CN106878137A - A kind of route learning method and device - Google Patents

A kind of route learning method and device Download PDF

Info

Publication number
CN106878137A
CN106878137A CN201611251657.0A CN201611251657A CN106878137A CN 106878137 A CN106878137 A CN 106878137A CN 201611251657 A CN201611251657 A CN 201611251657A CN 106878137 A CN106878137 A CN 106878137A
Authority
CN
China
Prior art keywords
evpn
vpn
information
vtep equipment
route
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201611251657.0A
Other languages
Chinese (zh)
Other versions
CN106878137B (en
Inventor
肖湘光
程臻
汪亮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd
Original Assignee
New H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd filed Critical New H3C Technologies Co Ltd
Priority to CN201611251657.0A priority Critical patent/CN106878137B/en
Publication of CN106878137A publication Critical patent/CN106878137A/en
Application granted granted Critical
Publication of CN106878137B publication Critical patent/CN106878137B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • H04L45/08Learning-based routing, e.g. using neural networks or artificial intelligence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Artificial Intelligence (AREA)
  • Evolutionary Computation (AREA)
  • Medical Informatics (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application provides a kind of route learning method and device, and methods described includes:When EVPN routes are received from target interface, judge whether the EVPN carries the route-distinguisher RD information and route target RT information of a VPN in routeing;Wherein, a VPN is corresponding with the EVPN PEER that target VTEP equipment and distal end VTEP equipment are set up;If, it is determined that need to learn EVPN routes;Otherwise, refusal learns EVPN routes.EVPN PEER routes and isolating that other route can be realized using the embodiment of the present application, the security of EVPN networks is improved.

Description

A kind of route learning method and device
Technical field
The application is related to network communication technology field, more particularly to a kind of route learning method and device.
Background technology
EVPN (Ethernet Virtual Private Network, Ethernet VPN) is a kind of two layers VPN (Virtual Private Network, VPN), control plane uses MP-BGP (Multiprotocol Border Gateway Protocol, MP-BGP) EVPN routing iinformations are noticed, datum plane uses VXLAN (Virtual Extensible Local Area Network, virtual expansible LAN) packaged type E-Packets.Tenant Physical site when being dispersed in diverse location, EVPN can be based on existing service provider or enterprise IP (Internet Protocol, internet) network, for the same subnet of same tenant provides two layers of interconnection;It is same tenant by EVPN gateways Different sub-network three layers of interconnection are provided, and interconnected with three layers of external network for it is provided.
EVPN not only inherits the advantage of MP-BGP and VXLAN, additionally provides new function.EVPN has following features:
Simplify configuration:Realize that VTEP (VXLAN Tunnel End Point, VXLAN endpoint of a tunnel) is automatic by MP-BGP It was found that, VXLAN tunnels set up automatically, VXLAN tunnels and VXLAN auto-associatings, without user's manual configuration, reduce network design Difficulty.
Separate control plane and datum plane:Control plane is responsible for issuing routing iinformation, and datum plane is responsible for E-Packeting, The division of labor is clear and definite, it is easy to manage.
Support symmetrical IRB (Integrated Bridging and Routing, integrated bridge joint and route):MP-BGP Layer two MAC (Media Access Control, media access control) address and three-layer routing information are issued simultaneously, and VTEP both may be used To carry out two layers of forwarding, it is also possible to carry out three-layer routing.So, can not only ensure that flow is forwarded using optimal path, may be used also To reduce broadcast traffic.
The content of the invention
The application provides a kind of route learning method and device, to realize EVPN PEER routes and isolating that other route, Improve the security of EVPN networks.
According to the first aspect of the embodiment of the present application, there is provided a kind of route learning method, using Ethernet Virtual Private Network Virtual expansible LAN endpoint of a tunnel target VTEP equipment in EVPN networkings, each VTEP equipment is based in the EVPN networkings Virtual private network example sets up EVPN peer-to-peer PEER, and methods described includes:
When EVPN routes are received from target interface, judge whether the EVPN carries the route of a VPN in routeing Specificator RD information and route target RT information;Wherein, the target VTEP equipment is by the target interface and distal end VTEP Equipment sets up the EVPNPEER based on a VPN;
If, it is determined that need to learn EVPN routes;
Otherwise, refusal learns EVPN routes.
According to the second aspect of the embodiment of the present application, there is provided a kind of route learning device, using Ethernet Virtual Private Network Virtual expansible LAN endpoint of a tunnel target VTEP equipment in EVPN networkings, it is characterised in that each in the EVPN networkings VTEP equipment sets up EVPN peer-to-peer PEER based on virtual private network example, and described device includes:
Receiving unit, for receiving EVPN routes;
Judging unit, for when the receiving unit receives EVPN and route from target interface, judging that the EVPN route In whether carry the route-distinguisher RD information and route target RT information of a VPN;Wherein, the target VTEP equipment is led to Cross the target interface and set up the EVPN PEER based on a VPN with distal end VTEP equipment;
Unit, if carrying the RD information and RT information of a VPN in being route for the EVPN, it is determined that need to learn Practise EVPN routes;Otherwise, refusal learns EVPN routes.
Using the embodiment of the present application, each VTEP equipment sets up EVPNPEER based on VPN instance in EVPN networkings, when from target Interface to EVPN route when, judge whether the RD information and RT information of a VPN are carried in EVPN routes, and when should When carrying the RD information and RT information of a VPN in EVPN routes, it is determined that needing to learn EVPN routes;Otherwise, refusal is learned EVPN routes are practised, EVPN PEER routes and isolating that other route is realized, the security of EVPN networks is improve.
Brief description of the drawings
Fig. 1 is a kind of configuration diagram of EVPN networkings;
Fig. 2 is a kind of schematic flow sheet of route learning method that the embodiment of the present application is provided;
Fig. 3 is a kind of structural representation of route learning device that the embodiment of the present application is provided;
Fig. 4 is the structural representation of another route learning device that the embodiment of the present application is provided;
Fig. 5 is the structural representation of another route learning device that the embodiment of the present application is provided.
Specific embodiment
In the networking shown in Fig. 1, it is assumed that MSE (Multiple Service Edge, many service edges) equipment is all configured EVPN, serves as VTEP role;Two or three layers of forwarding are carried out by EVPN between MSE equipment, MSE is upper also to undertake BRAS simultaneously (Broadband Remote Access Server, broad band remote is accessed) business and common private line service (such as MPLS (Multi-Protocol Label Switching, multiprotocol label switching) VPN special lines).Wherein, MSE equipment passes through CR (Core Router, core router) is interacted with distal end MSE equipment.
The PEER set up between EVPN in current MSE equipment is based on public network/overall situation, then the road of EVPN PEER Mixed by with other routes, do not isolated, influence the security of EVPN networks, such as the LSN (Local in Fig. 1 Service Node, local service node)/MSE security.
In order that those skilled in the art more fully understand the technical scheme in the embodiment of the present application, and make the application reality Applying the above-mentioned purpose of example, feature and advantage can be more obvious understandable, below in conjunction with the accompanying drawings to technical side in the embodiment of the present application Case is described in further detail.
Fig. 2 is referred to, is a kind of schematic flow sheet of route learning method that the embodiment of the present application is provided, wherein, the party Method can apply to the target VTEP equipment in EVPN networkings, as shown in Fig. 2 the route learning method can include following step Suddenly:
Step 201, when from target interface receive EVPN route when, judge the EVPN route in whether carry first The RD information and RT information of VPN;Wherein, the EVPN PEER that a VPN sets up with target VTEP equipment and distal end VTEP equipment Correspondence.If so, going to step 202;Otherwise, step 203 is gone to.
In the embodiment of the present application, target VTEP equipment is simultaneously not specific to the VTEP equipment of a certain fixation, but may refer to Any VTEP equipment in EVPN networkings;Similarly, target interface and the interface of a certain fixation is not specific to, but may refer to target Any logic interfacing in EVPN tunnels is set up in VTEP equipment, the application is subsequently no longer repeated.
In the embodiment of the present application, in order to realize EVPN PEER routes and isolating that other route, the peace of EVPN networks is improved When EVPN PEER are set up between Quan Xing, VTEP equipment, can based on VRF (Virtual Routing Forwarding, virtually Routing forwarding, it is also possible to referred to as VPN instance) set up EVPN PEER, when VTEP equipment issue EVPN route, it is necessary to according to from The VPN instance corresponding to EVPN PEER set up between body and distal end VTEP equipment, the identification information of VPN instance is carried In EVPN routes, so that distal end VTEP equipment can be according to the identification information of the VPN instance carried in the EVPN routes for receiving Determine the need for carrying out EVPN route learnings.
Correspondingly, in the embodiment of the present application, when target VTEP equipment receives EVPN from target interface to be route, target VTEP equipment is needed according to local terminal VPN (referred to herein as first corresponding with the EVPNPEER that distal end VTEP equipment is set up The EVPN PEER that VPN, i.e. target VTEP equipment set up with distal end VTEP equipment are the EVPN PEER set up based on a VPN), And legitimacy detection is carried out to EVPN routes according to a VPN, that is, in judging that the EVPN received from target interface route Whether RD (Route Distinguisher, the route-distinguisher) information and RT (Route target, road of a VPN is carried By target) information, to determine the need for learning EVPN routes.
In the one of embodiment of the application, the route learning method that the application is provided can also include:
Obtain the corresponding VPN of EVPN PEER that target VTEP equipment and distal end VTEP equipment are set up;
Set up the binding of the target interface and a VPN;
Correspondingly, it is above-mentioned to judge whether the EVPN carries a VPN RD information and RT information in routeing, can wrap Include:
According to target interface bind a VPN, judge the EVPN route in whether carry a VPN RD information and RT information.
In this embodiment, set up after EVPN PEER based on VPN instance between VTEP equipment, can be in EVPN tunnels Logic interfacing on bind VPN instance.
Wherein, when interaction is realized by CR (Core Router, core router) between VTEP equipment, VTEP equipment VPN instance is bound in the logic interfacing in the EVPN tunnels that can be set up and CR between at itself.
Correspondingly, when target VTEP equipment receives EVPN from target interface to be route, in order to determine the need for study The EVPN route, and it is legal that the VPN (i.e. a VPN) that target VTEP equipment is bound according to the target interface is carried out to EVPN routes Property detection, that is, whether the RD information and RT information of a VPN are carried in the EVPN routes for judging to be received from target interface, with Determine the need for learning EVPN routes.
Step 202, determination need to learn EVPN routes.
Step 203, refusal learn EVPN routes.
In the embodiment of the present application, if target VTEP equipment determines to carry the in the EVPN received from target interface routes The RD information and RT information of one VPN, then target VTEP equipment can determine the EVPN route legitimacy detection pass through, and then, mesh Mark VTEP equipment can further be parsed to EVPN routes and be learnt EVPN routes.
If not carrying the RD information and RT information of a VPN in EVPN routes, target VTEP equipment can determine EVPN route legitimacy detections do not pass through, and target VTEP equipment can be refused to learn EVPN routes, for example, target VTEP sets It is standby directly to abandon EVPN routes.
In the one of embodiment of the application, above-mentioned determination is needed after study EVPN routes, can also be included:
RT information according to the 2nd VPN carried in EVPN routes learns to EVPN routes.
In this embodiment, when EVPN routes are issued between EVPN PEER, except needing to be carried in the EVPN route Outside the RD information and RT information of the corresponding VPN of EVPN PEER, in addition it is also necessary to carry the affiliated VPN of EVPN routes (referred to herein as 2nd VPN) RT information.
Correspondingly, when target VTEP equipment determines to need study to be route from the EVPN that target interface is received, target VTEP equipment can further obtain the RT information of the 2nd VPN carried in EVPN routes, to determine belonging to EVPN routes VPN, and then, RT information according to the 2nd VPN learns to EVPN routes.
In the one of embodiment of the application, the route learning method that the application is provided can also include:
When needing to be route to distal end VTEP equipment issues EVPN, the RD information of the 3rd VPN is added in EVPN routes With RT information;Wherein, target VTEP equipment sets up EVPN PEER with distal end VTEP equipment based on the 3rd VPN;
The EVPN routes of the RD information and RT information that will carry the 3rd VPN are sent to distal end VTEP equipment, so that far End VTEP equipment determines the need for learning the EVPN roads according to the RD information and RT information that are carried in the EVPN routes for receiving By.
In this embodiment, when target VTEP equipment needs to be route to distal end VTEP equipment issues EVPN, target VTEP It is corresponding that equipment can add the EVPN PEER set up between target VTEP equipment and distal end VTEP equipment in EVPN routes VPN (sets up EVPN between referred to herein as the 3rd VPN, i.e. target VTEP equipment and distal end VTEP equipment based on the 3rd VPN PEER RD (Route Distinguisher, route-distinguisher) information and RT (Route target, route target) information).
As an example it is assumed that set up EVPN PEER based on VPN1 between VTEP1 and VTEP2, then when VTEP1 need to When VTEP2 issues EVPN route, VTEP1 needs to add the RD information and RT information of VPN1 in EVPN routes.
In this embodiment, target VTEP equipment by the RD information and RT information of the 3rd VPN be added to EVPN route in it Afterwards, the RD information and the EVPN routes of RT information that this can be carried into the 3rd VPN are sent to distal end VTEP equipment, and then, far End VTEP equipment can be closed according to the RD information of the VPN carried in the EVPN routes for receiving and RT information to EVPN routes Method is detected, to determine the need for learning EVPN routes.
It can be seen that, in method flow shown in Fig. 2, set up on VPN instance by by EVPN PEER, and in VTEP equipment On set up in the logic interfacing in EVPN tunnels and bind corresponding VPN, when VTEP equipment receives EVPN from target interface to be route, May determine that whether the EVPN carries the RD information and RT information of the VPN of target interface binding in routeing, and ought carry When, it is determined that needing to learn EVPN routes, otherwise, refusal learns EVPN routes, realizes EVPN PEER routes and other roads By isolation, improve the security of EVPN networks.
Further, in the embodiment of the present application, in order to realize the isolation between EVPN PEER, VTEP equipment can be with Different distal end VTEP equipment set up EVPN PEER based on different VPN instance.
For example, VTEP1 can set up EVPN PEER with VTEP2 based on VPN1, and be set up based on VPN2 with VTEP3 EVPN PEER, when VTEP1 needs to be route to distal end VTEP equipment issues EVPN, the EVPN route needs issued to VTEP2 are taken RD information and RT information with VPN1, the EVPN routes issued to VTEP3 need to carry the RD information and RT information of VPN2, so that The EVPN routes between different EVPN PEER can be further realized on the basis of EVPN routes are isolated with non-EVPN routes Isolation.
Correspondingly, in the embodiment of the present application, target VTEP equipment can be based on difference from different distal end VTEP equipment VPN set up EVPN PEER;Or, target VTEP equipment can also be set up from different distal end VTEP equipment based on identical VPN EVPN PEER。
Further, in the embodiment of the present application, when target VTEP equipment receives data message, target VTEP equipment Can be determined described in the data message according to the L3VNI (Layer-3VXLAN ID, three layers of VXLAN marks) carried in the message VPN (referred to herein as the 4th VPN), and mark and the purpose IP address of the data message according to the 4th VPN is to this Data message is forwarded.
Specifically, when target VTEP equipment receives the data message that distal end VTEP equipment sends, such as distal end VTEP equipment During the data message forwarded by CR, target VTEP equipment can obtain the L3VNI in the data message, and according to the L3VNI Determine the VPN ID of the affiliated VPN of the data message, and then, target VTEP equipment can be according to the VPN ID and data message (purpose IP address refer to the internal layer purpose IP address of data message to purpose IP address, rather than the purpose IP ground in EVPN tunnels Location) corresponding route is searched in the VPN, so as to be forwarded.
In order that those skilled in the art more fully understand the technical scheme that the embodiment of the present application is provided, with reference to specific Application scenarios are described to the technical scheme that the embodiment of the present application is provided.
By taking EVPN networkings shown in Fig. 1 as an example, in this embodiment it is assumed that VPN instance VPN1 is created between MSE1 and MSE2, And EVPN PEER are set up based on VPN1, (it is assumed to be interface a) bindings in the logic interfacing in the EVPN tunnels that MSE1 sets up in CR VPN1 (VPN is exactly the VPN belonging to the corresponding routes of EVPN PEER set up between MSE1 and MSE2).
When MSE1 needs to be route to MSE2 issues EVPN, MSE1 needs to carry the RD information of VPN1 in EVPN routes With RT information.
What deserves to be explained is, the RT information of the VPN belonging to EVPN routes (VPN route) can be also carried in EVPN routes, That is need to carry a RD information and two RT information in EVPN routes.
Correspondingly, when MSE1 receives EVPN from interface a to be route, MSE1 needs the VPN instance bound according to interface a (i.e. VPN1), judges whether the EVPN carries the RD information and RT information of VPN1 in routeing, if carrying, MSE1 determines should EVPN route legitimacy detection pass through, and further to the EVPN route carry out parsing study.
After the completion of route learning, when data message is forwarded, MSE1 is sent to the datagram of MSE2 from CR Text is that the L3VNI in message gets the corresponding VPNID of the affiliated VPN of message (being assumed to be VPN2), according to VPNID+ messages Purpose IP corresponding route is searched in corresponding VPN2, so as to be forwarded.
By above description as can be seen that the embodiment of the present application provide technical scheme in, each VTEP in EVPN networkings Equipment sets up EVPN PEER based on VPN instance, when EVPN routes are received from target interface, judges that the EVPN is in routeing The no RD information and RT information for carrying a VPN, and the RD information and RT information of a VPN are carried in the EVPN route When, it is determined that needing to learn EVPN routes;Otherwise, refusal learns EVPN routes, realizes EVPN PEER routes and other roads By isolation, improve the security of EVPN networks.
Fig. 3 is referred to, is a kind of structural representation of route learning device that the embodiment of the present application is provided, wherein, the road The target VTEP equipment in above method embodiment is can apply to by learning device, as shown in figure 3, the route learning device can To include:
Receiving unit 310, for receiving EVPN routes;
Judging unit 320, for when the receiving unit 310 receives EVPN and route from target interface, judging should Whether the route-distinguisher RD information and route target RT information of a VPN is carried in EVPN routes;Wherein, described first VPN is corresponding with the EVPN PEER of target VTEP equipment and distal end VTEP equipment;
Unit 330, if carrying the RD information and RT information of a VPN in being route for the EVPN, it is determined that need Learn EVPN routes;Otherwise, refusal learns EVPN routes.
It is the structural representation of another route learning device provided in an embodiment of the present invention please also refer to Fig. 4, such as schemes Shown in 4, on the basis of route learning device shown in Fig. 3, the route learning device shown in Fig. 4 can also include:
Acquiring unit 340, the EVPN PEER for obtaining the target VTEP equipment with distal end VTEP equipment is set up are corresponding A VPN;
Unit 350 is set up, the binding for setting up the target interface and a VPN;
Correspondingly, the judging unit 320, specifically for the VPN bound according to the target interface, judging should Whether the RD information and RT information of a VPN is carried in EVPN routes.
In an alternative embodiment, the unit 330, specifically for when it is determined that need learn the EVPN route when, root The RT information of the 2nd VPN carried in being route according to the EVPN learns to EVPN routes.
It is the structural representation of another route learning device that the embodiment of the present application is provided please also refer to Fig. 5, such as schemes Shown in 5, on the basis of route learning device shown in Fig. 3, the route learning device shown in Fig. 5 can also include:
Adding device 360, for when the target VTEP equipment needs to be route to distal end VTEP equipment issue EVPN, The route-distinguisher RD information and route target RT information of the 3rd VPN are added in EVPN routes;Wherein, the target VTEP sets It is standby that EVPN PEER are set up based on the 3rd VPN with distal end VTEP equipment;
Transmitting element 370, the EVPN routes of RD information and RT information for will carry the 3rd VPN are sent to far End VTEP equipment, so that distal end VTEP equipment determines whether according to the RD information and RT information that are carried in the EVPN routes for receiving Need to learn EVPN routes.
In an alternative embodiment, the target VTEP equipment is based on different VPN foundation from different distal end VTEP equipment EVPN PEER;Or, the target VTEP equipment sets up EVPN PEER from different distal end VTEP equipment based on identical VPN.
In an alternative embodiment, the transmitting element 370, specifically for receiving datagram when the target VTEP equipment Wen Shi, the 4th VPN according to belonging to the three layers of VXLAN marks L3VNI carried in the data message determines the data message;According to The mark of the 4th VPN and the purpose IP address of the data message are forwarded to the data message.
The function of unit and the implementation process of effect correspond to step in specifically referring to the above method in said apparatus Implementation process, will not be repeated here.
For device embodiment, because it corresponds essentially to embodiment of the method, so related part is referring to method reality Apply the part explanation of example.Device embodiment described above is only schematical, wherein described as separating component The unit of explanation can be or may not be physically separate, and the part shown as unit can be or can also It is not physical location, you can with positioned at a place, or can also be distributed on multiple NEs.Can be according to reality Selection some or all of module therein is needed to realize the purpose of application scheme.Those of ordinary skill in the art are not paying In the case of going out creative work, you can to understand and implement.
As seen from the above-described embodiment, each VTEP equipment sets up EVPNPEER based on VPN instance in EVPN networkings, when from target Interface to EVPN route when, judge whether the RD information and RT information of a VPN are carried in EVPN routes, and when should When carrying the RD information and RT information of a VPN in EVPN routes, it is determined that needing to learn EVPN routes;Otherwise, refusal is learned EVPN routes are practised, EVPN PEER routes and isolating that other route is realized, the security of EVPN networks is improve.
Those skilled in the art will readily occur to its of the application after considering specification and putting into practice invention disclosed herein Its embodiment.The application is intended to any modification, purposes or the adaptations of the application, these modifications, purposes or Person's adaptations follow the general principle of the application and including the undocumented common knowledge in the art of the application Or conventional techniques.Description and embodiments are considered only as exemplary, and the true scope of the application and spirit are by following Claim is pointed out.
It should be appreciated that the application is not limited to the precision architecture for being described above and being shown in the drawings, and And can without departing from the scope carry out various modifications and changes.Scope of the present application is only limited by appended claim.

Claims (12)

1. a kind of route learning method, is applied to the virtual expansible LAN tunnel in Ethernet Virtual Private Network EVPN networkings End destination VTEP equipment, it is characterised in that each VTEP equipment is set up based on virtual private network example in the EVPN networkings EVPN peer-to-peer PEER, methods described includes:
When EVPN routes are received from target interface, judge whether the EVPN carries the route differentiation of a VPN in routeing Symbol RD information and route target RT information;Wherein, a VPN and target VTEP equipment and distal end VTEP equipment set up EVPN PEER correspondences;
If, it is determined that need to learn EVPN routes;
Otherwise, refusal learns EVPN routes.
2. method according to claim 1, it is characterised in that methods described also includes:
Obtain the corresponding VPN of EVPN PEER that the target VTEP equipment and distal end VTEP equipment are set up;
Set up the binding of the target interface and a VPN;
It is described to judge whether carry the RD information and RT information of a VPN in EVPN routes, including:
According to the target interface bind a VPN, judge the EVPN route in whether carry a VPN RD information and RT information.
3. method according to claim 1, it is characterised in that the determination needs to learn after EVPN routes, also to wrap Include:
RT information according to the 2nd VPN carried in EVPN routes learns to EVPN routes.
4. method according to claim 1, it is characterised in that methods described also includes:
When needing to be route to distal end VTEP equipment issues EVPN, the RD information and RT of the 3rd VPN are added in EVPN routes Information;Wherein, the target VTEP equipment sets up EVPN PEER with distal end VTEP equipment based on the 3rd VPN;
The EVPN routes of the RD information and RT information that will carry the 3rd VPN are sent to distal end VTEP equipment, so that distal end VTEP equipment determines the need for learning EVPN routes according to the RD information and RT information that are carried in the EVPN routes for receiving.
5. method according to claim 1, it is characterised in that the target VTEP equipment and different distal end VTEP equipment EVPN PEER are set up based on different VPN;Or, the target VTEP equipment is based on identical from different distal end VTEP equipment VPN sets up EVPN PEER.
6. method according to claim 1, it is characterised in that methods described also includes:
When data message is received, the data message is determined according to the three layers of VXLAN marks L3VNI carried in the data message The 4th affiliated VPN;
The purpose IP address of mark and the data message according to the 4th VPN are forwarded to the data message.
7. a kind of route learning device, is applied to the virtual expansible LAN tunnel in Ethernet Virtual Private Network EVPN networkings End destination VTEP equipment, it is characterised in that each VTEP equipment is set up based on virtual private network example in the EVPN networkings EVPN peer-to-peer PEER, described device includes:
Receiving unit, for receiving EVPN routes;
Judging unit, for when the receiving unit receives EVPN and route from target interface, judging to be in EVPN routes The no route-distinguisher RD information for carrying a VPN and route target RT information;Wherein, a VPN and target VTEP Equipment is corresponding with the EVPN PEER that distal end VTEP equipment is set up;
Unit, if carrying the RD information and RT information of a VPN in being route for the EVPN, it is determined that need study to be somebody's turn to do EVPN route;Otherwise, refusal learns EVPN routes.
8. device according to claim 7, it is characterised in that described device also includes:
Acquiring unit, for obtaining the EVPN PEER corresponding first that the target VTEP equipment and distal end VTEP equipment are set up VPN;
Unit is set up, the binding for setting up the target interface and a VPN;
Whether the judging unit, specifically for the VPN bound according to the target interface, judges taken in EVPN routes Route-distinguisher RD information and route target RT information with a VPN.
9. device according to claim 7, it is characterised in that
The unit, specifically for when it is determined that needing to learn the EVPN to route, according to the carried in EVPN routes The RT information of two VPN learns to EVPN routes.
10. device according to claim 7, it is characterised in that described device also includes:
Adding device, for when the target VTEP equipment needs to be route to distal end VTEP equipment issues EVPN, in the EVPN The route-distinguisher RD information and route target RT information of the 3rd VPN are added in route;Wherein, the target VTEP equipment with should Distal end VTEP equipment sets up EVPN PEER based on the 3rd VPN;
Transmitting element, the EVPN routes of RD information and RT information for will carry the 3rd VPN are sent to distal end VTEP Equipment, so that distal end VTEP equipment determines the need for learning according to the RD information and RT information that are carried in the EVPN routes for receiving Practise EVPN routes.
11. devices according to claim 7, it is characterised in that the target VTEP equipment sets from different distal end VTEP It is standby that EVPN PEER are set up based on different VPN;Or, the target VTEP equipment be based on from different distal end VTEP equipment it is identical VPN set up EVPN PEER.
12. devices according to claim 10, it is characterised in that
The transmitting element, is additionally operable to, when the target VTEP equipment receives data message, be taken according in the data message Three layers of VXLAN marks L3VNI of band determines the 4th VPN belonging to the data message;Mark according to the 4th VPN and should The purpose IP address of data message are forwarded to the data message.
CN201611251657.0A 2016-12-29 2016-12-29 Route learning method and device Active CN106878137B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611251657.0A CN106878137B (en) 2016-12-29 2016-12-29 Route learning method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611251657.0A CN106878137B (en) 2016-12-29 2016-12-29 Route learning method and device

Publications (2)

Publication Number Publication Date
CN106878137A true CN106878137A (en) 2017-06-20
CN106878137B CN106878137B (en) 2020-08-04

Family

ID=59164247

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611251657.0A Active CN106878137B (en) 2016-12-29 2016-12-29 Route learning method and device

Country Status (1)

Country Link
CN (1) CN106878137B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108183858A (en) * 2017-12-26 2018-06-19 新华三技术有限公司 A kind of routing introducing method and device
CN109729019A (en) * 2018-12-28 2019-05-07 新华三技术有限公司 The method for limiting speed and device of private line service in a kind of EVPN networking
CN113992565A (en) * 2021-09-29 2022-01-28 新华三大数据技术有限公司 Multicast message processing method and device

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1852214A (en) * 2005-11-02 2006-10-25 华为技术有限公司 Routing method of virtual special network
CN101103595A (en) * 2004-12-06 2008-01-09 耐克萨根特有限公司 Interconnecting system for supply chain management of virtual private network services
CN101617305A (en) * 2007-01-17 2009-12-30 北方电讯网络有限公司 Use is based on the border gateway protocol procedures tunnel, that be used for MPLS and layer 2 VPN of Ethernet
CN102377630A (en) * 2011-10-13 2012-03-14 华为技术有限公司 Traffic engineering tunnel-based virtual private network implementation method and traffic engineering tunnel-based virtual private network implementation system
CN102986176A (en) * 2010-05-19 2013-03-20 阿尔卡特朗讯公司 Method and apparatus for MPLS label allocation for a BGP MAC-VPN
CN103731347A (en) * 2012-10-10 2014-04-16 杭州华三通信技术有限公司 VPNV4 routing processing method and device based on nested VPN
CN104471899A (en) * 2012-05-10 2015-03-25 瑞典爱立信有限公司 802.1AQ support over IETF EVPN
CN105591872A (en) * 2015-10-23 2016-05-18 杭州华三通信技术有限公司 Method and device for realization of multi-data center interconnection
CN105939262A (en) * 2016-05-09 2016-09-14 杭州迪普科技有限公司 Label allocation method and device
US20160285760A1 (en) * 2015-03-26 2016-09-29 Cisco Technology, Inc. Scalable handling of bgp route information in vxlan with evpn control plane

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101103595A (en) * 2004-12-06 2008-01-09 耐克萨根特有限公司 Interconnecting system for supply chain management of virtual private network services
CN1852214A (en) * 2005-11-02 2006-10-25 华为技术有限公司 Routing method of virtual special network
CN101617305A (en) * 2007-01-17 2009-12-30 北方电讯网络有限公司 Use is based on the border gateway protocol procedures tunnel, that be used for MPLS and layer 2 VPN of Ethernet
CN102986176A (en) * 2010-05-19 2013-03-20 阿尔卡特朗讯公司 Method and apparatus for MPLS label allocation for a BGP MAC-VPN
CN102377630A (en) * 2011-10-13 2012-03-14 华为技术有限公司 Traffic engineering tunnel-based virtual private network implementation method and traffic engineering tunnel-based virtual private network implementation system
CN104471899A (en) * 2012-05-10 2015-03-25 瑞典爱立信有限公司 802.1AQ support over IETF EVPN
CN103731347A (en) * 2012-10-10 2014-04-16 杭州华三通信技术有限公司 VPNV4 routing processing method and device based on nested VPN
US20160285760A1 (en) * 2015-03-26 2016-09-29 Cisco Technology, Inc. Scalable handling of bgp route information in vxlan with evpn control plane
CN105591872A (en) * 2015-10-23 2016-05-18 杭州华三通信技术有限公司 Method and device for realization of multi-data center interconnection
CN105939262A (en) * 2016-05-09 2016-09-14 杭州迪普科技有限公司 Label allocation method and device

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108183858A (en) * 2017-12-26 2018-06-19 新华三技术有限公司 A kind of routing introducing method and device
CN108183858B (en) * 2017-12-26 2020-12-29 新华三技术有限公司 Route introducing method and device
CN109729019A (en) * 2018-12-28 2019-05-07 新华三技术有限公司 The method for limiting speed and device of private line service in a kind of EVPN networking
CN113992565A (en) * 2021-09-29 2022-01-28 新华三大数据技术有限公司 Multicast message processing method and device
CN113992565B (en) * 2021-09-29 2023-11-07 新华三大数据技术有限公司 Multicast message processing method and device

Also Published As

Publication number Publication date
CN106878137B (en) 2020-08-04

Similar Documents

Publication Publication Date Title
CN111742525B (en) Multi-cloud VPC routing and registration
US10320671B2 (en) Extension of logical networks across layer 3 virtual private networks
CN109218178B (en) Message processing method and network equipment
US8098656B2 (en) Method and apparatus for implementing L2 VPNs on an IP network
Kompella et al. Virtual private LAN service (VPLS) using BGP for auto-discovery and signaling
EP2104896B1 (en) Border gateway protocol procedures for mpls and layer-2 vpn using ethernet-based tunnels
CN104869042B (en) Message forwarding method and device
CN107547335A (en) The method and the network equipment of signal notice IP address movement in EVPN
WO2013053284A1 (en) Virtual private network implementation method and system based on traffic engineering tunnel
US9871675B2 (en) Interconnecting virtual private networks
CN104079466B (en) A kind of message processing method and equipment
CN106878137A (en) A kind of route learning method and device
US9954761B2 (en) Dynamic detection of VPN sites
US9356803B2 (en) Field aware virtual connection discovery
WO2005114944A1 (en) A method for implementing ipv4 and ipv6 mixing sites virtual private network
WO2021017590A1 (en) Method, system, and first gw for achieving dci three-layer communication
CN102195947B (en) Lawful interception method and device
Rosen et al. Multicast VPN Using Bit Index Explicit Replication (BIER)
EP4068697A1 (en) Fast reroute for ethernet virtual private networks - virtual extensible local area network
Cisco Spanning Multiple Autonomous Systems
Joseph et al. Network convergence: Ethernet applications and next generation packet transport architectures
Nykänen EVPN in Private Cellular Networks
Singh BGP MPLS based EVPN And its implementation and use cases
Kompella et al. RFC 4761: Virtual Private LAN Service (VPLS) using BGP for auto-discovery and signaling
CN117319060A (en) Access control method, device and system for VPN domain of SRv network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant