CN101262407B - A method for virtual router to establish tunnel - Google Patents
A method for virtual router to establish tunnel Download PDFInfo
- Publication number
- CN101262407B CN101262407B CN2008100665993A CN200810066599A CN101262407B CN 101262407 B CN101262407 B CN 101262407B CN 2008100665993 A CN2008100665993 A CN 2008100665993A CN 200810066599 A CN200810066599 A CN 200810066599A CN 101262407 B CN101262407 B CN 101262407B
- Authority
- CN
- China
- Prior art keywords
- tunnel
- interface
- address
- virtual router
- protocol
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method for a virtual router to establish channels. The method comprises the steps of configuring universal router packaging channel information to a redundancy protocol equipment of a virtual router, setting a timer for inspecting the status of a channel port, regularly checking a source address and a destination address of the channel, and further checking the source address information of the channel if the source address and the destination address of the channel are not zero and the destination address of the channel is provided with a router, setting the protocol status of the channel port to be Up if an administrative status of the channel is Up, otherwise setting the administrative status of the channel to be Down and setting the timer for inspecting the status of the channel port again. By adopting the interaction of a GRE module and a VRRP module, the method provides a redundancy backup gateway which is supported by the VRRP technology when a subnet equipment adopts a GRE channel as a static default gateway, and improves the reliability and continuity of the running service to an access equipment when the GRE channel is adopted by a network system to forward data.
Description
Technical field
The present invention relates to a kind of method of network communication field, particularly be a kind of method of using the virtual router address to set up the tunnel.
Background technology
GRE of the prior art (Generic Routing Encapsulation), i.e. generic route encapsulation, it can encapsulate another layer agreement arbitrarily on the layer protocol arbitrarily again.The configuration of gre tunneling is fairly simple, and by prior art is known, related command is not just here given unnecessary details.
The Interface status of gre tunneling is relevant with the source address of tunnel configuration and destination address, present processing is to use an Interface status to check that timer comes the Interface status of regular check GRE, checks according to the source address that disposes in the GRE interface, destination address and agreement routing table.If check and pass through, Interface status is made as UP, otherwise is made as DOWN.
VRRP (Virtual Router Redundancy Protocol) is a Virtual Router Redundacy Protocol, is used to the configuration of static gateway to provide safeguard.If a main frame is wanted to communicate with extraneous network, simple and popular way is the static configuration default gateway.
In case but the default gateway deadlock, main frame will lose with extraneous institute is related.VRRP has described and elected the responsibility that a virtual router is born static gateway between a plurality of VRRP router.It detects and election contest mechanism by a cover is provided, and has realized the route backup function of in the multiple access LAN (such as Ethernet).
Agreement is mainly by closing the backup of equipment to the local Webweb, keep network system and dock continuity into the main process equipment housekeeping runs, and the route next jump equipment that main process equipment is gone in butt joint just backups.This protocol description be a voting protocol, it assigns in the VRRP groups of routers in a LAN (local area network (LAN)) router to take on the responsibility of virtual router dynamically.
That router that has virtual router ip address in the VRRP router is MASTER (host apparatus), and mails to the packet of this address.This election process provided a dynamic responsibility conversion when MASTER loses efficacy, and this will allow the address of any one virtual router on same LAN can be used as first jumping of end host acquiescence.
A benefit using VRRP is exactly can obtain a very high default path of validity and need not to require any dynamic routing or the router discovery protocol of configuration on what the end host in office.When one of them gateway broke down, this agreement can realize allowing it switch on the standby router fast, and does not interrupt original business.
As shown in Figure 1, in the Virtual Router Redundacy Protocol realization system of prior art, core layer is Internet, and convergence layer has comprised host apparatus and stand-by equipment, comprised the subnet equipment that is connected by the VRRP router at Access Layer, described subnet equipment has connected user terminal.
When the router of user subnet wish and the static default gateway between set up gre tunneling, use gre tunneling to communicate and when E-Packeting, be that the router of all fixing with an IP address and MAC Address is set up gre tunneling to subnet equipment.This router is a logical concept of being created by the VRRP agreement.
Host apparatus and stand-by equipment in described subnet equipment and the VRRP group all need the configuring GRE interface, and the gre tunnel interface of host apparatus is responsible for arp response and is transmitted the GRE data message.When host apparatus breaks down, wish that the gre tunneling of setting up between subnet equipment and the virtual router can switch by VRRP, use the gre tunnel interface on the stand-by equipment to E-Packet.
Tunnel on host apparatus and the stand-by equipment all should use the VRRP virtual address to do the source at this moment, prior art has the following disadvantages like this: in the present gre tunnel interface realization technology, because the gre tunnel interface status checkout does not comprise the inspection to VRRP address and VRRP state, therefore be that host apparatus or stand-by equipment tunnel think that all source address is not a local address, the capital is changed to DOWN with the gre tunnel interface state, therefore cause when the route of setting up gre tunneling breaks down, subnet equipment will lose with extraneous institute is related.
So also there is defective in prior art, and await improving and development.
Summary of the invention
The technical problem to be solved in the present invention provides a kind of method of virtual router to establish tunnel, when subnet equipment uses gre tunneling to do the static default gateway, gre tunneling can be set up with the VRRP virtual address, guarantee that thus subnet equipment is still available when the route of setting up gre tunneling breaks down.
The present invention is by the following technical solutions:
A kind of method of virtual router to establish tunnel, it may further comprise the steps:
A, on Virtual Router Redundacy Protocol equipment configure generic router packaging tunnel information, and tunnel interface status checkout timer is set, the source address in regular check tunnel and the destination address in tunnel;
If B tunnel source address or tunnel destination address are 0, perhaps the destination address to the tunnel does not have route, and the interface protocol state that the tunnel just is set is DOWN, and the notification interface administration module;
If C tunnel source address and destination address are not 0, and route is arranged, just further check the tunnel source address information to the tunnel destination address; If the tunnel source address is the local interface address, just further check the controlled state of tunnel interface;
If the controlled state in D tunnel is UP, it is UP that the tunnel interface protocol status just is set, otherwise the controlled state of establishing the tunnel is DOWN, and resets tunnel interface status checkout timer.
Described method wherein, also comprises after the described step C:
If C1 tunnel source address is the Virtual Router Redundacy Protocol address, just further check the Virtual Router Redundacy Protocol state of local device.
Described method wherein, also comprises behind the described step C1:
If C2 tunnel source address is not neither the local interface address is again the Virtual Router Redundacy Protocol address, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
Described method wherein, also comprises after the described step C1:
If the C3 local device is the Virtual Router Redundacy Protocol host apparatus, just further check the controlled state of tunnel interface.
Described method wherein, also comprises after the described step C3:
If the C4 local device is the Virtual Router Redundacy Protocol stand-by equipment, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
Described method, wherein, described steps A is checked the tunnel source address of configuration and the protocol status of destination address and agreement routing table decision interface also by the generic route encapsulation module.
Described method, wherein, described steps A also by the Virtual Router Redundacy Protocol module, is created described virtual router, and is this virtual router configuration of IP address.
Compared with prior art, the method of a kind of virtual router to establish tunnel provided by the present invention, owing to adopt the mutual of GRE module and VRRP module, when using gre tunneling to do the static default gateway for subnet equipment, a kind of redundancy backup gateway by the VRRP technical support is provided, make between access device and the VRRP equipment and can set up gre tunneling with the VRRP virtual address, when having improved network system and having transmitted data with gre tunneling to inserting the equipment operation reliability of service with continuous.
Description of drawings
Fig. 1 is the GRE networking schematic diagram of prior art;
Fig. 2 is the inventive method is set up gre tunneling with the VRRP virtual router network environment figure;
Fig. 3 is the VRRP equipment inspection gre tunnel interface state flow chart of the inventive method.
Embodiment
Below in conjunction with accompanying drawing, will be described in further detail each preferred embodiment of the present invention:
Need to be provided with following mixed-media network modules mixed-media in the method for virtual router to establish tunnel of the present invention:
The GRE module is used to check the tunnel source address of configuration and the protocol status of destination address and agreement routing table decision interface.
The VRRP module is used to create a virtual router, and is the virtual router configuration of IP address.With setting up gre tunneling between this virtual router and the subnet equipment, need the message of GRE resume module all to be sent to host apparatus.When host apparatus breaks down, just the bear the responsibility responsibility of host apparatus of stand-by equipment, guaranteed not the interrupting of original business less than one second switching time.
The inventive method has used the VRRP virtual address to set up gre tunneling, as shown in Figure 2, when subnet equipment uses gre tunneling to do the static default gateway, if setting up the route in tunnel is blocked, the tunnel can use route stand-by to rebuild the tunnel, when subnet is communicated by letter with the external world with gre tunneling backup can be arranged, reduce the risk of subnet equipment and extraneous interrupt communication.
The inventive method may further comprise the steps:
Step 1: configuring GRE tunnel information on VRRP equipment is provided with tunnel interface status checkout timer, the source address in regular check tunnel and the destination address in tunnel.
Step 2: if tunnel source address or tunnel destination address are 0, perhaps the destination address to the tunnel does not have route, and the interface protocol state that the tunnel just is set is DOWN, and the notification interface administration module.
Step 3: if tunnel source address and destination address are not 0, and route is arranged, just further check the tunnel source address information to the tunnel destination address.
Step 4:, just further check the controlled state of tunnel interface:, just further check the VRRP state of local device if the tunnel source address is the VRRP address if the tunnel source address is the local interface address; If the tunnel source address is not neither the local interface address is again the VRRP address, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
Step 5:, just further check the controlled state of tunnel interface if local device is the VRRP host apparatus.If local device is the VRRP stand-by equipment, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
Step 6: if the controlled state in tunnel is UP, it is UP that the tunnel interface protocol status just is set, otherwise is made as DOWN.
Step 7: reset tunnel interface status checkout timer
As shown in Figure 3, be that the present invention uses virtual router to set up the detailed process step of gre tunneling:
(a) on VRRP equipment, disposed gre tunneling information, and Interface status checks that timer expires, and just checks the source address and the destination address in tunnel;
(b) if source address or destination address are 0, it is DOWN that execution in step (g) is provided with Interface status, otherwise execution in step (c);
(c) be not oneself if arrive the route or the route outgoing interface of destination address, it is DOWN that execution in step (g) is provided with Interface status, otherwise execution in step (d);
(d) check whether local interface address of source address, if the local interface address, execution in step (f), if the VRRP address, execution in step (e) is DOWN otherwise execution in step (g) is provided with Interface status;
(e) if this locality is the VRRP host apparatus, execution in step (f) is DOWN otherwise execution in step (g) is provided with Interface status;
(f) check controlled state, if controlled state is DOWN, it is DOWN that execution in step (g) is provided with Interface status, is UP otherwise execution in step (h) is provided with Interface status;
(g) Interface status being set is DOWN, and the notification interface administration module;
(h) Interface status being set is UP, and the notification interface administration module;
(i) reset timer;
(j) Interface status checks that flow process finishes.
Compared with prior art, the method of virtual router to establish tunnel of the present invention is owing to adopt the mutual of GRE module and VRRP module, when using gre tunneling to do the static default gateway for subnet equipment, a kind of redundancy backup gateway by the VRRP technical support is provided, make between access device and the VRRP equipment and can set up gre tunneling with the VRRP virtual address, when having improved network system and having transmitted data with gre tunneling to inserting the equipment operation reliability of service with continuous.
Should be understood that above-mentioned description at preferred embodiment of the present invention is comparatively concrete, can not therefore think the restriction to scope of patent protection of the present invention, scope of patent protection of the present invention should be as the criterion with claims.
Claims (7)
1. the method for a virtual router to establish tunnel, it may further comprise the steps:
A, on Virtual Router Redundacy Protocol equipment configure generic router packaging tunnel information, and tunnel interface status checkout timer is set, the source address in regular check tunnel and the destination address in tunnel;
If B tunnel source address or tunnel destination address are 0, perhaps the destination address to the tunnel does not have route, and the interface protocol state that the tunnel just is set is DOWN, and the notification interface administration module;
If C tunnel source address and destination address are not 0, and route is arranged, just further check the tunnel source address information to the tunnel destination address; If the tunnel source address is the local interface address, just further check the controlled state of tunnel interface;
If the controlled state in D tunnel is UP, it is UP that the tunnel interface protocol status just is set, otherwise the controlled state of establishing the tunnel is DOWN, and resets tunnel interface status checkout timer.
2. method according to claim 1 is characterized in that, also comprises after the described step C:
If C1 tunnel source address is the Virtual Router Redundacy Protocol address, just further check the Virtual Router Redundacy Protocol state of local device.
3. method according to claim 2 is characterized in that, also comprises behind the described step C1:
If C2 tunnel source address is not neither the local interface address is again the Virtual Router Redundacy Protocol address, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
4. method according to claim 3 is characterized in that, also comprises after the described step C1:
If the C3 local device is the Virtual Router Redundacy Protocol host apparatus, just further check the controlled state of tunnel interface.
5. method according to claim 4 is characterized in that, also comprises after the described step C3:
If the C4 local device is the Virtual Router Redundacy Protocol stand-by equipment, it is DOWN that the tunnel interface protocol status just is set, and the notification interface administration module.
6. method according to claim 1 is characterized in that, described steps A is checked the tunnel source address of configuration and the protocol status of destination address and agreement routing table decision interface also by the generic route encapsulation module.
7. method according to claim 1 is characterized in that, described steps A also by the Virtual Router Redundacy Protocol module, is created described virtual router, and is this virtual router configuration of IP address.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008100665993A CN101262407B (en) | 2008-04-14 | 2008-04-14 | A method for virtual router to establish tunnel |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008100665993A CN101262407B (en) | 2008-04-14 | 2008-04-14 | A method for virtual router to establish tunnel |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101262407A CN101262407A (en) | 2008-09-10 |
| CN101262407B true CN101262407B (en) | 2011-05-11 |
Family
ID=39962626
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008100665993A Active CN101262407B (en) | 2008-04-14 | 2008-04-14 | A method for virtual router to establish tunnel |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101262407B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101572664B (en) * | 2009-05-27 | 2011-11-09 | 杭州华三通信技术有限公司 | GRE tunnel collocation method and router thereof |
| CN101695041B (en) * | 2009-09-21 | 2012-12-19 | 中兴通讯股份有限公司 | Method for realizing routing notification between every two virtual routers and physical router |
| CN101741740B (en) * | 2009-12-15 | 2012-02-08 | 杭州华三通信技术有限公司 | Method, system and equipment for balancing loads |
| CN104852848B (en) * | 2015-04-20 | 2019-04-09 | 新华三技术有限公司 | A kind of method and apparatus of data transmission |
| CN106936795B (en) * | 2015-12-31 | 2019-12-24 | 华为技术有限公司 | Method and gateway device for establishing internet protocol security tunnel |
| CN105827464B (en) * | 2016-05-16 | 2019-03-19 | 江南大学 | Can automatically dispose virtual router construction method |
| CN107257300B (en) * | 2017-08-09 | 2018-08-31 | 广州市大为通信有限公司 | A kind of 4G access devices of wireless backup, system and method |
| CN111030912B (en) * | 2018-10-09 | 2021-02-12 | 华为技术有限公司 | Method for intercommunication between virtual private cloud VPCs |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1852214A (en) * | 2005-11-02 | 2006-10-25 | 华为技术有限公司 | Routing method of virtual special network |
| CN1878115A (en) * | 2005-06-07 | 2006-12-13 | 中兴通讯股份有限公司 | VPN realizing method |
-
2008
- 2008-04-14 CN CN2008100665993A patent/CN101262407B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1878115A (en) * | 2005-06-07 | 2006-12-13 | 中兴通讯股份有限公司 | VPN realizing method |
| CN1852214A (en) * | 2005-11-02 | 2006-10-25 | 华为技术有限公司 | Routing method of virtual special network |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101262407A (en) | 2008-09-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101262407B (en) | A method for virtual router to establish tunnel | |
| US10686749B2 (en) | Packet sending method and network device | |
| JP4688765B2 (en) | Network redundancy method and intermediate switch device | |
| US7054264B2 (en) | Interconnect and gateway protection in bidirectional ring networks | |
| CN102984057B (en) | A kind of Multi-service integration dual-redundancy network system | |
| CN104104570A (en) | Aggregation processing method in IRF (Intelligent Resilient Framework) system and device | |
| EP2424186B1 (en) | Dual-computer hot-standby method, device and system | |
| CN101060533B (en) | A method, system and device for improving the reliability of VGMP protocol | |
| US9019816B2 (en) | Communication system, communication method, and communication apparatus | |
| CN101374075A (en) | Method, apparatus and system for protecting multicast source | |
| CN113992582B (en) | Message forwarding method and device | |
| CN112787960A (en) | Stack splitting processing method, device and equipment and storage medium | |
| CN102437919B (en) | Access router and link reliability protection method | |
| CN108833272A (en) | A kind of route management method and device | |
| CN102123080B (en) | Data forwarding device and cable fastener plate and data forwarding method | |
| CN104702498A (en) | Method and device for reducing the number of optical connections through coordination protection | |
| US20120269056A1 (en) | Method, device, and system for protecting semi-ring network | |
| CN113973020A (en) | Method, device and system for sending multicast message | |
| CN104579953A (en) | A method for releasing routing, and a virtual router redundancy protocol backup group and network | |
| JP2008301433A (en) | Communication device and ring node device | |
| WO2014044088A1 (en) | L2tp network protection method, apparatus and system | |
| Cisco | Troubleshooting Transparent Bridging Environments | |
| CN102045259A (en) | Packet switching equipment and method for managing customer service | |
| WO2015184730A1 (en) | Primary and alternate routing equipment, and backup, switching method and routing system therebetween | |
| CN102315925B (en) | Method for realizing VRRP (virtual router redundancy protocol) on RPR (resilient packet ring) and routing equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |