CN109995639B - Data transmission method, device, switch and storage medium - Google Patents
Data transmission method, device, switch and storage medium Download PDFInfo
- Publication number
- CN109995639B CN109995639B CN201810002989.8A CN201810002989A CN109995639B CN 109995639 B CN109995639 B CN 109995639B CN 201810002989 A CN201810002989 A CN 201810002989A CN 109995639 B CN109995639 B CN 109995639B
- Authority
- CN
- China
- Prior art keywords
- vxlan
- switch
- address
- vni
- tenant
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/20—Support for services
- H04L49/208—Port mirroring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/35—Switches specially adapted for specific applications
- H04L49/354—Switches specially adapted for specific applications for supporting virtual local area networks [VLAN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/70—Virtual switches
Abstract
The invention discloses a data transmission method, a device, a switch and a storage medium, wherein the method is applied to the switch and comprises the following steps: when a first VxLan message sent by a source host is received, determining a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored corresponding relation between the destination IP address and the VNI of the tenant; packaging the first VNI in the first VxLan message to generate a second VxLan message; according to the destination IP address, the situation of the subnet where the destination host is located is not concerned, and the VxLan messages between different subnets are encapsulated by adopting a uniform tenant VNI value, so that the corresponding relation between the host and the tenant only needs to be stored, and the corresponding relation does not need to be updated as long as the tenant to which the host belongs is not changed, so that the maintenance of a flow table and a VxLan tunnel is facilitated.
Description
Technical Field
The present invention relates to the field of data transmission technologies, and in particular, to a data transmission method, an apparatus, a switch, and a storage medium.
Background
Fig. 1 is a schematic diagram of an SDN (Software Defined Network) data center Network access switch, and as shown in fig. 1, an access switch in an SDN data center Network mainly includes: software OpenFlow switches, hardware OpenFlow switches, and hardware switches supporting VxLan (Virtual Extensible LAN).
The OpenFlow switch refers to a switch supporting an OpenFlow protocol, and each OpenFlow switch is internally provided with one or more flow tables for searching and forwarding data packets. The switch may be connected to an external SDN controller (SDN controller) through an OpenFlow protocol, and query and manage the flow table. The flow table includes header files, counters, and actions. The flow table searches each entry data packet, if the entry data packet matches the header files in the flow table, the relevant policy of the data packet is executed, otherwise, the packet is forwarded to the SDN controller through a protocol message such as a packet-in message, and the SDN controller decides the relevant behavior. The OpenFlow switch is divided into a software OpenFlow switch and a hardware OpenFlow switch, and the software OpenFlow switch is completely implemented by software and installed on an X86 physical server, for example, openvswitch, i.e., OVS.
The hardware OpenFlow switch is the same as the traditional hardware switch in hardware configuration, and comprises hardware devices such as a CPU chip, an ASIC switching chip, a power supply and a fan, the data flow forwarding modes of the software OpenFlow switch and the hardware OpenFlow switch are different, the software OpenFlow switch needs to be connected with the traditional hardware switch such as a traditional three-layer switch, then the traditional hardware switch guides the forwarding of a data packet according to information such as an MAC forwarding table and an IP routing table, and the hardware OpenFlow switch guides the forwarding of the data packet according to an OpenFlow flow table issued by an SDN controller. The other hardware switch supporting the VxLan protocol is called as VxLan switch for short, the data flow forwarding mode of the VxLan switch is the same as that of the traditional hardware switch, namely, the data packet forwarding is guided according to information such as an MAC forwarding table and an IP routing table, the SDN controller only controls the establishment and deletion of the VxLan tunnel through a Restful interface, and an OpenFlow flow table is not issued. In data center application, three SDN access switches are different in application scene and different in connected host type, a software OpenFlow switch only receives flow of a Virtual Machine (VM), a hardware OpenFlow switch can be connected with a physical server and the VM inside the physical server, a hardware VxLan switch is generally connected with the physical server only, and flow intercommunication is carried out between the hosts through a commonly connected Underlay network.
In an SDN (software defined Network), each subnet in a tenant corresponds to a VNI (VXLAN Network Identifier ), and is uniformly distributed by an SDN controller, wherein the subnets in the same Network segment have the same VNI, and the subnets in different Network segments have different VNIs; when two host three-layer traffic intercommunicating with two sub-networks in the same tenant, taking the intercommunication between the VM with the IP address of IP1 and the physical server 1 with the address of IP2 as an example, the steps are as follows:
the first step is as follows: the VM outputs the IP data packet to the access switch OVS.
The second step is that: and the OVS packages the VNI2 value corresponding to the IP2 address of the subnet where the physical server 1 is located into a VxLan message and then sends the VxLan message to the underlay network.
The third step: and after the hardware OpenFlow access switch at the receiving end receives the VxLan message, the outer layer encapsulation of the VxLan message is removed, and a corresponding host is found according to the target MAC address of the inner layer message.
The fourth step: and finally outputting the inner layer message to the physical server 1.
If the VM and physical server 2 interwork, the OVS will also encapsulate VNI3 into a VxLan message at the egress port.
In conclusion, the SDN access switch may correspondingly encapsulate different VNI values in the VxLan message according to different subnets where the target host is located. Corresponding VNIs are packaged on the SDN access switch according to the situation of the subnet where the receiving end device is located, the corresponding relations between a plurality of hosts and the subnet where the hosts are located need to be configured in the switch through the flow table and the VxLan tunnel by the SDN control device, when the subnets and the hosts are added or changed, the stored corresponding relations between the hosts and the subnet where the hosts are located need to be added or changed, if one tenant contains dozens of or even hundreds of subnets, the operation of adding or changing the corresponding relations is more complicated, and the maintenance of the flow table and the VxLan tunnel is not facilitated.
Disclosure of Invention
The invention provides a data transmission method, a data transmission device, a switch and a storage medium, which are used for solving the problem that a flow table and a VxLan tunnel in the prior art are poor in maintainability.
The invention provides a data transmission method, which is applied to a switch and comprises the following steps:
receiving a first extensible virtual local area network VxLan message sent by a source host, and determining a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored corresponding relation between the destination IP address and a tenant VxLan network identifier VNI;
packaging the first VNI in the first VxLan message to generate a second VxLan message;
and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
Further, if the switch is a software OpenFlow switch or a hardware OpenFlow switch, the corresponding relationship between the destination IP address and the tenant VNI is stored in an OpenFlow flow table of the switch;
and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant VNI aiming at the VxLan tunnel established by the switch.
Further, after receiving a first extensible virtual local area network VxLan message sent by a source host, before encapsulating, in the first VxLan message, a first VNI of a tenant corresponding to the destination IP address, the method further includes:
judging whether a second tenant to which a source host corresponding to the source IP address belongs and the first tenant are the same according to the source IP address carried in the first VxLan message;
if yes, the subsequent steps are carried out.
Further, before receiving the first VxLan message sent by the source host, the method further includes:
receiving and storing an Access Control List (ACL) rule configured by Software Defined Network (SDN) control equipment, wherein a target VNI for filtering a message is recorded in the ACL rule;
after the second VxLan message is generated, the method further includes:
determining whether the first VNI is the same as the target VNI;
and if so, mirroring the second VxLan message to obtain a third VxLan message, and sending the third VxLan message to acquisition and analysis equipment.
Further, the method further comprises:
receiving a fourth VxLan message;
decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message;
and sending the inner layer message to a host corresponding to the target MAC address according to the target MAC address carried in the inner layer message.
The invention provides a data transmission device, which is applied to a switch and comprises:
the receiving and determining module is used for receiving a first extensible virtual local area network VxLan message sent by a source host, and determining a first VxLan network identifier VNI of a first tenant to which a target host corresponding to a target IP address belongs according to the target IP address carried in the first VxLan message and a corresponding relation between the pre-stored target IP address and the VxLan network identifier VNI of the tenant;
the message generation module is used for packaging the first VNI in the first VxLan message and generating a second VxLan message;
and the message sending module is used for sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
The invention provides a switch, which comprises a memory, a processor and a transceiver;
the processor is used for reading the program in the memory and executing the following processes: the method comprises the steps that a transceiver is controlled to receive a first VxLan message sent by a source host, and according to a target IP address carried in the first VxLan message and a corresponding relation between a pre-stored target IP address and a tenant VxLan network identifier VNI, a first VNI of a first tenant to which the target host corresponding to the target IP address belongs is determined; packaging the first VNI in the first VxLan message to generate a second VxLan message; and the control transceiver sends the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
Further, the processor is further configured to, if the switch is a software OpenFlow switch or a hardware OpenFlow switch, store a correspondence between the destination IP address and the tenant VNI in an OpenFlow flow table; and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant network identification VNI aiming at the established VxLan tunnel.
Further, the processor is specifically configured to, after receiving a first VxLan message sent by a source host, determine, according to a source IP address carried in the first VxLan message, whether a second tenant to which the source host belongs and the first tenant corresponding to the source IP address are the same tenant; if yes, the first VNI of the tenant corresponding to the destination IP address is packaged in the first VxLan message.
Further, the processor is specifically configured to, before receiving a first VxLan message sent by a source host, control the transceiver to receive an ACL rule configured by software defined network SDN control equipment, and store the ACL rule, where a target VNI for filtering the message is recorded in the ACL rule; after a second VxLan message is generated, whether the first VNI is the same as the target VNI or not is judged; and if so, mirroring the second VxLan message to obtain a third VxLan message, and controlling the transceiver to send the third VxLan message to acquisition and analysis equipment.
Further, the processor is further configured to control the transceiver 403 to receive a fourth VxLan message; decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message; the control transceiver 403 sends the inner layer packet to the host corresponding to the destination MAC address according to the destination MAC address carried in the inner layer packet.
The present invention provides a switch, comprising: the system comprises a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory complete mutual communication through the communication bus;
the memory has stored therein a computer program which, when executed by the processor, causes the processor to perform the steps of any of the methods described above.
The invention provides a computer readable storage medium storing a computer program executable by a switch, the program, when run on the electronic device, causing the switch to perform the steps of any of the methods described above.
The invention provides a data transmission method, a data transmission device, a switch and a storage medium, wherein the method is applied to the switch and comprises the following steps: when a first VxLan message sent by a source host is received, determining a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored corresponding relation between the destination IP address and the VNI of the tenant; packaging the first VNI in the first VxLan message to generate a second VxLan message; and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address. In the embodiment of the invention, the first VNI of the first tenant to which the target IP address belongs is determined according to the target IP address carried in the first VxLan message, the first VNI is packaged in the first VxLan message, the subnet condition where the target host is located is not concerned, and the VxLan messages among different subnets are packaged by adopting the unified tenant VNI, so that the corresponding relation between the host and the tenant is only needed to be stored, and the corresponding relation does not need to be updated as long as the tenant to which the host belongs is not changed, thereby being more beneficial to the maintenance of a flow table and a VxLan tunnel.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Figure 1 is a schematic diagram of an SDN data center network access switch;
fig. 2 is a schematic diagram of a data transmission process provided in example 1 of the present invention;
FIG. 3 is a schematic diagram of a data transmission process provided in the prior art;
fig. 4 is a schematic diagram of a data transmission process according to embodiment 4 of the present invention;
fig. 5 is a schematic structural diagram of a switch according to embodiment 6 of the present invention;
fig. 6 is a schematic structural diagram of a switch according to embodiment 7 of the present invention;
fig. 7 is a schematic diagram of a data transmission apparatus according to an embodiment of the present invention.
Detailed Description
In order to improve maintainability of a flow table and a VxLan tunnel, embodiments of the present invention provide a data transmission method, apparatus, switch, and storage medium.
In order to make the objects, technical solutions and advantages of the present invention clearer, the present invention will be described in further detail with reference to the accompanying drawings, and it is apparent that the described embodiments are only a part of the embodiments of the present invention, not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Example 1:
fig. 2 is a schematic diagram of a data transmission process provided in an embodiment of the present invention, where the process includes the following steps:
s201: receiving a first VxLan message sent by a source host, and determining a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored corresponding relationship between the destination IP address and the VNI of the tenant.
The data transmission method provided by the embodiment of the invention is applied to the switch, the switch can be an access switch in an SDN data center network, the switch comprises a software OpenFlow switch, a hardware OpenFlow switch and a hardware VxLan switch, and the software OpenFlow switch can be a virtual switch such as an OVS.
If data transmission between different hosts needs to be carried out across subnets, the source host sends a first VxLan message to a switch connected with the source host, and the first VxLan message carries a destination IP address, wherein the destination IP address is an IP address corresponding to a target host used for receiving the VxLan message sent by the source host. The host machine comprises a virtual server and a hardware server.
The switch can determine a first VNI of a first tenant to which a destination host corresponding to the destination IP address belongs according to the destination IP address. The process of determining, by the switch, the first VNI of the tenant corresponding to the destination IP address may be that a correspondence relationship between the destination IP address and the VNI of the tenant to which the host corresponding to the destination IP address belongs may be pre-stored in the switch, and when the destination IP carried in the first VxLan message acquired by the switch is obtained, the first VNI of the first tenant to which the destination host corresponding to the destination IP address belongs is determined according to the correspondence relationship between the destination IP address and the VNI of the tenant.
Because the pre-stored corresponding relation in the switch is changed from the corresponding relation between the IP address of the host and the subnet where the host is located in the prior art to the corresponding relation between the IP address of the host and the VNI of the tenant to which the host belongs, when the subnet or the host sends a new increase or update, the corresponding relation does not need to be updated as long as the tenant to which the host belongs does not change, and the maintenance of the corresponding relation is facilitated.
The first VNI of the first tenant is allocated by the SDN control device according to the tenant ID of the first tenant, and the first VNI of the first tenant is different from a VNI corresponding to any subnet under the first tenant, so that uniqueness of the first VNI can be ensured.
S202: and packaging the first VNI in the first VxLan message to generate a second VxLan message.
And after the switch determines the first VNI, packaging the first VNI in the first VxLan message, and generating a second VxLan message. The process that the switch encapsulates the VNI in the first VxLan message and generates the second VxLan message belongs to the prior art and is not described in detail in the embodiment of the invention.
In addition, the switch can also encapsulate the IP addresses of the subnet where the first VNI and the destination host are located in the first VxLan message at the same time to generate a second VxLan message.
S203: and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
And the switch sends the second VxLan message to a target host corresponding to the target IP address according to the target IP address to complete one-time data transmission.
In the embodiment of the invention, the switch determines the first VNI of the first tenant of the target IP address according to the target IP address carried in the first VxLan message and the corresponding relation between the pre-stored target IP address and the network identification VNI of the tenant, encapsulates the first VNI in the first VxLan message, does not pay attention to the situation of the subnet where the target host is located, and encapsulates VxLan messages between different subnets by adopting the uniform VNI of the tenant, so that the corresponding relation between the host and the tenant only needs to be stored, and the corresponding relation does not need to be updated as long as the tenant to which the host belongs is not changed, thereby being more beneficial to maintenance of a flow table and a VxLan tunnel.
Example 2:
in order to determine a VNI of a tenant corresponding to a destination IP, on the basis of the above embodiment, in an embodiment of the present invention, if the switch is a software OpenFlow switch or a hardware OpenFlow switch, a correspondence between the destination IP address and the tenant network identifier VNI is stored in an OpenFlow flow table of the switch;
and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant network identification VNI aiming at the VxLan tunnel established by the switch.
Because the ways of storing the corresponding relationships in different switches are different, the VNI of the tenant corresponding to the destination IP address needs to be determined according to the corresponding storing way in the switch.
The correspondence between the destination IP address and the tenant VNI pre-stored in the switch may be stored in an OpenFlow flow table, or the correspondence between the destination IP address and the tenant VNI may be stored for the established VxLan tunnel. The correspondence between the destination IP address pre-stored in the switch and the tenant VNI is more favorable for the maintenance of the OpenFlow flow table and the VxLan tunnel.
In addition, in order to meet the matching requirements of different VxLan messages, in addition to storing the corresponding relationship between the destination IP and the tenant VNI, in each corresponding relationship, that is, in each flow table entry, any one or several of the VNI, the source IP address, the MAC address, and the port of the subnet where the source host is located may also be stored. Wherein the MAC addresses include a source MAC address and a destination MAC address, and the ports include a source port and a destination port. Preferably, the correspondence between the subnet where the source host is located, the source IP address, the destination IP address, the MAC address, the port, and the VNI of the tenant to which the destination host belongs may be stored in each flow entry.
Specifically, an OpenFlow flow table is usually stored in the software OpenFlow switch and the hardware OpenFlow switch, and a corresponding relationship between a destination IP address and a tenant VNI is stored in the OpenFlow flow table, so that for the software OpenFlow switch and the hardware OpenFlow switch, the switch can determine a first VNI of a first tenant to which a destination host corresponding to the destination IP address belongs according to the destination IP address and the corresponding relationship between the destination IP address stored in the OpenFlow flow table and the tenant VNI.
The hardware VxLan switch does not support OpenFlow, so a VxLan tunnel used for representing a corresponding relation is usually established according to the control of SDN control equipment, and the corresponding relation between a target IP address and a tenant VNI is stored aiming at the established VxLan tunnel, so that for the hardware VxLan switch, the switch can determine a first VNI of a first tenant to which a target host corresponding to the target IP address belongs according to the target IP address and the corresponding relation between the target IP address corresponding to the established VxLan tunnel and the tenant VNI.
The SDN control device sends the corresponding relation between the destination IP address and the tenant VNI to the switch in each subnet, and the switch stores the corresponding relation, so that the VNI of the tenant of the destination host corresponding to the destination IP address is determined by the switch according to the destination IP address and the corresponding relation between the destination IP address and the tenant VNI.
If the data transmission method is applied to cross-subnet transmission under the same tenant, the source host and the destination host belong to the same tenant, and the VNI of the tenant to which the destination host belongs is the same as the VNI of the tenant to which the source host belongs; if the data transmission method is applied to cross-subnet transmission under different tenants, the tenant to which the source host belongs is different from the tenant to which the destination host belongs, and the VNI of the tenant to which the destination host belongs is different from the VNI of the tenant to which the source host belongs.
According to the method and the device for establishing the VNI, the switch can determine the VNI of the tenant corresponding to the destination IP address according to the corresponding relation mode stored in different switches.
Example 3:
in order to implement data transmission between different hosts of the same tenant, on the basis of the foregoing embodiments, in an embodiment of the present invention, after receiving a first VxLan packet sent by a source host, before encapsulating a first VNI of a tenant corresponding to a destination IP address in the first VxLan packet, the method further includes:
judging whether a second tenant to which a source host corresponding to the source IP address belongs and the first tenant are the same according to the source IP address carried in the first VxLan message;
if yes, the subsequent steps are carried out.
When the source host and the target host are located under the same tenant, the VxLan message of the source host is sent to the target host, and data traffic transmission between different hosts under the same tenant is achieved.
The method comprises the steps that after a switch receives a first VxLan message sent by a source host, whether the source host and a destination host belong to the same tenant is identified, whether a second tenant and a first tenant, to which the source host corresponding to a source IP address belongs, are judged by the specific switch according to a source IP address carried in the first VxLan message and the stored corresponding relation between the source IP address and a VNI of the tenant to which the corresponding host belongs, if yes, the source host and the destination host belong to the same tenant is determined, and if not, the source host and the destination host do not belong to the same tenant is determined.
When the second tenant and the first tenant are the same tenant, a first VNI corresponding to the first tenant is packaged in a first VxLan message of the source host computer to generate a second VxLan message, and the second VxLan message is sent to the destination host computer.
The switch judges whether a second tenant to which the source host belongs and the first tenant are the same tenant, judges whether the source IP address and the destination IP address are located in the same local area network, if so, considers that the second tenant and the first tenant belong to the same tenant, and if not, considers that the second tenant and the first tenant do not belong to the same tenant. The source IP address may be pre-stored in a flow entry of an OpenFlow flow table of the switch and a corresponding relationship between a source IP address and a VNI of a tenant to which the source host belongs, so that a VNI of a second tenant to which the source IP address belongs may be determined according to each flow entry in the OpenFlow flow table, or a corresponding relationship between the source IP address and a VNI of a tenant to which the source host belongs may be included in a corresponding relationship stored for a VxLan tunnel established by the switch, so that a second tenant to which the source host corresponding to the source IP address belongs may be determined according to the corresponding relationship, and it is determined whether a VNI of the second tenant corresponding to the source IP address is the same as a VNI of a first tenant corresponding to the destination IP address, if yes, the second tenant and the first tenant belong to the same tenant, and if not, the second tenant and the first tenant do not belong to the same tenant, and the like.
In the embodiment of the invention, when the source host and the destination host are positioned under the same tenant, the VxLan message of the source host is sent to the destination host, so that the data traffic transmission between different hosts under the same tenant is realized.
Example 4:
on the basis of the foregoing embodiments, in an embodiment of the present invention, before receiving a first VxLan message sent by a source host, the method further includes:
receiving and storing an ACL rule configured by SDN control equipment, wherein a target VNI for filtering a message is recorded in the ACL rule;
after the second VxLan message is generated, the method further includes:
determining whether the first VNI is the same as the target VNI;
and if so, mirroring the second VxLan message to obtain a third VxLan message, and sending the third VxLan message to acquisition and analysis equipment.
In order to realize data traffic collection more conveniently, when the first VNI is the same as a target VNI in an ACL rule, a third VxLan message obtained according to the mirror image of the second VxLan message is sent to collection and analysis equipment.
The acquisition and analysis device may be other electronic devices, and the electronic device may be an electronic device such as a desktop computer, a portable computer, a server, or a network side device.
The acquisition and analysis device can configure the ACL rule of the switch in each subnet, and the VNI of the tenant is encapsulated in the second VxLan message, so that the acquisition and analysis device can configure the target VNI of the tenant for each subnet in the configured ACL rule, and thus the message sent to the target host under the tenant corresponding to the target VNI is filtered according to the target VNI of the tenant, and the acquisition of data traffic is realized.
Because the target VNI adopted in the ACL rule configured by the acquisition and analysis device is the VNI of the tenant, if the second tenant is the same tenant as the first tenant, that is, the tenants to which different subnets belong are the same, the target VNI of the tenant adopted in the ACL rule is also the same, only one ACL rule of the target VNI is recorded in the ACL rule for filtering the packet, and when a subnet address is newly added or changed, the ACL rule does not need to be reset, so that the maintainability of the ACL rule is improved on the basis of meeting the requirements of existing network service problem troubleshooting, traffic analysis, data content inspection and the like of the same tenant.
And when the first VNI encapsulated in the second VxLan message is the same as the target VNI, mirroring the second VxLan message to obtain a third VxLan message, sending the third VxLan message to the acquisition and analysis equipment, sending the second VxLan message to the target host, and after receiving the third VxLan message, the acquisition and analysis equipment can perform corresponding processing such as problem troubleshooting, flow analysis or data content examination and the like.
Specifically, the switch is connected with the acquisition equipment through a port, and when the switch sends the third VxLan message, the switch sends the third VxLan message to the acquisition and analysis equipment through the port connected with the acquisition and analysis equipment.
And when the first VNI encapsulated in the second VxLan message is different from the target VNI, the second VxLan message is not mirrored, and the second VxLan message is directly sent to the target host.
The process of mirroring the second VxLan message by the switch belongs to the prior art, and is not described in detail in the embodiment of the present invention.
Fig. 3 is a schematic diagram of a data transmission process in the prior art, for a software OpenFlow switch such as an OVS, because the software OpenFlow switch is deployed on a physical server, the software OpenFlow switch is limited by the number of network ports of the physical server and does not support a port mirroring function, a data flow acquisition point is generally implemented on a conventional L3(layer3, three layers) switch of an underlay network, and when an uplink flow of a virtual machine is output to the conventional L3 switch through the OVS, a three-layer data flow, that is, a VxLan message is mirrored to a port of a connection information acquisition and analysis device by configuring an ACL rule and a port flow mirror on the conventional L3 switch; the hardware OpenFlow switch can directly mirror the three-layer data flow to the port connected with the information acquisition equipment through an ACL rule and port mirroring; the VxLan switch mirrors the three-layer data flow to be acquired to the port connected with the information acquisition equipment through the ACL rule and the flow mirroring.
In order to accurately collect three-layer traffic between hosts, the ACL rule of a data collection point uses the VNI of the receiving end, i.e. the VNI of the subnet where the destination host is located, as a condition for matching filtering packets, for example, in order to collect three-layer traffic between a VM, a physical server 1, and a physical server 2, the following ACL rule needs to be set on the collection point: the ACL matching conditions set on the conventional L3 switch are: VNI2 of the subnet in which physical server 1 is located and VNI3 of the subnet in which physical server 2 is located; the hardware OpenFlow switch sets ACL matching conditions as follows: VNI1 of the subnet in which the VM is located and VNI3 of the subnet in which the physical server 2 is located; the hardware VxLan switch is set with ACL matching conditions as follows: VNI1 of the subnet in which the VM is located and VNI2 of the subnet in which the physical server 1 is located; because a tenant may contain tens or hundreds of subnets, and accordingly VNIs of tens or hundreds of subnets, tens or hundreds of ACL rules need to be set on a switch to realize traffic collection between different hosts.
Fig. 4 is a schematic diagram of a data transmission process provided in the embodiment of the present invention, an ACL rule set by an SDN control device is only an ACL rule of a VNI of the same tenant, and an acquisition and analysis device may filter all VxLan messages under the same tenant according to the ACL rule in a matching manner, so that interaction traffic between hosts in all subnets under the tenant can be extracted, and it is not necessary to pay attention to the VNI of an opposite subnet.
In the embodiment of the invention, when the first VNI is the same as the target VNI in the ACL list, the third VxLan message obtained according to the second VxLan message mirror image is sent to the acquisition and analysis equipment, so that the data flow acquisition is realized more conveniently.
Example 5:
in order to implement distribution of a VxLan packet, on the basis of the foregoing embodiments, in the embodiment of the present invention, the method further includes:
receiving a fourth VxLan message;
decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message;
and sending the inner layer message to a host corresponding to the target MAC address according to the target MAC address carried in the inner layer message.
And the switch sends the received inner layer message of the fourth VxLan message to the host corresponding to the destination MAC address, so that the distribution of the VxLan message is realized.
The switch receives the fourth VxLan message, so that the switch is understood as a switch at a receiving end, namely a switch corresponding to the destination host.
And decapsulating the fourth VxLan message received by the switch to obtain an inner layer message of the fourth VxLan message.
And sending the inner layer message to a host corresponding to the destination MAC address according to the destination MAC address carried in the inner layer message. And if the host corresponding to the destination MAC address is the destination host, directly sending the inner layer message to the destination host, and if the host corresponding to the destination MAC address is not the destination host, sending the inner layer message to the destination host through the host corresponding to the MAC address.
Specifically, the process of the switch sending the inner layer message to the host corresponding to the destination MAC address belongs to the prior art, and is not described in detail in the embodiment of the present invention.
In the embodiment of the invention, the switch sends the inner layer message of the received fourth VxLan message to the host corresponding to the destination MAC address, thereby realizing the distribution of the VxLan message.
Example 6:
on the basis of the foregoing embodiments, an embodiment of the present invention further provides a switch, as shown in fig. 5, including: a processor 501, a memory 502, and a transceiver 503;
the processor 501 is configured to execute the program in the read memory 502, and perform the following processes: the control transceiver 503 receives a first VxLan message sent by a source host, and determines a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored correspondence between the destination IP address and the VNI of the tenant; packaging the first VNI in the first VxLan message to generate a second VxLan message; and the control transceiver 503 sends the second VxLan message to the destination host corresponding to the destination IP address according to the destination IP address.
The switch provided by the embodiment of the invention can be an access switch in an SDN data center network, and the switch comprises a software OpenFlow switch, a hardware OpenFlow switch and a hardware VxLan switch, wherein the software OpenFlow switch can be a virtual switch such as an OVS. Based on the same inventive concept, the embodiment of the present invention further provides a switch, and as the principle of solving the problem of the switch is similar to the data transmission method, the implementation of the switch may refer to the implementation of the method, and repeated details are not repeated.
In fig. 5, the bus architecture may include any number of interconnected buses and bridges, with one or more processors, represented by processor 501, and various circuits, represented by memory 502, linked together. The bus architecture may also link together various other circuits such as peripherals, voltage regulators, power management circuits, and the like, which are well known in the art, and therefore, will not be described any further herein. The transceiver 503 may be a number of elements, including a transmitter and a transceiver, providing a means for communicating with various other apparatus over a transmission medium. The processor 501 is responsible for managing the bus architecture and general processing, and the memory 502 may store data used by the processor 501 in performing operations.
Alternatively, the processor 501 may be a CPU (central processing unit), an ASIC (Application Specific Integrated Circuit), an FPGA (Field Programmable Gate Array), or a CPLD (Complex Programmable Logic Device).
The processor 501 is further configured to, if the switch is a software OpenFlow switch or a hardware OpenFlow switch, store a correspondence between the destination IP address and the tenant VNI in an OpenFlow flow table; and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant network identification VNI aiming at the established VxLan tunnel.
The processor 501 is further configured to, after receiving a first VxLan message sent by a source host, determine, according to a source IP address carried in the first VxLan message, whether a second tenant to which the source host corresponding to the source IP address belongs and the first tenant are the same tenant; if yes, the first VNI of the tenant corresponding to the destination IP address is packaged in the first VxLan message.
The processor 501 is further configured to receive, before receiving a first VxLan message sent by a source host, an ACL rule configured by an SDN control device by the control transceiver 503, and store the ACL rule, where a target VNI for filtering the message is recorded in the ACL rule; after a second VxLan message is generated, whether the first VNI is the same as the target VNI or not is judged; if yes, mirroring the second VxLan message to obtain a third VxLan message, and controlling the transceiver 503 to send the third VxLan message to the acquisition and analysis device.
The processor 501 is further configured to control the transceiver 503 to receive a fourth VxLan message; decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message; the control transceiver 503 sends the inner layer packet to the host corresponding to the destination MAC address according to the destination MAC address carried in the inner layer packet.
In the embodiment of the invention, the first VNI of the first tenant to which the target IP address belongs is determined according to the target IP address carried in the first VxLan message, the first VNI is packaged in the first VxLan message, the subnet condition where the target host is located is not concerned, and the VxLan messages among different subnets are packaged by adopting a uniform tenant VNI value, so that the corresponding relation between the host and the tenant is only required to be stored, and the corresponding relation does not need to be updated as long as the tenant to which the host belongs is not changed, thereby being more beneficial to maintenance of a flow table and a VxLan tunnel.
Example 7:
on the basis of the foregoing embodiments, an embodiment of the present invention further provides a switch, as shown in fig. 6, including: the system comprises a processor 601, a communication interface 602, a memory 603 and a communication bus 604, wherein the processor 601, the communication interface 602 and the memory 603 complete mutual communication through the communication bus 604;
the memory 603 has stored therein a computer program which, when executed by the processor 601, causes the processor 601 to perform the steps of:
when a first VxLan message sent by a source host is received, according to a target IP address carried in the first VxLan message and a pre-stored corresponding relation between the target IP address and a tenant VNI, determining a first VxLan network identifier VNI of a first tenant to which the target host corresponding to the target IP address belongs;
packaging the first VNI in the first VxLan message to generate a second VxLan message;
and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
The switch provided by the embodiment of the invention can be an access switch in an SDN data center network, and the switch comprises a software OpenFlow switch, a hardware OpenFlow switch and a hardware VxLan switch.
The communication bus mentioned in the above switch may be a Peripheral Component Interconnect (PCI) bus, an Extended Industry Standard Architecture (EISA) bus, or the like. The communication bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one thick line is shown, but this does not mean that there is only one bus or one type of bus.
The communication interface 602 is used for communication between the above-described switch and other devices.
The Memory may include a Random Access Memory (RAM) or a Non-Volatile Memory (NVM), such as at least one disk Memory. Alternatively, the memory may be at least one memory device located remotely from the processor.
The Processor may be a general-purpose Processor, including a central processing unit, a Network Processor (NP), and the like; but may also be a Digital instruction processor (DSP), an application specific integrated circuit, a field programmable gate array or other programmable logic device, discrete gate or transistor logic, discrete hardware components, or the like.
In the embodiment of the invention, when the processor executes the program stored in the memory, the first VNI of the first tenant to which the target IP address belongs is determined according to the target IP address carried in the first VxLan message, the first VNI is packaged in the first VxLan message, the condition of the subnet in which the target host is located is not concerned, the VxLan messages among different subnets are packaged by adopting a uniform tenant VNI value, and only the corresponding relation between the subnet and the tenant stored in the flow table is needed, so that the maintenance is facilitated.
Example 8:
on the basis of the foregoing embodiments, an embodiment of the present invention further provides a computer storage readable storage medium, in which a computer program executable by a switch is stored, and when the program runs on the switch, the switch is caused to execute the following steps:
when a first VxLan message sent by a source host is received, according to a target IP address carried in the first VxLan message and a pre-stored corresponding relation between the target IP address and a tenant VNI, determining a first VxLan network identifier VNI of a first tenant to which the target host corresponding to the target IP address belongs;
packaging the first VNI in the first VxLan message to generate a second VxLan message;
and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
The computer readable storage medium may be any available medium or data storage device that can be accessed by a processor in a switch, including but not limited to magnetic memory such as floppy disks, hard disks, magnetic tape, magneto-optical disks (MO), etc., optical memory such as CDs, DVDs, BDs, HVDs, etc., and semiconductor memory such as ROMs, EPROMs, EEPROMs, non-volatile memory (NAND FLASH), Solid State Disks (SSDs), etc.
The computer readable storage medium provided in the embodiment of the present invention stores a computer program, and when the computer program is executed by a processor, the first VNI of a first tenant to which a target IP address belongs is determined according to a target IP address carried in a first VxLan message, and the first VNI is encapsulated in the first VxLan message, and instead of paying attention to a subnet situation in which a target host is located, a uniform tenant VNI value is used to encapsulate VxLan messages between different subnets.
Fig. 7 is a schematic diagram of a business site selection apparatus according to an embodiment of the present invention, where the apparatus includes:
the receiving and determining module 701 is configured to, when receiving a first VxLan message sent by a source host, determine a first VxLan network identity VNI of a first tenant to which a destination host belongs, the first VxLan network identity VNI corresponding to a destination IP address, according to the destination IP address carried in the first VxLan message and a correspondence between a prestored destination IP address and the VNI of the tenant;
a packet generation module 702, configured to encapsulate the first VNI in the first VxLan packet, and generate a second VxLan packet;
and the message sending module 703 is configured to send the second VxLan message to a destination host corresponding to the destination IP address according to the destination IP address.
The device further comprises:
a storage module, configured to store, if the switch is a software OpenFlow switch or a hardware OpenFlow switch, a correspondence between the destination IP address and the tenant VNI in an OpenFlow flow table of the switch; and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant VNI aiming at the VxLan tunnel established by the switch.
The device further comprises:
the system comprises a judging module and a processing module, wherein the judging module is used for judging whether a second tenant corresponding to a source host and a first tenant belong to the same tenant or not according to a source IP address carried in a first VxLan message after receiving the first VxLan message sent by the source host; if yes, the first VNI of the tenant corresponding to the destination IP address is packaged in the first VxLan message.
The receiving and determining module is further configured to receive and store an Access Control List (ACL) rule configured by SDN control equipment before receiving a first VxLan message sent by a source host, where the ACL rule records a target VNI for filtering the message;
the message generation module is further configured to determine whether the first VNI is the same as the target VNI after generating a second VxLan message; and if so, mirroring the second VxLan message to obtain a third VxLan message, and sending the third VxLan message to acquisition and analysis equipment.
The message generation module is also used for receiving a fourth VxLan message; decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message; and sending the inner layer message to a host corresponding to the target MAC address according to the target MAC address carried in the inner layer message.
In the embodiment of the invention, the first VNI of the first tenant to which the target IP address belongs is determined according to the target IP address carried in the first VxLan message, the first VNI is packaged in the first VxLan message, the subnet condition where the target host is located is not concerned, and the VxLan messages among different subnets are packaged by adopting a uniform tenant VNI value, so that the corresponding relation between the host and the tenant is only required to be stored, and the corresponding relation does not need to be updated as long as the tenant to which the host belongs is not changed, thereby being more beneficial to the maintenance of a flow table and a VxLan tunnel.
For the system/apparatus embodiments, since they are substantially similar to the method embodiments, the description is relatively simple, and reference may be made to some descriptions of the method embodiments for relevant points.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While the preferred embodiments of the present application have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all alterations and modifications as fall within the scope of the application.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.
Claims (13)
1. A data transmission method, applied to a switch, the method comprising:
receiving a first extensible virtual local area network VxLan message sent by a source host, and determining a first VNI of a first tenant to which a destination host corresponding to a destination IP address belongs according to the destination IP address carried in the first VxLan message and a pre-stored corresponding relation between the destination IP address and a tenant VxLan network identifier VNI;
packaging the first VNI in the first VxLan message to generate a second VxLan message;
and sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
2. The method of claim 1, wherein if the switch is any one of a software OpenFlow switch and a hardware OpenFlow switch, the correspondence of the destination IP address to the tenant VNI is stored in an OpenFlow flow table of the switch;
and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant VNI aiming at the VxLan tunnel established by the switch.
3. The method of claim 1, wherein after receiving a first extensible virtual local area network (VxLan) message sent by a source host, before encapsulating a first VNI of a tenant corresponding to the destination IP address in the first VxLan message, the method further comprises:
judging whether a second tenant to which a source host corresponding to the source IP address belongs and the first tenant are the same according to the source IP address carried in the first VxLan message;
if yes, the subsequent steps are carried out.
4. The method of claim 1, wherein prior to receiving the first VxLan message sent by the source host, the method further comprises:
receiving and storing an Access Control List (ACL) rule configured by Software Defined Network (SDN) control equipment, wherein a target VNI for filtering a message is recorded in the ACL rule;
after the second VxLan message is generated, the method further includes:
determining whether the first VNI is the same as the target VNI;
and if so, mirroring the second VxLan message to obtain a third VxLan message, and sending the third VxLan message to acquisition and analysis equipment.
5. The method of any one of claims 1-4, further comprising:
receiving a fourth VxLan message sent by the source host;
decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message;
and sending the inner layer message to a host corresponding to the target MAC address according to the target MAC address carried in the inner layer message.
6. A data transmission apparatus, applied to a switch, the apparatus comprising:
the receiving and determining module is used for receiving a first extensible virtual local area network VxLan message sent by a source host, and determining a first VxLan network identifier VNI of a first tenant to which a target host corresponding to a target IP address belongs according to the target IP address carried in the first VxLan message and a corresponding relation between the pre-stored target IP address and the VxLan network identifier VNI of the tenant;
the message generation module is used for packaging the first VNI in the first VxLan message and generating a second VxLan message;
and the message sending module is used for sending the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
7. A switch, comprising a memory, a processor, and a transceiver;
the processor is used for reading the program in the memory and executing the following processes: the method comprises the steps that a transceiver is controlled to receive a first VxLan message sent by a source host, and according to a target IP address carried in the first VxLan message and a corresponding relation between a pre-stored target IP address and a tenant VxLan network identifier VNI, a first VNI of a first tenant to which the target host corresponding to the target IP address belongs is determined; packaging the first VNI in the first VxLan message to generate a second VxLan message; and the control transceiver sends the second VxLan message to a target host corresponding to the target IP address according to the target IP address.
8. The switch of claim 7, wherein the processor is further configured to, if the switch is any one of a software OpenFlow switch and a hardware OpenFlow switch, save the correspondence of the destination IP address to the tenant VNI in an OpenFlow flow table; and if the switch is a hardware VxLan switch, storing the corresponding relation between the destination IP address and the tenant network identification VNI aiming at the established VxLan tunnel.
9. The switch according to claim 7, wherein the processor is specifically configured to, after receiving a first VxLan message sent by a source host, determine, according to a source IP address carried in the first VxLan message, whether a second tenant to which the source host corresponding to the source IP address belongs and the first tenant are the same tenant; if yes, the first VNI of the tenant corresponding to the destination IP address is packaged in the first VxLan message.
10. The switch of claim 9, wherein the processor is specifically configured to, before receiving a first VxLan packet sent by a source host, control the transceiver to receive an ACL rule configured by a software defined network SDN control device, and store the ACL rule, where a target VNI for filtering the packet is recorded in the ACL rule; after a second VxLan message is generated, whether the first VNI is the same as the target VNI or not is judged; and if so, mirroring the second VxLan message to obtain a third VxLan message, and controlling the transceiver to send the third VxLan message to acquisition and analysis equipment.
11. The switch of claim 7, wherein the processor is further configured to control the transceiver to receive a fourth VxLan message sent by the source host; decapsulating the fourth VxLan message to obtain an inner layer message of the fourth VxLan message; and the control transceiver sends the inner layer message to a host corresponding to the target MAC address according to the target MAC address carried in the inner layer message.
12. A switch, comprising: the system comprises a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory complete mutual communication through the communication bus;
the memory has stored therein a computer program which, when executed by the processor, causes the processor to carry out the steps of the method of any one of claims 1 to 5.
13. A computer-readable storage medium, storing a computer program executable by a switch, which when run on the switch causes the switch to perform the steps of the method of any one of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810002989.8A CN109995639B (en) | 2018-01-02 | 2018-01-02 | Data transmission method, device, switch and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810002989.8A CN109995639B (en) | 2018-01-02 | 2018-01-02 | Data transmission method, device, switch and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109995639A CN109995639A (en) | 2019-07-09 |
| CN109995639B true CN109995639B (en) | 2021-06-04 |
Family
ID=67128900
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810002989.8A Active CN109995639B (en) | 2018-01-02 | 2018-01-02 | Data transmission method, device, switch and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109995639B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113037684B (en) * | 2019-12-24 | 2022-05-24 | 中国电信股份有限公司 | VxLan tunnel authentication method, device and system and gateway |
| CN114363231A (en) * | 2020-09-28 | 2022-04-15 | 中国移动通信有限公司研究院 | Method and device for switching downlink flow and computer readable storage medium |
| CN112615749B (en) * | 2020-12-28 | 2023-04-18 | 广州西麦科技股份有限公司 | Flow scheduling system and method based on VXLAN and OpenFlow |
| CN114389905B (en) * | 2021-12-08 | 2023-10-13 | 阿里巴巴(中国)有限公司 | Network traffic statistics method, related device and medium |
| CN116260756A (en) * | 2021-12-10 | 2023-06-13 | 华为技术有限公司 | Message forwarding method, device and network system |
| CN115001900A (en) * | 2022-06-06 | 2022-09-02 | 中移(杭州)信息技术有限公司 | Message forwarding method, device, equipment and computer readable storage medium |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103841028A (en) * | 2014-03-24 | 2014-06-04 | 杭州华三通信技术有限公司 | Method and device for forwarding messages |
| CN104350714A (en) * | 2014-05-29 | 2015-02-11 | 华为技术有限公司 | Packet forwarding method and VxLAN gateway |
| CN104426680A (en) * | 2013-09-03 | 2015-03-18 | 华为技术有限公司 | Data transmission method, device and system |
| CN106533890A (en) * | 2016-12-30 | 2017-03-22 | 华为技术有限公司 | Message processing method, device and system |
| CN106850379A (en) * | 2015-12-04 | 2017-06-13 | 中国电信股份有限公司 | Method and system for realizing subnet intercommunication |
| CN106998286A (en) * | 2017-05-05 | 2017-08-01 | 杭州迪普科技股份有限公司 | A kind of VXLAN message forwarding methods and device |
| CN107493222A (en) * | 2017-08-15 | 2017-12-19 | 杭州迪普科技股份有限公司 | A kind of method and device of VXLAN messages forwarding |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP6024474B2 (en) * | 2013-01-23 | 2016-11-16 | 富士通株式会社 | Multi-tenant system, management apparatus, management program, and control method of multi-tenant system |
-
2018
- 2018-01-02 CN CN201810002989.8A patent/CN109995639B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104426680A (en) * | 2013-09-03 | 2015-03-18 | 华为技术有限公司 | Data transmission method, device and system |
| CN103841028A (en) * | 2014-03-24 | 2014-06-04 | 杭州华三通信技术有限公司 | Method and device for forwarding messages |
| CN104350714A (en) * | 2014-05-29 | 2015-02-11 | 华为技术有限公司 | Packet forwarding method and VxLAN gateway |
| CN106850379A (en) * | 2015-12-04 | 2017-06-13 | 中国电信股份有限公司 | Method and system for realizing subnet intercommunication |
| CN106533890A (en) * | 2016-12-30 | 2017-03-22 | 华为技术有限公司 | Message processing method, device and system |
| CN106998286A (en) * | 2017-05-05 | 2017-08-01 | 杭州迪普科技股份有限公司 | A kind of VXLAN message forwarding methods and device |
| CN107493222A (en) * | 2017-08-15 | 2017-12-19 | 杭州迪普科技股份有限公司 | A kind of method and device of VXLAN messages forwarding |
Non-Patent Citations (1)
| Title |
|---|
| Vxlan-原理;Frankiee;《cnblogs.com/frankielf0921/p/5931690.html》;20161005;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109995639A (en) | 2019-07-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109995639B (en) | Data transmission method, device, switch and storage medium | |
| US11621869B2 (en) | Enabling access to dedicated resources in a virtual network using top of rack switches | |
| US11050586B2 (en) | Inter-cloud communication method and related device, and inter-cloud communication configuration method and related device | |
| US10063470B2 (en) | Data center network system based on software-defined network and packet forwarding method, address resolution method, routing controller thereof | |
| CN105657081B (en) | The method, apparatus and system of DHCP service are provided | |
| CN109617995B (en) | Management system and method for VPC (virtual private network) internal container of tenant cluster and electronic equipment | |
| CN107733795B (en) | Ethernet virtual private network EVPN and public network intercommunication method and device | |
| WO2017113300A1 (en) | Route determining method, network configuration method and related device | |
| CN112887229B (en) | Session information synchronization method and device | |
| US20200304456A1 (en) | Network and Network Management Method | |
| US20230216786A1 (en) | Method for forwarding service packet, method for sending sr policy, device, and system | |
| CN109379239B (en) | Method and device for configuring access switch in OpenStack environment | |
| CN115118585A (en) | Service deployment method, device and system | |
| WO2021147358A1 (en) | Network interface establishing method, apparatus, and system | |
| KR20220104241A (en) | Network working methods, devices, equipment and storage media | |
| US20230246955A1 (en) | Collection of segment routing ipv6 (srv6) network telemetry information | |
| EP4329248A1 (en) | Packet forwarding method and apparatus, network device, and storage medium | |
| CN109995636A (en) | Mixed networking method, apparatus, system, equipment and medium | |
| CN106506238A (en) | A kind of network element management method and system | |
| US11888736B2 (en) | Service chaining in fabric networks | |
| WO2022193897A1 (en) | Service deployment method, apparatus, and system | |
| EP4149062A1 (en) | Deployment method and apparatus for virtualized network service | |
| CN116016034B (en) | SDN-based service path scheduling method and device | |
| US11671354B2 (en) | Collection of segment routing IPV6 (SRV6) network telemetry information | |
| US20240137314A1 (en) | Service chaining in fabric networks |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |