CN112398728A - Smooth evolution method of virtual gateway, gateway equipment and storage medium - Google Patents
Smooth evolution method of virtual gateway, gateway equipment and storage medium Download PDFInfo
- Publication number
- CN112398728A CN112398728A CN201910750605.5A CN201910750605A CN112398728A CN 112398728 A CN112398728 A CN 112398728A CN 201910750605 A CN201910750605 A CN 201910750605A CN 112398728 A CN112398728 A CN 112398728A
- Authority
- CN
- China
- Prior art keywords
- bridge
- gateway
- virtual
- equipment
- port
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 54
- 230000008569 process Effects 0.000 claims abstract description 14
- 230000006870 function Effects 0.000 claims description 26
- 238000004891 communication Methods 0.000 claims description 10
- 238000009499 grossing Methods 0.000 claims description 2
- 101100048435 Caenorhabditis elegans unc-18 gene Proteins 0.000 description 30
- 101100513046 Neurospora crassa (strain ATCC 24698 / 74-OR23-1A / CBS 708.71 / DSM 1257 / FGSC 987) eth-1 gene Proteins 0.000 description 15
- 238000010586 diagram Methods 0.000 description 5
- 230000009977 dual effect Effects 0.000 description 4
- 230000008859 change Effects 0.000 description 3
- 238000004590 computer program Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000007723 transport mechanism Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4604—LAN interconnection over a backbone network, e.g. Internet, Frame Relay
- H04L12/462—LAN interconnection over a bridge based backbone
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The embodiment of the invention provides a smooth evolution method of a virtual gateway, gateway equipment and a storage medium, wherein a bridge Linux bridge for bearing the function of a traditional gateway and a bridge SDN bridge for bearing the function of the virtual gateway are established through the gateway equipment; according to a preset port working mode rule, establishing virtual equipment corresponding to a port LAN, and mounting the virtual equipment on a network bridge established by gateway equipment; forwarding the message received by the port to a network bridge established by the gateway equipment through the virtual equipment; in some implementation processes, one hardware device is satisfied, and multiple working modes are selected; in the network upgrading process, large-scale hardware upgrading is not needed, and the gateway equipment can be upgraded to virtualization only by switching the working modes of the ports. The investment of manpower, material resources and financial resources is reduced, and the whole network system can be conveniently and rapidly upgraded to virtualization.
Description
Technical Field
The embodiment of the invention relates to the technical field of virtual network, in particular to a smooth evolution method of a virtual gateway, gateway equipment and a storage medium.
Background
SDN (Software Defined Network) is a novel Network innovation architecture proposed by the university of stanford research group in the united states, and is an implementation manner of Network virtualization. The core technology OpenFlow separates the control plane and the data plane of the network equipment, thereby realizing the flexible control of network flow, enabling the network to be more intelligent as a pipeline, and providing a good platform for the innovation of a core network and application. In a network in a traditional IT framework, after the network is deployed and brought online according to business requirements, if the business requirements change, the configuration on corresponding network equipment (a router, a switch and a firewall) is revised again, which is a very complicated matter; what the SDN does is to separate the control right on the network equipment and manage the control right by a centralized controller without depending on the underlying network equipment (a router, a switch and a firewall), thereby shielding the difference from the underlying network equipment; the control right is completely open, and the user can customize any network routing and transmission rule strategy to be realized, so that the method is more flexible and intelligent.
At present, an operator network and equipment are based on a traditional gateway architecture, large-scale switching networking and virtualization equipment are consumed greatly, how to smoothly realize the upgrade from a traditional network gateway to a virtual gateway and realize the coexistence of the traditional gateway function and the virtual gateway function in an intermediate state is a problem to be solved urgently.
Disclosure of Invention
The smooth evolution method of the virtual gateway, the gateway device and the storage medium provided by the embodiment of the invention mainly solve the technical problem of how to smoothly realize the upgrade from the traditional network gateway to the virtual gateway.
To solve the foregoing technical problem, an embodiment of the present invention provides a smooth evolution method for a virtual gateway, including:
the gateway equipment establishes a bridge Linux bridge for bearing the traditional gateway function and a bridge SDN bridge for bearing the virtual gateway function;
according to a pre-configured port working mode rule, virtual equipment corresponding to a port LAN is established, and the virtual equipment is mounted on a network bridge established by the gateway equipment;
and forwarding the message received by the port to a network bridge established by the gateway equipment through the virtual equipment.
The embodiment of the invention also provides gateway equipment, which comprises a processor, a memory and a communication bus;
the communication bus is used for realizing connection communication between the processor and the memory;
the processor is configured to execute one or more programs stored in the memory to implement the steps of the smooth evolution method for a virtual gateway as described above.
The embodiment of the present invention further provides a storage medium, where one or more programs are stored in the storage medium, and the one or more programs may be executed by one or more processors to implement the steps of the smooth evolution method for a virtual gateway as described above.
The invention has the beneficial effects that:
according to the smooth evolution method of the virtual gateway, the gateway device and the storage medium provided by the embodiment of the invention, a bridge Linux bridge for bearing the traditional gateway function and a bridge SDN bridge for bearing the virtual gateway function are established through the gateway device; according to a preset port working mode rule, virtual equipment corresponding to a port LAN is established, and the virtual equipment is mounted on a network bridge established by the gateway equipment; forwarding the message received by the port to a network bridge established by the gateway equipment through the virtual equipment; in some implementation processes, the dynamic switching of the gateway equipment among three modes (a traditional gateway mode, a virtual gateway mode and a hybrid dual-gateway mode) is realized by the port working in different gateway modes; the selection of a hardware device and a plurality of working modes is met; in the network upgrading process, large-scale hardware upgrading is not needed, and the gateway equipment can be upgraded to virtualization only by switching the working modes of the ports. The investment of manpower, material resources and financial resources is reduced, and the whole network system can be conveniently and rapidly upgraded to virtualization.
Additional features and corresponding advantages of the invention will be set forth in part in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.
Drawings
Fig. 1 is a flowchart of a smooth evolution method of a virtual gateway according to a first embodiment of the present invention;
fig. 2 is a schematic diagram of a gateway device according to a first embodiment of the present invention;
fig. 3 is a schematic diagram of another gateway device according to a first embodiment of the present invention;
fig. 4 is a flowchart of a smooth evolution method of a virtual gateway according to a second embodiment of the present invention;
fig. 5 is a schematic diagram of a virtual gateway smooth evolution system according to a third embodiment of the present invention;
fig. 6 is a flowchart of a smooth evolution method of a virtual gateway according to a fourth embodiment of the present invention;
fig. 7 is a schematic diagram of a smooth evolution system of a virtual gateway according to a fourth embodiment of the present invention;
fig. 8 is a schematic structural diagram of a gateway device according to a fifth embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, embodiments of the present invention are described in detail below with reference to the accompanying drawings. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
The first embodiment is as follows:
in the related art, in the network upgrading process, the simplest method for smoothly realizing the traditional gateway mode to the virtual gateway mode is to upgrade hardware, namely directly upgrading gateway equipment to virtual gateway equipment after the network is upgraded; however, this method has significant drawbacks: firstly, the home gateway equipment is deployed in a network in tens of millions, hardware upgrading is directly carried out, and a large amount of manpower and material resources are consumed; secondly, the network upgrading progress is different, and the hardware upgrading is difficult to be uniformly carried out.
There is another solution in the related art: the gateway supports both a legacy gateway mode and a virtual gateway mode. The user can switch between the two modes, which can support either the traditional network architecture or the virtualized network architecture. However, this solution also has the drawback: firstly, the gateway can only use one working mode in the running process, and the switching working mode can only take effect by restarting and cannot support real-time mode switching; and secondly, the functions of simultaneously working in a traditional gateway mode and a virtual gateway mode and selecting a working mode by a user according to the service cannot be supported, and the user cannot select different working modes according to different services in the working process of the gateway.
In order to solve the above problem, an embodiment of the present invention provides a method for smooth evolution of a virtual gateway, which uses a port switching mode to support dynamic switching of a gateway device among three modes (a traditional gateway mode, a virtual gateway mode, and a hybrid dual gateway mode), further provides parsing of a packet protocol type, and establishes a virtual device between dual gateways to perform packet interworking, so as to support a function of selecting a working mode according to a service by a user. Referring to fig. 1, as shown in fig. 1, a smooth evolution method of a virtual gateway provided in an embodiment of the present invention includes:
s101, the gateway device establishes a bridge Linux bridge for bearing the traditional gateway function and a bridge SDN bridge for bearing the virtual gateway function.
In the embodiment of the invention, when the gateway equipment is started, a Linux bridge and an SDN bridge are established to respectively bear the traditional gateway function and the virtual gateway function; the gateway equipment respectively realizes different network functions by combining the Linux bridge and the SDNbridge; wherein the gateway mode of the gateway device includes a virtual gateway mode, a legacy gateway mode, and a hybrid gateway mode.
It is noted that the Linux bridge and the SDN bridge may perform message interworking. The Linux bridge establishes a default first path device path 1 for interworking with the SDN bridge message, and the SDN bridge establishes a default second path device path 2 for interworking with the Linux bridge message, that is, a certain bridge may send a message to another bridge through the first path device and the second path device; meanwhile, the Linux bridge also establishes a first nbif device corresponding to the physical port WAN and mounts the first nbif device on the Linux bridge; the SDN bridge also establishes a second nbif device corresponding to the WAN, and mounts the second nbif device in the SDN bridge; and forwarding the message processed by the Linux bridge or the SDN bridge to a WAN port through the first nbif device or the second nbif device.
S102, according to a preset port working mode rule, virtual equipment corresponding to a port LAN is established, and the virtual equipment is mounted on a network bridge established by gateway equipment.
S103, the message received by the port is forwarded to the network bridge established by the gateway equipment through the virtual equipment.
In the embodiment of the present invention, the network bridge established by the gateway device includes Linux bridge or/and SDN bridge, and the port working mode rule may be configured by self-definition, for example, a user configures the port working mode rule through a gateway configuration media interface. The port working mode rule includes a corresponding relationship between a port and a first working mode, the first working mode includes a traditional gateway mode and a virtual gateway mode, and a specific port and the first working mode can be flexibly adjusted according to actual requirements. As shown in table 1, table 1 is a port operating mode rule provided in the embodiment of the present invention.
TABLE 1
| Port(s) | First mode of operation |
| LAN1 | Legacy gateway |
| LAN2 | Virtual gateway |
The port working mode rule is configured to a kernel mode, the kernel establishes corresponding virtual equipment eth equipment according to the port working mode rule, and the eth equipment is mounted on a Linux bridge or/and an SDN bridge. Specifically, first virtual devices eth1 corresponding to ports of a traditional gateway mode one to one are established, and the first virtual devices are mounted on a Linux bridge; or/and establishing second virtual equipment eth2 in one-to-one correspondence with ports of the virtual gateway mode, and mounting the second virtual equipment on the SDN bridge; that is, when the port is in what gateway mode, the corresponding eth device is mounted under what bridge. As shown in table 1 above, if the LAN1 port is configured with the first working mode as a traditional gateway, and the LAN2 port is configured with the working mode as a virtual gateway, an eth1 device corresponding to the LAN1 port is established and mounted on the Linux bridge; establishing an eth2 device corresponding to the LAN2 port, and mounting the eth2 device onto an SDN bridge, as shown in fig. 2; further, messages received from LAN1 are sent directly to Linux bridge processing via eth1, and messages received from LAN2 are sent directly to SDN bridge processing via eth 2.
In the embodiment of the present invention, switching of the gateway mode of the gateway device may be implemented by enabling ports to work in different gateway modes, specifically, when all ports work in the SDN bridge, the gateway mode of the gateway device is a virtual gateway mode, for example, when the first working modes of LAN1 and LAN2 are both virtual gateways, an eth1 device and an eth2 device are mounted on the SDN bridge, and then messages of all ports are forwarded to the SDN bridge, as shown in fig. 3; when all ports work in the Linux bridge, the gateway mode of the gateway device is the traditional gateway mode, the first working modes of the LAN1 and the LAN2 are both traditional gateways, the eth1 device and the eth2 device are mounted on the Linux bridge, and then messages of all the ports are forwarded to the Linux bridge; the ports respectively work on Linux bridge and SDN bridge, and are in a hybrid gateway mode, as shown in fig. 2.
Compared with the related art, the method for upgrading the traditional gateway to the virtual gateway is realized through hardware upgrading, namely after network upgrading, the gateway equipment is directly upgraded to the virtual gateway equipment. In the network upgrading process, large-scale hardware upgrading is not needed, and the gateway mode switching is realized only by working in different working modes through ports, so that the upgrading from the home gateway equipment to virtualization can be completed; the investment of manpower, material resources and financial resources is reduced, and the whole network system can be conveniently and rapidly upgraded to virtualization.
It should be noted that, after the gateway mode switching of the gateway device is completed according to the working mode of the port, the gateway device may also perform traffic distribution according to the service, and distribute the service to the corresponding bridge for processing. Specifically, after the message received by the port is forwarded to the Linux bridge or/and the SDN bridge through the virtual device, the Linux bridge or/and the SDN bridge match the message service according to a pre-configured service matching rule, and the message is delivered to the corresponding bridge according to a matching result. The service matching rule can be configured in a self-defined way, for example, a user configures a media interface through a gateway, the service matching rule comprises the corresponding relation between the service type and the port and a second working mode, and the second working mode comprises a traditional gateway mode and a virtual gateway mode; the service types include but are not limited to IGMP messages, VPN messages and the like; specific service types, ports and the second working mode can be flexibly adjusted according to actual requirements, for example, as shown in table 2, table 2 is a service matching rule provided by the embodiment of the present invention.
TABLE 2
| Type of service | Port(s) | Second mode of operation |
| IGMP | LAN1 | Legacy gateway |
| VPN | LAN1 | Virtual gateway |
| VPN | LAN2 | Virtual gateway |
And issuing the service matching rule to a Linux bridge and an SDN bridge, analyzing the service type of the received message by the Linux bridge or the SDN bridge, judging whether a second working mode configured corresponding to the service type is the same as a current first working mode of a port, matching the first working mode corresponding to the port in the table 1 with the second working mode corresponding to the service type in the table 2, and processing the message under the current bridge when the working modes are the same. For example, as can be seen from table 1, the LAN1 port operates under Linux bridge, and the LAN2 port operates under SDN bridge, and as can be seen from table 2, IGMP protocol messages on the LAN1 port go through the conventional gateway, VPN messages on the LAN1 go through the virtual gateway, and VPN messages on the LAN2 go through the virtual gateway. At this time, after receiving the IGMP message, the LAN1 port sends the IGMP message to the Linux bridge through the eth1 device, and then performs matching according to the service matching rule, and continues to process the IGMP message by the Linux bridge for processing in the conventional gateway; after receiving the VPN message, the LAN2 interface sends the VPN message to the SDN bridge through the eth2 device, and then matches the VPN message through the service matching rule, and continues to be processed by the SDN bridge for processing at the virtual gateway.
In the embodiment of the present invention, when the first working mode is different from the second working mode, the message is forwarded to another bridge for processing through the first path device and the second path device. In the above example, after the VPN service flow received by the LAN1 port is forwarded to the Linux bridge through eth1, rule matching is performed through the service matching module, and the VPN service flow needs to be handed to the virtual gateway for processing, the VPN service flow is sent to the second path device on the SDN bridge through the first path device on the Linux bridge, and finally forwarded to the SDN bridge for processing.
Compared with the prior art, the gateway simultaneously supports a traditional gateway mode and a virtual gateway mode; the user can switch between the two modes, so that a traditional network architecture or a virtual network architecture mode can be supported, the gateway equipment in the embodiment of the invention can switch services in the operation process, namely, the network can realize dynamic upgrade; and a double-gateway mode (the traditional gateway and the virtual gateway coexist) is supported, a function of selecting a working mode according to a service type can be provided in a complex network architecture, the problem that a user cannot select different working modes according to different services in the gateway working process is solved, smooth evolution from the traditional gateway to the virtual gateway is facilitated, and the network architecture is compatible with the traditional network architecture and a future virtualization network architecture.
According to the smooth evolution method of the virtual gateway provided by the embodiment of the invention, gateway equipment respectively establishes a Linux bridge and an SDN bridge, establishes corresponding virtual equipment according to working modes of different ports, is hung on the Linux bridge and the SDN bridge, and then forwards a message of the ports to the Linux bridge and/or the SDN bridge through the virtual equipment, so that gateway mode switching of the gateway equipment can be realized; after receiving a message sent by the drop-in device, the Linux bridge or the SDN bridge matches the types of the services, determines whether to change the working mode of the service flow, forwards the service flow to the corresponding bridge for processing, supports the function of a user for selecting the working mode according to the service, realizes smooth evolution from a traditional gateway to a virtual gateway, and is compatible with a traditional network architecture and a future virtualized network architecture.
Example two:
an embodiment of the present invention provides a smooth evolution method for a virtual gateway, and as shown in fig. 4, the smooth evolution method for a virtual gateway includes:
s401, the gateway device establishes a Linux bridge and an SDN bridge.
And starting the gateway equipment, establishing a Linux bridge and an SDN bridge, and respectively carrying the functions of a traditional gateway and a virtual gateway.
S402, establishing default veth1 and veth2 devices for Linux bridge and SDN bridge, and simultaneously establishing nbif1 and nbif2 devices corresponding to wan physical ports respectively.
And the veth1 and veth2 devices are used for message intercommunication between the double bridges, and the nbif1 and nbif2 devices are respectively mounted on a Linux bridge and an SDN bridge and are used for transmitting the messages to the WAN.
S403, acquiring a preset port working mode rule.
A user logs in a configuration media interface such as a web or a gateway for configuration, and configures working modes of different ports, wherein the rules of the working modes of the ports are the corresponding relation of the ports and the working modes, the working modes comprise a virtual gateway mode, and a traditional gateway mode is assumed in the embodiment of the invention, and the user configures the virtual gateway modes corresponding to the ports LAN1 and LAN 2; and configuring the port working mode rule to the kernel.
S404, establishing virtual equipment corresponding to the LAN working mode, and mounting the virtual equipment on a corresponding Linux bridge or/and SDN bridge.
The kernel establishes corresponding virtual equipment according to working modes of different ports, supposing to establish eth1 equipment corresponding to a LAN1 port, establish eth2 equipment corresponding to a LAN2 port, and mount the eth1 equipment and the eth2 equipment on an SDN bridge; and because all the ports work on the SDN bridge, the current gateway equipment is in a virtual gateway mode.
S405, forwarding the message received by the port to a Linux bridge or/and an SDN bridge through the virtual device.
Messages received from a LAN1 port of a physical port are directly sent to an SDN bridge through an eth1 port; messages received from the LAN2 port of the physical port are sent directly to the SDN bridge via the eth2 port.
S406, acquiring a pre-configured service matching rule.
A user logs in a web or gateway and other configuration media interfaces for configuration, the user configures service matching rules in media, the matching rules are corresponding relations (service types, working ports and working modes), and the working modes comprise a virtual gateway mode and a traditional gateway mode; in the embodiment of the present invention, it is assumed that a VPN configured by a user at LAN1 port operates in a virtual gateway, an IGMP packet at LAN2 port operates in a conventional gateway, and a VPN protocol packet at LAN2 port operates in a virtual gateway.
And S407, the Linux bridge or/and the SDN bridge match the message service according to the service matching rule, and deliver the message to the corresponding bridge according to the matching result.
And issuing the service matching rule to a Linux bridge and an SDN bridge, wherein the Linux bridge or/and the SDN bridge are matched according to the message type of the port. In the embodiment of the present invention, if the SDN bridge receives the messages sent by all the ports, the service type of the received message is first analyzed, and it is determined whether the mode configured for the service type is consistent with the port mode, the VPN of the LAN1 port operates in the virtual gateway, and the LAN1 is in the virtual gateway mode, and if the modes are consistent, normal processing continues under the SDN bridge; the VPN protocol message of the LAN2 port works in a virtual gateway, the LAN2 is in a virtual gateway mode, and if the modes are consistent, normal processing is continued under the SDN bridge; the IGMP message of the LAN2 port works in the traditional gateway, but the LAN2 is in a virtual gateway mode, and the modes are not consistent, the IGMP message of the LAN2 port is forwarded to the Linux bridge for processing through the veth1 and veth2 equipment.
And S408, after processing the message, forwarding the message to the WAN through nbif1 equipment or nbif2 equipment.
The embodiment of the invention provides a smooth evolution method of a virtual gateway, which utilizes a port switching mode to support the dynamic switching of a home gateway among three modes (a traditional gateway mode, a virtual gateway mode and a mixed double-gateway mode), and meets the selection of one hardware device and various working modes; the method also provides a function of analyzing message protocol types, and virtual equipment is established between the double gateways to carry out message intercommunication, so that a user is supported to select a working mode according to the service; the service switching of the equipment in the operation process can be met, namely, the network can realize dynamic upgrade; and support the dual gateway mode (traditional gateway and virtual gateway coexist), in the complicated network architecture, can offer the function according to the working mode of business choice; the method facilitates smooth evolution from the traditional gateway to the virtual gateway, and is compatible with the traditional network architecture and the future virtualization network architecture.
EXAMPLE III
An embodiment of the present invention provides a system for smooth evolution of a virtual gateway, and as shown in fig. 5, the system includes a gateway mode switching module, a service rule configuration module, a Linux bridge module, an SDN bridge module, and a service matching module. The Linux bridge and the SDN bridge respectively bear functions of a traditional gateway and a virtual gateway; after they are started, the default veth1 and veth2 devices are respectively established for message intercommunication between the double bridges; meanwhile, nbif0 and nbif1 devices corresponding to wan physical ports are respectively established and respectively mounted on a Linux bridge and an SDN bridge.
And the gateway mode switching module configures the working mode of each port to a kernel mode according to the configuration of a user. And the kernel establishes corresponding virtual equipment according to the working modes of different ports and hangs the virtual equipment on a Linux bridge or an SDN bridge. As shown in table 1 and fig. 5 of the first embodiment, if the lan1 port configuration operating mode is the conventional gateway and the lan2 port configuration operating mode is the virtual gateway, an eth0 device corresponding to the lan1 port is established and mounted on the Linux bridge, and a message received from the lan1 port of the physical port is directly sent to the Linux bridge through an eth0 port for processing; and establishing an eth1 device corresponding to an lan2 port, mounting the eth1 device to an SDN bridge, and directly sending a message received from a lan2 port of a physical port to the SDN bridge through an eth1 port for processing.
All ports work in SDN bridge, and the ports are in a virtual gateway mode; all ports working in the Linux bridge are traditional gateways; the ports respectively work on the Linux bridge and the SDN bridge, and the gateway device is in a hybrid gateway mode, and the gateway device has the function of selecting the gateway working mode according to different ports through the steps.
After receiving a message sent by the drop-on-hook device, the Linux bridge or the SDN bridge matches the message type of the service in the service matching module, determines whether to change the working mode of the service flow, and forwards the service flow to the corresponding bridge for processing. As shown in fig. 5, the operation modes of the ports are configured according to table 1, that is, lan1 port operates under Linux bridge, and lan2 port operates under SDN bridge. The service rule configuration module configures according to the rule in table 2 of the first embodiment, that is, the IGMP protocol packet at the lan1 port goes through the conventional gateway, the VPN packet of the lan1 goes through the virtual gateway, and the VPN packet of the lan2 goes through the virtual gateway. At this time, after receiving the IGMP message, the lan1 port sends the IGMP message to the Linux bridge through the eth0 device, and then performs rule matching through the service matching module, where the rule is processed in the conventional gateway, and then continues to be called for the Linux bridge; and the VPN service flow received by the lan1 port is forwarded to the Linux bridge through the eth0, and then is subjected to rule matching through the service matching module and is required to be handed to the virtual gateway for processing. The message is sent to a message 2 device on the SDN bridge through a message 1 device on the Linux bridge, and is finally forwarded to the SDN bridge for processing. After receiving the VPN message, the Lan2 interface sends the VPN message to the SDN bridge through the eth1 device, and then performs rule matching through the service matching module, where if the rule is processed in the virtual gateway, the VPN message is continuously called as the SDN bridge. The function of selecting the working mode according to the service type is finally realized through the steps.
Example four:
for convenience of understanding, in the embodiment of the present invention, a gateway operating mode of a gateway device is a hybrid dual-gateway mode, so as to describe a method and a system for smooth evolution of a virtual gateway, as shown in fig. 6 and fig. 7, the method for smooth evolution of a virtual gateway includes:
s601, starting gateway equipment, establishing a Linux bridge and an SDN bridge, respectively bearing functions of a traditional gateway and a virtual gateway, and respectively starting a service matching module on a network bridge.
S602, Linux bridge and SDN bridge establish default path 1 and path 2 devices respectively for message intercommunication between the dual bridges. Meanwhile, nbif1 and nbif2 devices corresponding to wan physical ports are respectively established and respectively mounted on a Linux bridge and an SDN bridge.
S603, after the equipment works normally, the user logs in the page or the media such as network management and the like for configuration.
S604, the user configures the port working mode on the medium according to the table 1, that is, lan1 works in the traditional gateway and lan2 works in the virtual gateway.
S605, the gateway mode switching module configures the port working mode to the kernel.
S606, the kernel establishes a virtual device eth0 corresponding to the lan1 on the Linux bridge, and establishes a virtual device eth1 corresponding to the lan2 on the SDN bridge.
S607, the user configures the service rule on the medium according to Table 2, that is, the IGMP message of lan1 port works in the traditional gateway (corresponding to traffic flow (r)), the VPN protocol message of lan1 port works in the virtual gateway (corresponding to traffic flow (r)), and the VPN message of lan2 port works in the virtual gateway (corresponding to traffic flow (c)).
S608, the service matching rule is sent to the service matching module of each network bridge.
After receiving the IGMP message (as the trend of the traffic flow (r) in fig. 7), the ports S609 and lan1 forward the message to the Linux bridge, and analyze that the message protocol is IGMP according to the traffic matching rule, and if the gateway works in the conventional gateway, the message is continuously processed by the Linux bridge, and finally forwarded to the wan side through the nbif0 port.
After receiving the VPN message (as the trend of the service flow: "c" in fig. 7), the ports S6010 and lan1 forward the message to the Linux bridge, and analyze the message protocol as VPN according to the service matching rule, and if the virtual gateway should work, forward the message from the veth1 port on the Linux bridge to the veth2 port on the SDN bridge, and process the message by the SDN bridge;
after receiving the VPN message (as the trend of the service flow (c) in fig. 7), the ports S6011 and lan2 forward the message to the SDN bridge, and analyze that the message protocol is a VPN through the service matching mode, and if the gateway works in the conventional gateway, the message is continuously processed by the SDN bridge, and finally forwarded to the wan side through the nbif1 port.
EXAMPLE five
An embodiment of the present invention provides a gateway device, as shown in fig. 8, including a processor 801, a memory 802, and a communication bus 803;
the communication bus 803 is used for realizing connection communication between the processor 801 and the memory 802;
the processor 801 is configured to execute one or more programs stored in the memory 802 to implement the steps of the evolution smoothing method of the virtual gateway in the above embodiments.
The embodiment of the present invention further provides a storage medium, where one or more programs are stored in the storage medium, and the one or more programs may be executed by one or more processors to implement the steps of the smooth evolution method for a virtual gateway in the foregoing embodiment.
The storage media includes volatile or nonvolatile, removable or non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, computer program modules or other data. Computer-readable storage media include, but are not limited to, RAM (Random Access Memory), ROM (Read-Only Memory), EEPROM (Electrically Erasable Programmable Read-Only Memory), flash Memory or other Memory technology, CD-ROM (Compact disk Read-Only Memory), Digital Versatile Disks (DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information and which can be accessed by a computer.
It will be apparent to those skilled in the art that all or some of the steps of the methods, systems, functional modules/units in the devices disclosed above may be implemented as software (which may be implemented in computer program code executable by a computing device), firmware, hardware, and suitable combinations thereof. In a hardware implementation, the division between functional modules/units mentioned in the above description does not necessarily correspond to the division of physical components; for example, one physical component may have multiple functions, or one function or step may be performed by several physical components in cooperation. Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, digital signal processor, or microprocessor, or as hardware, or as an integrated circuit, such as an application specific integrated circuit.
In addition, communication media typically embodies computer readable instructions, data structures, computer program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media as known to one of ordinary skill in the art. Thus, the present invention is not limited to any specific combination of hardware and software.
The foregoing is a more detailed description of embodiments of the present invention, and the present invention is not to be considered limited to such descriptions. For those skilled in the art to which the invention pertains, several simple deductions or substitutions can be made without departing from the spirit of the invention, and all shall be considered as belonging to the protection scope of the invention.
Claims (10)
1. A smooth evolution method of a virtual gateway is characterized by comprising the following steps:
the gateway equipment establishes a bridge Linux bridge for bearing the traditional gateway function and a bridge SDN bridge for bearing the virtual gateway function;
establishing virtual equipment corresponding to a port according to a preset port working mode rule, and mounting the virtual equipment on a network bridge established by the gateway equipment;
and forwarding the message received by the port to a network bridge established by the gateway equipment through the virtual equipment.
2. The method for smoothly evolving a virtual gateway as claimed in claim 1, wherein the bridge established by the gateway device comprises Linux bridge and/or SDN bridge; the port working mode rule comprises: and the corresponding relation between the port and a first working mode, wherein the first working mode comprises a traditional gateway mode and a virtual gateway mode.
3. The smooth evolution method for a virtual gateway according to claim 2, wherein the establishing a virtual device corresponding to a port and mounting the virtual device on a bridge established by the gateway device comprises:
establishing first virtual equipment in one-to-one correspondence with ports of the traditional gateway mode, and mounting the first virtual equipment on the Linux bridge;
and/or the first and/or second light sources,
establishing second virtual equipment in one-to-one correspondence with the ports of the virtual gateway mode, and mounting the second virtual equipment on the SDN bridge.
4. The method for smoothly evolving a virtual gateway according to any one of claims 1 to 3, wherein the forwarding, by the virtual device, the packet received by the port to the bridge established by the gateway device includes:
and matching the message service by the Linux bridge or/and the SDN bridge according to a pre-configured service matching rule, and delivering the message to a corresponding network bridge according to a matching result.
5. The smooth evolution method of virtual gateways according to claim 4, wherein said service matching rules comprise correspondence between service types, ports and second working modes, and said second working modes comprise legacy gateway and virtual gateway modes.
6. The method for smoothly evolving a virtual gateway according to claim 5, wherein the Linux bridge or/and the SDN bridge match packet services, and deliver the packet to the corresponding bridge according to the matching result, including:
the Linux bridge or the SDN bridge analyzes the service type of the message;
judging whether a second working mode configured corresponding to the service type is the same as a current first working mode of the port or not;
and when the working modes are the same, processing the message under the current bridge.
7. The method for smoothly evolving a virtual gateway as claimed in claim 6, wherein the Linux bridge further comprises a first path device for interworking with the SDN bridge packet; the SDN bridge further comprises a second path device used for communicating with the Linux bridge message;
and when the working modes are different, forwarding the message to another network bridge for processing through the first path equipment and the second path equipment.
8. The smoothly evolving method of virtual gateway as claimed in claim 7, wherein said Linux bridge further comprises a first nbif device corresponding to a physical port WAN; the SDN bridge further comprises a second nbif device corresponding to the WAN;
and after the Linux bridge or the SDN bridge processes the message, forwarding the message to the WAN through the first nbif equipment or the second nbif equipment.
9. A gateway device, characterized in that the gateway device comprises a processor, a memory and a communication bus;
the communication bus is used for realizing connection communication between the processor and the memory;
the processor is configured to execute one or more programs stored in the memory to implement the steps of the evolution smoothing method of the virtual gateway according to any of claims 1 to 8.
10. A storage medium storing one or more programs, the one or more programs being executable by one or more processors to implement the steps of the method for smooth evolution of a virtual gateway according to any one of claims 1 to 8.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910750605.5A CN112398728B (en) | 2019-08-14 | 2019-08-14 | Virtual gateway smooth evolution method, gateway equipment and storage medium |
| PCT/CN2020/098623 WO2021027408A1 (en) | 2019-08-14 | 2020-06-28 | Smooth evolution method for virtual gateway, and gateway device and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910750605.5A CN112398728B (en) | 2019-08-14 | 2019-08-14 | Virtual gateway smooth evolution method, gateway equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112398728A true CN112398728A (en) | 2021-02-23 |
| CN112398728B CN112398728B (en) | 2024-03-08 |
Family
ID=74569407
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910750605.5A Active CN112398728B (en) | 2019-08-14 | 2019-08-14 | Virtual gateway smooth evolution method, gateway equipment and storage medium |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN112398728B (en) |
| WO (1) | WO2021027408A1 (en) |
Citations (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007025451A1 (en) * | 2005-09-01 | 2007-03-08 | Zte Corporation | Msystem and method for realizing multi-service stack virtual local area network |
| US20080031266A1 (en) * | 2006-08-04 | 2008-02-07 | Francois Edouard Tallet | Technique for sharing a physical port among a plurality of virtual bridges on a switch in a computer network |
| WO2009067915A1 (en) * | 2007-11-19 | 2009-06-04 | Chengdu Huawei Symantec Technologies, Co., Ltd. | Method for identifying service type corresponding to message and device thereof |
| US20090238084A1 (en) * | 2008-03-18 | 2009-09-24 | Cisco Technology, Inc. | Network monitoring using a proxy |
| CN101616097A (en) * | 2009-07-31 | 2009-12-30 | 中兴通讯股份有限公司 | A kind of management method of output port queue of network processor and system |
| US20100054250A1 (en) * | 2005-12-08 | 2010-03-04 | Freebit Co., Ltd. | Relay apparatus and method for connecting client device with server |
| CN103078779A (en) * | 2012-12-28 | 2013-05-01 | 太仓市同维电子有限公司 | Method for realizing different internet businesses based on vlan (virtual local area network) at same interface |
| CN103716181A (en) * | 2013-12-13 | 2014-04-09 | 上海斐讯数据通信技术有限公司 | LAN_WAN virtual channel implementation method under gateway device routing mode |
| CN103825796A (en) * | 2014-02-28 | 2014-05-28 | 神州数码网络(北京)有限公司 | Message interactive method, terminal station and network bridge |
| CN104426731A (en) * | 2013-08-23 | 2015-03-18 | 杭州华三通信技术有限公司 | A method and device for computing a spanning tree |
| WO2016026089A1 (en) * | 2014-08-19 | 2016-02-25 | 华为技术有限公司 | Converging method and apparatus for software defined network and traditional network |
| US20160301603A1 (en) * | 2015-04-10 | 2016-10-13 | Kulcloud | Integrated routing method based on software-defined network and system thereof |
| CN106850387A (en) * | 2017-02-21 | 2017-06-13 | 无锡华云数据技术服务有限公司 | A kind of system and method for the virtual network networking for realizing multiple data centers |
| CN106936777A (en) * | 2015-12-29 | 2017-07-07 | 中移(苏州)软件技术有限公司 | Cloud computing distributed network implementation method based on OpenFlow, system |
| CN107276800A (en) * | 2017-06-12 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of network traffics method for tracing and device for cloud data center |
| CN107493180A (en) * | 2016-06-13 | 2017-12-19 | 阿里巴巴集团控股有限公司 | The upgrade method and device of a kind of virtual switch |
| CN108599999A (en) * | 2018-04-10 | 2018-09-28 | 西安工业大学 | The network of OVS and Linux bridge is disposed in a kind of SDN new networks |
| WO2018219300A1 (en) * | 2017-05-31 | 2018-12-06 | 中兴通讯股份有限公司 | Method and apparatus for packet exchange in sdn |
| CN109496409A (en) * | 2017-12-27 | 2019-03-19 | 华为技术有限公司 | A kind of method and virtual switch of data transmission |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104468775B (en) * | 2014-12-05 | 2017-10-10 | 国云科技股份有限公司 | A kind of distribution router implementation method suitable for cloud computing |
| US10476699B2 (en) * | 2018-01-31 | 2019-11-12 | Hewlett Packard Enterprise Development Lp | VLAN to VXLAN translation using VLAN-aware virtual machines |
-
2019
- 2019-08-14 CN CN201910750605.5A patent/CN112398728B/en active Active
-
2020
- 2020-06-28 WO PCT/CN2020/098623 patent/WO2021027408A1/en active Application Filing
Patent Citations (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007025451A1 (en) * | 2005-09-01 | 2007-03-08 | Zte Corporation | Msystem and method for realizing multi-service stack virtual local area network |
| US20100054250A1 (en) * | 2005-12-08 | 2010-03-04 | Freebit Co., Ltd. | Relay apparatus and method for connecting client device with server |
| US20080031266A1 (en) * | 2006-08-04 | 2008-02-07 | Francois Edouard Tallet | Technique for sharing a physical port among a plurality of virtual bridges on a switch in a computer network |
| CN101491014A (en) * | 2006-08-04 | 2009-07-22 | 思科技术公司 | Technique for sharing a physical port among a plurality of virtual bridges on a switch |
| WO2009067915A1 (en) * | 2007-11-19 | 2009-06-04 | Chengdu Huawei Symantec Technologies, Co., Ltd. | Method for identifying service type corresponding to message and device thereof |
| US20090238084A1 (en) * | 2008-03-18 | 2009-09-24 | Cisco Technology, Inc. | Network monitoring using a proxy |
| CN101616097A (en) * | 2009-07-31 | 2009-12-30 | 中兴通讯股份有限公司 | A kind of management method of output port queue of network processor and system |
| CN103078779A (en) * | 2012-12-28 | 2013-05-01 | 太仓市同维电子有限公司 | Method for realizing different internet businesses based on vlan (virtual local area network) at same interface |
| CN104426731A (en) * | 2013-08-23 | 2015-03-18 | 杭州华三通信技术有限公司 | A method and device for computing a spanning tree |
| CN103716181A (en) * | 2013-12-13 | 2014-04-09 | 上海斐讯数据通信技术有限公司 | LAN_WAN virtual channel implementation method under gateway device routing mode |
| CN103825796A (en) * | 2014-02-28 | 2014-05-28 | 神州数码网络(北京)有限公司 | Message interactive method, terminal station and network bridge |
| WO2016026089A1 (en) * | 2014-08-19 | 2016-02-25 | 华为技术有限公司 | Converging method and apparatus for software defined network and traditional network |
| CN106664235A (en) * | 2014-08-19 | 2017-05-10 | 华为技术有限公司 | Converging method and apparatus for software defined network and traditional network |
| US20160301603A1 (en) * | 2015-04-10 | 2016-10-13 | Kulcloud | Integrated routing method based on software-defined network and system thereof |
| CN106936777A (en) * | 2015-12-29 | 2017-07-07 | 中移(苏州)软件技术有限公司 | Cloud computing distributed network implementation method based on OpenFlow, system |
| CN107493180A (en) * | 2016-06-13 | 2017-12-19 | 阿里巴巴集团控股有限公司 | The upgrade method and device of a kind of virtual switch |
| CN106850387A (en) * | 2017-02-21 | 2017-06-13 | 无锡华云数据技术服务有限公司 | A kind of system and method for the virtual network networking for realizing multiple data centers |
| WO2018219300A1 (en) * | 2017-05-31 | 2018-12-06 | 中兴通讯股份有限公司 | Method and apparatus for packet exchange in sdn |
| CN107276800A (en) * | 2017-06-12 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of network traffics method for tracing and device for cloud data center |
| CN109496409A (en) * | 2017-12-27 | 2019-03-19 | 华为技术有限公司 | A kind of method and virtual switch of data transmission |
| CN108599999A (en) * | 2018-04-10 | 2018-09-28 | 西安工业大学 | The network of OVS and Linux bridge is disposed in a kind of SDN new networks |
Non-Patent Citations (3)
| Title |
|---|
| FRANCESCO FORESTA; WALTER CERRONI; LUCA FOSCHINI; GIANLUCA DAVOLI; CHIARA CONTOLI; ANTONIO CORRADI; FRANCO CALLEGATI: "Improving OpenStack Networking: Advantages and Performance of Native SDN Integration", 2018 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC) * |
| 林桂芳: "异构化TensorFlow架构的研究与实现", 中国优秀硕士论文电子期刊网 * |
| 谢天明;林锡龙;: "基于HDLC介质的嵌入式Linux二层网桥交换技术", 计算机***应用, no. 08 * |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2021027408A1 (en) | 2021-02-18 |
| CN112398728B (en) | 2024-03-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20230205568A1 (en) | Network control system for configuring middleboxes | |
| US10516574B2 (en) | Method and tool for diagnosing logical networks | |
| EP3515022B1 (en) | Chassis controllers for converting universal flows | |
| US10033640B2 (en) | Hybrid packet processing | |
| EP3624407A1 (en) | Dynamic routing for logical routers | |
| WO2014063605A1 (en) | System and apparatus of generalized network controller for a software defined network (sdn) | |
| CN112235122A (en) | Automatic selection of software images for network devices | |
| CN111277423B (en) | Data center flow intercommunication method, device, equipment and storage medium | |
| US11902245B2 (en) | Per-namespace IP address management method for container networks | |
| CN115804073A (en) | Tenant-driven dynamic resource allocation for virtual network functions | |
| CN112242952B (en) | Data forwarding method, cabinet top type switch and storage medium | |
| CN112398728B (en) | Virtual gateway smooth evolution method, gateway equipment and storage medium | |
| EP3197106B1 (en) | Switch processing method, controller, switch, and switch processing system | |
| CN108886493B (en) | Virtual exchange model based on topological structure and provided with pluggable flow management protocol | |
| WO2017167151A1 (en) | Multiple provider framework for virtual switch data planes and data plane migration | |
| CN112787929B (en) | Three-layer VPN service resource automatic allocation and management method and device | |
| AU2017204764B2 (en) | Chassis controllers for converting universal flows | |
| US20230086664A1 (en) | Route Management Method, Device, and System |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20210222 Address after: 518057 Zhongxing building, science and technology south road, Nanshan District hi tech Industrial Park, Guangdong, Shenzhen Applicant after: ZTE Corp. Address before: 210012 No. 68 Bauhinia Road, Yuhuatai District, Jiangsu, Nanjing Applicant before: Nanjing Zhongxing New Software Co.,Ltd. |
|
| TA01 | Transfer of patent application right | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |