JPWO2004084506A1 - Router, frame forwarding method, and lower layer frame virtual forwarding system - Google Patents

Abstract

In the MPLS network (50), multicast and broadcast belonging to the layer 2 function and address learning are realized. The ingress router (1) includes a frame receiving unit (10a), a determining unit (10b), a first frame transmitting unit (10c), a multicast physical address table (11), a label switch unit (12), and a tunnel label table (15 ), A VCID adding unit (13), an L2 header creating unit (10d), and a second frame transmitting unit (10e), thereby reducing the load on the network and increasing the efficiency of bandwidth use. Prevent unnecessary frame duplication and frame forwarding between edge routers.

Description

  The present invention, for example, uses a MPLS-Layer 2-Virtual Private Network (MPLS-Layer 2-Virtual Private Network: MPLS) that can use a public network like a dedicated network using MPLS (Multi-protocol Label Switching) technology. Router, frame transfer method, and lower layer frame virtual transfer system in a dedicated network), and particularly suitable for use in a router having multicast, broadcast, and unicast functions and a layer 2 address learning function The present invention relates to a transfer method and a lower layer frame virtual transfer system.

In recent years, service providers such as service providers (SPs) and communication carriers (communication carriers) have been defined in MPLS (RFC [Request for Comments] 3031 and RFC 3032 for reliably transferring packets or frames. A virtual private network (virtual network or VPN) in layer 2 (data link layer) is constructed using MPLS technology.
(P1) Schematic description of VPN (virtual network) and L2VPN (layer 2 virtual network) and MPLS
(P1-1) Packet, frame, label, and LSP (label exchange path)
In the following description, a packet means a basic unit of transfer data, and a frame means a layer 3 packet obtained by encapsulating a layer 2 packet with a header including a label. The label is a path identifier. This label is given by the ingress router of the MPLS network for a frame transmitted through the MPLS network. A frame to which a label is attached is called an MPLS frame.
Furthermore, LSP includes tunnel LSP and VCLSP. For example, as shown in FIG. 2, the tunnel LSP functions as a tunnel for a plurality of VCs (Virtual Circuits: VCLSP), and each VCLSP functions as an actual line for transmitting a layer 2 frame. In other words, the tunnel LSP is for transferring a frame, and a label representing the tunnel LSP is called a tunnel label. VCLSP relates to a virtual circuit for transferring a frame, and a label representing this VC is called a VC label.
Therefore, each of these tunnel labels and VC labels functions as a hierarchical path identifier.
(P1-2) Virtual network
In general, a virtual network means a network in which a service provider provides a dedicated network service to a user using a public network, and a layer 2 virtual network means a virtual network such as a MAC. (Media Access Control) This means an extension to transfer of a layer 2 frame such as a packet (physical packet).
(P1-3) Schematic description of MPLS
MPLS is a technology or transfer path in which a router (transfer device or node) assigns (maps) a label to a frame header for frames of various protocol formats, and each router refers to only the label and transfers the frame. This is a technique for selecting (transfer route). Therefore, regardless of the protocol of the frame encapsulated by MPLS, each router of the MPLS network can transfer the frame. When the frame encapsulated by MPLS is layer 2, the service provider can The frame transfer service can be provided without depending on the (user site) layer 3 protocol.
MPLS is a technology originally born for speeding up transfer processing in a large-scale IP (Internet Protocol) network such as the Internet. However, as the hardware technology of routers has evolved, each router can process packet transfer at high speed, and MPLS has become less important from the viewpoint of high-speed transfer in terms of speeding up transfer processing.
(P1-4) Purpose of using MPLS in a virtual network
By assigning both labels, each router can identify the frame, and not only one label but also two or more labels can be assigned to one frame. It is expanding. There are two main purposes for using MPLS in addition to high-speed transfer.
The first purpose is to provide the network with a function for explicitly setting a path in the IP network (Traffic Engineering (TE) function).
The reason why the traffic engineering function is necessary is that the result of the path calculation that is normally used may deteriorate the bandwidth use efficiency. Here, path selection to a destination IP address using normal path calculation calculates each link cost based on the number of pops and bandwidth of the router, adds the calculated link costs, and has the lowest cost Let the path be the shortest path.
On the other hand, the shortest path obtained by the path calculation may be shifted to a specific link (path between adjacent routers) in the network, and there is a possibility that the use efficiency of the band is deteriorated.
For this reason, in order to avoid the deviation, the router makes a detour by explicitly specifying a path by the traffic engineering function. As a result, specific network resources are allocated for each traffic.
The second purpose in which MPLS is used is for a service provider to provide a VPN service such as L2VPN (layer 2 virtual network) using MPLS. In this VPN service, a service provider constructs its own MPLS network, and a network obtained by logically dividing the MPLS network for each user is provided to the user as a virtual network (VPN). .
Thereby, in L2VPN, a user can use an existing router without being aware of MPLS, and different users can use the same IP address repeatedly. Furthermore, the layer 2 frame can be transferred regardless of the layer 3 protocol of the network used by the user.
(P1-5) Label switching
The layer 2 frame transfer function is realized by label switching using a label exchange path of MPLS. A frame from, for example, an IP network adjacent to the MPLS network is transferred (routed or transferred) along a label exchange path (hereinafter referred to as LSP unless otherwise specified) set between routers belonging to the MPLS network. . In the MPLS network, routing is performed between an ingress router at the start point of the LSP (ingress edge router: LER, ingress LER or Ingress Router) and an egress router at the end point of the LSP (egress edge router: LER, egress LER or Egress Router). Each router provided between them provides a label table of received labels and transmitted labels, and each router transfers a frame by referring to this label table.
FIG. 29 is a diagram for explaining label switching in the MPLS network, in which an example in which a user's IP packet is encapsulated by MPLS is displayed. The MPLS network (MPLS domain) 100 shown in FIG. 29 includes an ingress router (LER) # 1, an egress router (LER) # 2 that transmits and receives packets to and from the user networks 51a and 51b, and an MPLS-compatible relay router (LSR [Label Switch Router]: label switch router) # 1.
In the following description, unless otherwise specified, a packet means a basic unit of transfer data, and a frame means a packet that is encapsulated by a higher layer of layer 2 with a header including a label added to the packet. means.
The IP packet from the user network 51a is given a label at the ingress router # 1, and the frame with this label is transferred to the relay router # 1. The relay router # 1 refers to the label of the received frame, transfers it with the label indicating the egress router # 2, and the egress router # 2 removes the MPLS frame label and transmits it to the user network 51b. The ingress router # 1 and the egress router # 2 look up the IP address of the forwarded IP packet, but the relay router # 1 performs the frame forwarding process using only the label table provided in itself.
In addition, the operation of assigning and transferring a label in the ingress router # 1 is called “push”, and the operation of transferring and transferring the label in the relay router # 1 is called “swap”. The operation in which the egress router # 2 removes the label and transfers it is called a pop.
(P1-6) FEC (Forwarding Equivalence Class)
Of the IP packets from the user network 51a, a set of packets having the same transmission destination (exit router) in the MPLS network 100 and subjected to the same processing is called FEC. For example, an IP subnetwork or an integrated network address corresponds to one FEC. Further, the label is used as a mark for distinguishing the same FEC. Further, the path to which the MPLS frame with the label is transferred corresponds to the above LSP. LSPs are used for point-to-point transfers, and when destination addresses are the same, they may be merged and used for multipoint-to-point transfers.
(P1-7) Point-to-point transfer using LSP
FIG. 30A is a diagram for explaining label swap in the MPLS network 100. The relay router (LSR) # 1 shown in FIG. 30A transfers a frame having the label “25”, for example, and the relay router (LSR) # 2 reads the label of the frame, and FIG. The tunnel label table (label table) 15 shown in FIG. The tunnel label table 15 holds a reception label (reception label value) and a transmission label (transmission label value) in association with each other. The relay router # 2 receives the reception label “ 25 ”is replaced with the transmission label“ 35 ”and transferred without using the routing table. Therefore, the label is changed to a different label every time it passes through the relay routers # 1 to # 3.
Further, the relay routers # 1 to # 3 correspond to one LSP, and the relay router # 2 assigns FEC “11” to this LSP. Thereby, a large number of LSPs are identified, and each of the relay routers # 1 to # 3 can logically set a plurality of LSPs. Since the LSP indicates a one-way path, two LSPs are required when a two-way path is required.
(P1-8) Description of PHP (Penultimate Hop Popping)
Note that PHP is known as an example of a label pop. PHP is a transfer method (frame transfer method) in which the relay router immediately before the egress router removes the label of the MPLS frame.
FIG. 31 is a diagram for explaining PHP, and an LSP is set between the ingress router # 1 and the egress router # 2. The IP packet shown in FIG. 31 is pushed at label L1 at the entrance, router # 1, and is encapsulated in an MPLS frame composed of (IP packet, label). This MPLS frame is swapped from the label L1 to the label L2 by the relay router # 1. Here, the egress router # 2 does not need to read the label from the relay router # 1. Therefore, the label is removed at the relay router # 2 immediately preceding the egress router # 2 and transferred to the user network 51b.
LSP can also be applied to point-to-multipoint transfer, and specific transfer methods have been studied and various drafts have been proposed.
(P1-9) MPLS frame format
For example, an ingress router # 1 has a field corresponding to a label (also referred to as a medium) of an original packet such as an IP packet or a SONET (Synchronous Optical Network) frame included in an MPLS frame. Give the field a label directly. For example, ATM (Asynchronous Transfer Mode) VPI (Virtual Path Identifier) / VCI (Virtual Channel Identifier): Frame Relay DLCI (Data Link Link Data) Equivalent to. VPI and VCI are paired to identify the transmission destination of the next stage of the frame.
On the other hand, for media that does not include a portion corresponding to a label, the ingress router # 1 adds a new header (Sim Header [SIMM Header]) to the frame. For example, PoS (Packet over SONET) and Ethernet are given shim headers.
FIG. 32A to FIG. 32C are diagrams showing examples of the format of an MPLS frame, and the MPLS frame shown in FIG. 32A has a shim header. As shown in FIG. 32B, this shim header can include different types of labels (n is a natural number). As a result, each router can set (stack) a plurality of labels on the MPLS frame.
Here, the label n is a bottom label (final label) given first, and the shim header of the MPLS frame is stacked in order from label n-1 to label 1 by each relay router. The part read by the relay router is only the outer label of the frame, and the order of removing the plurality of labels is the order of the outer label 1 to the label n. Therefore, a hierarchical LSP can be generated by using this stack. This stack label is used for provision of a virtual network (VPN) by MPLS.
Further, each of the labels 1 to n, as shown in FIG. 32 (c), includes a label value, EXP (indicating the name described in RFC 3032), S (Bottom of Stack) bit, TTL (Time To Live). ) Value. Here, EXP is for transmitting each information of CoS (Class of Service) / QoS (Quality of Service). Note that QoS is a technology that guarantees communication quality and secures bandwidth, etc., and CoS is a technology that sets a priority for a packet by a transmitting side device, and a router preferentially transfers a packet with a high priority. is there. The S bit indicates whether or not the label is a bottom label. When the assigned label is a bottom label, “1” is written, and when the label is not a bottom label, “0” is written. TTL is the number of transfers until the frame is discarded.
(P1-10) Label distribution protocol
Since the load of the MPLS network is constantly changing, each router replaces the reception label with a transmission label assigned in advance to the relay router in the next stage, and a label in which the reception label and the transmission label are associated with each other. A table is generated, and then the frame replaced with reference to the label table is transferred. By repeating this label change and packet transfer, a label is distributed to each relay router between the ingress router and the egress router.
The label distribution protocol used by each router is a control signal transmission / reception protocol. As this signaling protocol, LDP (Label Distribution Protocol: RFC3036) and RSVP-TE (Resource Resertion Protocol with Traffic Extensions: Extended Bandwidth Reservation Protocol) are known.
(P1-11) LDP
LDP is a signaling protocol dedicated to label distribution. LDP defines a method (or procedure) for distributing allocation information between FECs and labels in advance between adjacent routers or between distant relay routers. As an example of a label distribution method using this LDP, a DoD (Downstream on Demand) mode and a DU (Downstream Unlimited) mode are known.
FIG. 33A is a diagram for explaining the DoD mode. This DoD mode means that when the upstream relay router shown in FIG. 33A transmits an inquiry message (label request message) to the downstream relay router for the label corresponding to the FEC, the downstream relay router. Distributes the label to the upstream relay router (label mapping message).
FIG. 33B is a diagram for explaining the DU mode. In this DU mode, the downstream relay router having the FEC determines a label and transmits a label request message (label request) to the upstream relay router, and the upstream relay router transmits the label request. Upon receipt, a mapping indicating that a label has been assigned to the downstream relay router is transmitted.
Label distribution is possible by using this LDP. On the other hand, LSP represents the path itself and follows the shortest path of the routing protocol, and there is no dependency between LDP and LSP, and they are independent of each other. Further, LDP does not have a function of securing the bandwidth of LSP. For this reason, RSVP-TE (RSVP Traffic Engineering; RFC3209) and CR-LDP (Constrained Routed LDP: RFC3212) are known as techniques for realizing functions lacking LDP.
(P1-12) RSVP-TE
RSVP-TE is an extension of RSVP (Resource Reservation Protocol) created for bandwidth reservation in an IP network by adding a label distribution function. Moreover, CR-LDP adds the function required for LDP itself. RSVP-TE and CR-LDP basically set a point-to-point LSP in the DoD mode, realize a function called ER6 (Explicit Route 6) that explicitly specifies the LSP, and It also has a function of reserving bandwidth for each link (physical link or transfer path).
(P2) Draft-Martini method (first draft or martini draft)
(P2-1) Specified content
The martini draft specifies a method for transferring layer 2 packets point-to-point in the MPLS network, and a plurality of L2 protocols supported by the martini draft are known and are attracting the most attention. The thing is Ethernet.
(P2-2) Tunnel labels and VC labels specified by the martini draft
The tunnel is to set up a virtual path (tunnel LSP) between the ingress router and the egress router, and to set up VCLSP in the tunnel LSP. By mapping the layer 2 packet to the VCLSP, it becomes possible to transmit a packet having a dedicated address that cannot pass through the Internet and to communicate between networks using a protocol other than the IP protocol.
(P2-3) Transfer method example
FIG. 34 is a diagram for explaining a transfer method defined by the martini draft. 34, LSPs corresponding to the users A and B are established in the MPLS network 100. The users A and B shown in FIG. The ingress router # 1, the relay routers # 1 and # 2, and the egress router # 2 are all provider edge routers (PE) that provide an Ethernet virtual circuit (Ethernet VC).
First, the ingress router # 1 sets up a tunnel LSP (represented by a cylinder) between the ingress router # 1 and the egress router # 2. Here, a label (tunnel label) indicating the tunnel LSP is written on the outermost side of the packets 91a and 91b. In addition, ingress router # 1 sets two VCLSPs (represented by bold lines and dotted lines) in order to provide two Ethernet virtual circuits for the one tunnel LSP. The label indicating the VCLSP (VC label) is inside the tunnel label and is written outside the user L2 packet.
Further, the frame format shown in FIG. 34 is defined by the martini draft, in which a layer 2 header, a tunnel label (T1, T2, etc.), a VC label (A, B, etc.), and a CW (Control Word) are written. . Here, the layer 2 header is a header related to the physical link. The tunnel label is a label for transferring a frame through a virtual network (MPLS network). The VC label is for identifying a virtual circuit, and is distributed by extending the label LDP. Furthermore, the CW is for control, and is used as an option in the domain of Ethernet or VLAN (Virtual Local Area Network). The payload indicates the entire Ethernet frame excluding the preamble and the frame check sequence. Accordingly, MPLS frames are transferred using two types of stacked labels.
Further, the ingress router # 1 sets a common VCID (user identifier) for identifying the Ethernet virtual circuit to “2400”, for example, and further sets a VC label “2000” as a label indicating the VCID “2400”. . This is because the egress router # 2 cannot determine the user base (ingress router) using only the VCID. For this reason, a VC label is assigned to identify both the user and the ingress router # 1 indicating the user base. Thereby, the ingress router # 1 knows that the VC label “2000” should be assigned to the MPLS frame to be transferred to the egress router # 2 having the same VCID “2400”.
The ingress router # 1 adds the tunnel label T1 common to the users A and B and the VC labels A and B for identifying the users A and B to the packets 91a and 91b received from the users A and B. Assigned to 91 a and 91 b and transferred to the MPLS network 100.
As described above, in the frame transfer method defined by the martini draft, in the MPLS network, a label is set in two stages of a tunnel label and a VC label, and an MPLS frame is transferred using a plurality of VCLSPs.
(P2-4) Note that the martini draft is currently in the process of standardization, and the transport method (Transport of Layer 2 Frames Over MPLS, draft-martini-12 circuit-trans-mpls-09.txt) and the encapsulation method (Encapulsation). For Transport of Layer 2 Frames Over IP and MPLS Network, draft-martini-12 circuit-encap-mpls-04.txt) are published. In addition, many vendors have already begun mounting on products. VPLS is known as an extension of this martini draft.
(P3) VPLS (Virtual Private LAN Service)
VPLS is a technology that extends a wide area LAN service provided by many service providers, and is a multipoint layer 2 VPN technology that efficiently transmits Ethernet packets among layer 2 packets. The VPLS also has a layer 2 function necessary for transferring an MPLS frame including a layer 2 packet and an MPLS function (label exchange, label push, and label pop) of an ingress router or an egress router. The layer 2 function represents a source MAC address recognition function and a layer 2 switching function.
This layer 2 switching means a transfer path switching device or a device for switching the transfer path. Specifically, layer 2 switching represents filtering, forwarding, or flooding based on the MAC address of the frame. Note that flooding refers to all output ports associated with layer 2 switching (the port that received the frame) when a router having layer 2 switching receives a frame with an unknown destination address. Excludes) means that the received frame is copied and transmitted. Unless otherwise specified, these definitions are used in the same meaning hereinafter.
Further, VPLS will be described in detail. In the VPLS, the service provider emulates the switching of the layer 2 frame to the user (virtual implementation) using the MPLS network of the service provider itself, and the ingress router and the egress. The router has a layer 2 address learning function. In this frame transfer method using VPLS, in order to efficiently use bandwidth and eliminate redundant transfer, when a transmission destination MAC address is not registered in the MAC address table, an MPLS frame including an Ethernet packet is transmitted to the transmission destination. It is transmitted only to the exit router # 2 connected to the user site. For this reason, VPLS switches the Ethernet packet based on its destination MAC address.
On the other hand, the martini draft does not include a layer 2 switch function, that is, a function that realizes transfer based on learning of a MAC address, while allowing point-to-point transfer.
(P4) Draft-laser-vkompella (Virtual Private LAN Services over MPLS, draft-laserre-vkompella-ppvpn-vpls-01.txt) method (second draft)
(P4-1) Specified content
The second draft is one of concrete plans for realizing a service (VPLS) that virtually realizes layer 2 transfer in the MPLS network. This second draft generally defines a point-to-multipoint layer 2 VPN having a MAC address learning function that can be used as a backbone (core line) of a wide area LAN service. This second draft describes MAC address learning at the ingress router and egress router and multicast and broadcast operations in the MPLS network.
(P4-2) VCID (VC-Identification: user identifier for identifying each user)
Specifically, each router is assigned a VCID, and a full mesh virtual network is constructed using this VCID.
Thereby, the MPLS network is regarded as a virtual bridge, and the service provider can provide VPLS to the user in the MPLS network.
(P4-3) Bridge (Bridge function)
Bridge means transferring a frame in layer 2 based on the MAC address table, and performs filtering, forwarding, or flooding of the frame.
(P4-4) Cast in MPLS network
Existing LANs support multicast and broadcast services. On the other hand, at present, the MPLS network itself does not support these services.
Here, multicast is to transmit the same data by designating a plurality of routers (router addresses) in the network, and broadcast is to send data to an unspecified number of routers (router addresses). In addition, unicast refers to transmitting data to a single router (router address).
However, in order for an MPLS network to use VPLS, multicast, broadcast, and unicast traffic must be appropriately transferred between user sites that have the same multicast or broadcast domain and are connected to the MPLS network. is there.
In order to realize appropriate transfer of each traffic, a MAC address learning function is required in LSP units (or for each LSP). In addition, multicast, broadcast and unknown destination unicast flooding is achieved by duplicating the frame for the required VCLSP.
(P4-5) Construction of virtual network (VPN)
When a unicast LSP is used in an MPLS network, a full mesh VC is created between an ingress router and an egress router corresponding to a node constituting the virtual network, and thereby a virtual network is constructed. Since this VC indicates only one direction, there exists a VC pair that transmits traffic in both directions between the ingress router and the egress router. Here, the exchange of the VC label is performed depending on LDP or the like, and the user VPN is identified using a unique 32-bit VPNID, for example.
(P4-6) Frame transfer example
User traffic is transferred to a specific virtual network according to the FEC setting based on the input port of the router or VLAN. The ingress router and egress router provide a separate MAC address table called VFI (Virtual Forwarding Instance) for each virtual network to be supported, and recognize the source MAC address like a normal layer 2 switch (L2 switch). It is like that.
Here, in order to transfer a frame, a bridge device (device having a bridge function) in the MPLS network must be provided with a function of holding VCLSP and a destination MAC address in association with each other. On the other hand, it is practically impossible to statically associate all possible combinations of destination MAC addresses and VCLSPs. Accordingly, both the ingress router and the egress router need to associate and hold an inbound VC label and an outbound VC label so that the destination MAC address can be dynamically learned.
(P4-7) VC label allocation method
FIG. 35 is a diagram for explaining a VC label allocation method. The MPLS network 100 shown in FIG. 35 is a layer 2 virtual network using MPLS, and each of the users A1 to A4 is partitioned by the same VPLS segment (a device having a layer 3 function such as a router). This is a network and shows a unit domain for transmitting a broadcast frame.) All are assigned VCID “1234”. The ingress router # 1 has a MAC address table that holds a destination MAC address and a VC label in association with each other for transferring an Ethernet packet, and uses the MAC address to search for the VC label. .
The label distribution method is performed by the egress router # 2 notifying the ingress router # 1 of information related to the VC label (label signaling). Specifically, the egress router # 2 transmits to the ingress router # 1 “a MPLS frame that is destined for the egress router # 2 and whose VCID is“ 1234 ”is assigned with the VC label 201”. Notify that.
(P4-8) Example of transfer between routers
When the ingress router # 1 receives a packet including the destination MAC address M2 having no entry from the user site connected to the ingress router # 1 itself, the ingress router # 1 sends to the LSP having all the VC labels belonging to the virtual network of the user site. In contrast, an MPLS frame is transmitted.
FIG. 36 is a block diagram of the ingress router # 1. When the frame receiving unit 93a of the ingress router # 1 shown in FIG. 36 receives a packet from the user network 51a, the MAC bridge processing unit 93b refers to the MAC address table 93d and transmits a frame from the first frame transmitting unit 93c.
If the frame is unicast, the frame is given a VC label by the VC label push unit 93f, and a tunnel label is given by the tunnel label push unit 93g based on the information held in the tunnel label table 93h. . Then, the MPLS frame to which each label is assigned is created with a layer 2 header by the layer 2 header creation unit 93i and output from the second frame transmission unit 93j. In the MAC bridge processing unit 93b, if the frame is a multicast frame, the frame is duplicated by the frame duplicating unit 93e and input to the VC label push unit 93f.
Further, when the ingress router # 1 receives a frame whose destination is unknown, it transfers the received frame to the VCLSP associated with the virtual network to which the received frame belongs.
FIG. 37 is a diagram for explaining flooding. The ingress router # 1 shown in FIG. 37 receives the frame including the transmission source MAC address M1 and the transmission destination MAC address (destination MAC address) M2 from the user A1, and if the transmission destination MAC address M2 is not known, Duplicate the MPLS frame for. Then, the ingress router # 1 transmits MPLS frames having VC labels 201 and 301 to the corresponding egress router. Thereby, it is possible to flood the unicast whose destination is unknown.
FIG. 38 is a block diagram of the relay router # 1 (LSR # 1). In relay router # 1 shown in FIG. 38 (relay router # 2 has the same configuration), when a frame is received by frame receiver 94c, the header is removed by L2 header remover 94d, and the label switch This is input to the section 94b. The label switch unit 94b refers to the tunnel label table 94a to swap tunnel labels, and the swapped frames are output via the L2 header creation unit 94e and the second frame transmission unit 94f, respectively. Therefore, the relay router # 1 performs transfer processing with reference to only the tunnel label of the received frame.
On the other hand, the processing using the VC label binding table is shown in FIGS.
FIG. 39 is a block diagram of the egress router # 2 (LER # 2). When the egress router # 2 shown in FIG. 39 receives the frame, it refers to the VC label binding table 95a as in normal layer 2 switching. For example, as shown in FIG. 40, the address learning unit 95b refers to the VC label binding table 95a when the VC label of the received frame is 201 and the source MAC address is M1, and vice versa. An entry is created in the MAC address table 95c (FIG. 39) in association with the VC label 102 which is the direction VC.
FIG. 41 is a diagram for explaining unicast transfer. When the egress router # 2 shown in FIG. 41 receives a frame having the transmission destination MAC address M1 from the user site (users A2 and A4) connected to the egress router # 2, the egress router # 2 from the MAC address table (not shown) The MAC address M1 is searched to obtain the VC label 102. Then, the egress router # 2 sets the VC label of the received frame to 102, and transmits the set frame to the MPLS network 100.
After the ingress router # 1 receives the frame having the transmission source MAC address M2, an entry is created in the MAC address table by address learning, and the frame having the MAC address M2 as the transmission destination is unicast as an egress router. Sent to # 2.
(P4-9) Relationship between ingress router # 1 and egress router # 2 and MAC address
Therefore, neither the ingress router # 1 nor the egress router # 2 recognizes all MAC addresses of all virtual networks to which the MPLS protocol is applied. Both ingress router # 1 and egress router # 2 recognize only the MAC address associated with the virtual network to be accommodated.
On the other hand, all the relay routers # 1 to # 3 perform only label switching without recognizing the MAC address.
(P5) Known technology
In a connectionless communication network, a configuration has been proposed in which a terminal device and a relay device each determine a transfer destination while communicating with a route control device (for example, Patent Document 1).
Thereby, in the connectionless communication network, the convergence time of the control message and the bandwidth consumption of the control message are kept small, and multicast communication can be performed stably and economically.
(P6) Explanation of issues
However, when the protocol specified by the second draft (Draft-lasere-vkompella system) is used, the load on the MPLS network 100 becomes excessive.
FIG. 42 is a diagram for explaining broadcasting using the prior art. The ingress router # 1 shown in FIG. 42 receives a multicast frame, a broadcast frame, or a unicast frame with an unknown destination received from the user site. For example, when the relay router # 1 receives a broadcast frame, the relay router # 1 copies received frames by the number of VCs that need to be transmitted, and transmits the plurality of copied frames to the subsequent relay routers # 2 and # 3.
For this reason, since a large number of frames are transferred to the MPLS network 100, a large number of the same frames are transmitted to the same link, and the load on the MPLS network 100 increases.
When receiving the unicast frame whose destination is unknown, the ingress router # 1 transmits the unicast frame to all the routers in the MPLS network 100. Therefore, the load on the MPLS network 100 also increases. In particular, in a best-effort network, a large amount of duplicated frames are transmitted, so that there is a problem that the bandwidth cannot be used effectively.
The ingress router # 1 once registers the MAC address of the received multicast frame in the MAC address table, and then sets all the multicast frames received thereafter as the destination MAC address using the MAC address registered in the MAC address table. Transmit to egress router # 2. Therefore, there is a problem in that useless frame duplication and frame transfer are incurred between the ingress router # 1 and the egress router # 2, thereby pressing the load on the virtual network.
Further, the MPLS network 100 is not provided with a layer 2 address learning function necessary for the layer 2 switch, and the service provider provides a point-to-point with a layer 2 address learning function to the user in his own network. There is a problem that a multipoint layer 2 virtual network cannot be efficiently provided.
In addition, the route control device described in Patent Document 1 sets a transfer route by transmitting a route setting message to the terminal device and the relay device.
However, the path control device described in Patent Document 1 is not in a layer 2 virtual network to which MPLS is applied. Therefore, the route control device does not perform address learning. In addition, the routing control device does not combine source MAC address recognition, layer 2 switching, ingress router or egress router label exchange, label push and label pop (layer 2 function).
JP 2002-77239 A

The present invention was devised in view of such a problem, and in a layer 2 virtual network to which MPLS is applied, while realizing address learning indispensable for the layer 2 function, the load on the network can be suppressed to a minimum. An object of the present invention is to provide a router, a frame transfer method, and a lower layer frame virtual transfer system capable of efficiently using a bandwidth of a network and preventing unnecessary frame duplication and frame transfer between an ingress router and an egress router. And
Therefore, the router of the present invention is a virtual network capable of transferring a label switch frame having a lower layer frame including a protocol identifier for identifying duplication or non-replication and a hierarchical path identifier based on the hierarchical path identifier. A determination unit that determines whether to receive or not to copy a received lower layer frame or a received label switch frame based on a protocol identifier of the received lower layer frame or the received label switch frame. The received lower layer frame or the received label switch frame determined to be the target is passed through, and the received lower layer frame or the received label switch frame determined to be duplicated by the determination unit is assigned a hierarchical path identifier for unicast. Hierarchical path identifier and user identification for multicast It is characterized in that it is constructed to include a transfer processing unit for transferring by applying at least one of the.
Therefore, in this way, the load on the virtual network can be minimized.
The router can be configured as any one of the following routers (I) ingress edge router, (II) relay router, and (III) egress edge router.
(I) The router is configured as an ingress edge router that pushes a label switch frame in which a hierarchical path identifier is assigned to an external lower layer frame from outside the virtual network to the virtual network, and the determination unit includes a MAC to be copied Based on a multicast MAC address table in which addresses and a plurality of output ports are associated with each other, it is determined whether or not the received external lower layer frame needs to be replicated. The external lower layer frame can be configured to be transferred with at least one of the labels or identifiers shown in the following (a) to (d).
(A) Label of a user base identification path selected from a plurality of user base identification paths for transferring a unicast frame (b) User base identification path label indicating the transfer source base of the replication target frame and virtual path of the replication target frame (C) Multicast label for multicast (d) User identifier for identifying user Therefore, in this way, the burden for duplicating the same frame is reduced.
(II) The router is configured as a relay router that transfers a label switch frame to a virtual network based on a hierarchical path identifier, and the determination unit is based on a protocol type (protocol type identifier) included in the label switch frame. The label switch frame is determined to be a replication target or non-replication target, and the transfer processing unit bridge-transfers the label switch frame determined to be a non-replication target by the determination unit and is determined to be a replication target by the determination unit. Based on the multicast VC label table in which at least the user base identification path label and the processing content for the label switch frame to be copied are associated with each other for the label switch frame, the duplication process, the user base identification path label and the tunnel path label assignment process, I will do It can be configured to.
Accordingly, in this way, each relay router reduces the burden of layer 3 processing, and the same frame is not duplicated and transferred on the same link, thereby preventing an increase in the load on the virtual network.
(III) The router is configured as an egress edge router that removes the hierarchical path identifier assigned to the label switch frame transferred from the virtual network and transmits the label switch frame to the outside of the virtual network. And a pop processing unit that transmits a lower layer frame from which the hierarchical path identifier has been removed to the outside of the virtual network. In this way, useless frame duplication and frame transfer between the ingress router and egress router can be avoided, and the load on the virtual network can be reduced.
Furthermore, in the frame transfer method of the present invention, the ingress edge router that pushes a label switch frame in which a hierarchical path identifier is assigned to an external lower layer frame from outside the virtual network to the virtual network is received by the received lower layer frame or received label. A determination step for determining a copy target or a non-replication target based on a protocol identifier of a received lower layer frame or a received label switch frame for the switch frame, and a received lower layer in which the ingress edge router is determined as a non-replication target in the determination step A hierarchical path identifier for unicast and a hierarchical path for multicast are added to the received lower layer frame or the received label switch frame that is passed through the layer frame or the received label switch frame and determined to be duplicated in the determination step. Identifier and user identifier At least one of a hierarchical path identifier for unicast, a hierarchical path identifier for multicast, and a user identifier. And a relay step for duplicating or transferring the received lower layer frame or the received label switch frame transferred in the transfer processing step.
Therefore, in this way, the transmission band of the virtual network can be used efficiently.
The forwarding processing step forwards the label switch frame in which the ingress edge router assigns the multicast address to the transmission destination address of the received external lower layer frame, and the relay step includes the multicast router and the forwarding address router. Based on the multicast MAC address table associated with the address, the label switch frame transferred in the transfer processing step can be copied and transferred. In this way, the virtual network can be a layer 2 protocol other than Ethernet, for example. Multicast and broadcast can also be realized for packets or frames having
Then, the transfer processing step includes a step of copying the received external lower layer frame based on the MAC address table in which the ingress edge router associates the MAC address to be copied and the user base identification path for transferring the unicast frame. The determination step for determining necessity and the ingress edge router are the same as the output port for transferring the replication target frame of the plurality of user base identification paths for transferring the non-replication target frame of the user base identification path A selection step of selecting a plurality of non-replication target frames to be transferred from the output port from user base identification paths, and a transmission step in which the ingress edge router transmits a label switch frame having the user base identification path selected in the selection step; In the relay step, the relay router uses multicast Based on the use user base identification path label and the destination router addresses and multicast user base identification path label table that associates, may be the label switch frame transmitted by the transmission step to duplicate forwarding.
Therefore, in this way, a relay router that has not conventionally had both the multicast and broadcast functions can use both the multicast and broadcast functions, thereby enabling virtual transfer of layer 2 packets.
Further, the forwarding processing step includes a setting step in which the ingress edge router sets the multicast user base identification path and the multicast tunnel path, and the ingress edge router passes through the multicast user base identification path and the multicast tunnel path. And a forwarding step for forwarding the label switch frame, wherein the relay step is based on the multicast label table in which the first relay router associates the multicast user base identification path label with the forwarding destination router address. A replica transfer step for replicating and transferring the label switch frame duplicated and transferred in the replica transfer step by the second relay router and the multicast user site identification path set in the setting step and the multicast switch It is also possible to replicate transferred via the N'nerupasu.
Therefore, in this way, by providing the multicast LSP at the ingress edge router, the user can use the existing network resources as they are, and the service provider can add value to the virtual network with minimal investment. Can be given.
The forwarding processing step includes a setting step in which the ingress edge router sets a base / tunnel identification path (base and tunnel identification path) for identifying the multicast user base and the multicast tunnel, and the ingress edge router performs the base / tunnel identification. And a forwarding step for forwarding the label switch frame via the path. The relaying step is based on the second multicast label table in which the first relay router associates the base / tunnel identification path and the forwarding destination router address. Duplicate transfer step that duplicates and forwards the label switch frame, and the second relay router duplicates the label switch frame duplicated and transferred in the duplicate transfer step via the base / tunnel identification path set in the setting step. You can also transfer this way , It is eliminated transfer of redundant information data, thereby improving use efficiency of the transmission band in the virtual network.
Further, the forwarding processing step includes: a setting step for setting a multicast user base identification path and a multicast tunnel path between the ingress edge router and each of the plurality of egress edge routers; Multiple label switch frames that are forwarded to multiple relay routers from the same output port that forwards the target frame to each relay router via the multicast user base identification path and multicast tunnel path that are set in the setting step A relay step in which each relay router transmits the label switch frame transmitted in the transmission step to the multicast user base identification path and the multicast tunnel path set in the setting step. Duplicate transfer via It is also possible.
Accordingly, in this way, the relay router can eliminate redundant processing of the received frame, and the frame transfer of the MPLS network is also made efficient.
The forwarding processing step is performed between the ingress edge router and each of a plurality of egress edge routers that removes the hierarchical path identifier given to the label switch frame forwarded from the virtual network and transmits it to the outside of the virtual network. Steps for setting a base / tunnel identification path for identifying a multicast user base and a multicast tunnel, respectively, and an ingress edge router forwarding to a plurality of relay routers from the same output port as the destination port for forwarding the replication target frame A granting step of assigning a user identifier for identifying the user to the inside of the plurality of label switch frames, and a label switch frame including the user identifier assigned to the inside of the frame by the ingress edge router in the setting step. Base / tunnel identification The relay step transmits the label switch frame transmitted in the transmission step to the relay router via the base / tunnel identification path set in the setting step. In this case, the egress edge router may include a transfer step for copying and transferring, and a learning step in which the egress edge router learns an address using the base / tunnel identification path used in the transfer step and the user identifier assigned in the assigning step.
Therefore, in this way, since the VCID exhibits both user identification and user site identification functions, a new point-to-multipoint path can be set for the tunnel LSP and VCID, and frame transfer can be efficiently performed.
The transfer processing step includes: an ingress edge router; and each of a plurality of egress edge routers that removes the hierarchical path identifier assigned to the label switch frame transferred from the virtual network and transmits it to the outside of the virtual network. A setting step for setting a base / tunnel identification path for identifying a multicast user base and a multicast tunnel, and an ingress edge router having a plurality of relay routers from the same output port as the output port for transferring the replication target frame An assignment step for assigning the base / tunnel identification path set in the setting step to the outside of the plurality of label switch frames transferred to the network, and a label to which the ingress edge router is assigned the base / tunnel identification path in the assignment step The switch frame was set in the setting step Transmission step to transmit to each relay router via the point / tunnel identification path, and the relay step, each relay router sends the label switch frame transmitted in the transmission step to the base / A transfer step of replicating and forwarding via the tunnel identification path, and a forwarding step of each relay router replicating and forwarding the label switch frame transmitted in the transmission step via the base / tunnel identification path set in the setting step; The egress edge router may include a learning step of learning an address using the base / tunnel identification path used in the transfer step.
Therefore, in this way, a new label switching path for multicast is set between the ingress edge router and the egress edge router, the egress edge router can identify the source ingress edge router, and the point-to-multipoint path is end. Provided two-end.
Furthermore, the lower layer frame virtual forwarding system of the present invention includes an ingress edge router, a relay router, and an egress edge router, and the ingress edge router, the relay router, and the egress edge router have received lower layer frames or received labels. A determination unit that determines a copy target or a non-replication target based on a protocol identifier of a received lower layer frame or a received label switch frame, and a received lower layer frame or received label that is determined as a non-replication target by the determination unit The received lower layer frame or the received label switch frame that is passed through the switch frame and determined to be duplicated by the determination unit includes a hierarchical path identifier for unicast, a hierarchical path identifier for multicast, and a user identifier. One or more of It is configured to include a transfer processing section for.
Therefore, in this way, for example, MAC address learning at the ingress edge router or egress edge router and multicast and broadcast operations in the MPLS network can be supported. For example, the user can use point-to-multipoint layer 2 VPN as the backbone of the wide area LAN service. Available as

FIG. 1 is a schematic configuration diagram of an MPLS-layer 2-VPN according to the first embodiment of the present invention.
FIG. 2 is a diagram for explaining a tunnel label and a VC label.
FIG. 3A is a diagram showing a format example of a multicast MPLS frame according to the first embodiment of the present invention.
FIG. 3B is a diagram showing information types included in the multicast MPLS frame according to the first embodiment of the present invention.
FIG. 4A to FIG. 4C are diagrams for explaining tunnel labels according to the first embodiment of the present invention.
FIG. 5 is a block diagram of the ingress router according to the first embodiment of the present invention.
FIG. 6 is a block diagram of the relay router according to the first embodiment of the present invention.
FIG. 7 is a block diagram of the egress router according to the first embodiment of the present invention.
FIG. 8A is a diagram showing an example of a multicast MAC address table according to the first embodiment of the present invention.
FIG. 8B is a diagram showing an example of an address learning VC label table according to the first embodiment of the present invention.
FIG. 8C is a diagram showing an example of a multicast VC label table according to the first embodiment of the present invention.
FIGS. 9A and 9B are diagrams for explaining a frame transfer method according to the first embodiment of the present invention.
FIG. 10 is a configuration diagram of an MPLS network according to the second embodiment of the present invention.
FIG. 11 is a block diagram of an ingress router according to the second embodiment of the present invention.
FIG. 12 is a block diagram of a relay router according to the second embodiment of the present invention.
FIG. 13 is a configuration diagram of an MPLS network according to the third embodiment of the present invention.
FIG. 14 is a block diagram of an ingress router according to the third embodiment of the present invention.
FIG. 15 is a block diagram of a relay router according to the third embodiment of the present invention.
FIG. 16 is a configuration diagram of an MPLS network according to the fourth embodiment of the present invention.
FIG. 17 is a block diagram of an ingress router according to the fourth embodiment of the present invention.
FIG. 18 is a block diagram of a relay router according to the fourth embodiment of the present invention.
FIG. 19 is a configuration diagram of an MPLS network according to the fifth embodiment of the present invention.
FIG. 20 is a block diagram of an ingress router according to the fifth embodiment of the present invention.
FIG. 21 is a block diagram of a relay router according to the fifth embodiment of the present invention.
FIG. 22 is a configuration diagram of an MPLS network according to the sixth embodiment of the present invention.
FIG. 23 is a block diagram of an egress router according to the sixth embodiment of the present invention.
FIG. 24 is a configuration diagram of an MPLS network according to the seventh embodiment of the present invention.
FIG. 25 is a block diagram of an egress router according to the seventh embodiment of the present invention.
FIG. 26 is a diagram showing an example of a multicast LSP according to the seventh embodiment of the present invention. FIG. 27A illustrates a multicast VC label and a multicast tunnel label according to the third embodiment of the present invention. FIG.
FIG. 27B is a diagram showing an example of a multicast VC label table according to the fourth embodiment of the present invention.
FIG. 27C is a diagram for explaining a multicast LSP according to the fourth embodiment of the present invention.
FIG. 28A is a diagram showing an example of a frame format according to the fourth embodiment of the present invention.
FIG. 28B is a diagram showing an example of a multicast VC label table according to the fifth embodiment of the present invention.
FIG. 29 is a diagram for explaining label switching in the MPLS network.
FIG. 30A is a diagram for explaining label swap in the MPLS network.
FIG. 30B shows an example of a label table.
FIG. 31 is a diagram for explaining PHP.
FIG. 32A to FIG. 32C are diagrams showing examples of formats of MPLS frames.
FIG. 33A is a diagram for explaining the DU mode.
FIG. 33B is a diagram for explaining the DoD mode.
FIG. 34 is a diagram for explaining a frame transfer method defined by the martini draft.
FIG. 35 is a diagram for explaining a VC label allocation method.
FIG. 36 is a block diagram of the ingress router.
FIG. 37 is a diagram for explaining flooding.
FIG. 38 is a block diagram of the relay router.
FIG. 39 is a block diagram of the egress router.
FIG. 40 is a diagram for explaining address learning.
FIG. 41 is a diagram for explaining unicast transfer.
FIG. 42 is a diagram for explaining broadcasting using the prior art.

(A) Description of the first embodiment of the present invention
FIG. 1 is a schematic configuration diagram of an MPLS-layer 2-VPN (a layer 2 virtual network or VPN network to which MPLS is applied; hereinafter referred to as an MPLS network) according to the first embodiment of the present invention. The MPLS network 50 shown in FIG. 1 includes an MPLS frame (a layer 2 frame (lower layer frame) including a protocol identifier for identifying duplication or non-duplication, and a hierarchical path identifier such as a tunnel label and a VC label ( The label switch frame) can be transferred based on the tunnel label and the VC label.
Here, a thick black line connecting the routers represents a VC label, and a tunnel label in VPLS represents a path connecting between PEs (provided as provider edge routers and LER) in the MPLS network 50. .
The protocol identifier identifies both a multicast for transmitting the same data by specifying a plurality of routers (router addresses or router destinations) and a broadcast for transmitting data to an unspecified number of routers as replication targets, and This is for identifying a unicast that transmits specific data by designating a single address as a non-replication target.
Note that the relationship between the lower layer and the upper layer can be determined relatively.
(1) Schematic configuration
(1-1) MPLS network 50 and user networks 51a and 51b
The MPLS network 50 is connected to external user networks 51a and 51b. Here, the user networks 51a and 51b are IP networks, for example, and each includes a LAN, an IP router, a personal computer (personal computer), a workstation, or the like. In addition, what attached | subjected code | symbol A1-A2 and code | symbol B1-B4 shown in FIG. 10 is the user (communication apparatus or communication terminal) which belongs to user network 51a, 51b, respectively.
The MPLS network 50 includes, for example, an existing tunnel label, a VC label, and a VCID, and a multicast tunnel label and a VC label to which the frame transfer method of the present invention is applied to a layer 2 frame such as an Ethernet packet and frames of various protocols. The MPLS frame to which one or more labels are attached is forwarded to one or more routers belonging to the MPLS network 50, and each router refers to the tunnel label, VC label, etc. to determine the forwarding path. It comes to decide.
The MPLS network 50 includes a large number of routers corresponding to MPLS including an ingress router (LER) 1, relay routers (LSR) 2a to 2c, and egress routers 3a to 3c. In the following description, when these ingress router 1, relay routers 2a to 2c, and egress routers 3a to 3c are generically referred to, they are also simply referred to as routers.
The frame transfer direction in the MPLS network 50 exemplifies the direction from the ingress router 1 to each of the egress routers 3a to 3c among many directions, and the transfer direction can be set between desired routers.
(1-2) Tunnel label and VC label
FIG. 2 is a diagram for explaining a tunnel label and a VC label. The link 53 shown in FIG. 2 is an actual transmission path between the relay router 2a and the relay router 2b, for example. The ingress router 1 sets, for example, two tunnel LSPs 54 and 55 for the link 53 between any one or all of the egress routers 3a to 3c, and further, for example, for each of the tunnel LSPs 54 and 55, for example. Three VC labels 54a to 54c and VC labels 55a to 55c are set.
The frames that can be transferred by the MPLS network 50 are not only Ethernet packets but also frames having various protocol formats, such as SONET frames, added with a tunnel label and a VC label to be converted into MPLS frames. (Thus called MPLS).
(1-3) Packets and frames
The user networks 51a and 51b transmit IP packets and Ethernet packets (MAC packets) to the MPLS network 50, respectively. Here, the Ethernet packet is a basic unit of transfer data and is called a layer 2 packet. The IP packet is encapsulated with a header added by an upper layer (for example, layer 3) of layer 2, and this is a layer 3 frame.
Further, a frame transferred in the MPLS network 50 is encapsulated with an MPLS header, and is called an MPLS frame.
Then, the MPLS network 50 transmits to each of the user networks 51a and 51b the header from which the MPLS frame is removed, and specifically transmits the original packet or frame before being transferred to the MPLS network. . That is, IP packets, Ethernet packets, etc. are transmitted.
In the following description, it is assumed that the above-described packet or frame is transferred unless otherwise specified.
(1-4) Ingress router 1, relay routers 2a to 2c, and egress routers 3a to 3c
The ingress router 1 (FIG. 1) is configured as an ingress edge router that pushes an MPLS frame in which a tunnel label and a VC label are added to an Ethernet packet from the outside of the MPLS network 50 to the MPLS network 50. The ingress router 1 functions as a start node provided at an edge where the MPLS network 50 is connected to the user network 51a, and communicates with both the relay router 2a belonging to the MPLS network 50 and other relay routers belonging to the MPLS network 50. To do.
Each of the relay routers 2a to 2c is configured as a relay router that transfers an MPLS frame to the MPLS network 50 based on the tunnel label and the VC label. Then, for example, the relay router 2a refers to the tunnel label and the VC label included in the MPLS frame, and uses the MPLS frame for the other relay routers 2b and 2c belonging to the MPLS network 50, one ingress router, one egress, or all egress The data is transferred to the routers 3a to 3c and the address learning is also performed. Similarly to the relay router 2a, the relay routers 2b and 2c also transfer MPLS frames.
Each of the egress routers 3a to 3c is configured as an egress edge router that removes the tunnel label and the VC label attached to the MPLS frame transferred from the MPLS network 50 and transmits them to the outside of the MPLS network 50. It functions as an end point node in the MPLS network 50.
For routing in the MPLS network 50, the relay routers 2a to 2c provided between the ingress router 1 at the start point of the LSP (label exchange path) and the egress routers 3a to 3c at the end point of the LSP are respectively A label table that holds the correspondence between the reception label and the transmission label of the MPLS frame is provided, and the process is performed based on the label table. The relay routers 2a to 2c refer to this label table and swap and transfer the tunnel label and VC label of the received frame.
As a result, the external frame (or external packet) transferred from the user network 51a to the MPLS network 50 includes a tunnel label and a VC label in the existing technology at the ingress router 1, and a tunnel label newly defined by applying the present invention. , A VC label, and a VCID or the like selected later (tunnel label, VC label) or (VCID) is added to form an MPLS frame and transferred to the relay router 2a at the next stage.
The MPLS frame is then referred to by the relay router 2a with reference to the label of the MPLS frame, the forwarding destination router is determined, and the label of the MPLS frame is replaced with the label assigned to the relay routers 2b and 2c in the next stage. Forwarded. Then, the MPLS frame transferred through the MPLS network 50 is output from each of the egress routers 3a to 3c to the user networks 51a and 51b.
In the MPLS network 50, an MPLS frame can be transferred from each egress router 3a to 3c to the ingress router 1. However, unless otherwise specified, a frame is transmitted from the ingress router 1 to each egress router 3a to 3c. An example of transfer will be described.
(2) Frame format
FIG. 3A is a diagram showing a format example of a multicast MPLS frame according to the first embodiment of the present invention, and FIG. 3B is a diagram showing a multicast MPLS frame according to the first embodiment of the present invention. It is a figure which shows the information classification contained. The multicast MPLS frame 69 shown in FIG. 3A is used for a layer 2 frame (user frame) 70 including a “protocol type” (protocol identifier) for identifying duplication or non-duplication, and MAC bridge processing described later. And an MPLS header 71 in which header information (tunnel label and VC label) is written.
The layer 2 frame 70 shown in FIG. 3A has fields (areas) such as “user data”, “protocol type”, source MAC address “X”, and destination MAC address “Y”.
Also, the MPLS header 71 shown in FIG. 3A has “VC”, “ET”, “a”, and “b” fields, and these fields are added to the outside of the layer 2 frame 70 in order. Has been. That is, they are stacked.
Here, “VC” is a field indicating a VCID (user identifier) such as “1234”, for example, and “ET” is a field indicating a “protocol type” of the frame, and represents an Ethernet packet, for example, “0x8848”. (0x indicates a hexadecimal number) or the like is written. “A” is a “source MAC address” (for example, p1), “b” is a “destination MAC address”, and “0xFFFFFFFFFFFF” indicating broadcast is written therein.
Here, both the source MAC address and the destination MAC address are included in both the layer 2 frame and the MPLS frame, and the ingress router 1 transmits the “source MAC address” and “transmission” of the layer 2 frame. The “destination MAC address” is copied and written in the “source MAC address” and “destination MAC address” of the MPLS frame. That is, for the layer 2 frame, the ingress router 1 writes “destination MAC address” of the layer 2 header, and when the layer 2 frame is a multicast frame, the “destination MAC address of user frame” is written. In this case, “0xFFFFFFFFFFFF” is written. Note that the same applies to the case where the destination is unknown.
Further, the ingress router 1 writes the MAC address “p1” of the ingress router 1 itself in the “source MAC address” represented by “a” and “b” in the layer 2 header, and the “ether type” 0x8848 "is written.
On the other hand, the relay routers 2a to 2c identify the multicast by referring to the “ether type” of the layer 2 header of the received frame, and output the received frame to the MAC bridge processing unit 10b (see FIG. 6). The MAC bridge processing unit 10b searches the multicast MAC address table 11a (FIG. 8A) for whether the destination MAC address “0xFFFFFFFFFFFF” included in the received frame or the multicast address is registered. Know and determine the output port to send the frame.
As described above, each of the routers (ingress router 1, relay routers 2a to 2c, and egress routers 3a to 3c) processes the MPLS frame by referring to the outside of the MPLS header 71.
(3) An example of a VC label and a tunnel label in the MPLS network 50
The VC labels of the LSPs from the ingress router 1 to the egress routers 3a to 3c shown in FIG. 1 are associated with output ports, and are set as 102, 103, and 104, respectively, as an example.
4 (a) to 4 (c) are diagrams for explaining the tunnel labels according to the first embodiment of the present invention, and the reference numerals shown in FIGS. 4 (a) to 4 (c) are used. Among them, those having the same reference numerals as those described with reference to FIG. The tunnel labels (label values 21 to 23) shown in FIG. 4A are given between the routers. For example, the distance between the ingress router 1 and the relay router 2a is 21, the distance between the relay router 2a and the relay router 2b is 22, and the distance between the relay router 2b and the egress router 3a is set to 23 before the frame transfer. The Similarly, the tunnel label between the ingress router 1 and the egress router 3b and the tunnel label between the ingress router 1 and the egress router 3c are respectively labeled values shown in FIGS. 4B and 4C (for example, 31). To 33, 41 to 43) are preset. Various values can be used for these tunnel label values.
(4) Configuration of ingress router 1
The ingress router 1 transfers the MPLS frames from the relay routers 2a to 2c to the user network 51a, and also multicast frames from a personal computer, workstation, LAN, or the like (hereinafter referred to as a user site) belonging to the user network 51a. The broadcast frame and the unicast frame are transferred to the relay routers 2a to 2c of the MPLS network 50.
The ingress router 1 determines the cast type by reading the “protocol type” (see FIG. 3B) included in the layer 2 frame from the user network 51a. Further, the ingress router 1 transmits broadcast frames or multicast frames to the egress routers 3a to 3c to the relay routers 2a to 2c and the like belonging to the same MPLS network 50 having the user identifier VCID “1234”. You can also do it.
FIG. 5 is a block diagram of the ingress router 1 according to the first embodiment of the present invention. The ingress router 1 shown in FIG. 5 includes a frame reception unit 10a, a MAC bridge processing unit (determination unit: also referred to as a MAC bridge unit) 10b, a first frame transmission unit 10c, a multicast MAC address table 11, and a label switch unit 12. , Tunnel label table 15, VCID adding unit (VC ID adding unit) 13, L2 header creating unit 10d, second frame transmitting unit 10e, input port group (receiving port group) 56a, output port group (transmitting port group) 56b It is composed.
Here, the input port group 56a has a plurality of reception ports for packets or frames, and the frame reception unit 10a receives both a frame from the user network 51a and a frame from the relay routers 2a to 2c as a plurality of input ports. Is received via The output port group 56b has a plurality of transmission ports for packets or frames, and the first frame transmission unit 10c transfers the MPLS frames from the relay routers 2a to 2c from the plurality of output ports to the user network 51b. The frame from the MAC bridge processing unit 10b is transmitted.
Further, the MAC bridge processing unit 10b determines whether the reception layer 2 frame is to be replicated or non-replicated based on the protocol identifier of the reception layer 2 frame, and functions as a determination unit.
Further, the label switch unit 12, the VCID adding unit 13, the tunnel label table 15, the L2 header creating unit 10d, and the second frame transmitting unit 10e described below cooperate with each other in the MAC bridge processing unit 10b. Functions as a transfer processing unit that passes the determined reception layer 2 frame and forwards an MPLS frame with a tunnel label and a VC label to the reception layer 2 frame determined to be duplicated by the MAC bridge processing unit 10b To do.
Therefore, the transfer processing unit assigns and transfers the VC label (user base identification path label) indicating the ingress router 1 as the user base of the transfer source frame transfer source and the tunnel LSP label indicating the virtual path of the copy target frame.
As a result, when the number of LSPs increases, the increase in the number of entries is suppressed, and the tunnel label replacement process (switch process) is prevented from becoming complicated.
The MAC bridge processing unit 10b determines whether the frame from the user network 51a is a unicast frame, a multicast frame, a broadcast frame, or a unicast frame whose destination is unknown, and transfers the determined frame. Specifically, the MAC bridge processing unit 10 b outputs a unicast frame to the label switch unit 12, and outputs a multicast frame, a broadcast frame, and an unknown destination frame to the VCID adding unit 13. In order to determine the frame type, the MAC bridge processing unit 10b refers to the multicast MAC address table 11.
FIG. 8A is a diagram showing an example of the multicast MAC address table 11 according to the first embodiment of the present invention. The multicast MAC address table 11 shown in FIG. Each time), the MAC address and a plurality of output ports are held in association with each other. Thereby, the MAC bridge processing unit 10b determines whether or not it is necessary to copy the received frame.
For example, when the “destination MAC address” of the received frame is “0xFFFFFFFFFFFF”, the MAC bridge processing unit 10 b determines that the frame is a broadcast frame and outputs the received frame to the output ports 2 and 3. Further, the MAC bridge processing unit 10b outputs the frame from the MPLS network 50 to the user network 51a to the first frame transmission unit 10c (see, for example, FIG. 7).
Therefore, the MAC bridge processing unit 10b exhibits a frame distribution function based on the “destination MAC address”.
Next, the label switch unit 12 (FIG. 5) sets a tunnel label and a VC label in advance with each of the egress routers 3a to 3c before transferring the frame, and the MAC bridge processing unit 10b performs unicast. A VC label and a tunnel label are assigned to a frame determined to be a frame and output. Here, the label switch unit 12 includes a VC label push unit 12a that outputs a frame with a VC label, and a tunnel label push unit 12b that outputs a frame with a tunnel label. The tunnel label push unit 12b will be described later.
Therefore, the ingress router 1 reduces the burden for duplicating the same MRLS frame.
Further, the VCID assigning unit 13 (FIG. 5) assigns the VCID and “protocol type” to the frame determined as the multicast frame by the MAC bridge processing unit 10b, and outputs the assigned frame to the L2 header creating unit 10d. Send / receive MAC address.
Specifically, the VCID assigning unit 13 writes, for example, “1234” and “0x8848” in the VC and “protocol type” of the MPLS header 71 of the multicast MPLS frame (FIG. 3A), respectively. The transmission source MAC address “a” of the frame is set to the MAC address “p1” of the ingress router 1 itself. Further, when the received frame is a multicast frame, the VCID assigning unit 13 sets “Y” to the destination MAC address of the layer 2 frame 70 (FIG. 3A), and the received frame is a multicast frame or an unknown destination. In the case of a unicast frame, “0xFFFFFFFFFFFF” is set in “destination MAC address”. As a result, an MPLS frame is generated and transmitted from the ingress router 1 to the relay routers 2a to 2c.
In this way, the ingress router 1 assigns the user identifier VCID to the multicast frame received from the user site, assigns the layer 2 address of the output port to the “source MAC address” of the layer 2 header, and sets the “protocol type” to “protocol type”. Multicast MPLS (0x8848) is selected, written and encapsulated, and the encapsulated frame is transferred to the MPLS network (MPLS L2 VPN) 50.
Further, when comparing the ingress router 1 of the present invention with the conventional ingress router # 1 (see FIG. 36), the conventional ingress router # 1 has a multicast frame, a broadcast frame, or a destination unknown unit in the MAC bridge processing unit 93b. While the frame determined to be a cast frame is duplicated, the ingress router 1 of the present invention outputs only the frame to which the VCID is added to the multicast frame.
Accordingly, transmission of a plurality of frames between the ingress router 1 of the present invention and, for example, the next-stage relay router 2a is prevented.
The L2 header creation unit 10d (see FIG. 5) creates an MPLS header of the frame output from the tunnel label push unit 12b or the VCID addition unit 13, and the second frame transmission unit 10e creates the L2 header. The frame from the user network 51a output from the unit 10d is transmitted to the MPLS network 50.
As a result, the unicast frame whose destination is not known among the layer 2 unicast frames from the user network 51a is transferred to the MPLS network 50 with each label attached thereto at the ingress router 1, thereby realizing point-to-multipoint communication. Is done. On the other hand, when the external layer 2 frame is a multicast frame, a broadcast frame, or a unicast frame with an unknown destination, the layer 2 frame is bridged to the MPLS network 50 without being transferred. That is, this bridge transfers a frame in layer 2 based on the MAC address table. Then, the MPLS frame from the MPLS network 50 is transferred and bridged to the user network 51b.
(5) Relay routers 2a to 2c
FIG. 6 is a block diagram of the relay router 2a according to the first embodiment of the present invention. The relay router 2a shown in FIG. 6 includes a frame reception unit 20a, a determination unit 20b, a MAC bridge management unit 21, a first frame transmission unit 20c, an L2 header removal unit 20d, a label switch unit 22, a tunnel label table 15, and an L2 header. A creation unit 20e is provided. The relay routers 2b and 2c have the same configuration as the relay router 2a.
Here, the frame receiving unit 20a receives frames from the relay routers 2b and 2c and the ingress router 1.
The determination unit 20b determines whether to replicate or not replicate the MPLS frame based on the “protocol type” included in the MPLS frame. Here, in the “protocol type” of the received frame (see FIG. 3A), when the physical layer is Ethernet, the multicast MPLS is “0x8848”, and the unicast MPLS is “0x8847”. Furthermore, when the physical layer is SONET or SDH (Synchronous Digital Hierarchy), the multicast MPLS is set to 0x0283, and 0x0281 is written as the unicast MPLS.
As a result, when the physical layer is an Ethernet, SONET, or SDH protocol, a frame type to which various protocols of multicast MPLS and unicast MPLS are applied is determined, and a frame for which the frame type cannot be determined is discarded. .
These are so-called de facto standards, and are international standards for high-speed digital communication systems using optical fibers. The SDH can also be used for an Internet backbone line that connects Internet service providers. Here, since SDH is mainly used in Europe and is called SONET in North America, it is generally written as SONET / SDH to prevent confusion. SONET / SDH mainly defines the specifications of the physical layer, and ATM (Asynchronous Transfer Mode) is often used as the data link layer protocol.
ATM is a technology that performs high-speed information communication, and transmits and receives information in units of 53-byte fixed-length data strings (ATM cells). When used in combination with an optical fiber, high-speed transfer of 156 Mbps is possible, so it is used when a large-capacity line such as a connection between LANs is required.
Each of the relay routers 2a to 2c can transfer an MPLS frame by Ethernet to identify a multicast MPLS frame, and can forward an MPLS frame to PoS to identify a multicast MPLS frame. The frame identification function of the relay routers 2a to 2c is similarly provided in each of the second and subsequent embodiments described later.
The MAC bridge management unit 21 (FIG. 6) bridges the frame when the determination unit 20b determines that it is a multicast MPLS packet, and is provided in the MAC bridge processing unit 10b and the ingress router 1. The MAC bridge processing unit 11 has a multicast MAC address table 11a that is substantially the same.
(5-1) Multicast MAC address table 11a
This multicast MAC address table 11a holds MAC addresses and output ports in association with each other. Further, the MAC bridge processing unit 10b can register an entry in the multicast MAC address table 11a in order to transfer the multicast frame. The MAC bridge processing unit 10b registers the correspondence relationship between the MAC address of the processed frame and the output port in the multicast MAC address table 11a, whereby each of the egress routers 3a to 3c performs layer 2 from the received multicast frame. Address learning is performed on the frame 70 (FIG. 3A).
Further, the multicast MAC address table 11a is generated by a GMRP message frame (IEEE 802.1D) for advertising a multicast address desired to be received on Ethernet or a GVRP (IEEE 802.1Q) for advertising a VLAN tag desired to be received. The message frame is exchanged between the relay router 2a and a router belonging to the user network 51a or manually by a service provider such as a service provider.
Here, the registration of the multicast MAC address using the GMRP message or the GVRP message needs to identify the MPLS network 50 (user VPN) to which the user apparatus having the multicast MAC address belongs. For this reason, in exchanging both messages, the transfer router of the user gives a VCID to the shim header (see FIG. 4A) of both messages. In addition, it is desirable to use STP (Spanning Tree Protocol: IEEE 802.1D) for exchanging both messages in order to prevent multicast frame loops and unnecessary transmission.
Then, the first frame transmission unit 20c provided on the output side of the MAC bridge management unit 21 (FIG. 6) uses the frame output from the MAC bridge processing unit 10b or the frame output from the L2 header creation unit 20e as an ingress router. 1 to the egress router 3a or the relay routers 2b and 2c, etc., and has a plurality of output ports.
(5-2) Received frame processing method
As a result, the “protocol type” of the received frame from the relay routers 2b and 2c, the ingress router 1 or the egress router 3a belonging to the MPLS network 50 is read by the determination unit 20b, and the “protocol type” is “0x8848”. Is determined as a multicast Ethernet packet and the received frame is input to the MAC bridge management unit 21, and in the case of “0x8847”, it is determined as a unicast Ethernet packet and the received frame is input to the L2 header removing unit 20d. Is done.
Further, the MAC bridge management unit 21 searches the multicast MAC address table 11a (FIG. 8A) with the VCID “1234” for the frame determined to be multicast MPLS. Based on the search result, the frame having the transmission destination MAC address “0xFFFFFFFFFFFF” is transferred to each of the output ports 2 and 3, thereby determining the transfer destination of the frame.
Further, the MAC bridge processing unit 10b duplicates and transfers a frame as necessary. Specifically, when the MAC address is “0xFFFFFFFFFFFF”, it is recognized as a broadcast frame or a destination unknown frame, and the frame is output to the output ports 2 and 3 of the frame transmission unit 20c.
In this way, packets determined to be multicast MPLS are bridged in the relay routers 2a to 2c.
(5-3) Transfer processing unit
Further, the L2 header removing unit 20d (FIG. 6) removes the header of the frame determined to be a unicast frame by the determining unit 20b.
The label switch unit 22 adds a tunnel label to the unicast frame output from the L2 header removal unit 20d, and includes a tunnel label swap unit 22a for replacing the tunnel labels of the next-stage relay routers 2b and 2c. Have. The tunnel label swap unit 22a searches and assigns the tunnel label table 15.
The tunnel label swap unit 22a searches the tunnel label table 15 and, if the received label value is registered (there is an entry), assigns the tunnel label to the received frame and outputs it. If the received label value is not registered (no entry), the received frame is discarded.
Note that since an entry is created for each established LSP, the tunnel label swap unit 22a uses a layering technique such as merging (bundling or bundling) a plurality of tunnel labels or using a stacking technique such as a stack. It is preferable to reduce the number of entries in the table 15.
The L2 header creation unit 20e creates the L2 header of the frame output from the label switch unit 22, and outputs the frame to which the L2 header is added to the frame transmission unit 20c.
Further, the MAC bridge management unit 21, the first frame transmission unit 20c, the L2 header removal unit 20d, the label switch unit 22, the unicast tunnel label table 14, and the L2 header creation unit 20e cooperate to form a transfer processing unit. It is functioning. That is, the transfer processing unit bridge-transfers the MPLS frame determined as the non-duplication target frame by the determination unit 20b, and performs the replication process and the VC label for the MPLS frame determined as the replication target frame by the determination unit 20b. And a tunnel LSP label replacement process.
The configuration of the relay routers 2b and 2c is the same as that of the relay router 2a.
(5-4) Label processing
Furthermore, in the MPLS network 50, a multicast frame, a broadcast frame, or a unicast frame with an unknown destination received from the user site needs to be transmitted to a plurality of user sites belonging to the same MPLS network 50. For this reason, the MPLS frame is duplicated as necessary in the relay routers 2a to 2c of the MPLS network 50.
Therefore, the same frame is not duplicated and transferred on the same link, and the load on the MPLS network 50 is prevented from increasing.
The MPLS frame in the existing MPLS network is transferred in the label processing of the relay routers 2a to 2c, whereas in the MPLS network 50, both the multicast frame and the broadcast frame are transferred by the MAC bridge processing. . Then, when encapsulating the layer 2 frame, the ingress router 1 assigns “0x8847” to the “ether type” of the unicast frame and “0x8848” to the “ether type” of the multicast frame. Thus, the relay routers 2a to 2c and the egress routers 3a to 3c identify the frame type.
Thereby, each relay router 2a-2c reduces the burden of label processing.
(6) Egress routers 3a-3c
FIG. 7 is a block diagram of the egress router 3a according to the first embodiment of the present invention. The egress router 3a shown in FIG. 7 includes a frame receiving unit 30a, a determining unit 30b, a pop processing unit 31, an address learning VC label table 32, an L2 header removing unit 30c, a label switch unit 34, a VC label binding table 35, and a MAC. Each of the address table 33, the MAC bridge processing unit (MAC bridge unit) 30d, and the first frame transmission unit 30e is configured. The egress routers 3b and 3c have the same configuration as the egress router 3a.
(6-1) Frame reception and frame determination
The frame receiving unit 30a receives an MPLS frame from the relay routers 2a to 2c belonging to the MPLS network 50 and a layer 2 frame from the user network 51a. The determination unit 30b determines the frame type of the frame received from the frame reception unit 30a. The determination unit 30b reads the “protocol type” of the received frame. When the “protocol type” is “0x8848” or “0x8847”, the determination unit 30b determines that it is multicast MPLS or unicast MPLS, respectively, and also reads “protocol type”. A frame that cannot be determined is determined as an unknown destination frame and discarded.
(6-2) Unicast frame processing
The L2 header removal unit 30c removes the layer 2 header of the received frame determined as a unicast frame by the determination unit 30b.
The label switch unit 34 removes (pops) the tunnel label or VC label (both labels as necessary) from the frame from the L2 header removal unit 30c, and the MAC of the frame from which the tunnel label has been removed. An address learning function for learning an address and a VC label.
Here, the label removal function is exhibited by the cooperation of the tunnel label pop unit 34c that removes the tunnel label from the received frame and the VC label pop unit 34b that removes the VC label.
Further, the MAC bridge processing unit 30d bridges the frame from the VCID removal unit 31c of the pop processing unit 31 (the frame from which both the L2 header and VCID have been removed) by referring to the MAC address table 33, and the label. The switch unit 34 bridges the frame from which the VC label has been removed.
The first frame transmission unit 30e transmits the frame from the MAC bridge processing unit 30d to the user network 51b.
(6-3) Address learning
The address learning function is exhibited by the cooperation of the address learning unit 34a, the VC label binding table 35, and the MAC address table 33.
The VC label binding table 35 holds a “source MAC address” and a VC label in association with each other. The address learning unit 34a learns by referring to the VC label and the MAC address from the VC label binding table 35.
FIG. 40 is a diagram for explaining an address learning method, and the same reference numerals as those described above with reference to FIG. 40 indicate the same elements. Here, user sites A1, A2, and A3 (showing sites that function as the same VPLS segment) having the same VCID are connected to the MPLS network 50. Here, a layer 2 frame is transmitted and received between the user site A1 having the MAC address M1 and the user site A2.
First, when both the ingress router # 1 and the egress router # 2 have no entries for the MAC addresses M1 and M2, when the ingress router # 1 receives the frame for the MAC address M1, a VC label (for example, 201) is added to the frame. And the MPLS frame is transferred.
The egress router # 2 receives the forwarded MPLS frame, obtains the VC label 201, refers to the VC label binding table 35 (FIG. 7), and sends the MAC address M1 and the egress router # 2 to the ingress router # 1. An entry is created in the MAC address table 33 (FIG. 7) in association with the VC label (for example, 102) in the direction toward (the direction opposite to the transferred direction). Thereby, the MAC address M1 is learned.
Next, when the egress router 3a receives the frame having the transmission destination MAC address M1 from the user site A4, the egress router 3a searches the MAC address table 33 (FIG. 7) for the MAC address M1 and the VC label corresponding to the MAC address M1. 102 is obtained. Then, the egress router 3a sets the VC label of the received frame to 102, and transfers the MPLS frame to the MPLS network 50.
Thus, address learning is performed between the ingress router 1 and the egress router 3a.
(6-4) Multicast frame processing
The pop processing unit 31 illustrated in FIG. 7 functions as a transfer processing unit, learns the correspondence between the “source MAC address” of the MPLS frame, the tunnel label and the VC label, and removes the tunnel label and the VC label. 2 frames are transmitted to the outside of the MPLS network 50, an L2 header removing unit 31b for removing the L2 header of the encapsulated received frame, a VCID removing unit 31c for removing the VCID of the received frame, and a received frame Source address (SA: Source Address = source MAC address) and an out-of-band VC label using an address learning VC label table 32, and an address learning unit 31a.
In addition, the address learning VC label table 32 holds “VCID”, “source MAC address (SA)”, and “outband VC label” in association with each other as shown in FIG. 8B, for example. It is created by exchanging messages between the egress router 3a and the ingress router 1.
Then, the pop processing unit 31 (FIG. 7) discriminates the source address of the transmission source ingress router that does not yet know the address from the “transmission source MAC address” included in the L2 header of the received frame, and also uses the VC label as the frame. The information of the address learning VC label table 32 (FIG. 8B) is determined with reference to the VCID included in the packet and the multicast VC label table obtained from the ingress router 1 of the transmission source.
Further, the MAC address table 33 holds MAC addresses and VC labels in association with each other, and address learning and bridge processing are performed by referring to the MAC address table 33.
As a result, when the frame receiving unit 30a receives the frame from the MPLS network 50 and the determination unit 30b determines that the frame is a multicast frame, the address learning unit 31a uses the VCID “1234” and the source MAC address “p1”. The address learning VC label table 32 is searched to know the VC label (for example, 301). Further, the address learning unit 31a sets the VC label “301”, the MAC address “X”, and the output port “1” as one set of entries, and adds the VCID “1234” to the MAC address table 33 provided for each VCID. sign up.
As a result, the layer 2 frame from the user network 51a is transferred through the MPLS network 50 based on the transmission destination MAC address, and is transmitted only to, for example, the egress router 3a connected to the transmission destination user site.
Therefore, useless frame duplication and frame transfer between the ingress router 1 and the egress routers 3a to 3c can be avoided, and the load on the MPLS network 50 can be reduced.
Thus, in the MPLS network 50, redundant or unnecessary frame transfer is prevented, and the bandwidth can be used efficiently.
(7) Lower layer frame virtual forwarding system
An MPLS network (virtual network system) 50 according to the present invention includes an ingress router 1, relay routers 2a to 2c, and egress routers 3a to 3c. The above ingress router 1, relay routers 2a to 2c, and egress routers are provided. 3a to 3c are determination units (10b, 20b, 30b) for determining whether to perform replication or non-replication for a received layer 2 packet or received MPLS frame based on a protocol identifier of the received layer 2 packet or received MPLS frame. The receiving layer 2 that is determined to be non-duplicated by the unit (10b, 20b, 30b) is passed through the received layer 2 packet or the received MPLS frame, and is determined to be duplicated by the determining unit (10b, 20b, 30b). Frame or received MPLS frame, tunnel label and VC label for unicast and multicast Use of tunnel label and VC label and VCID (user identifier) and impart to the is configured to include a transfer processing unit for transferring.
(8) Explanation of operation
With the above configuration, the frame transfer method according to the first embodiment of the present invention will be described in detail with reference to FIGS. 3 (a), 8 (b), 9 (a), and 9 (b). To do.
FIGS. 9A and 9B are diagrams for explaining a frame transfer method according to the first embodiment of the present invention. Of the reference numerals shown in FIG. 9A, those having the same reference numerals as those described above indicate the same elements.
According to the first frame transfer method (“scheme 1”) of the present invention, an MPLS frame having a layer 2 frame including a protocol identifier for identifying a replication target or a non-replication target, a tunnel label, and a VC label is converted into a tunnel label and a VC label. In the MPLS network 50 that can be transferred based on the above.
(8-1) When receiving the unicast frame from the user network 51a, the ingress router 1 shown in FIG. 9A assigns a tunnel label and a VC label to the unicast frame as normal processing.
On the other hand, when the ingress router 1 receives any one of the multicast frame, the broadcast frame, and the unicast frame whose destination is unknown from the user site, the “protocol type” included in each frame and “ Both “destination MAC address” are processed.
For the “protocol type”, the ingress router 1 selects and writes multicast MPLS in the “protocol type” of the L2 header of each frame. For example, when the transfer medium (physical medium) receives an Ethernet packet, the ingress router 1 gives “0x8848” (unicast MPLS is “0x8847”), and in the case of PoS, 0x0283 (unicast). MPLS gives 0x0281). Then, the ingress router 1 outputs one of the frames.
For the “destination MAC address”, the ingress router 1 writes “destination MAC address” included in the layer 2 frame in the case of a multicast frame in the “destination MAC address” of the L2 header. Writes “0xFFFFFFFFFFFF”. Further, the ingress router 1 designates the MAC address of the ingress router 1 as the “source MAC address”, and when the transfer medium is Ethernet, “0x8848” (multicast MPLS) is written in “Ether type”. Further, the ingress router 1 writes the VCID in the MPLS shim header part.
When the ingress router 1 receives a frame having the transmission destination MAC address “Y” and the transmission source MAC address “X” from the user site, the ingress router 1 searches the MAC address table 33 and registers the transmission destination MAC address Y. If not, the received frame is determined as a destination unknown frame, and the same processing as the broadcast is performed.
Therefore, in the first frame transfer method of the present invention, the ingress router 1 determines whether to copy or not to copy the received Ethernet packet based on the protocol identifier of the received Ethernet packet (determination step). The non-replication target frame (unicast frame) in the determination step and the MPLS frame with the tunnel label and VC label transferred to the determined received Ethernet packet are transferred (transfer processing step). Then, in addition to the passing process, any one of the relay routers 2a to 2c duplicates or transfers the MPLS frame transferred in the transfer processing step to the received Ethernet packet determined as the copy target frame in the determination step ( Relay step).
Further, in the transfer process (transfer process step), the ingress router 1 transfers the MPLS frame with the multicast address assigned to the “destination MAC address” of the received Ethernet packet, and any of the relay routers 2a to 2c is used for the multicast. Based on the address learning MAC address table 32 in which the address and the transfer destination router address are associated, the MPLS frame transferred in the transfer processing step is duplicated and transferred (relay step).
(8-2) Next, when the relay router 2a receives the multicast MPLS frame, the relay router 2a refers to the multicast MAC address table 11a to determine the transfer destination router, and duplicates one multicast frame and one broadcast frame. , Bridge a total of two frames. Therefore, the broadcast frame is re-replicated for one transmission link, and in the case of the figure, it is performed at the branch portion of the tunnel LSP such as the relay router 2a.
(8-3) The frame from the relay router 2a is transferred to the egress routers 3a and 3b via the relay router 2b, and is further transferred to the egress router 3c via the relay router 2c. Each of the egress routers 3a to 3c learns an address and pops the MPLS header and transfers it to the user network 51b. Thus, the layer 2 frame is virtually transferred in the MPLS network.
In this way, when the ingress router 1 receives and transfers a broadcast frame, only one frame is transferred between the ingress router 1 and the relay routers 2a to 2c per link. Compared with the three frames that have been output, the load on the MPLS network 50 is reduced.
(8-4) On the other hand, FIG. 9B is a diagram schematically showing frames (multicast and unicast frames) received by each router shown in FIG. 9A. Here, when the frame received by the ingress router 1 is a multicast frame, the ingress router 1 bridges only the layer 2 frame 70 of the layer 2 frame 70 and the MPLS header 71 (FIG. 3A) to the relay router 2a. To do. The relay router 2a bridges the broadcast frame, bridges the layer 2 frame 70 to the relay routers 2b and 2c, and each of the relay routers 2b and 2c assigns an MPLS header 71 and forwards it to the egress router 3a. .
On the other hand, when the frame received by the ingress router 1 is a unicast frame, both the layer 2 frame 70 and the MPLS header 71 are transferred between the routers. In other words, the ingress router 1 performs a bridge operation when it receives a multicast frame, and transfers it when it receives a unicast frame.
In this way, when the ingress router 1 receives and outputs a multicast frame or the like, transmission of the same frame is avoided on the link between the ingress router 1 and each of the relay routers 2a to 2c, and therefore the load on the MPLS network 50 is reduced. Is alleviated.
Furthermore, even when the ingress router 1 receives a unicast frame with an unknown destination, transmission of the unicast frame to each router in the MPLS network 50 is prevented, and the load on the MPLS network 50 is also reduced. . Further, unnecessary duplication is also avoided in the best effort type network.
Thus, according to the router of the present invention, in the layer 2 MPLS network 50 (L2VPN), the load on the MPLS network 50 can be suppressed to the minimum, and the transfer band can be used efficiently.
(B) Description of the second embodiment of the present invention
The ingress router in the second embodiment, when it is necessary to transfer a frame from the same output port to a plurality of relay routers, uses the frame as a multicast MPLS frame, and a user identification LSP for transferring unicast traffic Select from and transfer. When the relay router receives the frame, the label switch unit copies and forwards the frame as necessary, and finally forwards it with all necessary unicast user identification LSPs.
In the second embodiment, a user identification function and a user site identification function are added to the VC label. The reason why the user identification function is necessary is mainly for address learning of each egress router, and each egress router 3a-3c needs information on which ingress node transmitted the frame. For example, VC label value 25 identifies both the user and the ingress router.
Further, as described below, the VCLSP in the second embodiment is configured to transfer a frame using the existing unicast VCLSP.
FIG. 10 is a configuration diagram of an MPLS network 50 according to the second embodiment of the present invention. In the MPLS network 50 shown in FIG. 10, for example, users A1, B1 and the like of the user network 51a transfer packets addressed to the users A2, B1 or B3 of the user network 51b. The ingress router 1a transfers a received frame from the user network 51a such as the users A1 and B2, for example, with an LSP having a VC label, for example. In addition, what has the same code | symbol as what was shown above in this FIG. 10 shows the same thing as what was mentioned above.
FIG. 11 is a block diagram of the ingress router 1a according to the second embodiment of the present invention. The ingress router 1a shown in FIG. 11 includes a frame reception unit 10a, a MAC bridge processing unit 10b, a first frame transmission unit 10c, a multicast MAC address table 11, a label switch unit 12, a tunnel label table 15, a VC selection unit 80, An L2 header creation unit 10d and a second frame transmission unit 10e are provided. 11 having the same reference numerals as those described above are the same as those described above.
Here, the difference between the ingress router 1a of the second embodiment and the ingress router 1 shown in FIG. 5 of the first embodiment is that the ingress router 1a does not have the VCID adding unit 13, and the VC selection The point is that the portion 80 is provided.
Here, the VC selection unit 80 uses the MAC bridge processing unit 10b to assign VC labels to be used for transferring multicast frames to VC labels (unicast VC labels) of a plurality of unicast frames already registered by the ingress router 1a. The selected VC label is given to the multicast frame. The VC labels of the plurality of unicast frames are unicast frames VC transmitted through the same output port as the output port that transfers the multicast frame among the plurality of output ports provided in the first frame transmission unit 10c. It is selected from the label.
In addition, as a selection criterion for the VC label in the VC selection unit 80, for example, the one having the minimum or maximum VC label or the one having the minimum or maximum output port number is used. That is, a desired LSP is selected from the user identification LSP label for unicast, and a multicast frame received from the user site is transmitted.
Therefore, the VC label (user) selected from the plurality of VCLSPs (User Base Identification Paths) for transferring the unicast frame to the received Ethernet packet determined as the copy target frame by the MAC bridge processing unit 10b. A base identification path label) is assigned and transferred.
FIG. 12 is a block diagram of the relay router 2L (2el) according to the second embodiment of the present invention. The relay router 2L shown in FIG. 12 has a function of searching for a VC label to be given to a received frame when the received frame is a multicast frame, and includes a frame receiving unit 20a, a determining unit 20b, and an L2 header removing unit 20d. , An L2 header creation unit 20e, a first frame transmission unit 20c, a label switch unit 22, and a tunnel label table 15, in addition to a multicast VC label table 14 and a VC label search unit 24. Moreover, what has the same code | symbol as what was shown above in this FIG. 12 shows the same thing as what was mentioned above.
FIG. 8C is a diagram showing an example of the multicast VC label table 14 according to the second embodiment of the present invention. The multicast VC label table 14 shown in FIG. 8C holds, for each LSP, the tunnel label of the received frame and the processing content for this tunnel label in association with each other. For example, when the tunnel label of the received frame is 21, the label switch unit 12 assigns the tunnel label 22 to the received frame and transfers it from the output port 2, and when the tunnel label of the same received frame is 21, A tunnel label 42 and a VC label 104 are attached to the received frame and transferred from the output port 3.
Thereby, the received frame is transferred with the tunnel label changed for each LSP in the MPLS network 50, and the frame of each user corresponding to the LSP can be transferred individually.
The VC label search unit 24 assigns a VC label to the multicast frame from the frame reception unit 20a and duplicates the assigned frame, and includes a table search unit 24b and a frame duplication unit 24a. The table search unit 24b searches the multicast VC label table 14 for the received multicast frame. In this search, with respect to the correspondence data held for each LSP in the multicast VC label table 14, the processing content associated with the VC label value is read using the VC label value of the received frame as an index.
Further, the frame duplicating unit 24a gives the VC label retrieved by the table retrieving unit 24b to the multicast frame, duplicates it, and outputs it. Here, the VC label given to each unicast frame is an existing VC label used for the LSPs addressed to the relay routers 2b and 2c of the relay router 2L itself.
The plurality of frames to which the selected VC label is assigned are input to the label switch unit 22. Based on the tunnel label table 15, the label switch unit 22 assigns a tunnel label to each of the plurality of inputted frames, and inputs the frame to which the VC label and the tunnel label are assigned to the L2 header creation unit 20e. . Here, the VC label functions as an identifier for identifying both the user and the ingress router 1a indicating the user base.
The received frame determined to be a unicast frame by the determination unit 20b is input to the label switch unit 22, is given a tunnel label, and is transferred from the frame transmission unit 20c via the L2 header creation unit 20e.
Also, even when the relay router 2L receives a multicast frame from the adjacent relay routers 2b and 2c (FIG. 10), for example, the relay router 2L duplicates the frame and exchanges and transfers the existing unicast VC label and tunnel label.
As a result, the second frame transfer method (“method 2”) of the present invention performs the transfer process (transfer process step), and the ingress router 1a sets the MAC address to be copied and the VCLSP for transferring the unicast frame. Based on the associated multicast MAC address table 11, it is determined whether or not the received Ethernet packet needs to be replicated (determination step), and the ingress router 1a has a unicast frame that is a non-replication target frame among VCLSPs that the ingress router 1a has in advance. Among the plurality of VCLSPs (user base identification paths) for transferring the selected one from the VCLSP of the plurality of non-replication target frames transferred from the same output port as the output port for transferring the replication target frame (selection step); The ingress router 1a selects the VCLSP selected in the selection step. To send the MPLS frame (transmission step).
Further, the relay router 2L duplicates and forwards the MPLS frame transmitted in the transmission step based on the multicast VC label table 14 in which the multicast VC label and the transfer destination router address are associated (relay step).
Also, the relay routers 2b and 2c that have received the frame copy and forward the MPLS frame as necessary, and finally use the unicast VCLSP and tunnel LSP necessary in the MPLS network 50 to generate the multicast frame. Is transferred. Further, the frame is transmitted to the user network 51b such as the users A2, B2, and B3.
Therefore, the relay router 2L that has not conventionally had both the multicast and broadcast functions can use both the multicast and broadcast functions. Furthermore, since the existing network resources can be used as they are, the service provider can construct the virtual network 50 at a relatively low cost without constructing a new network, and both the multicast and broadcast functions that have not been specified in the past can be provided. Realized and enables virtual transfer of layer 2 packets.
Note that address learning in each of the egress routers 3a to 3c is the same as the address learning method shown in FIG.
With such a configuration, a frame transfer method according to the second embodiment will be described with reference to FIG. Between the ingress router 1a and the relay router 2L shown in FIG. 10, a tunnel LSP (pipe-like one) and a VCLSP (shown by a solid line) are set.
The ingress router 1a receives a frame from the outside, and refers to the unicast MAC address table 11 and needs to transfer the received frame to each of the VC labels 102, 103, and 104, respectively. Recognizes whether there is a multicast frame or a broadcast frame.
When the ingress router 1a receives the multicast frame from the user site, the ingress router 1a uses the VC label transmitted from a plurality of unicast VCs that must be transmitted from the same output port as a selection criterion such as one having the smallest 102, for example. Select based on. Further, the ingress router 1a searches the tunnel label 21 from the tunnel label table 15, assigns the VC label and the tunnel label to the layer 2 frame, and transmits the MPLS frame from the output port 1. In addition, when the ingress router 1a receives a unicast frame with an unknown destination, it performs the same processing as in the transfer method in the first embodiment.
On the other hand, when the relay router 2L (FIG. 12) receives this MPLS frame, the relay router 2L knows that it is a multicast MPLS frame from the “protocol type” of the L2 header, and searches the multicast label table 44. The relay router 2L then duplicates the frame and swaps the tunnel label of the duplicated frame to 22 when it is necessary to transmit to a plurality of output ports based on the contents held in the multicast label table 44, and the swapped frame. Is transmitted to the output port 2, the tunnel label of the duplicated frame is swapped to 42, and the frame in which the VC label is swapped to 104 is transmitted to the output port 3.
The address learning in each of the egress routers 3a to 3c is performed by the same method as the processing in the first embodiment.
As described above, in the frame transfer method according to the second embodiment, the duplication of the frame is performed by the relay router 2L corresponding to the branch point of the VC label, and the existing MPLS network 50 can be used as it is.
Further, in this way, in each link between the ingress router 1a and each of the relay routers 2L, 2b, 2c belonging to the MPLS network 50, a plurality of transmissions of the same frame are avoided, and the load on the MPLS network 50 is reduced. .
Thus, according to the present invention, the load on the MPLS network 50 can be suppressed to a minimum, and the network bandwidth can be used efficiently.
(C) Description of the third embodiment of the present invention
In the third embodiment, the ingress router generates a point-to-multipoint multicast tunnel LSP that bundles a plurality of unicast tunnels LSP using the same link separately from the unicast tunnel LSP. ing.
FIG. 13 is a configuration diagram of an MPLS network 50 according to the third embodiment of the present invention. In the MPLS network 50 shown in FIG. 13, for example, the users A1, B1 and the like of the user network 51a transfer packets addressed to the users A2, B2 or B3 of the user network 51b. The ingress router 1b and the relay routers 2e to 2g shown in FIG. 13 are both modifications of the ingress router 1b and the relay routers 2a to 2c of the first embodiment, and the egress routers 3a to 3c are those described above. Is the same.
Between each router, a tunnel LSP (pipe-like) and a VCLSP (represented by a solid line) are set. In the third embodiment, the ingress router 1b separately produces a normal VC label and a normal tunnel label for a unicast frame, and creates a new multicast VCLSP and a new multicast tunnel LSP. .
Also, the multicast VCLSP in the third embodiment functions as a user identifier and a user base identifier (source entrance router 1b). That is, the VCLSP in the first and second embodiments is for user identification, while the VCLSP in the third embodiment includes both the user and the ingress router 1b indicating the user base.
Then, the ingress router 1b shown in FIG. 13 reads the received frame from the user site such as the users A1 and B1 of the user network 51a, and the received frame is relayed from the same output port to the three MPLS networks 50. It is determined whether the frame needs to be transmitted to the routers 2e to 2g. When it is determined that the received frame is a frame that needs to be transmitted to the three relay routers 2e to 2g, the ingress router 1b sends the received frame to the relay router 2e via the multicast VCLSP and the multicast tunnel LSP, for example. Forward.
On the other hand, when the relay router 2e transfers the frame, and the next-stage relay routers 2f and 2g receive the frame, the relay routers 2f and 2g copy and transfer the frame as necessary. Specifically, multicast frames are transferred using all unicast VCLSP and tunnel LSP necessary in the MPLS network 50.
FIG. 14 is a block diagram of the ingress router 1b according to the third embodiment of the present invention. A multicast processing unit (label switch) 19 that assigns a VC label and a tunnel label to a multicast frame is connected to the MAC bridge processing unit 10b shown in FIG. The multicast processing unit 19 includes a VC label push unit 19a for assigning a VC label and a tunnel label push unit 19b for assigning a tunnel label.
Further, a multicast label table 44 is connected to the multicast processing unit 19 as will be described later with reference to FIG. The multicast label table 44 holds multicast VC label values and tunnel label values for each user in association with each other.
Therefore, the ingress router 1b shown in FIG. 14 is different from the ingress router 1 of the first embodiment in that a VC label and a tunnel label are added to a frame determined as a unicast frame by the MAC bridge processing unit 10b. The VC label and the tunnel label are also pushed for the frame determined as the multicast frame by the MAC bridge processing unit 10b.
When the MAC bridge processing unit 10b determines that the received frame is a multicast frame, the MAC bridge processing unit 10b inputs the received frame to the multicast processing unit 19 and assigns a VC label and a tunnel label. The format of the frame to which each label is assigned is formed in the L2 header creation unit 10d and transferred from the second frame transmission unit 10e to another relay router, ingress router, or egress router of the MPLS network 50.
When the ingress router 1b shown in FIG. 14 receives a layer 2 frame from the MPLS network 50, the ingress router 1b is bridged by the MAC bridge processing unit 10b, and the frame is transferred to the user network 51a via the frame transmission unit 10c. Transferred.
FIG. 15 is a block diagram of the relay router 2e according to the third embodiment of the present invention, and the relay routers 2f and 2g have the same configuration as that of the relay router 2e. The relay router 2 e includes a VC label search unit (label switch) 24 e and a second multicast VC label table (second multicast VC label table) 14.
FIG. 27B is a diagram showing an example of the second multicast VC label table 14a according to the third embodiment of the present invention. The second multicast VC label table 14a shown in FIG. This is substantially the same as the VC label table 14 for use, and the same reference numerals as those described above represent the same ones.
The VC label search unit 24e searches the second multicast VC label table 14a, and duplicates the frame based on the searched VC label. Further, the frames are swapped in a label swap unit (label push unit) 24d for swapping the label of the received frame, and the MPLS frame is transferred to the MPLS network 50 via the L2 header creation unit 20e.
The relay router 2 f refers to the second multicast VC label table 14 a with respect to the MPLS frame from the relay router 2 e, duplicates the MPLS frame, multicast user identification LSP label, tunnel LSP label, and unicast VCLSP. The label and the tunnel LSP label are exchanged and transmitted.
Here, the VC label search unit 24 (FIG. 12) of the second embodiment is compared with the VC label search unit 24e of the third embodiment. The VC label search unit 24 shown in FIG. 12 inputs the duplicated MPLS frame to the label switch unit 22. On the other hand, in the VC label search unit 24e shown in FIG. 15, the label swap unit 24d writes the multicast labels (VCLSP label and tunnel LSP label) in the duplicated MPLS frame.
Accordingly, since the multicast tunnel LSP is set in advance between the ingress router 1b and each of the relay routers 2e to 2g shown in FIG. 13, the ingress router 1b does not need to set up the multicast tunnel LSP in an overlapping manner. .
With such a configuration, a frame transfer method according to the third embodiment will be described with reference to FIG.
FIG. 27A is a diagram for explaining a multicast VC label and a multicast tunnel label according to the third embodiment of the present invention. Moreover, what is shown in this FIG. 27A and has the same code | symbol as the above of the said code | symbol represents the same thing.
The ingress router 1b (FIG. 13) sets the tunnel label “11” with the relay router 2e, and the relay router 2e sets the tunnel label “12” with the relay router 2f. Further, the ingress router 1b sets the VC label with the relay router 2f to “1002”, for example.
When the ingress router 1b receives a layer 2 frame from a user site such as the users A1 and B1 and determines that the layer 2 frame is a multicast frame, the ingress router 1b sends the flooded layer 2 frame to the multicast processing unit 19 (FIG. 14). Output.
Here, the multicast processing unit 19 searches the second multicast label VC label table 14a, assigns and transfers the tunnel label “11” and the VC label “1002”, and outputs from the output port (for example, output port 1). Send.
In other words, for example, a plurality of unicast tunnels LSP sharing the same link between the ingress router 1b and the relay router 2e are bundled, and the bundled LSPs are used as a point-to-multipoint multicast tunnel LSP. The unicast tunnel LSP is set separately.
Then, the ingress router 1b sets a VC for each MPLS network 50 (or another MPLS network 50) in the point-to-multipoint multicast tunnel LSP. Thereby, for example, a multicast frame from the user network 51a is switched to the multicast tunnel LSP.
Furthermore, even when the ingress router 1b receives a unicast frame whose destination is unknown, the ingress router 1b processes the frame in the same manner as the multicast frame.
Accordingly, in the third frame transfer method (“method 3”) of the present invention, the ingress router 1b shown in FIG. 13 sets the multicast VCLSP and the multicast tunnel LSP when performing the transfer process (transfer process step) ( Setting step), the MPLS frame is transferred via the multicast VCLSP and the multicast tunnel LSP (transfer step).
On the other hand, when each of the relay routers 2e, 2f, and 2g receives the frame, it knows that it is a multicast MPLS frame from the “protocol type” in the L2 header, and searches the second multicast VC label table 14a. Based on the search result, the VC label search unit 24e (FIG. 15) outputs the frame in which the tunnel label is swapped to “12” to the output port 2, and the tunnel label and VC label are “42”, “ 104 ”and the swapped frame is transmitted to the output port 3.
Therefore, in relaying (relaying step), the relaying router 2e duplicates and forwards the MPLS frame based on the second multicasting VC label table 14a in which the multicasting VCLSP label and the forwarding destination router address are associated (duplicating and forwarding step). .
Further, the relay router 2f duplicates and forwards the MPLS frame duplicated and transferred in the duplicate transfer step via the multicast VCLSP and the multicast tunnel LSP set in the setting step. As a result, the multicast frame is relayed and transferred, and the multicast frame is copied as necessary. Finally, each multicast frame is transferred to the unicast LSP in the MPLS network 50.
Accordingly, by providing the multicast LSP in the ingress router 1b, the user can use the existing network resources as they are, and the service provider can add value to the virtual network 50 with a minimum investment.
Further, the VC label and the tunnel label between the ingress router 1b and each of the egress routers 3a to 3c are swapped from the multicast LSP for unicast.
Each egress router 3a-3c learns the address for the received multicast frame, and learns the address using the same method as the conventional method (for example, the method shown in FIG. 40).
In this way, transmission of the same frame is avoided in each link between the ingress router 1b and the relay router 2e, and the relay router 2e and the relay router 2f, and the load on the MPLS network 50 is reduced. Further, in the third embodiment, even when the ingress router 1b receives a unicast frame with an unknown destination, transmission of the unicast frame to the relay routers 2e to 2g belonging to the MPLS network 50 is prevented. The load on the network 50 is reduced.
(D) Description of the fourth embodiment of the present invention
Also in the frame transfer method in the fourth embodiment, the ingress router sets the multicast LSP separately from the unicast VC between the ingress router and the egress router, thereby having a plurality of unicast VCs of the same link. The MPLS frame's VC is bundled into a single point-to-multipoint LSPVC. Then, each relay router that relays and forwards the MPLS frame duplicates and forwards the MPLS frame as necessary, and finally transfers it to the unicast VC.
FIG. 16 is a configuration diagram of an MPLS network 50 according to the fourth embodiment of the present invention. The ingress router 1c shown in FIG. 16 sets a multicast VC separately from a unicast VC, and sets a point-to-multipoint VCLSP. Also, the relay routers 2h to 2j have the same functions as the relay routers 2e to 2g used in the third embodiment.
FIG. 17 is a block diagram of the ingress router 1c according to the fourth embodiment of the present invention. The ingress router 1c shown in FIG. 17 has a multicast label push unit 16 connected to the MAC bridge processing unit 10b.
The multicast label push unit 16 gives a newly defined multicast label to a frame determined to be a multicast frame by the MAC bridge processing unit 10b. The multicast label push unit 16 gives a multicast LSP label that functions as a multicast VCLSP, that is, a path determination (tunnel), to the multicast frame from the user site with reference to the multicast VC label table 14 To do. Also, the multicast label push unit 16 refers to the multicast VC label table 14 to duplicate the received MPLS frame, removes the multicast LSP label, and uses the existing unicast user identification LSP label (VC label) and tunnel. Give a label.
Here, the ingress router 1b (FIG. 14) of the third embodiment is compared with the ingress router 1c shown in FIG. The ingress router 1b of the third embodiment creates a new multicast VCLSP and a new multicast tunnel LSP separately from the VC label and tunnel label for normal unicast.
On the other hand, the ingress router 1c of the fourth embodiment uses a separate multicast VCLSP without generating a new multicast VCLSP and a new multicast tunnel LSP.
Thereby, transfer of redundant information data is eliminated, and the use efficiency of the transmission band in the virtual network 50 is improved.
In addition, what is shown in FIG. 17 and has the same code | symbol as what was mentioned above shows the same thing.
FIG. 28A is a diagram showing an example of a frame format according to the fourth embodiment of the present invention. The frame 69a shown in FIG. 28 (a) has only one multicast VCLSP label without using two types of tunnel labels and VC labels, and this multicast VCLSP is an entrance as a user and a user base. It is used to indicate both the router 1c.
FIG. 18 is a block diagram of a relay router 2h according to the fourth embodiment of the present invention. When the relay router 2h shown in FIG. 18 receives the MPLS frame, the relay router 2h knows that it is a multicast MPLS frame from the “protocol type” of the L2 header, searches the contents held in the multicast VC label table 14, and finds the search result. The received frame is duplicated based on Then, the relay router 2h transmits the frame whose label is swapped to “12” to the output port 2, and removes and transfers the multicast LSP label, and adds the tunnel label 42 and the VC label 104 to the received frame. The transferred frame is transmitted to the output port 3.
Also, since the configuration of the relay routers 2i and 2j shown in FIG. 16 is the same as that of the relay router 2h, the duplicate description is omitted.
The fourth frame transfer method of the present invention will be described with such a configuration.
When the ingress router 1c shown in FIG. 17 receives the multicast frame from the user site, the ingress router 1c refers to the multicast VC label table 14, and between the edge routers between the ingress router 1c and the egress router 3b, for example, FIG. The multicast LSP shown in FIG.
Then, the ingress router 1c (FIG. 17) outputs the layer 2 frame to be flooded to the multicast label push unit 16. Here, the ingress router 1 c searches the multicast VC label table 14, assigns the label 11 to the frame output from the multicast label push unit 16, transfers it, and transmits it from the output port 1. As a result, the frame is transferred to the relay router 2h using the multicast VCLSP.
Further, the relay routers 2i and 2j shown in FIG. 16 copy and transfer frames as necessary. The MPLS frame is finally transferred via all necessary unicast VCLSP and unicast tunnel LSP. Here, the multicast LSP of the ingress router 1c is swapped with the unicast LSP of the egress router 3a.
Therefore, the fourth frame transfer method (“scheme 4”) of the present invention relates to the transfer process (transfer process step), and the ingress router 1c identifies the multicast VCLSP and the multicast tunnel LSP. (Tunnel identification path) is set (setting step), and the MPLS frame is transferred via the base / tunnel LSP (transfer step).
In relaying (relaying step), the relaying router 2h duplicates and forwards the MPLS frame (duplicating and forwarding step) based on the multicast VC label table 14 in which the base / tunnel LSP and the forwarding destination router address are associated with each other. The routers 2 i and 2 j copy and transfer the MPLS frame copied and transferred in the copy and transfer step via the base / tunnel LSP set in the setting step.
In each of the egress routers 3a to 3c, the address learning process for the received multicast frame is performed using the same method as that shown in FIG.
In this way, transmission of the same frame is avoided in each link between the ingress router 1c and the relay router 2h and the relay routers 2i and 2j, and the load on the MPLS network 50 is reduced.
Thus, also in the fourth embodiment, even when the ingress router 1c receives a unicast frame with an unknown destination, transmission of the unicast frame to all the routers in the MPLS network 50 is prevented, and again, the MPLS network 50 The load of is reduced.
(E) Description of the fifth embodiment of the present invention
In the conventional frame transfer method, both the tunnel LSP and VCLSP are set point-to-point.
In contrast, in the multicast frame in the fifth embodiment, a point-to-multipoint path is newly set in both the tunnel LSP and the VCLSP, and the MPLS network 50 is transferred. For this reason, in the frame forwarding method of the fifth embodiment, the ingress router pre-sets the point-to-multipoint multicast tunnel LSP and VCLSP between the ingress router and the egress router, and the relay router needs the multicast frame. Duplicate according to.
FIG. 19 is a configuration diagram of an MPLS network 50 according to the fifth embodiment of the present invention. The MPLS network 50 shown in FIG. 19 includes an ingress router 1d, relay routers 2p, 2q, and 2r, and three egress routers 3a to 3c. Here, the ingress router 1d sets the multicast VC separately from the unicast VC, and sets the point-to-multipoint VCLSP. Also, the relay routers 2p to 2r have the same functions as the relay routers 2e to 2g (see FIG. 15). Moreover, what has the same code | symbol as the above of the code | symbol shown in FIG. 19 shows the same thing.
FIG. 20 is a block diagram of an ingress router 1d according to the fifth embodiment of the present invention. The ingress router 1d shown in FIG. 20 includes a multicast label processing unit 16b and a multicast label table 44. The multicast label processing unit 16b includes a multicast label push unit 16 included in the ingress router 1c (FIG. 17) and a VCID addition unit 16a.
The multicast label table 44 is substantially the same as the multicast VC label table 14 described above. For each LSP, for example, as shown in FIG. Is associated with the processing content (operation).
Thereby, the ingress router 1d gives the multicast user identification label and the tunnel label from the multicast label table 44 to the multicast frame received from the user site.
In FIG. 20 as well, those having the same reference numerals as those described above indicate the same elements.
FIG. 21 is a block diagram of a relay router 2p according to the fifth embodiment of the present invention. The relay router 2p shown in FIG. 21 is compared with the relay router 2h (FIG. 18).
In the L2 header removing unit 20d of the relay router 2h shown in FIG. 18, the received MPLS frame is determined to be unicast or multicast, and is input to the label switch unit (label switch) 22 or the multicast processing unit (label switch) 24e, respectively. Is done. On the other hand, in the relay router 2p (FIG. 21) according to the fifth embodiment, the frame type is not determined by the L2 header removing unit 20d, and any frame from which the header is removed is the multicast processing unit ( Label switch) 24e. In addition, the thing which has the same code | symbol of the above of the code | symbol shown in FIG. 21 shows the same thing.
Further, since the relay routers 2q and 2r shown in FIG. 19 have the same configuration as that of the relay router 2p, redundant description is omitted.
Thereby, the point-to-multipoint multicast tunnel LSP and the VCLSP are set in advance between the ingress router 1d and the egress routers 3a to 3c, and the relay router 2p duplicates the multicast frame as necessary.
Therefore, the relay router 2p can eliminate redundant processing of the received frame, and the frame transfer of the MPLS network is also made efficient.
With such a configuration, a frame transfer method according to the fifth embodiment will be described with reference to FIG.
In the ingress router 1d shown in FIG. 19, the value of the multicast tunnel LSP is set in advance between the ingress router 1d and each of the egress routers 3a to 3c. The ingress router 1d writes a tunnel label and a VC label (for example, “1002”) in advance in the MPLS frame. This VC label indicates that it is a point-to-multipoint multicast LSP from the ingress router 1d (which is given the VCID “1234”).
Here, when receiving the multicast frame from the user site, the ingress router 1d outputs the layer 2 frame to be flooded to the multicast processing unit 16b. Then, the multicast label push unit 16 searches the multicast VC label table 14, assigns the tunnel label “11” and the VC label “1002” to the received multicast frame, and transfers them via the L2 header creation unit 10 d and the like. And transmit from output port 1.
On the other hand, when receiving this MPLS frame, the relay router 2p knows that it is a multicast MPLS frame from the “protocol type” in the L2 header, and searches the multicast VC label table 14. Then, the relay router 2p swaps the tunnel label of the frame to “12” based on the search result, the swapped frame to the output port 2, and the frame swapped of the tunnel label to “15” as the output port. 3 respectively.
Therefore, in the fifth frame transfer method (“method 5”) of the present invention, in the transfer process (transfer process step), the ingress router 1d is attached to the MPLS frame transferred from the ingress router 1d and the MPLS network 50. A multicast VCLSP and a multicast tunnel LSP are respectively set between each of the three egress routers 3a to 3c that remove the tunnel label and the VC label and transmit to the outside of the MPLS network 50 (setting step). A plurality of MPLS frames to be transferred to the relay router 2p from the same output port as the output port for transferring the replication target frame are transferred to the relay routers 2p to 2 through the multicast VCLSP and the multicast tunnel LSP set in the setting step. 2r (transmission step).
Further, in relay (relay step), each relay router 2p to 2r duplicates and forwards the MPLS frame transmitted in the transmission step via the multicast VCLSP and multicast tunnel LSP set in the setting step. .
Furthermore, each of the egress routers 3a to 3c registers the multicast VC label “1002” and the unicast VC label in the opposite direction in the VC label binding table 35 (see FIG. 7). Each of the egress routers 3a to 3c performs the address learning process for the received multicast frame by using the same method as the method shown in FIG.
Thus, in the fifth embodiment, a newly defined multicast VCLSP and a newly defined multicast tunnel LSP are point-to-multipoint paths between the ingress router 1d and each of the egress routers 3a to 3c of the MPLS network 50. The ingress router 1d creates a multicast VCLSP and a multicast tunnel LSP from the same port received from the user site, for example, for the frames that need to be transmitted to the three relay routers 2p to 2r. It is transmitted via the relay routers 2p to 2r, and the MPLS network 50 is transferred.
Thus, also in 5th Embodiment, the effect similar to said each embodiment is acquired. Specifically, transmission of the same frame is avoided on the link between the ingress router 1d and the relay routers 2p to 2r, and thus the load on the MPLS network 50 is reduced.
(F) Description of the sixth embodiment of the present invention
The sixth embodiment is a variation of the fifth embodiment.
In the conventional frame transfer method, both the tunnel LSP and the VCLSP are set point-to-point. In contrast, the frame transfer method of the sixth embodiment uses two types of tunnel LSP and VCID as MPLS labels used for transfer, and newly sets a point-to-multipoint path for these tunnel LSP and VCID. Like to do. Here, the VCID has both meanings of user identification and user base identification.
FIG. 22 is a configuration diagram of an MPLS network 50 according to the sixth embodiment of the present invention. The MPLS network 50 shown in FIG. 22 includes an ingress router 1d, relay routers 2p to 2r, and egress routers 3d to 3f. Of these, the ingress router 1d and the relay routers 2p to 2r are all the same as those described above.
Here, only the VC label (black line) is set between adjacent routers among the routers shown in FIG. 22, and no tunnel label is set. On the other hand, in the MPLS network 50 shown in FIG. 10, for example, a VC label (shown by a solid line) and a tunnel label (pipe-like) are set between the routers.
FIG. 23 is a block diagram of the egress router 3d according to the sixth embodiment of the present invention. The egress router 3d shown in FIG. 23 is substantially the same as the egress router 3a (FIG. 7). On the other hand, the difference from the egress router 3a is that the frame type of the received frame is determined and pop processing is performed.
In the frame from the frame receiving unit 30a of the egress router 3d shown in FIG. For the multicast frame, the VCID is removed by the pop processing unit 31d and the multicast frame is input to the MAC bridge processing unit 30d.
On the other hand, the frame from the frame receiving unit 30a of the egress router 3a (FIG. 7) is determined by the determining unit 30b, and both the unicast frame and the multicast frame are L2 by the L2 header processing units 30c and 31b, respectively. The header is removed.
Of the reference numerals shown in FIG. 23, those having the same reference numerals as those described above indicate the same elements. Also, the egress routers 3e and 3f shown in FIG. 22 have the same configuration as the egress router 3d.
With such a configuration, a frame transfer method according to the sixth embodiment will be described with reference to FIG.
The ingress router 1d is set end-to-end (between the ingress router 1d and each of the egress routers 3d to 3f) as a point-to-multipoint LSP in the same way as the point-to-point unicast tunnel LSP. To do.
The ingress router 1d outputs to the multicast processing unit 16b (FIG. 16) in order to flood the layer 2 frame received from the user site. The multicast processing unit 16b sends the user identifier VCID “1234” to the multicast frame that needs to be transmitted from the same port received from the user site to the plurality of relay routers 2p to 2r, and the VC shim header shown in FIG. It is given to the position (VC). The ingress router 1 d searches the multicast VC label table 14, assigns the multicast LSP label “11” to the frame, transfers it, and transmits it from the output port 1.
Therefore, the multicast LSP for the frame from the ingress lator 1d to the relay router 2p functions as indicating the user and the ingress router 1d as the user base.
On the other hand, when receiving this frame, the relay router 2p knows that it is a multicast MPLS frame from the “protocol type” of the L2 header, and searches the VC label table 14 for multicast. Based on this search result, the relay router 2p outputs the frame with the label swapped to “12” to the output port 2, and transmits the frame with the label swapped to “15” to the output port 3. Therefore, the relay router 2p swaps the copy of the frame and the label, thereby relaying the MPLS frame having the VCID.
Further, when each of the egress routers 3d to 3f receives the MPLS frame, it searches the multicast VC label table 14 based on the multicast LSP label and the user identifier VCID, and knows the VC label for address learning. Specifically, each of the egress routers 3 d to 3 f searches the contents held in the multicast VC label table 14 with the VCID “1234” using the multicast label 13 and learns the VC label 301.
Therefore, in the sixth frame transfer method (“method 6”) of the present invention, the ingress router 1d is attached to the MPLS frame transferred from the ingress router 1d and the MPLS network 50 in the transfer process (transfer process step). The base / tunnel LSP for identifying the multicast VCLSP and the multicast tunnel is respectively connected to each of the three egress routers 3d to 3f that remove the tunnel label and the VC label and transmit to the outside of the MPLS network 50. Setting (setting step), a user identifier for identifying a user is assigned to the inside of a plurality of MPLS frames transferred to the three relay routers 2p to 2r from the same output port as the output port to which the copy target frame is transferred (grant) Step), and the ingress router 1d is attached to the inside of the frame in the granting step. The MPLS frame including a user identifier, and transmits via the base tunnel LSP set by the setting step in each of the relay routers 2P～2r (transmission step).
In relaying (relaying step), each relay router 2p-2r duplicates and forwards the MPLS frame transmitted in the transmitting step via the base / tunnel LSP set in the setting step (forwarding step).
Further, each of the egress routers 3d to 3f performs address learning using the base / tunnel LSP used in the transfer step and the user identifier assigned in the granting step (learning step).
As described above, since the VCID performs both functions of user identification and user base identification, a new point-to-multipoint path can be set for the tunnel LSP and VCID, and frame transfer can be efficiently performed.
Further, in this way, transmission of the same frame is avoided in each link between the ingress router 1d and the relay routers 2p to 2r, and thus the load on the MPLS network 50 is reduced.
(G) Description of the seventh embodiment of the present invention
FIG. 24 is a configuration diagram of an MPLS network 50 according to the seventh embodiment of the present invention. The MPLS network 50 shown in FIG. 24 includes an ingress router 1c (FIG. 17), relay routers 2p to 2r (FIG. 21), and egress routers 3g to 3i. Of the other symbols, those having the same symbols as those described above indicate the same components.
FIG. 25 is a block diagram of the egress router 3g according to the seventh embodiment of the present invention. The pop processing unit 31e of the egress router 3g shown in FIG. 25 includes a multicast label pop unit 31f and an address learning unit 31a.
The multicast label pop unit 31f is for address learning of the multicast LSP label. Of the codes shown in FIG. 25 and the address learning unit 31a, those having the same symbols as those described above indicate the same components.
Also, the egress routers 3h and 3i shown in FIG. 24 have the same configuration as the egress router 3g, and a duplicate description thereof will be omitted.
With such a configuration, the ingress router 1c shown in FIG. 24 can identify the multicast LSP newly defined between the ingress router 1c and the egress router 3g of the MPLS network 50 by the source ingress router 1c (user base). Create end-to-end as a point-to-multipoint path.
FIG. 26 is a diagram showing an example of a multicast LSP according to the seventh embodiment of the present invention. The ingress router 1c sets a point-to-multipoint multicast LSP between the ingress router 1c and the egress router 3g, and the VCID is set so that the ingress router 1c and the egress routers 3g to 3i can be identified. Is done.
Thereby, the multicast LSP also has a role of path determination, that is, a tunnel. Then, the ingress router 1c refers to the multicast VC label table 14 for the multicast frame received from the user site, sets the multicast LSP, transfers the multicast frame to the relay router 2p, and transmits it.
Specifically, the ingress router 1c outputs the layer 2 frame to be flooded to the multicast processing unit. Here, the multicast label table 14 is searched, and the label 11 is assigned and transferred, and transmitted from the output port 1.
On the other hand, the relay router 2p and the relay router 2q connected to the relay router 2p, when receiving this frame, know that it is a multicast MPLS frame from the “protocol type” of the L2 header, and thus the VC label table 14 for multicast (see FIG. 21) is searched, and the received frame is duplicated based on the search result, and the multicast user identification LSP label and the tunnel LSP label are exchanged (changed) and transmitted.
For example, the relay router 2p transmits a frame whose label is swapped to “12” to the output port 2, and transmits a frame whose label is swapped to “15” to the output port 3.
Further, when the egress router 3g receives the MPLS frame from the relay router 2q, the egress router 3g searches the address learning VC label table 32 based on the label 13 of the multicast frame to know the VC label to be address learned.
Therefore, in the seventh frame transfer method (“method 7”) of the present invention, the ingress router 1c is attached to the ingress router 1c and the MPLS frame transferred from the MPLS network 50 in the transfer process (transfer process step). The base / tunnel LSP that identifies the multicast VCLSP and the multicast tunnel LSP, respectively, with each of the three egress routers 3d to 3f that removes the tunnel label and the VC label and transmits to the outside of the MPLS network 50 (Setting step), the base / tunnel set in the setting step outside the plurality of MPLS frames transferred to the three relay routers 2p to 2r from the same output port as the output port that transfers the replication target frame LSP is granted (granting step), and at the granting step, the base / ton The MPLS frame granted Le LSP, is transmitted via the base tunnel LSP set by the setting step in each of the relay routers 2P～2r (transmission step).
Further, in the relay step, each of the relay routers 2p to 2r duplicates and forwards the MPLS frame transmitted in the transmission step via the base / tunnel LSP set in the setting step (transfer step). The MPLS frame transmitted in this way is duplicated and transferred through the base / tunnel LSP set in the setting step (transfer step).
Further, each of the egress routers 3d to 3f performs address learning using the base / tunnel LSP used in the transfer step (learning step).
In this way, transmission of the same frame is avoided on the link between the ingress router 1c and the relay router 2p, and the load on the MPLS network 50 is reduced.
Further, in this way, a new multicast LSP is set between the ingress router 1c and the egress router 3g, the egress routers 3d to 3f can identify the source ingress router 1c, and the point-to-multipoint path is end-to-end. Created.
Thus, in the layer 2 MPLS network 50 (L2VPN), the load on the MPLS network 50 can be suppressed to the minimum, and the transfer band can be used efficiently.
(H) Other
The present invention is not limited to the above-described embodiments and variations thereof.
The MPLS network 50 can also encapsulate and transfer optical frames or optical cells in addition to layer 2 packets as lower layer frames. For example, when the MPLS network 50 is connected to an optical wavelength transmission network (not shown), the optical wavelength transmission network corresponds to a lower layer network, and the MPLS network corresponds to an upper layer network.
More specifically, a plurality of routers belonging to the MPLS network are connected via an optical path corresponding to the link and an optical switch corresponding to the router in layer 2 which is a lower layer of each router. Furthermore, MPLS that is an upper layer of a router that belongs to an MPLS network and an optical switch function that is an upper layer of an optical transmission device that belongs to an optical wavelength transmission network are mutually set in an optical path and an optical switch. It can also be logically connected via

  As described above, according to the router, frame transfer method, and lower layer frame virtual transfer system of the present invention, the same frame is not duplicated and transferred on the same link between the ingress edge router and the relay router, and the load on the virtual network is reduced. An increase is prevented. Moreover, since the load on the virtual network can be reduced, the transmission band can be used efficiently. Furthermore, multicast and broadcast can be realized in a virtual network regardless of the packet or frame format of various protocols. In addition, existing network resources can be used. In addition, since the egress edge router has an address learning function, the source egress edge router can be identified, and a point-to-multipoint path is provided end-to-end.

Claims (13)

A router in a virtual network capable of transferring a label switch frame having a lower layer frame including a protocol identifier for identifying copy or non-replication and a hierarchical path identifier based on the hierarchical path identifier,
For the received lower layer frame or the received label switch frame, a determination unit that determines a replication target or a non-replication target based on a protocol identifier of the received lower layer frame or the received label switch frame;
The reception lower layer frame or the reception label switch frame determined as a non-replication target by the determination unit is subjected to pass processing, and the reception lower layer frame or the reception label switch frame determined as a replication target by the determination unit And a transfer processing unit that assigns and transfers at least one of a hierarchical path identifier for unicast, a hierarchical path identifier for multicast, and a user identifier. To the router. The router is configured as an ingress edge router that pushes the label switch frame to which the hierarchical path identifier is added to an external lower layer frame from outside the virtual network to the virtual network;
The determination unit determines whether or not it is necessary to copy the received external lower layer frame based on a multicast physical address table in which a physical address to be copied is associated with a plurality of output ports,
A label of a user site identification path selected from a plurality of user site identification paths for transferring a unicast frame to the received external lower layer frame determined to be duplicated by the determination unit by the transfer processing unit; At least one of a user base identification path label indicating a transfer source base of the copy target frame, a tunnel path label indicating a virtual route of the copy target frame, a multicast multicast label, and a user identifier for identifying a user The router according to claim 1, wherein the router is configured to transfer the packet with the label. The router is configured as a relay router that forwards the label switch frame to the virtual network based on the hierarchical path identifier;
The determination unit determines whether the label switch frame is to be copied or non-replicated based on a protocol type identifier included in the label switch frame,
The transfer processing unit bridge-transfers the label switch frame determined to be non-duplicated by the determining unit, and at least the user base identification path label for the label switch frame determined to be replicated by the determining unit Based on a multicast VC label table in which the processing contents for the label switch frame to be copied are associated with each other, the duplication processing, and the user base identification path label and the tunnel path label assignment processing are performed. The router according to claim 1, wherein the router is characterized in that: The router is configured as an egress edge router that removes the hierarchical path identifier attached to the label switch frame transferred from the virtual network and transmits it to the outside of the virtual network;
The transfer processing unit learns the correspondence between the source physical address of the label switch frame and the hierarchical path identifier, and sends the lower layer frame from which the hierarchical path identifier has been removed to the outside of the virtual network. The router according to claim 1, comprising a pop processing unit for transmission. A frame transfer method in a virtual network capable of transferring a label switch frame having a lower layer frame including a protocol identifier for identifying replication or non-replication and a hierarchical path identifier based on the hierarchical path identifier,
The ingress edge router that pushes the label switch frame with the hierarchical path identifier added to the external lower layer frame from the outside of the virtual network to the virtual network receives the received lower layer frame or the received label switch frame. A determination step of determining a replication target or a non-replication target based on a protocol identifier of a lower layer frame or the received label switch frame;
The ingress edge router passes through the received lower layer frame or the received label switch frame determined as the non-replication target in the determination step, and the received lower layer frame is determined as the replication target in the determination step. Or a transfer processing step of assigning and transferring at least one of a hierarchical path identifier for unicast, a hierarchical path identifier for multicast, and a user identifier to the received label switch frame;
The relay router that transfers to the virtual network transfers in the transfer processing step based on at least one of the hierarchical path identifier for unicast, the hierarchical path identifier for multicast, and the user identifier. And a relay step for copying or transferring the received lower layer frame or the received label switch frame. The forwarding processing step forwards the label switch frame in which the ingress edge router assigns a multicast address to the destination address of the received external lower layer frame,
In the relay step, the relay router duplicates and transfers the label switch frame transferred in the transfer processing step based on a multicast physical address table in which the multicast address and the transfer destination router address are associated with each other. 6. The frame transfer method according to claim 5, wherein the frame transfer method is characterized in that: The transfer processing step includes:
Determination that the ingress edge router determines whether the received external lower layer frame needs to be copied based on a physical address table in which a physical address to be copied and a user base identification path for transferring a unicast frame are associated with each other Steps,
The ingress edge router transfers a plurality of transfer destinations from the same output port as the output port that transfers the replication target frame of the plurality of user base identification paths for transferring the non-replication target frame of the user base identification path. A selection step of selecting from the user base identification path of the non-replication target frame;
The ingress edge router includes a transmission step of transmitting the label switch frame having the user base identification path selected in the selection step;
The relay step is:
The relay router duplicates and forwards the label switch frame transmitted in the transmission step based on the multicast user base identification path label table in which the multicast user base identification path label and the forwarding destination router address are associated with each other. The frame transfer method according to claim 5, wherein: The transfer processing step includes:
A setting step in which the ingress edge router sets a multicast user base identification path and a multicast tunnel path;
A forwarding step in which the ingress edge router forwards the label switch frame via the multicast user base identification path and the multicast tunnel path;
The relay step is:
A duplicating and forwarding step in which the first relay router duplicates and forwards the label switch frame based on the multicast label table in which the multicast user base identification path label and the forwarding destination router address are associated with each other;
The second relay router duplicates and forwards the label switch frame duplicated and transferred in the duplicate forwarding step via the multicast user site identification path and multicast tunnel path set in the setting step. 6. The frame transfer method according to claim 5, wherein: The transfer processing step includes:
A setting step in which the ingress edge router sets a base / tunnel identification path for identifying a multicast user base and a multicast tunnel;
A forwarding step in which the ingress edge router forwards the label switch frame through the base / tunnel identification path;
The relay step is:
A duplicating and forwarding step in which the first relay router duplicates and forwards the label switch frame based on the second multicast label table in which the base / tunnel identification path and the forwarding destination router address are associated with each other;
A second relay router duplicates and forwards the label switch frame duplicated and transferred in the duplicate forwarding step via the base / tunnel identification path set in the setting step. The frame transfer method according to claim 5, wherein The transfer processing step includes:
Between the ingress edge router and each of a plurality of egress edge routers that removes the hierarchical path identifier attached to the label switch frame transferred from the virtual network and transmits it to the outside of the virtual network. A setting step for setting a user base identification path for multicast and a tunnel path for multicast,
The multicast user base identification set in the setting step includes a plurality of the label switch frames transferred from the same output port to the plurality of relay routers by the ingress edge router as the output port that transfers the copy target frame. A transmission step of transmitting to each relay router via the path and the multicast tunnel path,
The relay step is:
Each relay router duplicates and forwards the label switch frame transmitted in the transmission step via the multicast user site identification path and the multicast tunnel path set in the setting step. The frame transfer method according to claim 5, wherein: The transfer processing step includes:
Between the ingress edge router and each of a plurality of egress edge routers that removes the hierarchical path identifier attached to the label switch frame transferred from the virtual network and transmits it to the outside of the virtual network. A setting step for setting a base / tunnel identification path for identifying a multicast user base and a multicast tunnel;
An assigning step in which the ingress edge router assigns a user identifier for identifying a user to the inside of the plurality of label switch frames that are transferred from the same output port to the plurality of relay routers as the output port that transfers the copy target frame ,
The ingress edge router transmits the label switch frame including the user identifier given in the frame in the granting step to each relay router via the base / tunnel identification path set in the setting step. With a send step,
The relay step is:
A forwarding step in which each relay router duplicates and transfers the label switch frame transmitted in the transmission step via the base / tunnel identification path set in the setting step;
The egress edge router includes a learning step of learning an address using the base / tunnel identification path used in the forwarding step and the user identifier assigned in the granting step. The frame transfer method according to claim 5. The transfer processing step includes:
Between the ingress edge router and each of a plurality of egress edge routers that removes the hierarchical path identifier attached to the label switch frame transferred from the virtual network and transmits it to the outside of the virtual network. A setting step for setting a base / tunnel identification path for identifying a multicast user base and a multicast tunnel;
The base / tunnel set in the setting step outside the plurality of the label switch frames transferred from the same output port to the plurality of relay routers by the ingress edge router as the output port that transfers the copy target frame A granting step for granting an identification path;
The ingress edge router transmits the label switch frame to which the base / tunnel identification path has been assigned in the granting step to each relay router via the base / tunnel identification path set in the setting step. With steps,
The relay step is:
A forwarding step in which each relay router duplicates and transfers the label switch frame transmitted in the transmission step via the base / tunnel identification path set in the setting step;
A forwarding step in which each relay router replicates and forwards the label switch frame transmitted in the transmission step via the base / tunnel identification path set in the setting step;
6. The frame transfer method according to claim 5, further comprising a learning step in which the egress edge router learns an address using the base / tunnel identification path used in the transfer step. A label switch frame having a lower layer frame including a protocol identifier for identifying copy or non-replication and a hierarchical path identifier is transferred to an external lower layer frame from outside the virtual network that can be transferred based on the hierarchical path identifier. An ingress edge router that pushes the label switch frame with the hierarchical path identifier to the virtual network;
A relay router that forwards the label switch frame forwarded from the ingress edge router to the virtual network based on the hierarchical path identifier;
An egress edge router that removes the hierarchical path identifier assigned to the label switch frame forwarded from the relay router and transmits it to the outside of the virtual network;
The above ingress edge router, relay router and egress edge router are
For the received lower layer frame or the received label switch frame, a determination unit that determines a replication target or a non-replication target based on a protocol identifier of the received lower layer frame or the received label switch frame;
The reception lower layer frame or the reception label switch frame determined as a non-replication target by the determination unit is subjected to pass processing, and the reception lower layer frame or the reception label switch frame determined as a replication target by the determination unit And a transfer processing unit for assigning and transferring at least one of a hierarchical path identifier for unicast, a hierarchical path identifier for multicast, and a user identifier. A lower layer frame virtual forwarding system.

Images