Nothing Special   »   [go: up one dir, main page]

CN106559302A - Single tunnel method for building up, device and system - Google Patents

Single tunnel method for building up, device and system Download PDF

Info

Publication number
CN106559302A
CN106559302A CN201510644150.0A CN201510644150A CN106559302A CN 106559302 A CN106559302 A CN 106559302A CN 201510644150 A CN201510644150 A CN 201510644150A CN 106559302 A CN106559302 A CN 106559302A
Authority
CN
China
Prior art keywords
vxlan
message
network equipment
network device
tunnel
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201510644150.0A
Other languages
Chinese (zh)
Inventor
张平平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201510644150.0A priority Critical patent/CN106559302A/en
Priority to PCT/CN2016/094241 priority patent/WO2017054576A1/en
Publication of CN106559302A publication Critical patent/CN106559302A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention provides a kind of single tunnel method for building up, device and system.Wherein, the method includes:First network equipment receives the VxLAN messages that second network equipment sends;First network equipment parses the identification information of VxLAN messages;First network equipment sets up the VxLAN single tunnels that destination address is second network equipment according to identification information.By the present invention, solve the problems, such as that correlation technique sets up VxLAN single tunnel efficiency by proprietary protocol message interaction low, realize.

Description

Unicast tunnel establishment method, device and system
Technical Field
The present invention relates to the field of communications, and in particular, to a method, an apparatus, and a system for establishing a unicast tunnel.
Background
A Virtual eXtensible Local Area Network (VxLAN) is a technology for encapsulating data messages of an ethernet two-layer (L2, data link layer) by using a three-layer (L3, Network layer) protocol, and can extend a two-layer Network in a three-layer Network range. The method is applied to the inside of a data center, so that the virtual machine can migrate in a three-layer network range which is mutually communicated, an Internet Protocol (IP) address and a Media Access Control (MAC) address do not need to be changed, and the continuity of service is ensured.
The VxLAN adopts a Network Identifier (VNI for short) with 24 data bits, so that a user can create a 16M virtual Network which is isolated from each other, the limitation of 4K isolated networks which can be represented by the currently widely adopted VLAN is broken through, sufficient virtual Network partition resources are provided in a large-scale multi-tenant cloud environment, and the service that the two-layer Network intercommunication service is deployed in physical areas of different IP subnets is realized.
Fig. 1 is a block diagram of a structure of VxLAN tunnel encapsulation according to the related art, and as shown in fig. 1, VxLAN technology is implemented on a network device C and a network device D, respectively: the host/client A sends an inner layer message (namely a Native message) of the host/client B, and the inner layer message is encapsulated into a VxLAN message after reaching the network equipment C; the network equipment C penetrates the cloud network through the VxLAN multicast tunnel or the VxLAN unicast tunnel to reach the network equipment D; after the VxLAN message is unpacked, the network device D sends the inner layer message to the host/client B; and the host/client B sends the inner layer message of the host/client A, and the inner layer message is packaged, transmitted and unpacked according to the VxLAN service specification standard in the same way and is sent to the host/client A.
The network equipment C and the network equipment D are connected to a cloud network to realize a VxLAN tunnel encapsulation technology; the host/client A and the host/client B can be deployed in different physical areas, access to a cloud network through the network device C and the network device D respectively, package and unpack two-layer data messages of the Ethernet by using three-layer protocols on the network device C and the network device D, and transmit the three-layer protocol messages on the cloud network.
VxLAN Tunnel EndPoint (VTEP for short) is respectively configured on the network equipment C and the network equipment D, and VxLAN Tunnel service crossing the cloud network is realized. The VTEP is used for bearing one VxLAN multicast tunnel and can also bear a plurality of VxLAN unicast tunnels crossing the cloud network.
When the VxLAN multicast tunnel is established, the network equipment C and the network equipment D need to establish the tunnel according to the public information of the local equipment VTEP and the VxLAN multicast service respectively.
When the VxLAN unicast tunnel is established, the Network device C and the Network device D must acquire the IP address information of the remote Network device, and information such as MAC, Virtual Local Area Network (VLAN), IP, VNI, etc. of the VxLAN packet, and establish the tunnel according to the device information of the Local device VTEP and the peer Network device, respectively. And the inner layer message is an Ethernet service message encapsulated by VxLAN.
The existing implementation scheme for establishing the VxLAN unicast tunnel generally needs to establish protocol stacks on network devices at two ends respectively, exchange data on the network devices at the two ends through message interaction of a private protocol, acquire information such as an IP address, a VLAN (virtual local area network) and a VNI (virtual network interface) of a remote device, an MAC (media access control) address of a client under the remote device and identification information such as Next HOP (host operating process) acquired according to the IP address query of the remote device, and then establish the VxLAN unicast tunnel locally on the network devices.
Aiming at the problem of low efficiency of VxLAN unicast tunnel establishment through private protocol message interaction in the related art, no effective solution is provided at present.
Disclosure of Invention
The invention provides a unicast tunnel establishment method, a unicast tunnel establishment device and a unicast tunnel establishment system, which are used for at least solving the problem of low efficiency of VxLAN unicast tunnel establishment through private protocol message interaction in the related technology.
This part will be replenished after finalization, asking you to temporarily ignore the audit thanks.
According to the invention, the VxLAN message sent by the second network equipment is received by adopting the first network equipment; the first network equipment analyzes the identification information of the VxLAN message; the first network equipment establishes the VxLAN unicast tunnel with the destination address as the second network equipment according to the identification information, the problem of low efficiency of establishing the VxLAN unicast tunnel through private protocol message interaction in the related technology is solved, and the effect of quickly establishing the VxLAN unicast tunnel is achieved.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
fig. 1 is a block diagram of a structure of VxLAN tunnel encapsulation according to the related art;
fig. 2 is a flowchart of a unicast tunnel establishment method according to an embodiment of the present invention;
fig. 3 is a block diagram of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 4 is a block diagram one of an alternative structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 5 is a block diagram of an alternative structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 6 is a block diagram of an alternative structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 7 is a block diagram of an alternative structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 8 is a block diagram of an alternative structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention;
fig. 9 is a block diagram of a unicast tunnel establishment system according to an embodiment of the present invention;
fig. 10 is a block diagram one of an alternative structure of a unicast tunnel establishment system according to an embodiment of the present invention;
fig. 11 is a block diagram of an alternative architecture of a unicast tunnel establishment system, according to an embodiment of the present invention;
fig. 12 is a block diagram of an alternative architecture of a unicast tunnel establishment system, in accordance with an embodiment of the present invention;
fig. 13 is a block diagram of a structure of a VxLAN unicast tunnel device for fast establishment according to an alternative embodiment of the present invention;
fig. 14 is a block diagram of a structure of a VxLAN unicast tunnel system for fast establishment according to an alternative embodiment of the present invention.
Detailed Description
The invention will be described in detail hereinafter with reference to the accompanying drawings in conjunction with embodiments. It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.
In this embodiment, a unicast tunnel establishment method is provided, and fig. 2 is a flowchart of a unicast tunnel establishment method according to an embodiment of the present invention, where as shown in fig. 2, the flowchart includes the following steps:
step S202, the first network equipment receives a VxLAN message sent by the second network equipment;
step S204, the first network equipment analyzes identification information carried in the VxLAN message;
step S206, the first network device establishes a VxLAN unicast tunnel with the destination address as the second network device according to the identification information.
Through the steps, the first network device establishes the VxLAN unicast tunnel with the destination address as the second network device according to the identification information of the VxLAN message sent by the second network device, and the VxLAN unicast tunnel between the network devices is not established through private protocol message interaction by means of establishing a protocol stack between the network devices. Therefore, by adopting the steps, the problem of low efficiency of building the VxLAN unicast tunnel through private protocol message interaction in the related technology is solved, the VxLAN unicast tunnel is built quickly, and the efficiency of building the VxLAN unicast tunnel is improved.
Optionally, in step S204, the first network device first determines whether a VxLAN unicast tunnel with a destination address as the second network device is already established, and if it is determined that the VxLAN unicast tunnel with the destination address as the second network device is not established, the first network device parses the identification information of the VxLAN packet. Through the steps, the first network equipment can selectively establish the VxLAN unicast tunnel, so that the purpose of saving resources is achieved, and reasonable utilization of the resources is realized. For the condition that the VxLAN unicast tunnel with the destination address being the second network device is already established, the first network device may directly perform conventional forwarding on the received VxLAN message without analyzing the information for establishing the unicast tunnel.
Optionally, after step S202, the first network device may decapsulate the VxLAN packet, and send the inner packet in the VxLAN packet obtained by decapsulation to the first client in communication with the network side through the first network device, so that the first network device may obtain the identification information from the VxLAN packet used for communication with the first client, and complete forwarding of the inner packet in the VxLAN packet to the first client. Therefore, through the steps, the first network device can realize the quick establishment of the VxLAN unicast tunnel in the interaction process of the inner layer messages between the clients, and the efficiency of establishing the VxLAN unicast tunnel is improved.
Optionally, the VxLAN packet may be obtained by encapsulating, by a second network device, an inner layer packet according to a VxLAN service specification standard, and in order to determine a location of the second network device, and thereby establish a VxLAN unicast tunnel with a destination address of the second network device, the identification information includes: the IP address of the second network equipment and the source MAC address of the inner layer message encapsulated in the VxLAN message; or the presentation information may include: the IP address of the second network device and the source IP address of the inner layer message encapsulated in the VxLAN message.
The VxLAN message is obtained by encapsulating the second network device, so that the IP address of the second network device is the source IP address in the outer layer label of the VxLAN message.
Optionally, in step S206, the first network device may determine whether the VxLAN packet is terminated locally on the first network device; and if so, acquiring identification information such as an IP address of the second network device in the VxLAN message and a source MAC address of the inner layer message, and the like, and realizing the establishment of the VxLAN unicast tunnel with the destination address of the second network device, wherein the VxLAN unicast tunnel is established through the MAC address in the inner layer message, so that the VxLAN unicast tunnel is an L2VxLAN unicast tunnel.
Optionally, in step S206, the first network device may determine whether the VxLAN packet is terminated locally on the first network device; and if so, acquiring identification information such as the IP address of the second network device in the VxLAN message and the source IP address of the inner layer message, and the like, and realizing the establishment of the VxLAN unicast tunnel with the destination address of the second network device, wherein the VxLAN unicast tunnel is established through the IP address in the inner layer message, so that the VxLAN unicast tunnel is an L3VxLAN unicast tunnel.
Optionally, the identification information may further include at least one of: VLAN information carried in an outer layer label of the VxLAN message, VNI information carried in the outer layer label of the VxLAN message, and Next HOP Next HOP information inquired according to the IP address of the second network device.
Optionally, in step S204, the first network device may analyze the IP address of the second network device carried in the VxLAN message, and establish a VxLAN unicast tunnel with a destination address as the second network device according to the IP address of the second network device, and perform conventional forwarding on other messages encapsulated in the VxLAN message. Therefore, through the steps, the first network device only needs to establish the VxLAN unicast tunnel with the destination address as the second network device according to the IP address of the second network device carried in the VxLAN message, and the VxLAN unicast tunnel is established quickly.
Optionally, before step S202, the second network device may receive an inner layer packet sent by a second client communicating with the network side through the second network device to a first client communicating with the network side through the first network device, encapsulate the inner layer packet into a VxLAN packet according to a VxLAN service specification standard, and send the VxLAN packet to the first network device. Through the steps, the VxLAN message carries the identification information, so that the first network equipment can quickly establish the VxLAN unicast tunnel with the destination address as the second network equipment according to the identification information carried in the VxLAN message, and the efficiency of establishing the VxLAN unicast tunnel is improved.
Optionally, when the second network device encapsulates the inner layer message into a VxLAN message according to a VxLAN service specification standard, it may be determined whether a VxLAN unicast tunnel with a destination address as the first network device is already established, and if it is determined that the VxLAN unicast tunnel with the destination address as the first network device is not established, the second network device encapsulates the inner layer message into a VxLAN multicast message according to the VxLAN service specification standard, and sends the VxLAN multicast message through the VxLAN multicast tunnel, so that the VxLAN multicast message is received by the first network device. Therefore, through the steps, the second network device can selectively send VxLAN messages through the multicast tunnel under the condition that the VxLAN unicast tunnel with the destination address as the first network device is not established, so that the first network device can receive the VxLAN messages, and the VxLAN unicast tunnel with the destination address as the second network device is established quickly according to the VxLAN messages.
Optionally, the second network device may further encapsulate the inner layer packet into a VxLAN unicast packet according to a VxLAN service specification standard under the condition that it is determined that the VxLAN unicast tunnel with the destination address as the first network device is already established, and then send the VxLAN unicast packet to the first network device through the VxLAN unicast tunnel with the destination address as the first network device. As can be seen, through the above steps, the second network device may selectively send a VxLAN unicast message through a unicast tunnel in the case that the VxLAN unicast tunnel with the destination address as the first network device has been established, so that the first network device can receive the VxLAN unicast message, and quickly establish the VxLAN unicast tunnel with the destination address as the second network device according to the VxLAN unicast message.
Optionally, in order to implement monitoring of the VxLAN tunnel established by the first network device, thereby completing management of the VxLAN tunnel, after step S206, the first network device may count a usage rate of the VxLAN tunnel established by the first network device within a preset time period, and delete the VxLAN tunnel established by the first network device whose usage rate is lower than a preset value according to a comparison between a statistical result and the preset value, where the VxLAN tunnel established by the first network device includes: a VxLAN unicast tunnel and/or a VxLAN multicast tunnel.
Through the above description of the embodiments, those skilled in the art can clearly understand that the method according to the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (e.g., ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (e.g., a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present invention.
In this embodiment, a unicast tunnel establishing apparatus is further provided, which is applied to a first network device, and is used to implement the foregoing embodiments and preferred embodiments, and details of which have been already described are omitted. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.
Fig. 3 is a block diagram of a unicast tunnel establishment apparatus according to an embodiment of the present invention, and as shown in fig. 3, the apparatus includes: the device comprises a first receiving module 32, an analyzing module 34 and an establishing module 36, wherein the first receiving module 32 is used for receiving a VxLAN message sent by second network equipment; the analysis module 34 is coupled to the first receiving module 32 and used for analyzing the identification information of the VxLAN message; and the establishing module 36 is coupled to the parsing module 34 and configured to establish a VxLAN unicast tunnel with a destination address of the second network device according to the identification information.
Fig. 4 is a first optional structure block diagram of the unicast tunnel establishment apparatus according to the embodiment of the present invention, as shown in fig. 4, optionally, the parsing module 34 includes: a judging unit 42 and an analyzing unit 44, wherein the judging unit 42 is configured to judge whether a VxLAN unicast tunnel with a destination address of the second network device is established; and the analyzing unit 44 is coupled to the judging unit 42 and is used for analyzing the identification information of the VxLAN message by the first network device under the condition that the VxLAN unicast tunnel with the destination address being the second network device is not established.
Fig. 5 is a block diagram of an optional structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention, as shown in fig. 5, optionally, the apparatus further includes: a decapsulation module 52 and a first sending module 54, where the decapsulation module 52 is coupled to the first receiving module 32, and is configured to decapsulate the VxLAN packet to obtain an encapsulated inner layer packet in the VxLAN packet, if a destination address of the encapsulated inner layer packet in the VxLAN packet is a first client; and a first sending module 54, coupled to the decapsulating module 52, configured to send the inner layer packet to a first client, where the first client is a client that communicates with the network side through a first network device.
Optionally, the VxLAN packet may be obtained by encapsulating, by a second network device, an inner layer packet according to a VxLAN service specification standard, where the identification information in the analysis module 34 includes: the IP address of the second network device and the source MAC address of the inner layer message encapsulated in the VxLAN message.
Fig. 6 is a block diagram of an optional structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention, as shown in fig. 6, optionally, the establishment module 36 includes: a first judging unit 62 and a first establishing unit 64, where the first judging unit 62 is configured to judge whether the VxLAN message is terminated locally on the first network device; and a first establishing unit 64, coupled to the first judging unit 62, configured to, if the judgment result is yes, establish a VxLAN unicast tunnel with a destination address of the second network device according to identification information including the IP address of the second network device and the source MAC address of the inner layer packet, where the VxLAN unicast tunnel is an L2VxLAN unicast tunnel.
Optionally, the identification information further includes at least one of: VLAN information carried in an outer layer label of the VxLAN message, VNI information carried in the outer layer label of the VxLAN message and Next HOP information inquired according to the IP address of the second network device.
Optionally, in a case where the inner layer packet is an ARP request packet, the identification information may include: the IP address of the second network device and the source IP address of the ARP request message.
Fig. 7 is a block diagram of an optional structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention, as shown in fig. 7, optionally, the establishment module 36 further includes: a second judging unit 72 and a second establishing unit 74, where the second judging unit 72 is configured to judge whether the VxLAN packet is terminated locally on the first network device; and a second establishing unit 74, coupled to the second determining unit 72, configured to establish, when the determination result is yes, a VxLAN unicast tunnel with a destination address of the second network device according to the identification information including the IP address of the second network device and the source IP address of the ARP request packet, where the VxLAN unicast tunnel is an L3VxLAN unicast tunnel.
Optionally, the identification information further includes at least one of: VLAN information carried in an outer layer label of the VxLAN message, VNI information carried in the outer layer label of the VxLAN message, and Next HOP information inquired according to an IP address of second network equipment (namely a source IP address of the VxLAN message).
Fig. 8 is a block diagram of an optional structure of a unicast tunnel establishment apparatus according to an embodiment of the present invention, as shown in fig. 8, optionally, the apparatus further includes: statistics module 82, second judgement module 84 and deletion module 86, wherein, statistics module 82, coupled to establishment module 36, is used for counting the usage of the VxLAN tunnel established by the first network device within a preset time period, and wherein the VxLAN tunnel established by the first network device includes: a VxLAN unicast tunnel and/or a VxLAN multicast tunnel; a second judging module 84, coupled to the counting module 82, configured to judge, according to a counting result, whether a usage rate of the VxLAN tunnel established by the first network device is lower than a preset value; and a deleting module 86, coupled to the second judging module 84, configured to delete a VxLAN tunnel with a usage rate lower than a preset value from the VxLAN tunnels established by the first network device.
In this embodiment, a unicast tunnel establishment system is further provided, and fig. 9 is a block diagram of a structure of a unicast tunnel establishment system according to an embodiment of the present invention, as shown in fig. 9, the system includes: a first network device 92 and a second network device 94, wherein the first network device 92 comprises any of the unicast tunnel establishment means described above; second network device 94, coupled to first network device 92, is configured to send a VxLAN message to the first network device.
Fig. 10 is a block diagram of an alternative structure of the unicast tunnel establishment system according to the embodiment of the present invention, as shown in fig. 10, optionally, the second network device 94 includes: the second receiving module 102 is configured to receive an inner layer packet sent by a second client to a first client, where the second client is a client that communicates with a network side through a second network device, and the first client is a client that communicates with the network side through a first network device; the encapsulating module 104 is coupled to the second receiving module 102 and is used for encapsulating the inner layer message into a VxLAN message according to a VxLAN service specification standard; and a second sending module 106, coupled to the encapsulating module 104, configured to send the VxLAN message to the first network device.
Fig. 11 is a block diagram of an optional structure of a unicast tunnel establishment system according to an embodiment of the present invention, as shown in fig. 11, optionally, the encapsulation module 104 includes: a third judging unit 112 and a first encapsulating unit 114, where the third judging unit 112 is configured to judge whether a VxLAN unicast tunnel whose destination address is the first network device is established; the first encapsulating unit 114, coupled to the third determining unit 112, configured to, when it is determined that a VxLAN unicast tunnel with a destination address of the first network device is not established, encapsulate, by the second network device, the inner layer packet into a VxLAN packet according to a VxLAN service specification standard, where the VxLAN packet is a VxLAN multicast packet; and the second sending module of the second network equipment is used for sending the VxLAN message through the VxLAN multicast tunnel so as to be received by the first network equipment.
Fig. 12 is a block diagram of an optional structure of a unicast tunnel establishment system according to an embodiment of the present invention, and as shown in fig. 12, optionally, the encapsulation module 104 further includes: the second encapsulating unit 122 is coupled to the third judging unit 112, and is configured to encapsulate the inner layer packet into a VxLAN packet according to a VxLAN service specification standard under the condition that the VxLAN unicast tunnel with the established destination address of the first network device is judged, where the VxLAN packet is a VxLAN unicast packet; and the second sending module of the second network device is used for sending the VxLAN message to the first network device through the VxLAN unicast tunnel with the destination address as the first network device.
It should be noted that, the above modules may be implemented by software or hardware, and for the latter, the following may be implemented, but not limited to: the modules are all positioned in the same processor; alternatively, the modules are respectively located in a plurality of processors.
The embodiment of the present invention also provides software for executing the technical solutions described in the above embodiments and preferred embodiments.
The embodiment of the invention also provides a storage medium. In the present embodiment, the storage medium described above may be configured to store program code for performing the steps of:
step S202, the first network equipment receives a VxLAN message sent by the second network equipment;
step S204, the first network equipment analyzes the identification information of the VxLAN message;
step S206, the first network device establishes a VxLAN unicast tunnel with the destination address as the second network device according to the identification information.
Optionally, in this embodiment, the storage medium may include, but is not limited to: various media capable of storing program codes, such as a usb disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic disk, or an optical disk.
In order to make the description of the embodiments of the present invention clearer, the following description and illustrations are made with reference to alternative embodiments.
An optional embodiment of the present invention provides a method and an apparatus for quickly establishing a VxLAN unicast tunnel, which may save components for respectively establishing protocol stacks on network devices at two ends, save private protocol packet interaction between the network devices, and save transmission time consumed in the packet interaction process.
The method for establishing a unicast tunnel provided by the alternative embodiment of the invention comprises the following steps: the source end (equivalent to the second network device) sends the VxLAN message, the message is transmitted to the opposite end (equivalent to the first network device) through the VxLAN multicast tunnel (or unicast tunnel), the VxLAN unicast tunnel is established after the opposite end receives the VxLAN message, and the interaction of the unidirectional VxLAN message can save service deployment requirements and hardware resources for respectively establishing a protocol stack on the network devices at the two ends, can save transmission time consumed by message interaction of the private protocol between the network devices at the two ends through a cloud network, and achieves the effect of quickly establishing the VxLAN unicast tunnel.
The apparatus for establishing a unicast tunnel according to an alternative embodiment of the present invention includes:
and the sending and receiving unit is used for realizing data exchange between the network equipment and the host/client and data exchange between the network equipment through a cloud network.
The VxLAN coding unit is used for realizing the encapsulation operation of the inner layer message which is received by the sending and receiving unit of the network equipment and sent from the host/client and conforms to the VxLAN service specification standard; and moreover, counting the utilization rate information of the VxLAN multicast tunnel or the VxLAN unicast tunnel used by the inner layer message coding is realized.
The VxLAN decoding unit is used for realizing the operation of de-encapsulation of the VxLAN service message transmitted from the cloud network and received by the sending and receiving unit of the network equipment, and the operation conforms to the VxLAN service specification standard; and the operation of analyzing the IP address information of the far-end network equipment carried by the VxLAN service message, the VLAN and VNI of the VxLAN message, the source IP address or source MAC address of the inner layer message, and the Next HOP (Next HOP) and other identification information inquired according to the source IP address of the VxLAN message, and then transmitting the identification information to the data management unit and the tunnel configuration unit is also realized.
The VxLAN unicast tunnel establishing device comprises a data management unit, a network device and a network device, wherein the data management unit is used for storing IP address information of a far-end network device needing to establish a VxLAN unicast tunnel, VLAN and VNI of a VxLAN message, a source IP address or a source MAC address of an inner-layer message, and identification information such as Next HOP inquired according to the source IP address of the VxLAN message (namely the IP address of the far-end network device); and IP address information of local network equipment, VLAN and VNI of the VxLAN message, a source IP address or a source MAC address of an inner layer message, and identification information such as Next HOP inquired according to the source IP address of the VxLAN message are also stored. A generic database interface is also provided.
The tunnel configuration unit is used for realizing the operation of establishing the VTEP at the local network equipment; the operation of establishing a VxLAN multicast tunnel according to the VTEP and VxLAN multicast information is also realized; in addition, the operation of establishing a VxLAN unicast tunnel according to IP address information of the VTEP and the remote network equipment, VLAN and VNI of the VxLAN message, a source IP address or a source MAC address of the inner layer message, and identification information such as Next HOP inquired according to the source IP address of the VxLAN message is also realized; and, the operation of deleting the VxLAN tunnel is also executed according to the utilization rates of the VxLAN multicast tunnel and the VxLAN unicast tunnel which are already established; and moreover, the operations of accessing and modifying the records of the data management unit through a general database interface provided by the data management unit are realized.
The method for establishing a unicast tunnel according to the alternative embodiment of the present invention may include the following steps:
step 11, firstly, establishing a fully-connected VxLAN multicast tunnel between network devices;
step 12, transmitting the inner layer message of the unicast tunnel without VxLAN through the VxLAN multicast tunnel;
step 13, after the VxLAN multicast message is received by the far-end network equipment, a VxLAN unicast tunnel with a destination address as the local-end network equipment is established on the far-end network equipment by utilizing the IP address information of the local-end network equipment, the VLAN and VNI of the VxLAN message, the source IP address or the source MAC address of the inner-layer message and the identification information such as Next HOP inquired according to the source IP address of the VxLAN message;
step 14, the far-end network device can send a VxLAN unicast message to the home-end network device through the VxLAN unicast tunnel, and after the home-end network device receives the VxLAN unicast message, the VxLAN unicast tunnel with the destination address as the far-end network device is established on the home-end network device by using the IP address information of the far-end network device carried by the home-end network device, the VLAN and the VNI of the VxLAN message, the source IP address or the source MAC address of the inner layer message, and the identification information such as Next HOP inquired according to the source IP address of the VxLAN message;
step 15, when the network device encapsulates and sends the inner layer message, the VxLAN tunnel of different service types can be flexibly selected:
if the network equipment establishes a VxLAN unicast tunnel which takes the destination address of the inner layer message as the remote network equipment, the inner layer message can be packaged into the VxLAN unicast message and sent through the VxLAN unicast tunnel;
if a VxLAN unicast tunnel with the destination address of the inner layer message as the remote network equipment is not established, the inner layer message can be packaged into a VxLAN multicast message and sent through the VxLAN multicast tunnel;
step 16, the network device counts the usage rate of the VxLAN multicast tunnel and the VxLAN unicast tunnel which are already established, and the VxLAN multicast tunnel and the VxLAN unicast tunnel with the usage rate of 0 can be deleted within a certain time limit.
The method for establishing a unicast tunnel according to the alternative embodiment of the present invention may further include the following steps:
step 21, configuring VTEP on the network equipment, for identifying VxLAN multicast message, and for identifying VxLAN unicast message with destination address as home terminal network equipment;
step 22, configuring a tunnel configuration unit on the network equipment, and establishing a VxLAN multicast tunnel according to the VTEP and VxLAN multicast information;
step 23, configuring a tunnel configuration unit on the network device, for establishing a VxLAN unicast tunnel according to the IP address information of the VTEP and the remote network device, the VLAN and VNI of the VxLAN packet, the source IP address or source MAC address of the inner layer packet, and the identification information such as Next HOP and the like inquired according to the source IP address of the VxLAN packet;
step 24, configuring a data management unit on the network device, for storing the IP address information of the local network device, the IP address information of the remote network device needing to establish the VxLAN unicast tunnel, the VLAN and VNI of the VxLAN message, the source IP address or source MAC address of the inner layer message, and the identification information such as Next HOP inquired according to the source IP address of the VxLAN message;
and step 25, configuring a data management unit on the network equipment, wherein the data management unit is used for storing the utilization rates of the VxLAN multicast tunnel and the VxLAN unicast tunnel established by the local network equipment and counted by the VxLAN coding unit.
An alternative embodiment of the present invention will now be described with reference to the accompanying drawings.
The technical scheme of the invention is further elaborated in the following by combining the attached drawings.
Fig. 13 is a block diagram of a structure of an apparatus for quickly establishing a VxLAN unicast tunnel according to an alternative embodiment of the present invention, as shown in fig. 13, the apparatus includes:
a sending and receiving unit 1302, configured to transmit a VxLAN service packet according to an ethernet three-layer (network layer) protocol packet;
the VxLAN coding unit 1304 is used for receiving the inner layer message sent by the host/client, following the VxLAN service specification standard and carrying out VxLAN service encapsulation on the inner layer message;
the VxLAN decoding unit 1306 is used for receiving VxLAN service messages from the cloud network, decapsulating the VxLAN service messages according to a VxLAN service specification standard, and then sending the inner layer messages to the host/client. The VxLAN decoding unit also analyzes IP address information of the remote network equipment carried by the VxLAN service message, a VLAN (virtual local area network) and a VNI (virtual network interface) of the VxLAN message, a source IP address or a source MAC (media access control) address of the inner layer message, and identification information such as Next HOP (Next HOP) inquired according to the source IP address of the VxLAN message, and transmits the identification information to the data management unit and informs the tunnel configuration unit;
and a data management unit 1308 for storing the IP address information of the remote network device that needs to establish the VxLAN unicast tunnel, the VLAN and VNI of the VxLAN packet, the source IP address or source MAC address of the inner layer packet, and identification information such as Next HOP queried according to the source IP address of the VxLAN packet. The data management unit also stores the IP address information of the local network equipment, the VLAN and VNI of the VxLAN message, the source IP address or source MAC address of the inner layer message, and the identification information such as Next HOP inquired according to the source IP address of the VxLAN message;
a tunnel configuration unit 1310, configured to establish a VTEP in the local network device, and establish a VxLAN multicast tunnel according to the VTEP and the VxLAN multicast information; wherein,
the tunnel configuration unit 1310 is further configured to establish a VxLAN unicast tunnel according to the IP address information of the VTEP and the remote network device, the VLAN and VNI of the VxLAN packet, the source IP address or the source MAC address of the inner layer packet, and identification information such as Next HOP queried according to the source IP address of the VxLAN packet;
a tunnel configuration unit 1310, further configured to delete redundant tunnels according to the VxLAN tunnel usage;
the tunnel configuration unit 1310 is further configured to access the record of the data management unit, and may also identify and modify the record of the data management unit.
Fig. 14 is a block diagram of a structure of a VxLAN unicast tunnel system for fast establishment according to an alternative embodiment of the present invention, as shown in fig. 14, the system includes: a network device C; the network equipment D is coupled to the network equipment C through a cloud network; the host/client A is coupled to the network equipment C to realize network side communication; the host/client B realizes network side communication by being coupled to the network equipment D; wherein,
the network device C includes: a transmitting and receiving unit C101, a VxLAN encoding unit C102, a VxLAN decoding unit C103, a data management unit C104, a timer C105, and a tunnel configuration unit C106;
the network device D includes: a transmitting and receiving unit D201, a VxLAN encoding unit D202, a VxLAN decoding unit D203, a data management unit D204, a timer D205, and a tunnel configuration unit D206.
In the case of establishing an L2VxLAN unicast tunnel (host/client a and host/client B belong in the same VLAN), the system may implement the following steps:
step 1, a tunnel configuration unit C106 configures VTEP at the network equipment C according to the local equipment information of the network equipment C and the VxLAN multicast service public information, and establishes a VxLAN multicast tunnel according to the VTEP and the VxLAN multicast information;
step 2, a tunnel configuration unit D206 configures VTEP in the network equipment D according to the local equipment information of the network equipment D and the VxLAN multicast service public information, and establishes a VxLAN multicast tunnel according to the VTEP and the VxLAN multicast information;
step 3, when the host/client a sends an inner layer message to the network device C, the VxLAN encoding unit C102 judges according to the MAC: if the inner layer message is unknown unicast, transmitting the message through a VxLAN multicast tunnel; and if the inner layer message is a unicast service message, attempting to package the inner layer message into a VxLAN unicast message, and transmitting the VxLAN unicast message through a VxLAN unicast tunnel. Since the network device C has not established the VxLAN unicast tunnel required by the destination address of the unicast service packet (i.e., the host/client B), it can only process the unicast packet according to the unknown processing mode. The VxLAN coding unit C102 packages the inner layer message into a VxLAN multicast message and transmits the VxLAN multicast message through a VxLAN multicast tunnel;
step 4, VxLAN multicast tunnel transmission messages are packaged and sent from the VTEP of the network equipment C, penetrate through a cloud network, reach VTEPs of all network equipment in the network, and complete tunnel transmission;
and step 5, the network device D receives the VxLAN service message from the cloud network, the VxLAN decoding unit D203 unpacks the VxLAN service message according to the VxLAN service specification standard, and the inner layer message is sent to the host/client B. Meanwhile, the network device D may analyze the IP address information of the remote device (network device C) carried in the VxLAN multicast packet, the VLAN and VNI of the VxLAN packet, the source MAC address of the inner layer packet, and identification information such as Next HOP queried according to the source IP address of the VxLAN packet, and transmit the information to the data management unit D204 and notify the tunnel configuration unit D206;
step 6, the data management unit D204 records all received IP address information of the remote device, VLAN and VNI of the VxLAN packet, and source MAC address of the inner layer packet, and provides a general database interface (including addition, deletion, modification, and query records) according to identification information such as Next HOP queried by the source IP address of the VxLAN packet;
step 7, after receiving the notification of the VTEP, the tunnel configuration unit D206 establishes a VxLAN unicast tunnel according to the IP address information of the VTEP of the home device and the remote network device, the VLAN and VNI of the VxLAN packet, the source MAC address of the inner layer packet, and the identification information such as Next HOP and the like queried according to the source IP address of the VxLAN packet. When the message with the target IP as the far-end network equipment is received again, the message is directly unpacked and the configuration unit is notified;
step 8, when the host/client B sends the inner layer message to the network device D, the VxLAN encoding unit D202 determines: if the inner layer message is an unknown unicast service message, packaging the message into a VxLAN multicast message, and transmitting the VxLAN multicast message through a VxLAN multicast tunnel; and if the inner layer message is a unicast service message, attempting to package the inner layer message into a VxLAN unicast message, and transmitting the VxLAN unicast message through a VxLAN unicast tunnel. Since the network device D has already established the VxLAN unicast tunnel required by the destination address of this unicast service packet (i.e., host/client a), the processing manner of the unicast packet may be known. The VxLAN encoding unit D202 encapsulates the inner layer message into a VxLAN unicast message, and transmits the VxLAN unicast message through a VxLAN unicast tunnel;
step 9, VxLAN unicast tunnel transmission messages are packaged and sent from the VTEP of the network equipment D, penetrate through a cloud network and reach the VTEP of the network equipment C, and tunnel transmission is completed;
step 10, the network device C receives VxLAN service messages from the cloud network, the VxLAN decoding unit C103 unpacks the VxLAN service messages according to the VxLAN service specification standard, and the inner layer messages are sent to the host/client A. Meanwhile, the network device C can analyze IP address information of a remote device (network device D) carried by the VxLAN message, a VLAN (virtual local area network) and a VNI (virtual network interface) of the VxLAN message, a source MAC (media access control) address of an inner layer message, and identification information such as Next HOP (Next HOP) inquired according to the source IP address of the VxLAN message;
step 11, the network device C receives a VxLAN service message from the cloud network, and establishes a VxLAN unicast tunnel at the network device C end according to the VTEP of the local device and the IP address information of the remote network device, the VLAN and VNI of the VxLAN message, the source MAC address of the inner layer message, and the identification information such as Next HOP queried according to the source IP address of the VxLAN message, in a similar manner as in steps 5 to 7;
and step 12, counting the utilization rate of the VxLAN unicast tunnel, and deleting the VxLAN tunnel with the utilization rate of 0.
In the case of establishing an L3VxLAN unicast tunnel (host/client a and host/client B belong to different VLANs), the gateway will be described and illustrated as being configured on network device D in a centralized gateway manner. The system may also implement the steps of:
step 1, a tunnel configuration unit C106 configures VTEP at the network equipment C according to the local equipment information of the network equipment C and the VxLAN multicast service public information, and establishes a VxLAN multicast tunnel according to the VTEP and the VxLAN multicast information;
step 2, a tunnel configuration unit D206 configures VTEP in the network equipment D according to the local equipment information of the network equipment D and the VxLAN multicast service public information, and establishes a VxLAN multicast tunnel according to the VTEP and the VxLAN multicast information;
and step 3, when a VxLAN unicast tunnel with the destination address of the network equipment C is established, the inner layer message is an ARP request message. The host/client A sends an ARP request message to the network equipment D to request the MAC of the gateway (namely the network equipment D), and the VxLAN coding unit C102 judges that: if the ARP request message is unknown unicast, transmitting the ARP request message through a VxLAN multicast tunnel; and if the ARP request message is a unicast service message, attempting to encapsulate the ARP request message into a VxLAN unicast message, and transmitting the VxLAN unicast message through a VxLAN unicast tunnel. Since the network device C has not established the VxLAN unicast tunnel required by the destination address of the unicast service packet (i.e., the network device D), it is only able to process the unicast packet according to an unknown processing method. The VxLAN coding unit C102 packages the ARP request message into a VxLAN multicast message, and transmits the VxLAN multicast message through a VxLAN multicast tunnel;
step 4, VxLAN multicast tunnel transmission messages are packaged and sent from the VTEP of the network equipment C, penetrate through a cloud network, reach VTEPs of all network equipment in the network, and complete tunnel transmission;
step 5, the network device D receives the ARP request message encapsulated by the VxLAN from the cloud as a gateway, and the network device D can analyze the IP address information of the remote device (network device C) carried in the VxLAN multicast message, the VLAN and VNI of the VxLAN message, the source IP address of the ARP request message, and information such as Next HOP queried according to the source IP address of the VxLAN message, and transmit the information to the data management unit D204 and notify the tunnel configuration unit D206;
step 6, the data management unit D204 records all received IP address information of the remote device, the VLAN and VNI of the VXLAN message, the source IP address of the ARP request message, and identification information such as Next HOP queried according to the source IP address of the VXLAN message, and provides a general database interface (including addition, deletion, modification, and query records);
step 7, after receiving the notification of the VTEP, the tunnel configuration unit D206 establishes an L3VxLAN unicast tunnel according to the IP address information of the VTEP of the local device and the remote network device, the VLAN and VNI of the VxLAN packet, the source IP address of the ARP request packet, and the identification information of Next HOP and the like queried according to the source IP address of the VxLAN packet. When the message with the target IP as the far-end network equipment is received again, the message is directly unpacked and the configuration unit is notified;
and 8, when a VxLAN unicast tunnel with the destination address of the network equipment D is established, the inner layer message is a REPLY message. The network device D replies an MAC (media access control) of an ARP (address resolution protocol) REPLY message notification gateway, the message is sent to the network device C in a VxLAN unicast mode by using a newly established unicast tunnel, and the network device C can analyze IP (Internet protocol) address information of remote equipment (network device D) carried by the VxLAN message, a VLAN (virtual local area network) and a VNI (virtual network interface) of the VxLAN message, a source MAC (media access control) address of the REPLY message, and identification information such as Next HOP (Next HOP) inquired according to the source IP address of the VxLAN message;
step 9, the network device C receives the VxLAN service message from the cloud network, and establishes an L2VxLAN unicast tunnel at the network device C end according to the VTEP of the local device and the IP address information of the remote network device, the VLAN and VNI of the VxLAN message, the source MAC address of the REPLY message, and the identification information such as Next HOP queried according to the source IP address of the VxLAN message, in a similar manner as in the foregoing steps 5 to 7;
step 10, when the host/client B wants to communicate with a, it sends the message with the destination IP as the host/client B and the destination MAC as the network device D to the network device D. Since the network device D has already established the VxLAN unicast tunnel required by the destination address of this unicast service packet (i.e., host/client a), the VxLAN encoding unit D202 may process the packet sent by the host/client B according to the known unicast packet processing manner. The VxLAN encoding unit D202 encapsulates the inner layer message into a VxLAN unicast message, and transmits the VxLAN unicast message through a VxLAN unicast tunnel;
step 11, VxLAN unicast tunnel transmission messages are packaged and sent from the VTEP of the network equipment D, penetrate through a cloud network and reach the VTEP of the network equipment C, and tunnel transmission is completed;
step 12, the network equipment C receives VxLAN service messages from a cloud network, the VxLAN decoding unit C103 unpacks the VxLAN service messages according to the VxLAN service specification standard, and transmits the inner layer messages to the host/client A in a two-layer mode;
step 13, when the host/client A needs to communicate with the host B, the message with the target MAC as the network device D and the target IP as the host/client B is sent to the network device C, the network device C forwards the message to the network device D through the public network according to the just established L3VXLAN tunnel, and the network device D decapsulates the VXLAN message and forwards the message to the host/client B after checking the route.
In the above embodiment, the L2VxLAN differs from the L3VxLAN in that: in the aspect of decapsulation, after the L2VxLAN is decapsulated, the MAC table is searched according to the source MAC address of the inner layer message for message forwarding, and after the L3VxLAN service is decapsulated, the routing table is searched according to the source IP address of the inner layer message for message forwarding; in the aspect of encapsulation, the L2VxLAN checks the MAC table to obtain encapsulation information, and the L3VxLAN checks the routing table to obtain the encapsulation information.
In summary, according to the embodiments and optional embodiments of the present invention, a unicast tunnel establishment mode is newly added, which can save service deployment and hardware resources thereof for respectively establishing protocol stacks on network devices at two ends, and save transmission time consumed for performing packet interaction of the private protocol between the network devices at two ends through a cloud network, thereby achieving an effect of quickly establishing a VxLAN unicast tunnel.
It will be apparent to those skilled in the art that the modules or steps of the present invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of multiple computing devices, and alternatively, they may be implemented by program code executable by a computing device, such that they may be stored in a storage device and executed by a computing device, and in some cases, the steps shown or described may be performed in an order different than that described herein, or they may be separately fabricated into individual integrated circuit modules, or multiple ones of them may be fabricated into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (21)

1. A unicast tunnel establishment method, comprising:
the method comprises the steps that a first network device receives a VxLAN message sent by a second network device;
the first network equipment analyzes the identification information of the VxLAN message;
and the first network equipment establishes a VxLAN unicast tunnel with a destination address of the second network equipment according to the identification information.
2. The method of claim 1, wherein parsing, by the first network device, the identification information of the VxLAN packet comprises:
the first network equipment judges whether a VxLAN unicast tunnel with a destination address as the second network equipment is established or not;
and under the condition that the VxLAN unicast tunnel with the destination address as the second network equipment is not established, the first network equipment analyzes the identification information of the VxLAN message.
3. The method according to claim 1, wherein in a case where a destination address of an inner layer packet encapsulated in the VxLAN packet is a first client, after the first network device receives the VxLAN packet sent by the second network device, the method further comprises:
the first network equipment de-encapsulates the VxLAN message to obtain the inner layer message encapsulated in the VxLAN message;
and the first network equipment sends the inner layer message to the first client, wherein the first client is a client which communicates with a network side through the first network equipment.
4. The method according to claim 1, wherein the VxLAN message is encapsulated by the second network device according to VxLAN service specification standards;
wherein the identification information includes: the IP address of the second network equipment and the source MAC address of the inner layer message encapsulated in the VxLAN message; or, the identification information includes: and the IP address of the second network equipment and the source MAC address of the inner layer message encapsulated in the VxLAN message.
5. The method of claim 4, wherein the first network device establishing, according to the identification information, a VxLAN unicast tunnel addressed to the second network device comprises:
the first network equipment judges whether the VxLAN message is terminated locally on the first network equipment;
if so, the first network device establishes a VxLAN unicast tunnel with a destination address of the second network device according to the identification information;
under the condition that the identification information comprises a source MAC address of the inner layer message, the VxLAN unicast tunnel is an L2VxLAN unicast tunnel; and under the condition that the identification information comprises the source IP address of the inner layer message, the VxLAN unicast tunnel is an L3VxLAN unicast tunnel.
6. The method of claim 4, wherein the identification information further comprises at least one of: VLAN information carried in an outer layer label of the VxLAN message, VNI information carried in the outer layer label of the VxLAN message and Next HOP information inquired according to the IP address of the second network device.
7. The method according to any one of claims 1-6, wherein before the first network device receives the VxLAN message sent by the network device, the method further comprises:
the second network equipment receives an inner layer message sent by a second client to the first network equipment, wherein the second client is a client communicating with a network side through the second network equipment;
the second network equipment encapsulates the inner layer message into the VxLAN message according to VxLAN service standard;
and the second network equipment sends the VxLAN message to the first network equipment.
8. The method of claim 7, wherein encapsulating, by the second network device, the inner layer message into the VxLAN message according to the VxLAN service specification standard comprises:
the second network equipment judges whether a VxLAN unicast tunnel with a destination address as the first network equipment is established or not;
under the condition that a VxLAN unicast tunnel with a destination address being the first network equipment is not established, the second network equipment encapsulates the inner layer message into the VxLAN message according to the VxLAN service specification standard, wherein the VxLAN message is a VxLAN multicast message;
wherein the sending, by the second network device, the VxLAN packet to the first network device includes: and the second network equipment sends the VxLAN message through a VxLAN multicast tunnel so as to be received by the first network equipment.
9. The method of claim 7, wherein the second network device encapsulates an inner layer message sent to the first network device into the VxLAN message according to the VxLAN service specification standard further comprises:
under the condition that the established destination address is the VxLAN unicast tunnel of the first network equipment, the second network equipment packages the inner layer message into the VxLAN message according to the VxLAN service specification standard, wherein the VxLAN message is a VxLAN unicast message;
wherein the sending, by the second network device, the VxLAN packet to the first network device includes: and the second network equipment sends the VxLAN message to the first network equipment through a VxLAN unicast tunnel with a destination address of the first network equipment.
10. The method of any of claims 1-6, wherein after the first network device establishes a VxLAN unicast tunnel with a destination address for the second network device according to the identification information, the method further comprises:
the first network equipment counts the utilization rate of the VxLAN tunnel established by the first network equipment in a preset time period, wherein the VxLAN tunnel established by the first network equipment comprises the following steps: a VxLAN unicast tunnel and/or a VxLAN multicast tunnel;
the first network equipment judges whether the utilization rate of the VxLAN tunnel established by the first network equipment is lower than a preset value or not according to a statistical result;
and the first network equipment deletes the VxLAN tunnel of which the utilization rate is lower than the preset value in the VxLAN tunnel established by the first network equipment.
11. A unicast tunnel establishment device applied to a first network device, comprising:
the first receiving module is used for receiving the VxLAN message sent by the second network equipment;
the analysis module is used for analyzing the identification information of the VxLAN message;
and the establishing module is used for establishing a VxLAN unicast tunnel with the destination address as the second network equipment according to the identification information.
12. The apparatus of claim 11, wherein the parsing module comprises:
the judging unit is used for judging whether a VxLAN unicast tunnel with a destination address of the second network equipment is established or not;
and the analysis unit is used for analyzing the identification information of the VxLAN message by the first network equipment under the condition that the VxLAN unicast tunnel with the destination address as the second network equipment is not established.
13. The apparatus of claim 11, further comprising:
the de-encapsulation module is used for de-encapsulating the VxLAN message under the condition that the destination address of the inner layer message encapsulated in the VxLAN message is a first client side, so as to obtain the inner layer message encapsulated in the VxLAN message;
and the first sending module is used for sending the inner layer message to the first client, wherein the first client is a client which communicates with a network side through the first network device.
14. The apparatus of claim 11, wherein the VxLAN packet is encapsulated by the second network device according to a VxLAN service specification standard;
wherein the identification information includes: the IP address of the second network equipment and the source MAC address of the inner layer message encapsulated in the VxLAN message; or, the identification information includes: and the IP address of the second network equipment and the source MAC address of the inner layer message encapsulated in the VxLAN message.
15. The apparatus of claim 14, wherein the establishing means comprises:
the first judgment unit is used for judging whether the VxLAN message is terminated locally on the first network equipment;
the first establishing unit is used for establishing a VxLAN unicast tunnel with a destination address of the second network equipment according to the identification information under the condition that the judgment result is yes;
under the condition that the identification information comprises a source MAC address of the inner layer message, the VxLAN unicast tunnel is an L2VxLAN unicast tunnel; and under the condition that the identification information comprises the source IP address of the inner layer message, the VxLAN unicast tunnel is an L3VxLAN unicast tunnel.
16. The apparatus of claim 14, wherein the identification information further comprises at least one of: VLAN information carried in an outer layer label of the VxLAN message, VNI information carried in the outer layer label of the VxLAN message and Next HOP information inquired according to the IP address of the second network device.
17. The apparatus of any one of claims 11 to 16, further comprising:
the counting module is used for counting the utilization rate of the VxLAN tunnel established by the first network device in a preset time period, wherein the VxLAN tunnel established by the first network device comprises: a VxLAN unicast tunnel and/or a VxLAN multicast tunnel;
the second judging module is used for judging whether the utilization rate of the VxLAN tunnel established by the first network equipment is lower than a preset value or not according to a statistical result;
and the deleting module is used for deleting the VxLAN tunnel of which the utilization rate is lower than the preset value in the VxLAN tunnel established by the first network equipment.
18. A unicast tunnel establishment system, comprising: a first network device and a second network device, wherein,
the first network device comprises the unicast tunnel establishment means of any of claims 11 to 17;
and the second network equipment is coupled to the first network equipment and used for sending the VxLAN message to the first network equipment.
19. The system of claim 18, wherein the second network device comprises:
a second receiving module, configured to receive the inner layer packet sent by a second client to a first client, where the second client is a client that communicates with a network side through the second network device, and the first client is a client that communicates with the network side through the first network device;
the encapsulation module is used for encapsulating the inner layer message into the VxLAN message according to VxLAN service standard;
and the second sending module is used for sending the VxLAN message to the first network equipment.
20. The system of claim 19, wherein the encapsulation module comprises:
a third judging unit, configured to judge whether a VxLAN unicast tunnel with a destination address of the first network device is established;
the first encapsulating unit is used for encapsulating the inner layer message into the VxLAN message according to the VxLAN service specification standard by the second network equipment under the condition that the VxLAN unicast tunnel with the destination address of the first network equipment is not established, wherein the VxLAN message is a VxLAN multicast message;
the second sending module is configured to send the VxLAN packet through a VxLAN multicast tunnel, so that the VxLAN packet is received by the first network device.
21. The system of claim 19, wherein the encapsulation module further comprises:
the second encapsulating unit is used for encapsulating the inner layer message into the VxLAN message according to the VxLAN service specification standard under the condition that the established destination address is the VxLAN unicast tunnel of the first network equipment, wherein the VxLAN message is a VxLAN unicast message;
the second sending module is configured to send the VxLAN packet to the first network device through a VxLAN unicast tunnel with a destination address of the first network device.
CN201510644150.0A 2015-09-30 2015-09-30 Single tunnel method for building up, device and system Withdrawn CN106559302A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201510644150.0A CN106559302A (en) 2015-09-30 2015-09-30 Single tunnel method for building up, device and system
PCT/CN2016/094241 WO2017054576A1 (en) 2015-09-30 2016-08-09 Unicast tunnel building method, apparatus and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510644150.0A CN106559302A (en) 2015-09-30 2015-09-30 Single tunnel method for building up, device and system

Publications (1)

Publication Number Publication Date
CN106559302A true CN106559302A (en) 2017-04-05

Family

ID=58418025

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510644150.0A Withdrawn CN106559302A (en) 2015-09-30 2015-09-30 Single tunnel method for building up, device and system

Country Status (2)

Country Link
CN (1) CN106559302A (en)
WO (1) WO2017054576A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107171966A (en) * 2017-07-27 2017-09-15 迈普通信技术股份有限公司 A kind of VXLAN file transmitting methods, VTEP and VXLAN systems
CN109981455A (en) * 2017-12-28 2019-07-05 中兴通讯股份有限公司 A kind of tunnel implementation and device
CN111371667A (en) * 2019-10-23 2020-07-03 上海科技网络通信有限公司 LTE VPDN networking method based on VxLAN technology under cloud computing environment
CN112187611A (en) * 2020-09-30 2021-01-05 瑞斯康达科技发展股份有限公司 Method, storage medium and device for establishing service tunnel
CN112532501A (en) * 2019-09-18 2021-03-19 中国电信股份有限公司 Host physical address processing method and device and computer readable storage medium

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108337118B (en) * 2018-01-31 2021-01-26 新华三技术有限公司 Message forwarding method and device
CN112003749B (en) * 2020-08-21 2023-07-14 北京浪潮数据技术有限公司 Host information adding method, system and electronic equipment
CN112511991A (en) * 2020-11-27 2021-03-16 锐捷网络股份有限公司 On-demand method, equipment and storage medium
CN114915518A (en) * 2021-02-07 2022-08-16 华为技术有限公司 Message transmission method, system and equipment
CN113037883B (en) * 2021-02-23 2022-06-10 中国联合网络通信集团有限公司 Method and device for updating MAC address table entries
CN113872847B (en) * 2021-11-18 2023-05-30 浪潮思科网络科技有限公司 Message forwarding method, device and medium based on VXLAN network
CN115102806B (en) * 2022-06-20 2023-10-17 咪咕视讯科技有限公司 Multicast data transmission method, device, system and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104158718A (en) * 2014-08-25 2014-11-19 杭州华三通信技术有限公司 A message processing method and device
CN104601427A (en) * 2013-10-31 2015-05-06 杭州华三通信技术有限公司 Message forwarding method and device in data center network
CN104917682A (en) * 2014-03-14 2015-09-16 杭州华三通信技术有限公司 Overlay network configuration method and device

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101938415B (en) * 2010-08-30 2012-07-18 北京傲天动联技术有限公司 Rapid forwarding method for network forwarding device
US9350558B2 (en) * 2013-01-09 2016-05-24 Dell Products L.P. Systems and methods for providing multicast routing in an overlay network
CN103957160B (en) * 2014-05-12 2017-04-19 华为技术有限公司 Message sending method and device
CN104243268B (en) * 2014-09-19 2017-05-10 新华三技术有限公司 Association method and device between virtual extensible local area networks (VXLAN) and tunnel
CN104767666B (en) * 2015-04-15 2019-01-11 新华三技术有限公司 Virtual expansible local area network tunneling termination establishes tunnel approach and equipment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104601427A (en) * 2013-10-31 2015-05-06 杭州华三通信技术有限公司 Message forwarding method and device in data center network
CN104917682A (en) * 2014-03-14 2015-09-16 杭州华三通信技术有限公司 Overlay network configuration method and device
CN104158718A (en) * 2014-08-25 2014-11-19 杭州华三通信技术有限公司 A message processing method and device

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107171966A (en) * 2017-07-27 2017-09-15 迈普通信技术股份有限公司 A kind of VXLAN file transmitting methods, VTEP and VXLAN systems
CN107171966B (en) * 2017-07-27 2019-11-26 迈普通信技术股份有限公司 A kind of VXLAN file transmitting method, VTEP and VXLAN system
CN109981455A (en) * 2017-12-28 2019-07-05 中兴通讯股份有限公司 A kind of tunnel implementation and device
CN112532501A (en) * 2019-09-18 2021-03-19 中国电信股份有限公司 Host physical address processing method and device and computer readable storage medium
CN112532501B (en) * 2019-09-18 2023-04-18 中国电信股份有限公司 Host physical address processing method and device and computer readable storage medium
CN111371667A (en) * 2019-10-23 2020-07-03 上海科技网络通信有限公司 LTE VPDN networking method based on VxLAN technology under cloud computing environment
CN112187611A (en) * 2020-09-30 2021-01-05 瑞斯康达科技发展股份有限公司 Method, storage medium and device for establishing service tunnel
CN112187611B (en) * 2020-09-30 2022-03-25 瑞斯康达科技发展股份有限公司 Method, storage medium and device for establishing service tunnel

Also Published As

Publication number Publication date
WO2017054576A1 (en) 2017-04-06

Similar Documents

Publication Publication Date Title
CN106559302A (en) Single tunnel method for building up, device and system
US8885649B2 (en) Method, apparatus, and system for implementing private network traversal
CN114124618B (en) Message transmission method and electronic equipment
US20160285820A1 (en) Method for processing address resolution protocol message, switch, and controller
US11153207B2 (en) Data link layer-based communication method, device, and system
CN104104747A (en) Method and device for message transmission
CN105812259A (en) Packet forwarding method and device
CN104022936B (en) A kind of tunnel establishing method and device
CN104579954A (en) Message cross-domain forwarding method and device as well as communication device
CN106899500B (en) Message processing method and device for cross-virtual extensible local area network
CN111786867B (en) Data transmission method and server
CN106878181A (en) A kind of message transmitting method and device
WO2016180020A1 (en) Message processing method, device and system
CN109936492A (en) A kind of methods, devices and systems by tunnel transmission message
CN107370654B (en) Pseudo wire data message encapsulation and decapsulation methods and related devices
CN107547340A (en) A kind of message forwarding method and device
CN108093041A (en) Single channel VDI proxy servers and implementation method
CN105207909A (en) Method for transmitting information and network apparatus
EP3007389A1 (en) Gre tunnel implementation method, access point and gateway
CN117811875A (en) Household intercommunication network access method and device
CN108156050A (en) Seamless bidirectional forwarding detection (BFD) method and device
EP3503484B1 (en) Message transmission methods and devices
JP2024504466A (en) Packet forwarding methods, packet processing methods, and devices
CN116488958A (en) Gateway processing method, virtual access gateway, virtual service gateway and related equipment
CN107547691B (en) Address resolution protocol message proxy method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20170405