WO2011147298A1 - 三层vpn路由重置方法和装置 - Google Patents

三层vpn路由重置方法和装置 Download PDF

Info

Publication number
WO2011147298A1
WO2011147298A1 PCT/CN2011/074532 CN2011074532W WO2011147298A1 WO 2011147298 A1 WO2011147298 A1 WO 2011147298A1 CN 2011074532 W CN2011074532 W CN 2011074532W WO 2011147298 A1 WO2011147298 A1 WO 2011147298A1
Authority
WO
WIPO (PCT)
Prior art keywords
frr
label
switching
inner layer
switch
Prior art date
Application number
PCT/CN2011/074532
Other languages
English (en)
French (fr)
Inventor
李宁
汪芳
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011147298A1 publication Critical patent/WO2011147298A1/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/28Routing or path finding of packets in data switching networks using route fault recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/50Routing or path finding of packets in data switching networks using label swapping, e.g. multi-protocol label switch [MPLS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/58Association of routers
    • H04L45/586Association of routers of virtual routers

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to a three-layer routing reset method and apparatus. Background technique
  • CE User-edge device
  • Customer Edge dual-homing is a very common form of networking in real-world networks. See Figure 1, based on Virtual Private Network Fast Re-Route (VPN) technology.
  • the network model is deployed on the remote carrier edge device (PE, Provider Edge), and the route matching policy can be used to select the remote CE route to be protected, so as to solve the service end-to-end service when the primary PE fails. Convergence problem.
  • the Layer 3 VPN FRR is divided into two levels. One is the FRR of the VPN route to the outer public network, and the other is the FRR of the inner layer of the VPN route.
  • the outer FRR is the link between the PE3 and the PE1 through the P1 and P2 LSP (Layered Service Provider), and the PE3 to PE2 have the P2 and P1. Active/standby LSP link.
  • the FRR of the inner layer is that CE2 to CE1 can be forwarded by PE3 to PE1 and PE2.
  • the outer FRR is calculated and generated by the Interior Gateway Protocol (IGP) and the Label Distribution Protocol (LDP) protocol, and the bidirectional forwarding detection (BFD) of the LSP is established.
  • IGP Interior Gateway Protocol
  • LDP Label Distribution Protocol
  • BFD bidirectional forwarding detection
  • the main link of the PE3 to the PE1 is faulty and is associated with the external FRR.
  • the external FRR switchover is performed to ensure fast switching of the VPN traffic on the public network side.
  • the internal layer FRR is calculated and generated by the Multi-Protocol Border Gateway Protocol (MBGP) protocol.
  • MBGP Multi-Protocol Border Gateway Protocol
  • the BFD of the PEER detects the forwarding link of the PE3 to the PE1 and is associated with the internal FRR.
  • the primary and backup links of PE3 to PE1 are faulty, Perform internal FRR switching to ensure fast switching of traffic on the VPN side.
  • the fault detection of existing links and nodes is mainly applied to the public network or the private network, and for the universally applied Multi-Protocol Label Switching (MPLS) network.
  • MPLS Multi-Protocol Label Switching
  • the main purpose of the present invention is to provide a method and apparatus for implementing a three-layer VPN fast rerouting that expands the application range of VPN FRR and improves the stability of the network.
  • the present invention provides a three-layer VPN route reset method, including:
  • the inner label in the corresponding FRR table is obtained and the inner label that is originally encapsulated into the packet is replaced.
  • the outer label in the corresponding FRR table is obtained and the outer label encapsulated in the packet is replaced to complete the outer FRR switch.
  • the FRR table is searched according to the FRR index, and the FRR table includes a primary FRR table and a standby FRR table.
  • the inner label of the FRR table is read, and the inner label that is originally encapsulated into the packet is replaced by the inner label value of the FRR table.
  • the outer label in the corresponding FRR table is obtained and the outer label encapsulated in the packet is replaced, and the outer FRR is switched to:
  • the FRR table is searched according to the FRR index, and the FRR table includes a primary FRR table and a standby FRR table.
  • the outer label of the FRR table is read, and the outer label that is originally encapsulated into the packet is replaced by the outer label value of the FRR table.
  • determining whether the inner layer FRR needs to be changed further includes:
  • the corresponding FRR table is obtained to complete the outer FRR switch. Further, when detecting that the current link is faulty, determining whether the inner layer FRR is required to be included includes:
  • LSP BFD Label Switched Path Bidirectional Forwarding Detection
  • PEER BFD PEER BFD
  • the present invention also provides a three-layer VPN routing reset device, including:
  • the first judging module is configured to determine whether an inner FRR switch is needed when the current link fails.
  • the inner layer switching module is configured to: when the inner layer FRR is required to be switched, obtain the inner layer label in the corresponding FRR table, replace the inner label that is originally encapsulated into the packet, and complete the inner layer FRR switch;
  • the outer layer switching module is configured to obtain an outer layer label in the corresponding FRR table, and replace the outer label that is originally encapsulated into the packet, to complete the outer FRR switching.
  • the first determining module is configured to: when detecting that the current link is faulty, read an FRR index in the routing table; determine, according to the FRR index, whether to perform inner layer label switching; At the time of switching, it is determined that the inner layer FRR switching is required.
  • the inner layer switching module is configured to search for an FRR table according to an FRR index when the inner layer FRR switching is required, where the FRR table includes a primary FRR table and a standby FRR table; and the inner label of the FRR table is read, and the FRR table is used.
  • the inner tag value of the FRR table replaces the inner tag that was originally encapsulated into the message.
