Belonged to by virtual machine exemplified by different sub-network communicated, for example, in data center's website, division there are two sons It belongs to different VNI by net, respectively VLAN1 and VALN2, VLAN1 and VALN2, and VLAN1 VNI (Subnet Identification) is 5, VLAN2 VNI is 6, wherein the first fictitious host computer VM1 belongs to VLAN 1, the second fictitious host computer VM2 belongs to VLAN2, VN1 IP Address is 10.1.10.1, and its corresponding subnet mask is 255.255.255.0;VM2 IP address is 10.1.20.1, and it is corresponding Subnet mask be 255.255.255.0, then after the two subnet informations are obtained, user can shut in VXLAN three-layer networks to be matched somebody with somebody Put these subnet informations.
Specifically, shutting division in VXLAN three-layer networks has multiple logic interfacings, and a subnet letter is configured on each interface Breath, the subnet information include subnet of ip address, subnet mask and the Subnet Identification of the subnet, and the Subnet Identification refers to that message turns Identification information VLAN TAG, the VLAN TAG value that sending out to carry are equal to the VNI values of the subnet.Wherein, the son configured on interface Net IP address, subnet mask and Subnet Identification, exist as an entire combination, it is, when VXLAN network internal storages exist During multiple VLAN subnets, then in VXLAN three-layer networks pass, there is also the group of multiple subnet of ip address, subnet mask and Subnet Identification Close, for example, can be in the configuration information that VXLAN three-layer networks close for VLAN2 information:10.1.20.1-> 255.255.255.0->6。
Do not know whether message to be forwarded carries Subnet Identification because VXLAN three-layer networks close, or do not know to be forwarded The value for the Subnet Identification that message carries, so VXLAN three-layer networks are closed after the purpose IP address in obtaining message to be forwarded, search Targeted subnet information in the pre-configured each subnet information matched with the purpose IP address, so as to find and purpose The targeted subnet information of IP address matching.
Specifically, if finding to a targeted subnet, the purpose IP address and the targeted subnet mask are carried out and transported Calculate, obtain the first operation result, and the targeted subnet IP address and the targeted subnet mask are carried out and computing, obtain the Two operation results, judge whether first operation result is identical with the second operation result, in first operation result and institute State the second operation result it is identical when, it is determined that the purpose IP address belongs to the target that the VXLAN three-layer networks shut Net, then obtain targeted subnet corresponding to the targeted subnet and identify.
For example, if message to be forwarded, which is the first fictitious host computer VM1, is sent to the second fictitious host computer VM2, its purpose IP Location is 10.1.20.1, and now VXLAN three-layer networks close and find a targeted subnet, and the targeted subnet IP address of the targeted subnet is 10.1.20.2, targeted subnet mask is 255.255.255.0, and targeted subnet is identified as 6, then by target ip address and target It is 10.1.20.0 that net mask, which is carried out with the first operation result that computing obtains, and targeted subnet IP address is entered with targeted subnet mask The second operation result that row obtains with computing is 10.1.20.0, then the first operation result is identical with the second operation result, then shows The objective network that subnet VLAN2 corresponding to the purpose IP address shuts configuration with VXLAN three-layer networks is to belong to the same network segment, by This can determine that the targeted subnet information matched with purpose IP address, so as to obtain targeted subnet mark from targeted subnet information Know.
Step S140:When finding the purpose IP address and the targeted subnet IP address the match is successful, institute is obtained State targeted subnet mark.
Step S150:Targeted subnet mark is added in the message to be forwarded, and by the message to be forwarded Corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table shut according to the VXLAN three-layer networks.
After targeted subnet mark is obtained, that is, VXLAN TAG values, then the targeted subnet can be identified to be encapsulated in and wait to turn Transmit messages in text, corresponding route is believed in the route forwarding table that thus can shut message to be forwarded according to the VXLAN three-layer networks Breath is forwarded to the second fictitious host computer.
So the sub-network division information by collecting all fictitious host computers in data center's website in advance, then in VXLAN Three-layer network, which is shut, carries out related subnet information configuration, configuration subnet of ip address, subnet mask and Subnet Identification so that VXLAN Three-layer network is closed with that during virtual main-machine communication, can be inquired about according to the IP address of fictitious host computer and be closed in VXLAN three-layer networks in VXLAN networks The subnet information matched with the IP address of upper configuration, the subnet mark that carried when being communicated so as to obtain with the fictitious host computer When knowing (VLANTAG), and then solving VXLAN gateways and communicated with fictitious host computer, due to Subnet Identification (VLAN TAG) information without Method obtains and the problem of VXLAN three-layer networks pass can not communicate with the fictitious host computer occurs.
Wherein, after Subnet Identification is encapsulated into the message to be forwarded, it can treat to E-Packet being forwarded, it is to be forwarded The forwarding of message is forwarded according to corresponding routing iinformation in route forwarding table.
Specifically, it is necessary first to based on the purpose IP address, looked into the route forwarding table that the VXLAN three-layer networks are shut Look for whether having and the message to be forwarded is forwarded to routing iinformation corresponding to second fictitious host computer, in the route forwarding table In when having the routing iinformation, then the message to be forwarded is forwarded to by second fictitious host computer according to the routing iinformation.
Wherein, route forwarding table is stored in VXLAN three-layer networks and shut, basis when message, which reaches VXLAN three-layer networks, to close " instruction " goes to specific port, and similar address information table, the place that VXLAN three-layer networks shut side's of depositing this " instruction " is just called Route forwarding table.Route forwarding table is generated according to routing table, and its list item and route table items have direct corresponding relation, a spy Fixed process can be added by using the information in routing table plus the information of the host aspect of itself, such as the information such as gateway With synthesis, a route forwarding table is obtained.
But forward tableau format different with route tableau format, the information included in routing table includes:Destination address, mask And next hop address, and more detailed information is stored with route forwarding table, such as output port information, label information etc..
The structure of the route forwarding table can be with as shown in the table:
Purpose IP address:Both can be a complete host address or a network address.
Next hop address:The IP address of next-hop message forwarding equipment, or have the network ip address being directly connected to, it is next Jump message forwarding equipment and refer to that one is joined directly together equipment on network with VXLAN three-layer networks pass, such as gateway or router, It can be E-Packeted by it.Next-hop message forwarding equipment is not final destination location, but passes through multiple next-hops, Message is forwarded to final purpose by can.
VXLAN three-layer networks are closed after message to be forwarded is got, and purpose IP address are extracted from message to be forwarded, then The route forwarding table route information that VXLAN three-layer networks are shut is searched, the purpose IP address in message to be forwarded and route are believed The destination address included in breath is compared, if the purpose IP address is identical with the destination address in a certain routing iinformation, Think to match with this routing iinformation, then can obtain the Subnet Identification in this routing iinformation, so as to which the Subnet Identification is sealed Message to be forwarded is forwarded after putting into message to be forwarded.
For example, the purpose IP address of message to be forwarded is the IP address (10.1.20.1) of the second fictitious host computer, if finding It is also 10.1.20.1 to have corresponding destination address in a routing iinformation in route forwarding table, and its corresponding Subnet Identification is 5, then Directly Subnet Identification 5 is extracted, after being encapsulated in message to be forwarded, message to be forwarded can be sent out according to the routing iinformation Deliver to the second fictitious host computer.
If there is no the routing iinformation in route forwarding table, it is, every route letter in route forwarding table When not finding the destination address matched with purpose IP address in breath, VXLAN three-layer networks close that also need to get will be described to be forwarded After message is forwarded to the routing iinformation of the second fictitious host computer, message to be forwarded could be transmitted to the second fictitious host computer.
Specifically, VXLAN three-layer networks close broadcast transmission APR (address resolution protocol) request message, institute in VXLAN networks State APR request messages and carry the targeted subnet mark, then each fictitious host computer in the VXLAN networks can all receive this APR request messages, if after a certain fictitious host computer (such as the second fictitious host computer) receives the ARP request message, it is parsed, from It is middle to obtain the targeted subnet mark, if targeted subnet mark is the targeted subnet mark of the affiliated subnet of the second fictitious host computer Know, then the second fictitious host computer responds the ARP request message and closes transmission arp reply message, VXLAN tri- to the VXLAN three-layer networks Layer gateway gets the arp reply message, and the APR response messages are parsed, and described the is carried in the APP response messages The Subnet Identification of the affiliated subnet of two fictitious host computers, and generate Host routes (the i.e. second virtual master of second fictitious host computer The ARP of machine), there are the IP address and MAC Address of the second fictitious host computer in the ARP, thus, VXLAN three-layer networks close can The Host routes of the second fictitious host computer and the Subnet Identification of the affiliated subnet of the second fictitious host computer are obtained, then can be empty by second Intend the Host routes of main frame and the Subnet Identification of the affiliated subnet of the second fictitious host computer is closed report to be forwarded as the VXLAN three-layer networks The routing iinformation that text is forwarded to second fictitious host computer recorded in the route forwarding table.
It should be noted that the Subnet Identification belonging to second fictitious host computer can also be as the master of the second fictitious host computer A part in machine route.
In addition, when the first fictitious host computer is want to be communicated with the second fictitious host computer, the second fictitious host computer can actively to VXLAN three-layer networks, which close, sends ARP request message, so as to which the ARP of the second fictitious host computer may be learned in VXLAN three-layer networks pass, First fictitious host computer also can actively be closed to VXLAN three-layer networks and send ARP request message, and the can be carried in the ARP request message The IP address of two fictitious host computers, then VXLAN three-layer networks pass, can when getting the ARP request message of the first fictitious host computer transmission The ARP of second fictitious host computer is sent to the first fictitious host computer, and ARP request message is sent to the second fictitious host computer, from And get the Subnet Identification of the affiliated subnet of the second fictitious host computer and the Host routes of second fictitious host computer.
VXLAN three-layer networks are closed after the Subnet Identification of the affiliated subnet of the second fictitious host computer is obtained, in order to judge its correctness, Also need to judge target in the targeted subnet information that VXLAN three-layer networks shut belonging to second fictitious host computer that is pre-configured with Net identify whether it is consistent with the Subnet Identification of the affiliated subnet of the second fictitious host computer, if inconsistent, generate and outputting alarm information, So as to prompt the configuration information that user shuts in VXLAN three-layer networks inaccurate, need to modify, thus, user can voluntarily exist VXLAN three-layer networks, which are shut, accordingly to be changed.
In addition, as a kind of mode, in order to avoid VXLAN three-layer networks correlate the work for continuing outputting alarm information and causing the gateway Consume, can then exist when the targeted subnet identifies inconsistent with the Subnet Identification of the affiliated subnet of the second fictitious host computer Interval generation and outputting alarm information in preset time period, for example, judging that the targeted subnet identifies and described second is virtual In a hour after the Subnet Identification of the affiliated subnet of main frame is inconsistent, every 5 minutes outputting alarm information.
Wherein, the warning information can be text information, and exporting can be on the terminal device to the terminal device of user, user Carry out checking the warning information, so as to carry out respective handling, the warning information can also be to be shut installed in VXLAN three-layer networks The alarm that sends of buzzer, certainly, the corresponding form of the warning information is not construed as limiting the invention.
Fig. 3 is refer to, Fig. 3 is a kind of structural representation of data forwarding device 200 provided in an embodiment of the present invention, described Plant running is shut in VXLAN three-layer networks, and described device includes:
Receive message module 210 to be forwarded, for obtaining the first fictitious host computer for being subordinated in first network to belonging to the The message to be forwarded that the second fictitious host computer in two networks is sent.
Purpose IP address acquisition module 220, for obtaining purpose IP address, the purpose IP from the message to be forwarded Address is the IP address of second fictitious host computer.
Subnet information searching modul 230, for search shut in the VXLAN three-layer networks it is being pre-configured with the purpose The targeted subnet information of IP address matching, the targeted subnet information include the targeted subnet IP address of targeted subnet and the mesh Mark targeted subnet mark corresponding to subnet.
Targeted subnet identifier acquisition module 240, for finding the purpose IP address with the targeted subnet IP When the match is successful for location, the targeted subnet mark is obtained.
Forwarding module 250, wait to turn for targeted subnet mark to be added in the message to be forwarded, and by described It is virtual main that corresponding routing iinformation in the route forwarding table shut according to the VXLAN three-layer networks of text of transmitting messages is forwarded to described second Machine.
As a kind of mode, the forwarding module 250, including:
Route querying unit, for based on the purpose IP address, having been searched whether in the route forwarding table will be described Message to be forwarded is forwarded to routing iinformation corresponding to second fictitious host computer.
Retransmission unit, then will according to the routing iinformation during for having the routing iinformation in the route forwarding table The message to be forwarded is forwarded to second fictitious host computer.
As a kind of mode, the forwarding module 250, in addition to:
Message broadcasting unit, during for not having the routing iinformation in the route forwarding table, then in VXLAN networks Broadcast transmission ARP request message, the ARP request message carry the targeted subnet mark.
Response message acquiring unit, the ARP for responding the ARP request message for obtaining second fictitious host computer and sending Response message.
Packet parsing unit, for being parsed to the arp reply message, obtain and carried in the arp reply message The affiliated subnet of the second fictitious host computer Subnet Identification and generate the Host routes of second fictitious host computer.
Recording unit, for by the Subnet Identification of the affiliated subnet of the second fictitious host computer and second fictitious host computer Host routes recorded corresponding destination address in the route forwarding table as in the routing iinformation of second fictitious host computer.
As a kind of mode, described device also includes:
Subnet Identification judge module, for judge the targeted subnet identify whether with second fictitious host computer belonging to son The Subnet Identification of net is consistent.
Warning information output module, in targeted subnet mark and the son of the affiliated subnet of the second fictitious host computer When network mark knows inconsistent, then simultaneously outputting alarm information is generated.
As a kind of mode, the warning information output module, specifically in targeted subnet mark and described the When the Subnet Identification of the affiliated subnet of two fictitious host computers is inconsistent, then interval generates simultaneously outputting alarm information in preset time period.
As a kind of mode, the targeted subnet information also includes the targeted subnet mask of the targeted subnet, the son Net information searching module 230, including:
First arithmetic element, for the purpose IP address and the targeted subnet mask to be carried out and computing, obtain the One operation result.
Second arithmetic element, for the targeted subnet IP address and the targeted subnet mask to be carried out and computing, obtain Obtain the second operation result.
Operation result comparing unit, for judging whether first operation result and second operation result are identical.
The targeted subnet identifier acquisition module 240, specifically in first operation result and second computing As a result when identical, it is determined that the purpose IP address belongs to the targeted subnet that the VXLAN three-layer networks are shut, then obtaining should Targeted subnet corresponding to targeted subnet identifies.
Fig. 4 is refer to, Fig. 4 is a kind of structural representation for transmission equipment that the embodiment of the present application provides, and the transmission is set It is standby to include:At least one processor 110, such as CPU, at least one communication interface 120, at least one He of memory 130 At least one communication bus 140.Wherein, communication bus 140 is used to realize the direct connection communication of these components.Wherein, this Shen The communication interface 120 of equipment it please be used for the communication that signaling or data are carried out with other node devices in embodiment.Memory 130 can To be high-speed RAM memory or non-labile memory (non-volatile memory), for example, at least one Magnetic disk storage.Memory 130 optionally can also be at least one storage device for being located remotely from aforementioned processor.Memory Computer-readable instruction fetch is stored with 130, when the computer-readable instruction fetch is performed by the processor 110, transmission Equipment performs procedure shown in above-mentioned Fig. 2.
The embodiment of the present invention provides a kind of read/write memory medium, and the readable storage medium storing program for executing internal memory contains a plurality of instruction, When a plurality of instruction is run on computers so that computer performs transmission equipment institute in embodiment of the method as shown in Figure 2 The procedure of execution.
It is apparent to those skilled in the art that for convenience and simplicity of description, the device of foregoing description Specific work process, may be referred to the corresponding process in preceding method, no longer excessively repeat herein.
In summary, the embodiment of the present invention provides a kind of data forwarding method and device, and this method is subordinated to by obtaining The message to be forwarded that the first fictitious host computer in first network is sent to the second fictitious host computer belonged in the second network;From described Purpose IP address is obtained in message to be forwarded, the purpose IP address is the IP address of second fictitious host computer;Search in institute State VXLAN three-layer networks and shut the targeted subnet information matched with the purpose IP address being pre-configured with, the targeted subnet letter Cease targeted subnet mark corresponding to the targeted subnet IP address for including targeted subnet and the targeted subnet;Finding the mesh IP address and the targeted subnet IP address when the match is successful, obtain the targeted subnet mark;By the targeted subnet mark Know and be added in the message to be forwarded, and the routing forwarding that the message to be forwarded is shut according to the VXLAN three-layer networks Corresponding routing iinformation is forwarded to second fictitious host computer in table.This method in VXLAN three-layer networks by shutting configuration in advance Related subnet information, so that VXLAN three-layer networks are closed when message to be forwarded need to be forwarded into the second fictitious host computer, can basis Purpose IP address in the message to be forwarded obtained shuts target searched and matched with the purpose IP address in VXLAN three-layer networks Net information, so as to obtain the mark of the targeted subnet in targeted subnet information, thus VXLAN three-layer networks close can be known by report to be forwarded Text is forwarded to the targeted subnet mark that the second fictitious host computer need to carry, and is closed and the second virtual master so as to solve VXLAN three-layer networks Machine communicate when, due to targeted subnet mark can not obtain and caused by VXLAN three-layer networks close with second fictitious host computer can not The problem of communication.
In several embodiments provided herein, it should be understood that disclosed apparatus and method, can also pass through Other modes are realized.Device embodiment described above is only schematical, for example, flow chart and block diagram in accompanying drawing Show the device of multiple embodiments according to the present invention, method and computer program product architectural framework in the cards, Function and operation.At this point, each square frame in flow chart or block diagram can represent the one of a module, program segment or code Part, a part for the module, program segment or code include one or more and are used to realize holding for defined logic function Row instruction.It should also be noted that at some as in the implementation replaced, the function that is marked in square frame can also with different from The order marked in accompanying drawing occurs.For example, two continuous square frames can essentially perform substantially in parallel, they are sometimes It can perform in the opposite order, this is depending on involved function.It is it is also noted that every in block diagram and/or flow chart The combination of individual square frame and block diagram and/or the square frame in flow chart, function or the special base of action as defined in performing can be used Realize, or can be realized with the combination of specialized hardware and computer instruction in the system of hardware.
In addition, each functional module in each embodiment of the present invention can integrate to form an independent portion Point or modules individualism, can also two or more modules be integrated to form an independent part.
If the function is realized in the form of software function module and is used as independent production marketing or in use, can be with It is stored in a computer read/write memory medium.Based on such understanding, technical scheme is substantially in other words The part to be contributed to prior art or the part of the technical scheme can be embodied in the form of software product, the meter Calculation machine software product is stored in a storage medium, including some instructions are causing a computer equipment (can be People's computer, server, or network equipment etc.) perform all or part of step of each embodiment methods described of the present invention. And foregoing storage medium includes:USB flash disk, mobile hard disk, read-only storage (ROM, Read-Only Memory), arbitrary access are deposited Reservoir (RAM, Random Access Memory), magnetic disc or CD etc. are various can be with the medium of store program codes.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for the skill of this area For art personnel, the present invention can have various modifications and variations.Within the spirit and principles of the invention, that is made any repaiies Change, equivalent substitution, improvement etc., should be included in the scope of the protection.It should be noted that:Similar label and letter exists Similar terms is represented in following accompanying drawing, therefore, once being defined in a certain Xiang Yi accompanying drawing, is then not required in subsequent accompanying drawing It is further defined and explained.
The foregoing is only a specific embodiment of the invention, but protection scope of the present invention is not limited thereto, any Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, should all be contained Cover within protection scope of the present invention.Therefore, protection scope of the present invention described should be defined by scope of the claims.
It should be noted that herein, such as first and second or the like relational terms are used merely to a reality Body or operation make a distinction with another entity or operation, and not necessarily require or imply and deposited between these entities or operation In any this actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant are intended to Nonexcludability includes, so that process, method, article or equipment including a series of elements not only will including those Element, but also the other element including being not expressly set out, or it is this process, method, article or equipment also to include Intrinsic key element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that Other identical element also be present in process, method, article or equipment including the key element.

Claims (12)

1. a kind of data forwarding method, it is characterised in that closed applied to VXLAN three-layer networks, methods described includes:
The first fictitious host computer being subordinated in first network is obtained to treat to what the second fictitious host computer belonged in the second network was sent E-Packet;
Obtain purpose IP address from the message to be forwarded, the purpose IP address for second fictitious host computer IP Location;
The targeted subnet information matched with the purpose IP address being pre-configured with, institute are shut in lookup in the VXLAN three-layer networks State targeted subnet mark corresponding to targeted subnet IP address and the targeted subnet of the targeted subnet information including targeted subnet;
When finding the purpose IP address and the targeted subnet IP address the match is successful, the targeted subnet mark is obtained Know;
Targeted subnet mark is added in the message to be forwarded, and by the message to be forwarded according to the VXLAN Corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table that three-layer network is shut.
2. according to the method for claim 1, it is characterised in that by the message to be forwarded according to the VXLAN three-layer networks Corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table shut, including:
Based on the purpose IP address, search whether the message to be forwarded being forwarded to described in the route forwarding table Routing iinformation corresponding to two fictitious host computers;
When having the routing iinformation in the route forwarding table, then the message to be forwarded is forwarded according to the routing iinformation To second fictitious host computer.
3. according to the method for claim 2, it is characterised in that by the message to be forwarded according to the VXLAN three-layer networks Corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table shut, including:
Based on the purpose IP address, search whether the message to be forwarded being forwarded to described in the route forwarding table Routing iinformation corresponding to two fictitious host computers;
When there is no the routing iinformation in the route forwarding table, then the broadcast transmission ARP request message in VXLAN networks, The ARP request message carries the targeted subnet mark;
Obtain second fictitious host computer and respond the arp reply message that the ARP request message is sent;
The arp reply message is parsed, obtained belonging to second fictitious host computer carried in the arp reply message The Subnet Identification of subnet and the Host routes for generating second fictitious host computer;
The Host routes of the Subnet Identification of the affiliated subnet of second fictitious host computer and second fictitious host computer recorded Corresponding destination address is in the routing iinformation of second fictitious host computer in the route forwarding table;
The message to be forwarded is forwarded to by second fictitious host computer according to the routing iinformation.
4. according to the method for claim 3, it is characterised in that by the Subnet Identification of the affiliated subnet of the second fictitious host computer And it is described second that the Host routes of second fictitious host computer, which recorded corresponding destination address in the route forwarding table, After in the routing iinformation of fictitious host computer, methods described also includes:
It is consistent with the Subnet Identification of the affiliated subnet of the second fictitious host computer to judge that the targeted subnet identifies whether;
If when the targeted subnet mark and the inconsistent Subnet Identification of the affiliated subnet of the second fictitious host computer, generate and defeated Go out warning information.
5. according to the method for claim 4, it is characterised in that if targeted subnet mark and second fictitious host computer When the Subnet Identification of affiliated subnet is inconsistent, then simultaneously outputting alarm information is generated, including:
If when targeted subnet mark and the inconsistent Subnet Identification of the affiliated subnet of the second fictitious host computer, when default Between interval generation and outputting alarm information in section.
6. according to the method for claim 1, it is characterised in that the targeted subnet information also includes the targeted subnet Targeted subnet mask, search target that being matched with the purpose IP address of being pre-configured with is shut in the VXLAN three-layer networks Net information, when finding the purpose IP address and the subnet of ip address the match is successful, the Subnet Identification is obtained, is wrapped Include:
By the purpose IP address and the targeted subnet mask carries out and computing, obtains the first operation result;
By the targeted subnet IP address and the targeted subnet mask carries out and computing, obtains the second operation result;
Judge whether first operation result and second operation result are identical;
When first operation result is identical with second operation result, it is determined that the purpose IP address belongs to described The targeted subnet that VXLAN three-layer networks are shut, then obtain targeted subnet corresponding to the targeted subnet and identify.
7. a kind of data forwarding device, it is characterised in that run on VXLAN three-layer networks pass, described device includes:
Receive message module to be forwarded, for obtaining the first fictitious host computer for being subordinated in first network to belonging in the second network The second fictitious host computer send message to be forwarded;
Purpose IP address acquisition module, for obtaining purpose IP address from the message to be forwarded, the purpose IP address is The IP address of second fictitious host computer;
Subnet information searching modul, for search shut in the VXLAN three-layer networks it is being pre-configured with the purpose IP address The targeted subnet information of matching, the targeted subnet information include the targeted subnet IP address of targeted subnet and the targeted subnet Corresponding targeted subnet mark;
Targeted subnet identifier acquisition module, for being matched into the targeted subnet IP address finding the purpose IP address During work(, the targeted subnet mark is obtained;
Forwarding module, for targeted subnet mark to be added in the message to be forwarded, and by the message to be forwarded Corresponding routing iinformation is forwarded to second fictitious host computer in the route forwarding table shut according to the VXLAN three-layer networks.
8. device according to claim 7, it is characterised in that the forwarding module, including:
Route querying unit, for based on the purpose IP address, having searched whether to wait to turn by described in the route forwarding table Text of transmitting messages is forwarded to routing iinformation corresponding to second fictitious host computer;
Retransmission unit, during for having the routing iinformation in the route forwarding table, then according to the routing iinformation will described in Message to be forwarded is forwarded to second fictitious host computer.
9. device according to claim 8, it is characterised in that the forwarding module, in addition to:
Message broadcasting unit, during for there is no the routing iinformation in the route forwarding table, then broadcasted in VXLAN networks ARP request message is sent, the ARP request message carries the targeted subnet mark;
Response message acquiring unit, the arp reply for responding the ARP request message for obtaining second fictitious host computer and sending Message;
Packet parsing unit, for being parsed to the arp reply message, obtain the institute carried in the arp reply message State the Subnet Identification of the affiliated subnet of the second fictitious host computer and generate the Host routes of second fictitious host computer;
Recording unit, for by the master of the Subnet Identification of the affiliated subnet of the second fictitious host computer and second fictitious host computer Machine route record corresponding destination address into the route forwarding table is in the routing iinformation of second fictitious host computer.
10. device according to claim 9, it is characterised in that described device also includes:
Subnet Identification judge module, for judging that the targeted subnet identifies whether and the affiliated subnet of the second fictitious host computer Subnet Identification is consistent;
Warning information output module, in targeted subnet mark and the subnet mark of the affiliated subnet of the second fictitious host computer When knowing inconsistent, then simultaneously outputting alarm information is generated.
11. device according to claim 10, it is characterised in that the warning information output module, specifically in institute When stating targeted subnet mark and the inconsistent Subnet Identification of the affiliated subnet of the second fictitious host computer, then in preset time period between Every generation and outputting alarm information.
12. device according to claim 7, it is characterised in that the targeted subnet information also includes the targeted subnet Targeted subnet mask, the subnet information searching modul, including:
First arithmetic element, for the purpose IP address and targeted subnet mask progress and computing, acquisition first to be transported Calculate result;
Second arithmetic element, for the targeted subnet IP address and the targeted subnet mask to be carried out and computing, obtain the Two operation results;
Operation result comparing unit, for judging whether first operation result and second operation result are identical;
The targeted subnet identifier acquisition module, specifically for identical with second operation result in first operation result When, it is determined that the purpose IP address belongs to the targeted subnet that the VXLAN three-layer networks are shut, then obtains the targeted subnet Corresponding targeted subnet mark.
CN201711414871.8A 2017-12-22 2017-12-22 Data forwarding method and device Active CN107896188B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711414871.8A CN107896188B (en) 2017-12-22 2017-12-22 Data forwarding method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711414871.8A CN107896188B (en) 2017-12-22 2017-12-22 Data forwarding method and device

Publications (2)

Publication Number Publication Date
CN107896188A true CN107896188A (en) 2018-04-10
CN107896188B CN107896188B (en) 2020-08-28

Family

ID=61808180

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711414871.8A Active CN107896188B (en) 2017-12-22 2017-12-22 Data forwarding method and device

Country Status (1)

Country Link
CN (1) CN107896188B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109510751A (en) * 2018-12-19 2019-03-22 迈普通信技术股份有限公司 A kind of message forwarding method and routing device
CN111541651A (en) * 2020-03-31 2020-08-14 新华三技术有限公司 Communication method and device
CN113660164A (en) * 2020-05-12 2021-11-16 华为技术有限公司 Message forwarding method and network equipment
CN115665026A (en) * 2022-09-26 2023-01-31 京东科技信息技术有限公司 Cluster networking method and device

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103095546A (en) * 2013-01-28 2013-05-08 华为技术有限公司 Method, device and data center network for processing messages
CN104350714A (en) * 2014-05-29 2015-02-11 华为技术有限公司 Packet forwarding method and VxLAN gateway
CN106209562A (en) * 2016-07-27 2016-12-07 华为技术有限公司 In a kind of network VLAN ID distribution method and controller
CN106998286A (en) * 2017-05-05 2017-08-01 杭州迪普科技股份有限公司 A kind of VXLAN message forwarding methods and device
CN107204896A (en) * 2017-05-22 2017-09-26 迈普通信技术股份有限公司 Handle method, device and the VTEP equipment of VXLAN messages
US20170295130A1 (en) * 2016-04-07 2017-10-12 Cisco Technology, Inc. Control plane based technique for handling multi-destination traffic in overlay networks
CN107342941A (en) * 2017-06-01 2017-11-10 杭州迪普科技股份有限公司 A kind of optimization method and device of VXLAN control planes
CN107493222A (en) * 2017-08-15 2017-12-19 杭州迪普科技股份有限公司 A kind of method and device of VXLAN messages forwarding

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103095546A (en) * 2013-01-28 2013-05-08 华为技术有限公司 Method, device and data center network for processing messages
CN104350714A (en) * 2014-05-29 2015-02-11 华为技术有限公司 Packet forwarding method and VxLAN gateway
US20170295130A1 (en) * 2016-04-07 2017-10-12 Cisco Technology, Inc. Control plane based technique for handling multi-destination traffic in overlay networks
CN106209562A (en) * 2016-07-27 2016-12-07 华为技术有限公司 In a kind of network VLAN ID distribution method and controller
CN106998286A (en) * 2017-05-05 2017-08-01 杭州迪普科技股份有限公司 A kind of VXLAN message forwarding methods and device
CN107204896A (en) * 2017-05-22 2017-09-26 迈普通信技术股份有限公司 Handle method, device and the VTEP equipment of VXLAN messages
CN107342941A (en) * 2017-06-01 2017-11-10 杭州迪普科技股份有限公司 A kind of optimization method and device of VXLAN control planes
CN107493222A (en) * 2017-08-15 2017-12-19 杭州迪普科技股份有限公司 A kind of method and device of VXLAN messages forwarding

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109510751A (en) * 2018-12-19 2019-03-22 迈普通信技术股份有限公司 A kind of message forwarding method and routing device
CN111541651A (en) * 2020-03-31 2020-08-14 新华三技术有限公司 Communication method and device
CN111541651B (en) * 2020-03-31 2022-10-21 新华三技术有限公司 Communication method and device
CN113660164A (en) * 2020-05-12 2021-11-16 华为技术有限公司 Message forwarding method and network equipment
CN115665026A (en) * 2022-09-26 2023-01-31 京东科技信息技术有限公司 Cluster networking method and device

Also Published As

Publication number Publication date
CN107896188B (en) 2020-08-28

Similar Documents

Publication Publication Date Title
US10320664B2 (en) Cloud overlay for operations administration and management
CN104350467B (en) Elasticity for the cloud security using SDN carries out layer
CN103095546B (en) A kind of method, device and data center network processing message
CN103200069B (en) A kind of method and apparatus of Message processing
EP3282649B1 (en) Data packet forwarding
EP4239973A1 (en) Packet sending method, device, and system
US20220232453A1 (en) Systems and methods for routing data
CN106712988B (en) A kind of virtual network management method and device
US20140169222A1 (en) Bridging network devices in a hybrid communication network
US20170331641A1 (en) Deployment Of Virtual Extensible Local Area Network
CN109617995B (en) Management system and method for VPC (virtual private network) internal container of tenant cluster and electronic equipment
CN105827495B (en) The message forwarding method and equipment of VXLAN gateway
CN107896188A (en) Data forwarding method and device
CN104871483A (en) IP multicast service join process for MPLS-based virtual private cloud networking
CN108632098A (en) Flow classifier, business route flip-flop, Message processing method and system
CN110460684B (en) Broadcast domain isolation method and device for VXLAN (virtual extensible local area network) in same network segment
CN104823405A (en) IP multicast service leave process for MPLS-based virtual private cloud networking
CN105635190B (en) Service executing apparatus in data center network and device
JP2019521619A (en) Packet forwarding
CN107579900A (en) From the method, apparatus and system of vlan network access VXLAN networks
CN109729012A (en) A kind of unicast message transmission method and device
CN108965134B (en) Message forwarding method and device
CN106878136A (en) A kind of message forwarding method and device
CN106209637B (en) From virtual expansible local area network to the message forwarding method and equipment of virtual LAN
US20190215191A1 (en) Deployment Of Virtual Extensible Local Area Network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant