CN109412926A - A kind of tunnel establishing method and device - Google Patents

A kind of tunnel establishing method and device Download PDF

Info

Publication number
CN109412926A
CN109412926A CN201811369370.7A CN201811369370A CN109412926A CN 109412926 A CN109412926 A CN 109412926A CN 201811369370 A CN201811369370 A CN 201811369370A CN 109412926 A CN109412926 A CN 109412926A
Authority
CN
China
Prior art keywords
tunnel
edge equipment
edge
host
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811369370.7A
Other languages
Chinese (zh)
Other versions
CN109412926B (en
Inventor
雷磊
黄李伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Information Technologies Co Ltd
Original Assignee
New H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd filed Critical New H3C Technologies Co Ltd
Priority to CN201811369370.7A priority Critical patent/CN109412926B/en
Publication of CN109412926A publication Critical patent/CN109412926A/en
Application granted granted Critical
Publication of CN109412926B publication Critical patent/CN109412926B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • H04L45/04Interdomain routing, e.g. hierarchical routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application provides a kind of tunnel establishing method and device, this method comprises: receiving the first via that second edge equipment is sent by notice message, the first via includes tunnel encapsulation type by notice message;The first via is by notice message specifically: Ethernet finds route messages automatically;Alternatively, ethernet segment route messages;If the tunnel encapsulation type is preset kind, the tunnel between the second edge equipment is established, the one end in the tunnel is the first edge equipment, and the other end is the second edge equipment.By the technical solution of the application, a kind of tunnel can be newly increased and establish mode.

Description

A kind of tunnel establishing method and device
Technical field
This application involves fields of communication technology, more particularly, to a kind of tunnel establishing method and device.
Background technique
Ethernet Virtual Private Network (Ethernet Virtual Private Network, EVPN) is a kind of two layers of void Quasi- dedicated network (Virtual Private Network, VPN) technology.It controls plane and uses Multiprotocol Border Gateway Protocol (Multi Protocol-Border Gateway Protocol, MP-BGP) notices routing iinformation, and data plane use can Extend Virtual Local Area Network (Virtual eXtensible Local Area Network, VXLAN) packaged type forwarding report Text.
It may include multiple main frames and multiple expansible Virtual Local Area Network endpoint of a tunnel (VXLAN in EVPN network Tunnel End Point, VTEP) equipment, VTEP equipment can be used as the edge device of EVPN network, place related with VXLAN Reason is carried out in VTEP equipment.
In order to make VTEP equipment be able to carry out VXLAN processing, then need to establish VXLAN tunnel between two VTEP equipment Road, for example, the tunnel VXLAN can be established using dynamical fashion.
Specifically, host A can send address resolution association to VTEP equipment 1 after the host A of access VTEP equipment 1 is online Discuss (Address Resolution Protocol, ARP) message.VTEP equipment 1, can basis after receiving the ARP message The ARP message generates forwarding-table item (such as forwarding-table item 1), and sends route messages to VTEP equipment 2, and VTEP equipment 2 can be with The tunnel VXLAN between VTEP equipment 2 and VTEP equipment 1 is established using the route messages.Further, VTEP equipment 2 is connecing After receiving the message that purpose equipment is host A, it can use the tunnel VXLAN for message and be sent to VTEP equipment 1, and VTEP is set Standby 1, which can use above-mentioned forwarding-table item 1, is sent to host A for message.
But if host A is a silent host, i.e., host A it is online after will not active transmission ARP message, then will not touch The process that VTEP equipment 1 sends route messages to VTEP equipment 2 is sent out, the tunnel VXLAN can not be established so as to cause VTEP equipment 2. Due to not setting up the tunnel VXLAN between VTEP equipment 2 and VTEP equipment 1, it is the message of host A for purpose equipment, VTEP equipment 2 can not be sent to VTEP equipment 1, then cause message that can not correctly be sent to host A, cause business to occur different Often.
Summary of the invention
The application provides a kind of tunnel establishing method and device, can newly increase a kind of tunnel and establish mode.
In a first aspect, the application provides a kind of tunnel establishing method, it is applied to first edge equipment, comprising:
The first via of second edge equipment transmission is received by notice message, the first via includes that tunnel seals by notice message Fill type;Wherein, the first via is by notice message specifically: Ethernet finds route messages automatically;Alternatively, ethernet segment road By message;
If the tunnel encapsulation type is preset kind, the tunnel between the second edge equipment is established, it is described The one end in tunnel is the first edge equipment, and the other end is the second edge equipment.
With reference to first aspect, in the first possible implementation, the first via further includes ether by notice message Network segment ES information, when the ES information is that the second edge equipment provides more ownership access services for host, with the host Corresponding ES information;
After the first via for receiving the transmission of second edge equipment is by notice message, the method also includes:
Determine whether the first edge equipment and the second edge equipment are the same host according to the ES information More ownership access services are provided.
With reference to first aspect, in the second possible implementation, between the foundation and the second edge equipment Tunnel after, the method also includes:
If the first via is identified by the first network of home network that notice message includes the second edge equipment, and described The network identity of the home network of first edge equipment is first network mark, then establishes the first network mark and institute State the mapping relations between the Tunnel Identifier in tunnel;
The secondary route notice message that second edge equipment is sent is received, the secondary route notice message includes first main Second network identity of the home network of machine address and the second edge equipment;
The mapping relations are inquired by second network identity, obtain tunnel corresponding with second network identity Mark;
The first forwarding-table item is generated, first forwarding-table item includes first host address and the first outgoing interface, institute Stating the first outgoing interface is the Tunnel Identifier.
With reference to first aspect, in the third possible implementation, between the foundation and the second edge equipment Tunnel after, the method also includes:
The third advertising of route message that second edge equipment is sent is received, the third advertising of route message includes second main Machine address;
According to the address information of the address information of the first edge equipment and the second edge equipment, described is determined Tunnel between one edge device and the second edge equipment;
The second forwarding-table item is generated, second forwarding-table item includes second host address and the second outgoing interface, institute State the Tunnel Identifier that the second outgoing interface is determining tunnel.
With reference to first aspect, in the fourth possible implementation, the preset kind specifically includes:
Expansible Virtual Local Area Network encapsulated type;Alternatively, network virtualization generic route encapsulation type;Alternatively, more associations Discuss Tag switching encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type;Alternatively, expansible virtual local area Network and puppy parc extend encapsulated type.
Second aspect, the application provide a kind of tunnel and establish device, are applied to first edge equipment, comprising:
Receiving module, for receiving the first via of second edge equipment transmission by notice message, first advertising of route Message includes tunnel encapsulation type;Wherein, the first via is by notice message specifically: Ethernet finds route messages automatically; Alternatively, ethernet segment route messages;
Module is established, for when the tunnel encapsulation type is preset kind, then establishing and the second edge equipment Between tunnel, the one end in the tunnel is the first edge equipment, and the other end is the second edge equipment.
In conjunction with second aspect, in the first possible implementation, the first via further includes ether by notice message Network segment ES information, when the ES information is that the second edge equipment provides more ownership access services for host, with the host Corresponding ES information;Described device further include:
Determining module, for determining whether are the first edge equipment and the second edge equipment according to the ES information More ownership access services are provided for the same host.
It is in the second possible implementation, described to establish module in conjunction with second aspect, it is also used to when the first via is by leading to When accusing the first network mark for the home network that message includes second edge equipment, if the home network of the first edge equipment Network identity be first network mark, then establish between first network mark and the Tunnel Identifier in the tunnel Mapping relations;
The receiving module, is also used to receive the secondary route notice message of second edge equipment transmission, and secondary route is logical Accuse the second network identity that message includes the home network of the first host address and second edge equipment;
Described device further include:
Enquiry module obtains and second network for inquiring the mapping relations by second network identity Identify corresponding Tunnel Identifier;
Generation module, for generate the first forwarding-table item, first forwarding-table item include first host address and First outgoing interface, first outgoing interface are the Tunnel Identifier.
In conjunction with second aspect, in the third possible implementation, the receiving module is also used to receive second edge The third advertising of route message that equipment is sent, the third advertising of route message include the second host address;
Described device further include:
Determining module, for being believed according to the address information of the first edge equipment and the address of the second edge equipment Breath, determines the tunnel between the first edge equipment and the second edge equipment;
Generation module, for generate the second forwarding-table item, second forwarding-table item include second host address and Second outgoing interface, second outgoing interface are the Tunnel Identifier in determining tunnel.
In conjunction with second aspect, in the fourth possible implementation, the preset kind is specifically included:
Expansible Virtual Local Area Network encapsulated type;Alternatively, network virtualization generic route encapsulation type;Alternatively, more associations Discuss Tag switching encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type;Alternatively, expansible virtual local area Network and puppy parc extend encapsulated type.
The third aspect, the application provide a kind of edge device, comprising: processor and machine readable storage medium, the machine Device readable storage medium storing program for executing is stored with the machine-executable instruction that can be executed by the processor;The processor is for executing machine Device executable instruction, to realize above-mentioned tunnel establishing method step.
Fourth aspect, the application provide a kind of machine readable storage medium, and the machine readable storage medium storage is organic Device executable instruction, for the machine-executable instruction when being called and being executed by processor, the machine-executable instruction can be with The processor is promoted to realize above-mentioned tunnel establishing method step.
By above technical scheme as it can be seen that in the embodiment of the present application, first edge equipment receives the transmission of second edge equipment The first via by notice message (such as Ethernet finds route messages (i.e. 1 class route messages) automatically, alternatively, ethernet segment route Message (i.e. 4 class route messages) etc.) after, so that it may establish tunnel, that is to say, that can 1 class route messages based on EVPN or 4 class route messages of person establish tunnel, and 2 class route messages, 3 class route messages or 5 the classes routing for being no longer dependent on EVPN disappear Breath establishes tunnel, in this way, can newly increase a kind of tunnel establishes mode, it is ensured that the correct foundation in tunnel.
Detailed description of the invention
It, below will be to the application in order to clearly illustrate the embodiment of the present application or technical solution in the prior art Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below Attached drawing is only some embodiments as described in this application, for those of ordinary skill in the art, can also be according to this Shen Please these attached drawings of embodiment obtain other attached drawings.
Fig. 1 is the application scenarios schematic diagram in a kind of embodiment of the application;
Fig. 2 is the flow chart of the tunnel establishing method in a kind of embodiment of the application;
Fig. 3 is the structure chart that device is established in tunnel in a kind of embodiment of the application;
Fig. 4 is the hardware structure diagram of the edge device in a kind of embodiment of the application.
Specific embodiment
In term used in this application merely for the sake of for the purpose of describing particular embodiments, rather than limit the application.This Shen Please it is also intended to the "an" of singular used in claims, " described " and "the" including most forms, unless Context clearly shows that other meanings.It is also understood that term "and/or" used herein refers to comprising one or more Associated any or all of project listed may combine.
It will be appreciated that though various information, but this may be described using term first, second, third, etc. in the application A little information should not necessarily be limited by these terms.These terms are only used to for same type of information being distinguished from each other out.For example, not departing from In the case where the application range, the first information can also be referred to as the second information, and similarly, the second information can also be referred to as One information.Depending on context, in addition, used word " if " can be construed to " ... when " or " when ... " Or " in response to determination ".
A kind of tunnel establishing method is proposed in the embodiment of the present application, this method can be applied to access networking using more ownership EVPN network.In EVPN network, in order to improve reliability, at least two edges equipment (such as VTEP equipment) can be passed through More ownership access services are provided for host (such as virtual machine (Virtual Machine, VM), physical server etc.).Referring to Fig. 1 institute Show, be the application scenarios schematic diagram of the embodiment of the present application, to provide more ownership access services as host by two edge devices For.In practical applications, more ownership access services can also be provided for host by more edge devices, this is not limited System.
Shown in Figure 1, edge device 121 and edge device 122 are used to provide more ownership access services for host 111. Wherein, the link between edge device 121 and host 111 is properly termed as ethernet segment (Ethernet Segment, ES), and (Ethernet Segment Identifier, ESI) can be identified by ethernet segment to indicate the ES.Edge device 122 with Link between host 111 is referred to as ES, and the ES can be indicated by ESI.Moreover, edge device 121 and master Link, edge device 122 between machine 111 and the link between host 111, can correspond to identical ESI.For example, edge is set The ESI of link is 1 between standby 121 and host 111, and the ESI of link is 1 between edge device 122 and host 111.
Shown in Figure 1, edge device 122 is connect with host 112, and EVPN network does not pass through multiple edge devices pair Host 112 provides more ownership access services.In addition, edge device 123 is connect with host 113, EVPN network does not pass through more A edge device provides more ownership access services to host 113.
In conclusion EVPN network may include multiple edge devices in the embodiment of the present application, it, can in order to distinguish conveniently These edge devices are known as first edge equipment and second edge equipment.Wherein, it will be used to provide more ownership for host to connect An edge device for entering service is known as second edge equipment, and remaining edge device is known as first edge equipment.For example, Edge device 121 can be known as second edge equipment, edge device 122 and edge device 123 are known as first edge equipment. Alternatively, edge device 122 can be known as second edge equipment, edge device 121 and edge device 123 are known as first edge Equipment.
It is shown in Figure 2 under above-mentioned application scenarios, it is the flow diagram of tunnel establishing method.
Step 201, second edge equipment sends the first via by notice message, first advertising of route to first edge equipment Message may include tunnel encapsulation type.
Step 202, first edge equipment receives the first via of second edge equipment transmission by notice message.
In one example, the first via can include but is not limited to by notice message: Ethernet finds route messages automatically (i.e. 1 class route messages);Alternatively, ethernet segment route messages (i.e. 4 class route messages).Ethernet finds to route automatically (Ethernet Auto Discovery Route) message can be the advertising of route message based on MP-BGP, for returning more Belong to and notices ES information in networking, i.e. the 1 class routing of EVPN.Ethernet segment routes (Ethernet Segment Route) message can To be the advertising of route message based on MP-BGP, for noticing ES information and VTEP information in multi-home networking, i.e., the 4 of EVPN Class routing.
In one example, the first via can carry extended community attribute by notice message, and the extended community attribute can To include tunnel encapsulation type (Tunnel Encapsulation) field, this tunnel encapsulation type field may include but not It is limited to: expansible Virtual Local Area Network encapsulated type;Alternatively, network virtualization generic route encapsulation type;Alternatively, multi-protocols mark Label exchange encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type;Alternatively, expansible Virtual Local Area Network Encapsulated type is extended with puppy parc.
For example, indicating that expansible Virtual Local Area Network (VXLAN) encapsulates class when the value of tunnel encapsulation type field is 8 Type.When the value of tunnel encapsulation type field is 9, network virtualization generic route encapsulation (Network is indicated Virtualization using Generic Routing Encapsulation, NVGRE) encapsulated type.Work as tunnel encapsulation When the value of type field is 10, indicate multiprotocol label switching (Multi Protocol Label Switching, MPLS) Encapsulated type.When the value of tunnel encapsulation type field is 11, multiprotocol label switching and generic route encapsulation are indicated (Multi Protocol Label Switching in Generic Routing Encapsulation, MPLS in GRE) Encapsulated type.When the value of tunnel encapsulation type field is 12, expansible Virtual Local Area Network and puppy parc extension are indicated (Virtual eXtensible Local Area Network Generic Protocol Extension, VXLAN GPE) Encapsulated type.
Step 203, if tunnel encapsulation type is preset kind, first edge equipment is established between second edge equipment Tunnel, the one end in the tunnel is first edge equipment, and the other end is second edge equipment.For example, first edge equipment can be with According to the address information of address information (such as IP address) and second edge equipment of first edge equipment, first edge equipment is established With the tunnel between second edge equipment, such as the tunnel VXLAN.
Specifically, first edge equipment is after receiving the first via by notice message, from the first via by obtaining in notice message Tunnel encapsulation type is taken, if the tunnel encapsulation type is preset kind, first edge equipment can be according to first edge equipment IP address and the IP address of second edge equipment establish the tunnel VXLAN (subsequent be known as VXLAN tunnel A).For example, VXLAN tunnel The source IP address of road A can be the IP address of first edge equipment, and the purpose IP address of the tunnel VXLAN A can be second edge The IP address of equipment.
In one example, can make an appointment preset kind, which establishes the tunnel VXLAN for triggering.Example Such as, agreement VXLAN encapsulated type is preset kind, or agreement NVGRE encapsulated type is preset kind, or agreement MPLS encapsulates class Type is preset kind, or agreement MPLS in GRE encapsulated type is preset kind, or agreement VXLAN GPE encapsulated type is pre- It is without limitation if type.
In subsequent process, for arranging VXLAN encapsulated type and be preset kind.Based on this, second edge equipment is being sent out When sending the first via by notice message, if desired the tunnel VXLAN is established in triggering, then sets VXLAN encapsulation for tunnel encapsulation type Type (such as value of tunnel encapsulation type field is 8).If not needing triggering establishes the tunnel VXLAN, not by tunnel encapsulation class Type is set as VXLAN encapsulated type.
Further, first edge equipment is receiving the first via by notice message, and from the first via by notice message After getting tunnel encapsulation type, if the tunnel encapsulation type is VXLAN encapsulated type, then it represents that need to establish the tunnel VXLAN, Therefore, the tunnel VXLAN A can be established according to the IP address of first edge equipment and the IP address of second edge equipment.If the tunnel Road encapsulated type is not VXLAN encapsulated type, then it represents that does not need to establish the tunnel VXLAN, therefore, can not resettle VXLAN Tunnel A.
In one example, it is established according to the IP address of first edge equipment and the IP address of second edge equipment Before the tunnel VXLAN A, the IP address of the available second edge equipment of first edge equipment.Specifically, if the first advertising of route It include the IP address of second edge equipment in message, then first edge equipment can be from the first via by obtaining second in notice message The IP address of edge device.Alternatively, since second edge equipment is the bgp neighbor of first edge equipment, and first edge equipment IP address configured with bgp neighbor, therefore, first edge equipment can be using the IP address of bgp neighbor as second edge equipment IP address.
In conclusion itself available IP address of first edge equipment, and the IP address of second edge equipment is obtained, Then the tunnel VXLAN A is established using the IP address of the IP address of itself and second edge equipment.
By above technical scheme as it can be seen that in the embodiment of the present application, first edge equipment is receiving second edge equipment hair After the advertising of route message (such as 1 class route messages or 4 class route messages) sent, so that it may establish the tunnel VXLAN, it can be based on The 1 class route messages or 4 class route messages of EVPN establish the tunnel VXLAN, and are no longer dependent on the 2 class route messages of EVPN (MAC/IP Advertisement Route, for noticing MAC (Media Access Control Address, medium access Control) address and IP address routing), 3 class route messages (Inclusive Multicast Ethernet Tag Route, For noticing multicast ether label routing) or 5 class route messages (IP Prefix route, for noticing the routing of IP prefix) The tunnel VXLAN is established, a kind of tunnel VXLAN is increased newly and establishes mode, guarantee the correct foundation in the tunnel VXLAN.
Optionally, in one example, the first via can also include ES information (such as ESI), and the ES by notice message When information is that second edge equipment provides more ownership access services for host, ES information corresponding with the host.Based on this, first After the first via that edge device reception second edge equipment is sent is by notice message, first edge equipment can also be according to the ES Information determine first edge equipment and second edge equipment whether for the same host provide belong to access services, and according to true Determine result to perform corresponding processing.
Wherein, when second edge equipment provides more ownership access service for host, then second edge equipment can be to the One edge device sends the first via by notice message, which may include that ES corresponding with the host believes by notice message Breath, and first edge equipment can receive the first via by notice message.
It is shown in Figure 1, it is edge device 121 with second edge equipment, first edge equipment is edge device 122 and side For edge equipment 123.Since edge device 121 and edge device 122 are used to provide more ownership access services for host 111, because This, edge device 121 can send the first via by notice message to edge device 122 and edge device 123, and the first via is by leading to Accusing message may include ES information corresponding with host 111, which can be between edge device 121 and host 111 The ESI of link, such as ESI1.In this way, edge device 122 and edge device 123 can receive the first via by notice message.
It, can be with after edge device 122 receives the first via by notice message by taking the treatment process of edge device 122 as an example From the first via by getting ESI1 in notice message.Since edge device 122 is used to provide more ownership access clothes for host 111 Business, and the ESI of the link between edge device 122 and host 111 is therefore ESI1 can use the first via by notice message In ESI1, determine edge device 122 and edge device 121 be the same host 111 provide belong to access services, then adopt With the processing mode of more ownership access services.
When using the processing mode of more ownership access services, in edge device 122 and edge device 121, only 1 Edge device sends broadcasting packet to host 111.Broadcast report is sent to host 111 for example, arranging the small edge device of IP address Text.Based on this, edge device 122 is when receiving the broadcasting packet of the transmission of edge device 123, it is assumed that the IP of edge device 122 Address is small, then can forward the broadcasting packet to host 111;Assuming that the IP address of edge device 122 is big, then no longer to host 111 forward the broadcasting packet.
Certainly, the processing mode of above-mentioned more ownership access services is an example, without limitation.
By taking the treatment process of edge device 123 as an example, edge device 123, can after receiving the first via by notice message With from the first via by getting ESI1 in notice message.Since edge device 123 does not provide more ownership access clothes for host 111 Business, hence, it can be determined that edge device 123 and edge device 121 are not to provide more ownership access services for the same host, no Need the processing mode using more ownership access services.
Further, shown in Figure 1, it is assumed that host 111 is a silent host, i.e., host 111 it is online after do not send ARP message, then will not trigger edge device 121 to edge device 122 and edge device 123 send EVPN 2 class route messages, 3 class route messages or 5 class route messages.But edge device 121 can be sent to edge device 122 and edge device 123 The 1 class route messages or 4 class route messages of EVPN.Therefore, edge device 122 and edge device 123 can not be routed based on 2 classes Message, 3 class route messages or 5 class route messages come establish with the associated tunnel VXLAN of edge device 121, but can be based on 1 Class route messages or 4 class route messages are established and the associated tunnel VXLAN of edge device 121.
In this way, edge device 122 can pass through VXLAN tunnel if host 112 sends the message that destination address is host 111 Message is sent to edge device 121 by road, and message is sent to host 111 by edge device 121.If host 113 sends destination Location is the message of host 111, and message can be sent to edge device 121 by the tunnel VXLAN by edge device 123, and edge is set Message is sent to host 111 by standby 121.
Optionally, in the above-described embodiments, the first via can also include route target (Route by notice message Target, RT) attribute.Based on this, first edge equipment can also compare the first via by leading to before establishing the tunnel VXLAN A Whether the RT attribute that announcement message includes and the RT attribute that first edge equipment is locally configured are identical.If identical, first edge Equipment can establish the tunnel VXLAN A.If it is different, then first edge equipment can abandon the first via by notice message, without building The vertical tunnel VXLAN A.
Optionally, in the above-described embodiments, the first via can also be including the home network of second edge equipment by notice message The first network of network (i.e. VXLAN network) identifies (such as VXLAN network identifier (VXLAN Network Identifier, VNI) Deng), it is subsequent by taking this first network is identified as network identity R as an example.
Based on this, first edge equipment is established after the tunnel the VXLAN A between second edge equipment, can also be compared Whether the network identity R that the first via includes by notice message is identical as the network identity of the home network of first edge equipment. If identical, i.e., the network identity of the home network of first edge equipment is also the network identity R, then first edge equipment is also It can establish the mapping relations between the Tunnel Identifier (such as VXLAN tunnel A) of the network identity R and tunnel VXLAN A.
Optionally, in one example, first edge equipment establish and second edge equipment between the tunnel VXLAN A it Afterwards, the tunnel VXLAN A can also be learnt into the forwarding-table item of first edge equipment, is turned to arrive the tunnel VXLAN A study In forwarding list item, then it can be handled in the following way.
Situation one, second edge equipment send secondary route notice message, secondary route notice to first edge equipment Message may include the second network identity of the home network of the first host address and second edge equipment.First edge equipment exists After the secondary route notice message for receiving the transmission of second edge equipment, above-mentioned mapping can be inquired by second network identity Relationship (i.e. the mapping relations of the Tunnel Identifier of network identity and the tunnel VXLAN), to obtain corresponding with second network identity The tunnel VXLAN Tunnel Identifier.Then, the first forwarding-table item can be generated in first edge equipment, which can To include first host address and the first outgoing interface, first outgoing interface is the Tunnel Identifier in the tunnel VXLAN.
Shown in Figure 1, edge device 121 may learn the host address of host 111 (such as IP address and/or MAC Location etc.), for example, edge device 121 can be with the host address for the ARP message study host 111 that Intrusion Detection based on host 111 is sent, to this With no restrictions.Then, edge device 121 can send secondary route notice message to edge device 122 and edge device 123 (the 2 class route messages of such as EVPN), which may include the host address and network identity of host 111 R。
Edge device 122 is logical by secondary route after the secondary route notice message for receiving the transmission of edge device 121 It accuses the network identity R that message includes and inquires above-mentioned mapping relations, obtain the Tunnel Identifier of the tunnel VXLAN A.Then, edge device 122 generate forwarding-table item, which may include the host address and outgoing interface of host 111, and the outgoing interface is The Tunnel Identifier of the tunnel VXLAN A.
Further, edge device 122 is based on after the message for receiving the host address that destination address is host 111 The forwarding-table item can send the message to edge device 121 by the tunnel VXLAN A.
In addition, edge device 123 receives the process flow of secondary route notice message, received with edge device 122 The process flow of secondary route notice message is similar, and it is no longer repeated herein.
In the above-described embodiments, forwarding-table item can be two-layer retransmitting table item (such as MAC forwarding-table item), be also possible to three Layer retransmitting table item (such as route forwarding table items), with no restrictions to this forwarding-table item.
Situation two, second edge equipment send third advertising of route message, the third advertising of route to first edge equipment Message may include the second host address.First edge equipment disappears in the third advertising of route for receiving the transmission of second edge equipment After breath, first edge equipment can be determined according to the address information of first edge equipment and the address information of second edge equipment The tunnel VXLAN between second edge equipment.Then, the second forwarding-table item can be generated in first edge equipment, and this second turn Forwarding list item may include second host address and the second outgoing interface, and second outgoing interface is the tunnel mark in the tunnel VXLAN Know.
Shown in Figure 1, edge device 121 may learn the host address of host 111 (such as IP address and/or MAC Location etc.), and third advertising of route message (the 2 class route messages of such as EVPN) are sent to edge device 122, third routing is logical Accuse the host address that message may include host 111.
Edge device 122 is set after receiving third advertising of route message according to the IP address of edge device 121 and edge Standby 122 IP address, determines the tunnel VXLAN between edge device 122 and edge device 121, the i.e. tunnel VXLAN A.Edge is set Standby 122 generate forwarding-table items, which may include the host address and outgoing interface of host 111, and the outgoing interface For the Tunnel Identifier of the tunnel VXLAN A.
In the above-described embodiments, forwarding-table item can be two-layer retransmitting table item (such as MAC forwarding-table item), be also possible to three Layer retransmitting table item (such as route forwarding table items), with no restrictions to this forwarding-table item.
Wherein, edge device 122 determines edge according to the IP address of edge device 121 and the IP address of edge device 122 Before the tunnel VXLAN between equipment 122 and edge device 121, the IP address of edge device 121 can also be obtained.Specifically, If third advertising of route message includes the IP address of edge device 121, edge can be obtained from third advertising of route message The IP address of equipment 121.Alternatively, since edge device 121 is the bgp neighbor of edge device 122, and edge device 122 configures There is the IP address of bgp neighbor, therefore edge device 122 can be using the IP address of bgp neighbor as the IP of edge device 121 Location.
Based on similarly applying conceiving with the above method, the embodiment of the present application also proposes that device is established in a kind of tunnel, application Shown in Figure 3 in first edge equipment, for the structure chart of the device, which includes:
Receiving module 31, for receive second edge equipment transmission the first via by notice message, the first via is by leading to Accusing message includes tunnel encapsulation type;Wherein, the first via is by notice message specifically: Ethernet finds that routing disappears automatically Breath;Alternatively, ethernet segment route messages;
Module 32 is established, for when the tunnel encapsulation type is preset kind, then establishing and setting with the second edge Tunnel between standby, the one end in the tunnel are the first edge equipment, and the other end is the second edge equipment.
In one example, the first via further includes ES information by notice message, and the ES information is second side When edge equipment provides more ownership access services for host, ES information corresponding with the host;
Described device further includes (not shown): determining module, for determining first side according to the ES information Whether edge equipment and the second edge equipment provide for the same host belongs to access services more.
In one example, described to establish module 32, it is also used to when the first via include second edge equipment by notice message Home network first network mark when, if the network identity of the home network of the first edge equipment be first net Network mark then establishes the mapping relations between the first network mark and the Tunnel Identifier in the tunnel;
The receiving module 31 is also used to receive the secondary route notice message that the second edge equipment is sent, described Secondary route notice message includes the second network identity of the home network of the first host address and the second edge equipment;
Described device further includes (not shown in FIG.):
Enquiry module obtains and second network for inquiring the mapping relations by second network identity Identify corresponding Tunnel Identifier;
Generation module, for generate the first forwarding-table item, first forwarding-table item include first host address and First outgoing interface, first outgoing interface are the Tunnel Identifier.
In one example, the receiving module 31 is also used to receive the third advertising of route of second edge equipment transmission Message, the third advertising of route message include the second host address;
Described device further includes (not shown in FIG.):
Determining module, for being believed according to the address information of the first edge equipment and the address of the second edge equipment Breath, determines the tunnel between the first edge equipment and the second edge equipment;
Generation module, for generate the second forwarding-table item, second forwarding-table item include second host address and Second outgoing interface, second outgoing interface are the Tunnel Identifier in determining tunnel.
The preset kind specifically includes: expansible Virtual Local Area Network encapsulated type;Alternatively, the general road of network virtualization By encapsulated type;Alternatively, multiprotocol label switching encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type; Alternatively, expansible Virtual Local Area Network and puppy parc extend encapsulated type.
The edge device (such as first edge equipment) provided in the embodiment of the present application, for hardware view, hardware structure Schematic diagram may refer to shown in Fig. 4.It include: machine readable storage medium and processor, in which:
Machine readable storage medium: store instruction code.
Processor: communicating with machine readable storage medium, read and execute stored in machine readable storage medium it is described Instruction code realizes that operation is established in tunnel disclosed in the application above-mentioned example.
Here, machine readable storage medium can be any electronics, magnetism, optics or other physical storage devices, can be with Include or store information, such as executable instruction, data, etc..For example, machine readable storage medium may is that RAM (Radom Access Memory, random access memory), volatile memory, nonvolatile memory, flash memory, memory driver is (as hard Disk drive), solid state hard disk, any kind of storage dish (such as CD, dvd) perhaps similar storage medium or they Combination.
System, device, module or the unit that above-described embodiment illustrates can specifically realize by computer chip or entity, Or it is realized by the product with certain function.A kind of typically to realize that equipment is computer, the concrete form of computer can To be personal computer, laptop computer, cellular phone, camera phone, smart phone, personal digital assistant, media play In device, navigation equipment, E-mail receiver/send equipment, game console, tablet computer, wearable device or these equipment The combination of any several equipment.
For convenience of description, it is divided into various units when description apparatus above with function to describe respectively.Certainly, implementing this The function of each unit can be realized in the same or multiple software and or hardware when application.
It should be understood by those skilled in the art that, embodiments herein can provide as method, system or computer program Product.Therefore, complete hardware embodiment, complete software embodiment or reality combining software and hardware aspects can be used in the application Apply the form of example.Moreover, it wherein includes computer usable program code that the embodiment of the present application, which can be used in one or more, The computer implemented in computer-usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) The form of program product.
The application is referring to method, the process of equipment (system) and computer program product according to the embodiment of the present application Figure and/or block diagram describe.It is generally understood that being realized by computer program instructions each in flowchart and/or the block diagram The combination of process and/or box in process and/or box and flowchart and/or the block diagram.It can provide these computer journeys Sequence instruct to general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices processor with A machine is generated, so that the instruction generation executed by computer or the processor of other programmable data processing devices is used for Realize the dress for the function of specifying in one or more flows of the flowchart and/or one or more blocks of the block diagram It sets.
Moreover, these computer program instructions also can store be able to guide computer or other programmable datas processing set In standby computer-readable memory operate in a specific manner, so that instruction stored in the computer readable memory generates Manufacture including command device, the command device are realized in one process of flow chart or multiple processes and/or block diagram one The function of being specified in a box or multiple boxes.
These computer program instructions can also be loaded into computer or other programmable data processing devices, so that counting Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer Or the instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram The step of function of being specified in one box or multiple boxes.
The above description is only an example of the present application, is not intended to limit this application.For those skilled in the art For, various changes and changes are possible in this application.All any modifications made within the spirit and principles of the present application are equal Replacement, improvement etc., should be included within the scope of the claims of this application.

Claims (10)

1. a kind of tunnel establishing method, which is characterized in that be applied to first edge equipment, comprising:
The first via of second edge equipment transmission is received by notice message, the first via includes tunnel encapsulation class by notice message Type;Wherein, the first via is by notice message specifically: Ethernet finds route messages automatically;Alternatively, ethernet segment routing disappears Breath;
If the tunnel encapsulation type is preset kind, the tunnel between the second edge equipment, the tunnel are established One end be the first edge equipment, the other end be the second edge equipment.
2. the method according to claim 1, wherein the first via further includes ethernet segment ES by notice message Information, it is corresponding with the host when ES information is that the second edge equipment provides more ownership access services for host ES information;
After the first via for receiving the transmission of second edge equipment is by notice message, the method also includes:
Determine whether the first edge equipment and the second edge equipment provide for the same host according to the ES information More ownership access services.
3. the method according to claim 1, wherein the tunnel between the foundation and the second edge equipment Later, the method also includes:
If the first via is identified by the first network of home network that notice message includes the second edge equipment, and described first The network identity of the home network of edge device is first network mark, then establishes the first network mark and the tunnel Mapping relations between the Tunnel Identifier in road;
The secondary route notice message that second edge equipment is sent is received, the secondary route notice message is including the first host Second network identity of the home network of location and the second edge equipment;
The mapping relations are inquired by second network identity, obtain tunnel mark corresponding with second network identity Know;
Generating the first forwarding-table item, first forwarding-table item includes first host address and the first outgoing interface, and described One outgoing interface is the Tunnel Identifier.
4. the method according to claim 1, wherein the tunnel between the foundation and the second edge equipment Later, the method also includes:
The third advertising of route message that second edge equipment is sent is received, the third advertising of route message is including the second host Location;
According to the address information of the address information of the first edge equipment and the second edge equipment, first side is determined Tunnel between edge equipment and the second edge equipment;
Generating the second forwarding-table item, second forwarding-table item includes second host address and the second outgoing interface, and described Two outgoing interfaces are the Tunnel Identifier in determining tunnel.
5. the method according to claim 1, wherein the preset kind specifically includes:
Expansible Virtual Local Area Network encapsulated type;Alternatively, network virtualization generic route encapsulation type;Alternatively, multi-protocols mark Label exchange encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type;Alternatively, expansible Virtual Local Area Network Encapsulated type is extended with puppy parc.
6. device is established in a kind of tunnel, which is characterized in that be applied to first edge equipment, comprising:
Receiving module, for receive second edge equipment transmission the first via by notice message, the first via is by notice message Including tunnel encapsulation type;Wherein, the first via is by notice message specifically: Ethernet finds route messages automatically;Alternatively, Ethernet segment route messages;
Module is established, for when the tunnel encapsulation type is preset kind, then establishing between the second edge equipment Tunnel, the one end in the tunnel is the first edge equipment, and the other end is the second edge equipment.
7. device according to claim 6, which is characterized in that the first via further includes ethernet segment ES by notice message Information, it is corresponding with the host when ES information is that the second edge equipment provides more ownership access services for host ES information;Described device further include:
Determining module, for determining whether the first edge equipment and the second edge equipment are same according to the ES information One host provides more ownership access services.
8. device according to claim 6, which is characterized in that
It is described to establish module, it is also used to when the first via include the first network of the home network of second edge equipment by notice message When mark, if the network identity of the home network of the first edge equipment is first network mark, described the is established Mapping relations between one network identity and the Tunnel Identifier in the tunnel;
The receiving module, is also used to receive the secondary route notice message of second edge equipment transmission, and secondary route notice disappears Breath includes the second network identity of the home network of the first host address and second edge equipment;
Described device further include:
Enquiry module obtains and second network identity for inquiring the mapping relations by second network identity Corresponding Tunnel Identifier;
Generation module, for generating the first forwarding-table item, first forwarding-table item includes first host address and first Outgoing interface, first outgoing interface are the Tunnel Identifier.
9. device according to claim 6, which is characterized in that
The receiving module, is also used to receive the third advertising of route message of second edge equipment transmission, and the third routing is logical Accusing message includes the second host address;
Described device further include:
Determining module, for according to the address information of the first edge equipment and the address information of the second edge equipment, Determine the tunnel between the first edge equipment and the second edge equipment;
Generation module, for generating the second forwarding-table item, second forwarding-table item includes second host address and second Outgoing interface, second outgoing interface are the Tunnel Identifier in determining tunnel.
10. device according to claim 6, which is characterized in that the preset kind specifically includes:
Expansible Virtual Local Area Network encapsulated type;Alternatively, network virtualization generic route encapsulation type;Alternatively, multi-protocols mark Label exchange encapsulated type;Alternatively, multiprotocol label switching and generic route encapsulation type;Alternatively, expansible Virtual Local Area Network Encapsulated type is extended with puppy parc.
CN201811369370.7A 2018-11-16 2018-11-16 Tunnel establishment method and device Active CN109412926B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811369370.7A CN109412926B (en) 2018-11-16 2018-11-16 Tunnel establishment method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811369370.7A CN109412926B (en) 2018-11-16 2018-11-16 Tunnel establishment method and device

Publications (2)

Publication Number Publication Date
CN109412926A true CN109412926A (en) 2019-03-01
CN109412926B CN109412926B (en) 2021-04-27

Family

ID=65473541

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811369370.7A Active CN109412926B (en) 2018-11-16 2018-11-16 Tunnel establishment method and device

Country Status (1)

Country Link
CN (1) CN109412926B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112311645A (en) * 2019-07-31 2021-02-02 中兴通讯股份有限公司 Method, system and first GW for realizing DCI three-layer communication
CN112511401A (en) * 2020-11-19 2021-03-16 锐捷网络股份有限公司 Network connection method, device, equipment and medium
CN113765783A (en) * 2021-08-05 2021-12-07 新华三大数据技术有限公司 Communication method and device
CN113872845A (en) * 2020-06-30 2021-12-31 华为技术有限公司 Method for establishing VXLAN tunnel and related equipment
WO2024037515A1 (en) * 2022-08-18 2024-02-22 维沃移动通信有限公司 Message transmitting method, communication device, and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337865A (en) * 2014-06-03 2016-02-17 华为技术有限公司 Method, apparatus and system for establishing forwarding table item
US20180109400A1 (en) * 2016-10-17 2018-04-19 Cisco Technology, Inc. Ethernet tag mapping in virtual private wire service using ethernet virtual private network
CN108494686A (en) * 2018-02-28 2018-09-04 新华三技术有限公司 Route processing method and device
CN108574616A (en) * 2017-03-14 2018-09-25 华为技术有限公司 A kind of method, equipment and the system of processing routing
CN108600109A (en) * 2018-03-19 2018-09-28 新华三技术有限公司 A kind of message forwarding method and device

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337865A (en) * 2014-06-03 2016-02-17 华为技术有限公司 Method, apparatus and system for establishing forwarding table item
US20180109400A1 (en) * 2016-10-17 2018-04-19 Cisco Technology, Inc. Ethernet tag mapping in virtual private wire service using ethernet virtual private network
CN108574616A (en) * 2017-03-14 2018-09-25 华为技术有限公司 A kind of method, equipment and the system of processing routing
CN108494686A (en) * 2018-02-28 2018-09-04 新华三技术有限公司 Route processing method and device
CN108600109A (en) * 2018-03-19 2018-09-28 新华三技术有限公司 A kind of message forwarding method and device

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112311645A (en) * 2019-07-31 2021-02-02 中兴通讯股份有限公司 Method, system and first GW for realizing DCI three-layer communication
CN113872845A (en) * 2020-06-30 2021-12-31 华为技术有限公司 Method for establishing VXLAN tunnel and related equipment
CN112511401A (en) * 2020-11-19 2021-03-16 锐捷网络股份有限公司 Network connection method, device, equipment and medium
CN113765783A (en) * 2021-08-05 2021-12-07 新华三大数据技术有限公司 Communication method and device
CN113765783B (en) * 2021-08-05 2022-11-18 新华三大数据技术有限公司 Communication method and device
WO2024037515A1 (en) * 2022-08-18 2024-02-22 维沃移动通信有限公司 Message transmitting method, communication device, and storage medium

Also Published As

Publication number Publication date
CN109412926B (en) 2021-04-27

Similar Documents

Publication Publication Date Title
US10778532B2 (en) Overlay network movement operations
CN109412926A (en) A kind of tunnel establishing method and device
EP3044917B1 (en) Virtual network routing
EP3267638B1 (en) Reducing arp/nd flooding in cloud environment
US9246799B2 (en) Data plane learning of bi-directional service chains
US20150358232A1 (en) Packet Forwarding Method and VXLAN Gateway
US20200366524A1 (en) Forwarding entry generation
US10461958B2 (en) Packet transmission method and apparatus
JP6633775B2 (en) Packet transmission
CN109104364B (en) Designated forwarder election method and device
JP2020520612A (en) Packet transmission method, edge device, and machine-readable storage medium
CN108600074B (en) Method and device for forwarding multicast data message
CN108600109A (en) A kind of message forwarding method and device
CN109412949B (en) Data message transmission method and device
CN108718278A (en) A kind of message transmitting method and device
CN109729012A (en) A kind of unicast message transmission method and device
CN108965092A (en) A kind of data message transmission method and device
CN109379241A (en) A kind of routing information determines method and device
CN108718276A (en) A kind of message forwarding method and device
CN112350938A (en) Path detection method and device
CN108471374B (en) Data message forwarding method and device
CN108632125B (en) Multicast table item management method, device, equipment and machine readable storage medium
CN107800628B (en) Data forwarding device and data forwarding method for software defined network
CN113497757B (en) Inter-domain shortest path segment routing using domain segment identifiers
US9763135B1 (en) Load balancing with mobile resources

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20230602

Address after: 310052 11th Floor, 466 Changhe Road, Binjiang District, Hangzhou City, Zhejiang Province

Patentee after: H3C INFORMATION TECHNOLOGY Co.,Ltd.

Address before: 310052 Changhe Road, Binjiang District, Hangzhou, Zhejiang Province, No. 466

Patentee before: NEW H3C TECHNOLOGIES Co.,Ltd.

TR01 Transfer of patent right