CN114338507A - Method and device for changing traffic forwarding path in cloud gateway system - Google Patents
Method and device for changing traffic forwarding path in cloud gateway system Download PDFInfo
- Publication number
- CN114338507A CN114338507A CN202111591864.1A CN202111591864A CN114338507A CN 114338507 A CN114338507 A CN 114338507A CN 202111591864 A CN202111591864 A CN 202111591864A CN 114338507 A CN114338507 A CN 114338507A
- Authority
- CN
- China
- Prior art keywords
- gateway
- switch
- data
- access
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to the technical field of internet, and provides a method and a device for changing a flow forwarding path in a cloud gateway system. After the multicast source transmits the encapsulated traffic data to the service gateway through the access switch 2, the service gateway uses the table data of the access gateway and the gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal. The invention avoids the multicast data stream from being transmitted to the access gateway, and reduces the occupation of resources such as CPU, memory, network port and the like of the access gateway.
Description
[ technical field ] A method for producing a semiconductor device
The invention relates to the technical field of internet, in particular to a method and a device for changing a flow forwarding path in a cloud gateway system.
[ background of the invention ]
The cloud gateway system is used for moving three layers of functions of the household ONU equipment to the cloud gateway equipment, so that user flow is converged to the cloud gateway, dial-up networking or directional drainage is carried out after the user flow is identified, and value-added services such as cloud security, cloud entertainment, cloud games, cloud storage, cloud monitoring and the like can be provided through the directional drainage.
A value added service in the cloud gateway system is an ITV television, a network transmission scheme of the value added service is a UDP multicast scheme, after a Group Management protocol IGMP (internet Group Management protocol) added packet sent by a user passes through an access gateway, the packet is forwarded to a service gateway according to a defined rule, the service gateway terminates the IGMP added packet of the user to form a multicast proxy table entry, and simultaneously sends the IGMP added packet to an upstream device by using the service gateway as a user source, and a specific IGMP packet forwarding process is shown in fig. 1.
After the IGMP group adding packet reaches the multicast data source, the multicast data source pushes the multicast data stream to the corresponding multicast address, the multicast data stream reaches the service gateway according to the original path, the service gateway copies the multicast data stream to each end user according to the multicast proxy table entry produced in the previous flow, then forwards the multicast data stream to the access gateway according to the original path, the access gateway processes the multicast data stream and forwards the multicast data stream to the real user according to the original path, and the specific multicast data stream trend is as shown in fig. 2.
The multicast data stream is copied at a service gateway, a data stream with a large bandwidth can be formed, in the process of sending a home user, a forwarding path passes through an access gateway, the access gateway only simply forwards data, the access gateway bears the internet traffic management of the user at every moment, a large amount of multicast data streams can consume a CPU and storage of the access gateway, the bandwidth of a network port is occupied, the data packet forwarding time delay is increased, and the internet experience of the user is influenced.
In view of the above, overcoming the drawbacks of the prior art is an urgent problem in the art.
[ summary of the invention ]
The technical problem to be solved by the present invention is that a multicast data stream is copied at a service gateway to form a data stream with a large bandwidth, and in the process of sending a home user, a forwarding path passes through an access gateway, the access gateway only simply performs data forwarding, and the access gateway carries the internet traffic management of the user at every moment, and a large amount of multicast data streams consume a CPU and a memory of the access gateway, occupy the bandwidth of a network port, increase the forwarding delay of a data packet, and affect the internet experience of the user.
The invention adopts the following technical scheme:
in a first aspect, the present invention provides a method for implementing changing a traffic forwarding path in a cloud gateway system, including:
the IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the convergence switch and the access switch 2; and then reaches the multicast source from the service gateway through the access switch 2 again;
the service gateway maintains table entry data of a corresponding access gateway and table entry data between the access gateway and a gateway switch;
after the multicast source transmits the encapsulated traffic data to a service gateway through an access switch 2, the service gateway uses the table data of the access gateway and a gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal.
