WO2012088909A1 - Method and device for updating vpn routing - Google Patents

Method and device for updating vpn routing Download PDF

Info

Publication number
WO2012088909A1
WO2012088909A1 PCT/CN2011/078974 CN2011078974W WO2012088909A1 WO 2012088909 A1 WO2012088909 A1 WO 2012088909A1 CN 2011078974 W CN2011078974 W CN 2011078974W WO 2012088909 A1 WO2012088909 A1 WO 2012088909A1
Authority
WO
WIPO (PCT)
Prior art keywords
vpn
state
routing
management
routing information
Prior art date
Application number
PCT/CN2011/078974
Other languages
French (fr)
Chinese (zh)
Inventor
张栋
王海波
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2012088909A1 publication Critical patent/WO2012088909A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • H04L45/04Interdomain routing, e.g. hierarchical routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]

Definitions

  • the present invention claims the priority of the Chinese patent application filed on Dec. 31, 2010, the Chinese Patent Application No. 201010624349.4, entitled “A VPN Routing Update Method and Apparatus". The entire contents are incorporated herein by reference.
  • the present invention relates to the field of communications technologies, and in particular, to a VPN routing update method and apparatus. Background technique
  • a VPN Virtual Private Network
  • a public network usually the Internet Internet
  • IP Internet Protocol
  • L3VPN Layer 3 Virtual Private Network
  • SP Service Provider
  • the basic model of BGP/MPLS IP VPN consists of three parts:
  • CE Customer Edge
  • An interface is directly connected to the service provider network.
  • the CE can be a router or a switch, or it can be a host.
  • PE Provide Edge
  • VPN Network Edge
  • P Provider Backbone
  • the P device only needs to have basic MPLS forwarding capability and does not maintain VPN information.
  • RFC2858 Multiprotocol Extensions for
  • MP-BGP Multi-Protocol Extension - Border Gateway Protocol
  • BGP-4 Multiprotocol Extension for BGP-4.
  • MP-BGP implements support for multiple network layer protocols.
  • the network layer will be negotiated, I; reflect ⁇ jNLRI (Network Layer Reachability Information) and Next Hop (under One jump).
  • the PE device when the following scenario occurs: The user shuts down the entire VPN; or the status of the VPN-related interface changes from up (active) to down (inactive); or when the VPN-related protocol status changes from up to down, the PE device All the routes of the VPN are encapsulated into the revoked packets and sent to the peer PE device. After receiving the revoked packets, the peer PEs parse them one by one, and then perform the revocation process, which triggers the re-routing calculation. For example, a PE device can carry MP_UNREACH_NLRI
  • Multiprotocol Unreachable NLRI Multi-Protocol Unreachable NLRI
  • the entire VPN The PE device needs to update the VPN routes one by one to notify the peer PE device of the rerouting calculation.
  • Embodiments of the present invention provide a method and apparatus for updating a VPN route, which implements fast update of a VPN route.
  • an embodiment of the present invention provides a method for updating a VPN route, including:
  • Provider edge PE device determines the management status of the virtual private network VPN
  • an embodiment of the present invention provides a VPN routing update apparatus, including: a determining unit, configured to determine a management state of a virtual private network VPN;
  • the notification unit is configured to notify the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the VPN management status.
  • the routing process of the VPN is implemented by notifying the management state of the VPN, and the VPN route is not required to be updated one by one, thereby enabling rapid update and revocation of the VPN route.
  • FIG. 1 is a schematic flowchart of a method for updating a VPN route according to an embodiment of the present invention
  • FIG. 2 is a schematic diagram 1 of a VPN routing update apparatus according to an embodiment of the present invention.
  • FIG. 3 is a schematic diagram 2 of a VPN routing update apparatus according to an embodiment of the present invention.
  • an embodiment of the present invention provides a method for updating a VPN route, including:
  • the PE device determines the management state of the VPN. 12. The PE device notifies the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VP N according to the VPN management status. Among them, one PE device can access multiple CE devices. A CE device can also connect multiple PE devices belonging to the same or different service providers.
  • the PE device in the above 11 determines the management state of the VPN, and may include one or more of the following situations:
  • the PE device monitors whether the VPN interface or routing protocol is inactive. When the VPN interface or routing protocol is inactive, the management status of the VPN is Down.
  • the PE device monitors whether the user shuts down the VPN. When the user shuts down the VPN, it determines that the management state of the VPN is Stale (temporary inactive).
  • the PE device monitors whether the user undo shutdown VPN, when the user undo shutdown
  • the management status of the VPN is determined to be Active.
  • the management status of the VPN can include:
  • Active state VPN-related interfaces and routing protocols are active.
  • the PE device in the above 12 notifies the peer PE device of the VPN management status, which may include:
  • the PE device notifies the peer PE device of the VPN management status through the VPN routing update packet.
  • the VPN routing update message may include a tlv (type-length-value) field.
  • type can include the management status of the VPN.
  • the “Length” can include the number of RD (Route Distinguisher).
  • the "value” may include the RD value corresponding to the VPN.
  • the VPN routing update message may be an Update message.
  • the embodiment of the invention extends a new MP-BGP route attribute: vpn status attribute
  • Type optional non-transitive (optional non-transition);
  • multiple VPNs can be configured based on one PE, and different VPNs correspond to different RD values.
  • the method for updating a VPN route in the embodiment of the present invention may further include:
  • the PE device sets the mapping between the management status of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
  • the management status of the VPN is Down.
  • the VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN. At this point, the routing information of the VPN is no longer involved in the route calculation.
  • the VPN routing information processing mode is that the peer PE device does not delete the routing information of the VPN, and keeps the routing information of the VPN in the Stale state. At this point, the routing information of the VPN is no longer involved in the route calculation.
  • the management status of the VPN is the active state.
  • the VPN routing information processing mode is that the peer PE device recovers the routing information of the VPN in the Stale state. At this point, the VPN routing information is restored and then participates in route calculation.
  • the routing processing of the VPN is implemented by notifying the management state of the VPN, and the VPN routing is no longer required to be updated one by one.
  • a series of extended functions, such as rapid update and revocation of VPN routes, solve a large number of packet processing and service convergence problems.
  • the method for updating a VPN route in the embodiment of the present invention may further include:
  • the PE device negotiates with the peer PE device to set the mapping between the management status of the VPN, the VPN routing update packet, and the V P N routing information processing mode.
  • negotiation is performed when establishing a BGP session, and VPN status notification and learning capabilities are supported. If at least one of the two peer PEs does not support the vpn status attribute, the Update packet does not contain the attributes. Then, the peer PE performs routing processing according to the BGP protocol of the prior art.
  • the peer PE device can determine the corresponding VPN management state, and then update the VPN routing information by using the corresponding VPN routing information processing mode.
  • the VPN routing update method in the embodiment of the present invention performs the capability negotiation during the establishment of the BGP session, continues to maintain the original capability, and directly adds the new capability, so that the solution of the present invention can be incrementally deployed in the network.
  • the embodiment of the present invention provides a VPN routing update apparatus, including:
  • the determining unit 21 is configured to determine a management state of the VPN.
  • the notification unit 22 is configured to notify the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the management status of the VPN.
  • the VPN route update device in the embodiment of the present invention may be a PE device.
  • the above determining unit 21 may include one or more of the following units:
  • the first determining unit 21 1 is configured to monitor whether the interface or the routing protocol of the VPN is in an inactive state. When the interface or the routing protocol of the VPN is in an inactive state, determine that the management state of the VPN is an inactive Down state.
  • the second determining unit 212 is configured to monitor whether the user shuts down the VPN, and when the user shuts down the VPN, determine that the management state of the VPN is a temporary inactive Stale state.
  • the third determining unit 213 is configured to monitor whether the user undos the shutdown VPN, and when the user undos the shutdown VPN, determines that the management state of the VPN is an active Active state.
  • the management status of the VPN can include:
  • Active state VPN-related interfaces and routing protocols are active.
  • the notification unit 22 may be specifically configured to notify the peer PE device of the management status of the VPN by using the VPN routing update message.
  • the VPN routing update message may include a tlv (type-length-value) field.
  • type can include VPN management status.
  • the “Length” can include the number of RD (Route Distinguisher).
  • the “value” may include the RD value corresponding to the VPN.
  • the VPN routing update apparatus of the embodiment of the present invention may further include: a setting unit 31, configured to set a correspondence between a VPN management state, a VPN routing update packet, and a VPN routing information processing manner. relationship.
  • the negotiation unit 32 is configured to negotiate with the peer PE device to set a correspondence between the management state of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
  • the peer PE device can determine the corresponding VPN management state, and then update the VPN routing information by using the corresponding VPN routing information processing mode.
  • the management status of the VPN is Down.
  • the VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN. At this point, the routing information of the VPN is no longer involved in the route calculation.
  • the management status of the VPN is in the stale state, and the VPN routing information processing mode is the peer.
  • the PE device does not delete the routing information of the VPN, and keeps the routing information of the VPN in the Stale state. At this point, the routing information of the VPN is no longer involved in the route calculation.
  • the management status of the VPN is the active state.
  • the VPN routing information processing mode is that the peer PE device recovers the routing information of the VPN in the Stale state. At this point, the VPN routing information is restored and then participates in route calculation.
  • the routing processing of the VPN is implemented by notifying the management state of the VPN, and the VPN routing is no longer updated one by one, thereby enabling rapid update and revocation of the VPN route.
  • the extended function of the series solves a large number of message processing and service convergence problems.
  • the following describes the VPN routing update method in the embodiment of the present invention:
  • the user shutdowns the entire VPN scenario:
  • the user In the network application, the user often deploys a redundant device (such as a PE device) for service protection.
  • a redundant device such as a PE device
  • the user needs to migrate the service from the primary device to the backup device.
  • the status of the VPN-related interface changes from up to down.
  • a VPN can be associated with multiple outbound interfaces. However, the most common one is to associate an outbound interface. When the status of the outbound interface changes from up to down, the entire VPN service cannot be used. Continue to work normally, you need to revoke all VPN routes.
  • the status of the VPN-related protocol changes from up to down.
  • dynamic routing protocols are often deployed between PEs and CEs, such as the ISIS (Intermediate System to Intermediate System) protocol and OSPF (Open Shortest Path First). Open Shortest Path First) protocol or BGP protocol for route learning and publishing.
  • ISIS Intermediate System to Intermediate System
  • OSPF Open Shortest Path First
  • BGP BGP protocol for route learning and publishing.
  • the user undo shutdown of the entire VPN scenario This means that the entire VPN service is restored.
  • the routes need to be updated one by one to notify the peer PE device to re-calculate the route.
  • the embodiment of the present invention extends a new MP-BGP route attribute: vpn status attribute
  • Type optional non-transitive
  • the route update message and route processing method for notifying three VPN states :
  • VPN-ToDown After the peer PE device receives it, it completely deletes the VPN route.
  • VPN-ToStale After the peer PE device receives the VPN route, it keeps the VPN route in the Stale state.
  • the peer PE device recovers the VPN route in the Stale state after receiving it.
  • the PE device sends the VP N-To Stale packet to notify the peer PE device that the VPN of the PE device is temporarily in the Stale state.
  • the PE device receives the packet.
  • the VPN route received from this PE device is placed in the stale state and is not deleted, but is no longer involved in route calculation.
  • the PE sends a VPN-ToDown packet to notify the peer PE that the VPN of the PE is present.
  • the peer PE device deletes all the VPN routes received from the PE device and does not participate in route calculation.
  • the device sends a VPN-ToActive packet to notify the peer PE device that the VPN of the PE device is restored to the active state.
  • the peer PE device receives the packet from the PE device.
  • the VPN route recovery in the stale state participates in route calculation and achieves fast convergence.
  • the BGP protocol is extended to notify the management state of the VPN, so that the routing processing of the VPN is more flexible, thereby implementing a series of extended functions such as rapid update and revocation of the VPN route, and solving a large number of VPNs existing in the original BGP protocol. Routing interaction and slow convergence of VPN services.
  • the storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM), or a random access memory (RAM).
  • ROM read-only memory
  • RAM random access memory

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Embodiments of the present invention relates to a method and device for updating VPN routing. A method for updating VPN routing comprises: a provider edge PE device determining a management state of a virtual private network VPN; the PE device informing a peer PE device of the management state of the VPN, so that the peer PE device updates, according to the management state of the VPN, routing information of the VPN. The routing processing on the VPN is implemented through informing of the management state of the VPN, so that it is not required to perform one-by-one updating on the VPN routing, thereby implementing a series of expanded functions such as VPN routing rapid updating and revoking, and solving the problems of a large amount of message processing and service convergence.

Description

一种 VPN路由更新方法及装置 本申请要求于 2010年 12月 31 日提交中 国专利局、 申请号为 201010624349.4、 发明名称为"一种 VPN路由更新方法及装置"的中国专利申 请的优先权, 其全部内容通过引用结合在本申请中。 技术领域 本发明涉及通信技术领域, 尤其涉及一种 VPN路由更新方法及装置。 背景技术  The present invention claims the priority of the Chinese patent application filed on Dec. 31, 2010, the Chinese Patent Application No. 201010624349.4, entitled "A VPN Routing Update Method and Apparatus". The entire contents are incorporated herein by reference. The present invention relates to the field of communications technologies, and in particular, to a VPN routing update method and apparatus. Background technique
VPN ( Virtual Private Network, 虚拟专用网)通过一个公用网络 (通常 是 Internet 因特网)建立一个临时的、 安全的连接。 A VPN (Virtual Private Network) establishes a temporary, secure connection through a public network (usually the Internet Internet).
BGP ( Border Gateway Protocol, 边界网关协议 ) /MPLS ( Multiprotocol BGP (Border Gateway Protocol) / MPLS (Multiprotocol)
Label Switching , 多协议标签交换) IP ( Internet Protocol, 网际协议) VPN 是一种 L3VPN ( Layer 3 Virtual Private Network, 3层虚拟专用网 ) , 其使用 BGP在 SP ( Service Provider, 服务提供商) 骨干网上发布 VPN路由, 使用 MPLS在服务提供商骨干网上转发 VPN报文。 这里的 IP是指 VPN承载的是 IP报 文。 Label Switching (Multi-Protocol Label Switching) IP (Internet Protocol) VPN is a Layer 3 Virtual Private Network (L3VPN) that uses BGP on the SP (Service Provider) backbone network. Publish VPN routes and use MPLS to forward VPN packets on the service provider backbone network. The IP here refers to the IP packet carried by the VPN.
BGP/MPLS IP VPN的基本模型由三部分组成:  The basic model of BGP/MPLS IP VPN consists of three parts:
CE ( Customer Edge, 用户边缘)设备: 有接口直接与服务提供商网络 相连。 CE可以是路由器或交换机, 也可以是一台主机。  CE (Customer Edge) device: An interface is directly connected to the service provider network. The CE can be a router or a switch, or it can be a host.
PE ( Provider Edge, 提供商边缘)设备: 与 CE直接相连。 在 MPLS网络 中, 对 VPN的所有处理都发生在 PE上。  PE (Provider Edge) device: Directly connected to the CE. In an MPLS network, all processing of the VPN occurs on the PE.
P ( Provider, 提供商骨干)设备: 不与 CE直接相连。 P设备只需要具备 基本 MPLS转发能力, 不维护 VPN信息。 为了正确处理 VPN路由, 使用 RFC2858 ( Multiprotocol Extensions forP (Provider, Provider Backbone) device: Not directly connected to the CE. The P device only needs to have basic MPLS forwarding capability and does not maintain VPN information. In order to properly handle VPN routing, use RFC2858 (Multiprotocol Extensions for
BGP-4, BGP-4的多协议扩展) 中定义的 MP-BGP (多协议扩展 -边界网关协 议) 。 MP-BGP实现了对多种网络层协议的支持, 在 Update报文中, 将网络 层十办议信, I;反映 ^jNLRI ( Network Layer Reachability Information , 网络层可 达信息 )及 Next Hop (下一跳 ) 。 MP-BGP (Multi-Protocol Extension - Border Gateway Protocol) as defined in BGP-4, Multiprotocol Extension for BGP-4. MP-BGP implements support for multiple network layer protocols. In the Update message, the network layer will be negotiated, I; reflect ^jNLRI (Network Layer Reachability Information) and Next Hop (under One jump).
具体的, 当发生以下场景: 用户 shutdown (关闭)整个 VPN ; 或者 VPN 相关的接口状态由 up (活跃)变为 down (非活跃) ; 或者 VPN相关的协议状 态由 up变为 down时, PE设备需要把 VPN的所有路由封装成撤销报文发送给对 等体 PE设备, 对等体 PE设备收到撤销报文后逐一解析, 然后进行撤销处理, 从而触发重新进行路由计算。 如 PE设备可以通过携带 MP_UNREACH_NLRI Specifically, when the following scenario occurs: The user shuts down the entire VPN; or the status of the VPN-related interface changes from up (active) to down (inactive); or when the VPN-related protocol status changes from up to down, the PE device All the routes of the VPN are encapsulated into the revoked packets and sent to the peer PE device. After receiving the revoked packets, the peer PEs parse them one by one, and then perform the revocation process, which triggers the re-routing calculation. For example, a PE device can carry MP_UNREACH_NLRI
( Multiprotocol Unreachable NLRI , 多协议不可达 NLRI )属性的 Update报文 来逐条撤销 VPN路由。 (Multiprotocol Unreachable NLRI, Multi-Protocol Unreachable NLRI) Update message of the attribute to revoke the VPN route one by one.
当发生以下场景: 用户 undo shutdown (恢复)整个 VPN: PE设备需要 把 VPN路由进行逐条更新, 以通知对等体 PE设备进行重新路由计算。  The following scenarios occur: User undo shutdown (recovery) The entire VPN: The PE device needs to update the VPN routes one by one to notify the peer PE device of the rerouting calculation.
采用上述现有技术,需要对 VPN路由进行逐条更新, 当 VPN路由量特别 大时, VPN路由更新需要处理大量报文, 从而导致业务收敛时间较长。 发明内容 本发明的实施例提供了一种 VPN路由更新方法及装置,其实现 VPN路由快 速更新。  With the above-mentioned prior art, the VPN routes need to be updated one by one. When the amount of VPN routes is particularly large, the VPN routing update needs to process a large number of packets, resulting in a longer service convergence time. SUMMARY OF THE INVENTION Embodiments of the present invention provide a method and apparatus for updating a VPN route, which implements fast update of a VPN route.
一方面, 本发明的实施例提供了一种 VPN路由更新方法, 包括:  In one aspect, an embodiment of the present invention provides a method for updating a VPN route, including:
提供商边缘 PE设备确定虚拟专用网 VPN的管理状态;  Provider edge PE device determines the management status of the virtual private network VPN;
所述 PE设备将所述 VPN的管理状态通知给对等体 PE设备, 以使所述对等 体 PE设备根据所述 VPN管理状态更新所述 VPN的路由信息。 另一方面, 本发明的实施例提供了一种 VPN路由更新装置, 包括: 确定单元, 用于确定虚拟专用网 VPN的管理状态; The PE device notifies the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the VPN management status. On the other hand, an embodiment of the present invention provides a VPN routing update apparatus, including: a determining unit, configured to determine a management state of a virtual private network VPN;
通知单元, 用于将所述 VPN的管理状态通知给对等体 PE设备, 以使所述 对等体 PE设备根据所述 VPN管理状态更新所述 VPN的路由信息。  The notification unit is configured to notify the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the VPN management status.
由上述本发明的实施例提供的技术方案可以看出, 通过通知 VPN的管理 状态, 实现对 VPN的路由处理, 不再需要对 VPN路由进行逐条更新, 从而能 够实现 VPN路由快速更新和撤销等一系列的扩展功能, 解决大量报文处理和 业务收敛的问题。 附图说明 为了更清楚地说明本发明实施例的技术方案,下面将对实施例描述中所需 要使用的附图作简单地介绍, 显而易见地, 下面描述中的附图仅仅是本发明的 一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下, 还可以根据这些附图获得其他的附图。  According to the technical solution provided by the foregoing embodiment of the present invention, the routing process of the VPN is implemented by notifying the management state of the VPN, and the VPN route is not required to be updated one by one, thereby enabling rapid update and revocation of the VPN route. A series of extended functions that solve a large number of message processing and service convergence problems. BRIEF DESCRIPTION OF THE DRAWINGS In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings used in the description of the embodiments will be briefly described below. It is obvious that the drawings in the following description are only some implementations of the present invention. For example, other drawings may be obtained from those skilled in the art without any inventive labor.
图 1为本发明实施例 VPN路由更新方法的流程示意图;  1 is a schematic flowchart of a method for updating a VPN route according to an embodiment of the present invention;
图 2为本发明实施例 VPN路由更新装置的构成意图一;  2 is a schematic diagram 1 of a VPN routing update apparatus according to an embodiment of the present invention;
图 3为本发明实施例 VPN路由更新装置的构成意图二。  FIG. 3 is a schematic diagram 2 of a VPN routing update apparatus according to an embodiment of the present invention.
具体实施方式 下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清 楚、 完整地描述, 显然, 所描述的实施例仅仅是本发明一部分实施例, 而不是 全部的实施例。基于本发明中的实施例, 本领域普通技术人员在没有做出创造 性劳动前提下所获得的所有其他实施例, 都属于本发明保护的范围。 The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. example. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without the creative work are all within the scope of the present invention.
如图 1所述, 本发明实施例提供一种 VPN路由更新方法, 包括:  As shown in FIG. 1 , an embodiment of the present invention provides a method for updating a VPN route, including:
11、 PE设备确定 VPN的管理状态。 12、 PE设备将 VPN的管理状态通知给对等体 PE设备, 以使对等体 PE设 备根据 VPN管理状态更新 VP N的路由信息。 其中,一个 PE设备可以接入多个 CE设备。一个 CE设备也可以连接属于相 同或不同服务提供商的多个 PE设备。 11. The PE device determines the management state of the VPN. 12. The PE device notifies the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VP N according to the VPN management status. Among them, one PE device can access multiple CE devices. A CE device can also connect multiple PE devices belonging to the same or different service providers.
举例来说, 上述 11 中 PE设备确定 VPN的管理状态, 可以包括下述情况中 的一种或者多种:  For example, the PE device in the above 11 determines the management state of the VPN, and may include one or more of the following situations:
PE设备监测 VPN的接口或路由协议是否处于非活跃状态, 当 VPN的接口 或路由协议处于非活跃状态时, 确定 VPN的管理状态为 Down (非活跃)状态。  The PE device monitors whether the VPN interface or routing protocol is inactive. When the VPN interface or routing protocol is inactive, the management status of the VPN is Down.
或者, PE设备监测用户是否 shutdown VPN , 当用户 shutdown VPN时, 确定 VPN的管理状态为 Stale (临时非活跃)状态。  Alternatively, the PE device monitors whether the user shuts down the VPN. When the user shuts down the VPN, it determines that the management state of the VPN is Stale (temporary inactive).
或者, PE设备监测用户是否 undo shutdown VPN , 当用户 undo shutdown Or, the PE device monitors whether the user undo shutdown VPN, when the user undo shutdown
VPN时, 确定 VPN的管理状态为 Active (活跃)状态。 In the VPN, the management status of the VPN is determined to be Active.
举例来说, VPN的管理状态可以包括:  For example, the management status of the VPN can include:
Down状态: VPN相关的接口或路由协议处于非活跃状态。  Down state: The VPN-related interface or routing protocol is inactive.
Stale状态: 在 shutdown操作下, VPN处于临时非活跃状态。  Stale state: Under the shutdown operation, the VPN is temporarily inactive.
Active状态: VPN相关的接口和路由协议处于活跃状态。  Active state: VPN-related interfaces and routing protocols are active.
举例来说, 上述 12 中 PE设备将 VPN的管理状态通知给对等体 PE设备, 可以包括:  For example, the PE device in the above 12 notifies the peer PE device of the VPN management status, which may include:
PE设备通过 VPN路由更新报文将 VPN管理状态通知给对等体 PE设备。 The PE device notifies the peer PE device of the VPN management status through the VPN routing update packet.
VPN路由更新报文可以包括 tlv ( type-length-value,类型 -长度 -值)字段。 其中, "类型" 可以包括 VPN的管理状态。 The VPN routing update message may include a tlv (type-length-value) field. Among them, "type" can include the management status of the VPN.
"长度" 可以包括 RD ( Route Distinguisher, 路由区分符) 的个数。 "值" 可以包括 VPN对应的 RD值。 示例性的, VPN路由更新报文可以是 Update报文。 本发明实施例扩展一 种新的 MP-BGP路由属性: vpn status attribute "Length" can include the number of RD (Route Distinguisher). The "value" may include the RD value corresponding to the VPN. Exemplarily, the VPN routing update message may be an Update message. The embodiment of the invention extends a new MP-BGP route attribute: vpn status attribute
类型: optional non-transitive (可选非过渡) ;  Type: optional non-transitive (optional non-transition);
由一系列的 type-length-value (tlv)组成:  Consists of a series of type-length-value (tlv):
type: VPN-ToDown  Type: VPN-ToDown
VPN-ToStale  VPN-ToStale
VPN -To Active  VPN -To Active
length: RD的个数  Length: the number of RD
value: VPN对应的 RD值  Value: RD value corresponding to the VPN
举例来说, 基于一个 PE上可以配置多个 VPN , 不同的 VPN对应不同的 RD 值。  For example, multiple VPNs can be configured based on one PE, and different VPNs correspond to different RD values.
举例来说, 本发明实施例 VPN路由更新方法, 还可以包括:  For example, the method for updating a VPN route in the embodiment of the present invention may further include:
PE设备设置 VPN的管理状态、 VPN路由更新报文、 VPN路由信息处理方 式之间的对应关系。  The PE device sets the mapping between the management status of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
举例来说, VPN的管理状态为 Down状态, VPN路由信息处理方式为对 等体 PE设备删除 VPN的路由信息。 此时, VPN的路由信息不再参与路由计算。  For example, the management status of the VPN is Down. The VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN. At this point, the routing information of the VPN is no longer involved in the route calculation.
或者, VPN 的管理状态为 Stale状态, VPN路由信息处理方式为对等体 PE设备不删除 VPN的路由信息, 保持 VPN的路由信息处在 Stale状态。 此时, VPN的路由信息不再参与路由计算。  Or, the management status of the VPN is in the Stale state. The VPN routing information processing mode is that the peer PE device does not delete the routing information of the VPN, and keeps the routing information of the VPN in the Stale state. At this point, the routing information of the VPN is no longer involved in the route calculation.
或者, VPN的管理状态为 Active状态, VPN路由信息处理方式为对等体 PE设备将处在 Stale状态的 VPN的路由信息恢复。此时, VPN的路由信息恢复, 再参与路由计算。  Or, the management status of the VPN is the active state. The VPN routing information processing mode is that the peer PE device recovers the routing information of the VPN in the Stale state. At this point, the VPN routing information is restored and then participates in route calculation.
由上述本发明的实施例提供的技术方案可以看出,通过通知 VPN的管理状 态, 实现对 VPN的路由处理, 不再需要对 VPN路由进行逐条更新, 从而能够实 现 VPN路由快速更新和撤销等一系列的扩展功能,解决大量报文处理和业务收 敛的问题。 It can be seen from the technical solution provided by the foregoing embodiments of the present invention that the routing processing of the VPN is implemented by notifying the management state of the VPN, and the VPN routing is no longer required to be updated one by one. A series of extended functions, such as rapid update and revocation of VPN routes, solve a large number of packet processing and service convergence problems.
举例来说, 本发明实施例 VPN路由更新方法, 还可以包括:  For example, the method for updating a VPN route in the embodiment of the present invention may further include:
PE设备与对等体 PE设备协商设置 VPN的管理状态、 VPN路由更新报文、 V P N路由信息处理方式之间的对应关系。  The PE device negotiates with the peer PE device to set the mapping between the management status of the VPN, the VPN routing update packet, and the V P N routing information processing mode.
如, 在建立 BGP会话时进行协商, 支持 VPN状态通知与学习能力。 如果 2 个对等体 PE设备中至少有 1方不支持 vpn status attribute, 则 Update报文中不 包含该类属性, 那么, 对等体 PE设备根据现有技术 BGP协议进行路由处理。  For example, negotiation is performed when establishing a BGP session, and VPN status notification and learning capabilities are supported. If at least one of the two peer PEs does not support the vpn status attribute, the Update packet does not contain the attributes. Then, the peer PE performs routing processing according to the BGP protocol of the prior art.
这样,对等体 PE设备接收到 VPN路由更新报文后,可以确定出对应的 VPN 管理状态, 进而采用对应的 VPN路由信息处理方式更新 VPN的路由信息。  In this way, after receiving the VPN routing update packet, the peer PE device can determine the corresponding VPN management state, and then update the VPN routing information by using the corresponding VPN routing information processing mode.
可见, 本发明实施例 VPN路由更新方法, 通过在建立 BGP会话时进行能 力协商, 继续保持原有能力, 直接添加新能力, 使本发明方案可以在网络中进 行增量部署。  It can be seen that the VPN routing update method in the embodiment of the present invention performs the capability negotiation during the establishment of the BGP session, continues to maintain the original capability, and directly adds the new capability, so that the solution of the present invention can be incrementally deployed in the network.
如图 2所示, 对应上述实施例 VPN路由更新方法, 本发明实施例提供一种 VPN路由更新装置, 包括:  As shown in FIG. 2, corresponding to the VPN routing update method in the foregoing embodiment, the embodiment of the present invention provides a VPN routing update apparatus, including:
确定单元 21 , 用于确定 VPN的管理状态。  The determining unit 21 is configured to determine a management state of the VPN.
通知单元 22, 用于将 VPN的管理状态通知给对等体 PE设备, 以使对等体 PE设备根据 VPN的管理状态更新 VPN的路由信息。  The notification unit 22 is configured to notify the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the management status of the VPN.
举例来说, 本发明实施例 VPN路由更新装置可以为 PE设备。  For example, the VPN route update device in the embodiment of the present invention may be a PE device.
举例来说, 如图 3所示, 上述确定单元 21 , 可以包括下述单元中的一种或 多种:  For example, as shown in FIG. 3, the above determining unit 21 may include one or more of the following units:
第一确定单元 21 1 , 用于监测 VPN的接口或路由协议是否处于非活跃状 态, 当 VPN的接口或路由协议处于非活跃状态时,确定 VPN的管理状态为非活 跃 Down状态。 或者, 第二确定单元 212 , 用于监测用户是否 shutdown VPN , 当用户 shutdown VPN时, 确定 VPN的管理状态为临时非活跃 Stale状态。 The first determining unit 21 1 is configured to monitor whether the interface or the routing protocol of the VPN is in an inactive state. When the interface or the routing protocol of the VPN is in an inactive state, determine that the management state of the VPN is an inactive Down state. Alternatively, the second determining unit 212 is configured to monitor whether the user shuts down the VPN, and when the user shuts down the VPN, determine that the management state of the VPN is a temporary inactive Stale state.
或者, 第三确定单元 213, 用于监测用户是否 undo shutdown VPN , 当用 户 undo shutdown VPN时, 确定 VPN的管理状态为活跃 Active状态。  Alternatively, the third determining unit 213 is configured to monitor whether the user undos the shutdown VPN, and when the user undos the shutdown VPN, determines that the management state of the VPN is an active Active state.
举例来说, VPN的管理状态可以包括:  For example, the management status of the VPN can include:
Down状态: VPN相关的接口或路由协议处于非活跃状态。  Down state: The VPN-related interface or routing protocol is inactive.
Stale状态: 在 shutdown操作下, VPN处于临时非活跃状态。  Stale state: Under the shutdown operation, the VPN is temporarily inactive.
Active状态: VPN相关的接口和路由协议处于活跃状态。  Active state: VPN-related interfaces and routing protocols are active.
举例来说,上述通知单元 22,具体可以用于通过 VPN路由更新报文将 VPN 的管理状态通知给对等体 PE设备。  For example, the notification unit 22 may be specifically configured to notify the peer PE device of the management status of the VPN by using the VPN routing update message.
VPN路由更新报文可以包括 tlv ( type-length-value,类型 -长度 -值)字段。 其中, "类型" 可以包括 VPN管理状态。  The VPN routing update message may include a tlv (type-length-value) field. Among them, "type" can include VPN management status.
"长度" 可以包括 RD ( Route Distinguisher, 路由区分符) 的个数。 "值" 可以包括 VPN对应的 RD值。  "Length" can include the number of RD (Route Distinguisher). The "value" may include the RD value corresponding to the VPN.
举例来说, 如图 3所示, 本发明实施例 VPN路由更新装置, 还可以包括: 设置单元 31 , 用于设置 VPN的管理状态、 VPN路由更新报文、 VPN路由 信息处理方式之间的对应关系。  For example, as shown in FIG. 3, the VPN routing update apparatus of the embodiment of the present invention may further include: a setting unit 31, configured to set a correspondence between a VPN management state, a VPN routing update packet, and a VPN routing information processing manner. relationship.
协商单元 32, 用于与对等体 PE设备协商设置 VPN的管理状态、 VPN路由 更新报文、 VPN路由信息处理方式之间的对应关系。  The negotiation unit 32 is configured to negotiate with the peer PE device to set a correspondence between the management state of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
这样,对等体 PE设备接收到 VPN路由更新报文后,可以确定出对应的 VPN 管理状态, 进而采用对应的 VPN路由信息处理方式更新 VPN的路由信息。  In this way, after receiving the VPN routing update packet, the peer PE device can determine the corresponding VPN management state, and then update the VPN routing information by using the corresponding VPN routing information processing mode.
举例来说, VPN的管理状态为 Down状态, VPN路由信息处理方式为对 等体 PE设备删除 VPN的路由信息。 此时, VPN的路由信息不再参与路由计算。  For example, the management status of the VPN is Down. The VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN. At this point, the routing information of the VPN is no longer involved in the route calculation.
或者, VPN的管理状态为 Stale状态, VPN路由信息处理方式为对等体 PE设备不删除 VPN的路由信息, 保持 VPN的路由信息处在 Stale状态。 此时, VPN的路由信息不再参与路由计算。 Or, the management status of the VPN is in the stale state, and the VPN routing information processing mode is the peer. The PE device does not delete the routing information of the VPN, and keeps the routing information of the VPN in the Stale state. At this point, the routing information of the VPN is no longer involved in the route calculation.
或者, VPN的管理状态为 Active状态, VPN路由信息处理方式为对等体 PE设备将处在 Stale状态的 VPN的路由信息恢复。此时, VPN的路由信息恢复, 再参与路由计算。  Or, the management status of the VPN is the active state. The VPN routing information processing mode is that the peer PE device recovers the routing information of the VPN in the Stale state. At this point, the VPN routing information is restored and then participates in route calculation.
由上述本发明的实施例提供的技术方案可以看出,通过通知 VPN的管理状 态, 实现对 VPN的路由处理, 不再是对 VPN路由进行逐条更新,从而能够实现 VPN路由快速更新和撤销等一系列的扩展功能,解决大量报文处理和业务收敛 的问题。  It can be seen from the technical solution provided by the foregoing embodiments of the present invention that the routing processing of the VPN is implemented by notifying the management state of the VPN, and the VPN routing is no longer updated one by one, thereby enabling rapid update and revocation of the VPN route. The extended function of the series solves a large number of message processing and service convergence problems.
通过在建立 BGP会话时进行能力协商,继续保持原有能力,直接添加新能 力, 使本发明方案可以在网络中进行增量部署。  By performing capability negotiation when establishing a BGP session, the original capability is maintained, and new capabilities are directly added, so that the solution of the present invention can be incrementally deployed in the network.
示例性的, 下面结合具体场景说明本发明实施例 VPN路由更新方法: 用户 shutdown整个 VPN场景: 在网络应用中, 用户为了提高可靠性, 经 常部署冗余设备(如 PE设备)进行业务保护。 在网络进行链路扩容时, 用户 要把业务进行主用设备到备用设备的迁移, 为了达到快速处理的目的,通常要 操作 shutdown整个 VPN。  For example, the following describes the VPN routing update method in the embodiment of the present invention: The user shutdowns the entire VPN scenario: In the network application, the user often deploys a redundant device (such as a PE device) for service protection. When the network is connected to the link, the user needs to migrate the service from the primary device to the backup device. To achieve fast processing, you usually need to shut down the entire VPN.
VPN相关的接口状态由 up变为 down场景: 一个 VPN可以关联多个出接 口,但最常见的是关联一个出接口, 那么当这个出接口状态由 up变为 down时, 意味着整个 VPN业务无法继续正常进行, 需要撤销所有的 VPN路由。  The status of the VPN-related interface changes from up to down. A VPN can be associated with multiple outbound interfaces. However, the most common one is to associate an outbound interface. When the status of the outbound interface changes from up to down, the entire VPN service cannot be used. Continue to work normally, you need to revoke all VPN routes.
VPN相关的协议状态由 up变为 down场景: 在 VPN组网中, PE-CE之间经 常部署动态路由协议, 如 ISIS ( Intermediate System to Intermediate System 中间系统互联)协议、 OSPF ( Open Shortest Path First, 开放式最短路径优 先)协议或者 BGP协议, 进行路由学习和发布。 当 VPN相关的路由协议由 up 变为 down时, 意味着整个 VPN业务无法继续正常进行, 需要撤销所有的 VPN 路由。 The status of the VPN-related protocol changes from up to down. In the VPN network, dynamic routing protocols are often deployed between PEs and CEs, such as the ISIS (Intermediate System to Intermediate System) protocol and OSPF (Open Shortest Path First). Open Shortest Path First) protocol or BGP protocol for route learning and publishing. When the VPN-related routing protocol changes from up to down, it means that the entire VPN service cannot continue normally. All VPNs need to be revoked. routing.
用户 undo shutdown整个 VPN场景: 意味着整个 VPN业务恢复正常进行, 需要把路由进行逐条更新, 以通知对等体 PE设备重新进行路由计算。  The user undo shutdown of the entire VPN scenario: This means that the entire VPN service is restored. The routes need to be updated one by one to notify the peer PE device to re-calculate the route.
举例来说, 本发明实施例扩展一种新的 MP-BGP路由属性: vpn status attribute  For example, the embodiment of the present invention extends a new MP-BGP route attribute: vpn status attribute
类型: optional non-transitive;  Type: optional non-transitive;
由一系列的 type-length-value (tlv)组成:  Consists of a series of type-length-value (tlv):
type: VPN-ToDown  Type: VPN-ToDown
VPN-ToStale  VPN-ToStale
VPN-ToActive  VPN-ToActive
length: RD的个数  Length: the number of RD
value: VPN对应的 RD值  Value: RD value corresponding to the VPN
通知三种 VPN状态的路由更新报文及路由处理方法:  The route update message and route processing method for notifying three VPN states:
VPN-ToDown : 对等体 PE设备收到后, 彻底删除 VPN路由。  VPN-ToDown: After the peer PE device receives it, it completely deletes the VPN route.
VPN-ToStale : 对等体 PE设备收到后, 保持 VPN路由在 Stale状态。  VPN-ToStale: After the peer PE device receives the VPN route, it keeps the VPN route in the Stale state.
VPN-ToActive : 对等体 PE设备收到后, 恢复处在 Stale状态的 VPN路由。 当发生用户 shutdown整个 VPN场景时, P E设备发送 VP N -To Stale才艮文, 通知对等体 PE设备本 PE设备的 VPN暂时处在 Stale状态, 对等体 PE设备收到 报文后, 把从这个 PE设备收到的 VPN路由置于 stale状态, 不删除, 但不再参 与路由计算。  VPN-ToActive: The peer PE device recovers the VPN route in the Stale state after receiving it. When the user shuts down the entire VPN scenario, the PE device sends the VP N-To Stale packet to notify the peer PE device that the VPN of the PE device is temporarily in the Stale state. After the peer PE device receives the packet, the PE device receives the packet. The VPN route received from this PE device is placed in the stale state and is not deleted, but is no longer involved in route calculation.
当发生 VPN相关的接口状态由 up变为 down场景, 或者 VPN相关的协议状 态由 up变为 down场景时, PE设备发送 VPN-ToDown报文, 通知对等体 PE设 备本 PE设备的 VPN处在 Down状态, 对等体 PE设备收到报文后, 把从这个 PE 设备收到的 VPN路由全部删除, 不再参与路由计算, 做到快速收敛。 当发生用户 undo shutdown整个 VPN时, 设备发送 VPN-ToActive报文, 通知对等体 PE设备本 PE设备的 VPN恢复 Active状态, 对等体 PE设备收到报文 后, 把从这个 PE设备收到的处在 stale状态的 VPN路由恢复, 参与路由计算, 实现快速收敛。 When the status of the VPN-related interface changes from up to down, or the status of the VPN-related protocol changes from up to down, the PE sends a VPN-ToDown packet to notify the peer PE that the VPN of the PE is present. In the Down state, after receiving the packet, the peer PE device deletes all the VPN routes received from the PE device and does not participate in route calculation. When the user undo shutdowns the entire VPN, the device sends a VPN-ToActive packet to notify the peer PE device that the VPN of the PE device is restored to the active state. After receiving the packet, the peer PE device receives the packet from the PE device. The VPN route recovery in the stale state participates in route calculation and achieves fast convergence.
本发明实施例通过对 BGP协议进行扩展, 通知 VPN的管理状态, 使 VPN 的路由处理更加灵活,从而能够实现 VPN路由快速更新和撤销等一系列的扩展 功能, 解决原有 BGP协议存在的大量 VPN路由交互和 VPN业务收敛慢的问题。  In the embodiment of the present invention, the BGP protocol is extended to notify the management state of the VPN, so that the routing processing of the VPN is more flexible, thereby implementing a series of extended functions such as rapid update and revocation of the VPN route, and solving a large number of VPNs existing in the original BGP protocol. Routing interaction and slow convergence of VPN services.
需要说明的是, 对于前述的各方法实施例, 为了简单描述, 故将其都表述 为一系列的动作组合,但是本领域技术人员应该知悉, 本发明并不受所描述的 动作顺序的限制,因为依据本发明,某些步骤可以采用其他顺序或者同时进行。 其次, 本领域技术人员也应该知悉,说明书中所描述的实施例均属于优选实施 例, 所涉及的动作和模块并不一定是本发明所必须的。  It should be noted that, for the foregoing method embodiments, for the sake of simple description, they are all expressed as a series of action combinations, but those skilled in the art should understand that the present invention is not limited by the described action sequence. Because certain steps may be performed in other sequences or concurrently in accordance with the present invention. In addition, those skilled in the art should also understand that the embodiments described in the specification are all preferred embodiments, and the actions and modules involved are not necessarily required by the present invention.
在上述实施例中,对各个实施例的描述都各有侧重, 某个实施例中没有详 述的部分, 可以参见其他实施例的相关描述。  In the above embodiments, the descriptions of the various embodiments are different, and the details are not described in the specific embodiments. For details, refer to related descriptions of other embodiments.
本领域普通技术人员可以理解实现上述实施例方法中的全部或部分流程, 是可以通过计算机程序来指令相关的硬件来完成,所述的程序可存储于一计算 机可读取存储介质中,该程序在执行时,可包括如上述各方法的实施例的流程。 其中,所述的存储介质可为磁碟、光盘、只读存储记忆体( Read-Only Memory, ROM )或随机存储记忆体( Random Access Memory, RAM )等。 以上所述,仅为本发明较佳的具体实施方式,但本发明的保护范围并不局 限于此,任何熟悉本技术领域的技术人员在本发明揭露的技术范围内, 可轻易 想到的变化或替换, 都应涵盖在本发明的保护范围之内。 因此, 本发明的保护 范围应该以权利要求的保护范围为准。  A person skilled in the art can understand that all or part of the process of implementing the above embodiment method can be completed by a computer program to instruct related hardware, and the program can be stored in a computer readable storage medium, the program When executed, the flow of an embodiment of the methods as described above may be included. The storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM), or a random access memory (RAM). The above is only a preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily think of changes or within the technical scope disclosed by the present invention. Alternatives are intended to be covered by the scope of the present invention. Therefore, the scope of the invention should be determined by the scope of the claims.

Claims

权 利 要 求 Rights request
1、 一种 VPN路由更新方法, 其特征在于, 包括: A VPN routing update method, comprising:
提供商边缘 PE设备确定虚拟专用网 VPN的管理状态;  Provider edge PE device determines the management status of the virtual private network VPN;
所述 PE设备将所述 VPN的管理状态通知给对等体 PE设备, 以使所述对等 体 P E设备根据所述 VPN的管理状态更新所述 VPN的路由信息。  The PE device notifies the peer PE device of the management status of the VPN, so that the peer device can update the routing information of the VPN according to the management state of the VPN.
2、 根据权利要求 1所述的 VPN路由更新方法, 其特征在于, 所述 PE设备 将所述 VPN的管理状态通知给对等体 PE设备, 包括:  The VPN routing update method according to claim 1, wherein the PE device notifies the peer PE device of the management status of the VPN, including:
PE设备; PE equipment;
所述 VPN路由更新报文包括类型-长度-值 tlv字段, 其中, 所述类型包括所 述 VPN的管理状态; 所述长度包括路由区分符 RD的个数; 所述值包括 VPN 对应的 RD值。  The VPN routing update message includes a type-length-value tlv field, where the type includes a management state of the VPN; the length includes a number of routing specifiers RD; and the value includes an RD value corresponding to the VPN. .
3、 根据权利要求 1或 2所述的 VPN路由更新方法, 其特征在于, 所述 PE 设备确定 VPN的管理状态, 包括:  The VPN routing update method according to claim 1 or 2, wherein the PE device determines the management state of the VPN, including:
所述 PE设备监测 VPN的接口或路由协议是否处于非活跃状态, 当所述 Whether the PE device monitors whether the interface or routing protocol of the VPN is in an inactive state, when
VPN的接口或路由协议处于非活跃状态时,确定所述 VPN的管理状态为非活跃 Down状态; When the interface or the routing protocol of the VPN is in an inactive state, determine that the management state of the VPN is an inactive Down state.
或者, 所述 PE设备监测用户是否关闭 shutdown VPN , 当用户 shutdown VPN时, 确定所述 VPN的管理状态为临时非活跃 Stale状态;  Alternatively, the PE device monitors whether the user shuts down the shutdown VPN, and when the user shuts down the VPN, determines that the management state of the VPN is a temporary inactive Stale state;
或者, 所述 PE设备监测用户是否恢复 undo shutdown VPN , 当用户 undo shutdown VPN时, 确定所述 VPN的管理状态为活跃 Active状态。  Alternatively, the PE device monitors whether the user restores the undo shutdown VPN. When the user undos the shutdown VPN, the management state of the VPN is determined to be an active Active state.
4、 根据权利要求 3所述的 VPN路由更新方法, 其特征在于, 所述方法还 包括:  The method for updating a VPN route according to claim 3, wherein the method further comprises:
所述 PE设备设置 VPN的管理状态、 VPN路由更新报文、 VPN路由信息处 理方式之间的对应关系; The PE device sets a VPN management state, a VPN routing update packet, and a VPN routing information. Correspondence between rational methods;
所述 VPN的管理状态为非活跃 Down状态, 所述 VPN路由信息处理方式为 所述对等体 PE设备删除所述 VPN的路由信息;  The management status of the VPN is an inactive Down state, and the VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN;
或者, 所述 VPN的管理状态为临时非活跃 Stale状态, 所述 VPN路由信息 处理方式为所述对等体 PE设备不删除所述 VPN的路由信息, 保持所述 VPN的 路由信息处在所述 Stale状态;  Or, the management state of the VPN is a temporary inactive Stale state, and the VPN routing information processing manner is that the peer PE device does not delete the routing information of the VPN, and the routing information of the VPN is kept in the Stale state;
或者, 所述 VPN的管理状态为活跃 Active状态, 所述 VPN路由信息处理 方式为所述对等体 PE设备将处在 Stale状态的所述 VPN的路由信息恢复为所 述 Active状态。  Alternatively, the management status of the VPN is an active Active state, and the VPN routing information processing mode is that the peer PE device restores the routing information of the VPN in the Stale state to the Active state.
5、 根据权利要求 1或 2所述的 VPN路由更新方法, 其特征在于, 所述方法 还包括:  The method for updating a VPN route according to claim 1 or 2, wherein the method further comprises:
所述 PE设备与所述对等体 PE设备协商设置所述 VPN的管理状态、 VPN路 由更新报文、 VPN路由信息处理方式之间的对应关系。  The PE device negotiates with the peer PE device to set a correspondence between the management state of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
6、 一种 VPN路由更新装置, 其特征在于, 包括:  A VPN routing update device, comprising:
确定单元, 用于确定虚拟专用网 VPN的管理状态;  a determining unit, configured to determine a management state of the virtual private network VPN;
通知单元, 用于将所述 VPN的管理状态通知给对等体 PE设备, 以使所述 对等体 PE设备根据所述 VPN的管理状态更新所述 VPN的路由信息。  The notification unit is configured to notify the peer PE device of the management status of the VPN, so that the peer PE device updates the routing information of the VPN according to the management status of the VPN.
7、 根据权利要求 6所述的 VPN路由更新装置, 其特征在于, 所述通知单 PE设备, 所述 VPN路由更新报文包括类型-长度-值 tlv字段, 其中, 所述类型包 括所述 VPN的管理状态; 所述长度包括 RD路由区分符的个数; 所述值包括 VPN对应的 RD值。  The VPN routing update apparatus according to claim 6, wherein the notification PE device, the VPN routing update message includes a type-length-value tlv field, wherein the type includes the VPN The management state; the length includes the number of RD route specifiers; the value includes the RD value corresponding to the VPN.
8、 根据权利要求 6或 7所述的 VPN路由更新装置, 其特征在于, 所述确定 单元, 包括: 第一确定单元,用于监测 VPN的接口或路由协议是否处于非活跃状态, 当 所述 VPN的接口或路由协议处于非活跃状态时,确定所述 VPN的管理状态为非 活跃 Down状态; The VPN routing update apparatus according to claim 6 or 7, wherein the determining unit comprises: a first determining unit, configured to monitor whether the interface or the routing protocol of the VPN is in an inactive state, and determine that the management state of the VPN is an inactive Down state when the interface or the routing protocol of the VPN is in an inactive state;
或者, 第二确定单元, 用于监测用户是否关闭 shutdown VPN , 当用户 shutdown VPN时, 确定所述 VPN的管理状态为临时非活跃 Stale状态;  Or the second determining unit is configured to monitor whether the user closes the shutdown VPN, and when the user shuts down the VPN, determining that the management state of the VPN is a temporary inactive Stale state;
或者, 第三确定单元, 用于监测用户是否恢复 undo shutdown VPN , 当 用户 undo shutdown VPN时, 确定所述 VPN的管理状态为活跃 Active状态。  Alternatively, the third determining unit is configured to monitor whether the user restores the undo shutdown VPN. When the user undos the shutdown VPN, the management state of the VPN is determined to be an active Active state.
9、 根据权利要求 8所述的 VPN路由更新装置, 其特征在于, 所述装置, 还包括:  The device of the VPN routing device according to claim 8, wherein the device further comprises:
设置单元, 用于设置所述 VPN的管理状态、所述 VPN路由更新报文、 VPN 路由信息处理方式之间的对应关系;  a setting unit, configured to set a correspondence between the management state of the VPN, the VPN routing update packet, and the VPN routing information processing manner;
所述 VPN的管理状态为非活跃 Down状态, 所述 VPN路由信息处理方式为 所述对等体 PE设备删除所述 VPN的路由信息;  The management status of the VPN is an inactive Down state, and the VPN routing information processing mode is that the peer PE device deletes the routing information of the VPN;
或者, 所述 VPN 的管理状态为临时非活跃 Stale状态, 所述 VPN路由信 息处理方式为所述对等体 PE设备不删除所述 VPN的路由信息, 保持所述 VPN 的路由信息处在所述 Stale状态;  Or, the management status of the VPN is a temporary inactive Stale state, and the VPN routing information processing manner is that the peer PE device does not delete the routing information of the VPN, and the routing information of the VPN is kept in the Stale state;
或者, 所述 VPN的管理状态为活跃 Active状态, 所述 VPN路由信息处理 方式为所述对等体 PE设备将处在 Stale状态的所述 VPN的路由信息恢复为所 述 Active状态。  Alternatively, the management status of the VPN is an active Active state, and the VPN routing information processing mode is that the peer PE device restores the routing information of the VPN in the Stale state to the Active state.
10、 根据权利要求 6或 7所述的 VPN路由更新装置, 其特征在于, 所述装 置, 还包括:  The device of the VPN routing device according to claim 6 or 7, wherein the device further comprises:
协商单元,用于与所述对等体 PE设备协商设置所述 VPN的管理状态、 VPN 路由更新报文、 VPN路由信息处理方式之间的对应关系。  The negotiation unit is configured to negotiate with the peer PE device to set a correspondence between the management state of the VPN, the VPN routing update packet, and the VPN routing information processing mode.
PCT/CN2011/078974 2010-12-31 2011-08-26 Method and device for updating vpn routing WO2012088909A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010624349.4 2010-12-31
CN201010624349.4A CN102158393B (en) 2010-12-31 2010-12-31 Method and device for updating virtual private network (VPN) routing

Publications (1)

Publication Number Publication Date
WO2012088909A1 true WO2012088909A1 (en) 2012-07-05

Family

ID=44439590

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/078974 WO2012088909A1 (en) 2010-12-31 2011-08-26 Method and device for updating vpn routing

Country Status (2)

Country Link
CN (1) CN102158393B (en)
WO (1) WO2012088909A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102158393B (en) * 2010-12-31 2014-04-16 华为技术有限公司 Method and device for updating virtual private network (VPN) routing
US10897417B2 (en) 2018-09-19 2021-01-19 Amazon Technologies, Inc. Automated route propagation among networks attached to scalable virtual traffic hubs
CN110932978B (en) * 2019-11-27 2022-02-08 烽火通信科技股份有限公司 Implementation method and system for accelerating VPN FRR (virtual private network) switching
CN112637057B (en) * 2020-12-30 2022-08-16 锐捷网络股份有限公司 Route management method and device
US11356419B1 (en) * 2021-10-01 2022-06-07 Oversec, Uab System and method for retrieving aggregated information about virtual private network servers

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1909501A (en) * 2005-08-05 2007-02-07 华为技术有限公司 Method for end to end service rapid convergence and route device
CN101217457A (en) * 2007-12-28 2008-07-09 华为技术有限公司 A method to realize fast reroute and router
US7756998B2 (en) * 2004-02-11 2010-07-13 Alcatel Lucent Managing L3 VPN virtual routing tables
CN102158393A (en) * 2010-12-31 2011-08-17 华为技术有限公司 Method and device for updating virtual private network (VPN) routing

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1309221C (en) * 2003-06-08 2007-04-04 华为技术有限公司 User facility double returning method based on multi-protocol label exchange

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7756998B2 (en) * 2004-02-11 2010-07-13 Alcatel Lucent Managing L3 VPN virtual routing tables
CN1909501A (en) * 2005-08-05 2007-02-07 华为技术有限公司 Method for end to end service rapid convergence and route device
CN101217457A (en) * 2007-12-28 2008-07-09 华为技术有限公司 A method to realize fast reroute and router
CN102158393A (en) * 2010-12-31 2011-08-17 华为技术有限公司 Method and device for updating virtual private network (VPN) routing

Also Published As

Publication number Publication date
CN102158393B (en) 2014-04-16
CN102158393A (en) 2011-08-17

Similar Documents

Publication Publication Date Title
US9954769B2 (en) Inter-domain fast reroute methods and network devices
CN104541482B (en) The system and method suppressed for the neighbours with smooth restarting ability using RVSP HELLO
TWI499237B (en) Ldp igp synchronization for broadcast networks
US9838316B2 (en) Overload functionality in overlay networks
US7508772B1 (en) Partial graceful restart for border gateway protocol (BGP)
CA2575843C (en) Graceful shutdown of ldp on specific interfaces between label switched routers
KR101629533B1 (en) Ldp igp synchronization for broadcast networks
WO2007115493A1 (en) A method, device and system for achieving the switch in the dual-homed network based on the vpls
WO2009056053A1 (en) A method, device and system of multi-protocol label exchange traffic engineering flow capacity switch
WO2007016834A1 (en) A fast convergence method of point to point services and the provider edge device thereof
WO2008031334A1 (en) Route updating method, system and router
US9288686B2 (en) Topology discovery based on SCTP/X2 snooping
WO2012028029A1 (en) Switching method and system
EP3058777B1 (en) Topology discovery based on explicit signaling
WO2012171378A1 (en) Method and router for preventing flow interruption caused by failover from vpls to l3
US9680694B1 (en) Overload functionality in overlay networks using fault detection protocols
WO2007036103A1 (en) A method for recovering the service-forwarding route and the system thereof
WO2011147299A1 (en) Fast reroute method and apparatus in layer-2 virtual private network
WO2012142888A1 (en) Tunnel group protection method and device based on multi-protocol label switching network
WO2012088909A1 (en) Method and device for updating vpn routing
WO2013040930A1 (en) Intermediate node protection method and device for multicast label switched path
JP4922267B2 (en) Gateway device, route control method and program thereof
WO2009155799A1 (en) Method for recovering information based on graceful restarting and the router thereof
WO2013135046A1 (en) Method and device for establishing multicast path
WO2015062285A1 (en) Synchronization method and apparatus for interface parameters

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11853219

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11853219

Country of ref document: EP

Kind code of ref document: A1