WO2014173116A1 - Procédé et système de gestion de réseau virtuel - Google Patents

Procédé et système de gestion de réseau virtuel Download PDF

Info

Publication number
WO2014173116A1
WO2014173116A1 PCT/CN2013/087327 CN2013087327W WO2014173116A1 WO 2014173116 A1 WO2014173116 A1 WO 2014173116A1 CN 2013087327 W CN2013087327 W CN 2013087327W WO 2014173116 A1 WO2014173116 A1 WO 2014173116A1
Authority
WO
WIPO (PCT)
Prior art keywords
network
class
virtual network
cim
virtual
Prior art date
Application number
PCT/CN2013/087327
Other languages
English (en)
Chinese (zh)
Inventor
顾忠禹
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2014173116A1 publication Critical patent/WO2014173116A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0806Configuration setting for initial configuration or provisioning, e.g. plug-and-play
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • H04L61/5014Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]

Definitions

  • the present invention relates to the field of communications, and more particularly to an implementation of a VPN (Virtual Private Network) management of a Multi-Protocol Label Switching (MPLS) based on a Common Information Model (CIM). Methods and systems.
  • VPN Virtual Private Network
  • MPLS Multi-Protocol Label Switching
  • CIM Common Information Model
  • the DMTF is based on the CIM model, a large number of standardization work for computer systems, or specific servers, and introduces a series of standards covering various components of the server, software functions, and network functions.
  • network functions including: LAN interface, definition of IP interface, and configuration of IP configuration, DHCP (Dynamic Host Configuration Protocol) and DNS (Domain Name System) client.
  • DHCP Dynamic Host Configuration Protocol
  • DNS Domain Name System
  • the function of the virtual network is also analyzed, and the NSMWG working group is set up to manage the network services. Standardization work.
  • the CIM model already includes some content of the network model, the coverage is also It is more extensive.
  • the model describes many aspects of the network through more than 40 graphics.
  • it is still a conceptual description, and it cannot be used for model design of direct virtual network management.
  • NSMWG The NSM Working Group
  • Figure 1 is the network management structure diagram of the NSMWG DSP10046 network management service specification. It is also too conceptual, and it cannot be implemented on a network function entity that can be managed, and implements effective management operations and related information models for operations.
  • MPLS VPN is a very popular network service that can bring great benefits to operators, but its network management is still based on manual configuration by network administrators. Management is dominant, and there is still a lack of automated management methods.
  • the virtual network of the data center is provided, and can also be implemented by the MPLS VPN mechanism. Therefore, as described above, the management of a large number of users in the data center requires automatic management. method.
  • the technical problem to be solved by the present invention is to provide a CIM-based MPLS VPN management method and system, and provide a specific and general network management model within the scope of the DMTF NSMWG.
  • VN virtual network
  • a network class based on a Common Information Model (CIM) grammar
  • the network class consisting of: one or more of a network device class, a virtual network connection class, and a virtual network configuration service class,
  • Each component class of the network class is composed of a corresponding CIM information element and a corresponding implementation method thereof; the network device constituting the network supports the network device class and various corresponding CIM information elements constituting the network device and their corresponding Implementation method, network management.
  • CIM Common Information Model
  • the virtual network configuration service class includes one or more of the following configuration operations:
  • VRF virtual route forwarding function
  • RD routing protocol on the access interface
  • RT route target
  • the virtual network connection class includes one or more of the following: a physical interface, a virtual local area network (VLAN) sub-interface, a label switched path (LSP) tunnel, an internet protocol (IP), and a transmission control protocol.
  • VLAN virtual local area network
  • LSP label switched path
  • IP internet protocol
  • TCP Transmission Control Protocol
  • GRE Generic Routing Encapsulation
  • GRE Generic Routing Encapsulation
  • IP internet protocol
  • L2TP Layer 2 Tunneling Protocol
  • the CIM information element of the network class includes one or more of the following:
  • VRF virtual network identifier
  • VN-ID virtual network identifier
  • MP-BGP Multi-Protocol Extensions Border Gateway Protocol
  • the network device is configured to: support a network device class defined based on a common information model (CIM) syntax, and various corresponding CIM information elements constituting the network device class and corresponding implementation methods thereof;
  • CIM common information model
  • a virtual network configuration server configured to: support a virtual network configuration service class defined based on a Common Information Model (CIM) syntax, and various corresponding CIM information elements constituting the virtual network configuration service class and corresponding implementation methods thereof, and The multi-protocol label switching VN network formed by the network device performs network management.
  • CIM Common Information Model
  • the virtual network configuration service class includes one or several configuration operations as follows:
  • VRF virtual routing table
  • RD routing specifier
  • RT routing destination
  • the above system further comprises:
  • the virtual network connection is configured to: support a virtual network connection class defined by the CIM syntax, and various corresponding CIM information elements constituting the virtual network connection class and corresponding implementation methods thereof, where the virtual network connection class includes the following One or several:
  • VLAN virtual local area network sub-interface
  • LSP label switched path
  • IP Internet Protocol
  • TCP Transmission Control Protocol
  • GRE Generic Routing Encapsulation
  • L2TP Layer 2 Tunnel Protocol
  • the CIM information element of the network class includes one or more of the following:
  • VRF virtual network identifier
  • VN-ID virtual network identifier
  • route specifier route destination, interface or subinterface
  • VLAN static IP address
  • routing protocol MP-BGP
  • the technical solution of the present application realizes automatic management of the virtual network by defining a CIM-based network class, which can greatly improve management efficiency and reduce the error probability of configuration management.
  • the embodiment of the present invention further extends the management method of the MPLS VPN to a general virtual network management method.
  • Figure 1 is a CIM structure diagram of the NSMWG
  • Embodiment 2 is a schematic diagram of a network structure of Embodiment 1;
  • Embodiment 1 of the present invention is a schematic flow chart of Embodiment 1 of the present invention.
  • FIG. 4 is a schematic diagram of definitions of a network class according to Embodiment 1 of the present invention.
  • FIG. 5 is a schematic diagram of definition of information elements according to Embodiment 1 of the present invention.
  • Figure 6 is a diagram showing a definition of another type of network constituent elements in the present invention.
  • FIG. 7 is a schematic diagram of a virtual network extended by the first embodiment of the present invention.
  • FIG. 8 is a schematic diagram of another virtual network extended by the first embodiment of the present invention. Preferred embodiment of the invention
  • This embodiment provides a CIM-based MPLS VPN network management method, including the following operations:
  • the network class includes: one or more of a network device class, a virtual network connection class, and a virtual network configuration service class, and may also be a network class, including but not limited to: a network device class,
  • the virtual network connection class and the virtual network configuration service class are composed of classes, wherein each component class of the network class is composed of a corresponding CIM information element and a corresponding implementation method thereof; network devices constituting the network, by supporting network device classes and components Various types of corresponding CIM information elements of the network device and corresponding implementation methods thereof are used for network management.
  • the constituent classes of the network class also include: a computer system/server class, a physical network connection class.
  • the network device class is an abstraction of the network device.
  • Network devices include, but are not limited to, routers, switches, and related gateway devices such as BRAS, PDN-GW, or wireless network base station equipment, home gateways, and firewalls, IDS/IPS, NAT gateways, security gateways, and the like.
  • the network device may further include: a network transmission device, such as SDH,
  • Device network device entities such as DWDM and OTN, including: various Ethernet interfaces, and interface functions such as POS and ATM.
  • the virtual network connection class can be fiber, cable, or wireless media.
  • the virtual network configuration service class may be a combination of software running on a server connected to the network, such as a DHCP or DNS server provided by a server, or a network function implemented by a separate specialized device, such as an IMS-related P-CSCF, etc. Features. It may also be a network function implemented by an expansion card of a specific function installed in a network device entity. Generally, these functions are
  • the virtual network configuration service class may also include Including the forwarding function, and depending on the specific network deployment, it may also have aggregation, and/or access capabilities.
  • the network device includes a device having a protocol function, and the specific protocol may include a routing protocol, or an SPT protocol.
  • the specific protocol may include a routing protocol, or an SPT protocol.
  • MPLS MPLS, multicast, or VPN.
  • functional devices related to network security it may also include: functional devices related to network security.
  • the network device may further include: a mobility-supported mobile IP function MIP; and a high-availability VRRP function device.
  • the method provided in this embodiment can be applied to the management of the MPLS VPN and the NV03 virtual network.
  • the network architecture of the MPLS L3VPN-based data center virtual network shown in FIG. 2 is taken as an example to specifically describe the CIM-based MPLS VPN network management process.
  • the data center uses MPLS L3 VPN technology to implement different tenant networks.
  • the data center network it includes PE devices, P devices, and access switches for connecting terminal devices of different tenant networks, and ASBR devices connected to the Internet.
  • the implementation process of the network management is as shown in FIG. 3, and includes the following operations.
  • Step 300 VN requirement application, and VN parameter determination
  • VN parameter information including but not limited to: the number of compute nodes, the characteristics of compute nodes (including CPU speed and/or memory size), compute node access bandwidth, and network interconnect bandwidth, depending on the size of the VN network and different application scenarios.
  • the number and bandwidth of access points accessing the Internet the bandwidth and number of access points accessed by users of the VN network, the number and address range of MAC addresses and IP addresses, the number of VLANs, the number of firewalls, and performance indicator parameters.
  • it also includes related routing protocols and the like.
  • Step 301 Select a terminal device of the tenant network, and perform virtual machine or physical machine deployment in different servers;
  • Step 302 and then determine the corresponding TOR (Top of Rack).
  • Step 303 Select a corresponding PE device according to the layout of the TOR, and perform VRF deployment. You can also select the PE device first, and then implement the VM's connection VLAN. Before deploying VRF, you first need To deploy MPLS.
  • the MPLS VPN service in the carrier network can be directly specified according to different locations of the access, so that the content of steps 300-302 can be omitted.
  • Step 304 Configure a terminal device of the tenant network to a sub-interface of the PE or a logical interface by using a VLAN.
  • Step 305 Configure a static route of the tenant network terminal.
  • the routing protocol includes one or more of the following:
  • OSPF OSPF
  • IS-IS IS-IS
  • BGP BGP
  • Step 306 configuring a route specifier and a route target of the VRF.
  • Step 307 Perform ASBR configuration according to the connection characteristics of the tenant network to connect to the existing VPN network site of the tenant network.
  • MPLS label configuration operations may also be performed.
  • Step 308 (this is an optional operation step), performs configuration related to the INTERNET connection. Including connection nodes, connection interfaces, and so on.
  • step 309 (this is an optional operation step), the configuration of the NAT function is deployed.
  • Step 310 (this is an optional operation step), supports dial-up access to the tenant network.
  • the deployment of the QoS policy is supported, and the deployment of the security policy is supported, and other network functions of the tenant network, such as a DHCP and a DNS server, and a firewall are deployed.
  • other network functions of the tenant network such as a DHCP and a DNS server, and a firewall are deployed.
  • FIG. 4 it is a definition of a class related to the constituent elements of the network, that is, a definition of a network class based on the CIM syntax. Among them, a large number of existing related systems, computer systems and server systems, as well as definitions of related classes of the network can be cited.
  • the network class defined by the CIM syntax in this embodiment includes at least a network device class, a network connection class, and an MPLS VPN configuration service class, thereby implementing a definition of a management class of the MPLS VPN.
  • the network device class is composed of a component class of the network device, a forwarding engine, an execution processing class, and a network interface class.
  • the other types are mainly related to the user side and the network side interface of the VPN.
  • the network connection class lists various situations that may be encountered in the network deployment, including: physical interface, VLAN sub-interface, LSP tunnel, IP, Interface types such as TCP, GRE, IPsec tunnel, etc. It also includes L2TP tunnel access that supports dial-up access not shown in Figure 4.
  • the specific functions of the MPLS VPN configuration service class include, but are not limited to, generating a VRF, configuring a static routing entry and a corresponding interface of the VRF, configuring an access interface, configuring a routing protocol on the access interface, and configuring a route of the VRF.
  • the specifier RD and the route target RT configure the route reflector related parameters.
  • the information in the network device class should include element information, including but not limited to: VRF, VN-ID, route specifier RD, route target RT, interface, or sub-interface. Interface, VLAN, static IP address, routing protocol, MP-BGP.
  • Embodiment 2 is a diagrammatic representation of Embodiment 1:
  • Fig. 6 it is a definition of another class related to the constituent elements of the network.
  • This network abstraction is more efficient than case one. It mainly defines three high-level abstract classes, network device classes, MPLS VPN configuration service classes, and MPLS VPN connection classes.
  • the MPLS VPN connection class includes an interface definition connected to the user side and a connection interface class on the network side. Through the definition of the endpoints of these interfaces, abstraction and ease of implementation can be performed efficiently.
  • the definition of the MPLS VPN configuration service class is the same as the implementation example one. However, the objects of the operation are slightly different and will be pointed out by different parameters.
  • Embodiment 3 As shown in FIG. 7 and FIG. 8, the attributes of the implementation cases 1 and 2 are extended for the implementation of a general virtual network. Specifically, this model can be applied to the case of virtual network implementation on any network. That is, it is necessary to specify the device of the network, the node configuration on which the virtual network is concerned, and the configuration of the access interface, and the interconnection configuration of the access, and the like. On specific parameters, it may be slightly different. The specific configuration method and parameters need to be determined according to the implementation mechanism of the specific virtual network.
  • NVE IP address a registered trademark of Cisco Systems, Inc.
  • MP-BGP/address automatic learning mechanism a registered trademark of Cisco Systems, Inc.
  • encapsulation mechanism a mechanism that can be applied to the virtual network implementation of NV03.
  • Relevant information elements including but not limited to: NVE IP address, MP-BGP/address automatic learning mechanism, encapsulation mechanism.
  • Embodiment 4 is a diagrammatic representation of Embodiment 4:
  • the embodiment provides a virtual network (VN) management system, which can implement the network management method proposed by the foregoing embodiments.
  • VN virtual network
  • the system includes at least:
  • a network device which supports a network device class defined by a CIM grammar and various corresponding CIM information elements constituting the network device class and corresponding implementation methods thereof;
  • a virtual network configuration server which supports a virtual network configuration service class defined by the CIM syntax, and various corresponding CIM information elements constituting the virtual network configuration service class and corresponding implementation methods thereof, and a multi-protocol label formed by the network device Exchange VN networks for network management.
  • the virtual network configuration service class includes one or several configuration operations as follows:
  • VRF virtual routing forwarding table
  • RDs routing specifiers
  • RTs routing targets
  • the CIM information elements of the network class include one or more of the following:
  • VRF virtual network identifier
  • VN-ID virtual network identifier
  • route specifier route destination, interface or subinterface
  • VLAN static IP address
  • routing protocol MP-BGP
  • the VN management system may further include a virtual network connection, which supports virtual network connection classes defined based on CIM syntax and various corresponding CIM information elements constituting the virtual network connection class and Corresponding implementation methods, where the virtual network connection class includes one or more of the following: Physical interface, virtual local area network (VLAN) sub-interface, label switched path (LSP) tunnel, Internet Protocol (IP), Transmission Control Protocol (TCP), Generic Routing Encapsulation (GRE) tunnel, Internet Protocol Security Tunnel, Layer 2 Tunnel Protocol (L2TP) tunnel.
  • VLAN virtual local area network
  • LSP label switched path
  • IP Internet Protocol
  • TCP Transmission Control Protocol
  • GRE Generic Routing Encapsulation
  • L2TP Layer 2 Tunnel Protocol
  • the technical solution of the present application realizes automatic management of a virtual network by defining a CIM-based network class, which can greatly improve management efficiency and reduce the error probability of configuration management.
  • the embodiment of the present invention further extends the management method of the MPLS VPN to a general virtual network management method.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

La présente invention concerne un procédé et un système de gestion de réseau virtuel, appartenant au domaine des communications. Le procédé de gestion de réseau virtuel (VN) comprend les étapes consistant à : définir une classe de réseau basé sur syntaxe d'un modèle d'information commun (CIM), la classe de réseau étant composée d'au moins une classe de dispositif de réseau, une classe de connexion de réseau virtuel et une classe de service de configuration de réseau virtuel, et chaque classe de composition de la classe de réseau étant respectivement composée d'éléments d'information CIM correspondants et de procédés de mise en œuvre y correspondant ; former par des dispositifs de réseau un réseau effectuant une gestion de réseau au moyen des éléments d'information CIM prenant en charge la classe de dispositif de réseau et correspondant à différentes classes qui forment le dispositif de réseau et les procédés de mise en œuvre y correspondant. La présente invention concerne également un système de gestion de réseau virtuel (VN). En définissant une classe de réseau basée sur CIM, les solutions techniques de la présente invention effectuent la gestion automatique d'un réseau virtuel, ce qui permet d'améliorer grandement l'efficacité de gestion et de réduire la probabilité d'erreur dans la gestion de configuration.
PCT/CN2013/087327 2013-04-27 2013-11-18 Procédé et système de gestion de réseau virtuel WO2014173116A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310152998.2 2013-04-27
CN201310152998.2A CN104125127A (zh) 2013-04-27 2013-04-27 一种虚拟网络管理方法和系统

Publications (1)

Publication Number Publication Date
WO2014173116A1 true WO2014173116A1 (fr) 2014-10-30

Family

ID=51770396

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/087327 WO2014173116A1 (fr) 2013-04-27 2013-11-18 Procédé et système de gestion de réseau virtuel

Country Status (2)

Country Link
CN (1) CN104125127A (fr)
WO (1) WO2014173116A1 (fr)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016095201A1 (fr) * 2014-12-19 2016-06-23 华为技术有限公司 Procédé et dispositif de déploiement de liaison de service

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1523817A (zh) * 2003-02-20 2004-08-25 �Ҵ���˾ 管理网络中的设备的方法和系统
CN101548263A (zh) * 2007-05-10 2009-09-30 美国博通公司 模拟用户和/或拥有者的不透明管理数据选项的方法和系统
CN102611574A (zh) * 2012-02-23 2012-07-25 成都飞鱼星科技开发有限公司 Vpn自动配置系统及配置方法

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101594376B (zh) * 2008-05-26 2012-07-25 国际商业机器公司 向cimom注册cim提供器的方法和相应的装置

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1523817A (zh) * 2003-02-20 2004-08-25 �Ҵ���˾ 管理网络中的设备的方法和系统
CN101548263A (zh) * 2007-05-10 2009-09-30 美国博通公司 模拟用户和/或拥有者的不透明管理数据选项的方法和系统
CN102611574A (zh) * 2012-02-23 2012-07-25 成都飞鱼星科技开发有限公司 Vpn自动配置系统及配置方法

Also Published As

Publication number Publication date
CN104125127A (zh) 2014-10-29

Similar Documents

Publication Publication Date Title
EP3879759B1 (fr) Dépannage de chemin de données optimisé à l'aide d'un moteur de politique de trace
EP3504848B1 (fr) Amélioration de l'efficacité d'un proxy de chaîne de fonction de service, sfc, dans des réseaux sdn définis par logiciel
US10063432B2 (en) Method and system of supporting service chaining in a data network
US8316435B1 (en) Routing device having integrated MPLS-aware firewall with virtual security system support
EP3580897B1 (fr) Procédé et appareil de chaînage de service dynamique avec routage de segment pour bng
WO2020012491A1 (fr) Mécanisme de resynchronisation sans à-coups pendant des mises à niveau de contrôleur sdn entre des versions incompatibles
WO2014166247A1 (fr) Procédé d'implémentation et système de gestion d'un réseau virtuel
US20200267051A1 (en) Remotely controlling network slices in a network
WO2017037615A1 (fr) Procédé et appareil de modification d'états de réacheminement dans un dispositif de réseau d'un réseau défini par logiciel
US20150049631A1 (en) Topology aware provisioning in a software-defined networking environment
EP3619895A1 (fr) Dépannage efficace dans des commutateurs à flux ouvert
WO2018100437A1 (fr) Configuration basée sur une politique dans des réseaux d'accès programmables
EP3456020B1 (fr) Mécanisme de génération de réponse de paquet en ligne dans des réseaux définis par logiciel
WO2014176989A1 (fr) Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau
US20220141761A1 (en) Dynamic access network selection based on application orchestration information in an edge cloud system
EP3817341B1 (fr) Configuration en vrac de dispositifs derrière un dispositif de traduction d'adresses de réseau
US11757853B2 (en) Method for restricting access to a management interface using standard management protocols and software
EP3804236A1 (fr) Procédé et appareil pour la dissémination optimisée d'informations de transfert de couche 3 dans des réseaux de réseautage défini par logiciel (sdn)
WO2014173116A1 (fr) Procédé et système de gestion de réseau virtuel
EP3701686B1 (fr) Dépannage de chemin de données optimisé
WO2018051172A1 (fr) Contournement de classificateur de fonction de service dans des réseaux de réseautage défini par logiciel (sdn)
EP3857347A1 (fr) Contrôleur de ressources de stockage dans un système de réseau 5g
WO2014161315A1 (fr) Procédé et système de gestion de réseau basés sur un modèle d'information commun

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13882905

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13882905

Country of ref document: EP

Kind code of ref document: A1