WO2021259111A1 - 报文处理方法、装置和计算机可读存储介质 - Google Patents

报文处理方法、装置和计算机可读存储介质 Download PDF

Info

Publication number
WO2021259111A1
WO2021259111A1 PCT/CN2021/100406 CN2021100406W WO2021259111A1 WO 2021259111 A1 WO2021259111 A1 WO 2021259111A1 CN 2021100406 W CN2021100406 W CN 2021100406W WO 2021259111 A1 WO2021259111 A1 WO 2021259111A1
Authority
WO
WIPO (PCT)
Prior art keywords
address
message
source
sent
network element
Prior art date
Application number
PCT/CN2021/100406
Other languages
English (en)
French (fr)
Inventor
徐林
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Priority to EP21829502.0A priority Critical patent/EP4170989A4/en
Publication of WO2021259111A1 publication Critical patent/WO2021259111A1/zh

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/54Organization of routing tables
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/745Address table lookup; Address filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5061Pools of addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/618Details of network addresses
    • H04L2101/659Internet protocol version 6 [IPv6] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/668Internet protocol [IP] address subnets

Definitions

  • This application relates to the field of network technology, and in particular to a message processing method, device, and computer-readable storage medium.
  • IPv6 addresses have been put into use in the current public network, and it is a basic requirement for network equipment to support the forwarding of IPv6 packets.
  • IPv6 packets are converted by IPv6 to IPv6 NAT (Network Address Translation) for address aggregation, so that the downlink packets can be returned to the same upstream device, but the operator does not want any more NAT translation is performed on IPv6 addresses, because this translation will cause performance degradation and break the "interconnection" feature of the Internet itself, making some IP addresses no longer reachable in both directions.
  • IPv6 NAT Network Address Translation
  • an embodiment of the present application provides a message processing method, which is applied to a message sending network element, and the method includes: obtaining an association rule, where the association rule is used to divide a plurality of addresses obtained from an IPv6 address pool Segment is associated with multiple processors; obtain the message to be sent and its source IP address; determine the destination processor corresponding to the address segment where the source IP address is located according to the association rule, and send the message to be sent to the Purpose processor.
  • the embodiments of the present application provide a message processing method, which is applied to a processor, and the method includes: obtaining an association rule, the association rule is used to divide multiple address segments obtained from an IPv6 address pool with processing Machine association; obtain the message to be sent and its source IP address; determine the address segment where the source IP address is located according to the association rules, and pass the address segment where the message to be sent and the source IP address are located through the Border Gateway Protocol BGP Send it to the router.
  • an embodiment of the present application provides a message processing method, which is applied to a message processing device, the message processing device includes a message sending network element and multiple processors, and the method includes: the message The message sending network element obtains an association rule, the association rule is used to associate multiple address segments divided by the IPv6 address pool with a plurality of the processors; the message sending network element obtains the message to be sent and its source IP Address; the message sending network element determines the destination processor corresponding to the address segment where the source IP address is located according to the association rule, and sends the message to be sent to the destination processor; multiple said processors Obtain the association rule synchronized by the message sending network element; the destination processor obtains the message to be sent and its source IP address from the message sending network element; the destination processor determines the source IP address according to the association rule The address segment where the address is located, the message to be sent and the address segment where the source IP address is located are sent to the router through the Border Gateway Protocol BGP.
  • an embodiment of the present application provides a message processing device, including a message sending network element and multiple processors.
  • the message sending network element obtains an association rule, and the association rule is used to transfer an IPv6 address pool from an IPv6 address pool.
  • the divided multiple address segments are associated with multiple processors; the message sending network element obtains the message to be sent and its source IP address; the message sending network element determines the source according to the association rule
  • the destination processor corresponding to the address segment of the IP address sends the message to be sent to the destination processor; a plurality of the processors obtain the association rules synchronized by the message sending network element; the destination processor Obtain the message to be sent and its source IP address from the message sending network element; the destination processor determines the address segment where the source IP address is located according to the association rule, and combines the message to be sent and the source IP address
  • the address segment is sent to the router through the Border Gateway Protocol BGP.
  • an embodiment of the present application provides a message processing device, including: a memory, a processor, and a computer program stored in the memory and running on the processor, and the processor executes the computer program when the computer program is executed.
  • a message processing device including: a memory, a processor, and a computer program stored in the memory and running on the processor, and the processor executes the computer program when the computer program is executed.
  • an embodiment of the present application provides a computer-readable storage medium, the computer-readable storage medium stores a computer-executable program, and the computer-executable program is used to make a computer execute the message processing described above method.
  • FIG. 1 is a flowchart of a message processing method provided by an embodiment of the present application
  • FIG. 2 is a flowchart of a message processing method provided by another embodiment of the present application.
  • Fig. 3 is a flowchart of a message processing method provided by another embodiment of the present application.
  • FIG. 4 is a schematic structural diagram of a message processing apparatus provided by an embodiment of the present application.
  • Fig. 5 is a schematic structural diagram of a message processing apparatus provided by an embodiment of the present application.
  • multiple means two or more, greater than, less than, exceeding, etc. are understood to not include the number, and above, below, and within are understood to include the number. If there are descriptions of "first”, “second”, etc., only for the purpose of distinguishing technical features, and cannot be understood as indicating or implying relative importance or implicitly indicating the number of indicated technical features or implicitly indicating the indicated The precedence of technical characteristics.
  • IPv6 addresses have been put into use in the current public network, and it is a basic requirement for network equipment to support the forwarding of IPv6 packets.
  • IPv6 packets are converted through IPv6 to IPv6NAT for address aggregation, so that downlink packets can be returned to the same upstream device, but operators do not want to perform NAT translation on IPv6 addresses because of this.
  • This conversion will cause performance degradation, breaking the "interconnected" feature of the Internet itself, and making some IP addresses no longer reachable in both directions.
  • the absence of NAT translation will cause the addresses of the upstream IPv6 packets from a device to be discrete, so the downstream packets cannot return to the same upstream device. Therefore, how to realize that downlink packets return to the same upstream device without going through NAT translation has become a problem to be solved urgently.
  • the embodiments of the present application provide a message processing method, device, and computer-readable storage medium.
  • the network element first obtains the association rule by sending the message.
  • the association rule is used to combine multiple address segments obtained by the IPv6 address pool with multiple
  • the processor is associated; then, the message sending network element obtains the message to be sent and its source IP address, determines the destination processor corresponding to the address segment where the source IP address is located according to the association rules, and sends the message to be sent to the destination processor.
  • multiple processors also obtain the association rules, and the destination processor obtains the message to be sent and its source IP address.
  • the destination processor determines the address segment of the source IP address according to the association rule, and places the message to be sent and the source IP address.
  • the address segment is sent to the router through the Border Gateway Protocol BGP. Based on this, when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP. Therefore, the solution provided in this embodiment uses the message sending network element and the processor to perform address aggregation, so that the downlink message can be returned to the same device in the uplink without going through NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • FIG. 1 is a flowchart of a message processing method provided by an embodiment of the present application.
  • the message processing method is applied to the message sending network element, which includes but is not limited to the following steps:
  • Step 101 Obtain an association rule, where the association rule is used to associate multiple address segments divided by the IPv6 address pool with multiple processors.
  • Step 102 Obtain a message to be sent and its source IP address.
  • Step 103 Determine the destination processor corresponding to the address segment of the source IP address according to the association rule, and send the message to be sent to the destination processor.
  • the message sending network element obtains association rules, where the association rules are used to associate multiple address segments divided by the IPv6 address pool with multiple processors, and then the message sending network element obtains the message to be sent.
  • the message and its source IP address are determined according to the association rules to determine the destination processor corresponding to the address segment of the source IP address, and the message to be sent is sent to the destination processor. Since the message sending network element obtains the association rules in advance, the message sending network element can determine the destination processor corresponding to the address segment where the source IP address is located according to the association rules, so as to send the message to be sent to the destination processor.
  • multiple address segments divided by the IPv6 address pool are associated with multiple processors using association rules, so that IPv6 packet addresses in the same address segment can be aggregated to the same processor to avoid upstream going out.
  • the IPv6 message address is discrete. Based on this, the address aggregation is performed through the aggregation of the message sending network elements, so that the downstream message can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • step 101 may include but is not limited to the following sub-steps:
  • association rules are used to associate multiple address segments obtained by balancing the IPv6 address pool with multiple processors, where the number of IP addresses in each pool segment is 2 n * 1024, and N is a natural number.
  • the user terminal IPv6 address pool is equally divided, so that the number of addresses in each area pool segment is 2 n *1024, where N is a natural number. That is, the number of IP addresses in each address segment can take values including but not limited to 1024, 2048, 4096, and 8192.
  • the following table A1 is an example of dividing the address pool 1:2:3:0/48 according to 8192 addresses as an address segment.
  • step 101 may include but is not limited to the following sub-steps:
  • association rules which are used to associate multiple address segments obtained by dividing the IPv6 address pool with multiple processors one by one in a circular manner.
  • multiple address segments are equally allocated to each processor and associated one by one, so that IPv6 packet addresses in the same address segment can be aggregated to the same processor, so as to prevent the addresses of the upstream IPv6 packets from being discrete.
  • the next hop network element has 3 processors, which are processor 1, processor 2, and processor 3.
  • the NextHop sequence number is the sequence number of the processor
  • NextHopTunnel is the tunnel address of the processor
  • NextHopIPv6 is the IPv6 interface address of the processor, which are used to send and receive IPv6 packets, respectively.
  • NextHop serial number NextHopTunnel NextHopIPv6 1 1.1.1.1 2001:0:1:1 2 1.1.2.2 2001:0:2:2 3 1.1.3.3 2001:0:3:3
  • the 8 address segments divided in Table A1 are sequentially and circularly associated with the 3 processors in Table B1.
  • processor 1 stores three address segments with segment numbers 1, 4, and 7
  • processor 2 stores three address segments with segment numbers 2, 5, and 8.
  • 3 stores two address segments with division segment numbers 3 and 6. The advantage of this storage is that multiple address segments can be evenly distributed to each processor.
  • step 103 may include but is not limited to the following sub-steps:
  • the association rules are synchronized to multiple processors, the destination processor corresponding to the address segment of the source IP address is determined according to the association rules, and the message to be sent is sent to the destination processor.
  • the processor itself may have preset association rules. Therefore, in order for the processor to update the association rules synchronously, the association rules corresponding to multiple address segments and multiple processor addresses need to be synchronized to the next hop.
  • the processor of the network element determines the destination processor corresponding to the address segment of the source IP address according to the association rule, and sends the message to be sent to the destination processor. Based on this, the message sending network element sends the message to the next hop network element according to the geographical pool segment to achieve load sharing. It should be pointed out that after the association rules are synchronized to multiple processors, when the load sharing instruction is obtained, the processor updates the association rules to forward the message, otherwise the processor forwards the message according to the original association rules.
  • FIG. 2 is a flowchart of a message processing method provided by an embodiment of the present application.
  • the message processing method is applied to a processor, which includes but is not limited to the following steps:
  • Step 201 Obtain an association rule.
  • the association rule is used to associate multiple address segments divided by the IPv6 address pool with the processor.
  • Step 202 Obtain the message to be sent and its source IP address.
  • Step 203 Determine the address segment where the source IP address is located according to the association rules, and send the message to be sent and the address segment where the source IP address is located to the router through the Border Gateway Protocol BGP.
  • the processor obtains the association rule synchronized by the message sending network element, where the association rule is used to associate multiple address segments divided by the IPv6 address pool with multiple processors, and then the processor slave
  • the message sending network element obtains the message to be sent and its source IP address, and then determines the address segment of the source IP address according to the association rules, and sends the message to be sent and the address segment of the source IP address to the router through the Border Gateway Protocol BGP. Therefore, when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP.
  • the IPv6 packet addresses in the same address range can be aggregated to the same processor, the addresses of the upstream IPv6 packets are prevented from being discrete. Based on this, address aggregation is performed through the aggregation of processors, so that downlink messages can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • Border Gateway Protocol BGP is a routing protocol of autonomous system AS running on TCP, which can realize the communication between autonomous systems and spread the reachability information of the network.
  • BGP is an exterior gateway protocol that allows one AS to communicate with another AS.
  • BGP allows an AS to advertise the reachability information of its internal network to other ASs, or routing information of other networks reachable through the AS.
  • the AS can also learn this information from another AS. What BGP provides for each destination network is the information of the next hop NextHop node.
  • the advertisement When BGP announces the reachability information of the destination network, in addition to processing the next hop information of the specified destination network, the advertisement also includes the path vector, that is, the list of ASs that need to pass through to the destination network, so that the recipient can Understand the path information to the destination network.
  • the processing machine is located in a virtual firewall.
  • the following one-hop network element is a virtual firewall as an example.
  • the virtual firewall has multiple processors.
  • the message to be sent is sent to each processor of the firewall according to the association rules.
  • Tunnel or In the policy routing method the virtual firewall can determine the address segment of the source IP address according to the association rules, and send the message to be sent and the address segment of the source IP address to the router through the Border Gateway Protocol BGP, so that the downstream packets will be returned according to the Border Gateway Protocol BGP.
  • Virtual firewall virtual firewall can perform security check on downstream packets.
  • FIG. 3 is a flowchart of a message processing method provided by an embodiment of the present application.
  • the message processing method is applied to a message processing device, where the message processing device includes a message sending network element and multiple processors, and the method includes but is not limited to the following steps:
  • Step 301 The message sending network element obtains an association rule, where the association rule is used to associate multiple address segments obtained by the IPv6 address pool with multiple processors;
  • Step 302 The message sending network element obtains the message to be sent and its source IP address
  • Step 303 The message sending network element determines the destination processor corresponding to the address segment of the source IP address according to the association rule, and sends the message to be sent to the destination processor.
  • Step 304 multiple processors obtain the association rules synchronized by the message sending network element
  • Step 305 The destination processor obtains the message to be sent and its source IP address from the message sending network element;
  • Step 306 The destination processor determines the address segment where the source IP address is located according to the association rules, and sends the message to be sent and the address segment where the source IP address is located to the router through the Border Gateway Protocol BGP.
  • the message sending network element obtains association rules, where the association rules are used to associate multiple address segments divided by the IPv6 address pool with multiple processors, and then the message sending network element obtains the message to be sent.
  • the message and its source IP address are determined according to the association rules to determine the destination processor corresponding to the address segment of the source IP address, and the message to be sent is sent to the destination processor.
  • Multiple processors obtain the association rules synchronized by the message sending network element, and then the destination processor obtains the message to be sent and its source IP address from the message sending network element, and then determines the address segment of the source IP address according to the association rules , Send the message to be sent and the address segment of the source IP address to the router through the Border Gateway Protocol BGP.
  • the router when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP.
  • multiple address segments divided by the IPv6 address pool are associated with multiple processors using association rules, so that IPv6 packet addresses in the same address segment can be aggregated to the same processor to avoid upstream going out.
  • the IPv6 message address is discrete. Based on this, the network element and the processor are used to send the message to perform address aggregation, so that the downstream message can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • FIG. 4 is a schematic diagram of a message processing apparatus provided by an embodiment of the present application.
  • the message processing device includes a message sending network element and multiple processors.
  • the message sending network element obtains an association rule, and the association rule is used to associate multiple address segments divided by the IPv6 address pool with multiple processors;
  • the message sending network element obtains the message to be sent and its source IP address
  • the message sending network element determines the destination processor corresponding to the address segment of the source IP address according to the association rules, and sends the message to be sent to the destination processor.
  • the destination processor obtains the message to be sent and its source IP address from the message sending network element;
  • the destination processor determines the address segment of the source IP address according to the association rules, and sends the message to be sent and the address segment of the source IP address to the router through the Border Gateway Protocol BGP.
  • the message sending network element obtains association rules, where the association rules are used to associate multiple address segments divided by the IPv6 address pool with multiple processors, and then the message sending network element obtains the message to be sent.
  • the message and its source IP address are determined according to the association rules to determine the destination processor corresponding to the address segment of the source IP address, and the message to be sent is sent to the destination processor.
  • Multiple processors obtain the association rules synchronized by the message sending network element, and then the destination processor obtains the message to be sent and its source IP address from the message sending network element, and then determines the address segment of the source IP address according to the association rules , Send the message to be sent and the address segment of the source IP address to the router through the Border Gateway Protocol BGP.
  • the router when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP.
  • multiple address segments divided by the IPv6 address pool are associated with multiple processors using association rules, so that IPv6 packet addresses in the same address segment can be aggregated to the same processor to avoid upstream going out.
  • the IPv6 message address is discrete. Based on this, the network element and the processor are used to send the message to perform address aggregation, so that the downstream message can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • the message sending network element first obtains the association rules, and when sending the message, it obtains three message addresses to be sent, which are specifically 2001:0DB8::1428: 57ab, 2001:0DB8::1428:57ac, 2001:0DB8::1428:57ad, and then determine the address segment of the above three message addresses as 2001:0DB8::1428:0/48 according to the association rules, and this address segment Corresponding to the associated destination processor is processor 1 of the virtual firewall vFW, then three messages to be sent 2001:0DB8::1428:57ab, 2001:0DB8::1428:57ac, 2001:0DB8::1428:57ad are sent To processor 1, then processor 1 sends the message and sends the address segment 2001:0DB8::1428:0/48 to the router through the border gateway protocol BGP. In this way, when receiving a downlink message, the router will return the downlink message to the same up
  • an embodiment of the present application also provides a message processing device.
  • the message processing device includes: one or more processors and memories, and one processor and memory are taken as an example in FIG. 5.
  • the processor and the memory may be connected through a bus or in other ways. In FIG. 5, the connection through a bus is taken as an example.
  • the memory can be used to store non-transitory software programs and non-transitory computer-executable programs, such as the message processing method in the above-mentioned embodiment of the present application.
  • the processor executes the non-transitory software program and the program stored in the memory to realize the message processing method in the foregoing embodiment of the present application.
  • the memory may include a storage program area and a storage data area.
  • the storage program area can store an operating system and an application program required by at least one function; Data etc.
  • the memory may include a high-speed random access memory, and may also include a non-transitory memory, such as at least one magnetic disk storage device, a flash memory device, or other non-transitory solid-state storage devices.
  • the memory includes a memory remotely arranged with respect to the processor, and these remote memories may be connected to the terminal through a network. Examples of the aforementioned networks include, but are not limited to, the Internet, corporate intranets, local area networks, mobile communication networks, and combinations thereof.
  • the non-transitory software program and the program required to implement the message processing method in the above embodiment of the application are stored in the memory, and when executed by one or more processors, the message processing method in the above embodiment of the application is executed For example, the above-described method steps 101 to 103 in Figure 1 and method steps 201 to 203 in Figure 2 are executed.
  • the message sending network element first obtains the association rules, and the association rules are used to divide the IPv6 address pool. Multiple address segments are associated with multiple processors; then, the message sending network element obtains the message to be sent and its source IP address, and determines the destination processor corresponding to the address segment of the source IP address according to the association rules, and sends the message to be sent.
  • the document is sent to the destination processor.
  • multiple processors obtain the association rules synchronized by the message sending network element. Then, the processor obtains the message to be sent and its source IP address from the message sending network element, and then determines the address of the source IP address according to the association rules. Segment, send the message to be sent and the address segment where the source IP address is located to the router through the Border Gateway Protocol BGP. Based on this, when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP. Therefore, the address aggregation is performed by the message sending network element and the processor, so that the downlink message can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • the embodiment of the application includes: the message sending network element first obtains association rules, and the association rules are used to associate multiple address segments obtained by the IPv6 address pool with multiple processors; then, the message sending network element obtains the message to be sent And its source IP address, and determine the destination processor corresponding to the address segment of the source IP address according to the association rules, and send the message to be sent to the destination processor.
  • multiple processors also obtain the association rules, and the destination processor obtains the message to be sent and its source IP address.
  • the destination processor determines the address segment of the source IP address according to the association rule, and places the message to be sent and the source IP address.
  • the address segment is sent to the router through the Border Gateway Protocol BGP.
  • the router when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP. Therefore, the solution provided in this embodiment uses the message sending network element and the processor to perform address aggregation, so that the downlink message can be returned to the same device in the uplink without going through NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • an embodiment of the present application also provides a computer-readable storage medium, the computer-readable storage medium stores a computer-executable program, and the computer-executable program is executed by one or more control processors, for example, as shown in FIG. 5
  • the execution of one processor in the above-mentioned one or more processors can execute the above-mentioned message processing method in the embodiment of the present application, for example, the above-described method step 101 to step 103 in FIG. 1 and step 103 in FIG. 2 are executed.
  • the message sending network element first obtains association rules, which are used to associate multiple address segments divided by the IPv6 address pool with multiple processors; then, the message sending network element obtains the message to be sent The message and its source IP address are determined according to the association rules, and the destination processor corresponding to the address segment of the source IP address is determined, and the message to be sent is sent to the destination processor.
  • multiple processors obtain the association rules synchronized by the message sending network element. Then, the processor obtains the message to be sent and its source IP address from the message sending network element, and then determines the address of the source IP address according to the association rules.
  • Segment send the message to be sent and the address segment where the source IP address is located to the router through the Border Gateway Protocol BGP. Based on this, when receiving a downlink message, the router will return the downlink message to the same upstream processor according to the Border Gateway Protocol BGP. Therefore, the address aggregation is performed by the message sending network element and the processor, so that the downlink message can be returned to the same upstream device without NAT translation. At the same time, because NAT translation is avoided, network performance is improved.
  • computer storage medium includes volatile and non-volatile memory implemented in any method or technology for storing information (such as computer-readable programs, data structures, program modules, or other data).
  • Information such as computer-readable programs, data structures, program modules, or other data.
  • Computer storage media include but are not limited to RAM, ROM, EEPROM, flash memory or other storage technologies, CD-ROM, digital versatile disk (DVD) or other optical disk storage, magnetic cassettes, magnetic tapes, magnetic disk storage or other magnetic storage devices, or Any other medium used to store desired information and that can be accessed by a computer.
  • communication media usually include computer-readable programs, data structures, program modules, or other data in a modulated data signal such as carrier waves or other transmission mechanisms, and may include any information delivery media. .

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

一种报文处理方法、装置和计算机可读存储介质,其中,所述方法包括:报文发送网元获取关联规则(S301);报文发送网元获取待发送报文及其源IP地址(S302);报文发送网元根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机(S303);多个处理机获取关联规则(S304),目的处理机获取待发送报文及其源IP地址(S305);目的处理机根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器(S306)。

Description

报文处理方法、装置和计算机可读存储介质
相关申请的交叉引用
本申请基于申请号为202010581645.4、申请日为2020年6月23日的中国专利申请提出,并要求该中国专利申请的优先权,该中国专利申请的全部内容在此引入本申请作为参考。
技术领域
本申请涉及网络技术领域,特别是涉及一种报文处理方法、装置和计算机可读存储介质。
背景技术
随着IPv4地址的枯竭,IPv6地址在当前公网中已投入使用,支持IPv6报文的转发已经是网络设备的基本要求。在本领域一些情形中,IPv6报文是通过IPv6转IPv6NAT(Network Address Translation,网络地址转换)方式转换地址进行地址汇聚,以使得下行报文可以回到上行同一个设备,但运营商不希望再对IPv6地址进行NAT转换,因为这种转换会导致性能降低,打破了互联网本身的"互联"特性,使得一部分IP地址不再双向可达。然而,没有NAT转换会导致从一个设备上行出去的IPv6报文地址是离散的,所以其下行报文无法回到上行同一个设备。因此,如何无需经过NAT转换而实现下行报文回到上行同一个设备成为亟待解决的问题。
发明内容
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保护范围。
第一方面,本申请实施例提供了一种报文处理方法,应用于报文发送网元,所述方法包括:获取关联规则,所述关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联;获取待发送报文及其源IP地址;根据所述关联规则确定所述源lP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机。
第二方面,本申请实施例提供了一种报文处理方法,应用于处理机,所述方法包括:获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与处理机关联;获取待发送报文及其源IP地址;根据所述关联规则确定所述源lP地址所在地址段,将所述待发送报文以及所述源lP地址所在地址段通过边界网关协议BGP发送给路由器。
第三方面,本申请实施例提供了一种报文处理方法,应用于报文处理装置,所述报文处理装置包括报文发送网元和多个处理机,所述方法包括:所述报文发送网元获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个所述处理机关联;所述报文发送网元获取待发送报文及其源IP地址;所述报文发送网元根据所述关联规则确定所述源lP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机;多个所述处理机获取由报文发送网元同步过来的关联规则;所述目的处理机从报文发送网元获取待发送报文及其源IP地址;所述目的处理机根据所述关联规则确定所述源lP地址所在地址段,将所述待发送报文以及所述源lP地址所在地址段通过边界网关协议BGP发送给路由器。
第四方面,本申请实施例提供了一种报文处理装置,包括报文发送网元和多个处理机, 所述报文发送网元获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个所述处理机关联;所述报文发送网元获取待发送报文及其源IP地址;所述报文发送网元根据所述关联规则确定所述源lP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机;多个所述处理机获取由报文发送网元同步过来的关联规则;所述目的处理机从报文发送网元获取待发送报文及其源IP地址;所述目的处理机根据所述关联规则确定所述源lP地址所在地址段,将所述待发送报文以及所述源lP地址所在地址段通过边界网关协议BGP发送给路由器。
第五方面,本申请实施例提供了一种报文处理装置,包括:存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,所述处理器执行所述计算机程序时实现如上第二方面所述的报文处理方法或实现如上第三方面所述的报文处理方法。
第六方面,本申请实施例提供了一种计算机可读存储介质,所述计算机可读存储介质存储有计算机可执行程序,所述计算机可执行程序用于使计算机执行如上所述的报文处理方法。
本申请的其它特征和优点将在随后的说明书中阐述,并且,部分地从说明书中变得显而易见,或者通过实施本申请而了解。本申请的目的和其他优点可通过在说明书、权利要求书以及附图中所特别指出的结构来实现和获得。
附图说明
附图用来提供对本申请技术方案的进一步理解,并且构成说明书的一部分,与本申请的实施例一起用于解释本申请的技术方案,并不构成对本申请技术方案的限制。
图1是本申请一个实施例提供的一种报文处理方法的流程图;
图2是本申请另一个实施例提供的一种报文处理方法的流程图;
图3是本申请另一个实施例提供的一种报文处理方法的流程图;
图4是本申请一个实施例提供的报文处理装置结构示意图;
图5是本申请一个实施例提供的报文处理装置结构示意图。
具体实施方式
为了使本申请的目的、技术方案及优点更加清楚明白,以下结合附图及实施例,对本申请进行进一步详细说明。应当理解,此处所描述的具体实施例仅用以解释本申请,并不用于限定本申请。
应了解,在本申请实施例的描述中,多个(或多项)的含义是两个以上,大于、小于、超过等理解为不包括本数,以上、以下、以内等理解为包括本数。如果有描述到“第一”、“第二”等只是用于区分技术特征为目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量或者隐含指明所指示的技术特征的先后关系。
随着IPv4地址的枯竭,IPv6地址在当前公网中已投入使用,支持IPv6报文的转发已经是网络设备的基本要求。在本领域一些情形中,IPv6报文是通过IPv6转IPv6NAT方式转换地址进行地址汇聚,以使得下行报文可以回到上行同一个设备,但运营商不希望再对IPv6地址进行NAT转换,因为这种转换会导致性能降低,打破了互联网本身的"互联"特性,使得一部分IP地址不再双向可达。然而,没有NAT转换会导致从一个设备上行出去的IPv6报文地址是离散的,所以其下行报文无法回到上行同一个设备。因此,如何无需经过NAT转换而实现下行报文回到上行同一个设备成为亟待解决的问题。
本申请实施例提供了一种报文处理方法、装置和计算机可读存储介质,通过报文发送 网元先获取关联规则,关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;然后,报文发送网元获取待发送报文及其源IP地址,并根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。此外,多个处理机同样获取关联规则,而目的处理机获取待发送报文及其源IP地址,目的处理机根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。基于此,接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。因此,本实施例提供的方案通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
如图1所示,图1是本申请一个实施例提供的一种报文处理方法的流程图。该报文处理方法应用于报文发送网元,其包括但不限于如下步骤:
步骤101,获取关联规则,关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联。
步骤102,获取待发送报文及其源IP地址。
步骤103,根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。
在一实施例中,报文发送网元获取关联规则,其中,关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联,然后,报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。由于报文发送网元预先获取关联规则,因此,报文发送网元可以根据关联规则确定源lP地址所在地址段对应的目的处理机,从而将待发送报文发送至目的处理机。在本实施例中,利用关联规则将由lPv6地址池划分得到的多个地址段与多个处理机关联起来,使得处于同一地址段的IPv6报文地址可以聚合到同一个处理机,以避免上行出去的IPv6报文地址是离散的。基于此,通过报文发送网元的聚合进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
在一实施例中,步骤101可以包括但不限于如下子步骤:
获取关联规则,关联规则用于将由IPv6地址池均衡划分得到的多个地址段与多个处理机关联,其中,每个地池段的IP地址个数为2 n*1024,N为自然数。
在关联规则中,对用户终端IPv6地址池进行均衡划分,使得每个地池段的地址个数为2 n*1024,其中,N为自然数。即每一个地址段的IP地址个数可以取值包括但不限于1024、2048、4096、8192。例如,下表A1是对地址池1:2:3:0/48按照8192个地址为一个地址段进行划分举例。
前缀 前缀长度 划分段序号 划分地址后段
1:2:3:0 48 1 1:2:3:0/51
1:2:3:0 48 2 1:2:3:2000/51
1:2:3:0 48 3 1:2:3:4000/51
1:2:3:0 48 4 1:2:3:5FFF/51
1:2:3:0 48 5 1:2:3:7FFF/51
1:2:3:0 48 6 1:2:3:9FFF/51
1:2:3:0 48 7 1:2:3:BFFF/51
1:2:3:0 48 8 1:2:3:DFFF/51
在一实施例中,步骤101可以包括但不限于如下子步骤:
获取关联规则,关联规则用于将由lPv6地址池划分得到的多个地址段依次循环与多个处理机逐一关联。在本实施例中,将多个地址段均摊到各个处理机逐一关联,使得处于同一地址段的IPv6报文地址可以聚合到同一个处理机,以避免上行出去的IPv6报文地址是离散的。
例如,如下表B1,下一跳网元有3个处理机,分别为处理机1、处理机2和处理机3。其中,NextHop序号是处理机的序号,NextHopTunnel是处理机的隧道地址,NextHopIPv6是处理机的IPv6接口地址,分别用于发送和接收IPv6报文。
NextHop序号 NextHopTunnel NextHopIPv6
1 1.1.1.1 2001:0:1:1
2 1.1.2.2 2001:0:2:2
3 1.1.3.3 2001:0:3:3
把表A1中划分的8个地址段依次循环与表B1的3个处理机关联。例如,下表中,处理机1存放了划分段序号分别为1、4、7的三个地址段,处理机2存放了划分段序号分别为2、5、8的三个地址段,处理机3存放了划分段序号分别为3、6的两个地址段。这样存放的好处是多个地址段可以被均摊到各个处理机。
NextHop序号 地址段列1 地址段列2 地址段列3
1 1 4 7
2 2 5 8
3 3 6  
在一实施例中,步骤103可以包括但不限于如下子步骤:
将关联规则同步给多个处理机,根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。
在本实施例中,处理机自身可以有预设的关联规则,因此,为了让处理机同步更新关联规则,需要将多个地址段与多个处理机地址逐一对应的关联规则同步给下一跳网元的处理机。然后,报文发送网元根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。基于此,报文发送网元按照地池段发送报文给下一跳网元实现负荷分担。需要指出的是,将关联规则同步给多个处理机后,当获取到打开负荷分担指令,处理机更新关联规则进行报文转发,否则处理机按照原有的关联规则进行报文转发。
如图2所示,图2是本申请一个实施例提供的一种报文处理方法的流程图。该报文处理方法应用于处理机,其包括但不限于如下步骤:
步骤201,获取关联规则,关联规则用于将由lPv6地址池划分得到的多个地址段与处 理机关联。
步骤202,获取待发送报文及其源IP地址。
步骤203,根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。
在一实施例中,处理机获取由报文发送网元同步过来的关联规则,其中,关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联,然后,处理机从报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。所以,在接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。在本实施例中,由于处于同一地址段的IPv6报文地址可以聚合到同一个处理机,以避免上行出去的IPv6报文地址是离散的。基于此,通过处理机的聚合进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
其中,边界网关协议BGP是运行于TCP上的一种自治系统AS的路由协议,其可以实现自治系统间通信,传播网络的可达信息。BGP是一个外部网关协议,允许一个AS与另一个AS进行通信。BGP允许一个AS向其他AS通告其内部的网络的可达性信息,或者是通过该AS可达的其他网络的路由信息。同时,AS也能够从另一个AS中了解这些信息。BGP为每个目的网络提供的是下一跳NextHop结点的信息。在BGP通告目的网络的可达性信息时,处理指定目的网络的下一跳信息之外,通告中还包括了通路向量,即去往该目的网络时需要经过的AS的列表,使接受者能够了解去往目的网络的通路信息。
在一实施例中,处理机位于虚拟防火墙。
在本实施例中,以下一跳网元为虚拟防火墙为例,虚拟防火墙有多个处理机,报文转发时,根据关联规则将待发送报文发送到防火墙的各个处理机,可以采用隧道或策略路由方式,虚拟防火墙可以根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器,以使得下行报文按照边界网关协议BGP回虚拟防火墙,虚拟防火墙可以对下行报文进行安全检查。
如图3所示,图3是本申请一个实施例提供的一种报文处理方法的流程图。该报文处理方法应用于报文处理装置,其中,报文处理装置包括报文发送网元和多个处理机,该方法包括但不限于如下步骤:
步骤301,报文发送网元获取关联规则,关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;
步骤302,报文发送网元获取待发送报文及其源IP地址;
步骤303,报文发送网元根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。
步骤304,多个处理机获取由报文发送网元同步过来的关联规则;
步骤305,目的处理机从报文发送网元获取待发送报文及其源IP地址;
步骤306,目的处理机根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。
在一实施例中,报文发送网元获取关联规则,其中,关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联,然后,报文发送网元获取待发送报文及其源IP 地址,再根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。多个处理机获取由报文发送网元同步过来的关联规则,然后,目的处理机从报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。所以,在接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。在本实施例中,利用关联规则将由lPv6地址池划分得到的多个地址段与多个处理机关联起来,使得处于同一地址段的IPv6报文地址可以聚合到同一个处理机,以避免上行出去的IPv6报文地址是离散的。基于此,通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
如图4所示,图4是本申请一个实施例提供的一种报文处理装置的示意图。该报文处理装置包括报文发送网元和多个处理机。
其中,报文发送网元获取关联规则,关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;
报文发送网元获取待发送报文及其源IP地址;
报文发送网元根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。
多个处理机获取由报文发送网元同步过来的关联规则;
目的处理机从报文发送网元获取待发送报文及其源IP地址;
目的处理机根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。
在一实施例中,报文发送网元获取关联规则,其中,关联规则用于将由lPv6地址池划分得到的多个地址段与多个处理机关联,然后,报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。多个处理机获取由报文发送网元同步过来的关联规则,然后,目的处理机从报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。所以,在接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。在本实施例中,利用关联规则将由lPv6地址池划分得到的多个地址段与多个处理机关联起来,使得处于同一地址段的IPv6报文地址可以聚合到同一个处理机,以避免上行出去的IPv6报文地址是离散的。基于此,通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
在一实施例中,如图4所示,例如,报文发送网元先获取关联规则,在发送报文时,获取三个待发送报文地址,其具体分别为2001:0DB8::1428:57ab、2001:0DB8::1428:57ac、2001:0DB8::1428:57ad,再根据关联规则确定上述三个报文地址所在地址段为2001:0DB8::1428:0/48,与该地址段对应关联的目的处理机为虚拟防火墙vFW的处理机1,则将三个待发送报文2001:0DB8::1428:57ab、2001:0DB8::1428:57ac、2001:0DB8::1428:57ad发送给处理机1,再由处理机1把报文发送给出去,并把地址段2001:0DB8::1428:0/48通过边界网关协议BGP发送给路由器。这样,在接收下行报文时, 路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。
如图5所示,本申请实施例还提供了一种报文处理装置。
具体地,该报文处理装置包括:一个或多个处理器和存储器,图5中以一个处理器及存储器为例。处理器和存储器可以通过总线或者其他方式连接,图5中以通过总线连接为例。
存储器作为一种非暂态计算机可读存储介质,可用于存储非暂态软件程序以及非暂态性计算机可执行程序,如上述本申请实施例中的报文处理方法。处理器通过运行存储在存储器中的非暂态软件程序以及程序,从而实现上述本申请实施例中的报文处理方法。
存储器可以包括存储程序区和存储数据区,其中,存储程序区可存储操作系统、至少一个功能所需要的应用程序;存储数据区可存储执行上述本申请实施例中的报文处理方法所需的数据等。此外,存储器可以包括高速随机存取存储器,还可以包括非暂态存储器,例如至少一个磁盘存储器件、闪存器件、或其他非暂态固态存储器件。在一些实施方式中,存储器包括相对于处理器远程设置的存储器,这些远程存储器可以通过网络连接至该终端。上述网络的实例包括但不限于互联网、企业内部网、局域网、移动通信网及其组合。
实现上述本申请实施例中的报文处理方法所需的非暂态软件程序以及程序存储在存储器中,当被一个或者多个处理器执行时,执行上述本申请实施例中的报文处理方法,例如,执行以上描述的图1中的方法步骤101至步骤103,图2中的方法步骤201至步骤203,报文发送网元先获取关联规则,关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;然后,报文发送网元获取待发送报文及其源IP地址,并根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。此外,多个处理机获取由报文发送网元同步过来的关联规则,然后,处理机从报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。基于此,接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。因此,通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
本申请实施例包括:报文发送网元先获取关联规则,关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;然后,报文发送网元获取待发送报文及其源IP地址,并根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。此外,多个处理机同样获取关联规则,而目的处理机获取待发送报文及其源IP地址,目的处理机根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。基于此,接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。因此,本实施例提供的方案通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
此外,本申请实施例还提供了一种计算机可读存储介质,该计算机可读存储介质存储有计算机可执行程序,该计算机可执行程序被一个或多个控制处理器执行,例如,被图5中的一个处理器执行,可使得上述一个或多个处理器执行上述本申请实施例中的报文处理方法,例如,执行以上描述的图1中的方法步骤101至步骤103,图2中的方法步骤201至步骤203,报文发送网元先获取关联规则,关联规则用于将由IPv6地址池划分得到的多 个地址段与多个处理机关联;然后,报文发送网元获取待发送报文及其源IP地址,并根据关联规则确定源lP地址所在地址段对应的目的处理机,将待发送报文发送至目的处理机。此外,多个处理机获取由报文发送网元同步过来的关联规则,然后,处理机从报文发送网元获取待发送报文及其源IP地址,再根据关联规则确定源lP地址所在地址段,将待发送报文以及源lP地址所在地址段通过边界网关协议BGP发送给路由器。基于此,接收下行报文时,路由器会将下行报文按照边界网关协议BGP回到上行同一个处理机。因此,通过报文发送网元以及处理机进行地址汇聚,从而无需经过NAT转换即可实现下行报文回到上行同一个设备。同时,由于避免了NAT转换,网络性能得到提升。
本领域普通技术人员可以理解,上文中所公开方法中的全部或某些步骤、系统可以被实施为软件、固件、硬件及其适当的组合。某些物理组件或所有物理组件可以被实施为由处理器,如中央处理器、数字信号处理器或微处理器执行的软件,或者被实施为硬件,或者被实施为集成电路,如专用集成电路。这样的软件可以分布在计算机可读介质上,计算机可读介质可以包括计算机存储介质(或非暂时性介质)和通信介质(或暂时性介质)。如本领域普通技术人员公知的,术语计算机存储介质包括在用于存储信息(诸如计算机可读程序、数据结构、程序模块或其他数据)的任何方法或技术中实施的易失性和非易失性、可移除和不可移除介质。计算机存储介质包括但不限于RAM、ROM、EEPROM、闪存或其他存储器技术、CD-ROM、数字多功能盘(DVD)或其他光盘存储、磁盒、磁带、磁盘存储或其他磁存储装置、或者可以用于存储期望的信息并且可以被计算机访问的任何其他的介质。此外,本领域普通技术人员公知的是,通信介质通常包含计算机可读程序、数据结构、程序模块或者诸如载波或其他传输机制之类的调制数据信号中的其他数据,并且可包括任何信息递送介质。
以上是对本申请的一些实施进行了具体说明,但本申请并不局限于上述实施方式,熟悉本领域的技术人员在不违背本申请范围的共享条件下还可作出种种等同的变形或替换,这些等同的变形或替换均包括在本申请权利要求所限定的范围内。

Claims (10)

  1. 一种报文处理方法,应用于报文发送网元,所述方法包括:
    获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联;
    获取待发送报文及其源IP地址;
    根据所述关联规则确定所述源IP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机。
  2. 根据权利要求1所述的方法,其中,所述获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联,包括:
    获取关联规则,所述关联规则用于将由IPv6地址池均衡划分得到的多个地址段与多个处理机关联,其中,每个地池段的IP地址个数为2n*1024,N为自然数。
  3. 根据权利要求1所述的方法,其中,所述获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个处理机关联,包括:
    获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段依次循环与多个处理机逐一关联。
  4. 根据权利要求1所述的方法,其中,所述根据所述关联规则确定所述源IP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机,包括:
    将关联规则同步给多个处理机,根据所述关联规则确定所述源IP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机。
  5. 一种报文处理方法,应用于处理机,所述方法包括:
    获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与处理机关联;
    获取待发送报文及其源IP地址;
    根据所述关联规则确定所述源IP地址所在地址段,将所述待发送报文以及所述源IP地址所在地址段通过边界网关协议BGP发送给路由器。
  6. 根据权利要求5所述的方法,其中,所述处理机位于虚拟防火墙。
  7. 一种报文处理方法,应用于报文处理装置,所述报文处理装置包括报文发送网元和多个处理机,所述方法包括:
    所述报文发送网元获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多个地址段与多个所述处理机关联;
    所述报文发送网元获取待发送报文及其源IP地址;
    所述报文发送网元根据所述关联规则确定所述源IP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机;
    多个所述处理机获取由报文发送网元同步过来的关联规则;
    所述目的处理机从报文发送网元获取待发送报文及其源IP地址;
    所述目的处理机根据所述关联规则确定所述源IP地址所在地址段,将所述待发送报文以及所述源IP地址所在地址段通过边界网关协议BGP发送给路由器。
  8. 一种报文处理装置,包括报文发送网元和多个处理机,
    所述报文发送网元获取关联规则,所述关联规则用于将由IPv6地址池划分得到的多 个地址段与多个所述处理机关联;
    所述报文发送网元获取待发送报文及其源IP地址;
    所述报文发送网元根据所述关联规则确定所述源IP地址所在地址段对应的目的处理机,将所述待发送报文发送至所述目的处理机;
    多个所述处理机获取由报文发送网元同步过来的关联规则;
    所述目的处理机从报文发送网元获取待发送报文及其源IP地址;
    所述目的处理机根据所述关联规则确定所述源IP地址所在地址段,将所述待发送报文以及所述源IP地址所在地址段通过边界网关协议BGP发送给路由器。
  9. 一种报文处理装置,包括:存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,其中,所述处理器执行所述计算机程序时实现如权利要求1至6中任意一项所述的报文处理方法。
  10. 一种计算机可读存储介质,存储有计算机可执行程序,其中所述计算机可执行程序用于使计算机执行如权利要求1至6任意一项所述的报文处理方法。
PCT/CN2021/100406 2020-06-23 2021-06-16 报文处理方法、装置和计算机可读存储介质 WO2021259111A1 (zh)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP21829502.0A EP4170989A4 (en) 2020-06-23 2021-06-16 MESSAGE PROCESSING METHOD AND DEVICE, AND COMPUTER READABLE RECORDING MEDIUM

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202010581645.4A CN113840016A (zh) 2020-06-23 2020-06-23 报文处理方法、装置和计算机可读存储介质
CN202010581645.4 2020-06-23

Publications (1)

Publication Number Publication Date
WO2021259111A1 true WO2021259111A1 (zh) 2021-12-30

Family

ID=78964083

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/100406 WO2021259111A1 (zh) 2020-06-23 2021-06-16 报文处理方法、装置和计算机可读存储介质

Country Status (3)

Country Link
EP (1) EP4170989A4 (zh)
CN (1) CN113840016A (zh)
WO (1) WO2021259111A1 (zh)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115334171A (zh) * 2022-06-24 2022-11-11 华能国际电力江苏能源开发有限公司 一种将不同网段ip地址兼容互通成单一数据链的方法

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102215158A (zh) * 2010-04-08 2011-10-12 杭州华三通信技术有限公司 实现vrrp流量传输的方法和路由设备
US20140010084A1 (en) * 2012-07-09 2014-01-09 Arun Kavunder System and method associated with a service flow router
CN105991460A (zh) * 2015-03-02 2016-10-05 杭州迪普科技有限公司 流量负载转发方法、主控板、业务板及网络设备
CN106878184A (zh) * 2017-02-28 2017-06-20 新华三技术有限公司 一种数据报文传输方法和装置
CN109413227A (zh) * 2018-12-04 2019-03-01 睿哲科技股份有限公司 基于多IPv6网络的IPv4用户访问IPv6网络互通装置和设备
CN110012125A (zh) * 2019-04-01 2019-07-12 优刻得科技股份有限公司 集群网络通信方法、装置、存储介质和设备

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101043430B (zh) * 2006-06-20 2010-12-01 华为技术有限公司 一种设备之间网络地址转换的方法
CN104426759B (zh) * 2013-08-21 2018-11-20 华为技术有限公司 主机路由获取方法、装置及系统
US9716653B2 (en) * 2014-11-18 2017-07-25 Hauwei Technologies Co., Ltd. System and method for flow-based addressing in a mobile environment
US9641434B1 (en) * 2014-12-17 2017-05-02 Amazon Technologies, Inc. Private network address obfuscation and verification
CN105791448B (zh) * 2014-12-18 2019-10-25 华为技术有限公司 一种地址分配方法、cgn设备及cgn双主系统
US11038834B2 (en) * 2018-01-31 2021-06-15 Hewlett Packard Enterprise Development Lp Selecting an external link of a plurality of external links
CN109194547B (zh) * 2018-09-29 2020-06-16 新华三技术有限公司 报文传输方法、装置、本端设备及可读存储介质
CN110391984B (zh) * 2019-07-26 2022-01-25 新华三大数据技术有限公司 一种报文转发方法及装置

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102215158A (zh) * 2010-04-08 2011-10-12 杭州华三通信技术有限公司 实现vrrp流量传输的方法和路由设备
US20140010084A1 (en) * 2012-07-09 2014-01-09 Arun Kavunder System and method associated with a service flow router
CN105991460A (zh) * 2015-03-02 2016-10-05 杭州迪普科技有限公司 流量负载转发方法、主控板、业务板及网络设备
CN106878184A (zh) * 2017-02-28 2017-06-20 新华三技术有限公司 一种数据报文传输方法和装置
CN109413227A (zh) * 2018-12-04 2019-03-01 睿哲科技股份有限公司 基于多IPv6网络的IPv4用户访问IPv6网络互通装置和设备
CN110012125A (zh) * 2019-04-01 2019-07-12 优刻得科技股份有限公司 集群网络通信方法、装置、存储介质和设备

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP4170989A4 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115334171A (zh) * 2022-06-24 2022-11-11 华能国际电力江苏能源开发有限公司 一种将不同网段ip地址兼容互通成单一数据链的方法

Also Published As

Publication number Publication date
EP4170989A1 (en) 2023-04-26
CN113840016A (zh) 2021-12-24
EP4170989A4 (en) 2023-10-18

Similar Documents

Publication Publication Date Title
EP3122004B1 (en) Traffic switching method, device, and system
US10313241B2 (en) Systems and methods for routing internet packets between enterprise network sites
CN107968750B (zh) 报文传输方法、装置及节点
US10225189B2 (en) Egress peer engineering using IPv4-mapped IPv6 addresses
US20220045944A1 (en) Method for Forwarding Service Data, Network Device, and Network System
US10567345B2 (en) Verifying firewall filter entries using rules associated with an access control list (ACL) template
WO2020052410A1 (zh) 一种通信方法、设备和系统
US11477114B2 (en) Packet forwarding method and apparatus
US20230291682A1 (en) Method and device for processing data packet, storage medium, and electronic device
WO2023125239A1 (zh) 一种泛洪攻击防御方法及相关装置
US11895021B2 (en) Message sending and receiving method, apparatus, and system
CN106059917B (zh) 一种路由信息处理方法和装置
WO2017219732A1 (zh) 组播报文的转发方法及装置、路由器、计算机存储介质
CN112134776A (zh) 生成组播转发表项的方法和接入网关
EP3166263B1 (en) Routing calculation method and device for trill isis
CN106911549B (zh) 一种数据报文处理方法及装置
US10476774B2 (en) Selective transmission of bidirectional forwarding detection (BFD) messages for verifying multicast connectivity
WO2021259111A1 (zh) 报文处理方法、装置和计算机可读存储介质
WO2020244304A1 (zh) 路由信息发送的方法、路由选路的方法和装置
WO2022068484A1 (zh) 一种业务链地址池切片处理方法、装置及系统
EP3972206A1 (en) Method, network device and system for processing bier packet
Cisco XNS Commands
US11956149B2 (en) Peer relationship management method and apparatus, device, and storage medium
US20240205048A1 (en) Service discovery across tunnel endpoints in overlays
CN115766414A (zh) 基于mlag双归接入evpn的流量转发方法及装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21829502

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2021829502

Country of ref document: EP

Effective date: 20230117

NENP Non-entry into the national phase

Ref country code: DE