WO2011120297A1 - 虚拟专用局域网业务的保护方法、系统、pe和ce - Google Patents

虚拟专用局域网业务的保护方法、系统、pe和ce Download PDF

Info

Publication number
WO2011120297A1
WO2011120297A1 PCT/CN2010/078006 CN2010078006W WO2011120297A1 WO 2011120297 A1 WO2011120297 A1 WO 2011120297A1 CN 2010078006 W CN2010078006 W CN 2010078006W WO 2011120297 A1 WO2011120297 A1 WO 2011120297A1
Authority
WO
WIPO (PCT)
Prior art keywords
edge device
access circuit
port
side port
bfd
Prior art date
Application number
PCT/CN2010/078006
Other languages
English (en)
French (fr)
Inventor
李春红
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011120297A1 publication Critical patent/WO2011120297A1/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements

Definitions

  • the present invention relates to the field of communications, and in particular, to a virtual private LAN service (VPLS) protection method, system, Provider Edge (PE), and Customer Edge (CE). .
  • VPLS virtual private LAN service
  • PE Provider Edge
  • CE Customer Edge
  • IP networks especially the popular carrier-class Ethernet in recent years, put the protection switching capability of the network at the forefront. How to make the network switch quickly in the event of a failure is the goal that each device provider is striving for.
  • the current bearer network uses a variety of technologies to improve the network fault detection speed and protection switching performance to reduce the impact of network faults on services, and thereby reduce the probability of service unavailability and improve service reliability.
  • the following technologies are often used on the Provider Edge (PE) side: TE FRR (Traffic Engine Traffic Engineering, Fast ReRoute Fast Reroute), Virtual Private Network (VPN) FRR, Operation, Management , Maintenance (Operation, Administration, Maintenance, OAM), Bidirectional Forwarding Detection (BFD), etc.
  • the active/standby link or the active/standby pseudowire or even the active/standby tunnel is established to ensure that the traffic is quickly switched to the standby when the primary link, the primary pseudowire, and the primary tunnel are faulty, thereby ensuring the reliability of the communication.
  • the redundancy backup or load sharing access policy is used, or the Rapid Spanning Tree Protocol (RSTP) and VRRP are enabled to implement protection switching.
  • RSTP Rapid Spanning Tree Protocol
  • VRRP is a three-layer system. Redundant backup protocol, and VPLS technology in Layer 2 VPN (L2VPN) is a commonly used technology in bearer networks.
  • the protection switching methods frequently used in VPLS are VPN FRR, TE FRR, etc.
  • the protection methods are all protecting the operator's network.
  • the side where the user edge device (CE) is connected to the PE is called the accessing circuit (AC) side of the CE.
  • the side where the PE is connected to the CE is called the AC side of the PE.
  • the side of the PE connected to the PE is called the Virtual Circuit (VC) side of the PE.
  • the AC side of the CE and the VC side of the PE are independent of each other, that is, the state of the VC side of the PE is not affected by the AC access, and the AC side cannot sense whether the state of the VC side is normal.
  • the existing protection switching policies, TE FRR and VPN FRR are technologies for protecting the VCs on the PE side. When the VCs in the network are abnormal, the AC side cannot switch in time and a brief interruption of traffic occurs.
  • the existing network has the following disadvantages: In the VPLS environment, the AC side of the CE cannot be aware of the state of the VC side of the PE. When the state of the VC side of the PE changes, the AC side cannot be notified in time. Switching occurs on the AC side, which causes service switching to be slow or even interrupted.
  • the present invention provides a method for protecting a virtual private local area network service, which can improve the reliability of the service.
  • the present invention employs the following technical solutions:
  • a method for protecting a virtual private local area network service includes:
  • the edge device of the carrier detects the status of the BFD based on the bidirectional forwarding, and the device with the user edge
  • the access circuit connected to the CE is processed on the AC side port, and the service runs on the normal line.
  • the step of processing, by the operator edge device, the port on the AC side of the access circuit connected to the user edge device CE according to the state of the bidirectional forwarding detection BFD includes:
  • the method further includes: operating, managing, and maintaining an OAM function between the user edge device CE and the operator edge device PE;
  • the user edge device CE processes the AC side port of the access circuit connected to the edge device PE of the carrier according to the status detected by the operation, management, and maintenance OAM function.
  • the user edge device CE processes the access side AC side port connected to the operator edge device PE according to the state detected by the operation, management, and maintenance OAM function.
  • the steps include:
  • the operation, management, and maintenance OAM function detects that the access terminal of the PE of the carrier edge device is open, the AC side port of the access circuit of the user edge device CE is enabled.
  • the method further includes: for the dual-homed user edge equipment CE, when the access side of the access circuit flows through the AC side port is closed, and the other access circuit AC port When it is enabled, the service is switched to the link where the AC side port of the access circuit is open.
  • the link through which the service flows is determined according to the priority.
  • the present invention also discloses a protection system for a virtual private local area network service, including a carrier edge device PE, which is configured to: enable a bidirectional forwarding detection BFD function of a pseudowire PW on a virtual circuit VC side; The status of the BFD is detected, and the AC side port of the access circuit connected to the user edge device CE is processed, and the service runs on a normal line.
  • a carrier edge device PE which is configured to: enable a bidirectional forwarding detection BFD function of a pseudowire PW on a virtual circuit VC side; The status of the BFD is detected, and the AC side port of the access circuit connected to the user edge device CE is processed, and the service runs on a normal line.
  • the operator edge device PE is further configured to: when the BFD state of the bidirectional forwarding detection is off, the AC side port of the access circuit is closed; when the BFD is detected by the bidirectional forwarding When the status is on, the AC side port of the access circuit is turned on.
  • the system further includes a user edge device CE, and the CE is set to: open operation, management, and operation with the operator edge device PE.
  • the OAM function is maintained; and the AC side port of the access circuit connected to the operator edge device PE is processed according to the status detected by the operation, management, and maintenance OAM functions.
  • the user edge device CE is further configured to: when the operation, management, and maintenance OAM function detects that the AC side port of the access edge device of the carrier edge device is off. The AC side port of the access circuit is closed. When the operation, management, and maintenance OAM function detects that the AC side port of the access device PE of the carrier edge device is enabled, the AC side port of the access circuit is enabled.
  • the present invention also provides a carrier edge device (PE) of a virtual private local area network service, which is configured to: enable a bidirectional forwarding detection (BFD) function of a pseudowire (PW) on a virtual circuit (VC) side; Forwards and detects the status of BFD, processes the access circuit (AC) side port connected to the user edge device (CE), and runs the service on the normal line.
  • PE carrier edge device
  • BFD bidirectional forwarding detection
  • PW pseudowire
  • VC virtual circuit
  • CE user edge device
  • the PE is further configured to: when the BFD state of the bidirectional forwarding detection is off, the AC side port of the access circuit is closed; when the BFD state of the bidirectional forwarding detection is enabled, the AC side port of the access circuit is turned on.
  • the present invention also provides a user edge device CE of a virtual private local area network service, where the CE is set to: open an operation, management, and maintenance (OAM) function with an operator edge device (PE); and according to the OAM function.
  • OAM operation, management, and maintenance
  • the detected state processes the access circuit (AC) side port connected to the carrier edge device PE.
  • the CE is further configured to: when the OAM function detects that the AC side port of the access circuit of the operator edge device PE is off, the AC side port of the access circuit is closed; when the OAM function detects the carrier edge device When the AC side port of the access circuit of the PE is enabled, the AC side port of the access circuit is enabled.
  • the invention is used to enable the BFD function of the PW on the VC side of the PE, and according to the state of the BFD
  • the method of processing the AC-side port connected to the CE enables the CE to sense the link abnormality and perform the AC-side port switching of the CE to enable the service to run on the normal line to protect the service.
  • the method of the present invention can be implemented. Shorten the time for business switching, achieve better protection of business, and improve business Reliability. BRIEF abstract
  • FIG. 1 exemplarily describes a network structure of a virtual private local area network of the present invention
  • FIG. 2 exemplarily depicts a flow chart of the present invention for switching from an active route to an alternate route
  • FIG. 3 exemplarily illustrates a flow chart of the present invention for switching from an alternate route to an active route after the primary route is restored;
  • Figure 4 exemplarily depicts a flow diagram of the present invention for switching from an alternate route to an active route when an alternate route is abnormal.
  • Fig. 5 exemplarily depicts a system configuration diagram of the present invention. Preferred embodiment of the invention
  • the present invention provides a method for protecting a virtual private local area network, including the following steps:
  • the edge device of the carrier is enabled on the virtual circuit VC side to enable the bidirectional forwarding detection of the pseudowire PW.
  • the edge device of the carrier is configured to process the AC side port of the access circuit connected to the user edge device CE according to the status of the BFD.
  • Embodiment 1 is a diagrammatic representation of Embodiment 1:
  • a typical network structure of a virtual private LAN is shown in Figure 1. It includes the user edge devices CE1 and CE2, and the edge devices PE1, PE2, and PE3.
  • PE1 is the primary PE and PE2 is the standby PE. From CE1 to PE1.
  • PE3 is the primary route, and the route is from CE1 to PE2 to PE3.
  • the service is transmitted from CE1 to CE2 through PE1 and PE3.
  • CEl is connected to PE1 and PE2 at the same time. It is also called CE1 dual-homed to PE1 and PE2.
  • an embodiment of the foregoing virtual private local area network service protection method includes the following steps:
  • Step 101 Enable OAM between PE1, PE2, and CE1.
  • the OAM function can automatically detect the status of the link between the CE and the PE. When the link is normal, the OAM status is enabled. When the link is abnormal, the OAM status is off.
  • Step 102 Enable the BFD function of the PW on the VC side of PE1 and PE2.
  • the BFD function of the PW can be used to respond to the status of the link between the PEs. When the link is normal, the BFD status of the PW is enabled.
  • the open states of the links and ports are represented by up, and the closed state is represented by down.
  • Step 103 The primary PE1 tracks the BFD status of the PW.
  • the AC side port of PE1 and the AC side port of CE1 are UP.
  • Step 104 When the link between the PE1 and the PE3 of the primary route is abnormal, the BFD status of the PW tracked by the PE1 is down.
  • Step 105 PE1 changes the port status of the AC side connected to CE1 to down, and the link between PE1 and CE1 is cut off.
  • Step 106 After the link between the PE1 and the CE1 is disconnected, the CE1 detects that the OAM state is down. Then, the status of the AC side port of the CE is changed to down, and the ar and mac learned by the interface are deleted.
  • Step 107 When the CE1 port of the CE1 to the PE1 is down, and the AC port to the PE2 is up, the CE1 quickly switches the service from the primary PE1 to the standby PE2, and the service is transmitted from the CE1 and PE2 of the standby route to the PE3.
  • the OAM function is enabled between the PE and the CE.
  • the BFD function is enabled on the VC side of the PE.
  • the CE detects the abnormality of the link.
  • the AC-side switchover of the CE can switch services to the normal link in time, shortening the time for service switching, achieving better protection for services, and improving service reliability.
  • an embodiment of the protection method of the virtual private network includes the following steps:
  • Step 201 Set the priority of the AC port of the CE1, and the priority of the AC port to the primary PE1 is higher than the priority of the AC port to the PE2.
  • Step 202 When the link between the PE1 and the PE3 of the primary route is restored, the BFD status of the PW tracked by the PE1 is up.
  • Step 203 PE1 changes the port status on the AC side to up.
  • Step 204 CE1 detects that the OAM state is up, and changes the port status of the AC side to PE1 to up.
  • step 205 the priority of the AC port of the CE1 to the PE1 is higher than the priority of the AC port of the CE1 to the PE2. Therefore, when both AC ports are up, the CE1 switches the service from the backup route to the active route.
  • Embodiment 3 is a diagrammatic representation of Embodiment 3
  • an embodiment of the protection method of the virtual private local area network includes the following steps:
  • Step 301 Set the priority of the AC port of the CE1, and the priority of the AC port to the primary PE1 is equal to the priority of the AC port to the PE2.
  • the service is running on the standby route, and the primary route is restored, that is, the link between the PE1 and the PE3 is restored, and the BFD state of the PE1 tracked to the PW is up.
  • Step 303 PE1 changes the state of the AC-side port to up, and restores the link between CE1 and PE1. It is normal.
  • Step 304 CEl detects that the OAM state is up, and the port status of the AC side to PE1 is changed to up.
  • Step 305 The two AC ports of CE1 have the same priority, and the service still runs on the alternate route.
  • Step 306 When the link between the PE2 and the PE3 is faulty on the standby route, the BFD status of the PW tracked by the PE2 is down.
  • Step 307 PE2 changes the port on the AC side to down, and the link between PE2 and CE1 is cut off.
  • Step 308 After detecting that the OAM state is down, CE1 changes the AC side port of CE to PE2 to down, and deletes the ar and mac learned by the interface.
  • the AC-side port of the CE1 to the PE2 is down, and the AC-side port to the PE1 is up, the CE1 switches the service to the primary route, and the service is transmitted from the CE1 and the PE1 to the PE3. protection of.
  • Embodiment 4 is a diagrammatic representation of Embodiment 4:
  • the protection system of the virtual private local area network disclosed in the present invention includes the operation of the edge device PE of the carrier, and is also used to detect the state of the BFD according to the bidirectional forwarding, and the access circuit connected to the user edge device CE.
  • the AC side port processes and runs the service on a normal line.
  • the operator edge device PE is further configured to: when the bidirectional forwarding detection BFD state is off, the AC side end of the access circuit turns on the AC side port of the access circuit. .
  • the protection system of the virtual private local area network service includes a user edge device CE, which is used to enable operation, management, and maintenance of the OAM function with the operator edge device PE.
  • the user edge device CE is also used according to the user edge device CE.
  • the state detected by the OAM function is processed, managed, and maintained.
  • the AC side port of the access circuit connected to the edge device PE of the carrier is processed.
  • the user edge device CE is further configured to: when the operation, management, and maintenance OAM function detects that the AC side port of the access edge device of the operator edge device PE is off, The access side circuit side port is closed; the user edge device CE is further configured to: when the operation, management, and maintenance OAM function detects that the access side circuit of the carrier edge device PE is open, the access circuit AC side The port is open.
  • the present invention is used to enable the BFD function of the PW on the VC side of the PE, and to process the AC side port connected to the CE according to the state of the BFD, so that the CE can sense the link abnormality in time and perform AC side port switching of the CE.
  • the service is run on a normal line to protect the service.
  • the method of the invention can shorten the time of service switching, achieve better protection for the service, and improve the reliability of the service.
  • the method of the present invention also uses the method of setting the priority of the AC-side port of the CE.
  • the service can be switched to the original link when the original link is restored to normal, or the service can continue to run on the existing link. A more humane service.
  • the present invention is used to enable the BFD function of the PW on the VC side of the PE, and to process the AC side port connected to the CE according to the state of the BFD, so that the CE can sense the link abnormality in time and perform AC side port switching of the CE.
  • the service is run on a normal line to protect the service.
  • the method of the invention can shorten the time of service switching, achieve better protection for the service, and improve the reliability of the service.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种虚拟专用局域网业务的保护方法,包括:运营商边缘设备(PE)的虚电路(VC)侧开启伪线(PW)的双向转发检测(BFD)功能;运营商边缘设备PE根据双向转发检测BFD的状态,对与用户边缘设备(CE)相连的接入电路(AC)侧的端口进行处理,并使业务运行在正常的线路上。本发明还公开了相应系统、PE和CE。本发明可缩短了业务切换的时间,实现对业务更好的保护,提高业务的可靠性。

Description

虚拟专用局域网业务的保护方法、 系统、 PE和 CE
技术领域
本发明涉及通信领域,特别涉及一种虚拟专业局域网业务( Virtual Private Lan Service, VPLS ) 的保护方法、 系统、 运营商边缘设备( Provider Edge, 简称 PE )和用户边缘设备 (Customer Edge , 简称 CE)。 背景技术
运营商在开展通信业务时, 把网络的可靠性和故障处理能力放在了非常 重要的位置。 而故障的快速发现和业务的保护倒换是一个网络故障处理能力 的体现。 IP网络尤其近几年流行的电信级以太网更是把网络的保护倒换能力 放在了首要位置。 如何使网络在出现故障时能够迅速的切换是各个设备提供 商所努力追求的目标。
目前的承载网络釆用了多种技术来提高网络故障的检查速度和保护倒换 性能, 来降低网络故障对业务的影响, 并以此来减小业务不可用的概率, 提 高业务的可靠性。 在运营商边缘设备(Provider Edge, 简称 PE )侧经常会使 用如下的技术: TE FRR( Traffic Engine流量工程 , Fast ReRoute快速重路由)、 虚拟专用网络 (Virtual Private Network, VPN ) FRR、 操作、 管理、 维护 ( Operation、 Administration 、 Maintenance , OAM )、双向转发检测 ( Bidirectional Forwarding Detection, BFD )等。 这些现有技术在相应的应用场景下提高了网 络故障的检查速度和保护倒换性能。
现有技术中通过建立主备链路或者主备伪线甚至主备的隧道来确保流量 在主链路、 主伪线、 主隧道出现故障时快速切换到备用的上来, 保障通信的 可靠性。 在 CE接入层通常釆用冗余备份或者负荷分担的接入策略, 或者启 用快速生成树协议( Rapid Spanning Tree Protocol , RSTP ) 以及 VRRP等方式 来实现保护倒换,但是 VRRP是一种三层的冗余备份协议,而二层 VPN( level 2 VPN, L2VPN ) 中的 VPLS技术是在承载网中常用的技术,
在 VPLS中经常使用的保护倒换方式是 VPN FRR、 TE FRR等, 这些保 护方式都是在保护运营商的网络。 在 VPLS环境中, 用户边缘设备 (Customer Edge, 简称 CE)与 PE相连的一侧称为 CE的接入电路 ( Attachment circuit,简 称 AC )侧, PE与 CE相连的一侧称为 PE的 AC侧; PE与 PE相连的一侧称 为 PE的虚电路( Virtual Circuit, 简称 VC )侧。 CE的 AC侧和 PE的 VC侧 是相互独立的, 也就是说 PE的 VC侧的状态不会受到 AC接入的影响, 同时 AC侧也无法感知 VC侧的状态是否正常。 由于现有的保护倒换策略 TE FRR 和 VPN FRR都是保护 PE侧的 VC的技术, 因此当网络中的 VC异常时, AC 侧不能够及时的切换而会出现流量的短暂中断。
由此可见, 现存的网络存在如下的不足: 在 VPLS环境中, CE的 AC侧 接入无法感知 PE的 VC侧的状态, 当 PE的 VC侧的状态发生变化时, 无法 及时通知 AC侧, 并使 AC侧发生切换, 从而会导致业务切换较慢甚至中断。
发明内容
本发明提供了一种虚拟专用局域网业务的保护方法, 可提高业务的可靠 性。
一方面, 本发明釆用了如下技术方案:
一种虚拟专用局域网业务的保护方法, 包括:
运营商边缘设备 PE的虚电路 VC侧开启伪线 PW的双向转发检测 BFD 功能; 以及
运营商边缘设备 PE根据双向转发检测 BFD的状态, 对与用户边缘设备
CE相连的接入电路 AC侧的端口进行处理, 并使业务运行在正常的线路上。
上述的虚拟专用局域网业务的保护方法的一个实施例中, 运营商边缘设 备 PE根据双向转发检测 BFD的状态, 对与用户边缘设备 CE相连的接入电 路 AC侧的端口进行处理的步骤包括:
当双向转发检测 BFD状态为关闭时,将用户边缘设备 CE的接入电路 AC 侧的端口关闭;
当双向转发检测 BFD状态为开启时,将用户边缘设备 CE的接入电路 AC 侧的端口开启。 上述的虚拟专用局域网业务的保护方法的一个实施例中, 还包括: 在用户边缘设备 CE与运营商边缘设备 PE之间开启操作、 管理、 维护 OAM功能;
用户边缘设备 CE根据操作、 管理、 维护 OAM功能检测到的状态, 对与 运营商边缘设备 PE相连的接入电路 AC侧端口进行处理。
上述的虚拟专用局域网业务的保护方法的一个实施例中, 用户边缘设备 CE根据操作、管理、 维护 OAM功能检测到的状态,对与运营商边缘设备 PE 相连的接入电路 AC侧端口进行处理的步骤包括:
当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端口为关闭时, 将用户边缘设备 CE的接入电路 AC侧端口关闭;
当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端口为开启时, 将用户边缘设备 CE的接入电路 AC侧端口开启。
上述的虚拟专用局域网业务的保护方法的一个实施例中, 还包括: 对于双归属的用户边缘设备 CE, 当业务所流经的接入电路 AC侧端口为 关闭, 而另一个接入电路 AC端口为开启时, 将业务切换至接入电路 AC侧 端口为开启的链路。
上述的虚拟专用局域网业务的保护方法的一个实施例中, 对于双归属的 用户边缘设备 CE, 当两个 AC侧端口都为开启时, 根据优先级确定业务所流 经的链路。
另一方面, 本发明还公开了一种虚拟专用局域网业务的保护系统, 包括 运营商边缘设备 PE, 其设置为: 在虚电路 VC侧开启伪线 PW的双向转发检 测 BFD功能; 以及根据双向转发检测 BFD的状态,对与用户边缘设备 CE相 连的接入电路 AC侧端口进行处理, 并使业务运行在正常的线路上。
本发明公开的一种虚拟专用局域网业务的保护系统中, 所述运营商边缘 设备 PE还设置为: 当双向转发检测 BFD状态为关闭时, 将接入电路 AC侧 端口关闭; 当双向转发检测 BFD状态为开启时,将接入电路 AC侧端口开启。
本发明公开的一种虚拟专用局域网业务的保护系统中, 所述系统还包括 用户边缘设备 CE, CE设置为: 与运营商边缘设备 PE之间开启操作、 管理、 维护 OAM功能; 以及根据操作、 管理、 维护 OAM功能检测到的状态, 对与 运营商边缘设备 PE相连的接入电路 AC侧端口进行处理。
本发明公开的一种虚拟专用局域网业务的保护系统中, 所述用户边缘设 备 CE还设置为: 当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE 的接入电路 AC侧端口为关闭时, 将接入电路 AC侧端口关闭; 当操作、 管 理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端口为开启 时, 将接入电路 AC侧端口开启。
本发明还提供了一种虚拟专用局域网业务的运营商边缘设备(PE ) , 其 设置为: 在虚电路(VC )侧开启伪线(PW ) 的双向转发检测 (BFD )功能; 以及, 根据双向转发检测 BFD的状态, 对与用户边缘设备 ( CE )相连的接入 电路(AC )侧端口进行处理, 并使业务运行在正常的线路上。
所述 PE还设置为: 当双向转发检测 BFD状态为关闭时,将接入电路 AC 侧端口关闭; 当双向转发检测 BFD状态为开启时, 将接入电路 AC侧端口开 启。
本发明还提供了一种虚拟专用局域网业务的用户边缘设备 CE, 所述 CE 设置为: 与运营商边缘设备(PE )之间开启操作、 管理、 维护(OAM )功能; 以及根据所述 OAM功能检测到的状态,对与运营商边缘设备 PE相连的接入 电路(AC )侧端口进行处理。
所述 CE还设置为: 当所述 OAM功能检测到运营商边缘设备 PE的接入 电路 AC侧端口为关闭时, 将接入电路 AC侧端口关闭; 当所述 OAM功能检 测到运营商边缘设备 PE的接入电路 AC侧端口为开启时, 将接入电路 AC侧 端口开启。
与现有技术相比, 本发明的有益效果在于:
本发明釆用在 PE的 VC侧开启 PW的 BFD功能, 并根据 BFD的状态对
CE相连的 AC侧端口进行处理的方法, 可使 CE及时感知链路的异常, 并且 进行 CE的 AC侧端口切换,使业务运行在正常的线路上,实现对业务的保护, 本发明的方法可缩短了业务切换的时间, 实现对业务更好的保护, 提高业务 的可靠性。 附图概述
图 1示例性地描述了本发明的虚拟专用局域网的网络结构;
图 2示例性地描述了本发明从主用路由切换至备用路由的流程图; 图 3示例性地描述了本发明在主用路由恢复后, 从备用路由切换至主用 路由的流程图;
图 4示例性地描述了本发明在备用路由异常时, 从备用路由切换至主用 路由的流程图。
图 5示例性地描述了本发明的系统结构图。 本发明的较佳实施方式
下面对照附图并结合具体实施方式对本发明进行进一步详细说明。
本发明提供了一种虚拟专用局域网的保护方法, 包含以下步骤: 运营商边缘设备 PE在虚电路 VC侧开启伪线 PW的双向转发检测 BFD 功能;
运营商边缘设备 PE根据双向转发检测 BFD的状态, 对与用户边缘设备 CE相连的接入电路 AC侧端口进行处理。
实施例一:
一种虚拟专用局域网的典型网络结构如图 1 所示, 包括用户边缘设备 CE1、 CE2, 运营商边缘设备 PEl、 PE2和 PE3 , 其中 PE1为主用 PE, PE2 为备用 PE, 从 CE1至 PE1到 PE3为主用路由, 从 CE1至 PE2到 PE3为备用 路由, 该网络正常工作时, 业务从 CE1经 PE1、 PE3传送至 CE2。
CEl同时与 PE1和 PE2相连, 也称 CE1双归属到 PE1和 PE2。
CE与 PE相连的一侧称为 CE的 AC侧, PE与 CE相连的一侧称为 PE的 AC侧; PE与 PE相连的一侧称为 PE的 VC侧。 如图 2所示, 上述虚拟专用局域网业务保护方法的一个实施例包括以下 步骤:
步骤 101 , 在 PE1、 PE2与 CE1之间分别开启 OAM功能。
OAM功能可以自动检测到 CE与 PE之间链路的状态,链路正常时, OAM 的状态为开启, 当链路异常时, OAM的状态为关闭。
步骤 102, 在 PE1、 PE2的 VC侧分别开启 PW的 BFD功能。
PW的 BFD功能可以及时的反应 PE之间的链路状态 ,链路正常时 PW的 BFD状态为开启, 链路异常时 PW的 BFD状态为关闭。
在本实施例中, 为便于描述, 链路和端口的开启状态都以 up表示, 关闭 态以 down表示。
步骤 103 , 主用的 PE1追踪 PW的 BFD状态。
虚拟专用局域网工作在主用路由时, PE1的 AC侧端口与 CE1的 AC侧 端口为 UP。
步骤 104, 当主用路由的 PE1至 PE3之间的链路发生异常时, PE1追踪 到的 PW的 BFD状态为 down。
步骤 105, PE1将与 CE1相连的 AC侧的端口状态改为 down, PEl与 CE1 之间的链路被切断。
步骤 106, PE1与 CE1之间的链路被切断后, CE1检测到 OAM状态为 down, 则将 CE的 AC侧端口状态改为 down, 并将该接口所学习到的 ar 和 mac删除。
步骤 107, CE1通往 PE1的 AC侧端口为 down, 通向 PE2的 AC侧端口 为 up,则 CE1快速将业务从主用 PE1切换至备用 PE2,业务从备用路由的 CE1、 PE2传送至 PE3。
在 PE与 CE之间开启 OAM功能,在 PE的 VC侧开启 PW的 BFD功能, 当 PE的 VC侧出现异常时, 通过改变 PE的 AC侧端口的状态, 使 CE及时 感知链路的异常,并且进行 CE的 AC侧切换,可将业务及时切换到正常的链 路, 缩短了业务切换的时间, 实现对业务更好的保护, 提高了业务的可靠性。 实施例二:
如图 3所示, 在实施例一种的虚拟专用局域网中, 由于 PE2与 PE3之间 的链路出现了异常, 业务由主用路由切换至备用路由, 当 PE2与 PE3之间的 链路恢复, 一般情况下, 业务需要由备用路由切换至主用路由, 此时, 所述 虚拟专用网的保护方法的一个实施例包含以下步骤:
步骤 201 , 设置 CE1的 AC端口的优先级, 通向主用 PE1的 AC端口优 先级高于通往 PE2的 AC端口的优先级。
步骤 202, 当主用路由的 PE1至 PE3之间链路恢复时, PE1追踪到的 PW 的 BFD状态为 up。
步骤 203 , PE1将 AC侧的端口状态改为 up。
步骤 204, CE1检测 OAM状态为 up,则将通往 PE1的 AC侧的端口状态 改为 up„
步骤 205, 由于 CE1通往 PE1的 AC端口优先级高于 CE1通往 PE2的 AC端口的优先级, 因此在两个 AC侧端口都为 up时, CE1将业务从备用路 由切换至主用路由。
实施例三:
如图 4所示, 在实施例一中的虚拟专用局域网中, 用户也可以根据需求 设置成当业务从主用路由切换至备用路由后, 即使主用路由恢复, 业务也不 切换至主用路由, 只有当备用路由故障时才将业务切换至主用路由, 此时, 所述虚拟专用局域网的保护方法的一个实施例包含以下步骤:
步骤 301 , 设置 CE1的 AC端口的优先级, 通向主用 PE1的 AC端口优 先级等于通往 PE2的 AC端口的优先级。
步骤 302, 业务运行在备用路由上, 主用路由恢复, 即 PE1与 PE3之间 的链路恢复, PE1追踪到 PW的 BFD状态为 up。
步骤 303 , PE1将 AC侧端口的状态改为 up, CE1与 PE1之间的链路恢 复正常。
步骤 304, CEl检测 OAM状态为 up,则将通往 PE1的 AC侧的端口状态 改为 up„
步骤 305, CE1的两个 AC端口的优先级相同,业务仍然运行在备用路由 上。
步骤 306 , 当备用路由上 PE2至 PE3之间的链路出现故障, PE2追踪到 的 PW的 BFD状态为 down。
步骤 307, PE2将 AC侧的端口改为 down, PE2与 CE1之间的链路被切 断。
步骤 308, CE1检测到 OAM状态为 down, 则将 CE至 PE2的 AC侧端 口改为 down , 并将该接口所学习到的 ar 和 mac删除。
步骤 309, CE1通往 PE2的 AC侧端口为 down, 通向 PE1的 AC侧端口 为 up,则 CE1将业务切换至主用路由, 业务从 CE1、 PE1传送至 PE3 , 实现链 路故障时对业务的保护。
实施例四:
如图 5所示, 本发明公开的一种虚拟专用局域网的保护系统, 包括运营 所述运营商边缘设备 PE还用于根据双向转发检测 BFD的状态, 对与用户边 缘设备 CE相连的接入电路 AC侧端口进行处理,并使业务运行在正常的线路 上。
本发明一个实施例的虚拟专用局域网业务的保护系统中, 所述运营商边 缘设备 PE还用于当双向转发检测 BFD状态为关闭时, 将接入电路 AC侧端 将接入电路 AC侧端口开启。
本发明一个实施例的虚拟专用局域网业务的保护系统中, 包括用户边缘 设备 CE, 用于与运营商边缘设备 PE之间开启操作、 管理、 维护 OAM功能; 所述用户边缘设备 CE还用于根据操作、管理、维护 OAM功能检测到的状态, 对与运营商边缘设备 PE相连的接入电路 AC侧端口进行处理。 本发明一个实施例的虚拟专用局域网业务的保护系统中, 所述用户边缘 设备 CE还用于当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的 接入电路 AC侧端口为关闭时, 将接入电路 AC侧端口关闭; 所述用户边缘 设备 CE还用于当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的 接入电路 AC侧端口为开启时, 将接入电路 AC侧端口开启。
本发明釆用在 PE的 VC侧开启 PW的 BFD功能, 并根据 BFD的状态对 CE相连的 AC侧端口进行处理的方法, 可使 CE及时感知链路的异常, 并且 进行 CE的 AC侧端口切换,使业务运行在正常的线路上,实现对业务的保护, 本发明的方法可缩短了业务切换的时间, 实现对业务更好的保护, 提高业务 的可靠性。
本发明还釆用了设置 CE的 AC侧端口优先级的方法,可根据用户需求在 原链路恢复正常时将业务切换至原链路,或者使业务在现有链路上继续运行, 给用户提供了更人性化的服务。
以上内容是结合具体的优选实施方式对本发明所作的进一步详细说明, 但这只是为便于理解而举的实例, 不应认为本发明的具体实施只局限于这些 说明。 对于本发明所属技术领域的普通技术人员来说, 在不脱离本发明构思 的前提下, 可以做出各种可能的等同改变或替换, 这些改变或替换都应属于 本发明的保护范围。
工业实用性
本发明釆用在 PE的 VC侧开启 PW的 BFD功能, 并根据 BFD的状态对 CE相连的 AC侧端口进行处理的方法, 可使 CE及时感知链路的异常, 并且 进行 CE的 AC侧端口切换,使业务运行在正常的线路上,实现对业务的保护, 本发明的方法可缩短了业务切换的时间, 实现对业务更好的保护, 提高业务 的可靠性。

Claims

权 利 要 求 书
1、 一种虚拟专用局域网业务的保护方法, 所述方法包括:
运营商边缘设备 ( PE ) 的虚电路(VC )侧开启伪线(PW ) 的双向转发 检测 (BFD )功能; 以及
运营商边缘设备 PE根据双向转发检测 BFD的状态, 对与用户边缘设备
CE相连的接入电路 ( AC )侧的端口进行处理, 并使业务运行在正常的线路 上。
2、 如权利要求 1所述的虚拟专用局域网业务的保护方法, 其中, 运营商 边缘设备 PE根据双向转发检测 BFD的状态, 对与用户边缘设备 CE相连的 接入电路 AC侧的端口进行处理的步骤包括:
当双向转发检测 BFD状态为关闭时,将用户边缘设备 CE的接入电路 AC 侧的端口关闭;
当双向转发检测 BFD状态为开启时,将用户边缘设备 CE的接入电路 AC 侧的端口开启。
3、 如权利要求 2所述的虚拟专用局域网业务的保护方法, 其中, 所述方 法还包括:
在用户边缘设备 CE与运营商边缘设备 PE之间开启操作、 管理、 维护 ( OAM )功能;
用户边缘设备 CE根据操作、 管理、 维护 OAM功能检测到的状态, 对与 运营商边缘设备 PE相连的接入电路 AC侧端口进行处理。
4、 如权利要求 3所述的虚拟专用局域网业务的保护方法, 其中, 用户边 缘设备 CE根据操作、 管理、 维护 OAM功能检测到的状态, 对与运营商边缘 设备 PE相连的接入电路 AC侧端口进行处理的步骤包括:
当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端口为关闭时, 将用户边缘设备 CE的接入电路 AC侧端口关闭;
当操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端口为开启时, 将用户边缘设备 CE的接入电路 AC侧端口开启。
5、如权利要求 4所述的虚拟专用局域网业务的保护方法, 所述方法还包 括:
对于双归属的用户边缘设备 CE, 当业务所流经的接入电路 AC侧端口为 关闭, 而另一个接入电路 AC端口为开启时, 将业务切换至接入电路 AC侧 端口为开启的链路。
6、 如权利要求 5所述的虚拟专用局域网业务的保护方法, 其中, 对于双 归属的用户边缘设备 CE, 当两个 AC侧端口都为开启时, 根据优先级确定业 务所流经的链路。
7、 一种虚拟专用局域网业务的保护系统, 所述系统包括:
运营商边缘设备(PE ) , 其设置为: 在虚电路( VC )侧开启伪线(PW ) 的双向转发检测 (BFD )功能; 以及根据双向转发检测 BFD的状态, 对与用 户边缘设备 ( CE )相连的接入电路( AC )侧端口进行处理, 并使业务运行在 正常的线路上。
8、 如权利要求 7所述的虚拟专用局域网业务的保护系统, 其中, 所述运 营商边缘设备 PE还设置为: 当双向转发检测 BFD状态为关闭时, 将接入电 路 AC侧端口关闭; 当双向转发检测 BFD状态为开启时, 将接入电路 AC侧 端口开启。
9、如权利要求 8所述的虚拟专用局域网业务的保护系统, 所述系统还包 括用户边缘设备 CE, 所述 CE设置为: 与运营商边缘设备 PE之间开启操作、 管理、 维护 (OAM )功能; 以及根据操作、 管理、 维护 OAM功能检测到的 状态, 对与运营商边缘设备 PE相连的接入电路 AC侧端口进行处理。
10、 如权利要求 9所述的虚拟专用局域网业务的保护系统, 其中, 所述 用户边缘设备 CE还设置为: 当操作、 管理、 维护 OAM功能检测到运营商边 缘设备 PE的接入电路 AC侧端口为关闭时, 将接入电路 AC侧端口关闭; 当 操作、 管理、 维护 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端 口为开启时, 将接入电路 AC侧端口开启。
11、 一种虚拟专用局域网业务的运营商边缘设备(PE ) , 其设置为: 在 虚电路(VC )侧开启伪线 (PW ) 的双向转发检测 (BFD )功能; 以及, 根 据双向转发检测 BFD的状态,对与用户边缘设备(CE )相连的接入电路(AC ) 侧端口进行处理, 并使业务运行在正常的线路上。
12、如权利要求 11所述的 PE, 所述 PE还设置为: 当双向转发检测 BFD 状态为关闭时, 将接入电路 AC侧端口关闭; 当双向转发检测 BFD状态为开 启时, 将接入电路 AC侧端口开启。
13、 一种虚拟专用局域网业务的用户边缘设备 CE, 所述 CE设置为: 与 运营商边缘设备 ( PE )之间开启操作、 管理、 维护(OAM )功能; 以及根据 所述 OAM功能检测到的状态,对与运营商边缘设备 PE相连的接入电路( AC ) 侧端口进行处理。
14、 如权利要求 13所述的 CE, 所述 CE还设置为: 当所述 OAM功能检 测到运营商边缘设备 PE的接入电路 AC侧端口为关闭时, 将接入电路 AC侧 端口关闭; 当所述 OAM功能检测到运营商边缘设备 PE的接入电路 AC侧端 口为开启时, 将接入电路 AC侧端口开启。
PCT/CN2010/078006 2010-03-30 2010-10-22 虚拟专用局域网业务的保护方法、系统、pe和ce WO2011120297A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010138406.8 2010-03-30
CN201010138406A CN101834773A (zh) 2010-03-30 2010-03-30 一种虚拟专用局域网业务的保护方法和系统

Publications (1)

Publication Number Publication Date
WO2011120297A1 true WO2011120297A1 (zh) 2011-10-06

Family

ID=42718708

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/078006 WO2011120297A1 (zh) 2010-03-30 2010-10-22 虚拟专用局域网业务的保护方法、系统、pe和ce

Country Status (2)

Country Link
CN (1) CN101834773A (zh)
WO (1) WO2011120297A1 (zh)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102857362A (zh) * 2012-04-20 2013-01-02 福建星网锐捷网络有限公司 故障处理方法、装置和系统
CN106911571A (zh) * 2017-02-28 2017-06-30 烽火通信科技股份有限公司 一种基于网络处理器的远端pw bfd描述符学习方法及系统

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101800662A (zh) * 2010-01-22 2010-08-11 中兴通讯股份有限公司 一种基于vpls的双归保护倒换方法及系统
CN101834773A (zh) * 2010-03-30 2010-09-15 中兴通讯股份有限公司 一种虚拟专用局域网业务的保护方法和系统
CN101826983A (zh) * 2010-04-02 2010-09-08 中兴通讯股份有限公司 双归保护倒换方法、装置和系统
CN102035681B (zh) * 2010-12-17 2015-07-22 中兴通讯股份有限公司 虚拟专用网络的链路保护方法和系统
CN103209085B (zh) * 2012-01-13 2018-06-12 中兴通讯股份有限公司 告警的处理方法和联动支撑系统
CN104253745B (zh) * 2013-06-29 2018-05-29 华为技术有限公司 一种路由撤销方法和网络设备
CN103368712A (zh) * 2013-07-18 2013-10-23 华为技术有限公司 主、备用设备切换方法及装置
CN106487681A (zh) * 2015-08-27 2017-03-08 中兴通讯股份有限公司 一种状态更新方法及装置
CN111740898B (zh) * 2020-05-26 2023-03-31 新华三信息安全技术有限公司 一种链路切换方法、装置和服务商边缘设备
CN113660151B (zh) * 2021-08-09 2023-03-14 中国电信股份有限公司 L2vpn跨业务通信方法、装置、电子设备和可读介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1697401A (zh) * 2004-05-10 2005-11-16 阿尔卡特公司 远程接入链路故障指示机制
CN1866849A (zh) * 2005-05-16 2006-11-22 华为技术有限公司 一种检测以太网用户线状态的方法
CN101043386A (zh) * 2006-06-28 2007-09-26 华为技术有限公司 一种基于双向转发检测协议通告伪线故障的方法
CN101232406A (zh) * 2007-01-26 2008-07-30 华为技术有限公司 Oam快速检测方法、装置和系统
CN101834773A (zh) * 2010-03-30 2010-09-15 中兴通讯股份有限公司 一种虚拟专用局域网业务的保护方法和系统

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4542045B2 (ja) * 2006-01-24 2010-09-08 アラクサラネットワークス株式会社 データ通信装置およびその方法
CN100454875C (zh) * 2006-08-24 2009-01-21 华为技术有限公司 一种用户网络边缘设备双归属或多归属的实现方法及系统
CN1933422B (zh) * 2006-09-30 2010-05-12 成都迈普产业集团有限公司 网络故障切换方法
CN100512128C (zh) * 2007-01-19 2009-07-08 华为技术有限公司 保护组播转发路径的方法和系统和业务路由器
CN100586096C (zh) * 2007-03-12 2010-01-27 杭州华三通信技术有限公司 一种基于l2vpn的拓扑通知方法、系统及其装置

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1697401A (zh) * 2004-05-10 2005-11-16 阿尔卡特公司 远程接入链路故障指示机制
CN1866849A (zh) * 2005-05-16 2006-11-22 华为技术有限公司 一种检测以太网用户线状态的方法
CN101043386A (zh) * 2006-06-28 2007-09-26 华为技术有限公司 一种基于双向转发检测协议通告伪线故障的方法
CN101232406A (zh) * 2007-01-26 2008-07-30 华为技术有限公司 Oam快速检测方法、装置和系统
CN101834773A (zh) * 2010-03-30 2010-09-15 中兴通讯股份有限公司 一种虚拟专用局域网业务的保护方法和系统

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102857362A (zh) * 2012-04-20 2013-01-02 福建星网锐捷网络有限公司 故障处理方法、装置和系统
CN106911571A (zh) * 2017-02-28 2017-06-30 烽火通信科技股份有限公司 一种基于网络处理器的远端pw bfd描述符学习方法及系统
CN106911571B (zh) * 2017-02-28 2019-08-13 烽火通信科技股份有限公司 一种基于网络处理器的远端pw bfd描述符学习方法及系统

Also Published As

Publication number Publication date
CN101834773A (zh) 2010-09-15

Similar Documents

Publication Publication Date Title
WO2011120297A1 (zh) 虚拟专用局域网业务的保护方法、系统、pe和ce
EP2555467B1 (en) Method, apparatus and system for dual-homing protection switching
EP2528272A1 (en) Dual-attached protection switching method based on vpls and system thereof
JP5913635B2 (ja) 冗長ネットワーク接続
US8982710B2 (en) Ethernet operation and maintenance (OAM) with flexible forwarding
US8792330B2 (en) Hierarchical virtual private LAN service hub connectivity failure recovery
US8817601B2 (en) HVPLS hub connectivity failure recovery with dynamic spoke pseudowires
US9800432B2 (en) Using ethernet ring protection switching with computer networks
US7881188B2 (en) Methods, systems, and computer program products for implementing link redundancy in a media gateway
US20100329110A1 (en) Method for reconvergence after failure in a dual-homing network environment
US20120113835A1 (en) Inter-network carrier ethernet service protection
WO2007115493A1 (fr) Procédé, dispositif et système pour réaliser la commutation dans le réseau à double anneau de réseau vpls
WO2012028029A1 (zh) 一种切换方法及系统
US8520509B2 (en) System and a method for routing data traffic
CN101374075A (zh) 保护组播源的方法、装置和系统
CN102571612B (zh) 一种vrrp状态切换方法和三层交换设备
WO2015196676A1 (zh) 组网保护方法、装置及组网中的汇聚主用网元
US8724454B2 (en) System and method for summarizing alarm indications in a network environment
WO2009152700A1 (zh) 管理网络设备端口状态的方法、系统及中转设备
WO2011011934A1 (zh) 一种以太网隧道分段保护方法和装置
US8514746B1 (en) Priority inversion with spanning tree protocol to trigger path switching
WO2014044088A1 (zh) L2tp网络的保护方法、装置及系统
JP2007312091A (ja) ルーチング装置および障害復旧方法
WO2015180277A1 (zh) Pw双归保护倒换方法及系统
WO2011088713A1 (zh) 保护组嵌套的实现方法、以太网保护切换的方法及系统

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10848756

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10848756

Country of ref document: EP

Kind code of ref document: A1