CN110572327A - Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method - Google Patents

Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method Download PDF

Info

Publication number
CN110572327A
CN110572327A CN201910701777.3A CN201910701777A CN110572327A CN 110572327 A CN110572327 A CN 110572327A CN 201910701777 A CN201910701777 A CN 201910701777A CN 110572327 A CN110572327 A CN 110572327A
Authority
CN
China
Prior art keywords
message
open flow
address
network
flow
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910701777.3A
Other languages
Chinese (zh)
Inventor
杨晋博
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Suzhou Wave Intelligent Technology Co Ltd
Original Assignee
Suzhou Wave Intelligent Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Suzhou Wave Intelligent Technology Co Ltd filed Critical Suzhou Wave Intelligent Technology Co Ltd
Priority to CN201910701777.3A priority Critical patent/CN110572327A/en
Publication of CN110572327A publication Critical patent/CN110572327A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/745Address table lookup; Address filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/70Virtual switches
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Abstract

the invention provides a method for realizing cross-network-segment data forwarding and flow control of a neutron network, which comprises the following steps: setting an Open Flow protocol to add a relevant Flow table in an Open Flow switch; and processing the received message by inquiring the Flow table, and forwarding the data to a corresponding port according to the corresponding Flow table entry to finish the data forwarding of the whole Open Flow network. The Open Flow controller is used for centrally controlling Neutron network traffic through an Open Flow network model. Meanwhile, aiming at the defects of the Open Flow protocol in the cross-segment data forwarding aspect, an action function for processing the ARP and the ICMP message is added on the basis of the current Open Flow protocol, so that the Open Flow protocol can normally respond to the ARP packet and the three-layer data packet ICMP, data forwarding can be carried out between different network segments, and the data Flow of the Neutron network is better controlled.

Description

method for realizing cross-network-segment data forwarding of neutron network and flow controllable method
Technical Field
the invention relates to the technical field of network services, in particular to a method for realizing cross-network-segment data forwarding and a flow controllable method of a neutron network.
Background
With the advent of the cloud computing era, infrastructure service-based cloud computing management platforms have received wide attention, and the generation and rapid development of Open cloud platforms Open Stack are also beneficial to this.
The Network structure of the early Open Stack is Nova-Network, but the Nova-Network structure is relatively simple in design and can only meet the simple requirement of a small-scale two-layer Network. With the continuous expansion of network scale and the proposal of network as a service concept, the Open Stack community proposes a Neutron network model, and a user can use an API provided by Neutron and then customize advanced network services such as network topology, VPN, Firewall and the like according to the requirement of the user.
although the Neutron network of Open Stack realizes network services and also satisfies the generalized software defined network, the model still has the following disadvantages:
In a Neutron network, a virtual switch used is an Open VSwitch, an overall architecture is designed based on a traditional network mode, a forwarding layer and a control layer of the virtual switch are not stripped, data exchange between the switches is automatically negotiated based on a dynamic protocol, and forwarding of overall data is uncontrollable, so that controllability of flow is insufficient.
Disclosure of Invention
the invention provides a method for realizing cross-network data forwarding of a Neutron network and a method for controlling the flow, aiming at the problems that in the Neutron network, a used virtual switch is an Open VSwitch, the whole architecture is designed based on the traditional network mode, a forwarding layer and a control layer of the virtual switch are not separated, data exchange between the switches is automatically negotiated based on a dynamic protocol, and the forwarding of the whole data is uncontrollable.
the technical scheme of the invention is as follows:
In a first aspect, a technical solution of the present invention provides a method for implementing data forwarding across network segments in a neutron network, including the following steps:
Setting an Open Flow protocol to add a relevant Flow table in an Open Flow switch;
and processing the received message by inquiring the Flow table, and forwarding the data to a corresponding port according to the corresponding Flow table entry to finish the data forwarding of the whole Open Flow network.
further, the step of processing the received packet by querying the Flow table, forwarding the data to the corresponding port according to the corresponding Flow table entry, and completing the data forwarding of the entire Open Flow network includes processing an ARP packet, and the specific steps are as follows:
when the Open Flow switch receives the data packet, analyzing the header of the data packet;
judging whether the packet is an ARP message or not according to the analyzed header information of the packet;
If not, performing other processing;
If the ARP message is the ARP message, judging whether the destination address is an interface IP address of an Open Flow switch or not;
And if the destination address is the interface IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item.
further, the processing step of the ARP packet further includes:
And if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
further, the processing step of the ARP packet further includes:
if the message is an ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is determined to be the other port IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item; and if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
Further, the processing step of the ARP packet further includes:
if the message is the ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is not the other port IP address of the Open Flow switch, uniformly sending the message to the Open Flow controller, and uniformly processing the message by the controller.
further, the step of processing the received message by querying the Flow table, forwarding the data to the corresponding port according to the corresponding Flow table entry, and completing the data forwarding of the whole Open Flow network includes processing the ICMP message, and the specific steps are as follows:
when the Open Flow switch receives the data packet, analyzing the header of the data packet;
Whether the ICMP message is determined by the analyzed header information of the data packet, if the ICMP message is determined, whether the destination address of the ICMP message is the local address is continuously determined, if the ICMP message is the local address, the ICMP message request is directly responded, if the destination address is a non-local address, an IP _ MAC cache table of an Open Flow switch is inquired, and if a matching item exists in the cache table, the MAC address is obtained, and the data is forwarded according to the path.
further, the step of processing the ICMP packet further includes:
And if the cache table has no matching item, the Open Flow switch sends an ARP request to the destination address, and executes an ARP message processing Flow.
further, the step of processing the ICMP packet further includes:
When the received data packet is an ICMP message, inquiring a cache table of an Open Flow switch according to the IP address to search a corresponding MAC address;
Modifying the source MAC address and the destination MAC address, and sending the data packet to a corresponding port;
if the cache table of the exchanger is inquired according to the IP address and does not have a corresponding MAC address, an ARP request is sent to the target address to obtain the target MAC address;
The IP address and the destination MAC address are stored to a cache table of the switch.
In a second aspect, a technical solution of the present invention provides a method for implementing that a neutron network traffic is controllable, including the following steps:
setting an Open Flow protocol to realize cross-network segment data forwarding of the neutron network;
An Open Flow controller controls Neutron network Flow;
The step of implementing the network segment data forwarding across the neutron network is the step of the method for implementing the network segment data forwarding across the neutron network in the first aspect.
The problem that the Open Flow protocol does not support ARP message and ICMP packet processing is solved. Through the action of new addition, the Open Flow switch can normally forward the ICMP request between different network segments.
according to the technical scheme, the invention has the following advantages: the Open Flow controller is used for centrally controlling Neutron network traffic through an Open Flow network model. Meanwhile, aiming at the defects of the Open Flow protocol in the cross-segment data forwarding aspect, an action function for processing the ARP and the ICMP message is added on the basis of the current Open Flow protocol, so that the Open Flow protocol can normally respond to the ARP packet and the three-layer data packet ICMP, data forwarding can be carried out between different network segments, and the data Flow of the Neutron network is better controlled.
In addition, the invention has reliable design principle, simple structure and very wide application prospect.
therefore, compared with the prior art, the invention has prominent substantive features and remarkable progress, and the beneficial effects of the implementation are also obvious.
drawings
in order to more clearly illustrate the embodiments or technical solutions in the prior art of the present invention, the drawings used in the description of the embodiments or prior art will be briefly described below, and it is obvious for those skilled in the art that other drawings can be obtained based on these drawings without creative efforts.
Fig. 1 is a schematic flowchart of a method for processing an ARP packet according to an embodiment of the present invention.
Fig. 2 is a schematic flowchart of a method for processing an ICMP packet according to an embodiment of the present invention.
Detailed Description
in order to make those skilled in the art better understand the technical solution of the present invention, the technical solution in the embodiment of the present invention will be clearly and completely described below with reference to the drawings in the embodiment of the present invention, and it is obvious that the described embodiment is only a part of the embodiment of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Example one
the technical scheme of the invention provides a method for realizing cross-network-segment data forwarding of a neutron network, which comprises the following steps:
setting an Open Flow protocol to add a relevant Flow table in an Open Flow switch;
And processing the received message by inquiring the Flow table, and forwarding the data to a corresponding port according to the corresponding Flow table entry to finish the data forwarding of the whole Open Flow network.
it should be noted that, in this embodiment, the step of processing a received packet by querying a Flow table, forwarding data to a corresponding port according to a corresponding Flow entry, and completing data forwarding of the entire Open Flow network includes processing an ARP packet, as shown in fig. 1, the specific steps are as follows:
when the Open Flow switch receives the data packet, analyzing the header of the data packet; judging whether the packet is an ARP message or not according to the analyzed header information of the packet; if not, performing other processing; if the ARP message is the ARP message, judging whether the destination address is an interface IP address of an Open Flow switch or not; and if the destination address is the interface IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item. And if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
If the message is an ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is determined to be the other port IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item; and if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
If the message is the ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is not the other port IP address of the Open Flow switch, uniformly sending the message to the Open Flow controller, and uniformly processing the message by the controller.
The step of processing the received message by querying the Flow table, forwarding the data to the corresponding port according to the corresponding Flow table entry, and completing the data forwarding of the whole Open Flow network includes processing the ICMP message, as shown in fig. 2, and the specific steps are as follows:
when the Open Flow switch receives the data packet, analyzing the header of the data packet;
whether the ICMP message is determined by the analyzed header information of the data packet, if the ICMP message is determined, whether the destination address of the ICMP message is the local address is continuously determined, if the ICMP message is the local address, the ICMP message request is directly responded, if the destination address is a non-local address, an IP _ MAC cache table of an Open Flow switch is inquired, and if a matching item exists in the cache table, the MAC address is obtained, and the data is forwarded according to the path. And if the cache table has no matching item, the Open Flow switch sends an ARP request to the destination address, and executes an ARP message processing Flow.
it should be noted that, when the received data packet is an ICMP packet, the cache table of the Open Flow switch is queried according to the IP address to find a corresponding MAC address; modifying the source MAC address and the destination MAC address, and sending the data packet to a corresponding port; if the cache table of the exchanger is inquired according to the IP address and does not have a corresponding MAC address, an ARP request is sent to the target address to obtain the target MAC address; the IP address and the destination MAC address are stored to a cache table of the switch.
In the above code, the port structure represents a port data structure of an Open Flow switch, the buffer structure represents a cache for storing ARP packets, and the ofp _ action _ header structure represents an action of an Open Flow protocol. Messages which are not processed are uniformly forwarded to an Open Flow controller and are uniformly processed by the controller, and the message forwarding function is mainly realized by a function of _ action _ output ().
after adding basic actions for processing ARP packets and ICMP packets on the original basis of the Open Flow protocol, the current Open Flow network can forward data of different network segments, a relevant Flow table is added into the Open Flow switch, the Open Flow switch processes the received ARP packets and ICMP packets by inquiring the Flow table, and then the data are forwarded to corresponding ports according to corresponding Flow table items, so that the data forwarding of the whole Open Flow network is completed.
Example two
The technical scheme of the invention provides a method for realizing the controllable network flow of a neutron, which comprises the following steps:
Setting an Open Flow protocol to realize cross-network segment data forwarding of the neutron network;
an Open Flow controller controls Neutron network Flow;
The step of implementing the data forwarding across network segments of the neutron network is the step of the method of implementing the data forwarding across network segments of the neutron network described in the first embodiment. The Open Flow controller for controlling Neutron network traffic is well known in the art and will not be described herein.
Although the present invention has been described in detail by referring to the drawings in connection with the preferred embodiments, the present invention is not limited thereto. Various equivalent modifications or substitutions can be made on the embodiments of the present invention by those skilled in the art without departing from the spirit and scope of the present invention, and these modifications or substitutions are within the scope of the present invention/any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (9)

1. A method for realizing data forwarding across network segments of a neutron network is characterized by comprising the following steps:
setting an Open Flow protocol and adding a relevant Flow table in an Open Flow switch;
and processing the received message by inquiring the Flow table, and forwarding the data to a corresponding port according to the corresponding Flow table entry to finish the data forwarding of the whole Open Flow network.
2. The method according to claim 1, wherein the step of processing the ARP packet includes the steps of receiving a packet by querying a Flow table, forwarding the packet to a corresponding port according to a corresponding Flow table entry, and completing the data forwarding of the entire Open Flow network, and the specific steps include:
When the Open Flow switch receives the data packet, analyzing the header of the data packet;
judging whether the packet is an ARP message or not according to the analyzed header information of the packet;
If not, performing other processing;
If the ARP message is the ARP message, judging whether the destination address is an interface IP address of an Open Flow switch or not;
and if the destination address is the interface IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item.
3. The method according to claim 2, wherein the step of processing the ARP packet further includes:
and if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
4. the method according to claim 3, wherein the step of processing the ARP packet further includes:
If the message is an ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is determined to be the other port IP address of the Open Flow switch, inquiring a Flow table of the Open Flow switch, matching the message, and if a matched Flow table item exists, processing the message according to the Flow table item; and if the Flow table item is not matched, updating the Flow table of the Open Flow switch.
5. the method according to claim 4, wherein the step of processing the ARP packet further includes:
if the message is the ARP message but the destination address of the message is not the interface IP address of the Open Flow switch, judging whether the message is the other interface IP address of the Open Flow switch or not, if the destination address is not the other port IP address of the Open Flow switch, uniformly sending the message to the Open Flow controller, and uniformly processing the message by the controller.
6. The method according to claim 5, wherein the step of processing the ICMP packet by querying a Flow table to process the received packet, forwarding the packet to a corresponding port according to a corresponding Flow table entry, and completing the packet forwarding of the entire Open Flow network includes the following specific steps:
when the Open Flow switch receives the data packet, analyzing the header of the data packet;
whether the ICMP message is determined by the analyzed header information of the data packet, if the ICMP message is determined, whether the destination address of the ICMP message is the local address is continuously determined, if the ICMP message is the local address, the ICMP message request is directly responded, if the destination address is a non-local address, an IP _ MAC cache table of an Open Flow switch is inquired, and if a matching item exists in the cache table, the MAC address is obtained, and the data is forwarded according to the path.
7. the method according to claim 6, wherein the step of processing the ICMP packet further comprises:
And if the cache table has no matching item, the Open Flow switch sends an ARP request to the destination address, and executes an ARP message processing Flow.
8. The method according to claim 7, wherein the step of processing the ICMP packet further comprises:
when the received data packet is an ICMP message, inquiring a cache table of an Open Flow switch according to the IP address, and searching a corresponding MAC address;
modifying the source MAC address and the destination MAC address, and sending the data packet to a corresponding port;
if the cache table of the exchanger is inquired according to the IP address and does not have a corresponding MAC address, an ARP request is sent to the target address to obtain the target MAC address;
the IP address and the destination MAC address are stored to a cache table of the switch.
9. a method for realizing the controllable network flow of a neutron is characterized by comprising the following steps:
Setting an Open Flow protocol to realize cross-network segment data forwarding of the neutron network;
An Open Flow controller controls Neutron network Flow;
The step of implementing the data forwarding across network segments of the neutron network is the step of implementing the data forwarding across network segments of the neutron network as claimed in any one of claims 1 to 8.
CN201910701777.3A 2019-07-31 2019-07-31 Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method Pending CN110572327A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910701777.3A CN110572327A (en) 2019-07-31 2019-07-31 Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910701777.3A CN110572327A (en) 2019-07-31 2019-07-31 Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method

