CN109756409A - Bridge-connection transmitting method - Google Patents

Bridge-connection transmitting method Download PDF

Info

Publication number
CN109756409A
CN109756409A CN201711057679.8A CN201711057679A CN109756409A CN 109756409 A CN109756409 A CN 109756409A CN 201711057679 A CN201711057679 A CN 201711057679A CN 109756409 A CN109756409 A CN 109756409A
Authority
CN
China
Prior art keywords
interface
internal virtual
data
l3vpn
virtual bridge
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201711057679.8A
Other languages
Chinese (zh)
Other versions
CN109756409B (en
Inventor
张树冲
钟秀琼
蔡广平
李爱民
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201711057679.8A priority Critical patent/CN109756409B/en
Publication of CN109756409A publication Critical patent/CN109756409A/en
Application granted granted Critical
Publication of CN109756409B publication Critical patent/CN109756409B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

The present invention provides a kind of bridge-connection transmitting methods, wherein this method comprises: receiving data on flows from first kind network;Mouth is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain the data on flows;The data on flows is forwarded to Second Type network by internal virtual bridge interface;Wherein, the functional parameter of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute.Through the invention, it solves the technical problem that virtual bridge interface forwarding performance is low in the related technology, reduces equipment purchase cost.

Description

Bridge-connection transmitting method
Technical field
The present invention relates to the communications fields, in particular to a kind of bridge-connection transmitting method.
Background technique
In the related technology, the internal virtual interface of load bearing equipment has general ether logic interfacing (UNIVERSAL LOGIC ETHER INTERFACE, ULEI) bridge joint mouth, virtual bridge interface (BRIDGE Virtual INTERFACE, BVI) bridge joint mouth etc. Deng.ULEI bridge joint mouth, BVI bridge joint mouth needs are organized in pairs, and are configured and be bundled into pair with order, and two kinds of realization principles are as follows:
ULEI (general ether logic interfacing) interface realization principle, Fig. 1 are that ULEI turns aspect base to the present invention in the related technology Present principles figure, as shown in Figure 1.Two layers to three layers bridges forward may be implemented in ULEI virtual interface, also may be implemented three layers to two layers Bridges forward.As shown in Figure 1, when ULEI realizes that the principle of three layers to two layers forwarding is the interface come in first according to message On L 3 virtual LAN ID (Virtual Private Network IDENTIFICATION, VPNID) and message in Network protocol destination address (DESTINATION INTERNET PROTOCOL, DIP) look into three-layer routing forwarding table obtain routing Table deliver in outgoing interface, outgoing interface be ULEI interface, the VPNID and report that look into ULEI interface are removed by project forwarding surface loopback The medium access control destination address (DESTINATION Media Access Control, DMAC) of text looks into two layers of forwarding information Table is gone out;ULEI realizes that the principle of two layers to three layers forwarding is similar, is all to obtain outgoing interface from forwarding table to be ULEI and pass through item Mesh is reprocessed after turning aspect loopback.ULEI realizes that maximum disadvantage is project side message winding, is greatly lowered and turns aspect property Energy.
BVI (virtual bridge interface) interface realization principle, Fig. 2 are that BVI turns aspect basic schematic diagram to the present invention in the related technology, As shown in Figure 2.BVI virtual interface is similar with ULEI interface, can equally support the bridges forward between two layers and three layers.Such as Fig. 2 It is shown, when BVI realizes that the principle of three layers to two layers forwarding is the three-layer VPN ID to come in first according to message on interface and reports DIP in text look into three-layer routing forwarding table obtain routing table deliver in outgoing interface, outgoing interface be bvi interface when look into it is next The DMAC of jump separation table acquisition VPNID and message looks into two-layer retransmitting table and goes out.BVI, which is implemented, does not need project side progress winding , forwarding performance can be greatly improved, but can be only applied to the scene of two or three layers of bridge joint.
For the above problem present in the relevant technologies, at present it is not yet found that the solution of effect.
Summary of the invention
The embodiment of the invention provides a kind of bridge-connection transmitting methods, at least to solve virtual bridge interface forwarding in the related technology The low technical problem of performance.
According to one embodiment of present invention, a kind of bridge-connection transmitting method is provided, comprising: receive from first kind network Data on flows;Mouth is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain the data on flows;Pass through The data on flows is forwarded to Second Type network by internal virtual bridge interface;Wherein, internal virtual bridge interface configures not With the functional parameter of virtual LAN routing forwarding VRF attribute.
Optionally, in the internal virtual bridge joint for obtaining the data on flows according to incoming interface attribute list or Label Forwarding Information Base Before mouthful, the method also includes: create the internal virtual bridge joint mouth;According to network scenarios, the internal virtual bridge joint is set The VRF attribute of mouth;The VRF attribute is written in the interface attributes table of the internal virtual bridge joint mouth.
Optionally, the data on flows is forwarded to Second Type network by internal virtual bridge interface includes: to work as institute When stating data traffic and being sent to two-layer virtual local area network L2VPN from L 3 virtual local area network L3VPN, mouth is bridged with the internal virtual Two-layer VPN ID in attribute list and message interlevel dielectrics access control destination address DMAC searches forwarding table and by the data Flow is forwarded to L2VPN;When data traffic is sent to L3VPN from L2VPN, the interface attributes of the internal virtual bridge joint mouth are obtained Table obtains the three-layer VPN ID in the interface attributes table, looks into routing for the data traffic with the DIP of its VPNID and message It is forwarded to L3VPN.
Optionally, the data on flows is forwarded to Second Type network by internal virtual bridge interface includes: when number When being sent to L3VPN from more VRF networkings according to flow, obtains bridge interface information and look into internal virtual bridge joint mouth attribute list, obtain three layers VPNID and DIP looks into routing and walks L3VPN Tag Packaging, and the data traffic is forwarded to L3VPN;When data traffic is sent out from L3VPN Toward more VRF, look into the internal virtual bridge joint mouth attribute list with the information of bridge joint mouth and obtain three-layer VPN ID, using the VPNID with And the DIP of message looks into routing and the data traffic is forwarded to one or more in more VRF.
Optionally, the data on flows is forwarded to Second Type network by internal virtual bridge interface includes: when number When being sent to two layers of ether virtual LAN L2EVPN from L3VPN according to flow, using in internal virtual bridge joint mouth attribute list Two-layer VPN ID and message internal layer DMAC looks into forwarding table and walks VXLAN tunnel encapsulation, and the data traffic of stating is forwarded to L2EVPN;When data traffic is sent to L3VPN from L2EVPN, obtains the internal virtual bridge interface message and look into internal virtual bridge joint Mouth interface attributes table looks into road using the DIP of the VPNID and message to obtain the three-layer VPN ID in the interface attributes table By forwarding, the data traffic is forwarded to L3VPN.
Optionally, obtaining the internal virtual bridge joint mouth of the data on flows according to incoming interface attribute list includes: in the number When according to flow being message from private network side, inquiry inbound port attribute list obtains VRF attribute;According to the VRF attribute and, MAC or DIP looks into the internal virtual bridge joint mouth that forwarding information table obtains the data on flows.
Optionally, obtaining the internal virtual bridge joint mouth of the data on flows according to Label Forwarding Information Base includes: in the data When flow is from the message of public network side, VRF attribute is obtained according to the message label inquiry tag forwarding table of the data traffic; And, MAC or DIP look into the internal virtual bridge joint mouth that forwarding information table obtains the data on flows according to the VRF attribute.
Optionally, the first kind network and the Second Type network are the different VPN on L2VPN;Or, described One type network and the Second Type network are the different VPN on L3VPN;Or, the first kind network and described second Type network is L2VPN and the different VPN on L3VPN.
According to another embodiment of the invention, provide a kind of bridges forward device, comprising: receiving module, for from First kind network receives data on flows;Module is obtained, for according to incoming interface attribute list or Label Forwarding Information Base acquisition The internal virtual of data on flows bridges mouth;Forwarding module, for being forwarded the data on flows by internal virtual bridge interface To Second Type network;Wherein, the function ginseng of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute Number.
Optionally, described device further include: creation module, for being obtained according to incoming interface attribute list or Label Forwarding Information Base Before taking the internal virtual of the data on flows to bridge mouth, the internal virtual bridge joint mouth is created;Setup module, for according to net The VRF attribute of the bridge joint mouth of internal virtual described in network scene setting;Writing module, for the inside to be written in the VRF attribute In the interface attributes table of virtual bridge interface.
Optionally, the forwarding module includes: the first retransmission unit, for working as the data traffic from L 3 virtual local Net L3VPN is when being sent to two-layer virtual local area network L2VPN, in internal virtual bridge joint mouth attribute list two-layer VPN ID and Message interlevel dielectrics access control destination address DMAC searches forwarding table and the data traffic is forwarded to L2VPN;Second turn Bill member is obtained for when data traffic is sent to L3VPN from L2VPN, obtaining the interface attributes table of the internal virtual bridge joint mouth The three-layer VPN ID in the interface attributes table is taken, routing is looked into the DIP of its VPNID and message and forwards the data traffic To L3VPN.
According to still another embodiment of the invention, a kind of storage medium is additionally provided.The storage medium is set as storage and uses In the program code for executing following steps:
Optionally, storage medium is also configured to store the program code for executing following steps:
Data on flows is received from first kind network;
Mouth is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain the data on flows;
The data on flows is forwarded to Second Type network by internal virtual bridge interface;
Wherein, the functional parameter of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute.
Through the invention, virtual bridge interface without occurring in pairs, as long as single internal virtual bridge joint mouth can complete two or three Bridge joint between layer, may be implemented to bridge between VPN different between two layers, and realize between VPN different between three layers Bridge joint, solve the technical problem that virtual bridge interface forwarding performance is low in the related technology, reduce equipment purchase cost.
Detailed description of the invention
The drawings described herein are used to provide a further understanding of the present invention, constitutes part of this application, this hair Bright illustrative embodiments and their description are used to explain the present invention, and are not constituted improper limitations of the present invention.In the accompanying drawings:
Fig. 1 is that ULEI turns aspect basic schematic diagram to the present invention in the related technology;
Fig. 2 is that BVI turns aspect basic schematic diagram to the present invention in the related technology;
Fig. 3 is the flow chart of bridge-connection transmitting method according to an embodiment of the present invention;
Fig. 4 is the structural block diagram of bridges forward device according to an embodiment of the present invention;
Fig. 5 is present invention bridge contact simplification figure in the related technology;
Fig. 6 is that the internal virtual of the embodiment of the present invention bridges mouth bridge contact simplification figure;
Fig. 7 is that the internal virtual of the embodiment of the present invention bridges basic schematic diagram in terms of mouth turns;
Fig. 8 is that the internal virtual bridge joint mouth of the embodiment of the present invention uses example in two/tri- layers of bridge contact;
Fig. 9 bridges mouth for internal virtual of the embodiment of the present invention and uses example in VRF bridge contact more than three layers;
Figure 10 bridges mouth for internal virtual of the embodiment of the present invention and uses example in L3VPN and L2EVPN bridge contact.
Specific embodiment
Hereinafter, the present invention will be described in detail with reference to the accompanying drawings and in combination with Examples.It should be noted that not conflicting In the case of, the features in the embodiments and the embodiments of the present application can be combined with each other.
It should be noted that description and claims of this specification and term " first " in above-mentioned attached drawing, " Two " etc. be to be used to distinguish similar objects, without being used to describe a particular order or precedence order.
Embodiment 1
A kind of bridge-connection transmitting method is provided in the present embodiment, and Fig. 3 is bridges forward side according to an embodiment of the present invention The flow chart of method, as shown in figure 3, the process includes the following steps:
Step S302 receives data on flows from first kind network;
Step S304 bridges mouth according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain data on flows;
Data on flows is forwarded to Second Type network by internal virtual bridge interface by step S306;
Wherein, the functional parameter of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute.
Through the above steps, virtual bridge interface without occurring in pairs, as long as single internal virtual bridge joint mouth can complete two Bridge joint between three layers may be implemented to bridge between VPN different between two layers, and realize between three layers different VPN it Between bridge joint, solve the technical problem that virtual bridge interface forwarding performance is low in the related technology, reduce equipment purchase cost.
Optionally, the executing subject of above-mentioned steps can be network element, gateway, specific such as interchanger, router etc., but It is without being limited thereto.
Optionally, the internal virtual bridge joint mouth that data on flows is obtained according to incoming interface attribute list or Label Forwarding Information Base it Before, method further include:
S11, creation internal virtual bridge mouth;
The VRF attribute that internal virtual bridges mouth is arranged according to network scenarios in S12;
S13, will be in the interface attributes table of VRF attribute write-in internal virtual bridge joint mouth.
In the present embodiment, when first kind network and Second Type network are different network type, there are it is multiple not Same scene and embodiment, data on flows, which is forwarded to Second Type network, by internal virtual bridge interface includes:
When data traffic is sent to two-layer virtual local area network L2VPN from L 3 virtual local area network L3VPN, with internal virtual bridge Two-layer VPN ID in interface attributes table and message interlevel dielectrics access control destination address DMAC searches forwarding table and by data Flow is forwarded to L2VPN;
When data traffic is sent to L3VPN from L2VPN, the interface attributes table of internal virtual bridge joint mouth is obtained, interface is obtained Three-layer VPN ID in attribute list looks into routing with the DIP of its VPNID and message and data traffic is forwarded to L3VPN.
When data traffic is sent to L3VPN from more VRF networkings, obtains bridge interface information and look into internal virtual bridge interface attributes Table, acquisition three-layer VPN ID and DIP look into routing and walk L3VPN Tag Packaging, and data traffic is forwarded to L3VPN;
When data traffic is sent to more VRF from L3VPN, internal virtual bridge joint mouth attribute list is looked into the information of bridge joint mouth and obtains three Layer VPNID looks into routing using the DIP of VPNID and message and data traffic is forwarded to one or more in more VRF.
When data traffic is sent to two layers of ether virtual LAN L2EVPN from L3VPN, mouth category is bridged using internal virtual Two-layer VPN ID and message internal layer DMAC in property table look into forwarding table and walk VXLAN tunnel encapsulation, will state data traffic and are forwarded to L2EVPN;
When data traffic is sent to L3VPN from L2EVPN, obtains internal virtual bridge interface message and look into internal virtual bridge joint mouth Interface attributes table looks into routing forwarding using the DIP of VPNID and message to obtain the three-layer VPN ID in interface attributes table, will Data traffic is forwarded to L3VPN.
In the present embodiment, obtaining the internal virtual bridge joint mouth of data on flows according to incoming interface attribute list includes: in data When flow is the message from private network side, inquiry inbound port attribute list obtains VRF attribute;According to VRF attribute and, MAC or DIP looks into the internal virtual bridge joint mouth that forwarding information table obtains data on flows.
The internal virtual bridge joint mouth that data on flows is obtained according to Label Forwarding Information Base includes: in data traffic for from public network side Message when, according to the message label inquiry tag forwarding table of data traffic obtain VRF attribute;According to VRF attribute and, MAC Or DIP, look into the internal virtual bridge joint mouth that forwarding information table obtains data on flows.
In the present embodiment, it is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain data on flows Mouth includes two kinds of scenes, and two kinds of scenes in corresponding network environment: 1, the message that private network side comes is the feelings of not tape label at this time Condition, what the message come in was looked into is that inbound port attribute list obtains VRF attribute, then looks into forwarding letter according to VRF and MAC or DIP Breath table obtains the internal virtual bridge joint mouth of the data on flows;2, the message that public network side comes is looked into label according to message label and is turned It delivers and obtains VRF attribute, the inside void that forwarding information table obtains the data on flows is then looked into according to VRF and MAC or DIP Quasi- bridge joint mouth.
In the present embodiment, first kind network and Second Type network are the different VPN on L2VPN;Or, the first kind Network and Second Type network are the different VPN on L3VPN;Or, first kind network and Second Type network be L2VPN with Different VPN on L3VPN.Scheme through this embodiment as a result, single internal virtual bridge joint mouth can be completed between two or three layers Bridge joint, may be implemented to bridge between VPN different between two layers, bridge joint between VPN different between three layers may be implemented.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-mentioned implementation The method of example can be realized by means of software and necessary general hardware platform, naturally it is also possible to by hardware, but it is very much In the case of the former be more preferably embodiment.Based on this understanding, technical solution of the present invention is substantially in other words to existing The part that technology contributes can be embodied in the form of software products, which is stored in a storage In medium (such as ROM/RAM, magnetic disk, CD), including some instructions are used so that a terminal device (can be mobile phone, calculate Machine, server or network equipment etc.) execute method described in each embodiment of the present invention.
Embodiment 2
A kind of bridges forward device is additionally provided in the present embodiment, and the device is real for realizing above-described embodiment and preferably Mode is applied, the descriptions that have already been made will not be repeated.As used below, the soft of predetermined function may be implemented in term " module " The combination of part and/or hardware.Although device described in following embodiment is preferably realized with software, hardware, or The realization of the combination of software and hardware is also that may and be contemplated.
Fig. 4 is the structural block diagram of bridges forward device according to an embodiment of the present invention, as shown in figure 4, the device includes:
Receiving module 40, for receiving data on flows from first kind network;
Module 42 is obtained, for obtaining the internal virtual bridge of data on flows according to incoming interface attribute list or Label Forwarding Information Base Interface;
Forwarding module 44, for data on flows to be forwarded to Second Type network by internal virtual bridge interface;
Wherein, the functional parameter of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute.
Optionally, device further include: creation module, for obtaining stream according to incoming interface attribute list or Label Forwarding Information Base Before the internal virtual bridge joint mouth for measuring data, creation internal virtual bridges mouth;Setup module, in being arranged according to network scenarios The VRF attribute of portion's virtual bridge interface;Writing module, for bridging VRF attribute write-in internal virtual in the interface attributes table of mouth.
In the present embodiment, forwarding module includes: the first retransmission unit, for working as data traffic from L 3 virtual local area network When L3VPN is sent to two-layer virtual local area network L2VPN, in the two-layer VPN ID and message in internal virtual bridge joint mouth attribute list Layer medium access control destination address DMAC searches forwarding table and data traffic is forwarded to L2VPN;Second retransmission unit, is used for When data traffic is sent to L3VPN from L2VPN, the interface attributes table of internal virtual bridge joint mouth is obtained, is obtained in interface attributes table Three-layer VPN ID, look into routing with the DIP of its VPNID and message and data traffic be forwarded to L3VPN.
It should be noted that above-mentioned modules can be realized by software or hardware, for the latter, Ke Yitong Following manner realization is crossed, but not limited to this: above-mentioned module is respectively positioned in same processor;Alternatively, above-mentioned modules are with any Combined form is located in different processors.
Embodiment 3
The present embodiment is alternative embodiment of the invention, for the application to be described in detail in conjunction with specific scene:
The scheme of the present embodiment includes that communication load bearing equipment realizes two layers and three using a kind of virtual gateway bridge interface Forwarding communication between layer service, can realize turn of three-layer routing device and Layer 2 switch with an equipment on conversion link Function is sent out, equipment purchase cost can be reduced for operator.
The present invention is a kind of internal virtual interface on load bearing equipment, which perfect can support traditional two or three layers of bridge The institute of interface is functional, can also expand to the bridge joint between different VPN.Fig. 5 is that bridge contact simplifies the present invention in the related technology Figure, as shown in figure 5, being the bridge joint implementation of traditional ULEI and BVI.Which is mainly characterized by, and internal virtual goes out two Then a interface fictionalizes the interface come and is respectively seen as two layer interfaces and three layer interfaces and configuration service.
Fig. 6 is that the internal virtual of the embodiment of the present invention bridges mouth bridge contact simplification figure, is illustrated in figure 6 inside of the invention Mouth is bridged, which bridges P0, P1 of diagram, and bridge joint mouth P ' can belong to from P0, P1 interface in different VRF simultaneously Property under configure, realize P0 and P1 between bridging functionality.
Fig. 7 is that the internal virtual of the embodiment of the present invention bridges basic schematic diagram in terms of mouth turns, and is illustrated in figure 7 the present invention and turns Aspect is tabled look-up the generalized flowsheet of processing.It, can basis if it is common message when message enters from load bearing equipment interface card Inbound port attribute list obtains two or three layers of attribute of interface and obtains corresponding two three-layer VPN ID;If it is label VPN terminating Equipment then root Two or three layers of attribute are obtained according to Label Forwarding Information Base and obtain corresponding two three-layer VPN ID, retain two or three layers of attribute of interface and root of entrance The forwarding table of two layers or three layers is looked into according to corresponding attribute, it is that internal virtual bridges mouth that outgoing interface is obtained in forwarding table, looks into inside Virtual bridge interface interface attributes table and secondary forwarding table of looking into is forwarded.Note: judging internal virtual bridge interface egress category in Fig. 7 Property whether the calculating for being three layers are as follows: if entry attribute be two layers, internal virtual bridge interface egress attribute be three layers;If Entry attribute is three layers, then internal virtual bridge interface egress attribute is two layers that internal virtual bridges mouth, if internal virtual Bridging mouth is only three layers, then outgoing interface is three layers.
The implementation steps of the present embodiment include:
Step 1: internal virtual bridge joint mouth registration, creation internal virtual bridge mouth, platform initialization internal virtual bridges mouth Structural body, each internal virtual bridge joint mouth structure body create one to two VRF attributes;
Step 2: setting internal virtual bridges mouth VRF attribute, two, three layers of VRF can be respectively set to according to scene needs and are belonged to Property, and the attribute set is handed down to project side with structural body form, project side obtains internal virtual bridge joint from structural body In mouth attribute write-in internal virtual bridge joint mouth attribute list;
Step 3: internal virtual bridge interface attributes are written in internal virtual bridge joint mouth attribute list according to scene for project side, The internal virtual bridge joint mouth attributive character of configuration is used to forward by the table, and project side forwarding surface is completed to turn aspect turn according to the 4th step Hair.
Step 4: message enters the VPNID and two or three looked into port attribute table acquisition inbound port attribute list from real interface Layer flag bit just looks into forwarding table with the DMAC of VPNID and message in inbound port attribute list if the interface is two layers of access; If the interface is three layers of access, forwarding table just is looked into the DIP of VPNID and message in inbound port attribute list.Turn aspect basis Shown in Fig. 7, carries out internal virtual and bridge mouth forward process.If outgoing interface is internal virtual bridge joint mouth, basis is previously looked into To forwarding table in outgoing interface information look into internal virtual bridge joint mouth attribute list, judge internal virtual bridge joint mouth attribute list category Property, if the interface is two layers of attribute, the two-layer VPN ID and message in mouth interface attributes tables are bridged according to internal virtual DMAC carries out looking into two-layer retransmitting table forwarding;If it is three layers of attribute that internal virtual, which bridges mouth outgoing interface, just according to internal empty The DIP of three-layer VPN ID and message in quasi- bridge joint mouth attribute list look into three-layer routing table and are forwarded.
The scheme of the present embodiment further includes following usage scenario:
Usage scenario 1:
Internal virtual bridges mouth and uses in L3VPN and the bridging device of L2VPN networking
Fig. 8 bridges mouth for the internal virtual of the embodiment of the present invention and uses example in two/tri- layers of bridge contact, as shown in figure 8, Internal virtual bridge joint mouth n (n-th of internal virtual bridges mouth) interface is created in L2VPN, L3VPN bridge contact PE equipment, it will be internal The configuration of virtual bridge interface n interface is in L3VPN VRFn (n-th of L3VPN) in the following, and configuring its VRFn three layers of IP address;Simultaneously will Internal virtual bridges access interface of the mouth n interface as L2VPN, and MAC Address is respectively configured in each internal virtual bridge joint mouth.
When data traffic is sent to L2VPN networking from L3VPN, the VPN label flow to come is looked into label list first and is obtained L3VPN terminated flag position is obtained, routing table is looked into the DIP of VPNID and message in label list and obtains bridge tags in routing table Then position looks into internal virtual bridge joint mouth attribute list discovery with the information of bridge joint mouth and walks two layers of information, bridges mouth category with internal virtual Two-layer VPN ID and message internal layer DMAC in property table look into forwarding table and are forwarded.
When data traffic is sent to L3VPN networking from L2VPN, the VPN label flow to come is looked into label list first and is obtained L2VPN terminated flag position is obtained, looks into two-layer retransmitting table with the DMAC of VPNID and message in label list, the forwarding table is by project List item management unified management just writes forwarding with the MAC of internal virtual bridge joint mouth when being configured with MAC on internal virtual bridge interface Entry, otherwise can not find out forwarding table cause it is obstructed (because when to three layers, if the message DMAC to come is not equal to interface On MAC be also to abandon), obtain bridge tags position and internal virtual bridge interface message in two-layer retransmitting table and look into internal void Then quasi- bridge joint mouth interface attributes table is looked into routing with the DIP of its VPNID and message and is turned to obtain the three-layer VPN ID in table Hair.
Usage scenario 2:
Internal virtual bridge joint mouth uses in the more VRF networking equipments of L3VPN
Fig. 9 bridges mouth for internal virtual of the embodiment of the present invention and uses example in VRF bridge contact more than three layers, as shown in figure 9, Internal virtual bridge joint mouth n (n-th of internal virtual bridges mouth) interface is configured in L3VPN PE equipment, and internal virtual is bridged into mouth n Interface configures under VRFn attribute, and configures under L3VPN VRF attribute.
When data traffic comes from VRFn networking, according in the VPNID and message in inbound port attribute list DIP look into route forwarding table, obtain bridge tags position and bridge interface information in route forwarding table and look into internal virtual bridge joint Mouth attribute list, internal virtual bridge and walk three layers of forwarding in mouth attribute list, and acquisition three-layer VPN ID+DIP looks into routing and walks L3VPN label Encapsulation is gone out.
When data traffic comes from L3VPN networking, L3VPN terminated flag position is obtained according to VPN label table, according to The DIP of VPNID and message in label list are looked into routing table acquisition routing table and are bridged flag bit, then with the information of bridge joint mouth It looks into internal virtual bridge joint mouth attribute list and takes three-layer VPN ID in table, then look into routing forwarding with the DIP of its VPNID and message.
Usage scenario 3:
Internal virtual bridges mouth in the use of L3VPN and L2EVPN networking bridging device
Figure 10 bridges mouth for internal virtual of the embodiment of the present invention and uses example, such as Figure 10 in L3VPN and L2EVPN bridge contact It is shown, internal virtual bridge joint mouth n (n-th of internal virtual bridges mouth) is created in L3VPN, L2EVPN bridge contact PE equipment to be connect Mouthful, by internal virtual bridge joint mouth n interface configuration in L3VPN VRFn (n-th of L3VPN) in the following, and with configuring its VRFn three layers of IP Location;Simultaneously using internal virtual bridge joint mouth n interface as the access interface of L2EVPN, each internal virtual bridge interface is distinguished Configure MAC Address.When data traffic is sent to L2EVPN networking from L3VPN, the VPN label flow to come looks into label first Table obtains L3VPN terminated flag position, is looked into routing table acquisition routing table and is bridged with the DIP of VPNID and message in label list Then flag bit looks into internal virtual bridge joint mouth attribute list discovery with the information of bridge joint mouth and walks two layers of information, bridged with internal virtual Two-layer VPN ID and message internal layer DMAC in mouth attribute list look into forwarding table and walk VXLAN tunnel encapsulation.
When data traffic is sent to L3VPN networking from L2EVPN, the VNI locally to terminate to come looks into VNI label list EVPN terminated flag position is obtained, looks into two-layer retransmitting table with the DMAC of VPNID and message in label list, the forwarding table is by project List item management unified management just writes forwarding item with the MAC of internal virtual bridge joint mouth when being configured with MAC on internal virtual bridge joint mouth Mesh, otherwise can not find out forwarding table cause it is obstructed (because when to three layers, if the message DMAC to come is not equal on interface MAC be also abandon), obtain two-layer retransmitting table in bridge tags position and internal virtual bridge interface message look into internal virtual It bridges mouth interface attributes table and then looks into routing forwarding with the DIP of its VPNID and message to obtain the three-layer VPN ID in table.
Internal virtual bridge joint mouth of the invention has the advantage that 1, without occurring in pairs, as long as single internal virtual bridge Interface can complete the bridge joint between two or three layers;2, it may be implemented to bridge between VPN different between two layers;3, three be may be implemented Bridge joint between layer between different VPN.
Embodiment 4
The embodiments of the present invention also provide a kind of storage mediums.Optionally, in the present embodiment, above-mentioned storage medium can To be arranged to store the program code for executing following steps:
S1 receives data on flows from first kind network;
S2 bridges mouth according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain data on flows;
Data on flows is forwarded to Second Type network by internal virtual bridge interface by S3, wherein internal virtual bridge joint The functional parameter of interface configuration different virtual LAN routing forwarding VRF attribute.
Optionally, in the present embodiment, above-mentioned storage medium can include but is not limited to: USB flash disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), mobile hard disk, magnetic disk or The various media that can store program code such as CD.
Optionally, in the present embodiment, processor is executed according to program code stored in storage medium:
Data on flows is received from first kind network;
Mouth is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain data on flows;
Data on flows is forwarded to Second Type network by internal virtual bridge interface;Wherein, internal virtual connects The functional parameter of mouth configuration different virtual LAN routing forwarding VRF attribute
Optionally, the specific example in the present embodiment can be with reference to described in above-described embodiment and optional embodiment Example, details are not described herein for the present embodiment.
Obviously, those skilled in the art should be understood that each module of the above invention or each step can be with general Computing device realize that they can be concentrated on a single computing device, or be distributed in multiple computing devices and formed Network on, optionally, they can be realized with the program code that computing device can perform, it is thus possible to which they are stored It is performed by computing device in the storage device, and in some cases, it can be to be different from shown in sequence execution herein Out or description the step of, perhaps they are fabricated to each integrated circuit modules or by them multiple modules or Step is fabricated to single integrated circuit module to realize.In this way, the present invention is not limited to any specific hardware and softwares to combine.
The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention, for the skill of this field For art personnel, the invention may be variously modified and varied.All within the spirits and principles of the present invention, made any to repair Change, equivalent replacement, improvement etc., should all be included in the protection scope of the present invention.

Claims (10)

1. a kind of bridge-connection transmitting method characterized by comprising
Data on flows is received from first kind network;
Mouth is bridged according to the internal virtual that incoming interface attribute list or Label Forwarding Information Base obtain the data on flows;
The data on flows is forwarded to Second Type network by internal virtual bridge interface;
Wherein, the functional parameter of internal virtual bridge interface configuration different virtual LAN routing forwarding VRF attribute.
2. the method according to claim 1, wherein according to incoming interface attribute list or Label Forwarding Information Base acquisition Before the internal virtual bridge joint mouth of the data on flows, the method also includes:
Create the internal virtual bridge joint mouth;
The VRF attribute of the internal virtual bridge joint mouth is set according to network scenarios;
The VRF attribute is written in the interface attributes table of the internal virtual bridge joint mouth.
3. the method according to claim 1, wherein the data on flows is turned by internal virtual bridge interface Being dealt into Second Type network includes:
When the data traffic is sent to two-layer virtual local area network L2VPN from L 3 virtual local area network L3VPN, with the internal void Two-layer virtual LAN ID VPNID and message interlevel dielectrics access control destination address DMAC in quasi- bridge joint mouth attribute list It searches forwarding table and the data traffic is forwarded to L2VPN;
When data traffic is sent to L3VPN from L2VPN, the interface attributes table of internal virtual bridge joint mouth is obtained, described in acquisition Three-layer VPN ID in interface attributes table looks into routing for the number with the network protocol destination address DIP of its VPNID and message L3VPN is forwarded to according to flow.
4. the method according to claim 1, wherein the data on flows is turned by internal virtual bridge interface Being dealt into Second Type network includes:
When data traffic is sent to L3VPN from more VRF networkings, obtains bridge interface information and looks into internal virtual bridge joint mouth attribute list, Acquisition three-layer VPN ID and DIP look into routing and walk L3VPN Tag Packaging, and the data traffic is forwarded to L3VPN;
When data traffic is sent to more VRF from L3VPN, the internal virtual bridge joint mouth attribute list is looked into the information of bridge joint mouth and obtains three Layer VPNID looks into routing using the DIP of the VPNID and message and the data traffic is forwarded in more VRF one or more It is a.
5. the method according to claim 1, wherein the data on flows is turned by internal virtual bridge interface Being dealt into Second Type network includes:
When data traffic is sent to two layers of ether virtual LAN L2EVPN from L3VPN, mouth category is bridged using the internal virtual Property table in two-layer VPN ID and message internal layer DMAC look into forwarding table and walk VXLAN tunnel encapsulation, by it is described state data traffic forwarding To L2EVPN;
When data traffic is sent to L3VPN from L2EVPN, obtains the internal virtual bridge interface message and look into internal virtual bridge joint mouth Interface attributes table looks into routing using the DIP of the VPNID and message to obtain the three-layer VPN ID in the interface attributes table Forwarding, is forwarded to L3VPN for the data traffic.
6. the method according to claim 1, wherein being obtained in the data on flows according to incoming interface attribute list Portion's virtual bridge interface includes:
When the data traffic is the message from private network side, inquiry inbound port attribute list obtains VRF attribute;
And, MAC or DIP look into the internal virtual bridge joint that forwarding information table obtains the data on flows according to the VRF attribute Mouthful.
7. the method according to claim 1, wherein obtaining the inside of the data on flows according to Label Forwarding Information Base Virtual bridge interface includes:
When the data traffic is from the message of public network side, forwarded according to the message label inquiry tag of the data traffic Table obtains VRF attribute;
And, MAC or DIP look into the internal virtual bridge joint that forwarding information table obtains the data on flows according to the VRF attribute Mouthful.
8. the method according to claim 1, wherein including:
The first kind network and the Second Type network are the different VPN on L2VPN;Or,
The first kind network and the Second Type network are the different VPN on L3VPN;Or,
The first kind network and the Second Type network are L2VPN and the different VPN on L3VPN.
9. a kind of storage medium, which is characterized in that the storage medium includes the program of storage, wherein when described program is run Method described in any one of perform claim requirement 1 to 8.
10. a kind of processor, which is characterized in that the processor is for running program, wherein right of execution when described program is run Benefit require any one of 1 to 8 described in method.
CN201711057679.8A 2017-11-01 2017-11-01 Bridge forwarding method Active CN109756409B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711057679.8A CN109756409B (en) 2017-11-01 2017-11-01 Bridge forwarding method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711057679.8A CN109756409B (en) 2017-11-01 2017-11-01 Bridge forwarding method

Publications (2)

Publication Number Publication Date
CN109756409A true CN109756409A (en) 2019-05-14
CN109756409B CN109756409B (en) 2021-10-26

Family

ID=66397853

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711057679.8A Active CN109756409B (en) 2017-11-01 2017-11-01 Bridge forwarding method

Country Status (1)

Country Link
CN (1) CN109756409B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110971520A (en) * 2019-11-01 2020-04-07 烽火通信科技股份有限公司 Method and system for realizing two-layer and three-layer bridging by OVERLAY technology
WO2023284675A1 (en) * 2021-07-14 2023-01-19 中兴通讯股份有限公司 Forwarding table lookup method and apparatus, and storage medium and electronic apparatus

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050188106A1 (en) * 2004-02-11 2005-08-25 Alcatel Managing L3 VPN virtual routing tables
CN101072210A (en) * 2006-05-10 2007-11-14 中兴通讯股份有限公司 Method for realizing two-layer VPN and three-layer VPN interconnecting and interworking
CN101667969A (en) * 2009-09-24 2010-03-10 中兴通讯股份有限公司 Method of accessing IP/L3VPN network of L2VPN network and device thereof
CN101848161A (en) * 2010-05-31 2010-09-29 杭州华三通信技术有限公司 Communication method and equipment of MPLS L2VPN (Multiple protocol Label Switching Layer 2 Virtual Private Network) and MPLS L3VPN (Multiple protocol Label Switching Layer 3 Virtual Private Network)
US20100329252A1 (en) * 2009-06-26 2010-12-30 Nortel Networks Limited Method and Apparatus for Enabling Multicast Route Leaking Between VRFs in Different VPNs
CN102291307A (en) * 2011-08-18 2011-12-21 福建星网锐捷网络有限公司 An inter-VPN multicast implementation method, apparatus and network device
CN102546416A (en) * 2012-01-13 2012-07-04 中兴通讯股份有限公司 Transmission method and device of L3VPN (layer 3 virtual private network) service message
CN102739501A (en) * 2011-04-01 2012-10-17 中兴通讯股份有限公司 Message forwarding method in two or three layer virtual private network (VPN) and system thereof
CN104717119A (en) * 2015-04-09 2015-06-17 烽火通信科技股份有限公司 Method and system for realizing bridge connection between L2 VPN and L3 VPN

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050188106A1 (en) * 2004-02-11 2005-08-25 Alcatel Managing L3 VPN virtual routing tables
CN101072210A (en) * 2006-05-10 2007-11-14 中兴通讯股份有限公司 Method for realizing two-layer VPN and three-layer VPN interconnecting and interworking
US20100329252A1 (en) * 2009-06-26 2010-12-30 Nortel Networks Limited Method and Apparatus for Enabling Multicast Route Leaking Between VRFs in Different VPNs
CN101667969A (en) * 2009-09-24 2010-03-10 中兴通讯股份有限公司 Method of accessing IP/L3VPN network of L2VPN network and device thereof
CN101848161A (en) * 2010-05-31 2010-09-29 杭州华三通信技术有限公司 Communication method and equipment of MPLS L2VPN (Multiple protocol Label Switching Layer 2 Virtual Private Network) and MPLS L3VPN (Multiple protocol Label Switching Layer 3 Virtual Private Network)
CN102739501A (en) * 2011-04-01 2012-10-17 中兴通讯股份有限公司 Message forwarding method in two or three layer virtual private network (VPN) and system thereof
CN102291307A (en) * 2011-08-18 2011-12-21 福建星网锐捷网络有限公司 An inter-VPN multicast implementation method, apparatus and network device
CN102546416A (en) * 2012-01-13 2012-07-04 中兴通讯股份有限公司 Transmission method and device of L3VPN (layer 3 virtual private network) service message
CN104717119A (en) * 2015-04-09 2015-06-17 烽火通信科技股份有限公司 Method and system for realizing bridge connection between L2 VPN and L3 VPN

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
刘金辉: "一种利用P2MP_TE实现跨VPN组播方法", 《科技与企业》 *
迟柏洋: "面向LTE的PTN网络二三层桥接方案研究", 《数据通信》 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110971520A (en) * 2019-11-01 2020-04-07 烽火通信科技股份有限公司 Method and system for realizing two-layer and three-layer bridging by OVERLAY technology
CN110971520B (en) * 2019-11-01 2022-02-08 烽火通信科技股份有限公司 Method and system for realizing two-layer and three-layer bridging by OVERLAY technology
WO2023284675A1 (en) * 2021-07-14 2023-01-19 中兴通讯股份有限公司 Forwarding table lookup method and apparatus, and storage medium and electronic apparatus

Also Published As

Publication number Publication date
CN109756409B (en) 2021-10-26

Similar Documents

Publication Publication Date Title
CN107819677B (en) Message forwarding method and device
CN104380658B (en) Flow classifier, business route flip-flop, the method and system of Message processing
CN103023792B (en) For carrying out the method and system of packet switching in shortest path bridging network
CN105765946B (en) Support the method and system of the service chaining in data network
US8081633B2 (en) Network node unit and method for forwarding data packets
CN105099846B (en) The method and supplier edge device of data message transmission
CN104954245B (en) Business function chain processing method and processing device
CN103795631B (en) Deploy the flow forwarding method and equipment in the network of Ethernet virtual link
US9118606B2 (en) Method and apparatus for simulating IP multinetting
CN105323136A (en) Information processing method and device
CN102739501B (en) Message forwarding method and system in two three layer virtual private networks
CN104350467A (en) Elastic enforcement layer for cloud security using SDN
CN106878048A (en) Fault handling method and device
CN106209553A (en) Message processing method, equipment and system
CN104272684A (en) Dynamic service insertion in a fabric switch
CN104468368B (en) Configure the method and device of bgp neighbor
CN112272145B (en) Message processing method, device, equipment and machine readable storage medium
CN106936680B (en) System and method for intercommunication among heterogeneous networks of cloud computing platform
US20150341263A1 (en) Associating internet protocol (ip) addresses with ethernet virtualisation interconnection (evi) links
CN106941437A (en) A kind of information transferring method and device
CN106059946A (en) Message forwarding method and message forwarding device
EP2897328B1 (en) Method, system and apparatus for establishing communication link
CN110351135B (en) Network equipment configuration method and device in multiple DCs
CN105812221B (en) The device and method of data transmission in virtual expansible Local Area Network
CN104780090A (en) VPN multicast transmission method and device PE equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant