WO2017113300A1

WO2017113300A1 - Route determining method, network configuration method and related device

Info

Publication number: WO2017113300A1
Application number: PCT/CN2015/100142
Authority: WO
Inventors: 刘正军
Original assignee: 华为技术有限公司
Priority date: 2015-12-31
Filing date: 2015-12-31
Publication date: 2017-07-06
Also published as: CN107113241A; CN107113241B

Abstract

Provided in the present application is a route determining method for shortening of a packet forwarding path and reducing loading on a gateway router. The method provided in the present application comprises: receiving packet information of a packet awaiting forwarding from a source switch, the packet information of the packet awaiting forwarding comprising a target IP address of the packet; determining forwarding information of the packet awaiting forwarding according to the packet information of the packet, wherein the packet awaiting forwarding is from a first routing domain and the target IP address thereof belongs to a second routing domain. Thereby, via the present route-determining method, packets of different routing domains can be forwarded without passing the gateway, thus reducing workload of the gateway and improving packet transmission efficiency.

Description

Route determination method, network configuration method, and related device

Technical field

The present invention relates to the field of communications, and in particular, to a route determining method, a network configuration method, and related devices.

Background technique

With the maturity of virtualization and cloud computing technologies, traffic within the data center is increasing. In the data center, data packets between different network segments need to be forwarded through the gateway router, which greatly increases the pressure on the gateway router.

In order to reduce the pressure on the gateway router, in the current technology, a relatively simple internal router (inner router, abbreviation: IR) is set in the node of the data center to replace the gateway router to process the data packet. In this way, if the source address of the packet is on the same gateway as the destination IP address of the packet, the packet can be forwarded to the destination IP address through the IR.

However, if the source address of the packet is not in the same gateway as the destination IP address of the packet, for example, the source address of the packet is at the first gateway and the destination address of the packet is under the second gateway, the first gateway needs to be virtualized. The private network (English: virtual private network, abbreviation: VPN) tunnel sends the packet to the second gateway, and the second gateway sends the packet. The forwarding of packets through the VPN tunnel means that packets need to be encapsulated and decapsulated multiple times and consume a large amount of network resources. When a large number of packets are concentrated at the gateway, the VPN tunnel is congested. The east-west traffic of the gateway competes for north-south traffic, causing the performance and reliability bottleneck of the gateway, resulting in reduced availability of the entire network.

Summary of the invention

The embodiment of the present application provides a route determining method, which can shorten the packet forwarding path and reduce the pressure of the gateway router. The application also proposes a network configuration method, related device, computing device and system.

The first aspect of the embodiment of the present application provides a route determining method, which is applicable to a software defined network (English: software defined network, abbreviation: SDN), wherein the SDN controller and the network manager (English: network manager) can execute the Route determination method to SDN controller For example, the SDN controller receives the packet information of the packet to be forwarded from the source switch, and the packet information includes at least the destination IP address of the packet to be forwarded, and the source switch receives the port to be forwarded. information. The to-be-forwarded packet is from the first routing domain, and the destination IP address of the to-be-forwarded packet belongs to the second routing domain. The SDN controller determines the forwarding information of the packet to be forwarded according to the packet information of the packet to be forwarded. The forwarding information of the packet to be forwarded includes at least the destination MAC address of the virtual machine corresponding to the destination IP address of the packet to be forwarded. The destination VNI of the network segment where the virtual machine corresponding to the destination IP address of the packet to be forwarded is forwarded. The SDN controller generates a target flow table according to the forwarding information of the to-be-forwarded packet, and sends the target flow table to the source switch, where the target flow table includes forwarding information of the to-be-forwarded packet and an operation indication, where the operation indication is used to indicate the source The switch adjusts the to-be-forwarded packet by modifying the MAC address of the gateway corresponding to the first routing domain in the packet to be forwarded to the destination MAC address, and adding the destination VNI to the to-be-forwarded packet. The operation indication is further used to indicate that the source switch sends the adjusted to-be-forwarded packet on the sending port after the adjustment of the packet to be forwarded is completed. The method provided by the present application enables the source switch to directly forward the to-be-forwarded packet to the destination IP address according to the indication of the target flow table, so that the packet to be forwarded does not need to be forwarded by the gateway, thereby shortening the packet forwarding path and further reducing the packet forwarding path. The number of times the packet is encapsulated and decapsulated saves network resources, reduces the pressure on the gateway router, and improves the availability of the SDN.

If the virtual machine corresponding to the destination IP address of the packet to be forwarded is connected to the non-source switch, the forwarding port of the packet to be forwarded is the uplink port of the source switch (English: uplink port). The uplink port is forwarded to the physical network between the source switch and the destination switch, and the physical network forwards the to-be-forwarded packet to the destination switch according to the information carried in the packet to be forwarded. The switches connected to the address may include devices such as physical switches, but do not include gateways. If the virtual machine corresponding to the destination IP address of the packet to be forwarded is connected to the source switch, the forwarding port of the packet to be forwarded is the port corresponding to the virtual machine corresponding to the destination IP address of the source switch.

Optionally, when determining the forwarding information of the to-be-forwarded packet, the SDN controller may search the forwarding information table of the first routing domain according to the packet information of the packet to be forwarded. The forwarding information table of the first routing domain includes a first target entry, and the first target entry includes a first destination network segment of the second routing domain. The SDN controller determines that the first destination network segment matches the destination IP address with the forwarded packet according to the destination IP address of the packet to be forwarded, and obtains the first target entry. SDN controller is also root According to the indication of the first target entry, the forwarding information table that jumps to the second routing domain obtains the matching entry of the packet information with the forwarding packet, and obtains the forwarding information of the packet to be forwarded from the matching entry. In this way, the SDN controller obtains the forwarding information of the packet to be forwarded by jumping the forwarding information table of the routing domain, so that the packet to be forwarded does not need to be forwarded by the gateway, which reduces the working load of the gateway.

Optionally, the SDN controller may further add the first target entry to the forwarding information table of the first routing domain for subsequent searching.

Optionally, the first target information item may include a first condition information field and a first indication information field, where the first condition information field includes at least a first destination network segment, and may further include other condition information; A forwarding information table for indicating a jump to the second routing domain.

Optionally, the SDN controller acquires the first target entry when the packet information of the packet to be forwarded satisfies all the conditions in the first condition information field. And, according to the indication of the first indication information field, jump to the forwarding information table of the second routing domain to obtain a matching entry of the packet information of the packet to be forwarded.

Optionally, the SDN controller may further determine that the network segment of the second routing domain or the second routing domain is to be interconnected with the first routing domain according to the user command or the packet to be forwarded.

Optionally, the SDN controller may further add a second target entry to the forwarding information table of the first routing domain, where the second target entry includes a second condition information field and a second indication information field, and the second condition information field The second destination network segment including at least the second routing domain may further include other condition information. The second indication information field is used to indicate a forwarding information table that jumps to the third routing domain; the SDN controller may further add a third target entry to the forwarding information table of the third routing domain, where the third target entry includes The third condition information field and the third indication information field, the third condition information field includes at least a third destination network segment of the second routing domain, and may further include other condition information. The third indication information field is used to indicate a forwarding information table that jumps to the second routing domain. After receiving the packet information of the packet to be forwarded, the SDN controller searches the forwarding information table of the first routing domain according to the destination IP address of the packet to be forwarded. The SDN controller determines that the destination IP address of the packet to be forwarded matches the destination IP address of the packet to be forwarded, and the SDN controller obtains the second target entry according to the first destination network segment. The indication of the two indication information field jumps to the forwarding information table of the third routing domain. The SDN controller determines that the destination network address of the packet to be forwarded matches the destination IP address of the packet to be forwarded, and the SDN controller obtains the third destination entry, and according to the The indication of the three indication information field, the jump to the forwarding information table of the second routing domain, and the matching entry of the to-be-forwarded packet, Then, the forwarding information of the to-be-forwarded packet is obtained from the matching entry. The SDN controller can jump between the forwarding information tables of the three routing domains, and can also jump between four or more forwarding information tables, which are not described here.

Optionally, the forms of the first to third indication fields may each include one or more of a string, a number, and an instruction.

Optionally, the SDN controller may further determine one or more to-be-added entries in the forwarding information table of the second routing domain, where the one or more to-be-added entries correspond to the to-be-added destination network segment of the second routing domain. The destination IP address of the packet to be forwarded belongs to the destination network segment to be added, that is, the destination network segment to be added matches the destination IP address of the packet to be forwarded. The SDN controller adds the one or more to-be-added entries to the forwarding information table of the first routing domain, so that the SDN controller can find the first routing domain after receiving the packet information of the to-be-forwarded packet. The information table is forwarded, and the matching entry to be added is obtained according to the destination IP address of the packet to be forwarded, and then the forwarding information of the packet to be forwarded is obtained from the matched entry to be added.

The second aspect of the present application provides a network configuration method, which is applicable to an SDN. The SDN controller and the network manager can perform the network configuration method. The SDN also includes a target host, and the target host internally includes a first IR and a second IR. The SDN controller creates a first interface on the first IR and assigns a first IP address to the first interface; creates a second interface on the second IR, and assigns a second IP address to the second interface. The first IR is used to replace the gateway of the first routing domain to process the forwarding information of the first routing domain, and the second IR is used to replace the gateway of the second routing domain to process the forwarding information of the second routing domain, the first IP address. Not in the first routing domain, the second IP address is not in the second routing domain. The SDN controller creates a network connection between the first interface and the second interface such that the first IR and the second IR can exchange data over the network connection. The SDN controller further adds a first routing entry to the routing table of the first IR, including a first destination address field and a first next hop field, where the first destination address field includes a second in the second routing domain In the network segment, the first next hop field includes a second IP address. In this way, after receiving the packet from the first routing domain and the destination IP address belongs to the second network segment, the first IR can obtain the first routing entry when searching the routing table of the first IR, and according to the first next The hop field sends the message to the second IR, so that the message can be forwarded by the second IR. It can be seen that the SDN controller can configure the IR communication between different routing domains in the host to enable packets between different routing domains to pass multiple IRs in the target host. The forwarding is performed without forwarding the packet to the gateway. This shortens the packet forwarding path shortening, reduces the number of times the packet is encapsulated and decapsulated, saves network resources, reduces the pressure on the gateway router, and improves the availability of the SDN.

