CN107959626B - Communication method, device and system of data center - Google Patents
Communication method, device and system of data center Download PDFInfo
- Publication number
- CN107959626B CN107959626B CN201711328855.7A CN201711328855A CN107959626B CN 107959626 B CN107959626 B CN 107959626B CN 201711328855 A CN201711328855 A CN 201711328855A CN 107959626 B CN107959626 B CN 107959626B
- Authority
- CN
- China
- Prior art keywords
- data center
- edge switch
- gateway
- exit gateway
- vrrp
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/58—Association of routers
- H04L45/586—Association of routers of virtual routers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0654—Management of faults, events, alarms or notifications using network fault recovery
- H04L41/0668—Management of faults, events, alarms or notifications using network fault recovery by dynamic selection of recovery network elements, e.g. replacement by the most appropriate element after failure
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
- H04L45/745—Address table lookup; Address filtering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/25—Routing or path finding in a switch fabric
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/55—Prevention, detection or correction of errors
- H04L49/557—Error correction, e.g. fault recovery or fault tolerance
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The application discloses a communication method, a communication device and a communication system of a data center, relates to the field of communication networks, and is used for solving the technical problem of poor reliability of the data center. The method comprises the following steps: detecting the failure of a first data center exit gateway, and sending a first VRRP protocol message to a second data center edge switch; receiving a second VRRP protocol message from a second data center exit gateway forwarded by a second data center edge switch; learning the MAC address of the second data center exit gateway according to the second VRRP protocol message to establish an MAC forwarding table; and establishing a communication channel between a second data center exit gateway and a first data center host through an MAC forwarding table, wherein a first data center edge switch establishes two-layer connection with the first data center exit gateway and the second data center edge switch respectively, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are positioned in the same VRRP group.
Description
Technical Field
The present application relates to the field of data communication technologies, and in particular, to a communication method, device and system for a data center.
Background
In the data center shown in fig. 1, in order to perform a disaster backup function, two data centers a and B with different physical locations are usually included, and each data center can respond to an access request of an external network through a respective gateway (gateway a or gateway B). In order to solve the service and data backup requirements between the data center a and the data center B, it is usually necessary to set an extensible Virtual Local Area Network (VXLAN) between the data center a and the data center B, so that the data center a and the data center B form a two-layer Network, and the service access between the data center a and the data center B is as in the same Local Area Network, which results in that the gateways of the data center a and the data center B are also connected to the same Local Area Network. In order to meet the requirements of data center a and data center B for backup, virtual machine migration, and the like, data center a and data center B have the same requirements for Internet Protocol (IP) gateways provided inside the data centers, which results in address conflicts in the local area network. In order to solve the conflict and realize that the data traffic of the data center a and the data center B are respectively forwarded from the respective gateways, the gateways may be isolated on the VXLAN network. In order to improve reliability, the isolated gateways also need to set multiple gateways for each data center as backup through Virtual Router Redundancy Protocol (VRRP).
However, when all gateways of one data center fail, the data center cannot directly respond to the access request of the external network through the failed gateway, and because the two data center gateways are isolated by VXLAN, the data center cannot indirectly respond to the access request of the external network through the gateway of the other data center, which results in poor reliability of the data center.
Disclosure of Invention
The application provides a communication method, a communication device and a communication system of a data center, which are used for solving the technical problem of poor network reliability of the data center.
In order to achieve the purpose, the technical scheme is as follows:
in a first aspect, an embodiment of the present application provides a communication method for a data center, where the method is applied to a communication system for a data center, the communication system includes a first data center and a second data center, the first data center includes a first data center edge switch and a first data center egress gateway, the second data center includes a second data center edge switch and a second data center egress gateway, the first data center edge switch is respectively connected with a first data center exit gateway and a second data center edge switch in a two-layer mode, the second data center edge switch is respectively connected with a second data center exit gateway and a first data center edge switch in a two-layer mode, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are located in the same VRRP group; the method comprises the following steps:
the first data center edge switch detects that a first data center exit gateway is in fault and sends a first VRRP protocol message to a second data center edge switch;
the second data center edge switch receives a first VRRP protocol message sent by the first data center edge switch;
after verifying that the first VRRP protocol message is matched with the local forwarding strategy, the second data center edge switch forwards a second VRRP protocol message from a second data center exit gateway to the first data center edge switch;
the second data center edge switch establishes a communication channel between the second data center exit gateway and the first data center edge switch;
the first data center edge switch receives a second VRRP protocol message from a second data center exit gateway forwarded by a second data center edge switch;
the first data center edge switch learns the MAC address of the second data center exit gateway according to the second VRRP protocol message to establish an MAC forwarding table;
and the first data center edge switch establishes a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
In a second aspect, an embodiment of the present application provides a communication method for a data center, which is applied to a first data center edge switch, where the first data center edge switch establishes a two-layer connection with a first data center egress gateway and a second data center edge switch, and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group; the method comprises the following steps: detecting the failure of a first data center exit gateway, and sending a first VRRP protocol message to a second data center edge switch; receiving a second VRRP protocol message from a second data center exit gateway forwarded by a second data center edge switch; according to a second VRRP protocol message, learning a Media Access Control (MAC) address of an exit gateway of a second data center to establish an MAC forwarding table; and establishing a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
In a third aspect, an embodiment of the present application further provides a communication method for a data center, where the communication method is applied to a second data center edge switch, the second data center edge switch establishes a two-layer connection with a second data center egress gateway and a first data center edge switch, and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group; the method comprises the following steps: receiving a first VRRP protocol message sent by a first data center edge switch; after the first VRRP protocol message is verified to be matched with the local forwarding strategy, forwarding a second VRRP protocol message from an exit gateway of a second data center to a first data center edge switch; and establishing a communication channel between the second data center exit gateway and the first data center edge switch.
In a fourth aspect, an embodiment of the present application provides a communication device for a data center, which is applied to a first data center edge switch, where the first data center edge switch establishes a two-layer connection with a first data center egress gateway and a second data center edge switch, and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group; the device includes: the sending module is used for detecting the failure of the first data center exit gateway and sending a first VRRP protocol message to a second data center edge switch; the receiving module is used for receiving a second VRRP protocol message from a second data center exit gateway forwarded by a second data center edge switch; the establishing module is used for establishing an MAC forwarding table according to the MAC address of the second VRRP protocol message learning exit gateway of the second data center; and the establishing module is also used for establishing a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
In a fifth aspect, an embodiment of the present application provides a communication device of a data center, which is applied to a second data center edge switch, where the second data center edge switch establishes two-layer connections with a second data center egress gateway and a first data center edge switch, and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group; the device includes: the receiving module is used for receiving a first VRRP protocol message sent by a first data center edge switch; the sending module is used for forwarding a second VRRP protocol message from an exit gateway of a second data center to the first data center edge switch after verifying that the first VRRP protocol message is matched with the local forwarding strategy; and the establishing module is used for establishing a communication channel between the second data center exit gateway and the first data center edge switch.
In a sixth aspect, an embodiment of the present application provides a communication system of a data center, where the communication system includes a first data center egress gateway, a first data center edge switch as described in any one of the fourth aspect and various optional implementations thereof, a second data center egress gateway, and a second data center edge switch as described in any one of the fifth aspect and various optional implementations thereof.
In the communication method, the apparatus, and the system of the data center provided in the embodiments of the present application, when the first data center edge switch detects a failure of the first data center egress gateway, the first data center edge switch can send the first VRRP protocol packet to the second data center edge switch, and receives a second VRRP protocol message sent by the second data center edge switch after verifying that the local forwarding strategy of the second data center edge switch is matched with the first VRRP protocol message, therefore, a communication channel between the second data center exit gateway and the first data center host computer through the second data center edge switch and the first data center edge switch is established, the remote backup of the first data center exit gateway and the second data center exit gateway is realized, when the exit gateway of one data center fails, the reliability of the communication between the data center and the external network can be improved under the condition that the external network cannot communicate with the host of the data center.
Drawings
Fig. 1 is a schematic diagram of a data center network in the prior art;
fig. 2 is a schematic architecture diagram of a data center network according to an embodiment of the present application;
fig. 3 is a flowchart of a communication method of a data center according to an embodiment of the present disclosure;
fig. 4 is a schematic structural diagram of a communication apparatus applied to a first data center edge switch according to an embodiment of the present application;
fig. 4a is a schematic structural diagram of another communication apparatus applied to a first data center edge switch according to an embodiment of the present application;
fig. 5 is a schematic structural diagram of a communication apparatus applied to a second data center edge switch according to an embodiment of the present application;
fig. 5a is a schematic structural diagram of another communication apparatus applied to a second data center edge switch according to an embodiment of the present application;
fig. 6 is a schematic structural diagram of a communication system of a data center according to an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
The embodiment of the application is suitable for the data center network shown in FIG. 2. The data center network includes a first data center 10 and a second data center 20, the first data center 10 including a first data center edge switch 11 and a first data center egress gateway 12, the second data center 20 including a second data center edge switch 21 and a second data center egress gateway 22. The first data center edge switch 11 establishes a second layer connection with the first data center egress gateway 12 and the second data center edge switch 21, the second data center edge switch 21 establishes a second layer connection with the second data center egress gateway 22 and the first data center edge switch 11, the first data center egress gateway 12, the second data center edge switch 21 and the second data center egress gateway 22 are located in the same VRRP group. Wherein, the VRRP group is provided with a virtual IP address and a virtual MAC address.
As shown in fig. 3, the communication method of the data center provided in the embodiment of the present application is applied to the first data center edge switch 11 and the first data center edge switch 21 shown in fig. 2. The method may include S301-S309:
s301, the first data center edge switch detects that the first data center egress gateway fails.
In the embodiment of the present invention, because the first data center edge switch and the first data center egress gateway are located in the same VRRP group, the priority of the first data center edge switch may be configured to be lower than the priority of the first data center egress gateway, and the first data center egress gateway, as a master device, may periodically send a VRRP message. Meanwhile, under normal conditions, the first data center edge switch can be set not to forward the VRRP protocol message outwards. And only when the first data center exit gateway fault is detected, the first data center edge switch considers that the first data center edge switch becomes the VRRP master device and sends a VRRP message to the outside, namely, the first VRRP message is sent.
Similarly, under normal conditions, because the second data center edge switch and the second data center exit gateway are located in the same VRRP group, the second data center exit gateway, as a master device, may periodically send a VRRP message. Meanwhile, under normal conditions, the second data center edge switch can be set not to forward the VRRP protocol message outwards, that is, the second data center edge switch does not forward the VRRP protocol message from the second data center exit gateway outwards.
S302, the first data center edge switch sends a first VRRP protocol message to the second data center edge switch.
Optionally, before detecting the failure of the first data center egress gateway, the method further includes: enabling a set monitoring strategy, wherein the monitoring strategy is used for allowing a message with a destination address being a VRRP group address and an ARP message to be sent to a second data center edge switch when detecting that a first data center exit gateway is in fault; and when detecting that the first data center exit gateway is recovered to be normal, forbidding sending a message with a destination address being a VRRP group address and an ARP message to the second data center edge switch.
The monitoring policy may be that the first data center edge switch is configured with an IP address of the first data center egress gateway, and the first data center edge switch does not receive a VRRP protocol packet whose source IP address is the IP address of the first data center egress gateway within a predetermined time length, and the first data center egress gateway is considered to be a failure. Wherein, the predetermined time length can be set according to actual conditions. It can be understood that when the first data center edge switch can receive the VRRP protocol packet whose source IP address is the IP address of the first data center egress gateway within the predetermined time length, the first data center egress gateway is considered to be normal.
It should be noted that, when the gateways of the two data centers are normal, the exit directions of the interconnection ports of the first data center switch and the second data center switch both suppress the VRRP protocol packet (including forwarding of the VRRP data packet and the VRRP ARP packet), so that the exit gateway of the first data center and the exit gateway of the second data center are isolated from each other, and the VRRPs of the two exit gateways are both Master devices (masters), and can forward the local packet.
And each data center communicates with the external network through a respective exit gateway, and the two data centers are in a VRRP isolation state. When the gateway of one data center fails, the failed data center requests the other data center to forward the interactive message between the failed data center and the external network instead, and the two data centers are in a VRRP communication state.
S303, the second data center edge switch receives the first VRRP protocol message sent by the first data center edge switch.
S304, the second data center edge switch verifies that the first VRRP protocol message is matched with the local forwarding strategy.
Optionally, before receiving the first VRRP protocol packet sent by the first data center edge switch, the method further includes:
enabling a set local forwarding strategy, wherein the local forwarding strategy is used for allowing a message with a destination address being a VRRP group address and an ARP message from an exit gateway of a second data center to be forwarded to a first data center edge switch when the first VRRP protocol message sent by the first data center edge switch is received; and when the first VRRP protocol message cannot be received within the preset time length, stopping forwarding the message with the destination address being the VRRP group address and the ARP message from the exit gateway of the second data center to the first data center edge switch.
Illustratively, the first VRRP protocol packet may include a real IP address of the first data center edge switch and a virtual IP address of the VRRP group. The local forwarding policy configured in the second datacenter edge switch may include a real IP address of the first datacenter edge switch. If the real IP address in the local forwarding policy is the same as the real IP address carried in the first VRRP protocol packet, the second data center edge switch may determine that the first VRRP protocol packet matches the local forwarding policy.
Illustratively, the first VRRP protocol packet may include a real MAC address of the first data center edge switch and a virtual MAC address of the VRRP group. The local forwarding policy configured in the second datacenter edge switch may include a real MAC address of the first datacenter edge switch. If the real MAC address in the local forwarding policy is the same as the real MAC address carried in the first VRRP protocol packet, the second data center edge switch may determine that the first VRRP protocol packet matches the local forwarding policy.
S305, the second data center edge switch forwards a second VRRP protocol message from the second data center exit gateway to the first data center edge switch.
The second VRRP protocol packet may include a MAC address of the second data center egress gateway.
S306, the second data center edge switch establishes a communication channel between the second data center exit gateway and the first data center edge switch.
The second data center edge switch establishes a communication channel between the second data center exit gateway and the first data center edge switch, and the second data center edge switch can release the restriction of prohibiting the second data center edge switch from forwarding the VRRP protocol message, the VRRP data message and the VRRP ARP message, the destination address of which is the IP address of the first data center exit gateway, to the first data center edge switch.
S307, the first data center edge switch receives a second VRRP protocol message from a second data center exit gateway forwarded by the second data center edge switch.
S308, the first data center edge switch learns the MAC address of the second data center exit gateway according to the second VRRP protocol message to establish an MAC forwarding table.
S309, the first data center edge switch establishes a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
The communication channel is a bidirectional communication channel comprising a second data center exit gateway, a second data center edge switch, a first data center edge switch and a first data center host.
In the communication method of the data center provided in the embodiment of the present application, when the first data center edge switch detects a failure of the first data center egress gateway, the first data center edge switch can send the first VRRP protocol packet to the second data center edge switch, and receives a second VRRP protocol message sent by the second data center edge switch after verifying that the local forwarding strategy of the second data center edge switch is matched with the first VRRP protocol message, therefore, a communication channel between the second data center exit gateway and the first data center host computer through the second data center edge switch and the first data center edge switch is established, the remote backup of the first data center exit gateway and the second data center exit gateway is realized, when the exit gateway of one data center fails, the reliability of the communication between the data center and the external network can be improved under the condition that the external network cannot communicate with the host of the data center.
It should be noted that in the communication method of the data center shown in fig. 3, the data center exit gateway can be backed up in a different place. For example, as shown in fig. 2, each of the first data center 10 and the second data center 20 may be configured with only one egress gateway, i.e., each of the first data center egress gateway 12 and the second data center egress gateway 22 has only one egress gateway. When the first data center egress gateway 12 fails, the second data center edge switch 21 may forward the interaction message of the first data center 10 with the external network through the second data center egress gateway 22. Similarly, when the second data center egress gateway 22 fails, the first data center edge switch 11 may forward the interaction packet of the second data center 20 with the external network through the first data center egress gateway 12. Therefore, on the premise of ensuring the communication reliability of the data center and the external network, a smaller number of gateways can be configured for the two data centers which are backed up in different places, so as to reduce the construction cost of the data centers.
As shown in fig. 4, an embodiment of the present application provides a communication device 40 of a data center, which is applied to a first data center edge switch shown in fig. 2, where the first data center edge switch establishes two-layer connections with a first data center egress gateway and a second data center edge switch, respectively, and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group. Wherein the device 40 comprises:
a sending module 41, configured to detect that a first data center egress gateway fails, send a first VRRP protocol packet to a second data center edge switch;
a receiving module 42, configured to receive a second VRRP protocol packet from a second data center egress gateway forwarded by a second data center edge switch;
the establishing module 43 is configured to learn, according to the second VRRP protocol packet, an MAC address of the egress gateway of the second data center to establish an MAC forwarding table;
and the establishing module 43 is further configured to establish a communication channel between the second data center egress gateway and the first data center host through the MAC forwarding table.
Optionally, in conjunction with fig. 4, as shown in fig. 4a, the apparatus 40 further includes:
the control module 44 is configured to enable a set monitoring policy, where the monitoring policy is configured to allow a message with a destination address of a VRRP group address and an ARP message to be sent to a second data center edge switch when detecting that a first data center egress gateway is faulty;
the control module 44 is further configured to prohibit sending, to the edge switch of the second data center, a message with a destination address of the VRRP group address and an ARP message when detecting that the egress gateway of the first data center is recovered to normal. In the communication device of the data center provided in the embodiment of the present application, when the first data center edge switch detects a failure of the first data center egress gateway, the first data center edge switch can send the first VRRP protocol packet to the second data center edge switch, and receives a second VRRP protocol message sent by the second data center edge switch after verifying that the local forwarding strategy of the second data center edge switch is matched with the first VRRP protocol message, therefore, a communication channel between the second data center exit gateway and the first data center host computer through the second data center edge switch and the first data center edge switch is established, the remote backup of the first data center exit gateway and the second data center exit gateway is realized, when the exit gateway of one data center fails, the reliability of the communication between the data center and the external network can be improved under the condition that the external network cannot communicate with the host of the data center.
As shown in fig. 5, another communication device 50 of a data center is further provided in the embodiment of the present application, and is applied to the second data center edge switch shown in fig. 2, where the second data center edge switch establishes two-layer connections with the second data center egress gateway and the first data center edge switch, the first data center egress gateway, the second data center edge switch, and the second data center egress gateway are located in the same VRRP group; the apparatus 50 comprises:
a receiving module 51, configured to receive a first VRRP protocol packet sent by a first data center edge switch;
the sending module 52 is configured to forward a second VRRP protocol packet from the second data center egress gateway to the first data center edge switch after verifying that the first VRRP protocol packet matches the local forwarding policy;
and the establishing module 53 is configured to establish a communication channel between the second data center egress gateway and the first data center edge switch.
Optionally, in conjunction with fig. 5, as shown in fig. 5a, the apparatus 50 further includes:
the control module 54 is configured to enable a set local forwarding policy, where the local forwarding policy is used to allow a forwarding of a message with a destination address being a VRRP group address and an ARP message from an egress gateway of a second data center to a first data center edge switch when receiving a first VRRP protocol message sent by the first data center edge switch;
the control module 54 is further configured to stop forwarding, to the first data center edge switch, the message with the destination address being the VRRP group address and the ARP message from the second data center exit gateway when the first VRRP protocol message is not received within the predetermined time length.
In the communication device of the data center provided in the embodiment of the present application, when the first data center edge switch detects a failure of the first data center egress gateway, the first data center edge switch can send the first VRRP protocol packet to the second data center edge switch, and receives a second VRRP protocol message sent by the second data center edge switch after verifying that the local forwarding strategy of the second data center edge switch is matched with the first VRRP protocol message, therefore, a communication channel between the second data center exit gateway and the first data center host computer through the second data center edge switch and the first data center edge switch is established, the remote backup of the first data center exit gateway and the second data center exit gateway is realized, when the exit gateway of one data center fails, the reliability of the communication between the data center and the external network can be improved under the condition that the external network cannot communicate with the host of the data center.
As shown in fig. 6, an embodiment of the present application provides a communication system 60 of a data center, where the communication system includes a first data center 61 and a second data center 62, the first data center 61 may include a first data center edge switch 611 and a first data center egress gateway 612, and the second data center 62 may include a second data center edge switch 621 and a second data center egress gateway 622.
Specifically, the first data center edge switch 611 may be an edge switch that includes the communication apparatus 40 shown in fig. 4 or fig. 4a, and the second data center edge switch 621 may be an edge switch that includes the communication apparatus 50 shown in fig. 5 or fig. 5 a.
Through the above description of the embodiments, those skilled in the art will clearly understand that the present application can be implemented by software plus necessary general hardware, and certainly, the present application can also be implemented by hardware, but in many cases, the former is a better implementation. Based on such understanding, the technical solutions of the present application may be substantially implemented or a part of the technical solutions contributing to the prior art may be embodied in the form of a software product, where the computer software product is stored in a readable storage medium, such as a floppy disk, a hard disk, or an optical disk of a computer, and includes several instructions for enabling a computer device (which may be a personal computer, a server, or a network device) to execute the methods described in the embodiments of the present application.
The above description is only for the specific embodiments of the present application, but the scope of the present application is not limited thereto, and any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present application, and shall be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (10)
1. A communication method of a data center is characterized in that the communication method is applied to a communication system of the data center, the communication system includes a first data center and a second data center, the first data center including a first data center edge switch and a first data center egress gateway, the second data center includes a second data center edge switch and a second data center egress gateway, wherein the first data center edge switch establishes a two-layer connection with a first data center egress gateway and a second data center edge switch respectively, the second data center edge switch establishes a two-layer connection with a second data center egress gateway and the first data center edge switch respectively, the first data center edge switch, the first data center egress gateway, the second data center edge switch and the second data center egress gateway are located in the same Virtual Routing Redundancy Protocol (VRRP) group; under the condition that the first data center exit gateway and the second data center exit gateway are both in a normal state, the first data center exit gateway and the second data center exit gateway are isolated from each other; the method comprises the following steps:
the first data center edge switch detects that a first data center exit gateway is in fault and sends a first VRRP protocol message to a second data center edge switch;
the second data center edge switch receives a first VRRP protocol message sent by the first data center edge switch;
after verifying that the first VRRP protocol message is matched with a local forwarding strategy, the second data center edge switch forwards a second VRRP protocol message from a second data center exit gateway to the first data center edge switch;
the second data center edge switch establishes a communication channel between the second data center exit gateway and the first data center edge switch;
the first data center edge switch receives a second VRRP protocol message from a second data center exit gateway forwarded by the second data center edge switch;
the first data center edge switch learns the MAC address of the second data center exit gateway according to the second VRRP protocol message to establish an MAC forwarding table;
and the first data center edge switch establishes a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
2. The communication method of the data center is characterized by being applied to a first data center edge switch, wherein the first data center edge switch establishes two-layer connection with a first data center exit gateway and a second data center edge switch respectively, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are located in the same Virtual Routing Redundancy Protocol (VRRP) group; under the condition that the first data center exit gateway and the second data center exit gateway are both in a normal state, the first data center exit gateway and the second data center exit gateway are isolated from each other; the method comprises the following steps:
detecting the failure of a first data center exit gateway, and sending a first VRRP protocol message to a second data center edge switch;
receiving a second VRRP protocol message from a second data center exit gateway forwarded by the second data center edge switch;
learning the MAC address of the second data center exit gateway according to the second VRRP protocol message to establish an MAC forwarding table;
and establishing a communication channel between the second data center exit gateway and the first data center host through the MAC forwarding table.
3. The method of claim 2, wherein prior to the detecting the first data center egress gateway failure, the method further comprises:
enabling a set monitoring strategy, wherein the monitoring strategy is used for allowing a message with a destination address of the VRRP group address and an ARP message to be sent to the second data center edge switch when detecting that a first data center exit gateway is in fault; and when detecting that the first data center exit gateway is recovered to be normal, forbidding sending a message with a destination address of the VRRP group address and an ARP message to the second data center edge switch.
4. The communication method of the data center is characterized by being applied to a second data center edge switch, wherein the second data center edge switch establishes two-layer connection with a second data center exit gateway and a first data center edge switch respectively, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are located in the same Virtual Routing Redundancy Protocol (VRRP) group; under the condition that the first data center exit gateway and the second data center exit gateway are both in a normal state, the first data center exit gateway and the second data center exit gateway are isolated from each other; the method comprises the following steps:
receiving a first VRRP protocol message sent by the first data center edge switch;
after the first VRRP protocol message is verified to be matched with a local forwarding strategy, forwarding a second VRRP protocol message from an exit gateway of a second data center to the first data center edge switch;
establishing a communication channel between the second data center exit gateway and a first data center edge switch;
the second VRRP protocol packet is further configured to instruct the first data center edge switch to establish a communication channel between the second data center egress gateway and the first data center host.
5. The method of claim 4, wherein prior to the receiving the first VRRP protocol packet sent by the first data center edge switch, the method further comprises:
enabling a set local forwarding strategy, wherein the local forwarding strategy is used for allowing a message with a destination address of the VRRP group address and an ARP message from the exit gateway of the second data center to be forwarded to the first data center edge switch when the first VRRP protocol message sent by the first data center edge switch is received; and when the first VRRP protocol message is not received within a preset time length, stopping forwarding the message with the destination address of the outlet gateway of the second data center as the VRRP group address and the ARP message to the first data center edge switch.
6. The communication device of the data center is applied to a first data center edge switch, the first data center edge switch establishes two-layer connection with a first data center exit gateway and a second data center edge switch respectively, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are located in the same Virtual Routing Redundancy Protocol (VRRP) group; under the condition that the first data center exit gateway and the second data center exit gateway are both in a normal state, the first data center exit gateway and the second data center exit gateway are isolated from each other; the device comprises:
the sending module is used for detecting the failure of the first data center exit gateway and sending a first VRRP protocol message to a second data center edge switch;
the receiving module is used for receiving a second VRRP protocol message from a second data center exit gateway forwarded by the second data center edge switch;
the establishing module is used for establishing an MAC forwarding table according to the second VRRP protocol message learning MAC address of the second data center exit gateway;
the establishing module is further configured to establish a communication channel between the second data center egress gateway and the first data center host through the MAC forwarding table.
7. The apparatus of claim 6, further comprising:
the control module is used for starting a set monitoring strategy, and the monitoring strategy is used for allowing a message with a destination address being the VRRP group address and an ARP message to be sent to the second data center edge switch when detecting that the first data center exit gateway has a fault;
the control module is further configured to prohibit sending of a message with a destination address of the VRRP group address and an ARP message to the second data center edge switch when detecting that the first data center egress gateway is restored to normal.
8. The communication device of the data center is applied to a second data center edge switch, the second data center edge switch establishes two-layer connection with a second data center exit gateway and a first data center edge switch respectively, and the first data center edge switch, the first data center exit gateway, the second data center edge switch and the second data center exit gateway are positioned in the same Virtual Routing Redundancy Protocol (VRRP) group; under the condition that the first data center exit gateway and the second data center exit gateway are both in a normal state, the first data center exit gateway and the second data center exit gateway are isolated from each other; the device comprises:
the receiving module is used for receiving a first VRRP protocol message sent by the first data center edge switch;
the sending module is used for forwarding a second VRRP protocol message from an exit gateway of a second data center to the first data center edge switch after verifying that the first VRRP protocol message is matched with a local forwarding strategy;
the establishing module is used for establishing a communication channel between the second data center exit gateway and a first data center edge switch;
the second VRRP protocol packet is further configured to instruct the first data center edge switch to establish a communication channel between the second data center egress gateway and the first data center host.
9. The apparatus of claim 8, further comprising:
a control module, configured to enable a set local forwarding policy, where the local forwarding policy is used to allow forwarding, to a first data center edge switch, a packet whose destination address is the VRRP group address and an ARP packet from a second data center egress gateway when receiving a first VRRP protocol packet sent by the first data center edge switch;
the control module is further configured to stop forwarding, to the first data center edge switch, a message with a destination address of the VRRP group address and an ARP message from the second data center exit gateway when the first VRRP protocol message is not received within a predetermined time length.
10. A communication system of a data center, the communication system comprising a first data center egress gateway, a first data center edge switch as claimed in claim 6 or 7, a second data center egress gateway, and a second data center edge switch as claimed in claim 8 or 9.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711328855.7A CN107959626B (en) | 2017-12-13 | 2017-12-13 | Communication method, device and system of data center |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711328855.7A CN107959626B (en) | 2017-12-13 | 2017-12-13 | Communication method, device and system of data center |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107959626A CN107959626A (en) | 2018-04-24 |
CN107959626B true CN107959626B (en) | 2021-06-04 |
Family
ID=61958837
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711328855.7A Active CN107959626B (en) | 2017-12-13 | 2017-12-13 | Communication method, device and system of data center |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107959626B (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109309617A (en) * | 2018-08-08 | 2019-02-05 | 华为技术有限公司 | Disaster tolerance switching method, relevant device and computer storage medium |
CN110177007B (en) * | 2019-04-16 | 2022-03-18 | 平安科技(深圳)有限公司 | Method, device, computer equipment and storage medium for realizing gateway multi-place multi-activity |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105490937A (en) * | 2014-09-17 | 2016-04-13 | 华为技术有限公司 | Ethernet virtual network gateway switching method and service provider edge node equipment |
CN106533776A (en) * | 2016-11-29 | 2017-03-22 | 迈普通信技术股份有限公司 | VRRP (Virtual Router Redundancy Protocol) gateway, VRRP system and double-main detection and repair method |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1458147A1 (en) * | 2003-03-14 | 2004-09-15 | Siemens Aktiengesellschaft | Method and apparatus for configuring switches for routing traffic in a telecommunications network |
US9491121B2 (en) * | 2014-07-24 | 2016-11-08 | Lenovo Enterprise Solutions (Singapore) Pte. Ltd. | Controllable virtual link aggregation internet protocol forwarding |
CN106656791A (en) * | 2015-10-30 | 2017-05-10 | 华为技术有限公司 | Device state switching method, device and system |
-
2017
- 2017-12-13 CN CN201711328855.7A patent/CN107959626B/en active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105490937A (en) * | 2014-09-17 | 2016-04-13 | 华为技术有限公司 | Ethernet virtual network gateway switching method and service provider edge node equipment |
CN106533776A (en) * | 2016-11-29 | 2017-03-22 | 迈普通信技术股份有限公司 | VRRP (Virtual Router Redundancy Protocol) gateway, VRRP system and double-main detection and repair method |
Also Published As
Publication number | Publication date |
---|---|
CN107959626A (en) | 2018-04-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11902086B2 (en) | Method and system of a dynamic high-availability mode based on current wide area network connectivity | |
US11068362B2 (en) | High-availability cluster architecture and protocol | |
US10567340B2 (en) | Data center system | |
CN102904818B (en) | A kind of ARP information entry updating method and device | |
US7911941B2 (en) | Scheduling method for executing job, scheduling apparatus for executing job, and commutative recording medium having recorded thereon scheduling program for causing execution of job | |
CN102439903B (en) | Method, device and system for realizing disaster-tolerant backup | |
US20120170448A1 (en) | Method and Network System for Implementing User Port Orientation in Multi-Machine Backup Scenario of Broadband Remote Access Server | |
EP3024164A1 (en) | Switching method and apparatus for main and standby devices | |
CN102970160B (en) | The method and apparatus of a kind of auxiliary monitor terminal and standby server high-speed traffic | |
EP2696542A1 (en) | Method, ToR switch, and system for implementing protection switchover based on TRILL network | |
US7769862B2 (en) | Method and system for efficiently failing over interfaces in a network | |
CN108055163A (en) | A kind of dual-homed equipment and its protection switching method | |
CN102647304A (en) | Synchronizing method of address resolution protocols and device | |
CN107959626B (en) | Communication method, device and system of data center | |
US8935564B2 (en) | Method for backing up user information and apparatus in standby service node for backing up user information | |
WO2011110134A2 (en) | Method, device and broadband access server system for load share | |
JP2007208502A (en) | Communication system, backup router, redundant processing program thereof, and redundant processing method thereof | |
WO2009152700A1 (en) | Method, system and transfer device for managing the network device port status | |
KR20200072941A (en) | Method and apparatus for handling VRRP(Virtual Router Redundancy Protocol)-based network failure using real-time fault detection | |
JP4340731B2 (en) | Network fault monitoring processing system and method | |
CN106027313B (en) | Network link disaster tolerance system and method | |
CN115333994B (en) | Method and device for realizing VPN route rapid convergence and electronic equipment | |
CN111131035A (en) | Data transmission method and device | |
EP3720058B1 (en) | Method for configuring private line service, device, and storage medium | |
CN113037622B (en) | System and method for preventing BFD from vibrating |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |