WO2009059470A1 - Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel - Google Patents

Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel Download PDF

Info

Publication number
WO2009059470A1
WO2009059470A1 PCT/CN2007/003309 CN2007003309W WO2009059470A1 WO 2009059470 A1 WO2009059470 A1 WO 2009059470A1 CN 2007003309 W CN2007003309 W CN 2007003309W WO 2009059470 A1 WO2009059470 A1 WO 2009059470A1
Authority
WO
WIPO (PCT)
Prior art keywords
virtual routing
vrrp
redundancy protocol
routing redundancy
protocol
Prior art date
Application number
PCT/CN2007/003309
Other languages
English (en)
Chinese (zh)
Inventor
Zheng Zhang
Tong Zhu
Original Assignee
Zte Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zte Corporation filed Critical Zte Corporation
Publication of WO2009059470A1 publication Critical patent/WO2009059470A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/28Routing or path finding of packets in data switching networks using route fault recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/58Association of routers
    • H04L45/586Association of routers of virtual routers

Definitions

  • the present invention relates to the field of communications, and in particular to a VRRP (Virtual Router Redundancy Protocol) device access VPN (Virtual Private Network (Virtual Private Network) PE (Provider Edge, Edge Provider) device and access method.
  • VRRP Virtual Router Redundancy Protocol
  • VPN Virtual Private Network
  • PE Public Edge, Edge Provider
  • a TCP/IP-based network VRRP is suitable for redundant backup of a default gateway of a terminal IP device on a shared multi-access access medium (such as Ethernet), so that one of the routing devices is When the machine is in use, it can use the backup routing device to take over the forwarding work in time, provide transparent switching to the user, and improve the quality of the network.
  • a VRRP device is a device that runs VRRP, such as a VRRP router.
  • VRRP such as a VRRP router.
  • a VRRP group there is only one router in the master role. This router is called a master router; there can be one or more routers in the backup role. This router is called a backup router.
  • FIG. 1 shows an example of a network in which a VRRP group accesses a VPN according to the prior art.
  • VRRP is running between Router A and Router B.
  • Router A is the VRRP master router.
  • user equipment Z accesses the VPN through PE device Router A and Router B. Therefore, Router B is VRRP backup router.
  • both A and B advertise the VRRP route to Z to other PE devices in the VPN, such as router C.
  • Router C After receiving the routes from A and B, Router C makes routing decisions based on route attributes.
  • A is the master router of VRRP
  • the original purpose of the plan is to hope that the traffic passes through the master router A, but now because the PE device C only relies on the conventional multi-protocol Border Gateway Protocol (MP-BGP; The border gateway protocol (BGP) is used for route delivery. There is no separate special priority control. It is possible that C will select the route from Router B as the optimal route. As a result, the VRRP device fails to access the VPN.
  • MP-BGP The border gateway protocol
  • the present invention provides a PE device and an access method for a VRRP device to access a VPN, and solves the problem that a PE may be incorrectly selected when the VRRP device accesses the VPN.
  • An embodiment of the present invention provides a PE device for a VRRP device to access a VPN, including: a receiving module, configured to receive a VRJ P message requesting access from a VRRP device group, where the VRRP message is carried to indicate initiation Whether the VRRP device of the message is a flag of the master device; a conversion module, configured to convert the VRRP message into an MP-BGP route, and set a specific attribute value of the MP-BGP route according to the tag; and a decision module for using the specific attribute value Route decisions are made to select the appropriate VRRP device from the VRRP device group to access the VPN.
  • Another embodiment of the present invention provides an access method for a VRRP device to access a VPN, including the following steps: A PE device in a VPN receives a VRRP message requesting access from a VRRP device group, "Carrying in a VRRP message A flag indicating whether the VRRP device that initiated the message is a master device; the PE device converts the VRRP message into an MP-BGP route, and sets a specific attribute value of the MP-BGP route according to the flag; the PE device uses a specific attribute value for routing The decision is made to select a suitable VRRP device to access the VPN from the VRRP device group.
  • the PE device and the access method for the VRRP device to access the VPN provided by the foregoing embodiment of the present invention enable other PEs in the VPN to select routes.
  • FIG. 2 shows a block diagram of a PE device according to an embodiment of the present invention
  • FIG. 3 shows a flow of a VPN access method according to an embodiment of the present invention.
  • FIG. 2 shows a block diagram of a PE device according to an embodiment of the present invention, comprising: a receiving module 10, configured to receive a VRRP message requesting access from a VRRP device group,
  • the VRRP message carries a flag indicating whether the VRRP device that initiates the message is a master device; the conversion module 20 is configured to convert the VRRP message into an MP-BGP route, and set a specific attribute value of the MP-BGP route according to the flag; The decision module 30 is configured to perform routing decision using a specific attribute value, and select a suitable VRRP device from the VRRP device group to access the VPN.
  • a flag indicating whether the VRRP device is the master device is set in the VRRP message, so the PE device adds a processing function for the tag, so that the tag can be used to identify the VRRP device group.
  • the main control device considers this situation in the routing decision process, and selects a suitable VRJRP device to access the VPN, thereby solving the situation that the conventional VRRP device accessing the VPN in the prior art may have a PE routing error, for example, The backup device was incorrectly selected and the master device was not selected.
  • the above VRJ P device may be a VRRP router.
  • a specific attribute value can be a priority.
  • the conversion module 20 may include: a first marking unit, configured to set a priority to a high value if the flag indicates that the VRRP device is a master device; and a second marking unit, configured to: if the flag indicates that the VRRP device is not the master device, Set the priority to a low value.
  • the decision module 30 may include: a priority calculation unit for the device to use the priority for priority calculation, and the VRRP device with the highest priority is calculated from the VRRP device group as the VRRP device selected for access.
  • the VRRP route is connected to the VPN.
  • the VRRP master router is added to the protocol routing attribute of the MP-BGP route.
  • the local priority attribute carried in the VRRP route can be advertised.
  • the -preference) value or other attribute value is controlled so that when the VRRP master router is routed, its local priority attribute can be set to a higher and better value, so that other PEs in the VPN can be preferentially selected from the route selection.
  • FIG. 3 is a flowchart of a VPN access method according to an embodiment of the present invention, including the following steps: Step S10: A PE device in a VPN receives a VRRP message requesting access from a VRRP device group, and the VRRP message carries The SVR is used to indicate whether the VRRP device that initiates the message is a flag of the master device; Step S20, the PE device converts the VRRP message into an MP-BGP route, and sets a specific attribute value of the MP-BGP route according to the flag; Step S30, the PE device Use a specific attribute value for routing decisions, and select the appropriate VRRP device from the VRRP device group to access the VPN.
  • the flag is used to identify the master device in the VRRP device group, and in the routing decision process
  • a suitable VRRP device is selected to access the VPN, so that the VRRP device in the prior art has a PE possible routing error when accessing the VPN.
  • the VRRP device may be a VRRP router.
  • a specific attribute value can be a priority.
  • the specific attribute value of the MP-BGP route may include: setting the priority to a high value if the flag indicates that the VRRP device is the master device; setting the priority to the priority device if the flag indicates that the VRRP device is not the master device Low value.
  • the PE device may perform the routing decision by using the specific attribute value.
  • FIG. 4 is a diagram showing an example of a network in which a VRRP group accesses a VPN according to the present invention.
  • the specific steps are as follows: Step S201: When PE routers A and B respectively perform VRRP access to user equipment Z, whether they are VRRP master routers The information and the VRRP routing information are sent to the PE devices A and B together, and the specific attribute values are set when the MP-BGP route is converted;
  • Step S202 When the PEs A and B advertise the routes from the VRRP to the other PEs in the VPN, adjust the attributes of the sending routes according to whether the information of the VRRP master router is included; to adjust the local priority attribute (local The value of -preference is used as an example.
  • device A converts MP-BGP to the VRRP route, it also knows that the local device is the VRRP master router. Therefore, adjust the local-preference attribute of the route sent by device A to 500.
  • Step S203 After receiving the route from A and B, PE device C makes a routing decision, using a high local The route from the -preference value is used as the optimal route to ensure that the traffic is properly connected to the VPN through the VRRP master router A.
  • the VRRP route can carry the information identifier of the VRRP master router when the VRRP route is connected to the VPN, and the information is transmitted to other PE devices in the VPN by modifying the MP-BGP route attribute value.
  • the other PEs in the VPN can preferentially select the route from the VRRP master router to ensure that the traffic on the network passes the VRRP master router to ensure the correctness of the VRRP route access VPN, and improve the correctness and controllability of the network deployment.
  • Sex. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

L'invention porte sur un routeur de périphérie (PE) permettant à un dispositif à protocole de redondance de routeur virtuel (VRRP) d'accéder à un réseau privé virtuel (VPN), ledit routeur PE comprenant : un module récepteur (10), pour recevoir un message VRRP de requête d'accès provenant d'un groupe de dispositifs VRRP, le message VRRP ayant une marque qui indique que le dispositif VRRP à l'origine du message est un dispositif de commande maître ou non ; un module de transformation (20), pour transformer le message VRRP en une route de protocole de passerelle de bordure multiprotocole (MP-BGP) et régler une valeur d'attribut spécifique de la route MP-BGM selon la marque ; et un module de détermination (30), pour effectuer une détermination de route selon la valeur d'attribut spécifique et sélectionner un dispositif VRRP approprié pour accéder au VPN à partir du groupe de dispositifs VRRP.
PCT/CN2007/003309 2007-11-05 2007-11-22 Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel WO2009059470A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200710165177.7 2007-11-05
CN2007101651777A CN101159741B (zh) 2007-11-05 2007-11-05 用于vrrp装置接入vpn的pe装置和接入方法

Publications (1)

Publication Number Publication Date
WO2009059470A1 true WO2009059470A1 (fr) 2009-05-14

Family

ID=39307659

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2007/003309 WO2009059470A1 (fr) 2007-11-05 2007-11-22 Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel

Country Status (2)

Country Link
CN (1) CN101159741B (fr)
WO (1) WO2009059470A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107222405A (zh) * 2017-06-26 2017-09-29 杭州绿湾网络科技有限公司 数据传输方法及系统

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101741742B (zh) 2009-12-18 2012-01-04 华为技术有限公司 报文处理方法、接入设备和通信系统
WO2011127665A1 (fr) * 2010-04-16 2011-10-20 华为技术有限公司 Procédé, système et dispositif correspondant pour mettre en œuvre une découverte rendue publique par protocole bgp (bgp-ad)
CN110445712B (zh) * 2019-07-17 2022-02-25 新华三技术有限公司成都分公司 数据转发方法、装置及系统

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003051835A (ja) * 2001-05-31 2003-02-21 Furukawa Electric Co Ltd:The ネットワーク間接続方法、仮想ネットワーク間接続装置およびその装置を用いたネットワーク間接続システム
US6954436B1 (en) * 2001-02-28 2005-10-11 Extreme Networks, Inc. Method and apparatus for selecting redundant routers using tracking
US20050265230A1 (en) * 2004-06-01 2005-12-01 Samsung Electronics Co., Ltd. Apparatus and method for performing state transition of backup router in router redundancy system
CN1716901A (zh) * 2004-06-30 2006-01-04 华为技术有限公司 混合站点混合骨干网的虚拟专用网系统及其实现方法
CN1874320A (zh) * 2006-06-28 2006-12-06 华为技术有限公司 实现报文转发路径一致的方法和系统
CN1933442A (zh) * 2005-09-15 2007-03-21 华为技术有限公司 实现虚拟路由器冗余协议主、备用设备切换的方法及系统

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6954436B1 (en) * 2001-02-28 2005-10-11 Extreme Networks, Inc. Method and apparatus for selecting redundant routers using tracking
JP2003051835A (ja) * 2001-05-31 2003-02-21 Furukawa Electric Co Ltd:The ネットワーク間接続方法、仮想ネットワーク間接続装置およびその装置を用いたネットワーク間接続システム
US20050265230A1 (en) * 2004-06-01 2005-12-01 Samsung Electronics Co., Ltd. Apparatus and method for performing state transition of backup router in router redundancy system
CN1716901A (zh) * 2004-06-30 2006-01-04 华为技术有限公司 混合站点混合骨干网的虚拟专用网系统及其实现方法
CN1933442A (zh) * 2005-09-15 2007-03-21 华为技术有限公司 实现虚拟路由器冗余协议主、备用设备切换的方法及系统
CN1874320A (zh) * 2006-06-28 2006-12-06 华为技术有限公司 实现报文转发路径一致的方法和系统

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107222405A (zh) * 2017-06-26 2017-09-29 杭州绿湾网络科技有限公司 数据传输方法及系统
CN107222405B (zh) * 2017-06-26 2020-06-02 杭州绿湾网络科技有限公司 数据传输方法及系统

Also Published As

Publication number Publication date
CN101159741B (zh) 2012-07-04
CN101159741A (zh) 2008-04-09

Similar Documents

Publication Publication Date Title
US10454821B2 (en) Creating and maintaining segment routed traffic engineering policies via border gateway protocol
RU2636689C2 (ru) Автоматическое установление избыточных трактов с осторожным восстановлением в сети пакетной коммутации
De Ghein MPLS fundamentals
EP3318024B1 (fr) Utilisation de protocole de passerelle frontière afin d'exposer une profondeur d'identifiant de segment maximale pour une application externe
EP3420708B1 (fr) Réacheminement dynamique dans le système redondant d'un réseau à commutation par paquets
JP4531063B2 (ja) 仮想私設網においてサービス品質を保証するためのシステムおよびその方法
US8948055B2 (en) Resilient interworking of shortest path bridging and Ethernet virtual private networks
US9306800B2 (en) Inter-domain fast reroute methods and network devices
EP3200402B1 (fr) Procédé d'obtention d'informations de routage par segment, et procédé d'établissement de réseau de routage par segment
EP1770902B1 (fr) Réflecteur d'étiquette de pseudo-circuit, appareil de péripherie, réseau privé virtuel à couche deux, et procédé de fourniture d'un service de pseudo-circuit
JP2018519763A (ja) ネットワークサービスのパス計算要素集中コントローラ(pcecc)
WO2005122490A1 (fr) Procede de mise eu place d'un reseau prive virtuel
EP2735126B1 (fr) Signalisation d'un modèle de tunnellisation de chemin à commutation d'étiquettes (lsp)
WO2008077333A1 (fr) Procédé, système et routeur pour mettre en œuvre une communication entre des dispositifs ip
WO2013120427A1 (fr) Procédé de mise en place d'un vpn mpls, système et extrémité abonné
WO2015024408A1 (fr) Procédé de commutation de tunnels, dispositif et commutateur
US7742477B1 (en) Interconnectivity between autonomous systems
EP2360872B1 (fr) Mécanisme d'alerte LSP rapide
WO2011147299A1 (fr) Procédé et appareil de reroutage rapide dans un réseau privé virtuel de couche 2
WO2012142888A1 (fr) Procédé et dispositif de protection de groupe de tunnels basés sur un réseau à commutation multiprotocole par étiquette
WO2009059470A1 (fr) Routeur de périphérie et procédé d'accès permettant à un dispositif vrrp d'accéder à un réseau privé virtuel
US9369379B2 (en) System and method providing secured contexts in MPLS LFIB
WO2012103729A1 (fr) Procédé et dispositif de configuration de tunnel
JP2003258876A (ja) パケット転送装置、パケット転送方法およびその処理プログラム
Previdi et al. Border Gateway Protocol-Link State (BGP-LS) Extensions for Segment Routing BGP Egress Peer Engineering.

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07845681

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07845681

Country of ref document: EP

Kind code of ref document: A1