CN110430138A - Forwarding data flow state recording method and the network equipment - Google Patents

Forwarding data flow state recording method and the network equipment Download PDF

Info

Publication number
CN110430138A
CN110430138A CN201910682733.0A CN201910682733A CN110430138A CN 110430138 A CN110430138 A CN 110430138A CN 201910682733 A CN201910682733 A CN 201910682733A CN 110430138 A CN110430138 A CN 110430138A
Authority
CN
China
Prior art keywords
flow entry
message
hardware
forwarding behavior
forwarding
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910682733.0A
Other languages
Chinese (zh)
Other versions
CN110430138B (en
Inventor
赵海峰
项学锋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd Hefei Branch
Original Assignee
New H3C Technologies Co Ltd Hefei Branch
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd Hefei Branch filed Critical New H3C Technologies Co Ltd Hefei Branch
Priority to CN201910682733.0A priority Critical patent/CN110430138B/en
Publication of CN110430138A publication Critical patent/CN110430138A/en
Application granted granted Critical
Publication of CN110430138B publication Critical patent/CN110430138B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/54Organization of routing tables
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/745Address table lookup; Address filtering

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The disclosure provides a kind of forwarding data flow state recording method and the network equipment, the network equipment executes parallel forward process and hardware flow entry lookup to received message and handles, the forwarding behavior type identification recorded in the hardware flow entry for the affiliated data flow of the message that forwarding behavior and hardware flow the entry lookup processing exported according to forward process in the metadata of the message is found in hardware flow table, search hardware check table, if finding matched consistency check list item, then determine the affiliated data flow of the message of the forwarding behavior type identification instruction of the first hardware flow entry record to have counted forwarding behavior consistent with the forwarding behavior that forward process exports.So, it can be ensured that the accuracy of the forwarding state recorded in hardware flow list item.

Description

Forwarding data flow state recording method and the network equipment
Technical field
This disclosure relates to field of communication technology, in particular to a kind of forwarding data flow state recording method and network Equipment.
Background technique
The network equipment in data center and garden is more, needs using complexity when forwarding failure occurs for the network equipment The reason of retransmission failure of faulty equipment and faulty equipment is quickly found out in network.
The forward process of forwarding chip and flow entry lookup processing are when serially executing, after the completion of forward process, flow entry The forwarding behavior that processing obtains forward process output from the metadata of message is searched, the message that forward process is completed is searched Whether the flow entry matched, it is consistent to compare the forwarding behavior that the flow entry that finds and forward process export, if inconsistent, updates The forwarding behavior recorded in flow entry, to carry out fault location to the network equipment according to the data in flow entry.
However, it is logical that part forwarding chip searches processing to the forward process and flow entry of message for speed up processing It often carries out parallel, it is current that this causes forwarding chip that can not obtain data message when finding the matched flow entry of data message Forwarding behavior, it is whether consistent that the forwarding behavior that the current forwarding behavior of message and parallel flow stream searching obtain can not be compared.Though So, the flow entry lookup result that the forwarding behavior of the output of forward process and flow entry search processing output is able to record in message Metadata in, still, completing metadata when the message of forward process leaves forwarding chip can be released.
Summary of the invention
In view of this, the first purpose of the disclosure is to provide a kind of forwarding data flow state recording method and network is set It is standby, can statistics flow entry in accurate recording data flow forwarding state.
In order to achieve the above object, the disclosure adopts the following technical scheme that
In a first aspect, the disclosure provides a kind of forwarding data flow state recording method, which comprises
Parallel the first forward process and the processing of the first hardware flow entry lookup are executed to the first message;
The forwarding behavior and the first hardware flow that the first forward process exports are obtained from the metadata metadata of the first message The first hardware flow entry record of first data flow belonging to the first message that entry lookup processing is found in hardware flow table Forwarding behavior type identification;
Hardware check table is searched according to the forwarding behavior type identification that the first forwarding behavior and the first hardware flow entry record;
When finding matched consistency check list item, the forwarding behavior type mark of the first hardware flow entry record is determined The forwarding behavior for knowing the first data stream packet that the first hardware flow entry indicated has counted is consistent with the first forwarding behavior.
Second aspect, the disclosure provide a kind of network equipment, including inspection unit and parallel retransmission unit and flow table Item unit;
Retransmission unit, for executing the first forward process to the first message;
Flow entry unit, for executing the processing of the first hardware flow entry lookup to the first message;
Inspection unit, for obtaining the first forwarding behavior and that the first forward process exports from the metadata of the first message First hardware flow table of the first data flow belonging to the first message that the processing of one hardware flow entry lookup is found in hardware flow table The forwarding behavior type identification of item record, the forwarding behavior type mark recorded according to the first forwarding behavior and the first hardware flow entry Know and search hardware check table, when finding matched consistency check list item, determines the forwarding of the first hardware flow entry record The forwarding behavior for the first data stream packet that first hardware flow entry of type of action mark instruction has counted and the first forwarding are dynamic Make consistent.
In conclusion a kind of forwarding data flow state recording method and the network equipment that the disclosure provides, to received report Text carries out parallel forward process and the processing of hardware flow entry lookup, the forwarding exported according to forward process in the metadata of message Remember in the hardware flow entry for the affiliated data flow of the message that movement and the processing of hardware flow entry lookup are found in hardware flow table The forwarding behavior type identification of record searches hardware check table, if finding matched consistency check list item, it is determined that first The forwarding behavior of statistics of the affiliated data flow of the message of the forwarding behavior type identification instruction of hardware flow entry record and forwarding The forwarding behavior for handling output is consistent.In this way, can differentiate that the forwarding behavior of message and processing of tabling look-up parallel obtain in data flow Forwarding behavior it is whether consistent, so that it is guaranteed that the accuracy of the forwarding behavior recorded in flow entry.
Detailed description of the invention
In order to illustrate more clearly of the technical solution of the disclosure, letter will be made to attached drawing needed in the embodiment below It singly introduces, it should be understood that the following drawings illustrates only some embodiments of the disclosure, therefore is not construed as to range It limits, it for those of ordinary skill in the art, without creative efforts, can also be according to these attached drawings Obtain other relevant attached drawings.
Fig. 1 is a kind of processing flow schematic diagram for forwarding data flow state recording method that one embodiment of the disclosure provides;
Fig. 2 is a kind of combing process signal for forwarding data flow state recording method that another embodiment of the disclosure provides Figure;
Fig. 3 is a kind of data flow schematic diagram of process flow shown in Fig. 2;
Fig. 4 is another data flow schematic diagram of process flow shown in Fig. 2;
Fig. 5 is a kind of process flow signal for forwarding data flow state recording method that the another embodiment of the disclosure provides Figure;
Fig. 6 is the data flow schematic diagram of process flow shown in Fig. 5;
Fig. 7 is a kind of configuration diagram for network equipment that the disclosure provides.
Specific embodiment
To keep the purposes, technical schemes and advantages of the disclosure clearer, below in conjunction with the attached drawing in the disclosure, to this Technical solution in open is clearly and completely described, it is clear that described embodiment is that a part of this disclosure is implemented Example, instead of all the embodiments.The component for the disclosure being usually described and illustrated herein in the accompanying drawings can be with various differences Configuration arrange and design.
Therefore, the detailed description of the embodiment of the disclosure provided in the accompanying drawings is not intended to limit below claimed The scope of the present disclosure, but be merely representative of the selected embodiment of the disclosure.Based on the embodiment in the disclosure, this field is common Technical staff's every other embodiment obtained without creative efforts belongs to the model of disclosure protection It encloses.
It should also be noted that similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi It is defined in a attached drawing, does not then need that it is further defined and explained in subsequent attached drawing.
Fig. 1 is please referred to, Fig. 1 shows a kind of stream of forwarding data flow state recording method of one embodiment of disclosure offer Cheng Tu, this method include following processing.
Processing 101 executes parallel the first forward process and the first hardware flow entry lookup to the first message and handles.
It is dynamic to obtain the first forwarding that the first forward process exports from the metadata (metadata) of the first message for processing 102 Make the first data flow belonging to the first message found in hardware flow table with the processing of the first hardware flow entry lookup first is hard The forwarding behavior type identification of part flow entry record.
Processing 103 is searched hard according to the forwarding behavior type identification that the first forwarding behavior and the first hardware flow entry record Part checks table.
Processing 104 determines that the forwarding of the first hardware flow entry record is dynamic when finding matched consistency check list item Make the forwarding behavior and the first forwarding behavior of the first data stream packet that the first hardware flow entry that type identification indicates has counted Unanimously.
By forwarding data flow state recording method shown in FIG. 1, the forwarding that the disclosure can export forward process is dynamic Whether the forwarding behavior for making to search processing output parallel with the flow entry executed is unanimously checked.
Fig. 2 shows the processes for the forwarding data flow state recording method 200 that another embodiment of the disclosure provides;The process It can be used for the network equipment that switch or router etc. executes message forwarding.
The forwarding chip of the network equipment is stored with hardware forwarding table, hardware flow table, hardware check table;The storage of the network equipment Software flow table is stored in device.Forwarding behavior type identification is recorded by each hardware flow entry in hardware flow table in the present embodiment The forwarding behavior that (class ID) has been counted to record the data message of each matched Business Stream of hardware flow entry.For example, Class1 corresponds to normal forwarding behavior;Class2 corresponds to the movement of route querying packet loss;Class3 corresponds to URPF (Unicast Reverse Path Forwarding, single broadcast reverse route querying) packet loss movement;Class4 correspond to TTL (Time To Live, Life span) packet loss movement;Class5 corresponds to VLAN (Virtual Local Area Network, virtual LAN) filtering and loses Packet movement;Class6 corresponds to STP (Spanning Tree Protocol, tree protocol of surviving) packet loss movement.Above-mentioned class ID It is served only for for example, being not limited to above several class ID and forwarding behavior.
The hardware check table of the network equipment stores the multiple consistency check list items and low priority of high priority Forwarding behavior metadata mapping item.
In the present embodiment, each consistency check forwarding-table item is as shown in table 1:
Table 1
In the present embodiment, each forwarding behavior metadata mapping item is as shown in table 2:
Table 2
Method shown in Fig. 2 includes following processing:
Processing 201 executes parallel forward process and hardware flow entry lookup to message and handles.
As shown in figure 3, the forwarding engine and flow entry engine in the forwarding chip of the network equipment are to received message 211 Carry out parallel processing.Engine is forwarded to find matched MAC Address list item according to the target MAC (Media Access Control) address of message 211.Flow entry Engine does not find matching flow entry according to the five-tuple information of message 211 in hardware flow table.The metadata 220 of message 211 In carry forwarding engine output normal forwarding behavior and for identifying the mark class0 for not matching flow entry.
Processing 202 obtains the forwarding behavior and hardware flow entry that forward process exports from the metadata metedata of message That searches processing output is not matched to hardware flow entry mark.
Checking engine for the network equipment obtains normal forwarding behavior and class 0 from the metadata 220 of message 211.
Processing 203, according to forwarding behavior and is not matched to hardware flow entry and identifies and do not find in hardware check table The consistency check list item matched.
The network equipment checks engine in hardware check table, by the metadata 220 of message 211 " normal forwarding behavior+ Class 0 " is matched one by one with the consistency check list item of high priority shown in table 1, does not find matched consistency Row checks list item.
Processing 204, copy packet and the map metadata that forwarding behavior is stated for the addition of the message of duplication.
Checking engine for the network equipment is low with shown in table 2 according to " the normal forwarding behavior " of the metadata 220 of message 211 The metadata mapping item of priority matches, and finds matched forwarding behavior metadata mapping item shown in the 1st row of table 2. It checks engine according to matched metadata mapping item, copy packet 211 obtains copy packet 212, and adds normal turn of expression The metadata A 221 of hair.Copy packet 212 with metadata A221 is sent to network by checking engine for forwarding chip The processing unit (CPU) of equipment, forwarding chip peel the metadata 220 of message 211 off, and forwarding chip is according to the process normally forwarded Message 211 is handled, this embodiment is not repeated.
Processing 205 searches software flow table according to the traffic parameter of copy packet.
Message is searched in the software flow table that processing unit stores in memory according to the five-tuple information of copy packet 212 The matched software flow entry of Business Stream belonging to 211.
Processing 206 determines the software flow entry for not finding the affiliated data stream matches of message, is joined according to the data flow of message Number creates the software flow entry of matched data stream in software flow table.
Processing unit does not find the software flow entry of data stream matches belonging to copy packet 212, table in software flow table Show the hardware flow entry for not having data flow belonging to storage replication message 212 in forwarding chip, is established according to the five-tuple of message soft Part flow entry.
Processing 207 records forwarding behavior in newly-built software flow entry.
Processing unit record forwarding behavior in newly-built software flow entry is " normal forwarding ".
Processing 208, according to traffic parameter hardware flow table record data stream hardware flow entry, in hardware flow entry Record the corresponding forwarding behavior type identification of forwarding behavior;Initial value is set by the counter of hardware flow entry.
Processing unit establishes hardware flow entry according to the five-tuple information of copy packet 211 in hardware flow table, newly-built Hardware flow entry in record " normal forwarding behavior " corresponding class 1;By the counter of hardware flow entry, (hardware is counted Device) it is set as initial value, for indicating an initial count value, such as 1.
Method beneficial effect shown in Fig. 2 is, the output of the forward process executed parallel by hardware check table look-up with Flow entry searches the output of processing, and triggering forwarding chip will carry the duplication first message of the forwarding behavior map metadata of first message It is sent to processing unit, to make the software flow entry and hardware flow entry of the affiliated Business Stream of processing unit dynamic generation first message.
In addition to dynamic software flow entry and hardware flow entry generation method shown in Fig. 2, the industry that can also count as needed Business stream setting software flow entry and hardware flow entry, according to the forwarding of the forwarding behavior setting software flow entry of business demand setting The class ID of movement and hardware flow entry.
The network equipment has stored the plastic flow list item and hardware flow entry or the software for storing static configuration of dynamic generation When flow entry and hardware flow entry, as shown in figure 4, the forwarding chip when the network equipment handles paid-in message 213, Forwarding engine and flow entry engine in forwarding chip carry out parallel processing to received message 213.Forward engine according to The target MAC (Media Access Control) address of message 213 finds matched MAC Address list item.Flow entry engine is according to the five-tuple information of message 213 Matched hardware flow entry is found in hardware flow table.The output of forwarding engine is carried in the metadata 240 of message 211 just Class1 in normal forwarding behavior and the hardware flow entry of flow entry engine output found.
Checking engine for the network equipment obtains " normal forwarding behavior and class 1 " from the metadata 240 of message 213, In hardware check table, by high priority shown in " the normal forwarding behavior+class1 " of the metadata 240 of message 213 and table 1 Consistency check list item matched one by one, find matched consistency check list item.Forwarding chip peels message 213 off Metadata 240, forwarding chip is according to the flow processing message 213 normally forwarded, and this embodiment is not repeated.
The classID that can accurately judge parallel output forwarding behavior and find that checks engine of the network equipment is indicated Forwarding behavior is consistent, accurately judges that the forwarding behavior of hardware flow entry accurately record data stream message is correct, to use Family can carry out fault location based on data in flow entry.
Fig. 5 shows the process for the forwarding data flow state recording method 500 that the another embodiment of the disclosure provides;The process It can be used for the network equipment that switch or router etc. executes message forwarding.
Processing 501 executes parallel forward process and hardware flow entry lookup to message and handles.
As shown in fig. 6, the forwarding engine and flow entry engine in the forwarding chip of the network equipment are to received message 215 Carry out parallel processing.Engine is forwarded to find matched MAC Address list item according to the target MAC (Media Access Control) address of message 215.Flow entry Engine finds matching flow entry according to the five-tuple information of message 215 in hardware flow table.In the metadata 250 of message 215 It carries in " VLAN filters packet loss " of forwarding engine output and the flow entry of flow entry engine output found class1。
Processing 502 obtains the forwarding behavior and the processing of hardware flow entry lookup that forward process exports from the metadata of message The forwarding behavior type identification of the hardware flow entry record of the affiliated data flow of the message of output.
Checking engine for the network equipment obtains " VLAN filters packet loss " and class1 from the metadata 250 of message 215.
Processing 503 is not found matched according to the forwarding behavior type identification that forwarding behavior and hardware flow entry record Consistency check list item.
The network equipment checks engine in hardware check table, by the metadata 250 of message 215 " VLAN filter packet loss+ Class 1 " is matched one by one with the consistency check list item of high priority shown in table 1, does not find matched consistency Check list item.
Processing 504, copy packet and the map metadata that forwarding behavior is added for the message of duplication.
Checking engine for the network equipment is low with shown in table 2 according to " VLAN filters packet loss " of the metadata 250 of message 215 The metadata mapping item of priority matches, and finds forwarding behavior metadata mapping item shown in the 5th row of table 2.Inspection is drawn It holds up according to matched metadata mapping item, copy packet 215 obtains copy packet 216, and adds expression VLAN filtering packet loss Metadata E 260, as shown in Figure 6.It checks engine and the copy packet 216 with metadata E 260 is sent to processing Unit, forwarding chip peel the metadata 250 of message 215 off, and forwarding chip filters the flow processing report of packet loss according to normal VLAN Text 215, this embodiment is not repeated.
Processing 505, the affiliated data of message that duplication is found in software flow table according to the traffic parameter of the message of duplication Flow matched software flow entry.
Message is searched in the software flow table that processing unit stores in memory according to the five-tuple information of copy packet 216 The matched software flow entry of Business Stream belonging to 215.
Processing 506, compare map metadata instruction forwarding behavior and software flow entry the forwarding behavior of execution whether Unanimously;It is no, then follow the steps 507;It is to then follow the steps 510.
Processing unit compares in the VLAN filtering packet loss movement of the instruction of metadata 260 and the software flow entry of data stream matches " normal forwarding " movement is executed, both confirmations are inconsistent.
Processing 507, is updated to forwarding behavior for the forwarding behavior of execution of the software flow entry of data stream matches.
The forwarding behavior of execution in software flow entry is updated to that " VLAN filtering is lost by processing unit by " normal forwarding " Packet ".
Processing 508, is updated to forwarding behavior pair for the forwarding behavior type identification recorded in the hardware flow entry of data flow The forwarding behavior type identification answered.
The hardware flow entry record " normal forwarding " of data flow belonging to message 215 is replaced with " VLAN filtering by processing unit Packet loss ".
Processing 509, is set as initial value for the counter of the hardware flow entry of data flow.
Processing unit sets the value of the hardware counter of the hardware flow entry of Business Stream belonging to message 215 in forwarding chip It is set to initial value, the data message for executing " VLAN filters packet loss " to the Business Stream counts.
Processing 510, abandons the message of duplication.
Processing unit abandons the copy packet 216 of caching.
It should be noted that processing unit, when updating software flow entry, forwarding chip may continue to processing 215 institute of message Belong to the data message of data flow.Complete after processing unit update completion software flow entry but not yet hardware flow entry and its hardware meter Before number is thought highly of and set, checking engine can be because the VLAN filtering for carrying forwarding engine output in the metadata of these data messages be lost The class 1 of packet movement and the output of flow entry engine is inconsistent, replicates these messages, adds instruction for the message of these duplications VLAN filters the metadata of packet loss, and is sent to processing unit.Processing unit can find matched according to the message of these duplications Flow entry confirms that the forwarding behavior in software flow entry is consistent with the forwarding behavior that the metadata of copy packet is indicated, thus Processing 510 is executed, the message of these duplications is abandoned.
But processing unit is completed the time that hardware flow entry updates and is not grown, and therefore, is forwarded chip and is sent to processing unit Data message it is seldom, the bandwidth of chip channel between excessive forwarding chip and processing unit will not be occupied, these will not occur The packet loss of the message of processing unit is sent on message or other needs.
In addition, it should also be noted that, the data message hardware flow entry and its counter quilt of data flow belonging to message 215 Before update, the hardware counter of the hardware flow entry of the data flow can still be matched because of the above-mentioned data message of same data flow Hardware flow entry and accumulated counts value, for example, the forwarding behavior of software flow entry record are VLAN filtering packet loss, hardware flow entry The class 1 of record indicates normally to forward, this will lead to the message of normal forwarding behavior in the hardware flow entry of counters count There are slight errors for quantity.But due to hardware flow entry fall into a trap several devices count value will not influence faulty equipment positioning and failure Reason positioning, the precise requirements of the count value of the counter of hardware flow entry are not high, therefore, the slight error pair of the count value It is not influenced in the reason of positioning failure network equipment and equipment fault.
In Fig. 5 and embodiment shown in fig. 6, checking engine for the network equipment logical can not only accurately judge parallel output Forwarding behavior and the classID found indicate that forwarding behavior is inconsistent, and by the copy packet of data message and can turn Start make map metadata be sent to processing unit, thus trigger processing unit update software flow entry, hardware flow entry and its Counter, thus in the forwarding behavior of hardware flow entry accurately record data stream message, so that user be allow to be based on hardware Data carry out fault location in flow entry.
After overcoming solution initial data message completion forward process to leave forwarding chip, because of first number of original message Initial data message forwarding behavior can not be obtained according to being stripped off;The above-mentioned example of the application is sent by forwarding chip to CPU Replicate data message with forwarding behavior map metadata is used so that CPU be made to obtain the forwarding behavior of initial data message To create, update software flow entry, to trigger creation, update hardware flow entry.
In these embodiments shown in Fig. 2-Fig. 6, the processing unit of the network equipment can periodically be read in hardware flow table The current count value of traffic parameter, forwarding behavior type identification and counter in each hardware flow entry, these are read Parameter is sent to Network Management Equipment by message.
Fig. 7 is please referred to, Fig. 7 show a kind of configuration diagram of network equipment 700 provided in this embodiment.The network equipment 700 can be, but not limited to be switch or router comprising forwarding chip 710, processor (CentralProcessingUnit, CPU) 720 and memory 730.
Forwarding chip 710 can based on ASIC (Application Specific Integrated Circuit, it is dedicated Integrated circuit) or FPGA (Field-Programmable Gate Array, the realization of the chips such as field programmable gate array.Example Such as, processor or hardware logic device that retransmission unit and its module can be hardware logic devices, execute machine readable instructions The combination of the processor of part and execution and its readable instruction.
Memory 730 includes multiple coding (coding) modules, these program modules can be executed by processor 720.It deposits Reservoir 730 is stored with flow entry management module 731 and software flow table, and processor 720 is by calling the flow entry in memory 730 Management module 731 realizes corresponding processing.Forwarding chip 710 is connected with the interface 7010 of the network equipment 700, forwarding chip 710 In be provided with hardware forwarding table, hardware flow table and hardware check table.Forwarding chip 710 includes that inspection unit (e.g., checks engine And parallel retransmission unit (e.g., forward engine 711) and flow entry unit (e.g., flow entry engine 712) 713).
In the present embodiment, forwarding engine 711 executes the first forward process for the first message.
Flow entry engine 712 is used to execute the first message the processing of the first hardware flow entry lookup.
713 are checked engine for obtaining the forwarding behavior and first that the first forward process exports from the metadata of the first message First hardware flow entry of the first data flow belonging to the first message that the processing of hardware flow entry lookup is found in hardware flow table The forwarding behavior type identification of record, the forwarding behavior type identification recorded according to the first forwarding behavior and the first hardware flow entry Hardware check table is searched, when finding matched consistency check list item, determines that the forwarding of the first hardware flow entry record is dynamic Make the forwarding behavior and the first forwarding behavior of the first data stream packet that the first hardware flow entry that type identification indicates has counted Unanimously.
Wherein, hardware check table includes multiple consistency check list items, and each consistency check list item includes a kind of forwarding Movement and its corresponding forwarding behavior type identification.
Optionally, forwarding engine 711 can be also used for executing the second forward process to the second message.
Flow entry engine 712 can be also used for executing the second message the processing of the second hardware flow entry lookup.
Check engine 713 can be also used for from the metadata of the second message obtain the second forward process export forwarding behavior The second hardware flow entry record of second data flow belonging to the second message with the processing output of the second hardware flow entry lookup turns Start to make type identification, the forwarding behavior type identification recorded according to the second forwarding behavior and the second hardware flow entry is examined in hardware Matched consistency check list item is not found in tabling look-up, replicate the second message and is forwarded for the second message of duplication addition second The map metadata of movement.
Flow entry management module 731 is used to search software flow table according to the traffic parameter of the second message;Find second When the software flow entry of the second data stream matches belonging to message, compare the second forwarding behavior and software flow of map metadata instruction The execution forwarding behavior of list item;If inconsistent, the software flow entry of the second data stream matches forwarding behavior is executed into and has been updated For the second forwarding behavior;The forwarding behavior type identification recorded in the hardware flow entry of second data flow is updated to the second forwarding Corresponding forwarding behavior type identification is acted, the counter of the hardware flow entry of the second data flow is set as initial value.
Optionally, flow entry management module 731 can be also used for recording in the hardware flow entry by the second data flow Forwarding behavior type identification is updated to before the corresponding forwarding behavior type identification of the second forwarding behavior, by the number of the second data flow The current value of several devices is fallen into a trap according to stream parameter, the hardware flow entry of the second data flow and the forwarding behavior type identification of record passes through report Text is sent to Network Management Equipment.
Optionally, forwarding engine 711 can be also used for executing third forward process to third message.
Flow entry engine 712 can be also used for executing third message the processing of third hardware flow entry lookup.
The forwarding that 713 can be also used for obtaining the output of third forward process from the metadata of third message that checks engine is moved Make and the hardware flow entry being matched to that do not find in hardware flow table of third hardware flow entry lookup processing output identifies;Root According to third forwarding behavior with do not find matched hardware flow entry mark do not found in hardware check table it is matched consistent Property check list item, replicate third message and for duplication third message add third forwarding behavior map metadata.
Flow entry management module 731 can be also used for searching software flow according to the traffic parameter of the third message of duplication Table;The software flow entry for not finding the affiliated third data stream matches of third message of duplication is determined, according to the third report of duplication The traffic parameter of text creates the third software flow entry of third data stream matches in software flow table;In newly-built third software flow Third forwarding behavior is recorded in list item;The third hardware flow table of third data flow is recorded in hardware flow table according to traffic parameter , the corresponding forwarding behavior type identification of third forwarding behavior is recorded in third hardware flow entry;By third hardware flow entry Counter be set as initial value.
Flow entry management module 731 can be also used for periodically reading the number in hardware flow table in each hardware flow entry According to the current count value for flowing parameter, forwarding behavior type identification and counter and Network Management Equipment is sent to by message.
In conclusion forwarding data flow state recording method and the network equipment that the disclosure provides, the network equipment is to reception Message execute parallel forward process and the processing of hardware flow entry lookup, exported according to forward process in the metadata of message The hardware flow table for the affiliated data flow of the message that forwarding behavior and the processing of hardware flow entry lookup are found in hardware flow table The forwarding behavior type identification recorded in searches hardware check table, if finding matched consistency check list item, really The statistics forwarding behavior of the affiliated data flow of the message of the forwarding behavior type identification instruction of fixed first hardware flow entry record It is consistent with the forwarding behavior of forward process output.In this way, can differentiate whether the forwarding behavior of message in data flow changes, So as to the forwarding state of the accurate recording data stream packet in hardware flow entry, thus based on data in hardware flow entry into Row relatively exact failure positioning.
The above, the only specific embodiment of the disclosure, but the protection scope of the disclosure is not limited thereto, it is any Those familiar with the art can easily think of the change or the replacement in the technical scope that the disclosure discloses, and should all contain It covers within the protection scope of the disclosure.Therefore, the protection scope of the disclosure shall be subject to the protection scope of the claim.

Claims (10)

1. a kind of forwarding data flow state recording method, which is characterized in that the described method includes:
Parallel the first forward process and the processing of the first hardware flow entry lookup are executed to the first message;
The first forwarding behavior and institute that first forward process exports are obtained from the metadata metadata of first message State first of the first data flow belonging to first message that the processing of the first hardware flow entry lookup is found in hardware flow table The forwarding behavior type identification of hardware flow entry record;
Hardware inspection is searched according to the forwarding behavior type identification that first forwarding behavior and the first hardware flow entry record It tables look-up;
When finding matched consistency check list item, the forwarding behavior type mark of the first hardware flow entry record is determined Know the forwarding behavior and first forwarding behavior of the first data stream packet that the first hardware flow entry indicated has counted Unanimously.
2. the method according to claim 1, wherein the method also includes:
Parallel the second forward process and the processing of the second hardware flow entry lookup are executed to the second message;
The second forwarding behavior and described second of the second forward process output is obtained firmly from the metadata of second message The forwarding that part flow entry searches the second hardware flow entry record of the second data flow belonging to second message of processing output is dynamic Make type identification;
It is not found according to the forwarding behavior type identification that second forwarding behavior and the second hardware flow entry record The consistency check list item matched;
It replicates second message and adds the map metadata of second forwarding behavior for the second message of duplication;
The software of second data stream matches is found in software flow table according to the traffic parameter of the second message of duplication Flow entry;
Second forwarding behavior for comparing the map metadata instruction of the second message of duplication and the software flow entry are Execute forwarding behavior;
If inconsistent, the forwarding behavior of execution of the software flow entry of second data stream matches is updated to described second turn Start to make;
The forwarding behavior type identification of record described in the hardware flow entry of second data flow is updated to described second turn Start to make corresponding forwarding behavior type identification;
The counter of the hardware flow entry of second data flow is set as initial value.
3. according to the method described in claim 2, it is characterized in that, the method also includes: by the hard of second data flow The forwarding behavior type identification of record described in part flow entry is updated to the corresponding forwarding behavior type of second forwarding behavior Before mark, the hardware flow entry of the traffic parameter of second data flow, second data flow is fallen into a trap the working as of several devices The forwarding behavior type identification of preceding count value and the record is sent to Network Management Equipment by message.
4. the method according to claim 1, wherein the method also includes:
Parallel third forward process and the processing of third hardware flow entry lookup are executed to third message;
The third forwarding behavior and institute that the third forward process exports are obtained from the metadata metedata of the third message That states the processing output of third hardware flow entry lookup does not find matched hardware flow entry mark in the hardware flow table;
According to the third forwarding behavior and the matched hardware flow entry mark that do not find in the hardware check table Matched consistency check list item is not found;
It replicates the third message and adds the map metadata of the third forwarding behavior for the third message of duplication;
Software flow table is searched according to the traffic parameter of the third message of duplication;
The software flow entry for not finding the affiliated third data stream matches of third message of the duplication is determined, according to the duplication Third message traffic parameter the newly-built matching third data flow of the software flow table third software flow entry;
The third forwarding behavior is recorded in the newly-built third software flow entry;
The third hardware flow entry for recording the third data flow in the hardware flow table according to the traffic parameter, described The corresponding forwarding behavior type identification of the third forwarding behavior is recorded in third hardware flow entry;By the third hardware flow table The counter of item is set as initial value.
5. method described in any one of -4 according to claim 1, which is characterized in that the method also includes:
Periodically read traffic parameter, forwarding behavior type identification and the counting in hardware flow table in each hardware flow entry The current count value of device is simultaneously sent to Network Management Equipment by message.
6. a kind of network equipment, which is characterized in that including inspection unit and parallel retransmission unit and flow entry unit;
The retransmission unit, for executing the first forward process to the first message;
The flow entry unit, for executing the processing of the first hardware flow entry lookup to first message;
The inspection unit, for obtaining the first forwarding that first forward process exports from the metadata of first message First data belonging to first message that movement and the first hardware flow entry lookup processing are found in hardware flow table The forwarding behavior type identification of the first hardware flow entry record of stream, according to first forwarding behavior and first hardware flow The forwarding behavior type identification of list item record searches hardware check table, when finding matched consistency check list item, determines The first hardware flow entry of the forwarding behavior type identification instruction of first hardware flow entry record counted first The forwarding behavior of data stream packet is consistent with first forwarding behavior.
7. the network equipment according to claim 6, which is characterized in that the network equipment further includes flow entry management mould Block;
The retransmission unit is also used to execute the second forward process to the second message;
The flow entry unit is also used to execute second message processing of the second hardware flow entry lookup;
The inspection unit is also used to obtain second turn of the second forward process output from the metadata of second message Start to make the second hardware with the second data flow belonging to second message of the second hardware flow entry lookup processing output The forwarding behavior type identification of flow entry record turns according to what second forwarding behavior and the second hardware flow entry recorded Start to make type identification and do not find matched consistency check list item, replicates second message and for the second message of duplication Add the map metadata of second forwarding behavior;
The flow entry management module, the traffic parameter for the second message according to the duplication are searched in software flow table The software flow entry of second data stream matches belonging to the second message to the duplication, the map metadata instruction Second forwarding behavior and the software flow entry execution forwarding behavior;If inconsistent, by second data flow The forwarding behavior of execution of matched software flow entry is updated to second forwarding behavior;By the hardware of second data flow The forwarding behavior type identification of record described in flow entry is updated to the corresponding forwarding behavior type mark of second forwarding behavior Know, the counter of the hardware flow entry of second data flow is set as initial value.
8. the network equipment according to claim 7, which is characterized in that
The flow entry management module is also used to move by the forwarding of record described in the hardware flow entry of second data flow Before being updated to the corresponding forwarding behavior type identification of second forwarding behavior as type identification, by second data flow Traffic parameter, second data flow hardware flow entry fall into a trap several devices current count value and the record forwarding it is dynamic Make type identification and Network Management Equipment is sent to by message.
9. the network equipment according to claim 6, which is characterized in that
The retransmission unit is also used to execute third forward process to third message;
The flow entry unit is also used to execute the third message processing of third hardware flow entry lookup;
The inspection unit, the third for being also used to obtain the third forward process output from the metadata of the third message turn Start to make and what third hardware flow entry lookup processing exported does not find matched hardware flow in the hardware flow table List item mark, according to the third forwarding behavior and the matched hardware flow entry mark that do not find in the hardware check Matched consistency check list item is not found in table, replicates the third message and for the third message of duplication addition described the The map metadata of three forwarding behaviors;
The flow entry management module, the traffic parameter for the third message according to duplication search software flow table;It determines not The software flow table for finding the affiliated third data stream matches of third message of the duplication, according to the third message of the duplication Third software flow entry of the traffic parameter in the newly-built matching third data flow of the software flow table;Newly-built described the The third forwarding behavior is recorded in three software flow entrys;Described is recorded in the hardware flow table according to the traffic parameter The third hardware flow entry of three data flows records the corresponding forwarding of the third forwarding behavior in the third hardware flow entry Type of action mark;Initial value is set by the counter of the third hardware flow entry.
10. the network equipment according to any one of claim 6-9, which is characterized in that the flow entry management module, It is also used to periodically read traffic parameter, forwarding behavior type identification and meter in hardware flow table in each hardware flow entry The current count value of number device is simultaneously sent to Network Management Equipment by message.
CN201910682733.0A 2019-07-26 2019-07-26 Data flow forwarding state recording method and network equipment Active CN110430138B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910682733.0A CN110430138B (en) 2019-07-26 2019-07-26 Data flow forwarding state recording method and network equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910682733.0A CN110430138B (en) 2019-07-26 2019-07-26 Data flow forwarding state recording method and network equipment

Publications (2)

Publication Number Publication Date
CN110430138A true CN110430138A (en) 2019-11-08
CN110430138B CN110430138B (en) 2022-02-22

Family

ID=68412715

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910682733.0A Active CN110430138B (en) 2019-07-26 2019-07-26 Data flow forwarding state recording method and network equipment

Country Status (1)

Country Link
CN (1) CN110430138B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113190368A (en) * 2020-01-14 2021-07-30 华为技术有限公司 Method, device and system for realizing table item check and computer storage medium
CN115150328A (en) * 2022-09-07 2022-10-04 珠海星云智联科技有限公司 Flow table hardware unloading method, device and medium
CN116996438A (en) * 2023-09-22 2023-11-03 新华三技术有限公司 Flow table management method and device

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2391106A1 (en) * 2010-05-28 2011-11-30 Funai Electric Co., Ltd. Private branch exchange with hunt group
CN104488235A (en) * 2013-04-09 2015-04-01 华为技术有限公司 Packet forwarding method and network device
CN104796336A (en) * 2014-01-20 2015-07-22 华为技术有限公司 Methods and devices for configuring and issuing Open Flow items
US9240975B2 (en) * 2013-01-30 2016-01-19 Palo Alto Networks, Inc. Security device implementing network flow prediction
CN105339934A (en) * 2014-05-22 2016-02-17 华为技术有限公司 Packet processing method and apparatus
CN105765922A (en) * 2014-11-04 2016-07-13 华为技术有限公司 Flow entry processing method and apparatus
EP3099026A1 (en) * 2014-04-04 2016-11-30 Huawei Technologies Co., Ltd In-network message processing method, in-network message forwarding equipment and in-network message processing system
CN109347745A (en) * 2018-09-20 2019-02-15 郑州云海信息技术有限公司 A kind of flow table matching process and device based on OpenFlow interchanger
CN109688148A (en) * 2018-12-29 2019-04-26 苏州睿安芯微电子有限公司 A kind of system and method for making retransmission protocol secure network by oneself based on software configuration
CN109962832A (en) * 2017-12-26 2019-07-02 华为技术有限公司 The method and apparatus of Message processing
CN109981409A (en) * 2019-03-26 2019-07-05 新华三技术有限公司 Message forwarding method, device and forwarding device

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2391106A1 (en) * 2010-05-28 2011-11-30 Funai Electric Co., Ltd. Private branch exchange with hunt group
US9240975B2 (en) * 2013-01-30 2016-01-19 Palo Alto Networks, Inc. Security device implementing network flow prediction
CN104488235A (en) * 2013-04-09 2015-04-01 华为技术有限公司 Packet forwarding method and network device
CN104796336A (en) * 2014-01-20 2015-07-22 华为技术有限公司 Methods and devices for configuring and issuing Open Flow items
EP3099026A1 (en) * 2014-04-04 2016-11-30 Huawei Technologies Co., Ltd In-network message processing method, in-network message forwarding equipment and in-network message processing system
CN105339934A (en) * 2014-05-22 2016-02-17 华为技术有限公司 Packet processing method and apparatus
CN105765922A (en) * 2014-11-04 2016-07-13 华为技术有限公司 Flow entry processing method and apparatus
CN109962832A (en) * 2017-12-26 2019-07-02 华为技术有限公司 The method and apparatus of Message processing
CN109347745A (en) * 2018-09-20 2019-02-15 郑州云海信息技术有限公司 A kind of flow table matching process and device based on OpenFlow interchanger
CN109688148A (en) * 2018-12-29 2019-04-26 苏州睿安芯微电子有限公司 A kind of system and method for making retransmission protocol secure network by oneself based on software configuration
CN109981409A (en) * 2019-03-26 2019-07-05 新华三技术有限公司 Message forwarding method, device and forwarding device

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113190368A (en) * 2020-01-14 2021-07-30 华为技术有限公司 Method, device and system for realizing table item check and computer storage medium
CN115150328A (en) * 2022-09-07 2022-10-04 珠海星云智联科技有限公司 Flow table hardware unloading method, device and medium
CN116996438A (en) * 2023-09-22 2023-11-03 新华三技术有限公司 Flow table management method and device
CN116996438B (en) * 2023-09-22 2023-12-22 新华三技术有限公司 Flow table management method and device

Also Published As

Publication number Publication date
CN110430138B (en) 2022-02-22

Similar Documents

Publication Publication Date Title
Li et al. LossRadar: Fast detection of lost packets in data center networks
CN110430138A (en) Forwarding data flow state recording method and the network equipment
EP1635519B1 (en) Optimization of routing database in a network processor
US10320691B1 (en) Visibility packets
US8830841B1 (en) Operations, administration, and maintenance (OAM) processing engine
US7881221B2 (en) Hardware implementation of network testing and performance monitoring in a network device
CN100499568C (en) Packet forwarding device equipped with statistics collection device and statistics collection method
US6871265B1 (en) Method and apparatus for maintaining netflow statistics using an associative memory to identify and maintain netflows
US10097467B1 (en) Load balancing for multipath groups routed flows by re-associating routes to multipath groups
CN107547432B (en) A kind of flow control methods and device
WO2000036790A1 (en) Method for determining computer network topologies
Leng et al. A mechanism for reducing flow tables in software defined network
CN110912826B (en) Method and device for expanding IPFIX table items by using ACL
US11652744B1 (en) Multi-stage prefix matching enhancements
CN109726091A (en) A kind of blog management method and relevant apparatus
CN112119613A (en) Forwarding element data plane with flow size detector
CN112565338A (en) Method and system for capturing, filtering, storing and analyzing Ethernet message in real time
CN113839835A (en) Top-k flow accurate monitoring framework based on small flow filtering
CN110071843B (en) Fault positioning method and device based on flow path analysis
CN111200542B (en) Network flow management method and system based on deterministic replacement strategy
US20210160184A1 (en) Flow monitoring in network devices
US10805206B1 (en) Method for rerouting traffic in software defined networking network and switch thereof
CN114095383B (en) Network flow sampling method and system and electronic equipment
CN109039914B (en) Message processing method and device and electronic equipment
CN112787930A (en) Method, device and storage medium for monitoring running state of peer

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant