WO2009143729A1 - Method, system and apparatus for realizing dhcp user service wholesale - Google Patents

Method, system and apparatus for realizing dhcp user service wholesale Download PDF

Info

Publication number
WO2009143729A1
WO2009143729A1 PCT/CN2009/071333 CN2009071333W WO2009143729A1 WO 2009143729 A1 WO2009143729 A1 WO 2009143729A1 CN 2009071333 W CN2009071333 W CN 2009071333W WO 2009143729 A1 WO2009143729 A1 WO 2009143729A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
tunnel
lns
l2tpv3
dhcp
Prior art date
Application number
PCT/CN2009/071333
Other languages
French (fr)
Chinese (zh)
Inventor
郝卫国
王建兵
潘灏涛
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2009143729A1 publication Critical patent/WO2009143729A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • H04L61/5014Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]

Definitions

  • the embodiments of the present invention relate to the field of communications technologies, and in particular, to a method, system, and device for implementing a DHCP (Dynamic Host Configuration Protocol) user service wholesale.
  • DHCP Dynamic Host Configuration Protocol
  • the broadband access network can be divided into an NSP (Network Service Provider) network and an ISP (Internet Service Provider) network.
  • NSP Network Service Provider
  • ISP Internet Service Provider
  • the NSP network is generally built, managed, and maintained by operators to provide users with high-speed access, traffic aggregation, and policy enforcement.
  • Service wholesale is a technology that promotes the separation of ISP and NSP.
  • ISPs manage and develop users by renting NSP networks. Users use the services provided by ISPs.
  • NSP provides ISPs with data transmission channels, and through subsequent reconciliation, they guarantee their respective income.
  • Service wholesale is generally carried out through the Layer 2 tunneling technology. User packets are transmitted to the remote ISP network through the Layer 2 tunnel.
  • the ISP processes user access, authentication, authorization, and other user management policies.
  • the NSP uses the tunnel to isolate and transmit services. , wholesale.
  • the IP session is defined in the prior art, including a PPP (Point to Point Protocol) Session and a DHCP Session.
  • PPP Point to Point Protocol
  • DHCP DHCP Session
  • the user is wholesaled through the L2TPv2 (Layer 2 Tunneling Protocol version 2) tunnel, and the user access authentication, address allocation, and service management are performed on the remote ISP.
  • the LAC is the NSP network resource. (L2TP Access Concentrator, L2TP access concentrator) can be used on the device according to the user domain name information.
  • the user data is mapped to the L2TP tunnel and transparently transmitted to the remote ISP device.
  • the PW Pseudo Wire
  • VPLS Virtual Private LAN Services
  • MPLS Multi Protocol Label Switch
  • FIG. 1 is a schematic diagram of a network for implementing static service wholesale using a VPLS network in the prior art.
  • the specific steps for the VPLS network to be used for wholesale DHCP access users are as follows: (1) Configure the user access VLAN or DHCP protocol packet Option 60 and VSI (Virtual Switch) on the Layer 2 switch PE (Provider Edge, Carrier Network Edge). The corresponding relationship between the Instance and the virtual switch instance, the user receives the Layer 2 packet from the access network, and sends the packet to the PW of the corresponding VSI. (2) The user encapsulates the Layer 2 packet and sends the packet to the link through the PW pipe.
  • VSI Virtual Switch
  • the remote device of the ISP network terminates the two-layer label of the PW pipe at the remote device, restores the original user Layer 2 packet, and sends it to the BNG (Broad Network Gateway, broadband network gateway) for processing; (3) BNG performs the user. Address allocation and access control.
  • each VPN Virtual Private Network
  • each ISP is used to provide a transmission channel for each ISP on the NSP network to isolate user data traffic of different ISPs through the VPN.
  • the embodiment of the invention provides a method, a system and a device for realizing the wholesale of a DHCP user service, which are used for implementing the wholesale of the DHCP user.
  • an embodiment of the present invention provides a method for implementing a DHCP user service wholesale, including:
  • the embodiment of the present invention further provides an L2TP access centralized device LAC, including: an encapsulating unit, configured to perform L2TPv3 encapsulation on the data packet when receiving the data packet sent by the terminal;
  • the tunnel obtaining unit is configured to obtain the L2TPv3 tunnel corresponding to the terminal, and send the data packet encapsulated by the encapsulating unit to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
  • a response message receiving unit configured to receive a response sent by the LNS through the L2TPv3 tunnel
  • a decapsulation unit configured to decapsulate the response message received by the response message receiving unit.
  • An embodiment of the present invention further provides an L2TP network server LNS device, including: a decapsulation unit, configured to perform L2TPv3 tunnel decapsulation on a received data packet; and a forwarding unit, configured to decapsulate according to the decapsulation unit
  • the destination IP address of the data packet is used to find a routing table, and the data packet is forwarded to the destination device.
  • the tunnel obtaining unit is configured to: when receiving the response packet sent by the destination device, obtain an outbound interface L2TPv3 tunnel in the host route of the terminal;
  • the encapsulating unit is configured to send the L2TPv3 tunnel obtained by the tunnel obtaining unit to the LAC by performing the Layer 2 information encapsulation and the L2TPv3 encapsulation.
  • Embodiments of the present invention also provide a system for implementing wholesale of DHCP user services, including LAC and LNS.
  • the LAC when receiving the data packet sent by the terminal, performs the L2TPv3 encapsulation on the data packet, and sends the encapsulated data packet to the L2TP network service device LNS through the L2TPv3 tunnel corresponding to the terminal.
  • the LNS is configured to perform L2TPv3 tunnel decapsulation on the packet received from the LAC, and search the routing table according to the destination IP address of the decapsulated data packet, and forward the data packet to the destination device;
  • the response packet is sent by the device, the response packet is encapsulated in the Layer 2 information and encapsulated in the L2TPv3 tunnel, and then sent to the LAC through the obtained L2TPv3 tunnel.
  • the embodiment of the invention has the following advantages:
  • the LAC device maps the packets of the terminal to the L2TPv3 tunnel and transmits the packets to the remote LNS device through the L2TPv3 tunnel.
  • the LNS device interacts with the network to implement the wholesale of DHCP users.
  • the L2TPv3 tunnel can be established in a common IP network, and has the advantages of realizing the single order and low networking cost.
  • FIG. 1 is a schematic diagram of a network for implementing static service wholesale using a VPLS network in the prior art
  • FIG. 2 is a flow chart of a method for implementing wholesale of a DHCP user service in an embodiment of the present invention
  • FIG. 3 is a schematic diagram of a network networking in an embodiment of the present invention.
  • FIG. 4 is a flow chart of assigning an address to a terminal through a DHCP protocol in an embodiment of the present invention
  • FIG. 5 is a data forwarding flow diagram of a terminal accessing an Internet network in an embodiment of the present invention.
  • FIG. 6 is a schematic diagram of a LAC structure for implementing DHCP user service wholesale in an embodiment of the present invention
  • FIG. 7 is a schematic structural diagram of another LAC for implementing wholesale of a DHCP user service according to an embodiment of the present invention.
  • FIG. 8 is a schematic structural diagram of an LNS for implementing wholesale of a DHCP user service according to an embodiment of the present invention. detailed description
  • An embodiment of the present invention provides a method for implementing wholesale of a DHCP user service, as shown in the figure.
  • Step s201 When receiving the data packet sent by the terminal, the LAC encapsulates the data packet in L2TPv3.
  • Step s202 The LAC acquires an L2TPv3 tunnel corresponding to the terminal, and sends the encapsulated data to the LNS (L2TP Network Server, L2TP network server) through the corresponding L2TPv3 tunnel.
  • LNS L2TP Network Server, L2TP network server
  • Step s203 The LAC receives the response packet sent by the LNS through the L2TPv3 tunnel.
  • Figure 3 shows the networking diagram of the wholesale of DHCP user services.
  • the process of assigning an address to the terminal through the DHCP protocol is as shown in FIG. 4, and includes the following steps:
  • Step s301 The DHCP terminal sends a DHCP session request message, where the Option 60 information carries the user domain information.
  • Step s302 The AN (Access Network, access network) listens to the user's DHCP session request message. Optionally, the AN can add the physical line Option 82 information to the message.
  • AN Access Network, access network
  • Step s303 The AN sends a DHCP session request packet carrying Option 60 information and Option 82 information to the LAC.
  • Step s304 The LAC performs authentication according to the Option 82 information to the AAA (Access Authentication Authorization, Access Authentication, Authorization) server, and then continues after the authentication is passed. This step is optional.
  • AAA Access Authentication Authorization, Access Authentication, Authorization
  • Step s305 The LAC dynamically maps the DHCP session request packet of the terminal to the L2TPv3 tunnel and sends the packet to the LNS.
  • the L2TPv3 tunnel may be statically established in advance or may be rooted by the LAC. Dynamically triggered establishment based on user session.
  • the LAC maps the DHCP packets of the terminal to the L2TPv3 tunnel based on the terminal access interface and the VLAN to which the terminal belongs. The mapping between the access interface of the terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel can be established in advance, whether the tunnel is dynamically established or dynamically.
  • the session in the L2TPv3 tunnel is dynamically triggered by the DHCP session.
  • the LAC saves the Option 82 and Option 60 information in the user session.
  • Step s306 The LNS selects a DHCP server and requests the DHCP server to allocate an address for the DHCP terminal.
  • the LNS after receiving the DHCP session request message transmitted by the L2TPv3 tunnel, the LNS first obtains the gateway address GiAddr corresponding to the DHCP terminal according to the domain information of the DHCP terminal carried in the Option 60 option in the packet, and then according to Option 60.
  • the DHCP session request packet of the terminal is forwarded to different DHCP servers to request an address for the DHCP terminal.
  • the LNS records the Layer 2 information of the DHCP terminal (the MAC address, VLAN, or QinQ information accessed by the user) for subsequent DHCP.
  • Protocol response 4 including DHCP OFFER packets and DHCP Ack packets) and data packet encapsulation.
  • Step s307 The DHCP server allocates a corresponding address pool network segment address to the DHCP terminal according to GiAddr.
  • Step s308 The LNS receives the DHCP response message sent by the DHCP server, that is, the address allocation of the DHCP server is successful, and the corresponding information is recorded.
  • the LNS generates a host route to the user terminal (that is, a 32-bit mask route, and performs an exact match search according to the IP address of the terminal, the host route corresponds to the network segment route, and the network segment route is searched according to the IP network segment)
  • the access interface of the DHCP terminal is the L2TPv3 tunnel inbound interface.
  • the Layer 2 information of the DHCP terminal is recorded in the forwarding entry of the terminal, and is used to forward the data packet sent to the DHCP terminal.
  • Step s309 The LAC receives the response packet sent by the LNS, and records the corresponding information. Specifically, the LAC records the L2TPv3 tunnel ID and the session ID, the Layer 2 encapsulation information, and the binding relationship of the DHCP terminal access interface, and is used to forward the data packet sent to the DHCP terminal. The address of the DHCP terminal and the L2TPv3 tunnel ID and session are generated. Correspondence relationship of the ID, used to forward the packet sent from the DHCP terminal to the network side; The response packet of the network side is sent to the DHCP terminal through the access aggregation network.
  • Step s310 The DHCP terminal obtains an IP address assigned by the network side, and can access the Internet.
  • the data forwarding process when the terminal accesses the Internet network is as shown in FIG. 5, and includes the following steps:
  • Step s401 The DHCP terminal sends data to the network side.
  • Step s402 The LAC receives the data packet sent by the DHCP terminal, and encapsulates the Layer 2 data packet in the L2TPv3, and maps the encapsulated Layer 2 data packet to the corresponding L2TPv3 according to the source MAC address and the source IP address of the DHCP terminal.
  • the tunnel is sent to the LNS.
  • Step s403 The LNS performs L2TPv3 tunnel decapsulation, and searches the routing table according to the destination IP address of the data packet, and forwards the data packet of the DHCP terminal to the destination device of the Internet network according to the routing table.
  • Step s404 The LNS receives the response message sent by the destination device to the DHCP terminal, and first searches the routing table to obtain the host route of the DHCP terminal, and the outbound interface of the route is an L2TPv3 tunnel.
  • the LNS encapsulates the response packet sent by the destination device with Layer 2 information, and then encapsulates it in L2TPv3 and sends it to the LAC.
  • Step s405 The LAC finds the access interface of the DHCP terminal according to the ID of the L2TPv3 tunnel and the session ID, terminates the L2TPv3 tunnel encapsulation, and forwards the decapsulated response message from the interface.
  • Step s406 The DHCP terminal receives the response packet returned by the destination device.
  • the LNS also stores the gateway address corresponding to each user terminal.
  • the LNS responds to the ping operation.
  • the mutual access between the DHCP wholesale users is also performed by the LNS.
  • the data packets are not exchanged on the LAC.
  • the LNS has a routing table, which can be forwarded according to the destination address of the data packet and the routing table. Therefore, Packet interaction between DHCP wholesale users can be performed through the LNS without directly interacting on the LAC.
  • L2TPv3 The fault detection and recovery measures using L2TPv3 are as follows:
  • the LAC In order to real-timely sense the user terminal access and aggregate network status, you can pass the LAC. Enable ARP (Address Resolution Protocol) detection.
  • ARP Address Resolution Protocol
  • the LAC sends a session teardown message to the LNS, and the LNS deletes the user entry information. If the user terminal times out after the timeout due to a line interruption, the line state between the LAC and the user terminal is restored.
  • the LAC receives the data packet of the user terminal, the LAC searches for the saved Option 82 and Option 60 information, and then generates the DHCP protocol packet.
  • the LAC sends the L2TPv3 tunnel to the LNS to re-apply the address to establish the user entry. This process is equivalent to the initial session initiation process of the DHCP terminal.
  • the LAC After receiving the DHCP response packet sent by the LNS, the LAC generates a user forwarding entry, that is, the binding relationship between the L2TPv3 tunnel ID and the session ID, the Layer 2 encapsulation information, and the access interface, so that the user terminal can access the Internet.
  • the LAC must be able to send DHCP packets to allow the LNS device to re-establish user entry information after the L2TPv3 tunnel is re-up.
  • the RADIUS Remote Authentication Dial In User Service
  • the RADIUS can deliver the tunnel type (64), the L2TP group name (81), and the LAC source address (66). Attributes of the LNS address (67), the tunnel name (90), the tunnel password (69), and the tunnel identifier (82).
  • the RADIUS server delivers the L2TP tunnel attribute, which enables the LAC and LNS devices to be zero-configured. Manage network devices for easy network management.
  • the ISP When the ISP is configured to configure a new address pool, you do not need to change the configuration of the LAC that represents the NSP network resources. You only need to change the configuration information on the LNS device. The user management is completely controlled by the ISP to implement the real DHCP user wholesale.
  • the LAC device maps the packet of the terminal to the L2TPv3 tunnel, and transmits the packet to the remote LNS device through the L2TPv3 tunnel, and the LNS device implements interaction with the network, thereby implementing the service of the DHCP user. wholesale.
  • the L2TPv3 tunnel can be established in a common IP network, and has the advantages of realizing the single order and low networking cost.
  • An embodiment of the present invention further provides a system for implementing wholesale of a DHCP user service, and a schematic structural diagram thereof is shown in FIG. 3, where:
  • the LAC When receiving the data packet sent by the terminal, the LAC encapsulates the data packet in L2TPv3; and sends the encapsulated data packet to the L2TP network service device LNS through the L2TPv3 tunnel corresponding to the terminal; A response packet sent by the L2TPv3 tunnel, and the response packet is decapsulated and sent to the terminal.
  • the LNS is configured to perform L2TPv3 tunnel decapsulation on the packet received from the LAC, and then search the routing table according to the destination IP address of the decapsulated data packet to forward the data packet to the destination device.
  • the response packet is encapsulated in Layer 2 information according to the Layer 2 information of the terminal, and is encapsulated in L2TPv3 and sent to the LAC through the obtained L2TPv3 tunnel.
  • the structure of the LAC in the system is as shown in FIG. 6, and includes:
  • the encapsulating unit 11 is configured to perform L2TPv3 encapsulation on the data packet when receiving the data packet sent by the terminal;
  • the tunnel obtaining unit 12 is configured to obtain an L2TPv3 tunnel corresponding to the terminal, and send the data packet encapsulated by the encapsulating unit 11 to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
  • the response message receiving unit 13 is configured to receive a response sent by the LNS through the L2TPv3 tunnel;
  • the decapsulation unit 14 is configured to decapsulate the response packet received by the response message receiving unit 13 and send it to the terminal.
  • the structure of another LAC in the system is as shown in FIG. 7, and includes a packaging unit 11, a tunnel obtaining unit 12, a response message receiving unit 13 and a decapsulation unit 14, and further includes:
  • the first storage unit 15 is configured to store the correspondence between the address of the DHCP terminal recorded in the process of allocating the DHCP address for the terminal and the L2TPv3 tunnel ID and the session ID; and provide the correspondence to the tunnel obtaining unit 12.
  • the second storage unit 16 is configured to store the L2TPv3 tunnel ID and the session ID, the second layer encapsulation information, and the terminal access interface recorded in the process of allocating the DHCP address to the terminal. Corresponding relationship; and providing the correspondence to the decapsulation unit 14.
  • the tunnel mapping unit 17 is configured to receive, according to the access interface of the terminal, the VLAN to which the terminal belongs, and the access interface of the pre-established terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel. Corresponding relationship, mapping the DHCP session request of the terminal into the corresponding L2TPv3 tunnel.
  • the offline detection unit 18 is configured to send a session teardown message to the LNS when the terminal times out offline;
  • the analog message sending unit 19 when receiving the data message of the timeout offline terminal again, simulates generating a DHCP session request message according to the information of the terminal, and sends the message to the LNS through the L2TPv3 tunnel, and re-assigns the address to the terminal.
  • the structure of the LNS in the system is as shown in FIG. 8, and includes:
  • the decapsulation unit 21 is configured to perform L2TPv3 tunnel decapsulation on the received packet, and the forwarding unit 22 is configured to decapsulate the data packet according to the decapsulation unit 21.
  • the IP looks up the routing table and forwards the data packet to the destination device.
  • the tunnel obtaining unit 23 is configured to obtain an outbound interface L2TPv3 tunnel in the host route of the terminal when receiving the response packet;
  • the encapsulating unit 24 is configured to perform the Layer 2 information encapsulation of the response packet according to the Layer 2 information of the terminal, and send the L2TPv3 tunnel obtained by the tunnel obtaining unit 23 to the LAC after performing the L2TPv3 encapsulation.
  • the LAC also includes:
  • the third storage unit 25 is configured to record the host route of the terminal and the layer 2 information of the terminal in the process of allocating the DHCP address to the terminal, and provide the information to the tunnel obtaining unit 23 and the encapsulating unit 24.
  • the LAC device maps the packet of the terminal to the L2TPv3 tunnel, and transmits the packet to the remote LNS device through the L2TPv3 tunnel, and the LNS device implements interaction with the network, thereby implementing the DHCP user.
  • the L2TPv3 tunnel can be established in a common IP network, Achieve the advantages of single order and low network cost.
  • the present invention can be implemented by hardware, or can be implemented by means of software plus necessary general hardware platform, and the technical solution of the present invention. It can be embodied in the form of a software product that can be stored in a non-volatile storage medium (which can be a CD-ROM, a USB flash drive, a mobile hard disk, etc.), including a number of instructions for making a computer device (may It is a personal computer, a server, or a network device, etc.) that performs the methods described in various embodiments of the present invention.
  • a non-volatile storage medium which can be a CD-ROM, a USB flash drive, a mobile hard disk, etc.
  • a computer device may It is a personal computer, a server, or a network device, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A method, a system and an apparatus for realizing DHCP user service wholesale are provided in the embodiment of the present invention. The method comprises the following steps: receiving the data message transmitted from the terminal, and packing the said data message in terms of L2TPv3; obtaining the L2TPv3 tunnel which is corresponding to the said terminal, and transmitting the packed data message to the L2TP network service device LNS through the corresponding L2TPv3 tunnel; receiving the response message transmitted by the said LNS through the L2TPv3 tunnel; unpacking the said response message and transmitting it to the said terminal. With the embodiment of the present invention, the LAC device maps the message of the terminal to the L2TPv3 tunnel, and transmits it to the remote LNS device through the L2TPv3 tunnel, the interaction with the network is achieved by the LNS device, thereby the DHCP user service wholesale is realized. In the embodiment of the present invention, the L2TPv3 tunnel can be built in the common IP network with the advantages of simple technique and low cost of network configuration.

Description

实现 DHCP用户业务批发的方法、 系统和设备 本申请要求于 2008 年 5 月 27 日提交中国专利局、 申请号为 200810097465.8、 发明名称为 "实现 DHCP用户业务批发的方法、 系 统和设备"的中国专利申请的优先权, 其全部内容通过引用结合在本 申请中。 技术领域  Method, system and device for realizing wholesale of DHCP user service This application claims to be submitted to the Chinese Patent Office on May 27, 2008, with the application number of 200810097465.8, and the invention titled "Method, System and Equipment for Realizing the Wholesale of DHCP User Service" Priority of the application, the entire contents of which are incorporated herein by reference. Technical field
本发明实施例涉及通信技术领域, 尤其涉及一种实现 DHCP ( Dynamic Dost Configuration Protocol, 动态主机配置协议 )用户业 务批发的方法、 系统和设备。 背景技术  The embodiments of the present invention relate to the field of communications technologies, and in particular, to a method, system, and device for implementing a DHCP (Dynamic Host Configuration Protocol) user service wholesale. Background technique
宽带接入网络按照归属关系可分为 NSP ( Network Service Provider, 网络服务提供商) 网络和 ISP ( Internet Service Provider, 因特网服务提供商)网络。 NSP网络一般是由运营商建设、 管理和维 护, 为用户提供高速接入、 流量汇聚、 策略执行等功能。  According to the affiliation, the broadband access network can be divided into an NSP (Network Service Provider) network and an ISP (Internet Service Provider) network. The NSP network is generally built, managed, and maintained by operators to provide users with high-speed access, traffic aggregation, and policy enforcement.
业务批发是一种促进 ISP和 NSP分离的技术, ISP通过租用 NSP 的网络来管理和发展用户, 用户使用 ISP提供的业务; NSP给 ISP提 供数据传输的通道, 通过后续的对帐, 保证各自的收益。 业务批发一 般通过二层隧道技术进行,用户报文通过二层隧道传送到远端 ISP网 络, 由 ISP 处理用户的接入、 认证、 授权和其它用户管理策略, 由 NSP利用隧道进行业务隔离、 传送、 批发。  Service wholesale is a technology that promotes the separation of ISP and NSP. ISPs manage and develop users by renting NSP networks. Users use the services provided by ISPs. NSP provides ISPs with data transmission channels, and through subsequent reconciliation, they guarantee their respective income. Service wholesale is generally carried out through the Layer 2 tunneling technology. User packets are transmitted to the remote ISP network through the Layer 2 tunnel. The ISP processes user access, authentication, authorization, and other user management policies. The NSP uses the tunnel to isolate and transmit services. , wholesale.
现有技术中定义了 IP Session ( IP会话 ), 包括 PPP ( Point to Point Protocol, 点对点协议) Session和 DHCP Session。 对于 PPP终端一 般通过 L2TPv2 ( Layer 2 Tunneling Protocol version 2, 2层隧道协议 版本 2 ) 隧道实现用户批发, 在远端 ISP上进行用户接入认证、 地址 分配和业务管理, 在作为 NSP 网络资源的 LAC ( L2TP Access Concentrator, L2TP访问集中器)设备上可以根据用户域名信息将用 户数据映射到 L2TP隧道, 透明传送到远端 ISP设备。 而对于 DHCP 终端, 一般通过 VPLS ( Virtual Private LAN Services, 虚拟专用 LAN 业务) 网络的 PW ( Pseudo Wire, 伪线)管道进行业务批发, 中间设 备需要支持 MPLS( Multiple Protocol Label Switch,多协议标签交换)。 The IP session (IP session) is defined in the prior art, including a PPP (Point to Point Protocol) Session and a DHCP Session. For the PPP terminal, the user is wholesaled through the L2TPv2 (Layer 2 Tunneling Protocol version 2) tunnel, and the user access authentication, address allocation, and service management are performed on the remote ISP. The LAC is the NSP network resource. (L2TP Access Concentrator, L2TP access concentrator) can be used on the device according to the user domain name information. The user data is mapped to the L2TP tunnel and transparently transmitted to the remote ISP device. For the DHCP terminal, the PW (Pseudo Wire) pipeline of the VPLS (Virtual Private LAN Services) network is generally used for wholesale, and the intermediate device needs to support MPLS (Multi Protocol Label Switch). .
图 1是现有技术中利用 VPLS网络实现静态业务批发的网络示意 图。 利用 VPLS网络批发 DHCP接入用户的具体步骤如下: (1 )在汇 聚层二层交换机 PE ( Provider Edge,运营商网络边缘)上配置用户接 入 VLAN或者 DHCP协议报文中 Option60和 VSI ( Virtual Switch Instance , 虚拟交换实例 ) 的对应关系, 从接入网侧接收用户二层报 文, 送入对应的 VSI的 PW管道; ( 2 )将该用户二层报文封装后通过 该 PW管道传送到连结 ISP网络的远端 ΡΕ设备, 在远端 ΡΕ设备终 结 PW管道的两层标签,恢复原始的用户二层报文,送给 BNG( Broad Network Gateway, 宽带网络网关)处理; ( 3 ) BNG进行用户地址分 配和接入控制。 同时, 在 NSP网络上利用每个 VPN ( Virtual Private Network, 虚拟专用网络)为每个 ISP提供传输通道, 通过 VPN隔离 不同 ISP的用户数据流量。  FIG. 1 is a schematic diagram of a network for implementing static service wholesale using a VPLS network in the prior art. The specific steps for the VPLS network to be used for wholesale DHCP access users are as follows: (1) Configure the user access VLAN or DHCP protocol packet Option 60 and VSI (Virtual Switch) on the Layer 2 switch PE (Provider Edge, Carrier Network Edge). The corresponding relationship between the Instance and the virtual switch instance, the user receives the Layer 2 packet from the access network, and sends the packet to the PW of the corresponding VSI. (2) The user encapsulates the Layer 2 packet and sends the packet to the link through the PW pipe. The remote device of the ISP network terminates the two-layer label of the PW pipe at the remote device, restores the original user Layer 2 packet, and sends it to the BNG (Broad Network Gateway, broadband network gateway) for processing; (3) BNG performs the user. Address allocation and access control. At the same time, each VPN (Virtual Private Network) is used to provide a transmission channel for each ISP on the NSP network to isolate user data traffic of different ISPs through the VPN.
在实现本发明的过程中, 发明人发现现有技术至少存在以下问 题:  In carrying out the process of the present invention, the inventors have found that the prior art has at least the following problems:
上述实现方式依赖于 MPLS网络建立的 PW管道进行批发,组网 成本很高; 且通过 VPLS网络进行业务批发时通常涉及 VPLS跨域, 技术实现复杂。 发明内容  The above implementation depends on the PW pipeline established by the MPLS network for wholesale, and the networking cost is high. When the service is wholesaled through the VPLS network, the VPLS cross-domain is usually involved, and the technical implementation is complicated. Summary of the invention
本发明实施例提供一种实现 DHCP用户业务批发的方法、系统和 设备, 用于筒便的实现 DHCP用户的业务批发。  The embodiment of the invention provides a method, a system and a device for realizing the wholesale of a DHCP user service, which are used for implementing the wholesale of the DHCP user.
为达到上述目的,本发明的实施例提供一种实现 DHCP用户业务 批发的方法, 包括:  To achieve the above objective, an embodiment of the present invention provides a method for implementing a DHCP user service wholesale, including:
接收终端发送的数据报文, 将所述数据报文进行 L2TPv3封装; 获取与所述终端对应的 L2TPv3隧道, 并将所述封装后的数据报 文通过对应的 L2TPv3隧道向 L2TP网络服务设备 LNS发送; Receiving a data packet sent by the terminal, and performing the L2TPv3 encapsulation on the data packet; Obtaining an L2TPv3 tunnel corresponding to the terminal, and sending the encapsulated data packet to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
接收所述 LNS通过 L2TPv3隧道发送的响应报文;  Receiving a response packet sent by the LNS through the L2TPv3 tunnel;
将所述响应报文进行解封装后向所述终端发送。  And decapsulating the response packet and sending the response packet to the terminal.
本发明的实施例还提供一种 L2TP访问集中设备 LAC, 包括: 封装单元, 用于接收到终端发送的数据报文时, 将所述数据报文 进行 L2TPv3封装;  The embodiment of the present invention further provides an L2TP access centralized device LAC, including: an encapsulating unit, configured to perform L2TPv3 encapsulation on the data packet when receiving the data packet sent by the terminal;
隧道获取单元, 用于获取所述终端对应的 L2TPv3隧道, 并将所 述封装单元封装后的数据报文通过对应的 L2TPv3隧道向 L2TP网络 服务设备 LNS发送;  The tunnel obtaining unit is configured to obtain the L2TPv3 tunnel corresponding to the terminal, and send the data packet encapsulated by the encapsulating unit to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
响应报文接收单元,用于接收所述 LNS通过 L2TPv3隧道发送的 响应 4艮文;  a response message receiving unit, configured to receive a response sent by the LNS through the L2TPv3 tunnel;
解封装单元,用于将所述响应报文接收单元接收到的响应报文进 行解封装。  And a decapsulation unit, configured to decapsulate the response message received by the response message receiving unit.
本发明的实施例还提供一种 L2TP网络服务器 LNS设备, 包括: 解封装单元,用于对接收到的数据报文进行 L2TPv3隧道解封装; 转发单元,用于根据所述解封装单元解封装后数据报文的目的 IP 查找路由表, 将所述数据报文转发到目的设备;  An embodiment of the present invention further provides an L2TP network server LNS device, including: a decapsulation unit, configured to perform L2TPv3 tunnel decapsulation on a received data packet; and a forwarding unit, configured to decapsulate according to the decapsulation unit The destination IP address of the data packet is used to find a routing table, and the data packet is forwarded to the destination device.
隧道获取单元, 用于接收到所述目的设备发送的响应报文时, 获 取所述终端的主机路由中的出接口 L2TPv3隧道;  The tunnel obtaining unit is configured to: when receiving the response packet sent by the destination device, obtain an outbound interface L2TPv3 tunnel in the host route of the terminal;
封装单元, 用于将所述响应 文进行二层信息封装和 L2TPv3封 装后通过所述隧道获取单元获取到的 L2TPv3隧道向 LAC发送。  The encapsulating unit is configured to send the L2TPv3 tunnel obtained by the tunnel obtaining unit to the LAC by performing the Layer 2 information encapsulation and the L2TPv3 encapsulation.
本发明的实施例还提供一种实现 DHCP用户业务批发的系统,包 括 LAC和 LNS,  Embodiments of the present invention also provide a system for implementing wholesale of DHCP user services, including LAC and LNS.
所述 LAC, 用于接收到终端发送的数据报文时, 将所述数据报 文进行 L2TPv3封装; 并将所述封装后的数据报文通过与终端对应的 L2TPv3隧道向 L2TP网络服务设备 LNS发送; 还用于接收所述 LNS 通过 L2TPv3隧道发送的响应报文, 并将所述响应报文进行解封装后 向所述终端发送; 所述 LNS,用于对从 LAC接收的报文进行 L2TPv3隧道解封装, 根据解封装后数据报文的目的 IP查找路由表, 将所述数据报文转发 到目的设备; 还用于收到目的设备发送的响应报文时, 将所述响应报 文进行二层信息封装和 L2TPv3封装后通过所述获取到的 L2TPv3隧 道向 LAC发送。 The LAC, when receiving the data packet sent by the terminal, performs the L2TPv3 encapsulation on the data packet, and sends the encapsulated data packet to the L2TP network service device LNS through the L2TPv3 tunnel corresponding to the terminal. And receiving the response packet sent by the LNS through the L2TPv3 tunnel, and decapsulating the response packet to send to the terminal; The LNS is configured to perform L2TPv3 tunnel decapsulation on the packet received from the LAC, and search the routing table according to the destination IP address of the decapsulated data packet, and forward the data packet to the destination device; When the response packet is sent by the device, the response packet is encapsulated in the Layer 2 information and encapsulated in the L2TPv3 tunnel, and then sent to the LAC through the obtained L2TPv3 tunnel.
与现有技术相比, 本发明实施例具有以下优点:  Compared with the prior art, the embodiment of the invention has the following advantages:
由 LAC设备将终端的报文映射到 L2TPv3隧道, 并通过 L2TPv3 隧道传送到远端 LNS设备, 由该 LNS设备实现与网络的交互, 从而 实现了 DHCP用户的业务批发。 本发明的实施例中, L2TPv3隧道可 以建立在普通 IP网络, 具有实现筒单、 组网成本低等优点。 附图说明  The LAC device maps the packets of the terminal to the L2TPv3 tunnel and transmits the packets to the remote LNS device through the L2TPv3 tunnel. The LNS device interacts with the network to implement the wholesale of DHCP users. In the embodiment of the present invention, the L2TPv3 tunnel can be established in a common IP network, and has the advantages of realizing the single order and low networking cost. DRAWINGS
图 1是现有技术中利用 VPLS网络实现静态业务批发的网络示意 图;  1 is a schematic diagram of a network for implementing static service wholesale using a VPLS network in the prior art;
图 2是本发明的实施例中实现 DHCP用户业务批发的方法的流程 图;  2 is a flow chart of a method for implementing wholesale of a DHCP user service in an embodiment of the present invention;
图 3是本发明的实施例中的网络组网示意图;  3 is a schematic diagram of a network networking in an embodiment of the present invention;
图 4是本发明的实施例中通过 DHCP协议为终端分配地址的流程 图;  4 is a flow chart of assigning an address to a terminal through a DHCP protocol in an embodiment of the present invention;
图 5是本发明的实施例中终端访问 Internet网络时的数据转发流 程图;  5 is a data forwarding flow diagram of a terminal accessing an Internet network in an embodiment of the present invention;
图 6是本发明的实施例中实现 DHCP用户业务批发的 LAC结构 示意图;  6 is a schematic diagram of a LAC structure for implementing DHCP user service wholesale in an embodiment of the present invention;
图 7是本发明的实施例中实现 DHCP用户业务批发的另一 LAC 结构示意图;  FIG. 7 is a schematic structural diagram of another LAC for implementing wholesale of a DHCP user service according to an embodiment of the present invention; FIG.
图 8是本发明的实施例中实现 DHCP用户业务批发的 LNS结构 示意图。 具体实施方式 FIG. 8 is a schematic structural diagram of an LNS for implementing wholesale of a DHCP user service according to an embodiment of the present invention. detailed description
本发明的实施例提供一种实现 DHCP用户业务批发的方法,如图 An embodiment of the present invention provides a method for implementing wholesale of a DHCP user service, as shown in the figure.
2所示, 包括以下步骤: 2, including the following steps:
步骤 s201、 LAC接收到终端发送的数据报文时, 将所述数据报 文进行 L2TPv3封装。  Step s201: When receiving the data packet sent by the terminal, the LAC encapsulates the data packet in L2TPv3.
步骤 s202、 LAC获取与终端对应的 L2TPv3隧道,并将封装后的 数据 文通过对应的 L2TPv3隧道向 LNS( L2TP Network Server, L2TP 网络服务器)发送。  Step s202: The LAC acquires an L2TPv3 tunnel corresponding to the terminal, and sends the encapsulated data to the LNS (L2TP Network Server, L2TP network server) through the corresponding L2TPv3 tunnel.
步骤 s203、 LAC接收 LNS通过 L2TPv3隧道发送的响应报文。 步骤 s204、 LAC将响应报文进行解封装后向终端发送。  Step s203: The LAC receives the response packet sent by the LNS through the L2TPv3 tunnel. Step s204: The LAC decapsulates the response packet and sends the response packet to the terminal.
以下结合附图和实施例, 对本发明的具体实施方式做进一步说 明。  The specific embodiments of the present invention will be further described below in conjunction with the accompanying drawings and embodiments.
DHCP用户业务批发的组网示意图如图 3所示。  Figure 3 shows the networking diagram of the wholesale of DHCP user services.
DHCP终端启动后,通过 DHCP协议为终端分配地址的流程如图 4所示, 包括以下步骤:  After the DHCP terminal is started, the process of assigning an address to the terminal through the DHCP protocol is as shown in FIG. 4, and includes the following steps:
步骤 s301、 DHCP终端发送 DHCP会话请求 文, 文中可以 携带 Option 60信息表明用户域信息。  Step s301: The DHCP terminal sends a DHCP session request message, where the Option 60 information carries the user domain information.
步骤 s302、 AN ( Access Network, 接入网络)侦听用户 DHCP 会话请求报文, 可选的, AN可以在报文中添加物理线路 Option82信 息。  Step s302: The AN (Access Network, access network) listens to the user's DHCP session request message. Optionally, the AN can add the physical line Option 82 information to the message.
步骤 s303、 AN将携带 Option 60信息和 Option82信息的 DHCP 会话请求报文发送到 LAC。  Step s303: The AN sends a DHCP session request packet carrying Option 60 information and Option 82 information to the LAC.
步骤 s304、 LAC根据 Option 82信息到 AAA( Access Authentication Authorization, 接入、 认证、 授权)服务器进行认证, 认证通过后则 继续, 该步骤为可选。  Step s304: The LAC performs authentication according to the Option 82 information to the AAA (Access Authentication Authorization, Access Authentication, Authorization) server, and then continues after the authentication is passed. This step is optional.
步骤 s305、 LAC根据 Option60将终端的 DHCP会话请求报文动 态映射进入 L2TPv3隧道, 发送到 LNS。  Step s305: The LAC dynamically maps the DHCP session request packet of the terminal to the L2TPv3 tunnel and sends the packet to the LNS.
具体的, 该 L2TPv3隧道可以预先静态建立, 也可以由 LAC根 据用户会话动态触发建立。 LAC根据终端接入接口以及终端所属的 VLAN, 将终端的 DHCP才艮文映射进入 L2TPv3隧道。 其中无论对于 静态建立的隧道还是动态触发建立的隧道, 终端的接入接口、 终端所 属的 VLAN和 L2TPv3隧道之间的对应关系可以预先建立。 L2TPv3 隧道中的会话由 DHCP会话动态触发建立; LAC保存用户会话报文 中的 Option 82、 Option 60信息, 用于以后终端的 IP触发上线。 Specifically, the L2TPv3 tunnel may be statically established in advance or may be rooted by the LAC. Dynamically triggered establishment based on user session. The LAC maps the DHCP packets of the terminal to the L2TPv3 tunnel based on the terminal access interface and the VLAN to which the terminal belongs. The mapping between the access interface of the terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel can be established in advance, whether the tunnel is dynamically established or dynamically. The session in the L2TPv3 tunnel is dynamically triggered by the DHCP session. The LAC saves the Option 82 and Option 60 information in the user session.
步骤 s306、LNS选择 DHCP服务器并请求 DHCP服务器为 DHCP 终端分配地址。  Step s306: The LNS selects a DHCP server and requests the DHCP server to allocate an address for the DHCP terminal.
具体的, LNS收到通过 L2TPv3隧道传送的 DHCP会话请求 4艮文 后, 首先根据报文中的 Option 60选项携带的 DHCP终端的域信息, 获取与 DHCP终端对应的网关地址 GiAddr,再根据 Option 60将终端 的 DHCP会话请求报文分流中继到不同的 DHCP服务器请求为 DHCP 终端分配地址; LNS 同时记录 DHCP终端的二层信息 (用户接入的 MAC地址、 VLAN或者 QinQ信息 ), 用于后续 DHCP协议响应 4艮文 (包括 DHCP OFFER报文和 DHCP Ack报文)和数据报文的封装。  Specifically, after receiving the DHCP session request message transmitted by the L2TPv3 tunnel, the LNS first obtains the gateway address GiAddr corresponding to the DHCP terminal according to the domain information of the DHCP terminal carried in the Option 60 option in the packet, and then according to Option 60. The DHCP session request packet of the terminal is forwarded to different DHCP servers to request an address for the DHCP terminal. The LNS records the Layer 2 information of the DHCP terminal (the MAC address, VLAN, or QinQ information accessed by the user) for subsequent DHCP. Protocol response 4 (including DHCP OFFER packets and DHCP Ack packets) and data packet encapsulation.
步骤 s307、 DHCP服务器根据 GiAddr, 为 DHCP终端分配相应 地址池网段地址。  Step s307: The DHCP server allocates a corresponding address pool network segment address to the DHCP terminal according to GiAddr.
步骤 s308、 LNS接收到 DHCP服务器发送的 DHCP响应消息, 即 DHCP服务器的地址分配成功, 记录相应的信息。  Step s308: The LNS receives the DHCP response message sent by the DHCP server, that is, the address allocation of the DHCP server is successful, and the corresponding information is recorded.
具体的, LNS生成到用户终端的主机路由(即 32位掩码的路由, 根据终端的 IP地址进行精确匹配查找, 主机路由和网段路由对应, 网段路由是根据 IP网段进行查找), DHCP终端的接入接口为 L2TPv3 隧道入接口; 并且在终端的转发表项中记录 DHCP终端的二层信息, 用于转发向 DHCP终端发送的数据报文。  Specifically, the LNS generates a host route to the user terminal (that is, a 32-bit mask route, and performs an exact match search according to the IP address of the terminal, the host route corresponds to the network segment route, and the network segment route is searched according to the IP network segment) The access interface of the DHCP terminal is the L2TPv3 tunnel inbound interface. The Layer 2 information of the DHCP terminal is recorded in the forwarding entry of the terminal, and is used to forward the data packet sent to the DHCP terminal.
步骤 s309、 LAC接收 LNS发送的响应报文, 记录相应的信息。 具体的, LAC记录 L2TPv3隧道 ID和会话 ID、 二层封装信息以 及 DHCP终端接入接口的绑定关系, 用于转发向 DHCP终端发送的 数据报文; 生成 DHCP终端的地址和 L2TPv3隧道 ID、 会话 ID的对 应关系,用于转发从 DHCP终端接收到的向网络侧发送的报文; 然后 将网络侧的响应报文通过接入汇聚网络发送给 DHCP终端。 Step s309: The LAC receives the response packet sent by the LNS, and records the corresponding information. Specifically, the LAC records the L2TPv3 tunnel ID and the session ID, the Layer 2 encapsulation information, and the binding relationship of the DHCP terminal access interface, and is used to forward the data packet sent to the DHCP terminal. The address of the DHCP terminal and the L2TPv3 tunnel ID and session are generated. Correspondence relationship of the ID, used to forward the packet sent from the DHCP terminal to the network side; The response packet of the network side is sent to the DHCP terminal through the access aggregation network.
步骤 s310、 DHCP 终端获得网络侧分配的 IP 地址, 可以访问 Internet网给。  Step s310: The DHCP terminal obtains an IP address assigned by the network side, and can access the Internet.
在获得网络侧分配的地址后, 终端访问 Internet网络时的数据转 发流程如图 5所示, 包括如下步骤:  After obtaining the address assigned by the network side, the data forwarding process when the terminal accesses the Internet network is as shown in FIG. 5, and includes the following steps:
步骤 s401、 DHCP终端向网络侧发送数据 4艮文。  Step s401: The DHCP terminal sends data to the network side.
步骤 s402、 LAC接收到 DHCP终端发送的数据报文, 将该二层 数据报文进行 L2TPv3封装, 并根据 DHCP终端的源 MAC和源 IP, 将封装后的二层数据报文映射到对应的 L2TPv3隧道向 LNS发送。  Step s402: The LAC receives the data packet sent by the DHCP terminal, and encapsulates the Layer 2 data packet in the L2TPv3, and maps the encapsulated Layer 2 data packet to the corresponding L2TPv3 according to the source MAC address and the source IP address of the DHCP terminal. The tunnel is sent to the LNS.
步骤 s403、 LNS进行 L2TPv3隧道解封装,根据数据报文的目的 IP查找路由表, 根据路由表将 DHCP终端的数据报文转发到 Internet 网给的目的设备。  Step s403: The LNS performs L2TPv3 tunnel decapsulation, and searches the routing table according to the destination IP address of the data packet, and forwards the data packet of the DHCP terminal to the destination device of the Internet network according to the routing table.
步骤 s404、 LNS收到目的设备向 DHCP终端发送的响应 文, 首先查找路由表获得该 DHCP 终端的主机路由, 路由的出接口为 L2TPv3隧道。则 LNS将目的设备发送的响应报文进行二层信息封装, 之后再进行 L2TPv3封装并发送到 LAC。  Step s404: The LNS receives the response message sent by the destination device to the DHCP terminal, and first searches the routing table to obtain the host route of the DHCP terminal, and the outbound interface of the route is an L2TPv3 tunnel. The LNS encapsulates the response packet sent by the destination device with Layer 2 information, and then encapsulates it in L2TPv3 and sends it to the LAC.
步骤 s405、 LAC根据 L2TPv3隧道的 ID、 以及会话 ID查找到该 DHCP终端的接入接口, 终结 L2TPv3隧道封装, 将解封装后的响应 才艮文从该接口转发回去。  Step s405: The LAC finds the access interface of the DHCP terminal according to the ID of the L2TPv3 tunnel and the session ID, terminates the L2TPv3 tunnel encapsulation, and forwards the decapsulated response message from the interface.
步骤 s406、 DHCP终端接收到目的设备返回的响应报文。 另外, LNS上还存储各用户终端对应的网关地址, 当用户终端进 行 ping地址池网关的操作时, 由 LNS响应该 ping操作。 DHCP批发 用户之间的互相访问也通过 LNS进行,数据报文不在 LAC上进行交 换; 具体的, LNS上存在路由表, 可以根据数据报文的目的地址以 及该路由表进行相应的转发, 因此, DHCP批发用户之间的报文交互 可以通过 LNS进行, 而不在 LAC上直接进行交互。  Step s406: The DHCP terminal receives the response packet returned by the destination device. In addition, the LNS also stores the gateway address corresponding to each user terminal. When the user terminal performs the operation of pinging the address pool gateway, the LNS responds to the ping operation. The mutual access between the DHCP wholesale users is also performed by the LNS. The data packets are not exchanged on the LAC. Specifically, the LNS has a routing table, which can be forwarded according to the destination address of the data packet and the routing table. Therefore, Packet interaction between DHCP wholesale users can be performed through the LNS without directly interacting on the LAC.
利用 L2TPv3的故障检测和恢复措施如下:  The fault detection and recovery measures using L2TPv3 are as follows:
为了实时感知用户终端接入、 汇聚网络状态, 可以通过在 LAC 启用 ARP ( Address Resolution Protocol, 地址解析协议)探测。 当探 测到用户终端超时下线时, LAC发送会话拆除消息到达 LNS, LNS 删除用户表项信息;如果用户终端因线路中断等原因超时下线后的某 时刻 LAC和用户终端之间的线路状态恢复,则 LAC收到用户终端的 数据报文时, 通过用户终端标识查找到保存的 Option 82、 Option 60 信息, 模拟生成 DHCP协议报文, 通过 L2TPv3隧道发送到 LNS, 重 新申请地址建立用户表项,该过程等同于 DHCP终端初始会话发起建 立过程。 In order to real-timely sense the user terminal access and aggregate network status, you can pass the LAC. Enable ARP (Address Resolution Protocol) detection. When the user terminal detects that the user terminal times out, the LAC sends a session teardown message to the LNS, and the LNS deletes the user entry information. If the user terminal times out after the timeout due to a line interruption, the line state between the LAC and the user terminal is restored. If the LAC receives the data packet of the user terminal, the LAC searches for the saved Option 82 and Option 60 information, and then generates the DHCP protocol packet. The LAC sends the L2TPv3 tunnel to the LNS to re-apply the address to establish the user entry. This process is equivalent to the initial session initiation process of the DHCP terminal.
LAC收到 LNS发送的 DHCP响应报文之后,生成用户转发表项, 即 L2TPv3隧道 ID和会话 ID、二层封装信息和接入接口的绑定关系, 从而用户终端又可以正常访问 Internet网络。  After receiving the DHCP response packet sent by the LNS, the LAC generates a user forwarding entry, that is, the binding relationship between the L2TPv3 tunnel ID and the session ID, the Layer 2 encapsulation information, and the access interface, so that the user terminal can access the Internet.
如果 L2TP隧道 Down掉, 如果 LAC上 ARP探测没有超时, 在 L2TPv3隧道重新 up之后, LAC要能够模拟发送 DHCP协议报文让 LNS设备重新建立用户表项信息;  If the L2TP tunnel is down, if the ARP probe does not time out on the LAC, the LAC must be able to send DHCP packets to allow the LNS device to re-establish user entry information after the L2TPv3 tunnel is re-up.
另夕卜 , RADIUS ( Remote Authentication Dial In User Service, 远 程用户拨入认证系统)支持关于 L2TP属性扩展, RADIUS可以下发 隧道类型( 64 )、 L2TP组名( 81 )、 LAC源地址( 66 )、 LNS地址( 67 )、 隧道名 ( 90 )、 隧道密码( 69 )、 隧道标识名( 82 )等属性, 由 RADIUS 服务器下发 L2TP隧道属性, 可以实现 LAC、 LNS设备零配置, 从而 能够通过服务器集中管理网络设备, 方便网络管理。  In addition, the RADIUS (Remote Authentication Dial In User Service) supports the extension of the L2TP attribute. The RADIUS can deliver the tunnel type (64), the L2TP group name (81), and the LAC source address (66). Attributes of the LNS address (67), the tunnel name (90), the tunnel password (69), and the tunnel identifier (82). The RADIUS server delivers the L2TP tunnel attribute, which enables the LAC and LNS devices to be zero-configured. Manage network devices for easy network management.
ISP扩充用户需要配置新地址池的时候,无须更改代表 NSP网络 资源的 LAC的配置, 只需要更改 LNS设备上的配置信息, 用户管理 完全由 ISP来进行控制, 实现真正意义上的 DHCP用户批发。  When the ISP is configured to configure a new address pool, you do not need to change the configuration of the LAC that represents the NSP network resources. You only need to change the configuration information on the LNS device. The user management is completely controlled by the ISP to implement the real DHCP user wholesale.
通过本发明实施例提供的方法, 由 LAC设备将终端的报文映射 到 L2TPv3隧道, 并通过 L2TPv3隧道传送到远端 LNS设备, 由该 LNS设备实现与网络的交互, 从而实现了 DHCP用户的业务批发。 本发明的实施例中, L2TPv3隧道可以建立在普通 IP网络, 具有实现 筒单、 组网成本低等优点。 本发明的实施例还提供一种实现 DHCP用户业务批发的系统,其 架构示意图如图 3所示, 其中: With the method provided by the embodiment of the present invention, the LAC device maps the packet of the terminal to the L2TPv3 tunnel, and transmits the packet to the remote LNS device through the L2TPv3 tunnel, and the LNS device implements interaction with the network, thereby implementing the service of the DHCP user. wholesale. In the embodiment of the present invention, the L2TPv3 tunnel can be established in a common IP network, and has the advantages of realizing the single order and low networking cost. An embodiment of the present invention further provides a system for implementing wholesale of a DHCP user service, and a schematic structural diagram thereof is shown in FIG. 3, where:
LAC 用于接收到终端发送的数据报文时, 将数据报文进行 L2TPv3封装; 并将封装后的数据报文通过与终端对应的 L2TPv3隧 道向 L2TP网络服务设备 LNS发送; 还用于接收 LNS通过 L2TPv3 隧道发送的响应报文, 并将响应报文进行解封装后向终端发送。  When receiving the data packet sent by the terminal, the LAC encapsulates the data packet in L2TPv3; and sends the encapsulated data packet to the L2TP network service device LNS through the L2TPv3 tunnel corresponding to the terminal; A response packet sent by the L2TPv3 tunnel, and the response packet is decapsulated and sent to the terminal.
LNS用于对从 LAC接收的报文进行 L2TPv3隧道解封装, 根据 解封装后数据报文的目的 IP查找路由表, 将数据报文转发到目的设 备; 还用于收到响应报文时, 将响应报文根据终端的二层信息进行二 层信息封装,并进行 L2TPv3封装后通过获取到的 L2TPv3隧道向 LAC 发送。  The LNS is configured to perform L2TPv3 tunnel decapsulation on the packet received from the LAC, and then search the routing table according to the destination IP address of the decapsulated data packet to forward the data packet to the destination device. The response packet is encapsulated in Layer 2 information according to the Layer 2 information of the terminal, and is encapsulated in L2TPv3 and sent to the LAC through the obtained L2TPv3 tunnel.
具体的, 该系统中 LAC的结构如图 6所示, 包括:  Specifically, the structure of the LAC in the system is as shown in FIG. 6, and includes:
封装单元 11 , 用于接收到终端发送的数据报文时, 将数据报文 进行 L2TPv3封装;  The encapsulating unit 11 is configured to perform L2TPv3 encapsulation on the data packet when receiving the data packet sent by the terminal;
隧道获取单元 12, 用于获取终端对应的 L2TPv3隧道, 并将封装 单元 11封装后的数据报文并通过对应的 L2TPv3隧道向 L2TP网络服 务设备 LNS发送;  The tunnel obtaining unit 12 is configured to obtain an L2TPv3 tunnel corresponding to the terminal, and send the data packet encapsulated by the encapsulating unit 11 to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
响应报文接收单元 13, 用于接收 LNS通过 L2TPv3隧道发送的 响应 4艮文;  The response message receiving unit 13 is configured to receive a response sent by the LNS through the L2TPv3 tunnel;
解封装单元 14, 用于将响应报文接收单元 13接收到的响应报文 进行解封装后向终端发送。  The decapsulation unit 14 is configured to decapsulate the response packet received by the response message receiving unit 13 and send it to the terminal.
具体的, 该系统中另一 LAC的结构如图 7所示, 包括封装单元 11 ,隧道获取单元 12,响应报文接收单元 13和解封装单元 14,并且, 还包括:  Specifically, the structure of another LAC in the system is as shown in FIG. 7, and includes a packaging unit 11, a tunnel obtaining unit 12, a response message receiving unit 13 and a decapsulation unit 14, and further includes:
第一存储单元 15 , 用于存储在为终端分配 DHCP地址过程中记 录的 DHCP终端的地址和 L2TPv3隧道 ID、 会话 ID的对应关系; 并 将对应关系提供给隧道获取单元 12。  The first storage unit 15 is configured to store the correspondence between the address of the DHCP terminal recorded in the process of allocating the DHCP address for the terminal and the L2TPv3 tunnel ID and the session ID; and provide the correspondence to the tunnel obtaining unit 12.
第二存储单元 16, 用于存储在为终端分配 DHCP地址过程中记 录的 L2TPv3隧道 ID和会话 ID、 二层封装信息以及终端接入接口的 对应关系; 并将对应关系提供给解封装单元 14。 The second storage unit 16 is configured to store the L2TPv3 tunnel ID and the session ID, the second layer encapsulation information, and the terminal access interface recorded in the process of allocating the DHCP address to the terminal. Corresponding relationship; and providing the correspondence to the decapsulation unit 14.
隧道映射单元 17, 用于接收到终端的 DHCP会话请求报文时, 根据终端的接入接口以及终端所属的 VLAN, 以及预先建立的终端的 接入接口、终端所属的 VLAN和 L2TPv3隧道之间的对应关系, 将终 端的 DHCP会话请求4艮文映射进入对应的 L2TPv3隧道。  The tunnel mapping unit 17 is configured to receive, according to the access interface of the terminal, the VLAN to which the terminal belongs, and the access interface of the pre-established terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel. Corresponding relationship, mapping the DHCP session request of the terminal into the corresponding L2TPv3 tunnel.
下线探测单元 18, 用于探测到终端超时下线时, 向 LNS发送会 话拆除消息;  The offline detection unit 18 is configured to send a session teardown message to the LNS when the terminal times out offline;
模拟报文发送单元 19, 用于再次接收到超时下线终端的数据报 文时, 根据终端的信息, 模拟生成 DHCP 会话请求报文, 并通过 L2TPv3隧道向 LNS发送, 重新为终端分配地址。 具体的, 该系统中 LNS的结构如图 8所示, 包括:  The analog message sending unit 19, when receiving the data message of the timeout offline terminal again, simulates generating a DHCP session request message according to the information of the terminal, and sends the message to the LNS through the L2TPv3 tunnel, and re-assigns the address to the terminal. Specifically, the structure of the LNS in the system is as shown in FIG. 8, and includes:
解封装单元 21 , 用于对接收到的报文进行 L2TPv3隧道解封装; 转发单元 22, 用于根据解封装单元 21解封装后数据报文的目的 The decapsulation unit 21 is configured to perform L2TPv3 tunnel decapsulation on the received packet, and the forwarding unit 22 is configured to decapsulate the data packet according to the decapsulation unit 21.
IP查找路由表, 将数据报文转发到目的设备; The IP looks up the routing table and forwards the data packet to the destination device.
隧道获取单元 23 , 用于接收到响应报文时, 获取终端的主机路 由中的出接口 L2TPv3隧道;  The tunnel obtaining unit 23 is configured to obtain an outbound interface L2TPv3 tunnel in the host route of the terminal when receiving the response packet;
封装单元 24, 用于将响应报文根据终端的二层信息进行二层信 息封装,并进行 L2TPv3封装后通过隧道获取单元 23获取到的 L2TPv3 隧道向 LAC发送。  The encapsulating unit 24 is configured to perform the Layer 2 information encapsulation of the response packet according to the Layer 2 information of the terminal, and send the L2TPv3 tunnel obtained by the tunnel obtaining unit 23 to the LAC after performing the L2TPv3 encapsulation.
该 LAC还包括:  The LAC also includes:
第三存储单元 25 , 用于在为终端分配 DHCP地址过程中记录终 端的主机路由, 以及终端的二层信息, 并提供给隧道获取单元 23 以 及封装单元 24。 通过本发明实施例提供的系统和设备, 由 LAC设备将终端的报 文映射到 L2TPv3隧道, 并通过 L2TPv3隧道传送到远端 LNS设备, 由该 LNS设备实现与网络的交互, 从而实现了 DHCP用户的业务批 发。 本发明的实施例中, L2TPv3隧道可以建立在普通 IP网络, 具有 实现筒单、 组网成本低等优点。 The third storage unit 25 is configured to record the host route of the terminal and the layer 2 information of the terminal in the process of allocating the DHCP address to the terminal, and provide the information to the tunnel obtaining unit 23 and the encapsulating unit 24. With the system and device provided by the embodiment of the present invention, the LAC device maps the packet of the terminal to the L2TPv3 tunnel, and transmits the packet to the remote LNS device through the L2TPv3 tunnel, and the LNS device implements interaction with the network, thereby implementing the DHCP user. Business wholesale. In an embodiment of the present invention, the L2TPv3 tunnel can be established in a common IP network, Achieve the advantages of single order and low network cost.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解 到本发明可以通过硬件实现,也可以可借助软件加必要的通用硬件平 台的方式来实现基于这样的理解,本发明的技术方案可以以软件产品 的形式体现出来, 该软件产品可以存储在一个非易失性存储介质 (可 以是 CD-ROM, U盘, 移动硬盘等) 中, 包括若干指令用以使得一 台计算机设备(可以是个人计算机, 服务器, 或者网络设备等)执行 本发明各个实施例所述的方法。  Through the description of the above embodiments, those skilled in the art can clearly understand that the present invention can be implemented by hardware, or can be implemented by means of software plus necessary general hardware platform, and the technical solution of the present invention. It can be embodied in the form of a software product that can be stored in a non-volatile storage medium (which can be a CD-ROM, a USB flash drive, a mobile hard disk, etc.), including a number of instructions for making a computer device (may It is a personal computer, a server, or a network device, etc.) that performs the methods described in various embodiments of the present invention.
总之, 以上所述仅为本发明的较佳实施例而已, 并非用于限定本 发明的保护范围。 凡在本发明的精神和原则之内, 所作的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。  In conclusion, the above description is only a preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权利要求 Rights request
1、 一种实现动态主机配置协议 DHCP用户业务批发的方法, 其 特征在于, 包括: A method for implementing a dynamic host configuration protocol for a DHCP user service wholesale, characterized in that:
接收终端发送的数据报文, 将所述数据报文进行 L2TPv3封装; 获取与所述终端对应的 L2TPv3隧道, 并将所述封装后的数据报 文通过对应的 L2TPv3隧道向 L2TP网络服务设备 LNS发送;  Receiving the data packet sent by the terminal, performing the L2TPv3 encapsulation on the data packet, obtaining the L2TPv3 tunnel corresponding to the terminal, and sending the encapsulated data packet to the L2TP network service device LNS through the corresponding L2TPv3 tunnel ;
接收所述 LNS通过 L2TPv3隧道发送的响应报文;  Receiving a response packet sent by the LNS through the L2TPv3 tunnel;
将所述响应报文进行解封装后向所述终端发送。  And decapsulating the response packet and sending the response packet to the terminal.
2、 如权利要求 1所述实现 DHCP用户业务批发的方法, 其特征 在于, 所述获取与所述终端对应的 L2TPv3隧道具体包括:  The method for implementing the wholesale of the DHCP user service according to claim 1, wherein the obtaining the L2TPv3 tunnel corresponding to the terminal specifically includes:
根据所述终端的地址和 L2TPv3隧道 ID、 会话 ID的对应关系, 获取与所述终端对应的 L2TPv3隧道。  Obtaining an L2TPv3 tunnel corresponding to the terminal according to the correspondence between the address of the terminal and the L2TPv3 tunnel ID and the session ID.
3、 如权利要求 1所述实现 DHCP用户业务批发的方法, 其特征 在于, 所述将所述响应报文进行解封装后向所述终端发送具体包括: 根据发送所述响应报文的 L2TPv3隧道的 ID和会话 ID、 二层封 装信息以及终端接入接口的对应关系, 获取所述终端的接入接口, 将 解封装后的响应报文通过所述接入接口向所述终端发送。  The method for implementing the wholesale of the DHCP user service according to claim 1, wherein the sending the response packet to the terminal after decapsulating the packet includes: transmitting an L2TPv3 tunnel according to the response packet And the corresponding relationship between the ID and the session ID, the layer 2 package information, and the terminal access interface, the access interface of the terminal is obtained, and the decapsulated response message is sent to the terminal by using the access interface.
4、 如权利要求 1所述实现 DHCP用户业务批发的方法, 其特征 在于,所述接收所述 LNS通过 L2TPv3隧道发送的响应报文前,还包 括:  The method for implementing the wholesale of the DHCP user service according to claim 1, wherein before receiving the response message sent by the LNS through the L2TPv3 tunnel, the method further includes:
所述 LNS对接收的数据报文进行 L2TPv3隧道解封装,根据解封 装后数据报文的目的 IP查找路由表, 将所述数据报文转发到该数据 报文的目的设备;  The LNS performs L2TPv3 tunnel decapsulation on the received data packet, searches the routing table according to the destination IP address of the decapsulated data packet, and forwards the data packet to the destination device of the data packet.
所述 LNS收到所述目的设备发送的响应报文时, 获取所述终端 的主机路由中的出接口 L2TPv3隧道;  When the LNS receives the response packet sent by the destination device, the LNS obtains the outbound interface L2TPv3 tunnel in the host route of the terminal;
所述 LNS将所述响应报文进行二层信息封装和 L2TPv3封装后通 过所述获取到的 L2TPv3隧道向 LAC发送。  And the LNS sends the response packet to the LAC through the obtained L2TPv3 tunnel after performing Layer 2 information encapsulation and L2TPv3 encapsulation.
5、 如权利要求 4所述实现 DHCP用户业务批发的方法, 其特征 在于, 所述方法还包括, LNS在为所述终端分配 DHCP地址过程中 记录所述终端的主机路由, 以及所述终端的二层信息。 5. The method for implementing wholesale of a DHCP user service according to claim 4, characterized in that The method further includes: the LNS records a host route of the terminal, and Layer 2 information of the terminal in a process of allocating a DHCP address to the terminal.
6、 如权利要求 2、 3或 5所述实现 DHCP用户业务批发的方法, 其特征在于, 所述为终端分配 DHCP地址的过程具体包括:  The method for implementing the DHCP user service wholesale according to claim 2, 3 or 5, wherein the process of assigning a DHCP address to the terminal specifically includes:
接收所述终端的 DHCP会话请求报文;  Receiving a DHCP session request message of the terminal;
根据所述终端的 DHCP会话请求报文中的 Option60信息, 将所 述终端的 DHCP会话请求 文映射进入 L2TPv3 隧道并发送到所述 LNS;  And mapping the DHCP session request of the terminal into the L2TPv3 tunnel and sending the message to the LNS according to the Option 60 information in the DHCP session request packet of the terminal;
所述 LNS根据所述终端的 Option60信息, 选择 DHCP服务器并 请求 DHCP服务器为所述终端分配地址;  The LNS selects a DHCP server according to the Option 60 information of the terminal, and requests the DHCP server to allocate an address for the terminal.
所述 LNS接收到 DHCP服务器为所述终端分配的地址, 生成到 所述终端的主机路由, 并且记录所述终端的二层信息, 向所述 LAC 发送地址分配成功消息; 所述主机路由中所述终端的接入接口为 L2TPv3隧道入接口;  Receiving, by the LNS, an address allocated by the DHCP server for the terminal, generating a host route to the terminal, and recording Layer 2 information of the terminal, and sending an address allocation success message to the LAC; The access interface of the terminal is an L2TPv3 tunnel ingress interface.
所述 LAC接收 LNS发送的响应报文, 记录 L2TPv3隧道 ID和 会话 ID、 二层封装信息以及终端接入接口的对应关系; 并记录终端 的地址和 L2TPv3隧道 ID、 会话 ID的对应关系, 然后向所述终端发 送地址分配成功消息。  The LAC receives the response packet sent by the LNS, records the correspondence between the L2TPv3 tunnel ID and the session ID, the Layer 2 encapsulation information, and the terminal access interface; and records the correspondence between the address of the terminal and the L2TPv3 tunnel ID and the session ID, and then The terminal sends an address allocation success message.
7、 如权利要求 6所述实现 DHCP用户业务批发的方法, 其特征 在于,所述 LAC将所述终端的 DHCP会话请求报文映射进入 L2TPv3 隧道的步骤具体包括:  The method for implementing the wholesale of the DHCP user service according to claim 6, wherein the step of the LAC mapping the DHCP session request packet of the terminal into the L2TPv3 tunnel includes:
根据所述终端的接入接口以及终端所属的 VLAN,以及预先建立 的终端的接入接口、终端所属的 VLAN和 L2TPv3隧道之间的对应关 系,将所述终端的 DHCP会话请求报文映射进入对应的 L2TPv3隧道。  Mapping the DHCP session request packet of the terminal into the corresponding interface according to the access interface of the terminal and the VLAN to which the terminal belongs, and the access interface of the pre-established terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel. The L2TPv3 tunnel.
8、 如权利要求 1所述实现 DHCP用户业务批发的方法, 其特征 在于, 还包括:  The method for implementing the wholesale of a DHCP user service according to claim 1, further comprising:
探测到所述终端超时下线时, 向所述 LNS发送会话拆除消息, 所述 LNS删除所述终端的表项信息;  And detecting that the terminal times out the line, sending a session teardown message to the LNS, where the LNS deletes the entry information of the terminal;
当再次接收到终端的数据报文时, 根据所述终端的信息,模拟生 成 DHCP会话请求报文, 并通过 L2TPv3隧道向所述 LNS发送, 重 新为所述终端分配地址。 When receiving the data message of the terminal again, according to the information of the terminal, the simulation student The DHCP session request packet is sent to the LNS through the L2TPv3 tunnel, and the terminal is allocated an address again.
9、 一种 L2TP访问集中设备 LAC, 其特征在于, 包括: 封装单元, 用于接收到终端发送的数据报文时, 将所述数据报文 进行 L2TPv3封装;  An L2TP access centralized device LAC, comprising: an encapsulating unit, configured to perform L2TPv3 encapsulation on the data packet when receiving the data packet sent by the terminal;
隧道获取单元, 用于获取所述终端对应的 L2TPv3隧道, 并将所 述封装单元封装后的数据报文通过对应的 L2TPv3隧道向 L2TP网络 服务设备 LNS发送;  The tunnel obtaining unit is configured to obtain the L2TPv3 tunnel corresponding to the terminal, and send the data packet encapsulated by the encapsulating unit to the L2TP network service device LNS through the corresponding L2TPv3 tunnel;
响应报文接收单元,用于接收所述 LNS通过 L2TPv3隧道发送的 响应 4艮文;  a response message receiving unit, configured to receive a response sent by the LNS through the L2TPv3 tunnel;
解封装单元,用于将所述响应报文接收单元接收到的响应报文进 行解封装。  And a decapsulation unit, configured to decapsulate the response message received by the response message receiving unit.
10、 如权利要求 9所述 LAC, 其特征在于, 还包括:  The LAC according to claim 9, further comprising:
第一存储单元, 用于存储 DHCP终端的地址和 L2TPv3隧道 ID、 会话 ID的对应关系; 并将所述对应关系提供给所述隧道获取单元。  a first storage unit, configured to store a correspondence between an address of the DHCP terminal and an L2TPv3 tunnel ID and a session ID, and provide the correspondence to the tunnel obtaining unit.
11、 如权利要求 9所述 LAC, 其特征在于, 还包括:  The LAC according to claim 9, further comprising:
第二存储单元, 用于存储 L2TPv3隧道的 ID和会话 ID、 二层封 装信息以及终端接入接口的对应关系;并将所述对应关系提供给所述 解封装单元。  And a second storage unit, configured to store an ID of the L2TPv3 tunnel and a session ID, a layer 2 package information, and a correspondence between the terminal access interfaces, and provide the corresponding relationship to the decapsulation unit.
12、 如权利要求 9所述 LAC, 其特征在于, 还包括: 隧道映射 单元,用于接收到终端的 DHCP会话请求报文时,根据所述终端的接 入接口以及终端所属的 VLAN, 以及预先建立的终端的接入接口、 终 端所属的 VLAN 和 L2TPv3 隧道之间的对应关系, 将所述终端的 DHCP会话请求4艮文映射进入对应的 L2TPv3隧道。  The LAC according to claim 9, further comprising: a tunnel mapping unit, configured to receive, according to the access interface of the terminal, a VLAN to which the terminal belongs, and a pre-received The mapping between the access interface of the terminal, the VLAN to which the terminal belongs, and the L2TPv3 tunnel is mapped to the corresponding L2TPv3 tunnel.
13、 如权利要求 9所述 LAC, 其特征在于, 还包括:  The LAC according to claim 9, further comprising:
下线探测单元, 用于探测到终端超时下线时, 向 LNS发送会话 拆除消息;  The offline detection unit is configured to send a session teardown message to the LNS when the terminal times out offline;
模拟报文发送单元, 用于再次接收到超时下线终端的数据报文 时, 根据所述终端的信息, 模拟生成 DHCP会话请求报文, 并通过 L2TPv3隧道向所述 LNS发送, 重新为所述终端分配地址。 The analog message sending unit is configured to: when receiving the data message of the timeout offline terminal again, simulate generating a DHCP session request message according to the information of the terminal, and pass the The L2TPv3 tunnel is sent to the LNS, and the terminal is allocated an address again.
14、 一种 L2TP网络服务器 LNS设备, 其特征在于, 包括: 解封装单元,用于对接收到的数据报文进行 L2TPv3隧道解封装; 转发单元,用于根据所述解封装单元解封装后数据报文的目的 IP 查找路由表, 将所述数据报文转发到目的设备;  An L2TP network server LNS device, comprising: a decapsulation unit, configured to perform L2TPv3 tunnel decapsulation on the received data packet; and a forwarding unit, configured to decapsulate the data according to the decapsulation unit The destination IP address of the packet is used to find a routing table, and the data packet is forwarded to the destination device.
隧道获取单元, 用于接收到所述目的设备发送的响应报文时, 获 取所述终端的主机路由中的出接口 L2TPv3隧道;  The tunnel obtaining unit is configured to: when receiving the response packet sent by the destination device, obtain an outbound interface L2TPv3 tunnel in the host route of the terminal;
封装单元, 用于将所述响应报文进行二层信息封装和 L2TPv3封 装后通过所述隧道获取单元获取到的 L2TPv3隧道向 LAC发送。  The encapsulating unit is configured to send the L2TPv3 tunnel obtained by the tunnel obtaining unit to the LAC by performing the Layer 2 information encapsulation and the L2TPv3 encapsulation.
15、 如权利要求 14所述 LNS, 其特征在于, 还包括:  The LNS according to claim 14, further comprising:
第三存储单元,用于在为所述终端分配 DHCP地址过程中记录所 述终端的主机路由, 以及所述终端的二层信息, 并提供给所述隧道获 取单元以及封装单元。  And a third storage unit, configured to record, in the process of allocating a DHCP address for the terminal, a host route of the terminal, and Layer 2 information of the terminal, and provide the information to the tunnel obtaining unit and the encapsulating unit.
16、 一种实现 DHCP用户业务批发的系统, 包括 LAC和 LNS, 其特征在于,  16. A system for implementing wholesale of DHCP user services, including a LAC and an LNS, wherein
所述 LAC, 用于接收到终端发送的数据报文时, 将所述数据报 文进行 L2TPv3封装; 并将所述封装后的数据报文通过与终端对应的 L2TPv3隧道向 L2TP网络服务设备 LNS发送; 还用于接收所述 LNS 通过 L2TPv3隧道发送的响应报文, 并将所述响应报文进行解封装后 向所述终端发送;  The LAC, when receiving the data packet sent by the terminal, performs the L2TPv3 encapsulation on the data packet, and sends the encapsulated data packet to the L2TP network service device LNS through the L2TPv3 tunnel corresponding to the terminal. And receiving the response packet sent by the LNS through the L2TPv3 tunnel, and decapsulating the response packet to send to the terminal;
所述 LNS,用于对从 LAC接收的报文进行 L2TPv3隧道解封装, 根据解封装后数据报文的目的 IP查找路由表, 将所述数据报文转发 到目的设备; 还用于收到目的设备发送的响应报文时, 将所述响应报 文进行二层信息封装和 L2TPv3封装后通过所述获取到的 L2TPv3隧 道向 LAC发送。  The LNS is configured to perform L2TPv3 tunnel decapsulation on the packet received from the LAC, and search the routing table according to the destination IP address of the decapsulated data packet, and forward the data packet to the destination device; When the response packet is sent by the device, the response packet is encapsulated in the Layer 2 information and encapsulated in the L2TPv3 tunnel, and then sent to the LAC through the obtained L2TPv3 tunnel.
PCT/CN2009/071333 2008-05-27 2009-04-17 Method, system and apparatus for realizing dhcp user service wholesale WO2009143729A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200810097465.8 2008-05-27
CN2008100974658A CN101272403B (en) 2008-05-27 2008-05-27 Method, system and device for implementing DHCP user service wholesale

Publications (1)

Publication Number Publication Date
WO2009143729A1 true WO2009143729A1 (en) 2009-12-03

Family

ID=40006087

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/071333 WO2009143729A1 (en) 2008-05-27 2009-04-17 Method, system and apparatus for realizing dhcp user service wholesale

Country Status (2)

Country Link
CN (1) CN101272403B (en)
WO (1) WO2009143729A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114285900A (en) * 2021-12-09 2022-04-05 中国联合网络通信集团有限公司 Scheduling system, authentication method, scheduling method, apparatus, server, and medium

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272403B (en) * 2008-05-27 2011-02-09 华为技术有限公司 Method, system and device for implementing DHCP user service wholesale
CN101753525A (en) * 2008-12-17 2010-06-23 华为技术有限公司 Method, system and equipment for realizing the business wholesale of DHCP users
CN102316030B (en) * 2011-09-01 2014-04-09 杭州华三通信技术有限公司 Method for realizing two-layer internetworking of data center and device
CN103227773B (en) * 2012-03-31 2016-05-11 杭州华三通信技术有限公司 A kind of method and system thereof of setting up VPDN connection
CN103781073B (en) * 2012-10-26 2018-10-19 中兴通讯股份有限公司 The cut-in method and system of mobile subscriber's fixed network
CN103036761B (en) * 2012-12-21 2015-08-05 浙江宇视科技有限公司 A kind of tunnel server and client terminal device
CN103595592B (en) * 2013-11-29 2017-01-18 迈普通信技术股份有限公司 Method and system for testing consistency of WAN (Wide Area Network) interface protocols
CN106899705A (en) * 2016-12-21 2017-06-27 新华三技术有限公司 A kind of method and apparatus of station address distribution
CN108600225B (en) * 2018-04-25 2021-03-23 新华三技术有限公司 Authentication method and device
CN109889420B (en) * 2019-01-29 2021-07-30 视联动力信息技术股份有限公司 Service processing method and device

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1471283A (en) * 2002-07-26 2004-01-28 深圳市中兴通讯股份有限公司 Virtual special dialing network business data packet retransmission method
CN1649325A (en) * 2004-01-26 2005-08-03 日立通讯技术株式会社 Packet transfer apparatus
CN1787485A (en) * 2004-12-08 2006-06-14 日立通讯技术株式会社 Packet forwarding apparatus and communication network
CN1870588A (en) * 2005-12-31 2006-11-29 华为技术有限公司 Implementing method and system for support VPLS service on IP skeletal network
EP1798908A1 (en) * 2004-10-01 2007-06-20 Mitsubishi Denki Kabushiki Kaisha Access service network system, access device, l2tp tunnel line concentrator and home agent, and access service providing method
CN101110847A (en) * 2007-08-27 2008-01-23 华为技术有限公司 Method, device and system for obtaining medium access control address
CN101272403A (en) * 2008-05-27 2008-09-24 华为技术有限公司 Method, system and device for implementing DHCP user service wholesale

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1471283A (en) * 2002-07-26 2004-01-28 深圳市中兴通讯股份有限公司 Virtual special dialing network business data packet retransmission method
CN1649325A (en) * 2004-01-26 2005-08-03 日立通讯技术株式会社 Packet transfer apparatus
EP1798908A1 (en) * 2004-10-01 2007-06-20 Mitsubishi Denki Kabushiki Kaisha Access service network system, access device, l2tp tunnel line concentrator and home agent, and access service providing method
CN1787485A (en) * 2004-12-08 2006-06-14 日立通讯技术株式会社 Packet forwarding apparatus and communication network
CN1870588A (en) * 2005-12-31 2006-11-29 华为技术有限公司 Implementing method and system for support VPLS service on IP skeletal network
CN101110847A (en) * 2007-08-27 2008-01-23 华为技术有限公司 Method, device and system for obtaining medium access control address
CN101272403A (en) * 2008-05-27 2008-09-24 华为技术有限公司 Method, system and device for implementing DHCP user service wholesale

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114285900A (en) * 2021-12-09 2022-04-05 中国联合网络通信集团有限公司 Scheduling system, authentication method, scheduling method, apparatus, server, and medium
CN114285900B (en) * 2021-12-09 2023-10-03 中国联合网络通信集团有限公司 Scheduling system, authentication method, scheduling method, device, server and medium

Also Published As

Publication number Publication date
CN101272403A (en) 2008-09-24
CN101272403B (en) 2011-02-09

Similar Documents

Publication Publication Date Title
WO2009143729A1 (en) Method, system and apparatus for realizing dhcp user service wholesale
CN107995052B (en) Method and apparatus for common control protocol for wired and wireless nodes
WO2021136311A1 (en) Method and device for communication between vpcs
CN103580980B (en) The method and device thereof that virtual network finds and automatically configures automatically
JP5050849B2 (en) Remote access system and its IP address assignment method
RU2544766C2 (en) Method, device and system for routing data between network segments
US10454880B2 (en) IP packet processing method and apparatus, and network system
JP4598859B2 (en) Relay network system and terminal adapter device
US20140230044A1 (en) Method and Related Apparatus for Authenticating Access of Virtual Private Cloud
WO2014075312A1 (en) Method, device and system for providing network traversing service
JP4146886B2 (en) Communication module and application program including this communication module
WO2009059523A1 (en) An accessing method, system and equipment of layer-3 session
JP7413415B2 (en) Communication method, gateway, and management method and device in a hybrid cloud environment
WO2011140843A1 (en) Method, apparatus and system for forwarding messages
WO2009094928A1 (en) A method and equipment for transmitting a message based on the layer-2 tunnel protocol
WO2009132594A1 (en) Method and system for forwarding data among private networks
WO2014166247A1 (en) Implementation method and system for virtual network management
CN105264835A (en) Gre tunnel implementation method, access device and convergence gateway
KR20150076041A (en) System for supporting multi-tenant based on private ip address in virtual private cloud networks and operating method thereof
WO2017166936A1 (en) Method and device for implementing address management, and aaa server and sdn controller
WO2013071765A1 (en) Method, device and system for distributing ip address for user terminal
WO2011140919A1 (en) Method, device, server and system for accessing service wholesale network
WO2016192608A2 (en) Authentication method, authentication system and associated device
WO2012130049A1 (en) Address processing method and device
CN101753525A (en) Method, system and equipment for realizing the business wholesale of DHCP users

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09753447

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09753447

Country of ref document: EP

Kind code of ref document: A1