WO2016062085A1 - Virtual network realization method, nve and nva device and system - Google Patents

Virtual network realization method, nve and nva device and system Download PDF

Info

Publication number
WO2016062085A1
WO2016062085A1 PCT/CN2015/079615 CN2015079615W WO2016062085A1 WO 2016062085 A1 WO2016062085 A1 WO 2016062085A1 CN 2015079615 W CN2015079615 W CN 2015079615W WO 2016062085 A1 WO2016062085 A1 WO 2016062085A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
nve
vntp
nva
update
Prior art date
Application number
PCT/CN2015/079615
Other languages
French (fr)
Chinese (zh)
Inventor
顾忠禹
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016062085A1 publication Critical patent/WO2016062085A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks

Abstract

Provided are a virtual network realization method, NVE and NVA device and system. The method comprises: establishing a TCP connection between a network virtualization edge (NVE) and a network virtualization authority (NVA), and running a virtual network transport protocol (VNTP) on the TCP connection; the NVE transmits routing update information of the VN to the NVA via the VNTP; and the VNA forwards the routing update information of the VN to all the other NVEs thereof, thus solving the problem of higher requirements and complicated protocol on the virtual network realization, and lowering the realization condition of the virtual network.

Description

虚拟网络实现的方法、NVE、NVA装置及系统Virtual network implementation method, NVE, NVA device and system 技术领域Technical field
本发明涉及通信领域,具体而言,涉及一种虚拟网络实现的方法、NVE、NVA装置及系统。The present invention relates to the field of communications, and in particular to a method, a NVE, an NVA device and a system for implementing a virtual network.
背景技术Background technique
在数据中心中,如何提供虚拟网络(Virtual Network,简称为VN)是一个热门的话题,涉及到网络的虚拟化等众多方面,引起设备供应商和运营商的多方关注。例如,在互联网工程任务组(Internet Engineering Task Force,简称为IETF)中专门成立了一个基于层3的网络虚拟化工作组(Network Virtualization Overlay based-on L3 Network,简称为NVO3)对其进行研究。In the data center, how to provide a virtual network (Virtual Network, referred to as VN) is a hot topic, involving many aspects such as virtualization of the network, causing concern of equipment suppliers and operators. For example, a Network Virtualization Overlay based-on L3 Network (NVO3) was established in the Internet Engineering Task Force (IETF).
图1是相关技术中虚拟网络提供的架构示意图,如图1所示,目前NVO3的体系结构网络有一个集中的网络虚拟化控制设备(Network Virtualization Authority,简称为NVA),实现对业务提供的控制,VN中的多个虚拟机(Virtual Machine,简称为VM)连接到网络虚拟化边缘设备(Network Virtualization Edge,简称为NVE),并进一步与NVE中的该VN的虚拟路由转发功能(Virtual Routing and Forwarding,简称为VRF)进行关联,多个不同NVE中的同一VN的不同的VRF,通过NVE直接的重叠网络隧道实现连接,从而实现VN。另外,VN可以通过NVE(一般驻留在数据中心网关)和互联网实现连接。FIG. 1 is a schematic diagram of a virtual network provided in the related art. As shown in FIG. 1 , the NVO3 architecture network has a centralized network virtualization control device (NVA) to implement service control. Multiple Virtual Machines (VMs) in the VN are connected to the Network Virtualization Edge (NVE) and further cooperate with the Virtual Route Forwarding function of the VN in the NVE (Virtual Routing and Forwarding (referred to as VRF) is associated. Different VRFs of the same VN in different NVEs are connected through the NVE direct overlapping network tunnel to implement VN. In addition, the VN can be connected via NVE (typically resident in the data center gateway) and the Internet.
NVE之间的信息传送,可以有多种方案,例如基于底层网络的组播,或者使用类似路由反射器的机制,但是他们并不很适用于这里的VN的实现。主要是或者是对底层网络有较高的要求,或者基于的协议比较复杂,或者对NVE来说关于复杂,或者引入额外的开销。Information transfer between NVEs can be implemented in a variety of schemes, such as multicast based on the underlying network, or using a mechanism similar to a route reflector, but they are not well suited for implementation of the VN here. Mainly or have higher requirements for the underlying network, or based on a more complex protocol, or complex for NVE, or introduce additional overhead.
针对相关技术中,虚拟网络的实现要求比较高,协议复杂的问题,目前还没有有效的解决方法。In view of the related technologies, the implementation requirements of the virtual network are relatively high, and the protocol is complicated, and there is currently no effective solution.
发明内容Summary of the invention
本发明提供了一种虚拟网络实现的方法、装置及系统,以至少解决虚拟网络的实现要求比较高,实现比较复杂的问题。 The invention provides a method, a device and a system for implementing a virtual network, so as to at least solve the problem that the implementation requirements of the virtual network are relatively high and the implementation is complicated.
根据本发明的一个实施例,提供了一种虚拟网络实现的方法,包括:网络虚拟化边缘设备NVE和网络虚拟化控制设备NVA建立TCP连接,并在其上运行虚拟网络传送协议VNTP;所述NVE通过所述VNTP发送VN的路由更新信息给所述NVA;所述NVA将所述VN的路由更新信息转发到所述VN的所有其他NVE。According to an embodiment of the present invention, a method for implementing a virtual network is provided, including: a network virtualization edge device NVE and a network virtualization control device NVA establishing a TCP connection and running a virtual network transmission protocol VNTP thereon; The NVE sends the routing update information of the VN to the NVA through the VNTP; the NVA forwards the routing update information of the VN to all other NVEs of the VN.
在本发明实施例中,包括:所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。In the embodiment of the present invention, the packet information of the VNTP protocol is carried by the data part of the TCP packet, and the VNTP protocol packet includes: a VNTP header and a VNTP data part.
在本发明实施例中,所述VNTP报头包括:命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息;命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;指示字段,用于指示所述命令字段的进一步的细分类型。In the embodiment of the present invention, the VNTP header includes: a command/opcode field, which is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, and an identity authentication information. The routing update result feedback information; the command/status field is used to define an execution result of the related command, and the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information; An indication field for indicating a further subdivision type of the command field.
在本发明实施例中,所述指示字段包括以下至少之一:路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;故障恢复报文指示位,用于NVE在故障恢复后的路由更新;路由更新种类指示位,用于指示路由更新信息的种类。In the embodiment of the present invention, the indication field includes at least one of the following: a route update message indication bit, configured to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update; the fault recovery message indication Bit, used for NVE routing update after fault recovery; routing update type indicator bit, used to indicate the type of routing update information.
在本发明实施例中,包括:所述VNTP数据部分包括路由更新信息;所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。In this embodiment of the present invention, the method includes: the VNTP data part includes route update information; and the route update information includes one of the following: IPv4, IPv6, and routing information of a MAC address.
在本发明实施例中,所述NVA将所述路由更新信息转发到所述VN的其他NVE包括:NVA通过所述VN的NVE的路由更新信息,收集所述VN中的NVE信息,形成所述VN的所有NVE的列表;所述NVA将所述VN的所述路由更新信息发送到除发送所述路由更新信息的NVE之外的所述VN的NVE列表中的所有其他NVE。In the embodiment of the present invention, the NVA forwarding the routing update information to the other NVEs of the VN includes: the NVA collects the NVE information in the VN by using the route update information of the NVE of the VN, and forms the a list of all NVEs of the VN; the NVA sends the routing update information of the VN to all other NVEs in the NVE list of the VN except for the NVE that sent the routing update information.
在本发明实施例中,所述方法还包括:所述NVE从所述NVA获取并保存VN的NVE列表信息,其中,所述NVE列表信息为NVA收集所述VN中的NVE信息形成的所述VN的所有NVE的列表;在所述NVA失效的情况下,根据所述列表信息,NVE之间进行通过TCP连接进行路由信息的更新。In the embodiment of the present invention, the method further includes: the NVE acquiring and saving the NVE list information of the VN from the NVA, where the NVE list information is the NVA collecting the NVE information in the VN. A list of all NVEs of the VN; in the case of the NVA failure, according to the list information, the NVE performs routing information update via a TCP connection.
根据本发明的另一个实施例,还提供了一种虚拟网络实现的NVE装置,包括:第一配置模块,设置为配置NVE的IP地址信息和VN的context信息,其中,所述context信息包括但不限于:所述VN的虚拟路由转发功能VRF,VN-ID;发送模块,设置为通过TCP连接及其上的VNTP协议发送路由更新信息或者其他命令消息给NVA;接 收模块,设置为接收NVA返回的路由更新消息或者其他命令消息的结果消息;协议处理模块,准备VNTP协议消息以及对所述消息的结果做相关处理。According to another embodiment of the present invention, a virtual network implemented NVE apparatus is further provided, including: a first configuration module, configured to configure IP address information of the NVE and context information of the VN, wherein the context information includes It is not limited to: the VN virtual route forwarding function VRF, VN-ID; the sending module is configured to send routing update information or other command message to the NVA through the TCP connection and the VNTP protocol thereon; The receiving module is configured to receive a routing update message returned by the NVA or a result message of other command messages; the protocol processing module prepares a VNTP protocol message and performs related processing on the result of the message.
在本发明实施例中,所述消息的结果做相关处理包括:所述NVE从所述NVA获取并保存所述VN的NVE列表信息;在所述NVA失效的情况下,根据所述列表信息,NVE直接通过TCP连接和所述VN中的其他NVE进行路由信息更新。In the embodiment of the present invention, the result of the message is related to: the NVE acquires and saves the NVE list information of the VN from the NVA; and in the case that the NVA fails, according to the list information, The NVE updates routing information directly over the TCP connection and other NVEs in the VN.
在本发明实施例中,包括:所述发送模块发送路由更新消息的所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。In the embodiment of the present invention, the message that the sending module sends the routing update message to the VNTP protocol is carried by the data part of the TCP packet, where the VNTP protocol packet includes: VNTP Header and VNTP data section.
在本发明实施例中,所述VNTP报头包括:命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息;命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;指示字段,用于指示所述命令字段的进一步的细分类型。In the embodiment of the present invention, the VNTP header includes: a command/opcode field, which is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, and an identity authentication information. The routing update result feedback information; the command/status field is used to define an execution result of the related command, and the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information; An indication field for indicating a further subdivision type of the command field.
在本发明实施例中,所述指示字段包括以下至少之一:路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;故障恢复报文指示位,用于NVE在故障恢复后的路由更新;路由更新种类指示位,用于指示路由更新信息的种类。In the embodiment of the present invention, the indication field includes at least one of the following: a route update message indication bit, configured to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update; the fault recovery message indication Bit, used for NVE routing update after fault recovery; routing update type indicator bit, used to indicate the type of routing update information.
在本发明实施例中,包括:所述VNTP数据部分包括路由更新信息;所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。In this embodiment of the present invention, the method includes: the VNTP data part includes route update information; and the route update information includes one of the following: IPv4, IPv6, and routing information of a MAC address.
根据本发明的另一个实施例,还提供一种虚拟网络实现的NVA装置,包括:第二配置模块,设置为配置NVA自身的IP地址;获取模块,设置为通过TCP连接获取VN的NVE路由更新信息,其中,所述TCP连接上运行虚拟网络传送协议VNTP;存储模块,设置为存储所述VN的NVE信息,和/或存贮VN的路由更新信息;协议处理和转发模块,设置为处理和转发VN的所述NVE路由更新信息等命令消息给所述VN的所有其他NVE;以及转发所述相关命令消息的执行结果信息。According to another embodiment of the present invention, an NVA device implemented by a virtual network is further provided, including: a second configuration module configured to configure an IP address of the NVA itself; and an obtaining module configured to acquire an NVE routing update of the VN through a TCP connection. Information, wherein the TCP connection runs a virtual network transfer protocol VNTP; a storage module configured to store NVE information of the VN, and/or store routing update information of the VN; a protocol processing and forwarding module configured to process and Forwarding, by the VN, the NVE route update information and other command messages to all other NVEs of the VN; and forwarding the execution result information of the related command message.
在本发明实施例中,包括:所述获取模块获取的路由更新消息的所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。 In the embodiment of the present invention, the packet information of the VNTP protocol of the routing update message acquired by the acquiring module is carried by the data part of the TCP packet, where the VNTP protocol packet includes: VNTP header and VNTP data part.
在本发明实施例中,所述VNTP报头包括:命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息;命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;指示字段,用于指示所述命令字段的进一步的细分类型。In the embodiment of the present invention, the VNTP header includes: a command/opcode field, which is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, and an identity authentication information. The routing update result feedback information; the command/status field is used to define an execution result of the related command, and the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information; An indication field for indicating a further subdivision type of the command field.
在本发明实施例中,所述指示字段包括以下至少之一:路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;故障恢复报文指示位,用于NVE在故障恢复后的路由更新;路由更新种类指示位,用于指示路由更新信息的种类。In the embodiment of the present invention, the indication field includes at least one of the following: a route update message indication bit, configured to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update; the fault recovery message indication Bit, used for NVE routing update after fault recovery; routing update type indicator bit, used to indicate the type of routing update information.
在本发明实施例中,包括:所述VNTP数据部分包括路由更新信息;所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。In this embodiment of the present invention, the method includes: the VNTP data part includes route update information; and the route update information includes one of the following: IPv4, IPv6, and routing information of a MAC address.
在本发明实施例中,所述协议处理和转发模块包括:收集单元,设置为NVA通过所述VN的NVE的路由更新信息,收集所述VN中的NVE信息,形成VN的所有NVE列表;转发单元,设置为所述NVA将所述路由更新信息发送到除发送所述路由更新信息的NVE之外的所述VN的NVE列表中的所有其他NVE,以及转发所述相关命令消息的执行结果信息到所述NVE。In the embodiment of the present invention, the protocol processing and forwarding module includes: a collecting unit, configured to collect, by the NVA, the NVE routing information of the VN, and collect NVE information in the VN to form all NVE lists of the VN; a unit, configured to send, by the NVA, the routing update information to all other NVEs in the NVE list of the VN except for the NVE that sends the routing update information, and forward the execution result information of the related command message To the NVE.
根据本发明的另一个实施例,还提供一种虚拟网络实现的系统,包括NVE和NVA,包括:所述NVE装置和所述NVA装置;所述NVE装置和所述NVA装置建立TCP连接,并在其上运行虚拟网络传送协议VNTP;所述NVE装置通过所述VNTP发送VN的路由更新信息给所述NVA装置;所述NVA装置将所述VN的路由更新信息转发到所述VN的所有其他NVE装置。According to another embodiment of the present invention, there is also provided a virtual network implemented system, comprising: an NVE and an NVA, comprising: the NVE device and the NVA device; the NVE device and the NVA device establish a TCP connection, and Running a virtual network transport protocol VNTP thereon; the NVE device sends routing update information of the VN to the NVA device through the VNTP; the NVA device forwards the routing update information of the VN to all other of the VN NVE device.
在本发明实施例中,包括:所述NVE装置从所述NVA装置获取并保存所述VN的NVE装置的列表信息;在所述NVA装置失效的情况下,根据所述列表信息,所述NVE装置直接通过TCP连接和所述VN中的其他NVE装置进行路由信息更新,或者其他命令消息的处理。In the embodiment of the present invention, the NVE device acquires and saves list information of the NVE device of the VN from the NVA device; and if the NVA device fails, according to the list information, the NVE The device performs routing information updates, or processing of other command messages, directly over the TCP connection and other NVE devices in the VN.
通过本发明,采用网络虚拟化边缘设备NVE和网络虚拟化控制设备NVA建立TCP连接,并在其上运行虚拟网络传送协议VNTP;该NVE通过该VNTP发送VN的路由更新信息给该NVA;NVA将VN的路由更新信息转发到该VN的所有其他NVE,解决了虚拟网络的实现要求比较高,协议复杂的问题,降低了虚拟网络的实现条件。 Through the present invention, the network virtualization edge device NVE and the network virtualization control device NVA are used to establish a TCP connection, and a virtual network transmission protocol VNTP is run thereon; the NVE sends VN routing update information to the NVA through the VNTP; the NVA will The routing update information of the VN is forwarded to all other NVEs of the VN, which solves the problem that the virtual network has high implementation requirements and complex protocols, and reduces the implementation conditions of the virtual network.
附图说明DRAWINGS
此处所说明的附图用来提供对本发明的进一步理解,构成本申请的一部分,本发明的示意性实施例及其说明用于解释本发明,并不构成对本发明的不当限定。在附图中:The drawings described herein are intended to provide a further understanding of the invention, and are intended to be a part of the invention. In the drawing:
图1是相关技术中虚拟网络提供的架构示意图;1 is a schematic structural diagram of a virtual network provided in the related art;
图2是根据本发明实施例的虚拟网络实现的方法的流程图;2 is a flow chart of a method for virtual network implementation in accordance with an embodiment of the present invention;
图3是根据本发明实施例的虚拟网络实现的NVE装置结构框图;3 is a structural block diagram of an NVE device implemented by a virtual network according to an embodiment of the present invention;
图4是根据本发明实施例的虚拟网络实现的NVA装置结构框图;4 is a structural block diagram of an NVA device implemented by a virtual network according to an embodiment of the present invention;
图5是本发明优选实施例虚拟网络实现的功能示意图;5 is a schematic diagram of the functions of a virtual network implementation of a preferred embodiment of the present invention;
图6是本发明优选实施例的VRF表项的示意图;6 is a schematic diagram of a VRF entry of a preferred embodiment of the present invention;
图7是本发明优选实施例TCP报文格式的示意图;7 is a schematic diagram of a TCP packet format according to a preferred embodiment of the present invention;
图8是本发明优选实施例VNTP协议的报头格式的示意图;8 is a schematic diagram of a header format of a VNTP protocol according to a preferred embodiment of the present invention;
图9是本发明优选实施例数据格式的示意图;9 is a schematic diagram of a data format of a preferred embodiment of the present invention;
图10是本发明优选实施例VNTP协议的主要流程的示意图;10 is a schematic diagram of a main flow of a VNTP protocol according to a preferred embodiment of the present invention;
图11是本发明优选实施例UDP报文格式的示意图;11 is a schematic diagram of a UDP packet format according to a preferred embodiment of the present invention;
图12是本发明优选实施例UDP报头定义的示意图;12 is a schematic diagram of a UDP header definition according to a preferred embodiment of the present invention;
图13是本发明优选实施例IP报文格式的示意图;13 is a schematic diagram of a format of an IP packet according to a preferred embodiment of the present invention;
图14是本发明优选实施例IP报头定义的示意图。Figure 14 is a schematic illustration of the definition of an IP header in a preferred embodiment of the present invention.
具体实施方式detailed description
下文中将参考附图并结合实施例来详细说明本发明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。The invention will be described in detail below with reference to the drawings in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict.
在本实施例中提供了一种虚拟网络的实现方法,图2是根据本发明实施例的虚拟网络实现的方法的流程图,如图2所示,该流程包括如下步骤: In this embodiment, a method for implementing a virtual network is provided. FIG. 2 is a flowchart of a method for implementing a virtual network according to an embodiment of the present invention. As shown in FIG. 2, the process includes the following steps:
步骤S202,网络虚拟化边缘设备NVE和网络虚拟化控制设备NVA建立TCP连接,并在其上运行虚拟网络传送协议(Virtual Network Transmission Protocol,简称为VNTP);In step S202, the network virtualization edge device NVE and the network virtualization control device NVA establish a TCP connection, and run a virtual network transmission protocol (VRP) thereon;
步骤S204,NVE通过VNTP发送VN的路由更新信息给该NVA;Step S204, the NVE sends the routing update information of the VN to the NVA through the VNTP;
步骤S206,NVA将VN的路由更新信息转发到该VN的所有其他NVE。Step S206, the NVA forwards the routing update information of the VN to all other NVEs of the VN.
通过上述步骤,NVE通过TCP协议,建立和NVA的连接,并在该连接上,发送路由更新信息,由NVA将该路由更新信息,转发到该VN的所有其他NVE,实现同步,解决了虚拟网络的实现要求比较高,协议复杂的问题,降低了虚拟网络的实现条件。Through the above steps, the NVE establishes a connection with the NVA through the TCP protocol, and sends routing update information on the connection, and the NVA forwards the routing update information to all other NVEs of the VN to synchronize and solve the virtual network. The implementation requirements are relatively high, and the protocol is complicated, which reduces the implementation conditions of the virtual network.
在本实施例中,该VNTP协议的报文信息通过该TCP报文的数据部分来承载;其中,该VNTP协议的报文包括:VNTP报头和VNTP数据部分。In this embodiment, the packet information of the VNTP protocol is carried by the data part of the TCP packet, where the VNTP protocol packet includes: a VNTP header and a VNTP data part.
在本实施例中,该VNTP报头可以包括:命令/操作码字段,用于定义不同的操作,该命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息;命令/状态字段,用于定义相关命令的执行结果,该命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;指示字段,用于指示该命令字段的进一步的细分类型。In this embodiment, the VNTP header may include: a command/opcode field for defining different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat message, an identity authentication information, and a route update. Result feedback information; a command/status field for defining an execution result of the related command, the command/status field comprising at least one of the following: route update success information, route update failure information, route update success or failure association information; indication field, A further subdivision type used to indicate the command field.
上述实施例中的该指示字段可以包括以下至少之一:路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;故障恢复报文指示位,用于NVE在故障恢复后的路由更新;路由更新种类指示位,用于指示路由更新信息的种类。The indication field in the foregoing embodiment may include at least one of the following: a route update message indication bit, configured to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update; the failure recovery message indication bit, The routing update for the NVE after the fault is recovered; the routing update type indication bit is used to indicate the type of the routing update information.
上述实施例中的该VNTP数据部分可以包括路由更新信息;该路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。The VNTP data portion in the above embodiment may include routing update information; the routing update information includes one of the following: IPv4, IPv6, and MAC address routing information.
上述实施例中的该NVA将该路由更新信息转发到该VN的其他NVE可以有多种方式,例如,NVA通过该VN的NVE的路由更新信息,收集该VN中的NVE信息,形成该VN的所有NVE的列表;该NVA将该VN的该路由更新信息发送到除发送该路由更新信息的NVE之外的该VN的NVE列表中的所有其他NVE。The NVA in the foregoing embodiment may forward the routing update information to other NVEs of the VN in multiple manners. For example, the NVA collects the NVE information in the VN through the routing update information of the NVE of the VN to form the VN. a list of all NVEs; the NVA sends the routing update information of the VN to all other NVEs in the NVE list of the VN except for the NVE that sent the routing update information.
在本实施例中,该NVE从还可以从NVA获取并保存VN的NVE列表信息,其中,该NVE列表信息为NVA收集该VN中的NVE信息,形成该VN的所有NVE的 列表;在该NVA失效的情况下,根据该列表信息,NVE之间进行通过TCP连接进行路由信息的更新。In this embodiment, the NVE can also obtain and save the NVE list information of the VN from the NVA, where the NVE list information is the NVA collecting the NVE information in the VN, forming all the NVEs of the VN. List; in the case of the NVA failure, according to the list information, the NVE performs routing information update via the TCP connection.
在本实施例中,还提供了一种虚拟网络实现的NVE装置和一种虚拟网络实现的NVA装置,该装置用于实现上述实施例及优选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In this embodiment, an NVE device implemented by a virtual network and an NVA device implemented by a virtual network are also provided. The device is used to implement the foregoing embodiments and preferred embodiments, and details are not described herein. As used below, the term "module" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
图3是根据本发明实施例的虚拟网络实现的NVE装置结构框图,如图3所示,包括第一配置模块32、发送模块34、接收模块36和协议处理模块38,下面对该装置进行说明。3 is a structural block diagram of an NVE device implemented by a virtual network according to an embodiment of the present invention. As shown in FIG. 3, the first configuration module 32, the sending module 34, the receiving module 36, and the protocol processing module 38 are provided. Description.
第一配置模块32,设置为配置NVE的IP地址信息和VN的context信息,其中,该context信息包括但不限于:该VN的虚拟路由转发功能VRF,VN-ID;The first configuration module 32 is configured to configure the IP address information of the NVE and the context information of the VN, where the context information includes, but is not limited to, the virtual route forwarding function VRF, VN-ID of the VN;
发送模块34,设置为通过TCP连接及其上的VNTP协议发送路由更新信息或者其他命令消息给NVA;The sending module 34 is configured to send routing update information or other command message to the NVA through a TCP connection and a VNTP protocol thereon;
接收模块36,设置为接收NVA返回的路由更新消息或者其他命令消息的结果消息;The receiving module 36 is configured to receive a routing update message returned by the NVA or a result message of other command messages;
协议处理模块38,准备VNTP协议消息以及对该消息的结果做相关处理。The protocol processing module 38 prepares the VNTP protocol message and performs related processing on the result of the message.
在上述装置中,该消息的结果做相关处理包括:该NVE从该NVA获取并保存该VN的NVE列表信息;在该NVA失效的情况下,根据该列表信息,NVE直接通过TCP连接和该VN中的其他NVE进行路由信息更新。In the above apparatus, the result of the message is related to: the NVE acquires and saves the NVE list information of the VN from the NVA; in the case that the NVA fails, according to the list information, the NVE directly connects through the TCP and the VN The other NVEs in the routing update the routing information.
通过上述装置,NVE通过TCP协议,建立和NVA的连接,并在该连接上,发送路由更新信息,由NVA将该路由更新信息,转发到该VN的所有其他NVE,实现同步,解决了虚拟网络的实现要求比较高,协议复杂的问题,降低了虚拟网络的实现条件。Through the above device, the NVE establishes a connection with the NVA through the TCP protocol, and sends routing update information on the connection, and the NVA forwards the routing update information to all other NVEs of the VN to implement synchronization, thereby solving the virtual network. The implementation requirements are relatively high, and the protocol is complicated, which reduces the implementation conditions of the virtual network.
图4是根据本发明实施例的虚拟网络的NVA装置结构框图,如图4所示,包括第二配置模块42、获取模块44、存储模块46和协议处理和转发模块48,下面对该装置进行说明。4 is a structural block diagram of an NVA device of a virtual network according to an embodiment of the present invention. As shown in FIG. 4, the second configuration module 42 includes an acquisition module 44, a storage module 46, and a protocol processing and forwarding module 48. Be explained.
第二配置模块42,设置为配置NVA自身的IP地址; The second configuration module 42 is configured to configure an IP address of the NVA itself;
获取模块44,设置为通过TCP连接获取VN的NVE路由更新信息,其中,该TCP连接上运行虚拟网络传送协议VNTP;The obtaining module 44 is configured to obtain NVE routing update information of the VN through a TCP connection, where the virtual network transmission protocol VNTP is run on the TCP connection;
存储模块46,设置为存储该VN的NVE信息,和/或存贮VN的路由更新信息;The storage module 46 is configured to store NVE information of the VN, and/or store routing update information of the VN;
协议处理和转发模块48,设置为处理和转发VN的该NVE路由更新信息等命令消息给该VN的所有其他NVE;以及转发该相关命令消息的执行结果信息。The protocol processing and forwarding module 48 is configured to process and forward a command message such as the NVE route update information of the VN to all other NVEs of the VN; and forward the execution result information of the related command message.
通过上述装置,NVE通过TCP协议,建立和NVA的连接,并在该连接上,发送路由更新信息,由NVA将该路由更新信息,转发到该VN的所有其他NVE,实现同步,解决了虚拟网络的实现要求比较高,协议复杂的问题,降低了虚拟网络的实现条件。Through the above device, the NVE establishes a connection with the NVA through the TCP protocol, and sends routing update information on the connection, and the NVA forwards the routing update information to all other NVEs of the VN to implement synchronization, thereby solving the virtual network. The implementation requirements are relatively high, and the protocol is complicated, which reduces the implementation conditions of the virtual network.
在本实施例中,该协议处理和转发模块48包括:In this embodiment, the protocol processing and forwarding module 48 includes:
收集单元,设置为NVA通过该VN的NVE的路由更新信息,收集该VN中的NVE信息,形成VN的所有NVE列表;The collecting unit is configured to collect the NVE information in the VN through the NV routing update information of the VN, and form all NVE lists of the VN;
转发单元,设置为该NVA将该路由更新信息发送到除发送该路由更新信息的NVE之外的该VN的NVE列表中的所有其他NVE,以及转发该相关命令消息的执行结果信息到该NVE。And a forwarding unit, configured to send the route update information to all other NVEs in the NVE list of the VN other than the NVE that sends the route update information, and forward the execution result information of the related command message to the NVE.
在本实施例中,还提高了一种虚拟网络实现的系统,包括NVE和NVA,包括:In this embodiment, a virtual network implemented system, including NVE and NVA, is also provided, including:
上述实施例中的NVE装置和NVA装置;该NVE装置和该NVA装置建立TCP连接,并在其上运行虚拟网络传送协议VNTP;该NVE装置通过该VNTP发送VN的路由更新信息给该NVA装置;该NVA装置将该VN的路由更新信息转发到该VN的所有其他NVE装置。The NVE device and the NVA device in the above embodiment; the NVE device and the NVA device establish a TCP connection, and run a virtual network transmission protocol VNTP thereon; the NVE device sends VN routing update information to the NVA device through the VNTP; The NVA device forwards the routing update information of the VN to all other NVE devices of the VN.
另外在本实施例的系统中,该NVE装置从该NVA装置获取并保存该VN的NVE装置的列表信息;在该NVA装置失效的情况下,根据该列表信息,该NVE装置直接通过TCP连接和该VN中的其他NVE装置进行路由信息更新,或者其他命令消息的处理。In addition, in the system of the embodiment, the NVE device acquires and saves list information of the NVE device of the VN from the NVA device; in case the NVA device fails, according to the list information, the NVE device directly connects through the TCP and Other NVE devices in the VN perform routing information updates, or processing of other command messages.
下面结合优选实施例和实施方式对本发明进行详细说明。The invention will now be described in detail in conjunction with the preferred embodiments and embodiments.
本优选实施例提供了一种数据中心中虚拟网络的实现方法和系统。包括:NVA和NVE,及有关的VM,包括:定义一种NVE-NVA之间的交互协议(VNTP-虚拟网络传送协议-暂定名),实现VN的构建。其中,所述协议基于TCP,并进一步定义了 一种交互机制,和需要传送的相关的信息格式,以及有关相关结构信息的格式,和具体信息内容。The preferred embodiment provides a method and system for implementing a virtual network in a data center. Including: NVA and NVE, and related VMs, including: defining an interaction protocol between NVE-NVA (VNTP-Virtual Network Transfer Protocol-tentative name) to implement VN construction. Wherein the protocol is based on TCP and is further defined An interaction mechanism, and the associated information format that needs to be transmitted, as well as the format of the relevant structural information, and the specific information content.
其中,所述交互协议,基于TCP的报文进行定义。具体的,通过TCP报头的可选项,定义一种新的类型,用于VNTP。The interaction protocol is defined by a TCP-based message. Specifically, a new type is defined for the VNTP through the optional TCP header.
进一步,优选的,可以在TCP数据部分,进一步定义新的VNTP报头,用于实现VNTP协议。Further, preferably, a new VNTP header may be further defined in the TCP data part for implementing the VNTP protocol.
VNTP报头包括:命令/操作码字段,用于定义不同的操作,包括但不限于:路由更新,心跳信息,身份认证信息;状态字段,用于定义相关命令的执行结果等;或者包括,路由更新信息;以及VN-ID信息等。The VNTP header includes a command/opcode field for defining different operations, including but not limited to: route update, heartbeat information, identity authentication information, status field, used to define the execution result of the related command, or the like, or routing update. Information; and VN-ID information, etc.
进一步,所述路由更新信息,包括但不限于:IPv4、IPv6和MAC地址类。对IP地址,一般由前缀和掩码组成。Further, the routing update information includes but is not limited to: IPv4, IPv6, and MAC address classes. For an IP address, it usually consists of a prefix and a mask.
进一步,所述状态信息,包括但不限于:第一个路由更新信息,更新成功,更新失败等,可选的,还进一步可以包括:成功,或者失败的具体信息。Further, the status information includes, but is not limited to, the first routing update information, the update success, the update failure, and the like. Optionally, the method further includes: success, or specific information of the failure.
进一步,VNTP,可以用于传送VN中的其他VNE的IP地址信息。用于提高可靠性,即在NVA失效的情况下,VN中的NVE可以通过和其他NVE进行直接的交互,仍然可以正常运行。Further, the VNTP can be used to transmit IP address information of other VNEs in the VN. It is used to improve reliability. That is, in the case of NVA failure, the NVE in the VN can still operate normally by directly interacting with other NVEs.
进一步,TCP使用指定的端口号,用于VNTP。Further, TCP uses the specified port number for VNTP.
可选的,VNTP,支持VN的自动提供,具体的,需要传递VM的VN身份认证信息,以及进一步在身份认证通过后,返回VN-ID信息等。Optionally, the VNTP supports automatic provisioning of the VN. Specifically, the VN identity authentication information of the VM needs to be transmitted, and further, after the identity authentication is passed, the VN-ID information is returned.
可选的,VNTP支持主动将VN-ID,以及VN context(上下文,或者VN语境)信息发送到指定的VN,实现VN的提供。Optionally, the VNTP supports actively sending the VN-ID and the VN context (Context, or VN context) information to the designated VN to implement the VN.
可选的,VNTP支持VM连接接口的VLAN信息传送。Optionally, the VNTP supports VLAN information transmission of the VM connection interface.
图5是本发明优选实施例虚拟网络实现的功能示意图。如图5所示,图中包括:NVA,NVE等网络实体。VM通过NVE连接实现VN。FIG. 5 is a schematic diagram of the function of a virtual network implementation of a preferred embodiment of the present invention. As shown in FIG. 5, the figure includes: network entities such as NVA and NVE. The VM implements the VN through the NVE connection.
为实现VN,需要做一些设备和协议等的配置工作。包括各有关设备的初始配置。To implement VN, you need to do some configuration work such as equipment and protocols. Includes the initial configuration of each device involved.
初始配置NVE,和NVA,包括下列配置内容和相关的配置信息。 Initial configuration NVE, and NVA, including the following configuration content and related configuration information.
具体的包括:NVE和NVA的自身的IP地址配置,以及对NVE,还包括有关VN的context(上下文),特别是VN-ID,以及VRF的配置,以及它们之间的关联关系。Specifically, it includes: the NVE and NVA's own IP address configuration, and the NVE, and also includes the VN context, especially the VN-ID, and the configuration of the VRF, and the relationship between them.
图6是本发明优选实施例的VRF表项的示意图。如图6所示,一个VRF表项的内容,说明这几个参数是如何关联起来的,以实现VN。Figure 6 is a schematic illustration of a VRF entry in accordance with a preferred embodiment of the present invention. As shown in Figure 6, the content of a VRF entry shows how these parameters are related to implement VN.
无论何时,新配置了一个VN的NVE,NVE都要尝试将它的路由信息,更新到所述VN中的其他VNE中,这样保证其他NVE连接的VM可以访问到该NVE所连接的机器/服务。Whenever a VN NVE is newly configured, the NVE will try to update its routing information to other VNEs in the VN, so that other VMs connected to the NVE can access the machine connected to the NVE. service.
具体的,使用TCP协议,进行NVE之间的信息传送。使用TCP而不是UDP,是因为TCP实现可靠的连接,且有超时重传等机制,而UDP不能。Specifically, information transmission between NVEs is performed using the TCP protocol. TCP is used instead of UDP because TCP implements reliable connections and has mechanisms such as timeout retransmissions, while UDP does not.
为简便起见,根据经验,可以用不同的TCP端口号来区分不同的协议,例如超文本传送协议(Hypertext transfer protocol,简称为HTTP)的端口号是80,Telnet的端口号是23,等等。本发明,也使用一个专门的TCP端口号来区别VNTP协议,即需要向互联网数字分配机构(The Internet Assigned Numbers Authority,简称为IANA)申请一个新的传输控制协议(Transmission Control Protocol,简称为TCP)端口号。但具体的数值,可以根据实现情况,进行分配。For the sake of simplicity, according to experience, different TCP port numbers can be used to distinguish different protocols. For example, the Hypertext Transfer Protocol (HTTP) port number is 80, the Telnet port number is 23, and so on. The present invention also uses a special TCP port number to distinguish the VNTP protocol, that is, it needs to apply for a new Transmission Control Protocol (TCP) to the Internet Assigned Numbers Authority (IANA). The port number. However, the specific values can be assigned according to the implementation.
图7是本发明优选实施例TCP报文格式的示意图,如图7所示,是TCP报文格式。显示在这里,用作参考。VNTP的协议报文格式,就是基于这个报文的格式,进行扩展。FIG. 7 is a schematic diagram of a TCP packet format according to a preferred embodiment of the present invention. As shown in FIG. 7, it is a TCP packet format. Shown here for reference. The protocol packet format of VNTP is extended based on the format of this packet.
具体的,图7,是本发明的VNTP协议报文的一种封装格式。VNTP的协议报文的信息通过TCP报文的数据部分来承载。Specifically, FIG. 7 is an encapsulation format of the VNTP protocol packet of the present invention. The information of the protocol packet of the VNTP is carried by the data part of the TCP packet.
即VNTP的协议报文,是对TCP报文中的数据(data)部分的进一步细化定义。That is, the protocol packet of the VNTP is a further detailed definition of the data part of the TCP packet.
具体的,VNTP协议报文,进一步包括:VNTP报头和VNTP数据部分。Specifically, the VNTP protocol packet further includes: a VNTP header and a VNTP data part.
图8是本发明优选实施例VNTP协议的报头格式的示意图,如图8所示,VNTP报头部分,包括但不限于:FIG. 8 is a schematic diagram of a header format of a VNTP protocol according to a preferred embodiment of the present invention. As shown in FIG. 8, the VNTP header part includes but is not limited to:
命令/操作码字段,用于定义不同的操作,包括但不限于:路由更新,心跳信息(heartbeat,一般用于定期地交互信息,以发现对端是否处于正常运行状态),身份认证信息,路由更新结果反馈信息; The command/opcode field is used to define different operations, including but not limited to: route update, heartbeat information (usually used to periodically exchange information to discover whether the peer is in normal operation), identity authentication information, and route. Update result feedback information;
指示字段:可选的,进一步用于指示命令/操作的进一步分类。例如,对路由更新报文,可以包括一个指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;或者,进一步,是NVE在故障恢复后的路由更新,等等。当然,故障恢复后的路由更新和正常的路由更新稍有不同。即,该指示位被置位的情况下,路由更新报文具有不同的命令/操作码字段,指示NVE是故障恢复后的路由更新,NVA或者利用其保存的VN路由信息进行更新,为支持NVE的故障恢复,NVA可以保存所有的VN的路由更新信息,这样在NVE故障恢复过程中,可以直接将有关VN的路由信息同步过去;或者根据VN信息通知所述VN中的所有其他NVE,发送包括其自身所有路由的更新消息,以帮助故障恢复NVE恢复VN的路由同步。进一步,优化起见,NVE可能包括多个VN,则该故障恢复消息可以隐患地指示NVA将NVE所包含的所有有关的VN的NVE发送更新消息。为此,NVA保存NVE中的所有VN的信息,这也可以是通过一种表来表示,就像NVA保存一个VN中的所有NVE一样。Indicator field: optional, further used to indicate further classification of commands/operations. For example, the routing update message may include an indication bit for distinguishing whether the NVE is the first routing update of the specific VN or the subsequent routing update; or, further, the routing update of the NVE after the failure recovery, etc. Wait. Of course, the route update after failure recovery is slightly different from the normal route update. That is, when the indication bit is set, the route update message has different command/opcode fields, indicating that the NVE is a route update after the failure recovery, and the NVA or the VN routing information saved by the NVA is updated to support the NVE. The fault recovery, the NVA can save the routing update information of all the VNs, so that in the NVE fault recovery process, the routing information about the VN can be directly synchronized; or all other NVEs in the VN are notified according to the VN information, including Update messages of all its own routes to help the recovery NVE restore the route synchronization of the VN. Further, for optimization, the NVE may include multiple VNs, and the failure recovery message may implicitly instruct the NVA to send an update message to all NVEs of the relevant VNs included in the NVE. To this end, the NVA holds information about all VNs in the NVE, which can also be represented by a table, just as the NVA holds all NVEs in a VN.
状态字段,用于定义相关命令的执行结果,或者相关的状态信息等;Status field, used to define the execution result of related commands, or related status information, etc.
以及进一步的,报头中,还包括:VN-ID信息;NVE的地址信息;等等。And further, the header further includes: VN-ID information; NVE address information; and the like.
可选的,VNTP的协议报文,可以进一步通过TCP报头中的选项字段,新定义一个选项,用于区别该报文是用于VNTP的报文。Optionally, the protocol packet of the VNTP can be further defined by an option field in the TCP header to distinguish the packet from being used for the VNTP.
VNTP的数据部分,用于传递VNTP协议所涉及的、需要交互的信息。一般而言,这个信息量比较大,不能被包括在VNTP包头中进行传输。The data part of the VNTP is used to convey the information that the VNTP protocol involves and needs to interact with. In general, this amount of information is relatively large and cannot be included in the VNTP header for transmission.
例如,对VN的路由信息更新,一般要包括需要进行同步/更新的路由信息,具体的信息,根据NVE中的VN信息的多少,或者处于不同的状态,特别是需要更新的信息的多少,来确定需要更新的信息,而将这些信息放置在VNTP报文的数据部分进行传输。For example, the routing information update to the VN generally includes routing information that needs to be synchronized/updated, and the specific information, according to the number of VN information in the NVE, or in different states, especially the amount of information that needs to be updated, The information that needs to be updated is determined, and the information is placed in the data portion of the VNTP message for transmission.
需要说明的是,由于NVO3需要支持L3和L2VN业务/服务的提供,即VN一般要支持IPv4或IPv6的L3的VN服务,也需要支持L2的、基于MAC地址的VN服务。即对VNTP协议的数据部分而言,需要能够支持IPv4、IPv6和MAC地址的路由信息更新。It should be noted that, since NVO3 needs to support the provision of L3 and L2VN services/services, that is, the VN generally supports IPv4 or IPv6 L3 VN services, and also needs to support L2 MAC address-based VN services. That is, for the data part of the VNTP protocol, routing information updates capable of supporting IPv4, IPv6, and MAC addresses are required.
为此,进一步需要在VNTP的头部的指示字段中增加一个对路由更新信息种类的指示字段。由于如前述,至少有3类的不同地址,因此该指示字段至少需要包括2个比特。当然,为了保证有关的可扩展性,在具体的定义中,可以用更多的位来进行定义。 To this end, it is further required to add an indication field for the type of routing update information in the indication field of the header of the VNTP. Since there are at least three different addresses as described above, the indication field needs to include at least 2 bits. Of course, in order to ensure the relevant scalability, in the specific definition, more bits can be used to define.
针对不同的地址类型,VNTP的数据部分的信息格式也有不同的形式和长度。具体的,是因为IPv4地址是32位,IPv6地址,是128位而L2地址是48位。The information format of the data portion of the VNTP has different forms and lengths for different address types. Specifically, the IPv4 address is 32 bits, the IPv6 address is 128 bits, and the L2 address is 48 bits.
需要进一步说明的是,为了便于VNTP的处理,在VNTP报头中,可以包括VNTP数据部分长度的信息。以及,可选的,TCP数据部分的可能的填充信息。It should be further noted that, in order to facilitate the processing of the VNTP, information of the length of the VNTP data part may be included in the VNTP header. And, optionally, possible padding information for the TCP data portion.
图9是本发明优选实施例一种数据格式的示意图,如图9所示,表示出了一种具体的数据格式。具体的,显示的是基于IPv4地址的路由更新的具体的信息格式。其中分前缀和掩码的原因是,通过它们来更好地支持有关网络功能。FIG. 9 is a schematic diagram of a data format according to a preferred embodiment of the present invention. As shown in FIG. 9, a specific data format is shown. Specifically, the specific information format of the routing update based on the IPv4 address is displayed. The reason for sub-prefixes and masks is that they are used to better support network functions.
为方便VNTP的处理,可选的,可以在VNTP的报头中增加VNTP数据部分的长度信息。To facilitate the processing of the VNTP, optionally, the length information of the VNTP data portion may be added in the header of the VNTP.
对状态/命令执行结果信息,针对更新命令,包括但不限于:Execution result information for status/command, for update commands, including but not limited to:
更新成功;update completed;
更新失败等;Update failed, etc.;
可选的,还进一步可以包括:成功,或者失败的具体信息。例如,包括部分成功的信息,例如需要更新3个NVE,但是其中只有2个NVE返回了成功更新的信息,而另外一个执行失败,或者超时没有反馈结果。Optionally, the method further includes: specific information of success or failure. For example, including partial success information, for example, three NVEs need to be updated, but only two of the NVEs return information that was successfully updated, while another execution fails, or there is no feedback result.
这些选项,都可以进行编码表示,例如通过8位,或者12/16位的字段,并编码表示。These options can be encoded, for example by 8-bit, or 12/16-bit fields, and encoded.
需要说明的是,对路由更新结果情况,可以通过专门定义的一种VNTP信息格式来进行传送,即用于传送路由更新结果反馈信息。对路由更新的目的NVE和NVA反馈的执行结果也略有差别,对NVE而言只传回本NVE的更新结果,而对NVA而言,需要综合所有涉及到的NVE的更新结果,形成一个统一的更新结果,反馈给发起更新的NVE。It should be noted that the routing update result may be transmitted through a specially defined VNTP information format, that is, used to transmit routing update result feedback information. The result of the NVE and NVA feedback for the purpose of the route update is also slightly different. For the NVE, only the update result of the NVE is returned. For the NVA, the update result of all the involved NVEs needs to be integrated to form a unified The update results are fed back to the NVE that initiated the update.
对其他的命令,根据需要,可以定义相关的信息数据信息格式,和相应的执行结果,或者状态信息,等等。几种可选的信息/消息,包括:NVA传送给NVE的VN的所有NVE列表的信息格式;安全有关的公开密钥等信息,或者VM通过VN的身份认证返回的认证结果信息以及相关的VN context信息和IP地址分配信息等。For other commands, as needed, you can define the relevant information data information format, and the corresponding execution results, or status information, and so on. Several optional information/messages include: information format of all NVE lists transmitted by the NVA to the VN of the NVE; security-related public key and other information, or authentication result information returned by the VM through the VN identity authentication and related VN Context information and IP address allocation information, etc.
需要说明的是,TCP的发送应答报文可以被NVE用于实现可靠性的重传,需要和VNTP的收到报文进行处理的结果反馈结合起来,即如果由于某种原因NVE或者 NVA发送重传而导致接收方收到同一个报文的多份同样的报文时,对路由更新可以按照正常报文进行处理,因为它不会导致新的路由更新,因此效果是一样的,这样可以简化处理的复杂度。而对其他的命令,依照类似的思路进行考虑,或者在报文的相关字段增加一个重传的标志,以便于协议的处理。It should be noted that the TCP response message can be used by the NVE to implement reliable retransmission. It needs to be combined with the result feedback of the received message received by the VNTP, that is, if for some reason NVE or When the NVA sends a retransmission and the receiver receives multiple identical packets of the same packet, the routing update can be processed according to the normal packet, because it does not cause new routing updates, so the effect is the same. This simplifies the complexity of the process. For other commands, consider a similar idea, or add a retransmission flag to the relevant field of the message to facilitate the processing of the protocol.
为了显示本发明的具体实现情况,通过下面的VN实现流程来做进一步的说明。In order to show the specific implementation of the present invention, the following VN implementation flow is further explained.
图10是本发明优选实施例VNTP协议的主要流程的示意图,如图10所示,显示了VNTP协议的主要流程。FIG. 10 is a schematic diagram of a main flow of a VNTP protocol according to a preferred embodiment of the present invention. As shown in FIG. 10, the main flow of the VNTP protocol is shown.
步骤S1002,NVE的初始配置。配置的内容,包括NVE的IP地址,VN的context,VRF,VN-ID等信息。初始配置完成后,触发NVE向NVA发送更新信息,以更新VN中的其他NVE的VRF,以实现VN的路由信息的同步。Step S1002, initial configuration of the NVE. The configured content includes the NVE IP address, VN context, VRF, VN-ID and other information. After the initial configuration is complete, the NVE is triggered to send update information to the NVA to update the VRFs of other NVEs in the VN to synchronize the routing information of the VN.
有关更新信息,还有其他的触发条件,包括VM和NVE失去连接,这导致NVE需要删除相关的路由表项;There are other trigger conditions for the update information, including the loss of the connection between the VM and the NVE. This causes the NVE to delete the related routing entries.
另外一个条件是,VM可能发生了迁移,从一个NVE迁移到另外一个NVE,则相关的NVE的路由表项,也要进行对应的更新。The other condition is that the VM may be migrated. If the NVE is migrated to another NVE, the related NVE routing entries must be updated accordingly.
可能还有其他的触发条件,这里不一一进行列举。There may be other trigger conditions, which are not enumerated here.
步骤S1004,NVE向NVA发送更新信息。In step S1004, the NVE sends update information to the NVA.
步骤S1006,NVA向VN中的所有其他NVE发送该更新信息。具体的,从所述VN的各NVE的路由更新信息中,获得所述VN的所有NVE信息-即每收到一个路由更新信息,都查对看看该NVE是否发送过更新,如果没有,就认为是VN中的一个新的NVE,加以记录,这样就可以获得一个VN的NVE列表,表示VN中的所有有关NVE,由此信息,将路由更新信息发送给除发送更新信息的NVE的其他所有的NVE。In step S1006, the NVA sends the update information to all other NVEs in the VN. Specifically, all the NVE information of the VN is obtained from the routing update information of each NVE of the VN, that is, every time a routing update information is received, check whether the NVE has sent an update, and if not, It is considered to be a new NVE in the VN, which is recorded, so that a VN NVE list can be obtained, indicating all relevant NVEs in the VN, and thus the information is sent to the NVE except the one that sends the update information. NVE.
步骤S1008,各相关的NVE实现同步更新。In step S1008, each related NVE implements synchronous update.
步骤S1010,可选的,各NVE向NVA反馈更新状态/结果信息。可选的,进一步该反馈信息,可以进一步包括:VN的VNE列表信息。In step S1010, optionally, each NVE feeds back the update status/result information to the NVA. Optionally, the feedback information may further include: VNE list information of the VN.
步骤S1012,可选的,NVA综合各NVE的更新信息,发送更新状态/结果给NVE。Step S1012, optionally, the NVA synthesizes the update information of each NVE, and sends an update status/result to the NVE.
步骤S1014,NVE记录更新结果。可选的,根据需要,可以存贮:所述VN的VNE列表信息。 In step S1014, the NVE records the update result. Optionally, the VNE list information of the VN may be stored as needed.
需要说明的是,有关反馈的过程,可以通过TCP的应答报文,一般是通过独立的应答报文,其中携带有关状态/执行结果信息。It should be noted that the process of the feedback may be through the response message of the TCP, generally through an independent response message, which carries information about the status/execution result.
为显示本发明的完整性,图10中,还显示了VNTP协议支持VN业务提供的实现方案。In order to show the integrity of the present invention, in FIG. 10, an implementation scheme in which the VNTP protocol supports VN service provision is also shown.
具体的,根据用户的VN的需求,首先确定涉及到哪些NVE,共有多少VM连接到这些NVE。另外,要求的VN是L2,还是L3VN。这样就确定了VN的类型。同时分配VN的VN-ID。Specifically, according to the requirements of the user's VN, it is first determined which NVEs are involved, and how many VMs are connected to these NVEs. In addition, the required VN is L2 or L3VN. This determines the type of VN. The VN-ID of the VN is also allocated.
进一步,配置NVE的VN的context信息。包括VN的VM的连接接口,和对应的VN的VRF的表项信息。在完成相关的配置后,NVE通过VNTP协议自动地同步VN的其他NVE的路由信息。即将本地的路由信息,或者是新更新的路由协议,通过NVA同步到VN中的其他所有NVE中。Further, the context information of the VN of the NVE is configured. The connection interface of the VM including the VN and the entry information of the VRF of the corresponding VN. After the related configuration is complete, the NVE automatically synchronizes the routing information of other NVEs of the VN through the VNTP protocol. The local routing information, or the newly updated routing protocol, is synchronized to all other NVEs in the VN through the NVA.
同样,其他NVE在VN的VRF发生变化时,也要通告其变化信息到VN中的其他所有NVE,使得整个VN的路由实现同步。Similarly, when the VRF of the VN changes, other NVEs also advertise their change information to all other NVEs in the VN, so that the routing of the entire VN is synchronized.
这样,VM发送报文,一般包括VLAN信息。而NVE通过设定的VLAN接口接收该报文,并和相关的VN进行对应,具体的是根据报文的目的IP地址查找VRF的有关表项,获得目的地址的所对应的NVE地址,对原IP报文,用NVE的IP地址作为源地址,目的NVE的IP地址作为目的地址,并进一步使用VN-ID对原IP报文进行封装并发送。即实现重叠网络的报文传送。在该报文到达目的NVE后,目的NVE根据VN-ID信息,将所述报文交由所述VN的VRF进行处理,具体的,是根据目的IP地址查找VRF表项,获得对应的接口,并将该报文发送到该接口上去,一般而言,需要进行L2层封装,目的VM接收经过L2封装的报文,并解封装出原来的IP报文。从而实现通信。从而实现了VN。In this way, the VM sends a message, which generally includes VLAN information. The NVE receives the packet through the set VLAN interface and corresponds to the related VN. Specifically, the VRF entry is searched according to the destination IP address of the packet, and the corresponding NVE address of the destination address is obtained. For the IP packet, the IP address of the NVE is used as the source address, and the IP address of the destination NVE is used as the destination address. The original IP packet is further encapsulated and sent by using the VN-ID. That is, the message transmission of the overlapping network is realized. After the packet arrives at the destination NVE, the destination NVE processes the packet to the VRF of the VN according to the VN-ID information. Specifically, the VRF entry is searched according to the destination IP address, and the corresponding interface is obtained. The packet is sent to the interface. In general, the L2 layer encapsulation is required. The destination VM receives the L2 encapsulated packet and decapsulates the original IP packet. Thereby achieving communication. Thereby achieving VN.
需要进一步说明的是,由于NVA是网络中的单点故障点,一旦NVA失效,则所有的VN不能进行及时的路由更新,这是非常危险的。本发明,还提供一种解决该问题的方法,即在平时的路由更新过程中,定期地将有关VN的NVE列表信息传送给VN中的所有VNE,在VN判定NVA故障/失效后,VN中的NVE可以通过TCP连接直接和相关的NVE进行通信,实现相关的更新。从而可以保证VN业务顺利开展。而具体的实现方面,可以包括心跳机制用于识别NVA或者NVE是否处于正常工作状态。可以通过特定的结果/状态传送命令信息来传送具体的NVE的列表信息。可选的,可以通过路由更新结果反馈信息来进行传送。 It should be further noted that since the NVA is a single point of failure in the network, once the NVA fails, all VNs cannot perform timely routing updates, which is very dangerous. The present invention further provides a method for solving the problem, that is, periodically transmitting the NVE list information about the VN to all the VNEs in the VN during the usual route update process, after the VN determines that the NVA fails/disables, in the VN. The NVE can communicate directly with the relevant NVE through a TCP connection to implement related updates. This ensures that the VN business runs smoothly. The specific implementation aspect may include a heartbeat mechanism for identifying whether the NVA or the NVE is in a normal working state. The list information of the specific NVE can be transmitted by the specific result/state transfer command information. Optionally, the routing update result feedback information may be used for transmission.
需要进一步说明的是,上述所有有关字段的名称只是一种示意作用,不同的名称本质上并不影响本发明的核心内容。同时,字段的具体的位数,也可以根据实际的需要进行调整。进一步,报头中的有关字段,也可以根据需要进行扩展,一种方案,可以跟TCP一样,定义一些可选项,以便于扩展。It should be further noted that the names of all the above related fields are only a schematic function, and different names do not substantially affect the core content of the present invention. At the same time, the specific number of bits in the field can also be adjusted according to actual needs. Further, the relevant fields in the header can also be extended as needed. A scheme, like TCP, defines some options to facilitate expansion.
进一步,前述内容,是基于TCP传输协议来实现的,由TCP协议本身提供可靠的连接,所以协议的可靠性比较高,但是,TCP连接可能需要消耗一定的资源,因此可以采用其他的协议来传输VNTP。即针对不需要可靠传输,或者需要节省资源等情况下,VNTP协议所需要实现的功能,也可以通过其他传输协议来承载,或者甚至可能在IP网络上直接传输。Further, the foregoing content is implemented based on the TCP transmission protocol, and the TCP protocol itself provides a reliable connection, so the reliability of the protocol is relatively high, but the TCP connection may need to consume a certain resource, so other protocols may be used for transmission. VNTP. That is, for the case that reliable transmission is not required, or resources need to be saved, the functions that the VNTP protocol needs to implement may also be carried by other transmission protocols, or may even be directly transmitted on the IP network.
其中的2个例子,是基于UDP的传输,或者是通过IP协议直接进行传输。Two of these examples are UDP-based transmissions or direct transmission over IP protocols.
下面的2个实施例,示出了VNTP如何在UDP上,或者在IP上进行传输。The following two embodiments show how the VNTP is transmitted over UDP or over IP.
本发明的另外一个实施例,基于UDP协议进行VNTP的报文传输。其中,图11,显示出来UDP的报文格式。图12是UDP报头的定义。其中包括,源和目的端口号,和UDP报文的长度以及校验和信息。其中长度包括UDP报头和UDP数据信息在内的字节数。According to another embodiment of the present invention, the VNTP message transmission is performed based on the UDP protocol. Among them, Figure 11 shows the UDP packet format. Figure 12 is a definition of a UDP header. This includes the source and destination port numbers, the length of the UDP packets, and the checksum information. The length includes the number of bytes including the UDP header and UDP data information.
本实施例的VNTP报文,由UDP报文的数据部分承载。所不同的是,为了区分VNTP报文,需要指定特定的UDP端口号,具体的对NVE和NVA定义不同的UDP端口号,就像DHCP的客户端和服务器端,具有不同的端口号68、67一样。The VNTP packet in this embodiment is carried by the data part of the UDP packet. The difference is that in order to distinguish between VNTP messages, you need to specify a specific UDP port number. Specifically, you define different UDP port numbers for NVE and NVA, just like DHCP client and server, with different port numbers 68, 67. same.
由于UDP还有一种虚报头的格式,同样,VNTP也可以使用该格式的UDP封装进行传输,因为还是使用UDP报文的数据部分进行传输。Since UDP also has a virtual header format, VNTP can also use the UDP encapsulation of this format for transmission, because the data portion of the UDP packet is still used for transmission.
由于UDP没有任何机制保障UDP报文一定可以到达其目的地。因此,在虚拟网络实现,特别是通过VNTP进行VN信息传递的情况下,需要某种机制,来实现可靠传输。这个措施,可以通过VN的用户反馈回来,通过网络管理员进行干预再次发送UDP报文,以保证VN的路由信息的同步。本实施例的一个方面是,定义一种UDP报文丢失重传机制,即在UDP报文发送出去时启动一个定时器,在定时器到达设定的阈值而没有接收到传输应答时,NVE或者NVA自动重传该UDP报文,以实现有关VN信息的可靠传输。对应的,对通过UDP报文传输VNTP协议报文的接收方,在收到UDP报文后,需要进行应答。当然,这仅仅是给出实现重传的一种方案,以说明通过本发明,可以实现VNTP在UDP上的可靠传输,并不排除其他的实现方案。 Since UDP does not have any mechanism to guarantee that UDP packets can reach its destination. Therefore, in the case of virtual network implementation, especially VN information transmission through VNTP, a certain mechanism is needed to achieve reliable transmission. This measure can be returned by the user of the VN, and the UDP packet is sent again by the network administrator to ensure the synchronization of the routing information of the VN. An aspect of this embodiment is to define a UDP packet loss retransmission mechanism, that is, to start a timer when a UDP packet is sent out, and when the timer reaches a set threshold without receiving a transmission response, the NVE or The NVA automatically retransmits the UDP packet to implement reliable transmission of VN information. Correspondingly, the receiver that transmits the VNTP protocol packet through the UDP packet needs to respond after receiving the UDP packet. Of course, this is only a solution for implementing retransmission, to illustrate that the VNTP can be reliably transmitted over UDP by the present invention, and other implementations are not excluded.
有关VNTP协议的其他实现方面,与通过TCP进行传输的机制相同。如同上面提到的各种实施例中详细描述的VNTP协议的各种表述同样适用于UDP协议。Other implementation aspects of the VNTP protocol are the same as those for transmission over TCP. The various expressions of the VNTP protocol as described in detail in the various embodiments mentioned above apply equally to the UDP protocol.
本发明的另外一个实施例,基于IP协议进行VNTP的报文传输。According to another embodiment of the present invention, the VNTP message transmission is performed based on the IP protocol.
其中,图13,显示出来IP的报文格式,显示包括IP报头和IP载荷2个部分,而IP报文通过层2的网络进行传输,即是图中网络接口头和尾的封装。图14是IP报头的定义。其中包括,源和目的IP地址等相关的内容,由于这个是非常成熟的技术,对报头的有关内容不在介绍,我们只说明与本发明有关的内容。其中协议字段,可以用来定义用于VNTP的报文类型,即本发明的一种实现方案,是通过一个特定的协议值来指示所传送的报文是VNTP协议报文,具体的取值可以根据协议值的分配情况以及相关的分配规则进行申请和分配。例如,目前6和17被分配指示是TCP和UDP协议。本实施例的另外一个方面,也可以使用IP报头的可选项OPTION字段,定义一种新的可选项,用于指示IP载荷是承载的VNTP报文,同样可以实现VNTP的IP传输。本实施例,仅以通过协议类型来定义VNTP进行如何实现VNTP。具体的,有关VNTP的报文,通过IP报文的IP载荷来实现承载。就像前述的TCP、UDP的实现方案类似。FIG. 13 shows the packet format of the IP, including the IP header and the IP payload, and the IP packet is transmitted through the layer 2 network, that is, the encapsulation of the network interface header and the tail in the figure. Figure 14 is a definition of an IP header. This includes the source and destination IP addresses and other related content. Since this is a very mature technology, the relevant content of the header is not introduced. We only explain the content related to the present invention. The protocol field may be used to define a packet type for the VNTP, that is, an implementation scheme of the present invention, which uses a specific protocol value to indicate that the transmitted packet is a VNTP protocol packet, and the specific value may be Apply and distribute based on the distribution of protocol values and associated allocation rules. For example, currently 6 and 17 are assigned indications for the TCP and UDP protocols. In another aspect of the embodiment, the optional OPTION field of the IP header may be used to define a new option for indicating that the IP payload is a bearer VNTP packet, and the IP transmission of the VNTP may also be implemented. In this embodiment, how to implement VNTP is performed only by defining a VNTP by a protocol type. Specifically, the packet related to the VNTP is carried by the IP payload of the IP packet. Just like the aforementioned TCP, UDP implementation is similar.
同UDP报文传输一样,IP报文传输也没有丢失重传机制,为此为实现VNTP的可靠性,通过IP实现传输的VNTP也需要设计其重传机制,其基本的实施方案同基于UDP传输VNTP报文的机制,即在报文发送出去时启动一个定时器,在定时器到达设定的阈值而没有接收到传输应答时,发送方,例如NVE或者NVA,自动重传该UDP报文,以实现有关VN信息的可靠传输。对应的,对通过IP报文传输VNTP协议报文的接收方,在收到IP报文后,需要进行应答。当然,这仅仅是给出实现重传的一种方案,以说明通过本发明,可以实现VNTP在IP协议上的可靠传输,并不排除其他的实现方案。As with UDP packet transmission, the IP packet transmission does not lose the retransmission mechanism. To achieve the reliability of VNTP, the VNTP transmitted through IP also needs to design its retransmission mechanism. The basic implementation scheme is based on UDP transmission. The mechanism of the VNTP packet is to start a timer when the packet is sent out. When the timer reaches the set threshold and does not receive the transmission response, the sender, such as NVE or NVA, automatically retransmits the UDP packet. To achieve reliable transmission of VN information. Correspondingly, the receiver that transmits the VNTP protocol packet through the IP packet needs to respond after receiving the IP packet. Of course, this is only a solution for implementing retransmission, to illustrate that the VNTP can be reliably transmitted over the IP protocol by the present invention, and other implementations are not excluded.
本实施例的有关VNTP协议的其他实现方面,与通过TCP或者UDP进行传输的机制相同。如同上面提到的各种实施例中详细描述的VNTP协议的各种表述同样适用于IP协议。Other implementation aspects of the VNTP protocol of this embodiment are the same as those for transmission over TCP or UDP. The various expressions of the VNTP protocol as described in detail in the various embodiments mentioned above apply equally to the IP protocol.
进一步,VNTP还可以通过其他路由协议等进行传输,只需要引用本发明提供的思路进行适当调节或者定义,即可实现,这里不再进一步详细说明。Further, the VNTP can also be transmitted through other routing protocols, etc., and can be implemented by simply adjusting or defining the ideas provided by the present invention, and will not be further described in detail herein.
显然,本领域的技术人员应该明白,上述的本发明的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处 的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。It will be apparent to those skilled in the art that the various modules or steps of the present invention described above can be implemented by a general-purpose computing device that can be centralized on a single computing device or distributed across a network of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from The steps shown or described are performed sequentially, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated into a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.
以上所述仅为本发明的优选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above description is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
工业实用性Industrial applicability
基于本发明实施例提供的上述技术方案,采用网络虚拟化边缘设备NVE和网络虚拟化控制设备NVA建立TCP连接,并在其上运行虚拟网络传送协议VNTP;该NVE通过该VNTP发送VN的路由更新信息给该NVA;NVA将VN的路由更新信息转发到该VN的所有其他NVE,解决了虚拟网络的实现要求比较高,协议复杂的问题,降低了虚拟网络的实现条件。 Based on the foregoing technical solution provided by the embodiment of the present invention, a network virtualized edge device NVE and a network virtualization control device NVA are used to establish a TCP connection, and a virtual network transmission protocol VNTP is run thereon; the NVE sends a VN routing update through the VNTP. The information is forwarded to the NVA; the NVA forwards the routing update information of the VN to all other NVEs of the VN, which solves the problem that the virtual network has high implementation requirements and complicated protocols, and reduces the implementation conditions of the virtual network.

Claims (21)

  1. 一种虚拟网络实现的方法,包括:A method for implementing a virtual network, comprising:
    网络虚拟化边缘设备NVE和网络虚拟化控制设备NVA建立TCP连接,并在其上运行虚拟网络传送协议VNTP;The network virtualization edge device NVE and the network virtualization control device NVA establish a TCP connection and run a virtual network transmission protocol VNTP thereon;
    所述NVE通过所述VNTP发送VN的路由更新信息给所述NVA;The NVE sends routing update information of the VN to the NVA through the VNTP;
    所述NVA将所述VN的路由更新信息转发到所述VN的所有其他NVE。The NVA forwards the routing update information of the VN to all other NVEs of the VN.
  2. 根据权利要求1所述的方法,其中,包括:The method of claim 1 comprising:
    所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;The packet information of the VNTP protocol is carried by the data part of the TCP packet;
    其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。The packet of the VNTP protocol includes: a VNTP header and a VNTP data part.
  3. 根据权利要求2所述的方法,其中,所述VNTP报头包括至少以下之一:The method of claim 2 wherein said VNTP header comprises at least one of:
    命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息;The command/opcode field is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, an identity authentication information, and a route update result feedback information;
    命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;a command/status field, configured to define an execution result of the related command, where the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information;
    指示字段,用于指示所述命令字段的进一步的细分类型。An indication field for indicating a further subdivision type of the command field.
  4. 根据权利要求3所述的方法,其中,所述指示字段包括以下至少之一:The method of claim 3, wherein the indication field comprises at least one of:
    路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;The route update message indication bit is used to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update;
    故障恢复报文指示位,用于NVE在故障恢复后的路由更新;The fault recovery message indication bit is used for routing update of the NVE after failure recovery;
    路由更新种类指示位,用于指示路由更新信息的种类。A route update type indicator bit for indicating the type of route update information.
  5. 根据权利要求1至4任一项所述的方法,其中,包括:A method according to any one of claims 1 to 4, comprising:
    所述VNTP数据部分包括路由更新信息;The VNTP data portion includes routing update information;
    所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。 The routing update information includes one of the following: routing information of IPv4, IPv6, and MAC addresses.
  6. 根据权利要求1所述的方法,其中,所述NVA将所述路由更新信息转发到所述VN的其他NVE包括:The method of claim 1, wherein the NVA forwarding the routing update information to other NVEs of the VN comprises:
    NVA通过所述VN的NVE的路由更新信息,收集所述VN中的NVE信息,形成所述VN的所有NVE的列表;The NVA collects NVE information in the VN through the route update information of the NVE of the VN, and forms a list of all NVEs of the VN;
    所述NVA将所述VN的所述路由更新信息发送到除发送所述路由更新信息的NVE之外的所述VN的NVE列表中的所有其他NVE。The NVA sends the routing update information of the VN to all other NVEs in the NVE list of the VN except for the NVE that sends the routing update information.
  7. 根据权利要求1或6所述的方法,其中,所述方法还包括:The method of claim 1 or 6, wherein the method further comprises:
    所述NVE从所述NVA获取并保存所述VN的NVE列表信息;Obtaining, by the NVE, the NVE list information of the VN from the NVA;
    在所述NVA失效的情况下,根据所述列表信息,NVE之间进行通过TCP连接进行路由信息的更新。In the case that the NVA fails, according to the list information, the NVE performs routing information update via a TCP connection.
  8. 一种虚拟网络实现的NVE装置,包括:A virtual network implemented NVE device includes:
    第一配置模块,设置为配置NVE的IP地址信息和VN的context信息,其中,所述context信息包括但不限于:所述VN的虚拟路由转发功能VRF,VN-ID;The first configuration module is configured to configure the IP address information of the NVE and the context information of the VN, where the context information includes, but is not limited to, the virtual route forwarding function VRF, VN-ID of the VN;
    发送模块,设置为通过TCP连接及其上的VNTP协议发送路由更新信息或者其他命令消息给NVA;The sending module is configured to send routing update information or other command message to the NVA through the TCP connection and the VNTP protocol thereon;
    接收模块,设置为接收NVA返回的路由更新消息或者其他命令消息的结果消息;a receiving module, configured to receive a routing update message returned by the NVA or a result message of another command message;
    协议处理模块,准备VNTP协议消息以及对所述消息的结果做相关处理。The protocol processing module prepares a VNTP protocol message and performs related processing on the result of the message.
  9. 根据权利要求8所述的装置,其中,所述消息的结果做相关处理包括:所述NVE从所述NVA获取并保存所述VN的NVE列表信息;The apparatus according to claim 8, wherein the result of the message is related to: the NVE acquires and saves NVE list information of the VN from the NVA;
    在所述NVA失效的情况下,根据所述列表信息,NVE直接通过TCP连接和所述VN中的其他NVE进行路由信息更新。In case the NVA fails, according to the list information, the NVE directly updates the routing information through the TCP connection and other NVEs in the VN.
  10. 根据权利要求9所述的装置,其中,包括:所述发送模块发送路由更新消息的所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;The device according to claim 9, wherein: the message information of the VNTP protocol in which the sending module sends a routing update message is carried by the data part of the TCP packet;
    其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。The packet of the VNTP protocol includes: a VNTP header and a VNTP data part.
  11. 根据权利要求10所述的装置,其中,所述VNTP报头包括:The apparatus of claim 10 wherein said VNTP header comprises:
    命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息; The command/opcode field is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, an identity authentication information, and a route update result feedback information;
    命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;a command/status field, configured to define an execution result of the related command, where the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information;
    指示字段,用于指示所述命令字段的进一步的细分类型。An indication field for indicating a further subdivision type of the command field.
  12. 根据权利要求11所述的装置,其中,所述指示字段包括以下至少之一:The apparatus of claim 11, wherein the indication field comprises at least one of:
    路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;The route update message indication bit is used to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update;
    故障恢复报文指示位,用于NVE在故障恢复后的路由更新;The fault recovery message indication bit is used for routing update of the NVE after failure recovery;
    路由更新种类指示位,用于指示路由更新信息的种类。A route update type indicator bit for indicating the type of route update information.
  13. 根据权利要求8至12任一项所述的装置,其中,包括:The apparatus according to any one of claims 8 to 12, comprising:
    所述VNTP数据部分包括路由更新信息;The VNTP data portion includes routing update information;
    所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。The routing update information includes one of the following: routing information of IPv4, IPv6, and MAC addresses.
  14. 一种虚拟网络实现的NVA装置,包括:A virtual network implemented NVA device, comprising:
    第二配置模块,设置为配置NVA自身的IP地址;The second configuration module is configured to configure an IP address of the NVA itself;
    获取模块,设置为通过TCP连接获取VN的NVE路由更新信息,其中,所述TCP连接上运行虚拟网络传送协议VNTP;Obtaining a module, configured to obtain NVE routing update information of the VN through a TCP connection, where the virtual network transmission protocol VNTP is run on the TCP connection;
    存储模块,设置为存储所述VN的NVE信息,和/或存贮VN的路由更新信息;a storage module, configured to store NVE information of the VN, and/or store routing update information of the VN;
    协议处理和转发模块,设置为处理和转发VN的所述NVE路由更新信息等命令消息给所述VN的所有其他NVE;以及转发所述相关命令消息的执行结果信息。a protocol processing and forwarding module, configured to process and forward a command message such as the NVE route update information of the VN to all other NVEs of the VN; and forward execution result information of the related command message.
  15. 根据权利要求14所述的装置,其中,包括:所述获取模块获取的路由更新消息的所述VNTP协议的报文信息通过所述TCP报文的数据部分来承载;The device according to claim 14, wherein the message information of the VNTP protocol of the route update message acquired by the acquiring module is carried by the data part of the TCP packet;
    其中,所述VNTP协议的报文包括:VNTP报头和VNTP数据部分。The packet of the VNTP protocol includes: a VNTP header and a VNTP data part.
  16. 根据权利要求15所述的装置,其中,所述VNTP报头包括:The apparatus of claim 15 wherein said VNTP header comprises:
    命令/操作码字段,用于定义不同的操作,所述命令/操作码字段信息包括以下之一:路由更新消息,心跳信息,身份认证信息,路由更新结果反馈信息; The command/opcode field is used to define different operations, and the command/opcode field information includes one of the following: a route update message, a heartbeat information, an identity authentication information, and a route update result feedback information;
    命令/状态字段,用于定义相关命令的执行结果,所述命令/状态字段包括以下至少之一:路由更新成功信息、路由更新失败信息、路由更新成功或失败关联信息;a command/status field, configured to define an execution result of the related command, where the command/status field includes at least one of the following: route update success information, route update failure information, route update success or failure association information;
    指示字段,用于指示所述命令字段的进一步的细分类型。An indication field for indicating a further subdivision type of the command field.
  17. 根据权利要求16所述的装置,其中,所述指示字段包括以下至少之一:The apparatus of claim 16, wherein the indication field comprises at least one of:
    路由更新报文指示位,用于区分是NVE关于特定VN的第一次路由更新,还是后续的路由更新;The route update message indication bit is used to distinguish whether the NVE is the first routing update of the specific VN or the subsequent routing update;
    故障恢复报文指示位,用于NVE在故障恢复后的路由更新;The fault recovery message indication bit is used for routing update of the NVE after failure recovery;
    路由更新种类指示位,用于指示路由更新信息的种类。A route update type indicator bit for indicating the type of route update information.
  18. 根据权利要求14至16任一项所述的装置,其中,包括:The apparatus according to any one of claims 14 to 16, comprising:
    所述VNTP数据部分包括路由更新信息;The VNTP data portion includes routing update information;
    所述路由更新信息包括以下之一:IPv4、IPv6和MAC地址的路由信息。The routing update information includes one of the following: routing information of IPv4, IPv6, and MAC addresses.
  19. 根据权利要求14所述的装置,其中,所述协议处理和转发模块包括:The apparatus of claim 14, wherein the protocol processing and forwarding module comprises:
    收集单元,设置为NVA通过所述VN的NVE的路由更新信息,收集所述VN中的NVE信息,形成VN的所有NVE列表;The collecting unit is configured to collect the NVE information in the VN by using the routing update information of the NVE of the VN to form all NVE lists of the VN;
    转发单元,设置为所述NVA将所述路由更新信息发送到除发送所述路由更新信息的NVE之外的所述VN的NVE列表中的所有其他NVE,以及转发所述相关命令消息的执行结果信息到所述NVE。a forwarding unit, configured to send, by the NVA, the routing update information to all other NVEs in the NVE list of the VN except for the NVE that sends the routing update information, and forward an execution result of the related command message Information to the NVE.
  20. 一种虚拟网络实现的系统,包括NVE和NVA,包括:A virtual network implemented system, including NVE and NVA, including:
    权利要求8至13所述NVE装置和权利要求14至19所述NVA装置;The NVE device according to claims 8 to 13 and the NVA device according to claims 14 to 19;
    所述NVE装置和所述NVA装置建立TCP连接,并在其上运行虚拟网络传送协议VNTP;The NVE device and the NVA device establish a TCP connection and run a virtual network transfer protocol VNTP thereon;
    所述NVE装置通过所述VNTP发送VN的路由更新信息给所述NVA装置;The NVE device sends routing update information of the VN to the NVA device by using the VNTP;
    所述NVA装置将所述VN的路由更新信息转发到所述VN的所有其他NVE装置。The NVA device forwards the routing update information of the VN to all other NVE devices of the VN.
  21. 根据权利要求20所述的系统,其中,包括: The system of claim 20, comprising:
    所述NVE装置从所述NVA装置获取并保存所述VN的NVE装置的列表信息;The NVE device acquires and saves list information of the NVE device of the VN from the NVA device;
    在所述NVA装置失效的情况下,根据所述列表信息,所述NVE装置直接通过TCP连接和所述VN中的其他NVE装置进行路由信息更新,或者其他命令消息的处理。 In case the NVA device fails, according to the list information, the NVE device directly performs routing information update or other command message processing through a TCP connection and other NVE devices in the VN.
PCT/CN2015/079615 2014-10-21 2015-05-22 Virtual network realization method, nve and nva device and system WO2016062085A1 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN201410563808.0 2014-10-21
CN201410563808 2014-10-21
CN201410579431.8 2014-10-24
CN201410579431.8A CN105591865A (en) 2014-10-21 2014-10-24 Method, NVE device, NVA device, and system for virtual network realization

Publications (1)

Publication Number Publication Date
WO2016062085A1 true WO2016062085A1 (en) 2016-04-28

Family

ID=55760222

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/079615 WO2016062085A1 (en) 2014-10-21 2015-05-22 Virtual network realization method, nve and nva device and system

Country Status (2)

Country Link
CN (1) CN105591865A (en)
WO (1) WO2016062085A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111953599A (en) * 2020-07-14 2020-11-17 锐捷网络股份有限公司 Terminal authority control method and device, electronic equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100027546A1 (en) * 2008-07-31 2010-02-04 Gibbons John F Method and apparatus for providing routing a routing registry
US20120120957A1 (en) * 2007-01-17 2012-05-17 Rockstar Bidco, LP Border Gateway Protocol Procedures for Multi-Protocol Label Switching and Layer-2 Virtual Private Networks Using Ethernet-Based Tunnels
CN103491006A (en) * 2013-09-13 2014-01-01 清华大学 Method for forwarding data of virtual network router in centralized mode

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8369333B2 (en) * 2009-10-21 2013-02-05 Alcatel Lucent Method and apparatus for transparent cloud computing with a virtualized network infrastructure
CN102137017B (en) * 2011-03-17 2013-10-09 华为技术有限公司 Working method and device used for virtual network unit
CN103166909B (en) * 2011-12-08 2016-06-22 上海贝尔股份有限公司 The cut-in method of a kind of Virtual Networking System, device and system
US9178715B2 (en) * 2012-10-01 2015-11-03 International Business Machines Corporation Providing services to virtual overlay network traffic
CN103841023B (en) * 2012-11-22 2017-03-08 华为技术有限公司 The method and apparatus of data forwarding

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120120957A1 (en) * 2007-01-17 2012-05-17 Rockstar Bidco, LP Border Gateway Protocol Procedures for Multi-Protocol Label Switching and Layer-2 Virtual Private Networks Using Ethernet-Based Tunnels
US20100027546A1 (en) * 2008-07-31 2010-02-04 Gibbons John F Method and apparatus for providing routing a routing registry
CN103491006A (en) * 2013-09-13 2014-01-01 清华大学 Method for forwarding data of virtual network router in centralized mode

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111953599A (en) * 2020-07-14 2020-11-17 锐捷网络股份有限公司 Terminal authority control method and device, electronic equipment and storage medium
CN111953599B (en) * 2020-07-14 2022-06-21 锐捷网络股份有限公司 Terminal authority control method and device, electronic equipment and storage medium

Also Published As

Publication number Publication date
CN105591865A (en) 2016-05-18

Similar Documents

Publication Publication Date Title
US11546288B2 (en) Techniques for managing software defined networking controller in-band communications in a data center network
CN113765782B (en) Local repair of underlying faults using prefix independent convergence
US11019143B2 (en) Adaptive gossip protocol
US10171357B2 (en) Techniques for managing software defined networking controller in-band communications in a data center network
CN106936777B (en) Cloud computing distributed network implementation method and system based on OpenFlow
CN105264493B (en) Dynamic virtual machine migration on information centre's network
EP3459225B1 (en) Methods and apparatus for enabling live virtual machine (vm) migration in software-defined networking networks
CN113364610B (en) Network equipment management method, device and system
CN111736958B (en) Virtual machine migration method, system, computer equipment and storage medium
EP4024787A1 (en) Sharing routes using an in-memory data store in a distributed network system
CN117278503A (en) Activity detection and route convergence in a software-defined networking distributed system
US10263808B2 (en) Deployment of virtual extensible local area network
EP2843906B1 (en) Method, apparatus, and system for data transmission
WO2015143802A1 (en) Service function chaining processing method and device
JP5679343B2 (en) Cloud system, gateway device, communication control method, and communication control program
US20190215191A1 (en) Deployment Of Virtual Extensible Local Area Network
WO2018149701A1 (en) Method for an improved deployment and use of network nodes of a switching fabric of a data center or within a central office point of delivery of a broadband access network of a telecommunications network
CN113364660B (en) Data packet processing method and device in LVS load balancing
JP2016012909A (en) Communication device, communication method and communication system
WO2017175033A1 (en) Method and apparatus for enabling non stop routing (nsr) in a packet network
CN103107942B (en) The tracking of a kind of static routing and equipment
US20230254183A1 (en) Generating route target values for virtual private network routes
US9197557B2 (en) Relay server and relay communication system
WO2016062085A1 (en) Virtual network realization method, nve and nva device and system
CN108259292B (en) Method and device for establishing tunnel

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15852642

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15852642

Country of ref document: EP

Kind code of ref document: A1