CN1780258A - Method for realizing Ethernet virtual special network in elastic grouping ring net - Google Patents
Method for realizing Ethernet virtual special network in elastic grouping ring net Download PDFInfo
- Publication number
- CN1780258A CN1780258A CNA2004100960252A CN200410096025A CN1780258A CN 1780258 A CN1780258 A CN 1780258A CN A2004100960252 A CNA2004100960252 A CN A2004100960252A CN 200410096025 A CN200410096025 A CN 200410096025A CN 1780258 A CN1780258 A CN 1780258A
- Authority
- CN
- China
- Prior art keywords
- user
- network
- rpr
- ring
- resilient packet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Small-Scale Networks (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The method includes following steps: a user private line layer is added into resilient packet ring (RPR) network; the user private line layer is supported by resilient packet ring network, and divides the resilient packet ring network into at least two logical subnets; according to marks of user private line layer, the data message of different user is assigned to different subnet to make upper ring and lower ring transmission in order to implement isolation of message; by giving user the nested virtual private network package with WAN concept, provides id of user, isolates data of user, and protects security of data, to make RPR network provide transparent private network connection for user.
Description
Technical field
The present invention relates to network technology, relate in particular to a kind of RPR network, is a kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net concretely.
Background technology
Developing rapidly along with data service in recent years, traditional metropolitan area based on synchronous digital hierarchy (Synchronous Digital Hierarchy:SDH) transmits net and is faced with many problems and challenge, can not effectively transmit and handle emerging multiple business, lack Bandwidth Dynamic allotment ability, resource utilization is low, extension of network is poor, and service fulfillment speed is slow.As everyone knows; characteristics such as have benefited from oversimplifying, easily dilatation, price are low; ethernet technology has obtained extensive use in metropolitan area network; but, therefore can not effectively satisfy the requirement of metropolitan area network to reliability and autgmentability aspect owing to it lacks carrier-class service quality (QoS), network is protected fast/recovered and perfect webmaster mechanism.So under this background; various metropolitan areas multiservice transport platforms (MSTP) technology is arisen at the historic moment; as multiservice transport platform (MSTP) based on synchronous digital hierarchy (SDH); Resilient Packet Ring (RPR); metropolitan area wavelength division multiplexing (WDM) and Coarse Wavelength Division Multiplexing (CWDM) technology etc.; and continuous promotion along with the market demand; various multiservice transport platforms (MSTP) technology presents the trend of fusion development in actual applications; for example; RPR technological improvement at present the networking mode of traditional IP over SDH; realized the fair statistic multiplexing of looped network bandwidth; and fairly perfect wrap protection is provided, can be used in and carry out the transmission that high efficient band width is utilized in the metropolitan area network.
The RPR technology is a kind of emerging data transferring technique, and this technology can increase the level of a loop service management between physical layer (SDH) and data equipment.By this loop SML, can the implementation space reuse, functions such as fair access, intelligence are switched, path optimization.
RPR is that a kind of group technology that adopts on ring network structure transmits professional a kind of multiservice transport platform (MSTP) scheme such as data, speech, image; it has merged the characteristics such as economy, flexibility, extensibility of ethernet technology; absorbed the advantage of the quick protection of 50ms of synchronous digital hierarchy (SDH) looped network simultaneously; and having solved service quality (QOS) problems such as professional classification, target is that more cost effective metropolitan area network/wide area network solution is provided under the prerequisite that does not reduce network performance and reliability.
The RPR technology has adopted a kind of novel layer two MAC agreement, has elastic mechanisms such as professional classification, Bandwidth Management, space reuse and looped network protection.
The main feature of RPR technology can be summarized as follows:
1. adopt dicyclo (interior ring and outer shroud) structure, two paths are all arranged between every pair of node, guaranteed high availability; And loop bandwidth is adopted space reuse mechanism, and unicast data transmits and can carry out simultaneously in the different piece of ring, and the capacity of whole ring will be the several times (2-8) of single fiber;
2. the automatic discovery and the update functions that have network topology structure, after each node is received the MAC Address of other node on the RPR ring, automatically set up and upgrade the topological diagram of oneself, make the netinit configuration become extremely simple, realized plug and play, the mistake that can avoid manual configuration to bring is convenient to carry out network operation and management;
3.RPR looped network can adopt two kinds of protection mechanisms, a kind of is the mode of carrying out loopback (Wrapping) at two nodes that break down; Another kind is the source routing mode (Steering) that does not need loopback, promptly directly switches at the source point of business, and guaranteed service is walked optimal path;
4. Bandwidth Management is the important feature of RPR, and it supports that bandwidth particle, Bandwidth Dynamic are shared and distribution and statistic multiplexing flexibly.Each node maintenance passes through the load capacity data of self, and these data are sent to upward other node of ring, and other node just knows have how many bandwidth to utilize according to these information on source node;
5.RPR have synchronization mechanism and strict time delay and shake supportability, can provide the carrier-class service to time division multiplexing (TDM) voice service;
6.RPR strict grade service CoS (Class of Service) classification can be provided, ensure the service of high-priority service reliably.Standard A, B, three kinds of grades of service of C;
7. adopt a kind of distributed fair control algolithm to realize the dynamic fair allocat of each node bandwidth, can make quick fair response having paroxysmal data traffic variation;
8. as the MAC agreement of two layers (L2), the physical (L1) of RPR is open.
At present 2 layers of private network business that realize at RPR are that 2 layers of message with the user directly encapsulate RPR form heading, go up then that ring transmits, as shown in Figure 1.The message that the user inserts inserts side at equipment and at first inserts processing, search destination node according to ring on the MAC Address route then, encapsulation RPR encapsulation header, carry out synchronous digital hierarchy (SDH) encapsulation then, message is peeled off the encapsulation of packet after arriving the opposite end more from level to level, it at first is synchronous digital hierarchy (SDH) encapsulation, be the RPR encapsulation then, behind the reduction user's data message, be forwarded to the opposite end user side again.Media stream server is safeguarded a customer list, adopts the repeating query mode to send Media Stream to each client.Present multi-service transmission network, in 2 layers of forwarding that realize Ethernet service, also adopted different protocol hierarchies, as Ethernet Over SDH (EOS) layer, mainly finish the problem that Ethernet transmits in synchronous digital hierarchy (SDH) network, the RPR layer, the function of finishing is to realize that data transmit in the RPR looped network, realizes functions such as space reuse, fair access, the intelligence of RPR network is switched, path optimization.But there is following problem in such structure, when security of users can not get guaranteeing that the RPR looped network is the transmission channel of shared bandwidth, the different user common-use tunnel, the user's data message directly is encapsulated in the RPR heading, does not do user's isolation, makes the user be pretended easily or attacks; Network is not exclusively transparent to the user, and the user can not at random dispose the network of oneself as required, because in looped network, needs to use MAC Address to discern the user, and the restriction to the user is very big like this.
Summary of the invention
The object of the present invention is to provide a kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net; the technical program has been introduced nested VLAN (Virtual Local Area Network; VLAN) virtual metropolitan area (VMAN) technology; some problems that solution exists in RPR looped network carrying EVPLAN business: by encapsulate the nested VPN (virtual private network) encapsulation of wide area network notion to the user; user's sign is provided; user-isolated data; protected data safety can connect the RPR looped network for the user provides transparent private network.
A kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net, in RPR network, add user's special line layer, described user's special line layer is carried on the Resilient Packet Ring stratum reticulare, and RPR network is divided at least two logical subnetworks, sign according to user's special line layer goes up ring and ring transmission down to the data that the data message of different user is divided into different sub-network, thereby realizes the isolation of message.
Described user's special line layer is added in the user data message according to user property by access device, and its position is before the VLAN flag bit, behind the Mac address, source.
Described user's special line layer is added in the user data message according to user property by access device, and its position is at header.
The transmission of described upward ring is meant: add user ID, for each user adds unique sign; User Priority is handled, the access rate restriction; 2 layers of exchange, and according to ring information searching RPR network node on the user; Encapsulate the RPR message format, carry out the relevant treatment of RPR network data module; Message sends goes up looped network.
The transmission of described ring down is meant: the RPR network data module is handled, and the decapsulation of RPR network data is received in the choosing of Resilient Packet Ring network data message; User Recognition is separated the user ID encapsulation; 2 layers of exchange are according to 2 layers of information route querying of user destination interface; Message is sent to customer objective equipment.
The sign of described user's special line layer comprises: tag protocol identifier; The PRI field is used to represent user's priority; USER-ID distributes different I D by Virtual network operator to different user.
Described user's special line layer uses the virtual metropolitan area protocol encapsulation, isolates to realize the user data message.
Described virtual metropolitan area protocol encapsulation adopts the encapsulation of nested virtual local area fidonetFido, isolates to realize the user data message.
Beneficial effect of the present invention is, isolates by the user ID of user's special line layer, guarantees for the user provides fail safe; User's transparent transmission is provided, and user data reverts to destination node after the encapsulation decapsulation, the local area network (LAN) that the user can unrestricted configuration oneself; The virtual metropolitan area agreement adopts the reference format of nested virtual local area fidonetFido, is convenient to the butt joint of different vendor's transmission equipment, can inherit the handling process of general 2 layers of equipment simultaneously, the handling process of simplified apparatus.
Description of drawings
Fig. 1 is 2 layer network structure charts of RPR looped network carrying;
Fig. 2 is that the virtual metropolitan area of RPR looped network of the present invention is isolated schematic diagram;
Fig. 3 is a protocol hierarchy structure chart of the present invention;
Fig. 4 is the protocol processes schematic diagram of data message in the RPR looped network of the present invention;
Fig. 5 is data message encapsulation format figure of the present invention;
Fig. 6 is a VMAN encapsulation format schematic diagram of the present invention.
Fig. 7 encircles process chart on the user data of the present invention;
Fig. 8 is a ring process chart under the user data of the present invention.
Embodiment
Below in conjunction with description of drawings the specific embodiment of the present invention:
As shown in Figure 2; in the RPR looped network, realize virtual metropolitan area (VMAN) isolation, the sub-network that is equivalent in the RPR looped network, divide several VMAN territories, RPR is as bearer network; realize the fair statistic multiplexing of looped network bandwidth, and fairly perfect wrap protection is provided.The VMAN sign then realizes the isolation of network.The RPR looped network inserts side for user ABC provides the private network service the user, RPR network node identification user, and for the user encapsulates corresponding label, as user A, package identification is VMAN1, and user B, user ID is VMAN2, user C, user ID is VMAN3.User data is that its user ID of portability (VMAN) is transmitted in the RPR network, and the destination node of RPR is come separate users according to sign, goes back original subscriber's data format originally, and it is forwarded to corresponding customer objective equipment.
Be illustrated in figure 3 as the protocol hierarchy structure chart.Be similar to osi protocol layer or ip protocol layer, transmission network also can resolve into different levels according to its network characteristic.Present multi-service transmission network, in 2 layers of forwarding that realize Ethernet service, also adopted different protocol hierarchies, as Ethernet Over SDH (EOS) layer, mainly finish the problem that Ethernet transmits in synchronous digital hierarchy (SDH) network, the RPR layer, the function of finishing is to realize that data transmit in the RPR looped network, realizes functions such as space reuse, fair access, the intelligence of RPR network is switched, path optimization.Characteristics of the present invention are exactly to introduce the notion of user's special line layer in transmission network (comprising the RPR looped network), solve the problem that user's message is isolated in the user data transmission.User's special line layer can be used multi protocol label switching protocol (MPLS) encapsulation, also can use the virtual metropolitan area protocol encapsulation, present embodiment adopts the virtual metropolitan area protocol encapsulation, its form is the same with the virtual local area fidonetFido, simplified the processing of equipment, and provide possibility the interconnection of the equipment of different vendor.Encapsulating structure can be understood like this: user's L2 layer data is carried on user's special line layer of Operation Network, realize the support of operator to the multi-user, so then packet is carried on the RPR layer, realize the transmission of data at the RPR looped network, the L2 data add user's special line layer then, the data that add the RPR layer are carried on the EOS layer again, realize the transmission of data in synchronous digital hierarchy (SDH) network.
User data in the RPR looped network, by the A node through the B node to the C node, protocol layer in its data transmission procedure is handled as shown in Figure 4, the encapsulation format of data message as shown in Figure 5.The data of user node A are through the encapsulation of L2 layer protocol, the encapsulation of user's special line layer protocol, the encapsulation of RPR layer protocol, encapsulation through the EOS layer protocol arrives Node B again, peel off the encapsulation of EOS layer protocol earlier, the encapsulation of peeling off the RPR layer protocol again obtains the message information of user's special line layer, finds the ownership goal node, whole datagram more again the encapsulation get up to be sent to destination node, destination node finally obtains the information of this data message.At the fringe node of network, user's special line layer is added in the user data message according to user property by access device, and its position is in the front of original VLAN, the back of Mac address, source (SA), or be positioned at header.User's special line layer can encapsulate with mpls protocol, also can encapsulate with VMAN, and this implementation adopts the VMAN encapsulation, and its form is the same with VLAN, has simplified the processing of equipment, and provides possibility to the interconnection of the equipment of different vendor.
The VMAN encapsulation format is as shown in Figure 6: the VMAN encapsulation comprises TPID (tag protocol identifier), PRI, USER-ID and one and keeps the position: wherein TPID (tag protocol identifier) adopts with VLAN and identifies identical 0x8100, takies two bytes; And the PRI field is used to represent user's priority, takies 3, represents 8 kinds of priority at most; USER-ID adopts 12 and represents, manages this user ID by Virtual network operator, and distributes different I D to different user.
Be illustrated in figure 7 as the RPR looped network node and go up the schematic diagram that ring is handled to what user data carried out, Fig. 8 is the schematic diagram that following ring that the RPR looped network node carries out user data is handled.The RPR looped network node can be divided into two parts to the processing of user data: on encircle Business Processing (up) and following ring Business Processing (descending),
1. go up the ring Business Processing:
Interface such as GE mouth or the FE mouth of RPR looped network by user side receives the message that the user sends over;
Incoming interface is handled, and comprises the port attribute processing, traffic classification etc.;
Add user ID, for each user adds unique virtual metropolitan area (VMAN) sign;
QoS handles, and comprises the User Priority processing, access rate restriction etc.;
2 layers of exchange, and, search the RPR looped network node according to user's last ring information;
Encapsulate the RPR message format, carry out the relevant treatment of RPR module;
Mapping EOS message format, message send goes up ring.
2. encircle Business Processing down:
Synchronous digital hierarchy (SDH) is separated mapping, separates the EOS encapsulation;
The RPR resume module, the choosing of RPR message is received, and separates the RPR encapsulation;
User Recognition is separated the encapsulation of virtual metropolitan area (VMAN) user ID;
2 layers of exchange are according to 2 layers of information route querying of user destination interface;
The transmit queue scheduling, message is sent to customer objective equipment.
Beneficial effect of the present invention is, isolates by the user ID of VMAN, guarantees for the user provides fail safe; User's transparent transmission is provided, and user data reverts to destination node after encapsulation connects encapsulation, the local area network (LAN) that the user can unrestricted configuration oneself; VMAN adopts the reference format of nested VLAN, is convenient to the butt joint of different vendor's transmission equipment; VMAN adopts the reference format of nested VLAN, can inherit the handling process of general 2 layers of equipment, the handling process of simplified apparatus.
Above embodiment only is used to illustrate the present invention, but not is used to limit the present invention.
Claims (8)
1. method that realizes the Ethernet VPN in Resilient Packet Ring on the net, it is characterized in that, in RPR network, add user's special line layer, described user's special line layer is carried on the Resilient Packet Ring stratum reticulare, and RPR network is divided at least two logical subnetworks, sign according to user's special line layer goes up ring and ring transmission down to the data that the data message of different user is divided into different sub-network, thereby realizes the isolation of message.
2. a kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net according to claim 1, it is characterized in that, described user's special line layer is added in the user data message according to user property by access device, and its position is before the VLAN flag bit, behind the Mac address, source.
3. according to claim 1ly a kind ofly realize on the net the method for Ethernet VPN it is characterized in that described user's special line layer is added in the user data message according to user property by access device that its position is at header in Resilient Packet Ring.
4. according to claim 1ly a kind ofly realize on the net it is characterized in that the method for Ethernet VPN, describedly go up the ring transmission and be meant: add user ID, for each user adds unique sign in Resilient Packet Ring; User Priority is handled, the access rate restriction; 2 layers of exchange, and according to ring information searching RPR network node on the user; Encapsulate the RPR message format, carry out the relevant treatment of RPR network data module; Message sends goes up looped network.
5. a kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net according to claim 1, it is characterized in that, the transmission of described ring down is meant: the RPR network data module is handled, and the decapsulation of RPR network data is received in the choosing of Resilient Packet Ring network data message; User Recognition is separated the user ID encapsulation; 2 layers of exchange are according to 2 layers of information route querying of user destination interface; Message is sent to customer objective equipment.
6. according to claim 1ly a kind ofly realize on the net the method for Ethernet VPN it is characterized in that the sign of described user's special line layer comprises: tag protocol identifier in Resilient Packet Ring; The PRI field is used to represent user's priority; USER-ID distributes different I D by Virtual network operator to different user.
7. according to claim 1ly a kind ofly realize on the net it is characterized in that the method for Ethernet VPN that described user's special line layer uses the virtual metropolitan area protocol encapsulation in Resilient Packet Ring, isolate to realize the user data message.
8. according to claim 7ly a kind ofly realize on the net the method for Ethernet VPN it is characterized in that described virtual metropolitan area protocol encapsulation adopts the encapsulation of nested virtual local area fidonetFido, isolate to realize the user data message in Resilient Packet Ring.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100960252A CN100563200C (en) | 2004-11-25 | 2004-11-25 | A kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100960252A CN100563200C (en) | 2004-11-25 | 2004-11-25 | A kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1780258A true CN1780258A (en) | 2006-05-31 |
| CN100563200C CN100563200C (en) | 2009-11-25 |
Family
ID=36770377
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004100960252A Expired - Fee Related CN100563200C (en) | 2004-11-25 | 2004-11-25 | A kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100563200C (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101605083B (en) * | 2009-07-15 | 2012-01-25 | 中兴通讯股份有限公司 | Method and device for discovering protective sub-network of looped network |
| CN103078777A (en) * | 2012-12-31 | 2013-05-01 | 杭州华三通信技术有限公司 | Method and device for eliminating loop in resilient packet ring network |
| CN109194386A (en) * | 2018-09-20 | 2019-01-11 | 新华三技术有限公司 | A kind of data message forwarding method and device |
| CN109861959A (en) * | 2018-11-22 | 2019-06-07 | 新华三技术有限公司 | Data transmission method and device |
-
2004
- 2004-11-25 CN CNB2004100960252A patent/CN100563200C/en not_active Expired - Fee Related
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101605083B (en) * | 2009-07-15 | 2012-01-25 | 中兴通讯股份有限公司 | Method and device for discovering protective sub-network of looped network |
| CN103078777A (en) * | 2012-12-31 | 2013-05-01 | 杭州华三通信技术有限公司 | Method and device for eliminating loop in resilient packet ring network |
| CN103078777B (en) * | 2012-12-31 | 2016-05-11 | 杭州华三通信技术有限公司 | Be applied to loop removing method and device in elastic packet loop network |
| CN109194386A (en) * | 2018-09-20 | 2019-01-11 | 新华三技术有限公司 | A kind of data message forwarding method and device |
| CN109194386B (en) * | 2018-09-20 | 2020-06-19 | 新华三技术有限公司 | Data message forwarding method and device |
| CN109861959A (en) * | 2018-11-22 | 2019-06-07 | 新华三技术有限公司 | Data transmission method and device |
| CN109861959B (en) * | 2018-11-22 | 2022-04-08 | 新华三技术有限公司 | Data transmission method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100563200C (en) | 2009-11-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1254059C (en) | Method of realizing special multiple-protocol label exchanging virtual network | |
| JP5544440B2 (en) | Differential transfer in addressed carrier networks | |
| US7697528B2 (en) | Multilink trunking for encapsulated traffic | |
| KR100612318B1 (en) | Apparatus and method for implementing vlan bridging and a vpn in a distributed architecture router | |
| US7417950B2 (en) | Method and apparatus for performing data flow ingress/egress admission control in a provider network | |
| JP2005341591A (en) | Virtual private network, and multi-service provisioning platform and method | |
| CN1625176A (en) | Realization method of edge to edge pseudo-line simulation protocol | |
| US20050265355A1 (en) | Application of an ethernet/MPLS "half bridge" to provide emulated ethernet LAN functions in SONET networks | |
| CN1866923A (en) | Method and system for realizing binding interface edge-to-edge pseudo wire simulation service | |
| US20070140271A1 (en) | Method and system for terminating SONET/SDH circuits in an IP network | |
| CN1934560A (en) | Method of sending information through a tree and ring topology of a network system | |
| CN1589543A (en) | Method for supporting Ethernet MAC circuits | |
| WO2004066120A2 (en) | A method and apparatus for transporting packet data over an optical network | |
| EP1875686A2 (en) | Metro ethernet network with scaled broadcast and service instance domains | |
| JP2006087107A (en) | Method and system for bridging traffic in resilient packet ring network | |
| CN1863127A (en) | Method for core network access to multi-protocol sign exchange virtual special network | |
| CN100337453C (en) | Method for implementing message forwarding along RPR ring and RPR network | |
| CN100508475C (en) | Multi-service transmitting method, node device and multi-service transmitting platform | |
| CN101030915A (en) | Method for sharing V-Switch transparent-transferring data load | |
| CN1897596A (en) | Method and system for controlling access address by virtual medium in Ethernet | |
| CN100563200C (en) | A kind of method that realizes the Ethernet VPN in Resilient Packet Ring on the net | |
| CN1314241C (en) | Method for transmitting different user data in the same virtual container mapping channel of MAN | |
| CN100502341C (en) | Implementing method and system for transmitting Ethernet service over RPR network | |
| CN1310473C (en) | Data transferring method based no synchronous data transmission network | |
| US7796617B1 (en) | Method for providing protocol aggregation as an end-to-end service across a tunneling network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20091125 Termination date: 20151125 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |