CN1848802A - The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4 - Google Patents

The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4 Download PDF

Info

Publication number
CN1848802A
CN1848802A CNA2005100869840A CN200510086984A CN1848802A CN 1848802 A CN1848802 A CN 1848802A CN A2005100869840 A CNA2005100869840 A CN A2005100869840A CN 200510086984 A CN200510086984 A CN 200510086984A CN 1848802 A CN1848802 A CN 1848802A
Authority
CN
China
Prior art keywords
ipv6
ipv4
tunnel
address
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2005100869840A
Other languages
Chinese (zh)
Other versions
CN100413289C (en
Inventor
毕军
章淼
吴建平
冷晓翔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
BITWAY NETWORK TECHNOLOGY Co Ltd
Tsinghua University
Original Assignee
BITWAY NETWORK TECHNOLOGY Co Ltd
Tsinghua University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BITWAY NETWORK TECHNOLOGY Co Ltd, Tsinghua University filed Critical BITWAY NETWORK TECHNOLOGY Co Ltd
Priority to CNB2005100869840A priority Critical patent/CN100413289C/en
Publication of CN1848802A publication Critical patent/CN1848802A/en
Application granted granted Critical
Publication of CN100413289C publication Critical patent/CN100413289C/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A method for realizing IPv6 high-performance interconnection on IPv4 based on P2P includes connecting boundary gateways of IPv6 ' islet '' to be a overlapped network of P2P on IPv4 network and using it to interact reachable information to automatically set up IPv6 -in-IPv4 tunnel between Ipv6 ' islets ', using tunnel between ' islets ' to retransmit it preferentially when external IPv6 data packet being sent to ' islets ' is received by boundary gateway.

Description

基于P2P在IPv4上实现IPv6高性能互联的方法The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4

技术领域technical field

基于P2P在IPv4上实现IPv6高性能互联的方法属于互联网技术领域,尤其涉及IPv4与IPv6网络互联的隧道技术。A method for realizing IPv6 high-performance interconnection on IPv4 based on P2P belongs to the field of Internet technology, and in particular relates to a tunnel technology for interconnecting IPv4 and IPv6 networks.

背景技术Background technique

IPv4协议存在着地址空间不足的严重缺陷,对于这个问题,传统的解决方法如网络地址转换即NAT等技术虽然可以暂时减缓地址消耗的影响,但是破坏了网络的端到端特性,同时并不能从根本上解决地址分配问题。伴随着近年来P2P应用的兴起,使用者需要唯一确定的IP地址,传统的NAT设备已经不能满足用户的需要。因特网工程任务组即IETF于90年代中期开始进行IPv6研究,与IPv432位的地址空间相比,IPv6128位的空间可以为所有用户分配全球唯一的IP地址,从而提供对端到端应用的良好支持。此外IPv6还能够对安全性、移动性、服务质量等方面提供更好的支持,因此互联网由现有的IPv4过渡到IPv6已经成为网络发展必然的趋势。由于现有的IPv4网络已经形成一定规模,为保护现有设备和投资,网络不可能一次性更替到IPv6,过渡将是一个长期的过程,只有做好IPv4和IPv6网络的融合,才能实现平稳过渡。The IPv4 protocol has a serious defect of insufficient address space. For this problem, traditional solutions such as network address translation (NAT) and other technologies can temporarily slow down the impact of address consumption, but it destroys the end-to-end characteristics of the network. Fundamentally solve the problem of address allocation. With the rise of P2P applications in recent years, users need a unique IP address, and traditional NAT devices can no longer meet the needs of users. The Internet Engineering Task Force (IETF) began to conduct IPv6 research in the mid-1990s. Compared with the IPv432-bit address space, the IPv6128-bit space can allocate globally unique IP addresses to all users, thereby providing good support for end-to-end applications. In addition, IPv6 can also provide better support for security, mobility, and service quality. Therefore, the transition of the Internet from the existing IPv4 to IPv6 has become an inevitable trend of network development. Since the existing IPv4 network has formed a certain scale, in order to protect existing equipment and investment, it is impossible to replace the network to IPv6 at one time. The transition will be a long-term process. Only by doing a good job in the integration of IPv4 and IPv6 networks can a smooth transition be achieved. .

具体过渡技术按类型可以分为三种:双栈技术、协议转换技术和隧道技术。双栈技术的缺点是不能一次大范围部署,而协议转换技术由于破坏了端到端特性等缺陷已经不被IETF推荐使用,因此,目前使用最广泛的就是隧道技术。如图1(IPv6-in-IPv4隧道),左侧IPv6网络中的数据分组如果需要传递到右侧的IPv6网络中,就需要在左侧双栈路由器处进行IPv6-in-IPv4封装,即将原有的IPv6数据分组作为封装后形成的IPv4分组的有效载荷,同时将封装后的IPv4分组目的地址置为右侧双栈路由器的IPv4地址并转发到IPv4网络中,当封装后的IPv4分组通过IPv4网络到达右侧双栈路由器时,该路由器将该分组解封装,还原成IPv6数据分组并转发到右侧IPv6网络中,从而实现不能直接相连的IPv6网络的互联。The specific transition technology can be divided into three types according to the type: dual-stack technology, protocol conversion technology and tunnel technology. The disadvantage of the dual-stack technology is that it cannot be deployed on a large scale at one time, and the protocol conversion technology has not been recommended by the IETF due to defects such as destroying the end-to-end feature. Therefore, the most widely used technology is the tunnel technology. As shown in Figure 1 (IPv6-in-IPv4 tunnel), if the data packets in the left IPv6 network need to be transmitted to the right IPv6 network, IPv6-in-IPv4 encapsulation needs to be performed at the left dual-stack router, that is, the original Some IPv6 data packets are used as the payload of the encapsulated IPv4 packet. At the same time, the destination address of the encapsulated IPv4 packet is set as the IPv4 address of the right dual-stack router and forwarded to the IPv4 network. When the encapsulated IPv4 packet passes through the IPv4 When the network reaches the right dual-stack router, the router decapsulates the packet, restores it to an IPv6 data packet and forwards it to the right IPv6 network, thereby realizing the interconnection of IPv6 networks that cannot be directly connected.

RFC3574、RFC3750、RFC4029、RFC4057中按网络范围的不同将现有网络分为:ISP网络(ISP Networks)、3GPP网络(3GPP Networks)、企业网络(Enterprise Networks)和无管理网络(Unmanaged Networks)四种。ISP网络是运营商控制的骨干网络范围,一般使用双栈或纯IPv6技术搭建,而3GPP网络是3G移动方面的标准。RFC3574, RFC3750, RFC4029, and RFC4057 divide existing networks into four types according to different network scopes: ISP Networks (ISP Networks), 3GPP Networks (3GPP Networks), Enterprise Networks (Enterprise Networks) and Unmanaged Networks (Unmanaged Networks) . The ISP network is the backbone network range controlled by the operator, and is generally built using dual-stack or pure IPv6 technology, while the 3GPP network is the standard for 3G mobile.

对于无管理网络,即简单的Office/Home网络,一般会使用NAT解决没有全球IPv4地址问题,NAT内部用户可以使用Teredo等IPv6-in-UDP-in-IPv4隧道技术穿越NAT,但隧道配置的复杂性在用户端,不够方便,同时这种技术破坏了原有的IPv4安全模型,容易造成NAT内部信息外泄,因此直接升级网关对内提供IPv6支持是一种更好的选择。由于周围还是IPv4网络,没有直接与IPv6骨干网络的连接,这些升级了网关设备的无管理网络成为了一个个分布在IPv4网络中的IPv6“孤岛”。For unmanaged networks, that is, simple Office/Home networks, NAT is generally used to solve the problem of not having a global IPv4 address. Users inside NAT can use IPv6-in-UDP-in-IPv4 tunnel technology such as Teredo to traverse NAT, but the tunnel configuration is complicated. At the same time, this technology destroys the original IPv4 security model and easily causes the internal information leakage of NAT. Therefore, it is a better choice to directly upgrade the gateway to provide IPv6 support internally. Since the surrounding IPv4 network is not directly connected to the IPv6 backbone network, these unmanaged networks with upgraded gateway devices have become IPv6 "isolated islands" distributed in the IPv4 network.

对于企业网络,RFC4057中为企业网络过渡提出三种部署方案:大范围双栈部署(Wide-Scale Dual-Stack Deployment)、稀疏双栈部署(Sparse Dual-Stack Deployment)和IPv6优势部署(IPv6Dominant Network Deployment),对于第一和第三种方案,如果ISP还没有提供IPv6支持,则企业网络也成为IPv6“孤岛”;对于第二种方案,为了防止企业内部信息泄露,IETF推荐将IPv6接入节点放在企业网络内部,这样,从企业网外部看来,仍然是IPv6“孤岛”。For enterprise networks, RFC4057 proposes three deployment schemes for enterprise network transition: Wide-Scale Dual-Stack Deployment, Sparse Dual-Stack Deployment, and IPv6 Dominant Network Deployment ), for the first and third schemes, if the ISP has not provided IPv6 support, the enterprise network will also become an IPv6 "island"; for the second scheme, in order to prevent internal information leakage of the enterprise, IETF recommends that IPv6 access nodes be placed on Inside the enterprise network, in this way, from the outside of the enterprise network, it is still an "isolated island" of IPv6.

综上所述,过渡初期,IPv6“孤岛”将大范围存在于现有的IPv4网络中。它们具有以下特点:To sum up, in the early stage of transition, IPv6 "isolated islands" will exist in the existing IPv4 network on a large scale. They have the following characteristics:

(1)地址结构简单,可以用统一的地址前缀表示;(1) The address structure is simple and can be represented by a unified address prefix;

(2)没有直接通往IPv6的链路,一般通过IPv6-in-IPv4隧道接入到IPv6主干网络;(2) There is no direct link to IPv6, and it is generally connected to the IPv6 backbone network through an IPv6-in-IPv4 tunnel;

按照IPv6地址分配易于汇聚的原则,第一条很容易满足,因此,甚至在ISP网络中,先于Backbone即骨干网升级的客户网也可以看作是IPv6“孤岛”。According to the principle that IPv6 address allocation is easy to converge, the first one is easy to meet. Therefore, even in the ISP network, the customer network that is upgraded before the Backbone, that is, the backbone network, can also be regarded as an IPv6 "island".

另一方面,随着中国下一代互联网示范工程的实施,中国已经开始筹建包括CERNET2在内的几个IPv6测试网络,这些网络均可以看作是IPv6“大岛”,它们之间,以及它们同其他IPv6骨干网络(可以使用双栈或者纯IPv6)之间存在着高速互联,可以认为是一个IPv6“大陆”。On the other hand, with the implementation of China's Next Generation Internet Demonstration Project, China has begun to build several IPv6 test networks including CERNET2. These networks can be regarded as IPv6 "big islands". There is a high-speed interconnection between other IPv6 backbone networks (dual-stack or pure IPv6 can be used), which can be considered as an IPv6 "continent".

为了让IPv6“孤岛”用户连接到骨干网络,IETF一般推荐使用配置隧道技术解决“孤岛”与IPv6“大陆”之间的连通问题,整个场景如图2,分布在现有IPv4网络中的IPv6“孤岛”通过IPv6-in-IPv4配置隧道接入到IPv6“大陆”中,为了减轻隧道管理负担,可以利用隧道代理即Tunnel Broker等辅助手段进行,但无论使用哪种方法,都将会存在一个或者少数几个IPv6接入节点,负责转发IPv6“孤岛”访问其他IPv6网络的流量。这样,无论是“孤岛”访问IPv6“大陆”内部,还是“孤岛”之间互相访问的流量都需要经过IPv6接入节点转发。另一方面,IPv6“孤岛”大多数由原来的IPv4网络升级形成,原有的应用也会相应的升级支持IPv6,包括各种服务,同时,由于IPv6“大陆”刚刚形成,内部的应用比较少,也就是说业务集中在原有的由IPv4网络升级过来的网络范围中,“孤岛”用户所访问的IPv6网络可能会主要分布在其他“孤岛”的地址范围内。因此,由IPv6接入节点转发的流量中,有很大一部分是通往其他“孤岛”的,这就可能造成IPv6接入节点负担过重,使其成为整个网络结构的瓶颈。那么,如何在上述场景中分流IPv6“孤岛”之间的流量,为IPv6“孤岛”用户提供更好的接入服务就是本发明需要解决的主要问题。In order to allow IPv6 "isolated island" users to connect to the backbone network, IETF generally recommends the use of configuration tunnel technology to solve the connectivity problem between the "isolated island" and the IPv6 "continent". The isolated island is connected to the IPv6 "mainland" through an IPv6-in-IPv4 configuration tunnel. In order to reduce the burden of tunnel management, auxiliary means such as Tunnel Broker can be used. However, no matter which method is used, there will be one or A small number of IPv6 access nodes are responsible for forwarding traffic from IPv6 "islands" to access other IPv6 networks. In this way, whether the "island" accesses the interior of the IPv6 "continent" or the traffic between "islands" accesses each other, it needs to be forwarded through the IPv6 access node. On the other hand, most of the IPv6 "islands" are formed by upgrading the original IPv4 network, and the original applications will be upgraded to support IPv6, including various services. At the same time, because the IPv6 "continent" has just been formed, there are relatively few internal applications That is to say, the business is concentrated in the original network range upgraded from the IPv4 network, and the IPv6 network accessed by "isolated island" users may be mainly distributed in the address range of other "isolated islands". Therefore, a large part of the traffic forwarded by the IPv6 access node leads to other "isolated islands", which may cause the IPv6 access node to be overloaded and become the bottleneck of the entire network structure. Then, how to divert the traffic between IPv6 "isolated islands" in the above scenario and provide better access services for IPv6 "isolated island" users is the main problem to be solved in the present invention.

发明内容Contents of the invention

本发明的目的在于提供一种在现有IPv4网络基础上,利用P2P技术自动建立IPv6“孤岛”之间的IPv6-in-IPv4隧道的方法,用以分担普通IPv6隧道接入节点流量,提高接入质量。The purpose of the present invention is to provide a method for automatically establishing IPv6-in-IPv4 tunnels between IPv6 "isolated islands" based on the existing IPv4 network, in order to share the traffic of ordinary IPv6 tunnel access nodes and improve the access rate. into the quality.

本发明所提供的方法思路在于:所有IPv6“孤岛”的边界网关(IPv4/IPv6双栈路由器或IPv4/IPv6双栈三层交换机)利用现有IPv4网络连接成一个P2P的重叠网络,交互可达信息,从而在每个边界网关上形成一个单向的隧道表;边界网关接收到发往“孤岛”外部的IPv6数据分组后,首先查询隧道表,进行IPv6-in-IPv4封装,查询失败才使用默认隧道转发;而封装后的数据分组经IPv4网络到达隧道目的端后,由目的端的边界网关进行解封装,还原成IPv6分组,并转送到目的端IPv6“孤岛”内部。实现分流IPv6“孤岛”之间流量的功能,如图3。The idea of the method provided by the present invention is: all IPv6 "isolated island" border gateways (IPv4/IPv6 dual-stack routers or IPv4/IPv6 dual-stack three-layer switches) utilize the existing IPv4 network to connect into a P2P overlapping network, and the interaction can reach Information, so as to form a one-way tunnel table on each border gateway; after the border gateway receives the IPv6 data packet sent to the outside of the "isolated island", it first queries the tunnel table, performs IPv6-in-IPv4 encapsulation, and uses it only if the query fails The default tunnel forwarding; after the encapsulated data packet reaches the destination end of the tunnel through the IPv4 network, the border gateway of the destination end decapsulates it, restores it to an IPv6 packet, and forwards it to the destination IPv6 "island". Realize the function of diverting traffic between IPv6 "islands", as shown in Figure 3.

本发明的特征在于:该方法是一种在现有的IPv4网络基础上利用P2P技术自动建立IPv6“孤岛”之间的IPv6-in-IPv4隧道的方法,所述IPv6“孤岛”是指周围是IPv4网络,还没有与IPv6骨干网络连接的简单的Office/Home网络或企业网络,所述隧道建立方法依次含有以下步骤:The present invention is characterized in that: the method is a method for automatically establishing IPv6-in-IPv4 tunnels between IPv6 "isolated islands" using P2P technology on the basis of the existing IPv4 network, and the IPv6 "isolated islands" refer to the surrounding The IPv4 network is not yet a simple Office/Home network or enterprise network connected to the IPv6 backbone network, and the tunnel establishment method contains the following steps in turn:

步骤1,所有IPv6“孤岛”的边界网关从ISP处获得IPv6全局地址范围和接入隧道信息;Step 1, the border gateways of all IPv6 "isolated islands" obtain the IPv6 global address range and access tunnel information from the ISP;

步骤2,步骤1种所述的各IPv6“孤岛”根据步骤1获得的内容设定本IPv6“孤岛”边界网关IPv4地址、IPv6地址和可达的IPv6地址范围,配置默认IPv6接入隧道;Step 2, each IPv6 "isolated island" described in step 1 sets the IPv6 "isolated island" border gateway IPv4 address, IPv6 address and reachable IPv6 address range according to the content obtained in step 1, and configures the default IPv6 access tunnel;

步骤3,所有IPv6“孤岛”的边界网关按以下步骤在IPv4网络基础上构成P2P的重叠网络,以便通过该重叠网络交互可达信息,其中包括自己的以及其他节点的地址信息;Step 3. The border gateways of all IPv6 "isolated islands" form a P2P overlay network on the basis of the IPv4 network according to the following steps, so as to exchange reachable information through the overlay network, including their own and other node address information;

步骤3.1,注册:所述各IPv6“孤岛”边界网关在启动后向注册服务器注册,从该注册服务器获取其他P2P节点信息;Step 3.1, registration: the border gateways of each IPv6 "isolated island" register with the registration server after startup, and obtain other P2P node information from the registration server;

步骤3.2,建立邻接关系:各IPv6“孤岛”边界网关根据自己的需要从所有其他P2P节点中选取部分节点建立重叠的邻接关系;Step 3.2, establish adjacency relationship: each IPv6 "isolated island" border gateway selects some nodes from all other P2P nodes to establish an overlapping adjacency relationship according to its own needs;

步骤3.3,交互可达信息:从步骤3.2所述的邻接节点处获得所有其他边界网关的可达信息,同时把自己的地址信息通过邻居节点扩散到整个P2P网络;Step 3.3, exchange reachability information: Obtain reachability information of all other border gateways from the adjacent nodes described in step 3.2, and spread its own address information to the entire P2P network through neighbor nodes;

步骤3.4,形成单向隧道表:所有IPv6“孤岛”边界网关利用获得的可达信息形成通往其他“孤岛”的隧道表;Step 3.4, forming a one-way tunnel table: all IPv6 "island" border gateways use the obtained reachability information to form tunnel tables leading to other "islands";

步骤4,在步骤1所述的IPv6“孤岛”边界网关中,有一个边界网关判定接收到的数据分组是需要转发的数据分组后,根据需要,从下述操作中有选择的进行:Step 4, in the IPv6 "isolated island" border gateway described in step 1, after a border gateway judges that the data packet received is a data packet that needs to be forwarded, as required, selectively carry out from the following operations:

若:所述数据分组是发往“孤岛”外部的IPv6分组时,则所述“孤岛”边界网关查询步骤3获得的隧道表:If: the data packet is an IPv6 packet sent to the outside of the "isolated island", then the border gateway of the "isolated island" queries the tunnel table obtained in step 3:

查询成功,则得到隧道端点信息,再对此IPv6分组进行IPv6-in-IPv4封装,源地址为本地边界网关的IPv4地址,目的地址为该隧道另一端的IPv4地址;If the query is successful, the tunnel endpoint information is obtained, and then IPv6-in-IPv4 encapsulation is performed on the IPv6 packet, the source address is the IPv4 address of the local border gateway, and the destination address is the IPv4 address at the other end of the tunnel;

查询失败,则使用默认隧道进行IPv6-in-IPv4封装,源地址为边界网关的IPv4地址,目的地址为默认隧道的另一端的IPv4地址;If the query fails, the default tunnel is used for IPv6-in-IPv4 encapsulation, the source address is the IPv4 address of the border gateway, and the destination address is the IPv4 address of the other end of the default tunnel;

若:所属数据分组是IPv4分组时,该“孤岛”边界网关检查是否是IPv4报头后紧跟IPv6报头的情况,即为IPv6-in-IPv4封装分组,若是,则把该数据分组解封装;If: when the belonging data packet is an IPv4 packet, the "isolated island" border gateway checks whether the IPv4 header is followed by the IPv6 header, which is an IPv6-in-IPv4 encapsulated packet, and if so, the data packet is decapsulated;

步骤5,步骤4中所述的“孤岛”边界网关查询双栈路由转发表并转发该步骤4中最终形成的数据分组,完成隧道转发操作。In step 5, the "isolated island" border gateway mentioned in step 4 queries the dual-stack routing and forwarding table and forwards the data packet finally formed in step 4 to complete the tunnel forwarding operation.

本发明所提出的在现有IPv4网络基础上,利用P2P技术自动建立IPv6“孤岛”间隧道的方法能够在IPv4/IPv6过渡初期广泛使用,极大地缓解IPv6隧道接入设备(如Tunnel Broker等)的压力,提高了IPv6接入性能。本发明的另一个优势是适合增量部署,即插即用,可以通过逐步升级IPv6“孤岛”边界网管软件来进行推广。因此,本发明即可以通过逐步升级IPv6“孤岛”边界网络设备的软件,也可以通过专门的网络设备来进行推广。本发明已在清华大学与比威网络技术有限公司合作研制的网络设备中得到应用,并计划在CERNET2和中国下一代网络CNGI中推广。On the basis of the existing IPv4 network, the method of using P2P technology to automatically establish tunnels between IPv6 "isolated islands" proposed by the present invention can be widely used in the early stage of IPv4/IPv6 transition, which greatly alleviates IPv6 tunnel access equipment (such as Tunnel Broker, etc.) pressure, improving the performance of IPv6 access. Another advantage of the present invention is that it is suitable for incremental deployment, plug and play, and can be popularized by gradually upgrading IPv6 "isolated island" border network management software. Therefore, the present invention can be promoted by gradually upgrading the software of IPv6 "isolated island" border network equipment, or by special network equipment. The invention has been applied in the network equipment jointly developed by Tsinghua University and Biwei Network Technology Co., Ltd., and is planned to be popularized in CERNET2 and China Next Generation Network CNGI.

附图说明Description of drawings

图1.IPv6 in IPv4隧道示意图;Figure 1. Schematic diagram of IPv6 in IPv4 tunnel;

图2.IPv4/IPv6过渡初期场景示意图:Figure 2. Schematic diagram of the initial stage of IPv4/IPv6 transition:

Figure A20051008698400061
表示配置隧道;
Figure A20051008698400061
Indicates the configuration tunnel;

图3.P2P重叠网络方案示意图:Figure 3. Schematic diagram of the P2P overlay network scheme:

Figure A20051008698400062
表示配置隧道
Figure A20051008698400063
表示P2P邻居
Figure A20051008698400062
Indicates the configuration tunnel
Figure A20051008698400063
Indicates a P2P neighbor

表示自动隧道 表示注册加入P2P网络 Indicates automatic tunnel Indicates registration to join the P2P network

Tunnel Table为各个IPv6“孤岛”边界网关的隧道表,记录其他“孤岛”边界网关的IPv4地址及可达的IPv6地址范围;Tunnel Table is the tunnel table of each IPv6 "isolated island" border gateway, recording the IPv4 address and reachable IPv6 address range of other "isolated island" border gateways;

图4.边界网关加入P2P网络过程;Figure 4. The border gateway joins the P2P network process;

图5.边界网关对转发数据的处理过程。Figure 5. The processing process of the forwarded data by the border gateway.

具体实施方式Detailed ways

在控制层面,注册服务器维护P2P节点信息,提供接入服务。IPv6“孤岛”加入P2P网络的过程如图4所示,需要经过以下几个步骤:At the control level, the registration server maintains P2P node information and provides access services. The process of adding an IPv6 "isolated island" to a P2P network is shown in Figure 4, and it needs to go through the following steps:

(1)注册:IPv6“孤岛”边界路由器启动以后,向注册服务器注册,从注册服务器获取其他P2P节点信息;(1) Registration: After the IPv6 "isolated island" border router is started, it will register with the registration server and obtain other P2P node information from the registration server;

(2)建立邻接关系:从上述节点中选取部分建立Overlay的邻接关系;(2) Establish an adjacency relationship: select a part from the above-mentioned nodes to establish an adjacency relationship of the Overlay;

(3)交互可达信息:从邻居处获得所有其他边界网关的可达信息,同时将自己的地址信息通过邻居扩散到整个P2P网络;(3) Exchange reachability information: Obtain reachability information of all other border gateways from neighbors, and spread its own address information to the entire P2P network through neighbors;

(4)形成隧道表:利用获得的可达信息形成通往其他IPv6“孤岛”的隧道表。(4) Form a tunnel table: use the obtained reachability information to form a tunnel table leading to other IPv6 "islands".

当P2P网络节点信息变化时,通过P2P网络的更新机制完成信息扩散,及时更新隧道表,保持边界网关隧道信息的有效性。When the P2P network node information changes, the information diffusion is completed through the update mechanism of the P2P network, the tunnel table is updated in time, and the validity of the boundary gateway tunnel information is maintained.

在数据层面,数据转发过程如图5所示,如果边界网关接收到需要转发到“孤岛”外部的IPv6分组,查询控制层面维护的隧道表,查询成功,则可以得到隧道端点信息,对此IPv6分组进行IPv6-in-IPv4封装,源地址为边界网关IPv4地址,目的地址为隧道另一端IPv4地址;查询失败,则使用默认隧道进行IPv6 in IPv4封装,源地址为边界网关IPv4地址,目的地址为默认隧道另一端IPv4地址;如果边界网关接收到的数据分组是IPv4分组,则检查是否是IPv4报头后紧跟IPv6报头的情况,是则将此分组解封装;经过上述封装/解封装处理后,查询双栈路由表确定下一跳,并转发。本技术发明中的封装机制可以采用RFC2893中所定义的IPv6-in-IPv4的配置隧道分组封装机制。At the data level, the data forwarding process is shown in Figure 5. If the border gateway receives an IPv6 packet that needs to be forwarded to the outside of the "isolated island", it queries the tunnel table maintained at the control plane. If the query is successful, the tunnel endpoint information can be obtained. For IPv6 Packets are encapsulated in IPv6-in-IPv4, the source address is the IPv4 address of the border gateway, and the destination address is the IPv4 address of the other end of the tunnel; if the query fails, the default tunnel is used for IPv6 in IPv4 encapsulation, the source address is the IPv4 address of the border gateway, and the destination address is The IPv4 address of the other end of the default tunnel; if the data packet received by the border gateway is an IPv4 packet, check whether the IPv4 header is followed by the IPv6 header, and if so, decapsulate the packet; after the above encapsulation/decapsulation processing, Query the dual-stack routing table to determine the next hop and forward it. The encapsulation mechanism in the technical invention can adopt the IPv6-in-IPv4 configuration tunnel packet encapsulation mechanism defined in RFC2893.

具体运用实例如下,图3中,假设P2P网络已经包含“IPv6孤岛A”和“IPv6孤岛B”的边界网关Router A和Router B,“IPv6孤岛C”的边界网关Router C启动后,首先连接注册服务器,获得Router A和Router B的IPv4地址信息,选取Router B作为P2P邻居并与之建立邻接关系,从Router B处获得通往2001:250:f001:f002:28ba∷/80和2001:250:f001:f002:20a∷/80的隧道信息,同时将自己可达2001:250:f001:f002:fe30∷/80的隧道信息通过Router B更新给其他P2P节点,从而所有P2P节点都更新了自己通往其他“孤岛”的IPv6-in-IPv4隧道信息。The specific application examples are as follows. In Figure 3, it is assumed that the P2P network already includes border gateways Router A and Router B of "IPv6 island A" and "IPv6 island B". The server obtains the IPv4 address information of Router A and Router B, selects Router B as a P2P neighbor and establishes an adjacency relationship with it, and obtains links to 2001:250:f001:f002:28ba∷/80 and 2001:250 from Router B: The tunnel information of f001:f002:20a∷/80 and the tunnel information up to 2001:250:f001:f002:fe30∷/80 are updated to other P2P nodes through Router B, so that all P2P nodes have updated their own tunnel information. Information about IPv6-in-IPv4 tunnels to other "islands".

当Router C接收到目的地址是2001:250:f001:f002:20a∷2005的IPv6数据分组时,首先查询隧道表,得知隧道端点为Router A,然后将该IPv6分组进行IPv6-in-IPv4封装,目的地址处置为Router A的IPv4地址:202.112.49.247,源地址处置为Router C的IPv4地址:59.66.116.43;将封装后的分组通过双栈网关转发机制转发至IPv4网内;当该封装后的分组到达Router A后,Router A检测倒该IPv4分组是IPv4包头紧跟IPv6包头的情况,即IPv6in IPv4封装分组,则将其解封装,然后通过双栈网关转发机制转发至IPv6“孤岛”内部,最终传送到目的主机。When Router C receives the IPv6 data packet whose destination address is 2001:250:f001:f002:20a::2005, it first queries the tunnel table and finds out that the tunnel endpoint is Router A, and then performs IPv6-in-IPv4 encapsulation on the IPv6 packet , the destination address is the IPv4 address of Router A: 202.112.49.247, the source address is the IPv4 address of Router C: 59.66.116.43; the encapsulated packet is forwarded to the IPv4 network through the dual-stack gateway forwarding mechanism; when the encapsulation After the packet arrives at Router A, Router A detects that the IPv4 packet header is followed by the IPv6 packet header, that is, the IPv6in IPv4 encapsulated packet, then decapsulates it, and then forwards it to the inside of the IPv6 "isolated island" through the dual-stack gateway forwarding mechanism , and finally sent to the destination host.

通过上述P2P网络的维护和更新,所有接入该P2P网络的IPv6“孤岛”边界网关都可以获得并及时更新通往其他“孤岛”的IPv4 in IPv6隧道信息,“孤岛”之间的流量优先使用这些隧道,从而分流了IPv6“孤岛”之间的流量,大大缓解了默认接入隧道的压力。由此可见,本发明达到了预期目的。Through the maintenance and update of the above P2P network, all IPv6 "isolated island" border gateways connected to the P2P network can obtain and update the IPv4 in IPv6 tunnel information leading to other "isolated islands" in a timely manner, and the traffic between "isolated islands" is preferentially used These tunnels thus divert the traffic between IPv6 "islands" and greatly relieve the pressure on the default access tunnel. It can be seen that the present invention has achieved the intended purpose.

Claims (1)

1.基于P2P在IPv4上实现IPv6高性能互联的方法其特征在于:该方法是一种在现有的IPv4网络基础上利用P2P技术自动建立IPv6“孤岛”之间的IPv6-in-IPv4隧道的方法,所述IPv6“孤岛”是指周围还是IPv4网络,还没有与IPv6骨干网络连接的简单的Office/Home网络或企业网络,所述隧道建立方法依次含有以下步骤:1. The method for realizing IPv6 high-performance interconnection on IPv4 based on P2P is characterized in that: the method is a method of using P2P technology to automatically establish IPv6-in-IPv4 tunnels between IPv6 "isolated islands" on the basis of existing IPv4 networks Method, described IPv6 " isolated island " refers to surrounding or IPv4 network, the simple Office/Home network or enterprise network that has not yet been connected with IPv6 backbone network, described tunnel establishment method contains following steps successively: 步骤1,所有IPv6“孤岛”的边界网关从ISP处获得IPv6全局地址范围和接入隧道信息;Step 1, the border gateways of all IPv6 "isolated islands" obtain the IPv6 global address range and access tunnel information from the ISP; 步骤2,步骤1种所述的各IPv6“孤岛”根据步骤1获得的内容设定本IPv6“孤岛”边界网关IPv4地址、IPv6地址和可达的IPv6地址范围,配置默认IPv6接入隧道;Step 2, each IPv6 "isolated island" described in step 1 sets the IPv6 "isolated island" border gateway IPv4 address, IPv6 address and reachable IPv6 address range according to the content obtained in step 1, and configures the default IPv6 access tunnel; 步骤3,所有IPv6“孤岛”的边界网关按以下步骤在IPv4网络基础上构成P2P的重叠网络,以便通过该重叠网络交互可达信息,其中包括自己的以及其他节点的地址信息;Step 3. The border gateways of all IPv6 "isolated islands" form a P2P overlay network on the basis of the IPv4 network according to the following steps, so as to exchange reachable information through the overlay network, including their own and other node address information; 步骤3.1,注册:所述各IPv6“孤岛”边界网关在启动后向注册服务器注册,从该注册服务器获取其他P2P节点信息;Step 3.1, registration: the border gateways of each IPv6 "isolated island" register with the registration server after startup, and obtain other P2P node information from the registration server; 步骤3.2,建立邻接关系:各IPv6“孤岛”边界网关根据自己的需要从所有其他P2P节点中选取部分节点建立重叠的邻接关系;Step 3.2, establish adjacency relationship: each IPv6 "isolated island" border gateway selects some nodes from all other P2P nodes to establish an overlapping adjacency relationship according to its own needs; 步骤3.3,交互可达信息:从步骤3.2所述的邻接节点处获得所有其他边界网关的可达信息,同时把自己的地址信息通过邻居节点扩散到整个P2P网络;Step 3.3, exchange reachability information: Obtain reachability information of all other border gateways from the adjacent nodes described in step 3.2, and spread its own address information to the entire P2P network through neighbor nodes; 步骤3.4,形成单向隧道表:所有IPv6“孤岛”边界网关利用获得的可达信息形成通往其他“孤岛”的隧道表;Step 3.4, forming a one-way tunnel table: all IPv6 "island" border gateways use the obtained reachability information to form tunnel tables leading to other "islands"; 步骤4,在步骤1所述的IPv6“孤岛”边界网关中,有一个边界网关判定接收到的数据分组是需要转发的数据分组后,根据需要,从下述操作中有选择的进行:Step 4, in the IPv6 "isolated island" border gateway described in step 1, after a border gateway judges that the data packet received is a data packet that needs to be forwarded, as required, selectively carry out from the following operations: 若:所述数据分组是发往“孤岛”外部的IPv6分组时,则所述“孤岛”边界网关查询步骤3获得的隧道表:If: the data packet is an IPv6 packet sent to the outside of the "isolated island", then the border gateway of the "isolated island" queries the tunnel table obtained in step 3: 查询成功,则得到隧道端点信息,再对此IPv6分组进行IPv6-in-IPv4封装,源地址为本地边界网关的IPv4地址,目的地址为该隧道另一端的IPv4地址;If the query is successful, the tunnel endpoint information is obtained, and then IPv6-in-IPv4 encapsulation is performed on the IPv6 packet, the source address is the IPv4 address of the local border gateway, and the destination address is the IPv4 address at the other end of the tunnel; 查询失败,则使用默认隧道进行IPv6-in-IPv4封装,源地址为边界网关的IPv4地址,目的地址为默认隧道的另一端的IPv4地址;If the query fails, the default tunnel is used for IPv6-in-IPv4 encapsulation, the source address is the IPv4 address of the border gateway, and the destination address is the IPv4 address of the other end of the default tunnel; 若:所属数据分组是IPv4分组时,该“孤岛”边界网关检查是否是IPv4报头后紧跟IPv6报头的情况,即为IPv6-in-IPv4封装分组,若是,则把该数据分组解封装;If: when the belonging data packet is an IPv4 packet, the "isolated island" border gateway checks whether the IPv4 header is followed by the IPv6 header, which is an IPv6-in-IPv4 encapsulated packet, and if so, the data packet is decapsulated; 步骤5,步骤4中所述的“孤岛”边界网关查询双栈路由转发表并转发该步骤4中最终形成的数据分组,完成隧道转发操作。In step 5, the "isolated island" border gateway mentioned in step 4 queries the dual-stack routing and forwarding table and forwards the data packet finally formed in step 4 to complete the tunnel forwarding operation.
CNB2005100869840A 2005-11-25 2005-11-25 The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4 Expired - Fee Related CN100413289C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNB2005100869840A CN100413289C (en) 2005-11-25 2005-11-25 The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB2005100869840A CN100413289C (en) 2005-11-25 2005-11-25 The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4

Publications (2)

Publication Number Publication Date
CN1848802A true CN1848802A (en) 2006-10-18
CN100413289C CN100413289C (en) 2008-08-20

Family

ID=37078171

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB2005100869840A Expired - Fee Related CN100413289C (en) 2005-11-25 2005-11-25 The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4

Country Status (1)

Country Link
CN (1) CN100413289C (en)

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007109963A1 (en) * 2006-03-24 2007-10-04 Huawei Technologies Co., Ltd. A vpn gateway and an ipv6 network system and a system for realizing mobile vpn in hybrid network and the method
CN101155115B (en) * 2007-07-26 2010-09-08 杭州华三通信技术有限公司 Method and apparatus for implementing automatic tunnel
CN102164116A (en) * 2010-03-30 2011-08-24 青岛海信传媒网络技术有限公司 Method, system and corresponding device for balancing load
CN101257433B (en) * 2007-03-01 2011-09-14 华为技术有限公司 Method and system for realizing network address convert traversing
CN102523312A (en) * 2011-12-02 2012-06-27 清华大学 Method for optimal tunnel selection in 4over6 scene
CN101640867B (en) * 2009-08-18 2012-07-25 中兴通讯股份有限公司 Method and system for updating equipment configuration information of message-type application gateway
CN101610285B (en) * 2009-06-15 2012-10-31 北京邮电大学 P2P communication method in the coexistence network of IPv4 and IPv6
CN102904814A (en) * 2012-10-19 2013-01-30 福建星网锐捷网络有限公司 Data transmission method, source PE (Provider Edge router), object PE and data transmission system
CN103428096A (en) * 2013-07-22 2013-12-04 汉柏科技有限公司 Method for mutual access and communication among Internet Protocol version 6 (IPV6) islands
CN103618801A (en) * 2013-12-09 2014-03-05 中国联合网络通信集团有限公司 Method, device and system for sharing P2P (Peer-to-Peer) resources
CN106559348A (en) * 2015-09-25 2017-04-05 中国电力科学研究院 A kind of intelligent 6LoWPAN border routings implementation method and border router
CN110971518A (en) * 2019-12-12 2020-04-07 深圳市高德信通信股份有限公司 Data real-time communication system based on IP network

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1170397C (en) * 2003-03-31 2004-10-06 中国科学院计算机网络信息中心 A Method for IPv4 Network Accessing Hierarchical Switching Network
CN100388673C (en) * 2003-07-18 2008-05-14 华为技术有限公司 Method for implementing intra-site automatic tunnel
CN100379219C (en) * 2003-07-23 2008-04-02 中国科学院计算技术研究所 Utilizing NAT-PT and Client/Server Mode to Realize IP Network Terminal Communication Method
CN100396053C (en) * 2003-07-25 2008-06-18 华为技术有限公司 A method of connecting IPv6 isolated island to IPv6 network
JP2005086256A (en) * 2003-09-04 2005-03-31 Kddi Corp Tunnel gateway device
DE60324475D1 (en) * 2003-09-05 2008-12-11 Ntt Docomo Inc COMMUNICATION BETWEEN FIXED DEVICES OF A PRIVATE IPV4 NETWORK AND A GLOBAL IPV6 NETWORK CONNECTED BY THE IPV4 INTERNET

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007109963A1 (en) * 2006-03-24 2007-10-04 Huawei Technologies Co., Ltd. A vpn gateway and an ipv6 network system and a system for realizing mobile vpn in hybrid network and the method
CN101257433B (en) * 2007-03-01 2011-09-14 华为技术有限公司 Method and system for realizing network address convert traversing
US8325741B2 (en) 2007-03-01 2012-12-04 Huawei Technologies Co., Ltd. Method, system and device for implementing network address translation traversal
CN101155115B (en) * 2007-07-26 2010-09-08 杭州华三通信技术有限公司 Method and apparatus for implementing automatic tunnel
CN101610285B (en) * 2009-06-15 2012-10-31 北京邮电大学 P2P communication method in the coexistence network of IPv4 and IPv6
CN101640867B (en) * 2009-08-18 2012-07-25 中兴通讯股份有限公司 Method and system for updating equipment configuration information of message-type application gateway
CN102164116B (en) * 2010-03-30 2013-11-13 青岛海信传媒网络技术有限公司 Method, system and corresponding device for balancing load
CN102164116A (en) * 2010-03-30 2011-08-24 青岛海信传媒网络技术有限公司 Method, system and corresponding device for balancing load
WO2011120256A1 (en) * 2010-03-30 2011-10-06 青岛海信传媒网络技术有限公司 Method, system and corresponding device for balancing load
CN102523312A (en) * 2011-12-02 2012-06-27 清华大学 Method for optimal tunnel selection in 4over6 scene
CN102523312B (en) * 2011-12-02 2014-04-02 清华大学 Method for optimal tunnel selection in 4over6 scene
CN102904814A (en) * 2012-10-19 2013-01-30 福建星网锐捷网络有限公司 Data transmission method, source PE (Provider Edge router), object PE and data transmission system
CN102904814B (en) * 2012-10-19 2015-09-16 福建星网锐捷网络有限公司 Data transmission method, source PE, object PE and data transmission system
CN103428096A (en) * 2013-07-22 2013-12-04 汉柏科技有限公司 Method for mutual access and communication among Internet Protocol version 6 (IPV6) islands
CN103428096B (en) * 2013-07-22 2016-09-14 汉柏科技有限公司 Exchange visits between a kind of IPV6 isolated island communication method
CN103618801A (en) * 2013-12-09 2014-03-05 中国联合网络通信集团有限公司 Method, device and system for sharing P2P (Peer-to-Peer) resources
CN103618801B (en) * 2013-12-09 2017-01-04 中国联合网络通信集团有限公司 Method, equipment and the system of a kind of P2P resource-sharing
CN106559348A (en) * 2015-09-25 2017-04-05 中国电力科学研究院 A kind of intelligent 6LoWPAN border routings implementation method and border router
CN110971518A (en) * 2019-12-12 2020-04-07 深圳市高德信通信股份有限公司 Data real-time communication system based on IP network
CN110971518B (en) * 2019-12-12 2022-05-27 深圳市高德信通信股份有限公司 Data real-time communication system based on IP network

Also Published As

Publication number Publication date
CN100413289C (en) 2008-08-20

Similar Documents

Publication Publication Date Title
CN102347993B (en) Network communication method and equipment
US6747979B1 (en) Method and apparatus for bridging between networks
CN100428719C (en) An internet access method based on the separation of identity and location
CN101185296B (en) Method for establishing multi-line between local network and remote network as well as relevant device
CN103023797B (en) The method of data center systems and device and offer service
CN104734963B (en) A kind of IPv4 and IPv6 network interconnecting methods based on SDN
CN100484083C (en) Addressing converting method and mixed addressing converting router for realizing the same
WO2011032472A1 (en) Virtual private network implemaentation method and system
CN1992667A (en) ISATAP router for tunneling packets and method thereof
WO2010057386A1 (en) Data package forwarding method, system and device
CN100534218C (en) A method for realizing communication between mobile IPv4 node and IPv6 communication node
CN1848802A (en) The Method of Realizing IPv6 High Performance Interconnection Based on P2P on IPv4
CN101325580A (en) Method for implementing FTP application-layer gateway based on NAT-PT
CN1716954A (en) Intercommunication method between IPv6 network and IPv4 network based on transition mechanism
CN100471161C (en) Method for Optimizing IPv4/IPv6 Application Interoperability Using Multipoint Access
CN1691665A (en) A method for implementing communication between IPv4 network and IPv6 network
CN101030934A (en) Method for spanning heterogeneous network mobile telecommunication based on two-way tunnel
CN1251450C (en) IP telecommunication network system and it realizing method
EP1874005A1 (en) A personal network comprising a plurality of clusters
CN1161931C (en) Wireless Layer 3 Tunnel Backup and Burden Sharing Method
CN100563241C (en) The method that a kind of network transition inserts
CN100388673C (en) Method for implementing intra-site automatic tunnel
CN1243437C (en) An automatic tunnel method capable of traversing network address translation
CN1440168A (en) IPV4 network logon layered switching network method
CN115428415A (en) System and method for forwarding packets in a hierarchical network architecture using variable length addresses

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20080820

Termination date: 20211125

CF01 Termination of patent right due to non-payment of annual fee