CN111385204B - Service transmission method, device, equipment and medium - Google Patents
Service transmission method, device, equipment and medium Download PDFInfo
- Publication number
- CN111385204B CN111385204B CN201811613857.5A CN201811613857A CN111385204B CN 111385204 B CN111385204 B CN 111385204B CN 201811613857 A CN201811613857 A CN 201811613857A CN 111385204 B CN111385204 B CN 111385204B
- Authority
- CN
- China
- Prior art keywords
- vpn
- protocol
- establishing
- mpls
- backbone
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/50—Routing or path finding of packets in data switching networks using label swapping, e.g. multi-protocol label switch [MPLS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a service transmission method, a device, equipment and a medium. The method comprises the following steps: establishing an MPLS (multiple protocol Label distribution protocol) LDP (Label distribution protocol) tunnel from a first Access Router (AR) to a second AR of an IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS; establishing a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel; and opening MPLS functions of an uplink port of the route reflector RR and the customer edge equipment CE, and establishing the neighborhood of the RR and the external border gateway protocol EBGP of the second AR and the external border gateway protocol EBGP of the CE and the first AR so as to enable a plurality of VPN services on the RR and the CE to be embedded in a backbone CSC VPN of the IP bearing network through the second AR for transmission. According to the embodiment of the invention, a plurality of services can be combined into a single service to be uniformly carried by the IP carrying network, so that the maintenance difficulty is reduced.
Description
Technical Field
The present invention belongs to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a medium for service transmission.
Background
At present, Operation and maintenance problems such as a Mobile Digital Communication Network (MDCN), a Network Management System (NMS), a Business Operation Support System (BOSS), an Office Network (OA) and the like exist in Internet Protocol (IP) bearer networks with multiple services, such as numerous networks, repeated links, a large number of Network elements, high maintenance difficulty and the like.
In the prior art, as shown in fig. 1, various services are connected to an Access Router (AR) device through a near user Edge device (CE), a backbone Network AR device of an IP bearer Network establishes and operates multiple Virtual Private Networks (VPNs), and meanwhile, CE side service Access requires matching of an AR side with an application policy and a route (which may cause that an AR device port occupies too high and a device capability requirement is too high), and service development requires intervention of the backbone Network (AR device), and the backbone Network VPN service is complicated and difficult to manage. Service provisioning, service adjustment and route adjustment all need group IP bearer network maintenance personnel to approve and participate, and service provisioning efficiency is low.
Disclosure of Invention
In order to solve at least one technical problem, embodiments of the present invention provide a service transmission method, apparatus, device, and medium, which can implement that multiple services are merged into a single service and are uniformly supported by an IP bearer network, thereby reducing maintenance difficulty.
In a first aspect, an embodiment of the present invention provides a service transmission method, where the method includes:
establishing an MPLS (multiple protocol Label distribution protocol) LDP (Label distribution protocol) tunnel from a first Access Router (AR) to a second AR of an IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS;
establishing a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel;
opening MPLS function of an ascending port of a route reflector RR and a customer edge device CE, and establishing the external border gateway protocol EBGP neighbor relation between the RR and a second AR and between the CE and a first AR, so that a plurality of VPN services on the RR and the CE are transmitted in a backbone CSC VPN of the IP bearing network through nesting of the second AR.
According to the service transmission method provided by the embodiment of the present invention, the establishing the backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel includes:
and establishing backbone Virtual Private Networks (VPNs) of the first AR and the second AR according to the established MPLS LDP tunnel, binding interfaces of the first AR and the second AR with CSCs, and establishing a backbone CSC VPN of the IP bearing network.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
enabling the first AR to distribute a label of a first loopback address to a backbone router BR of the IP bearing network through the MPLS LDP tunnel;
causing the BR to distribute the received label of the first loopback address to the second AR through the MPLS LDP tunnel.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
and establishing a plurality of multi-protocol internal border gateway protocol (MP-IBGP) neighbor relations of the CEs and the RRs.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
according to the EBGP neighbor relation and the MP-IBGP neighbor relation, the CE distributes the label of the second loopback address to the first AR;
causing the first AR to distribute the received label of the second loopback address to the second AR;
causing the second AR to distribute the received label of the second loopback address to the RRs.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
and configuring a BGP SOO anti-ring mechanism and/or BGP AS number replacement on the first AR.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
and establishing the plurality of VPN services on the RR and the CE.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
and identifying the plurality of VPN services by using the routing distinguisher RD and the routing target RT, and forbidding mutual access among the VPN services with different RT values.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
and configuring an Open Shortest Path First (OSPF) protocol on the CE to enable the CE to access the servers of the VPN services.
According to the service transmission method provided by the embodiment of the invention, the method further comprises the following steps:
configuring label import and label rejection policies on the CEs.
In a second aspect, an embodiment of the present invention provides a service transmission apparatus, where the apparatus includes:
the tunnel establishing module is used for establishing an MPLS (multiple protocol Label distribution) protocol LDP tunnel from a first Access Router (AR) to a second AR of an Internet protocol IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS;
a backbone network establishing module, configured to establish a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel;
and the service transmission module is used for opening the MPLS function of the ascending port of the route reflector RR and the customer edge equipment CE and establishing the External Border Gateway Protocol (EBGP) neighbor relation between the RR and the second AR and between the CE and the first AR so as to enable a plurality of VPN services on the RR and the CE to be nested in the backbone CSC VPN of the IP bearing network through the second AR for transmission.
In a third aspect, an embodiment of the present invention provides a service transmission device, where the service transmission device includes: a processor and a memory storing computer program instructions;
the processor, when executing the computer program instructions, implements the method of traffic transmission as described in the first aspect.
In a fourth aspect, an embodiment of the present invention provides a computer storage medium, where computer program instructions are stored, and when executed by a processor, implement the service transmission method according to the first aspect.
The embodiment of the invention provides a service transmission method, a device, equipment and a medium. The method comprises the following steps: establishing an MPLS (multiple protocol Label distribution protocol) LDP (Label distribution protocol) tunnel from a first Access Router (AR) to a second AR of an IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS; establishing a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel; and opening MPLS functions of an uplink port of the route reflector RR and the customer edge equipment CE, and establishing the neighborhood of the RR and the external border gateway protocol EBGP of the second AR and the external border gateway protocol EBGP of the CE and the first AR so as to enable a plurality of VPN services on the RR and the CE to be embedded in a backbone CSC VPN of the IP bearing network through the second AR for transmission. According to the embodiment of the invention, a plurality of services can be combined into a single service to be uniformly carried by the IP carrying network, so that the maintenance difficulty is reduced.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings required to be used in the embodiments of the present invention will be briefly described below, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic flow chart of traffic transmission in the prior art;
fig. 2 is a schematic flowchart of a service transmission method according to an embodiment of the present invention;
FIG. 3 is a schematic diagram comparing the traffic transmission flow of the present invention with the prior art;
fig. 4 is a schematic flow chart of a label distribution process provided by an embodiment of the present invention;
fig. 5 is a schematic flowchart of a loop avoidance method according to an embodiment of the present invention;
fig. 6 is an application schematic diagram of a service transmission method according to an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a service transmission apparatus according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a service transmission device according to an embodiment of the present invention.
Detailed Description
Features and exemplary embodiments of various aspects of the present invention will be described in detail below, and in order to make objects, technical solutions and advantages of the present invention more apparent, the present invention will be further described in detail below with reference to the accompanying drawings and specific embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not to be construed as limiting the invention. It will be apparent to one skilled in the art that the present invention may be practiced without some of these specific details. The following description of the embodiments is merely intended to provide a better understanding of the present invention by illustrating examples of the present invention.
It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
In order to solve the problem of the prior art, embodiments of the present invention provide a service transmission method, apparatus, device, and medium. The service transmission method provided by the embodiment of the present invention is first described below.
Fig. 2 is a flowchart illustrating a service transmission method according to an embodiment of the present invention. As shown in fig. 2, the service transmission method according to the embodiment of the present invention includes:
s110, establishing an MPLS (multiple protocol Label distribution protocol) LDP (Label distribution protocol) tunnel from a first Access Router (AR) to a second AR of an Internet protocol IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS;
s120, establishing a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel;
s130, starting MPLS function of an ascending port of a route reflector RR and a customer edge device CE, and establishing the neighborhood of the RR and an external border gateway protocol EBGP of a second AR and the CE and a first AR, so that a plurality of VPN services on the RR and the CE are embedded in a backbone CSC VPN of an IP bearing network through the second AR for transmission.
According to the embodiment of the invention, a plurality of services can be combined into a single service to be uniformly carried by the IP carrying network, so that the maintenance difficulty is reduced.
As an example, as shown in (a) in fig. 3, a schematic flow chart of a traffic transmission method in the prior art is shown. Each service occupies one VPN, and the maintenance amount is large. Fig. 3 (b) and (c) are schematic flow charts of the service transmission method in the present invention. The multi-domain, multi-network and multi-service are nested into one backbone VPN to be transmitted through the backbone network of the IP bearing network, and the maintenance amount of the bearing service is greatly reduced no matter how many service VPNs are only born by 1 backbone VPN in the bearing network.
A plurality of VPNs are nested into a backbone VPN, the CE is supported to start a plurality of service VPNs, a plurality of services are accessed, the AR side nests the plurality of VPNs into the backbone VPN for transmission by adopting a VPN nesting technology, and only one VPN on a bearing network is visible.
As an example, fig. 4 is a schematic diagram comparing the traffic transmission flow of the present invention with the prior art. As shown in fig. 4, the data configuration for each device includes the following steps:
1) the bearer network establishes MPLS ldp tunnels from AR1 to AR5 through BGP MPLS configuration, and AR1 allocates a label to BR1 for a loopback address through MPLS ldp; BR1 assigns the AR1 loopback address to AR5 through mpls ldp.
2) Newly building backbone VPNs on AR5 and AR1, and binding an AR5 interface to a Carrier Supporting Carrier (CSC); the present invention is exemplified by AR5 configuration, AR1 configuration is similar to AR 5.
The method comprises the steps of establishing CSC VPNs, using the CSC VPNs as backbone VPNs on an IP bearing network and using the backbone VPNs as nested outer layer VPNs of a plurality of service VPNs, wherein Route Distinguishers (RD) and Route Target (RT) values are used for identifying the characteristics of different VPNs, the RT values are different, and mutual access cannot be carried out among the VPNs.
Wherein the code may be as follows:
3) a service VPN is newly established on a Route Reflector (RR) and a CE1, and an mpls function needs to be started at an uplink port; the present invention takes RR as an example, and CE1 is configured similarly to RR.
The code may be as follows:
4) and (4) establishing a label strategy, establishing an External Border Gateway Protocol (EBGP) neighbor relation between RR and AR5, enabling label capability, and labeling all announced routes through the label strategy.
The RR configuration is as follows:
in the embodiment of the present invention, CE1 is configured similarly to RR, and AR1 is configured similarly to AR 5.
Through the configuration, a plurality of service VPNs on the RR are embedded in one backbone CSC VPN for transmission through the AR5, and the service VPNs are invisible in the whole bearing network.
5) The RR and the CE01 establish a multi-Protocol-Internal Border Gateway Protocol (MP-IBGP) neighbor, introduce a service VPN, and in the embodiment of the present invention, take the RR as an example, the CE1 is configured similarly to the RR.
Furthermore, BGP (gateway protocol-AS) number replacement and loop avoidance technology are adopted, the problem of routing loops caused by the fact that an EBGP (Ethernet Back propagation protocol) is deployed between the AR and the CE is avoided, and the stability and reliability of flow forwarding are guaranteed.
BGP AS number replacement: the technology is used for solving the problem that when different VPN sites using the same private AS number realize intercommunication through a BGP MPLS/IP VPN backbone network, if EBGP connection is established between a local CE and a Provider Edge router (PE), VPN routes sent by other VPN sites can carry the local AS number, so that the local CE discards the VPN routes at the moment, and the intercommunication among the VPN sites cannot be realized.
AS in fig. 5, CE1 and CE2 belong to the same VPN, access PE1 and PE2, respectively, and CE1 and CE2 multiplex AS number 600. When the EBGP protocol is run between a PE and a CE, the BGP route sent from the CE to the PE carries the AS _ Path attribute. The local PE transmits these routes to the opposite PE via MP-IBGP protocol, and when the opposite PE sends these routes to its CE via EBGP, these routes will be discarded because AS _ Path already carries AS number 600.
After the AS number replacement function is configured on the PE, for a VPN route sent by the PE to the CE through BGP, the PE will replace its AS number with its own, that is, AS 100, so that the CE can receive the remote VPN route.
BGP SOO (Site-of-Origin) technology: the technology is used for solving the problem that when a plurality of CEs access different PEs at a certain site of the VPN, the VPN route sent from the CE to the PE may pass through a backbone network and return to the site, so that a route loop in the site of the VPN is caused.
AS shown in fig. 6, CE1 and CE2 are located at the same VPN site1, CE2 and CE3 are connected to PE2, and the AS numbers of sites 1 and 2 are the same. The EBGP routing protocol runs between the PE and the CE. The routes received from CE1 at PE1 are sent to PE2 via MP-IBGP, and PE2 in turn sends the routes to CE2 and CE 3. CE2 has learned these routes through IGP protocols within site1, which may cause routing loops within VPN site 1.
After configuring BGP SOO on PE, when PE2 sends these routes to CE2, it checks SoO extended community attributes of the routes, and when SoO extended community attributes carried by the routes are the same as SoO attributes configured locally, it refuses to send these routes to CE2, thereby avoiding routing loops in VPN site 1. And PE2 may send these routes to CE 3.
The automatic route introduction and label marking technology is adopted, BGP routes are introduced into OSPF to allow the label, the OSPF routes are back-filled to prevent the label, the service is opened once, the backbone network is permanently effective, and the change is not needed permanently. The service side switching-on service is freely controlled, the intervention of an IP bearing backbone network is not needed, and the service switching-on efficiency and the automation are greatly improved. And a route-by-route label distribution strategy is adopted in VPN configuration, so that the whole network uniqueness of label distribution is ensured.
Multiple opening, multiple data making and slow service opening are changed into one-time access, and the subsequent service is automatically opened permanently and effectively. In the existing fusion technology, a mode of manually making access data by using a static route (black hole) and a network is adopted, so that the operation is complicated, and the flow time is long (the management flow and the implementation process take 4-5 days on average). The invention adopts a dynamic route + label (TAG) technology and an automatic learning route mode, the CE is accessed into the whole network for automatically learning and releasing the service route, and the automatic service opening is permanently and effectively realized (management flow is not required to be executed, and the service is opened in real time after being implemented and is effective in real time).
The data configuration and technical description are as follows:
1) an Open Shortest Path First (OSPF) configuration of an Interior Gateway Protocol (IGP) of a service CE is a conventional configuration;
2) configuring a label introduction and label rejection strategy on a support CE1, wherein the OSPF introduces BGP to learn the routing of each state, and a TAG label is marked when the OSPF introduces BGP; when the OSPF route is reversely introduced by BGP, the route matched with the TAG label is refused to solve the problem of route introduction loop (the route of each service VPN is operated in the same way).
The code is as follows:
OSPF and bgp are mutually led in the route, and through the steps, the change of the subsequent service does not need the intervention of supporting CE, thus avoiding route recharging and preventing the occurrence of loops.
The invention makes up the mode that the existing bearing scheme and technology can only connect a plurality of services to the backbone network of the IP bearing network in a single scattered way, adopts the unified VPN to carry out service bearing, greatly improves the maintenance efficiency and reduces the maintenance difficulty; the method solves the difficulty and pain of the intervention of the backbone network of the IP bearing network required by service opening each time, realizes the automatic and rapid service opening, and is convenient for subsequent change and adjustment. The problem of forwarding failure caused by routing loops possibly caused in the process of routing protocol deployment is solved, and the reliability of service flow forwarding is ensured.
Fig. 7 is a schematic structural diagram illustrating a service transmission apparatus according to an embodiment of the present invention. As shown in fig. 7, the service transmission apparatus according to the embodiment of the present invention includes:
a tunnel establishing module 701, configured to establish an MPLS label distribution protocol LDP tunnel from a first access router AR to a second AR of an IP bearer network according to BGP MPLS;
a backbone network establishing module 702, configured to establish a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel;
and the service transmission module 703 is configured to start an MPLS function of the RR and the uplink port of the CE, and establish an EBGP neighbor relationship between the RR and the second AR and between the CE and the first AR, so that multiple VPN services on the RR and the CE are embedded in the backbone CSC VPN of the IP bearer network through the second AR for transmission.
In one embodiment, the backbone network establishing module 702 is specifically configured to:
and establishing backbone Virtual Private Networks (VPNs) of the first AR and the second AR according to the established MPLS LDP tunnel, binding interfaces of the first AR and the second AR with CSCs, and establishing a backbone CSC VPN of the IP bearing network.
In an embodiment, the tunnel establishing module 701 is specifically configured to:
enabling the first AR to distribute the label of the first loopback address to a backbone router BR of the IP bearing network through an MPLS LDP tunnel;
the BR is caused to distribute the received label of the first loopback address to the second AR through the MPLS LDP tunnel.
In one embodiment, the service transmission module 703 is specifically configured to:
and establishing a multi-protocol internal border gateway protocol (MP-IBGP) neighbor relation between a plurality of CEs and RRs.
In one embodiment, the service transmission module 703 is specifically configured to:
according to the EBGP neighbor relation and the MP-IBGP neighbor relation, the CE distributes the label of the second loopback address to the first AR;
causing the first AR to distribute the received label of the second loopback address to the second AR;
causing the second AR to distribute the received label of the second loopback address to the RR.
In one embodiment, the service transmission module 703 is specifically configured to:
and configuring a BGP SOO ring prevention mechanism and/or BGP AS number replacement on the first AR.
In one embodiment, the service transmission module 703 is specifically configured to:
multiple VPN services are established on the RRs and CEs.
In one embodiment, the service transmission module 703 is specifically configured to:
and identifying a plurality of VPN services by using the routing distinguisher RD and the routing target RT, and forbidding mutual access among the VPN services with different RT values.
In one embodiment, the service transmission module 703 is specifically configured to:
the open shortest path first OSPF protocol is configured on the CE, so that the CE is accessed to a plurality of servers of VPN services.
In one embodiment, the service transmission module 703 is specifically configured to:
label import and label rejection policies are configured on the CE.
Fig. 8 is a schematic diagram illustrating a hardware structure of a service transmission device according to an embodiment of the present invention.
The traffic transmitting device may comprise a processor 301 and a memory 302 in which computer program instructions are stored.
In particular, the processor 301 may include a Central Processing Unit (CPU), or an Application Specific Integrated Circuit (ASIC), or may be configured as one or more Integrated circuits implementing embodiments of the present invention.
The processor 301 reads and executes the computer program instructions stored in the memory 302 to implement any one of the service transmission methods in the above embodiments.
In one example, the traffic transmitting device may also include a communication interface 303 and a bus 310. As shown in fig. 3, the processor 301, the memory 302, and the communication interface 303 are connected via a bus 310 to complete communication therebetween.
The communication interface 303 is mainly used for implementing communication between modules, apparatuses, units and/or devices in the embodiment of the present invention.
The service transmission device may execute the service transmission method in the embodiment of the present invention, so as to implement the service transmission method and apparatus described in conjunction with fig. 2 and fig. 7.
In addition, in combination with the service transmission method in the foregoing embodiment, the embodiment of the present invention may provide a computer storage medium to implement. The computer storage medium having computer program instructions stored thereon; the computer program instructions, when executed by a processor, implement any of the service transmission methods in the above embodiments.
It is to be understood that the invention is not limited to the specific arrangements and instrumentality described above and shown in the drawings. A detailed description of known methods is omitted herein for the sake of brevity. In the above embodiments, several specific steps are described and shown as examples. However, the method processes of the present invention are not limited to the specific steps described and illustrated, and those skilled in the art can make various changes, modifications and additions or change the order between the steps after comprehending the spirit of the present invention.
The functional blocks shown in the above-described structural block diagrams may be implemented as hardware, software, firmware, or a combination thereof. When implemented in hardware, it may be, for example, an electronic circuit, an Application Specific Integrated Circuit (ASIC), suitable firmware, plug-in, function card, or the like. When implemented in software, the elements of the invention are the programs or code segments used to perform the required tasks. The program or code segments may be stored in a machine-readable medium or transmitted by a data signal carried in a carrier wave over a transmission medium or a communication link. A "machine-readable medium" may include any medium that can store or transfer information. Examples of a machine-readable medium include electronic circuits, semiconductor memory devices, ROM, flash memory, Erasable ROM (EROM), floppy disks, CD-ROMs, optical disks, hard disks, fiber optic media, Radio Frequency (RF) links, and so forth. The code segments may be downloaded via computer networks such as the internet, intranet, etc.
It should also be noted that the exemplary embodiments mentioned in this patent describe some methods or systems based on a series of steps or devices. However, the present invention is not limited to the order of the above-described steps, that is, the steps may be performed in the order mentioned in the embodiments, may be performed in an order different from the order in the embodiments, or may be performed simultaneously.
As described above, only the specific embodiments of the present invention are provided, and it can be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working processes of the system, the module and the unit described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again. It should be understood that the scope of the present invention is not limited thereto, and any person skilled in the art can easily conceive various equivalent modifications or substitutions within the technical scope of the present invention, and these modifications or substitutions should be covered within the scope of the present invention.
Claims (13)
1. A method for service transmission, comprising:
establishing an MPLS (multiple protocol Label distribution protocol) LDP (Label distribution protocol) tunnel from a first Access Router (AR) to a second AR of an IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS;
establishing a backbone carrier support carrier CSC VPN of the IP bearing network according to the established MPLS LDP tunnel;
opening MPLS function of an ascending port of a route reflector RR and a customer edge device CE, and establishing the external border gateway protocol EBGP neighbor relation between the RR and a second AR and between the CE and a first AR, so that a plurality of VPN services on the RR and the CE are transmitted in a backbone CSC VPN of the IP bearing network through nesting of the second AR.
2. The method of claim 1, wherein the establishing the backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel comprises:
and establishing backbone Virtual Private Networks (VPNs) of the first AR and the second AR according to the established MPLS LDP tunnel, binding interfaces of the first AR and the second AR with CSCs, and establishing a backbone CSC VPN of the IP bearing network.
3. The method of claim 1, further comprising:
enabling the first AR to distribute a label of a first loopback address to a backbone router BR of the IP bearing network through the MPLS LDP tunnel;
causing the BR to distribute the received label of the first loopback address to the second AR through the MPLS LDP tunnel.
4. The method of claim 1, further comprising:
and establishing a plurality of multi-protocol internal border gateway protocol (MP-IBGP) neighbor relations of the CEs and the RRs.
5. The method of claim 4, further comprising:
according to the EBGP neighbor relation and the MP-IBGP neighbor relation, the CE distributes the label of the second loopback address to the first AR;
causing the first AR to distribute a label of the received second loopback address to the second AR;
causing the second AR to distribute a label of the received second loopback address to the RRs.
6. The method of claim 1, further comprising:
and configuring BGP (border gateway protocol) ring prevention mechanism BGPSOO and/or BGP AS number replacement on the first AR.
7. The method of claim 1, further comprising:
and establishing the plurality of VPN services on the RR and the CE.
8. The method of claim 7, further comprising:
and identifying the plurality of VPN services by using the routing distinguisher RD and the routing target RT, and forbidding mutual access among the VPN services with different RT values.
9. The method of claim 1, further comprising:
and configuring an Open Shortest Path First (OSPF) protocol on the CE to enable the CE to access the servers of the VPN services.
10. The method of claim 9, further comprising:
configuring label import and label rejection policies on the CEs.
11. A traffic transmission apparatus, characterized in that the apparatus comprises:
the tunnel establishing module is used for establishing an MPLS (multiple protocol Label distribution) protocol LDP tunnel from a first Access Router (AR) to a second AR of an Internet protocol IP (Internet protocol) bearer network according to BGP (border gateway protocol) MPLS;
a backbone network establishing module, configured to establish a backbone CSC VPN of the IP bearer network according to the established MPLS LDP tunnel;
and the service transmission module is used for opening the MPLS function of the ascending port of the route reflector RR and the customer edge equipment CE and establishing the External Border Gateway Protocol (EBGP) neighbor relation between the RR and the second AR and between the CE and the first AR so as to enable a plurality of VPN services on the RR and the CE to be nested in the backbone CSC VPN of the IP bearing network through the second AR for transmission.
12. A traffic transmission device, characterized in that the device comprises: a processor and a memory storing computer program instructions;
the processor, when executing the computer program instructions, implements a traffic transmission method as claimed in any of claims 1-10.
13. A computer storage medium having computer program instructions stored thereon, which when executed by a processor implement the traffic transmission method according to any of claims 1-10.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811613857.5A CN111385204B (en) | 2018-12-27 | 2018-12-27 | Service transmission method, device, equipment and medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811613857.5A CN111385204B (en) | 2018-12-27 | 2018-12-27 | Service transmission method, device, equipment and medium |
Publications (2)
Publication Number | Publication Date |
---|---|
CN111385204A CN111385204A (en) | 2020-07-07 |
CN111385204B true CN111385204B (en) | 2022-03-29 |
Family
ID=71220036
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201811613857.5A Active CN111385204B (en) | 2018-12-27 | 2018-12-27 | Service transmission method, device, equipment and medium |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111385204B (en) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2022088843A1 (en) * | 2020-10-28 | 2022-05-05 | 华为技术有限公司 | Routing advertisement method, routing loop detection method, and device |
JP2024500907A (en) * | 2020-12-21 | 2024-01-10 | 華為技術有限公司 | Route transmission method and device |
CN113098750A (en) * | 2021-03-11 | 2021-07-09 | 网宿科技股份有限公司 | Site interconnection method, system and transfer equipment |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1507230A (en) * | 2002-12-10 | 2004-06-23 | ��Ϊ��������˾ | Method of realizing special multiple-protocol label exchanging virtual network |
CN1855872A (en) * | 2005-04-28 | 2006-11-01 | 华为技术有限公司 | Communication method and system between mixed network VPN stations across different autonomous systems |
CN101030914A (en) * | 2007-03-31 | 2007-09-05 | 华为技术有限公司 | Method for assuring second-level runner public-network bandwidth, its route and system |
CN101052207A (en) * | 2006-04-05 | 2007-10-10 | 华为技术有限公司 | Realizing method and system for movable virtual special net |
CN101267385A (en) * | 2007-03-12 | 2008-09-17 | 中国电信股份有限公司 | A service carrying network realization method based on IP and MPLS mixing technology |
CN101442491A (en) * | 2008-12-26 | 2009-05-27 | 杭州华三通信技术有限公司 | Route transmission method and routing device for nesting VPN |
CN102195871A (en) * | 2011-01-07 | 2011-09-21 | 华为数字技术有限公司 | Method for controlling service traffic forwarding path in multi-protocol label switch (MPLS) virtual private network (VPN) |
EP2536080A2 (en) * | 2007-01-17 | 2012-12-19 | Nortel Networks Limited | Border gateway protocol procedures for MPLS and layer-2 VPN using Ethernet-based tunnels |
CN103856403A (en) * | 2012-11-30 | 2014-06-11 | 华为技术有限公司 | Message control method and apparatus |
-
2018
- 2018-12-27 CN CN201811613857.5A patent/CN111385204B/en active Active
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1507230A (en) * | 2002-12-10 | 2004-06-23 | ��Ϊ��������˾ | Method of realizing special multiple-protocol label exchanging virtual network |
CN1855872A (en) * | 2005-04-28 | 2006-11-01 | 华为技术有限公司 | Communication method and system between mixed network VPN stations across different autonomous systems |
CN101052207A (en) * | 2006-04-05 | 2007-10-10 | 华为技术有限公司 | Realizing method and system for movable virtual special net |
EP2536080A2 (en) * | 2007-01-17 | 2012-12-19 | Nortel Networks Limited | Border gateway protocol procedures for MPLS and layer-2 VPN using Ethernet-based tunnels |
CN103259716A (en) * | 2007-01-17 | 2013-08-21 | 北方电讯网络有限公司 | Border gateway protocol procedures for multi-protocol label switching and layer-2 virtual private networks using ethernet-based tunnels |
CN101267385A (en) * | 2007-03-12 | 2008-09-17 | 中国电信股份有限公司 | A service carrying network realization method based on IP and MPLS mixing technology |
CN101030914A (en) * | 2007-03-31 | 2007-09-05 | 华为技术有限公司 | Method for assuring second-level runner public-network bandwidth, its route and system |
CN101442491A (en) * | 2008-12-26 | 2009-05-27 | 杭州华三通信技术有限公司 | Route transmission method and routing device for nesting VPN |
CN102195871A (en) * | 2011-01-07 | 2011-09-21 | 华为数字技术有限公司 | Method for controlling service traffic forwarding path in multi-protocol label switch (MPLS) virtual private network (VPN) |
CN103856403A (en) * | 2012-11-30 | 2014-06-11 | 华为技术有限公司 | Message control method and apparatus |
Non-Patent Citations (2)
Title |
---|
Octavio J. Salcedo Parra ; Gustavo López Rubio ; Lilia Castellanos.MPLS/VPN/BGP Networks evaluation techniques.《2012 Workshop on Engineering Applications》.2012, * |
浅析BGP/MPLS VPN技术在IP城域网网管系统的应用方案分析与设计;耿天;《有线电视技术》;20181215;全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN111385204A (en) | 2020-07-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11863427B2 (en) | Multicast performance routing and policy control in software defined wide area networks | |
CN114600427B (en) | Policy plane integration across multiple domains | |
JP7373560B2 (en) | Synergistic DNS security updates | |
EP2701342A1 (en) | Method and system for implementing elastic network interface and interconnection | |
CN111385204B (en) | Service transmission method, device, equipment and medium | |
US20220329477A1 (en) | Automated and scalable multi-level redundancy for cloud infrastructure | |
CN107959611B (en) | Method, device and system for forwarding message | |
CN112543124A (en) | Private line configuration method and private line system | |
US11588752B2 (en) | Route exchange in multi-tenant clustered controllers | |
US20220247677A1 (en) | Network service access and data routing based on assigned context | |
JP7509932B2 (en) | Automatic connection to cloud resources | |
US8873549B2 (en) | Managing L2VPN connectivity after a fiber node split | |
US20230261963A1 (en) | Underlay path discovery for a wide area network | |
CN112910771B (en) | Connection establishment method, device, equipment and storage medium | |
CN114258109A (en) | Routing information transmission method and device | |
CN115118544B (en) | Communication method, device and system | |
Hayashitani et al. | Flexible and automated operational control in SDN transport-base virtual router | |
WO2023156016A1 (en) | Recovery from a failure of an inter-domain link between two domains |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |