WO2007031006A1 - A virtual switching method which could be routed - Google Patents
A virtual switching method which could be routed Download PDFInfo
- Publication number
- WO2007031006A1 WO2007031006A1 PCT/CN2006/002307 CN2006002307W WO2007031006A1 WO 2007031006 A1 WO2007031006 A1 WO 2007031006A1 CN 2006002307 W CN2006002307 W CN 2006002307W WO 2007031006 A1 WO2007031006 A1 WO 2007031006A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- packet
- processing
- interface
- layer
- priority
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
- H04L67/63—Routing a service request depending on the request content or context
Definitions
- the present invention relates to the field of data network communication technologies, and in particular, to a routable virtual switching method. ' Background technique
- the number of metropolitan area network users is increasing, and the network scale and traffic are also increasing.
- the development direction of the metropolitan area network is from flat and tree to flat, diversified and customized, and the networking tends to be more flexible. Operators are more concerned about the performance-price ratio.
- the support for value-added services is becoming more and more important.
- the requirements for network equipment are no longer simple traffic access and aggregation.
- Metropolitan area network services are becoming more abundant, requiring high-end network equipment to have more powerful service processing capabilities, especially for the aggregation layer network equipment to handle service capabilities: rich Layer 2 functions, MPLS functions, VPN, IP multicast, CDN, network storage, broadband video, e-commerce, V0D, QOS, NAT, IPV6.
- the IP metropolitan area network has new requirements for controllable, service differentiation, service quality, network security, new service support capability, and scalability.
- a single Ethernet technology or routing technology cannot meet the requirements of the current metropolitan area network.
- the operator is not limited to the router and switch mode.
- more and more networks use routing devices to form IP metropolitan area networks. How to provide private line services to large groups through IP networks composed of routers, how to provide Layer 2 services in Layer 3 networks, how to Providing different services for users in the network is one of the problems that need to be solved after the transformation of the metropolitan area network.
- the service access device connects to the user network and the metropolitan area network.
- service access equipment can usually use the following technologies: 1. Multi-protocol label switching Layer 2 and Layer 3 virtual private network (MPLS L2 L3 VPN) technology, respectively, to transparently transmit Layer 2 PPPoE packets.
- MPLS L2 L3 VPN virtual private network
- L3 user access problems 2, three-layer switching technology; 3, virtual switching VS TCH technology.
- the service access device needs to use the pseudowire or virtual private local area network switching (VPLS) technology in the MPLS L2 VPN to transparently transmit the Layer 2 packet for the PPPoE user, and utilize the MPLS L3 VPN ( RFC2547bis) technology provides three layers of users to connect to the carrier network, access public networks or internal networks located in other geographic locations. Both use the label stack to provide transparent transmission of user messages over the carrier network, using the MPLS label stack. Need to be in PE and PE Establish connections, use outer tags (called TUNNEL tags) to penetrate the carrier network, and use inner tags (called VC tags) to distinguish between different VPNs. Through this technology, services such as service differentiation and flow control can be performed.
- VPLS pseudowire or virtual private local area network switching
- this technology has a big disadvantage: It requires high equipment and needs to add more equipment, which complicates the network structure, and the equipment cost and management cost are greatly enhanced.
- the MPLS label also increases the length of the packet and reduces the transmission efficiency of the network.
- the service access device uses Layer 3 switching technology to divide PPPoE access users and Layer 3 access clients into different VLANs, and uses Layer 2 switching and Layer 3 routing functions to complete access.
- Layer 3 switching technology For small networks, access problems can be better solved, but when there are more and more access users, serious VLAN ID shortages will result.
- IEEE802. 1Q the VLAN ID is only 12 bits long. Thus, in the entire Layer 2 network, only 4096 global VLANs can be supported, which is very different from the network operation requirements.
- the use of pure three-layer switching technology is inconsistent with the trend of using network devices to form IP and MPLS metropolitan area networks.
- the inherent broadcast traffic of the Layer 2 network is large and the security is relatively weak. The characteristics cannot be solved.
- the requirements for new services for Layer 3 switches are increasing. The current Layer 3 switching technology cannot meet the requirements.
- the third technology is to enable the virtual switch method on the physical port to establish a switch table in the virtual switch.
- the contents of the switch table include: ingress port, inbound VLAN ID, outbound port, and outbound VLAN ID.
- After the packet enters the virtual switch it searches the switch table based on the inbound port and the inbound VLAN ID of the packet to obtain the outbound and outbound VLAN IDs. If the exchange table does not exchange entries, the message is discarded.
- This technology can solve the problem of PPPoE user access in the problem described in Figure 1. For the access of the three-tier large customer, an additional interface needs to be deployed between the service router and the user SWITCH for special access.
- the general virtual switching technology can efficiently perform Layer 2 packet processing according to the way of VLAN ID and port switching, and can alleviate the problem of insufficient VLAN ID, it is necessary to increase the network structure similar to FIG.
- the investment in equipment and links also affects the simplicity and manageability of the network to a certain extent.
- the requirements for service access devices will increase. Greatly improve.
- the technical problem to be solved by the present invention is to provide a routable virtual switching method, which overcomes the shortcomings of the existing V-SWITCH technology that cannot support virtual switching and three-layer routing simultaneously on one device interface at the network access edge, and solves V- Switch technology cannot connect to customers on the same interface at the same time.
- the present invention provides a routable virtual switching method, which is characterized in that it comprises the following steps:
- Step 1 determining the priority of switching and routing processing on an interface
- Step 2 Wait for the arrival of the device interface data packet
- Step 3 According to the processing priority determined by the interface, perform the exchange processing according to the inbound virtual local area network identifier and the inbound interface number of the data packet, or/and identify and process according to the three layers of information carried in the data packet. Forwarding, where the data packet is not discarded after the priority process fails, but is performed by a low priority process.
- step 1 the priority determining method of the interface is:
- the priority of the interface is the first exchanged route. Otherwise, the priority of the interface is the first route and then the exchange.
- the foregoing routable virtual switching method is characterized in that, in step 2, the validity check of the packet is included, and the validity check of the packet may include a frame check code check, a packet layer structure check, and an inspection step. Also includes:
- the above-mentioned routable virtual switching method is characterized in that, in step 3, the exchange processing is based on the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet to obtain the virtual local area network identifier and the outbound interface processing.
- the Layer 3 processing refers to the process of packet decision, forwarding, and processing according to the information above the link layer in the network layer included in the packet.
- the Layer 3 processing includes searching for a route according to an IP address. And perform packet forwarding decision and processing according to the routing result;
- the protocol processing also includes routing protocol processing.
- the above-mentioned routable virtual switching method is characterized in that the structure of the switching table should include at least an inbound interface, an inbound VLAN ID, an outbound interface, and an outbound VLAN ID, and the exchange table has been previously established through configuration.
- the above-mentioned routable virtual switching method is characterized in that, in step 3, the three-layer processing further includes various encapsulation processing for performing an MPLS network, and also includes service processing according to IP information and an interface, including according to IP.
- the policy routing process performed by the address also includes various processing processes for the information of the second layer or more of the packet.
- the above-mentioned routable virtual switching method is characterized in that, in step 3, the sequence of the switching processing and the three-layer processing is determined according to the priority obtained by the interface, and the high priority process first processes the packet, which is high. Packets that cannot be processed by the priority process are processed into low-quality fe-level processes for processing. If the packets cannot be processed, the packets are discarded.
- the above-mentioned routable virtual switching method is characterized in that, in step 3, if the priority of the interface is first exchanged, after the packet is entered, the exchange table is checked first, and if the exchange table does not indicate, the message is not performed. Discarding, but performing Layer 3 processing or protocol processing based on the information carried in the packet;
- the switch performs the Layer 3 processing or the protocol processing based on the information carried in the packet. If the packet cannot be processed, the packet is not discarded. Exchange processing.
- the destination MAC address is a broadcast MAC address or a multicast MAC address, it is processed by various protocols. If there is no relevant protocol, it is exchanged according to the exchange table.
- the Layer 3 information carried in the packet is processed in three layers.
- the exchange table is checked according to the inbound virtual local area network identifier and the inbound interface number.
- step 3 includes the following steps - Step S31, if the processing priority determined by the interface is the first exchanged routing mode, then go to step S32; otherwise, the processing priority determined by the interface is the first routing and then switching mode, and the process proceeds to step S35;
- Step S32 Search for the exchange table by using the inbound port number of the data packet and the inbound VLAN ID. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist and the search fails, proceed to step S33.
- Step S33 Perform a discriminating process of the destination MAC address. If the broadcast or multicast MAC address is a unicast address equal to the MAC address of the interface, proceed to the next step S34; otherwise, the packet is discarded.
- Step S34 performing further three-layer processing and protocol processing according to the packet type. If it is an IP packet, performing IP service processing, for example, performing route lookup and forwarding according to the destination IP address; if it is a protocol packet, performing local protocol If yes, go to step S38, and the packets that cannot be processed are discarded.
- IP service processing for example, performing route lookup and forwarding according to the destination IP address
- protocol packet performing local protocol If yes, go to step S38, and the packets that cannot be processed are discarded.
- Step S35 performing the determination process of the destination MAC address, if it is a broadcast or multicast MAC address or a unicast address equal to the MAC address of the interface, proceed to the next step S36, otherwise, go to step S37;
- Step S36 Perform further Layer 3 processing and protocol processing according to the packet type. If it is an IP packet, perform IP service processing; if it is a protocol packet, perform local protocol processing, and go to step S38; , proceeds to the next step S37;
- Step S37 Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist, the search fails and the packet is discarded.
- Step S38 Obtain information about the interface, re-encapsulate the packet, and send the packet to the outbound interface.
- the method of the present invention can effectively solve the problem that the V-switch technology cannot perform multiple Layer 2 and Layer 3 service processing on one interface at the same time, and can not only perform high-efficiency Layer 2 exchange of packets, but also can be used in the same manner.
- An interface completes various IP routing services and MPLS services. Expanding the access capabilities of service access devices also enables operators to meet the growing variety of new business requirements of customers with fewer devices and investments.
- the network is simple, easy to maintain and manage, saving more investment for network operators and saving more operating costs.
- FIG. 3 is a detailed flow chart of the present invention.
- FIG. 4 is a network diagram of an application of the routable virtual switching method of the present invention. The best way to implement the invention
- the technical solution of the routable virtual switching method is:
- A Determine the priority of switching and routing processing on an interface
- the data is exchanged according to the incoming virtual local area network identifier and the inbound interface number of the packet, or is identified and processed according to the Layer 3 routing or protocol information carried in the packet. After the packet processing fails in the priority process, the packet is not discarded, but the low priority process is performed.
- step D may include the following information:
- the exchange process is a process of obtaining a virtual local area network identifier and an outbound interface according to the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet;
- Layer 3 processing refers to finding routes based on IP addresses and forwarding packets according to routing results.
- the three-layer processing may also perform various processing of the MPLS network, including other services performed according to IP information and interfaces, such as NAT, multicast, QoS, etc.
- protocol processing refers to configuration Routing protocol processing, such as LACP processing, ARP processing, etc.;
- D3 The sequence of the exchange processing and the three-layer processing is determined according to the priority obtained in the previous step.
- the high priority process processes the packet first, and the high priority process cannot process the packet, and then transfers to the low priority process for processing. , still can not be processed, the message is discarded;
- D4 If the packet is configured to be exchanged first, the packet is checked. If the packet is not displayed, the packet is not discarded. The packet is processed according to the information carried in the packet.
- D5 If the configuration is performed first, the packet is processed first, and then the packet is processed according to the information carried in the packet. If the packet cannot be processed, the packet is not discarded, but the exchange table is continuously checked and exchanged;
- the routing process may include: comparing the destination MAC address of the packet, if the destination MAC is a broadcast MAC address or a multicast MAC address, performing various protocol processing, and if there is no relevant protocol, exchanging according to the exchange table;
- the routing process may further include: comparing the destination MAC address of the packet, if the destination MAC matches the MAC address of the interface, performing three layers of processing according to the three layers of information carried in the packet. If the MAC addresses do not match, they are exchanged according to the exchange table established by the incoming virtual LAN ID and the inbound interface number of the packet.
- the method of implementing the present invention includes the following steps:
- Step S21 Determine the priority of switching and routing processing on an interface, and the priority of the interface includes "first exchanged route” and “first route after exchange”;
- the principle of priority selection is: whether the interface data traffic is mainly exchanged, or is mainly routed, that is, whether the network focuses on switching or on routing. If you are focusing on the exchange processing, select "First exchange after routing”, otherwise select "First route after exchange”.
- Step S22 Waiting for the arrival of the device interface data packet
- Step S23 Check the legality of the data packet. If the packet does not meet the legality, the data packet is discarded.
- the validity check of the packet includes the frame check code check and the packet layer structure check. include: Step S231: Checking the frame check code of the packet, if the frame check code is incorrect, discarding the packet; Step S232: Performing a packet layer structure check according to the interface type and the packet encapsulation type, and the interface type is not limited to Ethernet.
- the interface can include other interfaces such as an ATM interface and a P0S interface.
- the encapsulation format of the packet is checked, and the PPP encapsulation of the packet, the BCP encapsulation, the ATM Routed encapsulation, the ATM Bridged encapsulation, the Ethernet II, the IEEE 802. 1Q encapsulation, etc., are discarded according to the encapsulation protocol, and the encapsulation format packet is not supported. ;
- Step S233 Perform routing and protocol processing directly on the packets that are not bridable.
- Step S24 According to the processing priority determined in step S21, the processing is performed according to the inbound virtual local area network identifier and the inbound interface number of the packet, or the third layer routing or protocol information carried in the packet is identified and processed. After the packet processing fails in the priority process, the packet is not discarded, but is processed in a low priority process.
- the exchange process is a process of obtaining a virtual local area network identifier and an outbound interface according to the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet.
- the interface is selected and the virtual local area network identifier is exchanged.
- the structure of the exchange table should at least include (incoming interface, inbound VLAN ID, outbound interface, outbound VLAN ID), and the exchange table has been established through configuration or other means.
- the VLAN ID can take the value 0 or other value that does not conflict with the legal VLAN ID. If the switch table finds a hit, it is obtained from the exchange table (outbound interface, outbound). VLAN ID), the packet is re-encapsulated according to the VLAN ID, and the packet is sent to the outbound interface to complete the exchange process.
- Layer 3 processing refers to finding routes based on IP addresses and performing packet forwarding decisions and processing based on the routing results.
- the Layer 3 processing may also perform various encapsulation processing of the MPLS network, including other services performed according to IP information and interfaces, such as MPLS, NAT, multicast, QoS, etc.; protocol processing refers to configuration for routing protocol processing, For example, LACP processing, ARP processing, and the like.
- step S24 The specific content of step S24 is different according to the priority determined in step S21. If the mode is set to "first exchange after routing", the packet is first exchanged. When the exchange cannot be processed, it enters Layer 3 processing or performs protocol processing.
- the packet is preferentially routed and protocol processed. When it cannot be routed, or does not meet the routing conditions, or does not meet the protocol processing conditions, enter the exchange. Reason.
- step S24 specifically includes:
- Step S31 If it is the "first exchange after routing” mode, go to step S32, otherwise, it is "first route after exchange” mode, and proceed to step S35;
- Step S32 Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist and the search fails, proceed to step S33.
- Step S33 Perform the determination process of the destination MAC address. If the broadcast or multicast MAC address or the unicast address is equal to the MAC address of the interface, perform the next step. Otherwise, the packet is discarded.
- Step S34 Perform further Layer 3 processing and protocol processing according to the packet type. If the IP packet is an IP packet, perform IP service processing, for example, performing route lookup and forwarding according to the destination IP address, and performing local protocol processing if it is a protocol packet. Go to step S38, the packet that cannot be processed is discarded.
- Step S35 Perform the discriminating process of the destination MAC address. If it is a broadcast or multicast MAC address or a unicast address equal to the MAC address of the interface, proceed to the next step. S36 processing, otherwise, proceeds to step S37;
- Step S36 Perform further Layer 3 processing and protocol processing according to the packet type. If it is an IP packet, perform IP service processing, for example, performing route lookup and forwarding according to the destination IP address, and performing local protocol processing if it is a protocol packet. Go to step S38, the message that cannot be processed, go to the next step S37;
- IP service processing for example, performing route lookup and forwarding according to the destination IP address, and performing local protocol processing if it is a protocol packet.
- Step S37 Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist, the search fails and the packet is discarded.
- Step S38 Obtain information about the outbound interface, re-encapsulate the packet, and send the packet to the outbound interface.
- Step S39 End of the step
- the network includes two types of users: PPPoE access users and IP users. Two types of users connect to the service access router through the same interface, and the service access router connects the BAS device and the public network.
- the service access router connects to the user through the interface INT-A, and connects to the PPPoE access user through VLAN-1, and the IP user connects through the Ethernet interface.
- the packet is encapsulated in Ethernetll, and the service access router connected to the IP user allocates an address.
- IP_A Service access router and BAS equipment
- the connected interface is INT_B, which assigns VLAN-2.
- the interface connecting the service access router to the public network is INT_C, and the assigned address is IPJ. Assume that the work P address of the site D to be accessed is IP-D.
- the routable virtual switching method of the present invention is used in a service router.
- the exchange table is created.
- the contents of the exchange table include entries: (INT—A, VLAN— 1, INT—B, VLAN—2), and the index of the entry is (INT—A, VLAN—1).
- the exchange table also includes entries: (INT—B, VLAN_2, INT—A, VLAN—1), and the index of the entry is (INT_B, VLAN—2).
- a routing information table is established.
- the service router has a public network route to be accessed.
- the route includes entries: (IP_D, INT_C), and the contents of the routing entry are respectively the destination IP address to be accessed, IP-D, and the outbound interface INT- (:.
- the priority can be configured as two modes: “first exchange after routing” and “first route after exchange”. After different user packets enter the service router, they will have different processing modes according to different processing priorities. In the network structure in Figure 3, it is configured as "first exchange after routing”.
- the discard operation is not performed and the subsequent processing is continued.
- the destination MAC address is compared. If it is a broadcast MAC address and a multicast MAC address, the service router performs local processing, for example, performing an ARP response operation, so that the IP user can learn the MAC address of the gateway, that is, the service router INT-A. MAC address of the interface.
- the destination MAC address of the subsequent IP packet will be the address of the service router INT_A interface. If the destination MAC address is a unicast address, the destination MAC address of the compare packet and the address of the inbound interface INT A are not equal, and are discarded. If the MAC addresses are equal, they enter the subsequent routes or protocol processing according to the packet type.
- the destination MAC address of the packet to be routed is the same as the address of the interface 1 ⁇ , and the encapsulated IP packet. Therefore, this packet can be sent to and from the routing entry (IP_D, INT-C). Interface INT-C to access the public network.
- the inbound interface and the inbound VLAN ID are (INT_A, VLA _1), and the switch table is searched.
- the W entry (INT_A, VLAN-1, INT_B, VLAN_2) therefore, obtains the outbound interface and outbound VLAN ID, and repackages the packet with the new VLAN ID, VLAN-2, and sends it to INT_B.
- the message arrives at the BAS device.
- the message from the BAS responds from the interface INT_B, uses the virtual local area network to identify the VLAN-2, and the service router searches the exchange table according to (INT-B, VLAN-2) to obtain the entry content (INT-A, VLA one).
- the message can be re-used with the VLAN ID of the encapsulated virtual LAN and sent to the outbound interface INT_A.
- the packet can be returned to the PPPoE user.
- the present invention can distinguish different data flows under one interface, realize high-efficiency VLAN switching, support various rich routing services, routing protocols provided by routers, MPLS functions, and the like. Business functions are supported. It retains the high efficiency of VLAN switching, and also preserves the broadcast isolation and rich features of the router. Various routing services can be operated without being affected.
- the network of the present invention is simple and easy to maintain.
- the method provided by the invention enables an operator to provide high-efficiency Layer 2 virtual switching functions for large customers on one interface, and also provides powerful service processing capabilities, such as expansion capabilities for MPLS, multicast, VPN, and IPV6. Without adding more equipment and access lines.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
—种可路由的虚交换方法 技术领域 Routable virtual exchange method
本发明涉及数据网络通信技术领域, 尤其是涉及一种可路由的虚交换方 法。 ' 背景技术 The present invention relates to the field of data network communication technologies, and in particular, to a routable virtual switching method. ' Background technique
城域网用户的不断增加, 网络规模和流量也随之增加,城域网组网的发展 方向是从星形和树形向扁平化、 多样化、客户化发展, 组网趋于更加灵活。运 营商更加关心性能价格比, 同时对增值业务的支持程度越来越注重,对网络设 备的要求不再是简单的流量接入和汇聚。城域网业务更趋丰富,要求高端网络 设备有更强大的业务处理能力,尤其是对汇聚层网络设备处理业务能力的要求 更高: 丰富的二层功能、 MPLS功能、 VPN、 IP组播、 CDN、 网络存储、 宽带视 频、 电子商务、 V0D、 Q0S、 NAT, IPV6。 对 IP城域网可管可控、业务区分、 服 务质量、 网络安全、新业务支持能力、 可扩展性等方面都有新的要求。单一的 以太技术或者路由技术都不能满足现在城域网组网要求,运营商不在局限于路 由器加交换机这种模式进行组网。与此对应的是, 网络越来越多的采用路由设 备组建 IP城域网, 如何通过由路由器构成的 IP网络给大集团提供专线服务, 如何在三层网络提供二层服务,如何在一个共同的网络中为用户提供不同的业 务, 是城域网改造后需要重点解决的问题之一。 The number of metropolitan area network users is increasing, and the network scale and traffic are also increasing. The development direction of the metropolitan area network is from flat and tree to flat, diversified and customized, and the networking tends to be more flexible. Operators are more concerned about the performance-price ratio. At the same time, the support for value-added services is becoming more and more important. The requirements for network equipment are no longer simple traffic access and aggregation. Metropolitan area network services are becoming more abundant, requiring high-end network equipment to have more powerful service processing capabilities, especially for the aggregation layer network equipment to handle service capabilities: rich Layer 2 functions, MPLS functions, VPN, IP multicast, CDN, network storage, broadband video, e-commerce, V0D, QOS, NAT, IPV6. The IP metropolitan area network has new requirements for controllable, service differentiation, service quality, network security, new service support capability, and scalability. A single Ethernet technology or routing technology cannot meet the requirements of the current metropolitan area network. The operator is not limited to the router and switch mode. Correspondingly, more and more networks use routing devices to form IP metropolitan area networks. How to provide private line services to large groups through IP networks composed of routers, how to provide Layer 2 services in Layer 3 networks, how to Providing different services for users in the network is one of the problems that need to be solved after the transformation of the metropolitan area network.
在图 1所示的应用环境中,业务接入设备连接用户网络和城域网网络,针 对客户不同的需求,需要同时完成二层业务和三层业务功能的接入。在这个网 络环境中, 业务接入设备通常可以使用以下几种技术: 1、 多协议标签交换二 层三层虚拟专用网络 (MPLS L2 L3 VPN)技术, 分别解决二层 PPPoE报文的透 传和 L3用户的接入问题; 2、 三层交换技术; 3、 虚交换 V-S TCH技术。 In the application environment shown in Figure 1, the service access device connects to the user network and the metropolitan area network. To meet the different needs of the customer, you need to complete the access of Layer 2 services and Layer 3 service functions. In this network environment, service access equipment can usually use the following technologies: 1. Multi-protocol label switching Layer 2 and Layer 3 virtual private network (MPLS L2 L3 VPN) technology, respectively, to transparently transmit Layer 2 PPPoE packets. L3 user access problems; 2, three-layer switching technology; 3, virtual switching VS TCH technology.
其中, 在第一种方案中, 业务接入设备需要分别利用 MPLS L2 VPN中的伪 线或者虚拟专用局域网交换(VPLS)技术为 PPPoE用户提供二层报文的透明传 输, 同时利用 MPLS L3 VPN (RFC2547bis ) 技术提供三层用户连接到运营商网 络,访问公众网络或者位于其它地理位置的内部网络。两者都使用标签栈来为 用户报文在运营商网络提供透明传输, 使用 MPLS标签栈。 需要在 PE和 PE之 间建立连接, 利用外层标签(称之为 TUNNEL标签)来穿透运营商网络, 利用 内层标签(称之为 VC标签)来区分不同的 VPN。 通过这种技术可以进行业务 区分, 流量控制等服务。 但是, 这种技术有一个很大的缺点: 对设备要求高, 需要增加更多的设备,使得网络结构复杂化,设备成本和管理成本相应大大增 力口。 此外, MPLS标签也增加了报文的长度, 降低了网络的传输效率。 In the first solution, the service access device needs to use the pseudowire or virtual private local area network switching (VPLS) technology in the MPLS L2 VPN to transparently transmit the Layer 2 packet for the PPPoE user, and utilize the MPLS L3 VPN ( RFC2547bis) technology provides three layers of users to connect to the carrier network, access public networks or internal networks located in other geographic locations. Both use the label stack to provide transparent transmission of user messages over the carrier network, using the MPLS label stack. Need to be in PE and PE Establish connections, use outer tags (called TUNNEL tags) to penetrate the carrier network, and use inner tags (called VC tags) to distinguish between different VPNs. Through this technology, services such as service differentiation and flow control can be performed. However, this technology has a big disadvantage: It requires high equipment and needs to add more equipment, which complicates the network structure, and the equipment cost and management cost are greatly enhanced. In addition, the MPLS label also increases the length of the packet and reduces the transmission efficiency of the network.
第二种方案,业务接入设备使用三层交换技术,将 PPPoE接入用户和三层 接入大客户划分到不同的 VLAN, 分别用二层交换和三层路由功能来完成接入。 对于小型网络,可以比较好的解决接入问题,但是当接入用户越来越多的时候, 会导致严重的 VLAN ID不足问题。 在 IEEE802. 1Q中, VLAN ID长度只有 12比 特, 这样, 在整个二层网络中, 最多只能支持 4096个全局 VLAN, 与网络运营 的要求差别很大。而且, 采用纯粹的三层交换技术, 与网络出现越来越多的采 用路由设备组建 IP和 MPLS城域网的趋势也不符合,一方面二层网络固有的广 播流量大, 安全性比较弱的特点无法解决, 另外一个方面, 要支持越来越多的 新技术,新业务对三层交换机的要求也越发增加, 目前的三层交换技术无法满 足要求。 In the second scheme, the service access device uses Layer 3 switching technology to divide PPPoE access users and Layer 3 access clients into different VLANs, and uses Layer 2 switching and Layer 3 routing functions to complete access. For small networks, access problems can be better solved, but when there are more and more access users, serious VLAN ID shortages will result. In IEEE802. 1Q, the VLAN ID is only 12 bits long. Thus, in the entire Layer 2 network, only 4096 global VLANs can be supported, which is very different from the network operation requirements. Moreover, the use of pure three-layer switching technology is inconsistent with the trend of using network devices to form IP and MPLS metropolitan area networks. On the one hand, the inherent broadcast traffic of the Layer 2 network is large and the security is relatively weak. The characteristics cannot be solved. In another aspect, to support more and more new technologies, the requirements for new services for Layer 3 switches are increasing. The current Layer 3 switching technology cannot meet the requirements.
第三种技术,是在物理端口启用虚交换方法,在虚拟交换机中建立交换表, 交换表的内容包括: 入端口, 入 VLAN ID、 出端口和出 VLAN ID。 报文进入虚 拟交换机后, 根据报文的入端口和入 VLAN ID查找交换表, 获得出端口和出 VLAN ID。 如果交换表没有交换条目, 则将报文丢弃。 这种技术, 能解决图 1 中描述的问题中 PPPoE用户接入的问题,而对于三层大客户的接入,需要在业 务路由器和用户 SWITCH之间另外部署接口, 进行专门的接入。 这样, 虽然一 般的虚交换技术根据 VLAN ID和端口进行交换的方式能高效率的进行二层报文 的处理, 并且能缓解 VLAN ID不足的问题, 但是对类似于图 1的网络结构, 要 增加设备和链路的投资,也在一定程度上影响了网络的简洁性和可管理性, 同 时, 对业务接入设备接口的增加, 当接入客户数量大时,对业务接入设备的要 求会大大提高。 The third technology is to enable the virtual switch method on the physical port to establish a switch table in the virtual switch. The contents of the switch table include: ingress port, inbound VLAN ID, outbound port, and outbound VLAN ID. After the packet enters the virtual switch, it searches the switch table based on the inbound port and the inbound VLAN ID of the packet to obtain the outbound and outbound VLAN IDs. If the exchange table does not exchange entries, the message is discarded. This technology can solve the problem of PPPoE user access in the problem described in Figure 1. For the access of the three-tier large customer, an additional interface needs to be deployed between the service router and the user SWITCH for special access. In this way, although the general virtual switching technology can efficiently perform Layer 2 packet processing according to the way of VLAN ID and port switching, and can alleviate the problem of insufficient VLAN ID, it is necessary to increase the network structure similar to FIG. The investment in equipment and links also affects the simplicity and manageability of the network to a certain extent. At the same time, when the number of access clients increases, the requirements for service access devices will increase. Greatly improve.
发明公开 Invention disclosure
本发明所要解决的技术问题在于提供一种可路由的虚交换方法,克服现有 V - SWITCH技术在网络接入边缘无法在一个设备接口同时支持虚拟交换和三层 路由的技术不足, 解决 V- Switch技术无法在一个相同的接口同时为接入客户 提供二层数据交换功能和丰富的三层业务的问题; 并且,通过本发明, 运营商 能在一个接口上,为大客户同时提供高效率的二层虚拟交换功能,还能提供强 大业务处理能力, 如对 MPLS、组播、 VPN、 IPV6的扩展能力等, 而无需增加更 多的设备和接入线路。 The technical problem to be solved by the present invention is to provide a routable virtual switching method, which overcomes the shortcomings of the existing V-SWITCH technology that cannot support virtual switching and three-layer routing simultaneously on one device interface at the network access edge, and solves V- Switch technology cannot connect to customers on the same interface at the same time. The problem of providing Layer 2 data exchange functions and rich Layer 3 services; and, by the present invention, operators can provide high-efficiency Layer 2 virtual switching functions for large customers on one interface, and provide powerful service processing capabilities. For example, MPLS, multicast, VPN, and IPV6 expansion capabilities, without adding more devices and access lines.
为了实现上述目的,本发明提供了一种可路由的虚交换方法,其特点在于, 包括如下步骤: In order to achieve the above object, the present invention provides a routable virtual switching method, which is characterized in that it comprises the following steps:
步骤 1, 确定在一个接口进行交换和路由处理的优先级; Step 1, determining the priority of switching and routing processing on an interface;
步骤 2, 等待设备接口数据报文的到达; Step 2: Wait for the arrival of the device interface data packet;
步骤 3, 根据接口所确定的处理优先级, 根据所述数据报文的入虚拟局域 网标识和入接口号进行交换处理, 或者 /和根据所述数据报文携带的三层信息 进行识别、处理、转发, 其中所述数据报文在优先进行的过程处理失败后, 不 进行丢弃, 而是进行低优先级过程处理。 Step 3: According to the processing priority determined by the interface, perform the exchange processing according to the inbound virtual local area network identifier and the inbound interface number of the data packet, or/and identify and process according to the three layers of information carried in the data packet. Forwarding, where the data packet is not discarded after the priority process fails, but is performed by a low priority process.
上述的可路由的虛交换方法,其特点在于, 在步骤 1中,接口的优先级确 定方法为: The above routable virtual switching method is characterized in that, in step 1, the priority determining method of the interface is:
如果网络是侧重于交换处理的,则接口的优先级为先交换后路由,否则接 口的优先级为先路由后交换。 If the network is focused on switching, the priority of the interface is the first exchanged route. Otherwise, the priority of the interface is the first route and then the exchange.
上述的可路由的虚交换方法,其特点在于, 在步骤 2中, 包含报文的合法 性检査, 报文的合法性检查可以包括帧校验码检查、报文二层结构检查, 检查 步骤又包括: The foregoing routable virtual switching method is characterized in that, in step 2, the validity check of the packet is included, and the validity check of the packet may include a frame check code check, a packet layer structure check, and an inspection step. Also includes:
检査报文的帧校验码, 如果帧校验码不正确, 丢弃报文; Check the frame check code of the packet. If the frame check code is incorrect, discard the packet.
根据接口类型和报文封装类型进行报文二层结构检查,并以此对应,检查 报文的封装格式, 根据封装协议丢弃错误和不支持封装格式的报文; Checking the Layer 2 structure of the packet based on the interface type and the packet encapsulation type, and checking the encapsulation format of the packet according to the encapsulation protocol, and discarding the packet according to the encapsulation protocol and not supporting the encapsulation format.
对于不是可桥接的报文, 直接进行三层处理。 For packets that are not bridable, three layers of processing are performed directly.
上述的可路由的虚交换方法,其特点在于, 在步骤 3中, 该交换处理是根 据报文的入虚拟局域网标识和入接口号进行的查找交换表以获得出虚拟局域 网标识和出接口的处理过程; The above-mentioned routable virtual switching method is characterized in that, in step 3, the exchange processing is based on the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet to obtain the virtual local area network identifier and the outbound interface processing. Process
该三层处理是指根据报文所包含的网络层次中的链路层以上层次信息进 行报文决策、 转发、 处理过程; 作为常见的三层处理, 该三层处理包括根据 IP地址査找路由, 并根据路由结果进行报文转发决策和处理; The Layer 3 processing refers to the process of packet decision, forwarding, and processing according to the information above the link layer in the network layer included in the packet. As a common Layer 3 processing, the Layer 3 processing includes searching for a route according to an IP address. And perform packet forwarding decision and processing according to the routing result;
该协议处理还包括路由协议处理。 2006/002307 上述的可路由的虚交换方法,其特点在于,该交换表的结构至少应当包括 入接口、 入 VLAN ID、 出接口、 出 VLAN ID, 且该交换表事先已经通过配置建 立。 The protocol processing also includes routing protocol processing. The above-mentioned routable virtual switching method is characterized in that the structure of the switching table should include at least an inbound interface, an inbound VLAN ID, an outbound interface, and an outbound VLAN ID, and the exchange table has been previously established through configuration.
上述的可路由的虚交换方法,其特点在于, 在步骤 3中, 该三层处理还进 一步包含有进行 MPLS网络的各种封装处理,也包括根据 IP信息、接口进行的 业务处理, 包括根据 IP地址进行的策略路由处理, 还包括对报文二层以上信 息进行各种处理过程。 The above-mentioned routable virtual switching method is characterized in that, in step 3, the three-layer processing further includes various encapsulation processing for performing an MPLS network, and also includes service processing according to IP information and an interface, including according to IP. The policy routing process performed by the address also includes various processing processes for the information of the second layer or more of the packet.
上述的可路由的虚交换方法, 其特点在于, 在步骤 3中, 该交换处理和三 层处理的先后顺序是根据接口获得的优先级确定,优先级高的过程先对报文进 行处理, 高优先级过程不能处理的报文, 则转入低优 fe级过程进行处理,仍不 能处理的, 报文被丢弃。 The above-mentioned routable virtual switching method is characterized in that, in step 3, the sequence of the switching processing and the three-layer processing is determined according to the priority obtained by the interface, and the high priority process first processes the packet, which is high. Packets that cannot be processed by the priority process are processed into low-quality fe-level processes for processing. If the packets cannot be processed, the packets are discarded.
上述的可路由的虚交换方法, 其特点在于, 在步骤 3中, 如果接口的优先 级为先进行交换处理,那么报文进入后,先检查交换表,如果交换表没有指示, 报文不进行丢弃, 而是根据报文携带的信息进行三层处理或者协议处理; The above-mentioned routable virtual switching method is characterized in that, in step 3, if the priority of the interface is first exchanged, after the packet is entered, the exchange table is checked first, and if the exchange table does not indicate, the message is not performed. Discarding, but performing Layer 3 processing or protocol processing based on the information carried in the packet;
如果接口的优先级为先进行路由处理,那么报文进入后,先根据报文携带 的信息进行三层处理或者协议处理, 不能处理的, 报文不进行丢弃, 而是继续 检查交换表, 进行交换处理。 If the priority of the interface is the first, the switch performs the Layer 3 processing or the protocol processing based on the information carried in the packet. If the packet cannot be processed, the packet is not discarded. Exchange processing.
上述的可路由的虚交换方法,其特点在于,该三层处理或者协议处理过程 包含如下步骤: The above routable virtual switching method is characterized in that the three-layer processing or protocol processing process comprises the following steps:
比较报文的目的 MAC地址; Compare the destination MAC address of the message;
如果目的 MAC是广播 MAC地址或者组播 MAC地址,进行各种协议处理,没 有相关协议的, 根据交换表进行交换。 If the destination MAC address is a broadcast MAC address or a multicast MAC address, it is processed by various protocols. If there is no relevant protocol, it is exchanged according to the exchange table.
上述的可路由的虚交换方法,其特点在于,该三层处理或者协议处理过程 还进一步包含如下步骤: The above routable virtual switching method is characterized in that the three-layer processing or protocol processing further includes the following steps:
比较报文的目的 MAC地址; Compare the destination MAC address of the message;
如果目的 MAC跟接口的 MAC地址相符,则根据报文携带的三层信息进行三 层处理; If the destination MAC address matches the MAC address of the interface, the Layer 3 information carried in the packet is processed in three layers.
如果 MAC地址不相符,则根据报文的入虚拟局域网标识和入接口号检查建 立的交换表进行交换。 If the MAC addresses do not match, the exchange table is checked according to the inbound virtual local area network identifier and the inbound interface number.
上述的可路由的虚交换方法, 其特点在于, 该步骤 3包括如下步骤- 步骤 S31, 如果接口所确定的处理优先级是先交换后路由模式, 则转到步 骤 S32,否则,该接口所确定的处理优先级是先路由后交换模式,转入步骤 S35 处理; The above routable virtual switching method is characterized in that the step 3 includes the following steps - Step S31, if the processing priority determined by the interface is the first exchanged routing mode, then go to step S32; otherwise, the processing priority determined by the interface is the first routing and then switching mode, and the process proceeds to step S35;
步骤 S32, 用数据报文的入端口号和入 VLAN ID号查找交换表, 如果转发 表査找成功, 转步骤 S38, 如果查找转发表条目不存在, 查找失败, 则进行歩 骤 S33处理; Step S32: Search for the exchange table by using the inbound port number of the data packet and the inbound VLAN ID. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist and the search fails, proceed to step S33.
步骤 S33, 进行目的 MAC地址的判别处理, 如果是广播或者组播 MAC地址 或者是与接口的 MAC地址相等的单播地址,进行下一步骤 S34处理, 否则, 报 文被丢弃; Step S33: Perform a discriminating process of the destination MAC address. If the broadcast or multicast MAC address is a unicast address equal to the MAC address of the interface, proceed to the next step S34; otherwise, the packet is discarded.
歩骤 S34, 根据报文类型进行进一步的三层处理和协议处理, 如果是 IP 报文, 迸行 IP业务处理, 例如根据目的 IP地址, 进行路由查找转发; 如果是 协议报文, 进行本地协议处理, 转步骤 S38, 不能处理的报文则被丢弃。 Step S34, performing further three-layer processing and protocol processing according to the packet type. If it is an IP packet, performing IP service processing, for example, performing route lookup and forwarding according to the destination IP address; if it is a protocol packet, performing local protocol If yes, go to step S38, and the packets that cannot be processed are discarded.
步骤 S35, 进行目的 MAC地址的判别处理, 如果是广播或者组播 MAC地址 或者是与接口的 MAC地址相等的单播地址, 进行下一步骤 S36处理,否则, 转 入步骤 S37; Step S35, performing the determination process of the destination MAC address, if it is a broadcast or multicast MAC address or a unicast address equal to the MAC address of the interface, proceed to the next step S36, otherwise, go to step S37;
步骤 S36, 根据报文类型进行进一步的三层处理和协议处理, 如果是 IP 报文, 进行 IP业务处理; 如果是协议报文, 进行本地协议处理, 并转到步骤 S38; 不能处理的报文, 转入下一步骤 S37; Step S36: Perform further Layer 3 processing and protocol processing according to the packet type. If it is an IP packet, perform IP service processing; if it is a protocol packet, perform local protocol processing, and go to step S38; , proceeds to the next step S37;
步骤 S37, 用数据报文的入端口号和入 VLAN ID号查找交换表, 如果转发 表査找成功, 转到歩骤 S38, 如果査找转发表条目不存在, 査找失败, 报文被 丢弃; Step S37: Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist, the search fails and the packet is discarded.
步骤 S38, 获得出接口的有关信息, 重新封装报文, 发送到出接口; 歩骤 S39: 步骤结束。 Step S38: Obtain information about the interface, re-encapsulate the packet, and send the packet to the outbound interface. Step S39: The step ends.
采用本发明所述方法, 可以有效地解决 V- Switch技术无法同时在一个接 口进行多种二层、三层业务处理的不足,不仅可以高效率的进行报文的二层交 换,还可以在同一个接口完成各种 IP路由业务和 MPLS业务。扩大了业务接入 设备的接入能力,也使得运营商能用更少的设备和投资满足客户日益增长的各 种新业务要求。 The method of the present invention can effectively solve the problem that the V-switch technology cannot perform multiple Layer 2 and Layer 3 service processing on one interface at the same time, and can not only perform high-efficiency Layer 2 exchange of packets, but also can be used in the same manner. An interface completes various IP routing services and MPLS services. Expanding the access capabilities of service access devices also enables operators to meet the growing variety of new business requirements of customers with fewer devices and investments.
( 1 ) 同时在一个接口为大客户提供二层和丰富的三层业务, 既可以提供 PPPoE接入服务和其它虚拟链路功能, 又可以提供其它的各种 IP路由服务, 甚至还可以提供包括 MPLS L2 VPN, MPLS L3 VPN在内的各种 MPLS服务;(1) Simultaneously provide Layer 2 and rich Layer 3 services for large customers on one interface, which can provide PPPoE access services and other virtual link functions, and provide various other IP routing services. It can even provide various MPLS services including MPLS L2 VPN and MPLS L3 VPN.
(2) 保留了路由具备的各种功能丰富、 广播隔离等特点, 又增加了根据 入接口 +VLANID进行高效率的报文交换的处理, 简化了交换报文的过程, 更能 高效率处理报文; (2) It retains the features of the route and the broadcast isolation. It also increases the efficient packet exchange according to the inbound interface + VLAN ID, which simplifies the process of exchanging packets and processes the packets more efficiently. Text
(3 ) 相对于 MPLS VPN, 无须在报文上增加额外的标签, 可以有更好的网 络的传输效率; (3) Compared with MPLS VPN, there is no need to add extra labels to the packets, which can have better network transmission efficiency;
(4) 网络简单, 容易维护管理, 为网络运营商节省更多的投资, 节省更 多的运营成本。 (4) The network is simple, easy to maintain and manage, saving more investment for network operators and saving more operating costs.
以下结合附图和具体实施例对本发明进行详细描述,但不作为对本发明的 限定。 附图简要说明 The invention is described in detail below with reference to the accompanying drawings and specific embodiments. BRIEF DESCRIPTION OF THE DRAWINGS
图 1是现有技术中的一种需求组网图; 1 is a network diagram of requirements in the prior art;
图 2是实现本发明的流程示意图; 2 is a schematic flow chart of implementing the present invention;
图 3是本发明的详细流程图; Figure 3 is a detailed flow chart of the present invention;
图 4是本发明可路由的虚交换方法一个应用组网图。 实现本发明的最佳方式 4 is a network diagram of an application of the routable virtual switching method of the present invention. The best way to implement the invention
在本发明中, 可路由的虚交换方法的技术方案是: In the present invention, the technical solution of the routable virtual switching method is:
A: 确定在一个接口进行交换和路由处理的优先级; A: Determine the priority of switching and routing processing on an interface;
B: 等待设备接口数据报文的到达; B: Wait for the arrival of the device interface data packet;
C: 检査数据报文的合法性, 如果报文不符合合法性, 则丢弃错误数据报 文; C: Check the validity of the data packet. If the packet does not meet the legality, the error data packet is discarded.
D: 根据确定的处理优先级, 根据报文的入虚拟局域网标识和入接口号进 行交换处理, 或者根据报文携带的三层路由或者协议信息进行识别、 处理。报 文在优先进行的过程处理失败后, 不进行丢弃, 而是进行低优先级过程处理。 D: According to the determined processing priority, the data is exchanged according to the incoming virtual local area network identifier and the inbound interface number of the packet, or is identified and processed according to the Layer 3 routing or protocol information carried in the packet. After the packet processing fails in the priority process, the packet is not discarded, but the low priority process is performed.
进一步地, 步骤 D可以包括以下信息: Further, step D may include the following information:
D1:交换处理是根据报文的入虚拟局域网标识和入接口号进行的查找交换 表以获得出虚拟局域网标识和出接口的处理过程; D1: The exchange process is a process of obtaining a virtual local area network identifier and an outbound interface according to the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet;
D2: 三层处理是指根据 IP地址査找路由, 根据路由结果进行报文转发决 策和处理; 同时, 三层处理还可能进行 MPLS网络的各种处理, 也包括根据 IP 信息、 接口进行的其它业务, 例如 NAT、 组播、 QoS等路由器处理过程; 协议 处理是指进行配置进行路由协议处理, 例如 LACP处理, ARP处理等; D2: Layer 3 processing refers to finding routes based on IP addresses and forwarding packets according to routing results. At the same time, the three-layer processing may also perform various processing of the MPLS network, including other services performed according to IP information and interfaces, such as NAT, multicast, QoS, etc.; protocol processing refers to configuration Routing protocol processing, such as LACP processing, ARP processing, etc.;
D3:交换处理和三层处理的先后顺序根据前面获得的优先级确定,优先级 高的过程先对报文进行处理,高优先级过程不能处理的报文, 则转入低优先级 过程进行处理, 仍不能处理的, 报文被丢弃; D3: The sequence of the exchange processing and the three-layer processing is determined according to the priority obtained in the previous step. The high priority process processes the packet first, and the high priority process cannot process the packet, and then transfers to the low priority process for processing. , still can not be processed, the message is discarded;
D4: 如果配置为先进行交换处理, 那么报文进入后, 先检查交换表, 如果 交换表没有指示,报文不进行丢弃,而是根据报文携带的信息进行三层处理或 者协议处理; D4: If the packet is configured to be exchanged first, the packet is checked. If the packet is not displayed, the packet is not discarded. The packet is processed according to the information carried in the packet.
D5: 如果配置为先进行路由处理, 那么报文进入后, 先根据报文携带的信 息进行三层处理或者协议处理。不能处理的, 报文不进行丢弃, 而是继续检查 交换表, 进行交换处理; D5: If the configuration is performed first, the packet is processed first, and then the packet is processed according to the information carried in the packet. If the packet cannot be processed, the packet is not discarded, but the exchange table is continuously checked and exchanged;
D6: 路由处理过程可以包含: 比较报文的目的 MAC地址, 如果目的 MAC 是广播 MAC地址或者组播 MAC地址, 进行各种协议处理, 没有相关协议的, 根 据交换表进行交换; D6: The routing process may include: comparing the destination MAC address of the packet, if the destination MAC is a broadcast MAC address or a multicast MAC address, performing various protocol processing, and if there is no relevant protocol, exchanging according to the exchange table;
D7: 路由处理过程还可以包含: 比较报文的目的 MAC地址, 如果目的 MAC 跟接口的 MAC地址相符, 则根据报文携带的三层信息进行三层处理。 如果 MAC 地址不相符,则根据报文的入虚拟局域网标识和入接口号检查建立的交换表进 行交换。 D7: The routing process may further include: comparing the destination MAC address of the packet, if the destination MAC matches the MAC address of the interface, performing three layers of processing according to the three layers of information carried in the packet. If the MAC addresses do not match, they are exchanged according to the exchange table established by the incoming virtual LAN ID and the inbound interface number of the packet.
下面结合附图和具体实施例详细说明本发明的技术方案。 The technical solution of the present invention will be described in detail below with reference to the accompanying drawings and specific embodiments.
如图 2所示, 实现本发明的方法包括以下步骤: As shown in FIG. 2, the method of implementing the present invention includes the following steps:
步骤 S21 : 确定在一个接口进行交换和路由处理的优先级, 接口的优先级 包括 "先交换后路由"和 "先路由后交换" ; Step S21: Determine the priority of switching and routing processing on an interface, and the priority of the interface includes "first exchanged route" and "first route after exchange";
优先级选择的原则是:接口数据流量主要是要进行交换处理的,还是主要 进行路由处理的, 即网络是侧重于交换, 还是侧重于路由。如果是侧重于交换 处理的, 则选择 "先交换后路由" , 否则选择 "先路由后交换" 。 The principle of priority selection is: whether the interface data traffic is mainly exchanged, or is mainly routed, that is, whether the network focuses on switching or on routing. If you are focusing on the exchange processing, select "First exchange after routing", otherwise select "First route after exchange".
步骤 S22: 等待设备接口数据报文的到达; Step S22: Waiting for the arrival of the device interface data packet;
步骤 S23: 检査数据报文的合法性, 如果报文不符合合法性, 则丢弃数据 报文; 其中报文的合法性检查包括帧校验码检查、报文二层结构检查, 检査步 骤包括: 步骤 S231 : 检查报文的帧校验码, 如果帧校验码不正确, 丢弃报文; 步骤 S232: 根据接口类型和报文封装类型进行报文二层结构检査, 接口 类型不限于以太网接口,可以包括 ATM接口, P0S接口等其它接口。以此对应, 检查报文的封装格式, 区分报文的 PPP封装, BCP封装, ATM Routed封装, ATM Bridged封装, EthernetII, IEEE802. 1Q封装等, 根据封装协议, 丢弃错误和 不支持封装格式报文; Step S23: Check the legality of the data packet. If the packet does not meet the legality, the data packet is discarded. The validity check of the packet includes the frame check code check and the packet layer structure check. include: Step S231: Checking the frame check code of the packet, if the frame check code is incorrect, discarding the packet; Step S232: Performing a packet layer structure check according to the interface type and the packet encapsulation type, and the interface type is not limited to Ethernet. The interface can include other interfaces such as an ATM interface and a P0S interface. Correspondingly, the encapsulation format of the packet is checked, and the PPP encapsulation of the packet, the BCP encapsulation, the ATM Routed encapsulation, the ATM Bridged encapsulation, the Ethernet II, the IEEE 802. 1Q encapsulation, etc., are discarded according to the encapsulation protocol, and the encapsulation format packet is not supported. ;
步骤 S233: 对于不是可桥接的报文, 直接进行路由和协议处理。 Step S233: Perform routing and protocol processing directly on the packets that are not bridable.
步骤 S24: 根据步骤 S21确定的处理优先级, 根据报文的入虚拟局域网标 识和入接口号进行交换处理,或者根据报文携带的三层路由或者协议信息进行 识别、 处理。报文在优先进行的过程处理失败后, 不进行丢弃, 而是进行低优 先级过程处理。 Step S24: According to the processing priority determined in step S21, the processing is performed according to the inbound virtual local area network identifier and the inbound interface number of the packet, or the third layer routing or protocol information carried in the packet is identified and processed. After the packet processing fails in the priority process, the packet is not discarded, but is processed in a low priority process.
其中,交换处理是根据报文的入虚拟局域网标识和入接口号进行的查找交 换表以获得出虚拟局域网标识和出接口的处理过程。 The exchange process is a process of obtaining a virtual local area network identifier and an outbound interface according to the lookup exchange table of the virtual local area network identifier and the inbound interface number of the packet.
根据报文的入虚拟局域网标识和入接口号捡査建立的交换表,进行选择出 接口、 出虚拟局域网标识进行交换处^ S。 According to the entry of the virtual local area network identifier and the inbound interface number of the packet, the interface is selected and the virtual local area network identifier is exchanged.
这里,交换表的结构至少应当包括(入接口、入 VLAN ID、出接口、出 VLAN ID) , 交换表已经通过配置或者其它方式建立。 Here, the structure of the exchange table should at least include (incoming interface, inbound VLAN ID, outbound interface, outbound VLAN ID), and the exchange table has been established through configuration or other means.
如果桥接的报文没有包含 VLAN封装, 其中的 VLANID可以取值 0或者其 它与合法 VLAN ID不会冲突的数值, 查找交换表, 如果交换表查找命中, 则从 交换表中取得 (出接口、 出 VLAN ID) , 将报文根据这个 VLAN ID进行重新封 装, 将报文发送到出接口, 完成交换过程。 If the bridged packet does not contain a VLAN encapsulation, the VLAN ID can take the value 0 or other value that does not conflict with the legal VLAN ID. If the switch table finds a hit, it is obtained from the exchange table (outbound interface, outbound). VLAN ID), the packet is re-encapsulated according to the VLAN ID, and the packet is sent to the outbound interface to complete the exchange process.
另外, 三层处理是指根据 IP地址查找路由, 根据路由结果进行报文转发 决策和处理。 同时, 三层处理还可能进行 MPLS网络的各种封装处理, 也包括 根据 IP信息、接口进行的其它业务, 例如 MPLS、 NAT. 组播、 QoS等; 协议处 理是指进行配置进行路由协议处理, 例如 LACP处理, ARP处理等。 In addition, Layer 3 processing refers to finding routes based on IP addresses and performing packet forwarding decisions and processing based on the routing results. At the same time, the Layer 3 processing may also perform various encapsulation processing of the MPLS network, including other services performed according to IP information and interfaces, such as MPLS, NAT, multicast, QoS, etc.; protocol processing refers to configuration for routing protocol processing, For example, LACP processing, ARP processing, and the like.
根据步骤 S21确定的优先级的不同, 步骤 S24的具体内容有所不同。 如果配置为 "先交换后路由"模式,报文先进行交换处理, 当交换不能处 理时, 进入三层处理或者进行协议处理。 The specific content of step S24 is different according to the priority determined in step S21. If the mode is set to "first exchange after routing", the packet is first exchanged. When the exchange cannot be processed, it enters Layer 3 processing or performs protocol processing.
如果配置为 "先路由再交换"模式, 报文优先先进行路由和协议处理, 当 不能被路由, 或者不符合路由条件, 或者不符合协议处理条件时,进入交换处 理。 If the configuration is "first route re-switching" mode, the packet is preferentially routed and protocol processed. When it cannot be routed, or does not meet the routing conditions, or does not meet the protocol processing conditions, enter the exchange. Reason.
参考图 3, 步骤 S24具体包括: Referring to FIG. 3, step S24 specifically includes:
步骤 S31: 如果是 "先交换后路由"模式, 则转到步骤 S32, 否则, 是"先 路由后交换"模式, 转入步骤 S35处理; Step S31: If it is the "first exchange after routing" mode, go to step S32, otherwise, it is "first route after exchange" mode, and proceed to step S35;
步骤 S32: 用数据报文的入端口号和入 VLAN ID号查找交换表, 如果转发 表查找成功, 转入步骤 S38, 如果查找转发表条目不存在, 查找失败, 则进行 步骤 S33处理; Step S32: Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist and the search fails, proceed to step S33.
步骤 S33: 进行目的 MAC地址的判别处理, 如果是广播或者组播 MAC地址 或者是与接口的 MAC地址相等的单播地址, 进行下一步骤处理, 否则, 报文被 丢弃; Step S33: Perform the determination process of the destination MAC address. If the broadcast or multicast MAC address or the unicast address is equal to the MAC address of the interface, perform the next step. Otherwise, the packet is discarded.
步骤 S34: 根据报文类型进行进一步的三层处理和协议处理, 如果是 IP 报文, 进行 IP业务处理, 例如根据目的 IP地址, 进行路由査找转发, 如果是 协议报文, 进行本地协议处理, 转入步骤 S38, 不能处理的报文, 被丢弃; 步骤 S35: 进行目的 MAC地址的判别处理, 如果是广播或者组播 MAC地址 或者是与接口的 MAC地址相等的单播地址, 进行下一步骤 S36处理, 否则, 转 入步骤 S37; Step S34: Perform further Layer 3 processing and protocol processing according to the packet type. If the IP packet is an IP packet, perform IP service processing, for example, performing route lookup and forwarding according to the destination IP address, and performing local protocol processing if it is a protocol packet. Go to step S38, the packet that cannot be processed is discarded. Step S35: Perform the discriminating process of the destination MAC address. If it is a broadcast or multicast MAC address or a unicast address equal to the MAC address of the interface, proceed to the next step. S36 processing, otherwise, proceeds to step S37;
步骤 S36: 根据报文类型进行进一步的三层处理和协议处理, 如果是 IP 报文, 进行 IP业务处理, 例如根据目的 IP地址, 进行路由査找转发, 如果是 协议报文, 进行本地协议处理, 转入步骤 S38, 不能处理的报文, 转入下一步 骤 S37; Step S36: Perform further Layer 3 processing and protocol processing according to the packet type. If it is an IP packet, perform IP service processing, for example, performing route lookup and forwarding according to the destination IP address, and performing local protocol processing if it is a protocol packet. Go to step S38, the message that cannot be processed, go to the next step S37;
步骤 S37: 用数据报文的入端口号和入 VLAN ID号查找交换表, 如果转发 表查找成功, 转入步骤 S38, 如果查找转发表条目不存在, 查找失败, 报文被 丢弃; Step S37: Searching for the exchange table by using the inbound port number and the inbound VLAN ID of the data packet. If the forwarding table is found successfully, go to step S38. If the lookup forwarding table entry does not exist, the search fails and the packet is discarded.
步骤 S38: 获得出接口的有关信息, 重新封装报文, 发送到出接口; 步骤 S39: 步骤结束 Step S38: Obtain information about the outbound interface, re-encapsulate the packet, and send the packet to the outbound interface. Step S39: End of the step
如图 4所示, 网络中包括两类用户: PPPoE接入用户和 IP用户。 两类用 户通过同一个接口连接到业务接入路由器,业务接入路由器连接 BAS设备和公 众网络。 业务接入路由器与用户连接的接口是 INT一 A, 通过 VLAN—1与 PPPoE 接入用户连接, 而 IP用户通过以太网接口连接, 报文使用 Ethernetll封装, IP用户连接的业务接入路由器分配地址为 IP_A。 业务接入路由器与 BAS设备 连接的接口是 INT—B,分配 VLAN— 2。业务接入路由器与公众网络连接的接口是 INT_C, 分配地址为 IPJ。 假设要访问的站点 D的工 P地址为 IP—D。 As shown in Figure 4, the network includes two types of users: PPPoE access users and IP users. Two types of users connect to the service access router through the same interface, and the service access router connects the BAS device and the public network. The service access router connects to the user through the interface INT-A, and connects to the PPPoE access user through VLAN-1, and the IP user connects through the Ethernet interface. The packet is encapsulated in Ethernetll, and the service access router connected to the IP user allocates an address. For IP_A. Service access router and BAS equipment The connected interface is INT_B, which assigns VLAN-2. The interface connecting the service access router to the public network is INT_C, and the assigned address is IPJ. Assume that the work P address of the site D to be accessed is IP-D.
在业务路由器使用本发明的可路由的虚交换方法。建立交换表,交换表的 内容包括条目: (INT— A, VLAN— 1, INT— B, VLAN— 2) , 条目的索引是 (INT— A, VLAN— 1 ) 。 交换表还包括条目: (INT— B, VLAN_2, INT— A, VLAN— 1 ) , 条目的 索引是(INT_B, VLAN— 2) 。 建立路由信息表, 业务路由器有要访问的公众网 络路由, 路由包括条目: (IP_D, INT_C) , 路由条目内容分别为要访问的目 的 IP地址 IP— D, 出接口 INT— (:。 The routable virtual switching method of the present invention is used in a service router. The exchange table is created. The contents of the exchange table include entries: (INT—A, VLAN— 1, INT—B, VLAN—2), and the index of the entry is (INT—A, VLAN—1). The exchange table also includes entries: (INT—B, VLAN_2, INT—A, VLAN—1), and the index of the entry is (INT_B, VLAN—2). A routing information table is established. The service router has a public network route to be accessed. The route includes entries: (IP_D, INT_C), and the contents of the routing entry are respectively the destination IP address to be accessed, IP-D, and the outbound interface INT- (:.
优先级可以配置为 "先交换后路由"和 "先路由后交换"两种模式。不同 的用户报文进入业务路由器后, 根据不同的处理优先级会有不同的处理方式。 在图 3中的网络结构中, 配置为 "先交换后路由方式"。 The priority can be configured as two modes: "first exchange after routing" and "first route after exchange". After different user packets enter the service router, they will have different processing modes according to different processing priorities. In the network structure in Figure 3, it is configured as "first exchange after routing".
应用本发明在 "先交换再路由"模式下进行报文转发的处理过程描述如下。 IP用户报文进入业务路由器后, 首先进行报文合法性的检查, 丢弃错误 的报文。 因为已经确定是 "先交换后路由模式", 取报文的 VLAN ID, 在这个 具体案例中, 进入的报文是 ETHERNET II封装格式, 按照系统默认配置, 取 VLANID = 0, 取得入接口为 INT— A。 然后根据 (入接口, 入 VLANID) , 也就是 (INT_A, 0)査找交换表。 交换表中没有这条条目, 查找失败返回, 因此这个 报文不进行交换处理, 而是继续进行后续的路由处理或者协议处理。 The process of packet forwarding in the "first exchange rerouting" mode using the present invention is described as follows. After an IP user enters the service router, the device checks the validity of the packet and discards the incorrect packet. Because it has been determined that it is the "first exchange after routing mode", the VLAN ID of the packet is taken. In this specific case, the incoming packet is in the ETHERNET II encapsulation format. According to the system default configuration, the VLAN ID = 0, and the incoming interface is INT. — A. Then look up the exchange table according to (incoming interface, incoming VLANID), that is, (INT_A, 0). If there is no such entry in the exchange table, the search fails and returns. Therefore, the message is not exchanged, but the subsequent route processing or protocol processing is continued.
IP用户报文不进行交换处理后, 不进行丢弃操作, 继续转入后续的处理 过程。首先比较目的 MAC地址, 如果是广播 MAC地址和组播 MAC地址, 则在业 务路由器进行本地处理, 例如进行 ARP回应操作, 这样, IP用户能够学习到 网关的 MAC地址, 也就是业务路由器 INT— A接口的 MAC地址。 后续 IP报文的 目的 MAC地址将会是业务路由器 INT_A接口的地址。如果目的 MAC地址是单播 地址, 则比较报文的目的 MAC地址和入接口 INT一 A的地址, 不相等, 则丢弃。 MAC地址相等, 则根据报文类型进入后续的路由或者协议处理。在本实施案例 中,要路由的报文的目的 MAC与接口 1^^ 的 ( 地址相等,封装的 IP报文。 因此, 这个报文能根据路由条目 (IP_D, INT—C)被发送到出接口 INT—C, 从 而访问公众网络。 After the IP user packet is not exchanged, the discard operation is not performed and the subsequent processing is continued. First, the destination MAC address is compared. If it is a broadcast MAC address and a multicast MAC address, the service router performs local processing, for example, performing an ARP response operation, so that the IP user can learn the MAC address of the gateway, that is, the service router INT-A. MAC address of the interface. The destination MAC address of the subsequent IP packet will be the address of the service router INT_A interface. If the destination MAC address is a unicast address, the destination MAC address of the compare packet and the address of the inbound interface INT A are not equal, and are discarded. If the MAC addresses are equal, they enter the subsequent routes or protocol processing according to the packet type. In this embodiment, the destination MAC address of the packet to be routed is the same as the address of the interface 1^^, and the encapsulated IP packet. Therefore, this packet can be sent to and from the routing entry (IP_D, INT-C). Interface INT-C to access the public network.
图 4中的 PPPoE用户报文进入到业务路由器后,进行合法性检查后,取得 入接口和入 VLAN ID为 (INT_A, VLA _1 ) , 查找交换表, 因交换表存在这个 W 条目 (INT— A, VLAN— 1, INT— B, VLAN_2) , 因此, 获得出接口和出 VLAN ID, 用新的 VLAN ID, 即 VLAN— 2进行报文重新封装, 发送到 INT_B。 报文到达 BAS 设备。 同样, 从 BAS回应的报文, 从接口 INT— B进入, 使用虚拟局域网标识 VLAN— 2,业务路由器根据(INT—B, VLAN一 2)查找交换表,获得条目内容(INT—A, VLA一 1 ) , 报文可以重新用封装上虚拟局域网标识 VLAN_1后, 发送到出接口 INT_A, 报文可以返回给 PPPoE用户。 After the PPPoE user packet enters the service router in Figure 4, the legality check is performed. The inbound interface and the inbound VLAN ID are (INT_A, VLA _1), and the switch table is searched. The W entry (INT_A, VLAN-1, INT_B, VLAN_2), therefore, obtains the outbound interface and outbound VLAN ID, and repackages the packet with the new VLAN ID, VLAN-2, and sends it to INT_B. The message arrives at the BAS device. Similarly, the message from the BAS responds from the interface INT_B, uses the virtual local area network to identify the VLAN-2, and the service router searches the exchange table according to (INT-B, VLAN-2) to obtain the entry content (INT-A, VLA one). 1) The message can be re-used with the VLAN ID of the encapsulated virtual LAN and sent to the outbound interface INT_A. The packet can be returned to the PPPoE user.
从上面的实施例中可以看到, 本发明能够在一个接口下区分不同的数据 流, 同时实现高效率的 VLAN交换, 支持各种丰富的路由业务, 路由器所具备 的路由协议, MPLS功能, 其它业务功能都能够支持。 保留了 VLAN交换的高效 率的特点, 也保留了路由器所具备的广播隔离,业务丰富的特点, 各种路由业 务可以不受影响运行。 It can be seen from the above embodiments that the present invention can distinguish different data flows under one interface, realize high-efficiency VLAN switching, support various rich routing services, routing protocols provided by routers, MPLS functions, and the like. Business functions are supported. It retains the high efficiency of VLAN switching, and also preserves the broadcast isolation and rich features of the router. Various routing services can be operated without being affected.
当然,本发明还可有其它多种实施例,在不背离本发明精神及其实质的情 况下,熟悉本领域的技术人员当可根据本发明作出各种相应的改变和变形,但 这些相应的改变和变形都应属于本发明所附的权利要求的保护范围。 . 工业应用性 The invention may, of course, be embodied in a variety of other embodiments without departing from the spirit and scope of the invention. Changes and modifications are intended to be included within the scope of the appended claims. Industrial applicability
本发明的网络简单,易于维护。本发明提供的方法使运营商能在一个接口 上,为大客户同时提供高效率的二层虚拟交换功能,还能提供强大业务处理能 力, 如对 MPLS、 组播、 VPN、 IPV6的扩展能力等, 而无需增加更多的设备和接 入线路。 The network of the present invention is simple and easy to maintain. The method provided by the invention enables an operator to provide high-efficiency Layer 2 virtual switching functions for large customers on one interface, and also provides powerful service processing capabilities, such as expansion capabilities for MPLS, multicast, VPN, and IPV6. Without adding more equipment and access lines.
Claims
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100864175A CN100373892C (en) | 2005-09-13 | 2005-09-13 | Routable virtual exchange method |
| CN200510086417.5 | 2005-09-13 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| WO2007031006A1 true WO2007031006A1 (en) | 2007-03-22 |
| WO2007031006A8 WO2007031006A8 (en) | 2007-05-03 |
Family
ID=36093717
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/CN2006/002307 WO2007031006A1 (en) | 2005-09-13 | 2006-09-07 | A virtual switching method which could be routed |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN100373892C (en) |
| WO (1) | WO2007031006A1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114006806A (en) * | 2021-10-26 | 2022-02-01 | 苏州浪潮智能科技有限公司 | Packet processing method, device, switch device and storage medium |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101009705B (en) * | 2007-01-30 | 2010-07-28 | 华为技术有限公司 | Method and related device for forwarding data frame |
| CN102055753B (en) * | 2009-10-29 | 2015-06-03 | 中兴通讯股份有限公司 | Method and device for processing Ethernet data packet carrying IPv6 data |
| CN101984607B (en) * | 2010-11-16 | 2015-06-10 | 中兴通讯股份有限公司 | Method of Ethernet interface to simultaneously support routing function and switching function |
| CN106844251B (en) * | 2015-12-03 | 2022-03-22 | 中兴通讯股份有限公司 | Data transmission method and device |
| CN111669338B (en) * | 2019-03-05 | 2022-08-05 | 杭州海康威视数字技术股份有限公司 | Message forwarding method and device, high-density server and storage medium |
| CN112291243B (en) * | 2020-10-29 | 2022-07-12 | 苏州浪潮智能科技有限公司 | Method, system medium and equipment for transparent transmission of data packet in routing mode |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1379568A (en) * | 2002-04-26 | 2002-11-13 | 顾士平 | Method for implementing switch-type router with QoS function |
| WO2003039082A1 (en) * | 2001-10-31 | 2003-05-08 | Siemens Aktiengesellschaft | Method for communication of a real-time data exchange in a collision-recognition based communication network, corresponding memory medium and communication network |
| CN1604537A (en) * | 2003-09-29 | 2005-04-06 | 中国人民解放军理工大学通信工程学院 | A high-speed Crossbar scheduling strategy supporting multipriority |
-
2005
- 2005-09-13 CN CNB2005100864175A patent/CN100373892C/en not_active Expired - Fee Related
-
2006
- 2006-09-07 WO PCT/CN2006/002307 patent/WO2007031006A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2003039082A1 (en) * | 2001-10-31 | 2003-05-08 | Siemens Aktiengesellschaft | Method for communication of a real-time data exchange in a collision-recognition based communication network, corresponding memory medium and communication network |
| CN1379568A (en) * | 2002-04-26 | 2002-11-13 | 顾士平 | Method for implementing switch-type router with QoS function |
| CN1604537A (en) * | 2003-09-29 | 2005-04-06 | 中国人民解放军理工大学通信工程学院 | A high-speed Crossbar scheduling strategy supporting multipriority |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114006806A (en) * | 2021-10-26 | 2022-02-01 | 苏州浪潮智能科技有限公司 | Packet processing method, device, switch device and storage medium |
| CN114006806B (en) * | 2021-10-26 | 2023-08-15 | 苏州浪潮智能科技有限公司 | Message processing method, device, switch equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100373892C (en) | 2008-03-05 |
| CN1741500A (en) | 2006-03-01 |
| WO2007031006A8 (en) | 2007-05-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7221675B2 (en) | Address resolution method for a virtual private network, and customer edge device for implementing the method | |
| JP5579853B2 (en) | Method and system for realizing virtual private network | |
| US7072346B2 (en) | Network and edge router | |
| CN101006707B (en) | Method for switching Ip packets between client networks and Ip provider networks by means of an access network | |
| JP2013504959A (en) | Method and system for realizing virtual private network | |
| EP1811728B1 (en) | Method, system and device of traffic management in a multi-protocol label switching network | |
| US20120327811A1 (en) | Virtual network connection method, network system, and network device | |
| WO2011113340A1 (en) | Access method and apparatus for multi-protocol label switching layer 2 virtual private network | |
| US20080250492A1 (en) | Structure and implementation of universal virtual private networks | |
| WO2005101730A1 (en) | A system and method of ensuring quality of service in virtual private network | |
| WO2009021458A1 (en) | Method, apparatus and system for connecting layer2 network and layer3 network | |
| JP2000286853A (en) | Method and apparatus for routing packets | |
| WO2011103781A2 (en) | Method, device for implementing identifier and locator split, and method for data encapsulating | |
| WO2007031006A1 (en) | A virtual switching method which could be routed | |
| WO2008011818A1 (en) | Method of realizing hierarchy-virtual private lan service and network system | |
| CN102474451B (en) | Connecting inner and outer MPLS labels | |
| WO2006108344A1 (en) | Method for realizing vpn | |
| WO2007076692A1 (en) | Method, system and device for bearing vpls service in ip backbone network | |
| US7031307B2 (en) | Packet routing apparatus having label switching function | |
| CN100550814C (en) | A kind of system and method based on two layer VPN foreign medium communication | |
| WO2007093095A1 (en) | A method for implementing mpls message forwarding and an equipment thereof | |
| EP1318631B1 (en) | Address resolution method for a virtual private network, and customer edge device for implementing the method | |
| WO2007104201A1 (en) | A method for forwarding message in the service tunnel of the ethernet application and a system thereof | |
| Cisco | Remote Access to MPLS VPN | |
| KR100462853B1 (en) | A Method for Processing Data in Label Edge Router Enable to Serve VPN and Distinguish Users |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
| NENP | Non-entry into the national phase |
Ref country code: DE |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 06775617 Country of ref document: EP Kind code of ref document: A1 |