CN111083034B

CN111083034B - Method, equipment and medium for managing VXLAN tunnel under EVPN

Info

Publication number: CN111083034B
Application number: CN201911350726.7A
Authority: CN
Inventors: 张钟凯; 张婵
Original assignee: Inspur Cisco Networking Technology Co Ltd
Current assignee: Inspur Cisco Networking Technology Co Ltd
Priority date: 2019-12-24
Filing date: 2019-12-24
Publication date: 2022-03-01
Anticipated expiration: 2039-12-24
Also published as: CN111083034A

Abstract

The application discloses a method, equipment and medium for managing VXLAN tunnel under EVPN. The method is applied to VTEP and comprises the following steps: receiving a routing message of a specified type sent by another VTEP in response to a tunnel establishment triggering instruction; obtaining a VNI and a VTEP address corresponding to another VTEP contained in the routing message by analyzing the routing message; and establishing a VXLAN tunnel between the VTEP and the other VTEP according to the VTEP address corresponding to the VTEP and the VNI and VTEP address corresponding to the other VTEP, and managing the VXLAN tunnel. The method and the device directly manage the VXLAN tunnel through the VTEP based on the routing message of the specified type without a virtual VXLAN interface, and are simple in configuration and high in efficiency.

Description

Method, equipment and medium for managing VXLAN tunnel under EVPN

Technical Field

The present application relates to the field of communications technologies, and in particular, to a method, a device, and a medium for managing a VXLAN tunnel under an EVPN.

Background

An Ethernet Virtual Private Network (EVPN) is a two-layer VPN technology, and a Border Gateway Protocol (BGP) is used on a control plane to advertise routing information, and an eXtensible Virtual local area Network (VXLAN) is used on a data plane to forward a user packet. In order to support EVPN, a BGP EVPN address family is newly added with a plurality of EVPN routes, and a 2-Type Route (Route Type 2) message in the EVPN routes, namely an MAC/IP notification Route (MAC/IP Advertisement Route) message can be used for notifying MAC/IP address information; a Type 3 Route (Route Type 3) message in the EVPN Route, that is, an inclusive multicast (inclusive multicast) notification Route message, may be used to complete automatic discovery of a VXLAN Tunnel EndPoint (VXLAN Tunnel EndPoint, VTEP) address; the Type 5 routing (Route Type 5) packet in the EVPN Route, that is, the IP Prefix Advertisement routing (IP Prefix Advertisement Route) packet, may be used to advertise the introduced external Route in the form of an IP Prefix.

Referring to fig. 1, fig. 1 is a schematic view of a scenario of a distributed gateway. In fig. 2, the VTEP is simultaneously used as a gateway, and the Spine node is only used as a forwarding node of the VXLAN packet without considering the VXLAN tunnel. The control plane only needs to establish a VXLAN tunnel between VTEPs, which is used for communication between Host1 and Host2, Host3 and Host 2. For the communication between Host1 and Host2, since both belong to VTEP1, the mutual traffic only needs to be processed on VTEP1 and does not need to be forwarded through VXLAN tunnels. Currently, VXLAN tunnel management needs to be done through a virtual VXLAN interface.

However, the VXLAN tunnel management scheme based on the virtual VXLAN interface is complex in configuration, except for configuration necessary for establishing the VXLAN tunnel, the virtual interface needs to be associated with the VNI, when there are many EVPN instances, the virtual interfaces need to be associated with the instances one by one, and management operations such as creation and deletion of the VXLAN tunnel need to be performed through the virtual interface, which is inefficient.

Disclosure of Invention

The embodiment of the application provides a method, equipment and a medium for managing a VXLAN tunnel under an EVPN (virtual extensible private network), which are used for solving the following technical problems in the prior art: the VXLAN tunnel management scheme based on the virtual VXLAN interface is complex in configuration and low in efficiency at present.

The embodiment of the application adopts the following technical scheme:

a method of managing VXLAN tunnels under EVPN, applied to VTEP, the method comprising:

receiving a routing message of a specified type sent by another VTEP in response to a tunnel establishment triggering instruction;

analyzing the routing message to obtain a VNI and a VTEP address corresponding to the other VTEP contained in the routing message;

and establishing a VXLAN tunnel between the VTEP and the other VTEP according to the VTEP address corresponding to the VTEP and the VNI and VTEP address corresponding to the other VTEP, and managing the VXLAN tunnel.

Optionally, the VNI is a two-layer VNI, and establishing a VXLAN tunnel between itself and the another VTEP includes:

a two-layer VXLAN tunnel is established between itself and the other VTEP.

Optionally, establishing a VXLAN tunnel between itself and the another VTEP, further comprising:

and establishing a three-layer VXLAN tunnel associated with the two-layer VXLAN tunnel.

Optionally, before establishing the VXLAN tunnel between itself and the another VTEP, the method further comprises:

acquiring an exit-direction route-target of an EVPN instance contained in the routing message by analyzing the routing message;

and determining that the EVPN instance also exists in the self, wherein the exit direction route-target is equal to the exit direction route-target of the EVPN instance existing in the self.

Optionally, managing the VXLAN tunnel includes:

receiving a routing message of a specified type sent by the other VTEP in response to the tunnel deletion triggering instruction;

and deleting the VXLAN tunnel according to the VNI and the VTEP address corresponding to the other VTEP.

Optionally, the routing packet sent in response to the tunnel establishment trigger instruction includes an update routing packet, and the routing packet sent in response to the tunnel deletion trigger instruction includes a withdraw routing packet.

Optionally, the tunnel establishment trigger instruction includes a switch instruction sent by operating a preset switch;

the tunnel deletion trigger instruction comprises a deletion instruction of the VNI or a switch instruction sent by operating a preset switch.

Optionally, the routing packet of the specified type includes: and 3 types of routing messages in the EVPN.

An apparatus for managing VXLAN tunnels under EVPN, applied to VTEP, the apparatus comprising:

at least one processor; and the number of the first and second groups,

a memory communicatively coupled to the at least one processor; wherein the content of the first and second substances,

the memory stores instructions executable by the at least one processor to enable the at least one processor to:

A medium for managing VXLAN tunnels under EVPN, storing computer-executable instructions for application to a VTEP, the computer-executable instructions configured to:

The embodiment of the application adopts at least one technical scheme which can achieve the following beneficial effects: based on the routing message of the specified type, the VXLAN tunnel is directly managed through the VTEP without a virtual VXLAN interface, and the configuration is simple and the efficiency is high.

Drawings

The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the application and together with the description serve to explain the application and not to limit the application. In the drawings:

FIG. 1 is a schematic view of a distributed gateway;

fig. 2 is a schematic flow diagram of a method of managing VXLAN tunnels under EVPN according to some embodiments of the present application;

fig. 3 is a scene schematic diagram of a distributed gateway applying the method in fig. 2 in an application scenario provided in some embodiments of the present application.

Detailed Description

In order to make the objects, technical solutions and advantages of the present application more apparent, the technical solutions of the present application will be described in detail and completely with reference to the following specific embodiments of the present application and the accompanying drawings. It should be apparent that the described embodiments are only some of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.

Fig. 2 is a schematic flowchart of a method for managing VXLAN tunnels under EVPN according to some embodiments of the present application, where an execution subject of the flowchart may be any VTEP (for convenience of description, referred to as the present VTEP), and the VTEP may establish a VXLAN tunnel with another VTEP meeting certain conditions by executing the flowchart, and perform subsequent management on the VXLAN tunnel.

The method of fig. 2 comprises the steps of:

s200: and receiving a routing message of a specified type sent by another VTEP in response to the tunnel establishment triggering instruction.

In some embodiments of the present application, a software switch or a hardware switch may be previously set on the VTEP, and tunnel establishment is triggered by a switch instruction for the preset switch. For example, when another VTEP opens the preset switch of itself, a tunnel establishment trigger instruction is issued, and the other VTEP responds to the tunnel establishment trigger instruction and sends a routing packet of a specified type to the VTEP. The tunnel establishment triggering instruction may be triggered by some other predefined event, for example, it may be predefined that when a user requests another VTEP to transmit some information to the VTEP, the tunnel establishment triggering instruction is automatically issued, and so on.

In some embodiments of the present application, the routing packet of the specified type may be a routing packet of a specified class in the EVPN route, so that while using the original function of the routing packet of the specified class, the service logic of the scheme of the present application can be implemented incidentally, which is helpful to save processing resources and has a low implementation cost.

S202: and analyzing the routing message to obtain the VNI and the VTEP address corresponding to the other VTEP contained in the routing message.

In some embodiments of the present application, the VNI and VTEP addresses are the information needed to establish the VXLAN tunnel, which is provided to the present VTEP via routing messages.

It should be noted that two VTEPs establishing the VXLAN tunnel need to meet a certain condition, and after receiving the routing packet, it can determine whether the condition is met. For example, the conditions may include: the same EVPN instance needs to exist on both VTEPs, e.g., represented by a layer two VNI (i.e., L2 VNI); for another example, if the route-target of the EVPN instance is contained in the routing packet, the condition may further include: the VTEP also has the EVPN example, and the outgoing direction route-target contained in the routing message is equal to the outgoing direction route-target of the EVPN example.

S204: and establishing a VXLAN tunnel between the VTEP and the other VTEP according to the VTEP address corresponding to the VTEP and the VNI and VTEP address corresponding to the other VTEP, and managing the VXLAN tunnel.

In some embodiments of the present application, managing the VXLAN tunnel further includes deleting the VXLAN tunnel, switching the VXLAN tunnel, and the like.

By the method of fig. 2, the VXLAN tunnel is directly managed by the VTEP based on the routing packet of the designated type without a virtual VXLAN interface, and the configuration is simple and efficient.

Based on the method of fig. 2, the present application also provides some specific embodiments and extensions of the method, which are described further below.

In the EVPN scenario, the VNIs include an L2VNI and possibly a triple-layer VNI (i.e., an L3 VNI). In the flow of fig. 2, establishing a VXLAN tunnel between itself and another VTEP includes at least: a two-layer VXLAN tunnel is established between itself and another VTEP. Thus, the basic function of interacting the two-layer data through the VXLAN tunnel can be realized.

A two-layer VXLAN tunnel between itself and another VTEP may be further established. For example, it may be found whether an L3VNI exists under a Virtual Routing Forwarding (VRF) associated with the L2VNI, and if so, a three-layer VXLAN tunnel associated with a two-layer VXLAN tunnel is established, thereby facilitating interaction of three-layer data between VTEPs.

In some embodiments of the present application, a specified type of routing packet may also be utilized to facilitate efficient deletion of a VXLAN tunnel according to the same ideas as the VXLAN tunnel is established. For example, managing VXLAN tunnels may include: receiving a routing message of a specified type sent by another VTEP in response to the tunnel deletion triggering instruction; analyzing the routing message to obtain a VNI and a VTEP address corresponding to another VTEP contained in the routing message; and deleting the VXLAN tunnel according to the VNI and the VTEP address corresponding to the other VTEP.

For example, if another VTEP closes its own preset switch, a tunnel deletion trigger command is issued, and the other VTEP responds to the tunnel deletion trigger command and sends a routing message of a specified type to the VTEP. The tunnel deletion trigger command may be triggered by some other predefined event, for example, it may be predefined that if a deletion command of a VNI used when a VXLAN tunnel is established is issued, it is regarded as that the tunnel deletion trigger command is automatically issued, and so on.

In some embodiments of the present application, the route packet of type 3 in the EVPN may be used as the route packet of the specified type, which has the advantages that the packet format has better support for information such as VNI and VTEP addresses, and the implementation cost of the scheme is low. The formats of 3 types of routing messages in the EVPN are shown in the following tables 1 and 2:

TABLE 1

Route distingguisher (8 bytes)
	Ethernet Tag ID (4 bytes)
IP Address Length (1 byte)
	Origin routers' IP Address (4 bytes)

TABLE 2

Flags (1 byte)
	Tunnel Type (1 byte)
MPLS Label (3 bytes)
	Tunnel Identifier(variable)

Where table 1 shows the prefix portion and table 2 shows the PMSI attribute portion, the Address of the VTEP is stored, for example, in the origin Router's IP Address field of the prefix, and the VNI is stored, for example, in the MPLS Label field of the PMSI attribute.

According to the foregoing description, for convenience of understanding, some embodiments of the present application further provide a specific implementation of the method in fig. 2 in an application scenario, which is described with reference to fig. 3, and fig. 3 is a scenario diagram of a distributed gateway applying the method in fig. 2 in an application scenario provided by some embodiments of the present application.

In fig. 3, a switch for automatically establishing and deleting the VXLAN tunnel is preset on the VTEP, and after the switch on the VTEP is turned on, the VXLAN tunnel is established between the VTEPs. There is only one and only one L3VNI and at least one L2VNI in one VRF on VTEP, and L2VNI and L3VNI can be converted. The management of the VXLAN tunnel is completed through 3 types of routing (i.e., exclusive multicast advertisement routing) messages in EVPN sent between VTEPs, and is mainly based on the addresses of the L2VNI and VTEP contained in the routing messages.

After the VTEP opens the switch for automatically establishing the VXLAN tunnel, the VTEP sends an update routing message of 3 types of routes, where the routing message includes an egress route-target of the EVPN instance, an aligning Router's IP Address (including an Address of the VTEP), and an MPLS Label field (including an L2 VNI).

After receiving the update routing message of the 3-type routing, the VTEP checks and analyzes the message, and processes the routing message if the message is the correct 3-type routing message. The processing process is that whether the EVPN instance (represented by L2VNI) exists in the VTEP is searched according to the route-target carried in the route message, if the EVPN instance does not exist in the VTEP, the route message is discarded, if the route message exists and is equal to the route-target of the EVPN instance on the VTEP in the entering direction, the route message is received, otherwise, the route message is discarded. After learning the route, the local VTEP searches for the L2VNI included in the routing message, establishes the VXLAN tunnel of the L2VNI according to the address of the opposite VTEP (i.e., the aforementioned another VTEP) included in the routing message and the address of the local VTEP, establishes the VXLAN tunnel of the L2VNI and also establishes the VXLAN tunnel of the L3VNI associated therewith, and can search for whether there is a L3VNI under the VRF associated with the L2VNI, if there is a VXLAN tunnel for establishing the L3 VNI.

If the switch for automatically establishing the VXLAN tunnel is closed on the VTEP or the L2VNI is deleted, a routaw routing packet of 3 types of routes is sent, and the routing packet includes an egress route-target of the EVPN instance, an identifying Router's IP Address (including the Address of the VTEP), and an MPLS Label field (including the L2VNI), as well as an update routing packet.

After receiving the router message of the 3-type route, the VTEP also checks and analyzes the router message, and processes the router message if the router message of the 3-type route is correct. The processing process is the same as the update routing message, firstly, whether the L2VNI carried in the routing message exists in the VTEP is searched, if the EVPN instance exists, the route of the L2VNI in the BGP routing table is deleted, the VXLAN tunnel of the L2VNI is deleted, whether the VXLAN tunnel of other L2VNI exists under the VRF associated with the L2VNI is searched, and if the VXLAN tunnel of the L3VNI which is deleted is not existed; and if the L2VNI carried in the routing message does not exist on the VTEP after the routing message is received, discarding the routing message.

And deleting the VXLAN tunnel of the L2VNI on the VTEP, and deleting the VXLAN tunnel of the corresponding L3VNI on the VTEP if the VXLAN tunnel of the L2VNI related to the L3VNI under the same VRF does not exist on the VTEP. If the VXLAN tunnels of the L2 VNIs associated with the L3 VNIs all DOWN on the same VRF on the VTEP, the VXLAN tunnel of the L3 VNIs supposed to be DOWN.

Based on the same idea, some embodiments of the present application further provide devices and media corresponding to the above system.

Some embodiments of the present application provide an apparatus for managing VXLAN tunnels under EVPN, applied to VTEP, the apparatus comprising:

at least one processor; and the number of the first and second groups,

Some embodiments of the present application provide a medium for managing VXLAN tunnels under EVPN for VTEP applications, the medium comprising a non-volatile computer storage medium storing computer-executable instructions configured to:

The embodiments in the present application are described in a progressive manner, and the same and similar parts among the embodiments can be referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the device and media embodiments, the description is relatively simple as it is substantially similar to the method embodiments, and reference may be made to some descriptions of the method embodiments for relevant points.

The device, the medium and the method provided by the embodiment of the application are corresponding, so that the device and the medium also have similar beneficial technical effects as the corresponding method.

As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a system, apparatus, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.

The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.

The memory may include forms of volatile memory in a computer readable medium, Random Access Memory (RAM) and/or non-volatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of a computer-readable medium.

Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.

It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.

The above description is only an example of the present application and is not intended to limit the present application. Various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application should be included in the scope of the claims of the present application.

Claims

1. A method for managing VXLAN tunnels under EVPN, applied to VTEP, the method comprising:

receiving a routing message of a specified type sent by another VTEP in response to a tunnel establishment triggering instruction, wherein the routing message of the specified type comprises: 3 types of routing messages in the EVPN;

analyzing the routing message to obtain a VNI and a VTEP address corresponding to the other VTEP contained in the routing message, wherein the VNI is a two-layer VNI;

establishing a VXLAN tunnel between the VTEP and the other VTEP according to the VTEP address corresponding to the VXLAN tunnel and the VNI and VTEP address corresponding to the other VTEP, and managing the VXLAN tunnel;

establishing a VXLAN tunnel between itself and the other VTEP, comprising: establishing a two-layer VXLAN tunnel between the VTEP and the other VTEP, and establishing a three-layer VXLAN tunnel associated with the two-layer VXLAN tunnel;

before a VXLAN tunnel between the routing message and the other VTEP is established, acquiring an egress-target of an EVPN instance contained in the routing message by analyzing the routing message;

2. The method of claim 1, wherein managing the VXLAN tunnel comprises:

3. The method of claim 2, wherein the routing packet sent in response to the tunnel establishment trigger instruction comprises an update routing packet, and wherein the routing packet sent in response to the tunnel deletion trigger instruction comprises a withdraw routing packet.

4. The method of claim 2, wherein the tunnel establishment trigger instruction comprises a switch instruction sent by operating a preset switch;

5. An apparatus for managing VXLAN tunnels under EVPN, applied to VTEP, the apparatus comprising:

at least one processor; and the number of the first and second groups,

6. A medium for managing VXLAN tunnels under EVPN, storing computer-executable instructions configured for application to VTEP, the computer-executable instructions configured to: