WO2019020114A1 - Load sharing method and system, and computer-readable storage medium - Google Patents

Load sharing method and system, and computer-readable storage medium Download PDF

Info

Publication number
WO2019020114A1
WO2019020114A1 PCT/CN2018/097511 CN2018097511W WO2019020114A1 WO 2019020114 A1 WO2019020114 A1 WO 2019020114A1 CN 2018097511 W CN2018097511 W CN 2018097511W WO 2019020114 A1 WO2019020114 A1 WO 2019020114A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
platform
load sharing
control
according
Prior art date
Application number
PCT/CN2018/097511
Other languages
French (fr)
Chinese (zh)
Inventor
王怀滨
都珂
洪先进
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to CN201710636450.3 priority Critical
Priority to CN201710636450.3A priority patent/CN109309627A/en
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2019020114A1 publication Critical patent/WO2019020114A1/en

Links

Images

Abstract

Disclosed is a load sharing method. The load sharing method is applied to a load sharing system. The load sharing system comprises: a forwarding platform and a control platform. The load sharing method comprises: receiving a control message sent by the forwarding platform, and extracting user information according to the control message; making calculation through a pre-set load sharing algorithm according to the user information, so as to determine the best assembly, for access of a user equipment corresponding to the user information, in the forwarding platform; the user equipment accessing the best assembly, so that the best assembly executes a stream policy on a data message, corresponding to the control message, in the forwarding platform and performs stream forwarding on the data message according to a result of the execution of the stream policy and the user information.

Description

Load sharing method, system and computer readable storage medium

The present disclosure claims the priority of the Chinese Patent Application, filed on Jul. 27, 2017, the entire disclosure of

Technical field

The present disclosure relates to the field of communications, for example, to a load sharing method, system, and computer readable storage medium.

Background technique

With the development of Software Defined Network (SDN) technology and Network Function Virtualization (NFV) technology, the metropolitan area network moves from the traditional network-centric architecture to the data center-centric network architecture. Evolution, traditional network element equipment has also evolved from specialization to generalization. The evolution of traditional network element equipment from specialization to generalization mainly needs to solve two decoupling: decoupling of control and forwarding, decoupling of software and hardware.

Broadband network gateway (BNG), as a traditional broadband access gateway device, plays a very important role in user broadband access services and scenarios. In general, the main requirements for BNG equipment in user access are user authentication, access control, and traffic scheduling. However, with the emergence of various Internet services, the number of sessions supported by the BNG device, the user access bandwidth, and the Quality of Service/Hierarchical Quality of Service (QoS/HQoS) capability. The requirements for such aspects are constantly improving. For example, the requirements for the open and programmable capabilities of BNG equipment to provide services are increasing. For the above reasons, it is necessary for the BNG equipment to implement the above two decoupling based on the SDN/NFV architecture. Therefore, the decoupling of BNG forwarding and control has become a trend. However, when the BNG forwarding and control are decoupled, the port of the same virtual local area network (VLAN) can only be connected to the same forwarding platform component when the user equipment is connected to the forwarding platform for load sharing. The utilization of components within the platform is low.

Summary of the invention

The present invention provides a load sharing method, a system, and a computer readable storage medium, which implement load sharing of a forwarding platform and improve utilization of components in the forwarding platform.

The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet.

The present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement the load sharing method as described above. .

The present application also provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by a processor to implement the load sharing method as described above.

BRIEF abstract

1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application;

2 is a schematic flowchart of a first embodiment of a load sharing method according to the present application;

In the embodiment of the present application, the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform, and A refinement flow diagram of performing flow forwarding on the data packet according to the result of the flow policy and the user information;

4 is a schematic flowchart of a second embodiment of a load sharing method according to the present application;

FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application;

6 is a flow chart of performing a flow policy on a data packet corresponding to the control packet in the forwarding platform according to the best component in the forwarding platform in the example of the present application, and according to the traffic policy result and the broadband access A detailed flow diagram of the flow forwarding of the data packet by the user table;

7 is a schematic flowchart of a fourth embodiment of a load sharing method according to the present application;

FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.

The implementation, functional features and advantages of the present application will be further described with reference to the accompanying drawings.

Detailed ways

It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.

In the related art, when the BNG forwarding platform is decoupled from the control platform, and the user equipment accesses the forwarding platform for load sharing, the ports of the same virtual local area network (VLAN) can only be connected to the components in the same forwarding platform, thereby causing The utilization of components within the forwarding platform is low.

The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet. After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving. When the control packet sent by the forwarding platform is sent, the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform. The load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Performing a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performing flow forwarding on the data packet according to the traffic policy result and the user information, thereby implementing load sharing of the forwarding platform. And improve the utilization of components within the forwarding platform.

As shown in FIG. 1 , FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application.

The terminal in the embodiment of the present application may be a personal computer (PC), or may be a residential gateway (RG), a customer premises equipment (CPE), or a network telephone (Voice over Intemet Protocol. VoIP). ), a terminal device having a broadband dialing function, such as an Internet Protocol Television (IPTV), a Set Top Box (STB), or an Integrated Access Device (IAD).

As shown in FIG. 1, the terminal may include a processor 1001, such as a CPU, a network interface 1004, a user interface 1003, a memory 1005, and a communication bus 1002. Among them, the communication bus 1002 is arranged to implement connection communication between these components. The user interface 1003 can include a display, an input unit such as a keyboard, and the user interface 1003 can also include a standard wired interface and a wireless interface. Network interface 1004 may include a standard wired interface and a wireless interface (such as a WI-FI interface). The memory 1005 may be a random access memory (RAM) or a non-volatile memory such as a disk storage. The memory 1005 may also be a storage device independent of the aforementioned processor 1001.

In an embodiment, the terminal may further include a camera, a radio frequency (RF) circuit, a sensor, an audio circuit, a WiFi module, and the like. The sensors can be, for example, light sensors, motion sensors, and other sensors. In an embodiment, the light sensor may include an ambient light sensor and a proximity sensor, wherein the ambient light sensor can adjust the brightness of the display according to the brightness of the ambient light, and the proximity sensor can close the display when the mobile terminal moves to the ear. And at least one of the backlights. As a kind of motion sensor, the gravity acceleration sensor can detect the magnitude of acceleration in a plurality of directions (generally three axes), and can detect the magnitude and direction of gravity when stationary, and can be used for identifying the posture of the mobile terminal (such as horizontal and vertical screen switching). , related games, magnetometer attitude calibration), vibration recognition related functions (such as pedometer and tapping); of course, the mobile terminal can also be equipped with other sensors such as gyroscopes, barometers, hygrometers, thermometers, and infrared sensors. I will not repeat them here.

It will be understood by those skilled in the art that the terminal structure shown in FIG. 1 does not constitute a limitation to the terminal, and may include more or less components than those illustrated, or a combination of certain components, or different component arrangements.

As shown in FIG. 1, an operating system, a network communication module, a user interface module, and a load sharing program may be included in the memory 1005 as a computer storage medium.

In the terminal shown in FIG. 1, the network interface 1004 may be configured to connect to the background server for data communication with the background server; the user interface 1003 may be configured to connect to the client (user end) for data communication with the client; and the processor 1001 may be configured to call the load sharing program stored in the memory 1005, and perform the following operations: receiving a control message sent by the forwarding platform, and extracting user information according to the control message; and receiving a preset load according to the user information The sharing algorithm performs a calculation to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; and the user equipment is accessed to the optimal component, so that the optimal component is The data packet corresponding to the control packet in the forwarding platform performs a traffic policy, and forwards the data packet according to the result of the execution flow policy and the user information.

In an embodiment, the processor 1001 can call the load sharing program stored in the memory 1005, and also performs the following operations:

And the user equipment is accessed by the user equipment, and the request message corresponding to the initial message is sent to the user equipment, so that the user equipment passes the The best component and the control platform perform the interaction of the message protocol corresponding to the proposal message to negotiate the use of the network security system authentication mode; and initiate the network security system according to the negotiation result and the user information. An authentication request, so that the network security system performs authentication and authorization processing on the user, and feeds back user authorization information corresponding to the user; and obtains a broadband access user table according to the user authorization information and the user information, and And the best component sends the broadband access user table, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet, and according to the result of the execution flow policy and the The broadband access user table forwards the data packet.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the first port of the plurality of ports is abnormal, the user equipment is accessed to the second port of the optimal component that is in a normal state.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform sends a control message to the control platform; and the control platform extracts according to the control message. User information; the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines an optimal component of the user equipment corresponding to the user information in the forwarding platform, and connects the user equipment Entering the best component; the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user The information is forwarded by the data packet.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the state of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform responds to the initial message, and generates an offer report corresponding to the initial message. Sending to the user equipment, so that the user equipment performs the interaction with the message protocol corresponding to the proposal message by using the optimal component to negotiate the use of the network security system authentication mode; The control platform initiates an authentication request to the network security system according to the negotiation result and the user information, so that the network security system performs authentication and authorization processing on the user information, and feeds back a user corresponding to the user. The authorization information is obtained by the control platform according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component; the best in the forwarding platform The component performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy The step of performing the flow forwarding of the data packet by the user information includes: performing, by the best component in the forwarding platform, a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The result of the execution of the flow policy and the broadband access user table forward the data packet.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the optimal component in the forwarding platform matches the data feature corresponding to the data packet corresponding to the control packet, And performing flow classification according to the flow feature, so that the flow policy is executed; the optimal component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform receives an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing, And determining, according to the protocol type of the initial packet and the preset flow table, whether the initial packet is a control packet or a data packet; and based on the initial packet being a control packet, encapsulating the control packet, And sending, by the preset tunnel corresponding to the encapsulation protocol, the encapsulated control packet to the control platform; and determining, according to the data packet, whether there is a broadband connection corresponding to the user in the forwarding platform. In the user table, if yes, performing the following steps on the data packet: the best component in the forwarding platform performs a traffic policy on the data packet, and according to the result of the execution flow policy and the broadband The access user table forwards the data packet.

In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform decapsulates the encapsulated control message, and according to the decapsulated Control messages to extract user information.

Please refer to FIG. 2. FIG. 2 is a schematic flowchart diagram of a first embodiment of a load sharing method according to the present application.

In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S10, S20, and S30.

In step S10, the control packet sent by the forwarding platform is received, and user information is extracted according to the control packet.

In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform. The forwarding platform refers to a part of the system for receiving and forwarding data packets. The forwarding platform may include a forwarding plane of a broadband access gateway (BNG) and a virtual broadband access gateway (Virtual Broadcast Network Gateway). , vBNG) forwarding plane, mainly responsible for the forwarding and control of user traffic, and the execution of user-related flow policies. The control platform refers to the part used in the system to transmit commands and calculate entries. The control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.

In the embodiment of the present application, when the control platform receives the control packet sent by the forwarding platform, the control information is extracted according to the control packet, including the user's multiple address (MAC) information and the access chain. Road information, etc.

In step S20, the user information is calculated according to the preset load sharing algorithm, and the optimal component of the user equipment corresponding to the user information is determined in the forwarding platform.

In the embodiment of the present application, the control platform calculates an optimal component for accessing the user in the forwarding platform according to the user information and the preset load sharing algorithm. For convenience of description, in the embodiment, six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6. In an embodiment, two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T2 includes three access ports P4, P5, and P6. The corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6). According to the grouping algorithm, the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6. The syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4). And B6 (P6, P4, P5) and so on. In the application embodiment, the number of the user access port, the forwarding component, and the backup component is not limited to the embodiment, and the data in this embodiment is only for convenience of description. In an application embodiment, the number of ports in the forwarding component and the backup component is determined according to actual conditions. In addition, the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful. For example, B1 (P1, P2, P3), where P1 is the master port. When the P1 state is closed or abnormal, the next port in the backup component is automatically selected as the user equipment access port. In an embodiment, which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components. In an embodiment, in order to prevent the port state from being abnormal, the user equipment cannot be accessed. Therefore, the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, And accessing the user equipment to the first port; when the status of the first port is abnormal, accessing the user equipment to a second port of a plurality of ports that is in a normal state. In an embodiment, the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm. For example, the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo. The basic syntax of the backup component is: B{(P1, P2, P3), Mod(MAC)}. In an embodiment, each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B{(Px, Py, Pz), Mod(MAC), VMAC}, where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.

In step S30, the user equipment is accessed to the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The flow policy result and the user information stream forward the data packet.

In the embodiment of the present application, the load sharing system further includes a network security system, where the control packet and the data packet are derived from an initial report corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband. Text. As shown in FIG. 3, FIG. 3 is that the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform. And a detailed flowchart of the flow forwarding of the data packet according to the result of the flow policy and the user information, and step S30 includes steps S31 to S34.

In step S31, the user equipment is accessed to the best component.

In step S32, the initial message is sent, and the proposal message corresponding to the initial message is sent to the user equipment, so that the user equipment performs the best component with the control platform. The interaction of the message protocol corresponding to the proposed message is negotiated to use the network security system authentication mode.

In step S33, an authentication request is initiated to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back corresponding to the user. User authorization information.

In step S34, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is delivered to the optimal component, so that the optimal component pair is And performing a flow policy on the data packet corresponding to the control packet, and performing flow forwarding on the data packet according to the result of the flow policy and the broadband access user table.

In the embodiment of the present application, the load sharing system further includes a network security system, and the network security system refers to an authentication, authorization, and accounting AAA system. AAA is an abbreviation for Authentication, Authorization, and Accounting. It is a security management mechanism for access control in network security. It provides three security services: authentication, authorization, and accounting. In an embodiment, the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing. In addition, the control message is derived from an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing. The broadband dialing method includes an Ethernet-based Point to Point Protocol over Ethernet (PPPoE) dialing and a Dynamic Host Configuration Protocol (DHCP) dialing. After the user equipment performs broadband dialing, it will send and dial the broadband dialing. The initial packet corresponding to the mode is sent to the forwarding platform. In an embodiment, after the PPPoE dials, the corresponding initial packet is a PPPoE Active Discovery Initiation (PADI) packet; after the DHCP dialup, the corresponding initial packet is a DHCP Discover message.

In the embodiment of the present application, after the control platform calculates the best component of the user in the forwarding platform according to the load sharing algorithm, after the user equipment accesses the optimal component, the initial The message is sent, and the proposal message corresponding to the initial message is generated and sent to the user equipment. In an embodiment, the proposal messages corresponding to the PADI message and the DHCP Discover message are respectively a PPPoE Active Discovery Offer (PADO) message and a DHCP Offer message. In an embodiment, the user equipment performs the interaction of the corresponding message protocol with the control platform through the best component of the access, and negotiates the network security system authentication mode during the interaction. The packet protocols corresponding to the PADO packet and the DHCP Offer packet are the PPPoE protocol and the DHCP protocol, respectively.

In an embodiment, in order to obtain a broadband access user table, and performing flow forwarding, an authentication request is initiated to the AAA system according to the negotiation result and the user information, so that the AAA system authenticates the user. And authorized processing, and feedback user authorization information corresponding to the user, and further obtaining a broadband access user table according to the user authorization information and the user information. The broadband access user table includes a user's MAC address, an IP address, and user authorization information. In an embodiment, the broadband access user table is sent to the optimal component, so that the optimal component performs a traffic policy, such as a QoS policy and security, on the data packet corresponding to the control packet. The policy and the like, and forwarding the data packet according to the result of the execution of the flow policy and the broadband access user table.

The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy, The user information forwards the data packet. After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving. When the control packet sent by the forwarding platform is sent, the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform. The load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Transmitting a data packet corresponding to the control packet in the forwarding platform, and performing a flow policy according to the result of the execution of the traffic policy and the user information, thereby implementing forwarding of the data packet Load sharing and improved utilization of components within the forwarding platform.

Please refer to FIG. 4. FIG. 4 is a schematic flowchart diagram of a second embodiment of a load sharing method according to the present application.

In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S100 to S400.

In step S100, the forwarding platform sends a control message to the control platform.

In step S200, the control platform extracts user information according to the control message.

In step S300, the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines that an optimal component of the user equipment corresponding to the user information is accessed in the forwarding platform, and the user is The device accesses the best component.

In step S400, the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user information pair. The data packet is forwarded by the stream.

In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform. The forwarding platform is used to receive and forward data packets in the system. The forwarding platform may include a forwarding plane of the BNG and a forwarding plane of the vBNG, and is mainly responsible for forwarding and controlling user traffic, and related to the user. Execution of the strategy. The control platform refers to the part used in the system to transmit commands and calculate entries. The control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.

In the embodiment of the present application, the load sharing method includes: the forwarding platform sends a control message to the control platform, and the control platform extracts user information according to the control message, where the user information includes the user's MAC information and access link information. Wait.

In an embodiment, the control platform calculates, according to the user information, an optimal component for accessing the user in the forwarding platform by using a preset load sharing algorithm, which can help the user determine that the forwarding platform is most suitable for the user. The component to which the device is connected. For convenience of description, in the embodiment, six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6. In an embodiment, two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T1 includes three access ports P4, P5, and P6. The corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6). According to the grouping algorithm, the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6. Among them, the syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4), and B6 (P6, P4, P5), etc. In an embodiment, the number of user access ports, forwarding components, and backup components is not limited to this embodiment, and the data in this embodiment is for convenience of description. In an embodiment, the number of ports in the forwarding component and the backup component is determined according to actual conditions. In addition, the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful. For example, B1 (P1, P2, P3), where P1 is the master port. When the P1 state is closed or abnormal, the next port in the backup component is automatically selected as the user equipment access port. In an embodiment, which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components. In an embodiment, in order to prevent the port state from being abnormal, the user equipment cannot be accessed. Therefore, the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, The user equipment is connected to the first port; when the status of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state. In an embodiment, the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm. For example, the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo. The basic syntax of the backup component is: B{(P1, P2, P3), Mod(MAC)}. In an embodiment, each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B{(Px, Py, Pz), Mod(MAC), VMAC}, where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.

In an embodiment, the user equipment is connected to the optimal component, and a traffic policy is performed on the data packet corresponding to the control packet by using the optimal component, and the data packet is performed according to the result of the traffic policy. Stream forwarding. The application implements load sharing of the forwarding platform and improves the utilization of components in the forwarding platform.

FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application.

The third embodiment shown in Fig. 5 is described in the second embodiment shown in Fig. 4. The load sharing system further includes a network security system, and the control packet and the data packet are derived from an initial packet corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband, the load The sharing method includes steps S310, S320, and S330 between the step S300 and the step S400 in addition to the steps S100 to S400 in FIG.

In step S310, the control platform responds to the initial message, and generates an offer message corresponding to the initial message to be sent to the user equipment, so that the user equipment passes the best component. Performing interaction with the message platform corresponding to the proposal message with the control platform to negotiate the use of the network security system authentication mode.

In step S320, the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and provides feedback. User authorization information corresponding to the user.

In order to obtain the broadband access user table and perform the flow forwarding, in the embodiment of the present application, the control platform needs to perform the interaction of the corresponding message protocol, and the user is authenticated and authorized by the network security system. The user authorization information corresponding to the user can obtain the broadband access user list.

In an embodiment, after the user equipment accesses the optimal component, the optimal component responds to the proposal message corresponding to the initial message, and generates a message protocol corresponding to the proposal message to be sent to the message protocol. The user equipment is configured to enable the user equipment to perform the interaction of the message protocol through the optimal component and the control platform to negotiate the use of the network security system authentication mode.

In an embodiment, the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, and the network security system performs authentication and authorization processing on the user, and obtains user authorization information. Among them, the network security system refers to the authentication, authorization, and accounting AAA systems. It is a security management mechanism for access control in network security. It provides authentication, authorization, and accounting. service. In an embodiment, the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing.

In step S330, the control platform obtains a broadband access user table according to the user authorization information and the user information, and delivers the broadband access user table to the optimal component.

In an embodiment, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component, where the broadband access user table includes User's MAC address, IP address, and user authorization information.

At this time, the load sharing method performs step S400, and the best component in the forwarding platform performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the execution flow policy. As a result, the broadband access user table forwards the data packet.

6 is a flow chart of performing a flow policy on a data packet corresponding to the control packet, and performing a flow policy according to the result of the execution flow policy and the broadband access user table pair. A schematic diagram of the refinement flow of the data packet for stream forwarding, that is, step S400 includes steps S411 and S412.

In step S411, the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby executing a flow policy.

In step S412, the best component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.

In the embodiment of the present application, the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby Execute a flow policy. A traffic policy is to classify user traffic into packets and provide equal QoS services for the same type of traffic to provide differentiated services for different service types. For example, rate limiting, filtering, packet statistics, and redirection (policy routing) can be performed according to different traffic classifications. In addition, the flow policy includes QoS policies and security policies.

In an embodiment, the best component in the forwarding platform forwards the data packet according to the result of executing the traffic policy and the broadband access user table.

FIG. 7 is a schematic flowchart diagram of a fourth embodiment of a load sharing method according to the present application.

The fourth embodiment of FIG. 7 is described based on the third embodiment shown in FIG. 5, and the load sharing method further includes steps S800, S900, and S1000.

In the step S800, the forwarding platform receives the initial packet corresponding to the broadband dialing mode that is sent by the user equipment after the broadband dialing, and distinguishes the initial report according to the protocol type of the initial packet and the preset flow table. If the initial message is a control message, the process proceeds to step S900. If the initial message is a data message, the process proceeds to step S1000.

In the step S900, the control packet is encapsulated based on the initial packet, and the encapsulated control packet is sent to the portal through a preset tunnel corresponding to the control packet. The control platform.

In the embodiment of the present application, after the user performs the broadband dialing, the initial packet corresponding to the broadband dialing is sent to the forwarding platform. In this case, the initial report needs to be determined according to the protocol type of the initial packet and the preset flow table. Whether the control packet is a data packet or a data packet, only the control packet can be sent to the control platform for processing through the forwarding platform. The preset flow table may be an OpenFlow flow table pre-stored in the forwarding platform, and each flow entry of the OpenFlow flow table is composed of three parts: a header field for packet matching, and is used for statistics. Counters that match the number of packets, which are used to show how the matched packets are processed (Actions). In the judgment, the header content of the received initial message is matched according to the header field.

When the initial packet is a control packet, the control packet is encapsulated and the encapsulated control packet is sent to the control platform through a preset tunnel corresponding to the encapsulation protocol. The encapsulation is a process of attaching the necessary protocol information to the data before the network transmission. The encapsulation protocol includes a Generic Routing Encapsulation (GRE) protocol and a Layer 2 Forwarding Protocol (L2F protocol). The second layer of the virtual private network (L2VPN) encapsulation protocol and the trunk encapsulation protocol, and the preset tunnels corresponding to the encapsulation protocol include a GRE tunnel, an L2F tunnel, an L2VPN tunnel, and a trunk tunnel.

At this time, the method continues to perform step S200 in FIG. 5, wherein the step 200 includes step S210.

In step S210, the control platform decapsulates the encapsulated control message, and extracts user information according to the decapsulated control message.

In the embodiment of the present application, after the forwarding platform sends the encapsulated control packet to the control platform, the control platform decapsulates the encapsulated control packet, and extracts the user information according to the decapsulated control packet. Decapsulation is the reverse process of encapsulation, which refers to the process of removing protocol control information layer by layer.

At this time, the method continues to perform steps S300, S310, S320, S330, and S400 in FIG.

In step S1000, it is determined whether there is a broadband access user table corresponding to the user in the forwarding platform, and if yes, performing step S400 on the data packet, if the initial packet is a data packet. The best component in the forwarding platform performs a flow policy on the data packet, and forwards the data packet according to the result of the execution flow policy and the broadband access user table.

In the embodiment of the present application, when the data packet is distinguished from the initial packet, it is further determined whether there is a broadband access user table corresponding to the user in the forwarding platform. When the forwarding platform has the broadband access user table corresponding to the user, the best component in the forwarding platform performs a traffic policy, such as a QoS policy and a security policy, on the data packet, and according to the traffic policy result. The data packet is forwarded by the broadband access user table of the user. When there is no broadband access user list of the user in the forwarding platform, the data packet is discarded. Of course, this situation exists only in the initial stage, and the forwarding platform has not received the broadband access user table corresponding to the user. .

FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.

As shown in FIG. 8, the forwarding platform includes a first user table management module, a control packet encapsulation module, a flow classification module, and a data packet forwarding module. The control platform includes a second user table management module, a message protocol processing module, and a control packet. The encapsulation module and the load sharing policy module.

In an embodiment, when the forwarding platform receives the control packet sent by the user equipment, the control packet is encapsulated in the control packet encapsulation module, and the encapsulated control packet is sent to the control through a preset tunnel. The platform decapsulates the encapsulated control packet by extracting the control packet decapsulation module in the control platform, and extracts user information. In an embodiment, the load sharing policy is requested by the load sharing policy module according to the user information, so that the load sharing strategy is used in the load sharing policy module to calculate, and the access in the forwarding platform is determined to correspond to the user information. The best component of the user device and access the user device to the best component. In an embodiment, the message protocol processing module responds to the control message, and generates an offer message corresponding to the control message to be sent to the user equipment, so that the user equipment passes the optimal group price. And the control platform performs an interaction of the message protocol corresponding to the proposal message.

In an embodiment, the message protocol processing module in the control platform initiates an authentication request to the network security system according to the user information, so that the network security system performs authentication and authorization processing on the user, and The user authorization information corresponding to the user is fed back to the message protocol processing module. In an embodiment, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component.

In an embodiment, the flow classification module in the forwarding platform matches the data feature to the data packet, and performs traffic classification according to the flow feature, thereby executing a flow policy; and performing the flow policy according to the result and the broadband connection. The data packet forwarding module in the forwarding platform forwards the data packet to the user table.

The present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement any of the above embodiments. The load sharing method described.

The specific embodiments of the load sharing system of the present application are substantially the same as the foregoing embodiments of the load sharing method, and are not described herein.

The present application further provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by the processor to implement the load sharing method according to any of the above embodiments.

The embodiments of the computer readable storage medium of the present application are substantially the same as the embodiments of the load sharing method described above, and are not described herein.

It is to be understood that the term "comprises", "comprising", or any other variants thereof, is intended to encompass a non-exclusive inclusion, such that a process, method, article, or It also includes other elements that are not explicitly listed, or elements that are inherent to such a process, method, item, or system. An element defined by the phrase "comprising a ...", without further limitation, does not exclude the presence of additional equivalent elements in the process, method, item, or system that comprises the element.

The serial numbers of the embodiments of the present application are merely for the description, and do not represent the advantages and disadvantages of the embodiments.

Through the description of the above embodiments, those skilled in the art can clearly understand that the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better. Implementation. Based on such understanding, the technical solution of the present application, which is essential or contributes to the related art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, as described above). The disk, the optical disk, includes a plurality of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the method described in the various embodiments of the present application.

Claims (11)

  1. A load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes:
    Receiving a control packet sent by the forwarding platform, and extracting user information according to the control packet;
    Performing calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform;
    The user equipment is connected to the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of executing the traffic policy And forwarding, by using the user information, the data packet.
  2. The load sharing method according to claim 1, wherein the load sharing system further comprises a network security system, and the control message and the data message are derived from an initial message sent to the forwarding platform when the user equipment dials the broadband. The user equipment is connected to the optimal component, so that the optimal component performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the execution flow. The result of the policy and the user information are used to forward the data packet, including:
    Accessing the user equipment to the optimal component;
    Responding to the initial message, and generating an offer message corresponding to the initial message to be sent to the user equipment, so that the user equipment performs the The interaction of the packet protocol corresponding to the proposed packet is negotiated to use the network security system authentication mode;
    And sending an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back user authorization information corresponding to the user;
    Obtaining a broadband access user table according to the user authorization information and the user information, and delivering the broadband access user table to the optimal component, so that the optimal component pair corresponds to the control packet The data packet performs a traffic policy, and forwards the data packet according to the result of the execution of the traffic policy and the broadband access user table.
  3. The load sharing method of claim 1, wherein the optimal component comprises a plurality of ports, and the accessing the user equipment to the optimal component comprises:
    When the first port of the multiple ports is in a normal state, the user equipment is accessed to the first port;
    When the status of the first port is abnormal, the user equipment is connected to a second port of the plurality of ports that is in a normal state.
  4. A load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing system includes:
    Transmitting platform sends a control message to the control platform;
    The control platform extracts user information according to the control message;
    The control platform performs calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform, and accesses the user equipment. Describe the best components;
    The best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performs the data packet according to the result of the execution flow policy and the user information. Perform stream forwarding.
  5. The load sharing method of claim 4, wherein the optimal component comprises a plurality of ports, and the accessing the user equipment to the optimal component comprises:
    When the first port of the multiple ports is in a normal state, the user equipment is accessed to the first port;
    When the status of the first port is abnormal, the user equipment is accessed to a second port of the plurality of ports that is in a normal state.
  6. The load sharing method according to claim 4, wherein the load sharing system further comprises a network security system, and the control message and the data message are derived from the broadband dialing sent to the forwarding platform when the user equipment dials the broadband. The initial message corresponding to the mode; the control platform performs calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform, and After the user equipment is connected to the optimal component, the method includes:
    The control platform responds to the initial packet, and generates an offer message corresponding to the initial packet to be sent to the user equipment, so that the user equipment passes the optimal component and the control platform. Performing an interaction of the message protocol corresponding to the proposal message to negotiate the use of the network security system authentication mode;
    And the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back a user corresponding to the user. Authorization information;
    The control platform obtains the broadband access user table according to the user authorization information and the user information, and delivers the broadband access user table to the optimal component.
  7. The load sharing method according to claim 6, wherein the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performs a traffic policy according to the And the broadband access user table forwards the data packet, including:
    And the best component in the forwarding platform matches the flow feature of the data packet corresponding to the control packet, and performs traffic classification according to the flow feature, so as to execute a flow policy;
    The optimal component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  8. The load sharing method of claim 6, before the forwarding platform sends the control message to the control platform, the method further includes:
    The forwarding platform receives the initial packet corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing, and distinguishes whether the initial packet is a control packet or a data according to the protocol type of the initial packet and the preset flow table. Message
    The encapsulated control packet is sent to the control platform by using a preset tunnel corresponding to the encapsulation protocol, based on the initial packet being a control packet, and the control packet is encapsulated;
    Determining, according to the data packet, whether there is a broadband access user table corresponding to the user in the forwarding platform, and if yes, performing the following steps on the data packet: the most in the forwarding platform The best component performs a flow policy on the data packet, and forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  9. The load sharing method according to claim 8, wherein the control platform extracts user information according to the control message, including:
    The control platform decapsulates the encapsulated control message, and extracts user information according to the decapsulated control message.
  10. A load sharing system, comprising: a control platform, a forwarding platform, and a load sharing program, wherein the load sharing program is implemented by the control platform and the forwarding platform, and the load sharing method according to any one of claims 4 to 9 is implemented .
  11. A computer readable storage medium storing a load sharing program, wherein the load sharing program is executed by a processor to implement the load sharing method according to any one of claims 4 to 9.
PCT/CN2018/097511 2017-07-27 2018-07-27 Load sharing method and system, and computer-readable storage medium WO2019020114A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201710636450.3 2017-07-27
CN201710636450.3A CN109309627A (en) 2017-07-27 2017-07-27 Load share method, system and computer readable storage medium

Publications (1)

Publication Number Publication Date
WO2019020114A1 true WO2019020114A1 (en) 2019-01-31

Family

ID=65041043

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/097511 WO2019020114A1 (en) 2017-07-27 2018-07-27 Load sharing method and system, and computer-readable storage medium

Country Status (2)

Country Link
CN (1) CN109309627A (en)
WO (1) WO2019020114A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337819A (en) * 2014-08-15 2016-02-17 中国电信股份有限公司 Data processing method of broadband access gateway, broadband access gateway and network system
CN105610632A (en) * 2016-02-14 2016-05-25 华为技术有限公司 Virtual network device and related method
US20160149788A1 (en) * 2014-11-20 2016-05-26 Telefonaktiebolaget L M Ericsson (pubI) Passive Performance Measurement for Inline Service Chaining
CN105634956A (en) * 2015-12-31 2016-06-01 华为技术有限公司 Message forwarding method, device and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337819A (en) * 2014-08-15 2016-02-17 中国电信股份有限公司 Data processing method of broadband access gateway, broadband access gateway and network system
US20160149788A1 (en) * 2014-11-20 2016-05-26 Telefonaktiebolaget L M Ericsson (pubI) Passive Performance Measurement for Inline Service Chaining
CN105634956A (en) * 2015-12-31 2016-06-01 华为技术有限公司 Message forwarding method, device and system
CN105610632A (en) * 2016-02-14 2016-05-25 华为技术有限公司 Virtual network device and related method

Also Published As

Publication number Publication date
CN109309627A (en) 2019-02-05

Similar Documents

Publication Publication Date Title
US8774764B2 (en) Method and system for peer-to-peer enforcement
US9825847B2 (en) System and method for enabling services chaining in a provider network
US8400923B2 (en) Multipath transmission control protocol proxy
US7984492B2 (en) Methods and apparatus for policy enforcement in a wireless communication system
JP4276568B2 (en) Router and sip server
KR101419797B1 (en) Routing and quality decision in mobile ip networks
US8582473B2 (en) Providing services to packet flows in a network
EP1987629B1 (en) Techniques for authenticating a subscriber for an access network using dhcp
US20120303835A1 (en) Implementing EPC in a Cloud Computer with Openflow Data Plane
US7730521B1 (en) Authentication device initiated lawful intercept of network traffic
US10122574B2 (en) Methods and apparatus for a common control protocol for wired and wireless nodes
US6891842B2 (en) System and method for enabling mobile edge services
US20140269728A1 (en) Processing data packets using a policy based network path
US9621372B2 (en) Title-enabled networking
CN1287550C (en) Communication control apparatus, firewall apparatus, and data communication method
KR101418351B1 (en) Method and device for identifying and selecting an interface to access a network
JP4105722B2 (en) Communication device
JP4577683B2 (en) Common protocol hierarchical structure and data transmission method and a common protocol packet for mutual data transmission between different protocols
CN103905447B (en) Service link selection control method and apparatus
US20060117174A1 (en) Method of auto-configuration and auto-prioritizing for wireless security domain
US6883094B2 (en) Communication device for monitoring datalink layer information and outputting data based on communication request information type
US10135678B2 (en) Mobile network IOT convergence
CN102160452A (en) Method and system for providing mobility management in network
CN104519121A (en) Session-aware service chaining within computer networks
JP4586071B2 (en) The provision of user policy to the terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18838934

Country of ref document: EP

Kind code of ref document: A1