CN112134778B - Dynamic routing method, system, device and medium in hybrid cloud scenario - Google Patents

Dynamic routing method, system, device and medium in hybrid cloud scenario Download PDF

Info

Publication number
CN112134778B
CN112134778B CN202011023366.2A CN202011023366A CN112134778B CN 112134778 B CN112134778 B CN 112134778B CN 202011023366 A CN202011023366 A CN 202011023366A CN 112134778 B CN112134778 B CN 112134778B
Authority
CN
China
Prior art keywords
route
user
service
frr
routing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011023366.2A
Other languages
Chinese (zh)
Other versions
CN112134778A (en
Inventor
李江龙
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ucloud Technology Co ltd
Original Assignee
Ucloud Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ucloud Technology Co ltd filed Critical Ucloud Technology Co ltd
Priority to CN202011023366.2A priority Critical patent/CN112134778B/en
Publication of CN112134778A publication Critical patent/CN112134778A/en
Application granted granted Critical
Publication of CN112134778B publication Critical patent/CN112134778B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/58Association of routers
    • H04L45/586Association of routers of virtual routers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/25Routing or path finding in a switch fabric

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention relates to the technical field of computer networks, in particular to a dynamic routing method, a system, equipment and a medium in a mixed cloud scene. The method comprises the following steps: receiving a user side route from a user through a general route encapsulation tunnel, and sending the user side route to a gateway of a public cloud side; and receiving a public cloud side route, and sending the public cloud side route to a service provider edge switch port corresponding to a user through the general route encapsulation tunnel. In an SDN network scene, the problem of slow effectiveness of a manual configuration static routing mode in the prior art is solved, dynamic routing of the routing is realized, and meanwhile, the routing propagation function supporting multi-tenant isolation is realized, and the concurrent capability of multi-user simultaneous network change is provided.

Description

Dynamic routing method, system, device and medium in hybrid cloud scenario
Technical Field
The invention relates to the technical field of computer networks, in particular to a dynamic routing method, a dynamic routing system, dynamic routing equipment and dynamic routing media in a mixed cloud scene.
Background
In a hybrid Cloud scenario, an existing scheme of route propagation between a public Cloud side and a user side generally includes creating a Virtual Routing Forwarding (VRF) for each user at a Provider Edge (PE) exchanger side, and then opening a network between a public Cloud Virtual Private Cloud (VPC) and a hosted VPC in a manner of adding a static route in the VRF. For the existing hybrid cloud access mode, three problems exist: 1) Manual operation is needed, namely, for a newly accessed user, if a new subnet is established, a network segment needs to be applied in advance, background personnel manually add a static routing mode to the user on the side wall of the PE switch, and the network from the public cloud to the host under the hosting area is opened; 2) The routing propagation effectiveness problem and the static routing adding mode lead to the problem of black holes if the PE switch and the gateway network are interrupted and the static manually added routing is caused; 3) When a plurality of clients are changed simultaneously, if the ssh-type automatic system is adopted, the switch is locked, and the concurrency capability of the existing switch is limited.
In the prior art, there are two main types of route propagation for implementing tenant isolation: 1) The routing transmission of BGP (Border Gateway Protocol) EVPN (Ethernet Virtual Private Network) is realized through a vxlan (Virtual Extensible Local Area Network) tunnel, but due to the physical Network architecture, the method does not support the physical Network and Virtual Network intercommunication of some networks (such as UCloud) temporarily; 2) Tenant isolation is realized by a BGP tag, but in an overlay network, since a tag is only applicable to a network architecture of MPLS (Multi-Protocol Label Switching), tenant isolation requirements and BGP route propagation requirements cannot be supported well in some physical network architectures (e.g., a physical network architecture of UCloud).
Disclosure of Invention
The invention aims to provide a dynamic routing method, a system, equipment and a medium in a hybrid cloud scene, which solve the problem of slow effectiveness of a manual configuration static routing mode in the prior art in an SDN (Software Defined Network) Network scene, realize dynamic routing propagation, simultaneously support a routing propagation function of multi-tenant isolation and have the concurrency capability of multi-user simultaneous Network change.
The embodiment of the invention discloses a dynamic routing method in a mixed cloud scene, which comprises the following steps:
receiving a user side route from a user through a GRE (Generic Routing Encapsulation) tunnel, and sending the user side route to a gateway of a public cloud side; and
and receiving a public cloud side route, and sending the public cloud side route to a PE switch port corresponding to a user through the GRE tunnel.
Optionally, the method further includes storing the user-side route in a VRF instance corresponding to the user.
Optionally, user-side routing is received from the user via a GRE tunnel, including
A customer-side route from a customer is received via a CE switch and the PE switch.
Optionally, the public cloud side route is sent to a PE switch port corresponding to a user through the GRE tunnel, further including
Sending the public cloud-side route to the CE switch via the PE switch.
Optionally, the method further includes establishing a BGP connection through the GRE tunnel.
The embodiment of the invention discloses a dynamic routing system in a mixed cloud scene, which comprises an FRR service module, a VRF module and a route monitoring service module;
the FRR service module receives a user side route from a user through a GRE tunnel and stores the user side route into a VRF instance corresponding to the user provided by the VRF module, the FRR service module sends the user side route to the route monitoring service module, and the route monitoring service module sends the user side route to a gateway of a public cloud side; and
the routing monitoring service module acquires a public cloud side route and sends the public cloud side route to the FRR service module, and the FRR service module sends the public cloud side route to a PE switch port corresponding to a user through the GRE tunnel.
The embodiment of the invention discloses a dynamic routing device in a hybrid cloud scene, which is characterized by comprising a memory and a processor, wherein the memory stores computer executable instructions, and the processor is configured to execute the instructions to implement a dynamic routing method in the hybrid cloud scene.
The embodiment of the invention discloses a computer storage medium encoded with a computer program, which is characterized in that the computer program comprises instructions executed by more than one computer to implement a dynamic routing method in a hybrid cloud scene.
Compared with the prior art, the implementation mode of the invention has the main differences and the effects that:
in the invention, when the user side network of the tenant changes, the route is automatically transmitted to the gateway of the public cloud side from the CE switch, so that the process that the route change of the user side is automatically transmitted to the public cloud direction is realized, and any manual operation is not needed, thereby dynamically realizing the process that the public cloud accesses the user side network.
In the invention, when the public cloud side sub-network changes, the route monitoring service senses the corresponding route change of the public cloud side, and the route is automatically transmitted to the CE switch, thereby realizing the dynamic updating process from the public cloud side route to the user side route, and ensuring that a user side host can access the newly added sub-network of the public cloud side.
In the invention, the FRR service is connected with the PE switch through BGP, the PE switch is connected with the CE switch through BGP, and the BGP connection is established through a GRE tunnel, thereby realizing the transmission of the route in a BGP over GRE mode.
In the invention, VRF is associated to FRR service, VRF provides a VRF instance for each tenant, each VRF instance is isolated from each other, GRE tunnel is established between FRR service and PE exchanger, GRE tunnel is added into each VRF instance, message from different tunnel is isolated among different VRF instances.
In the invention, VRF is associated to FRR service, when the route is transmitted from user side to public cloud side, PE exchanger transmits the route to VRF instance of tenant, FRR service transmits the learned route to route monitoring service, when the route is transmitted from public cloud side to user side, route monitoring service transmits the route to PE exchanger, thereby realizing that the messages of different users from different tunnels are processed in different VRF instances of FRR service.
Drawings
FIG. 1A is a schematic diagram illustrating a portion of one example of an implementation environment for a dynamic routing method, system, device, and medium in a hybrid cloud scenario, in accordance with embodiments of the present invention.
FIG. 1B depicts a schematic diagram of a portion of one example implementation environment for a dynamic routing method, system, device, and medium in a hybrid cloud scenario, according to an embodiment of the invention.
FIG. 2A illustrates a flow diagram of a portion of a dynamic routing method in a hybrid cloud scenario, according to an embodiment of the present invention.
FIG. 2B illustrates a flow diagram of a portion of a dynamic routing method in a hybrid cloud scenario in accordance with an embodiment of the present invention.
Fig. 3 illustrates a block diagram of a dynamic routing system in a hybrid cloud scenario, in accordance with an embodiment of the present invention.
Detailed Description
The present application is further described with reference to the following detailed description and the accompanying drawings. It is to be understood that the specific embodiments described herein are merely illustrative of the application and are not limiting of the application. In addition, for convenience of description, only a part of structures or processes related to the present application, not all of them, is illustrated in the drawings. It should be noted that in this specification, like reference numerals and letters refer to like items in the following drawings.
It will be understood that, although the terms "first", "second", etc. may be used herein to describe various features, these features should not be limited by these terms. These terms are used merely for distinguishing and are not intended to indicate or imply relative importance. For example, a first feature may be termed a second feature, and, similarly, a second feature may be termed a first feature, without departing from the scope of example embodiments.
In the description of the present application, it is also to be noted that, unless otherwise explicitly specified or limited, the terms "disposed," "connected," and "connected" are to be construed broadly, e.g., as meaning either a fixed connection, a removable connection, or an integral connection; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meanings of the above terms in the present embodiment can be understood in specific cases by those of ordinary skill in the art.
Illustrative embodiments of the present application include, but are not limited to, dynamic routing methods, systems, devices, and media in a hybrid cloud scenario.
Various aspects of the illustrative embodiments will be described using terms commonly employed by those skilled in the art to convey the substance of their work to others skilled in the art. It will be apparent, however, to one skilled in the art that some alternative embodiments may be practiced using some of the features described in this section. For purposes of explanation, specific numbers and configurations are set forth in order to provide a more thorough understanding of the illustrative embodiments. It will be apparent, however, to one skilled in the art that alternative embodiments may be practiced without the specific details. In some other instances, well-known features are omitted or simplified in order not to obscure the illustrative embodiments of the present application.
Moreover, various operations will be described as multiple operations separate from one another in a manner that is most helpful in understanding the illustrative embodiments; however, the order of description should not be construed as to imply that these operations are necessarily order dependent, and that many of the operations can be performed in parallel, concurrently, or simultaneously. In addition, the order of the operations may be re-arranged. The process may be terminated when the depicted operations are completed, but may have additional steps not included in the figure. The processes may correspond to methods, functions, procedures, subroutines, and the like.
References in the specification to "one embodiment," "an illustrative embodiment," etc., indicate that the embodiment described may include a particular feature, structure, or characteristic, but every embodiment may or may not necessarily include the particular feature, structure, or characteristic. Moreover, such phrases are not necessarily referring to the same embodiment. Furthermore, when a particular feature is described in connection with a particular embodiment, the knowledge of one skilled in the art can affect such feature in combination with other embodiments, whether or not such embodiments are explicitly described.
The terms "comprising," "having," and "including" are synonymous, unless the context dictates otherwise. The phrase "A and/or B" means "(A), (B) or (A and B)".
As used herein, the term "module" may refer to, be a part of, or include: memory (shared, dedicated, or group) for executing one or more software or firmware programs, an Application Specific Integrated Circuit (ASIC), an electronic circuit and/or processor (shared, dedicated, or group), a combinational logic circuit, and/or other suitable components that provide the described functionality.
In the drawings, some features of the structures or methods may be shown in a particular arrangement and/or order. However, it should be understood that such specific arrangement and/or ordering is not required. Rather, in some embodiments, these features may be described in a manner and/or order different from that shown in the illustrative figures. Additionally, the inclusion of structural or methodical features in a particular figure does not imply that all embodiments need to include such features, and in some embodiments, may not include such features or may be combined with other features.
To make the objects, technical solutions and advantages of the present application more clear, embodiments of the present application will be described in further detail below with reference to the accompanying drawings.
Fig. 1A and 1B together illustrate a schematic diagram of one example of an implementation environment for a dynamic routing method, system, device, and medium in a hybrid cloud scenario, according to embodiments of the present invention.
As shown in fig. 1A, a gateway 104, a PE switch 106, a CE switch 108, a routing monitoring service 112, and an FRR service 114 are arranged between a public cloud-side subnet 102 and a user-side network 110, where different users correspond to different CE switches of the CE switch 108, different users correspond to a different port of the same PE switch 106, the ports of the PE switches are logically isolated, and the routing monitoring service 112 and the FRR service 114 are deployed in a server.
Where FRR (routing) may implement all standard routing protocols such as BGP, RIP, OSPF, IS-IS, etc., and many extensions thereof. FRR provides IP routing services. Its role in the network stack is to exchange routing information with other routers, make routing and policy decisions, and inform other layers of these decisions. In the most common case, FRR installs routing decisions into the OS kernel, allowing the kernel network stack to make corresponding forwarding decisions.
According to some embodiments of the application, the FRR service is connected to the PE switch through BGP, and the PE switch is connected to the CE switch through BGP.
Referring to fig. 1a, frr service 114 is connected to PE switch 106 via BGP and PE switch 106 is connected to CE switch 108 via BGP. BGP is an autonomous system routing Protocol running over TCP (Transmission Control Protocol). BGP is the only protocol used to handle networks as large as the internet and is the only protocol that can properly handle multiple connections between unrelated routing domains. BGP builds on the experience of EGP (external Gateway Protocol). The main function of the BGP system is to exchange network reachability information with other BGP systems. The network reachability information includes information for listed Autonomous Systems (AS). This information effectively constructs a topology map of the AS interconnect and thereby clears the routing loops, while policy decisions may be enforced at the AS level.
The invention realizes the propagation of the route through BGP.
As shown in fig. 1B, a server where FRR service 114 resides creates a VRF, which is associated with the FRR service, and the VRF provides one VRF instance (including, for example, VRF1 116) for each tenant, and the VRF instances are isolated from each other.
It is understood that fig. 1B shows only two VRF instances as an example, and in practice the number of VRF instances may be any as desired.
Virtual Routing Forwarding (VRF): for the multi-tenant problem, linux sets a respective unique routing table for each tenant, so as to ensure that different users have respective routing tables.
In the invention, the messages of different users from different tunnels are processed in different VRF instances of the FRR service by associating the VRF to the FRR service.
According to some embodiments of the present application, GRE tunnels are established between the FRR service and the PE switch, and the GRE tunnels are respectively added to each VRF instance.
As shown in fig. 1B, GRE tunnels are established between FRR service 114 and PE switch 106, and the GRE tunnels are respectively added to the respective VRF instances (including, for example, VRF1 116), while different BGP neighbors are configured in the VRFs of the FRR service.
In the invention, the isolation between tenants is realized by enabling messages from different tunnels to be in different VRF instances.
According to some embodiments of the present application, the BGP connection is established through a GRE tunnel.
As shown in fig. 1B, a GRE tunnel is established between the VRF instance (including, for example, VRF1 116) and PE switch 106, and a BGP connection is established through the GRE tunnel, so that routing is propagated in a BGP over GRE manner.
According to some embodiments of the present application, the server where the FRR, the VRF, and the route monitoring service are located is a Linux server.
Fig. 2A and 2B collectively illustrate a flow diagram of a dynamic routing method in a hybrid cloud scenario, according to an embodiment of the invention.
As shown in fig. 2A, the dynamic routing method in a hybrid cloud scenario includes a part 200a, including:
step 202a, receiving a user side route from a user through a GRE tunnel;
step 204a, sending the route of the user side to a gateway of a public cloud side;
with reference to fig. 1A and fig. 1B, the public cloud-side subnet 102, the user-side network 110, the Gateway 104, the PE switch 106, the CE switch 108, the routing monitoring service 112, the FRR service 114, the PE switch 106, the FRR service 114, and the VRF1116 in fig. 1A are used as an implementation environment of the dynamic routing method in the hybrid cloud scenario, for example, when the user-side network 110 (e.g., a private cloud VPC) needs to be changed, a subnet route is added by a user on the CE switch 108 side, a routing change of the CE switch 108 is propagated to the PE switch 106 through a BGP protocol, since the PE switch 106 establishes a BGP connection with the FRR service 114 deployed in a Linux server, the routing change on the PE switch 106 side is propagated to the FRR service 114 through the BGP protocol, specifically, a BGP message sent from the PE switch 106 is propagated to the VRF instance 116 corresponding to the FRR service 114 through a GRE tunnel corresponding to the FRR service 114, and then sent to the routing monitoring Gateway 112 (for example, the routing monitoring service 112) through the Linux switch 112).
In the invention, when the user side network of the tenant changes, the route is automatically transmitted to the gateway of the public cloud side from the CE switch, so that the process that the route change of the user side is automatically transmitted to the public cloud direction is realized, and any manual operation is not needed, thereby dynamically realizing the process that the public cloud accesses the user side network.
As shown in fig. 2B, the dynamic routing method in the hybrid cloud scenario includes a part 200B, which includes:
step 202b, receiving a public cloud side route;
step 204b, the public cloud side route is sent to a PE switch port corresponding to the user through a GRE tunnel;
with reference to fig. 1A and fig. 1B, the public cloud-side subnet 102, the customer-side network 110, the gateway 104, the PE switch 106, the CE switch 108, the route monitoring service 112, the FRR service 114, the PE switch 106, the FRR service 114, and the VRF1116 of fig. 1A are used as an implementation environment of the dynamic routing method in the hybrid cloud scenario, for example, when the public cloud-side subnet 102 (for example, the public vpcloud c) changes, the route monitoring service 112 may sense the route change of the public cloud side, then the route monitoring service 112 issues the route to the VRF instance f1116 corresponding to the target user of the route propagation in the FRR service 114, after the route information is processed in the VRF1116, the FRR service 114 propagates the route to the PE switch 106 through the BGP protocol via the GRE tunnel, and the BGP switch 106 propagates the route to the CE switch 108 through the BGP protocol.
In the invention, when the public cloud side sub-network changes, the route monitoring service senses the corresponding route change of the public cloud side, and the route is automatically transmitted to the CE switch, thereby realizing the dynamic updating process from the public cloud side route to the user side route, and ensuring that a user side host can access the newly added sub-network of the public cloud side.
Fig. 3 illustrates a block diagram of a dynamic routing system in a hybrid cloud scenario, in accordance with an embodiment of the present invention.
As shown in fig. 3, the system 300 includes an FRR service module 302, a virtual route forwarding module 304, and a route monitoring service module 306;
the FRR service module receives a user-side route from a user through a GRE tunnel, and stores the user-side route in a VRF instance corresponding to the user provided by the virtual route forwarding module 304, the FRR service module 302 sends the user-side route to the route monitoring service module 306, and the route monitoring service module 306 sends the user-side route to a gateway on the public cloud side; and
the route monitoring service module 306 obtains the public cloud side route, sends the public cloud side route to the FRR service module 302, and the FRR service module 302 sends the public cloud side route to the PE switch port corresponding to the user through the GRE tunnel.
The first embodiment is a method embodiment corresponding to the present embodiment, and the present embodiment can be implemented in cooperation with the first embodiment. The related technical details mentioned in the first embodiment are still valid in this embodiment, and are not described herein again in order to reduce repetition. Accordingly, the related-art details mentioned in the present embodiment can also be applied to the first embodiment.
According to some embodiments of the present application, a dynamic routing device in a hybrid cloud scenario is disclosed, the device comprising a memory storing computer-executable instructions and a processor configured to execute the instructions to implement a dynamic routing method in a hybrid cloud scenario.
The first embodiment is a method embodiment corresponding to the present embodiment, and the present embodiment can be implemented in cooperation with the first embodiment. The related technical details mentioned in the first embodiment are still valid in this embodiment, and are not described herein again in order to reduce repetition. Accordingly, the related-art details mentioned in the present embodiment can also be applied to the first embodiment.
According to some embodiments of the present application, a computer storage medium encoded with a computer program comprising instructions executable by one or more computers to implement a dynamic routing method in a hybrid cloud scenario is disclosed.
The first embodiment is a method embodiment corresponding to the present embodiment, and the present embodiment can be implemented in cooperation with the first embodiment. The related technical details mentioned in the first embodiment are still valid in this embodiment, and are not described herein again in order to reduce repetition. Accordingly, the related technical details mentioned in the present embodiment can also be applied to the first embodiment.
In some cases, the disclosed embodiments may be implemented in hardware, firmware, software, or any combination thereof. The disclosed embodiments may also be implemented in the form of instructions or programs carried on or stored on one or more transitory or non-transitory machine-readable (e.g., computer-readable) storage media, which may be read and executed by one or more processors or the like. When the instructions or program are executed by a machine, the machine may perform the various methods described previously. For example, the instructions may be distributed via a network or other computer readable medium. Thus, a machine-readable medium may include, but is not limited to, any mechanism for storing or transmitting information in a form readable by a machine (e.g., a computer), such as floppy diskettes, optical disks, compact disc read-only memories (CD-ROMs), magneto-optical disks, read-only memories (ROMs), random Access Memories (RAMs), erasable programmable read-only memories (EPROMs), electrically erasable programmable read-only memories (EEPROMs), magnetic or optical cards, or flash memory or tangible machine-readable memory for transmitting network information via electrical, optical, acoustical or other forms of signals (e.g., carrier waves, infrared signals, digital signals, etc.). Thus, a machine-readable medium includes any form of machine-readable medium suitable for storing or transmitting electronic instructions or machine (e.g., a computer) readable information.
While the embodiments of the present application have been described in detail with reference to the accompanying drawings, the application of the present application is not limited to the various applications mentioned in the embodiments of the present application, and various structures and modifications can be easily implemented with reference to the embodiments of the present application to achieve various beneficial effects mentioned herein. It is within the knowledge of one skilled in the art that various information made without departing from the spirit of the present application shall fall within the scope of the present patent application.

Claims (7)

1. A dynamic routing method in a hybrid cloud scenario, the method comprising:
establishing a virtual route forwarding instance in the FRR service;
the FRR service receives a user side route from a user through a general route encapsulation tunnel, and stores the user side route into the virtual route forwarding instance corresponding to the user;
learning the user-side route through the FRR service;
the FRR service sends the learned user side route to a route monitoring service, and the user side route learned by the FRR service is sent to a gateway on a public cloud side through the route monitoring service;
and
acquiring a public cloud side route through the route monitoring service;
the route monitoring service stores the public cloud side route into the virtual route forwarding instance corresponding to the user;
and the FRR service sends the public cloud side route to a port of a service provider edge switch corresponding to a user through the general route encapsulation tunnel.
2. The method of claim 1, wherein: the FRR service receives user-side routes from users through a generic routing encapsulation tunnel, including
The FRR service receives a customer-side route from a customer via a customer-side edge switch and the service provider edge switch.
3. The method of claim 1, wherein: the FRR service sends the public cloud side route to a port of a service provider edge switch corresponding to a user through the general routing encapsulation tunnel, and the FRR service also sends the public cloud side route to the user side edge switch through the service provider edge switch.
4. The method of claim 1, further comprising establishing a border gateway protocol connection through the generic routing encapsulation tunnel.
5. A dynamic routing system in a mixed cloud scene is characterized by comprising an FRR service module, a virtual route forwarding module and a route monitoring service module;
the FRR service module establishes a virtual route forwarding instance in the FRR service, the FRR service receives a user side route from a user through a general route encapsulation tunnel, and stores the user side route into the virtual route forwarding instance corresponding to the user provided by the virtual route forwarding module;
the FRR service module learns the user side route through the FRR service, the FRR service sends the learned user side route to a route monitoring service, and the route monitoring service sends the user side route learned by the FRR service to a gateway of a public cloud side; and
the routing monitoring service module acquires a public cloud side route through the routing monitoring service, the routing monitoring service stores the public cloud side route into the virtual route forwarding instance corresponding to the user, and the FRR service sends the public cloud side route to the edge switch port of the service provider corresponding to the user through the universal routing encapsulation tunnel.
6. A dynamic routing device in a hybrid cloud scenario, the device comprising a memory storing computer-executable instructions and a processor configured to execute the instructions to implement the dynamic routing method in the hybrid cloud scenario of any of claims 1-4.
7. A computer storage medium encoded with a computer program, the computer program comprising instructions that are executed by one or more computers to implement the dynamic routing method in the hybrid cloud scenario of any of claims 1-4.
CN202011023366.2A 2020-09-25 2020-09-25 Dynamic routing method, system, device and medium in hybrid cloud scenario Active CN112134778B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011023366.2A CN112134778B (en) 2020-09-25 2020-09-25 Dynamic routing method, system, device and medium in hybrid cloud scenario

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011023366.2A CN112134778B (en) 2020-09-25 2020-09-25 Dynamic routing method, system, device and medium in hybrid cloud scenario

Publications (2)

Publication Number Publication Date
CN112134778A CN112134778A (en) 2020-12-25
CN112134778B true CN112134778B (en) 2022-10-28

Family

ID=73840717

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011023366.2A Active CN112134778B (en) 2020-09-25 2020-09-25 Dynamic routing method, system, device and medium in hybrid cloud scenario

Country Status (1)

Country Link
CN (1) CN112134778B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113014426B (en) * 2021-02-10 2023-04-07 优刻得科技股份有限公司 Method and device for establishing communication between cloud server and client server
CN112910712B (en) * 2021-02-24 2022-06-24 杭州网银互联科技股份有限公司 Method and system for getting through branch and public cloud through sdwan
CN113542080B (en) * 2021-07-13 2023-04-07 中国建设银行股份有限公司 Hybrid cloud-based external connection access method and hybrid cloud public external connection access system
WO2024125332A1 (en) * 2022-12-12 2024-06-20 华为云计算技术有限公司 Communication method, gateway and management method and apparatus in hybrid cloud environment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102291307A (en) * 2011-08-18 2011-12-21 福建星网锐捷网络有限公司 An inter-VPN multicast implementation method, apparatus and network device
CN103139040A (en) * 2013-03-13 2013-06-05 杭州华三通信技术有限公司 Extensional virtual private network (VPN) false refused rate (FRR) implement method and equipment
KR101473783B1 (en) * 2013-10-24 2014-12-17 에스케이텔레콤 주식회사 Method and apparatus for control of dynamic service chaining by using tunneling
CN105099779A (en) * 2015-07-29 2015-11-25 北京京东尚科信息技术有限公司 Multi-tenant cloud platform architecture
CN107809365A (en) * 2017-09-19 2018-03-16 大唐网络有限公司 It is a kind of to provide the VPN implementation methods of service based on OpenStack frameworks

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101695047B (en) * 2009-10-26 2015-01-28 中兴通讯股份有限公司 Method and switch for realizing forwarding of dynamic tunnel message
US8549610B2 (en) * 2009-12-11 2013-10-01 At&T Intellectual Property I, L.P. Network-based security services for managed internet service
CN103607349B (en) * 2013-11-14 2017-02-22 华为技术有限公司 Method for determining route in virtual network and provider edge equipment
CN103825831A (en) * 2014-02-28 2014-05-28 神州数码网络(北京)有限公司 Packet transmitting method and switch
CN105592089B (en) * 2015-12-29 2018-11-27 中国银联股份有限公司 A kind of tenant security isolation method under cloud computing
CN106657442A (en) * 2017-01-11 2017-05-10 浙江广播电视集团 Method and system for realizing media shared storage network based on VxLAN
CN109428937A (en) * 2017-09-04 2019-03-05 上海仪电(集团)有限公司中央研究院 A kind of mixed cloud connected system of High Availabitity
CN107770027B (en) * 2017-09-19 2021-01-05 大唐网络有限公司 Implementation method for providing GRE tunnel service based on OpenStack architecture
CN110875889B (en) * 2018-09-03 2022-09-27 阿里巴巴集团控股有限公司 Method and device for acquiring path
CN111130975B (en) * 2018-11-01 2022-01-18 深信服科技股份有限公司 Hybrid cloud network intercommunication system and method
CN109450796B (en) * 2018-11-13 2019-07-09 北京华三通信技术有限公司 A kind of message forwarding method, device and forwarding device
CN111447146B (en) * 2020-03-20 2022-04-29 上海中通吉网络技术有限公司 Method, device, equipment and storage medium for dynamically updating physical routing information

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102291307A (en) * 2011-08-18 2011-12-21 福建星网锐捷网络有限公司 An inter-VPN multicast implementation method, apparatus and network device
CN103139040A (en) * 2013-03-13 2013-06-05 杭州华三通信技术有限公司 Extensional virtual private network (VPN) false refused rate (FRR) implement method and equipment
KR101473783B1 (en) * 2013-10-24 2014-12-17 에스케이텔레콤 주식회사 Method and apparatus for control of dynamic service chaining by using tunneling
CN105099779A (en) * 2015-07-29 2015-11-25 北京京东尚科信息技术有限公司 Multi-tenant cloud platform architecture
CN107809365A (en) * 2017-09-19 2018-03-16 大唐网络有限公司 It is a kind of to provide the VPN implementation methods of service based on OpenStack frameworks

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
GRE-over-IPsec VPN工程设计及实现――基于合肥百大集团网络的VPN应用;张友国;《电脑知识与技术》;20130905(第25期);全文 *
一种基于DVSR和GRE的MPLS VPN中冗余路由的实现;华静等;《电信快报》;20050625(第06期);全文 *

Also Published As

Publication number Publication date
CN112134778A (en) 2020-12-25

Similar Documents

Publication Publication Date Title
CN112134778B (en) Dynamic routing method, system, device and medium in hybrid cloud scenario
US20240193015A1 (en) Host Routed Overlay with Deterministic Host Learning and Localized Integrated Routing and Bridging
EP3378193B1 (en) Designated forwarder (df) election and re-election on provider edge (pe) failure in all-active redundancy topology
EP2854352B1 (en) Apparatuses for implementing connectivity between edge devices via a switch fabric
US10673736B2 (en) Traffic reduction in data center fabrics
US10848416B2 (en) Reduced configuration for multi-stage network fabrics
EP3459225B1 (en) Methods and apparatus for enabling live virtual machine (vm) migration in software-defined networking networks
US20170163530A1 (en) Signaling aliasing capability in data centers
EP3692685B1 (en) Remotely controlling network slices in a network
WO2018109536A1 (en) Method and apparatus for monitoring virtual extensible local area network (vxlan) tunnel with border gateway protocol (bgp)-ethernet virtual private network (evpn) infrastructure
US20170034057A1 (en) Stretched subnet routing
CN111756565B (en) Managing satellite devices within a branched network
US12021656B2 (en) Method and system to transmit broadcast, unknown unicast, or multicast (BUM) traffic for multiple ethernet virtual private network (EVPN) instances (EVIs)
CN109474507B (en) Message forwarding method and device
WO2020212998A1 (en) Network address allocation in a virtual layer 2 domain spanning across multiple container clusters
US20220247679A1 (en) Method and apparatus for layer 2 route calculation in a route reflector network device
JP7507308B2 (en) Network service access and data routing based on assigned context
George et al. A Brief Overview of VXLAN EVPN
CN112104550B (en) Election method and device for designated forwarder DF
CN115811499A (en) Method and equipment for designated forwarder DF election
KR20230057459A (en) Routing information transmission method and device
EP4401364A1 (en) Reducing convergence time and/or avoiding split-brain in multi-homed ethernet segment deployments, such as esi-lag deployments
CN117880097A (en) Cloud tenant EIP migration method and device, computer equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant