TW201906377A - Multi-level flow table control method based on mobile service category capable of reducing the number of flow entry and increasing the number of subscribers supported by the system - Google Patents

Multi-level flow table control method based on mobile service category capable of reducing the number of flow entry and increasing the number of subscribers supported by the system Download PDF

Info

Publication number
TW201906377A
TW201906377A TW106121735A TW106121735A TW201906377A TW 201906377 A TW201906377 A TW 201906377A TW 106121735 A TW106121735 A TW 106121735A TW 106121735 A TW106121735 A TW 106121735A TW 201906377 A TW201906377 A TW 201906377A
Authority
TW
Taiwan
Prior art keywords
user
flow table
service
mobile
module
Prior art date
Application number
TW106121735A
Other languages
Chinese (zh)
Other versions
TWI632791B (en
Inventor
顏勝盈
高凌志
李岳峰
李貞慧
萬江祥
Original Assignee
中華電信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中華電信股份有限公司 filed Critical 中華電信股份有限公司
Priority to TW106121735A priority Critical patent/TWI632791B/en
Application granted granted Critical
Publication of TWI632791B publication Critical patent/TWI632791B/en
Publication of TW201906377A publication Critical patent/TW201906377A/en

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A flexible multi-level flow table control method based on mobile service category mainly includes the following steps: provisioning the routing of a mobile service combination in a non-predetermined flow table of a software-defined network switch in advance; obtaining real-time Internet information (IP, subscriber identification number) of a mobile subscriber by capturing mobile network signaling; associating with service combination information (subscriber identification number, flow table ID of service combination) applied by the subscriber, and provisioning the subscriber IP and the routing flow table ID of the applied service into a predetermined flow table of the software-defined network switch after successful association; and giving an idle timer to reduce occupation of flow table resources while the subscriber is idling. Thereby, when the software-defined network switch processes the subscriber packets that apply the same service combination, the same flow table is used to reduce the number of flow entry and increase the number of subscribers supported by the system.

Description

基於行動服務類別之多階層Flow table控制方法  Multi-level Flow table control method based on action service category  

本發明係有關一種針對行動服務鏈之應用,使用軟體定義網路交換機(SDN Switch)動態控制各別用戶訊務路由,提出Multi-level Flow Table Control(MFTC)方法,來規劃Flow table使用方式以提升系統所支援之用戶數的基於行動服務類別之多階層Flow table控制方法。 The invention relates to an application for an action service chain, uses a software defined network switch (SDN Switch) to dynamically control individual user traffic routing, and proposes a Multi-level Flow Table Control (MFTC) method to plan a flow table usage manner. A multi-level Flow table control method based on an action service category that enhances the number of users supported by the system.

中華民國第104130883號「一種基於行動網路信令之行動服務網路策略路由控制方法」,提供一種當行動用戶進行上網服務時,採用軟體定義網路(SDN)交換機(Switch)於行動服務網路中,其依據用戶不同上網情境之服務需求,將其訊務繞送到所需的網路服務節點,惟該專利案使用OpenFlow協定於軟體定義網路交換機中實現控制各別用戶的訊務繞送路徑,由於SDN交換機中每一條Flow Entry(流程條目)僅能控制單一用戶封包的單一繞送路徑,因此若要針對所有行動用戶進行客制化控制,須使用大量SDN交換機上的Flow table(流程表)容量。 The Republic of China No. 104130883 "A Mobile Network Signaling-based Mobile Service Network Policy Routing Control Method" provides a software-defined network (SDN) switch (Switch) for mobile service networks when mobile users access the Internet. In the road, it routes its traffic to the required network service node according to the service needs of users in different online situations. However, the patent uses the OpenFlow protocol to control the traffic of individual users in the software-defined network switch. Bypassing the path, since each Flow Entry in the SDN switch can only control a single routing path of a single user packet, to customize the control for all mobile users, a large number of Flow tables on the SDN switch must be used. (flow chart) capacity.

但因SDN交換機中大多採用TCAM(Ternary Content Addressable Memory,三元內容可定址記憶體)來實現Flow table,以進行快速地封包繞送,但由於TCAM成本昂貴且耗電,所以SDN交換機上的TCAM容量很少(發明人說約32k),若發生Table OverFlow時將額外產生延遲。 However, most of the SDN switches use TCAM (Ternary Content Addressable Memory) to implement Flow table for fast packet routing, but because TCAM is expensive and consumes power, TCAM on SDN switch The capacity is small (inventors say about 32k), and there will be an additional delay if Table OverFlow occurs.

另外,美國專利第US9203765 B2號「Flow based network service insertion using a service chain identifier」提供一種能夠產生一個網路圖庫(Network Graph Database)以儲存網路拓撲及各項Server節點的分佈資訊,當用戶提出Service Request時,系統會由記錄的網路圖庫中尋找一個合適的子集合,使用滿足用戶所提出的Service Request,並且分配一個Service ID來代表該用戶的datapath,並使用programming network以該Service ID來建立datapath,各節點間以建立tunnel的方式,將用戶的訊務(Traffic)繞經各個Service,惟該專利案須是透過Controller將用戶封包分類(插入vlan id),需修改封包內容,且該專利案須將用戶傳輸的封包由switch導向controller,則兩設備間的頻寬將成為此服務的流量瓶頸,除此之外Controller須將用戶封包分類,也會造成效能瓶頸。 In addition, US Pat. No. 9203765 B2 "Flow based network service insertion using a service chain identifier" provides a network graph database to store network topology and distribution information of various server nodes when the user proposes Service Request, the system will find a suitable subset of the recorded network library, use the Service Request proposed by the user, and assign a Service ID to represent the user's datapath, and use the programming network to use the Service ID. Establish a datapath, and establish a tunnel between the nodes to bypass the user's traffic (Traffic). However, the patent case must classify the user packet (insert vlan id) through the Controller, and modify the packet content. The patent case must direct the packet transmitted by the user from the switch to the controller, and the bandwidth between the two devices will become the traffic bottleneck of the service. In addition, the Controller must classify the user packet, which also causes a performance bottleneck.

此外,美國專利第US9363180 B2號「Service chaining in a cloud environment using Software Defined Networking」,主要透過SDN switch接收用戶傳輸的封包後,若無法辨識封包即轉送至SDN controller,SDN controller學習後,新增一條Flow,其為指派一個Service chaining辨識碼於封包中,再將其封包轉發至SDN switch,由switch將封包繞送至service chaining的下一個服務節點,然而該專利案是透過SDN controller辨識用戶封包後才供裝Flow至SDN switch,用戶傳輸的封包須經由SDN switch導向SDN controller,則其兩間的頻寬將成為此服務的流量瓶頸。 In addition, US Patent No. US9363180 B2 "Service chaining in a cloud environment using Software Defined Networking" mainly receives the packet transmitted by the user through the SDN switch, and if it cannot identify the packet, it transfers it to the SDN controller, and after the SDN controller learns, a new one is added. Flow, which assigns a Service chaining identification code to the packet, and then forwards its packet to the SDN switch, and the switch forwards the packet to the next service node of the service chaining. However, the patent case identifies the user packet through the SDN controller. Only the Flow to SDN switch is installed, and the packet transmitted by the user must be directed to the SDN controller via the SDN switch, and the bandwidth of the two rooms will become the traffic bottleneck of the service.

由上所述,目前之習知技術具有其問題所在,並非一良善之設計,故本案發明人乃亟思加以改良創新,並經苦心孤詣潛心研究後,終於成功研發完成本件基於行動服務類別之多階層Flow table控制方法。 From the above, the current well-known technology has its problems, and it is not a good design. Therefore, the inventor of this case has improved and innovated, and after painstaking research, he finally succeeded in researching and developing this type of mobile service-based service. Hierarchical Flow table control method.

為解決上述習知技術之問題,本發明之一目的係在於提供一種可有效解決傳統將所訊務導到所有的服務節點所造成的頻寬浪費,並降低所有經過所有服務節點的複雜性及時間延遲問題的基於行動服務類別之多階層Flow table控制方法。 In order to solve the above problems of the prior art, it is an object of the present invention to provide an efficient solution to the bandwidth waste caused by traditionally routing services to all service nodes, and to reduce the complexity of all service nodes. Multi-level Flow table control method based on action service category for time delay problem.

為解決上述習知技術之問題,本發明之另一目的係在於提供一種不用繞送所有的服務經過所有服務節點,而可大幅降低建設成本的基於行動服務類別之多階層Flow table控制方法。 In order to solve the above problems of the prior art, another object of the present invention is to provide a multi-level flow table control method based on an action service category that can greatly reduce construction costs without bypassing all services through all service nodes.

為解決上述習知技術之問題,本發明之又一目的係在於提供一種可有效提升系統支援之用戶數量上限的基於行動服務類別之多階層Flow table控制方法。 In order to solve the above problems of the prior art, another object of the present invention is to provide a multi-level flow table control method based on an action service category that can effectively increase the upper limit of the number of users supported by the system.

為達成上述之目的,本發明基於行動服務類別之多階層Flow table控制方法係在SDN交換機有限的TCAM容量中,利用Multi-level Flow table Control(MFTC,多階層流程表控制)方法,將服務組合的繞送路徑之Flow Entry供裝在非預設的Flow table中,而SDN交換機處理申裝相同服務類別的用戶封包時,則使用相同的Flow table,該方法可以減少Flow Entry的使用數量以減緩Table OverFlow之狀況,進而提升系統所支援之用戶數。 In order to achieve the above object, the multi-level Flow table control method based on the mobile service category of the present invention combines services by using a multi-level flow table control (MFTC, multi-level flow table control) method in a limited TCAM capacity of an SDN switch. The Flow Entry of the routing path is installed in a non-predetermined Flow table, and the SDN switch uses the same Flow table when processing user packets that apply the same service class. This method can reduce the number of Flow Entry used to slow down. The status of Table OverFlow, which in turn increases the number of users supported by the system.

1‧‧‧軟體定義網路控制器 1‧‧‧Software Defined Network Controller

2‧‧‧軟體定義網路交換機 2‧‧‧Software-defined network switches

3‧‧‧服務組合設定模組 3‧‧‧Service Combination Setting Module

4‧‧‧用戶路由決策模組 4‧‧‧User Routing Decision Module

5‧‧‧行動網路信令擷取模組 5‧‧‧Mobile Network Signaling Capture Module

圖1係為本發明基於行動服務類別之多階層Flow table控制方法實現之架構圖;圖2係為本發明MFTC之SDN switch運作示意圖; 圖3係為本發明之服務組合設定模組的運作流程圖;圖4係為本發明行動網路信令擷取模組之運作流程圖;圖5係為本發明用戶路由決策模組之運作流程圖;以及圖6係為本發明基於行動服務類別之多階層Flow table控制方法之實施狀態示意圖。 1 is a schematic diagram of an implementation of a multi-level Flow table control method based on a mobile service category according to the present invention; FIG. 2 is a schematic diagram of an SDN switch operation of the MFTC of the present invention; FIG. 3 is an operational flow of the service combination setting module of the present invention. Figure 4 is a flow chart of the operation of the mobile network signaling acquisition module of the present invention; Figure 5 is a flow chart of the operation of the user routing decision module of the present invention; and Figure 6 is based on the mobile service category of the present invention. Schematic diagram of the implementation state of the multi-level Flow table control method.

以下將描述具體之實施例以說明本發明之實施態樣,惟其並非用以限制本發明所欲保護之範疇:請參閱圖1,為本發明基於行動服務類別之多階層Flow table控制方法之實現架構圖,其主要係由一訊務路由控制裝置接收處理行動無線與核心網路信令資料,透過軟體定義網路控制器1,控制軟體定義網路交換機2路由設定,以達到針對不同用戶繞送其訊務到所需的行動服務,其運作流程如下: The specific embodiments are described below to illustrate the embodiments of the present invention, but are not intended to limit the scope of the present invention. Referring to FIG. 1, the implementation of the multi-level Flow table control method based on the mobile service category of the present invention is implemented. The architecture diagram mainly includes receiving, by a traffic routing control device, the processing action radio and the core network signaling data, and defining the network controller 1 through the software, and controlling the software to define the network switch 2 routing setting to achieve the rotation for different users. Sending its services to the required mobile services, the operation process is as follows:

a. 服務組合設定模組3預先將行動網路服務組合繞送路由透過軟體定義網路控制器1供裝入軟體定義網路交換機2中一特定Flow table ID,以及將用戶申裝之服務組合包含Flow table ID與用戶識別碼傳送至用戶路由決策模組4儲存。 a service combination setting module 3 pre-routes the mobile network service combination routing through the software definition network controller 1 for loading a specific flow table ID in the software definition network switch 2, and the service combination of the user application The flow table ID and the user identification code are transmitted to the user routing decision module 4 for storage.

b. 透過一行動網路信令擷取模組5擷取行動用戶資料,包含:IMSI(International Mobile Subscriber Identity,國際移動用戶識別碼)、MSISDN(Mobile Subscriber International ISDN number,移動台國際用戶識別碼)及用戶IP位址等。 b. Obtaining mobile subscriber data through a mobile network signaling acquisition module 5, including: IMSI (International Mobile Subscriber Identity), MSISDN (Mobile Subscriber International ISDN number) ) and user IP address, etc.

c. 將擷取之資料傳送給用戶路由決策模組4與其儲存之用戶申裝資料進行關聯,當關聯成功後,透過軟體定義網路控制器1將用戶IP位址與其申裝服務的繞送路由Flow table ID供裝入軟體定義網路交換機2預設之Flow table中,並給定一個idle timer,如果一直無封包經過此Flow,當timer時間到,則此Flow自動刪除,避免用戶無使用網路使用占用Flow table容量。 c. Transfer the captured data to the user routing decision module 4 to associate with the stored user application data. After the association is successful, the network controller 1 is configured to route the user IP address and the application service through the software. The flow table ID is used to load the software to define the default flow table of the network switch 2, and an idle timer is given. If there is no packet passing through the flow, when the timer expires, the flow is automatically deleted to prevent the user from using the flow. Network usage occupies the flow table capacity.

d. 當行動用戶上網時,其訊務到達軟體定義網路交換機2時,如圖2所示,首先比對Flow table 0中的Flow Entry之用戶IP條件,當比對成功及跳到其申裝之服務組合繞送路徑Flow table ID N進行訊務繞送。 d. When the mobile user accesses the Internet and the service reaches the software definition network switch 2, as shown in Figure 2, first compare the user IP conditions of Flow Entry in Flow table 0, when the comparison is successful and jump to its application The service combination wraps around the path Flow table ID N for traffic routing.

e. 若Flow table 0均無比對到相同之用戶IP,即將訊務繞送至網際網路。 e. If Flow table 0 is unmatched to the same user IP, the traffic will be routed to the Internet.

上述之服務組合設定模組3、用戶路由決策模組4及行動網路信令擷取模組5可部署於同一硬體平台,且服務組合設定模組3、用戶路由決策模組4及行動網路信令擷取模組5間藉由程式化界面進行通訊,或者,上述之服務組合設定模組3、用戶路由決策模組4及行動網路信令擷取模組5亦可部署於不同硬體平台,且服務組合設定模組3、用戶路由決策模組4及行動網路信令擷取模組5間藉由IP基礎之通訊協定進行通訊,另外,本發明可實施之行動網路可為GSM(全球移動通訊系統)、UMTS(通用移動通訊系統)、LTE(長期演進技術)等。 The service combination setting module 3, the user routing decision module 4, and the mobile network signaling capturing module 5 can be deployed on the same hardware platform, and the service combination setting module 3, the user routing decision module 4, and the action The network signaling capture module 5 communicates through a stylized interface, or the service combination setting module 3, the user routing decision module 4, and the mobile network signaling capture module 5 can also be deployed in Different hardware platforms, and the service combination setting module 3, the user routing decision module 4, and the mobile network signaling capturing module 5 communicate through an IP-based communication protocol, and the mobile network that can be implemented by the present invention The road can be GSM (Global System for Mobile Communications), UMTS (Universal Mobile Telecommunications System), LTE (Long Term Evolution), and the like.

請參閱圖1及圖3,為本發明服務組合設定模組的運作流程圖,若設定者設定運營商提供之行動服務組合,當設定者設定完後,將行動服務組合轉換為繞送路由之Flow Entry,透過軟體定義網路控制器1(controller)供裝入軟體定義網路交換機2(Switch)中一特定Flow Table ID。若設定者設定用戶申裝之服務組合,其設定包含用戶識別碼與用戶申裝之服務組合,當設定者設定完後, 將用戶申裝用戶申裝之服務組合的Flow Table ID與用戶識別碼傳送至用戶路由決策模組4儲存。 Please refer to FIG. 1 and FIG. 3 , which are flowcharts of operation of the service combination setting module of the present invention. If the setter sets the mobile service combination provided by the operator, when the setter is set, the mobile service combination is converted into a routing route. Flow Entry defines a specific Flow Table ID in the software definition network switch 2 (Switch) through the software definition network controller 1 (controller). If the setter sets the service combination applied by the user, the setting includes the combination of the user identification code and the service applied by the user. When the setter is set, the user applies the Flow Table ID and the user identification code of the service combination applied by the user. Transfer to the user routing decision module 4 for storage.

請參閱圖1及圖4,為本發明行動網路信令擷取模組之運作流程圖,該行動網路信令擷取模組5係利用一訊號擷取單元持續擷取行動用戶於網路之信令資訊,解析產生用戶上網即時資訊,並將用戶上網即時資訊傳送至用戶路由決策模組4,其中,用戶上網即時資訊包括:IMSI(International Mobile Subscriber Identity,國際移動用戶識別碼)、MSISDN(Mobile Subscriber International ISDN number,移動台國際用戶識別碼)及用戶IP位址等。 1 and FIG. 4 are flowcharts showing the operation of the mobile network signaling capture module of the present invention. The mobile network signaling capture module 5 continuously captures mobile users by using a signal acquisition unit. The signaling information of the road is analyzed to generate real-time information of the user, and the instant information of the user is transmitted to the user routing decision module 4, wherein the instant information of the user includes: IMSI (International Mobile Subscriber Identity), MSISDN (Mobile Subscriber International ISDN number) and user IP address.

請參閱圖1及圖5,為本發明用戶路由決策模組之運作流程圖,該用戶路由決策模組4之運作係一,接收並儲存服務組合設定模組3傳送之服務組合之Flow Table ID與用戶識別碼,二,接收行動網路信令擷取模組5傳送之用戶識別碼與用戶IP位址,並與儲存之用戶申裝服務透過用戶識別碼進行關聯。當關聯成功後,檢查軟體定義網路交換機2是否已存在相同的Flow Entry,如果為否,則透過軟體定義網路控制器1將用戶IP位址與其申裝服務的繞送路由Flow Table ID供裝入軟體定義網路交換機2預設之Flow table中,並給定一個idle timer,如果無封包經過此Flow Entry,即啟動timer,當用戶idle時間超過timer,則此Flow Entry自動刪除。 1 and FIG. 5 are flowcharts showing the operation of the user routing decision module of the present invention. The operation of the user routing decision module 4 is to receive and store the Flow Table ID of the service combination transmitted by the service combination setting module 3. And the user identification code, second, receiving the user identification code and the user IP address transmitted by the mobile network signaling extraction module 5, and associating with the stored user application service by using the user identification code. After the association is successful, check whether the software defines that the same Flow Entry exists in the network switch 2. If not, the network controller 1 defines the routing address of the user IP address and its application service through the software flow table ID. The load software defines the default flow table of the network switch 2, and gives an idle timer. If no packet passes this Flow Entry, the timer is started. When the user idle time exceeds the timer, the Flow Entry is automatically deleted.

請參閱圖1~6,以下特舉一實施例說明本發明基於行動服務類別之多階層Flow table控制方法之實施狀態:當用戶A、B、C均申裝同一服務組合,其包含Mobile Service(行動服務)App 1、App 3、App 4,首先設定者透過服務組合設定模組3,將服務組合之Flow Table ID與用戶識別碼傳送至用戶路由決策模組4儲存,當用戶A、B、C透過UE(user equipment,使用者裝置)行動上網時, 經由行動網路信令擷取模組5取得個別用戶上網資訊,透過用戶路由決策模組4將行動網路信令擷取模組5傳送之用戶識別碼與用戶IP位址,並與儲存之用戶申裝服務透過用戶識別碼進行關聯。當關聯成功後,透過軟體定義網路控制器1將用戶IP位址與其申裝服務的繞送路由Flow Table ID,供裝入軟體定義網路交換機2預設之Flow table中(即在Flow Table 0中加入該用戶的Flow Entry)。 Referring to FIG. 1 to FIG. 6 , the following describes an implementation state of the multi-level Flow table control method based on the mobile service category of the present invention: when users A, B, and C both apply the same service combination, which includes the Mobile Service ( Action Service) App 1, App 3, App 4, first setter through the service combination setting module 3, the service group's Flow Table ID and user identification code are transmitted to the user routing decision module 4 for storage, when the user A, B, When the user accesses the Internet through the UE (user equipment), the mobile network signaling module 5 obtains the individual user's online information, and the mobile network signaling extraction module 5 is transmitted through the user routing decision module 4. The transmitted user identification code and the user IP address are associated with the stored user application service through the user identification code. After the association is successful, the network controller 1 defines the routing information of the user IP address and its application service through the software flow table ID for loading into the flow table defined by the software definition network switch 2 (ie, in the Flow Table). 0 is added to the user's Flow Entry).

其中,如表一所示,用戶A、B、C在未採用本發明基於行動服務類別之多階層Flow table控制方法時,單一用戶須要占用8條Flow Entry,因此,用戶A、B、C共須要24條Flow Entry,而若採用本發明基於行動服務類別之多階層Flow table控制方法,則單一用戶須佔用10條Flow Entry,本例共三個用戶僅須要14條Flow Entry,且若運營商僅提供一種服務組合,其兩者相差之Flow Entry數目如表二所示,採用本發明基於行動服務類別之多階層Flow table控制方法應用於行動服務路由繞送,可比一般無規畫Flow table使用方式提升M+1倍容量(M為服務組合App數)。 As shown in Table 1, when users A, B, and C do not use the multi-level Flow table control method based on the mobile service category of the present invention, a single user needs to occupy 8 Flow Entrys. Therefore, users A, B, and C have a total of 24 Flow Entry is required, and if the multi-level Flow table control method based on the mobile service category of the present invention is used, a single user must occupy 10 Flow Entry. In this example, only three users need only 14 Flow Entry, and if the operator Only one service combination is provided, and the number of Flow Entry in which the two are different is shown in Table 2. The multi-level Flow table control method based on the action service category of the present invention is applied to the routing routing of the mobile service, which can be used by the general random flow table. The method improves the M+1 capacity (M is the service combination App number).

表一、有無採用本發明基於行動服務類別之多階層Flow table控制方法之SDN switch Flow table之比較表 Table 1 : Comparison table of SDN switch Flow table using multi-level Flow table control method based on mobile service category of the present invention

因此,以本實施例有用戶A、B、C時,若服務組合APP數為1,即表示服務組合有1種:未規劃Flow table使用方法時,Flow Entry數為3*(1+1)*2=12條 Therefore, when there are users A, B, and C in this embodiment, if the number of service combination APPs is 1, it means that there is one service combination: when the Flow table usage method is not planned, the Flow Entry number is 3*(1+1). *2=12

採用本發明技術,Flow Entry數為(3+1+1)*2=10條 With the technique of the present invention, the Flow Entry number is (3+1+1)*2=10

若服務組合APP數為2,即表示服務組合有1、2、1+2,3,6種:未規劃Flow table使用方法時,Flow Entry數為3*(2+1)*2=18條 If the number of service combination APPs is 2, it means that the service combination has 1, 2, 1+2, 3, 6 kinds: when the Flow table usage method is not planned, the Flow Entry number is 3*(2+1)*2=18

採用本發明技術,Flow Entry數為3*(2+1)*2=18條 With the technique of the present invention, the Flow Entry number is 3*(2+1)*2=18

若服務組合APP數為3,即表示服務組合有1、2、3、1+2、1+3、1+2+3,6種:未規劃Flow table使用方法時,Flow Entry數為3*(3+1)*2=24條 If the number of service combination APPs is 3, it means that the service combination has 1, 2, 3, 1+2, 1+3, 1+2+3, 6 kinds: when the Flow table usage method is not planned, the Flow Entry number is 3*. (3+1)*2=24

採用本發明技術,Flow Entry數為(3+3+1)*2=14條 With the technique of the present invention, the Flow Entry number is (3+3+1)*2=14

由上所述,本發明讓行動網路業者判斷用戶接取服務類型後決定必要的封包繞送節點,解決傳統將所有訊務導到所有的服務節點,造成頻寬的浪 費,也可降低所有經過所有服務節點的複雜性及時間延遲的問題,並由於不用繞送所有的服務經過所有服務節點,在資料中心的建設成本上亦可大幅降低。,本發明提出之MFTC(多階層流程表控制)方法,可有效提升系統支援之用戶數量上限,其效果為未規畫Flow table使用方式(傳統)之M+1倍(M為服務組合App數)。因此,本發明管理軟體定義網路交換機,使得其處理申裝相同服務組合之用戶封包時,使用相同的Flow Table,減少Flow Entry的使用數量,可有效提升系統所支援之用戶數。 As described above, the present invention allows the mobile network operator to determine the type of the service to receive the necessary packet forwarding node, and to solve the traditional problem of all the services to all the service nodes, resulting in waste of bandwidth and lowering all After the complexity and time delay of all service nodes, and because all services are not circumvented through all service nodes, the construction cost of the data center can be greatly reduced. The MFTC (Multi-Level Flow Table Control) method proposed by the present invention can effectively increase the maximum number of users supported by the system, and the effect is M+1 times of the unused flow table usage mode (traditional) (M is the number of service combination App) ). Therefore, the management software of the present invention defines a network switch so that when it processes a user packet applying the same service combination, the same Flow Table is used to reduce the number of Flow Entry used, which can effectively increase the number of users supported by the system.

上列詳細說明乃針對本發明之可行實施例進行具體說明,因此,並非用以限制本發明之專利範圍,凡未脫離本發明技藝精神所為之等效實施或變更,均應包含於本案之專利範圍中,且本案不僅於技術思想上確屬創新,同時具備習用之傳統結構所不及之多項功效,已充分符合新穎性及進步性之法定專利要件,爰依法提出申請,懇請 貴局核准本件發明專利申請案,以勵發明,至感德便。 The detailed description of the present invention is intended to be illustrative of the preferred embodiments of the present invention, and is not intended to limit the scope of the invention. In the scope, and the case is not only innovative in terms of technical thinking, but also has many functions that are incompatible with the traditional structure of the past, it has fully complied with the statutory patent requirements of novelty and progressiveness, and applied for it according to law, and urges you to approve the invention. Patent application, in order to invent, to the sense of virtue.

Claims (8)

一種基於行動服務類別之多階層Flow table控制方法,其主要流程步驟:a. 利用服務組合設定模組預先將行動網路服務組合繞送路由供裝入軟體定義網路交換機(SDN Switch)中一Flow table(流程表)ID,以及將用戶申裝之服務組合包含Flow table ID與用戶識別碼傳送至用戶路由決策模組儲存;b. 透過行動網路信令擷取模組擷取行動用戶資料;c. 將擷取之資料傳送給用戶路由決策模組與用戶路由決策模組儲存之用戶申裝資料進行關聯,當關聯成功後,透過軟體定義網路控制器(SDN controller)將用戶IP位址與其申裝服務的繞送路由Flow table ID供裝入軟體定義網路交換機預設之Flow table中。d. 當行動用戶上網時,其訊務到達軟體定義網路交換機時,首先比對Flow table中的Flow Entry(流程條目)之用戶IP位址,當比對成功時即跳到其申裝之服務組合繞送路徑進行訊務繞送。e. 若Flow table均無比對到相同之用戶IP,即將訊務繞送至網際網路。  A multi-level flow table control method based on a mobile service category, the main process steps: a. using a service combination setting module to pre-route the mobile network service combination for loading into a software-defined network switch (SDN Switch) Flow table ID, and the service combination that the user applies, including the Flow table ID and the user identification code, is transmitted to the user routing decision module for storage; b. The action network information capture module is used to capture the action user data. ;c. Transfer the captured data to the user routing decision module and associate with the user application data stored by the user routing decision module. After the association is successful, the user IP address is defined by the software defined network controller (SDN controller). The routing table Flow address ID of the address and its application service is stored in the Flow table preset by the software definition network switch. d. When the mobile user accesses the software-defined network switch, the user first compares the user IP address of the Flow Entry in the Flow table. When the comparison is successful, the user jumps to the application. The service combination bypasses the path for traffic routing. e. If the Flow table is incomparably the same user IP, the traffic will be routed to the Internet.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中行動用戶資料包括IMSI(International Mobile Subscriber Identity,國際移動用戶識別碼)、MSISDN(Mobile Subscriber International ISDN number,移動台國際用戶識別碼)及用戶IP位址。  The multi-level flow table control method based on the action service category, as described in claim 1, wherein the mobile subscriber data includes an IMSI (International Mobile Subscriber Identity), an MSISDN (Mobile Subscriber International ISDN number) Identification code) and user IP address.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中軟體定義網路控制器(SDN controller)將用戶IP位址與其申裝服務的繞 送路由Flow table ID供裝入軟體定義網路交換機預設之Flow table時,並給定一個idle timer(閒置計時器),當用戶閒置時間超過idle timer所設定的時間,則此Flow table之Flow Entry(流程條目)自動刪除,避免用戶無使用網路使用占用Flow table容量。  The multi-level flow table control method based on the action service category, as described in claim 1, wherein the software defined network controller (SDN controller) supplies the user IP address and the routing route of the application service to the flow table ID for loading the software. When defining the flow table preset by the network switch, and giving an idle timer, when the idle time of the user exceeds the time set by the idle timer, the Flow Entry of the Flow table is automatically deleted to avoid The user does not use the network to occupy the flow table capacity.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中服務組合設定模組、用戶路由決策模組及行動網路信令擷取模組係部署於同一硬體平台上,且服務組合設定模組、用戶路由決策模組及行動網路信令擷取模組間藉由程式化界面進行通訊。  The multi-level flow table control method based on the action service category, as described in claim 1, wherein the service combination setting module, the user routing decision module, and the mobile network signaling extraction module are deployed on the same hardware platform, The service combination setting module, the user routing decision module, and the mobile network signaling capturing module communicate through the stylized interface.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中服務組合設定模組、用戶路由決策模組及行動網路信令擷取模組係部署於不同硬體平台上,且服務組合設定模組、用戶路由決策模組及行動網路信令擷取模組間藉由IP基礎之通訊協定進行通訊。  The multi-level flow table control method based on the action service category, as described in claim 1, wherein the service combination setting module, the user routing decision module, and the mobile network signaling extraction module are deployed on different hardware platforms, The service combination setting module, the user routing decision module, and the mobile network signaling capturing module communicate through an IP-based communication protocol.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中行動網路信令擷取模組係利用一訊號擷取單元持續擷取行動用戶於網路之信令資訊,解析產生用戶上網即時資訊,並將用戶上網即時資訊傳送至用戶路由決策模組。  The multi-level flow table control method based on the action service category described in claim 1, wherein the mobile network signaling extraction module continuously uses a signal acquisition unit to continuously extract signaling information of the mobile user on the network, and analyzes The user generates instant information on the Internet and transmits the instant information of the user to the user routing decision module.   如請求項6所述之基於行動服務類別之多階層Flow table控制方法,其中用戶上網即時資訊包括:IMSI(International Mobile Subscriber Identity,國際移動用戶識別碼)、MSISDN(Mobile Subscriber International ISDN number,移動台國際用戶識別碼)及用戶IP位址。  The multi-level flow table control method based on the action service category, as described in claim 6, wherein the user online instant information includes: IMSI (International Mobile Subscriber Identity), MSISDN (Mobile Subscriber International ISDN number, mobile station) International User ID) and user IP address.   如請求項1所述之基於行動服務類別之多階層Flow table控制方法,其中用戶路由決策模組之運作係接收並儲存服務組合設定模組傳送之服務 組合之Flow Table ID與用戶識別碼,或接收行動網路信令擷取模組傳送之用戶識別碼與用戶IP位址,並與儲存之用戶申裝服務透過用戶識別碼進行關聯。  The multi-level flow table control method based on the action service category described in claim 1, wherein the operation of the user routing decision module receives and stores the Flow Table ID and the user identification code of the service combination transmitted by the service combination setting module, or Receiving the user identification code and the user IP address transmitted by the mobile network signaling retrieval module, and associating with the stored user application service by using the user identification code.  
TW106121735A 2017-06-29 2017-06-29 Multi-level Flow table control method based on action service category TWI632791B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW106121735A TWI632791B (en) 2017-06-29 2017-06-29 Multi-level Flow table control method based on action service category

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW106121735A TWI632791B (en) 2017-06-29 2017-06-29 Multi-level Flow table control method based on action service category

Publications (2)

Publication Number Publication Date
TWI632791B TWI632791B (en) 2018-08-11
TW201906377A true TW201906377A (en) 2019-02-01

Family

ID=63959849

Family Applications (1)

Application Number Title Priority Date Filing Date
TW106121735A TWI632791B (en) 2017-06-29 2017-06-29 Multi-level Flow table control method based on action service category

Country Status (1)

Country Link
TW (1) TWI632791B (en)

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102843299A (en) * 2012-09-12 2012-12-26 盛科网络(苏州)有限公司 Method and system for realizing Openflow multi-stage flow tables on basis of ternary content addressable memory (TCAM)
US8964752B2 (en) * 2013-02-25 2015-02-24 Telefonaktiebolaget L M Ericsson (Publ) Method and system for flow table lookup parallelization in a software defined networking (SDN) system
CN104468357B (en) * 2013-09-16 2019-07-12 中兴通讯股份有限公司 Multipolarity method, the multilevel flow table processing method and processing device of flow table
WO2016095201A1 (en) * 2014-12-19 2016-06-23 华为技术有限公司 Service link deployment method and device
CN104618194B (en) * 2015-02-15 2018-03-20 新华三技术有限公司 Software defined network monitoring messages method and SDN controllers, switching equipment
CN105162759A (en) * 2015-07-17 2015-12-16 哈尔滨工程大学 SDN network DDoS attack detecting method based on network layer flow abnormity

Also Published As

Publication number Publication date
TWI632791B (en) 2018-08-11

Similar Documents

Publication Publication Date Title
Li et al. ECCN: Orchestration of edge-centric computing and content-centric networking in the 5G radio access network
EP3496338B1 (en) Method for identifying application information in network traffic, and apparatus
JP6509219B2 (en) Methods, systems, and computer readable media for Diameter routing using software defined network (SDN) functionality
US10498765B2 (en) Virtual infrastructure perimeter regulator
CN108293001B (en) Software defined data center and deployment method of service cluster in software defined data center
US20210105669A1 (en) Service delivery to a roaming user equipment using a software-defined networking (sdn) controller
US9380111B2 (en) Feature peer network with scalable state information
CN104902518B (en) The system and method for realizing reflective EPS carrying
US8102879B2 (en) Application layer metrics monitoring
JP5719068B2 (en) Apparatus and method for implementing packet gateway user plane
US10952053B2 (en) System and method for machine to machine subscriber information and retrieval protection
EP2944056A1 (en) Distributed traffic inspection in a telecommunications network
WO2018001522A1 (en) Splitting of user plane in mobile networks
US11483379B2 (en) Enhancing network services based on edge clouds
CN110278152B (en) Method and device for establishing fast forwarding table
CN105208605B (en) Link information sending method and device and flow control method and device
US8442013B2 (en) Analysis and control of traffic based on identified packet control functions
CN106792821B (en) Access control method and device based on virtual gateway
US20220123989A1 (en) Management and resolution of alarms based on historical alarms
Ren et al. VICN: a versatile deployment framework for information-centric networks
KR20160116622A (en) Openflow switch capable of service chaining
US11303576B2 (en) Accurate analytics, quality of service and load balancing for internet protocol fragmented packets in data center fabrics
WO2019240158A1 (en) Communication system and communication method
TWI632791B (en) Multi-level Flow table control method based on action service category
US10764722B2 (en) Subscriber sampling for network packet forwarding based upon unique subscriber identifiers