WO2009059470A1 - Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel - Google Patents
Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel Download PDFInfo
- Publication number
- WO2009059470A1 WO2009059470A1 PCT/CN2007/003309 CN2007003309W WO2009059470A1 WO 2009059470 A1 WO2009059470 A1 WO 2009059470A1 CN 2007003309 W CN2007003309 W CN 2007003309W WO 2009059470 A1 WO2009059470 A1 WO 2009059470A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- virtual routing
- vrrp
- redundancy protocol
- routing redundancy
- protocol
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/28—Routing or path finding of packets in data switching networks using route fault recovery
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/58—Association of routers
- H04L45/586—Association of routers of virtual routers
Definitions
- the present invention relates to the field of communications, and in particular to a VRRP (Virtual Router Redundancy Protocol) device access VPN (Virtual Private Network (Virtual Private Network) PE (Provider Edge, Edge Provider) device and access method.
- VRRP Virtual Router Redundancy Protocol
- VPN Virtual Private Network
- PE Public Edge, Edge Provider
- a TCP/IP-based network VRRP is suitable for redundant backup of a default gateway of a terminal IP device on a shared multi-access access medium (such as Ethernet), so that one of the routing devices is When the machine is in use, it can use the backup routing device to take over the forwarding work in time, provide transparent switching to the user, and improve the quality of the network.
- a VRRP device is a device that runs VRRP, such as a VRRP router.
- VRRP such as a VRRP router.
- a VRRP group there is only one router in the master role. This router is called a master router; there can be one or more routers in the backup role. This router is called a backup router.
- FIG. 1 shows an example of a network in which a VRRP group accesses a VPN according to the prior art.
- VRRP is running between Router A and Router B.
- Router A is the VRRP master router.
- user equipment Z accesses the VPN through PE device Router A and Router B. Therefore, Router B is VRRP backup router.
- both A and B advertise the VRRP route to Z to other PE devices in the VPN, such as router C.
- Router C After receiving the routes from A and B, Router C makes routing decisions based on route attributes.
- A is the master router of VRRP
- the original purpose of the plan is to hope that the traffic passes through the master router A, but now because the PE device C only relies on the conventional multi-protocol Border Gateway Protocol (MP-BGP; The border gateway protocol (BGP) is used for route delivery. There is no separate special priority control. It is possible that C will select the route from Router B as the optimal route. As a result, the VRRP device fails to access the VPN.
- MP-BGP The border gateway protocol
- the present invention provides a PE device and an access method for a VRRP device to access a VPN, and solves the problem that a PE may be incorrectly selected when the VRRP device accesses the VPN.
- An embodiment of the present invention provides a PE device for a VRRP device to access a VPN, including: a receiving module, configured to receive a VRJ P message requesting access from a VRRP device group, where the VRRP message is carried to indicate initiation Whether the VRRP device of the message is a flag of the master device; a conversion module, configured to convert the VRRP message into an MP-BGP route, and set a specific attribute value of the MP-BGP route according to the tag; and a decision module for using the specific attribute value Route decisions are made to select the appropriate VRRP device from the VRRP device group to access the VPN.
- Another embodiment of the present invention provides an access method for a VRRP device to access a VPN, including the following steps: A PE device in a VPN receives a VRRP message requesting access from a VRRP device group, "Carrying in a VRRP message A flag indicating whether the VRRP device that initiated the message is a master device; the PE device converts the VRRP message into an MP-BGP route, and sets a specific attribute value of the MP-BGP route according to the flag; the PE device uses a specific attribute value for routing The decision is made to select a suitable VRRP device to access the VPN from the VRRP device group.
- the PE device and the access method for the VRRP device to access the VPN provided by the foregoing embodiment of the present invention enable other PEs in the VPN to select routes.
- FIG. 2 shows a block diagram of a PE device according to an embodiment of the present invention
- FIG. 3 shows a flow of a VPN access method according to an embodiment of the present invention.
- FIG. 2 shows a block diagram of a PE device according to an embodiment of the present invention, comprising: a receiving module 10, configured to receive a VRRP message requesting access from a VRRP device group,
- the VRRP message carries a flag indicating whether the VRRP device that initiates the message is a master device; the conversion module 20 is configured to convert the VRRP message into an MP-BGP route, and set a specific attribute value of the MP-BGP route according to the flag; The decision module 30 is configured to perform routing decision using a specific attribute value, and select a suitable VRRP device from the VRRP device group to access the VPN.
- a flag indicating whether the VRRP device is the master device is set in the VRRP message, so the PE device adds a processing function for the tag, so that the tag can be used to identify the VRRP device group.
- the main control device considers this situation in the routing decision process, and selects a suitable VRJRP device to access the VPN, thereby solving the situation that the conventional VRRP device accessing the VPN in the prior art may have a PE routing error, for example, The backup device was incorrectly selected and the master device was not selected.
- the above VRJ P device may be a VRRP router.
- a specific attribute value can be a priority.
- the conversion module 20 may include: a first marking unit, configured to set a priority to a high value if the flag indicates that the VRRP device is a master device; and a second marking unit, configured to: if the flag indicates that the VRRP device is not the master device, Set the priority to a low value.
- the decision module 30 may include: a priority calculation unit for the device to use the priority for priority calculation, and the VRRP device with the highest priority is calculated from the VRRP device group as the VRRP device selected for access.
- the VRRP route is connected to the VPN.
- the VRRP master router is added to the protocol routing attribute of the MP-BGP route.
- the local priority attribute carried in the VRRP route can be advertised.
- the -preference) value or other attribute value is controlled so that when the VRRP master router is routed, its local priority attribute can be set to a higher and better value, so that other PEs in the VPN can be preferentially selected from the route selection.
- FIG. 3 is a flowchart of a VPN access method according to an embodiment of the present invention, including the following steps: Step S10: A PE device in a VPN receives a VRRP message requesting access from a VRRP device group, and the VRRP message carries The SVR is used to indicate whether the VRRP device that initiates the message is a flag of the master device; Step S20, the PE device converts the VRRP message into an MP-BGP route, and sets a specific attribute value of the MP-BGP route according to the flag; Step S30, the PE device Use a specific attribute value for routing decisions, and select the appropriate VRRP device from the VRRP device group to access the VPN.
- the flag is used to identify the master device in the VRRP device group, and in the routing decision process
- a suitable VRRP device is selected to access the VPN, so that the VRRP device in the prior art has a PE possible routing error when accessing the VPN.
- the VRRP device may be a VRRP router.
- a specific attribute value can be a priority.
- the specific attribute value of the MP-BGP route may include: setting the priority to a high value if the flag indicates that the VRRP device is the master device; setting the priority to the priority device if the flag indicates that the VRRP device is not the master device Low value.
- the PE device may perform the routing decision by using the specific attribute value.
- FIG. 4 is a diagram showing an example of a network in which a VRRP group accesses a VPN according to the present invention.
- the specific steps are as follows: Step S201: When PE routers A and B respectively perform VRRP access to user equipment Z, whether they are VRRP master routers The information and the VRRP routing information are sent to the PE devices A and B together, and the specific attribute values are set when the MP-BGP route is converted;
- Step S202 When the PEs A and B advertise the routes from the VRRP to the other PEs in the VPN, adjust the attributes of the sending routes according to whether the information of the VRRP master router is included; to adjust the local priority attribute (local The value of -preference is used as an example.
- device A converts MP-BGP to the VRRP route, it also knows that the local device is the VRRP master router. Therefore, adjust the local-preference attribute of the route sent by device A to 500.
- Step S203 After receiving the route from A and B, PE device C makes a routing decision, using a high local The route from the -preference value is used as the optimal route to ensure that the traffic is properly connected to the VPN through the VRRP master router A.
- the VRRP route can carry the information identifier of the VRRP master router when the VRRP route is connected to the VPN, and the information is transmitted to other PE devices in the VPN by modifying the MP-BGP route attribute value.
- the other PEs in the VPN can preferentially select the route from the VRRP master router to ensure that the traffic on the network passes the VRRP master router to ensure the correctness of the VRRP route access VPN, and improve the correctness and controllability of the network deployment.
- Sex. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
L'invention porte sur un routeur de périphérie (PE) permettant à un dispositif à protocole de redondance de routeur virtuel (VRRP) d'accéder à un réseau privé virtuel (VPN), ledit routeur PE comprenant : un module récepteur (10), pour recevoir un message VRRP de requête d'accès provenant d'un groupe de dispositifs VRRP, le message VRRP ayant une marque qui indique que le dispositif VRRP à l'origine du message est un dispositif de commande maître ou non ; un module de transformation (20), pour transformer le message VRRP en une route de protocole de passerelle de bordure multiprotocole (MP-BGP) et régler une valeur d'attribut spécifique de la route MP-BGM selon la marque ; et un module de détermination (30), pour effectuer une détermination de route selon la valeur d'attribut spécifique et sélectionner un dispositif VRRP approprié pour accéder au VPN à partir du groupe de dispositifs VRRP.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200710165177.7 | 2007-11-05 | ||
CN2007101651777A CN101159741B (zh) | 2007-11-05 | 2007-11-05 | 用于vrrp装置接入vpn的pe装置和接入方法 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2009059470A1 true WO2009059470A1 (fr) | 2009-05-14 |
Family
ID=39307659
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2007/003309 WO2009059470A1 (fr) | 2007-11-05 | 2007-11-22 | Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101159741B (fr) |
WO (1) | WO2009059470A1 (fr) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107222405A (zh) * | 2017-06-26 | 2017-09-29 | 杭州绿湾网络科技有限公司 | 数据传输方法及系统 |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101741742B (zh) | 2009-12-18 | 2012-01-04 | 华为技术有限公司 | 报文处理方法、接入设备和通信系统 |
WO2011127665A1 (fr) * | 2010-04-16 | 2011-10-20 | 华为技术有限公司 | Procédé, système et dispositif correspondant pour mettre en œuvre une découverte rendue publique par protocole bgp (bgp-ad) |
CN110445712B (zh) * | 2019-07-17 | 2022-02-25 | 新华三技术有限公司成都分公司 | 数据转发方法、装置及系统 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2003051835A (ja) * | 2001-05-31 | 2003-02-21 | Furukawa Electric Co Ltd:The | ネットワーク間接続方法、仮想ネットワーク間接続装置およびその装置を用いたネットワーク間接続システム |
US6954436B1 (en) * | 2001-02-28 | 2005-10-11 | Extreme Networks, Inc. | Method and apparatus for selecting redundant routers using tracking |
US20050265230A1 (en) * | 2004-06-01 | 2005-12-01 | Samsung Electronics Co., Ltd. | Apparatus and method for performing state transition of backup router in router redundancy system |
CN1716901A (zh) * | 2004-06-30 | 2006-01-04 | 华为技术有限公司 | 混合站点混合骨干网的虚拟专用网系统及其实现方法 |
CN1874320A (zh) * | 2006-06-28 | 2006-12-06 | 华为技术有限公司 | 实现报文转发路径一致的方法和系统 |
CN1933442A (zh) * | 2005-09-15 | 2007-03-21 | 华为技术有限公司 | 实现虚拟路由器冗余协议主、备用设备切换的方法及系统 |
-
2007
- 2007-11-05 CN CN2007101651777A patent/CN101159741B/zh active Active
- 2007-11-22 WO PCT/CN2007/003309 patent/WO2009059470A1/fr active Application Filing
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6954436B1 (en) * | 2001-02-28 | 2005-10-11 | Extreme Networks, Inc. | Method and apparatus for selecting redundant routers using tracking |
JP2003051835A (ja) * | 2001-05-31 | 2003-02-21 | Furukawa Electric Co Ltd:The | ネットワーク間接続方法、仮想ネットワーク間接続装置およびその装置を用いたネットワーク間接続システム |
US20050265230A1 (en) * | 2004-06-01 | 2005-12-01 | Samsung Electronics Co., Ltd. | Apparatus and method for performing state transition of backup router in router redundancy system |
CN1716901A (zh) * | 2004-06-30 | 2006-01-04 | 华为技术有限公司 | 混合站点混合骨干网的虚拟专用网系统及其实现方法 |
CN1933442A (zh) * | 2005-09-15 | 2007-03-21 | 华为技术有限公司 | 实现虚拟路由器冗余协议主、备用设备切换的方法及系统 |
CN1874320A (zh) * | 2006-06-28 | 2006-12-06 | 华为技术有限公司 | 实现报文转发路径一致的方法和系统 |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107222405A (zh) * | 2017-06-26 | 2017-09-29 | 杭州绿湾网络科技有限公司 | 数据传输方法及系统 |
CN107222405B (zh) * | 2017-06-26 | 2020-06-02 | 杭州绿湾网络科技有限公司 | 数据传输方法及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN101159741B (zh) | 2012-07-04 |
CN101159741A (zh) | 2008-04-09 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10454821B2 (en) | Creating and maintaining segment routed traffic engineering policies via border gateway protocol | |
RU2636689C2 (ru) | Автоматическое установление избыточных трактов с осторожным восстановлением в сети пакетной коммутации | |
De Ghein | MPLS fundamentals | |
EP3318024B1 (fr) | Utilisation de protocole de passerelle frontière afin d'exposer une profondeur d'identifiant de segment maximale pour une application externe | |
EP3420708B1 (fr) | Réacheminement dynamique dans le système redondant d'un réseau à commutation par paquets | |
JP4531063B2 (ja) | 仮想私設網においてサービス品質を保証するためのシステムおよびその方法 | |
US8948055B2 (en) | Resilient interworking of shortest path bridging and Ethernet virtual private networks | |
US9306800B2 (en) | Inter-domain fast reroute methods and network devices | |
EP3200402B1 (fr) | Procédé d'obtention d'informations de routage par segment, et procédé d'établissement de réseau de routage par segment | |
EP1770902B1 (fr) | Réflecteur d'étiquette de pseudo-circuit, appareil de péripherie, réseau privé virtuel à couche deux, et procédé de fourniture d'un service de pseudo-circuit | |
JP2018519763A (ja) | ネットワークサービスのパス計算要素集中コントローラ(pcecc) | |
WO2005122490A1 (fr) | Procede de mise eu place d'un reseau prive virtuel | |
EP2735126B1 (fr) | Signalisation d'un modèle de tunnellisation de chemin à commutation d'étiquettes (lsp) | |
WO2008077333A1 (fr) | Procédé, système et routeur pour mettre en œuvre une communication entre des dispositifs ip | |
WO2013120427A1 (fr) | Procédé de mise en place d'un vpn mpls, système et extrémité abonné | |
WO2015024408A1 (fr) | Procédé de commutation de tunnels, dispositif et commutateur | |
US7742477B1 (en) | Interconnectivity between autonomous systems | |
EP2360872B1 (fr) | Mécanisme d'alerte LSP rapide | |
WO2011147299A1 (fr) | Procédé et appareil de reroutage rapide dans un réseau privé virtuel de couche 2 | |
WO2012142888A1 (fr) | Procédé et dispositif de protection de groupe de tunnels basés sur un réseau à commutation multiprotocole par étiquette | |
WO2009059470A1 (fr) | Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel | |
US9369379B2 (en) | System and method providing secured contexts in MPLS LFIB | |
WO2012103729A1 (fr) | Procédé et dispositif de configuration de tunnel | |
JP2003258876A (ja) | パケット転送装置、パケット転送方法およびその処理プログラム | |
Previdi et al. | Border Gateway Protocol-Link State (BGP-LS) Extensions for Segment Routing BGP Egress Peer Engineering. |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 07845681 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 07845681 Country of ref document: EP Kind code of ref document: A1 |