Preferably, the IP and MAC at the gateway switch are IP1 and MAC 1; the interfaces IP and MAC of the access gateway are IP2 and MAC 2; the interfaces IP and MAC of the service gateway are IP3 and MAC 3; ip1, ip2, and ip3 are in the same local area network, and the VXLAN tunnel VNI value VNI between the gateway switch and the access gateway, and the VXLAN tunnel VNI value VNI between the access gateway and the service gateway VNI value VNI b, then the service gateway uses the entry data of the access gateway and the gateway switch to re-encapsulate the traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a DIP field of a traffic data packet header as mac1 and ip1 respectively; setting the SMAC field and the SIP field of the traffic data packet header to mac2 and ip2 respectively; the VXLAN VNI field of the traffic data header is set to vniA.
Preferably, before the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, the method further includes:
the service gateway generates a virtual sub-interface, wherein the IP of the local end interface of the virtual sub-interface is IP2 and is associated with the local physical Trunk interface of the service gateway, and the MAC of the local end interface of the virtual sub-interface is MAC 3;
generating a static ARP configuration comprising addresses ip1 and mac 1;
generating a static VXLAN tunnel configuration which comprises a far-end address ip1 and a VNI value vniA and is associated with a virtual subinterface;
generating a forwarding rule, wherein the forwarding rule comprises that the service gateway receives flow data and forwards the flow data to a gateway switch through the static VXLAN tunnel;
and setting the virtual sub-interface not to send ARP messages and not to respond to the ARP messages.
Preferably, when a newly-added node device is in the network and an IP address is allocated, after the mapping relationship between the IP address of the node device and the MAC address of the node device is established, an ARP request message carrying the mapping relationship between the IP address of the node device and the MAC address of the node device is sent to other nodes in the network; after the service gateway receives the ARP request message, the method further comprises the following steps:
the service gateway acquires the ip3 and mac3 information and ip2 and mac3 information corresponding to the virtual subinterface;
and when the attribute of the virtual sub-interface is confirmed to be that no ARP message is sent and no ARP message is responded, only carrying the ip3 and mac3 information in an ARP response message and returning the ARP response message to the opposite end sending the ARP request message.
Preferably, the service gateway maintains entry data of a corresponding access gateway and entry data between the access gateway and the gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
Preferably, the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, and forwards the traffic data to the user terminal on a path from the service gateway, the access switch 2, and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
Preferably, the method further comprises:
the access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for providing data summarization in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
Preferably, the tunnel established between the gateway switch and the access gateway and the service gateway is an IP address as an identification mode; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively takes the MAC address as the basis, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
Preferably, the method further comprises:
under the condition of changing a traffic data transmission path of a service gateway, adding a new table item data which is directly transmitted to a gateway switch on the service gateway, wherein the new table item data comprises an ip of the gateway switch, a mac of the gateway switch and an updated vni; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding is encapsulated by adopting newly added table data.
In a second aspect, the present invention further provides an apparatus for implementing changing a traffic forwarding path in a cloud gateway system, which is used to implement the method for implementing changing a traffic forwarding path in a cloud gateway system in the first aspect, where the apparatus includes:
at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor, and the instructions are executable by the processor to perform the method for changing a traffic forwarding path in a cloud gateway system according to the first aspect.
In a third aspect, the present invention further provides a non-volatile computer storage medium, where the computer storage medium stores computer-executable instructions, which are executed by one or more processors, and are used to implement the method for changing a traffic forwarding path in a cloud gateway system according to the first aspect.
After receiving multicast DATA stream, the service gateway sends the multicast DATA stream in a flow encapsulation mode sent by the access gateway, and after receiving the flow, the access switch 2 forwards the multicast DATA stream to the convergence switch according to a known MAC forwarding table and then forwards the multicast DATA stream to the gateway switch, so that the condition of decapsulating the DATA packet by the gateway switch is met, decapsulation can be normally carried out, and the DATA DATA is sent to a user below. The multicast data stream is prevented from being forwarded to the access gateway, and the occupation of resources such as a CPU (central processing unit), a memory, a network port and the like of the access gateway is reduced; reducing the forwarding hop count of the multicast data stream; and the forwarding performance of the multicast data stream is improved.
[ description of the drawings ]
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings required to be used in the embodiments of the present invention will be briefly described below. It is obvious that the drawings described below are only some embodiments of the invention, and that for a person skilled in the art, other drawings can be derived from them without inventive effort.
Fig. 1 is a schematic diagram of a prior art for implementing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 2 is a schematic diagram of a prior art for implementing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 3 is a schematic flowchart of a method for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 4 is a schematic diagram illustrating an implementation of changing a traffic forwarding path architecture in a cloud gateway system according to an embodiment of the present invention;
fig. 5 is a schematic diagram illustrating a scenario for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 6 is a data format of a traffic forwarding header according to an embodiment of the present invention;
fig. 7 is a data format of a traffic forwarding header according to an embodiment of the present invention;
fig. 8 is a schematic flowchart of a method for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 9 is a schematic flowchart of a method for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 10 is a schematic structural diagram of an apparatus for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention.
[ detailed description ] embodiments
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
In the description of the present invention, the terms "inner", "outer", "longitudinal", "lateral", "upper", "lower", "top", "bottom", and the like indicate orientations or positional relationships based on those shown in the drawings, and are for convenience only to describe the present invention without requiring the present invention to be necessarily constructed and operated in a specific orientation, and thus should not be construed as limiting the present invention.
In the embodiment of the invention, the related multicast source transmits the encapsulated flow data to the service gateway through the access switch 2, and forwards the flow data to the user terminal on the path from the service gateway, the access switch 2 and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
The access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for providing data summarization in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
The tunnel established between the gateway switch and the access gateway and the service gateway takes an IP address as an identity recognition mode; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively takes the MAC address as the basis, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
In addition, the technical features involved in the embodiments of the present invention described below may be combined with each other as long as they do not conflict with each other.
Example 1:
embodiment 1 of the present invention provides a method for implementing changing of a traffic forwarding path in a cloud gateway system, as shown in fig. 3 and 4, including:
in step 201, the group management protocol IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch, and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the convergence switch and the access switch 2; and then reaches the multicast source from the service gateway through the access switch 2 again;
in a specific implementation scheme, the access switch 1 and the access switch 2 may be the same device node, and there is no difference between the separate and non-separate forwarding flows of data streams, and only in a real network environment, a port of one access switch may be occupied by multiple access gateways or multiple service gateways; another reason is that different types of servers may be placed in different racks for network architecture planning and redundancy considerations.
The necessity of network architecture: a switch network architect in a topological graph continues to use a data center leaf-spine-border architecture, a leaf role is accessed to a switch, a spine role is converged to a switch, a border role is accessed to a gateway switch, the data center leaf-spine-border architecture networking is that all leaf roles and border switches are connected to the spine role switch, the leaf role switch is connected with a server, and the border role switch is connected with an external network device (external network).
In step 202, the service gateway maintains table entry data of the corresponding access gateway and table entry data between the access gateway and the gateway switch.
In the prior art, a service gateway does not need to maintain the table entry data of an access gateway and a gateway switch, in an original situation, after an IGMP packet report path is formed, a multicast data stream forwarding path returns according to an original path, in the returned path, the service gateway maintains the table entry data (ip, mac, vni, etc.) of the access gateway, and the access gateway maintains the data (ip, mac, vni, etc.) of the gateway switch.
In step 203, after the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, the service gateway uses the table data of the access gateway and the gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal.
In the embodiment of the invention, after receiving the multicast DATA stream, the service gateway transmits the multicast DATA stream in a traffic encapsulation mode transmitted by the access gateway, and after receiving the traffic, the access switch 2 forwards the multicast DATA stream to the aggregation switch according to a known MAC forwarding table and then forwards the multicast DATA stream to the gateway switch, so that the condition of decapsulating the DATA packet by the gateway switch is met, the DATA packet can be decapsulated normally, and the DATA is transmitted to a user below. The multicast data stream is prevented from being forwarded to the access gateway, and the occupation of resources such as a CPU (central processing unit), a memory, a network port and the like of the access gateway is reduced; reducing the forwarding hop count of the multicast data stream; and the forwarding performance of the multicast data stream is improved.
The reason that the existing scheme needs to go through the access gateway is that the service gateway only has the table entry data of the access gateway, which is not selected and is not specified; the invention gives it actively without table item to the gateway exchanger, and has table item to the gateway exchanger, and after two paths are selected, the original one can be saved.
In order to more clearly illustrate the core principle and mechanism of the implementation of the present invention, the following description is made with reference to fig. 5, where the IP and MAC of the gateway switch are IP1 and MAC 1; the interfaces IP and MAC of the access gateway are IP2 and MAC 2; the interfaces IP and MAC of the service gateway are IP3 and MAC 3; ip1, ip2, and ip3 are in the same local area network, a VXLAN tunnel VNI value vniA between a gateway switch and an access gateway (a tunnel traffic message sent by the corresponding gateway switch to the access gateway carries structure data shown in fig. 6), and a VXLAN tunnel VNI value vniB between an access gateway and a service gateway (a tunnel traffic message sent by the corresponding service gateway to the access gateway carries structure data shown in fig. 7), where the service gateway uses the entry data of the access gateway and the gateway switch to re-encapsulate traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a DIP field of a traffic data packet header as mac1 and ip1 respectively; setting the SMAC field and the SIP field of the traffic data packet header to mac2 and ip2 respectively; the VXLAN VNI field of the traffic data header is set to vniA.
In conjunction with the embodiment of the present invention, before implementing the method steps of step 201 and 203, actually, a necessary preamble procedure is involved, that is, before the multicast source transfers the encapsulated traffic data to the service gateway via the access switch 2, as shown in fig. 8, the method further includes:
in step 301, the service gateway generates a virtual subinterface, where an IP of a local interface of the virtual subinterface is IP2, the IP is associated with a local physical Trunk interface of the service gateway, and an MAC of the local interface of the virtual subinterface is MAC 3.
The virtual sub-interface is a logic concept, the sub-interface forwards data and finally passes through a network port of a real network card, the real network card of the server is bound into a trunk interface, and the created sub-interface depends on the trunk interface (namely the network port) when finally forwarding the data.
In step 302, a static ARP (Address Resolution Protocol) configuration is generated, including addresses ip1 and mac 1.
In step 303, a static VXLAN tunnel configuration is generated, which includes a remote address of ip1 and a VNI value of VNI of vniA, and is associated with the virtual subinterface.
In step 304, a forwarding rule is generated, including the traffic data received by the service gateway and forwarded to the gateway switch via the static VXLAN tunnel.
In step 305, the virtual subinterface is set to not send ARP messages, nor respond to ARP messages.
The significance of setting the virtual sub-interface not to send an ARP message and not to respond to the ARP message is that the address of the virtual sub-interface is the same as the ip2 address of the access gateway, in a local area network, the ip1 actively acquires an ARP broadcast message of the ip2, both the access gateway and the service gateway can receive the ARP broadcast message, but two identical ips cannot exist in one local area network, that is, the service gateway cannot respond to the ARP broadcast message sent by the ip1, and the service gateway needs to hide that the service gateway has the ip2 address.
In a specific implementation process, in the cloud gateway system, the gateway server and the delivered main body are a relationship between a server and a client, and the triggering implementation manner of the steps 301 and 305 may be: the gateway server is a server side, which receives the configuration issuing message pushed by the client side, and the client side is a user, namely the main body of the issuing generation configuration process and the like is the user.
With the mechanism explanation and laying of the above steps 301 to 305, in the embodiment of the present invention, after completing the establishment of the mapping relationship between the own IP address and the own MAC address when an additional node device is present in the network and an IP address is allocated, an ARP request message carrying the establishment of the mapping relationship between the own IP address and the own MAC address is sent to other nodes in the network; after the service gateway receives the ARP request message, as shown in fig. 9, the method further includes:
in step 401, the service gateway obtains the ip3 and mac3 information, and ip2 and mac3 information corresponding to the virtual subinterface.
In step 402, when it is determined that the attribute of the virtual sub-interface is that no ARP packet is sent or no ARP packet is responded, only the ip3 and mac3 information are carried in an ARP response message and returned to the opposite end that sends the ARP request message.
In the embodiment of the present invention, the service gateway maintains table entry data of a corresponding access gateway and table entry data between the access gateway and a gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
There is also a derivation process in conjunction with embodiments of the invention, as shown in fig. 9, the method further comprising:
in step 204, under the condition of changing the traffic data transmission path of the service gateway, a new entry data directly to the gateway switch is added to the service gateway, including the ip of the gateway switch, the mac of the gateway switch and the updated vni; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding is encapsulated by adopting newly added table data.
In the embodiment of the invention, in the original forwarding path, the access gateway is used for forwarding, transmitting and receiving data of the service gateway, the data packet is encapsulated again and then forwarded to the gateway switch according to the self-maintained list items (ip, mac, vni and the like) to the gateway switch, the access gateway does not operate the quantity of the data packet and the real content of the inner layer, the access gateway needs to send the express to Beijing from Wuhan in analogy to the automobile action in express transportation, the transportation scheme of Shunfeng express is to send the express to Nanjing from Wuhan by using a Tofeng brand automobile, and then to Beijing by using a Walkwo brand automobile from Nanjing, the transportation scheme of Beijing east can be directly from Wuhan airplane to Beijing, and the transportation scheme of Shunfeng, the Nanjing node is used for replacing the automobile, the content and quantity of the express packages are not changed, and the Nanjing can be completely overhead after the Shunfeng scheme is provided.
The line development constitution is the IGMP message reporting process, a Beijing user needs a Wuhan hot dry surface, the line development is from Beijing to Nanjing and then from Nanjing to Wuhan, and the path is strictly established by the Beijing company and can not be changed; wuhan hot dry noodle merchants do not have the condition of line development, and can only return hot dry noodles to original companies according to the original way, from Wuhan to Nanjing to Beijing; the Wuhan hot dry noodle association is provided with line development conditions, develops a line directly reaching Beijing in Wuhan, and delivers goods according to the line from Wuhan to Beijing in the follow-up hot dry noodle requirement from Beijing; in the two lines, Beijing originally only receives the hot dry surface from Nanjing, and now needs to directly receive the hot dry surface from Wuhan, so that vehicles sent by Wuhan need to use pass of Nanjing vehicles (vniA newly added on a service gateway), Wuhan needs to know the line directly reaching Beijing (list items, IP and MAC of a gateway switch are newly added on the service gateway).
Example 2:
fig. 10 is a schematic structural diagram of an apparatus for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention. An apparatus implementing changing a traffic forwarding path in a cloud gateway system of this embodiment includes one or more processors 21 and a memory 22. In fig. 10, one processor 21 is taken as an example.
The processor 21 and the memory 22 may be connected by a bus or other means, and fig. 10 illustrates the connection by a bus as an example.
The memory 22, which is a nonvolatile computer-readable storage medium, may be used to store a nonvolatile software program and a nonvolatile computer-executable program, and implement the method of changing the traffic forwarding path in the cloud gateway system as in embodiment 1. The processor 21 performs a method of implementing a change in traffic forwarding paths in a cloud gateway system by executing non-volatile software programs and instructions stored in the memory 22.
The memory 22 may include high speed random access memory and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid state storage device. In some embodiments, the memory 22 may optionally include memory located remotely from the processor 21, and these remote memories may be connected to the processor 21 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The program instructions/modules are stored in the memory 22, and when executed by the one or more processors 21, perform the method for changing the traffic forwarding path in the cloud gateway system in embodiment 1, for example, perform the steps shown in fig. 3, fig. 8 and fig. 9 described above.
It should be noted that, for the information interaction, execution process and other contents between the modules and units in the apparatus and system, the specific contents may refer to the description in the embodiment of the method of the present invention because the same concept is used as the embodiment of the processing method of the present invention, and are not described herein again.
Those of ordinary skill in the art will appreciate that all or part of the steps of the various methods of the embodiments may be implemented by associated hardware as instructed by a program, which may be stored on a computer-readable storage medium, which may include: read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and the like.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents and improvements made within the spirit and principle of the present invention are intended to be included within the scope of the present invention.
Claims (10)
1. A method for changing a traffic forwarding path in a cloud gateway system is implemented, and the method is characterized by comprising the following steps:
the IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the convergence switch and the access switch 2; and then reaches the multicast source from the service gateway through the access switch 2 again;
the service gateway maintains table entry data of a corresponding access gateway and table entry data between the access gateway and a gateway switch;
after the multicast source transmits the encapsulated traffic data to a service gateway through an access switch 2, the service gateway uses the table data of the access gateway and a gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal.
2. The method for changing the traffic forwarding path in the cloud gateway system according to claim 1, wherein the IP and MAC of the gateway switch are IP1 and MAC 1; the interfaces IP and MAC of the access gateway are IP2 and MAC 2; the interfaces IP and MAC of the service gateway are IP3 and MAC 3; ip1, ip2, and ip3 are in the same local area network, and the VXLAN tunnel VNI value VNI between the gateway switch and the access gateway, and the VXLAN tunnel VNI value VNI between the access gateway and the service gateway VNI value VNI b, then the service gateway uses the entry data of the access gateway and the gateway switch to re-encapsulate the traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a DIP field of a traffic data packet header as mac1 and ip1 respectively; setting the SMAC field and the SIP field of the traffic data packet header to mac2 and ip2 respectively; the VXLAN VNI field of the traffic data header is set to vniA.
3. The method for implementing the change of the traffic forwarding path in the cloud gateway system according to claim 2, wherein before the multicast source transfers the encapsulated traffic data to the traffic gateway via the access switch 2, the method further comprises:
the service gateway generates a virtual sub-interface, wherein the IP of the local end interface of the virtual sub-interface is IP2 and is associated with the local physical Trunk interface of the service gateway, and the MAC of the local end interface of the virtual sub-interface is MAC 3;
generating a static ARP configuration comprising addresses ip1 and mac 1;
generating a static VXLAN tunnel configuration which comprises a far-end address ip1 and a VNI value vniA and is associated with a virtual subinterface;
generating a forwarding rule, wherein the forwarding rule comprises that the service gateway receives flow data and forwards the flow data to a gateway switch through the static VXLAN tunnel;
and setting the virtual sub-interface not to send ARP messages and not to respond to the ARP messages.
4. The method for changing the traffic forwarding path in the cloud gateway system according to claim 3, wherein when a new node device is added to the network and an IP address is assigned, after the mapping relationship between the IP address of the node device and the MAC address of the node device is established, an ARP request message carrying the mapping relationship between the IP address of the node device and the MAC address of the node device is sent to other nodes in the network; after the service gateway receives the ARP request message, the method further comprises the following steps:
the service gateway acquires the ip3 and mac3 information and ip2 and mac3 information corresponding to the virtual subinterface;
and when the attribute of the virtual sub-interface is confirmed to be that no ARP message is sent and no ARP message is responded, only carrying the ip3 and mac3 information in an ARP response message and returning the ARP response message to the opposite end sending the ARP request message.
5. The method according to claim 1, wherein the service gateway maintains entry data of a corresponding access gateway and entry data between the access gateway and the gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
6. The method for changing the traffic forwarding path in the cloud gateway system according to claim 1, wherein the multicast source transfers the encapsulated traffic data to the service gateway via the access switch 2, and forwards the traffic data to the user terminal on a path from the service gateway, the access switch 2, and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
7. The method for implementing changing traffic forwarding paths in a cloud gateway system according to any of claims 1-6, wherein the method further comprises:
the access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for providing data summarization in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
8. The method for changing the traffic forwarding path in the cloud gateway system according to claim 7, wherein the tunnel established between the gateway switch and the access gateway and the service gateway is identified by using an IP address as an identification means; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively takes the MAC address as the basis, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
9. The method for implementing a change to a traffic forwarding path in a cloud gateway system of claim 1, further comprising:
under the condition of changing a traffic data transmission path of a service gateway, adding a new table item data which is directly transmitted to a gateway switch on the service gateway, wherein the new table item data comprises an ip of the gateway switch, a mac of the gateway switch and an updated vni; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding is encapsulated by adopting newly added table data.
10. An apparatus for implementing changing a traffic forwarding path in a cloud gateway system, the apparatus comprising:
at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor to perform the method of changing traffic forwarding paths in a cloud gateway system of any of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111591864.1A CN114338507B (en) | 2021-12-23 | 2021-12-23 | Method and device for changing traffic forwarding path in cloud gateway system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111591864.1A CN114338507B (en) | 2021-12-23 | 2021-12-23 | Method and device for changing traffic forwarding path in cloud gateway system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114338507A true CN114338507A (en) | 2022-04-12 |
| CN114338507B CN114338507B (en) | 2022-11-22 |
Family
ID=81054079
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111591864.1A Active CN114338507B (en) | 2021-12-23 | 2021-12-23 | Method and device for changing traffic forwarding path in cloud gateway system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114338507B (en) |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101184023A (en) * | 2006-11-14 | 2008-05-21 | 上海未来宽带技术及应用工程研究中心有限公司 | Method of implementing multicast VLAN merger in GEPON, device and optical network unit |
| CN102984043A (en) * | 2012-11-02 | 2013-03-20 | 中兴通讯股份有限公司 | Forwarding method and forwarding device of multicast data stream |
| US20130250951A1 (en) * | 2012-03-22 | 2013-09-26 | Brocade Communications Systems, Inc. | Overlay tunnel in a fabric switch |
| CN104540120A (en) * | 2014-12-24 | 2015-04-22 | 中国科学院计算技术研究所 | Route optimization method and system of mobile multicast supported by PMIPv6 |
| US20150281067A1 (en) * | 2013-12-31 | 2015-10-01 | Huawei Technologies Co.,Ltd. | Method and apparatus for implementing communication between virtual machines |
| CN107645431A (en) * | 2016-07-20 | 2018-01-30 | 新华三技术有限公司 | Message forwarding method and device |
| US20180205575A1 (en) * | 2015-09-29 | 2018-07-19 | New H3C Technologies Co., Ltd. | Broadband access |
| WO2018214809A1 (en) * | 2017-05-23 | 2018-11-29 | 中兴通讯股份有限公司 | Message transmission method and device, and storage medium |
| US20190230039A1 (en) * | 2018-01-19 | 2019-07-25 | Estinet Technologies Inc. | Method and system for extracting in-tunnel flow data over a virtual network |
| WO2020220459A1 (en) * | 2019-04-30 | 2020-11-05 | 烽火通信科技股份有限公司 | Vxlan and openflow-based method and system for sharing virtual home network |
| CN112511398A (en) * | 2019-09-16 | 2021-03-16 | 中兴通讯股份有限公司 | Method and device for preventing traffic from bypassing |
-
2021
- 2021-12-23 CN CN202111591864.1A patent/CN114338507B/en active Active
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101184023A (en) * | 2006-11-14 | 2008-05-21 | 上海未来宽带技术及应用工程研究中心有限公司 | Method of implementing multicast VLAN merger in GEPON, device and optical network unit |
| US20130250951A1 (en) * | 2012-03-22 | 2013-09-26 | Brocade Communications Systems, Inc. | Overlay tunnel in a fabric switch |
| CN102984043A (en) * | 2012-11-02 | 2013-03-20 | 中兴通讯股份有限公司 | Forwarding method and forwarding device of multicast data stream |
| US20150281067A1 (en) * | 2013-12-31 | 2015-10-01 | Huawei Technologies Co.,Ltd. | Method and apparatus for implementing communication between virtual machines |
| CN104540120A (en) * | 2014-12-24 | 2015-04-22 | 中国科学院计算技术研究所 | Route optimization method and system of mobile multicast supported by PMIPv6 |
| US20180205575A1 (en) * | 2015-09-29 | 2018-07-19 | New H3C Technologies Co., Ltd. | Broadband access |
| CN107645431A (en) * | 2016-07-20 | 2018-01-30 | 新华三技术有限公司 | Message forwarding method and device |
| WO2018214809A1 (en) * | 2017-05-23 | 2018-11-29 | 中兴通讯股份有限公司 | Message transmission method and device, and storage medium |
| US20190230039A1 (en) * | 2018-01-19 | 2019-07-25 | Estinet Technologies Inc. | Method and system for extracting in-tunnel flow data over a virtual network |
| WO2020220459A1 (en) * | 2019-04-30 | 2020-11-05 | 烽火通信科技股份有限公司 | Vxlan and openflow-based method and system for sharing virtual home network |
| CN112511398A (en) * | 2019-09-16 | 2021-03-16 | 中兴通讯股份有限公司 | Method and device for preventing traffic from bypassing |
Non-Patent Citations (2)
| Title |
|---|
| 傅力军: "中国广电云数据中心网络组播演进方案", 《有线电视技术》 * |
| 钟耿辉等: "基于VXLAN的EVPN技术研究与实现", 《计算机技术与发展》 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114338507B (en) | 2022-11-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109660443B (en) | SDN-based physical device and virtual network communication method and system | |
| US10432428B2 (en) | Automatic resolution of virtual network instance to VLAN mapping conflicts in dual-homed deployments in a dynamic fabric automation network architecture | |
| US9900263B2 (en) | Non-overlay resource access in datacenters using overlay networks | |
| CN111193653B (en) | Data transmission method, device, equipment and storage medium | |
| US5684800A (en) | Method for establishing restricted broadcast groups in a switched network | |
| EP2154821B1 (en) | Method and apparatus for sending and receiving multicast packets | |
| JP4598859B2 (en) | Relay network system and terminal adapter device | |
| CN110891026B (en) | Traffic scheduling method, equipment and system | |
| CN108964940A (en) | Message method and device, storage medium | |
| CN106209616B (en) | Flooding inhibition method and device | |
| CN101800781A (en) | Tunnel transition method and system for passing through NAT | |
| WO2020108531A1 (en) | Packet forwarding | |
| WO2020220459A1 (en) | Vxlan and openflow-based method and system for sharing virtual home network | |
| KR20180025944A (en) | Method and apparatus for implementing SDN-based ARP | |
| CN103916253A (en) | Information transmission method and system on basis of information center network | |
| CN115442184A (en) | Access system and method, access server, system and storage medium | |
| US9503272B2 (en) | Fast convergence with multicast source mobility | |
| CN107733765B (en) | Mapping method, system and related equipment | |
| CN108023971A (en) | A kind of DHCP message retransmission method and device | |
| CN109743250A (en) | Transmission method, first network equipment and second network equipment of multicast message | |
| CN114338507B (en) | Method and device for changing traffic forwarding path in cloud gateway system | |
| CN108306825A (en) | A kind of equivalence forwarding-table item generation method and VTEP equipment | |
| WO2017036384A1 (en) | Provider edge device and data forwarding method | |
| CN103297299B (en) | Automatically the method and system of DLNA device are found | |
| WO2024001701A1 (en) | Data processing method, apparatus and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |