CN104702431B - A kind of method and device of Virtual Private Network double break protection - Google Patents

A kind of method and device of Virtual Private Network double break protection Download PDF

Info

Publication number
CN104702431B
CN104702431B CN201310684476.7A CN201310684476A CN104702431B CN 104702431 B CN104702431 B CN 104702431B CN 201310684476 A CN201310684476 A CN 201310684476A CN 104702431 B CN104702431 B CN 104702431B
Authority
CN
China
Prior art keywords
bridging nodes
breakpoint
network segment
routing
layers
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310684476.7A
Other languages
Chinese (zh)
Other versions
CN104702431A (en
Inventor
吴满全
边德明
毕胜
王艳秋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Group Inner Mongolia Co Ltd
Original Assignee
China Mobile Group Inner Mongolia Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Group Inner Mongolia Co Ltd filed Critical China Mobile Group Inner Mongolia Co Ltd
Priority to CN201310684476.7A priority Critical patent/CN104702431B/en
Publication of CN104702431A publication Critical patent/CN104702431A/en
Application granted granted Critical
Publication of CN104702431B publication Critical patent/CN104702431B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of Virtual Private Network double break protection method, the method includes:When occurring the first breakpoint between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network, and when the second breakpoint occurs in the link between the bridging nodes and its spare bridging nodes, the unreachable network segment of routing caused by detecting the breakpoint;When first breakpoint and the second breakpoint cause the routing of the corresponding network segment of the bridging nodes interface unreachable, the bridging nodes utilize bridge configuration relationship, to Layer 2 virtual private network(L2VPN)In business pseudo-wire(PW)It is inserted into alarm instruction;After the PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridging nodes.The present invention also discloses a kind of devices of Virtual Private Network double break protection; L2VPN can be made to perceive the variation in L3VPN networks using the present invention, VPN double break protection mechanisms be established, to avoid service disconnection phenomenon; guarantee business is normally carried out, and improves the performance of system.

Description

A kind of method and device of Virtual Private Network double break protection
Technical field
The present invention relates to a kind of methods that the network switching technique of the communications field more particularly to Virtual Private Network double break are protected And device.
Background technology
Existing Packet Transport Network(PTN, Packet Transport Network)Framework is generally by backbone ring, convergence ring With access ring or access chain composition, wherein backbone ring is the cyclic structure being composed in series by several backbone nodes;Converging ring is The cyclic structure being composed in series with several aggregation nodes by least one backbone node on same backbone ring;Access ring It is the cyclic structure being composed in series with several access nodes by a backbone node or one or two aggregation node, access ring is again It is generally divided into dual homed access ring and single aggregation node access ring;It is by a backbone node or an aggregation node or one to access chain The chain structure that access node on a access ring is composed in series with several access nodes.
3GPP Long Term Evolutions are being carried using PTN(LTE, Long Term Evolution)When business, PTN network A kind of group of common net topology is the group network topological structure of double first line of a couplet forms, as shown in Figure 1.Double first line of a couplet networkings shown in Fig. 1 In topology, it will usually configure Layer3 Virtual Private Network in core layer PTN device and backbone convergence device(L3VPN, Layer3Virtual Private Network), two layer virtual private networks are configured on cut-in convergent layer(L2VPN, Layer2Virtual Private Network), the carrying and scheduling of LTE business are carried out by the way of L2VPN+L3VPN.
It is referred to as two layers and three layers positioned at the equipment of L2VPN and L3VPN network boundaries(L2L3)Bridging nodes, i.e. backbone section Point is internally provided with L2 virtual interfaces and the L3 virtual interfaces of IP network sector address for configuring base station in L2L3 bridging nodes, because This, L2L3 bridging nodes can establish the bridge joint relationship of L2 virtual interfaces and L3 virtual interfaces, and then realize business in L2VPN and Forwarding between L3VPN.
In order in L2L3 bridging nodes failures, realize the protection of business, it will usually using double extensions as shown in Figure 1 Form.In L2VPN networks, using pseudo-wire(PW, Pseudo Wire)Dual-homing protection, the corresponding dual homed node of PW dual-homing protection Edge router(PE, Provider Edge)PE3/PE4, PE5/PE6, PE7/PE8 are respectively formed towards evolved base station(e- NodeB)Active/standby gateway Virtual Router Redundancy Protocol(VRRP, Virtual Router Redundancy Protocol)It protects Shield, wherein e-NodeB indicates that n is integer with eNB-n;Meanwhile quick heavy-route is configured inside L3VPN(VPN FRR, Fast ReRoute)Protection, to all Virtual Private Network routing forwardings(VRF, VPN Routing&Forwarding)Routing is equal Configure active and standby next-hop PE nodes, the fault detect between PE nodes, using label switched path(LSP, Label Switching Path)The operation management maintainance of layer(OAM, Operation Administration and Maintenance) Function is realized.
In existing PTN carries LTE business networking protection techniques, lack the joint-action mechanism of L2VPN and L3VPN protections, As shown in Fig. 2, when failure as shown in Figure 2 occurs, downlink business is caused to be sent to due to there is double break in L3VPN networks PE4 is not switched in L2VPN networks to the business of main bridging nodes PE3 still, still by upper industry in L2VPN networks Business is sent to PE3, in this way, will lead to the interruption of business.
Invention content
In view of this, an embodiment of the present invention is intended to provide a kind of method and device of Virtual Private Network double break protection, it can be real The linkage of existing L2VPN and L3VPN protections, ensures being normally carried out for business.
In order to achieve the above objectives, the technical solution of the embodiment of the present invention is realized in:
An embodiment of the present invention provides a kind of Virtual Private Network double break protection method, the method includes:
When there is the first breakpoint between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network, and it is described When the second breakpoint occurs in link between bridging nodes and its spare bridging nodes, routing caused by detecting the breakpoint is unreachable The network segment;
When first breakpoint and the second breakpoint cause the routing of the corresponding network segment of the bridging nodes interface unreachable, The bridging nodes utilize bridge configuration relationship, and the business PW into L2VPN is inserted into alarm instruction;
After the PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridging nodes.
In said program, the unreachable network segment of routing caused by the detection breakpoint is:Detect the bridging nodes three The state of the corresponding L3VPN LSP of layer interface;
The routing of the corresponding network segment of the bridging nodes is unreachable to be:Three layer interface of the bridging nodes is corresponding all L3VPN LSP fail.
In said program, the business PW into L2VPN is inserted into alarm and is designated as:The bridging nodes indicate alarm Be inserted into the bridging nodes has with three layers of virtual interface in two layers of virtual interface of bridge joint relationship, is inserted by two layers of virtual interface Enter to corresponding PW.
In said program, the method further includes:
It detects and is route up to the network segment caused by first breakpoint restores and/or second breakpoint restores;
Detection is route is up to the network segment:Detect the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State;
When detecting that the breakpoint recovery causes the corresponding network segment routing of the bridging nodes reachable, stop to L2VPN In business PW be inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes is up to being:Three layers of the corresponding 2N items of three layer interface of the bridging nodes P items in LSP(1≤p≤2N)Restore normal, then the routing of the corresponding IP address network segment of three layers of virtual interface is from unreachable change It is reachable.
Start PW dual homeds to switch, by L2VPN service switchbacks.
The embodiment of the present invention additionally provides a kind of device of Virtual Private Network double break protection, and described device includes that detection is single Member, Alarm Unit, switch unit;
The detection unit, for working as to go out between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network Existing first breakpoint, and when the second breakpoint occurs in the link between the bridging nodes and its spare bridging nodes, detect described disconnected The unreachable network segment of routing caused by point;
The Alarm Unit, for leading to the corresponding network segment of the bridging nodes when first breakpoint and the second breakpoint When routeing unreachable, the bridging nodes utilize bridge configuration relationship, and the business PW into L2VPN is inserted into alarm instruction;
The switch unit, for after the PW receives alarm instruction, starting PW dual homeds and switching, L2VPN business is cut Change to spare bridging nodes.
In said program, the unreachable network segment of routing is caused by the detection unit detects the breakpoint:Detect the bridge Connect the state of the corresponding L3VPN LSP of three layer interface of node;
The routing of the corresponding network segment of the bridging nodes is unreachable to be:Three layer interface of the bridging nodes is corresponding all L3VPN LSP fail.
In said program, business PW of the Alarm Unit into L2VPN is inserted into alarm and is designated as:Alarm Unit will alert Instruction is inserted into having in two layers of virtual interface of bridge joint relationship with three layers of virtual interface for the bridging nodes, passes through two layers of virtual connection Mouth is inserted into corresponding PW.
In said program, when the detection unit is additionally operable to detect that first breakpoint restores and/or described second breaks Routing is up to the network segment caused by point restores;
Detection is route is up to the network segment:Detect the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State;
The Alarm Unit is additionally operable to detect that the breakpoint recovery causes the corresponding network segment routing of the bridging nodes When reachable, stop the business PW into L2VPN and be inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes is up to being:The corresponding L3VPN's of three layer interface of the bridging nodes P items in three layers of LSP of the corresponding 2N items of some three layers of virtual interface(1≤p≤2N)Restore normal, then three layers of virtual interface corresponds to The routing of the IP address network segment become reachable from unreachable.
The switch unit is additionally operable to startup PW dual homeds and switches, by L2VPN service switchbacks.
The method and device for realizing the protection of Virtual Private Network double break that the embodiment of the present invention is provided, when two layers and three layers of void Occurs the first breakpoint between the bridging nodes and upper layer backbone node of quasi- private network, and the bridging nodes are saved with its spare bridge joint When the second breakpoint occurs in link between point, the failure of LSP is detected using MPLS-OAM technologies in L2L3 bridging nodes, when described When first breakpoint and the second breakpoint cause the routing of the corresponding network segment of the bridging nodes interface unreachable, the bridging nodes profit It is inserted into alarm instruction with business PW of the bridge configuration relationship into L2VPN;After the PW receives alarm instruction, starts PW dual homeds and fall It changes, by L2VPN service switchings to spare bridging nodes.In this way, the present invention can be such that L2VPN perceives in time in L3VPN networks The variation of generation, it is existing to avoid service disconnection of the existing technology to establish the linkage double break protection mechanism of L3VPN protections As ensureing being normally carried out for business, improving the performance of system.
Description of the drawings
Fig. 1 is a kind of networking topological diagram of double first line of a couplet forms of existing PTN network;
Fig. 2 is the networking topological diagram that many places failure occurs for Virtual Private Network;
Fig. 3 is one Virtual Private Network double break guard method implementation process schematic diagram of the embodiment of the present invention;
Fig. 4 is two Virtual Private Network double break guard method implementation process schematic diagram of the embodiment of the present invention;
Fig. 5 is Virtual Private Network double break protective device composed structure schematic diagram of the embodiment of the present invention.
Specific implementation mode
In embodiments of the present invention, when between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network, And there is breakpoint between the bridging nodes and its spare bridging nodes, lead to the corresponding network segment of the bridging nodes interface When routeing unreachable, according to bridge configuration relationship, the business PW into L2VPN is inserted into alarm instruction;After PW receives alarm instruction, Start PW dual homeds to switch, by L2VPN service switchings to spare bridging nodes.
Fault detect between L3VPN nodes, using LSP layers of multiprotocol label switching operation management maintainance(Multi- Protocol Label Switching Operation Administration and Maintenance)MPLS-OAM work( It can realize;
Routeing the unreachable network segment caused by the detection breakpoint is:It is corresponding to detect three layer interface of the bridging nodes The state of L3VPN label switching path LSPs;It is described to detect that the routing of the corresponding network segment of bridging nodes interface is unreachable and be:Inspection The LSP for measuring the corresponding all L3VPN of three layer interface of the bridging nodes fails.
It is configured according to the bridge joint relationship of the bridging nodes of L3VPN, generally there are 2N(N is three layers of PE number of nodes)LSP, L3VPN nodes detect the failure of this 2N LSP using MPLS-OAM technologies, if the corresponding 2N of some L3VPN bridging nodes interface LSP fails, then judges that the routing of the corresponding network segment of L3VPN bridging nodes is unreachable.
The business PW into L2VPN is inserted into alarm and is designated as:Alarm instruction is inserted into described by the bridging nodes Having in two layers of virtual interface of bridge joint relationship with three layers of virtual interface for bridging nodes, is inserted into accordingly by two layers of virtual interface PW generates the alarm of client side signal failure for PW.
The alarm instruction, can include but is not limited to user signal failure alarm.
After PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridging nodes.
After PW dual homeds switch startup, the bridging nodes still detect the failure of this 2N LSP using MPLS-OAM technologies Recovery situation, when the p items for detecting that original is route in the corresponding 2N LSP of some inaccessible L3VPN bridging nodes interface(1≤p ≤2N)When restoring normal, then the routing of the corresponding network segment of the L3VPN bridging nodes interface becomes reachable from unreachable;Work as inspection Measure breakpoint recovery cause the corresponding network segment routing of the bridging nodes interface up to when, stop the related industry to L2VPN Business PW is inserted into alarm instruction;The PW starts PW dual homeds and switches, L2VPN business is returned in the case where not being connected to alarm instruction It cuts.
Fig. 3 is one Virtual Private Network double break guard method flow diagram of the embodiment of the present invention, as shown in figure 3, of the invention The method for realizing the protection of Virtual Private Network double break, includes the following steps:
Step 301:It is disconnected when occurring first between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network Point, and when the second breakpoint occurs in link between the bridging nodes and its spare bridging nodes, caused by detecting the breakpoint It route the unreachable network segment;
Wherein, the fault detect between PE nodes is realized using LSP layers of MPLS-OAM functions.The detection is described disconnected The unreachable network segment of routing is caused by point:Detect the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State.
Step 302:When first breakpoint and the second breakpoint lead to the routing of the corresponding network segment of the bridging nodes interface When unreachable, the bridging nodes utilize bridge configuration relationship, and the business PW into L2VPN is inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes interface is unreachable to be:The corresponding institute of three layer interface of the bridging nodes There is the LSP of L3VPN to fail.Here, it is configured according to the bridge joint relationship of the bridging nodes of L3VPN, generally there are 2N(N is three layers PE number of nodes)LSP detects the failure of this 2N LSP in L3VPN nodes using MPLS-OAM technologies, if some L3VPN is bridged The corresponding 2N LSP of three layer interface of node fails, then judges that the routing of the corresponding network segment of L3VPN bridging nodes interfaces can not It reaches.
Here, then when detecting that the breakpoint causes the routing of the corresponding network segment of the bridging nodes unreachable, to Three layers of virtual interface have in two layers of virtual interface of bridge joint relationship, are inserted into alarm instruction, are inserted into accordingly by two layers of virtual interface PW generates the alarm of client side signal failure for PW.
Wherein, the alarm instruction, can include but is not limited to user signal failure alarm.
Step 303:After the PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridge joint Node.
Here, described to be specially to spare bridging nodes by L2VPN service switchings:Triggering PW dual homeds are switched, by L2VPN's Uplink service is sent to trouble-free spare bridging nodes.
Further, the method for the embodiment of the present invention further includes:
The first breakpoint between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network restores, And/or the second breakpoint of the link between the bridging nodes and its spare bridging nodes detects first breakpoint when restoring Recovery and/or second breakpoint route the reachable network segment caused by restoring;
Detection is route is up to the network segment:Detect the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State;
Correspondingly, when detecting that the breakpoint recovery causes the corresponding network segment routing of the bridging nodes reachable, stop Business PW into L2VPN is inserted into alarm instruction.
Here, the routing of the network segment is reachable refers to:If original route some inaccessible three layer interface of L3VPN bridging nodes P items in corresponding 2N LSP(1≤p≤2N)Restore normal, then the routing of the corresponding IP address network segment of three layers of virtual interface Become reachable from unreachable.
The business PW stopped into L2VPN is inserted into alarm instruction:The bridging nodes no longer refer to alarm Show that being inserted into the bridging nodes and three layers of virtual interface has in two layers of virtual interface of bridge joint relationship, it is corresponding, for PW no longer Generate the alarm of client side signal failure.
Correspondingly, the PW in the case where not being connected to alarm instruction, starts PW dual homeds and switches, by L2VPN service switchbacks.
Here, the protection switchback refers to:When detect the routing of the corresponding network segment up to when, triggering PW dual homeds are switched, The uplink service of L2VPN is switched back into main bridging nodes.
Fig. 4 is the method flow schematic diagram that the embodiment of the present invention two realizes the protection of Virtual Private Network double break;As shown in figure 4, The method of the Virtual Private Network double break protection includes the following steps:
Step 401:Judge the breakpoint between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network with And whether the breakpoint of the link between the bridging nodes and its spare bridging nodes changes;When breakpoint generates, execute Step 402;When breakpoint restores, step 405 is executed;
Fault detect between PE nodes is realized using LSP layers of MPLS-OAM functions.Described two layers special with L 3 virtual With between the bridging nodes and upper layer backbone node of net breakpoint and the bridging nodes and its spare bridging nodes between The breakpoint of link change for:Former unimpeded link generates breakpoint, or there are the links of breakpoint due to breakpoint recovery cause for original Keep link-recovery unimpeded.
Step 402:Detect whether the breakpoint causes the corresponding network segment routing of L3VPN bridging nodes interfaces unreachable;When When detecting that the corresponding network segment routing of L3VPN bridging nodes interfaces is unreachable, step 403 is executed, otherwise, executes step 401;
It detects the breakpoint network segment of L3VPN whether is caused to route and unreachable be:Detect three layer interface of the bridging nodes The state of corresponding L3VPN label switching path LSPs;The routing that the bridging nodes correspond to the network segment of L3VPN unreachable is:Institute The LSP for stating the corresponding all L3VPN of three layer interface of bridging nodes fails.
Here, it is configured according to the bridge joint relationship of the bridging nodes of L3VPN, generally there are 2N(N is three layers of PE number of nodes)Item LSP detects the failure of this 2N LSP in L3VPN nodes, if three layers of some L3VPN bridging nodes connect using MPLS-OAM technologies The corresponding 2N LSP of mouth fails, then judges that the routing of the corresponding network segment of L3VPN bridging nodes interfaces is unreachable.
Step 403:The bridging nodes utilize bridge configuration relationship, and the business PW into L2VPN is inserted into alarm instruction;
Specifically:Alarm instruction is inserted into the bridging nodes and three layers of virtual interface by the bridging nodes bridge joint relationship Two layers of virtual interface in, corresponding PW is inserted by two layers of virtual interface, for PW generate client side signal failure announcement It is alert.
Wherein, the alarm instruction, can include but is not limited to user signal failure alarm.
Step 404:After the PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridge joint Node.This flow terminates.
Here, described to be specially to spare bridging nodes by L2VPN service switchings:Triggering PW dual homeds are switched, by L2VPN's Uplink service is sent to trouble-free spare bridging nodes.
Step 405:It detects the first breakpoint recovery, and/or whether second breakpoint recovery causes L3VPN bridge joint sections The routing of the corresponding network segment of point interface is reachable;When detecting that the corresponding network segment routing of L3VPN bridging nodes interfaces is reachable, execute Step 406, otherwise, step 401 is executed;
Whether detect the breakpoint restores to cause the routing of the corresponding network segment of L3VPN bridging nodes interfaces up to being:Detection The state of the corresponding L3VPN LSP of three layer interface of the bridging nodes;The bridging nodes interface corresponds to the road of the network segment of L3VPN It is by reachable:If original route the p items in the corresponding 2N LSP of inaccessible L3VPN bridging nodes(1≤p≤2N)Restore normal, Then the routing of the corresponding network segment of the L3VPN bridging nodes becomes reachable from unreachable.
Step 406:The bridging nodes utilize bridge configuration relationship, and the business PW insertion alarms stopped into L2VPN refer to Show;Specially:Alarm instruction is no longer inserted into the bridging nodes and three layers of virtual interface by the bridging nodes bridge joint relationship Two layers of virtual interface in, it is corresponding, no longer generated for PW client side signal failure alarm.
Step 407:The PW starts PW dual homeds and switches, L2VPN business is returned in the case where not being connected to alarm instruction It cuts;
Here, the service switchback refers to:When detect the routing of the corresponding network segment of the bridging nodes interface up to when, Triggering PW dual homeds are switched, and the uplink service of L2VPN is switched back into main bridging nodes.
The embodiment of the present invention additionally provides a kind of device of Virtual Private Network double break protection, as shown in figure 5, the present invention realizes The device of Virtual Private Network double break, including detection unit 51, Alarm Unit 52, switch unit 53.
The detection unit 51, between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network There is the first breakpoint, and when the second breakpoint occurs in the link between the bridging nodes and its spare bridging nodes, described in detection The unreachable network segment of routing caused by breakpoint;
Wherein, the fault detect between PE nodes is realized using LSP layers of MPLS-OAM functions.The detection unit 51 The unreachable network segment of routing is caused by detecting the breakpoint:The corresponding L3VPN labels of three layer interface of the bridging nodes are detected to hand over Change the state of path LSP.
The Alarm Unit 52 leads to the corresponding network segment of the bridging nodes for working as first breakpoint and the second breakpoint Routing it is unreachable when, using bridge configuration relationship, the business PW into L2VPN is inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes is unreachable to be:Three layer interface of the bridging nodes is corresponding all The LSP of L3VPN fails.Here, it is configured according to the bridge joint relationship of the bridging nodes of L3VPN, generally there are 2N(N is three layers of PE Number of nodes)LSP detects the failure of this 2N LSP in L3VPN nodes using MPLS-OAM technologies, if some L3VPN bridge joint sections The corresponding 2N LSP of three layer interfaces of point fails, then judges that the routing of the corresponding network segment of L3VPN bridging nodes interfaces can not It reaches.
Specifically:Alarm instruction is inserted into the bridging nodes and three layers of virtual interface by Alarm Unit 52 bridge joint relationship In two layers of virtual interface, corresponding PW is inserted by two layers of virtual interface, the alarm of client side signal failure is generated for PW.
Wherein, the alarm instruction, can include but is not limited to user signal failure alarm.
The switch unit 53, for after the PW receives alarm instruction, starting PW dual homeds and switching, by L2VPN business It is switched to spare bridging nodes;
Here, described to be specially to spare bridging nodes by L2VPN service switchings:Triggering PW dual homeds are switched, by L2VPN's Uplink service is sent to trouble-free spare bridging nodes.
Further, the Virtual Private Network double break protective device is additionally operable to when the breakpoint restores, by the phase of L2VPN It closes service switching and returns main bridging nodes, specifically:
The detection unit 51, be additionally operable to when two layers with the bridging nodes of Layer3 Virtual Private Network and upper layer backbone node it Between on the first breakpoint restore, and/or the second breakpoint of link between the bridging nodes and its spare bridging nodes restores When, it route the reachable network segment caused by detecting the first breakpoint recovery and/or second breakpoint recovery;
Here, the routing of the network segment is reachable refers to:If original route some inaccessible three layer interface of L3VPN bridging nodes P items in corresponding 2N LSP(1≤p≤2N)Restore normal, then the road of the corresponding network segment of the L3VPN bridging nodes interface From becoming reachable from unreachable.
The Alarm Unit 52 is additionally operable to detect that the breakpoint recovery causes the corresponding network segment road of the bridging nodes By up to when, stop the business PW into L2VPN and be inserted into alarm instruction;
Specifically, alarm instruction is no longer inserted into the bridging nodes and three layers of virtual interface by the Alarm Unit 52 bridge It connects in two layers of virtual interface of relationship, it is corresponding, the alarm of client side signal failure is no longer generated for PW.
The switch unit 53 is additionally operable in the PW in the case where not being connected to alarm instruction, starts PW dual homeds and switch, By L2VPN service switchbacks.
Here, the protection switchback refers to:When detect the routing of the corresponding network segment up to when, triggering PW dual homeds are switched, The uplink service of L2VPN is switched back into main bridging nodes.
The realization function that unit is managed everywhere in the device that Virtual Private Network double break shown in Fig. 5 is protected, before can refer to It states the associated description of the method for Virtual Private Network double break protection and understands.It will be appreciated by those skilled in the art that void shown in fig. 5 The function of each processing unit can be realized by running on the program on processor in the device of quasi- private network double break protection, also may be used It is realized by specific logic circuit, such as:It can be by the central processing unit positioned at bridging nodes(CPU), microprocessor (MPU), digital signal processor(DSP)Or field programmable gate array(FPGA)It realizes;The storage unit can also be by each Kind memory or storage medium are realized.
In several embodiments provided by the present invention, it should be understood that disclosed method and apparatus can pass through it His mode is realized.The apparatus embodiments described above are merely exemplary, for example, the division of the unit, only A kind of division of logic function, formula that in actual implementation, there may be another division manner, such as:Multiple units or component can combine, or It is desirably integrated into another system, or some features can be ignored or not executed.In addition, shown or discussed each composition portion It can be by some interfaces, the INDIRECT COUPLING or communication connection of equipment or module, Ke Yishi to divide mutual communication connection It is electrical, mechanical or other forms.
The above-mentioned unit illustrated as separating component can be or may not be and be physically separated, aobvious as unit The component shown can be or may not be physical module, you can be located at a place, may be distributed over multiple network moulds On block;Some or all of wherein unit can be selected according to the actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in various embodiments of the present invention can be fully integrated into a processing unit, also may be used It, can also be during two or more units be integrated in one unit to be each unit individually as a unit;It is above-mentioned The form that hardware had both may be used in integrated unit is realized, can also be realized in the form of hardware adds SFU software functional unit.
One of ordinary skill in the art will appreciate that:Realize that all or part of step of above method embodiment can pass through The relevant hardware of program instruction is completed, and program above-mentioned can be stored in computer read/write memory medium, which exists When execution, step including the steps of the foregoing method embodiments is executed;And storage medium above-mentioned includes:Movable storage device read-only is deposited Reservoir(ROM, Read-Only Memory), the various media that can store program code such as magnetic disc or CD.
If alternatively, the above-mentioned integrated unit of the embodiment of the present invention is realized in the form of software function module and as independence Product sale or in use, can also be stored in a computer read/write memory medium.Based on this understanding, this hair Substantially the part that contributes to existing technology can body in the form of software products in other words for the technical solution of bright embodiment Reveal and, which is stored in a storage medium, including some instructions are with so that a computer is set It is standby(Can be personal computer, server or network equipment etc.)Execute the whole of each embodiment the method for the present invention Or part.And storage medium above-mentioned includes:Movable storage device, ROM, magnetic disc or CD etc. are various can to store program generation The medium of code.
The present invention is Virtual Private Network double break guard method described in example and device only by taking L2VPN and L3VPN as an example, But it is not limited only to this, as long as being related to the Virtual Private Network double break guard method and device in protection scope of the present invention.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention.

Claims (8)

1. a kind of method of Virtual Private Network double break protection, which is characterized in that the method includes:
When occurring the first breakpoint, and the bridge joint between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network When there is the second breakpoint in link between node and its spare bridging nodes, the unreachable net of routing caused by detecting the breakpoint Section;The network segment is the network segment of Layer3 Virtual Private Network L3VPN;
It is described when first breakpoint and the second breakpoint cause the routing of the corresponding network segment of the bridging nodes interface unreachable Bridging nodes utilize bridge configuration relationship, and the business pseudo-wire PW into Layer 2 virtual private network L2VPN is inserted into alarm instruction;
After the PW receives alarm instruction, starts PW dual homeds and switch, by L2VPN service switchings to spare bridging nodes.
2. method according to claim 1, which is characterized in that the unreachable network segment of routing caused by the detection breakpoint For:Detect the state of the corresponding Layer3 Virtual Private Network L3VPN label switching path LSPs of three layer interface of the bridging nodes;
The routing of the corresponding network segment of the bridging nodes is unreachable to be:The corresponding all L3VPN of three layer interface of the bridging nodes LSP fails.
3. method according to claim 1 or claim 2, which is characterized in that the business PW into L2VPN is inserted into alarm instruction For:Alarm instruction is inserted into two layers of virtual connection for having bridge joint relationship with three layers of virtual interface of the bridging nodes by the bridging nodes In mouthful, corresponding PW is inserted by two layers of virtual interface.
4. method according to claim 1 or claim 2, which is characterized in that the method further includes:
It detects and is route up to the network segment caused by first breakpoint restores and/or second breakpoint restores;
Detection is route is up to the network segment:Detect the shape of the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State;
When detecting that the breakpoint recovery causes the corresponding network segment routing of the bridging nodes reachable, stop into L2VPN Business PW is inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes is up to being:Three layers of LSP of the corresponding 2N items of three layer interface of the bridging nodes In p items (1≤p≤2N) restore normal, then the routing of the corresponding IP address network segment of three layers of virtual interface becomes from unreachable It is reachable;
Start PW dual homeds to switch, by L2VPN service switchbacks.
5. a kind of device of Virtual Private Network double break protection, which is characterized in that described device include detection unit, Alarm Unit, Switch unit;
The detection unit, for when occurring the between two layers and the bridging nodes and upper layer backbone node of Layer3 Virtual Private Network One breakpoint, and when the second breakpoint occurs in link between the bridging nodes and its spare bridging nodes, detect the breakpoint and make At the unreachable network segment of routing;The network segment is the network segment of Layer3 Virtual Private Network L3VPN;
The Alarm Unit, the routing for leading to the corresponding network segment of the bridging nodes when first breakpoint and the second breakpoint When unreachable, the bridging nodes utilize bridge configuration relationship, and the business PW into L2VPN is inserted into alarm instruction;
The switch unit, for after the PW receives alarm instruction, starting PW dual homeds and switching, L2VPN service switchings are arrived Spare bridging nodes.
6. device according to claim 5, which is characterized in that the detection unit is route not caused by detecting the breakpoint It is up to the network segment:Detect the state of the corresponding L3VPN LSP of three layer interface of the bridging nodes;
The routing of the corresponding network segment of the bridging nodes is unreachable to be:The corresponding all L3VPN of three layer interface of the bridging nodes LSP fails.
7. device according to claim 5 or 6, which is characterized in that business PW of the Alarm Unit into L2VPN is inserted into Alarm is designated as:Alarm instruction is inserted into have bridge joint relationship with three layers of virtual interface two layers of the bridging nodes by Alarm Unit In virtual interface, corresponding PW is inserted by two layers of virtual interface.
8. device according to claim 5 or 6, which is characterized in that when the detection unit is additionally operable to detect described Routing is up to the network segment caused by one breakpoint restores and/or second breakpoint restores;
Detection is route is up to the network segment:Detect the shape of the corresponding L3VPN label switching path LSPs of three layer interface of the bridging nodes State;
The Alarm Unit is additionally operable to detect that the breakpoint recovery causes the corresponding network segment routing of the bridging nodes reachable When, stop the business PW into L2VPN and is inserted into alarm instruction;
The routing of the corresponding network segment of the bridging nodes is up to being:Some of the corresponding L3VPN of three layer interface of the bridging nodes P items (1≤p≤2N) in three layers of LSP of the corresponding 2N items of three layers of virtual interface restore normal, then the corresponding IP of three layers of virtual interface The routing of address network segment becomes reachable from unreachable;
The switch unit is additionally operable to startup PW dual homeds and switches, by L2VPN service switchbacks.
CN201310684476.7A 2013-12-10 2013-12-10 A kind of method and device of Virtual Private Network double break protection Active CN104702431B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310684476.7A CN104702431B (en) 2013-12-10 2013-12-10 A kind of method and device of Virtual Private Network double break protection

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310684476.7A CN104702431B (en) 2013-12-10 2013-12-10 A kind of method and device of Virtual Private Network double break protection

Publications (2)

Publication Number Publication Date
CN104702431A CN104702431A (en) 2015-06-10
CN104702431B true CN104702431B (en) 2018-10-26

Family

ID=53349223

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310684476.7A Active CN104702431B (en) 2013-12-10 2013-12-10 A kind of method and device of Virtual Private Network double break protection

Country Status (1)

Country Link
CN (1) CN104702431B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106301991B (en) * 2015-06-11 2019-10-18 华为技术有限公司 A kind of method of path detection, routing device and system
CN106604253B (en) * 2015-10-15 2020-08-11 福建省华渔教育科技有限公司 Wireless networking method and system
CN107707429B (en) * 2017-10-17 2021-09-07 广东睿江云计算股份有限公司 Method and system for discovering IP route interruption
CN110365578B (en) * 2019-08-01 2021-12-24 新华三大数据技术有限公司 Network interface control and link switching method, device, network equipment and medium
CN115955688B (en) * 2023-03-03 2023-05-26 新华三技术有限公司 Data transmission method, system and device applied to 5G and electronic equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101800774A (en) * 2010-02-04 2010-08-11 中兴通讯股份有限公司 Environmental-friendly accessing method and environmental-friendly accessing network
WO2011110029A1 (en) * 2010-03-11 2011-09-15 中兴通讯股份有限公司 Method and system for host route reachability in packet transport network access ring
CN102572905A (en) * 2012-01-09 2012-07-11 中兴通讯股份有限公司 Dual-homing protection switching method and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101800774A (en) * 2010-02-04 2010-08-11 中兴通讯股份有限公司 Environmental-friendly accessing method and environmental-friendly accessing network
WO2011110029A1 (en) * 2010-03-11 2011-09-15 中兴通讯股份有限公司 Method and system for host route reachability in packet transport network access ring
CN102572905A (en) * 2012-01-09 2012-07-11 中兴通讯股份有限公司 Dual-homing protection switching method and system

Also Published As

Publication number Publication date
CN104702431A (en) 2015-06-10

Similar Documents

Publication Publication Date Title
JP7288993B2 (en) Method and node for packet transmission in network
WO2019105066A1 (en) Route processing method and apparatus, and data transmission method and apparatus
Shand et al. IP fast reroute framework
CN106487675A (en) For the outlet protection in EVPN with BUM flow during link failure
JP4729119B2 (en) Communication device in label switching network
CN104702431B (en) A kind of method and device of Virtual Private Network double break protection
CN101557343B (en) Detecting and protecting method of double-layer loop in VRRP topological network
US20130272114A1 (en) Pseudo wire switching method and device
CN107347032B (en) Message forwarding method and device
EP2528272A1 (en) Dual-attached protection switching method based on vpls and system thereof
WO2012028029A1 (en) Switching method and system
CN101924654B (en) Point-to-multipoint service-based path switching method and system
CN109672619A (en) A kind of method, equipment and system handling message
CN102882780B (en) Looped network tunnel configuration method based on overlapping trees, ring network protection method and system
EP2922247B1 (en) Method and apparatus for rapidly restoring spanning tree backup port
CN104956628A (en) Using Ethernet ring protection switching with computer networks
WO2018095095A1 (en) Method and apparatus for establishing disjoint path
CN105656776B (en) Pseudo wire dual-homing protection switching system, method and device
CN104702498B (en) A kind of method and device reducing equipment room light connects quantity by harmonious protection
CN102143060B (en) Method and device for building primary pseudowire and spare pseudowire
JP5989911B2 (en) Method and apparatus for protecting service traffic
US20130003532A1 (en) Protection switching method and system
CN110838978B (en) Message forwarding method and device
WO2016090815A1 (en) Switching control method and device in deploying high-capacity service
CN108924046B (en) Method and system for protecting GRE tunnel bearing service

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant