WO2024001553A1 - Routing publishing method, electronic device and computer-readable storage medium - Google Patents

Routing publishing method, electronic device and computer-readable storage medium Download PDF

Info

Publication number
WO2024001553A1
WO2024001553A1 PCT/CN2023/093828 CN2023093828W WO2024001553A1 WO 2024001553 A1 WO2024001553 A1 WO 2024001553A1 CN 2023093828 W CN2023093828 W CN 2023093828W WO 2024001553 A1 WO2024001553 A1 WO 2024001553A1
Authority
WO
WIPO (PCT)
Prior art keywords
route
label
layer
evpn
l3vpn
Prior art date
Application number
PCT/CN2023/093828
Other languages
French (fr)
Chinese (zh)
Inventor
荣欣
舒晔
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2024001553A1 publication Critical patent/WO2024001553A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/50Routing or path finding of packets in data switching networks using label swapping, e.g. multi-protocol label switch [MPLS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing
    • H04W40/04Communication route or path selection, e.g. power-based or shortest path routing based on wireless node resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing
    • H04W40/12Communication route or path selection, e.g. power-based or shortest path routing based on transmission quality or channel quality
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/34Modification of an existing route
    • H04W40/36Modification of an existing route due to handover

Definitions

  • the present disclosure relates to the field of communications, and in particular, to a route publishing method, electronic device and computer-readable storage medium.
  • IP-based wireless access networks IP Radio Access Network, IPRAN
  • IPRAN IP Radio Access Network
  • L2VPN Layer 2 Virtual Private Network
  • L3VPN Layer 3 Virtual Private Network
  • the Layer 2 and Layer 3 bridging technology is used to forward L2VPN messages and L3VPN messages on the intermediate aggregation provider edge (PE) device.
  • PE intermediate aggregation provider edge
  • Layer 2 and Layer 3 bridging The principle of Layer 2 and Layer 3 bridging is to configure a Layer 2 and Layer 3 bridge interface on the bridge device. This type of interface can be used on both Layer 2 and Layer 3.
  • VPN Virtual Private Network
  • EVPN Ethernet Virtual Private Network
  • the types of bridging technologies include traditional L2VPN and L3VPN bridging.
  • L2EVPN Layer 2 Ethernet Virtual Private Network
  • L3EVPN Layer 3 Ethernet Virtual Private Network
  • Layer 3 linkage which switches services to backup paths in a timely manner to reduce service damage, is an important link that needs to be considered in the 2nd and 3rd bridging scenarios.
  • PE1, PE2, and PE3 deploy L2EVPN
  • PE2, PE3, and PE4 deploy L3EVPN to achieve traffic interworking between CE1 and CE2 as customer edge devices (Customer Edge, CE).
  • IRB Integrated Routing and Bridging
  • the IRB interfaces configured on bridge points PE2 and PE3 will each generate a MAC/IP advertised route (RT-2), which will be published to PE1 through EVPN. After PE1 receives it, it will write it to the local Virtual Private LAN Service. , VPLS), the next hop is PE2, and a private network label L2 is assigned.
  • RT-2 MAC/IP advertised route
  • PE1 After packet is forwarded to PE1, the MAC table is checked for routing and forwarding based on the destination MAC of the packet (the MAC address of the IRB interface). The next hop is the PE2 device.
  • the packet finds the IRB interface according to the destination MAC, searches for the destination address route under the virtual routing forwarding (VRF) where the IRB interface is located, and performs Layer 3 forwarding.
  • VRF virtual routing forwarding
  • the traffic sent from CE1 to CE2 is called uplink traffic, and the traffic sent from CE2 to CE1 is called downlink traffic.
  • redundant backup protection is generally used.
  • the IRB interfaces on PE2 and PE3 serve as dual gateways and are configured with the same IP address and the same MAC.
  • the IRB interface and the interface int1 on the CE1 device are in the same network segment.
  • PE3 is the backup device of PE2.
  • the present disclosure provides a route publishing method, executed by a first provider edge PE device, including: receiving a first routing message from a second PE device; the first routing message is used to advertise MAC/IP advertisements Routing, the first routing message includes a first label field and a second label field, the first label field includes a first label, and the second label field is blank; filling the second label field with a second label, To generate a second routing message, the first label is used to represent Layer 2 service traffic forwarding, and the second label is used to means forwarding Layer 3 service traffic; sending the second routing message to the third PE device.
  • the present disclosure provides an electronic device.
  • the electronic device includes: one or more processors; a memory on which one or more computer programs are stored. When the one or more computer programs are The one or more processors execute, so that the one or more processors implement the route publishing method according to the first aspect; one or more I/O interfaces are connected between the processor and the memory, Configured to implement information interaction between the processor and the memory.
  • the present disclosure provides a computer-readable storage medium.
  • a computer program is stored on the computer-readable storage medium.
  • the route publishing method according to the first aspect is implemented. .
  • Figure 1 is a flow chart of a route publishing method provided by an embodiment of the present disclosure.
  • Figure 2 is a flow chart of some steps in a route publishing method provided by an embodiment of the present disclosure.
  • Figure 3 is a schematic diagram of a typical EVPN layer 2 and layer 3 bridge topology.
  • Figure 4 is a topology diagram of fault scenarios in a traditional VPN Layer 2 and Layer 3 bridge network.
  • Figure 5 is a topology diagram of fault scenarios in the traditional EVPN Layer 2 and Layer 3 bridge network.
  • Figure 6 is a schematic diagram of the message format of EVPN MAC/IP advertised route (RT-2).
  • Figure 7 is a schematic diagram of a fault scenario in Embodiment 1 of the present disclosure.
  • Figure 8 is a schematic diagram of a fault scenario in Embodiment 2 of the present disclosure.
  • Figure 9 is a schematic diagram of a fault scenario in Embodiment 3 of the present disclosure.
  • FIG. 10 is a schematic diagram of an electronic device provided by an embodiment of the present disclosure.
  • FIG. 11 is a schematic diagram of a computer-readable storage medium provided by an embodiment of the present disclosure.
  • module and “component” used to represent elements are used.
  • unit or “unit” is only used to facilitate the description of the present disclosure and has no special meaning in itself. Therefore, “module”, “component” or “unit” may be used interchangeably.
  • the Layer 3 bridge interface is associated with the status of L2VPN Bidirectional Forwarding Detection (BFD) or public network tunnel BFD to perform linkage from Layer 2 to Layer 3.
  • BFD Bidirectional Forwarding Detection
  • the link between the bridge point PE2 and the access PE1 fails.
  • L2VPN deploys virtual link (Pseudo Wire, PW) BFD or public network BFD, L2VPN VPLS PW
  • PW virtual link
  • L2VPN VPLS PW There is a problem with BFD or the BFD status of the public network tunnel (down), which triggers the shutdown of the Layer 3 bridge interface (down).
  • the network segment route of the bridge interface is published and revoked through L3VPN.
  • L3VPN on PE4 performs route switching, and the next hop is switched to PE3. This directs downlink traffic to PE3 to achieve layer 2 and layer 3 linkage.
  • EVPN does not have a separate BFD detection mechanism, and public network tunnel BFD uses more automatic creation technology, and no specific BFD session is tracked. .
  • layer 2 and layer 3 linkage cannot be realized well, and traffic will be interrupted or detoured.
  • EVPN IRB can automatically generate host routes to achieve linkage.
  • the EVPN gateway only has the host routes of the gateway itself and cannot generate host routes for connecting to the CE. Therefore, it is impossible to achieve integration with the CE. Intelligent linkage of host routing. If manual BFD binding is used, it will not be easy to change dynamically with business changes, and it will increase the configuration complexity of the device and consume a large amount of BFD resources on the device. At the same time, a large number of BFD detection packets will also increase the pressure on the network.
  • the inventor found a solution to solve the problem of layer 2 and layer bridging linkage through host routing linkage.
  • This disclosure carries both the first label field and the second label field for the RT-2 route on the bridge point PE, triggering the three-layer PE to generate a 32-bit host route, so that the three-layer PE forwards according to the 32-bit host route.
  • the linked Layer 3 PE deletes the 32-bit host route corresponding to the main path and switches to the backup path, thereby realizing Layer 2 and Layer 3 bridge linkage. .
  • the present disclosure provides a route publishing method, which is executed by the first provider edge PE device.
  • the route publishing method includes the following steps S100 to S300.
  • step S100 a first routing message from the second PE device is received; the first routing message is used to advertise a MAC/IP Advertisement Route (RT-2), and the first routing message includes a A label field and a second label field, the first label field includes a first label, and the second label field is blank.
  • RT-2 MAC/IP Advertisement Route
  • step S200 fill the second label field with a second label to generate a second routing message.
  • the first label is used to represent Layer 2 business traffic forwarding
  • the second label is used to represent Layer 3 business traffic. Forward.
  • step S300 the second routing message is sent to the third PE device.
  • the IRB interface of CE1 and the bridge PE are in the same network segment.
  • the bridge PE will generate an EVPN IP prefix route from the IRB interface network segment (such as a 24-bit network segment address) and send it to Layer 3 PE4, but the 32-bit host address of the CE1 interface will not be generated on the bridge PE, so the 32-bit host route of the CE1 interface cannot be advertised to PE4.
  • Address Resolution Protocol (ARP) proxy is configured on PE1 on the access side.
  • ARP Address Resolution Protocol
  • CE1 issues an ARP request
  • access PE1 will generate EVPN RT-2 MAC and EVPN RT- 2 single-label routes and published to EVPN.
  • the bridging PE (PE2 and PE3) devices receive the EVPN RT-2 route.
  • the IP address of the route and the IRB interface are in the same network segment, forming an ARP entry to CE1, and the outgoing interface is the IRB.
  • the message format of the EVPN RT-2 route is shown in Figure 6. According to the L3VPN instance to which the IRB belongs, the EVPN RT-2 route is imported into the routing table of each L3VPN instance.
  • the L3VPN instance allocates a Layer 3 label to the route and adds the The label is filled in the second label field label2 of Multi-Protocol Label Switching (MPLS) in the routing packet.
  • MPLS Multi-Protocol Label Switching
  • PE4 receives the RT-2 route, it compares the export RT with the local inbound routing target (import RT). ) cross-matching, import the route into the local L3VPN instance, and generate a 32-bit host route corresponding to CE1 based on the host IP address of CE1 carried in the RT-2 route.
  • 32-bit host routing is better than 24-bit network segment routing.
  • the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT sent by CE1 to PE4 through PE1 and PE3 The -2 routing entry is still there, so the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, thereby realizing traffic switching.
  • EVPN RT-2 routes are converted from single labels to dual labels, and are published to EVPN, triggering the generation of 32-bit host routes on the PEs that receive the routes.
  • step S200 can be specifically decomposed into the following steps S210 and S220.
  • step S210 determine the L3VPN private network label corresponding to the first routing message based on the first routing message.
  • step S220 the L3VPN private network label is filled into the second label field of the first routing message to generate a second routing message.
  • the first routing message will carry export RT, and the corresponding L3VPN instance can be determined based on the local import RT of the first PE.
  • the first routing message will carry the IP address of the CE1 interface, which can determine the network segment corresponding to the IRB interface on the first PE. Therefore, the private network label assigned by the L3VPN instance to this network segment can be determined.
  • the first PE forwards the RT-2 route to the third PE, it fills the determined private network label value into the second label field of the RT-2 route, and then sends it to the third PE.
  • the L3VPN instance corresponding to RT-2 is set to per instance per label, that is, each L3VPN instance shares the same private network label, and all routes in an L3VPN instance use the same label.
  • the difference from per-route per label is that you do not need to first determine the network segment and L3VPN instance, and then confirm the private network label of the network segment route. You only need to determine the L3VPN instance to know the private network label of the L3VPN instance.
  • the private network label of the L3VPN instance can also be set statically.
  • the second route After filling in the label value in the second label field, the second route will be sent to the three-layer PE.
  • the three-layer PE will determine whether the received RT-2 route is a double label. If it is a double label, it will use the IP in the RT-2 route. Address generation for 32-bit host routes. At this time the second label field acts as the host The role of the route generation identifier. Therefore, the L3VPN private network label value corresponding to the IRB interface network segment needs to be filled in the second label field.
  • step S210 can be specifically decomposed into the following steps S211 to S213.
  • step S211 the corresponding L3VPN interface is determined according to the first routing message.
  • step S212 the L3VPN instance corresponding to the L3VPN interface is determined.
  • step S213 the private network label assigned by the L3VPN instance to the network segment address of the L3VPN interface is used as the L3VPN private network label corresponding to the first routing message.
  • the first routing message carries the identifier of the virtual LAN VLAN, and step S210 can be specifically decomposed into the following steps S214 to S216.
  • step S214 the corresponding L3VPN sub-interface is determined according to the identifier of the VLAN.
  • step S215 the L3VPN instance corresponding to the L3VPN sub-interface is determined.
  • step S216 the private network label assigned by the L3VPN instance to the network segment address of the L3VPN sub-interface is used as the L3VPN private network label corresponding to the first routing message.
  • the VPLS EVPN scenario is divided into two modes: qualified and unqualified.
  • the learning of ordinary Ethernet source MAC addresses is unqualified mode; if in addition to learning the source MAC, it is also necessary to learn VLAN tags (service delimiter P-tag), it is qualified mode.
  • this disclosure proposes a method for converting EVPN RT-2 routes from single label to dual label.
  • Different settings are required for RT-2 routes generated by different access circuit (Attachment Circuit, AC) entrances.
  • AC Access Circuit
  • For the L2 export RT value configure the IRB sub-interface on the bridge device, bind it to different private network VRFs, find the corresponding IRB sub-interface by matching L2 export RT and L3 import RT, and add the corresponding IRB
  • the L3VPN private network label to which the sub-interface belongs is filled in the label2 field of the EVPN RT-2 routing packet. This achieves the purpose of converting single label to dual label.
  • this disclosure proposes a method of converting EVPN RT-2 routing from single label to dual label.
  • Multiple CE devices are connected to PE1 through different VLAN sub-interfaces, and access to PE1 generates EVPN RT-2 single-label routes carry different VLAN IDs and are published to the bridge device.
  • the VLAN ID value is carried in the packet to find the route. Go to the IRB sub-interface corresponding to its VLAN ID, import the route into the L3VPN instance corresponding to the IRB sub-interface, and fill in the L3VPN private network label assigned by the VRF into the label2 field in the EVPN RT-2 routing packet, through EVPN is advertised to remote PE4 and generates a 32-bit host route.
  • step S400 Also includes step S400.
  • step S400 when the first route parsed according to the first routing message satisfies the inactivity condition, the second routing message is withdrawn from the third PE.
  • the second route message that has been sent needs to be revoked.
  • the third PE After receiving the revocation of the second route message, the third PE will also delete the 32-bit host route generated based on the second route synchronously. Therefore, when the main path fails, the RT-2 route of the main path is revoked, and the 32-bit host route of the main path generated based on this RT-2 route is deleted. Then, the backup path generated based on the RT-2 route of the backup path is deleted.
  • the 32-bit host route is selected as the optimal route. Therefore, business traffic will be forwarded according to the newly selected optimal route.
  • the inactivity condition includes at least one of the following conditions: the next hop of the first route is unreachable, the first route cannot iterate to a tunnel, and a withdrawal message of the first route is received.
  • the first route When the above common reasons for the inactivity of the first route occur, the first route will become inactive, which will in turn cause the second route message to be withdrawn from the third PE.
  • the first PE is a bridging PE device in an EVPN Layer 2 and Layer 3 bridging scenario.
  • the second PE is a Layer 2 PE in an EVPN Layer 2 and Layer 3 bridging scenario
  • the third PE is a Layer 3 PE in an EVPN Layer 2 and Layer 3 bridging scenario.
  • This disclosed embodiment is a basic EVPN Layer 2 and Layer 3 bridging scenario.
  • EVPN RT-2 routes are converted from single labels to dual labels, published to the EVPN network and host routes are generated to achieve intelligent linkage in EVPN Layer 2 and Layer 3 bridging scenarios.
  • ARP proxy on PE1 on the access side.
  • CE1 issues ARP
  • access to PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single-label routes and publish them to the EVPN network.
  • the bridging PE (PE2 and PE3) devices receive the EVPN RT-2 route.
  • the IP address of the route and the IRB interface are in the same network segment, forming an ARP entry to CE1, and the outgoing interface is the IRB.
  • the EVPN RT-2 route is imported into the corresponding VRF table.
  • the VRF assigns a three-layer label to the route and fills the label into the label2 field in the routing message (EVPN RT-2 report
  • EVPN RT-2 report The file format is shown in Figure 6), then add the export RT of the local VRF, and publish the route through EVPN.
  • PE4 receives the RT-2 route, it matches the export RT of the route with the import RT of the local VRF.
  • the route is imported into the local VRF and a 32-bit host route corresponding to CE1 is generated.
  • 32-bit host routing is better than 24-bit network segment routing.
  • the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 2 The routing entry is still there, so the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, thereby realizing traffic switching.
  • the specific process includes the following steps 101 to 109.
  • step 101 configure the VPLS EVPN instance on PE1, PE2, and PE3.
  • the link int1 between CE1 and PE1 serves as the AC and connects to the VPLS EVPN instance VPLS 1.
  • PE1, PE2, and PE3 establish neighbors through Border Gateway Protocol (BGP) EVPN to deliver RT-2 routes.
  • Border Gateway Protocol BGP
  • L3EVPN network between PE2, PE3 and PE4. Neighbors are established through BGP EVPN to deliver RT-2 routes.
  • CE1 int1 is configured with an IP address (such as 10.0.0.1).
  • Bridge interface irb1 and CE1 int1 are in the same network segment (such as 10.1.1.2), and PE2 and PE3 are configured with dual gateways with the same address and MAC (10.20.30.40.50.60).
  • the irb1 interface is bound to the VPLS EVPN instance VPLS1 as a Layer 2 interface and as a Layer 3 interface.
  • the irb1 interface is referenced in the L3VPN instance vrf1 to realize the interconnection between L2EVPN and L3EVPN.
  • step 103 configure ARP proxy on access PE1.
  • access PE1 When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) routes destined for the CE1 int1 interface, and Publish to the EVPN network.
  • the bridge PE (PE2 and PE3) equipment receives the EVPN RT-2 route, and the IP address of the route is in the same network as irb1. segment, forming an ARP entry to CE1 int1, the outgoing interface is irb1.
  • the VRF (vrf1) to which irb1 belongs the EVPN RT-2 route is imported into the routing table of vrf1.
  • vrf1 assigns a three-layer label (labelB) to the route and fills the label into the label2 field (EVPN RT) in the routing message.
  • labelB label2 field
  • -2 route message format add the export RT of local vrf1, and publish the route through EVPN.
  • PE4 receives the route, it imports the route into the local VRF according to the export RT and generates the corresponding 32-bit host route for CE1 int1 interface address.
  • step 104 in order for IP1 (20.0.0.1), an address on CE1, to communicate with IP2 (30.0.0.1) on CE2, they need to connect routes to IP1 and IP2 addresses.
  • IP1 (20.0.0.1)
  • IP2 (30.0.0.1) on CE2
  • step 105 open the route from CE1 to CE2 IP2, configure a private network static route to CE2 IP2 on PE4, the next hop is the int6 address of CE2, and publish the private network static route to the bridge device PE2 through BGP EVPN.
  • the next hop of the route to IP2 is PE4.
  • the route from CE1 to CE2 IP2 is opened.
  • step 106 open the route from CE2 to CE1 IP1, configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4.
  • the next hop is the int1 interface address of CE1.
  • the private network static route is published to PE4 through L3EVPN.
  • the next hops of the route from PE4 to IP1 are PE2 and PE3.
  • the route from CE2 to CE1 IP1 is opened.
  • the PE1 device is configured with the ARP proxy function.
  • PE2 and PE3 obtain the EVPN RT-2 route to CE1 int1, which carries a layer of labels (label 100, and fill in 100 in label 1 of the message). This label is the private network label of L2EVPN.
  • vrf1 assigns a layer 3 label (label 200) to the route, and fills label 200 into the label2 field in the routing packet (
  • label 200 The EVPN RT-2 route message format is shown in Figure 6)
  • PE4 After PE4 receives the route, it discovers export RT (11.0.0.1:1) matches import RT(11.0.0.1:1) in local vrf1. Import the route into local vrf1 and generate a 32-bit host route corresponding to CE1 int1 (10.0.0.1).
  • CE2 sends the service flow to CE1, and the PE4 device searches for routes when forwarding the traffic.
  • the 32-bit host route to CE1 int1 (10.0.0.1) is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2.
  • step 109 when the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 is revoked.
  • the EVPN RT-2 routing entry of PE4 is still there. Therefore, on the PE4 device, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the traffic is switched to the PE3-PE1-CE1 path for forwarding.
  • This disclosed embodiment is an unqualified bridging scenario for L2EVPN VPLS.
  • L2 export RT and L3 import RT the L3 private network label is inserted into the label2 field of the EVPN RT-2 route, thereby converting the route from single label to dual label.
  • multiple CEs on the access side are connected to PE1.
  • multiple CEs are connected through different private network L3VPN instances.
  • CE3 and remote CE4 communicate through the Layer 3 network vrf2, and ARP proxy is configured on access PE1.
  • ARP proxy is configured on access PE1.
  • CE1 issues an ARP request
  • access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single-label route MAC1.
  • CE3 When issuing an ARP request, access PE1 generates EVPN RT-2 MAC and EVPN RT-2 single-label routing MAC2, and publishes MAC1 and MAC2 to the EVPN network.
  • PE1 sets different L2 export RT values according to different AC access MACs
  • MAC1 sets export RT1
  • MAC2 sets export RT2.
  • PE4 After PE4 receives the route, it imports the route into the local VRF according to the export RT and generates a 32-bit host route corresponding to the CE.
  • a 32-bit host route to CE1 int1 is formed in vrf1 on PE4, and a 32-bit host route to CE2 int11 is formed in vrf2.
  • 32-bit host routing is better than 24-bit network segment routing.
  • the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE2 are revoked, and the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE3 The EVPN RT-2 routing entry is still there. Therefore, the next hop of the 32-bit host route to the CE1int1 address is switched to PE3, and the next hop of the 32-bit host route to the CE3 int11 address is switched to PE3, thereby realizing traffic switching.
  • the specific process includes the following steps 201 to 209.
  • step 201 configure VPLS EVPN instances on PE1, PE2, and PE3.
  • the link int1 between CE1 and PE1 serves as the AC to access the VPLS EVPN instance VPLS1.
  • the link int11 between CE3 and PE1 serves as the AC. Enter the VPLS EVPN instance VPLS1.
  • Under the VPLS EVPN instance configure different MAC addresses of the AC port through policies, and set different export RTs.
  • Int1 corresponds to export RT1
  • int11 corresponds to export RT2.
  • BGP EVPN neighbors are established between PE1, PE2, and PE3 to transmit RT-2 routes.
  • the L3EVPN network is between PE2, PE3 and PE4, and BGP EVPN neighbors are established to transmit RT-2 routes.
  • CE1 int1 is configured with an IP address (10.0.0.1)
  • CE3 int11 is configured with an IP address (30.0.0.1).
  • the bridge devices PE2 and PE3 create L3VPN instances vrf1 and vrf2, and configure the bridge interface IRB1 and its sub-interfaces irb1.1 and irb1.2.
  • the sub-interfaces irb1.1 and irb1.2 are bound to vrf1 and vrf2 respectively.
  • IRB is a Layer 2 interface bound to VPLS EVPN instance VPLS1.
  • the sub-interface of the IRB interface is used as a Layer 3 interface.
  • the irb1.1 sub-interface is referenced in L3VPN instance vrf1
  • the irb1.2 sub-interface is referenced in L3VPN instance vrf2.
  • step 203 configure ARP proxy on access PE1.
  • CE1 issues ARP
  • accessing PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) route MAC1 destined for the CE1 int1 interface, and publish them to the EVPN network.
  • labelA EVPN RT-2 MAC and EVPN RT-2 single label
  • CE3 issues an ARP request
  • the accessed PE1 generates the EVPN RT-2 MAC and EVPN RT-2 single label (labelC) route MAC2 destined for the CE3 int11 interface, and publishes them to the EVPN network.
  • the bridge PE (PE2 and PE3) device receives the EVPN RT-2 routes MAC1 and MAC2.
  • the export RT1 carried by MAC1, it finds the import RT and the corresponding vrf1 in the three-layer L3VPN instance, and adds the EVPN RT- 2 Routes are imported into the routing table of vrf1.
  • vrf1 assigns a three-layer label (labelB) to the route, fills the label into the label2 field in the routing packet (the format of the EVPN RT-2 packet is shown in Figure 6), and then adds Go to the export RT3 of local vrf1 and publish the route through the EVPN network.
  • PE4 After PE4 receives the route, it imports the route into the local vrf1 according to the export RT3 and generates a 32-bit host route corresponding to the CE1 int1 interface address. Similarly, based on the export RT2 carried by MAC2, PE2 and PE3 find the import RT and the corresponding vrf2 in the Layer 3 L3VPN instance, and import the EVPN RT-2 route into the routing table of vrf2, where vrf2 is the route. Assign a Layer 3 label (labelD), fill the label into the label2 field in the routing packet, add the export RT4 of the local vrf2, and publish the route through the EVPN network. After PE4 receives the route, according to the export RT4, Import the route into local vrf2 and generate a 32-bit host route corresponding to the CE3 int11 interface address.
  • labelD Layer 3 label
  • step 204 if an address IP1 (100.0.0.1) on CE1 wants to communicate with the address IP2 (200.0.0.1) on CE2, they need to open routes to IP1 and IP2 addresses.
  • IP3 110.0.0.1 address on CE3
  • IP4 210.0.0.1 address on CE4
  • IP3 and IP4 addresses The following uses static routing as an example.
  • step 205 open the route from CE1 to CE2 IP2, configure a static route on PE4 to the private network vrf1 of CE2 IP2, the next hop is the int6 address of CE2, and publish the private network static route to the bridge device through BGP EVPN On PE2 and PE3.
  • the next hop of the route to IP2 is PE4.
  • the route from CE1 to CE2 IP2 is opened.
  • the next hop is the int16 address of CE4.
  • the private network static route is published to the bridge devices PE2 and PE3 through BGP EVPN.
  • the next hop of the route to IP4 is PE4.
  • Configure a static route on CE3 to CE4 IP4, and the next hop is irb1.2.
  • the route from CE3 to CE4 IP4 is opened.
  • step 206 open the route from CE2 to CE1 IP1, configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4.
  • the next hop is the int1 interface address of CE1.
  • the private network static route is published to PE4 through L3EVPN.
  • the next hops of the route from PE4 to IP1 are PE2 and PE3.
  • the route from CE2 to CE1 IP1 is open.
  • the PE1 device is configured with the ARP proxy function.
  • PE2 and PE3 obtain the EVPN RT-2 route MAC1 to CE1 int1, which carries a layer of labels (label 100, fill in 100 at label 1 of the message).
  • this label is the private network label of L2EVPN; PE2 and PE3 obtain the EVPN RT-2 route MAC2 of CE3 int11, which carries a layer of label (label 110, fill in 110 in the packet label1), this label is the private network label of L2EVPN; Match the export RT and L3 import RT of L2 on PE2 and PE3, import the EVPN RT-2MAC1 route into the routing table of vrf1, vrf1 assigns a three-layer label (label 200) to the route, and fills label 200 into EVPN RT.
  • PE4 After PE4 receives the route, it finds that export RT3 (11.0.0.1:1) matches the import RT3 (11.0.0.1:1) in local vrf1, imports the route into local vrf1, and generates the corresponding CE1 int1 (10.0.0.1) 32-bit host route; and the export RT4 (22.0.0.1:1) matches the import RT4 (22.0.0.1:1) in the local vrf2, import the route into the local vrf2, and generate the corresponding CE3 int11 (30.0.0.1) 32-bit host routing.
  • CE2 sends the service flow to CE1, and the PE4 device searches for routes when forwarding the traffic.
  • the 32-bit host route to CE1 int1 (10.0.0.1) is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2.
  • CE4 sends service flows to CE3, and the PE4 device searches for routes when forwarding traffic.
  • the 32-bit host route to the CE3 int11 (30.0.0.1) address is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2.
  • step 209 when the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 is revoked.
  • the EVPN RT-2 routing entry of PE4 is still there. Therefore, on the PE4 device, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the traffic is switched to the PE3-PE1-CE1 path for forwarding.
  • the EVPN RT-2 routing entries sent by CE3 to PE4 through PE1 and PE2 are revoked, but the EVPN RT-2 routing entries sent by CE3 to PE4 through PE1 and PE3 are still there. Therefore, on the PE4 device, to the int11 address of CE3 The next hop of the 32-bit host route is switched to PE3, and the traffic is switched to the PE3-PE1-CE3 path for forwarding. When a link fails, traffic switching can be achieved without interruption.
  • This disclosed embodiment is a qualified bridging scenario for L2EVPN VPLS.
  • the IRB sub-interface matches the VLAN ID, and the Layer 3 private network label assigned by the VRF where the corresponding IRB sub-interface is located is found.
  • EVPN RT The corresponding label2 field is inserted into the -2 routing packet, thereby converting the route from single label to dual label, publishing it to the EVPN network, and generating host routes on the remote PE to achieve intelligent linkage in EVPN Layer 2 and Layer 3 bridging scenarios.
  • multiple CEs on the access side are connected to PE1 and sub-interfaces are connected, in a qualified scenario.
  • multiple CEs are connected through different private network L3VPN instances.
  • access PE1 When CE1 issues an ARP request, access PE1 will generate EVPN RT -2 MAC and EVPN RT-2 single label routing MAC1, carrying the corresponding sub-interface VLAN ID (vlan id1); when CE3 issues an ARP request, access PE1 generates EVPN RT-2 MAC and EVPN RT-2 single label routing MAC2, Carry the corresponding sub-interface VLAN ID (vlan id2) and publish it to the EVPN network. On the bridge PE (PE2 and PE3) device, configure the sub-interface of the bridge interface IRB for bridging. Bind different sub-interfaces to different VRFs.
  • the VRF to which the interface belongs imports the route into the routing table of the corresponding vrf, generates an L3 private network label, fills the label into the label2 field in the packet, and then adds the export RT of the local VRF to pass the route.
  • the EVPN network publishes the route.
  • PE4 receives the route, it imports the route into the local VRF according to the export RT and generates a 32-bit host route corresponding to the CE.
  • a 32-bit host route to CE1 int1 is formed in vrf1 on PE4, and a 32-bit host route to CE2 int11 is formed in vrf2.
  • 32-bit host routing is better than 24-bit network segment routing.
  • the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE2 are revoked, and the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE3 The EVPN RT-2 routing entry is still there. Therefore, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the next hop of the 32-bit host route to the CE3 int11 address is switched to PE3, thereby realizing traffic switching. .
  • the specific process includes the following steps 301 to 309.
  • step 301 configure VPLS EVPN qualified instances on PE1, PE2, and PE3.
  • the link int1 between CE1 and PE1 serves as the AC, and accesses the VPLS EVPN instance VPLS1.
  • the link int11 between CE3 and PE1 serves as the AC.
  • Accessing VPLS In EVPN instance VPLS1, PE1 accesses different CEs through sub-interfaces.
  • BGP EVPN neighbors are established between PE1, PE2, and PE3 to transmit RT-2 routes.
  • the L3EVPN network is between PE2, PE3 and PE4, and BGP EVPN neighbors are established to transmit RT-2 routes.
  • CE1 int1 is configured with an IP address (10.0.0.1)
  • CE3 int11 is configured with an IP address (30.0.0.1).
  • the bridge devices PE2 and PE3 create L3VPN instances vrf1 and vrf2, and configure the bridge interface IRB1 and its sub-interfaces irb1.1 and irb1.2.
  • Sub-interfaces irb1.1 and irb1.2 are bound to vrf1 and vrf2 respectively.
  • the IP address configurations of sub-interfaces irb1.1 and irb1.2 are in the same network segment (10.0.0.2, 30.0.0.2) as CE1 int1 and CE3 int11 respectively.
  • PE2 and PE3 are configured with dual gateways, with the same addresses and the same MAC.
  • the IRB is bound to the VPLS EVPN instance VPLS1 as the Layer 2 interface.
  • the sub-interface of the IRB is used as the Layer 3 interface.
  • the irb1.1 interface is referenced in the L3VPN instance vrf1
  • the irb1.2 interface is referenced in the L3VPN instance vrf2 to implement L2EVPN and L3EVPN. interconnections between.
  • step 303 configure ARP proxy on access PE1.
  • access PE1 When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) route MAC1 destined for the CE1 int1 interface.
  • the packet carries the VLAN ID (vlan id1) corresponding to AC sub-interface int1 and publishes it to the EVPN network.
  • CE3 issues an ARP request and accesses PE1 to generate EVPN RT-2 MAC and EVPN RT-2 single label (labelC) route MAC2 destined for CE3 int11 interface, and the message carries the VLAN ID (vlan id2) corresponding to AC sub-interface int11 ) and publish it to the EVPN network.
  • the bridge PE (PE2 and PE3) device receives the EVPN RT-2 routes MAC1 and MAC2. According to the vlan id1 carried by MAC1, it finds the IRB sub-interface (irb1.1) consistent with vlan id1, and imports this EVPN RT-2 route into vrf1.
  • vrf1 assigns a three-layer label (labelB) to the route MAC1, fills the label into the label2 field in the routing message, and then adds the export RT3 of the local vrf1, publishes the route through the EVPN network, and PE4 receives After arriving at the route, import the route into the local vrf1 according to export RT3, and generate a 32-bit host route corresponding to the CE1 int1 interface address.
  • labelB three-layer label
  • PE2 and PE3 find the IRB sub-interface (irb1.2) consistent with vlan id2 based on the vlan id2 carried by MAC2, and import the EVPN RT-2 route into the routing table of vrf2.
  • vrf2 allocates a three-layer label to the route MAC2. (labelD), and fill in the label2 field in the routing message, then add the export RT4 of the local vrf2, and publish the route through the EVPN network.
  • PE4 receives the route, it imports the route according to the export RT4 In local vrf2, and generate a 32-bit host route corresponding to the CE3 int11 interface address.
  • steps 304 to 309 are the same as steps 204 to 209 and will not be described again.
  • an embodiment of the present disclosure provides an electronic device, as shown in Figure 10,
  • the electronic device includes: one or more processors 501; a memory 502, on which one or more computer programs are stored.
  • the one or more processors When the one or more computer programs are executed by one or more processors, the one or more processors Implement the route publishing method according to any one of the above first aspects; and, one or more I/O interfaces 503 are connected between the processor and the memory, and are configured to implement information interaction between the processor and the memory.
  • the processor 501 is a device with data processing capabilities, including but not limited to a central processing unit (CPU), etc.; the memory 502 is a device with data storage capabilities, including but not limited to random access memory (RAM, more specifically such as SDRAM). , DDR, etc.), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory (FLASH); the I/O interface (read-write interface) 503 is connected between the processor 501 and the memory 502, and can Implement information interaction between the processor 501 and the memory 502, which includes but is not limited to a data bus (Bus), etc.
  • RAM random access memory
  • ROM read-only memory
  • EEPROM electrically erasable programmable read-only memory
  • FLASH flash memory
  • the I/O interface (read-write interface) 503 is connected between the processor 501 and the memory 502, and can Implement information interaction between the processor 501 and the memory 502, which includes but is not limited to a data bus (Bus), etc.
  • processor 501, memory 502, and I/O interface 503 are connected to each other and, in turn, to other components of the computing device via bus 504.
  • embodiments of the present disclosure provide a computer-readable storage medium. As shown in Figure 11, a computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, any one of the above-mentioned aspects of the first aspect is implemented. Route publishing method.
  • the route publishing method proposed in this disclosure uses MAC/IP Advertisement Route (RT-2) simultaneously in a centralized EVPN Layer 2 and Layer 3 bridging scenario when no specific BFD session can be traced.
  • Carrying the first label field and the second label field triggers the three-layer PE to generate a 32-bit host route, realizing the linkage between RT-2 routing and host routing.
  • the Layer 3 PE is linked to delete the 32-bit host route corresponding to the main path to achieve switching to the backup path. Since there is no need to bind BFD detection to service routes, the present disclosure not only reduces the configuration complexity on the device, but also saves the BFD resources of the device and relieves network pressure.
  • a partitioning does not necessarily correspond to a partitioning of physical components; for example, one physical component may have multiple functions, or one function or step may be performed cooperatively by several physical components.
  • Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, a digital signal processor, or a microprocessor, or as hardware, or as an integrated circuit, such as an application specific integrated circuit. circuit.
  • a processor such as a central processing unit, a digital signal processor, or a microprocessor
  • Such software may be distributed on computer-readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media).
  • computer storage media includes volatile and nonvolatile media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. removable, removable and non-removable media.
  • Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, Digital Versatile Disk (DVD) or other optical disk storage, magnetic cassettes, tapes, disk storage or other magnetic storage devices, or may Any other medium used to store the desired information and that can be accessed by a computer.
  • communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism, and may include any information delivery media .

Abstract

The present disclosure provides a routing publishing method, an electronic device and a computer-readable storage medium. The routing publishing method is executed by a first provider edge (PE) device, and comprises: receiving a first routing message from a second PE device, wherein the first routing message is used for advertising a MAC/IP advertisement route, the first routing message comprises a first label field and a second label field, the first label field comprises a first label, and the second label field is vacant; filling the second label field with a second label so as to generate a second routing message, wherein the first label is used for indicating layer 2 service traffic forwarding, and the second label is used for indicating layer 3 service traffic forwarding; and sending the second routing message to a third PE device.

Description

路由发布方法、电子设备和计算机可读存储介质Route publishing method, electronic device and computer-readable storage medium
相关申请的交叉引用Cross-references to related applications
本申请要求于2022年6月30日提交的中国专利申请NO.202210760692.4的优先权,该中国专利申请的内容通过引用的方式整体合并于此。This application claims priority from Chinese patent application No. 202210760692.4 submitted on June 30, 2022. The content of this Chinese patent application is incorporated herein by reference in its entirety.
技术领域Technical field
本公开涉及通信领域,尤其涉及一种路由发布方法、电子设备和计算机可读存储介质。The present disclosure relates to the field of communications, and in particular, to a route publishing method, electronic device and computer-readable storage medium.
背景技术Background technique
在IP化的无线接入网络(IP Radio Access Network,IPRAN)中,为了减少接入侧设备的路由压力,接入环一般采用二层虚拟专用网络(Layer 2 Virtual Private Network,L2VPN)部署,汇聚核心环采用三层虚拟专用网络(Layer 3 Virtual Private Network,L3VPN)部署。为实现端到端业务互通,在中间的汇聚提供商边缘(Provider Edge,PE)设备上,采用二三层桥接技术实现L2VPN报文与L3VPN报文的转发。In IP-based wireless access networks (IP Radio Access Network, IPRAN), in order to reduce the routing pressure on access-side devices, the access ring is generally deployed using Layer 2 Virtual Private Network (L2VPN), aggregation The core ring is deployed using Layer 3 Virtual Private Network (L3VPN). In order to achieve end-to-end service interoperability, the Layer 2 and Layer 3 bridging technology is used to forward L2VPN messages and L3VPN messages on the intermediate aggregation provider edge (PE) device.
二三层桥接原理是指在桥接设备上配置一个二三层桥接口,这种类型的接口既可以在二层使用也可以在三层使用。随着5G网络的发展,传统虚拟专用网(Virtual Private Network,VPN)桥接逐渐被以太虚拟专用网(Ethernet Virtual Private Network,EVPN)桥接所取代,桥接技术的种类有,传统L2VPN和L3VPN的桥接,还有新型网络的二层以太虚拟专用网(Layer 2 Ethernet Virtual Private Network,L2EVPN)和三层以太虚拟专用网(Layer 3 Ethernet Virtual Private Network,L3EVPN)的桥接。The principle of Layer 2 and Layer 3 bridging is to configure a Layer 2 and Layer 3 bridge interface on the bridge device. This type of interface can be used on both Layer 2 and Layer 3. With the development of 5G networks, traditional Virtual Private Network (VPN) bridging is gradually replaced by Ethernet Virtual Private Network (EVPN) bridging. The types of bridging technologies include traditional L2VPN and L3VPN bridging. There is also the bridging of the new network's Layer 2 Ethernet Virtual Private Network (L2EVPN) and Layer 3 Ethernet Virtual Private Network (L3EVPN).
在VPN二三层桥接网络中,如何在二层网络发生故障时实现二 三层联动,及时将业务切换到备用路径以减少业务受损,是二三桥接场景中需要考虑的重要环节。In a VPN Layer 2 and Layer 3 bridged network, how to implement Layer 2 when the Layer 2 network fails? Layer 3 linkage, which switches services to backup paths in a timely manner to reduce service damage, is an important link that needs to be considered in the 2nd and 3rd bridging scenarios.
例如,在相关技术中,如图3所示,PE1和PE2、PE3部署L2EVPN,PE2、PE3和PE4部署L3EVPN,为实现作为客户边缘设备(Customer Edge,CE)的CE1、CE2之间的流量互通,在二三层桥接设备PE2、PE3上配置集成路由与桥接(Integrated Routing and Bridging,IRB)网关实现二三层桥接转发。For example, in related technologies, as shown in Figure 3, PE1, PE2, and PE3 deploy L2EVPN, and PE2, PE3, and PE4 deploy L3EVPN to achieve traffic interworking between CE1 and CE2 as customer edge devices (Customer Edge, CE). , configure the Integrated Routing and Bridging (IRB) gateway on the Layer 2 and Layer 3 bridging devices PE2 and PE3 to implement Layer 2 and Layer 3 bridge forwarding.
桥接点PE2、PE3上配置的IRB接口,各会产生一条MAC/IP通告路由(RT-2),通过EVPN发布给PE1,PE1收到后,写到本地的虚拟专用局域网服务(Virtual Private LAN Service,VPLS)的MAC表中,下一跳是PE2,并分配一个私网标签L2。CE1发往CE2的报文,报文转发到PE1上后,根据报文的目的MAC(IRB接口的MAC地址)查MAC表进行路由转发,下一跳是PE2设备。报文到达桥接点上根据目的MAC找到IRB接口,在IRB接口所在的虚拟路由转发(Virtual Routing Forwarding,VRF)下查找目的地址路由,进行三层转发。The IRB interfaces configured on bridge points PE2 and PE3 will each generate a MAC/IP advertised route (RT-2), which will be published to PE1 through EVPN. After PE1 receives it, it will write it to the local Virtual Private LAN Service. , VPLS), the next hop is PE2, and a private network label L2 is assigned. For packets sent from CE1 to CE2, after the packet is forwarded to PE1, the MAC table is checked for routing and forwarding based on the destination MAC of the packet (the MAC address of the IRB interface). The next hop is the PE2 device. When the packet reaches the bridge point, it finds the IRB interface according to the destination MAC, searches for the destination address route under the virtual routing forwarding (VRF) where the IRB interface is located, and performs Layer 3 forwarding.
CE1发往CE2的流量称为上行流量,CE2发往CE1的流量称为下行流量。在现网部署中,一般采用冗余备份保护,PE2、PE3上的IRB接口,作为双网关,配置相同的IP地址和相同的MAC,该IRB接口和CE1设备上的接口int1在同网段,当链路或节点发生故障时,能快速切换到备用路径上,保证业务不中断。如图3中的PE3就是PE2的备份设备,当PE2设备故障或主链路(如PE1-PE2-PE4)故障时,能把业务切换至备份路径(如PE1-PE3-PE4),从而保证业务不中断。The traffic sent from CE1 to CE2 is called uplink traffic, and the traffic sent from CE2 to CE1 is called downlink traffic. In live network deployment, redundant backup protection is generally used. The IRB interfaces on PE2 and PE3 serve as dual gateways and are configured with the same IP address and the same MAC. The IRB interface and the interface int1 on the CE1 device are in the same network segment. When a link or node fails, it can quickly switch to the backup path to ensure uninterrupted services. As shown in Figure 3, PE3 is the backup device of PE2. When the PE2 device fails or the main link (such as PE1-PE2-PE4) fails, the service can be switched to the backup path (such as PE1-PE3-PE4) to ensure the business No interruption.
发明内容Contents of the invention
第一方面,本公开提供了一种路由发布方法,由第一提供商边缘PE设备执行,包括:接收到来自第二PE设备的第一路由消息;第一路由消息用于通告MAC/IP通告路由,所述第一路由消息包括第一标签字段和第二标签字段,所述第一标签字段包括第一标签,所述第二标签字段空缺;为所述第二标签字段填充第二标签,以生成第二路由消息,所述第一标签用于表示二层业务流量转发,所述第二标签用 于表示三层业务流量转发;将所述第二路由消息发送给第三PE设备。In a first aspect, the present disclosure provides a route publishing method, executed by a first provider edge PE device, including: receiving a first routing message from a second PE device; the first routing message is used to advertise MAC/IP advertisements Routing, the first routing message includes a first label field and a second label field, the first label field includes a first label, and the second label field is blank; filling the second label field with a second label, To generate a second routing message, the first label is used to represent Layer 2 service traffic forwarding, and the second label is used to means forwarding Layer 3 service traffic; sending the second routing message to the third PE device.
第二方面,本公开提供了一种电子设备,所述电子设备包括:一个或多个处理器;存储器,其上存储有一个或多个计算机程序,当所述一个或多个计算机程序被所述一个或多个处理器执行,使得所述一个或多个处理器实现根据第一方面所述的路由发布方法;一个或多个I/O接口,连接在所述处理器与存储器之间,配置为实现所述处理器与存储器的信息交互。In a second aspect, the present disclosure provides an electronic device. The electronic device includes: one or more processors; a memory on which one or more computer programs are stored. When the one or more computer programs are The one or more processors execute, so that the one or more processors implement the route publishing method according to the first aspect; one or more I/O interfaces are connected between the processor and the memory, Configured to implement information interaction between the processor and the memory.
第三方面,本公开提供了一种计算机可读存储介质,所述计算机可读存储介质上存储有计算机程序,所述计算机程序被处理器执行时,实现根据第一方面所述的路由发布方法。In a third aspect, the present disclosure provides a computer-readable storage medium. A computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, the route publishing method according to the first aspect is implemented. .
附图说明Description of drawings
图1是本公开实施方式提供的一种路由发布方法的流程图。Figure 1 is a flow chart of a route publishing method provided by an embodiment of the present disclosure.
图2是本公开实施方式提供的一种路由发布方法中部分步骤的流程图。Figure 2 is a flow chart of some steps in a route publishing method provided by an embodiment of the present disclosure.
图3是典型的EVPN二三层桥接拓扑示意图。Figure 3 is a schematic diagram of a typical EVPN layer 2 and layer 3 bridge topology.
图4是传统的VPN二三层桥接网络中故障场景拓扑图。Figure 4 is a topology diagram of fault scenarios in a traditional VPN Layer 2 and Layer 3 bridge network.
图5是传统的EVPN二三层桥接网络中故障场景拓扑图。Figure 5 is a topology diagram of fault scenarios in the traditional EVPN Layer 2 and Layer 3 bridge network.
图6是EVPN MAC/IP通告路由(RT-2)的报文格式示意图。Figure 6 is a schematic diagram of the message format of EVPN MAC/IP advertised route (RT-2).
图7是本公开实施例1的故障场景示意图。Figure 7 is a schematic diagram of a fault scenario in Embodiment 1 of the present disclosure.
图8是本公开实施例2的故障场景示意图。Figure 8 is a schematic diagram of a fault scenario in Embodiment 2 of the present disclosure.
图9是本公开实施例3的故障场景示意图。Figure 9 is a schematic diagram of a fault scenario in Embodiment 3 of the present disclosure.
图10是本公开实施方式提供的一种电子设备的示意图。FIG. 10 is a schematic diagram of an electronic device provided by an embodiment of the present disclosure.
图11是本公开实施方式提供的一种计算机可读存储介质的示意图。FIG. 11 is a schematic diagram of a computer-readable storage medium provided by an embodiment of the present disclosure.
具体实施方式Detailed ways
应当理解,此处所描述的具体实施例仅仅用以解释本公开,并不用于限定本公开。It should be understood that the specific embodiments described here are only used to explain the present disclosure and are not used to limit the present disclosure.
在后续的描述中,使用用于表示元件的诸如“模块”、“部件” 或“单元”的后缀仅为了有利于本公开的说明,其本身没有特有的意义。因此,“模块”、“部件”或“单元”可以混合地使用。In the following description, terms such as "module" and "component" used to represent elements are used. The suffix "unit" or "unit" is only used to facilitate the description of the present disclosure and has no special meaning in itself. Therefore, "module", "component" or "unit" may be used interchangeably.
在传统的VPN二三层桥接网络中,通过三层桥接口关联L2VPN双向转发检测(Bidirectional Forwarding Detection,BFD)或公网隧道BFD的状态,进行二层到三层的联动。如图4所示,桥接点PE2往接入PE1之间的链路(int2和int7对应链路)发生故障,L2VPN部署虚链路(Pseudo Wire,PW)BFD或公网BFD,L2VPN VPLS PW的BFD或公网隧道BFD的状态出现问题(down),触发三层桥接口关闭(down),桥接口的网段路由通过L3VPN发布撤销,PE4上的L3VPN进行路由切换,下一跳切换为PE3,从而把下行流量引到PE3上,实现二三层联动。In a traditional VPN Layer 2 and Layer 3 bridge network, the Layer 3 bridge interface is associated with the status of L2VPN Bidirectional Forwarding Detection (BFD) or public network tunnel BFD to perform linkage from Layer 2 to Layer 3. As shown in Figure 4, the link between the bridge point PE2 and the access PE1 (the link corresponding to int2 and int7) fails. L2VPN deploys virtual link (Pseudo Wire, PW) BFD or public network BFD, L2VPN VPLS PW There is a problem with BFD or the BFD status of the public network tunnel (down), which triggers the shutdown of the Layer 3 bridge interface (down). The network segment route of the bridge interface is published and revoked through L3VPN. L3VPN on PE4 performs route switching, and the next hop is switched to PE3. This directs downlink traffic to PE3 to achieve layer 2 and layer 3 linkage.
随着5G网络的发展,传统VPN桥接逐渐被EVPN桥接所取代,目前EVPN没有单独的BFD检测机制,且公网隧道BFD更多的采用自动创建技术,没有具体的BFD会话被追踪(track)关联。当主桥接点和接入设备之间产生故障,不能很好的实现二三层联动,流量会产生中断或绕行。With the development of 5G networks, traditional VPN bridging is gradually replaced by EVPN bridging. Currently, EVPN does not have a separate BFD detection mechanism, and public network tunnel BFD uses more automatic creation technology, and no specific BFD session is tracked. . When a fault occurs between the main bridge point and the access device, layer 2 and layer 3 linkage cannot be realized well, and traffic will be interrupted or detoured.
在这样无法手动track关联的场景下,需要用主机路由来实现智能联动。EVPN分布式网关场景下,EVPN IRB可自动产生主机路由来实现联动,而当网络采用集中式网关部署,EVPN网关上只有网关本身的主机路由,不能产生接入CE的主机路由,因此无法实现与主机路由的智能联动。若是采用手动绑定BFD的方式,不易随着业务变化动态变化,而且为设备上增加了配置复杂度,消耗设备上大量的BFD资源,同时,大量的BFD检测报文还会增加网络的压力。In such a scenario where manual tracking of associations is not possible, host routing is needed to achieve intelligent linkage. In the EVPN distributed gateway scenario, EVPN IRB can automatically generate host routes to achieve linkage. However, when the network adopts centralized gateway deployment, the EVPN gateway only has the host routes of the gateway itself and cannot generate host routes for connecting to the CE. Therefore, it is impossible to achieve integration with the CE. Intelligent linkage of host routing. If manual BFD binding is used, it will not be easy to change dynamically with business changes, and it will increase the configuration complexity of the device and consume a large amount of BFD resources on the device. At the same time, a large number of BFD detection packets will also increase the pressure on the network.
发明人针对集中式网关部署场景的上述问题,找到一种通过主机路由联动解决二三层桥接联动问题的方案。本公开在桥接点PE上为RT-2路由同时携带第一标签字段和第二标签字段,触发三层PE生成32位主机路由,使三层PE按照32位主机路由进行转发,当二层网络中有网元或链路发生故障,而导致与主路径联动的RT-2路由失效时,联动三层PE删除主路径对应的32位主机路由,切换至备用路径,从而实现二三层桥接联动。 In view of the above problems in the centralized gateway deployment scenario, the inventor found a solution to solve the problem of layer 2 and layer bridging linkage through host routing linkage. This disclosure carries both the first label field and the second label field for the RT-2 route on the bridge point PE, triggering the three-layer PE to generate a 32-bit host route, so that the three-layer PE forwards according to the 32-bit host route. When the two-layer network When a network element or link fails and the RT-2 route associated with the main path fails, the linked Layer 3 PE deletes the 32-bit host route corresponding to the main path and switches to the backup path, thereby realizing Layer 2 and Layer 3 bridge linkage. .
有鉴于此,作为本公开的第一方面,本公开提供一种路由发布方法,由第一提供商边缘PE设备执行,如图1所示,所述路由发布方法包括如下步骤S100至S300。In view of this, as a first aspect of the present disclosure, the present disclosure provides a route publishing method, which is executed by the first provider edge PE device. As shown in Figure 1, the route publishing method includes the following steps S100 to S300.
在步骤S100中,接收到来自第二PE设备的第一路由消息;第一路由消息用于通告MAC/IP通告路由(MAC/IP Advertisement Route,RT-2),所述第一路由消息包括第一标签字段和第二标签字段,所述第一标签字段包括第一标签,所述第二标签字段空缺。In step S100, a first routing message from the second PE device is received; the first routing message is used to advertise a MAC/IP Advertisement Route (RT-2), and the first routing message includes a A label field and a second label field, the first label field includes a first label, and the second label field is blank.
在步骤S200中,为所述第二标签字段填充第二标签,以生成第二路由消息,所述第一标签用于表示二层业务流量转发,所述第二标签用于表示三层业务流量转发。In step S200, fill the second label field with a second label to generate a second routing message. The first label is used to represent Layer 2 business traffic forwarding, and the second label is used to represent Layer 3 business traffic. Forward.
在步骤S300中,将所述第二路由消息发送给第三PE设备。In step S300, the second routing message is sent to the third PE device.
如图5所示,在传统的实现方式中,CE1与桥接PE的IRB接口在相同网段,桥接PE会将IRB接口网段(如24位网段地址)生成一条EVPN的IP前缀路由,发送到三层的PE4,但桥接PE上不会生成CE1接口的32位主机地址,也就无法将CE1接口的32位主机路由发布给PE4。As shown in Figure 5, in the traditional implementation method, the IRB interface of CE1 and the bridge PE are in the same network segment. The bridge PE will generate an EVPN IP prefix route from the IRB interface network segment (such as a 24-bit network segment address) and send it to Layer 3 PE4, but the 32-bit host address of the CE1 interface will not be generated on the bridge PE, so the 32-bit host route of the CE1 interface cannot be advertised to PE4.
在本公开的实施方式中,在接入侧的PE1上配置地址解析协议(Address Resolution Protocol,ARP)代答,当CE1发布ARP请求时,接入PE1会产生EVPN RT-2 MAC和EVPN RT-2单标签路由,并发布到EVPN中。桥接PE(PE2和PE3)设备收到EVPN RT-2路由,路由的IP地址和IRB接口在相同网段,形成到CE1的ARP条目,出接口是IRB。EVPN RT-2路由的报文格式如图6所示,根据该IRB归属的L3VPN实例,将EVPN RT-2路由导入各L3VPN实例的路由表,L3VPN实例为该路由分配三层标签,并将该标签填入路由报文中的多协议标签交换(Multi-Protocol Label Switching,MPLS)的第二标签字段label2。在此基础上,再添加上本地VRF的出方向路由目标(export RT),将该路由通过EVPN发布,PE4收到该RT-2路由后,根据export RT与本地的入方向路由目标(import RT)交叉匹配,将该路由导入本地L3VPN实例,并根据RT-2路由中所携带的CE1的主机IP地址,产生对应于CE1的32位主机路由。 In the embodiment of the present disclosure, Address Resolution Protocol (ARP) proxy is configured on PE1 on the access side. When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT- 2 single-label routes and published to EVPN. The bridging PE (PE2 and PE3) devices receive the EVPN RT-2 route. The IP address of the route and the IRB interface are in the same network segment, forming an ARP entry to CE1, and the outgoing interface is the IRB. The message format of the EVPN RT-2 route is shown in Figure 6. According to the L3VPN instance to which the IRB belongs, the EVPN RT-2 route is imported into the routing table of each L3VPN instance. The L3VPN instance allocates a Layer 3 label to the route and adds the The label is filled in the second label field label2 of Multi-Protocol Label Switching (MPLS) in the routing packet. On this basis, add the outbound routing target (export RT) of the local VRF, and publish the route through EVPN. After PE4 receives the RT-2 route, it compares the export RT with the local inbound routing target (import RT). ) cross-matching, import the route into the local L3VPN instance, and generate a 32-bit host route corresponding to CE1 based on the host IP address of CE1 carried in the RT-2 route.
流量转发的时查找路由,32位的主机路由优于24位的网段路由。当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1通过PE1、PE2发送给PE4的EVPN RT-2路由条目被撤销,CE1通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,到CE1 int1地址的32位主机路由下一跳切换为PE3,从而实现流量切换。When searching for routes when forwarding traffic, 32-bit host routing is better than 24-bit network segment routing. When the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT sent by CE1 to PE4 through PE1 and PE3 The -2 routing entry is still there, so the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, thereby realizing traffic switching.
本公开的所提供的技术方案中,在集中式网关部署的场景下,将EVPN RT-2路由从单标签转为双标签,发布到EVPN,触发收到路由的PE上产生32位主机路由,来实现EVPN二三层桥接场景智能联动。In the technical solution provided by this disclosure, in the scenario of centralized gateway deployment, EVPN RT-2 routes are converted from single labels to dual labels, and are published to EVPN, triggering the generation of 32-bit host routes on the PEs that receive the routes. To realize intelligent linkage in EVPN layer 2 and layer bridging scenarios.
在一些实施方式中,如图2所示,步骤S200可以具体分解为下步骤S210和S220。In some implementations, as shown in Figure 2, step S200 can be specifically decomposed into the following steps S210 and S220.
在步骤S210中,根据所述第一路由消息,确定所述第一路由消息对应的三层虚拟专用网L3VPN私网标签。In step S210, determine the L3VPN private network label corresponding to the first routing message based on the first routing message.
在步骤S220中,将所述L3VPN私网标签填充到所述第一路由消息的第二标签字段,生成第二路由消息。In step S220, the L3VPN private network label is filled into the second label field of the first routing message to generate a second routing message.
第一路由消息中会携带export RT,可以根据第一PE本地的import RT确定出对应的L3VPN实例。第一路由消息中会携带CE1接口的IP地址,可以确定第一PE上IRB接口对应的网段。于是,可以确定出L3VPN实例为此网段分配的私网标签。在第一PE向第三PE转发RT-2路由时,将确定的私网标签值填入RT-2路由的第二标签字段,然后发往第三PE。The first routing message will carry export RT, and the corresponding L3VPN instance can be determined based on the local import RT of the first PE. The first routing message will carry the IP address of the CE1 interface, which can determine the network segment corresponding to the IRB interface on the first PE. Therefore, the private network label assigned by the L3VPN instance to this network segment can be determined. When the first PE forwards the RT-2 route to the third PE, it fills the determined private network label value into the second label field of the RT-2 route, and then sends it to the third PE.
在一些实施方式中,RT-2对应的L3VPN实例设置为每实例每标签,即每个L3VPN实例共用同一个私网标签,在一个L3VPN实例中的所有路由使用相同的标签。与每路由每标签的区别在于,不必先确定网段和L3VPN实例,再确认网段路由的私网标签,只需确定L3VPN实例,就能得知该L3VPN实例的私网标签。当然,L3VPN实例的私网标签也可以采用静态指定的方式设置。In some embodiments, the L3VPN instance corresponding to RT-2 is set to per instance per label, that is, each L3VPN instance shares the same private network label, and all routes in an L3VPN instance use the same label. The difference from per-route per label is that you do not need to first determine the network segment and L3VPN instance, and then confirm the private network label of the network segment route. You only need to determine the L3VPN instance to know the private network label of the L3VPN instance. Of course, the private network label of the L3VPN instance can also be set statically.
第二标签字段填入标签值后将第二路由发往三层PE,三层PE会判断收到的RT-2路由是否为双标签,如果是双标签就会根据RT-2路由中的IP地址生成32位主机路由。此时的第二标签字段起到主机 路由生成标识的作用,因此,需要将IRB接口网段对应的L3VPN私网标签值填入第二标签字段。After filling in the label value in the second label field, the second route will be sent to the three-layer PE. The three-layer PE will determine whether the received RT-2 route is a double label. If it is a double label, it will use the IP in the RT-2 route. Address generation for 32-bit host routes. At this time the second label field acts as the host The role of the route generation identifier. Therefore, the L3VPN private network label value corresponding to the IRB interface network segment needs to be filled in the second label field.
在一些实施方式中,步骤S210可以具体分解为下步骤S211至S213。In some implementations, step S210 can be specifically decomposed into the following steps S211 to S213.
在步骤S211中,根据所述第一路由消息确定所对应的L3VPN接口。In step S211, the corresponding L3VPN interface is determined according to the first routing message.
在步骤S212中,确定所述L3VPN接口对应的L3VPN实例。In step S212, the L3VPN instance corresponding to the L3VPN interface is determined.
在步骤S213中,将L3VPN实例为所述L3VPN接口的网段地址分配的私网标签,作为所述第一路由消息对应的L3VPN私网标签。In step S213, the private network label assigned by the L3VPN instance to the network segment address of the L3VPN interface is used as the L3VPN private network label corresponding to the first routing message.
在另一些实施方式中,所述第一路由消息中携带有虚拟局域网VLAN的标识,步骤S210可以具体分解为下步骤S214至S216。In other embodiments, the first routing message carries the identifier of the virtual LAN VLAN, and step S210 can be specifically decomposed into the following steps S214 to S216.
在步骤S214中,根据所述VLAN的标识确定对应的L3VPN子接口。In step S214, the corresponding L3VPN sub-interface is determined according to the identifier of the VLAN.
在步骤S215中,确定所述L3VPN子接口对应的L3VPN实例。In step S215, the L3VPN instance corresponding to the L3VPN sub-interface is determined.
在步骤S216中,将L3VPN实例为所述L3VPN子接口的网段地址分配的私网标签,作为所述第一路由消息对应的L3VPN私网标签。In step S216, the private network label assigned by the L3VPN instance to the network segment address of the L3VPN sub-interface is used as the L3VPN private network label corresponding to the first routing message.
VPLS EVPN场景分为qualified和unqualified两种模式,普通以太源MAC地址的学习为unqualified模式;如果除了学习源MAC,还要学习VLAN标签(服务定界符P-tag),为qualified模式。The VPLS EVPN scenario is divided into two modes: qualified and unqualified. The learning of ordinary Ethernet source MAC addresses is unqualified mode; if in addition to learning the source MAC, it is also necessary to learn VLAN tags (service delimiter P-tag), it is qualified mode.
对于unqualified的VPLS EVPN场景,本公开提出的在EVPN RT-2路由从单标签转为双标签的方法,针对不同的接入电路(Attachment Circuit,AC)接入口产生的RT-2路由,设置不同的L2 export RT值,在桥接设备上,配置IRB子接口,绑入不同的私网VRF下,通过L2 export RT和L3 import RT进行匹配的方法,查找到对应的IRB子接口,并将对应IRB子接口所属的L3VPN私网标签填入EVPN RT-2路由报文的label2字段。从而达到单标签转双标签的目的。For unqualified VPLS EVPN scenarios, this disclosure proposes a method for converting EVPN RT-2 routes from single label to dual label. Different settings are required for RT-2 routes generated by different access circuit (Attachment Circuit, AC) entrances. For the L2 export RT value, configure the IRB sub-interface on the bridge device, bind it to different private network VRFs, find the corresponding IRB sub-interface by matching L2 export RT and L3 import RT, and add the corresponding IRB The L3VPN private network label to which the sub-interface belongs is filled in the label2 field of the EVPN RT-2 routing packet. This achieves the purpose of converting single label to dual label.
而对于qualified的VPLS EVPN场景,本公开提出的在EVPN RT-2路由从单标签转为双标签的方法,多个CE设备接入PE1,通过不同的VLAN子接口接入,接入PE1产生的EVPN RT-2单标签路由携带不同的VLAN ID,发布到桥接设备上,通过报文中携带VLAN ID值,找 到与其VLAN ID对应IRB子接口,并将该路由导入该IRB子接口对应的L3VPN实例中,并将该VRF分配的L3VPN私网标签填入EVPN RT-2路由报文中的label2字段中,通过EVPN发布给远端PE4,生成32位主机路由。For the qualified VPLS EVPN scenario, this disclosure proposes a method of converting EVPN RT-2 routing from single label to dual label. Multiple CE devices are connected to PE1 through different VLAN sub-interfaces, and access to PE1 generates EVPN RT-2 single-label routes carry different VLAN IDs and are published to the bridge device. The VLAN ID value is carried in the packet to find the route. Go to the IRB sub-interface corresponding to its VLAN ID, import the route into the L3VPN instance corresponding to the IRB sub-interface, and fill in the L3VPN private network label assigned by the VRF into the label2 field in the EVPN RT-2 routing packet, through EVPN is advertised to remote PE4 and generates a 32-bit host route.
进一步地,所述方法还包括步骤S400。Further, the method also includes step S400.
在步骤S400中,当根据所述第一路由消息解析出的第一路由满足不活跃条件时,向所述第三PE撤销所述第二路由消息。In step S400, when the first route parsed according to the first routing message satisfies the inactivity condition, the second routing message is withdrawn from the third PE.
为保证路由的有效性,当作为源头的第一路由状态为不活跃时,需要将已经发出的第二路由消息撤销。第三PE收到第二路由消息的撤销后,也会同步删除根据第二路由生成的32位主机路由。因此,当主路径发生故障时,主路径的RT-2路由撤销,会联动删除根据此RT-2路由生成的主路径的32位主机路由,然后,根据备用路径的RT-2路由生成的备用路径的32位主机路由被优选成为最优路由,因此,业务流量就会按照新优选出的最优路由进行转发。In order to ensure the validity of the route, when the first route status as the source is inactive, the second route message that has been sent needs to be revoked. After receiving the revocation of the second route message, the third PE will also delete the 32-bit host route generated based on the second route synchronously. Therefore, when the main path fails, the RT-2 route of the main path is revoked, and the 32-bit host route of the main path generated based on this RT-2 route is deleted. Then, the backup path generated based on the RT-2 route of the backup path is deleted. The 32-bit host route is selected as the optimal route. Therefore, business traffic will be forwarded according to the newly selected optimal route.
所述不活跃条件包括以下条件中的至少一种:所述第一路由的下一跳不可达、所述第一路由无法迭代到隧道、收到所述第一路由的撤销消息。The inactivity condition includes at least one of the following conditions: the next hop of the first route is unreachable, the first route cannot iterate to a tunnel, and a withdrawal message of the first route is received.
当上述常见的导致第一路由不活跃的原因发生时,会导致第一路由不活跃,进而导致向第三PE撤销第二路由消息。When the above common reasons for the inactivity of the first route occur, the first route will become inactive, which will in turn cause the second route message to be withdrawn from the third PE.
在一些实施方式中,所述第一PE为以太虚拟专用网EVPN二三层桥接场景下的桥接PE设备。In some embodiments, the first PE is a bridging PE device in an EVPN Layer 2 and Layer 3 bridging scenario.
进一步地,所述第二PE为EVPN二三层桥接场景下的二层PE,所述第三PE为EVPN二三层桥接场景下的三层PE。Further, the second PE is a Layer 2 PE in an EVPN Layer 2 and Layer 3 bridging scenario, and the third PE is a Layer 3 PE in an EVPN Layer 2 and Layer 3 bridging scenario.
下面结合3个实施例对本公开第一个方面所述的路由发布方法在不同场景下的具体应用进行介绍。The specific applications of the route publishing method described in the first aspect of this disclosure in different scenarios are introduced below with reference to three embodiments.
实施例1Example 1
本公开实施例为基本的EVPN二三层桥接场景,将EVPN RT-2路由从单标签转为双标签,发布到EVPN网络并产生主机路由,来实现EVPN二三层桥接场景下的智能联动。This disclosed embodiment is a basic EVPN Layer 2 and Layer 3 bridging scenario. EVPN RT-2 routes are converted from single labels to dual labels, published to the EVPN network and host routes are generated to achieve intelligent linkage in EVPN Layer 2 and Layer 3 bridging scenarios.
如图7所示,在接入侧的PE1上配置ARP代答,当CE1发布ARP 请求,接入PE1会产生EVPN RT-2 MAC和EVPN RT-2单标签路由,并发布到EVPN网络中。桥接PE(PE2和PE3)设备收到EVPN RT-2路由,该路由的IP地址和IRB接口在相同网段,形成到CE1的ARP条目,出接口是IRB。同时,根据该IRB接口归属的VRF,将EVPN RT-2路由导入对应VRF表中,VRF为该路由分配三层标签,并将该标签填入路由报文中的label2字段(EVPN RT-2报文格式如图6所示),再添加上本地VRF的export RT,将该路由通过EVPN发布,PE4收到该RT-2路由后,根据路由的export RT与本地VRF的import RT匹配,将该路由导入本地VRF,并产生对应CE1的32位主机路由。As shown in Figure 7, configure ARP proxy on PE1 on the access side. When CE1 issues ARP Upon request, access to PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single-label routes and publish them to the EVPN network. The bridging PE (PE2 and PE3) devices receive the EVPN RT-2 route. The IP address of the route and the IRB interface are in the same network segment, forming an ARP entry to CE1, and the outgoing interface is the IRB. At the same time, according to the VRF to which the IRB interface belongs, the EVPN RT-2 route is imported into the corresponding VRF table. The VRF assigns a three-layer label to the route and fills the label into the label2 field in the routing message (EVPN RT-2 report The file format is shown in Figure 6), then add the export RT of the local VRF, and publish the route through EVPN. After PE4 receives the RT-2 route, it matches the export RT of the route with the import RT of the local VRF. The route is imported into the local VRF and a 32-bit host route corresponding to CE1 is generated.
流量转发的时查找路由,32位的主机路由优于24位的网段路由。当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE1通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,到CE1 int1地址的32位的主机路由下一跳切换为PE3,从而实现流量切换。When searching for routes when forwarding traffic, 32-bit host routing is better than 24-bit network segment routing. When the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 2 The routing entry is still there, so the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, thereby realizing traffic switching.
具体流程包括如下步骤101至109。The specific process includes the following steps 101 to 109.
在步骤101中,在PE1、PE2、PE3上配置VPLS EVPN实例,在PE1设备上,CE1和PE1的链路int1作为AC,接入VPLS EVPN实例VPLS 1。PE1和PE2、PE3之间通过边界网关协议(Border Gateway Protocol,BGP)EVPN建立邻居,来传递RT-2路由。PE2、PE3和PE4之间是L3EVPN网络,通过BGP EVPN建立邻居,来传递RT-2路由。In step 101, configure the VPLS EVPN instance on PE1, PE2, and PE3. On the PE1 device, the link int1 between CE1 and PE1 serves as the AC and connects to the VPLS EVPN instance VPLS 1. PE1, PE2, and PE3 establish neighbors through Border Gateway Protocol (BGP) EVPN to deliver RT-2 routes. There is an L3EVPN network between PE2, PE3 and PE4. Neighbors are established through BGP EVPN to deliver RT-2 routes.
在步骤102中,CE1 int1配置IP地址(如10.0.0.1)。在桥接设备PE2、PE3上配置桥接口irb1,桥接口irb1和CE1 int1在相同网段(如10.1.1.2),且PE2、PE3配置双网关,相同地址相同MAC(10.20.30.40.50.60)。irb1接口既作为二层接口绑入VPLS EVPN实例VPLS1中,又作为三层接口,在L3VPN实例vrf1中引用该irb1接口,实现L2EVPN和L3EVPN之间的互连。In step 102, CE1 int1 is configured with an IP address (such as 10.0.0.1). Configure bridge interface irb1 on bridge devices PE2 and PE3. Bridge interface irb1 and CE1 int1 are in the same network segment (such as 10.1.1.2), and PE2 and PE3 are configured with dual gateways with the same address and MAC (10.20.30.40.50.60). The irb1 interface is bound to the VPLS EVPN instance VPLS1 as a Layer 2 interface and as a Layer 3 interface. The irb1 interface is referenced in the L3VPN instance vrf1 to realize the interconnection between L2EVPN and L3EVPN.
在步骤103中,在接入PE1上配置ARP代答,当CE1发布ARP请求,接入PE1会产生目的是CE1 int1接口的EVPN RT-2 MAC和EVPN RT-2单标签(labelA)路由,并发布到EVPN网络中。桥接PE(PE2和PE3)设备收到EVPN RT-2路由,路由的IP地址和irb1在相同网 段,形成到CE1 int1的ARP条目,出接口是irb1。根据该irb1归属的VRF(vrf1),将EVPN RT-2路由导入vrf1的路由表,vrf1为该路由分配三层标签(labelB),并将该标签填入路由报文中的label2字段(EVPN RT-2路由报文格式如图6所示),再添加上本地vrf1的export RT,将该路由通过EVPN发布,PE4收到该路由后,根据export RT,将该路由导入本地VRF,并产生对应CE1 int1接口地址的32位主机路由。In step 103, configure ARP proxy on access PE1. When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) routes destined for the CE1 int1 interface, and Publish to the EVPN network. The bridge PE (PE2 and PE3) equipment receives the EVPN RT-2 route, and the IP address of the route is in the same network as irb1. segment, forming an ARP entry to CE1 int1, the outgoing interface is irb1. According to the VRF (vrf1) to which irb1 belongs, the EVPN RT-2 route is imported into the routing table of vrf1. vrf1 assigns a three-layer label (labelB) to the route and fills the label into the label2 field (EVPN RT) in the routing message. -2 route message format (as shown in Figure 6), then add the export RT of local vrf1, and publish the route through EVPN. After PE4 receives the route, it imports the route into the local VRF according to the export RT and generates the corresponding 32-bit host route for CE1 int1 interface address.
在步骤104中,CE1上的一个地址IP1(20.0.0.1),要与CE2上的IP2(30.0.0.1)地址互通,需要互相打通至IP1、IP2地址的路由,下文以静态路由打通为例。In step 104, in order for IP1 (20.0.0.1), an address on CE1, to communicate with IP2 (30.0.0.1) on CE2, they need to connect routes to IP1 and IP2 addresses. The following uses static routing as an example.
在步骤105中,打通CE1至CE2 IP2的路由,在PE4上配置一条目的至CE2 IP2的私网静态路由,下一跳是CE2的int6地址,私网静态路由通过BGP EVPN发布到桥接设备PE2、PE3上。在PE2、PE3上,至IP2的路由,下一跳是PE4。在CE1上配置一条目的至CE2 IP2的静态路由,下一跳是irb1。CE1至CE2 IP2的路由打通。In step 105, open the route from CE1 to CE2 IP2, configure a private network static route to CE2 IP2 on PE4, the next hop is the int6 address of CE2, and publish the private network static route to the bridge device PE2 through BGP EVPN. On PE3. On PE2 and PE3, the next hop of the route to IP2 is PE4. Configure a static route on CE1 to CE2 IP2, with the next hop being irb1. The route from CE1 to CE2 IP2 is opened.
在步骤106中,反之,打通CE2至CE1 IP1的路由,在CE2上配置一条目的至CE1 IP1的静态路由,下一跳是PE4上int6接口地址。桥接设备PE2、PE3上配置一条目的至CE1 IP1的私网静态路由,下一跳是CE1的int1接口地址,私网静态路由通过L3EVPN发布给PE4。在PE4上至IP1的路由下一跳是PE2、PE3。在CE2上配置一条目的至CE1 IP1的静态路由,下一跳是PE4上int6接口地址。CE2至CE1 IP1的路由打通。In step 106, on the contrary, open the route from CE2 to CE1 IP1, configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4. Configure a private network static route to CE1 IP1 on the bridge devices PE2 and PE3. The next hop is the int1 interface address of CE1. The private network static route is published to PE4 through L3EVPN. The next hops of the route from PE4 to IP1 are PE2 and PE3. Configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4. The route from CE2 to CE1 IP1 is opened.
在步骤107中,如图7所示,PE1设备配置ARP代答功能,PE2和PE3获得至CE1 int1的EVPN RT-2路由,携带一层标签(label 100,报文label 1处填100),该标签是L2EVPN的私网标签。在PE2、PE3上根据irb1归属的vrf1,将EVPN RT-2路由导入vrf1的路由表,vrf1为该路由分配一个三层标签(label 200),将label 200填入路由报文中的label2字段(EVPN RT-2路由报文格式如图6所示),再添加上本地vrf1的export RT(11.0.0.1:1),将该EVPN RT-2路由通过EVPN网络发布。PE4收到该路由后,发现export RT (11.0.0.1:1)与本地vrf1中import RT(11.0.0.1:1)匹配。将该路由导入本地vrf1中,并产生对应CE1 int1(10.0.0.1)的32位主机路由。In step 107, as shown in Figure 7, the PE1 device is configured with the ARP proxy function. PE2 and PE3 obtain the EVPN RT-2 route to CE1 int1, which carries a layer of labels (label 100, and fill in 100 in label 1 of the message). This label is the private network label of L2EVPN. On PE2 and PE3, import the EVPN RT-2 route into the routing table of vrf1 according to vrf1 to which irb1 belongs. vrf1 assigns a layer 3 label (label 200) to the route, and fills label 200 into the label2 field in the routing packet ( The EVPN RT-2 route message format is shown in Figure 6), then add the export RT (11.0.0.1:1) of local vrf1, and publish the EVPN RT-2 route through the EVPN network. After PE4 receives the route, it discovers export RT (11.0.0.1:1) matches import RT(11.0.0.1:1) in local vrf1. Import the route into local vrf1 and generate a 32-bit host route corresponding to CE1 int1 (10.0.0.1).
在步骤108中,CE2往CE1发业务流,PE4设备流量转发的时查找路由,到CE1 int1(10.0.0.1)32位的主机路由优于24位的网段路由。查主机路由进行转发,主路径下一跳是PE2。In step 108, CE2 sends the service flow to CE1, and the PE4 device searches for routes when forwarding the traffic. The 32-bit host route to CE1 int1 (10.0.0.1) is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2.
在步骤109中,当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE1通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,在PE4设备上,到CE1 int1地址的32位的主机路由下一跳切换为PE3,流量切换至PE3-PE1-CE1路径转发。In step 109, when the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 is revoked. The EVPN RT-2 routing entry of PE4 is still there. Therefore, on the PE4 device, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the traffic is switched to the PE3-PE1-CE1 path for forwarding.
实施例2Example 2
本公开实施例为L2EVPN VPLS的unqualified桥接场景,通过L2 export RT和L3 import RT匹配,在EVPN RT-2路由的label2字段插入L3私网标签,从而实现路由从单标签转为双标签。将该EVPN RT-2路由发布到EVPN网络,在远端PE上产生主机路由,实现EVPN二三层桥接场景路由的智能联动。This disclosed embodiment is an unqualified bridging scenario for L2EVPN VPLS. By matching L2 export RT and L3 import RT, the L3 private network label is inserted into the label2 field of the EVPN RT-2 route, thereby converting the route from single label to dual label. Publish the EVPN RT-2 route to the EVPN network and generate host routes on the remote PE to realize intelligent linkage of routes in EVPN Layer 2 and Layer 3 bridge scenarios.
如图8所示,接入侧多台CE接入PE1,远端三层网络中,多个CE通过不同的私网L3VPN实例接入,要实现CE1和远端CE2经过三层vrf1的互通,CE3和远端CE4经过三层网络vrf2的互通,接入PE1上配置ARP代答,当CE1发布ARP请求时,接入PE1会产生EVPN RT-2MAC和EVPN RT-2单标签路由MAC1,当CE3发布ARP请求时,接入PE1产生EVPN RT-2 MAC和EVPN RT-2单标签路由MAC2,并将MAC1和MAC2发布到EVPN网络中。PE1根据不同的AC接入MAC,设置不同的L2 export RT值,MAC1设置export RT1,MAC2设置export RT2。在桥接PE(PE2和PE3)设备上用IRB子接口进行桥接,不同的子接口绑入不同的VRF中,通过查找VRF的import RT值和L2 export RT匹配,找到对应的L3VPN私网标签,并将该标签填入路由报文中的label2字段(EVPN RT-2路由报文格式如图6所示),再添加上本地 VRF的export RT,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT,将该路由导入本地VRF,并产生对应CE的32位主机路由。PE4上vrf1中形成到CE1 int1的32位主机路由,vrf2中形成到CE2 int11的32位主机路由。As shown in Figure 8, multiple CEs on the access side are connected to PE1. In the remote Layer 3 network, multiple CEs are connected through different private network L3VPN instances. To achieve intercommunication between CE1 and remote CE2 through Layer 3 vrf1, CE3 and remote CE4 communicate through the Layer 3 network vrf2, and ARP proxy is configured on access PE1. When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single-label route MAC1. When CE3 When issuing an ARP request, access PE1 generates EVPN RT-2 MAC and EVPN RT-2 single-label routing MAC2, and publishes MAC1 and MAC2 to the EVPN network. PE1 sets different L2 export RT values according to different AC access MACs, MAC1 sets export RT1, and MAC2 sets export RT2. Use IRB sub-interfaces for bridging on the bridging PE (PE2 and PE3) devices. Different sub-interfaces are bound to different VRFs. Find the corresponding L3VPN private network label by matching the import RT value of the VRF with the L2 export RT value, and Fill in the label2 field in the routing packet (the EVPN RT-2 routing packet format is shown in Figure 6), and then add the local The export RT of the VRF publishes the route through the EVPN network. After PE4 receives the route, it imports the route into the local VRF according to the export RT and generates a 32-bit host route corresponding to the CE. A 32-bit host route to CE1 int1 is formed in vrf1 on PE4, and a 32-bit host route to CE2 int11 is formed in vrf2.
流量转发的时查找路由,32位的主机路由优于24位的网段路由。当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1、CE3通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE1、CE3通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,到CE1int1地址的32位的主机路由下一跳切换为PE3,到CE3 int11地址的32位的主机路由下一跳切换为PE3,从而实现流量切换。When searching for routes when forwarding traffic, 32-bit host routing is better than 24-bit network segment routing. When the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE2 are revoked, and the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE3 The EVPN RT-2 routing entry is still there. Therefore, the next hop of the 32-bit host route to the CE1int1 address is switched to PE3, and the next hop of the 32-bit host route to the CE3 int11 address is switched to PE3, thereby realizing traffic switching.
具体流程包括如下步骤201至209。The specific process includes the following steps 201 to 209.
在步骤201中,在PE1、PE2、PE3上配置VPLS EVPN实例,在PE1设备上,CE1和PE1的链路int1作为AC,接入VPLS EVPN实例VPLS1,CE3和PE1的链路int11作为AC,接入VPLS EVPN实例VPLS1中,在VPLS EVPN实例下,通过策略配置AC口不同的MAC地址,设置不同的export RT,int1对应export RT1,int11对应export RT2。PE1和PE2、PE3之间建立BGP EVPN邻居,用来传递RT-2路由。PE2、PE3和PE4之间是L3EVPN网络,建立BGP EVPN邻居,用来传递RT-2路由。In step 201, configure VPLS EVPN instances on PE1, PE2, and PE3. On the PE1 device, the link int1 between CE1 and PE1 serves as the AC to access the VPLS EVPN instance VPLS1. The link int11 between CE3 and PE1 serves as the AC. Enter the VPLS EVPN instance VPLS1. Under the VPLS EVPN instance, configure different MAC addresses of the AC port through policies, and set different export RTs. Int1 corresponds to export RT1, and int11 corresponds to export RT2. BGP EVPN neighbors are established between PE1, PE2, and PE3 to transmit RT-2 routes. The L3EVPN network is between PE2, PE3 and PE4, and BGP EVPN neighbors are established to transmit RT-2 routes.
在步骤202中,CE1 int1配置IP地址(10.0.0.1),CE3 int11配置IP地址(30.0.0.1)。在桥接设备PE2、PE3上,创建L3VPN实例vrf1、vrf2,并配置桥接口IRB1及其子接口irb1.1、irb1.2,子接口irb1.1、irb1.2分别绑入vrf1、vrf2中,子接口irb1.1、irb1.2的IP地址配置分别和CE1 int1、CE3 int11在相同网段(10.1.1.2、30.1.1.2),且PE2、PE3配置双网关,相同地址相同MAC。IRB为二层接口绑入VPLS EVPN实例VPLS1中,IRB接口的子接口作为三层接口,在L3VPN实例vrf1中引用该irb1.1子接口,在L3VPN实例vrf2中引用该irb1.2子接口,实现L2EVPN和L3EVPN之间的互连。In step 202, CE1 int1 is configured with an IP address (10.0.0.1), and CE3 int11 is configured with an IP address (30.0.0.1). On the bridge devices PE2 and PE3, create L3VPN instances vrf1 and vrf2, and configure the bridge interface IRB1 and its sub-interfaces irb1.1 and irb1.2. The sub-interfaces irb1.1 and irb1.2 are bound to vrf1 and vrf2 respectively. The IP address configurations of interfaces irb1.1 and irb1.2 are in the same network segment (10.1.1.2, 30.1.1.2) as CE1 int1 and CE3 int11 respectively, and PE2 and PE3 are configured with dual gateways, the same addresses and the same MAC. IRB is a Layer 2 interface bound to VPLS EVPN instance VPLS1. The sub-interface of the IRB interface is used as a Layer 3 interface. The irb1.1 sub-interface is referenced in L3VPN instance vrf1, and the irb1.2 sub-interface is referenced in L3VPN instance vrf2. Implementation Interconnection between L2EVPN and L3EVPN.
在步骤203中,在接入PE1上配置ARP代答,当CE1发布ARP 请求时,接入PE1会产生目的是CE1 int1接口的EVPN RT-2 MAC和EVPN RT-2单标签(labelA)路由MAC1,并发布到EVPN网络中。当CE3发布ARP请求时,接入PE1产生目的是CE3 int11接口的EVPN RT-2 MAC和EVPN RT-2单标签(labelC)路由MAC2,并发布到EVPN网络中。桥接PE(PE2和PE3)设备收到EVPN RT-2路由MAC1和MAC2,根据MAC1携带的export RT1,到三层的L3VPN实例中查找到import RT,以及与之对应的vrf1,将该EVPN RT-2路由导入vrf1的路由表,vrf1为该路由分配三层标签(labelB),并将该标签填入路由报文中的label2字段(EVPN RT-2报文格式如图6所示),再添加上本地vrf1的export RT3,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT3,将该路由导入本地vrf1中,并产生对应CE1 int1接口地址的32位主机路由。同理,PE2、PE3上根据MAC2携带的export RT2,到三层的L3VPN实例中查找到import RT,以及与之对应的vrf2,将该EVPN RT-2路由导入vrf2的路由表,vrf2为该路由分配三层标签(labelD),并将该标签填入路由报文中的label2字段,再添加上本地vrf2的export RT4,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT4,将该路由导入本地vrf2中,并产生对应CE3 int11接口地址的32位主机路由。In step 203, configure ARP proxy on access PE1. When CE1 issues ARP When requested, accessing PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) route MAC1 destined for the CE1 int1 interface, and publish them to the EVPN network. When CE3 issues an ARP request, the accessed PE1 generates the EVPN RT-2 MAC and EVPN RT-2 single label (labelC) route MAC2 destined for the CE3 int11 interface, and publishes them to the EVPN network. The bridge PE (PE2 and PE3) device receives the EVPN RT-2 routes MAC1 and MAC2. According to the export RT1 carried by MAC1, it finds the import RT and the corresponding vrf1 in the three-layer L3VPN instance, and adds the EVPN RT- 2 Routes are imported into the routing table of vrf1. vrf1 assigns a three-layer label (labelB) to the route, fills the label into the label2 field in the routing packet (the format of the EVPN RT-2 packet is shown in Figure 6), and then adds Go to the export RT3 of local vrf1 and publish the route through the EVPN network. After PE4 receives the route, it imports the route into the local vrf1 according to the export RT3 and generates a 32-bit host route corresponding to the CE1 int1 interface address. Similarly, based on the export RT2 carried by MAC2, PE2 and PE3 find the import RT and the corresponding vrf2 in the Layer 3 L3VPN instance, and import the EVPN RT-2 route into the routing table of vrf2, where vrf2 is the route. Assign a Layer 3 label (labelD), fill the label into the label2 field in the routing packet, add the export RT4 of the local vrf2, and publish the route through the EVPN network. After PE4 receives the route, according to the export RT4, Import the route into local vrf2 and generate a 32-bit host route corresponding to the CE3 int11 interface address.
在步骤204中,CE1上的一个地址IP1(100.0.0.1),要与CE2上的IP2(200.0.0.1)地址互通,需要互相打通至IP1、IP2地址的路由。CE3上的一个地址IP3(110.0.0.1),要与CE4上的IP4(210.0.0.1)地址互通,需要互相打通至IP3、IP4地址的路由。下文以静态路由打通为例。In step 204, if an address IP1 (100.0.0.1) on CE1 wants to communicate with the address IP2 (200.0.0.1) on CE2, they need to open routes to IP1 and IP2 addresses. To communicate with the IP3 (110.0.0.1) address on CE3 and the IP4 (210.0.0.1) address on CE4, they need to open routes to IP3 and IP4 addresses. The following uses static routing as an example.
在步骤205中,打通CE1到CE2 IP2的路由,在PE4上配置一条目的至CE2 IP2的私网vrf1的静态路由,下一跳是CE2的int6地址,私网静态路由通过BGP EVPN发布到桥接设备PE2、PE3上。在PE2、PE3上,至IP2的路由,下一跳是PE4。在CE1上配置一条目的至CE2 IP2的静态路由,下一跳是irb1.1。CE1至CE2 IP2的路由打通。In step 205, open the route from CE1 to CE2 IP2, configure a static route on PE4 to the private network vrf1 of CE2 IP2, the next hop is the int6 address of CE2, and publish the private network static route to the bridge device through BGP EVPN On PE2 and PE3. On PE2 and PE3, the next hop of the route to IP2 is PE4. Configure a static route on CE1 to CE2 IP2, with the next hop being irb1.1. The route from CE1 to CE2 IP2 is opened.
打通CE3到CE4 IP4的路由,在PE4上配置一条目的至CE4 IP4 的私网vrf2的静态路由,下一跳是CE4的int16地址,私网静态路由通过BGP EVPN发布到桥接设备PE2、PE3上。在PE2、PE3上,至IP4的路由,下一跳是PE4。CE3上配置一条目的到CE4 IP4的静态路由,下一跳是irb1.2。CE3至CE4 IP4的路由打通。Open the route from CE3 to CE4 IP4, and configure a route on PE4 to CE4 IP4. For the static route of private network vrf2, the next hop is the int16 address of CE4. The private network static route is published to the bridge devices PE2 and PE3 through BGP EVPN. On PE2 and PE3, the next hop of the route to IP4 is PE4. Configure a static route on CE3 to CE4 IP4, and the next hop is irb1.2. The route from CE3 to CE4 IP4 is opened.
在步骤206中,反之,打通CE2至CE1 IP1的路由,在CE2上配置一条目的至CE1 IP1的静态路由,下一跳是PE4上int6接口地址。桥接设备PE2、PE2上配置一条目的到CE1 IP1的私网vrf1的静态路由,下一跳是CE1的int1接口地址,私网静态路由通过L3EVPN发布给PE4。在PE4上至IP1的路由下一跳是PE2、PE3。CE2上配置一条目的到CE1 IP1的静态路由,下一跳是PE4上int6接口地址。CE2到CE1 IP1的路由打通。In step 206, on the contrary, open the route from CE2 to CE1 IP1, configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4. Configure a static route on the bridging device PE2 and PE2 to the private network vrf1 of CE1 IP1. The next hop is the int1 interface address of CE1. The private network static route is published to PE4 through L3EVPN. The next hops of the route from PE4 to IP1 are PE2 and PE3. Configure a static route on CE2 to CE1 IP1, and the next hop is the int6 interface address on PE4. The route from CE2 to CE1 IP1 is open.
打通CE4至CE3 IP3的路由,CE4上配置一条目的至CE3 IP3的静态路由,下一跳是PE4上int16接口地址。桥接设备PE2、PE2上配置一条目的到CE3 IP3的私网vrf2的静态路由,下一跳是CE3的int11接口地址,私网静态路由通过L3EVPN发布给PE4。在PE4上至IP3的路由下一跳是PE2、PE3。CE2上配置一条目的到CE3 IP3的静态路由,下一跳是PE4上int16接口地址。CE2到CE1 IP1的路由打通。Open the route from CE4 to CE3 IP3. Configure a static route on CE4 to CE3 IP3. The next hop is the int16 interface address on PE4. Configure a static route on the bridge device PE2 and PE2 to the private network vrf2 of CE3 IP3. The next hop is the int11 interface address of CE3. The private network static route is published to PE4 through L3EVPN. The next hops of the route from PE4 to IP3 are PE2 and PE3. Configure a static route on CE2 to CE3 IP3, and the next hop is the int16 interface address on PE4. The route from CE2 to CE1 IP1 is open.
在步骤207中,如图8所示,PE1设备配置ARP代答功能,PE2和PE3获得至CE1 int1的EVPN RT-2路由MAC1,携带一层标签(label 100,报文label 1处填100),该标签是L2EVPN的私网标签;PE2和PE3获得到CE3 int11的EVPN RT-2路由MAC2,携带一层标签(label 110,报文label1处填110),该标签是L2EVPN的私网标签;在PE2、PE3上根据L2的export RT和L3 import RT进行匹配,将EVPN RT-2MAC1路由导入vrf1的路由表,vrf1为该路由分配一个三层标签(label 200),将label 200填入EVPN RT-2路由MAC1报文中的label2字段,再添加上本地vrf1的export RT3(11.0.0.1:1),将该路由通过EVPN网络发布;将EVPN RT-2 MAC2路由导入vrf2的路由表,vrf2为该路由分配一个三层标签(label 210),将label 210填入EVPN RT-2路由MAC2报文中的label2字段,再添加上本地vrf2 的export RT4(22.0.0.1:1),将该路由通过EVPN网络发布。PE4收到该路由后,发现export RT3(11.0.0.1:1)与本地vrf1中import RT3(11.0.0.1:1)匹配,将该路由导入本地vrf1中,并产生对应CE1 int1(10.0.0.1)的32位主机路由;并且export RT4(22.0.0.1:1)与本地vrf2中import RT4(22.0.0.1:1)匹配,将该路由导入本地vrf2中,并产生对应CE3 int11(30.0.0.1)的32位主机路由。In step 207, as shown in Figure 8, the PE1 device is configured with the ARP proxy function. PE2 and PE3 obtain the EVPN RT-2 route MAC1 to CE1 int1, which carries a layer of labels (label 100, fill in 100 at label 1 of the message). , this label is the private network label of L2EVPN; PE2 and PE3 obtain the EVPN RT-2 route MAC2 of CE3 int11, which carries a layer of label (label 110, fill in 110 in the packet label1), this label is the private network label of L2EVPN; Match the export RT and L3 import RT of L2 on PE2 and PE3, import the EVPN RT-2MAC1 route into the routing table of vrf1, vrf1 assigns a three-layer label (label 200) to the route, and fills label 200 into EVPN RT. -2 Route the label2 field in the MAC1 message, then add the export RT3 (11.0.0.1:1) of the local vrf1, and publish the route through the EVPN network; import the EVPN RT-2 MAC2 route into the routing table of vrf2, vrf2 is This route is assigned a layer 3 label (label 210), fill in label 210 into the label2 field in the EVPN RT-2 route MAC2 message, and then add local vrf2 export RT4(22.0.0.1:1), and publish the route through the EVPN network. After PE4 receives the route, it finds that export RT3 (11.0.0.1:1) matches the import RT3 (11.0.0.1:1) in local vrf1, imports the route into local vrf1, and generates the corresponding CE1 int1 (10.0.0.1) 32-bit host route; and the export RT4 (22.0.0.1:1) matches the import RT4 (22.0.0.1:1) in the local vrf2, import the route into the local vrf2, and generate the corresponding CE3 int11 (30.0.0.1) 32-bit host routing.
在步骤208中,CE2往CE1发业务流,PE4设备流量转发的时查找路由,到CE1 int1(10.0.0.1)32位的主机路由优于24位的网段路由。查主机路由进行转发,主路径下一跳是PE2。CE4往CE3发业务流,PE4设备流量转发的时查找路由,到CE3 int11(30.0.0.1)地址的32位的主机路由优于24位的网段路由。查主机路由进行转发,主路径下一跳是PE2。In step 208, CE2 sends the service flow to CE1, and the PE4 device searches for routes when forwarding the traffic. The 32-bit host route to CE1 int1 (10.0.0.1) is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2. CE4 sends service flows to CE3, and the PE4 device searches for routes when forwarding traffic. The 32-bit host route to the CE3 int11 (30.0.0.1) address is better than the 24-bit network segment route. Check the host route for forwarding. The next hop of the main path is PE2.
在步骤209中,当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE1通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,在PE4设备上,到CE1 int1地址的32位的主机路由下一跳切换为PE3,流量切换至PE3-PE1-CE1路径转发。同理,CE3通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE3通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,在PE4设备上,到CE3 int11地址的32位的主机路由下一跳切换为PE3,流量切换至PE3-PE1-CE3路径转发。在链路故障时,可以实现流量切换不断流。In step 209, when the link between PE1 and PE2 and the link between PE2 and PE3 fail, the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE2 is revoked, and the EVPN RT-2 routing entry sent by CE1 to PE4 through PE1 and PE3 is revoked. The EVPN RT-2 routing entry of PE4 is still there. Therefore, on the PE4 device, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the traffic is switched to the PE3-PE1-CE1 path for forwarding. In the same way, the EVPN RT-2 routing entries sent by CE3 to PE4 through PE1 and PE2 are revoked, but the EVPN RT-2 routing entries sent by CE3 to PE4 through PE1 and PE3 are still there. Therefore, on the PE4 device, to the int11 address of CE3 The next hop of the 32-bit host route is switched to PE3, and the traffic is switched to the PE3-PE1-CE3 path for forwarding. When a link fails, traffic switching can be achieved without interruption.
实施例3Example 3
本公开实施例为L2EVPN VPLS的qualified桥接场景,通过L2报文中携带的VLAN ID,IRB子接口与VLAN ID相匹配,查找到对应IRB子接口所在VRF分配的三层私网标签,在EVPN RT-2路由报文中插入到对应的label2字段,从而实现路由从单标签转为双标签,发布到EVPN网络中,在远端PE上产生主机路由,来实现EVPN二三层桥接场景智能联动。This disclosed embodiment is a qualified bridging scenario for L2EVPN VPLS. Through the VLAN ID carried in the L2 packet, the IRB sub-interface matches the VLAN ID, and the Layer 3 private network label assigned by the VRF where the corresponding IRB sub-interface is located is found. In EVPN RT The corresponding label2 field is inserted into the -2 routing packet, thereby converting the route from single label to dual label, publishing it to the EVPN network, and generating host routes on the remote PE to achieve intelligent linkage in EVPN Layer 2 and Layer 3 bridging scenarios.
如图9所示,接入侧多台CE接入PE1,子接口接入,qualified场景。远端三层网络中,多个CE通过不同的私网L3VPN实例接入, 要实现CE1和远端CE2经过三层vrf1的互通,CE3和远端CE4经过三层网络vrf2的互通,接入PE1上配置ARP代答,当CE1发布ARP请求时,接入PE1会产生EVPN RT-2 MAC和EVPN RT-2单标签路由MAC1,携带对应子接口VLAN ID(vlan id1);当CE3发布ARP请求时,接入PE1产生EVPN RT-2 MAC和EVPN RT-2单标签路由MAC2,携带对应子接口VLAN ID(vlan id2),并发布到EVPN网络中。在桥接PE(PE2和PE3)设备上,配置桥接口IRB的子接口进行桥接,不同子接口绑入不同的VRF中,通过查找和报文中VLAN ID值一致的IRB子接口,找到对应IRB子接口所归属的VRF,将该路由导入对应的vrf的路由表中,生成L3私网标签,并将该标签填入报文中的label2字段,再添加上本地VRF的export RT,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT,将该路由导入本地VRF,产生对应CE的32位主机路由。PE4上vrf1中形成到CE1 int1的32位主机路由,vrf2中形成到CE2 int11的32位主机路由。As shown in Figure 9, multiple CEs on the access side are connected to PE1 and sub-interfaces are connected, in a qualified scenario. In the remote Layer 3 network, multiple CEs are connected through different private network L3VPN instances. To achieve intercommunication between CE1 and remote CE2 through Layer 3 vrf1, and CE3 and remote CE4 through Layer 3 network vrf2, configure ARP proxy on access PE1. When CE1 issues an ARP request, access PE1 will generate EVPN RT -2 MAC and EVPN RT-2 single label routing MAC1, carrying the corresponding sub-interface VLAN ID (vlan id1); when CE3 issues an ARP request, access PE1 generates EVPN RT-2 MAC and EVPN RT-2 single label routing MAC2, Carry the corresponding sub-interface VLAN ID (vlan id2) and publish it to the EVPN network. On the bridge PE (PE2 and PE3) device, configure the sub-interface of the bridge interface IRB for bridging. Bind different sub-interfaces to different VRFs. Find the corresponding IRB sub-interface by searching for the IRB sub-interface with the same VLAN ID value in the packet. The VRF to which the interface belongs imports the route into the routing table of the corresponding vrf, generates an L3 private network label, fills the label into the label2 field in the packet, and then adds the export RT of the local VRF to pass the route. The EVPN network publishes the route. After PE4 receives the route, it imports the route into the local VRF according to the export RT and generates a 32-bit host route corresponding to the CE. A 32-bit host route to CE1 int1 is formed in vrf1 on PE4, and a 32-bit host route to CE2 int11 is formed in vrf2.
流量转发的时查找路由,32位的主机路由优于24位的网段路由。当PE1、PE2之间链路和PE2、PE3之间链路都发生故障时,CE1、CE3通过PE1、PE2发送给PE4的EVPN RT-2路由条目撤销,CE1、CE3通过PE1、PE3发送给PE4的EVPN RT-2路由条目还在,因此,到CE1 int1地址的32位的主机路由下一跳切换为PE3,到CE3 int11地址的32位的主机路由下一跳切换为PE3,从而实现流量切换。When searching for routes when forwarding traffic, 32-bit host routing is better than 24-bit network segment routing. When the link between PE1 and PE2 and the link between PE2 and PE3 both fail, the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE2 are revoked, and the EVPN RT-2 routing entries sent by CE1 and CE3 to PE4 through PE1 and PE3 The EVPN RT-2 routing entry is still there. Therefore, the next hop of the 32-bit host route to the CE1 int1 address is switched to PE3, and the next hop of the 32-bit host route to the CE3 int11 address is switched to PE3, thereby realizing traffic switching. .
具体流程包括如下步骤301至309。The specific process includes the following steps 301 to 309.
在步骤301中,在PE1、PE2、PE3上配置VPLS EVPN qualified实例,在PE1设备上,CE1和PE1的链路int1作为AC,接入VPLS EVPN实例VPLS1,CE3和PE1的链路int11作为AC,接入VPLS EVPN实例VPLS1中,PE1上通过子接口接入不同的CE。PE1和PE2、PE3之间建立BGP EVPN邻居,用来传递RT-2路由。PE2、PE3和PE4之间是L3EVPN网络,建立BGP EVPN邻居,用来传递RT-2路由。In step 301, configure VPLS EVPN qualified instances on PE1, PE2, and PE3. On the PE1 device, the link int1 between CE1 and PE1 serves as the AC, and accesses the VPLS EVPN instance VPLS1. The link int11 between CE3 and PE1 serves as the AC. Accessing VPLS In EVPN instance VPLS1, PE1 accesses different CEs through sub-interfaces. BGP EVPN neighbors are established between PE1, PE2, and PE3 to transmit RT-2 routes. The L3EVPN network is between PE2, PE3 and PE4, and BGP EVPN neighbors are established to transmit RT-2 routes.
在步骤302中,CE1 int1配置IP地址(10.0.0.1),CE3 int11配置IP地址(30.0.0.1)。在桥接设备PE2、PE3上,创建L3VPN实例vrf1、vrf2,并配置桥接口IRB1口及其子接口irb1.1、irb1.2, 子接口irb1.1、irb1.2分别绑入vrf1、vrf2中,子接口irb1.1、irb1.2的IP地址配置分别和CE1 int1、CE3 int11在相同网段(10.0.0.2、30.0.0.2),且PE2、PE3配置双网关,相同地址相同MAC。IRB为二层接口绑入VPLS EVPN实例VPLS1中,IRB的子接口作为三层接口,在L3VPN实例vrf1中引用该irb1.1接口,在L3VPN实例vrf2中引用该irb1.2接口,实现L2EVPN和L3EVPN之间的互连。In step 302, CE1 int1 is configured with an IP address (10.0.0.1), and CE3 int11 is configured with an IP address (30.0.0.1). On the bridge devices PE2 and PE3, create L3VPN instances vrf1 and vrf2, and configure the bridge interface IRB1 and its sub-interfaces irb1.1 and irb1.2. Sub-interfaces irb1.1 and irb1.2 are bound to vrf1 and vrf2 respectively. The IP address configurations of sub-interfaces irb1.1 and irb1.2 are in the same network segment (10.0.0.2, 30.0.0.2) as CE1 int1 and CE3 int11 respectively. , and PE2 and PE3 are configured with dual gateways, with the same addresses and the same MAC. The IRB is bound to the VPLS EVPN instance VPLS1 as the Layer 2 interface. The sub-interface of the IRB is used as the Layer 3 interface. The irb1.1 interface is referenced in the L3VPN instance vrf1, and the irb1.2 interface is referenced in the L3VPN instance vrf2 to implement L2EVPN and L3EVPN. interconnections between.
在步骤303中,在接入PE1上配置ARP代答,当CE1发布ARP请求,接入PE1会产生目的是CE1 int1接口的EVPN RT-2 MAC和EVPN RT-2单标签(labelA)路由MAC1,且在报文中携带对应AC子接口int1的VLAN ID(vlan id1),并发布到EVPN网络中。CE3发布ARP请求,接入PE1产生目的是CE3 int11接口的EVPN RT-2 MAC和EVPN RT-2单标签(labelC)路由MAC2,且在报文中携带对应AC子接口int11的VLAN ID(vlan id2),并发布到EVPN网络中。桥接PE(PE2和PE3)设备收到EVPN RT-2路由MAC1和MAC2,根据MAC1携带的vlan id1,找到与vlan id1一致的IRB子接口(irb1.1),将这个EVPN RT-2路由导入vrf1的路由表,vrf1为该路由MAC1分配三层标签(labelB),并将该标签填入路由报文中的label2字段,再添加上本地vrf1的export RT3,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT3,将该路由导入本地vrf1中,并产生对应CE1 int1接口地址的32位主机路由。In step 303, configure ARP proxy on access PE1. When CE1 issues an ARP request, access PE1 will generate EVPN RT-2 MAC and EVPN RT-2 single label (labelA) route MAC1 destined for the CE1 int1 interface. The packet carries the VLAN ID (vlan id1) corresponding to AC sub-interface int1 and publishes it to the EVPN network. CE3 issues an ARP request and accesses PE1 to generate EVPN RT-2 MAC and EVPN RT-2 single label (labelC) route MAC2 destined for CE3 int11 interface, and the message carries the VLAN ID (vlan id2) corresponding to AC sub-interface int11 ) and publish it to the EVPN network. The bridge PE (PE2 and PE3) device receives the EVPN RT-2 routes MAC1 and MAC2. According to the vlan id1 carried by MAC1, it finds the IRB sub-interface (irb1.1) consistent with vlan id1, and imports this EVPN RT-2 route into vrf1. In the routing table, vrf1 assigns a three-layer label (labelB) to the route MAC1, fills the label into the label2 field in the routing message, and then adds the export RT3 of the local vrf1, publishes the route through the EVPN network, and PE4 receives After arriving at the route, import the route into the local vrf1 according to export RT3, and generate a 32-bit host route corresponding to the CE1 int1 interface address.
同理,PE2、PE3上根据MAC2携带的vlan id2,找到与vlan id2一致的IRB子接口(irb1.2),将EVPN RT-2路由导入vrf2的路由表,vrf2为该路由MAC2分配三层标签(labelD),并将该标签填入路由报文中的label2字段,再添加上本地vrf2的export RT4,将该路由通过EVPN网络发布,PE4收到该路由后,根据export RT4,将该路由导入本地vrf2中,并产生对应CE3 int11接口地址的32位主机路由。In the same way, PE2 and PE3 find the IRB sub-interface (irb1.2) consistent with vlan id2 based on the vlan id2 carried by MAC2, and import the EVPN RT-2 route into the routing table of vrf2. vrf2 allocates a three-layer label to the route MAC2. (labelD), and fill in the label2 field in the routing message, then add the export RT4 of the local vrf2, and publish the route through the EVPN network. After PE4 receives the route, it imports the route according to the export RT4 In local vrf2, and generate a 32-bit host route corresponding to the CE3 int11 interface address.
在步骤304至309中,除特殊说明之处以外,步骤304至309与步骤204至209相同,在此不再赘述。Unless otherwise specified, steps 304 to 309 are the same as steps 204 to 209 and will not be described again.
第二方面,本公开实施方式提供一种电子设备,如图10所示, 该电子设备包括:一个或多个处理器501;存储器502,其上存储有一个或多个计算机程序,当一个或多个计算机程序被一个或多个处理器执行,使得一个或多个处理器实现如上述第一方面任意一项的路由发布方法;以及,一个或多个I/O接口503,连接在处理器与存储器之间,配置为实现处理器与存储器的信息交互。In a second aspect, an embodiment of the present disclosure provides an electronic device, as shown in Figure 10, The electronic device includes: one or more processors 501; a memory 502, on which one or more computer programs are stored. When the one or more computer programs are executed by one or more processors, the one or more processors Implement the route publishing method according to any one of the above first aspects; and, one or more I/O interfaces 503 are connected between the processor and the memory, and are configured to implement information interaction between the processor and the memory.
处理器501为具有数据处理能力的器件,其包括但不限于中央处理器(CPU)等;存储器502为具有数据存储能力的器件,其包括但不限于随机存取存储器(RAM,更具体如SDRAM、DDR等)、只读存储器(ROM)、带电可擦可编程只读存储器(EEPROM)、闪存(FLASH);I/O接口(读写接口)503连接在处理器501与存储器502间,能实现处理器501与存储器502的信息交互,其包括但不限于数据总线(Bus)等。The processor 501 is a device with data processing capabilities, including but not limited to a central processing unit (CPU), etc.; the memory 502 is a device with data storage capabilities, including but not limited to random access memory (RAM, more specifically such as SDRAM). , DDR, etc.), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory (FLASH); the I/O interface (read-write interface) 503 is connected between the processor 501 and the memory 502, and can Implement information interaction between the processor 501 and the memory 502, which includes but is not limited to a data bus (Bus), etc.
在一些实施方式中,处理器501、存储器502和I/O接口503通过总线504相互连接,进而与计算设备的其它组件连接。In some implementations, processor 501, memory 502, and I/O interface 503 are connected to each other and, in turn, to other components of the computing device via bus 504.
第三方面,本公开实施方式提供一种计算机可读存储介质,如图11所示,计算机可读存储介质上存储有计算机程序,计算机程序被处理器执行时实现上述第一方面任意一项的路由发布方法。In a third aspect, embodiments of the present disclosure provide a computer-readable storage medium. As shown in Figure 11, a computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, any one of the above-mentioned aspects of the first aspect is implemented. Route publishing method.
本公开提出的路由发布方法,在集中式EVPN二三层桥接场景中,在没有具体的BFD会话可以被追踪的情况下,利用MAC/IP通告路由(MAC/IP Advertisement Route,RT-2)同时携带第一标签字段和第二标签字段触发三层PE生成32位主机路由,实现RT-2路由与主机路由的联动。在二层网络中出现故障时,通过撤销主路径RT-2路由的方式,联动三层PE删除主路径对应的32位主机路由,实现向备用路径的切换。由于不必为业务路由绑定BFD检测,因此,本公开不但减少了设备上的配置复杂度,而且节省了设备的BFD资源,缓解了网络压力。The route publishing method proposed in this disclosure uses MAC/IP Advertisement Route (RT-2) simultaneously in a centralized EVPN Layer 2 and Layer 3 bridging scenario when no specific BFD session can be traced. Carrying the first label field and the second label field triggers the three-layer PE to generate a 32-bit host route, realizing the linkage between RT-2 routing and host routing. When a fault occurs in the Layer 2 network, by deleting the RT-2 route of the main path, the Layer 3 PE is linked to delete the 32-bit host route corresponding to the main path to achieve switching to the backup path. Since there is no need to bind BFD detection to service routes, the present disclosure not only reduces the configuration complexity on the device, but also saves the BFD resources of the device and relieves network pressure.
本领域普通技术人员可以理解,上文中所公开方法中的全部或某些步骤、系统、设备中的功能模块/单元可以被实施为软件、固件、硬件及其适当的组合。Those of ordinary skill in the art can understand that all or some steps, systems, and functional modules/units in the devices disclosed above can be implemented as software, firmware, hardware, and appropriate combinations thereof.
在硬件实施方式中,在以上描述中提及的功能模块/单元之间的 划分不一定对应于物理组件的划分;例如,一个物理组件可以具有多个功能,或者一个功能或步骤可以由若干物理组件合作执行。某些物理组件或所有物理组件可以被实施为由处理器(如中央处理器、数字信号处理器或微处理器)执行的软件,或者被实施为硬件,或者被实施为集成电路,如专用集成电路。这样的软件可以分布在计算机可读介质上,计算机可读介质可以包括计算机存储介质(或非暂时性介质)和通信介质(或暂时性介质)。如本领域普通技术人员公知的,术语计算机存储介质包括在用于存储信息(诸如计算机可读指令、数据结构、程序模块或其他数据)的任何方法或技术中实施的易失性和非易失性、可移除和不可移除介质。计算机存储介质包括但不限于RAM、ROM、EEPROM、闪存或其他存储器技术、CD-ROM、数字多功能盘(DVD)或其他光盘存储、磁盒、磁带、磁盘存储或其他磁存储装置、或者可以用于存储期望的信息并且可以被计算机访问的任何其他的介质。此外,本领域普通技术人员公知的是,通信介质通常包含计算机可读指令、数据结构、程序模块或者诸如载波或其他传输机制之类的调制数据信号中的其他数据,并且可包括任何信息递送介质。In a hardware implementation, between the functional modules/units mentioned in the above description A partitioning does not necessarily correspond to a partitioning of physical components; for example, one physical component may have multiple functions, or one function or step may be performed cooperatively by several physical components. Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, a digital signal processor, or a microprocessor, or as hardware, or as an integrated circuit, such as an application specific integrated circuit. circuit. Such software may be distributed on computer-readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media). As is known to those of ordinary skill in the art, the term computer storage media includes volatile and nonvolatile media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. removable, removable and non-removable media. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, Digital Versatile Disk (DVD) or other optical disk storage, magnetic cassettes, tapes, disk storage or other magnetic storage devices, or may Any other medium used to store the desired information and that can be accessed by a computer. Additionally, it is known to those of ordinary skill in the art that communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism, and may include any information delivery media .
以上参照附图说明了本公开的优选实施例,并非因此局限本公开的权利范围。本领域技术人员不脱离本公开的范围和实质内所作的任何修改、等同替换和改进,均应在本公开的权利范围之内。 The preferred embodiments of the present disclosure have been described above with reference to the accompanying drawings, but the scope of rights of the present disclosure is not thereby limited. Any modifications, equivalent substitutions and improvements made by those skilled in the art without departing from the scope and essence of the present disclosure shall be within the scope of rights of the present disclosure.

Claims (10)

  1. 一种路由发布方法,由第一提供商边缘PE设备执行,包括:A route publishing method, executed by the first provider edge PE device, includes:
    接收到来自第二PE设备的第一路由消息;其中,第一路由消息用于通告MAC/IP通告路由,所述第一路由消息包括第一标签字段和第二标签字段,所述第一标签字段包括第一标签,所述第二标签字段空缺;Receive a first routing message from the second PE device; wherein the first routing message is used to advertise a MAC/IP advertised route, the first routing message includes a first label field and a second label field, the first label The field includes a first tag, and the second tag field is blank;
    为所述第二标签字段填充第二标签,以生成第二路由消息,其中,所述第一标签用于表示二层业务流量转发,所述第二标签用于表示三层业务流量转发;以及Filling the second label field with a second label to generate a second routing message, wherein the first label is used to represent Layer 2 business traffic forwarding, and the second label is used to represent Layer 3 business traffic forwarding; and
    将所述第二路由消息发送给第三PE设备。Send the second routing message to the third PE device.
  2. 根据权利要求1所述的路由发布方法,其中,所述为所述第二标签字段填充第二标签,以生成第二路由消息,包括:The route publishing method according to claim 1, wherein filling the second label field with a second label to generate a second routing message includes:
    根据所述第一路由消息,确定所述第一路由消息对应的三层虚拟专用网L3VPN私网标签;以及Determine the Layer 3 virtual private network L3VPN private network label corresponding to the first routing message according to the first routing message; and
    将所述L3VPN私网标签填充到所述第一路由消息的第二标签字段,生成第二路由消息。Fill the L3VPN private network label into the second label field of the first routing message to generate a second routing message.
  3. 根据权利要求2所述的路由发布方法,其中,所述根据所述第一路由消息,确定所述第一路由消息对应的L3VPN私网标签,包括:The route publishing method according to claim 2, wherein the determining the L3VPN private network label corresponding to the first routing message according to the first routing message includes:
    根据所述第一路由消息确定所对应的L3VPN接口;Determine the corresponding L3VPN interface according to the first routing message;
    确定所述L3VPN接口对应的L3VPN实例;以及Determine the L3VPN instance corresponding to the L3VPN interface; and
    将L3VPN实例为所述L3VPN接口的网段地址分配的私网标签,作为所述第一路由消息对应的L3VPN私网标签。The private network label assigned by the L3VPN instance to the network segment address of the L3VPN interface is used as the L3VPN private network label corresponding to the first routing message.
  4. 根据权利要求2中所述的路由发布方法,其中,所述第一路由消息中携带有虚拟局域网VLAN的标识,所述根据所述第一路由消息,确定所述第一路由消息对应的L3VPN私网标签,包括:The route publishing method according to claim 2, wherein the first routing message carries an identifier of a virtual LAN VLAN, and the L3VPN private number corresponding to the first routing message is determined based on the first routing message. Net tags, including:
    根据所述VLAN的标识确定对应的L3VPN子接口; Determine the corresponding L3VPN sub-interface according to the identifier of the VLAN;
    确定所述L3VPN子接口对应的L3VPN实例;以及Determine the L3VPN instance corresponding to the L3VPN sub-interface; and
    将L3VPN实例为所述L3VPN子接口的网段地址分配的私网标签,作为所述第一路由消息对应的L3VPN私网标签。The private network label assigned by the L3VPN instance to the network segment address of the L3VPN sub-interface is used as the L3VPN private network label corresponding to the first routing message.
  5. 根据权利要求1至4中任意一项所述的路由发布方法,所述方法还包括:The route publishing method according to any one of claims 1 to 4, said method further comprising:
    当根据所述第一路由消息解析出的第一路由满足不活跃条件时,向所述第三PE设备撤销所述第二路由消息。When the first route parsed according to the first routing message meets the inactivity condition, the second routing message is withdrawn from the third PE device.
  6. 根据权利要求5所述的路由发布方法,其中,所述不活跃条件包括以下条件中的至少一种:The route publishing method according to claim 5, wherein the inactivity condition includes at least one of the following conditions:
    所述第一路由的下一跳不可达、所述第一路由无法迭代到隧道、收到所述第一路由的撤销消息。The next hop of the first route is unreachable, the first route cannot iterate to the tunnel, and a withdrawal message of the first route is received.
  7. 根据权利要求1至4中任意一项所述的路由发布方法,其中,所述第一PE设备为以太虚拟专用网EVPN二三层桥接场景下的桥接PE设备。The route publishing method according to any one of claims 1 to 4, wherein the first PE device is a bridge PE device in an Ethernet Virtual Private Network (EVPN) Layer 2 and Layer 3 bridging scenario.
  8. 根据权利要求7所述的路由发布方法,其中,所述第二PE设备为EVPN二三层桥接场景下的二层PE设备,所述第三PE设备为EVPN二三层桥接场景下的三层PE设备。The route publishing method according to claim 7, wherein the second PE device is a Layer 2 PE device in an EVPN Layer 2 and Layer 3 bridging scenario, and the third PE device is a Layer 3 PE device in an EVPN Layer 2 and Layer 3 bridging scenario. PE equipment.
  9. 一种电子设备,所述电子设备包括:An electronic device, the electronic device includes:
    一个或多个处理器;one or more processors;
    存储器,其上存储有一个或多个计算机程序,当所述一个或多个计算机程序被所述一个或多个处理器执行,使得所述一个或多个处理器实现根据权利要求1至8中任意一项所述的路由发布方法;以及A memory having one or more computer programs stored thereon, which when the one or more computer programs are executed by the one or more processors, causes the one or more processors to implement the method according to claims 1 to 8 The route publishing method described in any one of the above; and
    一个或多个I/O接口,连接在所述处理器与存储器之间,配置为实现所述处理器与存储器的信息交互。 One or more I/O interfaces are connected between the processor and the memory, and are configured to implement information exchange between the processor and the memory.
  10. 一种计算机可读存储介质,所述计算机可读存储介质上存储有计算机程序,所述计算机程序被处理器执行时实现根据权利要求1至8中任意一项所述的路由发布方法。 A computer-readable storage medium. A computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, the route publishing method according to any one of claims 1 to 8 is implemented.
PCT/CN2023/093828 2022-06-30 2023-05-12 Routing publishing method, electronic device and computer-readable storage medium WO2024001553A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202210760692.4 2022-06-30
CN202210760692.4A CN117377020A (en) 2022-06-30 2022-06-30 Route issuing method, electronic device, and computer-readable storage medium

Publications (1)

Publication Number Publication Date
WO2024001553A1 true WO2024001553A1 (en) 2024-01-04

Family

ID=89382764

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2023/093828 WO2024001553A1 (en) 2022-06-30 2023-05-12 Routing publishing method, electronic device and computer-readable storage medium

Country Status (2)

Country Link
CN (1) CN117377020A (en)
WO (1) WO2024001553A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102711234A (en) * 2012-05-22 2012-10-03 中兴通讯股份有限公司 Method for synchronizing ARP (address resolution protocol) tables between master and slave VRRP (virtual router redundancy protocol) devices and VRRP device
US9391885B1 (en) * 2013-09-05 2016-07-12 Juniper Networks, Inc. MPLS label usage in Ethernet virtual private networks
CN111786884A (en) * 2019-04-04 2020-10-16 中兴通讯股份有限公司 Routing method and routing equipment
CN112511398A (en) * 2019-09-16 2021-03-16 中兴通讯股份有限公司 Method and device for preventing traffic from bypassing

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102711234A (en) * 2012-05-22 2012-10-03 中兴通讯股份有限公司 Method for synchronizing ARP (address resolution protocol) tables between master and slave VRRP (virtual router redundancy protocol) devices and VRRP device
US9391885B1 (en) * 2013-09-05 2016-07-12 Juniper Networks, Inc. MPLS label usage in Ethernet virtual private networks
CN111786884A (en) * 2019-04-04 2020-10-16 中兴通讯股份有限公司 Routing method and routing equipment
CN112511398A (en) * 2019-09-16 2021-03-16 中兴通讯股份有限公司 Method and device for preventing traffic from bypassing

Also Published As

Publication number Publication date
CN117377020A (en) 2024-01-09

Similar Documents

Publication Publication Date Title
CN109218178B (en) Message processing method and network equipment
US10135627B2 (en) System for avoiding traffic flooding due to asymmetric MAC learning and achieving predictable convergence for PBB-EVPN active-active redundancy
CN108574630B (en) EVPN message processing method, device and system
WO2020029976A1 (en) Vpn cross-domain implementation method, device, and border node
WO2018166252A1 (en) Evpn packet processing method, device and system
US9019814B1 (en) Fast failover in multi-homed ethernet virtual private networks
WO2017162095A1 (en) Communication method, device and system based on flow specification protocol
US9225640B2 (en) Intra-domain and inter-domain bridging over MPLS using MAC distribution via border gateway protocol
JP5579853B2 (en) Method and system for realizing virtual private network
EP2320611B1 (en) Number automatic routing method, updating method, withdrawing method, router and device
US10841216B1 (en) Local-bias forwarding of L2 multicast, unknown unicast, and broadcast traffic for an ethernet VPN
US20170373973A1 (en) Signaling ip address mobility in ethernet virtual private networks
US9100213B1 (en) Synchronizing VPLS gateway MAC addresses
WO2016066072A1 (en) Method and device for realizing communication between nvo3 network and mpls network
US8125926B1 (en) Inter-autonomous system (AS) virtual private local area network service (VPLS)
WO2021196717A1 (en) Multicast traffic transmission method and apparatus, communication node, and storage medium
US8654632B2 (en) Method for fast switching traffic in H-VPLS
WO2015165311A1 (en) Method for transmitting data packet and provider edge device
CN102413060B (en) User private line communication method and equipment used in VPLS (Virtual Private LAN (Local Area Network) Service) network
US20080148386A1 (en) Network packet inspection and forwarding
US20170195135A1 (en) Traffic black holing avoidance and fast convergence for active-active pbb-evpn redundancy
WO2006002598A1 (en) A vpn system of a hybrid-site hybrid backbone network and an implementing method thereof
WO2013139270A1 (en) Method, device, and system for implementing layer3 virtual private network
WO2005125103A1 (en) A virtual private network system of hybrid site and hybrid backbone network and its realizing method
WO2005114944A1 (en) A method for implementing ipv4 and ipv6 mixing sites virtual private network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23829739

Country of ref document: EP

Kind code of ref document: A1