Optionally, the SDN controller may further add a second routing entry to the routing table of the second IR, where the second destination address field and the second next hop field are included, where the second destination address field includes the first route The first network segment in the domain includes a first IP address in the second next hop field. In this way, after receiving the packet from the second routing domain and the destination IP address belongs to the first network segment, the second IR can obtain the second routing entry when searching the forwarding information table of the second routing domain, and according to the second The one-hop field sends the message to the first IR, so that the message can be forwarded by the first IR.

Optionally, the first IR and the second IR included in the target host may be created by the SDN controller.

Optionally, the first IP address and/or the second IP address may belong to a local link address network segment, that is, a 169.254 network segment. The network segment is generally not used by the normal network service, and the address of the network segment is allocated to the first interface and/or the second interface, which can ensure the IP usage range of the normal network service after the first IR and the second IR are interconnected. Will not be affected.

Optionally, the SDN controller creates a network connection between the first interface and the second interface by interconnecting the first interface and the second interface to the eth-pair through the Ethernet interface.

Optionally, the target host further includes a virtual switch, and the SDN controller joins the first interface and the second interface to the virtual switch, so that the first IR and the second IR can exchange data through the virtual switch, thereby implementing the first A network connection is created between the interface and the second interface.

Optionally, when the SDN controller joins the first interface and the second interface to the virtual switch, the first interface and the second interface may be added to the unused VLAN in the virtual switch to avoid the first interface and the second interface. It affects normal network services.

Optionally, the virtual switch in the target host can be connected to multiple local virtual machines (virtual machine, abbreviated VM), and all the VMs connected by the virtual switch are deployed in the first IR and the second IR. The first IR and the second IR are deleted.

The third aspect of the present application provides a packet forwarding method, including: the source switch obtains a packet to be forwarded, and sends the packet information of the packet to be forwarded to the SDN controller, where the packet information of the packet to be forwarded is sent. The destination IP address of the packet to be forwarded is forwarded. The packet to be forwarded is from the first routing domain and is to be forwarded. The destination IP address of the packet to be forwarded belongs to the second routing domain; the source switch receives the target flow table from the SDN controller, where the target flow table includes forwarding information of the to-be-forwarded packet and an operation indication, and the forwarding information of the to-be-forwarded packet The destination MAC address, the destination VNI, and the sending port, where the destination MAC address is the MAC address of the virtual machine corresponding to the destination IP address of the packet to be forwarded, and the destination VNI is the virtual machine corresponding to the destination IP address of the packet to be forwarded. On the network segment where the VNI is located, the sending port is the port used by the source switch to forward packets to be forwarded. The operation indication in the target flow table is used to indicate that the source switch adjusts the to-be-forwarded packet by modifying the MAC address of the gateway corresponding to the first routing domain in the to-be-forwarded packet to the destination MAC address, and adding the destination VNI to The message to be forwarded. The operation indication is further used to indicate that the source switch sends the adjusted to-be-forwarded packet on the sending port after the adjustment of the packet to be forwarded is completed. The source switch forwards the to-be-forwarded packet according to the indication of the target flow table.

A fourth aspect of the present application provides a packet forwarding method, including: a source switch in a target host acquires a packet to be forwarded, the packet to be forwarded is from a first routing domain, and a destination IP address of the packet to be forwarded The source router sends the to-be-forwarded packet to the first IR in the target host, and the first IR is used to replace the gateway of the first routing domain to process the forwarding information of the first routing domain. The routing table of the first IR of the first IR includes a first routing entry, where the first routing entry includes a first destination address field and a first next hop field, where the first destination address field includes a second routing domain In the second network segment, the first next hop field includes a second IP address, where the first network segment includes the destination IP address of the packet to be forwarded, and the second IP address is the IP address of the second interface of the second IR in the target host. address. The first IR searches the routing table of the first IR according to the destination IP address of the packet to be forwarded, obtains the first routing entry, and sends the to-be-forwarded packet to the second IR according to the first next hop field. After receiving the packet to be forwarded, the second IR searches the routing table of the second IR to obtain the forwarding path of the packet to be forwarded, and forwards the packet to the packet to be forwarded according to the forwarding path of the packet to be forwarded.

A fifth aspect of the present application provides a route determining apparatus suitable for SDN. The route determining apparatus includes a message receiving module, an information determining module, and a flow table sending module. The message receiving module receives, from the source switch, the packet information of the packet to be forwarded, where the packet information includes at least the destination IP address of the packet to be forwarded, and the information about the port on which the source switch receives the packet to be forwarded. . The to-be-forwarded packet is from the first routing domain, and the destination IP address of the to-be-forwarded packet belongs to the second routing domain. The information determining module determines the forwarding information of the to-be-forwarded packet according to the packet information of the packet to be forwarded. The forwarding information of the packet to be forwarded includes at least the purpose of the virtual machine corresponding to the destination IP address of the packet to be forwarded. MAC address, the destination VNI of the network segment where the virtual switch corresponds to the forwarding port of the packet to be forwarded and the destination IP address of the packet to be forwarded. The flow table sending module generates a target flow table according to the forwarding information of the to-be-forwarded packet, and sends the target flow table to the source switch, where the target flow table includes forwarding information of the to-be-forwarded packet and an operation indication, where the operation indication is used for indicating The source switch adjusts the to-be-forwarded packet by modifying the MAC address of the gateway corresponding to the first routing domain in the packet to be forwarded to the destination MAC address, and adding the destination VNI to the to-be-forwarded packet. The operation indication is further used to indicate that the source switch sends the adjusted to-be-forwarded packet on the sending port after the adjustment of the packet to be forwarded is completed. The route determining apparatus provided by the present application enables the source switch to directly forward the to-be-forwarded packet to the destination IP address according to the forwarding information of the packet to be forwarded, so that the packet to be forwarded does not need to be forwarded by the gateway, thereby shortening the packet forwarding. The path, in turn, reduces the number of packet encapsulations, saves network resources, reduces the pressure on the gateway router, and improves the availability of the SDN.

Optionally, the information determining module, when determining the forwarding information of the to-be-forwarded packet, may search the forwarding information table of the first routing domain according to the packet information of the to-be-forwarded packet. The forwarding information table of the first routing domain includes a first target entry, and the first target entry includes a first destination network segment of the second routing domain. The information determining module determines that the first destination network segment matches the destination IP address with the forwarded packet according to the destination IP address of the packet to be forwarded, and obtains the first target entry. The information determining module further obtains, according to the indication of the first target entry, the forwarding information table of the second routing domain to obtain the matching entry of the packet information with the forwarding packet, and obtains the to-be-forwarded packet from the matching entry. Forward the message. The information determining module obtains the forwarding information of the to-be-forwarded packet by forwarding the forwarding information table of the different routing domains, so that the to-be-forwarded packet does not need to be forwarded by the gateway.

Optionally, the SDN controller may further add a module, where the first target entry is added to the forwarding information table of the first routing domain for subsequent searching.

Optionally, the information determining module acquires the first target entry when the packet information of the to-be-forwarded packet satisfies all the conditions in the first condition information field. And, according to the indication of the first indication information field, jump to the forwarding information table of the second routing domain to obtain a matching entry of the packet information of the packet to be forwarded.

Optionally, the entry adding module may further add a second to the forwarding information table of the first routing domain. The target entry, the second target entry includes a second condition information field and a second indication information field, where the second condition information field includes at least a second destination network segment of the second routing domain, and may further include other condition information. The second indication information field is used to indicate a forwarding information table that jumps to the third routing domain; the entry adding module may further add a third target entry to the forwarding information table of the third routing domain, where the third target entry includes The third condition information field and the third indication information field, where the third condition information field includes at least a third destination network segment of the second routing domain, and may further include other condition information. The third indication information field is used to indicate a forwarding information table that jumps to the second routing domain. After the message receiving module receives the message information of the packet to be forwarded, the information determining module searches the forwarding information table of the first routing domain according to the destination IP address of the to-be-forwarded packet. The information determining module determines that the second destination network segment matches the destination IP address of the to-be-forwarded packet, and the information determining module obtains the second target entry, according to the first destination network segment. The indication of the two indication information field jumps to the forwarding information table of the third routing domain. The information determining module determines that the third destination network segment matches the destination IP address of the to-be-forwarded packet, and the information determining module obtains the third target entry, and The indication of the information field to be forwarded to the forwarding information table of the second routing domain is used to obtain the matching entry of the packet to be forwarded, and then the forwarding information of the packet to be forwarded is obtained from the matching entry. The information determining module can jump between the forwarding information tables of the three routing domains, and can also jump between four or more forwarding information tables, and details are not described herein.

Optionally, the SDN controller may further include an add-on entry module, configured to determine one or more to-be-added entries in the forwarding information table of the second routing domain, where the one or more to-be-added entries correspond to the second route Destination network segment to be added to the domain. The destination IP address of the packet to be forwarded belongs to the destination network segment to be added, that is, the destination network segment to be added matches the destination IP address of the packet to be forwarded. The add-in entry module adds the one or more to-be-added entries to the forwarding information table of the first routing domain, so that the SDN controller can find the first routing domain after receiving the packet information of the to-be-forwarded packet. The forwarding information table obtains the matching entry to be added according to the destination IP address of the packet to be forwarded, and then obtains the forwarding information of the to-be-forwarded packet from the matched entry to be added.

A sixth aspect of the present application provides a network configuration apparatus suitable for SDN. The SDN also includes a target host, and the target host internally includes a first IR and a second IR. The SDN controller specific package Interface creation module, network connection module and route addition module. The interface creation module creates a first interface on the first IR, and assigns a first IP address to the first interface, a second interface on the second IR, and a second IP address to the second interface. The first IR is used to replace the gateway of the first routing domain to process the forwarding information of the first routing domain, and the second IR is used to replace the gateway of the second routing domain to process the forwarding information of the second routing domain, the first IP address. Not in the first routing domain, the second IP address is not in the second routing domain. The network connection module creates a network connection between the first interface and the second interface, so that the first IR and the second IR can exchange data through the network connection. The route adding module adds a first routing entry to the routing table of the first IR, where the first destination address field and the first next hop field are included, where the first destination address field includes the second network in the second routing domain The segment includes a second IP address in the first next hop field. In this way, after receiving the packet from the first routing domain and the destination IP address belongs to the second network segment, the first IR can obtain the first routing entry when searching the routing table of the first IR, and according to the first next The hop field sends the message to the second IR, so that the message can be forwarded by the second IR. It can be seen that the SDN controller configures the IR communication between the different routing domains in the host to enable the packets between different routing domains to be forwarded through multiple IRs on the target host without forwarding the packets to the gateway. It can shorten the forwarding path of packets in the network, reduce the number of times the packet is encapsulated and decapsulated, save network resources, reduce the pressure on the gateway router, and improve the availability of SDN.

Optionally, the route adding module may further add a second routing entry to the routing table of the second IR, where the second destination address field and the second next hop field are included, where the second destination address field includes the first route The first network segment in the domain includes a first IP address in the second next hop field. In this way, after receiving the packet from the second routing domain and the destination IP address belongs to the first network segment, the second IR can obtain the second routing entry when searching the forwarding information table of the second routing domain, and according to the second The one-hop field sends the message to the first IR, so that the message can be forwarded by the first IR.

Optionally, the SDN controller may further include an IR management module, configured to create a second IR in the target host when the target host does not include the second IR.

Optionally, the network connection module passes the Ethernet interface through the first interface and the second interface. An eth-pair interconnect creates a network connection between the first interface and the second interface.

Optionally, the target host further includes a virtual switch, and the network connection module adds the first interface and the second interface to the virtual switch, so that the first IR and the second IR can exchange data through the virtual switch, thereby implementing the first A network connection is created between the interface and the second interface.

Optionally, when the first interface and the second interface are added to the virtual switch, the network interface module may add the first interface and the second interface to the unused VLAN in the virtual switch to avoid the first interface and the second interface. It affects normal network services.

Optionally, the virtual switch in the target host may be connected to multiple local VMs, and the IR management module is further configured to delete the first IR and the second when all the VMs connected to the virtual switch are deployed in the first IR and the second IR. IR.

A seventh aspect of the present application provides a message forwarding apparatus suitable for a host in an SDN. The packet forwarding device includes: a packet obtaining module, configured to obtain a packet to be forwarded, and send the packet information of the packet to be forwarded to the SDN controller, where the packet information of the packet to be forwarded carries the packet to be forwarded. The destination IP address, the packet to be forwarded is from the first routing domain, and the destination IP address of the packet to be forwarded belongs to the second routing domain; the flow table receiving module is configured to receive the target flow table from the SDN controller, the target flow The forwarding information of the to-be-forwarded packet and the operation indication are as follows: the destination MAC address, the destination VNI, and the sending port, where the destination MAC address is the destination IP address of the packet to be forwarded. The MAC address of the virtual machine, the destination VNI is the VNI of the network segment where the virtual machine corresponding to the destination IP address of the packet to be forwarded, and the sending port is the port used by the source switch to forward the packet to be forwarded. The operation indication in the target flow table is used to indicate that the source switch adjusts the to-be-forwarded packet by modifying the MAC address of the gateway corresponding to the first routing domain in the to-be-forwarded packet to the destination MAC address, and adding the destination VNI to The message to be forwarded. The operation indication is further used to indicate that the source switch sends the adjusted to-be-forwarded packet on the sending port after the adjustment of the packet to be forwarded is completed. The packet forwarding module is configured to forward the to-be-forwarded packet according to the indication of the target flow table.

An eighth aspect of the present application provides a message forwarding apparatus suitable for a host in an SDN. The message forwarding device includes: a virtual switch, a first IR, and a second IR. The virtual switch is configured to obtain a packet to be forwarded, and send the to-be-forwarded packet to the first IR in the target host, where the to-be-forwarded packet is from the first routing domain, and the destination IP address of the to-be-forwarded packet Belongs to the second routing domain. The first IR is used to replace the gateway of the first routing domain to process forwarding information of the first routing domain. First IR's The routing table of the IR includes a first routing entry, where the first routing entry includes a first destination address field and a first next hop field, where the first destination address field includes a second network segment in the second routing domain, The next hop field includes a second IP address, where the first network segment includes the destination address of the packet to be forwarded, and the second IP address is the IP address of the second interface of the second IR in the target host. The first IR is configured to: find the first routing entry by using the routing table of the first IR according to the destination IP address of the to-be-forwarded packet, and send the to-be-forwarded packet to the second IR according to the first next hop field. The second IR is configured to: after receiving the to-be-forwarded packet, find the routing table of the second IR to obtain the forwarding path of the packet to be forwarded, and forward the packet to the to-be-forwarded packet according to the forwarding path of the packet to be forwarded.

A ninth aspect of the present application provides a computing device including a processor, a memory, and a communication interface. The processor is operative to perform the route determination method provided by the first aspect of the present application by invoking an instruction in the memory.

A tenth aspect of the present application provides a computing device including a processor, a memory, and a communication interface. The processor is configured to perform the network configuration method provided by the second aspect of the present application by invoking an instruction in the memory.

An eleventh aspect of the present application provides a computing device including a processor, a memory, and a communication interface. The processor is configured to execute the message forwarding method provided by the third aspect of the present application by invoking an instruction in the memory.

A twelfth aspect of the present application provides a computing device comprising a processor, a memory, and a communication interface. The processor is configured to execute the message forwarding method provided by the fourth aspect of the present application by invoking an instruction in the memory.

A thirteenth aspect of the present application provides a network system, comprising the computing device provided by the ninth aspect of the present application, and the computing device provided by the at least one eleventh aspect, or the computing device provided by the tenth aspect, and at least one tenth The computing device provided by the two aspects.

DRAWINGS

Figure 1 is a schematic diagram of a network logical architecture in the current stage of technology;

2 is a schematic diagram of a network entity architecture in the current stage of technology;

Figure 3 (a) is a schematic diagram of a packet forwarding path of the same routing domain in the conventional method;

FIG. 3(b) is a schematic diagram of a packet forwarding path of the same routing domain implemented by using the IR;

4 is a schematic diagram of a packet forwarding path between different routing domains in a conventional method;

5 is a schematic diagram of a logical architecture of an SDN;

6 is a structural diagram of a computing device according to an embodiment of the present invention;

7(a) is a flowchart of a route determining method according to an embodiment of the present invention;

FIG. 7(b) is a schematic diagram of a forwarding path of packets between different routing domains according to an embodiment of the present invention;

FIG. 8(a) is a flowchart of a network configuration method according to an embodiment of the present invention;

FIG. 8(b) is a schematic diagram of another forwarding path of packets between different routing domains according to an embodiment of the present invention;

FIG. 9 is a structural diagram of a route determining apparatus according to an embodiment of the present invention; FIG.

FIG. 10 is a structural diagram of a network configuration apparatus according to an embodiment of the present invention.

detailed description

The embodiment of the invention provides a route determining method, which can shorten the packet forwarding path and reduce the pressure of the gateway router. The present invention also proposes a network configuration method and related devices, which will be separately described below.

See Figure 1 for the basic logical architecture of the network in the current stage of technology. Among them, S1 to S6 respectively represent different network segments (English: subnet), and the first gateway and the second gateway are gateway routers. The network segments S1, S2, and S6 are connected to the first gateway, and the first gateway is responsible for the communication between the network segments S1, S2, and S6 and the communication between the network segments S1, S2, and S6 and the external network. For convenience of description, a gateway and a collection of all network segments attached thereto are collectively referred to as a routing domain in the present application. Therefore, in FIG. 1, the first gateways, S1, S2, and S6 all belong to the first routing domain. Similarly, the network segments S3, S4, and S5 are connected to the second gateway, and the second gateway and S3, S4, and S5 all belong to the second routing domain. A VPN tunnel is established between the first gateway and the second gateway, and data exchanged between the first routing domain and the second routing domain passes through the VPN tunnel.

The content described in the previous paragraph is the logical deployment of the network. Please refer to Figure 2 for the network entity architecture built in the actual application. Specifically, the interconnection network includes a gateway and multiple hosts, and in FIG. 2, only the first gateway, The second gateway, the first host, and the second host are described as an example. Multiple virtual machines (English: virtual machine, abbreviated: VM) are deployed on each host, and a virtual switch (virtual switch, abbreviated as vswitch) is deployed to implement interworking between VMs and communication between VMs and external networks. . Different hosts can also exchange data through a physical switch (English: Top of Rank, abbreviation: TOR) (not shown). The first vswitch (hereinafter referred to as the first switch) on the first host is connected to VM 1, VM 2, and VM 3, wherein VM 1 and VM 2 belong to S1, and VM 3 belongs to S3. The second vswitch (hereinafter referred to as the second switch) on the second host is connected to the VM 4, the VM 5, and the VM 6. The VM 4 and the VM 5 belong to S2, and the VM 6 belongs to S3. The first switch and the second switch are both connected to the first gateway and the second gateway.

The connection relationship between the gateway router and the host shown in FIG. 3(a) is only a logical connection relationship, and the gateway router may be served by an independent device in the network, or may be served by an object such as a VM in the host. .

In the conventional method, when the VM 1 needs to send a message to the VM 5, the VM 1 and the VM 5 belong to different network segments in the first routing domain, so the packet needs to be forwarded by the gateway, and the packet forwarding is specific. For the path, refer to Figure 3 (a): VM 1 sends the packet to the first switch network segment, and the first switch sends the packet to the first gateway, and then the first gateway forwards the packet to the second switch. After receiving the packet, the second switch sends the packet to the VM 5 according to the destination IP address carried in the packet.

As shown in Figure 3 (a), packets between different network segments in the same routing domain need to be forwarded to the gateway for forwarding. The packet forwarding path is longer. Various improvements have been proposed for this stage of the technology, for example, a relatively simple router is installed inside the host to replace the gateway for local packet processing, which is referred to as an internal router in this application. The IR can be a physical entity inside the host or a virtual entity, such as a VM, a container (English: docker), a linux namespace (English: namespace), and the like. For the method of forwarding packets on different network segments in the same routing domain by using the IR, refer to FIG. 3(b): the first host is internally configured with a first IR, and the first IR is used to replace the first gateway to process the first host. Packet forwarding information of the routing domain. The first IR corresponds to a routing table, and packet forwarding information of the first routing domain is recorded in the routing table. The VM 1 sends a packet to be forwarded to the first switch, and the purpose of the packet is VM 5. After receiving the packet to be forwarded, the first switch does not send the packet to the first gateway, but sends the packet to the first IR. After receiving the to-be-forwarded packet, the first IR searches for the matching route entry in the routing table corresponding to the first IR, and forwards the packet to the second exchange according to the search result. The message is sent by the second switch to the VM 5. Therefore, the packet between the VM 1 and the VM 5 does not need to be forwarded by the first gateway, which shortens the forwarding path of the packet, improves the forwarding efficiency of the packet, and reduces the bandwidth occupation of the first gateway.

The packet forwarding method in the same routing domain is described above. The following describes the packet forwarding method between different routing domains. See Figure 4. If the VM 1 is to send a message to the VM 6, the S1 of the VM 1 belongs to the first routing domain, and the S3 of the VM 6 belongs to the second routing domain. Therefore, the first IR receives the packet to be sent to the VM 6. It cannot be forwarded directly to the second switch. The first IR needs to be sent to the first gateway, and is sent by the first gateway to the second gateway through the VPN tunnel, and then sent by the second gateway to the second switch.

As shown in Figure 4, in the current technology, the packets of the first routing domain need to pass through the VPN tunnel between the gateways to reach the second routing domain. This causes a lot of problems when the first routing domain and the second routing domain need to exchange a large number of packets. For example, a packet that is forwarded by a gateway needs to be encapsulated and decapsulated multiple times. The process of encapsulation and decapsulation consumes a large amount of network resources. When a large number of packets are concentrated at the gateway, the VPN tunnel is congested. The east-west traffic of the gateway competes for north-south traffic, causing the performance and reliability bottleneck of the gateway, resulting in reduced availability of the entire network.

In response to the problems described in the preceding paragraph, the present invention proposes an improved method suitable for use in a software defined network. SDN is a new type of virtualized network. By separating the control plane of the network device from the data plane, flexible control of network traffic is realized, and the network becomes more intelligent as a pipeline. The solution provided by the present invention is specifically applicable to an SDN controller or a network manager. The SDN controller in the present invention may refer to an SDN controller, or a network manager, or a unit integrated with an SDN controller and a network manager.

For the logical architecture of SDN, refer to Figure 5, including the SDN controller, which is used to control and manage the devices in the SDN. The SDN controller may be an independent device or device, or may be deployed in each host in the form of a VM; the SDN may have an SDN controller, or the functions of the SDN controller may be distributed on multiple nodes, where Not limited. The SDN also includes multiple hosts. In the present invention, only the first host and the second host are taken as an example for description. The SDN controller is responsible for determining the forwarding rule of the packet to be forwarded according to the indication information of the user and the SDN network topology, and notifying the determined forwarding rule to the host in the SDN in the form of a flow table.

The SDN controller can be implemented by the computing device 600 shown in FIG. The organizational structure of the computing device 600 includes a processor 602, a memory 604, and a bus 608, a communication interface 606.

The processor 602, the memory 604, and the communication interface 606 can implement communication connection with each other through the bus 608, and can also implement communication by other means such as wireless transmission.

The memory 604 memory may include a volatile memory (English: volatile memory), such as random access memory (English: random-access memory, abbreviation: RAM); the memory may also include non-volatile memory (English: non-volatile memory) ), such as read-only memory (English: read-only memory, abbreviation: ROM), flash memory (English: flash memory), hard disk (English hard disk drive, abbreviation: HDD) or solid state drive (English: solid-state drive , abbreviation: SSD); the memory 604 may also include a combination of the above types of memories. Program code for implementing the present invention may be stored in memory 604 and executed by processor 602. The first forwarding information table, the second forwarding information table, and the third forwarding information table for implementing the present invention may be stored in the memory 604 and used by the processor 602 when executed.

The computing device 600 obtains the message information of the message to be forwarded through the communication interface 606, and sends a flow table or an instruction through the communication interface 606.

The processor 602 can be a central processing unit (English: central processing unit, abbreviation: CPU). By accessing the program code in the memory 604, the processor 602 can receive the message information of the message to be forwarded, and determine the forwarding information of the message to be forwarded according to the message information of the message to be forwarded, and forward the message to be forwarded through the flow table. The forwarding information of the packet is sent to the switch that sends the packet information of the packet to be forwarded. The forwarding information of the packet to be forwarded includes the destination MAC address, the sending port, and the destination VNI of the packet to be forwarded. The method for determining the forwarding information of the packet to be forwarded according to the packet information of the packet to be forwarded is different. The processor 602 may add the first target entry to the forwarding information table of the first routing domain in advance, so that the processor 602 is After receiving the packet information of the packet to be forwarded, the device may obtain the first target entry from the forwarding information table of the first routing domain according to the packet information of the packet to be forwarded, and then jump to the indication of the first target entry. And obtaining the matching entry of the packet information of the packet to be forwarded in the forwarding information table of the second routing domain, and obtaining the forwarding information of the packet to be forwarded from the matching entry of the packet information of the packet to be forwarded. Alternatively, the processor 602 may add a second target entry to the forwarding information table of the first routing domain in advance, and add a third target entry to the forwarding information table of the third routing domain. After receiving the packet information of the packet to be forwarded, the processor 602 can obtain the second target entry from the forwarding information table of the first routing domain according to the packet information of the packet to be forwarded, and then the second target entry. The instruction jumps to the forwarding information table of the third routing domain, obtains the third target entry in the forwarding information table of the third routing domain, and jumps according to the third target entry. Go to the matching entry of the packet information of the packet to be forwarded, and obtain the forwarding information of the packet to be forwarded from the matching entry of the packet information of the packet to be forwarded. Alternatively, the processor 602 may add a partial entry in the forwarding information table of the second routing domain to the forwarding information table of the first routing domain, so that the processor 602 can directly directly process the packet information according to the packet to be forwarded. The forwarding information of the to-be-forwarded packet is obtained in the forwarding information table of the first routing domain.

The processor 602 can also create a first interface on the first IR in the target host by accessing the program code in the memory 604, and allocate a first Internet Protocol (English: Internet Protocol, IP address) address to the first interface. Create a second interface on the second IR (create a second IR if there is no second IR in the target host), assign a second IP address to the second interface, and then create a network between the first interface and the second interface. connection. Then, the first routing entry is added to the routing table of the first IR. The first destination address field in the first routing entry is the second network segment of the second routing domain, and the first next hop field is the second IP address. Optionally, the processor 602 may further add a second routing entry to the routing table of the second IR, where the second destination address field in the second routing entry is the first network segment of the first routing domain, and the second next hop The field is the first IP address. The first IR and the second IR are deleted when the VM that belongs to the first routing domain or the second routing domain is not attached to the virtual switch of the target host.

The present invention also provides a route determining method. The SDN controllers in FIG. 5 and FIG. 6 execute the method at runtime to enable packets between different routing domains to communicate without passing through a gateway. The SDN controller can interconnect the entire first routing domain and the entire second routing domain, but only the first routing domain can communicate with some network segments in the second routing domain. In this embodiment, only the network segment S1 and the network segment S3 are interconnected as an example for description. The process is shown in Figure 7(a):

701. The SDN controller determines that the network segment S1 and the network segment S3 are to be interconnected. S1 belongs to the first routing domain in the interconnection network, and S3 belongs to the second routing domain. The first routing domain should not include S3 in order to ensure that the packets in S1 can reach S3 correctly after the interworking. Optionally, the second routing domain may not include S1, in order to ensure that the packets in S3 can reach S1 correctly after the interworking.

The SDN controller can determine that S1 and S3 are to be interconnected according to user instructions.

702. The SDN controller adds a first target entry to the first forwarding information table.

As an SDN management device, the SDN controller manages multiple forwarding information tables, each forwarding information table corresponding to a routing domain, and each forwarding information table includes multiple entries, and these entries record forwarding in the corresponding routing domain. information. In this embodiment, the forwarding information table corresponding to the first routing domain is referred to as the first The forwarding information table is referred to as a second forwarding information table, and the forwarding information table corresponding to the third routing domain is referred to as a third forwarding information table.

There are many forms of the forwarding information table in the SDN controller. Specifically, each entry may include a condition information field and a forwarding information field. The destination IP address is recorded in the condition information field, and other condition information may also be recorded. The forwarding information field is used to record the forwarding information, and the Layer 3 forwarding information, such as the next hop corresponding to the destination IP address, can be recorded. The Layer 3 forwarding information can be the identifier of the routing domain. The SDN controller can further obtain the destination IP address through Layer 3 forwarding information. Address corresponding to the sending port, medium access control layer (English: media access control, abbreviation: MAC) address, virtual network identifier (English: virtual network identifier, abbreviation: VNI), virtual scalable LAN tunnel terminal (English: virtual extensible local Area network tunneling end point (abbreviation: VTEP) identifies forwarding information. The forwarding information field can also directly record forwarding information such as the sending port, MAC address, VNI, and VTEP identifier corresponding to the destination IP address. An example of one form of the forwarding information table is shown in Table 1. The SDN controller can look up Table 1 for the forwarding information of the to-be-forwarded packet according to the destination IP address of the packet to be forwarded. If the other entries in the table 1 do not match the destination IP address of the packet to be forwarded, the SDN controller determines that the packet to be forwarded matches the default entry, and obtains the gateway information, where the gateway information is used to indicate that the packet is to be forwarded. The text is sent to the gateway. The forwarding information table may also be in other forms, which is not limited herein.

条件信息Condition information	转发信息Forwarding information
目的IP地址1 Destination IP address 1	转发信息1 Forwarding information 1
目的IP地址2Destination IP address 2	转发信息2Forwarding information 2
……......	……......
默认表项Default entry	网关信息Gateway information

Table 1

In the current technology, if the VM 1 in S1 is to send a packet to be forwarded to the VM 6 in the S3, the first switch connected to the VM 1 receives the packet to be forwarded and the information of the packet to be forwarded. The information is sent to the SDN controller, and the information of the to-be-forwarded packet includes the port that the first switch receives the packet to be forwarded and the destination IP address of the packet to be forwarded. After receiving the information of the to-be-forwarded packet, the SDN controller determines, according to the port information in the information of the to-be-forwarded packet, that the to-be-forwarded packet belongs to the first The routing domain determines to find the first forwarding information table. It can be understood that, because the destination IP address of the to-be-forwarded packet belongs to the S3 network segment of the second routing domain, the forwarding information of the to-be-forwarded packet cannot be found in the first forwarding information table. The SDN controller determines that the to-be-forwarded packet needs to be forwarded by the first gateway, and sends the packet to be forwarded to the first gateway by using the flow table.

In the present invention, the SDN controller adds a first target entry to the first forwarding information table. Different from the other entries in the first forwarding table, the first target entry is used to indicate that the jump to the second forwarding information table is used to find the matching entry of the to-be-forwarded packet.

Optionally, the first target information item may include a first condition information field, and is used to describe a condition that is required to obtain the first target entry, where at least the first destination network segment that belongs to the second routing domain is included. Destination, or dest). The first destination network segment is a contiguous address. Optionally, the first destination network segment may include the network segment S3 because the S1 and the S3 are interconnected in this embodiment. For example, if the first forwarding information table is in the form of a routing table, the first condition information field of the first target entry may be served by the destination address field, and the destination address field is filled with the IP address segment of the network segment S3. The first condition information field may include other conditions in addition to the first destination network segment, and may be other forms than the routing table (such as a triplet or a quintuple), which is not limited herein. The SDN controller can obtain the first target entry only when it determines that all the conditions in the first condition information field are satisfied.

Optionally, the first target information entry may further include a first indication information field, configured to indicate that the jump to the second forwarding information table. The first indication information field may be a preset number, a string, or other forms. The following only takes a character string as an example: the correspondence between different strings and different operations is preset in the SDN controller, and the search is performed. The character string corresponding to the operation of the second forwarding information table is filled in the first indication information field. After the SDN controller obtains the first target entry, the operation of searching for the second forwarding information table may be determined according to the character string of the first indication information field. In addition, the first indication information field may also be in the form of an instruction (such as an action instruction), and the instruction indicates to jump to the second forwarding information table, so that the SDN controller does not need to follow the number after acquiring the first target entry. Or the correspondence between the string and the operation to determine the operation that needs to be performed, and directly execute the execution in the first indication information field.

An example of the form of the first forwarding information table to which the first target entry is added is shown in Table 2. It is worth noting that the first target entry needs to be added before the default entry to ensure that the SDN controller is When the first forwarding information table is searched, the first target entry can be preferentially found, and then the default entry is found.

条件信息Condition information	转发信息Forwarding information
目的IP地址1 Destination IP address 1	转发信息1 Forwarding information 1
目的IP地址2Destination IP address 2	转发信息2Forwarding information 2
……......	……......
第一条件信息字段First condition information field	第一指示信息字段First indication field
……......	……......
默认表项Default entry	网关信息Gateway information

Table 2

If the SDN controller obtains the first target entry when searching the first forwarding information table, the hop controller jumps to the second forwarding information table to search for the matching entry according to the first target entry. For specific jump methods, please refer to steps 703 to 709:

703. The VM 1 sends a first packet to the first switch, where the destination IP address of the first packet is an IP address of the VM 6. The first switch receives the first packet. The VM 1 belongs to the S1 network segment in the first routing domain, and the VM 6 belongs to the S3 network segment in the second routing domain.

Optionally, the first packet may also carry the MAC address of the first gateway. Optionally, the first switch can also store the correspondence between the ports of the switch and the network segment, so that the first switch can determine the first packet from the S1 network according to the port that receives the first packet. Segment, and add the VNI of the S1 network segment to the first packet.

After receiving the first packet, the first switch needs to request a flow table from the SDN controller to obtain forwarding information of the first packet.

704. The first switch sends the packet information of the first packet to the SDN controller, to request a flow table from the SDN controller, to obtain forwarding information of the first packet. The SDN controller receives the message information of the first packet.

The first switch may send the first packet and the information of the port that receives the first packet as the packet information of the first packet to the SDN controller, or the port that receives the first packet, The summary information such as the destination IP address is sent to the SDN controller as the packet information of the first packet. However, regardless of the form of the message information of the first packet, it is necessary to include the destination IP address information, so that the SDN control The controller can determine the destination IP address of the first packet according to the packet information of the first packet.

705. The SDN controller searches for the first forwarding information table according to the packet information of the first packet.

The SDN controller may determine, according to the packet information of the first packet, that the first switch receives the information of the port of the first packet or other information to determine that the first packet is from the first routing domain, and therefore determines to find the first forwarding. Information Sheet.

The destination IP address of the first packet belongs to the network segment S3, and the destination IP address of the first packet matches the first destination network segment. The SDN controller can obtain the first target entry by searching the first forwarding information table. .

706. The SDN controller searches for the matching entry of the first packet in the second forwarding information table according to the indication of the first target entry.

The SDN controller can obtain the forwarding information of the first packet by searching for the matching entry in the second forwarding information table, because the second forwarding information table records the forwarding information in the second routing domain.

707. The SDN controller obtains the forwarding information of the first packet from the matching entry of the first packet.

After the SDN controller finds the matching entry of the first packet in the second forwarding information table, the SDN controller can obtain the forwarding information used by the source switch to forward the first packet, and forward the first packet. The information should at least include: the destination MAC address, the destination VNI, and the sending port of the first packet. The destination MAC address is the MAC address of the VM corresponding to the destination IP address of the first packet, which is specifically the MAC address of the VM6. The destination VNI is the VNI of the network segment where the VM corresponding to the destination IP address of the first packet is located. Specifically, it should be the VNI of the S3 network segment; the sending port of the first packet is used to indicate the port used by the first switch to send the first packet. Optionally, if the VM1 and the VM6 communicate through a virtual extensible local area network (VXLAN), the matching entry further includes the destination VTEP identifier. In this embodiment, VM1 and VM6 are located in different hosts as an example. Therefore, the sending port of the first packet is an uplink port, and the first switch can send the first packet to other switches through the uplink port. Two switches).

However, in a practical application, the VM that sends the first packet and the VM corresponding to the destination IP address of the first packet may be connected to the same switch (the VM6 and VM1 are located in the first host simultaneously, and the VM6 is also attached to the VM6). Under the first switch). In this case, the sending port of the first packet is not the uplink port, but the port where the first switch communicates with the VM6.

It should be noted that the process of obtaining the forwarding information of the first packet from the matching entry of the first packet obtained in the second forwarding information table may be implemented in multiple manners. For example, the forwarding information of the to-be-forwarded packet is directly recorded in the matching entry of the first packet. For example, if the identifier of the second routing domain is recorded in the matching entry of the first packet, the SDN controller obtains the identifier of the second routing domain according to the identifier of the second routing domain, and is in the second routing domain according to the packet information of the first packet. The forwarding information of the first packet is queried in the routing information table corresponding to the identifier. In this implementation manner, each routing domain has a corresponding routing information table.

708. The SDN controller sends the target flow table to the first switch according to the forwarding information of the first packet, where the target flow table includes forwarding information of the first packet and an operation indication, where the operation indication is used to indicate that the first switch adjusts The first packet is then forwarded from the sending port by the adjusted first packet. The specific adjustment operation includes: modifying the MAC address of the first gateway carried in the first packet to the destination MAC address in the forwarding information, and adding the destination VNI to the first packet (if the step is performed in step 703) If the VNI of the S1 network segment is added to a packet, the VNI of the S1 network segment in the first packet is replaced with the destination VNI.

In an optional implementation manner, after obtaining the forwarding information of the first packet, the SDN controller further generates an operation indication, and generates a target flow table according to the operation indication and the forwarding information, for example, modify: a destination MAC address, Modify: Destination VNI, transmit: The sending port of the first packet. After receiving the target flow table, the first switch performs the adjustment of the first packet according to the operation indication and the forwarding information, and sends the adjusted first packet from the sending port.

Optionally, the SDN controller may also generate a matching flow table corresponding to the second switch, and send the matching flow table to the second switch, so that the S3 network segment is configured. When the packet needs to be sent to the S1 network segment, the matching traffic table can be matched to the second switch to forward the packet to the first switch. The matching flow table may include multiple flow tables, and the SDN controller sends the matching flow table to the second switch before or after sending the target flow table to the first switch, or synchronously with sending the target flow table to the first switch. .

709. The first switch adjusts and forwards the first packet according to the target flow table.

The first switch adjusts the first packet according to the target flow table, and after the adjustment of the first packet is completed, the first packet is forwarded from the sending port of the first packet.

Optionally, if the destination VTEP identifier is also obtained in step 707, the first switch further adds the destination VTEP identifier to the first packet.

The uplink port of the first switch is connected to multiple other switches through the physical switch, and the physical switch can determine to send the adjusted first packet to the first packet according to the destination MAC address and the destination VNI in the first packet. Two switches. Then, the physical switch directly sends the adjusted first packet to the second switch. The second switch receives the adjusted first packet. It can be seen that the entire forwarding path of the first packet does not pass through the gateway.

710. The second switch sends the first packet to the VM 6.

The second switch sends the first packet to the VM6 according to the destination MAC address and the destination VNI in the first packet.

It is worth noting that there is no specific order between steps 701, 702 and steps 703, 704, as long as step 702 is before step 705.

In addition, step 701 is an optional step, and the SDN controller may not perform step 701. For example, after the steps 703 and 704, the SDN controller may determine that S3 is to be in communication with the first routing domain according to the destination IP address of the first packet, and then perform step 702, and then perform steps 705 to 710 in sequence.

Additionally, step 702 is an optional step. For example, if the first target entry is already preset in the first forwarding table, both step 701 and step 702 may be omitted.

Optionally, the method provided by the present invention is applicable not only to the SDN controller to jump between the forwarding information tables of the two routing domains, but also to the SDN controller to jump between multiple routing domains, such as from After the first forwarding information table jumps to the third forwarding information table, it jumps to the second forwarding information table. Specifically, the steps 701, 702, 705, and 706 may be replaced by the following steps: the SDN controller may add a second target entry to the first forwarding information table, and add a third target entry to the third forwarding information table. The second target information field includes a second condition information field, and is used to describe a condition that is required to obtain the second target entry, where at least the second destination network segment that belongs to the second routing domain is included. The second target information entry further includes a second indication information field for indicating a jump to the third forwarding information table. The third target information item includes a third condition information field for describing a condition required for acquiring the third target entry, where at least the third destination network segment belonging to the second routing domain is included. The third target entry further includes a third indication information field for indicating a jump to the second forwarding information table. The SDN controller searches for the first forwarding information table according to the destination IP address of the first packet. The destination IP address of the first packet belongs to the second destination network segment, so the SDN controller obtains the second target entry, and jumps to the third forwarding information table according to the second indication information field in the second target entry. Inquire. The destination IP address of the first packet belongs to the third destination. The SDN controller obtains the third target entry, and jumps to the second forwarding information table to search for the matching entry of the first packet according to the third indication information field in the third target entry. The second destination network segment may be the same as the third destination network segment, or include the third destination network segment, or belong to the third destination network segment, or partially overlap with the third destination network segment. However, regardless of the relationship between the second destination network segment and the third destination network segment, both the second destination network segment and the third destination network segment need to include the destination IP address of the first packet.

Optionally, the SDN controller may also determine forwarding information of the to-be-forwarded packet by using other methods. For example, the SDN controller may add an entry corresponding to the destination network segment to be added in the second forwarding information table to the first forwarding information table in advance. The destination network segment to be added may be the same as (or all or part of) the network segment to be added, as long as the destination network segment to be added includes the destination IP address of the first packet. Specifically, the SDN controller determines that the network segment S1 and the network segment S3 are to be interconnected, and the SDN controller determines the forwarding information related to the network segment S3 in the second forwarding information table by using the S3 as the destination network segment to be added. The entries to be added are added to the first forwarding information table. After that, the SDN controller receives the message information of the first packet, and searches for the matching entry in the first forwarding information table. It can be understood that, because the destination IP address of the first packet belongs to S3, the SDN controller directly finds the matching entry in the entry added by the first forwarding information table, and obtains the forwarding information of the first packet. Optionally, when the entry to be added is added to the first forwarding information table, the entry to be added corresponds to the second routing domain in the first forwarding information table by using a prefix or the like.

It can be seen from the steps 701 to 710 that the SDN controller sends a new flow table to the switch to indicate the forwarding information of the packets between different routing domains, so that the packets between different routing domains can be used by the source switch without including the gateway. The path is sent to the destination switch or the destination VM. This shortens the packet forwarding path, which reduces the number of packet encapsulations and saves network resources. Moreover, the present invention enables packets between different routing domains to be forwarded without going through a gateway, which can reduce the pressure of the gateway router and improve the availability of the SDN.

The scenario provided above describes that after receiving the packet to be forwarded, the first switch reports the packet information of the packet to be forwarded to the SDN controller to obtain the target flow table. In actual use, in addition to this scenario, the following scenario may occur: the SDN controller determines the first to-be-interconnected network segment and the second to-be-interconnected network segment according to the configuration or the instruction of the user, and the first to-be-interconnected network segment and the second to-be-interconnected network segment Network segments belong to different routing domains. At this time, the SDN controller may generate each of the second to-be-interconnected network segments according to the first forwarding information table. The destination flow table corresponding to the destination IP address, and the target flow table is sent to the first switch, so that the first switch can directly receive the to-be-forwarded packet corresponding to each destination IP address of the second to-be-interconnected network segment. deal with. Moreover, the SDN controller may generate a target flow table corresponding to each destination IP address of the first to-be-interconnected network segment according to the second forwarding information table, and send the target flow table to the second switch, so that the second switch subsequently receives the The packets to be forwarded corresponding to the destination IP addresses of the first to-be-interconnected network segment can be directly processed. In this scenario, the SDN controller sends the target flow table corresponding to the network segment to be interconnected to the corresponding switch in advance, which reduces the network segment to be interconnected to request the target flow table from the SDN controller during the subsequent packet forwarding process. The process further improves the efficiency of message forwarding.

In the method shown in FIG. 7, the switch requests a flow table from the SDN controller, and forwards the packet according to the requested flow table, so as to implement packet communication between different routing domains. In addition, the present invention also provides a network configuration method for configuring a host, so that the host can directly forward packets between different routing domains. The method is applicable to an SDN controller or a network manager. The present invention is described by taking only an SDN controller as an example. The SDN controllers in Figures 5 and 6 execute the method at runtime. For the specific process, please refer to Figure 8(a), including:

801. The SDN controller determines that the first host Internet segment S1 and the network segment S3 are to be interconnected. S1 belongs to the first routing domain in the interconnection network, and S3 belongs to the second routing domain. To ensure that S1 and S3 can communicate with each other correctly, S3 is not included in the first routing domain, and S1 is not included in the second routing domain.

The first host is configured to include at least a first IR and a second IR, where the first IR is used to replace the first gateway to process forwarding information related to the first routing domain on the first host, where the first IR corresponds to a routing table, where the recorded Forwarding information related to the first routing domain. Similarly, the second IR is used to replace the second gateway to process the forwarding information related to the second routing domain on the first host, and the second IR corresponds to the routing table, where the forwarding information related to the first routing domain is recorded.

Optionally, the first host includes a first switch. If the first switch does not include the VM in the first routing domain, the first host may not include the first IR, and the first SDN controller creates the first switch. IR. Similarly, if the VM in the second routing domain is not attached to the first switch, the second host may not be included in the first host, and the second IR is created by the SDN controller, which is not limited herein.

The SDN controller in step 801 can determine that S1 and S3 are to be mutually exchanged according to user instructions. through. Wherein, this step 801 is an optional step.

802. The SDN controller determines a first interface and a first IP address of the first interface on the first IR, and determines a second interface and a second IP address of the second interface on the second IR. The first interface may be created by the SDN controller for the first IR and the second IR interworking. The first IP address may be assigned by the SDN controller to indicate the IP address of the first interface. Similarly, the second interface can be created by the SDN controller for the second IR and the first IR interworking. The second IP address may be assigned by the SDN controller to indicate the IP address of the second interface. The first IP address should not be in the first routing domain, and the second IP address should not be in the second routing domain, in order to ensure that the first interface and the second interface can be connected normally.

Optionally, the first IP address and/or the second IP address may belong to a link local address (English: link local address), that is, a network segment of 169.254. The network segment is generally not used by the normal network service. The IP address of the normal network service is not affected after the S1 and S3 are connected to the first interface and/or the second interface. .

803. The SDN controller creates a network connection between the first interface and the second interface to exchange data between S1 and S3 on the created network connection.

Specifically, the SDN controller may interconnect the first interface and the second interface by using an Ethernet interface pair (English: eth-pair); or the SDN controller may add the first interface and the second interface to the first switch, so that The first IR and the second IR may exchange messages between S1 and S3 through the first switch. Optionally, the first switch can add the first interface and the second interface to the unused virtual local area network (English: vlan) to prevent the first interface and the second interface from affecting normal network services. Optionally, the first interface and the second interface can access the same VLAN to improve packet transmission efficiency of the first IR and the second IR.

Optionally, a small virtual switch can also be configured in the first host, and the SDN controller can add the first interface and the second interface to the small virtual switch.

804. The SDN controller adds a first routing entry to a routing table corresponding to the first IR. The first route entry indicates that if the destination IP address of the packet to be forwarded belongs to S3, the next hop of the packet to be forwarded is the second IP address. The first routing entry in the corresponding routing table of the first IR has many forms, for example, as shown in Table 3:

Destination IP address

Next hop

Segment S3

Second IP address

table 3

After the SDN controller adds the first routing entry to the routing table of the first IR, the first IR may send the to-be-forwarded packet whose destination IP address belongs to S3 to the second IP address according to the first routing entry, and then The second IR performs a subsequent forwarding operation.

Optionally, the SDN controller may further add a second routing entry to the routing table corresponding to the second IR, where the second routing entry indicates that if the destination IP address of the packet to be forwarded belongs to S1, the packet to be forwarded is One hop is the first IP address. The second routing entry in the routing table corresponding to the second IR has many forms, for example, as shown in Table 4:

目的IP地址Destination IP address	下一跳Next hop
网段S1Network segment S1	第一IP地址First IP address

Table 4

After the SDN controller adds the second routing entry to the routing table of the second IR, the second IR may send the to-be-forwarded packet whose destination IP address belongs to S1 to the first IP address according to the second routing entry, and then The first IR performs a subsequent forwarding operation.

805. The VM 1 sends a third packet to the first switch, where the destination IP address of the third packet is VM 6. The first switch receives the third packet. The VM 1 belongs to the S1 network segment in the first routing domain, and the VM 6 belongs to the S3 network segment in the second routing domain.

806. The first switch sends the third packet to the first IR, where the first IR receives the third packet.

807. The first IR searches for the matching route of the third packet in the routing table corresponding to the first IR, and obtains the first routing entry, and further determines that the next hop of the third packet is the second IP address. The first IR then sends the third message to the second interface of the second IR according to the first route entry found. The second IR receives the third message.

808. The second IR searches for a matching route of the third packet. The second IR is used to process the forwarding information of the second routing domain, so that the next hop of the third packet can be normally found. Then, the second IR sends the third packet to the second switch according to the search result. The second switch receives the third packet.

809. The second switch sends the third packet to the VM 6.

There is no specific order between steps 803 and 804, and step 804 may also be before step 803.

It can be seen from steps 801 to 809 that the SDN controller configures the IR communication of different routing domains in the host to enable packets between different routing domains to be forwarded through multiple IRs in the host. (b) is shown. Comparing FIG. 8(b) with FIG. 4, it can be found that the network configuration method provided by the present invention can shorten the forwarding path of packets in the network, reduce the number of times of packet encapsulation and decapsulation, and save network resources. Moreover, the present invention enables packets between different routing domains to be forwarded without going through a gateway, which can reduce the pressure of the gateway router and improve the availability of the SDN.

It is worth noting that in the prior art, only the IR corresponding to the VM connected to the virtual switch is configured on the host. That is, in the prior art, if the VM of the second routing domain is not attached to the first switch, the second IR is deleted. However, in the present application, the second IR may be used to forward the packet of the first routing domain to the second routing domain. Therefore, in the present invention, the SDN controller only has no first route attached to the first switch. The first IR and the second IR are deleted only when the VM of the domain does not mount the VM of the second routing domain.

The embodiment of the present invention further provides a related route determining device, which may be implemented by the SDN controller in FIG. 5 or the computing device in FIG. 6, or through an application-specific integrated circuit (English: application-specific integrated circuit, Abbreviation: ASIC) or programmable logic device (English: programmable logic device, abbreviation: PLD) implementation. The above PLD can be a complex programmable logic device (English: complex programmable logic device, abbreviation: CPLD), field-programmable gate array (English: field-programmable gate array, abbreviation: FPGA), general array logic (English: generic array Logic, abbreviation: GAL) or any combination thereof. The route determining means is for implementing the route determining method shown in FIG.

As shown in FIG. 9, the schematic diagram of the organization of the route determining apparatus includes a message receiving module 901, an information determining module 902, and a flow table sending module 903. The message receiving module 901 is configured to perform step 704 in FIG. 7 and receive message information of the first packet. The information determining module 902 is configured to determine, according to the packet information of the first packet, the forwarding information of the first packet, which may be used to perform steps 705 to 707 in FIG. 7 . The flow table sending module 903 is configured to perform step 708 in FIG.

Optionally, the route determining apparatus may further include an optional module: an entry adding module 904, configured to perform the step 702 of adding the first target entry to the first forwarding information table in the embodiment shown in FIG. 7, or And a step of performing adding a second target entry to the first forwarding information table and adding a third target entry to the third forwarding information table. Correspondingly, the information determining module 902 performs the implementation shown in FIG. In the embodiment, the first forwarding information table is searched according to the destination IP address of the first packet to obtain the second target entry, and the second indication information field in the second target entry is used to jump to the third forwarding information table to obtain the first The third target entry, and the step of searching for the matching entry of the first packet according to the third indication information field in the third target entry to the second forwarding information table.

Optionally, the route determining apparatus may further include an optional module: an add-on entry module 905, configured to perform the embodiment shown in FIG. 7, determine the entry to be added, and add the entry to be added to the first Forward the steps in the information table. Correspondingly, the information determining module performs the step of directly searching for the matching entry in the entry added by the first forwarding information table to obtain the forwarding information of the first packet.

The embodiment of the present invention further provides related network configuration apparatus, which may be implemented by the SDN controller in FIG. 5 or the computing device in FIG. 6, or by one of an ASIC, a CPLD, an FPGA, a GAL, or A combination of several items is implemented. The network configuration device is used to implement the network configuration method shown in FIG.

As shown in FIG. 10, the schematic diagram of the organization of the network configuration apparatus includes: an interface module 1001, a network connection module 1002, and a route adding module 1003. The create interface module 1001 is configured to perform step 802 in FIG. 8. The network connection module 1002 is configured to perform step 803 in FIG. 8. The route adding module 1003 is configured to perform step 804 in FIG.

Optionally, the network configuration device further includes an optional module: an IR management module 1004, configured to perform the step of creating a second IR when the first host does not include the second IR, and when The step of deleting the first IR and the second IR when a switch does not mount the VM of the first routing domain nor the VM of the second routing domain.

In the present application, "first", "second", "third", etc., are used to distinguish different individuals of the same type, and do not indicate that there is a sequence, hierarchy or other dependency between the individuals.

In the above embodiments, the descriptions of the various embodiments are different, and the details that are not detailed in a certain embodiment can be referred to the related descriptions of other embodiments.

A person skilled in the art can clearly understand that, for the convenience and brevity of the description, the specific working process of the above-mentioned module can refer to the corresponding process in the foregoing method embodiment, and details are not described herein again.

In the several embodiments provided by the present application, it should be understood that the disclosed method and apparatus may It is achieved in other ways. For example, the device embodiments described above are merely illustrative. For example, the division of the modules is only a logical function division. In actual implementation, there may be another division manner. For example, multiple modules may be combined or integrated. Go to another device, or some features can be ignored or not executed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be through some interface, module indirect coupling or communication connection, and may be in electrical, mechanical or other form.

The modules described as separate components may or may not be physically separated. The components displayed as modules may or may not be physical modules, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, each functional module in each embodiment of the present invention may be integrated into one processing module, or each module may exist physically separately, or two or more modules may be integrated into one module. The above integrated modules can be implemented in the form of hardware or in the form of software functional modules.

The integrated modules, if implemented in the form of software functional modules and sold or used as separate products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention, which is essential or contributes to the prior art, or all or part of the technical solution, may be embodied in the form of a software product stored in a storage medium. A number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in various embodiments of the present invention. The foregoing storage medium includes various media that can store program codes, such as a USB flash drive, a mobile hard disk, a ROM, a RAM, a magnetic disk, or an optical disk.

The specific embodiments of the present invention have been described in detail with reference to the preferred embodiments of the present invention. The scope of protection, any modifications, improvements, etc., which are made based on the technical solutions of the present invention, are intended to be included in the scope of the present invention.

Claims

A route determining method, applicable to a software defined network SDN, characterized in that:

Receiving, by the source switch, the packet information of the packet to be forwarded, where the packet information of the to-be-forwarded packet includes the destination Internet Protocol IP address of the to-be-forwarded packet, and the to-be-forwarded packet is from the first routing domain. The destination IP address of the to-be-forwarded packet belongs to the second routing domain.

Determining the forwarding information of the to-be-forwarded packet according to the packet information of the to-be-forwarded packet, where the forwarding information of the to-be-forwarded packet includes a destination medium control access MAC address and a sending port of the to-be-forwarded packet Destination virtual network identifier VNI;

Generating a target flow table, and sending the target flow table to the source switch, where the target flow table carries forwarding information and an operation indication of the to-be-forwarded packet, where the operation indication is used to indicate that the source switch The MAC address of the gateway corresponding to the first routing domain in the to-be-forwarded packet is modified to be the destination MAC address, and the destination VNI is added to the to-be-forwarded packet, and the packet to be forwarded is sent. The sending port forwards the adjusted packet to be forwarded.
The route determining method according to claim 1, wherein the determining, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet includes:

Determining, by the packet information of the to-be-forwarded packet, the forwarding information table of the first routing domain to obtain a target entry, where the target entry includes a destination network segment, and the destination network segment belongs to the second routing domain And matching the destination IP address of the to-be-forwarded packet;

And obtaining, according to the indication of the target entry, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain;

Obtaining the forwarding information of the to-be-forwarded packet from the matching entry of the packet information of the to-be-forwarded packet.
The route determining method according to claim 2, wherein the method includes: before searching the forwarding information table of the first routing domain according to the packet information of the to-be-forwarded packet, obtaining the target entry :

Adding the target entry to the forwarding information table of the first routing domain.
The route determining method according to claim 2 or 3, wherein the target entry comprises:

a condition information field, including the destination network segment;

And an indication information field, configured to indicate a forwarding information table that jumps to the second routing domain.
The route determining method according to claim 4, wherein the obtaining, according to the packet information of the to-be-forwarded packet, the forwarding information table of the first routing domain to obtain a target entry includes:

Obtaining the target entry according to the destination IP address of the to-be-forwarded packet;

And the matching entry that obtains the packet information of the to-be-forwarded packet in the forwarding information table of the second routing domain, according to the indication of the target entry, includes:

And obtaining, according to the indication of the indication information field, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain.
The route determining method according to claim 1, wherein the determining, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet includes:

Determining, in the forwarding information table of the second routing domain, an entry to be added, where the to-be-added entry belongs to the destination network segment to be added, and the destination network segment to be added belongs to the second routing domain and The destination IP address of the packet to be forwarded matches.

Adding the to-be-added entry to the forwarding information table of the first routing domain;

Determining, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet includes:

And the forwarding information table of the first routing domain is obtained according to the destination IP address of the to-be-forwarded packet, and the to-be-added entry is obtained, and the forwarding information of the to-be-forwarded packet is obtained according to the to-be-added entry.
A network configuration method, which is applicable to a software-defined network SDN, wherein the SDN further includes a target host, and the method includes:

Creating a first interface on the first internal router IR of the target host, and assigning a first Internet Protocol IP address to the first interface; creating a second interface on the second IR in the target host, and Assigning a second IP address to the second interface, where the first IR is used to process forwarding information of the first routing domain, and the second IR is used to process forwarding information of the second routing domain, the first IP address Not in the first routing domain, the second IP address is not in the second routing domain;

Creating a network connection for exchanging data between the first interface and the second interface;

Adding a first routing entry to the routing table of the first IR, where the first routing entry includes a first destination address field and a first next hop field, where the first destination address field includes a second routing domain The second network segment, where the first next hop field includes the second IP address.
The network configuration method according to claim 7, wherein the method further comprises:

Adding a second routing entry to the routing table of the second IR, where the second routing entry includes a second destination address field and a second next hop field, where the second destination address field includes the first routing domain The first network segment includes the first IP address in the second next hop field.
The network configuration method according to claim 7 or 8, wherein the creating a second interface on the second IR in the target host and before assigning the second IP address to the second interface further includes :

If the target host does not include the second IR, the second IR is created in the target host.
The network configuration method according to any one of claims 7 to 9, wherein the first IP address and/or the second IP address belong to a link-local address network segment.
The network configuration method according to any one of claims 7 to 10, wherein the target host further comprises a virtual switch, and one or more virtual machines VM connected to the virtual switch, the method Also includes:

And deleting, when the VMs connected to the virtual switch do not belong to the first routing domain and the second routing domain, deleting the first IR and the second IR.
A route determining apparatus, which is applicable to a software-defined network SDN, and includes:

The message receiving module is configured to receive the packet information of the to-be-forwarded packet from the source switch, where the packet information of the to-be-forwarded packet includes the destination Internet Protocol IP address of the to-be-forwarded packet, and the to-be-forwarded packet From the first routing domain, the destination IP address of the to-be-forwarded packet belongs to the second routing domain;

The information determining module is configured to determine, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet, where the forwarding information of the to-be-forwarded packet includes a destination medium control access MAC address, and the to-be-forwarded The sending port of the packet and the destination virtual network identifier VNI;

a flow table sending module, configured to generate a target flow table, and send the target flow table to the source switch, where the target flow table carries forwarding information and an operation indication of the to-be-forwarded packet, where the operation indication is used And the source switch is configured to modify the MAC address of the gateway corresponding to the first routing domain in the to-be-forwarded packet to the destination MAC address, and add the destination VNI to the to-be-forwarded packet, and And the adjusted to-be-forwarded packet is forwarded from the sending port of the to-be-forwarded packet.
The route determining apparatus according to claim 12, wherein said information is determined The module is used to:

Determining, by the packet information of the to-be-forwarded packet, the forwarding information table of the first routing domain to obtain a target entry, where the target entry includes a destination network segment, and the destination network segment belongs to the second routing domain And matching the destination IP address of the to-be-forwarded packet;

And obtaining, according to the indication of the target entry, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain;

Obtaining, from the matching entry of the packet information of the to-be-forwarded packet, the forwarding port of the to-be-forwarded packet.
The route determining apparatus according to claim 13, wherein the apparatus further comprises:

An entry adding module, configured to add the target entry to a forwarding information table of the first routing domain.
The route determining apparatus according to claim 13 or 14, wherein the target entry comprises:

a condition information field, including the destination network segment;

And an indication information field, configured to indicate a forwarding information table that jumps to the second routing domain.
The route determining apparatus according to claim 14, wherein the information determining module is further configured to:

Obtaining the target entry according to the destination IP address of the to-be-forwarded packet;

And obtaining, according to the indication of the indication information field, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain.
The route determining apparatus according to claim 12, wherein the apparatus further comprises:

Adding an entry module, configured to determine, in the forwarding information table of the second routing domain, an entry to be added, where the to-be-added entry corresponds to the destination network segment to be added, and the destination network segment to be added belongs to the first The routing domain is matched with the destination IP address of the to-be-forwarded packet; the to-be-added entry is added to the forwarding information table of the first routing domain;

The information determining module is configured to: according to the destination IP address of the to-be-forwarded packet, search the forwarding information table of the first routing domain, obtain the to-be-added entry, and obtain the Forwarding information of the packet to be forwarded.
A network configuration device, which is applicable to a software-defined network SDN, wherein the SDN further includes a target host, and the device includes:

An interface creation module, configured to create a first interface on the first internal router IR in the target host, and allocate a first Internet Protocol IP address to the first interface; on the second IR in the target host Creating a second interface, and assigning a second IP address to the second interface, where the first IR is used to process forwarding information of the first routing domain, and the second IR is used to process forwarding information of the second routing domain, The first IP address is not in the first routing domain, and the second IP address is not in the second routing domain;

a network connection module, configured to create a network connection for exchanging data between the first interface and the second interface;

a route adding module, configured to add a first routing entry to the routing table of the first IR, where the first routing entry includes a first destination address field and a first next hop field, where the first destination address field is The second network segment in the second routing domain is included, and the second IP address is included in the first next hop field.
The network configuration apparatus according to claim 18, wherein the route adding module is further configured to:

Adding a second routing entry to the routing table of the second IR, where the second routing entry includes a second destination address field and a second next hop field, where the second destination address field includes the first routing domain The first network segment includes the first IP address in the second next hop field.
The network configuration device according to claim 18 or 19, wherein the device further comprises:

An IR management module, configured to create the second IR in the target host when the target host does not include the second IR.
The network configuration apparatus according to any one of claims 18 to 20, wherein the first IP address and/or the second IP address belong to a link-local address network segment.
The network configuration apparatus according to any one of claims 18 to 21, wherein the target host further comprises a virtual switch, and one or more virtual machines VM connected to the virtual switch;

The IR management module is further configured to delete the first IR and the second IR when none of the VMs connected to the virtual switch belong to the first routing domain and the second routing domain.
A computing device, comprising a processor, a memory, and a communication interface, by calling an instruction in the memory, the processor is configured to:

Receiving, by the source switch, the packet information of the packet to be forwarded, where the packet information of the to-be-forwarded packet includes the destination Internet Protocol IP address of the to-be-forwarded packet, and the to-be-forwarded packet is from the first routing domain. The destination IP address of the to-be-forwarded packet belongs to the second routing domain.

And determining, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet, where the forwarding information of the to-be-forwarded packet includes a destination medium control access MAC address, a sending port of the to-be-forwarded packet, and Destination virtual network identifier VNI;

Generating a target flow table, and sending the target flow table to the source switch, where the target flow table carries forwarding information and an operation indication of the to-be-forwarded packet, where the operation indication is used to indicate that the source switch The MAC address of the gateway corresponding to the first routing domain in the to-be-forwarded packet is modified to be the destination MAC address, and the destination VNI is added to the to-be-forwarded packet, and the packet to be forwarded is sent. The sending port forwards the adjusted packet to be forwarded.
The computing device of claim 23, wherein the processor is further configured to:

Determining, by the packet information of the to-be-forwarded packet, the forwarding information table of the first routing domain to obtain a target entry, where the target entry includes a destination network segment, and the destination network segment belongs to the second routing domain And matching the destination IP address of the to-be-forwarded packet;

And obtaining, according to the indication of the target entry, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain;

Obtaining the forwarding information of the to-be-forwarded packet from the matching entry of the packet information of the to-be-forwarded packet.
The computing device of claim 24, wherein the processor is further configured to:

Adding the target entry to the forwarding information table of the first routing domain.
The computing device of claim 24 or 25, wherein the target entry comprises:

a condition information field, including the destination network segment;

And an indication information field, configured to indicate a forwarding information table that jumps to the second routing domain.
The computing device of claim 26, wherein the processor is further configured to:

Obtaining the target entry according to the destination IP address of the to-be-forwarded packet;

And obtaining, according to the indication of the indication information field, a matching entry of the packet information of the to-be-forwarded packet, in the forwarding information table of the second routing domain.
The computing device of claim 23, wherein the processor is further configured to:

Determining, in the forwarding information table of the second routing domain, an entry to be added, where the to-be-added entry belongs to the destination network segment to be added, and the destination network segment to be added belongs to the second routing domain and The destination IP address of the packet to be forwarded matches.

Adding the to-be-added entry to the forwarding information table of the first routing domain;

Determining, according to the packet information of the to-be-forwarded packet, the forwarding information of the to-be-forwarded packet includes:

And the forwarding information table of the first routing domain is obtained according to the destination IP address of the to-be-forwarded packet, and the to-be-added entry is obtained, and the forwarding information of the to-be-forwarded packet is obtained according to the to-be-added entry.
A computing device, suitable for a software-defined network SDN, characterized in that the SDN comprises a target host, the network configuration device comprising a processor, a memory and a communication interface, by using an instruction in the memory, the processor to:

Creating a first interface on the first internal router IR of the target host, and assigning a first Internet Protocol IP address to the first interface; creating a second interface on the second IR in the target host, and Assigning a second IP address to the second interface, where the first IR is used to process forwarding information of the first routing domain, and the second IR is used to process forwarding information of the second routing domain, the first IP address Not in the first routing domain, the second IP address is not in the second routing domain;

Creating a network connection for exchanging data between the first interface and the second interface;

Adding a first routing entry to the routing table of the first IR, where the first routing entry includes a first destination address field and a first next hop field, where the first destination address field includes a second routing domain The second network segment, where the first next hop field includes the second IP address.
The computing device of claim 29, wherein the processor is further configured to:

Adding a second routing entry to the routing table of the second IR, where the second routing entry includes a second destination address field and a second next hop field, where the second destination address field includes the first routing domain The first network segment includes the first IP address in the second next hop field.
The computing device of claim 29 or 30, wherein the processor is further configured to:

If the target host does not include the second IR, the second IR is created in the target host.
The computing device according to any one of claims 29 to 31, wherein the first IP address and/or the second IP address belong to a link-local address network segment.
A computing device according to any one of claims 29 to 32, wherein the target host further comprises a virtual switch, and one or more virtual machines VM connected to the virtual switch, the processor Also used for:

And deleting, when the VMs connected to the virtual switch do not belong to the first routing domain and the second routing domain, deleting the first IR and the second IR.