WO2014161315A1 - Common information model-based network management method and system - Google Patents

Common information model-based network management method and system Download PDF

Info

Publication number
WO2014161315A1
WO2014161315A1 PCT/CN2013/087182 CN2013087182W WO2014161315A1 WO 2014161315 A1 WO2014161315 A1 WO 2014161315A1 CN 2013087182 W CN2013087182 W CN 2013087182W WO 2014161315 A1 WO2014161315 A1 WO 2014161315A1
Authority
WO
WIPO (PCT)
Prior art keywords
class
network
management
network device
engine
Prior art date
Application number
PCT/CN2013/087182
Other languages
French (fr)
Chinese (zh)
Inventor
顾忠禹
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2014161315A1 publication Critical patent/WO2014161315A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0213Standardised network management protocols, e.g. simple network management protocol [SNMP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0233Object-oriented techniques, for representation of network management data, e.g. common object request broker architecture [CORBA]

Abstract

A common information model (CIM)-based network management method and system, relating to the field of communications. The method disclosed in the present invention comprises: defining a CIM syntax-based network type, wherein the network type comprises a network device type, a network connection type and a server type, the network device type at least consisting of a network interface type, a routing engine type, a forwarding engine type, a processing engine type and a management engine type, wherein each composition type of the network type and each composition type of the network device type respectively consist of corresponding CIM information elements and implementation methods corresponding thereto; and a network device forming a network performing network management by means of the CIM information elements supporting the network device type and corresponding to various types forming the network device and implementation methods corresponding thereto. Also disclosed is a CIM-based network management system. The technical solution of the present application can be applicable to the abstraction of all network types at present, thereby solving the deficiency of the NSMWG solution, and realizing the CIM-based network management.

Description

基于公共信息模型的网络管理方法和系统  Network management method and system based on public information model
技术领域 Technical field
本发明涉及通信领域, 更具体地涉及一种基于公共信息模型 (CIM, Common Information Model ) 的网络管理方法和系统。  The present invention relates to the field of communications, and more particularly to a network management method and system based on a Common Information Model (CIM).
背景技术 Background technique
传统的网络管理, 通过 SNMP ( Simple Network Management Protocol, 简单网络管理协议) , 或者 TELNET登录到具体的网络设备, 进行配置管理 等功能。 由于厂家众多, 以及网络设备众多, 对网络管理员而言, 需要熟悉 了解各种厂家的、 各种相关设备的配置方法。 对一个大型网络管理员而言, 是一个沉重的负担。 因此, 网络管理的自动化和标准化工作尤其重要。 如何 提供标准化的设备管理和网络管理一直是有关标准化组织的目标。  Traditional network management uses SNMP (Simple Network Management Protocol) or TELNET to log in to specific network devices for configuration management. Due to the large number of manufacturers and the large number of network devices, it is necessary for network administrators to familiarize themselves with the configuration methods of various manufacturers and various related devices. It is a heavy burden for a large network administrator. Therefore, the automation and standardization of network management is especially important. How to provide standardized equipment management and network management has always been the goal of standardization organizations.
例如, DMTF基于 CIM模型, 针对计算机系统, 或者具体的服务器进行 的大量的标准化工作, 并推出了一系列的标准, 涉及服务器的各种组件、 软 件功能, 以及网络功能等等方面。 有关网络功能方面, 包括: LAN接口, IP 接口的定义,以及有关 IP配置、 DHCP( Dynamic Host Configuration Protocol , 动态主机分配协议 )和 DNS ( Domain Name System, 域名系统 )客户端的配 置等等方面。 由于涉及到有关虚拟化的功能, 以使得资源得以优化使用, 并 支持云计算的发展, 也对虚拟网络的功能, 做了一定的分析, 并专门成立了 NSMWG工作组, 对有关网络服务的管理进行标准化工作。  For example, the DMTF is based on the CIM model, a large number of standardization work for computer systems, or specific servers, and introduces a series of standards covering various components of the server, software functions, and network functions. For network functions, including: LAN interface, definition of IP interface, and configuration of IP configuration, DHCP (Dynamic Host Configuration Protocol) and DNS (Domain Name System) client. Because it involves the function of virtualization, so that the resources can be optimized for use, and support the development of cloud computing, the function of the virtual network is also analyzed, and the NSMWG working group is set up to manage the network services. Standardization work.
相关标准研究的现状是,虽然针对虚拟网络,已经给出两份技术白皮书, 一个主要是针对 L2 网络, 特别是服务器内部以及和外接交换机之间连接的 情况, 以及针对 L3 网络的, 更广泛和更通用的网络模型, 具体的体现在已 经发表的技术白皮书 DSP20025 ( Virtual Networking Management White Paper ) 和 DSP20034 ( Network Services Management Use Cases ) 、 DSP0152 ( CIM Network Model White Paper )等中, 但是这些内容, 并没有详细、 准确地给 出网络管理的模型和具体的、 相关的管理操作内容, 还不能用于实现具体网 络的管理。 进一步, 虽然 CIM模型中, 已经包括网络模型的一些内容, 覆盖面也比 较广, 例如该模型通过 40多张图形, 对网络的许多的有关方面 IP、 MPLS、 QoS、 路由等等, 进行描述, 但是, 总体上来说, 还是一个概念性的描述, 还不能用于直接进行虚拟网络管理的模型设计, 也还不能用于实现具体网络 的管理。 The current state of research on related standards is that although there are two technical white papers for virtual networks, one is mainly for L2 networks, especially between servers and external switches, and for L3 networks, The more general network model is embodied in the published technical white papers DSP20025 (Virtual Networking Management White Paper) and DSP20034 (Network Services Management Use Cases), DSP0152 (CIM Network Model White Paper), etc., but these contents are not Detailed and accurate presentation of network management models and specific, related management operations can not be used to achieve specific network management. Further, although the CIM model already includes some content of the network model, the coverage is relatively wide. For example, the model describes more than 40 graphics, and relates to many aspects of the network such as IP, MPLS, QoS, routing, etc., but In general, it is still a conceptual description, which cannot be used for model design of direct virtual network management, nor can it be used to implement specific network management.
同时, 我们也注意到, 目前 NSMWG也正在讨论确定网络管理模型, 具 体的输出反映在 DSP10046 ( Network Services Management Profile ) 网络管理 服务规范, 网络如图 1所示, 为 NSMWG的网络管理结构图。 也显得过于概 念性, 和大量内容的缺失, 例如对具体的网络功能实现的配置, 还落实不到 具体的功能实体或者具体的类上去, 因此现有网络模型还不能具体落实到可 以管理的网络功能实体上, 并对之实施有效的管理操作。  At the same time, we also noticed that the NSMWG is currently discussing the network management model. The specific output is reflected in the DSP10046 (Network Services Management Profile) network management service specification. The network is shown in Figure 1, which is the network management structure diagram of the NSMWG. It is also too conceptual, and the lack of a large amount of content, such as the configuration of specific network functions, can not be implemented to specific functional entities or specific classes, so the existing network model can not be specifically implemented into the network that can be managed. Functional entities, and implement effective management operations.
另外, 在 NSMWG中, 虽然有了一些具体的网络信息模型和具体的功能 实体, 但是由于^^于具体公司的内部实现技术, 以及这些实现的可以适用 的应用场景的限制, 而不具有通用性。  In addition, in NSMMW, although there are some specific network information models and specific functional entities, they are not universal because of the internal implementation technologies of specific companies and the applicable application scenarios of these implementations. .
因此, 在 DMTF NSMWG的研究范畴内, 或者进一步为实现基于 CIM 的网络管理, 需要一个具体的、 通用的、 和可操作管理的网络模型 /网络类。 具体的网络设备通过实现网络类, 从而可以实现网络管理。  Therefore, within the scope of DMTF NSMWG research, or further to implement CIM-based network management, a specific, versatile, and operationally managed network model/network class is required. The specific network device realizes network management by implementing the network class.
发明内容 Summary of the invention
本发明所要解决的技术问题是,提供一种基于 CIM的网络管理方法和系 统, 以在 VN中实现 CIM模型。  The technical problem to be solved by the present invention is to provide a CIM-based network management method and system to implement a CIM model in a VN.
为了解决上述技术问题, 本发明公开了一种基于公共信息模型 (CIM ) 的网络管理方法, 该方法包括:  In order to solve the above technical problem, the present invention discloses a public information model (CIM) based network management method, the method comprising:
定义基于 CIM语法的网络类, 所述网络类包括网络设备类、 网络连接类 和服务器类,所述网络设备类至少由网络接口类、路由引擎类、转发引擎类、 处理引擎类以及管理引擎类组成, 其中, 所述网络类的各组成类及所述网络 设备类的各组成类分别由对应的 CIM信息元素及其对应的实现方法构成; 组成网络的网络设备, 通过支持所述网络设备类及组成网络设备的各类 对应的 CIM信息元素及其对应的实现方法, 进行网络管理。 Defining a network class based on a CIM grammar, the network class comprising a network device class, a network connection class, and a server class, the network device class being at least a network interface class, a routing engine class, a forwarding engine class, a processing engine class, and a management engine class a composition, wherein each component class of the network class and each component class of the network device class are respectively composed of corresponding CIM information elements and corresponding implementation methods thereof; network devices constituting the network, by supporting the network device class And all kinds of network devices Corresponding CIM information elements and their corresponding implementation methods are used for network management.
较佳地, 上述方法中, 所述网络设备类是网络设备的抽象, 所述网络设 备至少包括如下一种或几种:  Preferably, in the foregoing method, the network device class is an abstraction of a network device, and the network device includes at least one or more of the following:
路由器、 交换机、 数字用户线路接入复用器(DSLAM )、 防火墙、 入侵 检测系统 /入侵保护系统(IDS/IPS ) 、 深度报文检测 (DPI ) 、 无线局域网接 入点 (AP ) 、 家庭网关 (RG ) 、 宽带接入服务器(BRAS ) 、 基站( BS ) 、 分组数据网络网关 (PDN-GW ) 。  Routers, Switches, Digital Subscriber Line Access Multiplexers (DSLAM), Firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Deep Packet Inspection (DPI), Wireless LAN Access Points (APs), Home Gateways (RG), Broadband Access Server (BRAS), Base Station (BS), Packet Data Network Gateway (PDN-GW).
较佳地, 上述方法中, 所述路由器至少包括如下一种或几种:  Preferably, in the foregoing method, the router includes at least one or more of the following:
接入路由器, 汇聚路由器、 核心路由器以及运营商边缘路由器 (PE ) 、 客户边缘路由器 (CE ) 。  Access routers, aggregation routers, core routers, and carrier edge routers (PEs), customer edge routers (CEs).
较佳地, 上述方法中, 所述网络设备类所包括的各引擎类分别对应于独 立的物理网络设备模块; 或者所有引擎类对应于一个集成的统一的物理网络 设备; 或者各引擎类分别组合对应于不同的物理网络模块。  Preferably, in the above method, each engine class included in the network device class corresponds to an independent physical network device module; or all engine classes correspond to an integrated unified physical network device; or each engine class is separately combined. Corresponds to different physical network modules.
较佳地, 上述方法中, 所述路由引擎类支持对路由引擎的管理, 所述路 由引擎类对应的 CIM信息元素至少包括: 路由协议配置参数、状态参数及路 由表, 所述路由引擎类对应的实现方法至少包括路由协议配置, 状态监视, 路由计算, 路由表和转发表的同步。  Preferably, in the above method, the routing engine class supports the management of the routing engine, and the CIM information element corresponding to the routing engine class includes at least: a routing protocol configuration parameter, a status parameter, and a routing table, where the routing engine class corresponds to The implementation method at least includes routing protocol configuration, state monitoring, route calculation, routing table and forwarding table synchronization.
较佳地, 上述方法中, 所述转发引擎类和处理引擎类实现对转发和处理 引擎的管理,所述转发引擎类和处理引擎类对应的 CIM信息元素至少包括转 发报文, 所述转发引擎类和处理引擎类对应的实现方法至少包括对报文的转 发和策略处理, 所述 >¾文的策略处理至少包括 QoS策略设置、 变更和状态处 理。  Preferably, in the foregoing method, the forwarding engine class and the processing engine class implement management of a forwarding and processing engine, and the CIM information element corresponding to the forwarding engine class and the processing engine class includes at least a forwarding packet, and the forwarding engine The implementation method corresponding to the class and the processing engine class includes at least forwarding and policy processing of the message, and the policy processing of the >3⁄4 text includes at least QoS policy setting, change, and status processing.
较佳地, 上述方法中, 所述处理引擎类还实现防火墙功能、 访问控制列 表(ACL )功能、 负载均衡、 IDS/IPS和 DPI功能的策略处理。  Preferably, in the above method, the processing engine class further implements policy processing of a firewall function, an access control list (ACL) function, a load balancing, an IDS/IPS, and a DPI function.
较佳地, 上述方法中, 所述管理引擎类支持对网络设备的管理, 所述管 理引擎类对应的 CIM信息元素至少包括: 网络管理接口类型、 网络管理通信 协议参数, 所述管理引擎类对应的实现方法至少包括: 网络管理接口、 网络 管理通信协议的参数的设置、 修改和状态处理。 较佳地, 上述方法中, 所述对网络设备的管理功能至少包括配置管理和 状态管理。 Preferably, in the above method, the management engine class supports management of the network device, and the CIM information element corresponding to the management engine class at least includes: a network management interface type, a network management communication protocol parameter, and the management engine class corresponds to The implementation method at least includes: setting, modification, and state processing of parameters of the network management interface, the network management communication protocol. Preferably, in the foregoing method, the management function of the network device includes at least configuration management and state management.
较佳地, 上述方法中, 所述网络连接类是网络设备之间的连接链路的抽 象, 所述连接链路至少包括如下一种或几种:  Preferably, in the above method, the network connection class is an abstraction of a connection link between network devices, and the connection link includes at least one or more of the following:
光缆、 双绞线(UTP ) 、 标签交换隧道(LSP ) 、 其他 IP隧道、 电路。 较佳地,上述方法中,所述服务器类指为实现网络功能所需要的服务器。 较佳地, 上述方法中, 所述网络类, 还包括网络所支持的网络服务类, 所述网络服务类至少包括如下一种或几种:  Fiber optic cable, twisted pair (UTP), Label Switched Tunnel (LSP), other IP tunnels, circuits. Preferably, in the above method, the server class refers to a server required to implement network functions. Preferably, in the above method, the network class further includes a network service class supported by the network, and the network service class includes at least one or more of the following:
DHCP, DNS、 VPN, 虚拟网络 ( VN )和认证授权和计费 (AAA ) 。 较佳地, 上述方法中, 所述网络接口类对应的 CIM信息元素至少包括接 口的 MAC地址、 IP地址, 所述网络接口类对应的实现方法至少包括接口的 MAC地址和 IP地址的设置和修改。  DHCP, DNS, VPN, Virtual Network (VN) and Authentication and Accounting (AAA). Preferably, in the above method, the CIM information element corresponding to the network interface class includes at least a MAC address and an IP address of the interface, and the implementation method corresponding to the network interface class includes at least setting and modifying the MAC address and the IP address of the interface. .
较佳地, 上述方法中, 基于 CIM语法定义所述网络设备类时, 还包括定 义管理域信息元素。  Preferably, in the above method, when the network device class is defined based on the CIM syntax, the management domain information element is further defined.
较佳地, 上述方法中, 所述网络设备类还包括: 交换矩阵类, 用于对网 络设备的交换矩阵的管理, 所述交换矩阵类对应的 CIM信息元素至少包括: 交换矩阵的状态信息, 所述交换矩阵类对应的实现方法至少包括对交换矩阵 状态信息的设置和修改。  Preferably, in the above method, the network device class further includes: a switching matrix class, configured to manage a switching matrix of the network device, where the CIM information element corresponding to the switching matrix class includes at least: state information of the switching matrix, The implementation method corresponding to the switching matrix class includes at least setting and modifying the state information of the switching matrix.
本发明还公开了一种基于公共信息模型 (CIM ) 的网络管理系统, 该系 统包括:  The invention also discloses a public information model (CIM) based network management system, the system comprising:
网络设备,设置为: 支持基于 CIM语法定义的网络设备类及组成所述网 络设备类的各类对应的 CIM信息元素及其对应的实现方法, 其中, 所述网络 设备类至少由网络接口类、 路由引擎类、 转发引擎类、 处理引擎类以及管理 引擎类组成;  a network device, configured to: support a network device class defined by a CIM grammar, and a corresponding CIM information element constituting the network device class and a corresponding implementation method thereof, where the network device class is at least a network interface class, a routing engine class, a forwarding engine class, a processing engine class, and a management engine class;
网络管理服务器, 设置为: 对所述网络设备构成的网络进行网络管理。 较佳地, 上述系统中, 所述网络设备类是网络设备的抽象, 所述网络设 备至少包括如下一种或几种: 路由器、 交换机、 数字用户线路接入复用器(DSLAM )、 防火墙、 入侵 检测系统 /入侵保护系统(IDS/IPS ) 、 深度报文检测 (DPI ) 、 无线局域网接 入点 (AP ) 、 家庭网关 (RG ) 、 宽带接入服务器(BRAS ) 、 基站( BS ) 、 分组数据网络网关 (PDN-GW ) 。 The network management server is configured to: perform network management on the network formed by the network device. Preferably, in the above system, the network device class is an abstraction of a network device, and the network device includes at least one or more of the following: Routers, Switches, Digital Subscriber Line Access Multiplexers (DSLAM), Firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Deep Packet Inspection (DPI), Wireless LAN Access Points (APs), Home Gateways (RG), Broadband Access Server (BRAS), Base Station (BS), Packet Data Network Gateway (PDN-GW).
较佳地, 上述系统中, 所述路由器至少包括如下一种或几种:  Preferably, in the above system, the router includes at least one or more of the following:
接入路由器, 汇聚路由器、 核心路由器以及运营商边缘路由器 (PE ) 、 客户边缘路由器 (CE ) 。  Access routers, aggregation routers, core routers, and carrier edge routers (PEs), customer edge routers (CEs).
较佳地, 上述系统中, 所述网络设备类所包括的各引擎类分别对应于独 立的物理网络设备模块; 或者所有引擎类对应于一个集成的统一的物理网络 设备; 或者各引擎类的不同组合对应于不同的物理网络模块。  Preferably, in the above system, each engine class included in the network device class corresponds to an independent physical network device module; or all engine classes correspond to an integrated unified physical network device; or different engine classes The combination corresponds to different physical network modules.
较佳地, 上述系统中, 所述路由引擎类支持对路由引擎的管理, 所述路 由引擎类对应的 CIM信息元素至少包括: 路由协议配置参数、状态参数及路 由表, 所述路由引擎类对应的实现方法至少包括路由协议配置, 状态监视, 路由计算, 路由表和转发表的同步。  Preferably, in the above system, the routing engine class supports the management of the routing engine, and the CIM information element corresponding to the routing engine class includes at least: a routing protocol configuration parameter, a state parameter, and a routing table, where the routing engine class corresponds to The implementation method at least includes routing protocol configuration, state monitoring, route calculation, routing table and forwarding table synchronization.
较佳地, 上述系统中, 所述转发引擎类和处理引擎类实现对转发和处理 引擎的管理,所述转发引擎类和处理引擎类对应的 CIM信息元素至少包括转 发报文, 所述转发引擎类和处理引擎类对应的实现方法至少包括对报文的转 发和策略处理, 所述 >¾文的策略处理至少包括 QoS策略设置、 变更和状态处 理。  Preferably, in the above system, the forwarding engine class and the processing engine class implement management of the forwarding and processing engine, and the CIM information element corresponding to the forwarding engine class and the processing engine class includes at least a forwarding packet, and the forwarding engine The implementation method corresponding to the class and the processing engine class includes at least forwarding and policy processing of the message, and the policy processing of the >3⁄4 text includes at least QoS policy setting, change, and status processing.
较佳地, 上述系统中, 所述处理引擎类还实现防火墙功能、 访问控制列 表(ACL )功能、 负载均衡、 IDS/IPS和 DPI功能的策略处理。  Preferably, in the above system, the processing engine class further implements policy processing of a firewall function, an access control list (ACL) function, a load balancing, an IDS/IPS, and a DPI function.
较佳地, 上述系统中, 所述管理引擎类支持对网络设备的管理, 所述管 理引擎类对应的 CIM信息元素至少包括: 网络管理接口类型、 网络管理通信 协议参数, 所述管理引擎类对应的实现方法至少包括: 网络管理接口、 网络 管理通信协议的参数的设置、 修改和状态处理。  Preferably, in the above system, the management engine class supports management of the network device, and the CIM information element corresponding to the management engine class at least includes: a network management interface type, a network management communication protocol parameter, and the management engine class corresponds to The implementation method at least includes: setting, modification, and state processing of parameters of the network management interface, the network management communication protocol.
较佳地, 上述系统中, 所述对网络设备的管理功能至少包括配置管理和 状态管理。  Preferably, in the above system, the management function of the network device includes at least configuration management and state management.
较佳地, 上述系统中, 该系统还包括所述网络设备之间的连接链路, 所 述连接链路抽象为网络连接类, 所述连接链路至少包括如下一种或几种: 光缆、 双绞线(UTP ) 、 标签交换隧道(LSP ) 、 其他 IP隧道、 电路。 较佳地, 上述系统中, 该系统还包括实现网络功能所需要的服务器, 所 述服务器抽象为服务器类。 Preferably, in the above system, the system further includes a connection link between the network devices, where The connection link is abstracted as a network connection class, and the connection link includes at least one or more of the following: an optical cable, a twisted pair (UTP), a label switched tunnel (LSP), other IP tunnels, and circuits. Preferably, in the above system, the system further includes a server required to implement a network function, and the server abstraction is a server class.
较佳地, 上述系统中, 该系统至少还包括: DHCP, DNS、 VPN, 虚拟 网络( VN )和认证授权和计费 ( AAA ) , 其所抽象为网络所支持的网络服 务类。  Preferably, in the above system, the system further includes at least: DHCP, DNS, VPN, virtual network (VN), and authentication and accounting (AAA), which are abstracted into network service classes supported by the network.
较佳地, 上述系统中, 所述网络接口类对应的 CIM信息元素至少包括接 口的 MAC地址、 IP地址, 所述网络接口类对应的实现方法至少包括接口的 MAC地址和 IP地址的设置和修改。  Preferably, in the above system, the CIM information element corresponding to the network interface class includes at least the MAC address and the IP address of the interface, and the implementation method corresponding to the network interface class includes at least the setting and modification of the MAC address and the IP address of the interface. .
较佳地, 上述系统中, 基于 CIM语法定义所述网络设备类时, 还包括定 义管理域信息元素。  Preferably, in the above system, when the network device class is defined based on the CIM syntax, the management domain information element is further defined.
较佳地, 上述系统中, 所述网络设备类还包括: 交换矩阵类, 用于对网 络设备的交换矩阵的管理, 所述交换矩阵类对应的 CIM信息元素至少包括: 交换矩阵的状态信息, 所述交换矩阵类对应的实现方法至少包括对交换矩阵 状态信息的设置和修改。  Preferably, in the foregoing system, the network device class further includes: a switching matrix class, configured to manage a switching matrix of the network device, where the CIM information element corresponding to the switching matrix class at least includes: state information of the switching matrix, The implementation method corresponding to the switching matrix class includes at least setting and modifying the state information of the switching matrix.
本申请技术方案提供了一种通用的网络类定义, 可以适用于目前所有网 络类型的抽象, 解决了 NSMWG解决方案的缺失, 并实现基于 CIM的网络 管理。 附图概述 The technical solution of the present application provides a general network class definition, which can be applied to the abstraction of all current network types, solves the lack of the NSMWG solution, and implements CIM-based network management. BRIEF abstract
图 1是 NSMWG的 CIM结构图;  Figure 1 is a CIM structure diagram of the NSMWG;
图 2是实施案例 1的网络结构示意图。 本发明的较佳实施方式  2 is a schematic diagram of the network structure of the implementation case 1. Preferred embodiment of the invention
下文将结合附图对本发明技术方案作进一步详细说明。 需要说明的是, 在不冲突的情况下, 本申请的实施例和实施例中的特征可以任意相互组合。 实施例 1 The technical solution of the present invention will be further described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments of the present application may be combined with each other arbitrarily. Example 1
从现有网络的规模, 和应用范围来看, 可以将网络分成: 运营商网络, 数据中心网络和企业网络等几大类。 当然, 运营商网络, 也可以进一步进行 划分, 例如包括典型的宽带互联网, 和移动互联网, 等等。 从规模上看, 运 营商网络也可以进一步区分为, 全球性运营商网络, 国家骨干网络, 或者地 区 /区域网络, 以及本地网络等。  From the scale of the existing network and the scope of application, the network can be divided into several categories: carrier network, data center network and enterprise network. Of course, the carrier network can be further divided, for example, including typical broadband Internet, and mobile Internet, and so on. In terms of scale, the network of operators can be further divided into global carrier networks, national backbone networks, or regional/regional networks, as well as local networks.
发明人发现, 虽然运营商、 数据中心和企业网络由于这些网络面向的客 户不同、 功能不同, 在网络组建和构成上, 有所不同, 以及由于网络技术也 在不断的发展中, 可以通过不同的网络技术来组建网络, 例如基于 ATM的 IP网络, 或者基于 SDH/DWDM传输网络的 IP网络等, 但是, 由于网络技 术和网络应用的发展, 趋向于融合的 IP网络, 因此, 从网络技术架构上看, 目前主流的网络技术是 IP网络技术, 使用路由, 或者交换, 或者路由 +交换 网络机制来构建网络。 因此, 本着通用性原则, 在后续的描述中, 不再区分 不同的网络种类, 而是针对通用的网络模型进行描述。  The inventors found that although operators, data centers, and enterprise networks are different in terms of customers and functions, they are different in network composition and composition, and because network technologies are constantly evolving, they can pass different Network technology to form a network, such as an ATM-based IP network, or an IP network based on an SDH/DWDM transmission network, but due to the development of network technologies and network applications, it tends to merge IP networks, and therefore, from the network technology architecture Look, the current mainstream network technology is IP network technology, using routing, or switching, or routing + switching network mechanisms to build the network. Therefore, in the following description, in the following description, different network types are no longer distinguished, but a general network model is described.
基于上述思想, 本实施例提供一种基于 CIM的网络管理方法, 包括如下 操作:  Based on the above idea, the embodiment provides a CIM-based network management method, which includes the following operations:
定义基于 CIM语法的网络类, 所述网络类包括网络设备类、 网络连接类 和服务器类,所述网络设备类至少由网络接口类、路由引擎类、转发引擎类、 处理引擎类以及管理引擎类组成, 其中, 所述网络类的各组成类及所述网络 设备类的各组成类分别由对应的 CIM信息元素及其对应的实现方法构成; 组成网络的网络设备, 通过支持所述网络设备类及组成网络设备的各类 对应的 CIM信息元素及其对应的实现方法, 进行网络管理。  Defining a network class based on a CIM grammar, the network class comprising a network device class, a network connection class, and a server class, the network device class being at least a network interface class, a routing engine class, a forwarding engine class, a processing engine class, and a management engine class a composition, wherein each component class of the network class and each component class of the network device class are respectively composed of corresponding CIM information elements and corresponding implementation methods thereof; network devices constituting the network, by supporting the network device class And various types of corresponding CIM information elements constituting the network device and corresponding implementation methods thereof, and performing network management.
其中,根据 DMTF CIM的术语, 所谓的网络模型一般是通过定义具体的 网络类, 以及进一步的有关类, 或者相关的属性来实现。 我们知道, 电信网 络经过了超过 150年的发展,而计算机网络或数据通信网络也有超过 50年的 发展, 也发展了各种技术, 例如电报网络, 程控交换网络, x.25分组交换, 帧中继, ATM, 以太网, TCP/IP, 等等技术。 而从用户接入的角度看, 还包 括 LAN的以太网接入, 基于电话线的 DSL接入, 基于 CATV的 CABLE MODEM接入, 以及基于无线的 WLAN接入, GSM/GPRS, CDMA, LTE 等各种网络技术。 而从具体的组网设备看, 还包括网桥设备, 交换机设备, 路由器设备, WLAN接入点 AP,基站设备, GGSN/SGSN, PDN-GW, BRAS, 防火墙, 等等各种网络设备。 而对具体的某些设备, 例如路由器, 还可以根 据设备的能力不同,和部署场景不同,可以进一步分类, 包括:接入路由器, 汇聚路由器和核心路由器, 以及 PE、 CE等。 显然, 要对如此多种类的网络 设备和网络进行概念化模型的抽象, 还是相当困难和复杂的。 本发明从网络 设备的共性, 以及网络功能的共性的高度, 来对网络模型 /网络类进行高度的 概括和抽象, 并且保证这个概括和抽象在具体的网络设备实现中, 具有易实 现性和实现的有效性和全面性等特点, 从而可以实现对各种网络技术和用途 的网络进行管理。 Among them, according to the terminology of DMTF CIM, the so-called network model is generally implemented by defining a specific network class, and further related classes, or related attributes. We know that telecommunications networks have evolved over 150 years, and computer networks or data communication networks have evolved over 50 years. Various technologies have also been developed, such as telegraph networks, program-controlled switching networks, x.25 packet switching, in frames. Following, ATM, Ethernet, TCP/IP, and more. From the perspective of user access, it also includes Ethernet access for LAN, DSL access based on telephone line, CABLE based on CATV. MODEM access, as well as wireless-based WLAN access, GSM/GPRS, CDMA, LTE and other network technologies. From the perspective of specific networking devices, it also includes various network devices such as bridge devices, switch devices, router devices, WLAN access point APs, base station devices, GGSN/SGSN, PDN-GW, BRAS, firewalls, and so on. Certain devices, such as routers, can be further classified according to their capabilities and deployment scenarios, including access routers, aggregation routers, and core routers, as well as PEs and CEs. Obviously, it is still quite difficult and complicated to abstract the conceptual model of such a wide variety of network devices and networks. The invention highly summarizes and abstracts the network model/network class from the commonality of the network devices and the commonality of the network functions, and ensures that the generalization and abstraction are easy to implement and implement in the implementation of the specific network device. The effectiveness and comprehensiveness of the network enables the management of networks of various network technologies and uses.
图 2是本实施例的网络类的结构示意图。 图中, 网络类是核心类, 基于 CIM语法进行定义。 如图所示, 网络类又包括: 网络设备类、 网络连接类和 应用服务器类等类;  FIG. 2 is a schematic structural diagram of a network class of this embodiment. In the figure, the network class is the core class, defined based on the CIM syntax. As shown in the figure, the network class includes: a network device class, a network connection class, and an application server class;
图 2中, 还显示了, 基于 CIM语法, 通过网络类, 以及网络设备类及其 组成类, 可以实现各种网络功能, 并对这些网络功能进行管理。 具体的功能 或者应用 /业务, 包括: 网络管理功能 /服务, VPN服务,虚拟网络服务, DHCP 和 DNS, 以及 AAA服务 /功能。 所述各类之间的连接关系, 也遵循 CIM定 义, 其中各类之间的关联关系, 或者使用目前的 CIM语法, 例如系统设备 ( SystemDevice ) , 或者系统组件(SystemComponent)。 其中, 有关物理设备 到网络设备类使用了明了的表示方法 AbstractBy/AbstractedFrom。 另夕卜, 对 一些类, 如网络接口 NetworkPort沿用了现有的定义。 而有关端点的定义, 如 LinkEndPoint, 则不同于现有的 LANEndpoint, 可以包括对 MAC地址的 配置, 以及 IP地址的配置内容, 也可以仅仅包括 MAC地址的配置, 而 IP 地址的配置,可以通过图中的另外一个类 IPProtocolEndpoint来进行定义。做 如此说明的原因在于, 有关的类可以进行组合, 但并不影响本发明的实质内 容。 类似的, 在图 2中, 还包括各有关的网络设备组成类的配置服务类, 由 于节省图示空间的原因, 将它们合并在一起了。 也可以分别表示。 另外图 2 中连接的有关数字, 表示了有关类的有关数量关系的对应示意 /参考, 可以进 行调整。 所述网络设备类可由: 网络接口类、 路由引擎类、 转发引擎类、 处理引 擎类、 以及管理引擎类等类组成; In Fig. 2, it is also shown that, based on the CIM syntax, various network functions can be implemented and managed by network classes, network device classes and their constituent classes. Specific features or applications/services, including: network management functions/services, VPN services, virtual network services, DHCP and DNS, and AAA services/functions. The connection relationship between the types also follows the CIM definition, the relationship between the types, or the current CIM syntax, such as SystemDevice, or SystemComponent. Among them, the physical device to network device class uses the explicit representation method AbstractBy/AbstractedFrom. In addition, some classes, such as the network interface NetworkPort, follow the existing definition. The definition of the endpoint, such as LinkEndPoint, is different from the existing LANEndpoint, and may include the configuration of the MAC address, and the configuration of the IP address, or may only include the configuration of the MAC address, and the configuration of the IP address may be Another class in IPProtocolEndpoint is defined. The reason for this is that the related classes can be combined without affecting the substance of the invention. Similarly, in FIG. 2, a configuration service class of each related network device component class is also included, and they are merged together due to the saving of the graphic space. It can also be expressed separately. In addition, the related figures in Figure 2 indicate the corresponding schematic/reference of the relevant quantity relationship of the class, which can be adjusted. The network device class may be composed of: a network interface class, a routing engine class, a forwarding engine class, a processing engine class, and a management engine class;
所述网络接口类、 路由引擎类、 转发引擎类、 处理引擎类、 管理引擎类 分别由相关的 CIM信息元素和所述信息元素相关的实现方法组成;  The network interface class, the routing engine class, the forwarding engine class, the processing engine class, and the management engine class are respectively composed of related CIM information elements and implementation methods related to the information elements;
组成网络的网络设备, 通过支持网络设备类以及各相关组成类的所述相 关的 CIM信息元素及其所述的相关方法, 从而可以实现网络的管理。  The network device constituting the network can realize network management by supporting the network device class and the related CIM information elements of the related component classes and the related methods thereof.
所述类的 CIM信息元素,是指所述类所支持的功能的相关的参数, 和对 应的处理方法。 例如, 对网络接口类, 包括接口的 MAC地址、 IP地址等信 息元素, 以及如何进行这些地址设置的方法。 其他的信息元素, 还可以包括 状态信息, 管理命令的执行结果信息等, 以及如何对这些状态进行设置和读 取等操作。 需要进一步说明的是, 这里涉及的一些类, 可以从现有 CIM类中 继承一些内容, 而不必完全进行新的定义。 需要进一步说明的是, 网络设备类, 是包括但不限于下列物理网络设备 的抽象:路由器、交换机、 DSLAM、防火墙、 IDS/IPS、 DPI、 AP、 RG、 BRAS, BS、 PDN-GW。 其中, 所述路由器, 还可以根据设备的能力不同, 和部署场 景不同, 可以进一步分类, 包括: 接入路由器, 汇聚路由器和核心路由器, 以及 PE、 CE等。  The CIM information elements of the class refer to related parameters of the functions supported by the class, and corresponding processing methods. For example, for the network interface class, including the interface's MAC address, IP address and other information elements, and how to set these addresses. Other information elements may also include status information, execution result information of management commands, and the like, and how to set and read these states. It should be further explained that some of the classes involved here can inherit some content from existing CIM classes without having to completely define them. It should be further noted that the network device class is abstraction including but not limited to the following physical network devices: router, switch, DSLAM, firewall, IDS/IPS, DPI, AP, RG, BRAS, BS, PDN-GW. The routers may be further classified according to different capabilities of the device and the deployment scenarios, including: access routers, aggregation routers, and core routers, and PEs, CEs, and the like.
其中, 网络设备类所包括的所述各引擎类, 可以对应于独立的物理网络 设备模块, 或者是集成的统——个物理网络设备, 或者物理网络模块组成。 也可能在具体的网络设备实现中,存在几种不同引擎组合实现模块的可能性。  The engine classes included in the network device class may correspond to independent physical network device modules, or an integrated system, a physical network device, or a physical network module. It is also possible that in a specific network device implementation, there are several different engine combinations that are possible to implement the module.
路由引擎类支持对路由引擎的管理, 具体包括支持的路由协议, 路由协 议配置, 状态监视, 路由计算, 以及和路由表和转发表的同步等功能实现。  The routing engine class supports the management of the routing engine, including the supported routing protocols, routing protocol configuration, state monitoring, route calculation, and synchronization with routing tables and forwarding tables.
转发引擎类和处理引擎类实现对报文的处理, 主要是转发处理, QoS策 略处理。  The forwarding engine class and the processing engine class implement packet processing, mainly forwarding processing and QoS policy processing.
处理引擎类还可以实现防火墙功能、 ACL 功能、 负载均衡、 IDS/IPS, The processing engine class can also implement firewall functions, ACL functions, load balancing, and IDS/IPS.
DPI功能等功能的策略处理。 Policy processing of functions such as DPI functions.
管理引擎类支持对网络设备的管理功能, 具体的包括但不限于: 网络管 理接口, 网络管理通信协议及参数定义, 网络管理功能。 网络管理功能, 包括但不限于: 配置管理、 状态管理。 The management engine class supports the management functions of network devices, including but not limited to: network management interface, network management communication protocol and parameter definition, and network management function. Network management functions, including but not limited to: configuration management, status management.
网络连接类是网络设备之间的连接链路的抽象。 所述连接链路, 包括但 不限于: 光缆、 UTP、 LSP、 其他 IP隧道和电路。  A network connection class is an abstraction of a connection link between network devices. The connection links include, but are not limited to, fiber optic cables, UTPs, LSPs, other IP tunnels, and circuits.
应用服务器类, 是指为实现网络功能所需要的服务器, 一般为计算机系 统。  The application server class refers to the server required to implement network functions, usually a computer system.
网络类, 还包括网络所支持的网络服务类。 所述网络服务类, 包括但不 限于: DHCP、 DNS、 VPN, VN、 AAA等网络服务。  The network class also includes network service classes supported by the network. The network service class includes but is not limited to: network services such as DHCP, DNS, VPN, VN, and AAA.
网络设备类包括: 管理域信息元素。 具体的, 所谓管理域, 可以依附于 网络设备的一个属性来实现, 这个属于主要是便于网络管理员的使用。  Network device classes include: Management domain information elements. Specifically, the so-called management domain can be implemented by attaching to an attribute of the network device, which is mainly for the convenience of the network administrator.
可选的, 网络设备类还包括: 交换矩阵类, 用于对网络设备的交换矩阵 的管理, 因为对大型的网络设备, 可能存在多个交换矩阵模块, 需要对之进 行管理。 交换矩阵类对应的 CIM信息元素至少包括: 交换矩阵的状态信息, 所述交换矩阵类对应的实现方法至少包括对交换矩阵状态信息的设置和修改。 状态信息包括: 正常工作, 备份, 故障等。  Optionally, the network device class further includes: a switch matrix class, which is used for managing a switch fabric of a network device, because for a large network device, multiple switch fabric modules may exist and need to be managed. The CIM information element corresponding to the switching matrix class includes at least: state information of the switching matrix, and the implementation method corresponding to the switching matrix class includes at least setting and modifying the state information of the switching matrix. Status information includes: normal work, backup, failure, etc.
还要进一步说明的是,上述这些引擎的名称,可能会有不同的命名方法。 例如路由引擎, 可能被称为: 路由协议引擎, 或者协议处理引擎, 或者协议 处理模块, 主控模块等等。 但是, 这并不影响本发明的实质性的内容, 即网 络设备中一般具有协议处理, 或者实现协议的处理功能。 具体的协议, 在现 有网络技术体制下, 至少包括: 路由协议, LDP协议, 以及实现 TCP/IP协 议中的相关协议功能。  It should be further explained that the names of these engines may have different naming methods. For example, the routing engine may be called: a routing protocol engine, or a protocol processing engine, or a protocol processing module, a main control module, and the like. However, this does not affect the substantial content of the present invention, that is, the network device generally has protocol processing or implements a processing function of the protocol. The specific protocol, under the existing network technology system, includes at least: a routing protocol, an LDP protocol, and a related protocol function in implementing a TCP/IP protocol.
同样,对转发和处理引擎,一般对应于现有网络技术中的线路接口卡 LIC , 实现报文的转发, 以及可选的相关策略处理。 对于处理引擎, 还进一步包括 其他的功能, 例如深度报文检查 DPI, 即不仅仅处理报文头, 还可以对报文 的有效载荷进行深入地分析, 例如 NAT地址转换, 例如报文过滤, 等等网 络功能的处理。  Similarly, the forwarding and processing engine generally corresponds to the line interface card LIC in the existing network technology, implements packet forwarding, and optionally related policy processing. For the processing engine, it further includes other functions, such as deep packet inspection DPI, that is, not only processing the packet header, but also deeply analyzing the payload of the packet, such as NAT address translation, such as packet filtering, etc. Processing of network functions.
本实施案例的优势在于, 提供了一种通用的网络类定义, 可以适用于目 前所有网络类型的抽象,解决了 NSMWG解决方案的缺失,并实现基于 CIM 的网络管理。 实施例 2 The advantage of this implementation case is that it provides a common network class definition, which can be applied to the abstraction of all current network types, solves the lack of NSMWG solutions, and implements CIM-based network management. Example 2
本实施例提供一种基于 CIM 的网络管理系统, 其可实现上述实施例 1 的网络管理方法, 具体地, 该系统包括网络设备和网络管理服务器。  The embodiment provides a CIM-based network management system, which can implement the network management method of Embodiment 1 above. Specifically, the system includes a network device and a network management server.
网络设备,支持基于 CIM语法定义的网络设备类及组成所述网络设备类 的各类对应的 CIM信息元素及其对应的实现方法, 其中, 网络设备类至少由 网络接口类、 路由引擎类、 转发引擎类、 处理引擎类以及管理引擎类组成。  a network device, which supports a network device class defined by a CIM grammar and various corresponding CIM information elements constituting the network device class and corresponding implementation methods thereof, wherein the network device class is at least a network interface class, a routing engine class, and a forwarding The engine class, the processing engine class, and the management engine class are composed.
网络管理服务器, 对构成网络的网络设备进行网络管理。  The network management server performs network management on the network devices constituting the network.
需要说明的是,上述网络设备类是网络设备的抽象,网络设备至少包括: 路由器、 交换机、 数字用户线路接入复用器(DSLAM )、 防火墙、 入侵检测 系统 /入侵保护系统(IDS/IPS ) 、 深度报文检测 (DPI ) 、 无线局域网接入点 ( AP ) 、 家庭网关(RG ) 、 宽带接入服务器(BRAS ) 、 基站(BS ) 、 分组 数据网络网关 (PDN-GW ) 。  It should be noted that the foregoing network device class is an abstraction of a network device, and the network device includes at least: a router, a switch, a digital subscriber line access multiplexer (DSLAM), a firewall, an intrusion detection system/intrusion protection system (IDS/IPS). Deep Packet Inspection (DPI), Wireless LAN Access Point (AP), Home Gateway (RG), Broadband Access Server (BRAS), Base Station (BS), Packet Data Network Gateway (PDN-GW).
其中, 所述路由器至少包括: 接入路由器, 汇聚路由器、 核心路由器以 及运营商边缘路由器(PE ) 、 客户边缘路由器(CE ) 。  The router includes at least: an access router, an aggregation router, a core router, and a carrier edge router (PE) and a customer edge router (CE).
另外, 网络设备类所包括的各引擎类分别对应于独立的物理网络设备模 块; 或者所有引擎类对应于一个集成的统一的物理网络设备; 或者各引擎类 分别组合对应于不同的物理网络模块。  In addition, each engine class included in the network device class corresponds to an independent physical network device module; or all engine classes correspond to an integrated unified physical network device; or each engine class is combined to correspond to a different physical network module.
有些方案中,基于 CIM语法定义所述网络设备类时,还包括定义管理域 信息元素。 并且, 网络设备类还可以包括: 交换矩阵类, 用于对网络设备的 交换矩阵的管理。  In some scenarios, when the network device class is defined based on the CIM syntax, it also includes defining an administrative domain information element. Moreover, the network device class may further include: a switching matrix class for managing a switching matrix of the network device.
另外, 上述系统还包括连接链路, 而网络连接类是网络设备之间的连接 链路的抽象,连接链路至少包括:光缆、双绞线( UTP )、标签交换隧道( LSP )、 其他 IP隧道和电路。  In addition, the above system further includes a connection link, and the network connection class is an abstraction of a connection link between the network devices, and the connection link includes at least: an optical cable, a twisted pair (UTP), a label switched tunnel (LSP), and other IP. Tunnels and circuits.
上述系统还包括服务器, 而服务器类为实现网络功能所需要的服务器的 抽象, 一般为计算机。  The above system also includes a server, and the server class is an abstraction of the server required to implement the network function, typically a computer.
下面具体介绍网络设备类的各组成类的实现情况。  The following describes the implementation of each component class of the network device class.
网络接口类对应的 CIM信息元素至少包括接口的 MAC地址、 IP地址, 所述网络接口类对应的实现方法至少包括接口的 MAC地址和 IP地址的设置 和修改。 The CIM information element corresponding to the network interface class includes at least the MAC address and IP address of the interface. The implementation method corresponding to the network interface class includes at least setting and modifying the MAC address and the IP address of the interface.
路由引擎类支持对路由引擎的管理,所述路由引擎类对应的 CIM信息元 素至少包括: 路由协议配置参数、 状态参数及路由表, 所述路由引擎类对应 的实现方法至少包括路由协议配置, 状态监视, 路由计算, 路由表和转发表 的同步。  The routing engine class supports the management of the routing engine. The CIM information element corresponding to the routing engine class includes at least: a routing protocol configuration parameter, a state parameter, and a routing table. The implementation method corresponding to the routing engine class includes at least a routing protocol configuration, and a state. Monitoring, routing calculations, synchronization of routing tables and forwarding tables.
转发引擎类和处理引擎类实现对转发和处理引擎的管理, 所述转发引擎 类和处理引擎类对应的 CIM信息元素至少包括转发报文,所述转发引擎类和 处理引擎类对应的实现方法至少包括对报文的转发和策略处理, 所述报文的 策略处理至少包括 QoS策略设置、 变更和状态处理。  The forwarding engine class and the processing engine class implement the management of the forwarding and processing engine, and the CIM information element corresponding to the forwarding engine class and the processing engine class includes at least a forwarding packet, and the forwarding engine class and the processing engine class corresponding implementation method are at least The method includes the following steps: forwarding and policy processing of the packet, where the policy processing of the packet includes at least QoS policy setting, change, and status processing.
优选地, 处理引擎类还可以实现防火墙功能、 访问控制列表(ACL ) 功 能、 负载均衡、 IDS/IPS和 DPI功能的策略处理。  Preferably, the processing engine class can also implement policy processing of firewall functions, access control list (ACL) functions, load balancing, IDS/IPS, and DPI functions.
管理引擎类支持对网络设备的管理,管理引擎类对应的 CIM信息元素至 少包括:网络管理通信协议参数,所述管理引擎类对应的实现方法至少包括: 网络管理接口、 网络管理通信协议的参数的设置、 修改和状态处理。 而对网 络设备的管理功能至少包括配置管理和状态管理。  The management engine class supports the management of the network device, and the CIM information element corresponding to the management engine class includes at least: a network management communication protocol parameter, and the implementation method corresponding to the management engine class at least includes: a network management interface, a parameter of the network management communication protocol Setup, modification, and status processing. The management functions for network devices include at least configuration management and state management.
在上述系统的基础上, 网络类还可以包括网络所支持的网络服务类, 所 述网络服务类至少包括: DHCP、 DNS、 VPN, 虚拟网络(VN )和认证授权 和计费 (AAA ) 。  Based on the above system, the network class may further include a network service class supported by the network, and the network service class includes at least: DHCP, DNS, VPN, virtual network (VN), and authentication and accounting (AAA).
本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序 来指令相关硬件完成, 所述程序可以存储于计算机可读存储介质中, 如只读 存储器、 磁盘或光盘等。 可选地, 上述实施例的全部或部分步骤也可以使用 一个或多个集成电路来实现。 相应地, 上述实施例中的各模块 /单元可以釆用 硬件的形式实现, 也可以釆用软件功能模块的形式实现。 本申请不限制于任 何特定形式的硬件和软件的结合。 One of ordinary skill in the art will appreciate that all or a portion of the above steps may be accomplished by a program instructing the associated hardware, such as a read-only memory, a magnetic disk, or an optical disk. Alternatively, all or part of the steps of the above embodiments may also be implemented using one or more integrated circuits. Correspondingly, each module/unit in the above embodiment may be implemented in the form of hardware or in the form of a software function module. This application is not limited to any specific form of combination of hardware and software.
以上所述, 仅为本发明的较佳实例而已, 并非用于限定本发明的保护范 围。 凡在本发明的精神和原则之内, 所做的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。 The above is only a preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and principles of the present invention, All should be included in the scope of protection of the present invention.
工业实用性 Industrial applicability
本申请技术方案提供了一种通用的网络类定义, 可以适用于目前所有网 络类型的抽象, 解决了 NSMWG解决方案的缺失, 并实现基于 CIM的网络 管理。  The technical solution of the present application provides a general network class definition, which can be applied to the abstraction of all current network types, solves the lack of the NSMWG solution, and implements CIM-based network management.

Claims

权 利 要 求 书 Claim
1、 一种基于公共信息模型 (CIM ) 的网络管理方法, 该方法包括: 定义基于 CIM语法的网络类, 所述网络类包括网络设备类、 网络连接类 和服务器类,所述网络设备类至少由网络接口类、路由引擎类、转发引擎类、 处理引擎类以及管理引擎类组成, 其中, 所述网络类的各组成类及所述网络 设备类的各组成类分别由对应的 CIM信息元素及其对应的实现方法构成; 组成网络的网络设备, 通过支持所述网络设备类及组成网络设备的各类 对应的 CIM信息元素及其对应的实现方法, 进行网络管理。 A network management method based on a Common Information Model (CIM), the method comprising: defining a network class based on a CIM grammar, the network class comprising a network device class, a network connection class, and a server class, the network device class being at least The network interface class, the routing engine class, the forwarding engine class, the processing engine class, and the management engine class, wherein each component class of the network class and each component class of the network device class are respectively composed of corresponding CIM information elements and The corresponding implementation method comprises: the network device constituting the network performs network management by supporting the network device class and various corresponding CIM information elements constituting the network device and corresponding implementation methods thereof.
2、如权利要求 1所述的方法,其中,所述网络设备类是网络设备的抽象, 所述网络设备至少包括如下一种或几种: 2. The method of claim 1, wherein the network device class is an abstraction of a network device, the network device comprising at least one or more of the following:
路由器、 交换机、 数字用户线路接入复用器(DSLAM )、 防火墙、 入侵 检测系统 /入侵保护系统(IDS/IPS ) 、 深度报文检测 (DPI ) 、 无线局域网接 入点 (AP ) 、 家庭网关 (RG ) 、 宽带接入服务器(BRAS ) 、 基站( BS ) 、 分组数据网络网关 (PDN-GW ) 。  Routers, Switches, Digital Subscriber Line Access Multiplexers (DSLAM), Firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Deep Packet Inspection (DPI), Wireless LAN Access Points (APs), Home Gateways (RG), Broadband Access Server (BRAS), Base Station (BS), Packet Data Network Gateway (PDN-GW).
3、如权利要求 2所述的方法, 其中, 所述路由器至少包括如下一种或几 种: The method according to claim 2, wherein the router includes at least one or more of the following:
接入路由器, 汇聚路由器、 核心路由器以及运营商边缘路由器 (PE ) 、 客户边缘路由器 (CE ) 。  Access routers, aggregation routers, core routers, and carrier edge routers (PEs), customer edge routers (CEs).
4、如权利要求 1所述的方法, 其中, 所述网络设备类所包括的各引擎类 分别对应于独立的物理网络设备模块; 或者所有引擎类对应于一个集成的统 一的物理网络设备; 或者各引擎类分别组合对应于不同的物理网络模块。 The method of claim 1, wherein each engine class included in the network device class corresponds to an independent physical network device module; or all engine classes correspond to an integrated unified physical network device; or Each engine class is combined to correspond to a different physical network module.
5、如权利要求 1至 4任一项所述的方法, 其中, 所述路由引擎类支持对 路由引擎的管理, 所述路由引擎类对应的 CIM信息元素至少包括: 路由协议 配置参数、 状态参数及路由表, 所述路由引擎类对应的实现方法至少包括路 由协议配置, 状态监视, 路由计算, 路由表和转发表的同步。 The method of any one of claims 1 to 4, wherein the routing engine class supports management of a routing engine, and the CIM information element corresponding to the routing engine class includes at least: a routing protocol configuration parameter and a state parameter. And a routing table, the implementation method corresponding to the routing engine class includes at least a routing protocol configuration, a state monitoring, a route calculation, a routing table, and a forwarding table synchronization.
6、如权利要求 1至 4任一项所述的方法, 其中, 所述转发引擎类和处理 引擎类实现对转发和处理引擎的管理, 所述转发引擎类和处理引擎类对应的The method according to any one of claims 1 to 4, wherein the forwarding engine class and processing The engine class implements management of the forwarding and processing engine, and the forwarding engine class and the processing engine class correspond to
CIM信息元素至少包括转发报文, 所述转发引擎类和处理引擎类对应的实现 方法至少包括对报文的转发和策略处理, 所述报文的策略处理至少包括 QoS 策略设置、 变更和状态处理。 The CIM information element includes at least a forwarding packet, and the implementation method corresponding to the forwarding engine class and the processing engine class includes at least packet forwarding and policy processing, and the policy processing of the packet includes at least QoS policy setting, change, and status processing. .
7、如权利要求 6所述的方法,其中,所述处理引擎类还实现防火墙功能、 访问控制列表( ACL ) 功能、 负载均衡、 IDS/IPS和 DPI功能的策略处理。 7. The method of claim 6, wherein the processing engine class further implements policy processing of firewall functions, access control list (ACL) functions, load balancing, IDS/IPS, and DPI functions.
8、如权利要求 1至 4任一项所述的方法, 其中, 所述管理引擎类支持对 网络设备的管理, 所述管理引擎类对应的 CIM信息元素至少包括: 网络管理 接口类型、 网络管理通信协议参数, 所述管理引擎类对应的实现方法至少包 括: 网络管理接口、 网络管理通信协议的参数的设置、 修改和状态处理。 The method according to any one of claims 1 to 4, wherein the management engine class supports management of a network device, and the CIM information element corresponding to the management engine class includes at least: a network management interface type, and network management. The communication protocol parameter, the implementation method corresponding to the management engine class includes at least: a network management interface, a parameter setting, modification, and status processing of a network management communication protocol.
9、如权利要求 8所述的方法, 其中, 所述对网络设备的管理功能至少包 括配置管理和状态管理。 The method according to claim 8, wherein the management function for the network device includes at least configuration management and state management.
10、 如权利要求 1至 4任一项所述的方法, 其中, 所述网络连接类是网 络设备之间的连接链路的抽象, 所述连接链路至少包括如下一种或几种: 光缆、 双绞线(UTP ) 、 标签交换隧道(LSP ) 、 其他 IP隧道、 电路。 The method according to any one of claims 1 to 4, wherein the network connection class is an abstraction of a connection link between network devices, and the connection link includes at least one or more of the following: , twisted pair (UTP), label switched tunnel (LSP), other IP tunnels, circuits.
11、 如权利要求 1至 4任一项所述的方法, 其中, 所述服务器类指为实 现网络功能所需要的服务器。 The method according to any one of claims 1 to 4, wherein the server class refers to a server required to implement a network function.
12、 如权利要求 1至 4任一项所述的方法, 其中, 所述网络类, 还包括 网络所支持的网络服务类, 所述网络服务类至少包括如下一种或几种: The method according to any one of claims 1 to 4, wherein the network class further includes a network service class supported by the network, and the network service class includes at least one or more of the following:
DHCP, DNS、 VPN, 虚拟网络 ( VN )和认证授权和计费 (AAA ) 。  DHCP, DNS, VPN, Virtual Network (VN) and Authentication and Accounting (AAA).
13、 如权利要求 1至 4任一项所述的方法, 其中, 所述网络接口类对应 的 CIM信息元素至少包括接口的 MAC地址、 IP地址, 所述网络接口类对应 的实现方法至少包括接口的 MAC地址和 IP地址的设置和修改。 The method according to any one of claims 1 to 4, wherein the CIM information element corresponding to the network interface class includes at least a MAC address and an IP address of the interface, and the implementation method corresponding to the network interface class includes at least an interface. The setting and modification of the MAC address and IP address.
14、 如权利要求 1至 4任一项所述的方法, 其中, 14. The method according to any one of claims 1 to 4, wherein
基于 CIM语法定义所述网络设备类时, 还包括定义管理域信息元素。 When the network device class is defined based on the CIM syntax, it also includes defining a management domain information element.
15、 如权利要求 14所述的方法, 其中, 所述网络设备类还包括: 交换矩 阵类, 用于对网络设备的交换矩阵的管理, 所述交换矩阵类对应的 CIM信息 元素至少包括: 交换矩阵的状态信息, 所述交换矩阵类对应的实现方法至少 包括对交换矩阵状态信息的设置和修改。 The method of claim 14, wherein the network device class further comprises: a switching matrix class, configured to manage a switching matrix of the network device, where the CIM information element corresponding to the switching matrix class at least includes: The state information of the matrix, the implementation method corresponding to the switch matrix class includes at least setting and modifying the state information of the switch fabric.
16、 一种基于公共信息模型 (CIM ) 的网络管理系统, 该系统包括: 网络设备,设置为: 支持基于 CIM语法定义的网络设备类及组成所述网 络设备类的各类对应的 CIM信息元素及其对应的实现方法, 其中, 所述网络 设备类至少由网络接口类、 路由引擎类、 转发引擎类、 处理引擎类以及管理 引擎类组成; 16. A network management system based on a Common Information Model (CIM), the system comprising: a network device configured to: support a network device class defined based on a CIM syntax and various corresponding CIM information elements constituting the network device class And corresponding implementation method, where the network device class is at least composed of a network interface class, a routing engine class, a forwarding engine class, a processing engine class, and a management engine class;
网络管理服务器, 设置为: 对所述网络设备构成的网络进行网络管理。  The network management server is configured to: perform network management on the network formed by the network device.
17、如权利要求 16所述的系统, 其中, 所述网络设备类是网络设备的抽 象, 所述网络设备至少包括如下一种或几种: The system of claim 16, wherein the network device class is an abstraction of a network device, and the network device includes at least one or more of the following:
路由器、 交换机、 数字用户线路接入复用器(DSLAM )、 防火墙、 入侵 检测系统 /入侵保护系统(IDS/IPS ) 、 深度报文检测 (DPI ) 、 无线局域网接 入点 (AP ) 、 家庭网关 (RG ) 、 宽带接入服务器(BRAS ) 、 基站( BS ) 、 分组数据网络网关 (PDN-GW ) 。  Routers, Switches, Digital Subscriber Line Access Multiplexers (DSLAM), Firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Deep Packet Inspection (DPI), Wireless LAN Access Points (APs), Home Gateways (RG), Broadband Access Server (BRAS), Base Station (BS), Packet Data Network Gateway (PDN-GW).
18、如权利要求 17所述的系统, 其中, 所述路由器至少包括如下一种或 几种: The system of claim 17, wherein the router comprises at least one or more of the following:
接入路由器, 汇聚路由器、 核心路由器以及运营商边缘路由器 (PE ) 、 客户边缘路由器 (CE ) 。  Access routers, aggregation routers, core routers, and carrier edge routers (PEs), customer edge routers (CEs).
19、如权利要求 16所述的系统, 其中, 所述网络设备类所包括的各引擎 类分别对应于独立的物理网络设备模块; 或者所有引擎类对应于一个集成的 统一的物理网络设备;或者各引擎类的不同组合对应于不同的物理网络模块。 The system of claim 16, wherein each engine class included in the network device class corresponds to an independent physical network device module; or all engine classes correspond to an integrated unified physical network device; or Different combinations of engine classes correspond to different physical network modules.
20、 如权利要求 16至 19任一项所述的系统, 其中, 所述路由引擎类支 持对路由引擎的管理, 所述路由引擎类对应的 CIM信息元素至少包括: 路由 协议配置参数、 状态参数及路由表, 所述路由引擎类对应的实现方法至少包 括路由协议配置, 状态监视, 路由计算, 路由表和转发表的同步。 The system according to any one of claims 16 to 19, wherein the routing engine class supports management of a routing engine, and the CIM information element corresponding to the routing engine class includes at least: a routing protocol configuration parameter and a state parameter. And a routing table, where the implementation method corresponding to the routing engine class includes at least Including routing protocol configuration, status monitoring, route calculation, routing table and forwarding table synchronization.
21、 如权利要求 16至 19任一项所述的系统, 其中, 所述转发引擎类和 处理引擎类实现对转发和处理引擎的管理, 所述转发引擎类和处理引擎类对 应的 CIM信息元素至少包括转发报文,所述转发引擎类和处理引擎类对应的 实现方法至少包括对报文的转发和策略处理, 所述报文的策略处理至少包括 QoS策略设置、 变更和状态处理。 The system according to any one of claims 16 to 19, wherein the forwarding engine class and the processing engine class implement management of a forwarding and processing engine, and the forwarding engine class and the CIM information element corresponding to the processing engine class The method includes at least a forwarding message, and the implementation method corresponding to the forwarding engine class and the processing engine class includes at least a packet forwarding and policy processing, where the policy processing of the packet includes at least QoS policy setting, change, and status processing.
22、如权利要求 21所述的系统, 其中, 所述处理引擎类还实现防火墙功 能、 访问控制列表(ACL )功能、 负载均衡、 IDS/IPS和 DPI功能的策略处 理。 22. The system of claim 21, wherein the processing engine class further implements policy processing of firewall functions, access control list (ACL) functions, load balancing, IDS/IPS, and DPI functions.
23、 如权利要求 16至 19任一项所述的系统, 其中, 所述管理引擎类支 持对网络设备的管理, 所述管理引擎类对应的 CIM信息元素至少包括: 网络 管理接口类型、 网络管理通信协议参数, 所述管理引擎类对应的实现方法至 少包括: 网络管理接口、网络管理通信协议的参数的设置、修改和状态处理。 The system according to any one of claims 16 to 19, wherein the management engine class supports management of a network device, and the CIM information element corresponding to the management engine class includes at least: a network management interface type, network management The communication protocol parameter, the implementation method corresponding to the management engine class includes at least: setting, modification, and state processing of parameters of the network management interface and the network management communication protocol.
24、如权利要求 23所述的系统, 其中, 所述对网络设备的管理功能至少 包括配置管理和状态管理。 The system of claim 23, wherein the management function of the network device comprises at least configuration management and state management.
25、 如权利要求 16至 19任一项所述的系统, 其中, 该系统还包括所述 网络设备之间的连接链路, 所述连接链路抽象为网络连接类, 所述连接链路 至少包括如下一种或几种: The system according to any one of claims 16 to 19, wherein the system further comprises a connection link between the network devices, the connection link is abstracted as a network connection class, and the connection link is at least Includes one or more of the following:
光缆、 双绞线(UTP ) 、 标签交换隧道(LSP ) 、 其他 IP隧道、 电路。  Fiber optic cable, twisted pair (UTP), Label Switched Tunnel (LSP), other IP tunnels, circuits.
26、 如权利要求 16至 19任一项所述的系统, 其中, 该系统还包括实现 网络功能所需要的服务器 , 所述服务器抽象为服务器类。 The system according to any one of claims 16 to 19, wherein the system further comprises a server required to implement a network function, the server abstraction being a server class.
27、如权利要求 26所述的系统,其中,该系统至少还包括: DHCP, DNS、 VPN, 虚拟网络( VN )和认证授权和计费 ( AAA ) , 其所抽象为网络所支 持的网络服务类。 27. The system of claim 26, wherein the system further comprises at least: DHCP, DNS, VPN, Virtual Network (VN), and Authentication and Accounting (AAA), abstracted as network services supported by the network. class.
28、 如权利要求 16至 19任一项所述的系统, 其中, 所述网络接口类对 应的 CIM信息元素至少包括接口的 MAC地址、 IP地址 , 所述网络接口类对 应的实现方法至少包括接口的 MAC地址和 IP地址的设置和修改。 The system according to any one of claims 16 to 19, wherein the network interface class pair The corresponding CIM information element includes at least the MAC address and the IP address of the interface, and the implementation method corresponding to the network interface class includes at least the setting and modification of the MAC address and the IP address of the interface.
29、 如权利要求 16至 19任一项所述的系统, 其中, A system according to any one of claims 16 to 19, wherein
基于 CIM语法定义所述网络设备类时, 还包括定义管理域信息元素。  When the network device class is defined based on the CIM syntax, it also includes defining a management domain information element.
30、 如权利要求 29所述的系统, 其中, 所述网络设备类还包括: 交换矩 阵类, 用于对网络设备的交换矩阵的管理, 所述交换矩阵类对应的 CIM信息 元素至少包括: 交换矩阵的状态信息, 所述交换矩阵类对应的实现方法至少 包括对交换矩阵状态信息的设置和修改。 The system of claim 29, wherein the network device class further comprises: a switching matrix class, configured to manage a switching matrix of the network device, where the CIM information element corresponding to the switching matrix class comprises at least: The state information of the matrix, the implementation method corresponding to the switch matrix class includes at least setting and modifying the state information of the switch fabric.
PCT/CN2013/087182 2013-04-03 2013-11-15 Common information model-based network management method and system WO2014161315A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310116212.1 2013-04-03
CN201310116212.1A CN104104529A (en) 2013-04-03 2013-04-03 Network management method and system based on common information model

Publications (1)

Publication Number Publication Date
WO2014161315A1 true WO2014161315A1 (en) 2014-10-09

Family

ID=51657504

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/087182 WO2014161315A1 (en) 2013-04-03 2013-11-15 Common information model-based network management method and system

Country Status (2)

Country Link
CN (1) CN104104529A (en)
WO (1) WO2014161315A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050050311A1 (en) * 2003-08-28 2005-03-03 International Business Machines Corporation Pluggable state meta-data processors based on meta information modeling in a service oriented architecture
CN1968148A (en) * 2006-10-13 2007-05-23 华为技术有限公司 Network management system for integrative supervision and management of application software system and host resource
CN102752134A (en) * 2012-06-18 2012-10-24 东南大学 Trusted controllable network-based control information descriptive model and descriptive method

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101113122B1 (en) * 2007-05-10 2012-02-17 브로드콤 코포레이션 Method and system for modeling options for opaque management data for a user and/or an owner

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050050311A1 (en) * 2003-08-28 2005-03-03 International Business Machines Corporation Pluggable state meta-data processors based on meta information modeling in a service oriented architecture
CN1968148A (en) * 2006-10-13 2007-05-23 华为技术有限公司 Network management system for integrative supervision and management of application software system and host resource
CN102752134A (en) * 2012-06-18 2012-10-24 东南大学 Trusted controllable network-based control information descriptive model and descriptive method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
DISTRIBUTED MANAGEMENT TASK FORCE, INC., NETWORK SERVICES MANAGEMENT USE CASES, DSP2034 1.0.0A, 20 March 2013 (2013-03-20) *

Also Published As

Publication number Publication date
CN104104529A (en) 2014-10-15

Similar Documents

Publication Publication Date Title
US10944691B1 (en) Container-based network policy configuration in software-defined networking (SDN) environments
US11190424B2 (en) Container-based connectivity check in software-defined networking (SDN) environments
US9124485B2 (en) Topology aware provisioning in a software-defined networking environment
CN111756658B (en) Network Function Virtualization (NFV) backplane on forwarding microchip
US10063432B2 (en) Method and system of supporting service chaining in a data network
US9304801B2 (en) Elastic enforcement layer for cloud security using SDN
US8121126B1 (en) Layer two (L2) network access node having data plane MPLS
EP3605968B1 (en) N:1 stateful application gateway redundancy model
US20160119194A1 (en) Content filtering for information centric networks
WO2017037615A1 (en) A method and apparatus for modifying forwarding states in a network device of a software defined network
WO2018100437A1 (en) Policy based configuration in programmable access networks
BR112014001861B1 (en) Method for implementing a packet radio general service tunnel protocol, and cloud computing system for managing the implementation of a packet radio general service tunneling protocol
WO2014166247A1 (en) Implementation method and system for virtual network management
US8416691B1 (en) Associating hosts with subscriber and service based requirements
EP3456020A1 (en) Mechanism for inline packet response generation in software defined networks
KR20180104377A (en) Method for inter-cloud virtual networking over packet optical transport network
Ranjbar et al. Domain isolation in a multi-tenant software-defined network
EP3387801A1 (en) Customer premises lan expansion
Pawar et al. Segmented proactive flow rule injection for service chaining using SDN
EP3836487A1 (en) Internet access behavior management system, device and method
EP3804236A1 (en) Method and apparatus for optimized dissemination of layer 3 forwarding information in software defined networking (sdn) networks
US11784874B2 (en) Bulk discovery of devices behind a network address translation device
Cisco Catalyst 6000 and Cisco 7600 Supervisor Engine and MSFC - Cisco IOS Release 12.2(9)YO
Cisco Release Notes for Cisco IOS Release 12.1(5c)EX3 on the Catalyst 6000 Supervisor Engine 2 and MSFC2
WO2014161315A1 (en) Common information model-based network management method and system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13881021

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13881021

Country of ref document: EP

Kind code of ref document: A1