Publications (1)

Publication Number Publication Date
CN110572327A true CN110572327A (en) 2019-12-13

Family

ID=68773419

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910701777.3A Pending CN110572327A (en) 2019-07-31 2019-07-31 Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method

Country Status (1)

Country Link
CN (1) CN110572327A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113542042A (en) * 2020-04-13 2021-10-22 国网电力科学研究院有限公司 Method for structured detection of host in local area network
CN114124813A (en) * 2021-11-23 2022-03-01 浪潮云信息技术股份公司 L3-agent implementation method based on flow table in openstack

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103825954A (en) * 2014-03-10 2014-05-28 中国联合网络通信集团有限公司 OpenFlow control method and corresponding insert, platform and network thereof
CN104539743A (en) * 2015-01-26 2015-04-22 中国联合网络通信集团有限公司 Cloud computing system and control method thereof
CN105591863A (en) * 2014-10-20 2016-05-18 中兴通讯股份有限公司 Method and device for realizing interworking between virtual private cloud network and external network
US20180262418A1 (en) * 2015-08-19 2018-09-13 Beijing Baidu Netcom Science And Technology Co., Ltd. Method and apparatus for communication in virtual network

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103825954A (en) * 2014-03-10 2014-05-28 中国联合网络通信集团有限公司 OpenFlow control method and corresponding insert, platform and network thereof
CN105591863A (en) * 2014-10-20 2016-05-18 中兴通讯股份有限公司 Method and device for realizing interworking between virtual private cloud network and external network
CN104539743A (en) * 2015-01-26 2015-04-22 中国联合网络通信集团有限公司 Cloud computing system and control method thereof
US20180262418A1 (en) * 2015-08-19 2018-09-13 Beijing Baidu Netcom Science And Technology Co., Ltd. Method and apparatus for communication in virtual network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
王保平: "基于Neutron的流量瓶颈及其可控性关键问题研究", 《中国优秀硕士学位论文全文数据库》 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113542042A (en) * 2020-04-13 2021-10-22 国网电力科学研究院有限公司 Method for structured detection of host in local area network
CN114124813A (en) * 2021-11-23 2022-03-01 浪潮云信息技术股份公司 L3-agent implementation method based on flow table in openstack
CN114124813B (en) * 2021-11-23 2023-08-25 浪潮云信息技术股份公司 Method for realizing l3-agent based on flow table in openstack

Similar Documents

Publication Publication Date Title
US10917351B2 (en) Reliable load-balancer using segment routing and real-time application monitoring
CN107204867B (en) Information transmission method, device and system
CN107395532B (en) Multi-tenant virtual network isolation method based on SDN
EP3043517B1 (en) Routing method, method for controlling routing, network node and control entity
EP2632088B1 (en) Method and device for storing and sending mac address entry
WO2017107814A1 (en) Method, apparatus and system for propagating qos policies
US9960998B2 (en) Forwarding packet in stacking system
CN108429680B (en) Route configuration method, system, medium and equipment based on virtual private cloud
CN110430076B (en) Route management method and device
CN106656793B (en) Data interaction method for SDN network and IP network
CN113302898A (en) Virtual routing controller for peer-to-peer interconnection of client devices
CN111638957A (en) Method for realizing cluster sharing type public cloud load balance
JP2008042665A (en) Network virtualization apparatus and network virtualization program
US11405320B2 (en) Systems and methods for scalable validation of multiple paths in a network using segment routing
CN110572327A (en) Method for realizing cross-network-segment data forwarding of neutron network and flow controllable method
EP3166263B1 (en) Routing calculation method and device for trill isis
EP3429139B1 (en) Ingress gateway selection for a shortest path bridging network to support inter domain multicast routing
CN108092896B (en) Stacking system and aggregation group creation apparatus
CN113965521A (en) Data packet transmission method, server and storage medium
US11924103B2 (en) Traffic processing method, apparatus, and network device
US20230269164A1 (en) Method and apparatus for sending route calculation information, device, and storage medium
RU2592408C2 (en) Method and apparatus for configuring medium access control space in service virtual private local area network
WO2018161827A1 (en) Address self-learning method and device, and switch
CN115118545B (en) Group management protocol host mobility in ethernet virtual private network multicast networks
WO2015074258A1 (en) Method, apparatus and system for controlling forwarding of service data in virtual network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20191213