WO2015101169A1 - Method for deploying service by sdn and sdn controller - Google Patents

Method for deploying service by sdn and sdn controller Download PDF

Info

Publication number
WO2015101169A1
WO2015101169A1 PCT/CN2014/093846 CN2014093846W WO2015101169A1 WO 2015101169 A1 WO2015101169 A1 WO 2015101169A1 CN 2014093846 W CN2014093846 W CN 2014093846W WO 2015101169 A1 WO2015101169 A1 WO 2015101169A1
Authority
WO
WIPO (PCT)
Prior art keywords
service
information
tunnel
network node
sdn controller
Prior art date
Application number
PCT/CN2014/093846
Other languages
French (fr)
Chinese (zh)
Inventor
董杰
陈国义
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2015101169A1 publication Critical patent/WO2015101169A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5041Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/40Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks using virtualisation of network functions or resources, e.g. SDN or NFV entities

Definitions

  • the present invention relates to the field of network communications, and in particular, to a software defined network (SDN) deployment service method and an SDN controller.
  • SDN software defined network
  • VPN Virtual Private Network
  • PE provider edge
  • Network operators provide VPN services to users, which are usually carried by tunnels.
  • a commonly used tunnel is a Traffic Engineering (TE) tunnel.
  • the advantage of a TE tunnel is that the operator can control the tunnel path and implement bandwidth guarantee.
  • the establishment of a TE tunnel in the network is mainly performed by manually configuring the router on the router, and the shortest path first (SPF)/Constrained Shortest Path First (CSPF) calculation is performed by the head node router of the TE tunnel.
  • the tunnel path is obtained.
  • the head node router of the TE tunnel is used as a path Computation Client (PCC) to initiate a route calculation request to the Path Computation Element (PCE).
  • PCC path Computation Client
  • PCE Path Computation Element
  • the PCE returns the path calculation result.
  • the head node router of the TE tunnel, and the head node router of the TE tunnel uses the Resource Reservation Protocol-Traffic Engineering (RSVP-TE) to establish the TE tunnel.
  • RSVP-TE Resource Reservation
  • the embodiment of the invention provides a method, a system and an SDN controller for the SDN deployment service, which can solve the problem that the VPN service deployment needs manual configuration and is prone to configuration errors.
  • the first aspect provides a method for deploying a service by using an SDN, including:
  • the SDN controller receives a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node;
  • the SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter;
  • the notifying the path information of the tunnel to the ingress network node includes:
  • the notifying the path information of the tunnel to the ingress network node includes:
  • the tunnel is advertised to the ingress network node After the path information, the method further includes: receiving a service deployment result fed back by the ingress network node.
  • the service deployment result that is received by the ingress network node feedback includes:
  • the service deployment result that is received by the ingress network node feedback includes:
  • the service deployment result fed back by the ingress network node is received by the network management system NMS.
  • a method for deploying a SDN service including:
  • the SDN controller receives the service request from the upper layer application, where the service request includes a service type and a service parameter, and the service type is a virtual private network VPN service;
  • the service parameter includes information of at least one user edge CE device
  • the obtaining, by the service request, the information of the at least one PE device corresponding to the VPN service including:
  • the service parameter includes the information of the at least one PE device, and the acquiring, by the service request, the information of the at least one PE device corresponding to the VPN service, including: Obtaining the at least one PE device from the service parameter Information.
  • the advertised to the at least one PE device Business deployment information includes:
  • the advertised to the at least one PE device Business deployment information includes:
  • the service deployment information is sent to the network management system (NMS), and the service deployment information is sent to the at least one PE device by using the NMS.
  • NMS network management system
  • the service is advertised to the at least one PE device After the information is deployed, the method further includes: receiving a service deployment result fed back by the at least one PE device.
  • the receiving, by the SDN controller, the service deployment result that is received by the at least one PE device The control session established by the at least one PE device receives the service deployment result fed back by the at least one PE device.
  • the method further includes: deploying information according to the service , associating or establishing a tunnel for the VPN service.
  • the service parameter further includes any one or more of the following combinations: delay, bandwidth, protection condition, and service priority;
  • the VPN service type is a virtual circuit VC; correspondingly, the at least one PE includes a first PE device and a second PE device;
  • the VPN service type is a virtual network VN; correspondingly, the at least one PE device includes a first PE device, a second PE device, and a third PE device;
  • the VPN service type is a virtual tree VT; correspondingly, the at least one PE device includes a root PE device and at least one leaf PE device.
  • an SDN controller including:
  • a service request receiving module configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node.
  • a path calculation client PCC configured to send a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter; and receive a path calculation response returned by the PCE, where the path calculation The path information of the tunnel is included in the response;
  • a sending module configured to advertise the path information of the tunnel to the ingress network node.
  • the SDN controller further includes:
  • the result receiving module is configured to receive a service deployment result fed back by the ingress network node.
  • the sending module is specifically configured to use a control session between the SDN controller and the ingress network node, Sending path information of the tunnel to the ingress network node;
  • the result receiving module is configured to receive, by using the control session, a service deployment result fed back by the ingress network node.
  • the sending module is configured to send path information of the tunnel to a network management system (NMS), by using the NMS Notifying the ingress network node of path information of the tunnel;
  • NMS network management system
  • the result receiving module is specifically configured to receive, by using the NMS, a service deployment result fed back by the ingress network node.
  • an SDN controller including:
  • a service request receiving module configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a virtual private network VPN service;
  • a device information acquiring module configured to acquire information of at least one carrier edge PE device corresponding to the VPN service according to the service request;
  • a deployment determining module configured to determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
  • a sending module configured to notify the at least one PE device of the service deployment information.
  • the service parameter includes information of at least one user edge CE device
  • the device information obtaining module is specifically configured to send a policy query request to the policy module, where the policy query request includes information of the application requester, the VPN service, and information of the at least one CE device;
  • the query response returned by the policy module is allowed to establish the VPN service, and the query response includes information of the at least one PE device.
  • the service parameter includes information of the at least one PE device
  • the device information acquiring module is specifically configured to obtain information of the at least one PE device from the service parameter.
  • the SDN controller further includes: a result receiving module, A service deployment result for receiving feedback from the at least one PE device.
  • the sending module is specifically configured to be used by the SDN controller to establish a control session with the at least one PE device. Sending the service deployment information to the at least one PE device;
  • the result receiving module is configured to receive, by using the control session, a service deployment result fed back by the at least one PE device.
  • the sending module is configured to send the service deployment information to a network management system (NMS), by using the NMS Transmitting, by the at least one PE device, the service deployment information;
  • NMS network management system
  • the result receiving module is configured to receive, by using the NMS, a service deployment result fed back by the at least one PE device.
  • the SDN controller further includes: a tunnel determining module, And configured to associate or establish a tunnel for the VPN service according to the service deployment information.
  • the service parameter further includes any one or more of the following Combination of: delay, bandwidth, protection conditions, and service priority;
  • the deployment determining module is configured to generate a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter, and determine service deployment information of the at least one PE device according to the logical topology. .
  • the VPN service type is a virtual circuit VC; correspondingly, the several PE devices include a first PE device and a second PE device;
  • the VPN service type is a virtual network VN; correspondingly, the plurality of PE devices include a first PE device, a second PE device, and a third PE device;
  • the VPN service type is a virtual tree VT; correspondingly, the several PE nodes include a root PE device and at least one leaf PE device.
  • a fifth aspect provides a system for SDN deployment services, including an SDN controller and an upper layer application;
  • the SDN controller is configured to receive a service request of the upper layer application, where the service request includes a service type and a service parameter, and the service corresponding to the service type is deployed for the upper layer application according to the service request.
  • the service type is a tunnel;
  • the service parameter includes information about an ingress network node and an egress network node of the tunnel;
  • the SDN controller is the third aspect or the third Any possible implementation of the aspect; the system further comprising the ingress network node, the egress network node, and a path computation unit PCE.
  • the service type is a VPN service, where the service parameter includes information of at least one CE device, or information of at least one PE device corresponding to the VPN service;
  • a controller as in any one of the foregoing fourth or fourth aspect, wherein the system further comprises the at least one PE device.
  • the SDN controller receives the service request from the upper layer application, and the service request of the service type is a tunnel, and the device information is obtained through the interaction with the PCE to obtain the path information of the tunnel and advertised to the ingress network node of the tunnel.
  • the establishment of the tunnel is completed; the service request of the VPN service is obtained, the information of the multiple PE nodes corresponding to the VPN service is obtained, and the service deployment information is advertised to the multiple PE devices to complete the establishment of the VPN service.
  • tunnels or VPNs can be completed quickly without manual configuration. The establishment of the service solves the problem that the tunnel or the VPN service is manually configured to be error-prone in the prior art.
  • FIG. 1 is a schematic diagram of a system for an SDN deployment service according to an embodiment of the present invention
  • FIG. 2 is a flowchart of a method for deploying an SDN according to an embodiment of the present invention
  • FIG. 3 is a flowchart of another method for deploying an SDN according to an embodiment of the present invention.
  • FIG. 4 is a schematic structural diagram of an SDN controller according to an embodiment of the present invention.
  • FIG. 5 is a schematic structural diagram of another SDN controller according to an embodiment of the present disclosure.
  • FIG. 6 is a schematic structural diagram of another SDN controller according to an embodiment of the present invention.
  • FIG. 7 is a schematic structural diagram of still another SDN controller according to an embodiment of the present invention.
  • SDN Software defined network
  • a system for an SDN deployment service includes an SDN controller and an upper layer application.
  • the SDN controller receives a service request from an upper-layer application, where the service request includes a service parameter and a service type, such as a VPN, a tunnel, and the like, and deploys a service corresponding to the service type according to the service request.
  • a service request includes a service parameter and a service type, such as a VPN, a tunnel, and the like
  • the system further includes a PE device; optionally, a PCE and a policy module. Further optionally, a network management system (NMS) is also included.
  • a PE device optionally, a PCE and a policy module.
  • NMS network management system
  • the PCE is configured to provide a path calculation service for the SDN controller.
  • the policy module is configured to provide a policy service, such as a service authority control, for the SDN controller.
  • the policy module may be located on a different network device from the SDN controller, for example, the policy module is implemented by a dedicated server; the policy module may also be located on the same network device as the SDN controller.
  • FIG. 2 is a schematic diagram of a method for deploying an SDN according to an embodiment of the present invention, including:
  • the SDN controller receives a service request from an upper layer application.
  • the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and an egress network node of the tunnel, for example, an internet protocol of an ingress network node of the tunnel (Internet Protocol, Referred to as IP) address, the IP address of the egress node.
  • IP Internet Protocol
  • the tunnel can be a TE tunnel.
  • the SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter.
  • the service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
  • the service parameter may further include one or more of a delay, a bandwidth, and a protection condition.
  • the PCE may further calculate, according to the path constraint information, the delay, the bandwidth, the protection condition, etc., according to the information of the ingress node and the information of the egress node. path.
  • the path calculation response includes path information of the tunnel; path information of the tunnel.
  • the complete path information or partial path information of the tunnel is included, for example, the IP address of all or part of the network nodes through which the tunnel passes; optionally, the path information of the tunnel may further include reserved bandwidth, and the path generation Value and so on.
  • PCEP PCE Communication Protocol
  • the SDN controller advertises the path information of the tunnel to the ingress network node of the tunnel, and optionally also controls the ingress network node to establish a tunnel according to the path information of the tunnel.
  • the ingress network node may carry the tunnel path information by using RSVP-TE signaling to complete establishment of the tunnel.
  • the method may further include: receiving a service deployment result fed back by the ingress network node. Specifically, the ingress network node feeds back information about the establishment result and status of the tunnel to the SDN controller.
  • the advertise the tunnel path information to the ingress network node including: transmitting, by using a control session established between the SDN controller and the ingress network node, path information of the tunnel to the Initiating a network node and controlling the ingress network node to establish the tunnel according to path information of the tunnel.
  • the receiving the service deployment result fed back by the ingress network node comprises: receiving, by using the control session, a service deployment result fed back by the ingress network node.
  • the advertise the path information of the tunnel to the ingress network node including: sending the tunnel path information to a network management system (NMS), to the ingress network by using the NMS Sending, by the node, path information of the tunnel; specifically, the NMS may configure the ingress network node, send path information of the tunnel to the ingress network node, and instruct the ingress network node to establish the tunnel .
  • NMS network management system
  • the receiving the service deployment result fed back by the ingress network node includes: The NMS receives the service deployment result fed back by the ingress network node.
  • the NMS can communicate with the ingress network node by using a network management and configuration mechanism, such as a simple network management protocol (SNMP), and a network configuration protocol (netconf) to manage the ingress network node.
  • SNMP simple network management protocol
  • networkconf network configuration protocol
  • the SDN controller receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel. Without manual configuration, it can quickly respond to the service request for establishing a tunnel, improve the scalability of the tunnel service, and avoid the problem of manual configuration being error-prone.
  • FIG. 3 is a schematic diagram of another SDN deployment service method according to an embodiment of the present invention, including:
  • the SDN controller receives a service request from an upper layer application.
  • the service request includes a service type and a service parameter, where the service type is a VPN service.
  • the VPN service includes a virtual circuit (VC), a virtual network (VN), and a virtual tree (VT).
  • VC virtual circuit
  • VN virtual network
  • VT virtual tree
  • the service parameter includes information of at least one customer edge (CE) device, such as an IP address of the CE device, and the at least one PE device corresponding to the VPN service is obtained according to the service request.
  • CE customer edge
  • Information including:
  • the policy module And receiving, by the policy module, a query response that is allowed to establish the VPN service, where the query response includes information about the at least one PE device.
  • the strategy The query request includes the user information of the upper layer application, such as a user name, an identity, and the like; the policy module determines, according to the user information, whether to allow the VPN service to be established; specifically, the policy module is based on the user. The information is obtained by the user to determine whether the VPN service is allowed to be established.
  • the policy module determines that the VPN service is allowed to be established, the policy module acquires information about the at least one PE device corresponding to the VPN service; if the policy module determines that the VPN service is not allowed to be established, the policy The module returns a query response to the SDN controller that does not allow establishment of a VPN service.
  • the service parameter includes the information of the at least one PE device, and the acquiring the information of the at least one PE device corresponding to the VPN service according to the service request, including: obtaining the Information about at least one PE device.
  • the at least one PE device includes a first PE device and a second PE device;
  • the at least one PE node includes a first PE device, a second PE device, and a third PE device; and of course, the fourth PE device, the fifth PE device, and the like.
  • the at least one PE device includes a root PE device and at least one leaf PE device.
  • the policy module may be located on a different network device than the SDN controller, or may be located on the same network device.
  • the service parameter further includes any one or more of the following: a delay, a bandwidth, a protection condition, and a service priority;
  • the SDN controller is configured according to the information of the at least one PE device
  • the service parameter determines the service deployment information corresponding to the VPN service; specifically, the SDN controller may form a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter, according to the Logical topology determination
  • the service deployment information corresponding to the VPN service is obtained according to the logical topology, so that the service deployment information corresponding to the VPN service is determined.
  • the service deployment information is advertised to the at least one PE device to complete VPN service deployment.
  • the SDN controller may associate, according to the service deployment information corresponding to the VPN service, the established tunnel that meets the requirements of the VPN service, or may be deployed according to the service corresponding to the VPN service.
  • the information is used to establish a tunnel for the VPN service by using the method shown in FIG. 2 of the present invention.
  • the method may further include: receiving a service deployment result fed back by the at least one PE device.
  • each of the at least one PE device feeds back information such as a VPN service establishment result and a status to the SDN controller.
  • the advertising the service deployment information to the at least one PE device comprises: sending the service to the at least one PE device by using a control session established by the SDN controller and the at least one PE device Deployment information.
  • the service deployment result that is received by the at least one PE device comprises: receiving, by the control session established with the at least one PE device, a service deployment result fed back by the at least one PE device.
  • the advertise the service deployment information to the at least one PE device including: sending the service deployment information to a network management system (NMS), and sending the service deployment to the at least one PE device by using the NMS information.
  • NMS network management system
  • the service deployment result that is received by the at least one PE device is received by the NMS, and the service deployment result fed back by the at least one PE device is received by the NMS.
  • the NMS can communicate with the at least one PE device through a network management configuration mechanism, such as SNMP, netconf, and the like.
  • the SDN controller receives a service request for establishing a VPN from an upper layer application, and obtains a letter of multiple PE devices corresponding to the VPN service. And the service deployment information is advertised to the plurality of PE devices to complete the establishment of the VPN service; without manual configuration, the VPN service can be quickly established, the scalability of the VPN service is improved, and the manual configuration can be avoided. An error-prone problem.
  • an embodiment of the present invention provides an SDN controller, which is used to implement the SDN deployment service shown in FIG. 2 of the present invention.
  • the SDN controller includes:
  • the service request receiving module 401 is configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes an ingress network node and an egress network of the tunnel.
  • Information about the node for example, the IP address of the ingress network node of the tunnel and the IP address of the egress network node;
  • a path calculation client PCC 402 configured to send a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter; and receive a path calculation response returned by the PCE, the path Calculating path information including the tunnel in the response;
  • a sending module 403, configured to notify the ingress network node of path information of the tunnel
  • the SDN controller further controls the ingress network node to establish a tunnel according to the path information of the tunnel.
  • the ingress network node may carry the tunnel path information by using RSVP-TE signaling to complete establishment of the tunnel.
  • the tunnel can be a TE tunnel.
  • PCEP communication may be employed.
  • the service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
  • the service parameter may further include a delay, a bandwidth, a protection condition, and the like.
  • the PCE may further perform the path constraint information, the delay, the bandwidth, the protection condition, etc. according to the information of the ingress network node and the information of the egress network node.
  • the tunnel calculates the path.
  • the path information of the tunnel includes the complete path information or the partial path information of the tunnel, for example, the IP address of all or part of the network nodes through which the tunnel passes; optionally, the path information of the tunnel may further include a reservation. Bandwidth, the value of the path, etc.
  • the SDN controller further includes: a result receiving module, configured to receive a service deployment result fed back by the ingress network node.
  • the sending module is specifically configured to send the path information of the tunnel to the ingress network node by using a control session with the ingress network node; correspondingly, the result receiving module is specifically configured to pass the Controlling a session, receiving a service deployment result fed back by the ingress network node.
  • the sending module is specifically configured to send the path information of the tunnel to the network management system NMS, and send the path information of the tunnel to the ingress network node by using the NMS; correspondingly, the result receiving module, Specifically, the service deployment result fed back by the ingress network node is received by the NMS.
  • the SDN controller provided by the embodiment of the present invention receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel; no manual configuration is required.
  • the tunnel can be established quickly, and the way to establish a tunnel is simple and fast, which improves the scalability of the tunnel service and avoids the problem of manual configuration being error-prone.
  • an embodiment of the present invention provides another SDN controller, which is used to implement the SDN deployment service shown in FIG. 3 of the present invention.
  • the SDN controller includes:
  • the service request receiving module 501 is configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter; and the service type is a virtual private network VPN service;
  • the device information obtaining module 502 is configured to obtain, according to the service request, information about at least one carrier edge PE device corresponding to the VPN service;
  • the deployment determining module 503 is configured to determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter.
  • the sending module 504 is configured to advertise the service deployment information to the at least one PE device.
  • the VPN service includes VC, VN, and VT.
  • the service parameters may also include delay, bandwidth, protection conditions, service priority, and the like.
  • the at least one PE device includes a first PE device and a second PE device;
  • the number of the PE devices includes the first PE device, the second PE device, and the third PE device; of course, the fourth PE device, the fifth PE device, and the like;
  • the number of the PE devices includes a root PE device and at least one leaf PE device.
  • the service parameter includes information of at least one CE device, for example, an IP address of the CE device
  • the device information obtaining module 502 is specifically configured to send a policy query request to the policy module, where the policy query request includes The information about the VPN service and the at least one CE device is received; and the query response returned by the policy module is allowed to be established, and the query response includes the information of the at least one PE device.
  • the policy query request further includes user information of the upper layer application, such as a user name, an identity identifier, and the like; and the policy module determines, according to the user information, whether to allow the VPN service to be established; specifically, The policy module acquires the rights of the user according to the user information, to determine whether to allow the VPN service to be established. If the policy module determines that the VPN service is allowed to be established, the policy module acquires information about the at least one PE device corresponding to the VPN service; if the policy module determines that the VPN service is not allowed to be established, the policy The module returns a query response to the SDN controller that does not allow establishment of a VPN service.
  • user information of the upper layer application such as a user name, an identity identifier, and the like
  • the policy module determines, according to the user information, whether to allow the VPN service to be established; specifically, The policy module acquires the rights of the user according to the user information, to determine whether to allow the VPN service to be established. If the policy module determines that the VPN service is allowed
  • the SDN controller further includes the policy module.
  • the service parameter includes information about the at least one PE device
  • the device information obtaining module 502 is configured to obtain information about the at least one PE device from the service parameter.
  • the SDN controller further includes: a result receiving module, configured to receive a service deployment result fed back by the at least one PE device.
  • the sending module is configured to send the service deployment information to the at least one PE device by using a control session established with the at least one PE device.
  • the result receiving module is configured to receive the service deployment result fed back by the at least one PE device by using the control session established with the at least one PE device.
  • the sending module is configured to send the service deployment information to the network network system (NMS), and send the service deployment information to the at least one PE device by using the NMS.
  • the result receiving module is configured to receive, by using the NMS, a service deployment result fed back by the at least one PE device.
  • the SDN controller further includes: a tunnel determining module, configured to associate, according to the service deployment information corresponding to the VPN service, an established tunnel that meets the VPN service requirement; or The service deployment information corresponding to the VPN service is used to establish a tunnel for the VPN service according to the method shown in FIG. 1 of the present invention.
  • the SDN controller provided by the embodiment of the present invention receives the service request for establishing a VPN from the upper-layer application, obtains the information of the multiple PE devices corresponding to the VPN service, and advertises the service deployment information to the multiple PE devices to complete the VPN service.
  • the establishment of the VPN service can be completed quickly without manual configuration, the scalability of the VPN service is improved, and the problem of poor real-time configuration and error-prone can be avoided.
  • FIG. 6 is a schematic structural diagram of another SDN controller according to an embodiment of the present invention, for implementing the method shown in FIG. 2 of the present invention, where the SDN controller includes: a processor 601, a memory 602, and a communication.
  • the memory 602 is configured to store a program.
  • the program can include program code, the program code including computer operating instructions.
  • the memory 502 may include a random access memory (RAM), and may also include a non-volatile memory, such as at least one disk storage.
  • the processor 601 executes the program stored in the memory 602, and the method for performing the SDN deployment service provided by the embodiment of the present invention includes:
  • the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node;
  • the SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter;
  • the communication interface 603 is configured to communicate with an upper layer application; and is further configured to communicate with a PCE; and is further configured to communicate with an ingress network node of the tunnel.
  • the method also includes receiving a service deployment result fed back by the ingress network node.
  • the advertise the path information of the tunnel to the ingress network node including: transmitting, by using the control session established by the SDN controller and the ingress network node, path information of the tunnel to the ingress network node.
  • the receiving the service deployment result fed back by the ingress network node comprises: receiving, by using the control session, a service deployment result fed back by the ingress network node.
  • the service deployment result of the feed includes: receiving, by the NMS, a service deployment result fed back by the portal network node.
  • the communication interface 603 is further configured to communicate with the NMS.
  • the SDN controller provided by the embodiment of the present invention receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel; no manual configuration is required. It can quickly respond to the service request for establishing a tunnel, improve the scalability of the tunnel service, and avoid the problem of manual configuration being error-prone.
  • FIG. 7 is a schematic structural diagram of still another SDN controller according to an embodiment of the present invention, for implementing the method shown in FIG. 3 of the present invention, where the SDN controller includes: a processor 701, a memory 702, and a communication.
  • the memory 702 is configured to store a program.
  • the program can include program code, the program code including computer operating instructions.
  • Memory 702 may include RAM and may also include non-volatile memory, such as at least one disk storage.
  • the processor 701 executes the program stored in the memory 702, and the method for performing the SDN deployment service provided by the embodiment of the present invention includes:
  • the communication interface 703 is configured to communicate with an upper layer application, and is further configured to communicate with the at least one PE node.
  • the VPN service includes VC, VN, and VT;
  • the number of the PE nodes includes a first PE node and a second PE node
  • the number of the PE nodes includes a first PE node, a second PE node, and a third PE node; of course, the fourth PE node, the fifth PE node, and the like;
  • the number of the PE nodes includes a root PE node and at least one leaf PE node.
  • the service parameter includes the information of the at least one user edge CE device, and the acquiring, by the service request, the information of the at least one PE device corresponding to the VPN service, including:
  • the communication interface 703 is further configured to communicate with the policy module.
  • the service parameter includes the information of the at least one PE device, and the acquiring the information of the at least one PE device corresponding to the VPN service according to the service request, including: obtaining the Information about at least one PE device.
  • the method further includes receiving a service deployment result fed back by the at least one PE device.
  • the advertising the service deployment information to the at least one PE device comprises: sending the service deployment information to the at least one PE device by using a control session established with the at least one PE device.
  • the service deployment result that is received by the at least one PE device comprises: receiving, by the control session established with the at least one PE device, a service deployment result fed back by the at least one PE device.
  • the advertising the service deployment information to the at least one PE device includes: The service deployment information is sent to the network management system (NMS), and the service deployment information is sent to the at least one PE device by using the NMS.
  • NMS network management system
  • the service deployment result that is received by the at least one PE device is received by the NMS
  • the service deployment result fed back by the at least one PE device is received by the NMS.
  • the method further includes: associating the established VPN service that meets the VPN service requirement with the VPN service according to the service deployment information; or, according to the service deployment information, adopting the present invention as shown in FIG.
  • the method establishes a tunnel for the VPN service.
  • the communication interface 603 is further configured to communicate with the NMS.
  • the SDN controller provided by the embodiment of the present invention receives the service request for establishing a VPN from the upper-layer application, obtains the information of the multiple PE devices corresponding to the VPN service, and advertises the service deployment information to the multiple PE devices to complete the VPN service.
  • the establishment of the VPN service can be completed quickly without manual configuration, the scalability of the VPN service is improved, and the problem of poor real-time configuration and error-prone can be avoided.
  • the embodiment of the present invention further provides a system for SDN deployment services, including an SDN controller and an upper layer application.
  • the SDN controller receives a service request from the upper-layer application, where the service request includes a service parameter and a service type, and deploys a service corresponding to the service type according to the service request.
  • the service type is a tunnel;
  • the service parameter includes information of an ingress network node and an egress network node of the tunnel;
  • the SDN controller is as described in the embodiment of FIG. 4 or FIG. 6 of the present invention;
  • the service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
  • the service type is a VPN service; the service parameter includes information of at least one CE device, or information of at least one PE device corresponding to the VPN service;
  • the SDN controller is as described in the embodiment of FIG. 5 or 7 of the present invention; the system further includes the at least one PE device.
  • the system further includes at least one CE device and a policy module, where the policy module is configured to provide a policy service, such as a service authority control, for the SDN controller.
  • the policy module may be located on a different network device from the SDN controller, for example, the policy module is implemented by a dedicated server; the policy module may also be located on the same network device as the SDN controller.
  • the system further comprises a network management system NMS.
  • NMS network management system

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)

Abstract

Disclosed are a method for deploying a service by an SDN and an SDN controller. The SDN controller receives a service request from an upper-layer application, the service request comprising a service type and service parameters, and the service type being a tunnel or a VPN service; and the SDN controller obtains path information of the tunnel or information of at least one PE device corresponding to the VPN service, and notifies the obtained information to an ingress network node of the tunnel or the at least one PE device, so as to complete deployment of the tunnel or the VPN service. The problems in the prior art that the deployment of the VPN service by manual configuration requires a lot of time, is error prone, complex in tunnel establishment, and poor in service expansion can be solved.

Description

一种SDN部署业务的方法和SDN控制器Method and SDN controller for SDN deployment service
本申请要求于2013年12月31日提交中国专利局、申请号为CN201310753129.5、发明名称为“一种SDN部署业务的方法和SDN控制器”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on December 31, 2013, the Chinese Patent Office, the application number is CN201310753129.5, and the invention is entitled "A method and SDN controller for SDN deployment service". The citations are incorporated herein by reference.
技术领域Technical field
本发明涉及网络通信领域,尤其涉及一种软件定义网络(Software Defined Network,简称SDN)部署业务的方法和SDN控制器。The present invention relates to the field of network communications, and in particular, to a software defined network (SDN) deployment service method and an SDN controller.
背景技术Background technique
虚拟专用网(Virtual Private Network,简称VPN)业务是网络运营商向客户提供的一种重要服务。目前在网络中建立VPN的主要方式是根据用户的需求,人工对运营商边缘(provider edge,简称PE)设备进行配置,在PEs之间建立VPN连接。The Virtual Private Network (VPN) service is an important service provided by network operators to customers. Currently, the main way to establish a VPN in the network is to manually configure the provider edge (PE) device and establish a VPN connection between the PEs.
网络运营商向用户提供VPN服务通常使用隧道来承载。一种常用的隧道是流量工程(Traffic Engineering,简称TE)隧道;TE隧道的优点是运营商能够控制隧道路径并实现带宽保证。目前在网络中建立TE隧道主要通过在路由器上进行人工配置,由TE隧道的头节点路由器进行最短路径优先(Shortest Path First,简称SPF)/约束最短路径优先(Constrained Shortest Path First,简称CSPF)计算得到隧道路径;或者,由TE隧道的头节点路由器作为路径计算客户端(Path Computation Client,简称PCC),向路径计算单元(Path Computation Element,简称PCE)发起路由计算请求,PCE返回路径计算结果给该TE隧道的头节点路由器,再由TE隧道的头节点路由器使用基于流量工程的资源预留协议(Resource Reservation Protocol-Traffic Engineering,简称RSVP-TE)进行TE隧道的建立。Network operators provide VPN services to users, which are usually carried by tunnels. A commonly used tunnel is a Traffic Engineering (TE) tunnel. The advantage of a TE tunnel is that the operator can control the tunnel path and implement bandwidth guarantee. At present, the establishment of a TE tunnel in the network is mainly performed by manually configuring the router on the router, and the shortest path first (SPF)/Constrained Shortest Path First (CSPF) calculation is performed by the head node router of the TE tunnel. The tunnel path is obtained. Alternatively, the head node router of the TE tunnel is used as a path Computation Client (PCC) to initiate a route calculation request to the Path Computation Element (PCE). The PCE returns the path calculation result. The head node router of the TE tunnel, and the head node router of the TE tunnel, uses the Resource Reservation Protocol-Traffic Engineering (RSVP-TE) to establish the TE tunnel.
但是,现有VPN部署需要人工配置,容易出现配置错误。 However, existing VPN deployments require manual configuration and are prone to configuration errors.
发明内容Summary of the invention
本发明实施例提供了一种SDN部署业务的方法、系统和SDN控制器,可以解决VPN业务部署需要人工配置,容易出现配置错误的问题。The embodiment of the invention provides a method, a system and an SDN controller for the SDN deployment service, which can solve the problem that the VPN service deployment needs manual configuration and is prone to configuration errors.
第一方面,提供了一种SDN部署业务的方法,包括:The first aspect provides a method for deploying a service by using an SDN, including:
SDN控制器接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括入口网络节点的信息和出口网络节点的信息;The SDN controller receives a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node;
所述SDN控制器向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;The SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter;
接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;Receiving a path calculation response returned by the PCE, where the path calculation response includes path information of the tunnel;
向所述入口网络节点通告所述隧道的路径信息。Notifying the path information of the tunnel to the ingress network node.
在第一方面的第一种可能实现方式中,所述向所述入口网络节点通告所述隧道的路径信息包括:In a first possible implementation manner of the first aspect, the notifying the path information of the tunnel to the ingress network node includes:
通过所述SDN控制器与所述入口网络节点建立的控制会话,将所述隧道的路径信息发送给所述入口网络节点。And transmitting, by the SDN controller, a control session established by the ingress network node to the ingress network node.
在第一方面的第二种可能实现方式中,所述向所述入口网络节点通告所述隧道的路径信息包括:In a second possible implementation manner of the first aspect, the notifying the path information of the tunnel to the ingress network node includes:
将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS向所述入口网络节点通告所述隧道的路径信息。Transmitting the path information of the tunnel to the network management system NMS, and advertising the path information of the tunnel to the ingress network node by using the NMS.
根据第一方面和第一方面的第一种和第二种可能实现方式中的任一种,在第一方面的第三种可能实现方式中,在向所述入口网络节点通告所述隧道的路径信息之后,所述方法还包括:接收所述入口网络节点反馈的业务部署结果。According to the first aspect and any one of the first and second possible implementations of the first aspect, in a third possible implementation of the first aspect, the tunnel is advertised to the ingress network node After the path information, the method further includes: receiving a service deployment result fed back by the ingress network node.
根据第一方面的第三种可能实现方式,在第一方面的第四种可能实现方式中,所述接收所述入口网络节点反馈的业务部署结果包括: According to a third possible implementation manner of the first aspect, in a fourth possible implementation manner of the first aspect, the service deployment result that is received by the ingress network node feedback includes:
通过SDN控制器与所述入口网络节点建立的控制会话,接收所述入口网络节点反馈的业务部署结果。And receiving, by the SDN controller, a control session established with the ingress network node, a service deployment result fed back by the ingress network node.
根据第一方面的第三种可能实现方式,在第一方面的第五种可能实现方式中,所述接收所述入口网络节点反馈的业务部署结果包括:According to a third possible implementation manner of the first aspect, in a fifth possible implementation manner of the first aspect, the service deployment result that is received by the ingress network node feedback includes:
通过网络管理系统NMS接收所述入口网络节点反馈的业务部署结果。The service deployment result fed back by the ingress network node is received by the network management system NMS.
第二方面,提供了一种SDN部署业务的方法,包括:In a second aspect, a method for deploying a SDN service is provided, including:
SDN控制器接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为虚拟专用网VPN业务;The SDN controller receives the service request from the upper layer application, where the service request includes a service type and a service parameter, and the service type is a virtual private network VPN service;
根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息;Obtaining, according to the service request, information about at least one carrier edge PE device corresponding to the VPN service;
根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;Determining service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
向所述至少一个PE设备通告所述业务部署信息。And advertise the service deployment information to the at least one PE device.
在第二方面的第一种可能实现方式中,所述业务参数包括至少一个用户边缘CE设备的信息;In a first possible implementation manner of the second aspect, the service parameter includes information of at least one user edge CE device;
所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:And the obtaining, by the service request, the information of the at least one PE device corresponding to the VPN service, including:
向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;Sending a policy query request to the policy module, where the policy query request includes information about the VPN service and the at least one CE device;
接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。And receiving, by the policy module, a query response that is allowed to establish the VPN service, where the query response includes information about the at least one PE device.
在第二方面的第二种可能实现方式中,所述业务参数包括所述至少一个PE设备的信息;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:从所述业务参数中获取所述至少一个PE设备 的信息。In a second possible implementation manner of the second aspect, the service parameter includes the information of the at least one PE device, and the acquiring, by the service request, the information of the at least one PE device corresponding to the VPN service, including: Obtaining the at least one PE device from the service parameter Information.
根据第二方面和第二方面的第一种和第二种可能实现方式中的任一种,在第二方面的第三种可能实现方式中,所述向所述至少一个PE设备通告所述业务部署信息包括:According to the second aspect and any one of the first and second possible implementations of the second aspect, in a third possible implementation of the second aspect, the advertised to the at least one PE device Business deployment information includes:
通过所述SDN控制器与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息。And transmitting, by the SDN controller, the service deployment information to the at least one PE device by using a control session established by the SDN controller and the at least one PE device.
根据第二方面和第二方面的第一种至第三种可能实现方式中的任一种,在第二方面的第四种可能实现方式中,所述向所述至少一个PE设备通告所述业务部署信息包括:According to the second aspect and any one of the first to third possible implementations of the second aspect, in a fourth possible implementation of the second aspect, the advertised to the at least one PE device Business deployment information includes:
将业务部署信息发送给网络管理系统NMS,通过所述NMS向所述至少一个PE设备发送所述业务部署信息。The service deployment information is sent to the network management system (NMS), and the service deployment information is sent to the at least one PE device by using the NMS.
根据第二方面和第二方面的第一种至第四种可能实现方式中的任一种,在第二方面的第五种可能实现方式中,在向所述至少一个PE设备通告所述业务部署信息之后,还包括:接收所述至少一个PE设备反馈的业务部署结果。According to the second aspect and any one of the first to fourth possible implementations of the second aspect, in a fifth possible implementation of the second aspect, the service is advertised to the at least one PE device After the information is deployed, the method further includes: receiving a service deployment result fed back by the at least one PE device.
根据第二方面的第五种可能实现方式,在第二方面的第六种可能实现方式中,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过所述SDN控制器与所述至少一个PE设备建立的控制会话,接收所述至少一个PE设备反馈的业务部署结果。According to a fifth possible implementation manner of the second aspect, in a sixth possible implementation manner of the second aspect, the receiving, by the SDN controller, the service deployment result that is received by the at least one PE device The control session established by the at least one PE device receives the service deployment result fed back by the at least one PE device.
根据第二方面的第五种可能实现方式,在第二方面的第七种可能实现方式中,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过网络管理系统NMS接收所述至少一个PE设备反馈的业务部署结果。According to a fifth possible implementation manner of the second aspect, in a seventh possible implementation manner of the second aspect, the receiving, by the network management system, the NMS, the service deployment result The result of the service deployment fed back by a PE device.
根据第二方面和第二方面的第一种至第七种可能实现方式中的任一种,在第二方面的第八种可能实现方式中,所述方法还包括:根据所述业务部署信息,为所述VPN业务关联或建立隧道。According to the second aspect and any one of the first to seventh possible implementation manners of the second aspect, in an eighth possible implementation manner of the second aspect, the method further includes: deploying information according to the service , associating or establishing a tunnel for the VPN service.
根据第二方面和第二方面的第一种至第八种可能实现方式中的任一 种,在第二方面的第九种可能实现方式中,所述业务参数还包括如下任意一种或多种的组合:时延,带宽,保护条件,和服务优先级;Any of the first to eighth possible implementations according to the second aspect and the second aspect The ninth possible implementation manner of the second aspect, the service parameter further includes any one or more of the following combinations: delay, bandwidth, protection condition, and service priority;
所述根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息,包括:Determining the service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter, including:
根据所述至少一个PE设备的信息和所述业务参数,生成所述VPN业务对应的逻辑拓扑;Generating a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
根据所述逻辑拓扑确定所述至少一个PE设备的业务部署信息。Determining service deployment information of the at least one PE device according to the logical topology.
根据第二方面和第二方面的第一种至第九种可能实现方式中的任一种,在第二方面的第十种可能实现方式中,According to the second aspect and any one of the first to ninth possible implementations of the second aspect, in a tenth possible implementation of the second aspect,
所述VPN业务类型为虚拟电路VC;相应地,所述至少一个PE包括第一PE设备和第二PE设备;The VPN service type is a virtual circuit VC; correspondingly, the at least one PE includes a first PE device and a second PE device;
或者,所述VPN业务类型为虚拟网络VN;相应地,所述至少一个PE设备包括第一PE设备、第二PE设备和第三PE设备;Or the VPN service type is a virtual network VN; correspondingly, the at least one PE device includes a first PE device, a second PE device, and a third PE device;
或者,所述VPN业务类型为虚拟树VT;相应地,所述至少一个PE设备包括根PE设备和至少一个叶子PE设备。Alternatively, the VPN service type is a virtual tree VT; correspondingly, the at least one PE device includes a root PE device and at least one leaf PE device.
第三方面,提供了一种SDN控制器,包括:In a third aspect, an SDN controller is provided, including:
业务请求接收模块,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括入口网络节点的信息和出口网络节点的信息;a service request receiving module, configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node. ;
路径计算客户端PCC,用于向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;并接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;a path calculation client PCC, configured to send a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter; and receive a path calculation response returned by the PCE, where the path calculation The path information of the tunnel is included in the response;
发送模块,用于向所述入口网络节点通告所述隧道的路径信息。And a sending module, configured to advertise the path information of the tunnel to the ingress network node.
在第三方面的第一种可能实现方式中,所述SDN控制器还包括:In a first possible implementation manner of the third aspect, the SDN controller further includes:
结果接收模块,用于接收所述入口网络节点反馈的业务部署结果。 The result receiving module is configured to receive a service deployment result fed back by the ingress network node.
根据第三方面的第一种可能实现方式,在第三方面的第二种可能实现方式中,所述发送模块具体用于通过所述SDN控制器与所述入口网络节点之间的控制会话,将所述隧道的路径信息发送给所述入口网络节点;According to a first possible implementation manner of the third aspect, in a second possible implementation manner of the third aspect, the sending module is specifically configured to use a control session between the SDN controller and the ingress network node, Sending path information of the tunnel to the ingress network node;
相应地,所述结果接收模块,具体用于通过所述控制会话,接收所述入口网络节点反馈的业务部署结果。Correspondingly, the result receiving module is configured to receive, by using the control session, a service deployment result fed back by the ingress network node.
根据第三方面的第一种可能实现方式,在第三方面的第三种可能实现方式中,所述发送模块具体用于将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS向所述入口网络节点通告所述隧道的路径信息;According to a first possible implementation manner of the third aspect, in a third possible implementation manner of the third aspect, the sending module is configured to send path information of the tunnel to a network management system (NMS), by using the NMS Notifying the ingress network node of path information of the tunnel;
相应地,所述结果接收模块,具体用于通过所述NMS接收所述入口网络节点反馈的业务部署结果。Correspondingly, the result receiving module is specifically configured to receive, by using the NMS, a service deployment result fed back by the ingress network node.
第四方面,提供了一种SDN控制器,包括:In a fourth aspect, an SDN controller is provided, including:
业务请求接收模块,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为虚拟专用网VPN业务;a service request receiving module, configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a virtual private network VPN service;
设备信息获取模块:用于根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息;a device information acquiring module, configured to acquire information of at least one carrier edge PE device corresponding to the VPN service according to the service request;
部署确定模块,用于根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;a deployment determining module, configured to determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
发送模块,用于向所述至少一个PE设备通告所述业务部署信息。And a sending module, configured to notify the at least one PE device of the service deployment information.
在第四方面的第一种可能实现方式中,所述业务参数包括至少一个用户边缘CE设备的信息;In a first possible implementation manner of the fourth aspect, the service parameter includes information of at least one user edge CE device;
所述设备信息获取模块,具体用于向策略模块发送策略查询请求,所述策略查询请求中包括所述应用请求者的信息、所述VPN业务和所述至少一个CE设备的信息;接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。The device information obtaining module is specifically configured to send a policy query request to the policy module, where the policy query request includes information of the application requester, the VPN service, and information of the at least one CE device; The query response returned by the policy module is allowed to establish the VPN service, and the query response includes information of the at least one PE device.
根据第四方面的第一种可能实现方式,在第四方面的第二种可能实现 方式中,所述业务参数包括所述至少一个PE设备的信息;所述设备信息获取模块,具体用于从所述业务参数中获取所述至少一个PE设备的信息。According to a first possible implementation of the fourth aspect, the second possible implementation in the fourth aspect In the mode, the service parameter includes information of the at least one PE device, and the device information acquiring module is specifically configured to obtain information of the at least one PE device from the service parameter.
根据第四方面和第四方面的第一种和第二种可能实现方式中的任一种,在第四方面的第三种可能实现方式中,所述SDN控制器还包括:结果接收模块,用于接收所述至少一个PE设备反馈的业务部署结果。According to the fourth aspect and any one of the first and second possible implementation manners of the fourth aspect, in a third possible implementation manner of the fourth aspect, the SDN controller further includes: a result receiving module, A service deployment result for receiving feedback from the at least one PE device.
根据第四方面的第三种可能实现方式,在第四方面的第四种可能实现方式中,所述发送模块具体用于通过所述SDN控制器与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息;According to a third possible implementation manner of the fourth aspect, in a fourth possible implementation manner of the fourth aspect, the sending module is specifically configured to be used by the SDN controller to establish a control session with the at least one PE device. Sending the service deployment information to the at least one PE device;
相应地,所述结果接收模块,具体用于通过所述控制会话,接收所述至少一个PE设备反馈的业务部署结果。Correspondingly, the result receiving module is configured to receive, by using the control session, a service deployment result fed back by the at least one PE device.
根据第四方面的第三种可能实现方式,在第四方面的第五种可能实现方式中,所述发送模块具体用于将所述业务部署信息发送给网络管理系统NMS,通过所述NMS向所述至少一个PE设备发送所述业务部署信息;According to a third possible implementation manner of the fourth aspect, in a fifth possible implementation manner of the fourth aspect, the sending module is configured to send the service deployment information to a network management system (NMS), by using the NMS Transmitting, by the at least one PE device, the service deployment information;
相应地,所述结果接收模块,具体用于通过所述NMS接收所述至少一个PE设备反馈的业务部署结果。Correspondingly, the result receiving module is configured to receive, by using the NMS, a service deployment result fed back by the at least one PE device.
根据第四方面和第四方面的第一种至第五种可能实现方式中的任一种,在第四方面的第六种可能实现方式中,所述SDN控制器还包括:隧道确定模块,用于根据所述业务部署信息,为所述VPN业务关联或建立隧道。According to the fourth aspect, the any one of the first to fifth possible implementation manners of the fourth aspect, in a sixth possible implementation manner of the fourth aspect, the SDN controller further includes: a tunnel determining module, And configured to associate or establish a tunnel for the VPN service according to the service deployment information.
根据第四方面和第四方面的第一种至第六种可能实现方式中的任一种,在第四方面的第七种可能实现方式中,所述业务参数还包括如下任意一种或多种的组合:时延,带宽,保护条件,和服务优先级;According to the fourth aspect and any one of the first to sixth possible implementation manners of the fourth aspect, in the seventh possible implementation manner of the fourth aspect, the service parameter further includes any one or more of the following Combination of: delay, bandwidth, protection conditions, and service priority;
所述部署确定模块,具体用于根据所述至少一个PE设备的信息和所述业务参数,生成所述VPN业务对应的逻辑拓扑;根据所述逻辑拓扑确定所述至少一个PE设备的业务部署信息。The deployment determining module is configured to generate a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter, and determine service deployment information of the at least one PE device according to the logical topology. .
根据第四方面和第四方面的第一种至第七种可能实现方式中的任一 种,在第四方面的第八种可能实现方式中,所述VPN业务类型为虚拟电路VC;相应地,所述若干PE设备包括第一PE设备和第二PE设备;Any of the first to seventh possible implementations according to the fourth aspect and the fourth aspect The eighth possible implementation manner of the fourth aspect, the VPN service type is a virtual circuit VC; correspondingly, the several PE devices include a first PE device and a second PE device;
或者,所述VPN业务类型为虚拟网络VN;相应地,所述若干PE设备包括第一PE设备、第二PE设备和第三PE设备;Or the VPN service type is a virtual network VN; correspondingly, the plurality of PE devices include a first PE device, a second PE device, and a third PE device;
或者,所述VPN业务类型为虚拟树VT;相应地,所述若干PE节点包括根PE设备和至少一个叶子PE设备。Alternatively, the VPN service type is a virtual tree VT; correspondingly, the several PE nodes include a root PE device and at least one leaf PE device.
第五方面,提供一种SDN部署业务的系统,包括SDN控制器和上层应用;A fifth aspect provides a system for SDN deployment services, including an SDN controller and an upper layer application;
所述SDN控制器,用于接收所述上层应用的业务请求,所述业务请求中包括业务类型和业务参数;根据所述业务请求为所述上层应用部署所述业务类型对应的业务。The SDN controller is configured to receive a service request of the upper layer application, where the service request includes a service type and a service parameter, and the service corresponding to the service type is deployed for the upper layer application according to the service request.
在第五方面的第一种可能实现方式中,所述业务类型为隧道;所述业务参数包括隧道的入口网络节点和出口网络节点的信息;所述SDN控制器如上述第三方面或第三方面的任一可能实现方式;所述系统还包括所述入口网络节点,所述出口网络节点,以及路径计算单元PCE。In a first possible implementation manner of the fifth aspect, the service type is a tunnel; the service parameter includes information about an ingress network node and an egress network node of the tunnel; and the SDN controller is the third aspect or the third Any possible implementation of the aspect; the system further comprising the ingress network node, the egress network node, and a path computation unit PCE.
在第五方面的第二种可能实现方式中,所述业务类型为VPN业务;所述业务参数包括至少一个CE设备的信息,或者所述VPN业务对应的至少一个PE设备的信息;所述SDN控制器如上述第四方面或第四方面的任一可能实现方式;所述系统还包括所述至少一个PE设备。In a second possible implementation manner of the fifth aspect, the service type is a VPN service, where the service parameter includes information of at least one CE device, or information of at least one PE device corresponding to the VPN service; A controller, as in any one of the foregoing fourth or fourth aspect, wherein the system further comprises the at least one PE device.
本发明实施例提供的SDN部署业务的方法,SDN控制器接收来自上层应用的业务请求,对业务类型为隧道的业务请求通过与PCE交互,获得隧道的路径信息,并通告给隧道的入口网络节点,完成隧道的建立;对业务类型为VPN业务的业务请求,获得该VPN业务对应的多个PE节点的信息,并将业务部署信息通告给所述多个PE设备,完成VPN业务的建立。对来自上层应用的业务请求,无需人工配置,就可以快速完成隧道或VPN业 务的建立,解决了现有技术中,通过人工配置部署隧道或VPN业务,易出错的问题。In the SDN deployment service method provided by the embodiment of the present invention, the SDN controller receives the service request from the upper layer application, and the service request of the service type is a tunnel, and the device information is obtained through the interaction with the PCE to obtain the path information of the tunnel and advertised to the ingress network node of the tunnel. The establishment of the tunnel is completed; the service request of the VPN service is obtained, the information of the multiple PE nodes corresponding to the VPN service is obtained, and the service deployment information is advertised to the multiple PE devices to complete the establishment of the VPN service. For service requests from upper-layer applications, tunnels or VPNs can be completed quickly without manual configuration. The establishment of the service solves the problem that the tunnel or the VPN service is manually configured to be error-prone in the prior art.
附图说明DRAWINGS
图1是本发明实施例提供的一种SDN部署业务的系统示意图;FIG. 1 is a schematic diagram of a system for an SDN deployment service according to an embodiment of the present invention;
图2是本发明实施例提供的一种SDN部署业务的方法流程图;2 is a flowchart of a method for deploying an SDN according to an embodiment of the present invention;
图3是本发明实施例提供的另一种SDN部署业务的方法流程图;FIG. 3 is a flowchart of another method for deploying an SDN according to an embodiment of the present invention;
图4是本发明实施例提供的一种SDN控制器的结构示意图;4 is a schematic structural diagram of an SDN controller according to an embodiment of the present invention;
图5是本发明实施例提供的另一种SDN控制器的结构示意图;FIG. 5 is a schematic structural diagram of another SDN controller according to an embodiment of the present disclosure;
图6是本发明实施例提供的又一种SDN控制器的结构示意图6 is a schematic structural diagram of another SDN controller according to an embodiment of the present invention.
图7是本发明实施例提供的再一种SDN控制器的结构示意图。FIG. 7 is a schematic structural diagram of still another SDN controller according to an embodiment of the present invention.
具体实施方式detailed description
为使本发明实施例的上述目的、特征和优点能够更加明显易懂,下面结合附图和具体实施方式对本发明实施例作进一步详细的说明。The above described objects, features, and advantages of the embodiments of the present invention will become more apparent and understood.
软件定义网络(software defined network,简称SDN)是一种新型网络架构,通过定义SDN层、SDN层与上层应用(application)的接口、以及SDN层和下层网络之间的接口,为应用层提供易于部署和扩展的网络服务。Software defined network (SDN) is a new type of network architecture. It provides easy application layer by defining the interface between SDN layer, SDN layer and upper application, and the interface between SDN layer and lower layer network. Deployed and extended network services.
参见图1,为本发明实施例提供的SDN部署业务的系统,包括SDN控制器和上层应用。SDN控制器接收来自上层应用的业务请求,所述业务请求中包括业务参数和业务类型,例如VPN,隧道等;并根据所述业务请求部署所述业务类型对应的业务。Referring to FIG. 1 , a system for an SDN deployment service according to an embodiment of the present invention includes an SDN controller and an upper layer application. The SDN controller receives a service request from an upper-layer application, where the service request includes a service parameter and a service type, such as a VPN, a tunnel, and the like, and deploys a service corresponding to the service type according to the service request.
如图1所示,所述系统还包括PE设备;可选地,还包括PCE和策略模块。进一步可选地,还包括网络管理系统(network management system,简称NMS)。 As shown in FIG. 1, the system further includes a PE device; optionally, a PCE and a policy module. Further optionally, a network management system (NMS) is also included.
所述PCE,用于为所述SDN控制器提供路径计算服务。The PCE is configured to provide a path calculation service for the SDN controller.
所述策略模块,用于为所述SDN控制器提供策略服务,例如业务权限控制等。所述策略模块可以与所述SDN控制器位于不同网络设备上,例如所述策略模块由专门的服务器实现;所述策略模块也可以与所述SDN控制器位于同一个网络设备上。接下来将详细介绍本发明实施例提供的SDN部署业务的方法,和所述SDN控制器。The policy module is configured to provide a policy service, such as a service authority control, for the SDN controller. The policy module may be located on a different network device from the SDN controller, for example, the policy module is implemented by a dedicated server; the policy module may also be located on the same network device as the SDN controller. The method of the SDN deployment service provided by the embodiment of the present invention and the SDN controller are described in detail.
参见图2,为本发明实施例提供的一种SDN部署业务的方法,包括:FIG. 2 is a schematic diagram of a method for deploying an SDN according to an embodiment of the present invention, including:
201、SDN控制器接收来自上层应用的业务请求;201. The SDN controller receives a service request from an upper layer application.
所述业务请求中包括业务类型和业务参数,其中所述业务类型为隧道,所述业务参数包括隧道的入口网络节点和出口网络节点的信息,例如隧道的入口网络节点的网际协议(Internet Protocol,简称IP)地址、出口节点的IP地址。The service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and an egress network node of the tunnel, for example, an internet protocol of an ingress network node of the tunnel (Internet Protocol, Referred to as IP) address, the IP address of the egress node.
所述隧道可以为TE隧道。The tunnel can be a TE tunnel.
202、所述SDN控制器向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;202. The SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter.
所述业务参数还可以包括:路径约束信息;例如路径的跳数,路径的代价值,必须经过的网络节点,不能经过的网络节点等等。The service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
进一步地,所述业务参数还可以包括时延,带宽,保护条件中的一种或多种。Further, the service parameter may further include one or more of a delay, a bandwidth, and a protection condition.
203、接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;203. Receive a path calculation response returned by the PCE, where the path calculation response includes path information of the tunnel.
所述PCE收到所述SDN的路径计算请求之后,根据所述入口节点的信息和所述出口节点的信息,进一步还可以根据路径约束信息、时延、带宽、保护条件等为所述隧道计算路径。After receiving the path calculation request of the SDN, the PCE may further calculate, according to the path constraint information, the delay, the bandwidth, the protection condition, etc., according to the information of the ingress node and the information of the egress node. path.
所述路径计算响应中包括所述隧道的路径信息;所述隧道的路径信息 中包括所述隧道经过的完整路径信息或部分路径信息,例如隧道经过的所有或部分网络节点的IP地址;可选地,所述隧道的路径信息中还可以包括预留的带宽,路径的代价值等。The path calculation response includes path information of the tunnel; path information of the tunnel The complete path information or partial path information of the tunnel is included, for example, the IP address of all or part of the network nodes through which the tunnel passes; optionally, the path information of the tunnel may further include reserved bandwidth, and the path generation Value and so on.
所述SDN控制器和所述PCE之间,可以采用PCE与PCC之间的路径计算协议(PCE Communication Protocol,简称PCEP)通信。A PCE Communication Protocol (PCEP) communication between the PCE and the PCC may be used between the SDN controller and the PCE.
204、向所述入口网络节点通告所述隧道的路径信息;204. Notifying the ingress network node of path information of the tunnel.
所述SDN控制器向所述隧道的入口网络节点通告所述隧道的路径信息,可选地,还控制所述入口网络节点根据所述隧道的路径信息建立隧道。The SDN controller advertises the path information of the tunnel to the ingress network node of the tunnel, and optionally also controls the ingress network node to establish a tunnel according to the path information of the tunnel.
具体地,所述入口网络节点可以通过RSVP-TE信令携带所述隧道路径信息,完成所述隧道的建立。Specifically, the ingress network node may carry the tunnel path information by using RSVP-TE signaling to complete establishment of the tunnel.
进一步地,在向所述入口网络节点通告所述隧道的路径信息之后,所述方法还可以包括:接收所述入口网络节点反馈的业务部署结果。具体地,所述入口网络节点向所述SDN控制器反馈所述隧道的建立结果和状态等信息。Further, after the path information of the tunnel is advertised to the ingress network node, the method may further include: receiving a service deployment result fed back by the ingress network node. Specifically, the ingress network node feeds back information about the establishment result and status of the tunnel to the SDN controller.
可选地,所述向所述入口网络节点通告所述隧道路径信息包括:通过所述SDN控制器与所述入口网络节点之间建立的控制会话,将所述隧道的路径信息发送给所述入口网络节点,并控制所述入口网络节点根据所述隧道的路径信息建立所述隧道。相应地,所述接收所述入口网络节点反馈的业务部署结果包括:通过所述控制会话,接收所述入口网络节点反馈的业务部署结果。Optionally, the advertise the tunnel path information to the ingress network node, including: transmitting, by using a control session established between the SDN controller and the ingress network node, path information of the tunnel to the Initiating a network node and controlling the ingress network node to establish the tunnel according to path information of the tunnel. Correspondingly, the receiving the service deployment result fed back by the ingress network node comprises: receiving, by using the control session, a service deployment result fed back by the ingress network node.
可选地,所述向所述入口网络节点通告所述隧道的路径信息包括:将所述隧道路径信息发送给网络管理系统(network management system,简称NMS),通过所述NMS向所述入口网络节点发送所述隧道的路径信息;具体地,所述NMS可以对所述入口网络节点进行配置,向所述入口网络节点发送所述隧道的路径信息,并指令所述入口网络节点建立所述隧道。相应地,所述接收所述入口网络节点反馈的业务部署结果包括:通过所述 NMS接收所述入口网络节点反馈的业务部署结果。具体地,NMS可以通过网络管理和配置机制,例如简单网络管理协议(simple network management protocol,简称SNMP),网络配置协议(netconf)与所述入口网络节点通信,对所述入口网络节点进行管理和控制:向所述入口网络节点发送所述隧道的路径信息,并指令所述入口网络节点建立所述隧道。Optionally, the advertise the path information of the tunnel to the ingress network node, including: sending the tunnel path information to a network management system (NMS), to the ingress network by using the NMS Sending, by the node, path information of the tunnel; specifically, the NMS may configure the ingress network node, send path information of the tunnel to the ingress network node, and instruct the ingress network node to establish the tunnel . Correspondingly, the receiving the service deployment result fed back by the ingress network node includes: The NMS receives the service deployment result fed back by the ingress network node. Specifically, the NMS can communicate with the ingress network node by using a network management and configuration mechanism, such as a simple network management protocol (SNMP), and a network configuration protocol (netconf) to manage the ingress network node. Control: transmitting path information of the tunnel to the ingress network node, and instructing the ingress network node to establish the tunnel.
本发明实施例提供的SDN部署业务的方法,SDN控制器接收来自上层应用的建立隧道的业务请求,通过与PCE交互,获得隧道的路径信息,并通告给隧道的入口网络节点,完成隧道的建立;无需人工配置,可以快速响应建立隧道的业务请求,提高隧道业务的扩展性,并且可以避免人工配置容易出错的问题。In the SDN deployment service method provided by the embodiment of the present invention, the SDN controller receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel. Without manual configuration, it can quickly respond to the service request for establishing a tunnel, improve the scalability of the tunnel service, and avoid the problem of manual configuration being error-prone.
参见图3,为本发明实施例提供的另一种SDN部署业务的方法,包括:FIG. 3 is a schematic diagram of another SDN deployment service method according to an embodiment of the present invention, including:
301、SDN控制器接收来自上层应用的业务请求;301. The SDN controller receives a service request from an upper layer application.
所述业务请求中包括业务类型和业务参数;其中,所述业务类型为VPN业务。The service request includes a service type and a service parameter, where the service type is a VPN service.
VPN业务包括虚拟电路(virtual circuit,简称VC),虚拟网络(virtual network,简称VN),虚拟树(virtual tree,简称VT)。The VPN service includes a virtual circuit (VC), a virtual network (VN), and a virtual tree (VT).
302、根据所述业务请求,获取所述VPN业务对应的至少一个PE设备的信息;302. Acquire, according to the service request, information about at least one PE device corresponding to the VPN service.
可选地,所述业务参数包括至少一个用户边缘(customer edge,简称CE)设备的信息,例如CE设备的IP地址;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:Optionally, the service parameter includes information of at least one customer edge (CE) device, such as an IP address of the CE device, and the at least one PE device corresponding to the VPN service is obtained according to the service request. Information, including:
向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;Sending a policy query request to the policy module, where the policy query request includes information about the VPN service and the at least one CE device;
接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。进一步可选地,所述策略 查询请求中还包括所述上层应用的用户信息,例如用户名,身份标识等;所述策略模块根据所述用户信息判断是否允许建立所述VPN业务;具体地,所述策略模块根据所述用户信息,获取所述用户的权限,以判断是否允许建立所述VPN业务。如果所述策略模块判定允许建立所述VPN业务,则所述策略模块获取所述VPN业务对应的至少一个PE设备的信息;如果所述策略模块判定不允许建立所述VPN业务,则所述策略模块向所述SDN控制器返回不允许建立VPN业务的查询响应。And receiving, by the policy module, a query response that is allowed to establish the VPN service, where the query response includes information about the at least one PE device. Further optionally, the strategy The query request includes the user information of the upper layer application, such as a user name, an identity, and the like; the policy module determines, according to the user information, whether to allow the VPN service to be established; specifically, the policy module is based on the user. The information is obtained by the user to determine whether the VPN service is allowed to be established. If the policy module determines that the VPN service is allowed to be established, the policy module acquires information about the at least one PE device corresponding to the VPN service; if the policy module determines that the VPN service is not allowed to be established, the policy The module returns a query response to the SDN controller that does not allow establishment of a VPN service.
可选地,所述业务参数包括所述至少一个PE设备的信息;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:从所述业务参数中获取所述至少一个PE设备的信息。Optionally, the service parameter includes the information of the at least one PE device, and the acquiring the information of the at least one PE device corresponding to the VPN service according to the service request, including: obtaining the Information about at least one PE device.
若所述VPN业务为VC,则所述至少一个PE设备包括第一PE设备和第二PE设备;If the VPN service is a VC, the at least one PE device includes a first PE device and a second PE device;
若所述VPN业务为VN,则所述至少一个PE节点包括第一PE设备、第二PE设备和第三PE设备;当然可能还包括第四PE设备,第五PE设备等。If the VPN service is a VN, the at least one PE node includes a first PE device, a second PE device, and a third PE device; and of course, the fourth PE device, the fifth PE device, and the like.
若所述VPN业务为VT,则所述至少一个PE设备包括根PE设备和至少一个叶子PE设备。If the VPN service is a VT, the at least one PE device includes a root PE device and at least one leaf PE device.
所述策略模块可能与所述SDN控制器分别位于不同网络设备上,也可能位于同一个网络设备上。The policy module may be located on a different network device than the SDN controller, or may be located on the same network device.
303、根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;303. Determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter.
可选地,所述业务参数还包括如下任意一种或多种的组合:时延,带宽,保护条件,和服务优先级;所述SDN控制器根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;具体地,所述SDN控制器可以根据所述至少一个PE设备的信息和所述业务参数,形成所述VPN业务对应的逻辑拓扑,根据所述逻辑拓扑确定所述 VPN业务对应的业务部署信息;具体地,根据所述逻辑拓扑得到所述至少一个PE设备中每个PE设备的部署信息,从而确定所述VPN业务对应的业务部署信息。Optionally, the service parameter further includes any one or more of the following: a delay, a bandwidth, a protection condition, and a service priority; the SDN controller is configured according to the information of the at least one PE device The service parameter determines the service deployment information corresponding to the VPN service; specifically, the SDN controller may form a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter, according to the Logical topology determination The service deployment information corresponding to the VPN service. Specifically, the deployment information of each of the at least one PE device is obtained according to the logical topology, so that the service deployment information corresponding to the VPN service is determined.
304、向所述至少一个PE设备通告所述业务部署信息,以完成VPN业务部署。304. The service deployment information is advertised to the at least one PE device to complete VPN service deployment.
进一步地,所述SDN控制器可以根据所述VPN业务对应的业务部署信息,为所述VPN业务关联已建立的满足所述VPN业务要求的隧道;或者,可以根据所述VPN业务对应的业务部署信息,采用本发明图2所示的方法为所述VPN业务建立隧道。Further, the SDN controller may associate, according to the service deployment information corresponding to the VPN service, the established tunnel that meets the requirements of the VPN service, or may be deployed according to the service corresponding to the VPN service. The information is used to establish a tunnel for the VPN service by using the method shown in FIG. 2 of the present invention.
进一步地,在向所述至少一个PE设备通告所述业务部署信息之后,所述方法还可以包括:接收所述至少一个PE设备反馈的业务部署结果。具体地,所述至少一个PE设备中每个PE设备向所述SDN控制器反馈VPN业务建立结果和状态等信息。Further, after the service deployment information is advertised to the at least one PE device, the method may further include: receiving a service deployment result fed back by the at least one PE device. Specifically, each of the at least one PE device feeds back information such as a VPN service establishment result and a status to the SDN controller.
可选地,所述向所述至少一个PE设备通告所述业务部署信息包括:通过所述SDN控制器与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息。相应地,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过与所述至少一个PE设备建立的所述控制会话,接收所述至少一个PE设备反馈的业务部署结果。Optionally, the advertising the service deployment information to the at least one PE device comprises: sending the service to the at least one PE device by using a control session established by the SDN controller and the at least one PE device Deployment information. Correspondingly, the service deployment result that is received by the at least one PE device comprises: receiving, by the control session established with the at least one PE device, a service deployment result fed back by the at least one PE device.
可选地,所述向所述至少一个PE设备通告所述业务部署信息包括:将所述业务部署信息发送给网络管理系统NMS,通过所述NMS向所述至少一个PE设备发送所述业务部署信息。相应地,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过所述NMS接收所述至少一个PE设备反馈的业务部署结果。具体地,所述NMS可以通过网管配置机制,例如SNMP,netconf等,与所述至少一个PE设备通信。Optionally, the advertise the service deployment information to the at least one PE device, including: sending the service deployment information to a network management system (NMS), and sending the service deployment to the at least one PE device by using the NMS information. Correspondingly, the service deployment result that is received by the at least one PE device is received by the NMS, and the service deployment result fed back by the at least one PE device is received by the NMS. Specifically, the NMS can communicate with the at least one PE device through a network management configuration mechanism, such as SNMP, netconf, and the like.
本发明实施例提供的SDN部署业务的方法,SDN控制器接收来自上层应用的建立VPN的业务请求,获得VPN业务对应的多个PE设备的信 息,并将业务部署信息通告给所述多个PE设备,完成VPN业务的建立;无需人工配置,可以快速完成VPN业务的建立,提高了VPN业务的扩展性,且可以避免人工配置实时性差、容易出错的问题。The SDN deployment service method provided by the embodiment of the present invention, the SDN controller receives a service request for establishing a VPN from an upper layer application, and obtains a letter of multiple PE devices corresponding to the VPN service. And the service deployment information is advertised to the plurality of PE devices to complete the establishment of the VPN service; without manual configuration, the VPN service can be quickly established, the scalability of the VPN service is improved, and the manual configuration can be avoided. An error-prone problem.
如图4所示,本发明实施例提供了一种SDN控制器,用于实现本发明图2所示的SDN部署业务的方法。所述SDN控制器包括:As shown in FIG. 4, an embodiment of the present invention provides an SDN controller, which is used to implement the SDN deployment service shown in FIG. 2 of the present invention. The SDN controller includes:
业务请求接收模块401,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括所述隧道的入口网络节点和出口网络节点的信息,例如,隧道的入口网络节点的IP地址和出口网络节点的IP地址;The service request receiving module 401 is configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes an ingress network node and an egress network of the tunnel. Information about the node, for example, the IP address of the ingress network node of the tunnel and the IP address of the egress network node;
路径计算客户端PCC 402,用于向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;并接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;a path calculation client PCC 402, configured to send a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter; and receive a path calculation response returned by the PCE, the path Calculating path information including the tunnel in the response;
发送模块403,用于向所述入口网络节点通告所述隧道的路径信息;a sending module 403, configured to notify the ingress network node of path information of the tunnel;
可选地,所述SDN控制器还控制所述入口网络节点根据所述隧道的路径信息建立隧道。具体地,所述入口网络节点可以通过RSVP-TE信令携带所述隧道路径信息,完成所述隧道的建立。Optionally, the SDN controller further controls the ingress network node to establish a tunnel according to the path information of the tunnel. Specifically, the ingress network node may carry the tunnel path information by using RSVP-TE signaling to complete establishment of the tunnel.
所述隧道可以为TE隧道。The tunnel can be a TE tunnel.
所述SDN控制器和所述PCE之间,可以采用PCEP通信。Between the SDN controller and the PCE, PCEP communication may be employed.
所述业务参数还可以包括:路径约束信息;例如路径的跳数,路径的代价值,必须经过的网络节点,不能经过的网络节点等等。The service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
进一步地,所述业务参数还可以包括时延,带宽,保护条件等。Further, the service parameter may further include a delay, a bandwidth, a protection condition, and the like.
所述PCE收到所述SDN的路径计算请求之后,根据所述入口网络节点的信息和所述出口网络节点的信息,进一步还可以根据路径约束信息、时延、带宽、保护条件等为所述隧道计算路径。 After receiving the path calculation request of the SDN, the PCE may further perform the path constraint information, the delay, the bandwidth, the protection condition, etc. according to the information of the ingress network node and the information of the egress network node. The tunnel calculates the path.
所述隧道的路径信息中包括所述隧道经过的完整路径信息或部分路径信息,例如隧道经过的所有或部分网络节点的IP地址;可选地,所述隧道的路径信息中还可以包括预留的带宽,路径的代价值等。The path information of the tunnel includes the complete path information or the partial path information of the tunnel, for example, the IP address of all or part of the network nodes through which the tunnel passes; optionally, the path information of the tunnel may further include a reservation. Bandwidth, the value of the path, etc.
进一步地,所述SDN控制器还包括:结果接收模块,用于接收所述入口网络节点反馈的业务部署结果。Further, the SDN controller further includes: a result receiving module, configured to receive a service deployment result fed back by the ingress network node.
所述发送模块具体用于通过与所述入口网络节点之间的控制会话,将所述隧道的路径信息发送给所述入口网络节点;相应地,所述结果接收模块,具体用于通过所述控制会话,接收所述入口网络节点反馈的业务部署结果。The sending module is specifically configured to send the path information of the tunnel to the ingress network node by using a control session with the ingress network node; correspondingly, the result receiving module is specifically configured to pass the Controlling a session, receiving a service deployment result fed back by the ingress network node.
或者,所述发送模块具体用于将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS向所述入口网络节点发送所述隧道的路径信息;相应地,所述结果接收模块,具体用于通过所述NMS接收所述入口网络节点反馈的业务部署结果。Or the sending module is specifically configured to send the path information of the tunnel to the network management system NMS, and send the path information of the tunnel to the ingress network node by using the NMS; correspondingly, the result receiving module, Specifically, the service deployment result fed back by the ingress network node is received by the NMS.
本发明实施例提供的SDN控制器,接收来自上层应用的建立隧道的业务请求,通过与PCE交互,获得隧道的路径信息,并通告给隧道的入口网络节点,完成隧道的建立;无需人工配置,就可以快速完成隧道的建立,建立隧道的方式简单快捷,提高了隧道业务的扩展性,且可以避免人工配置容易出错的问题。The SDN controller provided by the embodiment of the present invention receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel; no manual configuration is required. The tunnel can be established quickly, and the way to establish a tunnel is simple and fast, which improves the scalability of the tunnel service and avoids the problem of manual configuration being error-prone.
如图5所示,本发明实施例提供了另一种SDN控制器,用于实现本发明图3所示的SDN部署业务的方法。所述SDN控制器包括:As shown in FIG. 5, an embodiment of the present invention provides another SDN controller, which is used to implement the SDN deployment service shown in FIG. 3 of the present invention. The SDN controller includes:
业务请求接收模块501,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数;所述业务类型为虚拟专用网VPN业务;The service request receiving module 501 is configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter; and the service type is a virtual private network VPN service;
设备信息获取模块502:用于根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息; The device information obtaining module 502 is configured to obtain, according to the service request, information about at least one carrier edge PE device corresponding to the VPN service;
部署确定模块503,用于根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;The deployment determining module 503 is configured to determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter.
发送模块504,用于向所述至少一个PE设备通告所述业务部署信息。The sending module 504 is configured to advertise the service deployment information to the at least one PE device.
所述VPN业务包括VC,VN,VT。所述业务参数还可以包括时延,带宽,保护条件,服务优先级等。The VPN service includes VC, VN, and VT. The service parameters may also include delay, bandwidth, protection conditions, service priority, and the like.
若所述VPN业务为VC,则所述至少一个PE设备包括第一PE设备和第二PE设备;If the VPN service is a VC, the at least one PE device includes a first PE device and a second PE device;
若所述VPN业务为VN,则所述若干PE设备包括第一PE设备、第二PE设备和第三PE设备;当然可能还包括第四PE设备,第五PE设备等;If the VPN service is a VN, the number of the PE devices includes the first PE device, the second PE device, and the third PE device; of course, the fourth PE device, the fifth PE device, and the like;
若所述VPN业务为VT,则所述若干PE设备包括根PE设备和至少一个叶子PE设备。If the VPN service is a VT, the number of the PE devices includes a root PE device and at least one leaf PE device.
可选地,所述业务参数包括至少一个CE设备的信息,例如CE设备的IP地址;所述设备信息获取模块502,具体用于向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。Optionally, the service parameter includes information of at least one CE device, for example, an IP address of the CE device, and the device information obtaining module 502 is specifically configured to send a policy query request to the policy module, where the policy query request includes The information about the VPN service and the at least one CE device is received; and the query response returned by the policy module is allowed to be established, and the query response includes the information of the at least one PE device.
进一步可选地,所述策略查询请求中还包括所述上层应用的用户信息,例如用户名,身份标识等;所述策略模块根据所述用户信息判断是否允许建立所述VPN业务;具体地,所述策略模块根据所述用户信息,获取所述用户的权限,以判断是否允许建立所述VPN业务。如果所述策略模块判定允许建立所述VPN业务,则所述策略模块获取所述VPN业务对应的至少一个PE设备的信息;如果所述策略模块判定不允许建立所述VPN业务,则所述策略模块向所述SDN控制器返回不允许建立VPN业务的查询响应。Further, optionally, the policy query request further includes user information of the upper layer application, such as a user name, an identity identifier, and the like; and the policy module determines, according to the user information, whether to allow the VPN service to be established; specifically, The policy module acquires the rights of the user according to the user information, to determine whether to allow the VPN service to be established. If the policy module determines that the VPN service is allowed to be established, the policy module acquires information about the at least one PE device corresponding to the VPN service; if the policy module determines that the VPN service is not allowed to be established, the policy The module returns a query response to the SDN controller that does not allow establishment of a VPN service.
可选地,所述SDN控制器还包括所述策略模块。 Optionally, the SDN controller further includes the policy module.
可选地,所述业务参数包括所述至少一个PE设备的信息;所述设备信息获取模块502,具体用于从所述业务参数中获取所述至少一个PE设备的信息。Optionally, the service parameter includes information about the at least one PE device, and the device information obtaining module 502 is configured to obtain information about the at least one PE device from the service parameter.
进一步地,所述SDN控制器还包括:结果接收模块,用于接收所述至少一个PE设备反馈的业务部署结果。Further, the SDN controller further includes: a result receiving module, configured to receive a service deployment result fed back by the at least one PE device.
所述发送模块,具体用于通过与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息。相应地,所述结果接收模块,具体用于通过所述与所述至少一个PE设备建立的控制会话,接收所述至少一个PE设备反馈的业务部署结果。The sending module is configured to send the service deployment information to the at least one PE device by using a control session established with the at least one PE device. Correspondingly, the result receiving module is configured to receive the service deployment result fed back by the at least one PE device by using the control session established with the at least one PE device.
或者,所述发送模块,具体用于将所述业务部署信息发送给网络网络系统NMS,通过所述NMS将所述业务部署信息发送给所述至少一个PE设备。相应地,所述结果接收模块,具体用于通过所述NMS接收所述至少一个PE设备反馈的业务部署结果。Or the sending module is configured to send the service deployment information to the network network system (NMS), and send the service deployment information to the at least one PE device by using the NMS. Correspondingly, the result receiving module is configured to receive, by using the NMS, a service deployment result fed back by the at least one PE device.
进一步地,所述SDN控制器还包括:隧道确定模块,用于根据所述VPN业务对应的业务部署信息,为所述VPN业务关联已建立的满足所述VPN业务要求的隧道;或者,根据所述VPN业务对应的业务部署信息,按照本发明图1所示的方法为所述VPN业务建立隧道。Further, the SDN controller further includes: a tunnel determining module, configured to associate, according to the service deployment information corresponding to the VPN service, an established tunnel that meets the VPN service requirement; or The service deployment information corresponding to the VPN service is used to establish a tunnel for the VPN service according to the method shown in FIG. 1 of the present invention.
本发明实施例提供的SDN控制器,接收来自上层应用的建立VPN的业务请求,获得VPN业务对应的多个PE设备的信息,并将业务部署信息通告给所述多个PE设备,完成VPN业务的建立;无需人工配置,可以快速完成VPN业务的建立,提高了VPN业务的扩展性,且可以避免人工配置实时性差、容易出错的问题。The SDN controller provided by the embodiment of the present invention receives the service request for establishing a VPN from the upper-layer application, obtains the information of the multiple PE devices corresponding to the VPN service, and advertises the service deployment information to the multiple PE devices to complete the VPN service. The establishment of the VPN service can be completed quickly without manual configuration, the scalability of the VPN service is improved, and the problem of poor real-time configuration and error-prone can be avoided.
如图6所示,为本发明实施例提供的又一种SDN控制器的结构示意图,用于实现本发明图2所示的方法,所述SDN控制器包括:处理器601、存储器602和通信接口603;其中,处理器601、存储器602、通信接口603通过总线或其 他方式相互连接,图6中以通过总线604连接作为示例。FIG. 6 is a schematic structural diagram of another SDN controller according to an embodiment of the present invention, for implementing the method shown in FIG. 2 of the present invention, where the SDN controller includes: a processor 601, a memory 602, and a communication. An interface 603; wherein the processor 601, the memory 602, and the communication interface 603 are connected by a bus or The other methods are connected to each other, and the connection is made by the bus 604 in FIG. 6 as an example.
存储器602,用于存放程序。具体地,程序可以包括程序代码,所述程序代码包括计算机操作指令。存储器502可能包含随机存取存储器(random access memory,简称RAM),也可能还包括非易失性存储器(英文:non-volatile memory),例如至少一个磁盘存储器。The memory 602 is configured to store a program. In particular, the program can include program code, the program code including computer operating instructions. The memory 502 may include a random access memory (RAM), and may also include a non-volatile memory, such as at least one disk storage.
处理器601执行存储器602所存放的程序,执行本发明实施例提供的SDN部署业务的方法,包括:The processor 601 executes the program stored in the memory 602, and the method for performing the SDN deployment service provided by the embodiment of the present invention includes:
接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括入口网络节点的信息和出口网络节点的信息;Receiving a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node;
所述SDN控制器向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;The SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter;
接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;Receiving a path calculation response returned by the PCE, where the path calculation response includes path information of the tunnel;
向所述入口网络节点通告所述隧道的路径信息。Notifying the path information of the tunnel to the ingress network node.
所述通信接口603,用于上层应用通信;还用于与PCE通信;还用于与所述隧道的入口网络节点通信。The communication interface 603 is configured to communicate with an upper layer application; and is further configured to communicate with a PCE; and is further configured to communicate with an ingress network node of the tunnel.
所述方法还包括:接收所述入口网络节点反馈的业务部署结果。The method also includes receiving a service deployment result fed back by the ingress network node.
具体地,所述向所述入口网络节点通告所述隧道的路径信息包括:通过所述SDN控制器与所述入口网络节点建立的控制会话,将所述隧道的路径信息发送给所述入口网络节点。相应地,所述接收所述入口网络节点反馈的业务部署结果包括:通过所述控制会话,接收所述入口网络节点反馈的业务部署结果。Specifically, the advertise the path information of the tunnel to the ingress network node, including: transmitting, by using the control session established by the SDN controller and the ingress network node, path information of the tunnel to the ingress network node. Correspondingly, the receiving the service deployment result fed back by the ingress network node comprises: receiving, by using the control session, a service deployment result fed back by the ingress network node.
或者,所述向所述入口节点通告所述隧道的路径信息包括:将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS将所述隧道的路径信息发送给所述入口网络节点。相应地,所述接收所述入口网络节点反 馈的业务部署结果包括:通过所述NMS接收所述入口网络节点反馈的业务部署结果。Or the advertise the path information of the tunnel to the ingress node, and send the path information of the tunnel to the network management system (NMS), and send the path information of the tunnel to the ingress network node by using the NMS. . Correspondingly, the receiving the portal network node is reversed The service deployment result of the feed includes: receiving, by the NMS, a service deployment result fed back by the portal network node.
可选地,所述通信接口603,还用于与所述NMS通信。Optionally, the communication interface 603 is further configured to communicate with the NMS.
本发明实施例提供的SDN控制器,接收来自上层应用的建立隧道的业务请求,通过与PCE交互,获得隧道的路径信息,并通告给隧道的入口网络节点,完成隧道的建立;无需人工配置,可以快速响应建立隧道的业务请求,提高隧道业务的扩展性,并且可以避免人工配置容易出错的问题。The SDN controller provided by the embodiment of the present invention receives the service request for establishing a tunnel from the upper layer application, and obtains the path information of the tunnel by interacting with the PCE, and advertises the path information of the tunnel to the ingress network node of the tunnel to complete the establishment of the tunnel; no manual configuration is required. It can quickly respond to the service request for establishing a tunnel, improve the scalability of the tunnel service, and avoid the problem of manual configuration being error-prone.
如图7所示,为本发明实施例提供的再一种SDN控制器的结构示意图,用于实现本发明图3所示的方法,所述SDN控制器包括:处理器701、存储器702和通信接口703;其中,处理器701、存储器702、通信接口703通过总线或其他方式相互连接,图7中以通过总线704连接作为示例。FIG. 7 is a schematic structural diagram of still another SDN controller according to an embodiment of the present invention, for implementing the method shown in FIG. 3 of the present invention, where the SDN controller includes: a processor 701, a memory 702, and a communication. The interface 703; wherein the processor 701, the memory 702, and the communication interface 703 are connected to each other by a bus or the like, and are connected by a bus 704 in FIG. 7 as an example.
存储器702,用于存放程序。具体地,程序可以包括程序代码,所述程序代码包括计算机操作指令。存储器702可能包含RAM,也可能还包括非易失性存储器,例如至少一个磁盘存储器。The memory 702 is configured to store a program. In particular, the program can include program code, the program code including computer operating instructions. Memory 702 may include RAM and may also include non-volatile memory, such as at least one disk storage.
处理器701执行存储器702所存放的程序,执行本发明实施例提供的SDN部署业务的方法,包括:The processor 701 executes the program stored in the memory 702, and the method for performing the SDN deployment service provided by the embodiment of the present invention includes:
接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为虚拟专用网VPN业务;Receiving a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a virtual private network VPN service;
根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息;Obtaining, according to the service request, information about at least one carrier edge PE device corresponding to the VPN service;
根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;Determining service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
向所述至少一个PE设备通告所述业务部署信息。And advertise the service deployment information to the at least one PE device.
所述通信接口703,用于与上层应用通信,还用于与所述至少一个PE节点通信。 The communication interface 703 is configured to communicate with an upper layer application, and is further configured to communicate with the at least one PE node.
所述VPN业务包括VC,VN,VT;The VPN service includes VC, VN, and VT;
若所述VPN业务为VC,则所述若干PE节点包括第一PE节点和第二PE节点;If the VPN service is a VC, the number of the PE nodes includes a first PE node and a second PE node;
若所述VPN业务为VN,则所述若干PE节点包括第一PE节点、第二PE节点和第三PE节点;当然可能还包括第四PE节点,第五PE节点等;If the VPN service is a VN, the number of the PE nodes includes a first PE node, a second PE node, and a third PE node; of course, the fourth PE node, the fifth PE node, and the like;
若所述VPN业务为VT,则所述若干PE节点包括根PE节点和至少一个叶子PE节点。If the VPN service is a VT, the number of the PE nodes includes a root PE node and at least one leaf PE node.
可选地,所述业务参数包括至少一个用户边缘CE设备的信息;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:Optionally, the service parameter includes the information of the at least one user edge CE device, and the acquiring, by the service request, the information of the at least one PE device corresponding to the VPN service, including:
向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;Sending a policy query request to the policy module, where the policy query request includes information about the VPN service and the at least one CE device;
接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。And receiving, by the policy module, a query response that is allowed to establish the VPN service, where the query response includes information about the at least one PE device.
所述通信接口703,还用于与所述策略模块进行通信。The communication interface 703 is further configured to communicate with the policy module.
可选地,所述业务参数包括所述至少一个PE设备的信息;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:从所述业务参数中获取所述至少一个PE设备的信息。Optionally, the service parameter includes the information of the at least one PE device, and the acquiring the information of the at least one PE device corresponding to the VPN service according to the service request, including: obtaining the Information about at least one PE device.
所述方法还包括:接收所述至少一个PE设备反馈的业务部署结果。The method further includes receiving a service deployment result fed back by the at least one PE device.
具体地,所述向所述至少一个PE设备通告所述业务部署信息包括:通过与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息。相应地,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过与所述至少一个PE设备建立的所述控制会话,接收所述至少一个PE设备反馈的业务部署结果。Specifically, the advertising the service deployment information to the at least one PE device comprises: sending the service deployment information to the at least one PE device by using a control session established with the at least one PE device. Correspondingly, the service deployment result that is received by the at least one PE device comprises: receiving, by the control session established with the at least one PE device, a service deployment result fed back by the at least one PE device.
或者,所述向所述至少一个PE设备通告所述业务部署信息包括:将 业务部署信息发送给网络管理系统NMS,通过所述NMS将所述业务部署信息发送给所述至少一个PE设备。相应地,所述接收所述至少一个PE设备反馈的业务部署结果包括:通过所述NMS接收所述至少一个PE设备反馈的业务部署结果。Or the advertising the service deployment information to the at least one PE device includes: The service deployment information is sent to the network management system (NMS), and the service deployment information is sent to the at least one PE device by using the NMS. Correspondingly, the service deployment result that is received by the at least one PE device is received by the NMS, and the service deployment result fed back by the at least one PE device is received by the NMS.
进一步地,所述方法还包括:根据所述业务部署信息,为所述VPN业务关联已建立的满足所述VPN业务要求的隧道;或者,根据所述业务部署信息,采用本发明图1所示的方法为所述VPN业务建立隧道。Further, the method further includes: associating the established VPN service that meets the VPN service requirement with the VPN service according to the service deployment information; or, according to the service deployment information, adopting the present invention as shown in FIG. The method establishes a tunnel for the VPN service.
可选地,所述通信接口603,还用于与所述NMS通信。Optionally, the communication interface 603 is further configured to communicate with the NMS.
本发明实施例提供的SDN控制器,接收来自上层应用的建立VPN的业务请求,获得VPN业务对应的多个PE设备的信息,并将业务部署信息通告给所述多个PE设备,完成VPN业务的建立;无需人工配置,可以快速完成VPN业务的建立,提高了VPN业务的扩展性,且可以避免人工配置实时性差、容易出错的问题。The SDN controller provided by the embodiment of the present invention receives the service request for establishing a VPN from the upper-layer application, obtains the information of the multiple PE devices corresponding to the VPN service, and advertises the service deployment information to the multiple PE devices to complete the VPN service. The establishment of the VPN service can be completed quickly without manual configuration, the scalability of the VPN service is improved, and the problem of poor real-time configuration and error-prone can be avoided.
进一步的,本发明实施例还提供了一种SDN部署业务的系统,包括SDN控制器和上层应用。Further, the embodiment of the present invention further provides a system for SDN deployment services, including an SDN controller and an upper layer application.
SDN控制器接收来自所述上层应用的业务请求,所述业务请求中包括业务参数和业务类型;并根据所述业务请求部署所述业务类型对应的业务。The SDN controller receives a service request from the upper-layer application, where the service request includes a service parameter and a service type, and deploys a service corresponding to the service type according to the service request.
可选地,所述业务类型为隧道;所述业务参数包括隧道的入口网络节点和出口网络节点的信息;所述SDN控制器如本发明图4或6实施例所述;所述系统还包括所述入口网络节点和所述出口网络节点;进一步的,还包括路径计算单元PCE,用于为所述SDN控制器提供路径计算服务。所述业务参数还可以包括:路径约束信息;例如路径的跳数,路径的代价值,必须经过的网络节点,不能经过的网络节点等等。Optionally, the service type is a tunnel; the service parameter includes information of an ingress network node and an egress network node of the tunnel; the SDN controller is as described in the embodiment of FIG. 4 or FIG. 6 of the present invention; The ingress network node and the egress network node; further comprising a path calculation unit PCE for providing a path calculation service for the SDN controller. The service parameters may further include: path constraint information; for example, the hop count of the path, the value of the path, the network node that must pass, the network node that cannot pass, and the like.
可选地,所述业务类型为VPN业务;所述业务参数包括至少一个CE设备的信息,或者包括所述VPN业务对应的至少一个PE设备的信息;所 述SDN控制器如本发明图5或7实施例所述;所述系统还包括所述至少一个PE设备。可选地,所述系统还包括至少一个CE设备和策略模块;所述策略模块用于为所述SDN控制器提供策略服务,例如业务权限控制等。所述策略模块可以与所述SDN控制器位于不同网络设备上,例如所述策略模块由专门的服务器实现;所述策略模块也可以与所述SDN控制器位于同一个网络设备上。Optionally, the service type is a VPN service; the service parameter includes information of at least one CE device, or information of at least one PE device corresponding to the VPN service; The SDN controller is as described in the embodiment of FIG. 5 or 7 of the present invention; the system further includes the at least one PE device. Optionally, the system further includes at least one CE device and a policy module, where the policy module is configured to provide a policy service, such as a service authority control, for the SDN controller. The policy module may be located on a different network device from the SDN controller, for example, the policy module is implemented by a dedicated server; the policy module may also be located on the same network device as the SDN controller.
可选地,所述系统还包括网络管理系统NMS。Optionally, the system further comprises a network management system NMS.
本领域普通技术人员可以理解实现上述实施例方法中的全部或部分步骤是可以通过程序来指令相关的硬件完成,所述的程序可以存储于计算机可读存储介质中,所述存储介质可以是ROM/RAM,磁盘或光盘等。One of ordinary skill in the art can understand that all or part of the steps of implementing the above embodiments may be performed by a program to instruct related hardware, and the program may be stored in a computer readable storage medium, which may be a ROM. /RAM, disk or CD, etc.
以上所述,仅为本发明较佳的具体实施方式,但本发明的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本发明揭露的技术范围内,可轻易想到的变化或替换,都应涵盖在本发明的保护范围之内。因此,本发明的保护范围应该以权利要求的保护范围为准。 The above is only a preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily think of changes or within the technical scope disclosed by the present invention. Alternatives are intended to be covered by the scope of the present invention. Therefore, the scope of protection of the present invention should be determined by the scope of the claims.

Claims (33)

  1. 一种软件定义网络SDN部署业务的方法,其特征在于,包括:A method for software-defined network SDN deployment service, comprising:
    SDN控制器接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括入口网络节点的信息和出口网络节点的信息;The SDN controller receives a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node;
    所述SDN控制器向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;The SDN controller sends a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter;
    接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;Receiving a path calculation response returned by the PCE, where the path calculation response includes path information of the tunnel;
    向所述入口网络节点通告所述隧道的路径信息。Notifying the path information of the tunnel to the ingress network node.
  2. 根据权利要求1所述的方法,其特征在于,所述向所述入口网络节点通告所述隧道的路径信息包括:The method according to claim 1, wherein the notifying the path information of the tunnel to the ingress network node comprises:
    通过所述SDN控制器与所述入口网络节点建立的控制会话,将所述隧道的路径信息发送给所述入口网络节点。And transmitting, by the SDN controller, a control session established by the ingress network node to the ingress network node.
  3. 根据权利要求1所述的方法,其特征在于,所述向所述入口网络节点通告所述隧道的路径信息包括:The method according to claim 1, wherein the notifying the path information of the tunnel to the ingress network node comprises:
    将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS向所述入口网络节点发送所述隧道的路径信息。Transmitting the path information of the tunnel to the network management system NMS, and sending, by the NMS, the path information of the tunnel to the ingress network node.
  4. 根据权利要求1至3任一所述的方法,其特征在于,在向所述入口网络节点通告所述隧道的路径信息之后,还包括:The method according to any one of claims 1 to 3, further comprising: after advertise the path information of the tunnel to the ingress network node, further comprising:
    接收所述入口网络节点反馈的业务部署结果。Receiving a service deployment result fed back by the ingress network node.
  5. 根据权利要求4所述的方法,其特征在于,所述接收所述入口网络节点反馈的业务部署结果包括:The method according to claim 4, wherein the receiving the service deployment result fed back by the ingress network node comprises:
    通过所述SDN控制器与所述入口网络节点建立的控制会话,接收所述入口网络节点反馈的所述业务部署结果。And receiving, by the SDN controller, a control session established by the ingress network node, the service deployment result fed back by the ingress network node.
  6. 根据权利要求4所述的方法,其特征在于,所述接收所述入口网 络节点反馈的业务部署结果包括:The method of claim 4 wherein said receiving said portal network The service deployment results fed back by the network node include:
    通过网络管理系统NMS接收所述入口网络节点反馈的所述业务部署结果。Receiving, by the network management system NMS, the service deployment result fed back by the ingress network node.
  7. 一种软件定义网络SDN部署业务的方法,其特征在于,包括:A method for software-defined network SDN deployment service, comprising:
    SDN控制器接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为虚拟专用网VPN业务;The SDN controller receives the service request from the upper layer application, where the service request includes a service type and a service parameter, and the service type is a virtual private network VPN service;
    根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息;Obtaining, according to the service request, information about at least one carrier edge PE device corresponding to the VPN service;
    根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;Determining service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
    向所述至少一个PE设备通告所述业务部署信息。And advertise the service deployment information to the at least one PE device.
  8. 根据权利要求7所述的方法,其特征在于,所述业务参数包括至少一个用户边缘CE设备的信息;The method according to claim 7, wherein the service parameter comprises information of at least one user edge CE device;
    所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:And the obtaining, by the service request, the information of the at least one PE device corresponding to the VPN service, including:
    向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;Sending a policy query request to the policy module, where the policy query request includes information about the VPN service and the at least one CE device;
    接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。And receiving, by the policy module, a query response that is allowed to establish the VPN service, where the query response includes information about the at least one PE device.
  9. 根据权利要求7所述的方法,其特征在于,所述业务参数包括所述至少一个PE设备的信息;所述根据所述业务请求获取所述VPN业务对应的至少一个PE设备的信息,包括:The method according to claim 7, wherein the service parameter includes information of the at least one PE device, and the obtaining, by the service request, the information of the at least one PE device corresponding to the VPN service, including:
    从所述业务参数中获取所述至少一个PE设备的信息。Obtaining information of the at least one PE device from the service parameters.
  10. 根据权利要求7至9任一项所述的方法,其特征在于,所述向所述至少一个PE设备通告所述业务部署信息包括:The method according to any one of claims 7 to 9, wherein the advertising the service deployment information to the at least one PE device comprises:
    通过所述SDN控制器与所述至少一个PE设备建立的控制会话,向所 述至少一个PE设备发送所述业务部署信息。Controlling a session established by the SDN controller with the at least one PE device The at least one PE device sends the service deployment information.
  11. 根据权利要求7至9任一项所述的方法,其特征在于,所述向所述至少一个PE设备通告所述业务部署信息包括:The method according to any one of claims 7 to 9, wherein the advertising the service deployment information to the at least one PE device comprises:
    将所述业务部署信息发送给网络管理系统NMS,通过所述NMS向所述至少一个PE设备发送所述业务部署信息。Sending the service deployment information to the network management system (NMS), and sending the service deployment information to the at least one PE device by using the NMS.
  12. 根据权利要求7至11任一项所述的方法,其特征在于,在向所述至少一个PE设备通告所述业务部署信息之后,还包括:The method according to any one of claims 7 to 11, further comprising: after advertising the service deployment information to the at least one PE device,
    接收所述至少一个PE设备反馈的业务部署结果。Receiving a service deployment result fed back by the at least one PE device.
  13. 根据权利要求12所述的方法,其特征在于,所述接收所述至少一个PE设备反馈的业务部署结果包括:The method according to claim 12, wherein the receiving the service deployment result fed back by the at least one PE device comprises:
    通过所述SDN控制器与所述至少一个PE设备建立的控制会话,接收所述至少一个PE设备反馈的所述业务部署结果。Receiving, by the control session established by the SDN controller and the at least one PE device, the service deployment result fed back by the at least one PE device.
  14. 根据权利要求12所述的方法,其特征在于,所述接收所述至少一个PE设备反馈的业务部署结果包括:The method according to claim 12, wherein the receiving the service deployment result fed back by the at least one PE device comprises:
    通过网络管理系统NMS接收所述至少一个PE设备反馈的所述业务部署结果。Receiving, by the network management system NMS, the service deployment result fed back by the at least one PE device.
  15. 根据权利要求7至14任一项所述的方法,其特征在于,还包括:根据所述业务部署信息,为所述VPN业务关联或建立隧道。The method according to any one of claims 7 to 14, further comprising: associating or establishing a tunnel for the VPN service according to the service deployment information.
  16. 根据权利要求7至15任一所述的方法,其特征在于,所述业务参数还包括如下任意一种或多种的组合:时延,带宽,保护条件,和服务优先级;The method according to any one of claims 7 to 15, wherein the service parameter further comprises a combination of any one or more of the following: delay, bandwidth, protection condition, and service priority;
    所述根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息,包括:Determining the service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter, including:
    根据所述至少一个PE设备的信息和所述业务参数,生成所述VPN业务对应的逻辑拓扑;Generating a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
    根据所述逻辑拓扑确定所述至少一个PE设备的业务部署信息。 Determining service deployment information of the at least one PE device according to the logical topology.
  17. 根据权利要求7至16任一项所述的方法,其特征在于,A method according to any one of claims 7 to 16, wherein
    所述VPN业务类型为虚拟电路VC;相应地,所述至少一个PE包括第一PE设备和第二PE设备;The VPN service type is a virtual circuit VC; correspondingly, the at least one PE includes a first PE device and a second PE device;
    或者,所述VPN业务类型为虚拟网络VN;相应地,所述至少一个PE设备包括第一PE设备、第二PE设备和第三PE设备;Or the VPN service type is a virtual network VN; correspondingly, the at least one PE device includes a first PE device, a second PE device, and a third PE device;
    或者,所述VPN业务类型为虚拟树VT;相应地,所述至少一个PE设备包括根PE设备和至少一个叶子PE设备。Alternatively, the VPN service type is a virtual tree VT; correspondingly, the at least one PE device includes a root PE device and at least one leaf PE device.
  18. 一种软件定义网络SDN控制器,其特征在于,包括:A software defined network SDN controller, comprising:
    业务请求接收模块,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为隧道,所述业务参数包括入口网络节点的信息和出口网络节点的信息;a service request receiving module, configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a tunnel, and the service parameter includes information of an ingress network node and information of an egress network node. ;
    路径计算客户端PCC,用于向路径计算单元PCE发送路径计算请求,所述路径计算请求中包括所述业务类型和所述业务参数;并接收所述PCE返回的路径计算响应,所述路径计算响应中包括所述隧道的路径信息;a path calculation client PCC, configured to send a path calculation request to the path calculation unit PCE, where the path calculation request includes the service type and the service parameter; and receive a path calculation response returned by the PCE, where the path calculation The path information of the tunnel is included in the response;
    发送模块,用于向所述入口网络节点通告所述隧道的路径信息。And a sending module, configured to advertise the path information of the tunnel to the ingress network node.
  19. 根据权利要求18所述的SDN控制器,其特征在于,还包括:The SDN controller according to claim 18, further comprising:
    结果接收模块,用于接收所述入口网络节点反馈的业务部署结果。The result receiving module is configured to receive a service deployment result fed back by the ingress network node.
  20. 根据权利要求19所述的SDN控制器,其特征在于,所述发送模块具体用于通过所述SDN控制器与所述入口网络节点之间的控制会话,将所述隧道的路径信息发送给所述入口网络节点;The SDN controller according to claim 19, wherein the sending module is configured to send, by using a control session between the SDN controller and the ingress network node, path information of the tunnel to the Said portal network node;
    相应地,所述结果接收模块,具体用于通过所述控制会话,接收所述入口网络节点反馈的所述业务部署结果。Correspondingly, the result receiving module is configured to receive, by using the control session, the service deployment result fed back by the ingress network node.
  21. 根据权利要求19所述的SDN控制器,其特征在于,所述发送模块具体用于将所述隧道的路径信息发送给网络管理系统NMS,通过所述NMS向所述入口网络节点发送所述隧道的路径信息;The SDN controller according to claim 19, wherein the sending module is configured to send path information of the tunnel to a network management system NMS, and send the tunnel to the ingress network node by using the NMS. Path information;
    相应地,所述结果接收模块,具体用于通过所述NMS接收所述入口 网络节点反馈的所述业务部署结果。Correspondingly, the result receiving module is specifically configured to receive the portal by using the NMS The service deployment result fed back by the network node.
  22. 一种软件定义网络SDN控制器,其特征在于,包括:A software defined network SDN controller, comprising:
    业务请求接收模块,用于接收来自上层应用的业务请求,所述业务请求中包括业务类型和业务参数,所述业务类型为虚拟专用网VPN业务;a service request receiving module, configured to receive a service request from an upper layer application, where the service request includes a service type and a service parameter, where the service type is a virtual private network VPN service;
    设备信息获取模块:用于根据所述业务请求,获取所述VPN业务对应的至少一个运营商边缘PE设备的信息;a device information acquiring module, configured to acquire information of at least one carrier edge PE device corresponding to the VPN service according to the service request;
    部署确定模块,用于根据所述至少一个PE设备的信息和所述业务参数确定所述VPN业务对应的业务部署信息;a deployment determining module, configured to determine service deployment information corresponding to the VPN service according to the information of the at least one PE device and the service parameter;
    发送模块,用于向所述至少一个PE设备通告所述业务部署信息。And a sending module, configured to notify the at least one PE device of the service deployment information.
  23. 根据权利要求22所述的SDN控制器,其特征在于,所述业务参数包括至少一个用户边缘CE设备的信息;The SDN controller according to claim 22, wherein the service parameter comprises information of at least one user edge CE device;
    所述设备信息获取模块,具体用于向策略模块发送策略查询请求,所述策略查询请求中包括所述VPN业务和所述至少一个CE设备的信息;接收所述策略模块返回的允许建立所述VPN业务的查询响应,所述查询响应中包括所述至少一个PE设备的信息。The device information obtaining module is configured to send a policy query request to the policy module, where the policy query request includes information about the VPN service and the at least one CE device, and receiving the permission returned by the policy module to establish the The query response of the VPN service, where the query response includes information of the at least one PE device.
  24. 根据权利要求23所述的SDN控制器,其特征在于,所述业务参数包括所述至少一个PE设备的信息;所述设备信息获取模块,具体用于从所述业务参数中获取所述至少一个PE设备的信息。The SDN controller according to claim 23, wherein the service parameter includes information of the at least one PE device, and the device information obtaining module is configured to acquire the at least one of the service parameters. Information about the PE device.
  25. 根据权利要求22至24任一项所述的SDN控制器,其特征在于,还包括:The SDN controller according to any one of claims 22 to 24, further comprising:
    结果接收模块,用于接收所述至少一个PE设备反馈的业务部署结果。The result receiving module is configured to receive a service deployment result fed back by the at least one PE device.
  26. 根据权利要求25所述的SDN控制器,其特征在于,The SDN controller according to claim 25, characterized in that
    所述发送模块,具体用于通过所述SDN控制器与所述至少一个PE设备建立的控制会话,向所述至少一个PE设备发送所述业务部署信息;The sending module is configured to send the service deployment information to the at least one PE device by using a control session established by the SDN controller and the at least one PE device;
    相应地,所述结果接收模块,具体用于通过所述控制会话,接收所述至少一个PE设备反馈的所述业务部署结果。 Correspondingly, the result receiving module is configured to receive, by using the control session, the service deployment result fed back by the at least one PE device.
  27. 根据权利要求25所述的SDN控制器,其特征在于,The SDN controller according to claim 25, characterized in that
    所述发送模块,具体用于将所述业务部署信息发送给网络管理系统NMS,通过所述NMS向所述至少一个PE设备发送所述业务部署信息;The sending module is configured to send the service deployment information to the network management system (NMS), and send the service deployment information to the at least one PE device by using the NMS;
    相应地,所述结果接收模块,具体用于通过所述NMS接收所述至少一个PE设备反馈的所述业务部署结果。Correspondingly, the result receiving module is configured to receive, by using the NMS, the service deployment result fed back by the at least one PE device.
  28. 根据权利要求22至27任一项所述的SDN控制器,其特征在于,还包括:隧道确定模块,用于根据所述业务部署信息,为所述VPN业务关联或建立隧道。The SDN controller according to any one of claims 22 to 27, further comprising: a tunnel determining module, configured to associate or establish a tunnel for the VPN service according to the service deployment information.
  29. 根据权利要求22至28任一项所述的SDN控制器,其特征在于,所述业务参数还包括如下任意一种或多种的组合:时延,带宽,保护条件,和服务优先级;The SDN controller according to any one of claims 22 to 28, wherein the service parameter further comprises any one or more of the following combinations: delay, bandwidth, protection condition, and service priority;
    所述部署确定模块,具体用于根据所述至少一个PE设备的信息和所述业务参数,生成所述VPN业务对应的逻辑拓扑;根据所述逻辑拓扑确定所述至少一个PE设备的业务部署信息。The deployment determining module is configured to generate a logical topology corresponding to the VPN service according to the information of the at least one PE device and the service parameter, and determine service deployment information of the at least one PE device according to the logical topology. .
  30. 根据权利要求22至29任一项所述的SDN控制器,其特征在于,所述VPN业务类型为虚拟电路VC;相应地,所述若干PE设备包括第一PE设备和第二PE设备;The SDN controller according to any one of claims 22 to 29, wherein the VPN service type is a virtual circuit VC; correspondingly, the plurality of PE devices comprise a first PE device and a second PE device;
    或者,所述VPN业务类型为虚拟网络VN;相应地,所述若干PE设备包括第一PE设备、第二PE设备和第三PE设备;Or the VPN service type is a virtual network VN; correspondingly, the plurality of PE devices include a first PE device, a second PE device, and a third PE device;
    或者,所述VPN业务类型为虚拟树VT;相应地,所述若干PE节点包括根PE设备和至少一个叶子PE设备。Alternatively, the VPN service type is a virtual tree VT; correspondingly, the several PE nodes include a root PE device and at least one leaf PE device.
  31. 一种软件定义网络SDN部署业务的系统,其特征在于,包括SDN控制器和上层应用;A system for software-defined network SDN deployment service, characterized in that it comprises an SDN controller and an upper layer application;
    所述SDN控制器,用于接收来自所述上层应用的业务请求,所述业务请求中包括业务类型和业务参数;根据所述业务请求为所述上层应用部署所述业务类型对应的业务。 The SDN controller is configured to receive a service request from the upper-layer application, where the service request includes a service type and a service parameter, and deploy, according to the service request, a service corresponding to the service type for the upper-layer application.
  32. 根据权利要求31所述的系统,其特征在于,所述业务类型为隧道;所述业务参数包括隧道的入口网络节点和出口网络节点的信息;The system according to claim 31, wherein the service type is a tunnel; and the service parameters include information of an ingress network node and an egress network node of the tunnel;
    所述SDN控制器包括如权利要求18至21任一项所述的SDN控制器;The SDN controller includes the SDN controller according to any one of claims 18 to 21;
    所述系统还包括所述入口网络节点,所述出口网络节点,以及路径计算单元PCE。The system also includes the ingress network node, the egress network node, and a path computation unit PCE.
  33. 根据权利要求31所述的系统,其特征在于,所述业务类型为VPN业务;所述业务参数包括至少一个CE设备的信息,或者所述VPN业务对应的至少一个PE设备的信息;The system according to claim 31, wherein the service type is a VPN service; the service parameter includes information of at least one CE device, or information of at least one PE device corresponding to the VPN service;
    所述SDN控制器包括如权利要求22至30任一项所述的SDN控制器;The SDN controller includes the SDN controller according to any one of claims 22 to 30;
    所述系统还包括所述至少一个PE设备。 The system also includes the at least one PE device.
PCT/CN2014/093846 2013-12-31 2014-12-15 Method for deploying service by sdn and sdn controller WO2015101169A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310753129.5A CN104753713B (en) 2013-12-31 2013-12-31 A kind of method and SDN controller of SDN deployment business
CN201310753129.5 2013-12-31

Publications (1)

Publication Number Publication Date
WO2015101169A1 true WO2015101169A1 (en) 2015-07-09

Family

ID=53493180

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/093846 WO2015101169A1 (en) 2013-12-31 2014-12-15 Method for deploying service by sdn and sdn controller

Country Status (2)

Country Link
CN (1) CN104753713B (en)
WO (1) WO2015101169A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107040408A (en) * 2017-03-23 2017-08-11 国网浙江省电力公司 Network electric power method of testing based on SDN automation equipments
CN114244803A (en) * 2020-11-30 2022-03-25 易识科技(广东)有限责任公司 Tunnel penetration control method and system
CN116996406A (en) * 2023-09-22 2023-11-03 山东未来互联科技有限公司 Provincial SDN backbone network networking-based data interaction management system and method

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105100025A (en) * 2014-05-22 2015-11-25 中兴通讯股份有限公司 Service distribution method and service distribution system
US10715447B2 (en) 2015-10-15 2020-07-14 Futurewei Technologies, Inc. Framework for temporal label switched path tunnel services
CN106713137B (en) * 2015-11-13 2020-02-18 中国电信股份有限公司 VPN method, device and system based on segmented routing and SDN technology
CN107294746B (en) * 2016-03-30 2020-09-11 华为技术有限公司 Method and equipment for deploying service
CN107872338B (en) * 2016-09-26 2022-06-07 中兴通讯股份有限公司 Network management system, service configuration method, service configuration request method and device
CN106529283B (en) * 2016-09-30 2019-05-21 中国人民解放军信息工程大学 A kind of software-oriented defines network-based control device safety quantitative analysis method
CN107979516B (en) * 2016-10-24 2021-06-29 中兴通讯股份有限公司 Method and system for calculating label forwarding path
CN108234355B (en) * 2016-12-15 2022-03-11 中国电信股份有限公司 Network resource reservation method, PCE (personal computer equipment) and SDN (software defined network) system
CN108270592B (en) * 2016-12-30 2021-05-04 中兴通讯股份有限公司 Network resource configuration control method and device
CN108989066B (en) * 2017-05-31 2022-12-20 中兴通讯股份有限公司 Equipment management method and device
CN111654438B (en) 2017-06-20 2023-09-26 华为技术有限公司 Method, controller and system for establishing forwarding path in network
CN109474506A (en) * 2018-11-15 2019-03-15 中国联合网络通信集团有限公司 Establish the method and device of Virtual Private Network vpn service
CN111385180B (en) * 2018-12-28 2022-03-04 中国移动通信集团重庆有限公司 Communication tunnel construction method, device, equipment and medium
CN109561028B (en) * 2019-01-07 2023-04-07 中国联合网络通信集团有限公司 Method and equipment for selecting transmission path based on traffic engineering
CN112448886B (en) * 2019-08-30 2023-08-01 中兴通讯股份有限公司 Shortest path calculation method, route acquisition device and server
CN110611607B (en) * 2019-10-08 2021-10-19 深信服科技股份有限公司 Tunnel connection method, control device, storage medium and apparatus
CN112566183B (en) * 2020-11-20 2023-04-21 北京直真科技股份有限公司 SDN controller capable of automatically opening 5G transmission circuit

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1708032A (en) * 2004-05-28 2005-12-14 朗迅科技公司 Efficient and robust routing independent of traffic pattern variability
CN101036134A (en) * 2004-12-01 2007-09-12 思科技术公司 Propagation of routing information in RSVP-TE for inter-domain TE-LSPs
CN101288266A (en) * 2005-03-15 2008-10-15 思科技术公司 Dynamic retrieval of routing information for inter-as te-lsps
CN101471879A (en) * 2007-12-27 2009-07-01 华为技术有限公司 Path control system and method for layering ordered address grouping network
CN101606341A (en) * 2006-03-14 2009-12-16 思科技术公司 Be used in the technology of passing high usage route IP flow on the CE-CE path of provider's network
CN102130811A (en) * 2010-01-14 2011-07-20 深圳市深信服电子科技有限公司 Method for accessing application servers through VPN (Virtual Private Network) and terminal

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1708032A (en) * 2004-05-28 2005-12-14 朗迅科技公司 Efficient and robust routing independent of traffic pattern variability
CN101036134A (en) * 2004-12-01 2007-09-12 思科技术公司 Propagation of routing information in RSVP-TE for inter-domain TE-LSPs
CN101288266A (en) * 2005-03-15 2008-10-15 思科技术公司 Dynamic retrieval of routing information for inter-as te-lsps
CN101606341A (en) * 2006-03-14 2009-12-16 思科技术公司 Be used in the technology of passing high usage route IP flow on the CE-CE path of provider's network
CN101471879A (en) * 2007-12-27 2009-07-01 华为技术有限公司 Path control system and method for layering ordered address grouping network
CN102130811A (en) * 2010-01-14 2011-07-20 深圳市深信服电子科技有限公司 Method for accessing application servers through VPN (Virtual Private Network) and terminal

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107040408A (en) * 2017-03-23 2017-08-11 国网浙江省电力公司 Network electric power method of testing based on SDN automation equipments
CN107040408B (en) * 2017-03-23 2023-10-24 国网浙江省电力公司 Network power testing method based on SDN automation equipment
CN114244803A (en) * 2020-11-30 2022-03-25 易识科技(广东)有限责任公司 Tunnel penetration control method and system
CN114244803B (en) * 2020-11-30 2024-06-04 易识科技(广东)有限责任公司 Tunnel penetration control method and system
CN116996406A (en) * 2023-09-22 2023-11-03 山东未来互联科技有限公司 Provincial SDN backbone network networking-based data interaction management system and method
CN116996406B (en) * 2023-09-22 2024-02-02 山东未来互联科技有限公司 Provincial SDN backbone network networking-based data interaction management system and method

Also Published As

Publication number Publication date
CN104753713A (en) 2015-07-01
CN104753713B (en) 2019-02-05

Similar Documents

Publication Publication Date Title
WO2015101169A1 (en) Method for deploying service by sdn and sdn controller
US9819540B1 (en) Software defined network controller
KR102057980B1 (en) Path Computing Element Central Controllers (PCECCs) for Network Services
CN111492627B (en) Controller-based service policy mapping to establish different tunnels for different applications
EP2732597B1 (en) Placement of service delivery locations of a distributed computing service based on a logical topology
EP3570506B1 (en) Dynamic end-to-end network path setup across multiple network layers with network service chaining
US11558247B2 (en) Method and apparatus for implementing composed virtual private network VPN
CN108011759B (en) VPN management method, device and system
KR102237299B1 (en) Traffic Engineering Service Mapping
Bahnasse et al. Smart hybrid SDN approach for MPLS VPN management on digital environment
CN104935506B (en) Selectable service node resources
Farrel et al. An architecture for use of PCE and the PCE communication protocol (PCEP) in a network with central control
Baroncelli et al. A distributed signaling for the provisioning of on-demand VPN services in transport networks
King et al. Applicability of the path computation element to interarea and inter-AS MPLS and GMPLS traffic engineering
Li et al. RFC 8283: An Architecture for Use of PCE and the PCE Communication Protocol (PCEP) in a Network with Central Control
华为技术有限公司 RFC 8694 Applicability of the Path Computation Element to Inter-area and Inter-AS MPLS and GMPLS Traffic Engineering
Zhou An Architecture for Use of PCE and PCEP in a Network with Central Control draft-ietf-teas-pce-central-control-01

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14877437

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14877437

Country of ref document: EP

Kind code of ref document: A1