  • the outer layer switching module is configured to search for an FRR table according to an FRR index when the outer layer FRR switching is required, where the FRR table includes a primary FRR table and a standby FRR table; and the outer label of the FRR table is read, and the FRR table is used.
  • the outer label value of the FRR table replaces the outer label that was originally encapsulated into the message.
  • the second determining module is further configured to determine whether an outer FRR switching is required when the inner layer FRR switching is not required;
  • the outer layer switching module is configured to obtain a corresponding FRR table and complete an outer FRR switch when the second determining module determines that an outer FRR switch is required.
  • the device further includes a detecting module, configured to detect the current link by using LSP BFD and/or PEER BFD.
  • the invention solves the problem that the link fault convergence speed is slow in the CE dual-homing network by switching the inner layer label and the outer layer label, thereby greatly improving the stability and reliability of the network.
  • FIG. 1 is a schematic diagram of a CE dual-homed PE in the prior art
  • FIG. 2 is a schematic diagram of an internal VPN FRR switching process in an embodiment of a three-layer VPN route reset method according to the present invention
  • 3 is a schematic diagram of an internal VPN FRR switching process in another embodiment of a method for resetting a three-layer VPN route according to the present invention
  • FIG. 4 is a schematic structural diagram of an embodiment of a three-layer VPN routing reset apparatus according to the present invention. detailed description
  • FIG. 2 is a schematic diagram of an internal VPN FRR handover process in an embodiment of a three-layer VPN route reset method according to an embodiment of the present invention, including the following steps:
  • Step S201 Pre-configure the FRR service.
  • Step S202 Detect a link.
  • the link can be detected by LSP BFD or PEER BFD. After detecting the link on the inner layer VPN or the node fault DOWN, the FRR switchover is performed. Here, the main link is switched to the backup link as an example. Switch to the standby link.
  • the MBGP routing protocol calculates the standby link that can be used, and adds information about the backup link to the routing table and the FRR table.
  • the primary link is Down
  • the packet is forwarded and the routing table is read.
  • the FRR switch is performed, the corresponding FRR table is read according to the routing table.
  • Step S203 Determine whether it is necessary to perform inner layer FRR switching.
  • the FRR index information in the routing table indicates that the inner-layer VPN FRR switch needs to be performed. At the same time, the information is obtained whether the primary link or the standby link is taken. The corresponding one is to read the primary link FRR table or the backup link FRR. table.
  • the standby link table is read at this time.
  • Step S204 Read the FRR table according to the FRR index information in the routing table, and obtain an inner label value therefrom.
  • step S205 the newly read inner label is replaced with the inner label that is originally encapsulated into the packet, so as to change the inner label of the packet forwarding, and the forwarding path is changed.
  • Step S206 determining whether an outer FRR switching is required.
  • the inner label changes may cause the outer label to change, you need to determine whether to do the outer VPN FRR switch.
  • PE1—P1—PE1 cannot access CE1 due to PE1 failure, and traffic needs to be forwarded from PE3—P2—PE2 to access CE1.
  • the outer VPN FRR switchover is required.
  • the IGP and LDP protocols can calculate the change of the outer route and write the result to the routing table to reread the FRR index table according to the routing table information.
  • the process proceeds to step S207.
  • step 203 If the switchover of the public network VPN FRR is required, repeat step 203 and re-read the FRR index table to obtain information about whether to go through the primary link or the backup link to determine whether the outer VPN FRR switch needs to be performed.
  • the label in the table indicates that it is a switch for the outer VPN FRR.
  • Step S207 According to the information in the FRR index table, read the standby FRR table, and obtain an outer label value therefrom.
  • Step S208 Replace the read outer label with the outer label that is originally encapsulated into the packet, and change the public network label to implement the change of the public network forwarding path.
  • the inner label is a label for the private network
  • the outer label is a label for the public network
  • the Layer 3 VPN FRR is divided into two levels, one is the FRR of the VPN routing outer public network, and the other is the FRR of the inner layer of the VPN routing, through the switching of the two layers of labels, whether the inner layer or the outer layer VPNs can perform FRR switching to implement Layer 3 VPN fast reroute.
  • the problem that the link fault convergence speed is slow is solved, and the stability and reliability of the network are greatly improved.
  • FIG. 3 is a schematic diagram of an internal VPN FRR switching process in another embodiment of a method for resetting a three-layer VPN route according to the present invention, including the following steps:
  • Step S301 Pre-configure the FRR service.
  • Step S302 detecting a link.
  • the link can be detected by LSP BFD or PEER BFD. After the link is detected on the outer VPN or the node fails to be Down, the FRR switchover is performed. The road switches to the primary link.
  • Step S303 Determine whether an outer FRR switch needs to be performed.
  • the flag in the FRR index information in the routing table indicates that the outer VPN FRR switch is performed at this time. At the same time, the information is obtained whether the primary link or the standby link is taken. The corresponding one is to read the primary link FRR table or the standby link. Road FRR table.
  • the primary link table is read at this time.
  • both the primary link and the backup link are automatically converged according to the routing protocol and recorded in the routing table.
  • the routing protocol automatically converges, then the FRR will switch back to the primary link; if the primary link is not restored and the standby link is DOWN, the routing protocol It will calculate again to converge the third link, update the routing table and FRR table, so FRR will continue to switch to the next standby FRR entry to meet the FRR switching requirements, provided that there is enough network topology and sufficient FRR switching path.
  • the two links are active and standby. For special security requirements, you can configure more backup paths as needed.
  • Step S304 Read the main FRR table according to the FRR index information, and obtain an outer label value therefrom.
  • Step S305 Replace the newly read outer label with the original outer label, so as to change the outer label of the message forwarding, and implement the change of the forwarding path.
  • FIG. 4 it is a schematic structural diagram of an embodiment of a three-layer VPN routing reset apparatus according to the present invention.
  • the device of the three-layer VPN routing reset device includes:
  • the first determining module 41 is configured to determine whether an inner layer FRR switching is needed when the current link fails.
  • the inner layer switching module 42 is configured to: when the inner layer FRR is required to be switched, obtain the inner layer label in the corresponding FRR table to replace the inner layer label originally encapsulated into the packet, and complete the inner layer FRR switching.
  • the second determining module 43 is configured to determine whether an outer FRR switching is required.
  • the outer layer switching module 44 is configured to: when an outer FRR switch is required, obtain an outer label in the corresponding FRR table, and replace the outer label that is originally encapsulated into the text, and complete the outer FRR switch.
  • the first determining module 41 is specifically configured to:
  • the FRR index in the routing table is read; whether the inner label is required to be switched according to the FRR index; when the inner label needs to be switched, it is determined that the inner layer FRR switching is needed. .
  • the inner layer switching module 42 is specifically configured to: when an inner layer FRR switching is required, search for an FRR table according to an FRR index, where the FRR table includes a primary FRR table and a standby FRR table; and read an inner layer of the FRR table The label replaces the inner label that was originally encapsulated into the packet by using the inner label value of the FRR table.
  • the outer layer switching module 44 is specifically configured to: when an outer layer FRR switching is required, search for an FRR table according to an FRR index, where the FRR table includes a primary FRR table and a standby FRR table; and read an outer layer of the FRR table.
  • the label replaces the outer label originally encapsulated into the packet by using the outer label value of the FRR table.
  • the second determining module 43 is further configured to determine whether an outer FRR switching is required when the inner layer FRR switching is not required;
  • the outer layer switching module 44 is configured to obtain a corresponding FRR table when the second determining module 43 determines that the outer FRR switching is required, and complete the outer FRR switching.
  • the device further includes a detecting module 45, configured to detect the current link by using LSP BFD and/or PEER BFD.
  • the detecting module 45 can detect the link through the LSP BFD and/or the PEER BFD.
  • the FRR switch After detecting the link on the inner layer VPN or the node fault DOWN, the FRR switch is selected; the MBGP routing protocol calculates the standby link that can be used. And adding information about the backup link to the routing table and the FRR table.
  • the primary link is down, the message is forwarded, and when the routing table is read, if the FRR switching can be performed, the first determining module 41 according to the route The table reads the corresponding FRR table.
  • the first judging module 41 judges whether it is necessary to perform inner-layer VPN FRR switching according to the flag bit in the FRR index information in the routing table, and obtains information whether the information is the main link or the standby link at this time, and correspondingly reads the main Link FRR table or standby link FRR table.
  • the inner layer switching module 42 reads the standby FRR table according to the FRR index information in the routing table, and obtains the inner label value from the original label; and replaces the newly read inner label with the inner label that needs to be encapsulated into the packet. To change the inner label of the packet forwarding, and implement the change of the forwarding path.
  • the IGP and LDP protocols can calculate the change of the outer route and write the result to the routing table to reread the FRR index table according to the routing table information.
  • the second judging module 43 reads the corresponding FRR table according to the routing table. At this time, the second judging module 43 judges whether the outer VPN FRR switching needs to be performed according to the flag bit in the FRR index information in the routing table, and at the same time obtains whether the information is the main link or the standby link at this time, and correspondingly reads the main Link FRR table or standby link FRR table.
  • the outer switching module 44 reads the standby FRR table according to the FRR index information in the routing table, and obtains the outer label value from the outer label; and replaces the newly read outer label with the outer label that needs to be encapsulated into the packet. To change the inner label of the packet forwarding, and implement the change of the forwarding path.
  • the first determining module 41 and the second determining module 43 may be the same determining module.
  • the inner label is a label for the private network
  • the outer label is a label for the public network.
  • the Layer 3 VPN FRR is divided into two levels, one is the FRR of the VPN routing outer public network, and the other is the FRR of the inner layer of the VPN routing, through the switching of the two layers of labels, whether the inner layer or the outer layer VPNs can perform FRR switching to implement Layer 3 VPN fast reroute.
  • the problem that the link fault convergence speed is slow is solved, and the stability and reliability of the network are greatly improved.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种三层虚拟专用网络VPN路由重置方法,该方法包括:检测到当前链路发生故障时,当需要内层FRR切换时,获取对应的FRR表中的内层标签并替换原来封装到报文中的内层标签;当需要外层FRR切换时,获取对应的FRR表中的外层标签并替换原来封装到报文中的外层标签,完成外层FRR切换。本发明还公开了一种三层VPN路由重置装置,装置中的内层切换模块用于当需要内层FRR切换时,获取对应的FRR表中的内层标签替换原来封装到报文中的内层标签,完成内层FRR切换。采用本发明,本发明通过对内层标签和外层标签的切换解决CE双归属网络中,链路故障收敛速度慢的问题,极大提高网络的稳定性和可靠性。

Description

三层 VPN路由重置方法和装置 技术领域
本发明涉及到通信技术领域, 特别涉及到一种三层路由重置方法和装 置。 背景技术
随着网络技术的高速发展, 三网合一的需求日益迫切, 运营商对网络 故障时的业务收敛速度非常重视, 在任何一个节点或者链路发生故障时, 相邻节点业务快速倒换, 端到端业务迅速收敛已经逐步成为承载网的硬性 要求。
用户边缘设备 ( CE , Customer Edge )双归属是现实网络中非常普遍的 一种组网形式, 参见图 1 , 基于虚拟专用网络的快速重路由 (VPN FRR, Virtual Private Network Fast Re-Route )技术立足于此种网络模型, 在远端运 营商边缘设备 ( PE, Provider Edge )上部署, 并可以使用路由匹配策略挑 选需要保护的远端 CE路由, 以解决主用 PE故障时的业务端到端快速收敛 问题。
下面进行详细的说明:
三层 VPN FRR分为两个层次, 一个是 VPN路由外层公网的 FRR, 另 一个是 VPN路由内层的 FRR。
如图 1所示, 具体说来外层 FRR就是由 PE3到 PE1有经过 P1和 P2 的主备分层服务提供程序 (LSP, Layered Service Provider )链路, 由 PE3 到 PE2有经过 P2和 P1的主备 LSP链路。 内层的 FRR就是 CE2到 CE1可 以由 PE3到 PE1和 PE2主备路径转发。 外层 FRR由内部网关协议( IGP ) 和标签分发协议( LDP )协议计算生成,通过建立 LSP的双向转发检测( BFD ) 检测 PE3到 PE1的主链路故障并和外层 FRR关联, 当 PE3到 PE1上经过 P1的 LSP链路有故障则进行外层 FRR切换, 确保公网侧 VPN流量快速切 换。 内层 FRR由多协议边界网关协议(MBGP )协议计算生成, 通过建立 PEER的 BFD检测 PE3到 PE1的转发链路故障并和内层 FRR关联,当 PE3 到 PE1的主备链路都产生故障则进行内层 FRR切换, 确保 VPN侧流量快 速切换。
在具体实施过程中, 现有的链路和节点的故障检测, 主要是应用在公 网或者私网上, 而对于普遍应用的多协议标签交换(MPLS, Virtual Private Network Fast Re-Route ) 网络来说, 私网的切换很可能会弓 I起对于公网转发 路径的转变, 现有技术无法解决。 发明内容
本发明的主要目的为提供实现 VPN FRR的应用范围扩大,提高网络的 稳定性的三层 VPN快速重路由的方法和装置。
本发明提出一种三层 VPN路由重置方法, 包括:
检测到当前链路发生故障时, 判断是否需要内层 FRR切换;
当需要内层 FRR切换时,获取对应的 FRR表中的内层标签并替换原来 封装到报文中的内层标签;
判断是否需要外层 FRR切换;
当需要外层 FRR切换时,获取对应的 FRR表中的外层标签并替换原来 封装到报文中的外层标签, 完成外层 FRR切换。
进一步,检测到当前链路发生故障时,判断是否需要内层 FRR切换为: 检测到当前链路发生故障时, 读取路由表内的 FRR索引;
根据所述 FRR索引判断是否需要进行内层标签的切换;
当需要进行内层标签的切换时, 判定为需要进行内层 FRR切换。
进一步, 当需要内层 FRR切换时, 获取对应的 FRR表中的内层标签并 替换原来封装到报文中的内层标签为:
当需要内层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包 括主 FRR表和备 FRR表;
读取所述 FRR表的内层标签,利用所述 FRR表的内层标签值替换原来 封装到报文中的内层标签。
进一步, 当需要外层 FRR切换时, 获取对应的 FRR表中的外层标签并 替换原来封装到报文中的外层标签, 完成外层 FRR切换为:
当需要外层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包 括主 FRR表和备 FRR表;
读取所述 FRR表的外层标签,利用所述 FRR表的外层标签值替换原来 封装到报文中的外层标签。
进一步, 所述检测到当前链路发生故障时, 判断是否需要内层 FRR切 换后还包括:
当不需要内层 FRR切换时, 判断是否需要外层 FRR切换;
当需要外层 FRR切换时, 获取对应的 FRR表完成外层 FRR切换。 进一步, 所述检测到当前链路发生故障时, 判断是否需要内层 FRR切 换前包括:
通过标签交换路径双向转发检测 (LSP BFD , Label Switched Path Bidirectional Forwarding Detection )和 /或 PEER BFD检测当前链路。
本发明还提出了一种三层 VPN路由重置装置, 包括:
第一判断模块, 用于检测到当前链路发生故障时, 判断是否需要内层 FRR切换;
内层切换模块, 用于当需要内层 FRR切换时, 获取对应的 FRR表中的 内层标签替换原来封装到报文中的内层标签, 完成内层 FRR切换;
第二判断模块, 用于判断是否需要外层 FRR切换; 外层切换模块, 用于当需要外层 FRR切换时, 获取对应的 FRR表中的 外层标签替换原来封装到报文中的外层标签, 完成外层 FRR切换。
进一步, 所述第一判断模块用于检测到当前链路发生故障时, 读取路 由表内的 FRR索引;根据所述 FRR索引判断是否需要进行内层标签的切换; 当需要进行内层标签的切换时, 判定为需要进行内层 FRR切换。
进一步, 所述内层切换模块用于当需要内层 FRR切换时,根据 FRR索 引搜索 FRR表, 所述 FRR表包括主 FRR表和备 FRR表; 读取所述 FRR 表的内层标签, 利用所述 FRR表的内层标签值替换原来封装到报文中的内 层标签。
进一步, 所述外层切换模块用于当需要外层 FRR切换时,根据 FRR索 引搜索 FRR表, 所述 FRR表包括主 FRR表和备 FRR表; 读取所述 FRR 表的外层标签, 利用所述 FRR表的外层标签值替换原来封装到报文中的外 层标签。
进一步, 所述第二判断模块还用于当不需要内层 FRR切换时, 判断是 否需要外层 FRR切换;
所述外层切换模块, 用于当所述第二判断模块判断需要外层 FRR切换 时, 获取对应的 FRR表, 完成外层 FRR切换。
进一步,所述装置还包括检测模块,用于通过 LSP BFD和 /或 PEER BFD 检测当前链路。
本发明通过对内层标签和外层标签的切换解决 CE双归属网络中,链路 故障收敛速度慢的问题, 极大提高网络的稳定性和可靠性。 附图说明
图 1为现有技术中 CE双归属 PE示意图;
图 2为本发明一种三层 VPN路由重置方法一实施例中内层 VPN FRR 切换流程示意图; 图 3为本发明一种三层 VPN路由重置方法另一实施例中内层 VPN FRR 切换流程示意图;
图 4为本发明一种三层 VPN路由重置装置一实施例的结构示意图。 具体实施方式
图 2所示为本发明一种三层 VPN路由重置方法一实施例中内层 VPN FRR切换流程示意图, 包括以下步骤:
步骤 S201、 预先配置 FRR服务。
在需要进行保护的链路和节点的路由器上配置 FRR服务, 进行保护。 步骤 S202、 检测链路。
可以通过 LSP BFD或者 PEER BFD检测链路, 当检测内层 VPN上有 链路或者节点故障 DOWN之后, 则进行 FRR切换, 此处以主链路切换到 备链路为例, 流量将从主链路切换到备链路上。
MBGP路由协议计算出可以通行的备链路, 并将关于备链路的信息添 加到路由表和 FRR表中, 当主链路 DOWN了之后, 报文转发、 在读取路 由表的时候, 如果能进行 FRR切换, 则根据路由表读取相应的 FRR表。
步骤 S203、 判断是否需要进行内层 FRR切换。
路由表中的 FRR索引信息中有标记位表明需要做内层 VPN FRR切换, 同时得到信息此时是走主链路还是备链路, 相应的是读取主链路 FRR表或 备链路 FRR表。
当路由是从主链路切换到备链路, 则此时读取备链路表。
步骤 S204、 根据路由表中的 FRR索引信息, 读取备 FRR表, 从中得 到内层标签值。
步骤 S205、将新读取的内层标签替换原来需封装到报文中的内层标签, 以此来更改报文转发的内层标签, 实现转发路径的更改。
步骤 S206、 判断是否需要外层 FRR切换。 因内层标签更改可能导致外层标签的改变, 此时需要判断是否要做外 层 VPN FRR切换。例如图 1中因 PE1故障导致通过 PE3— P1— PE1无法访 问 CE1 ,需要从 PE3— P2— PE2来转发流量、访问 CE1 ,要做外层 VPN FRR 切换。
IGP和 LDP协议可以计算出外层路由的改变,并且将结果写入路由表, 根据路由表信息, 重新读取 FRR索引表。 当需要外层 FRR切换时, 继续步 骤 S207。
如果需要进行公网 VPN FRR的切换, 则重复步骤 203 , 重新读取 FRR 索引表,得到信息此时是走主链路还是备链路,判断是否需要进行外层 VPN FRR切换; 此时 FRR索引表中的标记为表明是做外层 VPN FRR的切换。
步骤 S207、 根据 FRR索引表中的信息, 读取备 FRR表, 从中得到外 层标签值。
步骤 S208、 将读取的外层标签替换原来封装到报文中的外层标签, 更 改公网标签, 实现公网转发路径的更改。
在本发明实施例中, 内层标签为针对私网的标签, 外层标签是针对公 网的标签。
本发明实施例将三层 VPN FRR分为二个层次, 一个是 VPN路由外层 公网的 FRR, 另一个是 VPN路由内层的 FRR, 通过两层标签的切换, 不论 是内层还是外层 VPN都可以进行 FRR切换, 实现三层 VPN 快速重路由。 解决了链路故障收敛速度慢的问题, 极大提高网络的稳定性和可靠性。
参阅图 3为本发明一种三层 VPN路由重置方法另一实施例中内层 VPN FRR切换流程示意图, 包括以下步骤:
步骤 S301、 预先配置 FRR服务。
在需要进行保护的链路和节点的路由器上配置 FRR服务, 进行保护。 步骤 S302、 检测链路。 可以通过 LSP BFD或者 PEER BFD检测链路, 当检测到外层 VPN上 有链路或者节点故障 DOWN之后, 则进行 FRR切换, 此处以备链路切换 到主链路为例, 流量将从备链路切换到主链路上。
步骤 S303、 判断是否需要进行外层 FRR切换。
路由表中的 FRR索引信息中有标记位表明此时是做外层 VPN FRR切 换, 同时得到信息此时是走主链路还是备链路, 相应的是读取主链路 FRR 表还是备链路 FRR表。
当路由是从备链路切换到主链路, 则此时读取主链路表。
需要注意的是, 不论是主链路还是备链路都是根据路由协议自动收敛 而成的, 并且记录到路由表中。 当切换到备链路后, 一旦主链路恢复, 则 路由协议自动收敛, 那么 FRR会重新切换回主链路; 而如果在主链路没有 恢复而备链路又 DOWN的情况下 ,路由协议会再次计算收敛出第三条链路, 更新路由表和 FRR表 , 故 FRR会继续切换下一条备 FRR条目, 满足 FRR 切换要求, 前提是有足够的网络拓朴, 配置有足够的 FRR切换路径, 一般 来说是主备两条链路, 对于特殊安全性要求高的场合可以根据需要配置更 多的备份路径。
步骤 S304、 根据 FRR索引信息, 读取主 FRR表, 从中得到外层标签 值。
步骤 S305、 将新读取的外层标签替换原来的外层标签, 以此来更改报 文转发的外层标签, 实现转发路径的更改。
此处不需要再考虑内层标签是否需要更改, 如果需要切换内存标签会 在步骤 S203时优先切换内层再考虑外层标签是否需要切换。
参阅图 4, 为本发明一种三层 VPN路由重置装置一实施例的结构示意 图。
本发明实施例提供的三层 VPN路由重置装置, 包括: 第一判断模块 41 , 用于检测到当前链路发生故障时, 判断是否需要内 层 FRR切换。
内层切换模块 42 , 用于当需要内层 FRR切换时, 获取对应的 FRR表 中的内层标签替换原来封装到报文中的内层标签, 完成内层 FRR切换。
第二判断模块 43 , 用于判断是否需要外层 FRR切换。
外层切换模块 44, 用于当需要外层 FRR切换时, 获取对应的 FRR表 中的外层标签替换原来封装到 文中的外层标签, 完成外层 FRR切换。
进一步, 所述第一判断模块 41具体用于:
检测到当前链路发生故障时,读取路由表内的 FRR索引;根据所述 FRR 索引判断是否需要进行内层标签的切换; 当需要进行内层标签的切换时, 判断需要进行内层 FRR切换。
进一步, 所述内层切换模块 42具体用于: 当需要内层 FRR切换时, 根 据 FRR索引搜索 FRR表, 所述 FRR表包括主 FRR表和备 FRR表; 读取 所述 FRR表的内层标签,利用所述 FRR表的内层标签值替换原来封装到报 文中的内层标签。
进一步, 所述外层切换模块 44具体用于: 当需要外层 FRR切换时, 根 据 FRR索引搜索 FRR表, 所述 FRR表包括主 FRR表和备 FRR表; 读取 所述 FRR表的外层标签,利用所述 FRR表的外层标签值替换原来封装到报 文中的外层标签。
进一步,所述第二判断模块 43还用于当不需要内层 FRR切换时,判断 是否需要外层 FRR切换;
所述外层切换模块 44,用于当所述第二判断模块 43判断需要外层 FRR 切换时, 获取对应的 FRR表, 完成外层 FRR切换。
进一步, 所述装置还包括检测模块 45 , 用于通过 LSP BFD和 /或 PEER BFD检测当前链路。 所述检测模块 45可以通过 LSP BFD和 /或 PEER BFD检测链路 , 当检 测内层 VPN上有链路或者节点故障 DOWN之后, 则选进行 FRR切换; MBGP路由协议计算出可以通行的备链路, 并将关于备链路的信息添加到 路由表和 FRR表中, 当主链路 DOWN了之后, 报文转发、 在读取路由表 的时候, 如果能进行 FRR切换, 第一判断模块 41根据路由表读取相应的 FRR表。 此时第一判断模块 41根据路由表中的 FRR索引信息中有标记位 判断是否需要做内层 VPN FRR切换, 同时得到信息此时是走主链路还是备 链路, 相应的是读取主链路 FRR表或备链路 FRR表。
内层切换模块 42根据路由表中的 FRR索引信息, 读取备 FRR表, 从 中得到内层标签值; 将新读取的内层标签替换原来需封装到报文中的内层 标签, 以此来更改报文转发的内层标签, 实现转发路径的更改。
同样的, 因内层标签更改可能导致外层标签的改变, 此时需要判断是 否要做外层 VPN FRR切换。例如图 1中因 PE1故障导致通过 PE3— PE1无 法访问 CE1 , 需要从 PE3— PE2来转发流量、 访问 CE1。
IGP和 LDP协议可以计算出外层路由的改变,并且将结果写入路由表, 根据路由表信息, 重新读取 FRR索引表。
第二判断模块 43根据路由表读取相应的 FRR表。 此时第二判断模块 43 根据路由表中的 FRR 索引信息中有标记位判断是否需要做外层 VPN FRR切换, 同时得到信息此时是走主链路还是备链路, 相应的是读取主链 路 FRR表或备链路 FRR表。
外层切换模块 44根据路由表中的 FRR索引信息, 读取备 FRR表, 从 中得到外层标签值; 将新读取的外层标签替换原来需封装到报文中的外层 标签, 以此来更改报文转发的内层标签, 实现转发路径的更改。
在本发明实施例中第一判断模块 41和第二判断模块 43可以为同一判 断模块。 内层标签为针对私网的标签, 外层标签是针对公网的标签。 本发明实施例将三层 VPN FRR分为二个层次, 一个是 VPN路由外层 公网的 FRR, 另一个是 VPN路由内层的 FRR, 通过两层标签的切换, 不论 是内层还是外层 VPN都可以进行 FRR切换, 实现三层 VPN 快速重路由。 解决了链路故障收敛速度慢的问题, 极大提高网络的稳定性和可靠性。
以上所述仅为本发明的优选实施例, 并非因此限制本发明的专利范围, 凡是利用本发明说明书及附图内容所作的等效结构或等效流程变换, 或直 接或间接运用在其他相关的技术领域, 均同理包括在本发明的专利保护范 围内。

Claims

权利要求书
1、 一种三层虚拟专用网络 VPN路由重置方法, 其特征在于, 该方法 包括:
检测到当前链路发生故障时, 判断是否需要内层快速重路由(FRR )切 换;
当需要内层 FRR切换时,获取对应的 FRR表中的内层标签并替换原来 封装到报文中的内层标签;
判断是否需要外层 FRR切换;
当需要外层 FRR切换时,获取对应的 FRR表中的外层标签并替换原来 封装到报文中的外层标签, 完成外层 FRR切换。
2、 根据权利要求 1所述的方法, 其特征在于, 所述检测到当前链路发 生故障时, 判断是否需要内层 FRR切换为:
检测到当前链路发生故障时, 读取路由表内的 FRR索引;
根据所述 FRR索引判断是否需要进行内层标签的切换;
当需要进行内层标签的切换时, 判定为需要进行内层 FRR切换。
3、 根据权利要求 1 所述的方法, 其特征在于, 所述当需要内层 FRR 切换时, 获取对应的 FRR表中的内层标签并替换原来封装到报文中的内层 标签为:
当需要内层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包 括主 FRR表和备 FRR表;
读取所述 FRR表的内层标签,利用所述 FRR表的内层标签值替换原来 封装到报文中的内层标签。
4、 根据权利要求 1 所述的方法, 其特征在于, 所述当需要外层 FRR 切换时, 获取对应的 FRR表中的外层标签并替换原来封装到报文中的外层 标签, 完成外层 FRR切换为: 当需要外层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包 括主 FRR表和备 FRR表;
读取所述 FRR表的外层标签,利用所述 FRR表的外层标签值替换原来 封装到报文中的外层标签。
5、 根据权利要求 1、 3或 4所述的方法, 其特征在于, 所述检测到当 前链路发生故障时, 判断是否需要内层 FRR切换后, 该方法还包括:
当不需要内层 FRR切换时, 判断是否需要外层 FRR切换;
当需要外层 FRR切换时, 获取对应的 FRR表完成外层 FRR切换。
6、 根据权利要求 1所述的方法, 其特征在于, 所述检测到当前链路发 生故障时, 判断是否需要内层 FRR切换前, 该方法包括:
通过标签交换路径双向转发检测 LSP BFD 和 /或对等双向转发检测 PEER BFD检测当前链路。
7、 一种三层 VPN路由重置装置, 其特征在于, 该装置包括: 第一判断模块, 用于检测到当前链路发生故障时, 判断是否需要内层 FRR切换;
内层切换模块, 用于当需要内层 FRR切换时, 获取对应的 FRR表中的 内层标签替换原来封装到报文中的内层标签, 完成内层 FRR切换;
第二判断模块, 用于判断是否需要外层 FRR切换;
外层切换模块, 用于当需要外层 FRR切换时, 获取对应的 FRR表中的 外层标签替换原来封装到报文中的外层标签, 完成外层 FRR切换。
8、 根据权利要求 7所述的装置, 其特征在于, 所述第一判断模块用于 检测到当前链路发生故障时,读取路由表内的 FRR索引; 根据所述 FRR索 引判断是否需要进行内层标签的切换; 当需要进行内层标签的切换时, 判 定为需要进行内层 FRR切换。
9、 根据权利要求 7所述的装置, 其特征在于, 所述内层切换模块用于 当需要内层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包括主 FRR表和备 FRR表; 读取所述 FRR表的内层标签, 利用所述 FRR表的内 层标签值替换原来封装到报文中的内层标签。
10、 根据权利要求 7所述的装置, 其特征在于, 所述外层切换模块用 于当需要外层 FRR切换时, 根据 FRR索引搜索 FRR表, 所述 FRR表包括 主 FRR表和备 FRR表; 读取所述 FRR表的外层标签, 利用所述 FRR表的 外层标签值替换原来封装到报文中的外层标签。
11、 根据权利要求 7、 9或 10所述的装置, 其特征在于, 所述第二判 断模块还用于当不需要内层 FRR切换时, 判断是否需要外层 FRR切换; 所述外层切换模块, 用于当所述第二判断模块判断需要外层 FRR切换 时, 获取对应的 FRR表, 完成外层 FRR切换。
12、 根据权利要求 7所述的装置, 其特征在于, 所述装置还包括检测 模块, 用于通过 LSP BFD和 /或 PEER BFD检测当前链路。
PCT/CN2011/074532 2010-05-24 2011-05-23 三层vpn路由重置方法和装置 WO2011147298A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010182527.2 2010-05-24
CN201010182527.2A CN101848159B (zh) 2010-05-24 2010-05-24 三层vpn路由重置方法和装置

Publications (1)

Publication Number Publication Date
WO2011147298A1 true WO2011147298A1 (zh) 2011-12-01

Family

ID=42772623

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/074532 WO2011147298A1 (zh) 2010-05-24 2011-05-23 三层vpn路由重置方法和装置

Country Status (2)

Country Link
CN (1) CN101848159B (zh)
WO (1) WO2011147298A1 (zh)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111224870A (zh) * 2018-11-26 2020-06-02 中兴通讯股份有限公司 一种SR-MPLS Anycast场景下的故障修复方法、设备和存储介质
CN113852536A (zh) * 2021-09-26 2021-12-28 新华三信息安全技术有限公司 一种业务部署方法及装置

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101848159B (zh) * 2010-05-24 2015-01-28 中兴通讯股份有限公司 三层vpn路由重置方法和装置
CN101860482B (zh) * 2010-05-25 2014-12-17 中兴通讯股份有限公司 二层虚拟专用网络快速重路由方法及装置
CN110011917B (zh) * 2019-03-21 2021-05-07 新华三技术有限公司 一种报文转发方法、装置、电子设备及存储介质

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651630A (zh) * 2009-09-29 2010-02-17 杭州华三通信技术有限公司 一种基于链路故障的切换方法及装置
CN101697527A (zh) * 2009-10-26 2010-04-21 中兴通讯股份有限公司 网络处理器实现虚拟私有网络快速重路由的方法及装置
CN101848159A (zh) * 2010-05-24 2010-09-29 中兴通讯股份有限公司 三层vpn路由重置方法和装置

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101494614B (zh) * 2009-03-09 2011-11-16 华为技术有限公司 快速重路由方法、装置和系统

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651630A (zh) * 2009-09-29 2010-02-17 杭州华三通信技术有限公司 一种基于链路故障的切换方法及装置
CN101697527A (zh) * 2009-10-26 2010-04-21 中兴通讯股份有限公司 网络处理器实现虚拟私有网络快速重路由的方法及装置
CN101848159A (zh) * 2010-05-24 2010-09-29 中兴通讯股份有限公司 三层vpn路由重置方法和装置

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111224870A (zh) * 2018-11-26 2020-06-02 中兴通讯股份有限公司 一种SR-MPLS Anycast场景下的故障修复方法、设备和存储介质
CN113852536A (zh) * 2021-09-26 2021-12-28 新华三信息安全技术有限公司 一种业务部署方法及装置
CN113852536B (zh) * 2021-09-26 2023-09-19 新华三信息安全技术有限公司 一种业务部署方法及装置

Also Published As

Publication number Publication date
CN101848159B (zh) 2015-01-28
CN101848159A (zh) 2010-09-29

Similar Documents

Publication Publication Date Title
TWI586131B (zh) 使用標籤分配協定之多重協定標籤交換技術快速重路由(ldp-frr)
US8842522B2 (en) Incremental deployment of MRT based IPFRR
CN101931520B (zh) 一种切换方法及系统
CN102664788B (zh) Mpls l3vpn中ce双归链路保护的方法及系统
KR101354467B1 (ko) 패킷 스위칭된 제공자 네트워크를 통한 클라이언트 데이터 전송을 위한 방법
EP2360880B1 (en) Optimized fast re-route in MPLS-TP ring topologies
RU2520387C2 (ru) Способ и устройство для защиты канала в виртуальной частной локальной сети
KR102055714B1 (ko) Ldp를 이용하는 mpls 고속 리라우트(ldp―frr)
WO2007016834A1 (fr) Procede rapide de convergence de services de point a point et dispositif associe cote fournisseur de services
WO2012079375A1 (zh) 虚拟专用网络的链路保护方法和系统
WO2008083590A1 (fr) Procédé et appareil de convergence rapide d'un service point à point
WO2011147299A1 (zh) 二层虚拟专用网络快速重路由方法及装置
WO2008028382A1 (fr) Procédé et appareil pour exécuter une détection de liaison, conversion de stratégie d'acheminement de bout en bout
KR20150121241A (ko) Ip/mpls 고속 재루트 방법 및 장치
WO2012016458A1 (zh) 用于二层虚拟专用网络的数据传输方法和装置
WO2010020146A1 (zh) 流量工程隧道的关联保护方法、装置及系统
WO2013040930A1 (zh) 一种组播标签交换路径的中间节点保护方法及装置
WO2016023278A1 (zh) 一种网络保护倒换方法、网络设备及存储介质
WO2011147298A1 (zh) 三层vpn路由重置方法和装置
WO2011140890A1 (zh) 实现快速重路由的方法及装置
JP2015534377A (ja) サービス・トラフィックを保護するための方法および装置
WO2016090815A1 (zh) 一种部署大容量业务时的切换控制方法及装置
WO2016101492A1 (zh) 一种业务转发表的设置方法及装置
CN111083033B (zh) 基于多协议标签交换协议的三层虚拟专用网
Tomar et al. MPLS-A Fail Safe Approach to Congestion Control

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11786070

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11786070

Country of ref document: EP

Kind code of ref document: A1