CN114338507B - Method and device for changing traffic forwarding path in cloud gateway system - Google Patents

Method and device for changing traffic forwarding path in cloud gateway system Download PDF

Info

Publication number
CN114338507B
CN114338507B CN202111591864.1A CN202111591864A CN114338507B CN 114338507 B CN114338507 B CN 114338507B CN 202111591864 A CN202111591864 A CN 202111591864A CN 114338507 B CN114338507 B CN 114338507B
Authority
CN
China
Prior art keywords
gateway
switch
access
data
service
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202111591864.1A
Other languages
Chinese (zh)
Other versions
CN114338507A (en
Inventor
叶志钢
黄华桥
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Wuhan Greenet Information Service Co Ltd
Original Assignee
Wuhan Greenet Information Service Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wuhan Greenet Information Service Co Ltd filed Critical Wuhan Greenet Information Service Co Ltd
Priority to CN202111591864.1A priority Critical patent/CN114338507B/en
Publication of CN114338507A publication Critical patent/CN114338507A/en
Application granted granted Critical
Publication of CN114338507B publication Critical patent/CN114338507B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention relates to the technical field of internet, and provides a method and a device for changing a flow forwarding path in a cloud gateway system. After the multicast source transmits the encapsulated traffic data to the service gateway through the access switch 2, the service gateway uses the table data of the access gateway and the gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal. The invention avoids the multicast data stream from being transmitted to the access gateway, and reduces the occupation of resources such as CPU, memory, network port and the like of the access gateway.

Description

Method and device for changing traffic forwarding path in cloud gateway system
[ technical field ] A method for producing a semiconductor device
The invention relates to the technical field of internet, in particular to a method and a device for changing a flow forwarding path in a cloud gateway system.
[ background of the invention ]
The cloud gateway system moves three layers of functions of the household ONU equipment to the cloud gateway equipment, so that user flow is converged to the cloud gateway, dial-up networking or directional drainage is performed after the user flow is identified, and the system can provide value-added services such as cloud security, cloud entertainment, cloud games, cloud storage, cloud monitoring and the like through the directional drainage.
An value added service in a cloud gateway system is an ITV television, a network transmission scheme of the value added service is a UDP multicast scheme, after a Group Management Protocol IGMP (Internet Group Management Protocol) added packet sent by a user passes through an access gateway, the packet is forwarded to a service gateway according to a defined rule, the service gateway terminates the IGMP added packet of the user to form a multicast proxy table entry, and simultaneously sends the IGMP added packet to an upstream device by using the service gateway as a user source, and a specific IGMP packet forwarding process is shown in fig. 1.
After the IGMP group adding packet reaches the multicast data source, the multicast data source pushes the multicast data stream to the corresponding multicast address, the multicast data stream reaches the service gateway according to the original path, the service gateway copies the multicast data stream to each end user according to the multicast proxy table entry produced in the previous flow, then forwards the multicast data stream to the access gateway according to the original path, the access gateway processes the multicast data stream and forwards the multicast data stream to the real user according to the original path, and the specific multicast data stream trend is as shown in fig. 2.
The multicast data stream is copied at a service gateway, a data stream with a large bandwidth can be formed, in the process of sending a home user, a forwarding path passes through an access gateway, the access gateway only simply forwards data, the access gateway bears the internet traffic management of the user at every moment, a large amount of multicast data streams can consume a CPU and storage of the access gateway, the bandwidth of a network port is occupied, the data packet forwarding time delay is increased, and the internet experience of the user is influenced.
In view of the above, overcoming the drawbacks of the prior art is an urgent problem in the art.
[ summary of the invention ]
The technical problem to be solved by the present invention is that a multicast data stream is copied at a service gateway to form a data stream with a large bandwidth, and in the process of sending a home user, a forwarding path passes through an access gateway, the access gateway only simply performs data forwarding, and the access gateway carries the internet traffic management of the user at every moment, and a large amount of multicast data streams consume a CPU and a memory of the access gateway, occupy the bandwidth of a network port, increase the forwarding delay of a data packet, and affect the internet experience of the user.
The invention adopts the following technical scheme:
in a first aspect, the present invention provides a method for implementing changing a traffic forwarding path in a cloud gateway system, including:
the IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the convergence switch and the access switch 2; and reaches the multicast source again after passing through the access switch 2 from the service gateway;
the service gateway maintains table entry data of a corresponding access gateway and table entry data between the access gateway and the gateway switch;
after the multicast source transmits the encapsulated traffic data to a service gateway through an access switch 2, the service gateway uses the table data of the access gateway and a gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal.
Preferably, the interfaces IP and MAC at the gateway switch are IP1 and MAC1; the interfaces IP and MAC of the access gateway are IP2 and MAC2; the interfaces IP and MAC of the service gateway are IP3 and MAC3; ip1, ip2, and ip3 are in the same local area network, and the VXLAN tunnel VNI value VNI between the gateway switch and the access gateway, and the VXLAN tunnel VNI value VNI between the access gateway and the service gateway, VNI value VNI, between the access gateway and the service gateway, are used by the service gateway to re-encapsulate the traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a DIP field of a traffic data packet header as mac1 and ip1 respectively; respectively setting an SMAC field and an SIP field of a flow data packet header as mac2 and ip2; the VXLAN VNI field of the traffic packet header is set to vniA.
Preferably, before the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, the method further includes:
the service gateway generates a virtual sub-interface, wherein the IP of the local terminal interface of the virtual sub-interface is IP2 and is associated with the local physical Trunk interface of the service gateway, and the MAC of the local terminal interface of the virtual sub-interface is MAC3;
generating a static ARP configuration comprising addresses ip1 and mac1;
generating a static VXLAN tunnel configuration which comprises a far-end address ip1 and a VNI value vniA and is associated with a virtual subinterface;
generating a forwarding rule, wherein the forwarding rule comprises that the service gateway receives flow data and forwards the flow data to a gateway switch through the static VXLAN tunnel;
and setting the virtual sub-interface not to send ARP message, and not to respond ARP message.
Preferably, when a newly-added node device is in the network and an IP address is allocated, after the mapping relationship between the IP address of the node device and the MAC address of the node device is established, an ARP request message carrying the mapping relationship between the IP address of the node device and the MAC address of the node device is sent to other nodes in the network; after the service gateway receives the ARP request message, the method further comprises the following steps:
the service gateway acquires the ip3 and mac3 information and ip2 and mac3 information corresponding to the virtual sub-interface;
and if the attribute of the virtual sub-interface is determined to be that no ARP message is sent and no ARP message is responded, only carrying the ip3 and mac3 information in an ARP response message and returning the ARP response message to the opposite end sending the ARP request message.
Preferably, the service gateway maintains entry data of a corresponding access gateway and entry data between the access gateway and the gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
Preferably, the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, and forwards the traffic data to the user terminal on a path from the service gateway, the access switch 2, and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
Preferably, the method further comprises:
the access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for providing data summarization in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
Preferably, the tunnel established between the gateway switch and the access gateway and the service gateway is an IP address as an identification mode; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively takes the MAC address as the basis, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
Preferably, the method further comprises:
under the condition of changing a traffic data transmission path of a service gateway, adding a new table item data which is directly transmitted to a gateway switch on the service gateway, wherein the new table item data comprises an ip of the gateway switch, a mac of the gateway switch and an updated vni; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding adopts the newly added table data for encapsulation.
In a second aspect, the present invention further provides an apparatus for implementing changing a traffic forwarding path in a cloud gateway system, so as to implement the method for implementing changing a traffic forwarding path in a cloud gateway system according to the first aspect, where the apparatus includes:
at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor, and the instructions are executable by the processor to perform the method for changing a traffic forwarding path in a cloud gateway system according to the first aspect.
In a third aspect, the present invention also provides a non-volatile computer storage medium storing computer-executable instructions, which are executed by one or more processors, and are configured to implement the method for changing a traffic forwarding path in a cloud gateway system according to the first aspect.
After receiving multicast DATA stream, the service gateway sends the multicast DATA stream in a flow encapsulation mode sent by the access gateway, and after receiving the flow, the access switch 2 forwards the multicast DATA stream to the convergence switch according to a known MAC forwarding table and then forwards the multicast DATA stream to the gateway switch, so that the condition of decapsulating the DATA packet by the gateway switch is met, decapsulation can be normally carried out, and the DATA DATA is sent to a user below. The multicast data stream is prevented from being forwarded to the access gateway, and the occupation of resources such as a CPU (central processing unit), a memory, a network port and the like of the access gateway is reduced; reducing the forwarding hop count of the multicast data stream; and the forwarding performance of the multicast data stream is improved.
[ description of the drawings ]
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings required to be used in the embodiments of the present invention will be briefly described below. It is obvious that the drawings described below are only some embodiments of the invention, and that for a person skilled in the art, other drawings can be derived from them without inventive effort.
Fig. 1 is a schematic diagram of a prior art for implementing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 2 is a schematic diagram of a prior art for implementing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 3 is a schematic flowchart of a method for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 4 is a schematic diagram illustrating an implementation of changing a traffic forwarding path architecture in a cloud gateway system according to an embodiment of the present invention;
fig. 5 is a schematic diagram illustrating a scenario for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 6 is a data format of a traffic forwarding header according to an embodiment of the present invention;
fig. 7 is a data format of a traffic forwarding header according to an embodiment of the present invention;
fig. 8 is a schematic flowchart of a method for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 9 is a flowchart illustrating a method for changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention;
fig. 10 is a schematic structural diagram of an apparatus for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention.
[ detailed description ] A
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
In the description of the present invention, the terms "inner", "outer", "longitudinal", "lateral", "upper", "lower", "top", "bottom", and the like indicate orientations or positional relationships based on orientations or positional relationships shown in the drawings, and are for convenience in describing the present invention only and do not require that the present invention be constructed and operated in a particular orientation, and therefore should not be construed as limiting the present invention.
In the embodiment of the invention, the related multicast source transmits the encapsulated flow data to the service gateway through the access switch 2, and forwards the flow data to the user terminal on the path from the service gateway, the access switch 2 and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
The access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for providing data summarization in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
The tunnel established between the gateway switch and the access gateway and the service gateway takes an IP address as an identity identification mode; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively is based on the MAC address, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
In addition, the technical features involved in the respective embodiments of the present invention described below may be combined with each other as long as they do not conflict with each other.
Example 1:
embodiment 1 of the present invention provides a method for implementing changing of a traffic forwarding path in a cloud gateway system, as shown in fig. 3 and 4, including:
in step 201, the group management protocol IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch, and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the convergence switch and the access switch 2; and reaches the multicast source again after passing through the access switch 2 from the service gateway;
in a specific implementation scheme, the access switch 1 and the access switch 2 may be the same device node, and there is no difference between the separate and non-separate forwarding flows of data streams, and only in a real network environment, a port of one access switch may be occupied by multiple access gateways or multiple service gateways; another reason is that different types of servers may be placed in different racks for network architecture planning and redundancy considerations.
The necessity of network architecture: a switch network architect in a topological graph continues to use a data center leaf-spine-border architecture, the access switch has a leaf role, the aggregation switch has a spine role, the gateway switch has a border role, and the data center leaf-spine-border architecture networking is that all leaf roles and border switches are connected to the spine role switch, the leaf role switch is connected with a server, and the border role switch is connected with external network equipment (external network).
In step 202, the service gateway maintains table entry data of the corresponding access gateway and table entry data between the access gateway and the gateway switch.
In the prior art, a service gateway does not need to maintain the entry data of an access gateway and a gateway switch, in an original situation, after an IGMP packet report path is formed, a multicast data stream forwarding path returns according to the original path, in the returned path, the service gateway maintains the entry data (ip, mac, vni, etc.) of the access gateway, and the access gateway maintains the data (ip, mac, vni, etc.) of the gateway switch.
In step 203, after the multicast source transmits the encapsulated traffic data to the service gateway via the access switch 2, the service gateway uses the table data of the access gateway and the gateway switch to encapsulate the traffic data again; and when the access switch 2 identifies that the content of the DMAC of the corresponding encapsulated flow data is the gateway switch, the corresponding encapsulated data is sent to the gateway switch through the aggregation switch, and the gateway switch forwards the encapsulated data to the user terminal.
In the embodiment of the invention, after receiving the multicast DATA stream, the service gateway transmits the multicast DATA stream in a traffic encapsulation mode transmitted by the access gateway, and after receiving the traffic, the access switch 2 forwards the multicast DATA stream to the aggregation switch according to a known MAC forwarding table and then forwards the multicast DATA stream to the gateway switch, so that the condition of decapsulating the DATA packet by the gateway switch is met, the DATA packet can be decapsulated normally, and the DATA is transmitted to a user below. The multicast data stream is prevented from being forwarded to the access gateway, and the occupation of resources such as a CPU (central processing unit), a memory, a network port and the like of the access gateway is reduced; reducing the forwarding hop count of the multicast data stream; and the forwarding performance of the multicast data stream is improved.
The reason that the existing scheme needs to go through the access gateway is that the service gateway only has the table entry data of the access gateway, which is not selected and is not specified; the invention gives it actively without table item to the gateway exchanger, and has table item to the gateway exchanger, and after two paths are selected, the original one can be saved.
In order to more clearly illustrate the core principle and mechanism of the implementation of the present invention, as shown in fig. 5, the IP and MAC at the interface of the gateway switch are IP1 and MAC1; the interfaces IP and MAC of the access gateway are IP2 and MAC2; the interfaces IP and MAC of the service gateway are IP3 and MAC3; ip1, ip2, and ip3 are in the same local area network, a VXLAN tunnel VNI value vniA between the gateway switch and the access gateway (a tunnel traffic packet sent to the access gateway by the corresponding gateway switch carries structural data shown in fig. 6), and a VXLAN tunnel VNI value vniB between the access gateway and the service gateway (a tunnel traffic packet sent to the access gateway by the corresponding service gateway carries structural data shown in fig. 7), where the service gateway uses the entry data of the access gateway and the gateway switch to re-encapsulate the traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a DIP field of a header of the traffic data as mac1 and ip1 respectively; respectively setting an SMAC field and an SIP field of a flow data packet header as mac2 and ip2; the VXLAN VNI field of the traffic data header is set to vniA.
In connection with the embodiment of the present invention, before implementing the method steps of steps 201 to 203, actually, a necessary preamble procedure is involved, that is, before the multicast source transfers the encapsulated traffic data to the service gateway via the access switch 2, as shown in fig. 8, the method further includes:
in step 301, the service gateway generates a virtual sub-interface, where an IP of a local end interface of the virtual sub-interface is IP2, the IP is associated with a local physical Trunk interface of the service gateway, and an MAC of the local end interface of the virtual sub-interface is MAC3.
The virtual subinterface is a logic concept, the subinterface forwards data and finally passes through a network port of a real network card, the real network card of the server is bound into a trunk interface, and when the subinterface created by the server finally forwards the data, the virtual subinterface depends on the trunk interface (namely the network port).
In step 302, a static ARP (Address Resolution Protocol) configuration is generated, which includes addresses ip1 and mac1.
In step 303, a static VXLAN tunnel configuration is generated, which includes that the remote address is ip1, the VNI value is vniA, and a virtual subinterface is associated.
In step 304, a forwarding rule is generated, including the traffic data received by the service gateway and forwarded to the gateway switch via the static VXLAN tunnel.
In step 305, the virtual subinterface is set to not send ARP messages, nor respond to ARP messages.
The significance of setting the virtual sub-interface not to send an ARP message and not to respond to the ARP message is that the address of the virtual interface is the same as the ip2 address of the access gateway, in a local area network, ip1 actively acquires an ARP broadcast message of ip2, both the access gateway and a service gateway can receive the ARP broadcast message, but two identical ips cannot exist in one local area network, that is, the service gateway cannot respond to the ARP broadcast message sent by the ip1, and the service gateway needs to hide the ip2 address.
In a specific implementation process, in the cloud gateway system, the gateway server and the issued main body are a relationship between a server and a client, and the triggering implementation manners of the steps 301 to 305 may be: the gateway server is a server side, which receives the configuration issuing message pushed by the client side, and the client side is a user, namely the main body of the issuing generation configuration process and the like is the user.
With the mechanism explanation and laying of the above steps 301 to 305, in the embodiment of the present invention, after completing the establishment of the mapping relationship between the own IP address and the own MAC address when an additional node device is present in the network and an IP address is allocated, an ARP request message carrying the establishment of the mapping relationship between the own IP address and the own MAC address is sent to other nodes in the network; after the service gateway receives the ARP request message, as shown in fig. 9, the method further includes:
in step 401, the service gateway obtains the ip3 and mac3 information and the ip2 and mac3 information corresponding to the virtual subinterface.
In step 402, when it is determined that the attribute of the virtual sub-interface is that no ARP packet is sent or no ARP packet is responded, only the ip3 and mac3 information is carried in an ARP response message and returned to the opposite end that sends the ARP request message.
In the embodiment of the present invention, the related service gateway maintains the table entry data of the corresponding access gateway and the table entry data between the access gateway and the gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
There is also a derivation process in conjunction with embodiments of the invention, as shown in fig. 9, the method further comprising:
in step 204, under the condition that the traffic data transmission path of the service gateway is changed, a new entry data directly reaching the gateway switch is added on the service gateway, including the ip of the gateway switch, the mac of the gateway switch and the updated vni; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding is encapsulated by adopting newly added table data.
In the embodiment of the invention, in an original forwarding path, an access gateway is used for forwarding, transmitting and receiving data of a service gateway, a data packet is encapsulated again and then forwarded to a gateway switch according to a self-maintained table item (ip, mac, vni and the like) to the gateway switch, the access gateway does not operate the quantity of the data packet and the real content of an inner layer, the access gateway needs to send an express to Beijing from Wuhan by analogy to the function of an automobile in express transportation, the transportation scheme of Shunfeng express is that a Toho brand automobile is used for sending the express to Nanjing from Wuhan, and then a Volvo brand automobile is used for Beijing from Nanjing, the transportation scheme of Beijing east can be directly from a Wuhan airplane to Beijing, shunfeng, the function of a Nanjing node is that the automobile is changed, the content and quantity of the express packages are not changed, and the Nanjing can be completely overhead after the Shunfeng scheme is adopted.
The line development constitution is the IGMP message reporting process, a Beijing user needs a Wuhan hot dry surface, the line development is from Beijing to Nanjing and then from Nanjing to Wuhan, and the path is strictly established by the Beijing company and can not be changed; wuhan hot dry noodle merchants do not have the condition of line development, and can only return hot dry noodles to original companies according to the original way, from Wuhan to Nanjing to Beijing; the Wuhan hot dry noodle association is provided with line development conditions, develops a line directly reaching Beijing in Wuhan, and delivers goods according to the line from Wuhan to Beijing in the follow-up hot dry noodle requirement from Beijing; in the two lines, beijing originally only receives the hot dry surface from Nanjing, and now needs to directly receive the hot dry surface from Wuhan, so that vehicles sent by Wuhan need to use pass of Nanjing vehicles (vniA newly added on a service gateway), wuhan needs to know the line directly reaching Beijing (table entries, IP and MAC of a gateway switch are newly added on the service gateway).
Example 2:
fig. 10 is a schematic structural diagram of an apparatus for implementing changing a traffic forwarding path in a cloud gateway system according to an embodiment of the present invention. The apparatus for changing the traffic forwarding path in the cloud gateway system includes one or more processors 21 and a memory 22. In fig. 10, one processor 21 is taken as an example.
The processor 21 and the memory 22 may be connected by a bus or other means, and fig. 10 illustrates the connection by a bus as an example.
The memory 22, which is a nonvolatile computer-readable storage medium, may be used to store a nonvolatile software program and a nonvolatile computer-executable program, and implement the method of changing the traffic forwarding path in the cloud gateway system as in embodiment 1. The processor 21 executes a method of implementing a change in traffic forwarding paths in a cloud gateway system by running non-volatile software programs and instructions stored in the memory 22.
The memory 22 may include high speed random access memory and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid state storage device. In some embodiments, the memory 22 may optionally include memory located remotely from the processor 21, and these remote memories may be connected to the processor 21 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The program instructions/modules are stored in the memory 22, and when executed by the one or more processors 21, perform the method for changing the traffic forwarding path in the cloud gateway system in embodiment 1, for example, perform the steps shown in fig. 3, fig. 8 and fig. 9 described above.
It should be noted that, because the contents of information interaction, execution process, and the like between modules and units in the apparatus and the system are based on the same concept as the processing method embodiment of the present invention, specific contents may refer to the description in the method embodiment of the present invention, and are not described herein again.
Those of ordinary skill in the art will appreciate that all or part of the steps of the various methods of the embodiments may be implemented by associated hardware as instructed by a program, which may be stored on a computer-readable storage medium, which may include: read Only Memory (ROM), random Access Memory (RAM), magnetic or optical disks, and the like.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents and improvements made within the spirit and principle of the present invention are intended to be included within the scope of the present invention.

Claims (9)

1. A method for changing a traffic forwarding path in a cloud gateway system is implemented, and the method is characterized by comprising the following steps:
the IGMP message sent by the user terminal reaches the access gateway after passing through the gateway switch, the convergence switch and the access switch 1; and then reaches the service gateway from the access gateway through the access switch 1, the aggregation switch and the access switch 2; and reaches the multicast source again after passing through the access switch 2 from the service gateway;
the service gateway maintains table entry data of a corresponding access gateway and table entry data between the access gateway and a gateway switch;
after the multicast source transmits the encapsulated traffic data to a service gateway through an access switch 2, the service gateway uses the table data of the access gateway and a gateway switch to encapsulate the traffic data again; when the access switch 2 identifies that the content of the dynamic MAC address DMAC of the corresponding encapsulated flow data is a gateway switch, the corresponding encapsulated data is sent to the gateway switch through a convergence switch and is forwarded to the user terminal by the gateway switch;
the IP address and the MAC address of the interface of the gateway switch are IP1 and MAC1; the IP address and the MAC address of the interface of the access gateway are IP2 and MAC2; the IP address and the MAC address of the interface of the service gateway are IP3 and MAC3; ip1, ip2, and ip3 are in the same local area network, and the VXLAN tunnel VNI value VNI between the gateway switch and the access gateway, and the VXLAN tunnel VNI value VNI between the access gateway and the service gateway, VNI value VNI, between the access gateway and the service gateway, are used by the service gateway to re-encapsulate the traffic data, specifically including:
when the service gateway encapsulates the traffic data, setting a DMAC field and a destination IP address DIP field of a traffic data packet header as mac1 and IP1 respectively; respectively setting a static MAC address SMAC field and a source IP address SIP field of a flow data packet header as MAC2 and IP2; the VXLAN VNI field of the traffic packet header is set to vniA.
2. The method for implementing the change of the traffic forwarding path in the cloud gateway system according to claim 1, wherein before the multicast source transfers the encapsulated traffic data to the traffic gateway via the access switch 2, the method further comprises:
the service gateway generates a virtual sub-interface, wherein the IP address of the local terminal interface of the virtual sub-interface is IP2 and is associated with the local physical Trunk interface of the service gateway, and the MAC address of the local terminal interface of the virtual sub-interface is MAC3;
generating a static ARP configuration which comprises addresses ip1 and mac1;
generating a static VXLAN tunnel configuration which comprises a far-end address ip1 and a VNI value vniA and is associated with a virtual subinterface;
generating a forwarding rule, wherein the forwarding rule comprises that the service gateway receives flow data and forwards the flow data to a gateway switch through the static VXLAN tunnel;
and setting the virtual sub-interface not to send ARP messages and not to respond to the ARP messages.
3. The method for changing the traffic forwarding path in the cloud gateway system according to claim 2, wherein when a new node device is added to the network and an IP address is assigned, after the mapping relationship between the IP address of the node device and the MAC address of the node device is established, an ARP request message carrying the mapping relationship between the IP address of the node device and the MAC address of the node device is sent to other nodes in the network; after the service gateway receives the ARP request message, the method further comprises the following steps:
the service gateway acquires the ip3 and mac3 information and ip2 and mac3 information corresponding to the virtual sub-interface;
and if the attribute of the virtual sub-interface is determined to be that no ARP message is sent and no ARP message is responded, only carrying the ip3 and mac3 information in an ARP response message and returning the ARP response message to the opposite end sending the ARP request message.
4. The method according to claim 1, wherein the service gateway maintains entry data of a corresponding access gateway and entry data between the access gateway and the gateway switch, and specifically includes:
the service gateway maintains the table data for data stream packet according to the access gateway, and according to the protocol type, the field attribute of each table in the header, and the content of the corresponding table.
5. The method for changing the traffic forwarding path in the cloud gateway system according to claim 1, wherein the multicast source transfers the encapsulated traffic data to the service gateway via the access switch 2, and forwards the traffic data to the user terminal on a path from the service gateway, the access switch 2, and the aggregation switch to the gateway switch; the flow data is one or more of cloud video data, cloud game data and cloud file data.
6. The method for implementing changing traffic forwarding paths in a cloud gateway system according to any one of claims 1-5, wherein the method further comprises:
the access gateway is used for authenticating and verifying a user account of the cloud service; the service gateway is used for carrying out protocol conversion on the content of the cloud service; the access switch is used for providing reason interaction between the access of the external network equipment and the internal network equipment; the aggregation switch is arranged in front of the gateway switch, and is used for summarizing data in the local area network for the gateway switch and providing more centralized data processing for the gateway switch; the gateway switch is connected with the user terminal, and provides access and data interaction service facing the user terminal.
7. The method for changing the traffic forwarding path in the cloud gateway system according to claim 6, wherein the tunnel established between the gateway switch and the access gateway and the service gateway is an IP address as an identification manner; the identification mode among the gateway switch, the access gateway and the service gateway, and the access switch 1, the access switch 2 and the convergence switch in the network respectively is based on the MAC address, so that the encapsulated flow data transmitted by the virtual sub-interface generated by the service gateway can normally reach the gateway switch.
8. The method for implementing changing traffic forwarding paths in a cloud gateway system of claim 1, further comprising:
under the condition of changing a traffic data transmission path of a service gateway, adding a new item of data which is directly transmitted to a gateway switch and comprises an ip of the gateway switch, a mac of the gateway switch and updated vniA and vniB on the service gateway; the original transmission channel is still before the switching is finished, only one channel is added, and the subsequent multicast flow forwarding is encapsulated by adopting newly added table data.
9. An apparatus for implementing changing a traffic forwarding path in a cloud gateway system, the apparatus comprising:
at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor to perform the method of changing traffic forwarding paths in a cloud gateway system of any of claims 1 to 8.
CN202111591864.1A 2021-12-23 2021-12-23 Method and device for changing traffic forwarding path in cloud gateway system Active CN114338507B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111591864.1A CN114338507B (en) 2021-12-23 2021-12-23 Method and device for changing traffic forwarding path in cloud gateway system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111591864.1A CN114338507B (en) 2021-12-23 2021-12-23 Method and device for changing traffic forwarding path in cloud gateway system

Publications (2)

Publication Number Publication Date
CN114338507A CN114338507A (en) 2022-04-12
CN114338507B true CN114338507B (en) 2022-11-22

Family

ID=81054079

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111591864.1A Active CN114338507B (en) 2021-12-23 2021-12-23 Method and device for changing traffic forwarding path in cloud gateway system

Country Status (1)

Country Link
CN (1) CN114338507B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101184023A (en) * 2006-11-14 2008-05-21 上海未来宽带技术及应用工程研究中心有限公司 Method of implementing multicast VLAN merger in GEPON, device and optical network unit
CN104540120A (en) * 2014-12-24 2015-04-22 中国科学院计算技术研究所 Route optimization method and system of mobile multicast supported by PMIPv6
WO2018214809A1 (en) * 2017-05-23 2018-11-29 中兴通讯股份有限公司 Message transmission method and device, and storage medium

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9154416B2 (en) * 2012-03-22 2015-10-06 Brocade Communications Systems, Inc. Overlay tunnel in a fabric switch
CN102984043B (en) * 2012-11-02 2017-12-12 中兴通讯股份有限公司 The retransmission method and device of multicast traffic stream
WO2015100656A1 (en) * 2013-12-31 2015-07-09 华为技术有限公司 Method and device for implementing virtual machine communication
CN106559292B (en) * 2015-09-29 2020-03-06 新华三技术有限公司 Broadband access method and device
CN107645431B (en) * 2016-07-20 2020-08-04 新华三技术有限公司 Message forwarding method and device
TW201933837A (en) * 2018-01-19 2019-08-16 思銳科技股份有限公司 Method and system for extracting in-tunnel flow data over a virtual network
CN109936490B (en) * 2019-04-30 2020-07-07 烽火通信科技股份有限公司 Virtual home network sharing method and system based on VXLAN and OpenFlow
CN112511398B (en) * 2019-09-16 2023-11-28 中兴通讯股份有限公司 Method and device for preventing flow from bypassing

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101184023A (en) * 2006-11-14 2008-05-21 上海未来宽带技术及应用工程研究中心有限公司 Method of implementing multicast VLAN merger in GEPON, device and optical network unit
CN104540120A (en) * 2014-12-24 2015-04-22 中国科学院计算技术研究所 Route optimization method and system of mobile multicast supported by PMIPv6
WO2018214809A1 (en) * 2017-05-23 2018-11-29 中兴通讯股份有限公司 Message transmission method and device, and storage medium

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
中国广电云数据中心网络组播演进方案;傅力军;《有线电视技术》;20180515(第05期);全文 *
基于VXLAN的EVPN技术研究与实现;钟耿辉等;《计算机技术与发展》;20170313(第05期);全文 *

Also Published As

Publication number Publication date
CN114338507A (en) 2022-04-12

Similar Documents

Publication Publication Date Title
CN109660443B (en) SDN-based physical device and virtual network communication method and system
US10432428B2 (en) Automatic resolution of virtual network instance to VLAN mapping conflicts in dual-homed deployments in a dynamic fabric automation network architecture
CN111193653B (en) Data transmission method, device, equipment and storage medium
CN104935516B (en) Communication system and method based on software defined network
US5684800A (en) Method for establishing restricted broadcast groups in a switched network
US7222188B1 (en) Method and apparatus for forwarding traffic between locally attached networks using level 3 addressing information
CN110891026B (en) Traffic scheduling method, equipment and system
JP4598859B2 (en) Relay network system and terminal adapter device
US20160094650A1 (en) Non-overlay resource access in datacenters using overlay networks
CN112468383B (en) Communication method and gateway in hybrid cloud environment, management method and device
CN108964940A (en) Message method and device, storage medium
CN106209616B (en) Flooding inhibition method and device
CN101800781A (en) Tunnel transition method and system for passing through NAT
WO2020108531A1 (en) Packet forwarding
CN112491701A (en) Message forwarding method and device
WO2020220459A1 (en) Vxlan and openflow-based method and system for sharing virtual home network
CN103916253A (en) Information transmission method and system on basis of information center network
CN115442184A (en) Access system and method, access server, system and storage medium
CN113794615B (en) Message forwarding method and device
CN108023971A (en) A kind of DHCP message retransmission method and device
WO2024001701A1 (en) Data processing method, apparatus and system
CN117811875A (en) Household intercommunication network access method and device
CN114338507B (en) Method and device for changing traffic forwarding path in cloud gateway system
WO2017036384A1 (en) Provider edge device and data forwarding method
WO2019134637A1 (en) Method, device, and system for multi-type network virtualization overlay interconnection

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant