CN110191042A - A kind of message forwarding method and device - Google Patents

A kind of message forwarding method and device Download PDF

Info

Publication number
CN110191042A
CN110191042A CN201910425545.XA CN201910425545A CN110191042A CN 110191042 A CN110191042 A CN 110191042A CN 201910425545 A CN201910425545 A CN 201910425545A CN 110191042 A CN110191042 A CN 110191042A
Authority
CN
China
Prior art keywords
service
vlan tag
equipment
service message
address
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910425545.XA
Other languages
Chinese (zh)
Other versions
CN110191042B (en
Inventor
张海洋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd
Original Assignee
New H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd filed Critical New H3C Technologies Co Ltd
Priority to CN201910425545.XA priority Critical patent/CN110191042B/en
Publication of CN110191042A publication Critical patent/CN110191042A/en
Application granted granted Critical
Publication of CN110191042B publication Critical patent/CN110191042B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • H04L12/4645Details on frame tagging
    • H04L12/465Details on frame tagging wherein a single frame includes a plurality of VLAN tags
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2212/00Encapsulation of packets

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides a kind of message forwarding method and device, this method comprises: receiving the service message for the VXLAN encapsulation that TOR equipment is sent;The VXLAN encapsulation is released, and when the target MAC (Media Access Control) address for determining the service message is the MAC Address of the EOR equipment, first VPN corresponding with the first service VLAN Tag is determined according to the first service VLAN Tag carried in the service message;Three layer retransmitting table items are searched in the first VPN according to the purpose IP address of the service message, and three layers of forwarding are carried out to the service message according to lookup result.The ability of EOR equipment can be made full use of using the embodiment of the present invention, reduces the function complexity of CE equipment, save Internet resources.

Description

A kind of message forwarding method and device
Technical field
The present invention relates to network communication technology field more particularly to a kind of message forwarding methods and device.
Background technique
In communication cloud network, VNF (Virtualised Network Function, the network function module of virtualization) Network element provides network service function as a kind of network equipment being carried on virtualization technology.In non-SDN (Software Defined Network, software defined network) in the environment of network, between VNF network element, VNF network element and CE (Customer Edge, customer network edge) forwarded service is provided for service communication between equipment.VNF network element first line of a couplet TOR (Top of Rack, rack interchanger) equipment and TOR equipment first line of a couplet EOR (End of Row, cabinet interchanger) equipment conduct Underlay (lower layer) equipment provides the double layer channel function between VNF network element, between VNF network element and CE equipment.Usual situation Under, CE equipment functions primarily as the gateway of VNF network element device and provides service for VNF network element.
When SDN technology and DC (Data Center, data center) demand introduce communication cloud network, TOR equipment with The Fabric network of EOR equipment composition, constructs the two-tier system network of a underlay Yu overlay (upper layer).? In overlay network, generally use VXLAN (Virtual Extensible Local Area Network, it is virtual expansible Local area network) technology carrying upper-layer service data.Due to the presence of overlay stacking network, so that the deployment of VNF network element has more Flexibility can be deployed on any host, while bearer network opens full automation, brings relative to non-SDN scene The tremendous increase of efficiency.
However discovery is practiced, SDN technology introduces after communication cloud network, and service message needs detour to carry out to CE equipment Three-layer routing processing, and the EOR equipment as SDN gateway is intended only as two-layer equipment and is using, and provides to capacity of equipment and network Source causes significant wastage.
Summary of the invention
The present invention provides a kind of message forwarding method and device, in the communication cloud network to solve existing operation SDN technology The problem of significant wastage is caused to capacity of equipment and Internet resources.
According to a first aspect of the embodiments of the present invention, a kind of message forwarding method is provided, applied to the logical of operation SDN technology Believe the EOR equipment in cloud network, dividing in the EOR equipment based on service VLAN there are multiple VPN, which comprises
Receive the service message for the VXLAN encapsulation that TOR equipment is sent;
The VXLAN encapsulation is released, and when the target MAC (Media Access Control) address for determining the service message is the MAC of the EOR equipment It is corresponding with the first service VLAN Tag according to the first service VLAN Tag determination carried in the service message when address The first VPN;
Three layer retransmitting table items are searched in the first VPN according to the purpose IP address of the service message, and according to looking into Result is looked for carry out three layers of forwarding to the service message.
According to a second aspect of the embodiments of the present invention, a kind of apparatus for forwarding message is provided, applied to the logical of operation SDN technology Believe the EOR equipment in cloud network, which is characterized in that multiple VPN, the dress are had based on service VLAN division in the EOR equipment It sets and includes:
Receiving unit, the service message of the VXLAN encapsulation for receiving the transmission of TOR equipment;
Encapsulation/decapsulation unit, for releasing the VXLAN encapsulation;
Determination unit, for when determine the service message target MAC (Media Access Control) address be the EOR equipment MAC Address when, According to the first service VLAN Tag determination carried in the service message and the first service VLAN Tag corresponding first VPN;
Retransmission unit searches three layers of forwarding for the purpose IP address according to the service message in the first VPN List item, and three layers of forwarding are carried out to the service message according to lookup result.
Using the embodiment of the present invention, by the communication cloud network of operation SDN technology, by Service Gateway by under CE equipment It is sink to EOR equipment, and VPN division is carried out based on service VLAN in EOR equipment, when EOR equipment receives the transmission of TOR equipment When the service message of VXLAN encapsulation, after EOR equipment releases VXLAN encapsulation, when the target MAC (Media Access Control) address for determining service message is It is corresponding with service VLAN Tag according to the service VLAN Tag determination carried in the service message when the MAC Address of itself VPN, and three layer retransmitting table items are searched in the VPN according to the purpose IP address of the service message and are forwarded, it takes full advantage of The ability of EOR equipment, and reduce the function complexity of CE equipment;Further, since Service Gateway is EOR equipment, therefore, reduce CE equipment is that the flow of Service Gateway detours, and saves Internet resources.
Detailed description of the invention
Fig. 1 is a kind of flow diagram of message forwarding method provided in an embodiment of the present invention;
Fig. 2 is a kind of configuration diagram of concrete application scene provided in an embodiment of the present invention;
Fig. 3 is a kind of structural schematic diagram of apparatus for forwarding message provided in an embodiment of the present invention.
Specific embodiment
Technical solution in embodiment in order to enable those skilled in the art to better understand the present invention, and make of the invention real The above objects, features, and advantages for applying example can be more obvious and easy to understand, with reference to the accompanying drawing to technical side in the embodiment of the present invention Case is described in further detail.
It referring to Figure 1, is a kind of flow diagram of message forwarding method provided in an embodiment of the present invention, wherein the report Literary retransmission method can be applied to the EOR equipment in the communication cloud network of operation SDN technology, which may include Following steps:
Step 101, the service message for receiving the VXLAN encapsulation that TOR equipment is sent.
In the embodiment of the present invention, service message VNF network element to the forwarding process between EOR equipment hereinafter in conjunction with Example is illustrated, and this will not be repeated here for the embodiment of the present invention.
Step 102 releases VXLAN encapsulation, and as the MAC that the target MAC (Media Access Control) address of determining service message is EOR equipment When location, first VPN corresponding with the first VLAN Tag is determined according to the first service VLAN Tag carried in service message.
In the embodiment of the present invention, in order to reduce the function complexity of CE equipment, and the forwarding of EOR equipment is made full use of Can, Service Gateway can be sunk down into EOR equipment from existing CE equipment, using EOR as Service Gateway, to VNF network element Service message carries out three layers of forwarding.
And in view of in the communication cloud network of existing operation SDN technology, EOR equipment is to carry out message based on VXLAN ID to turn Hair, but business network carries out message forwarding based on service VLAN Tag (label), and therefore, EOR equipment is as service network It closes, the forward mode for needing to modify EOR equipment is VXLAN ID+VLAN Tag mode.
Correspondingly, in embodiments of the present invention, it can be based on service VLAN in EOR equipment (different business is not with of the same trade or business Business VLAN is distinguished) carry out VPN division.
Illustratively, (different business VLAN is with different business VLAN by the corresponding one or more service VLAN Tag of a VPN Tag is distinguished).
In the embodiment of the present invention, when EOR equipment receives the service message of VXLAN encapsulation of TOR equipment transmission, to this The service message of VXLAN encapsulation carries out releasing VXLAN encapsulation, and determines purpose MAC (the Media Access of service message Control, media access control) whether address identical as the MAC Address of itself.
It should be noted that in embodiments of the present invention, since EOR equipment is as Service Gateway, VNF network element The target MAC (Media Access Control) address of service message (if non-specified otherwise, service message mentioned in this article refers both to three-tier message) is EOR equipment MAC Address;In addition, three layer retransmitting table items (route table items, ARP (Address that the service message for VNF network element forwards Resolution Protocol, address resolution protocol) list item etc.) also safeguarded by EOR equipment.
The MAC Address phase of the target MAC (Media Access Control) address of service message after EOR equipment, which determines, releases VXLAN encapsulation and itself Meanwhile EOR equipment obtains the service VLAN Tag (referred to herein as the first service VLAN Tag) in the service message, and according to First service VLAN Tag inquires the corresponding relationship of the service VLAN Tag and VPN of self maintained, with determining and the first business The corresponding VPN of VLAN Tag (referred to herein as the first VPN).
Step 103 searches three layer retransmitting table items according to the purpose IP address of service message in the first VPN, and according to looking into Result is looked for carry out three layers of forwarding to service message.
In the embodiment of the present invention, when EOR equipment has determined the first service VLAN Tag corresponding VPN, according to the industry Business message purpose IP address search three layer retransmitting table items in the first VPN, with determine the service message next hop information with And the MAC Address of purpose end equipment, and three layers of forwarding are carried out to service message according to lookup result.
Wherein, above-mentioned three layer retransmitting table item may include that (record has the corresponding next-hop letter of purpose IP address to route table items Breath, the affiliated service VLAN information of destination etc.) and ARP entry (record has the corresponding MAC Address of purpose IP address) etc..
EOR equipment according to search MAC Address that the obtained lookup result of three layer retransmitting table items may include purpose end equipment, The information such as affiliated service VLAN and the outgoing interface for connecting next-hop.
As it can be seen that in method flow shown in Fig. 1, by the communication cloud network of operation SDN technology, by Service Gateway by CE equipment sinks down into EOR equipment, and carries out VPN division based on service VLAN in EOR equipment, sets when EOR equipment receives TOR When the service message for the VXLAN encapsulation that preparation is sent, after EOR equipment releases VXLAN encapsulation, when the purpose for determining service message When MAC Address is the MAC Address of itself, according to service VLAN Tag determination and the service VLAN carried in the service message The corresponding VPN of Tag, and three layer retransmitting table items are searched in the VPN according to the purpose IP address of the service message and are forwarded, it fills Divide the ability that EOR equipment is utilized, and reduces the function complexity of CE equipment;Further, since Service Gateway is EOR equipment, Therefore, reduce the flow that CE equipment is Service Gateway to detour, save Internet resources.
The present invention in one embodiment, it is above-mentioned that three layers of forwarding are carried out to service message according to lookup result, can be with Include:
When the VLAN Tag for determining the affiliated service VLAN of purpose end equipment according to lookup result is the first service VLAN Tag When, the target MAC (Media Access Control) address of the service message replaces with to the MAC Address of the purpose end equipment, and to target MAC (Media Access Control) address replacement after Service message carry out VXLAN encapsulation after, from the outgoing interface of the connection next-hop forward.
In this embodiment, EOR equipment carries out three-tier message turn according to the purpose IP address of service message in the first VPN Hair can determine the next hop information (outgoing interface of next-hop is connected in EOR equipment) of the service message, purpose end equipment MAC Address and the corresponding service VLAN Tag of purpose end equipment (the i.e. VLAN of the service VLAN of purpose end equipment ownership Tag)。
When the corresponding service VLAN Tag of purpose end equipment is the first service VLAN Tag (business received with EOR Service VLAN Tag in message is identical) when, EOR equipment directly carries out Intranet forwarding to the service message, by the service message Target MAC (Media Access Control) address replace with the MAC Address of the purpose end equipment, and the replaced service message of target MAC (Media Access Control) address is carried out VXLAN encapsulation, and outgoing interface (port of the TOR equipment side) forwarding for passing through connection next-hop.
It should be noted that in this embodiment, EOR equipment carries out VXLAN encapsulation and TOR equipment to service message Receive the forwarding process after the service message of the VXLAN encapsulation of EOR equipment transmission may refer to it is existing in the related technology Associated description, this will not be repeated here for the embodiment of the present invention.
In another embodiment, above-mentioned that three layers of forwarding are carried out to service message according to lookup result, it can wrap It includes:
When according to lookup result determine the corresponding VLAN Tag of the affiliated service VLAN of purpose end equipment be the second service VLAN Tag, and when the first service VLAN Tag and the second service VLAN Tag correspond to same VPN, by the target MAC (Media Access Control) address of service message The first service VLAN Tag in service message is replaced with the second service VLAN by the MAC Address for replacing with the purpose end equipment Tag, and after carrying out VXLAN encapsulation to target MAC (Media Access Control) address and the replaced service message of service VLAN Tag, from connection next-hop Outgoing interface forwarding.
In this embodiment, when EOR equipment determines that the corresponding service VLAN Tag of purpose end equipment is the second service VLAN When Tag (the first VLAN Tag is different from the 2nd VLAN Tag), EOR equipment can inquire certainly according to the second service VLAN Tag The corresponding relationship of the service VLAN Tag and VPN of body maintenance, to determine the corresponding VPN of the second service VLAN Tag.
It (is first when the corresponding VPN of the second service VLAN Tag VPN corresponding with the first service VLAN Tag is identical When VPN), EOR equipment directly carries out Intranet forwarding to the service message, at this point, EOR equipment is in addition to by the purpose of the service message MAC Address replaces with except the MAC Address of the purpose end equipment, it is also necessary to the first service VLAN that will be carried in the service message Tag replaces with the 2nd VLAN Tag, and carries out VXLAN encapsulation to target MAC (Media Access Control) address and the replaced service message of VLAN Tag, And outgoing interface (port of the TOR equipment side) forwarding for passing through connection next-hop.
In another embodiment, above-mentioned that three layers of forwarding are carried out to service message according to lookup result, it can wrap It includes:
When according to lookup result determine the corresponding VLAN Tag of the affiliated service VLAN of purpose end equipment be third service VLAN Tag, and when the first service VLAN Tag and third service VLAN Tag correspond to different VPN, determine the outgoing interface of connection next-hop For the port of TOR equipment side or the port of CE equipment side;
If the port of TOR equipment side, then the target MAC (Media Access Control) address of service message is replaced with to the MAC of the purpose end equipment The first service VLAN Tag in service message is replaced with third service VLAN Tag by address, and to target MAC (Media Access Control) address and industry It is engaged in after the replaced service message progress VXLAN encapsulation of VLAN Tag, is forwarded from the outgoing interface of the connection next-hop;
If the port of CE equipment side, then the target MAC (Media Access Control) address of service message is replaced with to the MAC of the purpose end equipment The first service VLAN Tag in service message is replaced with third service VLAN Tag by location, and by target MAC (Media Access Control) address and business The replaced service message of VLAN Tag is forwarded from the outgoing interface of the connection next-hop.
In this embodiment, when EOR equipment determines that the corresponding service VLAN Tag of purpose end equipment is third service VLAN When Tag (the 3rd VLAN Tag is different from the first VLAN Tag), EOR equipment can inquire certainly according to the third service VLAN Tag The corresponding relationship of the service VLAN Tag and VPN of body maintenance, to determine the corresponding VPN of third service VLAN Tag.
When the corresponding VPN of third service VLAN Tag VPN difference corresponding with the first service VLAN Tag, EOR equipment It determines and across VPN forwarding is carried out to the service message, at this point, EOR equipment can determine that the outgoing interface of connection next-hop is TOR equipment The port of side or the port of CE equipment side.
If the outgoing interface for connecting next-hop is the port of TOR equipment side, i.e. service message interaction between VNF network element Service message, then the target MAC (Media Access Control) address of the service message is replaced with the MAC Address of purpose end equipment by EOR equipment, by business report The the first service VLAN Tag carried in text replaces with third service VLAN Tag, and to target MAC (Media Access Control) address, that is, service VLAN After the replaced service message of Tag carries out VXLAN encapsulation, forwarded from the outgoing interface of the connection next-hop.
If the outgoing interface for connecting next-hop is the port of CE equipment side, i.e., the service message is that VNF network element accesses CE equipment Service message (as access outer net service message), then the target MAC (Media Access Control) address of the service message is replaced with the mesh by EOR equipment End equipment MAC Address, the first service VLAN Tag in service message is replaced with into third service VLAN Tag, and by mesh MAC Address and the replaced service message of service VLAN Tag (do not need carry out VXLAN encapsulation) from the connection next-hop Outgoing interface forwarding, that is, be sent to CE equipment.
It should be noted that in this embodiment, when CE equipment receives the service message of EOR equipment transmission, Ke Yigen Two layers of forwarding are carried out according to the target MAC (Media Access Control) address of the service message, without carrying out three-layer routing processing.
In order to make those skilled in the art more fully understand technical solution provided in an embodiment of the present invention, below with reference to specific Application scenarios are illustrated technical solution provided in an embodiment of the present invention.
Fig. 2 is referred to, is a kind of configuration diagram of concrete application scene provided in an embodiment of the present invention, as shown in Fig. 2, In the application scenarios, for EOR equipment as Service Gateway, maintenance has three layers of forwarding of the service message forwarding for VNF network element List item, and different VPN are divided based on service VLAN.
Based on application scenarios shown in Fig. 2, message forwarding process provided in an embodiment of the present invention is accomplished by
Embodiment one, VNF network element access CE equipment
By taking VNF network element 1 as an example, it is assumed that the corresponding service VLAN Tag of VNF network element 1 is VLAN101.
VNF network element 1 sends to OVS (Open Virtual Switch, virtual switch of increasing income) equipment 1 and carries VLAN 101 service message, the target MAC (Media Access Control) address of the service message are the MAC Address (being assumed to be 1-1-1) of EOR equipment.
OVS equipment 1 receives the service message of the transmission of VNF network element 1, and the VLAN in this host is added for the service message Tag (is assumed to be VLAN 201), generates the service message of QinQ (double layer VLAN) format, and is sent to TOR equipment 1.
When TOR equipment 1 receives the service message of the QinQ format, carried out according to outside VLAN Tag (VLAN 201) VLAN → VXLAN mapping (assuming that the VXLAN ID after mapping is VXLAN 1), and VXLAN encapsulation is carried out to service message, it obtains The service message (being referred to as QinVXLAN message) of VXLAN encapsulation.Since the target MAC (Media Access Control) address of service message sets for EOR Standby MAC Address, therefore, the service message that TOR equipment can encapsulate the VXLAN are sent to EOR equipment.
When EOR equipment receives the service message of VXLAN encapsulation, the VXLAN encapsulation of the service message is released, determines the industry The target MAC (Media Access Control) address of business message is the MAC Address (1-1-1) of itself, and EOR equipment obtains the business carried in the service message VLAN Tag (VLAN 101), the service VLAN Tag for inquiring self maintained according to service VLAN Tag is corresponding with VPN to close System determines VPN (being assumed to be VPN 100) corresponding with VLAN 101.
EOR equipment searches three layer retransmitting table items, in VPN 100 according to the purpose IP address of the service message with determination Connect the outgoing interface (being assumed to be the port connecting with CE equipment) of next-hop, the MAC Address (being assumed to be 2-2-2) of purpose end equipment And service VLAN Tag (being assumed to be VLAN 300, the corresponding VPN of VLAN 300 is VPN 300).
EOR equipment is repaired the target MAC (Media Access Control) address of the service message (vlan data packet) after releasing VXLAN encapsulation by 1-1-1 It is changed to 2-2-2, service VLAN Tag is revised as VLAN300 by VLAN 101, and by target MAC (Media Access Control) address and service VLAN Tag Modified service message is sent to CE equipment, after CE equipment receives the service message, is not required to carry out three to the service message Layer route processing, and only need to carry out two layers of forwarding according to purpose MAC.
Embodiment two, VNF network element are exchanged visits
By taking VNF network element 1 accesses VNF network element 3 as an example, it is assumed that the corresponding service VLAN Tag of VNF network element 1 is VLAN 101, The corresponding service VLAN Tag of VNF network element 3 is VLAN 103.
VNF network element 1 sends to OVS (Open Virtual Switch, virtual switch of increasing income) equipment 1 and carries VLAN 101 service message, the target MAC (Media Access Control) address of the service message are the MAC Address (being assumed to be 1-1-1) of EOR equipment.
OVS equipment 1 receives the service message of the transmission of VNF network element 1, and the VLAN in this host is added for the service message Tag (is assumed to be VLAN 201), generates the service message of QinQ (double layer VLAN) format, and is sent to TOR equipment 1.
When TOR equipment 1 receives the service message of the QinQ format, carried out according to outside VLAN Tag (VLAN 201) VLAN → VXLAN mapping (assuming that the VXLAN ID after mapping is VXLAN 1), and VXLAN encapsulation is carried out to service message, it obtains The service message (being referred to as QinVXLAN message) of VXLAN encapsulation.Since the target MAC (Media Access Control) address of service message sets for EOR Standby MAC Address, therefore, the service message that TOR equipment can encapsulate the VXLAN are sent to EOR equipment.
When EOR equipment receives the service message of VXLAN encapsulation, the VXLAN encapsulation of the service message is released, determines the industry The target MAC (Media Access Control) address of business message is the MAC Address (1-1-1) of itself, and EOR equipment obtains the business carried in the service message VLAN Tag (VLAN 101), the service VLAN Tag for inquiring self maintained according to service VLAN Tag is corresponding with VPN to close System determines VPN (being assumed to be VPN 100) corresponding with VLAN 101.
EOR equipment searches three layer retransmitting table items, in VPN 100 according to the purpose IP address of the service message with determination The MAC Address of the outgoing interface (being assumed to be the port connecting with TOR equipment 2), purpose end equipment that connect next-hop (is assumed to be 3-3- And service VLAN Tag (the corresponding VPN of VLAN 103, VLAN103 be VPN200) 3).
The target MAC (Media Access Control) address of service message after releasing VXLAN encapsulation is modified 3-3-3, business by 1-1-1 by EOR equipment VLAN Tag is revised as VLAN 103 by VLAN 101, and to target MAC (Media Access Control) address and the modified business of service VLAN Tag After message carries out VXLAN encapsulation, it is sent to TOR equipment 2.
When TOR equipment 2 receives the service message of VXLAN encapsulation, carried out according to VXLAN ID (being assumed to be VXLAN 2) VXLAN → VLAN mapping (assuming that the VLAN Tag after mapping is VLAN202), obtains the service message of QinQ format, according to this The service message of the QinQ format is sent to OVS equipment 2 by the target MAC (Media Access Control) address of message.
OVS equipment 2 receives the service message of QinQ format, strips outside VLAN Tag (VLAN202), and according to message Target MAC (Media Access Control) address the service message (vlan data packet) is sent to VNF3.
Through above description as can be seen that in technical solution provided in an embodiment of the present invention, by operation SDN technology Communication cloud network in, Service Gateway is sunk down into EOR equipment by CE equipment, and in EOR equipment based on service VLAN carry out VPN is divided, and when EOR equipment receives the service message of VXLAN encapsulation of TOR equipment transmission, EOR equipment releases the VXLAN After encapsulation, when the target MAC (Media Access Control) address for determining service message is the MAC Address of itself, according to the industry carried in the service message Be engaged in the determining VPN corresponding with service VLAN Tag of VLAN Tag, and according to the purpose IP address of the service message in the VPN It searches three layer retransmitting table items to be forwarded, takes full advantage of the ability of EOR equipment, and reduce the function complexity of CE equipment; Further, since Service Gateway is EOR equipment, therefore, reduces the flow that CE equipment is Service Gateway and detour, save network money Source.
Fig. 3 is referred to, is a kind of structural schematic diagram of apparatus for forwarding message provided in an embodiment of the present invention, wherein the dress The EOR equipment that can be applied in above method embodiment is set, as shown in figure 3, the apparatus for forwarding message may include:
Receiving unit 310, the virtual expansible local area network VXLAN encapsulation sent for rack interchanger TOR equipment Service message;
Encapsulation/decapsulation unit 320, for releasing the VXLAN encapsulation;
Determination unit 330, for being the EOR when the purpose MAC address for determining the service message When the MAC Address of equipment, according to the first service VLAN label Tag determination and first business carried in the service message Corresponding first VPN of VLAN Tag;
Retransmission unit 340 is searched three layers in the first VPN for the purpose IP address according to the service message and is turned Forwarding list item, and three layers of forwarding are carried out to the service message according to lookup result.
In an alternative embodiment, the corresponding one or more service VLAN Tag of a VPN.
In an alternative embodiment, the retransmission unit 340 determines that destination is set according to the lookup result specifically for working as When the VLAN Tag of standby affiliated service VLAN is the first service VLAN Tag, by the target MAC (Media Access Control) address of the service message Replace with the MAC Address of the purpose end equipment;
The encapsulation/decapsulation unit 320 is specifically used for carrying out VXLAN to the replaced service message of target MAC (Media Access Control) address Encapsulation;
The retransmission unit 340 turns specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop Hair.
In an alternative embodiment, the determination unit 330 is also used to determine purpose end equipment according to the lookup result When the corresponding VLAN Tag of affiliated service VLAN is the second service VLAN Tag, the first service VLAN Tag and described is determined Whether the second service VLAN Tag corresponds to same VPN;
The retransmission unit 340 is specifically used for working as the first service VLAN Tag and the second service VLAN Tag When corresponding same VPN, the target MAC (Media Access Control) address of the service message is replaced with to the MAC Address of the purpose end equipment, by the industry The first service VLAN Tag in business message replaces with the second service VLAN Tag;
The encapsulation/decapsulation unit 320 is specifically used for target MAC (Media Access Control) address and the replaced industry of service VLAN Tag It is engaged in after message progress VXLAN encapsulation;
The retransmission unit 340 turns specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop Hair.
In an alternative embodiment, the determination unit 330 is also used to determine purpose end equipment according to the lookup result When the corresponding VLAN Tag of affiliated service VLAN is third service VLAN Tag, the first service VLAN Tag and described is determined Whether third service VLAN Tag corresponds to same VPN;
The determination unit 330 is also used to as the first service VLAN Tag and Tag couples of third service VLAN described When answering different VPN, determine connection next-hop outgoing interface be TOR equipment side port or with customer network edge CE equipment side Port;
The retransmission unit 340, specifically for the port if TOR equipment side, then by the purpose MAC of the service message Address replaces with the MAC Address of the purpose end equipment, the first service VLAN Tag in the service message is replaced with described Third service VLAN Tag;
The encapsulation/decapsulation unit 320 is specifically used for target MAC (Media Access Control) address and the replaced industry of service VLAN Tag Business message carries out VXLAN encapsulation;
The retransmission unit 340 turns specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop Hair;
The retransmission unit 340, specifically for the port if CE equipment side, then by the purpose MAC of the service message Address replaces with the MAC Address of the purpose end equipment, the first service VLAN Tag in the service message is replaced with described Third service VLAN Tag, and by target MAC (Media Access Control) address and the replaced service message of service VLAN Tag from the connection next-hop Outgoing interface forwarding.
The function of each unit and the realization process of effect are specifically detailed in the above method and correspond to step in above-mentioned apparatus Realization process, details are not described herein.
For device embodiment, since it corresponds essentially to embodiment of the method, so related place is referring to method reality Apply the part explanation of example.The apparatus embodiments described above are merely exemplary, wherein described be used as separation unit The unit of explanation may or may not be physically separated, and component shown as a unit can be or can also be with It is not physical unit, it can it is in one place, or may be distributed over multiple network units.It can be according to actual The purpose for needing to select some or all of the modules therein to realize the present invention program.Those of ordinary skill in the art are not paying Out in the case where creative work, it can understand and implement.
As seen from the above-described embodiment, by operation SDN technology communication cloud network in, by Service Gateway by under CE equipment It is sink to EOR equipment, and VPN division is carried out based on service VLAN in EOR equipment, when EOR equipment receives the transmission of TOR equipment When the service message of VXLAN encapsulation, after EOR equipment releases VXLAN encapsulation, when the target MAC (Media Access Control) address for determining service message is It is corresponding with service VLAN Tag according to the service VLAN Tag determination carried in the service message when the MAC Address of itself VPN, and three layer retransmitting table items are searched in the VPN according to the purpose IP address of the service message and are forwarded, it takes full advantage of The ability of EOR equipment, and reduce the function complexity of CE equipment;Further, since Service Gateway is EOR equipment, therefore, reduce CE equipment is that the flow of Service Gateway detours, and saves Internet resources.
Those skilled in the art after considering the specification and implementing the invention disclosed here, will readily occur to of the invention its Its embodiment.This application is intended to cover any variations, uses, or adaptations of the invention, these modifications, purposes or Person's adaptive change follows general principle of the invention and including the undocumented common knowledge in the art of the present invention Or conventional techniques.The description and examples are only to be considered as illustrative, and true scope and spirit of the invention are by following Claim is pointed out.
It should be understood that the present invention is not limited to the precise structure already described above and shown in the accompanying drawings, and And various modifications and changes may be made without departing from the scope thereof.The scope of the present invention is limited only by the attached claims.

Claims (10)

1. a kind of message forwarding method is handed over applied to the cabinet in the communication cloud network of the customized network SDN technology of runs software It changes planes EOR equipment, which is characterized in that multiple virtual privates are had based on the division of business virtual LAN VLAN in the EOR equipment Net VPN, which comprises
The service message for the virtual expansible local area network VXLAN encapsulation that rack interchanger TOR equipment is sent;
The VXLAN encapsulation is released, and when the purpose MAC address for determining the service message is the EOR When the MAC Address of equipment, according to the first service VLAN label Tag determination and first business carried in the service message Corresponding first VPN of VLAN Tag;
Three layer retransmitting table items are searched in the first VPN according to the purpose IP address of the service message, and are tied according to searching Fruit carries out three layers of forwarding to the service message.
2. the method according to claim 1, wherein the corresponding one or more service VLAN Tag of a VPN.
3. according to the method described in claim 2, it is characterized in that, described carry out three to the service message according to lookup result Layer forwarding, comprising:
When the VLAN Tag for determining the affiliated service VLAN of purpose end equipment according to the lookup result is first service VLAN When Tag, the target MAC (Media Access Control) address of the service message is replaced with to the MAC Address of the purpose end equipment, and to target MAC (Media Access Control) address After replaced service message carries out VXLAN encapsulation, from the outgoing interface forwarding of connection next-hop.
4. according to the method described in claim 2, it is characterized in that, described carry out three to the service message according to lookup result Layer forwarding, comprising:
When according to the lookup result determine the corresponding VLAN Tag of the affiliated service VLAN of purpose end equipment be the second service VLAN Tag, and when the first service VLAN Tag and the second service VLAN Tag correspond to same VPN, by the service message Target MAC (Media Access Control) address replace with the MAC Address of the purpose end equipment, the first service VLAN Tag in the service message is replaced It is changed to the second service VLAN Tag, and target MAC (Media Access Control) address and the replaced service message of service VLAN Tag are carried out After VXLAN encapsulation, from the outgoing interface forwarding of connection next-hop.
5. according to the method described in claim 2, it is characterized in that, described carry out three to the service message according to lookup result Layer forwarding, comprising:
When according to the lookup result determine the corresponding VLAN Tag of the affiliated service VLAN of purpose end equipment be third service VLAN Tag, and when the first service VLAN Tag and the third service VLAN Tag correspond to different VPN, determine connection next-hop Outgoing interface be TOR equipment side port or customer network edge CE equipment side port;
If the port of TOR equipment side, then the target MAC (Media Access Control) address of the service message is replaced with to the MAC of the purpose end equipment The first service VLAN Tag in the service message is replaced with the third service VLAN Tag by address, and to purpose MAC After address and the replaced service message of service VLAN Tag carry out VXLAN encapsulation, forwarded from the outgoing interface of the connection next-hop;
If the port of CE equipment side, then the target MAC (Media Access Control) address of the service message is replaced with to the MAC of the purpose end equipment The first service VLAN Tag in the service message is replaced with the third service VLAN Tag by location, and by purpose MAC Location and the replaced service message of service VLAN Tag are forwarded from the outgoing interface of the connection next-hop.
6. a kind of apparatus for forwarding message is handed over applied to the cabinet in the communication cloud network of the customized network SDN technology of runs software It changes planes EOR equipment, which is characterized in that multiple virtual privates are had based on the division of business virtual LAN VLAN in the EOR equipment VPN is netted, described device includes:
Receiving unit, the business report for the virtual expansible local area network VXLAN encapsulation that rack interchanger TOR equipment is sent Text;
Encapsulation/decapsulation unit, for releasing the VXLAN encapsulation;
Determination unit, for being the EOR equipment when the purpose MAC address for determining the service message When MAC Address, according to the first service VLAN label Tag determination and first service VLAN carried in the service message Corresponding first VPN of Tag;
Retransmission unit, for searching three layer retransmitting table items in the first VPN according to the purpose IP address of the service message, And three layers of forwarding are carried out to the service message according to lookup result.
7. device according to claim 6, which is characterized in that the corresponding one or more service VLAN Tag of a VPN.
8. device according to claim 7, which is characterized in that
The retransmission unit, specifically for as the VLAN for determining the affiliated service VLAN of purpose end equipment according to the lookup result When Tag is the first service VLAN Tag, the target MAC (Media Access Control) address of the service message is replaced with into the purpose end equipment MAC Address;
The encapsulation/decapsulation unit is specifically used for carrying out VXLAN encapsulation to the replaced service message of target MAC (Media Access Control) address;
The retransmission unit is forwarded specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop.
9. device according to claim 7, which is characterized in that
The determination unit is also used to determine the corresponding VLAN of the affiliated service VLAN of purpose end equipment according to the lookup result When Tag is the second service VLAN Tag, determine whether the first service VLAN Tag and the second service VLAN Tag are right Answer same VPN;
The retransmission unit, be specifically used for when the first service VLAN Tag and the second service VLAN Tag correspond to it is same When VPN, the target MAC (Media Access Control) address of the service message is replaced with to the MAC Address of the purpose end equipment, it will be in the service message The first service VLAN Tag replace with the second service VLAN Tag;
The encapsulation/decapsulation unit, be specifically used for target MAC (Media Access Control) address and the replaced service message of service VLAN Tag into After row VXLAN encapsulation;
The retransmission unit is forwarded specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop.
10. device according to claim 7, which is characterized in that
The determination unit is also used to determine the corresponding VLAN of the affiliated service VLAN of purpose end equipment according to the lookup result When Tag is third service VLAN Tag, determine whether the first service VLAN Tag and the third service VLAN Tag are right Answer same VPN;
The determination unit is also used to when the first service VLAN Tag and third service VLAN Tag is corresponding different When VPN, determine that the outgoing interface of connection next-hop is the port of TOR equipment side or the port of customer network edge CE equipment side;
The retransmission unit then replaces the target MAC (Media Access Control) address of the service message specifically for the port if TOR equipment side It is changed to the MAC Address of the purpose end equipment, the first service VLAN Tag in the service message is replaced with into the third industry Be engaged in VLAN Tag;
The encapsulation/decapsulation unit, be specifically used for target MAC (Media Access Control) address and the replaced service message of service VLAN Tag into Row VXLAN encapsulation;
The retransmission unit is forwarded specifically for the service message encapsulated to VLXAN from the outgoing interface of connection next-hop;
The retransmission unit then replaces the target MAC (Media Access Control) address of the service message specifically for the port if CE equipment side For the MAC Address of the purpose end equipment, the first service VLAN Tag in the service message is replaced with into the third business VLAN Tag, and by target MAC (Media Access Control) address and the replaced service message of service VLAN Tag from the outgoing interface of the connection next-hop Forwarding.
CN201910425545.XA 2019-05-21 2019-05-21 Message forwarding method and device Active CN110191042B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910425545.XA CN110191042B (en) 2019-05-21 2019-05-21 Message forwarding method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910425545.XA CN110191042B (en) 2019-05-21 2019-05-21 Message forwarding method and device

Publications (2)

Publication Number Publication Date
CN110191042A true CN110191042A (en) 2019-08-30
CN110191042B CN110191042B (en) 2021-08-24

Family

ID=67717104

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910425545.XA Active CN110191042B (en) 2019-05-21 2019-05-21 Message forwarding method and device

Country Status (1)

Country Link
CN (1) CN110191042B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565045A (en) * 2019-09-26 2021-03-26 中兴通讯股份有限公司 Method, device, equipment and storage medium for forwarding EVPN (error vector magnitude) message
CN112995005A (en) * 2019-12-17 2021-06-18 北京百度网讯科技有限公司 Virtual network data exchange method and device
CN114978781A (en) * 2022-08-02 2022-08-30 中国电子科技集团公司第三十研究所 Tor network-oriented mixed anonymous link communication method and system

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103414626A (en) * 2013-08-28 2013-11-27 盛科网络(苏州)有限公司 Message processing method and device based on network virtualization
US9467536B1 (en) * 2014-03-21 2016-10-11 Cisco Technology, Inc. Shim layer abstraction in multi-protocol SDN controller
CN106209689A (en) * 2015-05-04 2016-12-07 杭州华三通信技术有限公司 From the multicast data packet forwarding method and apparatus of VXLAN to VLAN
CN106789667A (en) * 2016-11-21 2017-05-31 华为技术有限公司 A kind of data forwarding method, relevant device and system
CN107547403A (en) * 2017-07-26 2018-01-05 新华三技术有限公司 Message forwarding method, assisted method, device, controller and main frame
CN108199963A (en) * 2017-12-27 2018-06-22 新华三技术有限公司 Message forwarding method and device
CN108809796A (en) * 2018-07-16 2018-11-13 成都芮捷科技发展有限责任公司 A kind of Metropolitan Area Network (MAN) power system service communication means based on VxLAN
CN109660443A (en) * 2018-12-26 2019-04-19 江苏省未来网络创新研究院 Physical equipment and virtual network communication method and system based on SDN

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103414626A (en) * 2013-08-28 2013-11-27 盛科网络(苏州)有限公司 Message processing method and device based on network virtualization
US9467536B1 (en) * 2014-03-21 2016-10-11 Cisco Technology, Inc. Shim layer abstraction in multi-protocol SDN controller
CN106209689A (en) * 2015-05-04 2016-12-07 杭州华三通信技术有限公司 From the multicast data packet forwarding method and apparatus of VXLAN to VLAN
CN106789667A (en) * 2016-11-21 2017-05-31 华为技术有限公司 A kind of data forwarding method, relevant device and system
CN107547403A (en) * 2017-07-26 2018-01-05 新华三技术有限公司 Message forwarding method, assisted method, device, controller and main frame
CN108199963A (en) * 2017-12-27 2018-06-22 新华三技术有限公司 Message forwarding method and device
CN108809796A (en) * 2018-07-16 2018-11-13 成都芮捷科技发展有限责任公司 A kind of Metropolitan Area Network (MAN) power system service communication means based on VxLAN
CN109660443A (en) * 2018-12-26 2019-04-19 江苏省未来网络创新研究院 Physical equipment and virtual network communication method and system based on SDN

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565045A (en) * 2019-09-26 2021-03-26 中兴通讯股份有限公司 Method, device, equipment and storage medium for forwarding EVPN (error vector magnitude) message
CN112565045B (en) * 2019-09-26 2024-05-07 中兴通讯股份有限公司 Method, device, equipment and storage medium for forwarding message in EVPN
CN112995005A (en) * 2019-12-17 2021-06-18 北京百度网讯科技有限公司 Virtual network data exchange method and device
CN112995005B (en) * 2019-12-17 2022-02-25 北京百度网讯科技有限公司 Virtual network data exchange method and device
CN114978781A (en) * 2022-08-02 2022-08-30 中国电子科技集团公司第三十研究所 Tor network-oriented mixed anonymous link communication method and system

Also Published As

Publication number Publication date
CN110191042B (en) 2021-08-24

Similar Documents

Publication Publication Date Title
US7242665B2 (en) Network device virtual interface
CN104780088B (en) A kind of transmission method and equipment of service message
KR101846079B1 (en) System for providing virtual customer premises equipment services in a network function virtualization environment, and a network function virtualization cloud for the same
CN104584491B (en) Distributed virtual route and the system and method for exchanging (DVRS) are provided
CN109716717A (en) From software-defined network controller management virtual port channel switching equipment peer-to-peer
US7039720B2 (en) Dense virtual router packet switching
CN117178534A (en) Network management services in points of presence
CN105656796B (en) The method and apparatus for realizing three layers of virtual extended local area network forwarding
CN106789667A (en) A kind of data forwarding method, relevant device and system
CN104823405A (en) IP multicast service leave process for MPLS-based virtual private cloud networking
CN104871483A (en) IP multicast service join process for MPLS-based virtual private cloud networking
WO2014136864A1 (en) Packet rewriting apparatus, control apparatus, communication system, packet transmitting method and program
CN102611618B (en) Route protection converting method and device
CN106878048A (en) Fault handling method and device
CN103200069A (en) Message processing method and device
CN105681191A (en) SDN (Software Defined Network) platform based on router virtualization and implementation method
CN105471740A (en) Gateway migration processing method and gateway migration processing device based on software defined network
CN110191042A (en) A kind of message forwarding method and device
CN110034993A (en) Transmit method, equipment and the network system of data
CN106936680B (en) System and method for intercommunication among heterogeneous networks of cloud computing platform
CN109120492B (en) Storage unit, source switch, message forwarding method and mirror image system
CN106878136A (en) A kind of message forwarding method and device
CN107995083A (en) Realize the method, system and equipment of L2VPN and VxLAN intercommunications
IL280472B1 (en) A system and a method for using a network cloud software
CN106059946A (en) Message forwarding method and message forwarding device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant