WO2016095142A1 - Data forwarding method, device and system in software-defined networking (sdn) - Google Patents

Data forwarding method, device and system in software-defined networking (sdn) Download PDF

Info

Publication number
WO2016095142A1
WO2016095142A1 PCT/CN2014/094144 CN2014094144W WO2016095142A1 WO 2016095142 A1 WO2016095142 A1 WO 2016095142A1 CN 2014094144 W CN2014094144 W CN 2014094144W WO 2016095142 A1 WO2016095142 A1 WO 2016095142A1
Authority
WO
WIPO (PCT)
Prior art keywords
switching device
path
forwarding
data
forwarding rule
Prior art date
Application number
PCT/CN2014/094144
Other languages
French (fr)
Chinese (zh)
Inventor
左少夫
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to PCT/CN2014/094144 priority Critical patent/WO2016095142A1/en
Priority to CN201480083893.9A priority patent/CN107005479B/en
Publication of WO2016095142A1 publication Critical patent/WO2016095142A1/en

Links

Images

Definitions

  • the present invention relates to the field of information technology, and in particular, to a method, device and system for data forwarding in a software defined network SDN.
  • Virtualization points the way for the construction and development of next-generation data centers.
  • the virtualization technology helps the data center to integrate hardware resources, establish a virtual resource pool, realize global resource sharing, and allocate resources according to services, thereby improving the comprehensive utilization of system resources and saving equipment energy consumption.
  • SDN Software Defined Network
  • SDN's core technology realizes flexible control of network traffic by separating the control plane of the network device from the data plane.
  • OpenFlow The OpenFlow protocol evolves with a series of versions, is constantly standardized, matures, and forms standards. OpenFlow supports the combination of arbitrary fields to query the flow table, and proposes the concept of multi-level flow table. The size and number of flow tables have become the bottleneck for existing chips to support OpenFlow.
  • each pair of end-to-end communication implements a new flow entry for the switching device involved.
  • the virtual switching device at the edge of the network is limited to the number of communication ends.
  • the number of flow tables has little effect on the switching device and the control device.
  • the switching device at the backbone layer of the network continues to expand as the number of flow entries of the lower layer switching device increases.
  • a large number of flow tables occupy the hardware resources of the control device and the backbone layer switching device in the SDN, affecting the performance and network performance of the device in the SDN. .
  • the embodiment of the invention provides a method, a device and a system for forwarding data in an SDN, so as to solve the problem that the device and the network performance in the SDN are not high due to excessive flow entries in the prior art.
  • an embodiment of the present invention provides a data forwarding method in a software-defined network SDN, including:
  • Dissipating a first forwarding rule for forwarding the data to the first switching device so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device, where
  • the information of the first path is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement the data forwarding on the first path, so that the second switching device is configured according to the The information of a path and the second forwarding rule forward the data, the second forwarding rule is received by the second switching device before receiving the data, and enables the second switching device to The information of the first path forwards the data to a switching device on the first path that is directly connected to the second switching device.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with a switching device directly connected to the switching device or after establishing a topological relationship.
  • the second forwarding rule is a forwarding rule that repeatedly forwards data including the path information according to the received path information.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier and exchange of the switching device.
  • the first aspect to the first aspect are combined
  • the information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
  • the method further includes:
  • the multicast group identifier is an identifier that uniquely identifies the multicast group
  • the multicast group includes at least two multicast group members
  • the switching device that implements data forwarding between the multicast group members includes Describe the first switching device and the second switching device
  • the first forwarding rule and the second forwarding rule further include the multicast group identifier.
  • the switching device that implements data forwarding between the multicast group members further includes a third switching device, where The three switching device is a switching device that forwards data to the multicast group member through two or more paths;
  • the method further includes:
  • a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device
  • the switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the method further includes:
  • a switching device directly connected to a device with specific service capabilities includes Fourth switching device;
  • the method further includes:
  • the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device, so that the fourth switching device And forwarding the received data to the device of the first specific service capability;
  • the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
  • the method further includes:
  • Receiving a fifth forwarding rule request sent by the fifth switching device determining, according to the information of the data carried in the fifth forwarding rule request, a service chain path to the seventh switching device, where the fifth switching device is connected to the service chain a switching device directly connected to the second specific service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third
  • the specific service device is a specific service device directly adjacent in the service chain;
  • the service chain path is to implement the data forwarding exchange according to the path of the second specific service device to the third specific service device a sequence of devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
  • a fifth forwarding rule for forwarding the data to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh switching device, or Sending to the sixth switching device on the path of the service chain, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data including the service chain path information, and enabling the sixth switching device to forward the data to other switching devices on the service chain path according to the information of the service chain path
  • the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  • the embodiment of the present invention further provides a data forwarding method in a software-defined network SDN, including:
  • the first switching device requests a forwarding rule from the control device according to the received data
  • the first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule to be sent to the second directly connected to the first switching device.
  • the switching device the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement the data forwarding on a first path that forwards the data;
  • the second switching device receives the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule.
  • the switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the
  • the second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
  • the method further includes:
  • the second switching device Transmitting, by the second switching device, the information of the first path to a switching device directly connected to the second switching device, or the second switching device, the first path and the second switching device
  • the information of the second path of the forwarding path between the directly connected switching device and the nth switching device is sent to the switching device directly connected to the second switching device, where the information of the second path is used to implement the data forwarding.
  • the sequence of switching devices on the path represented by a sequence of unique identifiers of forwarding paths between switching devices, where n is an integer and greater than or equal to 3.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with a switching device directly connected to the switching device or after establishing a topological relationship.
  • the second forwarding rule including the second forwarding rule is a forwarding rule that can repeatedly forward the data including the path information according to the path information.
  • the method further includes:
  • the i-th switching device receives the i-th path information and the data sent by the i-th switching device, where the i-th path information is based on the i-th switching device to the n-th switching device that implements the data forwarding a sequence sequentially represented by a unique identifier of a forwarding path between switching devices; wherein i is an integer and greater than or equal to 3;
  • the i-th switching device Transmitting, by the i-th switching device, the data and the i-th path information to the i+1th switching device according to the (i-1th) path information, where the i-th path information is according to the implementation of the data forwarding a sequence of the first i+1 switching device to the nth switching device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
  • the i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path.
  • the method further includes:
  • the sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
  • the i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  • the first path information, the second path information, and the ith path information are multi-protocol label switching MPLS label nested encapsulation, an MPLS label header fills the forwarding path unique identifier of a switching device.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  • the first switching device, the second switching device, and the third switching device are members of the same multicast group, where the third switching device forwards the multicast group member through two or more paths.
  • a data exchange device the data sent by the members of the multicast group to other members can be received by other members of the multicast group;
  • the method further includes:
  • a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device
  • the switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the method further includes:
  • the fifth switching device sends a fifth forwarding rule request to the control device, and receives a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device is the second specific to the service chain.
  • a switching device directly connected to the service capability device the seventh switching device a switching device directly connected to a third specific service capability device in the service chain, the second specific service device and the third specific service device being specific service devices directly adjacent to the service chain,
  • the service chain path is a sequence between the switching devices that implement the data forwarding according to the path from the second specific service device to the third specific service device, and the unique identifier of the forwarding path between the switching devices is used.
  • the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service a sequence of unique identifiers of devices having specific service capabilities;
  • the fifth switching device encapsulates the data and the service chain path information and forwards the data to the seventh switching device or the sixth switching device on the service chain path;
  • the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the data including the service chain path information. Received previously; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  • the embodiment of the present invention further provides a control device in a software-defined network SDN, including: the control device includes a network communication unit, a control message processing unit, a forwarding path determining unit, and a forwarding rule management unit;
  • the network communication unit is configured to receive a first forwarding rule request sent by the first switching device in the SDN, and send the first forwarding rule request to the control message processing unit;
  • the control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit
  • the information of the path and the first forwarding rule generated by the forwarding rule management unit are sent to the first switching device by the network communication unit, and the second forwarding rule generated by the forwarding rule management unit is used to communicate by using the network Sending, by the unit, the second switching device on the first path;
  • the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, First road
  • the information of the path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule.
  • the forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
  • the forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule, where the second forwarding rule is received by the second switching device before receiving the data, and can And causing the second switching device to forward the data to the switching device directly connected to the second switching device on the first path according to the information of the first path.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topological relationship, the second The forwarding rule is a forwarding rule that repeatedly forwards data including the path information according to the received path information.
  • the unique identifier of the forwarding path between the switching devices is The unique identifier of the switching device, the unique interface identifier between the switching device and the switching device directly connected to it, or the unique identifier of the link between the switching device and the switching device directly connected to it.
  • the information of the first path is nested in a multi-protocol
  • the label switching MPLS message is sent to the first switching device.
  • control device further includes an identity management unit and a topology management unit:
  • the identifier management unit is configured to allocate and reclaim a unique identifier of a forwarding path between the switching devices in the SDN;
  • the topology management unit is configured to update network topology information of the SDN according to the transformation of the SDN network topology
  • the forwarding path determining unit determines the parsing sent by the unit according to the network topology information recorded in the topology management unit and the unique identifier of the forwarding path between the switching devices allocated by the identifier management unit.
  • the first forwarding rule request determines a first path forwarded to the data information carried in the first forwarding rule request.
  • control device further includes a multicast group management unit, in combination with any one of the third aspect to the fourth possible implementation manner of the third aspect,
  • the multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast groups. Member, data sent by one member of a multicast group can be received by other members of the multicast group.
  • the forwarding rule management unit is further configured to send, by the third switching device, the identifier that includes the multicast group identifier.
  • the third forwarding rule is configured to enable the third switching device to encapsulate the data of the path information of the path to the next aggregation switching device according to the third forwarding rule, and send the path to the path of the next aggregation switching device.
  • the path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement data forwarding; the third switching device is a switching device directly connected to a member of the multicast group.
  • the third switching device is a switching device that forwards data to the multicast group member through two or more paths; the next aggregation switching device is a path for forwarding the data to a multicast group member, from the third The switching device that switches the device to the multicast group member to forward data to the multicast group member through two or more paths.
  • control device in combination with any one of the third aspect to the fourth possible implementation manner of the third aspect, the control device further includes:
  • a service chain setting unit configured to set a service chain, wherein the service chain is specific to the SDN a service sequence formed by the device of the service capability, and assigning a device uniquely identifying the device to the device having the specific service capability in the service chain;
  • the forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing the fourth switching device to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
  • the fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
  • the network communications unit is further configured to receive, by the fifth switching device, Five forwarding rule requests;
  • the control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
  • the forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
  • the forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh exchange.
  • the device is sent to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the service link
  • the data of the information of the path is received before, and the sixth switching device can forward the data to other switching devices on the service chain path according to the service chain path information; wherein the sixth switching device is A switching device between the fifth switching device and the seventh switching device on the fifth path.
  • the embodiment of the present invention further provides a data forwarding system in a software-defined network SDN, including a first switching device and a second switching device, where the first switching device is directly connected to the second switching device.
  • the first switching device is configured to request a forwarding rule from the control device according to the received data, receive a first forwarding rule returned by the control device, and encapsulate the first path information according to the first forwarding rule.
  • the data is sent to the second switching device, and the information of the first path is a sequence of forwarding paths between the switching devices according to the sequence of the switching devices that implement the data forwarding on the first path of forwarding the data. The sequence represented;
  • the second switching device is configured to receive the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule.
  • the switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the
  • the second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
  • the second switching device is further configured to send information about the first path to a switching device directly connected to the second switching device, or Transmitting, by the second switching device, the information of the second path of the forwarding path between the switching device directly connected to the second switching device and the second switching device in the first path to the second switching device Connected switching devices, the information of the second path is a sequence of switching devices on the path for implementing the data forwarding, and a sequence represented by a unique identifier of a forwarding path between switching devices, where n is an integer and is greater than or equal to 3 .
  • the second forwarding rule in the second possible implementation manner of the fourth aspect, in combination with any one of the first possible implementation manners of the fourth aspect to the fourth aspect, is in the second The second forwarding rule that includes the second forwarding rule is a forwarding rule that can repeatedly forward data including the path information according to the path information, when the switching device establishes a topological relationship with the directly connected switching device or after the topology relationship is established. .
  • the data forwarding system further includes an i-th switching device, An i-th switching device and an i+1th switching device, where the i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path;
  • the i-th switching device is configured to receive the i-th path information and the data sent by the i-th switching device, where the i-th path information is according to the foregoing a sequence of the i-switching device to the n-th switching device, a sequence represented by a unique identifier of the forwarding path between the switching devices; wherein i is an integer and greater than or equal to 3; and according to the i-th path information, to the The i+1 switching device sends the data and the i-th path information, where the i-th path information is in accordance with a sequence of the i+1th switching device to the nth switching device that implements the data forwarding, and the switching device uses A sequence of unique identifier representations of the forwarding paths.
  • the i-th switching device sends the i+1th switching device according to the (i-1th path information)
  • the sending of the data and the ith path information specifically includes:
  • the i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  • the fourth aspect to the fourth aspect are combined
  • the first path information, the second path information, and the i-th path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header is filled with an exchange.
  • the forwarding path unique identifier of the device is a multi-protocol label switching MPLS label, and an MPLS label header is filled with an exchange.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  • the first switching device, the second switching The device and the third switching device are members of the same multicast group, where the third switching device is a switching device that forwards data to the multicast group member through two or more paths, and members of the multicast group Data sent to other members can be received by other members of the multicast group;
  • the third switching device is configured to receive, by the control device, a third forwarding rule that includes a multicast group identifier, and encapsulate the path information of the path to the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device
  • the switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the data forwarding system in the SDN further includes a fifth exchange, in combination with any one of the fourth aspect to the sixth possible implementation manner of the fourth aspect a device, a sixth switching device, and a seventh switching device;
  • a fifth switching device configured to send a fifth forwarding rule request to the control device, and receive a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device Is a switching device directly connected to the second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service is
  • the device and the third specific service device are specific service devices directly adjacent to the service chain, and the service chain path is implemented according to the path of the second specific service device to the third specific service device a sequence of the data forwarding of the switching devices, a sequence represented by a unique identifier of the forwarding path between the switching devices;
  • the service chain is a service sequence formed by the device having the specific service capability in the SDN,
  • a device having a specific service capability in a service chain has an identifier that uniquely identifies the device, and the service sequence is a sequence that is a combination of the unique identifiers of the devices having the specific service capabilities
  • the fifth switching device forwards the data and the service chain path information to the seventh switching device or the sixth switching device on the service chain path;
  • the sixth switching device is configured to forward the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the path including the service chain The data of the information is previously received; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  • the data forwarding system in the SDN further includes a control device, in combination with any one of the fourth aspect to the eighth possible implementation manner of the fourth aspect,
  • the control device includes a network communication unit, a control message processing unit, a forwarding path determining unit, and a forwarding rule management unit;
  • the network communication unit is configured to receive a first forwarding rule request sent by the first switching device, and send the first forwarding rule request to the control message processing unit;
  • the control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit.
  • the information of the path and the first forwarding rule generated by the forwarding rule management unit are sent by the network communication unit to the first switching device, and the second forwarding rule generated by the forwarding rule management unit is used by the network communication unit.
  • the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, and information of the first path can be Forwarding the data to the second switching device, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule;
  • the forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
  • the forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule.
  • control device further includes a multicast group management unit
  • the multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast groups. Member, data sent by one member of a multicast group can be received by other members of the multicast group.
  • the forwarding rule management unit is further configured to send, to the third switching device, the identifier that includes the multicast group identifier. a third forwarding rule, so that the third switching device encapsulates the data of the path information of the path to the next aggregation switching device according to the third forwarding rule; and the path to the next aggregation switching device
  • the path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement data forwarding;
  • the third switching device is a switching device directly connected to members of the multicast group,
  • the third switching device is a switching device that forwards data to the multicast group member by using two or more paths;
  • the next aggregation switching device is a path for forwarding the data to a multicast group member, where the The switching device that forwards data from the three switching devices to the members of the multicast group to the multicast group members through two or more paths
  • control device further includes:
  • a service chain setting unit configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assigning a unique identifier to a device having a specific service capability in the service chain. Identification of the equipment;
  • the forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing, by the fourth switching device, to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding that is received by the fourth switching device before receiving the data that needs to be forwarded.
  • the fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
  • the network communications unit is further configured to receive a fifth forwarding rule request sent by the fifth switching device;
  • the control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
  • the forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
  • the forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data that includes the service chain path information, and sends the data to the Transmitting, by the sixth switching device, the sixth switching device to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and a sixth forwarding rule, where
  • the sixth forwarding rule is that the sixth switching device receives the data that includes the service chain path information, and enables the sixth switching device to forward the data according to the service chain path information.
  • the method and device provided by the embodiment of the present invention, by determining a first path for forwarding data corresponding to the data information, so that the first switching device encapsulates the data including the information of the first path and sends the data to the first
  • the second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device receives the data Previously received
  • the second switching device can receive forwarding rules for data forwarding before receiving data, and implement data forwarding according to the received data and path information.
  • the control device does not need to send a forwarding rule every time the data is forwarded to the second switching device, and the second switching device does not need to receive the forwarding rule every time the data is forwarded, which saves the second switching device from saving and applying the forwarding rule.
  • the resource consumption of the control device also saves the resource consumption of the control device when the forwarding rule is delivered, and improves the utilization of the device, and also saves the bandwidth occupied by the control device and the switching device due to multiple delivery of the forwarding rule.
  • FIG. 1 is a schematic flowchart of a data forwarding method in an SDN according to an embodiment of the present invention
  • FIG. 2 is a schematic flowchart of another data forwarding method in an SDN according to an embodiment of the present invention.
  • FIG. 3 is a schematic diagram of a network architecture implemented by a SDN data forwarding method in a data center according to an embodiment of the present invention
  • FIG. 4 is a schematic flowchart of a specific implementation of a method for implementing data forwarding in an SDN according to an embodiment of the present invention
  • FIG. 5 is a flowchart of a processing method when a data center network topology changes according to an embodiment of the present invention
  • FIG. 7 is a network architecture diagram of an implementation manner of implementing data or service packet forwarding by a multicast group according to an embodiment of the present invention.
  • FIG. 8 is a schematic diagram of an implementation manner of a tenant deploying a service chain in a data center according to an embodiment of the present invention
  • FIG. 9 is a schematic structural diagram of a control device in an SDN according to an embodiment of the present invention.
  • FIG. 10 is a schematic structural diagram of another implementation manner of a control device in an SDN according to an embodiment of the present disclosure.
  • FIG. 11 is a schematic structural diagram of a data forwarding system in an SDN according to an embodiment of the present invention.
  • FIG. 12 is a schematic structural diagram of another implementation manner of a data forwarding system in an SDN according to an embodiment of the present invention.
  • FIG. 1 is a schematic flowchart of a data forwarding method in an SDN according to an embodiment of the present invention, including:
  • Step 100 Receive a first forwarding rule request sent by the first switching device in the SDN, and determine, according to the data information carried in the first forwarding rule request, a first path for forwarding data corresponding to the data information.
  • Step 102 Send a first forwarding rule for forwarding the data to the first switching device, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device.
  • the information of the first path is a sequence represented by a unique identifier of a forwarding path between the switching devices according to a sequence of the switching devices that implement the data forwarding on the first path, so that the second switching device is configured according to And the second forwarding rule is received by the second switching device before receiving the data and enables the second exchange The device forwards the data to the switching device directly connected to the second switching device on the first path according to the information of the first path.
  • the method of the foregoing method is configured to: determine, by the first switching device, the first path that forwards data corresponding to the data information, so that the first switching device encapsulates the data that includes the information of the first path, and sends the data to the second switching device, so that the first The second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is received by the second switching device before receiving the data, so that the The second switching device can receive the forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and the path information.
  • the control device does not need to send a forwarding rule every time the data is forwarded to the second switching device, which saves the resource consumption of the control device when the forwarding rule is sent, improves the utilization of the device, and saves the control device and the switching device.
  • the bandwidth occupied by the forwarding rule is sent multiple times.
  • the above steps 100 and 102 can be implemented by the control device in the controller cluster in FIG.
  • the first switching device may be the virtual switch 1 in FIG. 3
  • the second switching device may be the access switch 1 in FIG.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topology relationship, where the second forwarding rule is received according to the receiving The path information to the forwarding rule that repeatedly forwards the data including the path information.
  • the forwarding rules between the second switching device and the switching device directly connected thereto should change accordingly. Therefore, after the second switching device establishes a topological relationship with the directly connected switching device or establishes a topological relationship, the second forwarding rule is generated and sent to the second switching device, so that the second switching device performs data according to the second forwarding rule. Forwarding can be forwarded according to the latest network topology, which improves the accuracy of data forwarding while saving equipment resource consumption.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or the switching device directly connected thereto A unique identifier for the link between the switching devices.
  • the information of the first path may be nested in the multi-protocol label switching MPLS message and sent to the first switching device.
  • the multicast group identifier is an identifier that uniquely identifies the multicast group
  • the multicast group includes at least two multicast group members
  • the switching device that implements data forwarding between the multicast group members includes Describe the first switching device and the second switching device
  • the first forwarding rule and the second forwarding rule further include the multicast group identifier.
  • the switching device that implements data forwarding between the members of the multicast group further includes a third switching device, where the third switching device exchanges data to the multicast group member through two or more paths.
  • the method further includes:
  • a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device
  • the switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the third switching device is a switching device where the aggregation point is located in the multicast group, and the third switching device has more than two paths to reach the members of the multicast group.
  • the foregoing method sends a third forwarding rule to the switching device where the aggregation point is located, so that the third switching device encapsulates the data that includes path information of two or more paths and sends the data, which can save device resources in the SDN network.
  • the third switching device is the access switch 1 shown in FIG. 7, the next aggregation switching device is the aggregation switch 2; and the forwarding of the multicast group data packet can be implemented by referring to the embodiment shown in FIG. achieve.
  • the data forwarding method in the SDN provided by the embodiment of the present invention further includes:
  • a switching device directly connected to a device having a specific service capability includes a fourth switching device;
  • the method further includes:
  • the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device, so that the fourth switching device And forwarding the received data to the device of the first specific service capability;
  • the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
  • the method further includes:
  • Receiving a fifth forwarding rule request sent by the fifth switching device determining, according to the information of the data carried in the fifth forwarding rule request, a service chain path to the seventh switching device, where the fifth switching device is connected to the service chain a switching device directly connected to the second specific service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third
  • the specific service device is a specific service device directly adjacent in the service chain;
  • the service chain path is to implement the data forwarding exchange according to the path of the second specific service device to the third specific service device a sequence of devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
  • a fifth forwarding rule for forwarding the data to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh switching device, or Sending to the sixth switching device on the path of the service chain, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data that includes the service chain path information, and enabling the sixth switching device to forward the data to other switching devices on the service chain path according to the information of the service chain path;
  • the sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path. Taking the service chain shown in FIG.
  • the fifth switching device in the embodiment of the present invention may access the switch 1
  • the seventh switching device may be the access switch 3
  • the sixth switching device may be the core switch.
  • FIG. 8 For the forwarding of data packets in the service chain scenario, reference may be made to the embodiment shown in FIG. 8.
  • the fifth forwarding device is configured to forward the data to the fifth switching device, and the resource utilization of the network device in the SDN can be improved in the application service chain scenario.
  • the data is forwarded according to the order of the specific service devices in the service chain.
  • the switching device on the forwarding path for example, the sixth switching device in the foregoing implementation manner, can be based on Received data
  • the previously received forwarding rule forwards the data, and does not need to obtain the forwarding rule every time the data is received, which saves the resource overhead of the control device, and improves the resource utilization of the device in the SDN while implementing the service chain service.
  • FIG. 2 is a schematic flowchart of another data forwarding method in an SDN according to an embodiment of the present invention, including:
  • Step 200 The first switching device requests a forwarding rule from the control device according to the received data.
  • Step 202 The first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information to be directly connected to the first switching device according to the first forwarding rule.
  • the second switching device, the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement the data forwarding on a first path that forwards the data;
  • Step 204 The second switching device receives the data sent by the first switching device, and the second switching device sends the data to the second switching device according to the information about the first path and the second forwarding rule.
  • the directly connected switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and
  • the second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
  • the first switching device in the method shown in Figure 2 may be the virtual switch 1 in the embodiment shown in Figure 3
  • the second switching device may be the access switch 1 in the embodiment shown in Figure 3
  • the third switching device may be
  • the specific implementation of the aggregation switch 1 in the embodiment shown in FIG. 3 reference may be made to the implementation shown in FIG. 3.
  • the method of the first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule, and sends the data directly to the first switching device.
  • a second switching device where the second switching device forwards the data according to the information of the first path and a second forwarding rule, where the second forwarding rule is The second switching device receives the data before receiving the data, so that the second switching device can receive a forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and path information.
  • the second switching device does not need to obtain a forwarding rule once after receiving the data, that is, it does not need to obtain a flow table for data forwarding every time the data is received, and the second forwarding rule can be repeatedly used to implement data forwarding, thereby saving the data.
  • the resource consumption caused by saving and using the forwarding rule improves the utilization of the switching device.
  • the rule can bring huge resources such as chips.
  • the solution provided in this embodiment can save resources of the switching device, so that the switching device in the data center network can implement a large amount of data forwarding without requiring high performance. The competitiveness of switching equipment.
  • the second switching device may send information about the first path to a switching device directly connected to the second switching device, or the second The switching device sends information about the second path of the forwarding path between the switching device directly connected to the second switching device on the first path to the nth switching device to the directly connected to the second switching device.
  • the device, the information of the second path is a sequence of the switching devices on the path for implementing the data forwarding, and is represented by a unique identifier of the forwarding path between the switching devices, where n is an integer and is greater than or equal to 3.
  • the second switching device may forward all the information of the first path to the next switching device (the third switching device) that implements data forwarding on the first path directly connected thereto, as long as the first path is After receiving the information of the first path, the switching device can identify the next switching device to be forwarded according to the unique identifier that implements data forwarding between the switching devices; or the second switching device receives the first After the path information, the information of the second switching device in the path information is stripped, and the path information of the third switching device to the nth switching device on the first path is sent to the third switching device.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topology relationship, and includes the second forwarding rule.
  • the second forwarding rule is a forwarding rule that can repeatedly forward the data including the path information according to the path information.
  • the method further includes:
  • the i-th switching device receives the i-th path information and the data sent by the i-th switching device, where the i-th path information is based on the i-th switching device to the n-th switching device that implements the data forwarding a sequence sequentially represented by a unique identifier of a forwarding path between switching devices; wherein i is an integer and greater than or equal to 3;
  • the i-th switching device Transmitting, by the i-th switching device, the data and the i-th path information to the i+1th switching device according to the (i-1th) path information, where the i-th path information is according to the implementation of the data forwarding a sequence of the first i+1 switching device to the nth switching device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
  • the i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path.
  • the sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
  • the i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  • the ith switching device may be the core switch in the embodiment shown in FIG. 3, and the i-1th switching device and the i+1th switching device are the aggregation switch 1 and the aggregation switch 2, respectively.
  • the foregoing method implements the switching device on the data forwarding path, and can implement the data according to the forwarding rule received before receiving the data to be forwarded and the path information of the data forwarding.
  • the forwarding does not need to obtain a forwarding rule every time data is forwarded, which saves the resource overhead of the control device and the switching device, and improves the utilization of resources in the SDN.
  • the first path information, the second path information, and the ith path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  • the method of the embodiment of the present invention further includes:
  • a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device
  • the switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the third switching device can be the aggregation point switch in FIG. 7, for example, the access switch 1 or the aggregation.
  • the third switching device when the first switching device, the second switching device, and the third switching device are members of the same multicast group, and the third switching device passes the two or more paths to the multicast group.
  • the third switching device encapsulates the information of the two or more paths to the switching device on the forwarding path when the multicast group member forwards the data, so as to avoid the large number of forwarding rules in the multicast group data forwarding.
  • the consumption of device resources has increased the utilization of device resources in SDN.
  • the method provided by the embodiment of the present invention can also achieve the effect of improving device resource utilization in the SDN.
  • the service chain in the embodiment of the present invention is a service sequence formed by a device having a specific service capability in the SDN, where a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service A sequence of unique identifiers for devices with specific service capabilities.
  • the foregoing method further includes: the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, and the fifth switching device is to the control device Sending a fifth forwarding rule request, and receiving a service chain path that is returned by the control device to the seventh switching device, where the seventh switching device is a switching device directly connected to the third specific service capability device in the service chain,
  • the second specific service device and the third specific service device are specific service devices directly adjacent to the service chain, and the service chain path is according to the second specific service device to the third specific device a sequence between the switching devices that implement the data forwarding on the path of the service device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
  • the fifth switching device encapsulates the data and the service chain path information and forwards the data to the seventh switching device or the sixth switching device on the service chain path;
  • the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the data including the service chain path information. Received previously; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  • the fifth switching device in the embodiment of the present invention may access the switch 1
  • the seventh switching device may be the access switch 3
  • the sixth switching device may be the core switch.
  • the fifth forwarding rule is obtained by the fifth switching device, so that the resource utilization of the network device in the SDN can be improved in the scenario of the application service chain.
  • the service chain is used. Forwarding data in the order of the specific service devices, and forwarding devices on the forwarding path in the data forwarding process, for example, the foregoing implementation manner
  • the sixth switching device can forward the data according to the forwarding rule received before receiving the data, and does not need to obtain the forwarding rule every time the data is received, thereby saving the resource overhead of the control device and implementing the service chain service. At the same time, the resource utilization of the devices in the SDN is improved.
  • FIG. 3 is a schematic diagram of a network architecture implemented by a DC (Data Center) in an SDN data forwarding method according to an embodiment of the present invention.
  • the access, aggregation, and core layers belong to the backbone network, which correspond to access, aggregation, and core switches.
  • An edge network is a virtual layer and is composed of a virtual switch. It is connected to the DC backbone network through an access switch.
  • the source and destination virtual hosts are respectively mounted on the virtual switches 1, 2, and the two communicate with each other across the DC backbone network. There is a data path between the source and destination hosts: virtual switch 1 - access switch 1 - aggregation switch 1 - core switch - aggregation switch 2 - access switch 2 - virtual switch 2.
  • the packet is sent from the source host, through virtual switch 1, interface 2, interface 5 out; access switch 1, interface 7 in, interface 4 out; through aggregation switch 1, interface 6 in, interface 3 out; Interface 5 is in, interface 9 is out; through aggregation switch 2, interface 8 is in, interface 7 is out; via access switch 2, interface 6 is in, interface 8 is out; via virtual switch 2, interface 3 is in, interface 1 is out; Arrived at the destination host to implement data packet transmission.
  • the source end or the destination end may be a mobile terminal (including but not limited to a notebook, a mobile phone, a tablet, a palmtop computer, a POS machine, an MP3, a navigator), and a fixed terminal (including but not limited to a desktop computer, a printer, a fax machine, and a number
  • a device such as a switch, a digital television, or a wireless access terminal; a virtual switch 1, an access switch 1, an aggregation switch 1, a core switch, an aggregation switch 2, an access switch 2, and a virtual switch 2 are all switching devices in the SDN.
  • FIG. 4 is a schematic flowchart of a specific implementation of a method for implementing data forwarding in an SDN according to an embodiment of the present invention. As shown in Figure 4:
  • Step 701 The SDN controller collects DC network topology information.
  • the SDN controller monitors the status of each switch and collects topology information of the DC network according to the connection relationship of each switch.
  • the SDN controller assigns a unique identifier to the switch for the forwarding path between switches.
  • the unique identifier of the distribution switch that is, the unique network identifier
  • the SDN controller assigns a unique identifier to the switch to distinguish other switches in the DC network or other types of objects that can have the network identifier.
  • the unique identifier can be used alone or in combination with other network identifiers to calibrate the packet forwarding path.
  • the network identifier assigned by the SDN controller to each forwarding device within the DC network is in the table shown in Table 1.
  • the virtual switch 1 obtains the network identifier 1
  • the access switch 1 obtains the network identifier 11
  • the aggregation switch 1 obtains the network identifier 21
  • the core switch obtains the network identifier 3
  • the aggregation switch 2 obtains the network identifier 22
  • the access switch 2 obtains the network identifier 12, which is virtualized.
  • Switch 2 obtains network identification 2.
  • the network topology update is triggered. For example, when the switch is disconnected from the SDN controller due to a fault or the like, the SDN controller will reclaim the unique identifier of the disconnected switch that has been allocated, and the recovered network identifier can be reassigned to other switches, or other network capable of possessing the network identifier. Type of object. If the interface of the switch is faulty, the SDN controller can retain the unique identifier of the switch even though the network topology is updated.
  • the network identifier of the switch is used as the unique identifier.
  • the link identifier is used as the unique identifier of the forwarding path, when the switch interface fails and the network topology changes, the corresponding link identifier should be adjusted accordingly.
  • the SDN controller When a new switch accesses the DC network, the SDN controller will exchange after identifying the switch. Packet Out LLDP packets, the switch broadcasts LLDP packets to all outbound interfaces. After receiving the LLDP packets, the neighboring switch will generate a PacketIn event to notify the SDN controller because there is no matching flow entry.
  • the SDN controller analyzes LLDP packet characteristics determine the network topology of the switch, that is, the neighboring switch and its outbound interface, and obtain the topology information of the SDN network after the topology relationship changes. Take the network architecture shown in Figure 3 as an example.
  • the DC network topology acquired by the SDN controller after the last topology change is shown in Table 2:
  • the virtual switch 1 is adjacent to the access switch 1 on the outbound interface 5, and the access switch 1 is adjacent to the virtual switch 1 and the aggregation switch 1 on the outbound interfaces 7, 4 respectively, and the aggregation switch 1 is adjacent to the access switch 1 on the outbound interfaces 6 and 3, respectively.
  • the virtual switch 1 may be the first switching device in the embodiment of the present invention
  • the access switch 1 may be the second switching device in the embodiment of the present invention.
  • Step 702 The SDN controller refreshes the active flow entry of the backbone switch according to the obtained DC network topology information.
  • the active flow entry is a service-independent flow entry that the SDN controller actively customizes and delivers according to the information collected by the SDN controller.
  • the switch that receives the active flow entry can directly forward data or service packets according to the active flow entry.
  • the data forwarding rule is delivered by using the flow table, and the controller sends the forwarding rule to the switch by sending the flow table to implement the delivery of the forwarding rule.
  • An active flow entry is a forwarding rule that is sent to the switch when the controller sends a forwarding rule to the switch. Taking the forwarding path between the switching devices in the SDN network as an example, the active flow entry delivered by the SDN controller meets the following characteristics:
  • the action is performed: the neighboring switch identifier is stripped from the packet, and the packet is sent to the outbound interface of the adjacent switch.
  • Table 3 shows a representation of active flow entries in the network architecture diagram shown in Figure 3:
  • the controller sends the active flow entry to the access switch 1 to the adjacent virtual switch 1 and the aggregation switch 1, and the aggregation switch 1 delivers the active flow to the adjacent access switch 1 and the core switch.
  • An active flow table that is delivered to the core switch to reach the adjacent aggregation switches 1 and 2.
  • the active switch entry to the adjacent core switch and the access switch 2 is delivered to the aggregation switch 2, and the active flow entry to the adjacent aggregation switch 2 and the virtual switch 2 is delivered to the access switch 2.
  • the active flow entry is refreshed, so that the active flow entry can be adjusted in time according to the network change, and the data or service packet can be forwarded in time.
  • the network topology change may be triggered by a switch abnormality, a switch interface abnormality, and a newly added switch.
  • the specific implementation process may be implemented by using the flow diagram shown in FIG. 5, and FIG. 5 is a data center network according to an embodiment of the present invention. The flow chart of the processing method when the topology changes, will not be described here.
  • Step 703 The source sends a packet to the directly connected switch.
  • the switch directly connected to the source end reports the PacketIn event to the SDN controller because there is no matching flow entry.
  • Step 704 The SDN controller analyzes the packet characteristics, and selects a forwarding path according to the current network topology.
  • the SDN controller can select an optimal forwarding path from among multiple forwarding paths. For example, the shortest or the lightest forwarding path can be selected.
  • Step 705 The SDN controller sends a passive flow entry to the switch directly connected to the source end.
  • the passive flow entry is a service-related flow entry that cannot be processed by the forwarding device (that is, the switch), and is forwarded to the SDN controller, and is passively customized and delivered; that is, the switching device sends the request to the switch.
  • the forwarding rule is sent to the switch according to the request of the switch.
  • the forwarding rule is sent to the switch through the passive flow entry.
  • the passive flow entry at the source meets the following characteristics:
  • the action is performed: the original packet is encapsulated to the forwarding path of the switch directly connected to the destination end, and the encapsulated packet is sent to the next hop-out interface.
  • the passive flow entry can be as shown in Table 4:
  • the passive flow entry indicates that the virtual switch 1 matches the original packet feature, and the original packet is encapsulated to the forwarding path of the virtual switch 2, and the encapsulated packet is sent to the interface 5; the virtual switch 2 is instructed to match the original report.
  • the text feature sends the original message to interface 1.
  • Table 4 shows the forwarding path of the encapsulation to the virtual switch 2, that is, the packet passes from the source end to the destination end through the virtual switch 1, the access switch 1, the aggregation switch 1, the core switch, the aggregation switch 2, the access switch 2, and the virtual switch 2 Corresponding to the network identifiers 1, 11, 21, 3, 22, 12, 2, respectively.
  • the unique identifier of the switch is used to calibrate the forwarding path between the switches, so that the forwarding path between the switches is unique, and a forwarding path can be uniquely identified by a sequence of labels labeled with the switch.
  • the forwarding path from the source to the destination can be expressed as: 1–11–21–3–22–12–2.
  • FIG. 6 is a visual representation of a forwarding path in the embodiment.
  • the SDN controller can be used to route the forwarding path to the switch directly connected to the source end by MPLS (Multiple Protocol Label Switching).
  • MPLS Multiple Protocol Label Switching
  • the MPLS label is between the second and third layers of the packet and supports multiple levels of nesting.
  • An MPLS label occupies 32 bits, as shown in Table 5:
  • the Label field occupies 20 bits and is used to mark the road sign to indicate the next hop forwarding device of the packet.
  • the Exp field occupies 3 bits and is used to mark the QoS to implement DC large Layer 2 network differential service.
  • the S field occupies 1 bit.
  • the bottom of the stack marks the last hop; the TTL field occupies 8 bits and is used to mark the label lifetime. Since the label only identifies the next hop of the message, it is always 1.
  • An MPLS header carries a road sign, and multiple MPLS headers are nested in an orderly manner, carrying a set of road signs. Then form a forwarding path.
  • the switch directly connected to the DC network and the source end presses the forwarding path selected by the SDN controller, and the road sign is pressed into the packet from the destination end to the source end.
  • the last hop road sign is pushed into the bottom of the stack, and the next hop road sign is pushed into the top of the stack. As shown in Table 6:
  • Table 6 is a schematic diagram of a packet encapsulating a forwarding path.
  • the virtual switch 2 is the last hop forwarding device of the packet, and its landmark is pushed into the packet at the bottom of the stack of the MPLS nested label. Since the encapsulation operation of the forwarding path is performed on the virtual switch 1, the virtual switch 1 knows that the next hop forwarding device of the packet is the access switch 1, so the first hop of the forwarding path is the next hop of the access switch 1.
  • the transmitting device aggregates switch 1, and its roadmap is pressed on the top of the stack.
  • the other forwarding device roadmaps are from the bottom of the stack to the top of the stack, which are the access switch 2 road sign, the aggregation switch 2 road sign, and the core switch road sign.
  • Step 706 The SDN controller sends a passive flow entry to the switch directly connected to the destination end.
  • Execution action Send the original packet to the destination outbound interface.
  • the SDN controller sends passive flow entries to the switch directly connected to the destination.
  • Table 7 shows the following:
  • the backbone switch of the DC network receives the active flow entry sent by the SDN controller. After receiving the passive flow entry sent by the SDN controller, the edge switch can forward the packet. Since the backbone switch receives the active flow entry, it does not need to send the flow table to the backbone switch every time the data is forwarded. That is, the active flow entry can be reused in subsequent data forwarding, reducing the backbone switch. The number of the flow table is reduced, which reduces the device resource usage of the SDN controller. The network bandwidth between the SDN controller and the backbone switch is also saved. At the same time, the backbone switch does not need to receive every data forwarding. The flow entry improves the resource utilization of the backbone switch.
  • the embodiment of the invention also provides an implementation manner for implementing data or service packet forwarding for a multicast group.
  • a multicast group is a group of multiple members that form a multicast group.
  • the data or service packets sent by a member in a multicast group can be received only by members in the multicast group.
  • the members of the multicast group can be mobile terminals (including but not limited to notebooks, mobile phones, tablets, PDAs, POS machines, MP3s, navigators), fixed terminals (including but not limited to desktops, printers, fax machines, and digital devices). , digital TV) or wireless access terminals and other equipment.
  • the multicast group has four members, which are connected to different switches, and the data is forwarded through the backbone switch of the DC network.
  • the data packet forwarding method in the multicast group is implemented in the multicast group. the way.
  • FIG. 7 it is a network architecture diagram of an implementation manner of implementing data or service packet forwarding by a multicast group according to an embodiment of the present invention.
  • the multicast group has four members: members 1, 2, 3, and 4, which are respectively connected to the DC network through the virtual switch 1, the access switch 1, the access switch 3, and the virtual switch 2.
  • a multicast group member sends and receives multicast packets across the DC backbone network.
  • Multicast group member 1 sends multicast packets to other members: multicast packets sent to member 2, through virtual switch 1, interface 2, interface 5, access switch 1, interface 7 in, interface 1 out
  • the multicast packet sent to member 3 passes through virtual switch 1, interface 2, interface 5, access switch 1, interface 7 in, interface 4 out, through aggregation switch 1, interface 6 in, interface 3 out
  • interface 5 is in, interface 9 is out, through aggregation switch 2, interface 8 is in, interface 4 is out, through access switch 3, interface 5 is in, interface 8 is out; multicast message is sent to member 4, Via virtual switch 1, interface 2 enters, interface 5 exits, accesses switch 1, interface 7 enters, interface 4 exits, through aggregation switch 1, interface 6 enters, interface 3 exits, through core switch, interface 5 enters, interface 9 Out, through the aggregation switch 2, the interface 8 is in, the interface 7 is out, through the access switch 2, the interface 6 is entered, the interface 8 is out, through the virtual switch 2, the interface 3 is entered, and the interface 1 is output.
  • Multicast group member 2 sends multicast packets to other members: the multicast packets sent to member 1 are connected to switch 1, interface 1 is incoming, interface 7 is out, virtual switch 1, interface 5 is entered, and interface 2 is output.
  • the multicast packet sent to member 3 passes through access switch 1, interface 1 is in, interface 4 is out, through aggregation switch 1, interface 6 is in, interface 3 is out, through core switch, interface 5 is in, interface 9 is out.
  • the interface 8 is in, the interface 4 is out, the access switch 3 is connected to the interface 5, and the interface 8 is output; the multicast packet sent to the member 4 is accessed through the switch 1, the interface 1 is entered, and the interface 4 is output.
  • the interface 6 enters, the interface 3 is out, through the core switch, the interface 5 enters, the interface 9 is out, the aggregation switch 2, the interface 8 enters, the interface 7 is out, the access switch 2, the interface 6 enters, the interface 8 out, through virtual switch 2, interface 3 into, interface 1 out.
  • Multicast group member 3 sends multicast packets to other members: the multicast packets sent to member 1 are accessed through access switch 3, interface 8 is entered, interface 5 is output, and through aggregation switch 2, interface 4 is entered, and interface 8 is output.
  • interface 9 is in, interface 5 is out, through aggregation switch 1, interface 3 is in, interface 6 is out, accessing switch 1, interface 4 is in, interface 7 is out, via virtual switch 1, interface is 5, interface 2 out;
  • the multicast group member 4 sends multicast packets to other members: the multicast packets sent to member 1 are transmitted through virtual switch 2, interface 1 is entered, interface 3 is output, and access switch 2 is connected to interface 8 and interface 6 is output.
  • interface 7 is in, interface 8 is out, through core switch, interface 9 is in, interface 5 is out, through aggregation switch 1, interface 3 is in, interface is out, via access switch 1, interface is 4, interface 7 out, through virtual switch 1, interface 5 in, interface 2 out; multicast packets sent to member 2, through virtual switch 2, interface 1 into, interface 3 out, access switch 2, interface 8 into, interface 6 out, through the aggregation switch 2, interface 7 into, interface 8 out, through the core switch, interface 9 into, interface 5 out, through the aggregation switch 1, interface 3 into, interface 6 out, through the access switch 1, interface 4 into Interface 1 is output; multicast packets are sent to member 3, through virtual switch 2, interface 1 is in, interface 3 is out, access switch 2, interface 8 is in, interface 6 is out, through aggregati
  • the forwarding of the data or the service packet between the members in the multicast group is performed on the basis of the active flow entry and the passive flow entry in the embodiment shown in FIG. 4, and further includes:
  • the SDN controller collects and updates multicast group information
  • the SDN controller collects multicast group information in the following three cases:
  • the new multicast group member sends a multicast group request to the multicast router.
  • the switch receiving the multicast group request reports the PacketIn event to the SDN controller because there is no flow entry sent by the SDN controller.
  • the SDN controller simulates the multicast router, analyzes the host to join the multicast group request, and updates the specified multicast group information
  • the SDN controller sends a join multicast group response to the switch that reports the PacketIn event;
  • the switch that reports the PacketIn event sends a join multicast group response to the member interface of the join multicast group.
  • the switch connected to the queried multicast group member reports the PacketIn event to the SDN controller because there is no matching flow entry.
  • the SDN controller analyzes the PacketIn event, analyzes the multicast group member to exit the multicast group request, and updates the specified multicast group information;
  • the SDN controller sends an exit multicast group response to the switch connected to the member that exits the multicast group;
  • the switch connected to the member that exits the multicast group sends an exit multicast group response to the member interface of the exiting multicast group.
  • the SDN controller periodically queries the multicast group member to directly exchange the PacketOut multicast group query request;
  • the switch sends a multicast group query request to the interface where the multicast group member resides.
  • the multicast group member returns a multicast group query response.
  • the switch reports the PacketIn event to the SDN controller because there is no matching flow entry.
  • the SDN controller analyzes the multicast group query result and updates the multicast group information.
  • the SDN controller creates a multicast group identifier.
  • the multicast group identifier of the embodiment of the present invention is unique, and can be used to distinguish other multicast groups in the DC network, or other types of objects that can have the network identifier, and can be combined with other network identifiers to calibrate the packet forwarding. path.
  • the multicast group active flow entry is delivered.
  • the backbone switch includes the switch where the multicast group aggregation point is located.
  • the switch where the multicast group aggregation point is located is forwarded to the members in the multicast group through two or more paths.
  • the data exchange is the replication distribution point of the multicast packet near the receiving end.
  • the switch where the multicast group aggregation point is located is the intersection of the forwarding path of a multicast group member to other multicast group members. The closest point to the multicast group member is the multicast group aggregation point.
  • the access switch 1 and the aggregation switch 2 are the switches in which the aggregation point is located, and may be the third switching device in the foregoing method embodiment.
  • the data packet can be copied and forwarded by the switch where the aggregation point is located, which can further save DC network bandwidth.
  • the switch where the multicast group aggregation point is located varies with the multicast group member.
  • the multicast group member When the multicast group member changes, it triggers the update of the aggregation switch, for example, adding or deleting the information of the switch where the multicast group aggregation point is located.
  • the SDN controller updates the multicast group collection point information.
  • the multicast group aggregation point information includes multicast group members and corresponding multicast packet forwarding and forwarding interfaces.
  • the multicast packet is sent from the multicast source to the switch where the multicast group is located.
  • the receiving port of the multicast packet on the switch where the multicast group is located is the transit interface.
  • the multicast interface is the outgoing interface of the switch where the multicast group aggregation point is located.
  • the SDN controller After the SDN controller obtains the multicast group aggregation point, that is, the switch where the aggregation point is located, it generates multicast group convergence point information.
  • Table 8 shows the switch information of the aggregation point shown in Figure 7 as shown in Table 8:
  • the access switch 1 is connected to member 1, outbound interface 7, inbound interface 4, member 2, outbound interface 1, inbound interface 4, member 3, 4, outbound interface 4, and inbound interface 1, 7.
  • Aggregation switch 2 to member 3, outbound interface 4, inbound interface 8, member 4, outbound interface 7, inbound interface 8, pair member 1, 2, and outbound interface 8, Incoming interfaces 4, 7.
  • the active flow entry delivered by the SDN controller needs to meet the following characteristics:
  • Send the multicast group to the next aggregation point copy the multicast packet, encapsulate the copied multicast packet to the forwarding path of the next aggregation point of the multicast group, and send the encapsulated multicast packet to the next. Jump out of the interface.
  • the SDN controller replicates and distributes the multicast packets received by the access switch 1 on different interfaces: the multicast packets sent by the members 3 and 4 are received at the ingress 4, and are sent to the interface of the member 1 to the interface. 7, go The stripped outer road sign to member 2 is sent to interface 1; the multicast message sent by member 1 is received at interface 7, goes to member 2, strips the outer road sign, sends it to interface 1, and goes to member 3, 4 The encapsulation arrives at the forwarding path of the multicast group aggregation point aggregation switch 2 and is sent to the interface 4.
  • the SDN controller replicates and distributes the multicast packets received by the aggregation switch 2 on different interfaces.
  • the multicast packets sent by member 3 are received on interface 4, and the packet destined for member 4 reaches the forwarding path of virtual switch 2.
  • the forwarding path to the member 1, 2 to the access switch 1 is sent to the interface 8;
  • the multicast packet sent by the member 4 is received on the interface 7, and sent to the member 3 to the interface 4,
  • the packets destined for members 1 and 2 arrive at the forwarding path of the multicast group aggregation point access switch 1 and are sent to interface 8.
  • the multicast packets sent by members 1 and 2 are received at interface 8, and are sent to member 3 to The interface 4, the packet destined for the member 4 reaches the forwarding path of the virtual switch 2, and is sent to the interface 7.
  • the active flow entry delivered by the SDN controller to the switch (non-convergence switch) directly connected to the multicast receiver needs to meet the following characteristics:
  • the SDN controller customizes the active flow entry for the virtual switch 1, matches the multicast packet entry 5, the multicast group 1 identifier, and strips the multicast packet multicast group. 1 identifies the original multicast packet to be sent to interface 2.
  • the SDN controller customizes the active flow entry for the access switch 3, and matches the multicast packet entry 5 and the multicast group. 1 logo, stripping group
  • the broadcast message multicast group 1 is identified, and the original multicast packet is sent to the interface 8.
  • the SDN controller customizes the active flow entry for the virtual switch 2, and matches the multicast packet entry.
  • the multicast group 1 identifier is used to strip the multicast packet multicast group 1 and send the original multicast packet to interface 1.
  • a member of a multicast group When a member of a multicast group sends data or service packets to other members in the multicast group, it sends a multicast packet to the switch directly connected to it.
  • the directly connected switch does not have a matching flow entry to the SDN.
  • the controller reports the PacketIn event.
  • the SDN controller analyzes the characteristics of the multicast packet and selects an appropriate forwarding path according to the current network topology and multicast group information. Passive flow entries meet the following characteristics:
  • Execution action The original multicast packet is encapsulated with the multicast group identifier and the forwarding path of the next aggregation point of the multicast group, and the encapsulated multicast packet is sent to the next hop-out interface.
  • the passive flow entry indicates that virtual switch 1 matches the original multicast packet entry 2.
  • the original multicast packet encapsulates the multicast group 1 identifier and is encapsulated.
  • the multicast packet is sent to the interface.
  • the multicast packet sent by the member 2 to the member 1 indicates that the access switch 1 matches the original multicast packet entry 1, features, and the original multicast packet.
  • Package group The broadcast group 1 identifier is sent to the interface 7; the multicast packet destined for the member 3 and 4 sent by the member 2, and the passive flow entry indicates that the access switch 1 matches the original multicast packet.
  • the original multicast packet is encapsulated with the multicast group 1 identifier, the forwarding path to the aggregation switch 2, and the encapsulated multicast packet is sent to the interface 4;
  • the passive flow entry indicates that the access switch 3 matches the original multicast packet entry 8 and features, encapsulates the multicast group 1 identifier of the original multicast packet, and sends the encapsulated multicast packet to the interface 5;
  • the multicast packet indicates that the virtual switch 2 matches the original multicast packet entry 1, and the original multicast packet encapsulates the multicast group 1 identifier and the forwarding path to the aggregation switch 2, which will be encapsulated.
  • a good multicast packet is sent to interface 3.
  • Each switch of the DC network implements the forwarding of data or service packets according to the flow entries sent by the SDN controller, including active flow entries and passive flow entries.
  • the forwarding of data or service packets by the multicast group can reduce the number of forwarding flow entries required by the backbone switch, improve the resource utilization of the SDN controller, and improve the efficiency of the SDN controller and the switch.
  • the aggregation point switch delivers the active flow entry, and the data or service packet is copied to the next aggregation point switch while being sent to the multicast group member.
  • the multicast packet is not at the source end, but is copied and distributed at the aggregation point, saving DC network bandwidth.
  • the tenant can deploy various services on the host to which the DC belongs, and is open to its users.
  • the tenant is a user who rents computing, storage, and network resources to a data center DC service provider; wherein the tenant is a user who installs, deploys, and publishes a service through a leased data center resource.
  • FIG. 8 is a schematic diagram of an implementation manner in which a tenant deploys a service chain in a DC according to an embodiment of the present invention.
  • the embodiment is described by taking five service nodes including a firewall, an authentication, a load balancing, and a database service as an example.
  • the five service nodes constitute a service chain.
  • the host where the firewall service is located is connected to the DC network by the access switch 1, and the host where the authentication service is located is connected to the DC network by the access switch 3.
  • the access switch 3 may be the fourth switching device in the embodiment of the present invention;
  • the host where the equalization service is located is connected to the DC network by the access switch 2, and the host where the database service is located is configured by the virtual switch. 2 access to the DC network.
  • the host is a server capable of providing a specific service (such as a firewall, etc.), and may be a physical server or a virtual server.
  • the host may also be a device such as the foregoing mobile terminal, a fixed terminal, or a wireless access terminal, and the specific embodiment of the present invention is not limited to a specific implementation manner.
  • Tenants provide related services through the deployment of hosts for related services.
  • a host that deploys a firewall provides a firewall service
  • the host that provides the firewall service is a service node.
  • the tenant can request to add or delete a service node from the SDN controller through the UI (User Interface).
  • the SDN controller assigns each service node a unique identifier for distinguishing other service nodes in the DC network, or other types of objects that can have the network identifier, either alone or with other networks. Identify the combination and calibrate the packet forwarding path. For example, as shown in Table 12, the unique network identifier of the service node assigned to the SDN controller in the network architecture diagram of FIG.
  • the firewall service node obtains the network identifier 5; the authentication service node obtains the network identifier 6; the load balancing service node obtains the network identifier 7; the database 1 service node obtains the network identifier 8; and the database 2 service node obtains the network identifier 9.
  • the service chain in the embodiment of the present invention that is, the service sequence set by the tenant for the user, is arranged by the service node in a specified order, and reflects the internal strategy of the tenant to provide the service externally.
  • DC Yun The tenant customizes different service chains, and then guides them to different service chain portals according to the characteristics of the user data stream, traversing all the service nodes in the chain, thereby implementing the differentiated services of the tenants.
  • the tenant can initiate a request to create or delete a service chain through the UI, thereby implementing creation or deletion of the service chain.
  • Table 13 shows schematically several implementations of the service chain in Figure 8.
  • the tenant directly assigns the data source to the user through the first service chain, and the user stream passes through the firewall and authentication in turn, and finally arrives at the database 1.
  • the corresponding network identification sequence is 5–6–8;
  • the service chain directly specifies the data source for the user as the database 2, and the user flow passes through the firewall and authentication in turn, and finally arrives at the database 2, the corresponding network identification sequence is 5–6–9;
  • the load balancing service is The user specifies the data source, and the user stream passes through the firewall, authenticates, and then is scheduled by the load balancing service, and finally arrives at the database specified by the load balancing service.
  • the corresponding network identification sequence is 5–6–7.
  • the management and control of the service chain can be further realized on the basis of the implementation of the process shown in FIG. 4 above.
  • the active flow entry to be delivered by the SDN controller needs to meet the following characteristics:
  • Table 14 shows the active flow entries delivered by the SDN controller to the switch directly connected to the service node in the network architecture diagram shown in Figure 8.
  • the SDN controller instructs the access switch 1 to focus on the packet carrying the firewall service node identifier, strips the packet firewall service node identifier, and sends the original packet to the interface 1; the access switch 3 is instructed to carry the authentication service.
  • the packet identified by the node is stripped of the packet authentication service node identifier, and the original packet is sent to the interface 8.
  • the access switch 2 is instructed to focus on the packet carrying the load balancing service node identifier, and the packet load balancing service node identifier is sent off.
  • the virtual switch 2 is instructed to focus on the packet carrying the identifier of the database service node, and the packet database service node identifier is stripped and sent to the corresponding interface.
  • Table 15 shows an implementation of a passive flow entry for implementing a service chain:
  • the passive flow entry indicates that the virtual switch 1 matches the original packet inbound interface and features, encapsulates the firewall service node identifier for the original packet, and then sends the encapsulated packet to interface 5; indicating that the access switch 1 matches the original Packet incoming interface, feature, and original packet encapsulation authentication service node
  • the packet is sent to the interface 4 and the encapsulated packet is sent to the interface 4; the access switch 3 is matched with the original packet incoming interface and features, and the original packet is encapsulated with the load balancing service node identifier and the load is reached.
  • the forwarding path of the service node is equalized, and then the encapsulated packet is sent to the interface 5; the access switch 2 is matched with the original packet inbound interface, the feature is encapsulated, the database service node identifier is encapsulated in the original packet, and then the encapsulated packet is encapsulated.
  • the access switch 1 may be the fifth switching device in the embodiment of the present invention
  • the aggregation switch 2 is the sixth switching device in the embodiment of the present invention
  • the access switch 3 is the seventh switching device in the embodiment of the present invention. Therefore, the flow table of different switches in the service chain implementation is delivered.
  • the access switch 1 may also be the fifth switching device in the embodiment of the present invention.
  • the access switch 3 is the seventh switching device in the embodiment of the present invention.
  • the SDN controller cannot customize the forwarding path of the entire service chain at one time when the forwarding path is sent.
  • the path needs to be decomposed into multiple segments according to each service node. The start of each segment is the last service node, and the termination is the next service node. The path for each segment is sent in the same manner as the implementation shown in Figure 4.
  • the above embodiments are used to deliver the active flow entry and the passive flow entry in the scenario of different service nodes, and the tenant customization policy is implemented to realize the flexible shuttle between data or service flow between different services.
  • the flow meter reduces the device resource occupancy of the SDN controller and the switch, and also improves the performance and efficiency of the SDN controller and the switch.
  • the DC supports multi-tenancy
  • the DC network allows each tenant to share its physical network, thereby constructing a separate tenant independent logical network.
  • the logical networks between tenants are isolated and the physical network space can overlap.
  • the control device in the DC network can assign a unique identifier to each tenant to distinguish different tenants and implement management of different tenants.
  • the host in each tenant realizes data forwarding through the DC network, it carries The unique identifier of the assigned tenant, through which the tenant's unique identifier identifies the data forwarding within a tenant.
  • the foregoing method for implementing data forwarding of an SDN network can also be applied to a scenario of multi-tenancy.
  • the forwarding rule sent by the control device further includes the tenant ID.
  • the switching device needs to match the tenant ID in the forwarding, and then the data is forwarded and forwarded after the tenant ID is stripped.
  • the specific implementation process is similar to the above implementation process, and will not be described again.
  • FIG. 9 is a schematic structural diagram of a control device 900 in an SDN according to an embodiment of the present invention, including: a network communication unit 901, a control message processing unit 902, a forwarding path determining unit 903, and a forwarding rule management unit 904;
  • the network communication unit 901 is configured to receive a first forwarding rule request sent by the first switching device in the SDN, and send the first forwarding rule request to the control message processing unit 902;
  • the control message processing unit 902 is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit 903, and determine the forwarding path determining unit 903
  • the information of the first path and the first forwarding rule generated by the forwarding rule management unit are sent by the network communication unit to the first switching device, and the second forwarding rule generated by the forwarding rule management unit is used by the Sending, by the network communication unit, the second switching device on the first path;
  • the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path
  • the information of the first path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule. ;
  • the forwarding path determining unit 903 is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit 902, the data forwarding corresponding to the data information carried in the first forwarding rule request.
  • the forwarding rule management unit 904 is configured to generate the first forwarding rule and the second forwarding Sending a rule, the second forwarding rule is received by the second switching device before receiving the data, and enables the second switching device to forward the data to the information according to the first path a switching device directly connected to the second switching device on the first path.
  • the control device 900 in the SDN determines the first path forwarded by the data corresponding to the data information, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device. And causing the second switching device to forward the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device receives the data before receiving the data.
  • the second switching device is configured to receive a forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and the path information.
  • the control device 900 does not need to issue a forwarding rule every time the data is forwarded to the second switching device, which saves the resource consumption of the control device when the forwarding rule is sent, improves the utilization of the device, and saves the control device 900 and the exchange.
  • the second forwarding rule is generated after the second switching device establishes a topological relationship with the directly connected switching device, or after establishing a topology relationship, where the second forwarding rule is based on the received path information.
  • a forwarding rule that repeats forwarding of data containing the path information.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  • the information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
  • control device 900 further includes an identifier management unit 905 and a topology management unit 906, as shown in FIG. 10, where:
  • the identifier management unit 905 is configured to allocate and reclaim a unique identifier of a forwarding path between switching devices in the SDN.
  • the topology management unit 906 is configured to update network topology information of the SDN according to the transformation of the SDN network topology
  • the forwarding path determining unit 903 combines the network topology information recorded in the topology management unit 904 with the unique identifier of the forwarding path between the switching devices allocated by the identifier management unit 905, and combines the control message determining unit.
  • the parsed first forwarding rule request sent by the 902 determines a first path forwarded to the data information carried in the first forwarding rule request.
  • control device 900 further includes a multicast group management unit 907.
  • the multicast group management unit 907 is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies one multicast group, and the multicast group includes at least two multicast groups. Group members, data sent by one member of a multicast group can be received by other members of the multicast group.
  • the forwarding rule management unit 903 is further configured to send a third forwarding rule that includes the multicast group identifier to the third switching device, so that the third switching device encapsulates the next aggregation switch according to the third forwarding rule.
  • the data of the path information of the path of the device is sent; the path information of the path to the next aggregation switching device is represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding.
  • the third switching device is a switching device directly connected to a member of the multicast group, and the third switching device is a switching device that forwards data to the multicast group member through two or more paths;
  • the next aggregation switching device forwards the data to the multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths. Switching equipment.
  • control device 900 further includes:
  • the service chain setting unit 908 is configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assign a unique identifier to a device having a specific service capability in the service chain. The identification of the device;
  • the forwarding rule management unit 903 is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a uniqueness of the first specific service capability device directly connected to the fourth switching device. Identifying, so that the fourth switching device forwards the received data to The device of the first specific service capability; the fourth forwarding rule is a forwarding rule received by the fourth switching device before receiving data that needs to be forwarded, and the fourth switching device is provided in the service chain A switching device that is directly connected to a device with a specific service capability.
  • the network communication unit 901 is further configured to receive a fifth forwarding rule request sent by the fifth switching device;
  • the control message processing unit 902 is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit 903;
  • the forwarding path determining unit 903 is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device is The third specific service device is a specific service device directly adjacent in the service chain; the service chain path is implemented according to a path of the second specific service device to the third specific service device a sequence of data forwarding forwarding devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
  • the forwarding rule management unit 904 is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh Transmitting the device, or sending the sixth switching device to the sixth switching device, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is And the sixth switching device receives the data including the information of the service chain path, and enables the sixth switching device to forward the data to the service chain path according to the service chain path information. And the other switching device; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path.
  • control device 900 in the embodiment of the present invention may be implemented by referring to the implementation manner of the control device in the implementation manner of the embodiment shown in FIG. 1 to FIG. 8 , and details are not described herein.
  • an embodiment of the present invention further provides a data forwarding system 1100 in an SDN, including a first switching device 1101 and a second switching device 1102.
  • the first switching device 1101 is directly connected to the second switching device 11021102. , which is characterized by:
  • the first switching device 1101 is configured to request a forwarding rule from the control device according to the received data, receive a first forwarding rule returned by the control device, and encapsulate the first path information according to the first forwarding rule.
  • the data is sent to the second switching device 1102, and the information of the first path is a sequence of forwarding devices that implement the data forwarding according to the first path for forwarding the data, and the forwarding path is used between the switching devices. a sequence of unique identifiers;
  • the second switching device 1102 is configured to receive the data sent by the first switching device 1101, and the second switching device 1102 exchanges with the second according to the information about the first path and the second forwarding rule.
  • the switching device directly connected to the device 1102 sends the data, the second forwarding rule is received by the second switching device 1102 before receiving the data, and the second switching device 1102 can be according to the first The information of the path and the second forwarding rule forward the data to a switching device directly connected to the second switching device, where the switching device directly connected to the second switching device is on the first path Switching equipment.
  • the first switching device 1101 receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule.
  • the second switching device 1102 the second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device 1102 receives the The data is received before, so that the second switching device 1102 can receive the forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and path information.
  • the second switching device 1102 does not need to acquire a forwarding rule once after receiving the data, that is, it does not need to obtain a flow table for data forwarding every time the data is received, and the second forwarding rule can be repeatedly used to implement data forwarding, thereby saving
  • the second switching device 1102 saves and uses the resource consumption caused by the forwarding rule when performing data forwarding, thereby improving the utilization rate of the device; especially for the switching device of the data center backbone layer,
  • the amount of forwarding data is large, and the storage and application of a large number of forwarding rules may result in a huge consumption of resources such as a chip.
  • the solution provided in this embodiment can save resources of the switching device, so that the switching device in the data center network does not need to be higher.
  • the performance can achieve a large amount of data forwarding, which enhances the competitiveness of switching equipment.
  • the second switching device 1102 is further configured to send information about the first path to a switching device directly connected to the second switching device, or the second switching device 1102
  • the information of the second path of the forwarding path between the switching device directly connected to the second switching device and the forwarding path of the nth switching device is sent to the third switching device, where the information of the second path is implemented.
  • the sequence of the switching devices on the path of the data forwarding the sequence represented by the unique identifier of the forwarding path between the switching devices, where n is an integer and is greater than or equal to 3.
  • the second forwarding rule is generated when the second switching device 1102 establishes a topological relationship with the switching device directly connected to the second switching device 1102 or after establishing a topology relationship, and the second forwarding rule that includes the second forwarding rule is A forwarding rule that can repeatedly forward data to the path information according to the path information.
  • the data forwarding system further includes an i-th switching device, an i-th switching device, and an i-th switching device, the i-th switching device, and the The i-1th switching device and the (i+1)th switching device are switching devices on the first path;
  • the i-th switching device is configured to receive the i-th path information and the data sent by the i-th switching device, where the i-th path information is according to the foregoing a sequence of the i-switching device to the n-th switching device, a sequence represented by a unique identifier of the forwarding path between the switching devices; wherein i is an integer and greater than or equal to 3; and according to the i-th path information, to the The i+1 switching device sends the data and the i-th path information, where the i-th path information is in accordance with a sequence of the i+1th switching device to the nth switching device that implements the data forwarding, and the switching device uses A sequence of unique identifier representations of the forwarding paths.
  • the sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
  • the i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  • the first path information, the second path information, and the ith path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device.
  • the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  • the data forwarding system 1100 in the SDN further includes a third switching device 1103;
  • the first switching device 1101, the second switching device 1102, and the third switching device 1103 are members of the same multicast group, where the third switching device 1103 is to the group by using two or more paths.
  • a switching device that forwards data to a group member, and data sent by members of the multicast group to other members can be received by other members of the multicast group;
  • the third switching device 1103 is configured to receive a third forwarding rule that includes the multicast group identifier sent by the control device, and encapsulate the path information of the path that reaches the next aggregation switching device according to the third forwarding rule.
  • the data is sent and sent;
  • the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching
  • the device is a switching device that forwards the data to the multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  • the data forwarding system 1100 in the SDN further includes a fifth switching device 1105, a sixth switching device 1106, and a seventh switching device 1107;
  • a fifth switching device 1105 configured to send a fifth forwarding rule request to the control device, and Receiving, by the control device, a service chain path to the seventh switching device 1107, where the fifth switching device 1105 is a switching device directly connected to the second specific service capability device in the service chain, and the seventh switching device 1107 is a switching device directly connected to a third specific service capability device in the service chain, where the second specific service device and the third specific service device are specific service devices directly adjacent in the service chain,
  • the service chain path is a sequence between the switching devices that implement the data forwarding according to the path from the second specific service device to the third specific service device, and the unique identifier of the forwarding path between the switching devices is used.
  • the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service a sequence of unique identifiers of devices having specific service capabilities;
  • the fifth switching device 1105 forwards the data and the service chain path information to the seventh switching device 1107 or the sixth switching device 1106 on the service chain path;
  • the sixth switching device 1106 is configured to forward the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the service chain The data of the path information is previously received; wherein the sixth switching device is a switching device between the fifth switching device 1105 and the seventh switching device 1107 on the fifth path.
  • the data forwarding system 1100 in the SDN further includes a control device, such as the control device 900 shown in FIG.
  • the implementation of the data forwarding system 1100 in the SDN of the embodiment of the present invention may be implemented by referring to the implementation manner of the control device in the implementation manner of the embodiment shown in FIG. 1 to FIG. 8 , and details are not described herein.
  • the disclosed systems, devices, and methods may be implemented in other manners.
  • the device embodiments described above are merely illustrative.
  • the division of the unit is only a logical function division.
  • there may be another division manner for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed.
  • the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, or an electrical, mechanical or other form of connection.
  • the units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the objectives of the embodiments of the present invention.
  • each functional unit in each embodiment of the present invention may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.
  • the above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
  • the integrated unit if implemented in the form of a software functional unit and sold or used as a standalone product, may be stored in a computer readable storage medium.
  • the technical solution of the present invention contributes in essence or to the prior art, or all or part of the technical solution may be embodied in the form of a software product stored in a storage medium.
  • Including a number of instructions for causing a computer device (which may be a personal computer, server, or network device, etc.) to perform the methods of the various embodiments of the present invention All or part of the steps.
  • the foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .

Abstract

The present invention provides a data forwarding method and device in SDN. A first path for forwarding data corresponding to data information is determined, so that a first switching device encapsulates the data comprising information about the first path and sends the data to a second switching device; the second switching device forwards the data according to the information about the first path and a second forwarding rule; the second forwarding rule is received by the second switching device before receiving the data, so that the second switching device can receive a data forwarding rule before receiving the data, and forwards data according to the received data and path information. Because the second switching device receives the second forwarding rule before receiving the data to be forwarded, the second switching device can repeatedly use the second forwarding rule to forward data when the second switching device forwards the data; accordingly, resource consumption caused when the second switching device stores and uses forwarding rules can be reduced, thereby improving the utilization rate of the switching device and reducing the bandwidth occupied when the forwarding rules are delivered for multiple times between the control device and the switching device.

Description

软件定义网络SDN中数据转发的方法、设备和***Method, device and system for data forwarding in software defined network SDN 技术领域Technical field
本发明涉及信息技术领域,特别涉及软件定义网络SDN中数据转发的方法、设备和***。The present invention relates to the field of information technology, and in particular, to a method, device and system for data forwarding in a software defined network SDN.
背景技术Background technique
随着技术的不断发展,数据中心的建设面临着各种严峻的挑战,如何提升DC资源利用率,如何降低DC能耗与成本等都成为关注的问题。With the continuous development of technology, the construction of data centers faces various severe challenges. How to improve the utilization of DC resources and how to reduce DC energy consumption and cost have become issues of concern.
虚拟化为新一代数据中心的构建与发展指明了方向。虚拟化技术帮助数据中心整合硬件资源,建立虚拟资源池,实现资源全局共享,根据业务按需分配,从而提升***资源的综合利用率,节约设备能耗。Virtualization points the way for the construction and development of next-generation data centers. The virtualization technology helps the data center to integrate hardware resources, establish a virtual resource pool, realize global resource sharing, and allocate resources according to services, thereby improving the comprehensive utilization of system resources and saving equipment energy consumption.
数据中心虚拟化要求网络虚拟化。传统网络模式在数据中心虚拟化网络中显得捉襟见肘。SDN(Software Defined Network,软件定义网络)将网络控制与转发平面分离的理念与虚拟化网络不谋而合。Data center virtualization requires network virtualization. Traditional network models are stretched out in data center virtualization networks. SDN (Software Defined Network) combines the concept of network control and forwarding plane with virtualized networks.
SDN作为一种新型网络创新架构,其核心技术OpenFlow通过将网络设备控制面与数据面分离开来,从而实现了网络流量的灵活控制。As a new network innovation architecture, SDN's core technology, OpenFlow, realizes flexible control of network traffic by separating the control plane of the network device from the data plane.
OpenFlow协议随着一系列版本演进,不断规范,趋于成熟,并形成标准。OpenFlow支持按任意字段组合查询流表,并提出了多级流表的概念,流表的大小、数量已经成为现有芯片支持OpenFlow亟待突破的瓶颈。The OpenFlow protocol evolves with a series of versions, is constantly standardized, matures, and forms standards. OpenFlow supports the combination of arbitrary fields to query the flow table, and proposes the concept of multi-level flow table. The size and number of flow tables have become the bottleneck for existing chips to support OpenFlow.
数据中心网络中,每实现一对端到端通信,涉及到的交换设备便新增一条流表项,网络边缘的虚拟交换设备限于通信端数量,流表数量对交换设备和控制设备影响不大,处于网络骨干层的交换设备却随下层交换设备流表项增多而不断膨胀,大量的流表将占用SDN中控制设备和骨干层交换设备的硬件资源,影响到SDN中设备的性能和网络性能。 In the data center network, each pair of end-to-end communication implements a new flow entry for the switching device involved. The virtual switching device at the edge of the network is limited to the number of communication ends. The number of flow tables has little effect on the switching device and the control device. The switching device at the backbone layer of the network continues to expand as the number of flow entries of the lower layer switching device increases. A large number of flow tables occupy the hardware resources of the control device and the backbone layer switching device in the SDN, affecting the performance and network performance of the device in the SDN. .
发明内容Summary of the invention
本发明实施例提供一种SDN中数据转发的方法、设备和***,以解决现有技术中因流表项过多带来的SDN中设备和网络性能不高的问题。The embodiment of the invention provides a method, a device and a system for forwarding data in an SDN, so as to solve the problem that the device and the network performance in the SDN are not high due to excessive flow entries in the prior art.
为达到上述目的,本发明实施例采用的技术方案是:To achieve the above objective, the technical solution adopted by the embodiment of the present invention is:
第一方面,本发明实施例提供了一种软件定义网络SDN中数据转发方法,包括:In a first aspect, an embodiment of the present invention provides a data forwarding method in a software-defined network SDN, including:
接收所述SDN中第一交换设备发送的第一转发规则请求,根据所述第一转发规则请求中携带的数据信息确定对所述数据信息对应的数据进行转发的第一路径;Receiving a first forwarding rule request sent by the first switching device in the SDN, and determining, according to the data information carried in the first forwarding rule request, a first path for forwarding data corresponding to the data information;
下发用于转发所述数据的第一转发规则给所述第一交换设备,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,所述第一路径的信息是依据所述第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。Dissipating a first forwarding rule for forwarding the data to the first switching device, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device, where The information of the first path is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement the data forwarding on the first path, so that the second switching device is configured according to the The information of a path and the second forwarding rule forward the data, the second forwarding rule is received by the second switching device before receiving the data, and enables the second switching device to The information of the first path forwards the data to a switching device on the first path that is directly connected to the second switching device.
在第一方面的第一种可能的实现方式中,结合第一方面,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。In a first possible implementation manner of the first aspect, in combination with the first aspect, the second forwarding rule is generated after the second switching device establishes a topological relationship with a switching device directly connected to the switching device or after establishing a topological relationship. The second forwarding rule is a forwarding rule that repeatedly forwards data including the path information according to the received path information.
在第一方面的第二种可能的实现方式中,结合第一方面或第一方面的第一种可能的实现方式,所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。In a second possible implementation manner of the first aspect, in combination with the first aspect or the first possible implementation manner of the first aspect, the unique identifier of the forwarding path between the switching devices is a unique identifier and exchange of the switching device. The unique interface identifier between the device and the switching device directly connected to it, or the unique identifier of the link between the switching device and the switching device directly connected to it.
在第一方面的第三种可能的实现方式中,结合第一方面至第一方面 的第二种可能的实现方式中的任一种实现方式,所述第一路径的信息嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。In a third possible implementation of the first aspect, the first aspect to the first aspect are combined In any one of the second possible implementation manners, the information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
在第一方面的第四种可能的实现方式中,结合第一方面至第一方面的第三种可能的实现方式中的任一种实现方式,所述方法还包括:In a fourth possible implementation manner of the first aspect, in combination with any one of the first aspect to the third possible implementation manner of the first aspect, the method further includes:
创建组播组标识,所述组播组标识为唯一标识组播组的标识,所述组播组包含至少两个组播组成员,实现所述组播组成员间数据转发的交换设备包括所述第一交换设备和所述第二交换设备;Create a multicast group identifier, where the multicast group identifier is an identifier that uniquely identifies the multicast group, the multicast group includes at least two multicast group members, and the switching device that implements data forwarding between the multicast group members includes Describe the first switching device and the second switching device;
相应的,所述第一转发规则和所述第二转发规则中还包括所述组播组标识。Correspondingly, the first forwarding rule and the second forwarding rule further include the multicast group identifier.
在第一方面的第五种可能的实现方式中,结合第一方面的第四种可能的实现方式,实现所述组播组成员间数据转发的交换设备还包括第三交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;In a fifth possible implementation manner of the first aspect, in combination with the fourth possible implementation manner of the first aspect, the switching device that implements data forwarding between the multicast group members further includes a third switching device, where The three switching device is a switching device that forwards data to the multicast group member through two or more paths;
所述方法还包括:The method further includes:
向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
在第一方面的第六种可能的实现方式中,结合第一方面至第一方面的第三种可能的实现方式中的任一种实现方式,所述方法还包括:In a sixth possible implementation of the first aspect, in combination with any one of the first aspect to the third possible implementation of the first aspect, the method further includes:
设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;其中,与所述具备特定服务能力的设备直接连接的交换设备包括 第四交换设备;Setting a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain is assigned an identifier that uniquely identifies the device; A switching device directly connected to a device with specific service capabilities includes Fourth switching device;
所述方法还包括:The method further includes:
生成第四转发规则并下发给所述第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则。Generating a fourth forwarding rule and sending the fourth forwarding device to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device, so that the fourth switching device And forwarding the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
在第一方面的第七种可能的实现方式中,结合第一方面的第六种可能的实现方式,所述方法还包括:In a seventh possible implementation of the first aspect, in combination with the sixth possible implementation of the first aspect, the method further includes:
接收第五交换设备发送的第五转发规则请求,根据所述第五转发规则请求中携带的数据的信息确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;Receiving a fifth forwarding rule request sent by the fifth switching device, determining, according to the information of the data carried in the fifth forwarding rule request, a service chain path to the seventh switching device, where the fifth switching device is connected to the service chain a switching device directly connected to the second specific service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third The specific service device is a specific service device directly adjacent in the service chain; the service chain path is to implement the data forwarding exchange according to the path of the second specific service device to the third specific service device a sequence of devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
下发用于转发所述数据的第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收到的,并能够使所述第六交换设备根据服务链路径的信息将所述数据转发给所述服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。 Dissipating a fifth forwarding rule for forwarding the data to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh switching device, or Sending to the sixth switching device on the path of the service chain, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data including the service chain path information, and enabling the sixth switching device to forward the data to other switching devices on the service chain path according to the information of the service chain path The sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
第二方面,本发明实施例还提供了一种软件定义网络SDN中数据转发方法,包括:In a second aspect, the embodiment of the present invention further provides a data forwarding method in a software-defined network SDN, including:
第一交换设备根据接收到的数据向控制设备请求转发规则;The first switching device requests a forwarding rule from the control device according to the received data;
所述第一交换设备接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给与所述第一交换设备直连的第二交换设备,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;The first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule to be sent to the second directly connected to the first switching device. The switching device, the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement the data forwarding on a first path that forwards the data;
所述第二交换设备接收所述第一交换设备发送的所述数据,所述第二交换设备根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,所述第二交换设备能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。The second switching device receives the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule. The switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the The second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
在第二方面的第一种可能的实现方式中,所述方法还包括:In a first possible implementation manner of the second aspect, the method further includes:
所述第二交换设备将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息发送给与所述第二交换设备直接相连的交换设备,所述第二路径的信息是实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。Transmitting, by the second switching device, the information of the first path to a switching device directly connected to the second switching device, or the second switching device, the first path and the second switching device The information of the second path of the forwarding path between the directly connected switching device and the nth switching device is sent to the switching device directly connected to the second switching device, where the information of the second path is used to implement the data forwarding. The sequence of switching devices on the path, represented by a sequence of unique identifiers of forwarding paths between switching devices, where n is an integer and greater than or equal to 3.
在第二方面的第二种可能的实现方式中,结合第一方面,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。 In a second possible implementation manner of the second aspect, in combination with the first aspect, the second forwarding rule is generated after the second switching device establishes a topological relationship with a switching device directly connected to the switching device or after establishing a topological relationship. The second forwarding rule including the second forwarding rule is a forwarding rule that can repeatedly forward the data including the path information according to the path information.
在第二方面的第三种可能的实现方式中,结合第二方面至第二方面的第二种可能的实现方式中的任一种实现方式,In a third possible implementation of the second aspect, in combination with any one of the second aspect to the second possible implementation of the second aspect,
所述方法还包括:The method further includes:
第i交换设备接收第i-1交换设备发送的第i-1路径信息和所述数据,所述第i-1路径信息是根据实现所述数据转发的第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;The i-th switching device receives the i-th path information and the data sent by the i-th switching device, where the i-th path information is based on the i-th switching device to the n-th switching device that implements the data forwarding a sequence sequentially represented by a unique identifier of a forwarding path between switching devices; wherein i is an integer and greater than or equal to 3;
所述第i交换设备根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;Transmitting, by the i-th switching device, the data and the i-th path information to the i+1th switching device according to the (i-1th) path information, where the i-th path information is according to the implementation of the data forwarding a sequence of the first i+1 switching device to the nth switching device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备。The i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path.
在第二方面的第四种可能的实现方式中,结合第二方面的第三种可能的实现方式,所述方法还包括:In a fourth possible implementation of the second aspect, in combination with the third possible implementation of the second aspect, the method further includes:
所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括:The sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
在第二方面的第五种可能的实现方式中,结合第二方面至第二方面的第四种可能的实现方式中的任一种实现方式,In a fifth possible implementation of the second aspect, in combination with any one of the second aspect to the fourth possible implementation of the second aspect,
所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换 MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。The first path information, the second path information, and the ith path information are multi-protocol label switching MPLS label nested encapsulation, an MPLS label header fills the forwarding path unique identifier of a switching device.
在第二方面的第六种可能的实现方式中,结合第二方面至第二方面的第五种可能的实现方式中的任一种实现方式,In a sixth possible implementation of the second aspect, in combination with any one of the second aspect to the fifth possible implementation of the second aspect,
所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
在第二方面的第七种可能的实现方式中,结合第二方面至第二方面的第六种可能的实现方式中的任一种实现方式,In a seventh possible implementation of the second aspect, in combination with any one of the second aspect to the sixth possible implementation of the second aspect,
所述第一交换设备、所述第二交换设备和所述第三交换设备是同一组播组的成员,其中,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备,所述组播组的成员发送给其它成员的数据,能够被所述组播组的其它成员接收到;The first switching device, the second switching device, and the third switching device are members of the same multicast group, where the third switching device forwards the multicast group member through two or more paths. a data exchange device, the data sent by the members of the multicast group to other members can be received by other members of the multicast group;
所述方法还包括:The method further includes:
向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
在第二方面的第八种可能的实现方式中,结合第二方面至第二方面的第六种可能的实现方式中的任一种实现方式,所述方法还包括:In an eighth possible implementation of the second aspect, in combination with any one of the second aspect to the sixth possible implementation manner of the second aspect, the method further includes:
第五交换设备向所述控制设备发送第五转发规则请求,并接收所述控制设备返回的到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设 备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务能力的设备的唯一标识组合而成的序列;The fifth switching device sends a fifth forwarding rule request to the control device, and receives a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device is the second specific to the service chain. a switching device directly connected to the service capability device, the seventh switching device a switching device directly connected to a third specific service capability device in the service chain, the second specific service device and the third specific service device being specific service devices directly adjacent to the service chain, The service chain path is a sequence between the switching devices that implement the data forwarding according to the path from the second specific service device to the third specific service device, and the unique identifier of the forwarding path between the switching devices is used. a sequence of representations; the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service a sequence of unique identifiers of devices having specific service capabilities;
所述第五交换设备将所述数据以及所述服务链路径信息封装后转发给所述第七交换设备或所述服务链路径上的第六交换设备;The fifth switching device encapsulates the data and the service chain path information and forwards the data to the seventh switching device or the sixth switching device on the service chain path;
所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the data including the service chain path information. Received previously; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
第三方面,本发明实施例还提供了一种软件定义网络SDN中的控制设备,包括:所述控制设备包括网络通信单元、控制消息处理单元、转发路径确定单元和转发规则管理单元;In a third aspect, the embodiment of the present invention further provides a control device in a software-defined network SDN, including: the control device includes a network communication unit, a control message processing unit, a forwarding path determining unit, and a forwarding rule management unit;
所述网络通信单元,用于接收SDN中的第一交换设备发送的第一转发规则请求,并将所述第一转发规则请求发送给所述控制消息处理单元;The network communication unit is configured to receive a first forwarding rule request sent by the first switching device in the SDN, and send the first forwarding rule request to the control message processing unit;
所述控制消息处理单元,用于解析所述第一转发规则请求,将解析后的所述第一转发规则请求发送给所述转发路径确定单元,并将所述转发路径确定单元确定的第一路径的信息,以及所述转发规则管理单元生成的第一转发规则通过所述网络通信单元发送给所述第一交换设备,将所述转发规则管理单元生成的第二转发规则通过所述网络通信单元发送给所述第一路径上的第二交换设备;所述第一路径的信息是依据所述第一路径上交换设备的顺序,用交换设备之间转发路径的唯一标识表示的序列,所述第一路 径的信息能够随所述数据转发给所述第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及所述第二转发规则对所述数据进行转发;The control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit The information of the path and the first forwarding rule generated by the forwarding rule management unit are sent to the first switching device by the network communication unit, and the second forwarding rule generated by the forwarding rule management unit is used to communicate by using the network Sending, by the unit, the second switching device on the first path; the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, First road The information of the path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule.
所述转发路径确定单元,用于根据所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息对应的数据转发的第一路径;The forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
所述转发规则管理单元,用于生成所述第一转发规则和所述第二转发规则,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。The forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule, where the second forwarding rule is received by the second switching device before receiving the data, and can And causing the second switching device to forward the data to the switching device directly connected to the second switching device on the first path according to the information of the first path.
在第三方面的第一种可能的实现方式中,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。In a first possible implementation manner of the third aspect, the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topological relationship, the second The forwarding rule is a forwarding rule that repeatedly forwards data including the path information according to the received path information.
在第三方面的第二种可能的实现方式中,结合第三方面至第三方面的第一种可能的实现方式中的任一种实现方式,所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。In a second possible implementation manner of the third aspect, in combination with any one of the first possible implementation manners of the third aspect to the third aspect, the unique identifier of the forwarding path between the switching devices is The unique identifier of the switching device, the unique interface identifier between the switching device and the switching device directly connected to it, or the unique identifier of the link between the switching device and the switching device directly connected to it.
在第三方面的第三种可能的实现方式中,结合第三方面至第三方面的第二种可能的实现方式中的任一种实现方式,所述第一路径的信息嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。In a third possible implementation manner of the third aspect, in combination with any one of the third aspect to the second possible implementation manner of the third aspect, the information of the first path is nested in a multi-protocol The label switching MPLS message is sent to the first switching device.
在第三方面的第四种可能的实现方式中,结合第三方面至第三方面的第三种可能的实现方式中的任一种实现方式,所述控制设备还包括标识管理单元和拓扑管理单元:In a fourth possible implementation manner of the third aspect, in combination with any one of the third aspect to the third possible implementation manner of the third aspect, the control device further includes an identity management unit and a topology management unit:
所述标识管理单元,用于分配和回收所述SDN中交换设备之间转发路径的唯一标识; The identifier management unit is configured to allocate and reclaim a unique identifier of a forwarding path between the switching devices in the SDN;
所述拓扑管理单元,用于根据所述SDN网络拓扑的变换,更新所述SDN的网络拓扑信息;The topology management unit is configured to update network topology information of the SDN according to the transformation of the SDN network topology;
相应的,所述转发路径确定单元根据所述拓扑管理单元中记录的网络拓扑信息,以及所述标识管理单元分配的交换设备之间转发路径的唯一标识,结合所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息转发的第一路径。Correspondingly, the forwarding path determining unit determines the parsing sent by the unit according to the network topology information recorded in the topology management unit and the unique identifier of the forwarding path between the switching devices allocated by the identifier management unit. The first forwarding rule request determines a first path forwarded to the data information carried in the first forwarding rule request.
在第三方面的第五种可能的实现方式中,结合第三方面至第三方面的第四种可能的实现方式中的任一种实现方式,所述控制设备还包括组播组管理单元,In a fifth possible implementation manner of the third aspect, the control device further includes a multicast group management unit, in combination with any one of the third aspect to the fourth possible implementation manner of the third aspect,
所述组播组管理单元,用于为所述SDN中的组播组分配组播组标识,所述组播组标识唯一标识一个组播组,所述组播组包含至少两个组播组成员,组播组中一个成员发送的数据能够被组播组中其它成员接收到。The multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast groups. Member, data sent by one member of a multicast group can be received by other members of the multicast group.
在第三方面的第六种可能的实现方式中,结合第三方面的第五种可能的实现方式,所述转发规则管理单元,还用于向第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述第三交换设备是与所述组播组的成员直接相连的交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。In a sixth possible implementation manner of the third aspect, in combination with the fifth possible implementation manner of the third aspect, the forwarding rule management unit is further configured to send, by the third switching device, the identifier that includes the multicast group identifier. The third forwarding rule is configured to enable the third switching device to encapsulate the data of the path information of the path to the next aggregation switching device according to the third forwarding rule, and send the path to the path of the next aggregation switching device. The path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement data forwarding; the third switching device is a switching device directly connected to a member of the multicast group. The third switching device is a switching device that forwards data to the multicast group member through two or more paths; the next aggregation switching device is a path for forwarding the data to a multicast group member, from the third The switching device that switches the device to the multicast group member to forward data to the multicast group member through two or more paths.
在第三方面的第七种可能的实现方式中,结合第三方面至第三方面的第四种可能的实现方式中的任一种实现方式,所述控制设备还包括:In a seventh possible implementation manner of the third aspect, in combination with any one of the third aspect to the fourth possible implementation manner of the third aspect, the control device further includes:
服务链设定单元,用于设定服务链,所述服务链是所述SDN中具备特定 服务能力的设备构成的服务序列,并为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;a service chain setting unit, configured to set a service chain, wherein the service chain is specific to the SDN a service sequence formed by the device of the service capability, and assigning a device uniquely identifying the device to the device having the specific service capability in the service chain;
所述转发规则管理单元,还用于生成第四转发规则并下发给第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则,所述第四交换设备是所述服务链中与具备特定服务能力的设备直接连接的交换设备。The forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing the fourth switching device to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded. The fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
在第三方面的第八种可能的实现方式中,结合第三方面的第七种可能的实现方式中的任一种实现方式,所述网络通信单元还用于接收第五交换设备发送的第五转发规则请求;In an eighth possible implementation manner of the third aspect, in combination with any one of the seventh possible implementation manners of the third aspect, the network communications unit is further configured to receive, by the fifth switching device, Five forwarding rule requests;
所述控制消息处理单元,还用于解析所述第五转发规则请求,并将解析后的所述第五转发规则请求发送给所述转发路径确定单元;The control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
所述转发路径确定单元,还用于根据所述控制消息确定单元发送的解析后的所述第五转发规则请求,确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;The forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
所述转发规则管理单元,还用于下发第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路 径的信息的数据之前接收到的,并能够使所述第六交换设备根据所述服务链路径信息将所述数据转发给服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh exchange. The device is sent to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the service link The data of the information of the path is received before, and the sixth switching device can forward the data to other switching devices on the service chain path according to the service chain path information; wherein the sixth switching device is A switching device between the fifth switching device and the seventh switching device on the fifth path.
第四方面,本发明实施例还提供了一种软件定义网络SDN中数据转发***,包括第一交换设备和第二交换设备,所述第一交换设备与所述第二交换设备直接相连,In a fourth aspect, the embodiment of the present invention further provides a data forwarding system in a software-defined network SDN, including a first switching device and a second switching device, where the first switching device is directly connected to the second switching device.
所述第一交换设备,用于根据接收到的数据向控制设备请求转发规则,接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给所述第二交换设备,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;The first switching device is configured to request a forwarding rule from the control device according to the received data, receive a first forwarding rule returned by the control device, and encapsulate the first path information according to the first forwarding rule. The data is sent to the second switching device, and the information of the first path is a sequence of forwarding paths between the switching devices according to the sequence of the switching devices that implement the data forwarding on the first path of forwarding the data. The sequence represented;
所述第二交换设备,用于接收第一交换设备发送的所述数据,所述第二交换设备根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,所述第二交换设备能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。The second switching device is configured to receive the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule. The switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the The second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
在第四方面的第一种可能的实现方式中,所述第二交换设备,还用于将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息,发送给与所述第二交换设备直接相连的交换设备,所述第二路径的信息是实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。 In a first possible implementation manner of the fourth aspect, the second switching device is further configured to send information about the first path to a switching device directly connected to the second switching device, or Transmitting, by the second switching device, the information of the second path of the forwarding path between the switching device directly connected to the second switching device and the second switching device in the first path to the second switching device Connected switching devices, the information of the second path is a sequence of switching devices on the path for implementing the data forwarding, and a sequence represented by a unique identifier of a forwarding path between switching devices, where n is an integer and is greater than or equal to 3 .
在第四方面的第二种可能的实现方式中,结合第四方面至第四方面的第一种可能的实现方式中的任一种实现方式,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。In a second possible implementation manner of the fourth aspect, in combination with any one of the first possible implementation manners of the fourth aspect to the fourth aspect, the second forwarding rule is in the second The second forwarding rule that includes the second forwarding rule is a forwarding rule that can repeatedly forward data including the path information according to the path information, when the switching device establishes a topological relationship with the directly connected switching device or after the topology relationship is established. .
在第四方面的第三种可能的实现方式中,结合第四方面至第四方面的第二种可能的实现方式中的任一种实现方式,所述数据转发***还包括第i交换设备、第i-1交换设备和第i+1交换设备,所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备;In a third possible implementation manner of the fourth aspect, in combination with any one of the fourth possible implementation manners of the fourth aspect, the data forwarding system further includes an i-th switching device, An i-th switching device and an i+1th switching device, where the i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path;
所述第i交换设备,用于接收所述第i-1交换设备发送的第i-1路径信息和所述数据,所述第i-1路径信息是根据实现所述数据转发的所述第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;并根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列。The i-th switching device is configured to receive the i-th path information and the data sent by the i-th switching device, where the i-th path information is according to the foregoing a sequence of the i-switching device to the n-th switching device, a sequence represented by a unique identifier of the forwarding path between the switching devices; wherein i is an integer and greater than or equal to 3; and according to the i-th path information, to the The i+1 switching device sends the data and the i-th path information, where the i-th path information is in accordance with a sequence of the i+1th switching device to the nth switching device that implements the data forwarding, and the switching device uses A sequence of unique identifier representations of the forwarding paths.
在第四方面的第四种可能的实现方式中,结合第四方面的第三种可能的实现方式,所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括:In a fourth possible implementation manner of the fourth aspect, in combination with the third possible implementation manner of the fourth aspect, the i-th switching device sends the i+1th switching device according to the (i-1th path information) The sending of the data and the ith path information specifically includes:
所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
在第四方面的第五种可能的实现方式中,结合第四方面至第四方面 的第四种可能的实现方式中的任一种实现方式,所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。In a fifth possible implementation manner of the fourth aspect, the fourth aspect to the fourth aspect are combined In any one of the fourth possible implementation manners, the first path information, the second path information, and the i-th path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header is filled with an exchange. The forwarding path unique identifier of the device.
在第四方面的第六种可能的实现方式中,结合第四方面至第四方面的第五种可能的实现方式中的任一种实现方式,In a sixth possible implementation manner of the fourth aspect, in combination with any one of the fourth aspect to the fifth possible implementation manner of the fourth aspect,
所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
在第四方面的第七种可能的实现方式中,结合第四方面至第四方面的第六种可能的实现方式中的任一种实现方式,所述第一交换设备、所述第二交换设备和所述第三交换设备是同一组播组的成员,其中,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备,所述组播组的成员发送给其它成员的数据,能够被所述组播组的其它成员接收到;In a seventh possible implementation manner of the fourth aspect, in combination with any one of the fourth aspect to the sixth possible implementation manner of the fourth aspect, the first switching device, the second switching The device and the third switching device are members of the same multicast group, where the third switching device is a switching device that forwards data to the multicast group member through two or more paths, and members of the multicast group Data sent to other members can be received by other members of the multicast group;
所述第三交换设备,用于接收所述控制设备发送的包含组播组标识的第三转发规则,根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The third switching device is configured to receive, by the control device, a third forwarding rule that includes a multicast group identifier, and encapsulate the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
在第四方面的第八种可能的实现方式中,结合第四方面至第四方面的第六种可能的实现方式中的任一种实现方式,所述SDN中数据转发***还包括第五交换设备、第六交换设备和第七交换设备;In an eighth possible implementation manner of the fourth aspect, the data forwarding system in the SDN further includes a fifth exchange, in combination with any one of the fourth aspect to the sixth possible implementation manner of the fourth aspect a device, a sixth switching device, and a seventh switching device;
第五交换设备,用于向所述控制设备发送第五转发规则请求,并接收所述控制设备返回的到达第七交换设备的服务链路径,所述第五交换设备 是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务能力的设备的唯一标识组合而成的序列;a fifth switching device, configured to send a fifth forwarding rule request to the control device, and receive a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device Is a switching device directly connected to the second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service is The device and the third specific service device are specific service devices directly adjacent to the service chain, and the service chain path is implemented according to the path of the second specific service device to the third specific service device a sequence of the data forwarding of the switching devices, a sequence represented by a unique identifier of the forwarding path between the switching devices; the service chain is a service sequence formed by the device having the specific service capability in the SDN, A device having a specific service capability in a service chain has an identifier that uniquely identifies the device, and the service sequence is a sequence that is a combination of the unique identifiers of the devices having the specific service capabilities;
所述第五交换设备将所述数据以及所述服务链路径信息转发给所述第七交换设备或所述服务链路径上的第六交换设备;The fifth switching device forwards the data and the service chain path information to the seventh switching device or the sixth switching device on the service chain path;
所述第六交换设备,用于根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The sixth switching device is configured to forward the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the path including the service chain The data of the information is previously received; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
在第四方面的第九种可能的实现方式中,结合第四方面至第四方面的第八种可能的实现方式中的任一种实现方式,所述SDN中数据转发***还包括控制设备,所述控制设备包括网络通信单元、控制消息处理单元、转发路径确定单元和转发规则管理单元;In a ninth possible implementation manner of the fourth aspect, the data forwarding system in the SDN further includes a control device, in combination with any one of the fourth aspect to the eighth possible implementation manner of the fourth aspect, The control device includes a network communication unit, a control message processing unit, a forwarding path determining unit, and a forwarding rule management unit;
所述网络通信单元,用于接收所述第一交换设备发送的第一转发规则请求,并将所述第一转发规则请求发送给所述控制消息处理单元;The network communication unit is configured to receive a first forwarding rule request sent by the first switching device, and send the first forwarding rule request to the control message processing unit;
所述控制消息处理单元,用于解析所述第一转发规则请求,将解析后的所述第一转发规则请求发送给所述转发路径确定单元,并将所述转发路径确定单元确定的第一路径的信息以及所述转发规则管理单元生成的第一转发规则通过所述网络通信单元发送给所述第一交换设备,将所述转发规则管理单元生成的第二转发规则通过所述网络通信单元发送给所述第一路 径上的第二交换设备;所述第一路径的信息是依据所述第一路径上交换设备的顺序,用交换设备之间转发路径的唯一标识表示的序列,所述第一路径的信息能够随所述数据转发给所述第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及所述第二转发规则对所述数据进行转发;The control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit The information of the path and the first forwarding rule generated by the forwarding rule management unit are sent by the network communication unit to the first switching device, and the second forwarding rule generated by the forwarding rule management unit is used by the network communication unit. Sent to the first road a second switching device on the path; the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, and information of the first path can be Forwarding the data to the second switching device, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule;
所述转发路径确定单元,用于根据所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息对应的数据转发的第一路径;The forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
所述转发规则管理单元,用于生成所述第一转发规则和所述第二转发规则。The forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule.
在第四方面的第十种可能的实现方式中,结合第四方面的第九种可能的实现方式,所述控制设备还包括组播组管理单元,In a tenth possible implementation manner of the fourth aspect, in combination with the ninth possible implementation manner of the fourth aspect, the control device further includes a multicast group management unit,
所述组播组管理单元,用于为所述SDN中的组播组分配组播组标识,所述组播组标识唯一标识一个组播组,所述组播组包含至少两个组播组成员,组播组中一个成员发送的数据能够被组播组中其它成员接收到。The multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast groups. Member, data sent by one member of a multicast group can be received by other members of the multicast group.
在第四方面的第十一种可能的实现方式中,结合第四方面的第十种可能的实现方式,所述转发规则管理单元,还用于向第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述第三交换设备是与所述组播组的成员直接相连的交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。In an eleventh possible implementation manner of the fourth aspect, in combination with the tenth possible implementation manner of the fourth aspect, the forwarding rule management unit is further configured to send, to the third switching device, the identifier that includes the multicast group identifier. a third forwarding rule, so that the third switching device encapsulates the data of the path information of the path to the next aggregation switching device according to the third forwarding rule; and the path to the next aggregation switching device The path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement data forwarding; the third switching device is a switching device directly connected to members of the multicast group, The third switching device is a switching device that forwards data to the multicast group member by using two or more paths; the next aggregation switching device is a path for forwarding the data to a multicast group member, where the The switching device that forwards data from the three switching devices to the members of the multicast group to the multicast group members through two or more paths.
在第四方面的第十二种可能的实现方式中,结合第四方面的第九种 可能的实现方式至第四方面的第十一种可能的实现方式中的任一种实现方式,所述控制设备还包括:In a twelfth possible implementation of the fourth aspect, the ninth aspect of the fourth aspect is combined A possible implementation, to any one of the eleventh possible implementation manners of the fourth aspect, the control device further includes:
服务链设定单元,用于设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,并为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;a service chain setting unit, configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assigning a unique identifier to a device having a specific service capability in the service chain. Identification of the equipment;
所述转发规则管理单元,还用于生成第四转发规则并下发给第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据下转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则,所述第四交换设备是所述服务链中与具备特定服务能力的设备直接连接的交换设备。The forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing, by the fourth switching device, to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding that is received by the fourth switching device before receiving the data that needs to be forwarded. The fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
在第四方面的第十三种可能的实现方式中,结合第四方面的第十二种可能的实现方式,所述网络通信单元还用于接收第五交换设备发送的第五转发规则请求;In a thirteenth possible implementation manner of the fourth aspect, in combination with the twelfth possible implementation manner of the fourth aspect, the network communications unit is further configured to receive a fifth forwarding rule request sent by the fifth switching device;
所述控制消息处理单元,还用于解析所述第五转发规则请求,并将解析后的所述第五转发规则请求发送给所述转发路径确定单元;The control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
所述转发路径确定单元,还用于根据所述控制消息确定单元发送的解析后的所述第五转发规则请求,确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;The forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
所述转发规则管理单元,还用于下发第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含所述服务链路径信息的所述数据,并发送给 所述第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收到的,并能够使所述第六交换设备根据所述服务链路径信息将所述数据转发给服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data that includes the service chain path information, and sends the data to the Transmitting, by the sixth switching device, the sixth switching device to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and a sixth forwarding rule, where The sixth forwarding rule is that the sixth switching device receives the data that includes the service chain path information, and enables the sixth switching device to forward the data according to the service chain path information. The other switching device on the service chain path; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
本发明实施例提供的方法和设备,通过确定对所述数据信息对应的数据进行转发的第一路径,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,使得所述第二交换设备能够在接收到数据之前接收到对数据转发的转发规则,并根据接收到的数据和路径信息实现数据转发。控制设备不需要每次对第二交换设备转发数据都下发一次转发规则,第二交换设备不需要在每次转发数据时都接收转发规则,不仅节省了第二交换设备因保存和适用转发规则带来的资源消耗,也节省了控制设备在下发转发规则时的资源消耗,提高了设备的利用率,同时也节省了控制设备与交换设备之间因多次下发转发规则所占用的带宽。The method and device provided by the embodiment of the present invention, by determining a first path for forwarding data corresponding to the data information, so that the first switching device encapsulates the data including the information of the first path and sends the data to the first The second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device receives the data Previously received, the second switching device can receive forwarding rules for data forwarding before receiving data, and implement data forwarding according to the received data and path information. The control device does not need to send a forwarding rule every time the data is forwarded to the second switching device, and the second switching device does not need to receive the forwarding rule every time the data is forwarded, which saves the second switching device from saving and applying the forwarding rule. The resource consumption of the control device also saves the resource consumption of the control device when the forwarding rule is delivered, and improves the utilization of the device, and also saves the bandwidth occupied by the control device and the switching device due to multiple delivery of the forwarding rule.
附图说明DRAWINGS
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。 In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the embodiments or the description of the prior art will be briefly described below. Obviously, the drawings in the following description are only It is a certain embodiment of the present invention, and other drawings can be obtained from those skilled in the art without any inventive labor.
图1为本发明实施例一种SDN中数据转发方法的流程示意图;1 is a schematic flowchart of a data forwarding method in an SDN according to an embodiment of the present invention;
图2为本发明实施例另一种SDN中数据转发方法的流程示意图;2 is a schematic flowchart of another data forwarding method in an SDN according to an embodiment of the present invention;
图3为本发明实施例一种SDN数据转发方法在数据中心实现的网络架构示意图;3 is a schematic diagram of a network architecture implemented by a SDN data forwarding method in a data center according to an embodiment of the present invention;
图4为本发明实施例SDN中实现数据转发的方法具体实现的流程示意图;4 is a schematic flowchart of a specific implementation of a method for implementing data forwarding in an SDN according to an embodiment of the present invention;
图5为本发明实施例在数据中心网络拓扑发生变化时处理方法流程图;FIG. 5 is a flowchart of a processing method when a data center network topology changes according to an embodiment of the present invention;
图6为本实施例中转发路径的可视化呈现图;6 is a visual representation of a forwarding path in the embodiment;
图7为本发明实施例关于组播组实现数据或业务报文转发的实现方式网络架构图;FIG. 7 is a network architecture diagram of an implementation manner of implementing data or service packet forwarding by a multicast group according to an embodiment of the present invention;
图8为本发明实施例中租户在数据中心内部署服务链的一种实现方式示意图;FIG. 8 is a schematic diagram of an implementation manner of a tenant deploying a service chain in a data center according to an embodiment of the present invention; FIG.
图9为本发明实施例一种SDN中的控制设备的结构示意图;FIG. 9 is a schematic structural diagram of a control device in an SDN according to an embodiment of the present invention;
图10为本发明实施例一种SDN中的控制设备另一种实现方式的结构示意图;FIG. 10 is a schematic structural diagram of another implementation manner of a control device in an SDN according to an embodiment of the present disclosure;
图11本发明实施例一种SDN中数据转发***结构示意图;11 is a schematic structural diagram of a data forwarding system in an SDN according to an embodiment of the present invention;
图12本发明实施例一种SDN中数据转发***另一种实现方式结构示意图。FIG. 12 is a schematic structural diagram of another implementation manner of a data forwarding system in an SDN according to an embodiment of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚地描述,显然,所描述的实施例是本发明的一部分实施例,而不是全部实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动的前提下所获得的所有其他实施例,都应属于本发明保护的范围。The technical solutions in the embodiments of the present invention will be clearly described in conjunction with the drawings in the embodiments of the present invention. It is obvious that the described embodiments are a part of the embodiments of the present invention, and not all embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts shall fall within the scope of the present invention.
为解决现有技术中处于网络骨干层的交换设备流表项过多,占用SDN 中控制设备和骨干层交换设备的硬件资源,带来的SDN中设备的性能和网络性能下降的问题,本发明实施例提供了一种SDN中数据转发的方法。如图1所示,图1为本发明实施例一种SDN中数据转发方法的流程示意图,包括:In order to solve the problem that the switching device of the switching device in the network backbone layer is excessive in the prior art, the SDN is occupied. The method for forwarding data in the SDN is provided by the embodiment of the present invention. The embodiment of the present invention provides a method for forwarding data in the SDN. As shown in FIG. 1 , FIG. 1 is a schematic flowchart of a data forwarding method in an SDN according to an embodiment of the present invention, including:
步骤100:接收所述SDN中第一交换设备发送的第一转发规则请求,根据所述第一转发规则请求中携带的数据信息确定对所述数据信息对应的数据进行转发的第一路径;Step 100: Receive a first forwarding rule request sent by the first switching device in the SDN, and determine, according to the data information carried in the first forwarding rule request, a first path for forwarding data corresponding to the data information.
步骤102:下发用于转发所述数据的第一转发规则给所述第一交换设备,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,所述第一路径的信息是依据所述第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。Step 102: Send a first forwarding rule for forwarding the data to the first switching device, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device. The information of the first path is a sequence represented by a unique identifier of a forwarding path between the switching devices according to a sequence of the switching devices that implement the data forwarding on the first path, so that the second switching device is configured according to And the second forwarding rule is received by the second switching device before receiving the data and enables the second exchange The device forwards the data to the switching device directly connected to the second switching device on the first path according to the information of the first path.
上述方法通过确定对所述数据信息对应的数据进行转发的第一路径,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,使得所述第二交换设备能够在接收到数据之前接收到对数据转发的转发规则,并根据接收到的数据和路径信息实现数据转发。控制设备不需要每次对第二交换设备转发数据都下发一次转发规则,节省了控制设备在下发转发规则时的资源消耗,提高了设备的利用率,同时也节省了控制设备与交换设备之间因多次下发转发规则所占用的带宽。The method of the foregoing method is configured to: determine, by the first switching device, the first path that forwards data corresponding to the data information, so that the first switching device encapsulates the data that includes the information of the first path, and sends the data to the second switching device, so that the first The second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is received by the second switching device before receiving the data, so that the The second switching device can receive the forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and the path information. The control device does not need to send a forwarding rule every time the data is forwarded to the second switching device, which saves the resource consumption of the control device when the forwarding rule is sent, improves the utilization of the device, and saves the control device and the switching device. The bandwidth occupied by the forwarding rule is sent multiple times.
上述步骤100和步骤102可以由图3中控制器机群中的控制设备来实现, 具体可以参考本发明实施例图3中的实现方式。相应的,所述第一交换设备可以是图3中的虚拟交换机1,所述第二交换设备可以是图3中的接入交换机1。The above steps 100 and 102 can be implemented by the control device in the controller cluster in FIG. For details, refer to the implementation manner in FIG. 3 of the embodiment of the present invention. Correspondingly, the first switching device may be the virtual switch 1 in FIG. 3, and the second switching device may be the access switch 1 in FIG.
作为一种可选的实现方式,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。与所述第二交换设备直接相连的交换设备之间的拓扑关系发生变化时,所述第二交换设备到与其直接相连的交换设备之间的转发规则应随之发生改变。因此,在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后,生成第二转发规则并发送给第二交换设备,使得第二交换设备依据第二转发规则进行数据转发时能够依据最新的网络拓扑转发,在节省设备资源消耗的同时提高了数据转发的准确率。As an optional implementation manner, the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topology relationship, where the second forwarding rule is received according to the receiving The path information to the forwarding rule that repeatedly forwards the data including the path information. When the topology relationship between the switching devices directly connected to the second switching device changes, the forwarding rules between the second switching device and the switching device directly connected thereto should change accordingly. Therefore, after the second switching device establishes a topological relationship with the directly connected switching device or establishes a topological relationship, the second forwarding rule is generated and sent to the second switching device, so that the second switching device performs data according to the second forwarding rule. Forwarding can be forwarded according to the latest network topology, which improves the accuracy of data forwarding while saving equipment resource consumption.
可选的,本发明实施例中,所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。Optionally, in the embodiment of the present invention, the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or the switching device directly connected thereto A unique identifier for the link between the switching devices.
在具体实现时,所述第一路径的信息可以嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。In a specific implementation, the information of the first path may be nested in the multi-protocol label switching MPLS message and sent to the first switching device.
本发明实施例的所述方法,还可以包括:The method of the embodiment of the present invention may further include:
创建组播组标识,所述组播组标识为唯一标识组播组的标识,所述组播组包含至少两个组播组成员,实现所述组播组成员间数据转发的交换设备包括所述第一交换设备和所述第二交换设备;Create a multicast group identifier, where the multicast group identifier is an identifier that uniquely identifies the multicast group, the multicast group includes at least two multicast group members, and the switching device that implements data forwarding between the multicast group members includes Describe the first switching device and the second switching device;
相应的,所述第一转发规则和所述第二转发规则中还包括所述组播组标识。Correspondingly, the first forwarding rule and the second forwarding rule further include the multicast group identifier.
实现所述组播组成员间数据转发的交换设备还包括第三交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设 备;所述方法还包括:The switching device that implements data forwarding between the members of the multicast group further includes a third switching device, where the third switching device exchanges data to the multicast group member through two or more paths. The method further includes:
向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
上述第三交换设备,是组播组中汇聚点所在的交换设备,通过该第三交换设备有两条以上的路径到达组播组的成员。上述方法对该汇聚点所在的交换设备下发第三转发规则,使得所述第三交换设备封装包含两条以上路径的路径信息的所述数据并发送,能够实现在节省SDN网络中设备资源的前提下,提高组播组中数据转发的效率和可靠性。该第三交换设备可以是图7所示的接入交换机1时,所述下一汇聚交换设备是汇聚交换机2;其实现组播组数据报文的转发可以参考图7所示的实施例来实现。The third switching device is a switching device where the aggregation point is located in the multicast group, and the third switching device has more than two paths to reach the members of the multicast group. The foregoing method sends a third forwarding rule to the switching device where the aggregation point is located, so that the third switching device encapsulates the data that includes path information of two or more paths and sends the data, which can save device resources in the SDN network. On the premise, improve the efficiency and reliability of data forwarding in a multicast group. When the third switching device is the access switch 1 shown in FIG. 7, the next aggregation switching device is the aggregation switch 2; and the forwarding of the multicast group data packet can be implemented by referring to the embodiment shown in FIG. achieve.
在具体实现中,本发明实施例提供的SDN中数据转发方法还包括:In a specific implementation, the data forwarding method in the SDN provided by the embodiment of the present invention further includes:
设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;其中,与所述具备特定服务能力的设备直接连接的交换设备包括第四交换设备;Setting a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain is assigned an identifier that uniquely identifies the device; A switching device directly connected to a device having a specific service capability includes a fourth switching device;
所述方法还包括:The method further includes:
生成第四转发规则并下发给所述第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则。 Generating a fourth forwarding rule and sending the fourth forwarding device to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device, so that the fourth switching device And forwarding the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
可选的,所述方法还包括:Optionally, the method further includes:
接收第五交换设备发送的第五转发规则请求,根据所述第五转发规则请求中携带的数据的信息确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;Receiving a fifth forwarding rule request sent by the fifth switching device, determining, according to the information of the data carried in the fifth forwarding rule request, a service chain path to the seventh switching device, where the fifth switching device is connected to the service chain a switching device directly connected to the second specific service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third The specific service device is a specific service device directly adjacent in the service chain; the service chain path is to implement the data forwarding exchange according to the path of the second specific service device to the third specific service device a sequence of devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
下发用于转发所述数据的第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收到的并能够使所述第六交换设备根据服务链路径的信息将所述数据转发给所述服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。以图8所示的服务链为例,本发明实施例中的第五交换设备可以接入交换机1,所述第七交换设备可以是接入交换机3,所述第六交换设备可以是核心交换机;在服务链场景下实现数据报文的转发可以参考图8所示的实施例。Dissipating a fifth forwarding rule for forwarding the data to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh switching device, or Sending to the sixth switching device on the path of the service chain, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data that includes the service chain path information, and enabling the sixth switching device to forward the data to other switching devices on the service chain path according to the information of the service chain path; The sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path. Taking the service chain shown in FIG. 8 as an example, the fifth switching device in the embodiment of the present invention may access the switch 1, the seventh switching device may be the access switch 3, and the sixth switching device may be the core switch. For the forwarding of data packets in the service chain scenario, reference may be made to the embodiment shown in FIG. 8.
上述通过下发用于转发所述数据的第五转发规则给所述第五交换设备,能够实现在应用服务链的场景下,也能够提升SDN中网络设备的资源利用率,当数据转发需要通过不同的特定服务设备时,按照服务链中各特定服务设备的先后顺序实现数据的转发,在数据转发过程中,转发路径上的交换设备,例如上述实现方式中的第六交换设备,能够依据在接收到数据 之前接收到的转发规则对数据进行转发,不需要每次接收到数据时都获取转发规则,节省了控制设备的资源开销,在实现服务链服务的同时提高了SDN中设备的资源利用率。The fifth forwarding device is configured to forward the data to the fifth switching device, and the resource utilization of the network device in the SDN can be improved in the application service chain scenario. In the case of different specific service devices, the data is forwarded according to the order of the specific service devices in the service chain. In the data forwarding process, the switching device on the forwarding path, for example, the sixth switching device in the foregoing implementation manner, can be based on Received data The previously received forwarding rule forwards the data, and does not need to obtain the forwarding rule every time the data is received, which saves the resource overhead of the control device, and improves the resource utilization of the device in the SDN while implementing the service chain service.
参考图2,图2为本发明实施例另一种SDN中数据转发方法的流程示意图,包括:Referring to FIG. 2, FIG. 2 is a schematic flowchart of another data forwarding method in an SDN according to an embodiment of the present invention, including:
步骤200:第一交换设备根据接收到的数据向控制设备请求转发规则;Step 200: The first switching device requests a forwarding rule from the control device according to the received data.
步骤202:所述第一交换设备接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给与所述第一交换设备直连的第二交换设备,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;Step 202: The first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information to be directly connected to the first switching device according to the first forwarding rule. The second switching device, the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of switching devices that implement the data forwarding on a first path that forwards the data;
步骤204:所述第二交换设备接收所述第一交换设备发送的所述数据,所述第二交换设备根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,所述第二交换设备能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。Step 204: The second switching device receives the data sent by the first switching device, and the second switching device sends the data to the second switching device according to the information about the first path and the second forwarding rule. The directly connected switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and The second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
图2所示方法中的第一交换设备可以是图3所示实施例中的虚拟交换机1,第二交换设备可以是图3所示实施例中的接入交换机1,第三交换设备可以是图3所示实施例中的汇聚交换机1,具体的实现也可以参考图3所示的实现方式。The first switching device in the method shown in Figure 2 may be the virtual switch 1 in the embodiment shown in Figure 3, the second switching device may be the access switch 1 in the embodiment shown in Figure 3, and the third switching device may be For the specific implementation of the aggregation switch 1 in the embodiment shown in FIG. 3, reference may be made to the implementation shown in FIG. 3.
上述方法通过第一交换设备接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给与所述第一交换设备直连的第二交换设备,所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述 第二交换设备在接收到所述数据之前接收到的,使得所述第二交换设备能够在接收到数据之前接收到对数据转发的转发规则,并根据接收到的数据和路径信息实现数据转发。第二交换设备不需要每次接收到数据后都获取一次转发规则,即不需要每次接收到数据后都获取一次流表进行数据转发,可以重复使用第二转发规则实现数据的转发,节省了第二交换设备进行数据转发时因保存和使用转发规则导致的资源消耗,提高了交换设备的利用率;尤其是对于数据中心骨干层的交换设备,由于转发数据量大,保存与适用大量的转发规则会带来巨大的芯片等资源消耗;通过本实施例提供的方案,能够节省交换设备的资源,使得数据中心网络中的交换设备不需要较高的性能就能实现大量的数据转发,提升了交换设备的竞争力。The method of the first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule, and sends the data directly to the first switching device. a second switching device, where the second switching device forwards the data according to the information of the first path and a second forwarding rule, where the second forwarding rule is The second switching device receives the data before receiving the data, so that the second switching device can receive a forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and path information. The second switching device does not need to obtain a forwarding rule once after receiving the data, that is, it does not need to obtain a flow table for data forwarding every time the data is received, and the second forwarding rule can be repeatedly used to implement data forwarding, thereby saving the data. When the second switching device performs data forwarding, the resource consumption caused by saving and using the forwarding rule improves the utilization of the switching device. Especially for the switching device of the data center backbone layer, due to the large amount of forwarding data, a large amount of forwarding is saved and applied. The rule can bring huge resources such as chips. The solution provided in this embodiment can save resources of the switching device, so that the switching device in the data center network can implement a large amount of data forwarding without requiring high performance. The competitiveness of switching equipment.
作为一种可选的实现方式,本发明实施例中,所述第二交换设备可以将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息发送给与所述第二交换设备直接相连的交换设备,所述第二路径的信息是实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。即,第二交换设备可以将第一路径的信息全部转发给与其直接相连的、所述第一路径上的实现数据转发的下一个交换设备(第三交换设备),只要所述第一路径上的交换设备接收到所述第一路径的信息后根据交换设备间实现数据转发的唯一标识能够识别出其要转发的下一个交换设备即可;或者所述第二交换设备接收到所述第一路径信息后,剥离所述路径信息中所述第二交换设备的信息,将所述第一路径上,第三交换设备到第n交换设备的路径信息发送给所述第三交换设备。As an optional implementation manner, in the embodiment of the present invention, the second switching device may send information about the first path to a switching device directly connected to the second switching device, or the second The switching device sends information about the second path of the forwarding path between the switching device directly connected to the second switching device on the first path to the nth switching device to the directly connected to the second switching device. The device, the information of the second path is a sequence of the switching devices on the path for implementing the data forwarding, and is represented by a unique identifier of the forwarding path between the switching devices, where n is an integer and is greater than or equal to 3. That is, the second switching device may forward all the information of the first path to the next switching device (the third switching device) that implements data forwarding on the first path directly connected thereto, as long as the first path is After receiving the information of the first path, the switching device can identify the next switching device to be forwarded according to the unique identifier that implements data forwarding between the switching devices; or the second switching device receives the first After the path information, the information of the second switching device in the path information is stripped, and the path information of the third switching device to the nth switching device on the first path is sent to the third switching device.
可选的,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规 则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。Optionally, the second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after establishing a topology relationship, and includes the second forwarding rule. The second forwarding rule is a forwarding rule that can repeatedly forward the data including the path information according to the path information.
本发明实施例中,所述方法还包括:In the embodiment of the present invention, the method further includes:
第i交换设备接收第i-1交换设备发送的第i-1路径信息和所述数据,所述第i-1路径信息是根据实现所述数据转发的第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;The i-th switching device receives the i-th path information and the data sent by the i-th switching device, where the i-th path information is based on the i-th switching device to the n-th switching device that implements the data forwarding a sequence sequentially represented by a unique identifier of a forwarding path between switching devices; wherein i is an integer and greater than or equal to 3;
所述第i交换设备根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;Transmitting, by the i-th switching device, the data and the i-th path information to the i+1th switching device according to the (i-1th) path information, where the i-th path information is according to the implementation of the data forwarding a sequence of the first i+1 switching device to the nth switching device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备。The i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path.
作为一种可选的实现方式,所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括:As an optional implementation manner, the sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
作为具体实现方式的一种,所述第i交换设备可以是图3所示实施例中的核心交换机,第i-1交换设备和第i+1交换设备分别是汇聚交换机1和汇聚交换机2。As a specific implementation, the ith switching device may be the core switch in the embodiment shown in FIG. 3, and the i-1th switching device and the i+1th switching device are the aggregation switch 1 and the aggregation switch 2, respectively.
上述方法实现所述数据转发路径上的交换设备,都能够根据在接收到需要转发的数据之前接收的转发规则以及数据转发的路径信息,实现数据 的转发,不需要每次在数据转发时都获取一次转发规则,节省了控制设备和交换设备的资源开销,提高了SDN中资源的利用率。The foregoing method implements the switching device on the data forwarding path, and can implement the data according to the forwarding rule received before receiving the data to be forwarded and the path information of the data forwarding. The forwarding does not need to obtain a forwarding rule every time data is forwarded, which saves the resource overhead of the control device and the switching device, and improves the utilization of resources in the SDN.
作为一种可选的实现方式,所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。As an optional implementation manner, the first path information, the second path information, and the ith path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device. The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
对于所述第一交换设备、所述第二交换设备和所述第三交换设备是同一组播组的成员的情况,本发明实施例的方法还包括:For the case that the first switching device, the second switching device, and the third switching device are members of the same multicast group, the method of the embodiment of the present invention further includes:
向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。该组播组中交换设备的实现方式,也可以参考图7所示的实施例中的实现方式来实现,即第三交换设备可以是图7中的汇聚点交换机,例如接入交换机1或汇聚交换机2等等;当所述第三交换设备是接入交换机1时,所述下一汇聚交换设备是汇聚交换机2。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths. The implementation of the switching device in the multicast group can also be implemented by referring to the implementation manner in the embodiment shown in FIG. 7, that is, the third switching device can be the aggregation point switch in FIG. 7, for example, the access switch 1 or the aggregation. The switch 2 and the like; when the third switching device is the access switch 1, the next aggregation switching device is the aggregation switch 2.
通过上述方法,当所述第一交换设备、所述第二交换设备和所述第三交换设备是同一组播组的成员,且所述第三交换设备通过两个以上路径向组播组的成员转发数据时,通过所述第三交换设备封装两条以上路径的信息给组播组成员转发数据时转发路径上的交换设备,能够避免在组播组数据转发中因大量下发转发规则带来的设备资源消耗,提升了SDN中设备资源利用率。 In the above method, when the first switching device, the second switching device, and the third switching device are members of the same multicast group, and the third switching device passes the two or more paths to the multicast group. When the member forwards the data, the third switching device encapsulates the information of the two or more paths to the switching device on the forwarding path when the multicast group member forwards the data, so as to avoid the large number of forwarding rules in the multicast group data forwarding. The consumption of device resources has increased the utilization of device resources in SDN.
对于需要实现服务链的场景,本发明实施例提供的方法也能够达到提升SDN中设备资源利用率的效果。本发明实施例中的服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务能力的设备的唯一标识组合而成的序列。作为一种可选的实现方式,上述方法进一步包括:所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第五交换设备向所述控制设备发送第五转发规则请求,并接收所述控制设备返回的到达第七交换设备的服务链路径,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;For the scenario in which the service chain needs to be implemented, the method provided by the embodiment of the present invention can also achieve the effect of improving device resource utilization in the SDN. The service chain in the embodiment of the present invention is a service sequence formed by a device having a specific service capability in the SDN, where a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service A sequence of unique identifiers for devices with specific service capabilities. As an optional implementation manner, the foregoing method further includes: the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, and the fifth switching device is to the control device Sending a fifth forwarding rule request, and receiving a service chain path that is returned by the control device to the seventh switching device, where the seventh switching device is a switching device directly connected to the third specific service capability device in the service chain, The second specific service device and the third specific service device are specific service devices directly adjacent to the service chain, and the service chain path is according to the second specific service device to the third specific device a sequence between the switching devices that implement the data forwarding on the path of the service device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
所述第五交换设备将所述数据以及所述服务链路径信息封装后转发给所述第七交换设备或所述服务链路径上的第六交换设备;The fifth switching device encapsulates the data and the service chain path information and forwards the data to the seventh switching device or the sixth switching device on the service chain path;
所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。以图8所示的服务链为例,本发明实施例中的第五交换设备可以接入交换机1,所述第七交换设备可以是接入交换机3,所述第六交换设备可以是核心交换机;在服务链场景下实现数据报文的转发可以参考图8所示的实施例。The sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the data including the service chain path information. Received previously; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path. Taking the service chain shown in FIG. 8 as an example, the fifth switching device in the embodiment of the present invention may access the switch 1, the seventh switching device may be the access switch 3, and the sixth switching device may be the core switch. For the forwarding of data packets in the service chain scenario, reference may be made to the embodiment shown in FIG. 8.
上述通过所述第五交换设备获取第五转发规则,实现在应用服务链的场景下,也能够提升SDN中网络设备的资源利用率,当数据转发需要通过不同的特定服务设备时,按照服务链中各特定服务设备的先后顺序实现数据的转发,在数据转发过程中,转发路径上的交换设备,例如上述实现方式 中的第六交换设备,能够依据在接收到数据之前接收到的转发规则对数据进行转发,不需要每次接收到数据时都获取转发规则,节省了控制设备的资源开销,在实现服务链服务的同时提高了SDN中设备的资源利用率。The fifth forwarding rule is obtained by the fifth switching device, so that the resource utilization of the network device in the SDN can be improved in the scenario of the application service chain. When the data forwarding needs to pass through different specific service devices, the service chain is used. Forwarding data in the order of the specific service devices, and forwarding devices on the forwarding path in the data forwarding process, for example, the foregoing implementation manner The sixth switching device can forward the data according to the forwarding rule received before receiving the data, and does not need to obtain the forwarding rule every time the data is received, thereby saving the resource overhead of the control device and implementing the service chain service. At the same time, the resource utilization of the devices in the SDN is improved.
图3为本发明实施例一种SDN数据转发方法在DC(Data Center,数据中心)实现的网络架构示意图。如图3所示,接入、汇聚、核心层属于骨干网络,分别对应接入、汇聚、核心交换机。边缘网络是虚拟层,由虚拟交换机构成,通过接入交换机与DC骨干网络相连。FIG. 3 is a schematic diagram of a network architecture implemented by a DC (Data Center) in an SDN data forwarding method according to an embodiment of the present invention. As shown in Figure 3, the access, aggregation, and core layers belong to the backbone network, which correspond to access, aggregation, and core switches. An edge network is a virtual layer and is composed of a virtual switch. It is connected to the DC backbone network through an access switch.
源、目的端虚拟主机分别挂载在虚拟交换机1、2上,二者跨DC骨干网络通信。源、目的主机之间存在一条数据通路:虚拟交换机1–接入交换机1-汇聚交换机1-核心交换机-汇聚交换机2-接入交换机2-虚拟交换机2。报文从源主机发出,经虚拟交换机1,接口2入,接口5出;经接入交换机1,接口7入,接口4出;经汇聚交换机1,接口6入,接口3出;经核心交换机,接口5入,接口9出;经汇聚交换机2,接口8入,接口7出;经接入交换机2,接口6入,接口8出;经虚拟交换机2,接口3入,接口1出;最终抵达目的主机,从而实现数据报文的传输。其中,源端或目的端可以是移动终端(包括但不限于笔记本、手机、平板、掌上电脑、POS机、MP3、导航仪)、固定终端(包括但不限于台式机、打印机、传真机、数投、数字电视)或无线接入终端等设备;虚拟交换机1、接入交换机1、汇聚交换机1、核心交换机、汇聚交换机2、接入交换机2和虚拟交换机2都是SDN中的交换设备。The source and destination virtual hosts are respectively mounted on the virtual switches 1, 2, and the two communicate with each other across the DC backbone network. There is a data path between the source and destination hosts: virtual switch 1 - access switch 1 - aggregation switch 1 - core switch - aggregation switch 2 - access switch 2 - virtual switch 2. The packet is sent from the source host, through virtual switch 1, interface 2, interface 5 out; access switch 1, interface 7 in, interface 4 out; through aggregation switch 1, interface 6 in, interface 3 out; Interface 5 is in, interface 9 is out; through aggregation switch 2, interface 8 is in, interface 7 is out; via access switch 2, interface 6 is in, interface 8 is out; via virtual switch 2, interface 3 is in, interface 1 is out; Arrived at the destination host to implement data packet transmission. The source end or the destination end may be a mobile terminal (including but not limited to a notebook, a mobile phone, a tablet, a palmtop computer, a POS machine, an MP3, a navigator), and a fixed terminal (including but not limited to a desktop computer, a printer, a fax machine, and a number A device such as a switch, a digital television, or a wireless access terminal; a virtual switch 1, an access switch 1, an aggregation switch 1, a core switch, an aggregation switch 2, an access switch 2, and a virtual switch 2 are all switching devices in the SDN.
图4为本发明实施例SDN中实现数据转发的方法具体实现的流程示意图。如图4所示:FIG. 4 is a schematic flowchart of a specific implementation of a method for implementing data forwarding in an SDN according to an embodiment of the present invention. As shown in Figure 4:
步骤701:SDN控制器收集DC网络拓扑信息;Step 701: The SDN controller collects DC network topology information.
在具体实现时,SDN控制器会监听各交换机的状态,根据各交换机的连接关系收集DC网络的拓扑信息。During specific implementation, the SDN controller monitors the status of each switch and collects topology information of the DC network according to the connection relationship of each switch.
SDN控制器为交换机分配交换机之间转发路径的唯一标识。这里以分 配交换机的唯一标识(即唯一的网络标识)为例进行说明。SDN控制器为交换机分配的标识具备唯一性,用以区别DC网络内其它交换机或能够拥有网络标识的其它类型的对象。该唯一标识可以单独也可以与其它网络标识组合使用,用于标定报文转发路径。The SDN controller assigns a unique identifier to the switch for the forwarding path between switches. Here is divided into points The unique identifier of the distribution switch (that is, the unique network identifier) is taken as an example. The SDN controller assigns a unique identifier to the switch to distinguish other switches in the DC network or other types of objects that can have the network identifier. The unique identifier can be used alone or in combination with other network identifiers to calibrate the packet forwarding path.
例如,SDN控制器为DC网络内各转发设备分配的网络标识在表1所示的表格中。虚拟交换机1获得网络标识1,接入交换机1获得网络标识11,汇聚交换机1获得网络标识21,核心交换机获得网络标识3,汇聚交换机2获得网络标识22,接入交换机2获得网络标识12,虚拟交换机2获得网络标识2。For example, the network identifier assigned by the SDN controller to each forwarding device within the DC network is in the table shown in Table 1. The virtual switch 1 obtains the network identifier 1, the access switch 1 obtains the network identifier 11, the aggregation switch 1 obtains the network identifier 21, the core switch obtains the network identifier 3, the aggregation switch 2 obtains the network identifier 22, and the access switch 2 obtains the network identifier 12, which is virtualized. Switch 2 obtains network identification 2.
转发设备Forwarding device 网络标识Network identification
虚拟交换机1Virtual switch 1 11
接入交换机1Access switch 1 1111
汇聚交换机1Aggregation switch 1 21twenty one
核心交换机1Core switch 1 33
汇聚交换机2 Aggregation switch 2 22twenty two
接入交换机2 Access switch 2 1212
虚拟交换机2 Virtual switch 2 22
表1Table 1
在具体实现中,如果出现交换机故障与SDN控制器断连,或接口状态变化,或有新的交换机接入网络与SDN控制器建立连接时,都会触发网络拓扑的更新。例如,在交换机因故障等原因与SDN控制器断连时,SDN控制器将回收已经分配的断连的交换机的唯一标识,回收的网络标识可以再分配给其它交换机,或能够拥有网络标识的其它类型的对象。如果交换接的接口出现故障,虽然网络拓扑会出现更新,SDN控制器也可以保留交换机的唯一标识。上述是以交换机的网络标识作为唯一标识为例进行说明的,对于以链路标识作为转发路径的唯一标识时,当交换机接口故障导致网络拓扑发生变化时,相应的链路标识应当相应进行调整。In a specific implementation, if a switch failure is disconnected from the SDN controller, or the interface status changes, or a new switch accesses the network to establish a connection with the SDN controller, the network topology update is triggered. For example, when the switch is disconnected from the SDN controller due to a fault or the like, the SDN controller will reclaim the unique identifier of the disconnected switch that has been allocated, and the recovered network identifier can be reassigned to other switches, or other network capable of possessing the network identifier. Type of object. If the interface of the switch is faulty, the SDN controller can retain the unique identifier of the switch even though the network topology is updated. The above description is based on the example that the network identifier of the switch is used as the unique identifier. When the link identifier is used as the unique identifier of the forwarding path, when the switch interface fails and the network topology changes, the corresponding link identifier should be adjusted accordingly.
在有新的交换机接入DC网络时,SDN控制器标识交换机后,会对交换 机PacketOut LLDP报文,交换机向其所有出接口广播LLDP报文,相邻交换机在收到LLDP报文后,由于没有匹配的流表项,将产生PacketIn事件,通知SDN控制器;SDN控制器分析LLDP报文特征,确定交换机的网络拓扑,即相邻交换机及其出接口,并获取SDN网络在拓扑关系变化后的拓扑信息。以图3所示的网络架构为例,SDN控制器在最后一次拓扑发生变化后获取的DC网络拓扑如表2所示:When a new switch accesses the DC network, the SDN controller will exchange after identifying the switch. Packet Out LLDP packets, the switch broadcasts LLDP packets to all outbound interfaces. After receiving the LLDP packets, the neighboring switch will generate a PacketIn event to notify the SDN controller because there is no matching flow entry. The SDN controller analyzes LLDP packet characteristics determine the network topology of the switch, that is, the neighboring switch and its outbound interface, and obtain the topology information of the SDN network after the topology relationship changes. Take the network architecture shown in Figure 3 as an example. The DC network topology acquired by the SDN controller after the last topology change is shown in Table 2:
Figure PCTCN2014094144-appb-000001
Figure PCTCN2014094144-appb-000001
表2Table 2
其中,虚拟交换机1在出接口5邻接接入交换机1,接入交换机1在出接口7、4分别邻接虚拟交换机1、汇聚交换机1,汇聚交换机1在出接口6、3分别邻接接入交换机1、核心交换机,核心交换机在出接口5、9分别邻接汇聚交换机1、2,汇聚交换机2在出接口8、7分别邻接核心交换机、接入交换机2,接入交换机2在出接口6、8分别邻接汇聚交换机2、虚拟交换机2,虚拟交换机2在出接口3邻接接入交换机2。基于图3所示的具体实现方式,虚拟交换机1可以是本发明实施例中的第一交换设备,接入交换机1可以是本发明实施例中的第二交换设备。 The virtual switch 1 is adjacent to the access switch 1 on the outbound interface 5, and the access switch 1 is adjacent to the virtual switch 1 and the aggregation switch 1 on the outbound interfaces 7, 4 respectively, and the aggregation switch 1 is adjacent to the access switch 1 on the outbound interfaces 6 and 3, respectively. The core switch, the core switch on the outbound interfaces 5, 9 respectively adjacent to the aggregation switch 1, 2, the aggregation switch 2 on the outbound interface 8, 7 adjacent to the core switch, the access switch 2, the access switch 2 in the outbound interface 6, 8 respectively Adjacent to the aggregation switch 2 and the virtual switch 2, the virtual switch 2 is adjacent to the access switch 2 at the outbound interface 3. Based on the specific implementation shown in FIG. 3, the virtual switch 1 may be the first switching device in the embodiment of the present invention, and the access switch 1 may be the second switching device in the embodiment of the present invention.
步骤702:SDN控制器根据获取的DC网络拓扑信息,刷新骨干交换机主动流表项;Step 702: The SDN controller refreshes the active flow entry of the backbone switch according to the obtained DC network topology information.
主动流表项是SDN控制器依据自身收集的信息主动定制并下发的业务无关流表项。接收到主动流表项的交换机可以直接按照主动流表项转发数据或业务报文。本发明实施例中,数据的转发规则是通过流表下发的,控制器通过下发流表给交换机以实现转发规则的下发。主动流表项,就是控制器在未收到交换机请求下发转发规则时,主动给交换机下发的转发规则,即通过主动流表项下发给交换机。以交换机的唯一标识来标定SDN网络中交换设备之间的转发路径为例,SDN控制器下发的主动流表项符合以下特征:The active flow entry is a service-independent flow entry that the SDN controller actively customizes and delivers according to the information collected by the SDN controller. The switch that receives the active flow entry can directly forward data or service packets according to the active flow entry. In the embodiment of the present invention, the data forwarding rule is delivered by using the flow table, and the controller sends the forwarding rule to the switch by sending the flow table to implement the delivery of the forwarding rule. An active flow entry is a forwarding rule that is sent to the switch when the controller sends a forwarding rule to the switch. Taking the forwarding path between the switching devices in the SDN network as an example, the active flow entry delivered by the SDN controller meets the following characteristics:
匹配条件:相邻交换机标识;Matching condition: adjacent switch identifier;
执行动作:对报文剥离相邻交换机标识,将报文发送至相邻交换机出接口。The action is performed: the neighboring switch identifier is stripped from the packet, and the packet is sent to the outbound interface of the adjacent switch.
表3为图3所示网络架构图中主动流表项的一种呈现方式:Table 3 shows a representation of active flow entries in the network architecture diagram shown in Figure 3:
Figure PCTCN2014094144-appb-000002
Figure PCTCN2014094144-appb-000002
表3table 3
如表3所示,控制器对接入交换机1下发到达相邻虚拟交换机1、汇聚交换机1的主动流表项,对汇聚交换机1下发到达相邻接入交换机1、核心交换机的主动流表项,对核心交换机下发到达相邻汇聚交换机1、2的主动流表 项,对汇聚交换机2下发到达相邻核心交换机、接入交换机2的主动流表项,对接入交换机2下发到达相邻汇聚交换机2、虚拟交换机2的主动流表项。As shown in Table 3, the controller sends the active flow entry to the access switch 1 to the adjacent virtual switch 1 and the aggregation switch 1, and the aggregation switch 1 delivers the active flow to the adjacent access switch 1 and the core switch. An active flow table that is delivered to the core switch to reach the adjacent aggregation switches 1 and 2. The active switch entry to the adjacent core switch and the access switch 2 is delivered to the aggregation switch 2, and the active flow entry to the adjacent aggregation switch 2 and the virtual switch 2 is delivered to the access switch 2.
在具体实现中,当DC网络拓扑发生变化更新后,触发主动流表项的刷新,使得主动流表项能够随网络的变化及时调整,满足数据或业务报文的及时转发。如上所述,网络拓扑的变化会会因为交换机异常、交换机接口异常、新加入交换机等触发,具体的实现流程可通过图5所示的流程示意图实现,图5为本发明实施例在数据中心网络拓扑发生变化时处理方法流程图,这里不再赘述。In a specific implementation, after the DC network topology changes and is updated, the active flow entry is refreshed, so that the active flow entry can be adjusted in time according to the network change, and the data or service packet can be forwarded in time. As described above, the network topology change may be triggered by a switch abnormality, a switch interface abnormality, and a newly added switch. The specific implementation process may be implemented by using the flow diagram shown in FIG. 5, and FIG. 5 is a data center network according to an embodiment of the present invention. The flow chart of the processing method when the topology changes, will not be described here.
步骤703:源端发送报文至与其直连的交换机,由于没有匹配的流表项,与源端直连的交换机向SDN控制器上报PacketIn事件;Step 703: The source sends a packet to the directly connected switch. The switch directly connected to the source end reports the PacketIn event to the SDN controller because there is no matching flow entry.
步骤704:SDN控制器分析报文特征,依据当前网络拓扑,选择转发路径;Step 704: The SDN controller analyzes the packet characteristics, and selects a forwarding path according to the current network topology.
SDN控制器可以从多条转发路径中选择最优的转发路径,例如,可以选择最短的或流量权重最轻的转发路径。The SDN controller can select an optimal forwarding path from among multiple forwarding paths. For example, the shortest or the lightest forwarding path can be selected.
步骤705:SDN控制器对与源端直连的交换机下发被动流表项。被动流表项是在转发设备(即交换机)对收到的报文无法处理,转SDN控制器决策,被动定制并下发的业务相关流表项;也就是交换设备在接收到交换机请求下发转发规则时,根据交换机的请求下发给交换机的转发规则,该转发规则通过被动流表项下发给交换机。源端的被动流表项符合以下特征:Step 705: The SDN controller sends a passive flow entry to the switch directly connected to the source end. The passive flow entry is a service-related flow entry that cannot be processed by the forwarding device (that is, the switch), and is forwarded to the SDN controller, and is passively customized and delivered; that is, the switching device sends the request to the switch. When a rule is forwarded, the forwarding rule is sent to the switch according to the request of the switch. The forwarding rule is sent to the switch through the passive flow entry. The passive flow entry at the source meets the following characteristics:
匹配条件:原始报文特征;Matching condition: original message characteristics;
执行动作:对原始报文封装到达与目的端直连的交换机的转发路径,将封装好的报文发送至下一跳出接口。该被动流表项可以如表4所示:The action is performed: the original packet is encapsulated to the forwarding path of the switch directly connected to the destination end, and the encapsulated packet is sent to the next hop-out interface. The passive flow entry can be as shown in Table 4:
Figure PCTCN2014094144-appb-000003
Figure PCTCN2014094144-appb-000003
表4Table 4
在表4中,被动流表项指示虚拟交换机1匹配原始报文特征,对原始报文封装到达虚拟交换机2的转发路径,将封装好的报文发送至接口5;指示虚拟交换机2匹配原始报文特征,将原始报文发送到接口1。In Table 4, the passive flow entry indicates that the virtual switch 1 matches the original packet feature, and the original packet is encapsulated to the forwarding path of the virtual switch 2, and the encapsulated packet is sent to the interface 5; the virtual switch 2 is instructed to match the original report. The text feature sends the original message to interface 1.
表4中封装到达虚拟交换机2的转发路径,即报文从源端到目的端途经虚拟交换机1、接入交换机1、汇聚交换机1、核心交换机、汇聚交换机2、接入交换机2、虚拟交换机2,分别对应网络标识1、11、21、3、22、12、2。使用交换机的唯一标识来标定交换机之间的转发路径,这样交换机之间的转发路径就是唯一的,通过一组标有交换机标识的序列能够唯一标识一条转发路径。报文从源端发往目的端的转发路径可以表示为:1–11–21–3–22–12–2。图6为本实施例中转发路径的可视化呈现图。Table 4 shows the forwarding path of the encapsulation to the virtual switch 2, that is, the packet passes from the source end to the destination end through the virtual switch 1, the access switch 1, the aggregation switch 1, the core switch, the aggregation switch 2, the access switch 2, and the virtual switch 2 Corresponding to the network identifiers 1, 11, 21, 3, 22, 12, 2, respectively. The unique identifier of the switch is used to calibrate the forwarding path between the switches, so that the forwarding path between the switches is unique, and a forwarding path can be uniquely identified by a sequence of labels labeled with the switch. The forwarding path from the source to the destination can be expressed as: 1–11–21–3–22–12–2. FIG. 6 is a visual representation of a forwarding path in the embodiment.
SDN控制器可以通过路标封转的方式,将转发路径嵌套在MPLS(Multiple Protocol Label Switching,多协议标签交换)中下发给与源端直连的交换机。The SDN controller can be used to route the forwarding path to the switch directly connected to the source end by MPLS (Multiple Protocol Label Switching).
MPLS标签介于报文二、三层头之间,支持多层嵌套。一个MPLS标签占用32比特,如表5所示:The MPLS label is between the second and third layers of the packet and supports multiple levels of nesting. An MPLS label occupies 32 bits, as shown in Table 5:
Figure PCTCN2014094144-appb-000004
Figure PCTCN2014094144-appb-000004
表5table 5
其中Label字段占20比特,用于标记路标,指示报文的下一跳转发设备;Exp字段占用3比特,用于标记QoS,实现DC大二层网络差分服务;S字段占用1比特,是栈底标记,标识最后一跳;TTL字段占用8比特,用于标记标签生命周期,因为标签仅标识报文的下一跳,所以恒为1。The Label field occupies 20 bits and is used to mark the road sign to indicate the next hop forwarding device of the packet. The Exp field occupies 3 bits and is used to mark the QoS to implement DC large Layer 2 network differential service. The S field occupies 1 bit. The bottom of the stack marks the last hop; the TTL field occupies 8 bits and is used to mark the label lifetime. Since the label only identifies the next hop of the message, it is always 1.
一个MPLS头携带一个路标,多个MPLS头有序嵌套,携带一组路标, 进而组成一条转发路径。DC网络与源端直连的交换机按照SDN控制器选择的转发路径,将路标由目的端至源端依次压入报文,最后一跳路标压入栈底,下一跳路标压入栈顶。如表6所示:An MPLS header carries a road sign, and multiple MPLS headers are nested in an orderly manner, carrying a set of road signs. Then form a forwarding path. The switch directly connected to the DC network and the source end presses the forwarding path selected by the SDN controller, and the road sign is pressed into the packet from the destination end to the source end. The last hop road sign is pushed into the bottom of the stack, and the next hop road sign is pushed into the top of the stack. As shown in Table 6:
Figure PCTCN2014094144-appb-000005
Figure PCTCN2014094144-appb-000005
表6Table 6
表6是封装了转发路径的报文的示意图。虚拟交换机2是报文的最后一跳转发设备,其路标被第一个压入报文,位于MPLS嵌套标签的栈底。由于转发路径的封装操作是在虚拟交换机1上执行的,虚拟交换机1清楚报文的下一跳转发设备是接入交换机1,因此转发路径第一跳是接入交换机1的下一跳转发设备汇聚交换机1,其路标被压在栈顶。其它转发设备路标由栈底至栈顶依次是接入交换机2路标、汇聚交换机2路标、核心交换机路标。Table 6 is a schematic diagram of a packet encapsulating a forwarding path. The virtual switch 2 is the last hop forwarding device of the packet, and its landmark is pushed into the packet at the bottom of the stack of the MPLS nested label. Since the encapsulation operation of the forwarding path is performed on the virtual switch 1, the virtual switch 1 knows that the next hop forwarding device of the packet is the access switch 1, so the first hop of the forwarding path is the next hop of the access switch 1. The transmitting device aggregates switch 1, and its roadmap is pressed on the top of the stack. The other forwarding device roadmaps are from the bottom of the stack to the top of the stack, which are the access switch 2 road sign, the aggregation switch 2 road sign, and the core switch road sign.
步骤706:SDN控制器对与目的端直连的交换机下发被动流表项。Step 706: The SDN controller sends a passive flow entry to the switch directly connected to the destination end.
目的端的被动流表项符合以下特征:The passive flow entry at the destination end meets the following characteristics:
匹配条件:原始报文特征;Matching condition: original message characteristics;
执行动作:将原始报文发送至目的端出接口。Execution action: Send the original packet to the destination outbound interface.
SDN控制器对与目的端直连的交换机下发被动流表项可以如表7所示: The SDN controller sends passive flow entries to the switch directly connected to the destination. Table 7 shows the following:
转发设备Forwarding device 被动流表项Passive flow entry
虚拟交换机2 Virtual switch 2 匹配条件:原始报文特征;执行动作:发送至接口1Matching condition: original message feature; execution action: sent to interface 1
表7Table 7
DC网络的骨干交换机接收到SDN控制器下发的主动流表项,边缘交换机接收到SDN控制器下发的被动流表项后,即能够实现对报文的转发。由于骨干交换机接收到的是主动流表项,不需要在每次转发数据时都给骨干交换机下发流表,即主动流表项在后续的数据转发中可以被重复使用,降低了对骨干交换机下发流表的数量,相应降低了SDN控制器的设备资源占用率,SDN控制器与骨干交换机之间的网络带宽也会相应得到节省,同时,骨干交换机不需要在每次数据转发时都接收流表项,提高了骨干交换机的资源利用率。The backbone switch of the DC network receives the active flow entry sent by the SDN controller. After receiving the passive flow entry sent by the SDN controller, the edge switch can forward the packet. Since the backbone switch receives the active flow entry, it does not need to send the flow table to the backbone switch every time the data is forwarded. That is, the active flow entry can be reused in subsequent data forwarding, reducing the backbone switch. The number of the flow table is reduced, which reduces the device resource usage of the SDN controller. The network bandwidth between the SDN controller and the backbone switch is also saved. At the same time, the backbone switch does not need to receive every data forwarding. The flow entry improves the resource utilization of the backbone switch.
本发明实施例还提供了对于组播组实现数据或业务报文转发时的一种实现方式。组播组,是多个成员组成一个组播组,一个成员在组播组内发送的数据或业务报文,只有组播组内的成员能够接收到。组播组的成员,可以是移动终端(包括但不限于笔记本、手机、平板、掌上电脑、POS机、MP3、导航仪)、固定终端(包括但不限于台式机、打印机、传真机、数投、数字电视)或无线接入终端等设备。The embodiment of the invention also provides an implementation manner for implementing data or service packet forwarding for a multicast group. A multicast group is a group of multiple members that form a multicast group. The data or service packets sent by a member in a multicast group can be received only by members in the multicast group. The members of the multicast group can be mobile terminals (including but not limited to notebooks, mobile phones, tablets, PDAs, POS machines, MP3s, navigators), fixed terminals (including but not limited to desktops, printers, fax machines, and digital devices). , digital TV) or wireless access terminals and other equipment.
以组播组有4个成员,分别连接不同的交换机,通过DC网络的骨干交换机实现数据或业务报文的转发为例,说明本发明实施例的数据报文转发方法在组播组中的实现方式。如图7所示,为本发明实施例关于组播组实现数据或业务报文转发的实现方式网络架构图。The multicast group has four members, which are connected to different switches, and the data is forwarded through the backbone switch of the DC network. The data packet forwarding method in the multicast group is implemented in the multicast group. the way. As shown in FIG. 7 , it is a network architecture diagram of an implementation manner of implementing data or service packet forwarding by a multicast group according to an embodiment of the present invention.
图7中,组播组拥有4个成员:成员1、2、3、4,分别通过虚拟交换机1、接入交换机1、接入交换机3、虚拟交换机2接入DC网络。组播组成员跨DC骨干网络收发组播报文。 In Figure 7, the multicast group has four members: members 1, 2, 3, and 4, which are respectively connected to the DC network through the virtual switch 1, the access switch 1, the access switch 3, and the virtual switch 2. A multicast group member sends and receives multicast packets across the DC backbone network.
组播组成员1向其它成员发送组播报文:发往成员2的组播报文,经虚拟交换机1,接口2入,接口5出,经接入交换机1,接口7入,接口1出;发往成员3的组播报文,经虚拟交换机1,接口2入,接口5出,经接入交换机1,接口7入,接口4出,经汇聚交换机1,接口6入,接口3出,经核心交换机,接口5入,接口9出,经汇聚交换机2,接口8入,接口4出,经接入交换机3,接口5入,接口8出;发往成员4的组播报文,经虚拟交换机1,接口2入,接口5出,经接入交换机1,接口7入,接口4出,经汇聚交换机1,接口6入,接口3出,经核心交换机,接口5入,接口9出,经汇聚交换机2,接口8入,接口7出,经接入交换机2,接口6入,接口8出,经虚拟交换机2,接口3入,接口1出。Multicast group member 1 sends multicast packets to other members: multicast packets sent to member 2, through virtual switch 1, interface 2, interface 5, access switch 1, interface 7 in, interface 1 out The multicast packet sent to member 3 passes through virtual switch 1, interface 2, interface 5, access switch 1, interface 7 in, interface 4 out, through aggregation switch 1, interface 6 in, interface 3 out Through the core switch, interface 5 is in, interface 9 is out, through aggregation switch 2, interface 8 is in, interface 4 is out, through access switch 3, interface 5 is in, interface 8 is out; multicast message is sent to member 4, Via virtual switch 1, interface 2 enters, interface 5 exits, accesses switch 1, interface 7 enters, interface 4 exits, through aggregation switch 1, interface 6 enters, interface 3 exits, through core switch, interface 5 enters, interface 9 Out, through the aggregation switch 2, the interface 8 is in, the interface 7 is out, through the access switch 2, the interface 6 is entered, the interface 8 is out, through the virtual switch 2, the interface 3 is entered, and the interface 1 is output.
组播组成员2向其它成员发送组播报文:发往成员1的组播报文,经接入交换机1,接口1入,接口7出,经虚拟交换机1,接口5入,接口2出;发往成员3的组播报文,经接入交换机1,接口1入,接口4出,经汇聚交换机1,接口6入,接口3出,经核心交换机,接口5入,接口9出,经汇聚交换机2,接口8入,接口4出,经接入交换机3,接口5入,接口8出;发往成员4的组播报文,经接入交换机1,接口1入,接口4出,经汇聚交换机1,接口6入,接口3出,经核心交换机,接口5入,接口9出,经汇聚交换机2,接口8入,接口7出,经接入交换机2,接口6入,接口8出,经虚拟交换机2,接口3入,接口1出。 Multicast group member 2 sends multicast packets to other members: the multicast packets sent to member 1 are connected to switch 1, interface 1 is incoming, interface 7 is out, virtual switch 1, interface 5 is entered, and interface 2 is output. The multicast packet sent to member 3 passes through access switch 1, interface 1 is in, interface 4 is out, through aggregation switch 1, interface 6 is in, interface 3 is out, through core switch, interface 5 is in, interface 9 is out. After the aggregation switch 2, the interface 8 is in, the interface 4 is out, the access switch 3 is connected to the interface 5, and the interface 8 is output; the multicast packet sent to the member 4 is accessed through the switch 1, the interface 1 is entered, and the interface 4 is output. Through the aggregation switch 1, the interface 6 enters, the interface 3 is out, through the core switch, the interface 5 enters, the interface 9 is out, the aggregation switch 2, the interface 8 enters, the interface 7 is out, the access switch 2, the interface 6 enters, the interface 8 out, through virtual switch 2, interface 3 into, interface 1 out.
组播组成员3向其它成员发送组播报文:发往成员1的组播报文,经接入交换机3,接口8入,接口5出,经汇聚交换机2,接口4入,接口8出,经核心交换机,接口9入,接口5出,经汇聚交换机1,接口3入,接口6出,经接入交换机1,接口4入,接口7出,经虚拟交换机1,接口5入,接口2出;发往成员2的组播报文,经接入交换机3,接口8入,接口5出,经汇聚交换机2,接口4入,接口8出,经核心交换机,接口9入,接口5出,经汇聚交换机1,接口3入,接口6出,经接入交换机1,接口4入,接口1出;发往成员4的组 播报文,经接入交换机3,接口8入,接口5出,经汇聚交换机2,接口4入,接口7出,经接入交换机2,接口6入,接口8出,经虚拟交换机2,接口3入,接口1出。 Multicast group member 3 sends multicast packets to other members: the multicast packets sent to member 1 are accessed through access switch 3, interface 8 is entered, interface 5 is output, and through aggregation switch 2, interface 4 is entered, and interface 8 is output. Through the core switch, interface 9 is in, interface 5 is out, through aggregation switch 1, interface 3 is in, interface 6 is out, accessing switch 1, interface 4 is in, interface 7 is out, via virtual switch 1, interface is 5, interface 2 out; the multicast packet sent to member 2, through access switch 3, interface 8 into, interface 5 out, through aggregation switch 2, interface 4 into, interface 8 out, through the core switch, interface 9 into, interface 5 Out, through the aggregation switch 1, the interface 3 enters, the interface 6 exits, accesses the switch 1, the interface 4 enters, the interface 1 exits; the group sent to the member 4 Broadcast message, access switch 3, interface 8 in, interface 5 out, through aggregation switch 2, interface 4 in, interface 7 out, access switch 2, interface 6 in, interface 8 out, via virtual switch 2, interface 3 in, interface 1 out.
组播组成员4向其它成员发送组播报文:发往成员1的组播报文,经虚拟交换机2,接口1入,接口3出,经接入交换机2,接口8入,接口6出,经汇聚交换机2,接口7入,接口8出,经核心交换机,接口9入,接口5出,经汇聚交换机1,接口3入,接口6出,经接入交换机1,接口4入,接口7出,经虚拟交换机1,接口5入,接口2出;发往成员2的组播报文,经虚拟交换机2,接口1入,接口3出,经接入交换机2,接口8入,接口6出,经汇聚交换机2,接口7入,接口8出,经核心交换机,接口9入,接口5出,经汇聚交换机1,接口3入,接口6出,经接入交换机1,接口4入,接口1出;发往成员3的组播报文,经虚拟交换机2,接口1入,接口3出,经接入交换机2,接口8入,接口6出,经汇聚交换机2,接口7入,接口4出,经接入交换机3,接口5入,接口8出。The multicast group member 4 sends multicast packets to other members: the multicast packets sent to member 1 are transmitted through virtual switch 2, interface 1 is entered, interface 3 is output, and access switch 2 is connected to interface 8 and interface 6 is output. Through aggregation switch 2, interface 7 is in, interface 8 is out, through core switch, interface 9 is in, interface 5 is out, through aggregation switch 1, interface 3 is in, interface is out, via access switch 1, interface is 4, interface 7 out, through virtual switch 1, interface 5 in, interface 2 out; multicast packets sent to member 2, through virtual switch 2, interface 1 into, interface 3 out, access switch 2, interface 8 into, interface 6 out, through the aggregation switch 2, interface 7 into, interface 8 out, through the core switch, interface 9 into, interface 5 out, through the aggregation switch 1, interface 3 into, interface 6 out, through the access switch 1, interface 4 into Interface 1 is output; multicast packets are sent to member 3, through virtual switch 2, interface 1 is in, interface 3 is out, access switch 2, interface 8 is in, interface 6 is out, through aggregation switch 2, interface 7 is entered. The interface 4 is out, through the access switch 3, the interface 5 is entered, and the interface 8 is output.
实现组播组内成员间数据或业务报文的转发,在上述图4所示实施例下发主动流表项和被动流表项的基础上,还包括:The forwarding of the data or the service packet between the members in the multicast group is performed on the basis of the active flow entry and the passive flow entry in the embodiment shown in FIG. 4, and further includes:
A,SDN控制器收集、更新组播组信息;A, the SDN controller collects and updates multicast group information;
SDN控制器收集组播组信息包含下述三种情况:The SDN controller collects multicast group information in the following three cases:
a,当有新的终端加入组播组时,触发组播组信息更新的过程如下:a. When a new terminal joins a multicast group, the process of triggering the update of the multicast group information is as follows:
新的组播组成员向组播路由器发送加入组播组请求;The new multicast group member sends a multicast group request to the multicast router.
接收到加入组播组请求的交换机由于没有SDN控制器下发的流表项,向SDN控制器上报PacketIn事件;The switch receiving the multicast group request reports the PacketIn event to the SDN controller because there is no flow entry sent by the SDN controller.
SDN控制器模拟组播路由器,分析主机加入组播组请求,更新指定组播组信息;The SDN controller simulates the multicast router, analyzes the host to join the multicast group request, and updates the specified multicast group information;
SDN控制器向所述上报PacketIn事件的交换机发送加入组播组应答; The SDN controller sends a join multicast group response to the switch that reports the PacketIn event;
所述上报PacketIn事件的交换机发送加入组播组应答到所述加入组播组的成员接口。The switch that reports the PacketIn event sends a join multicast group response to the member interface of the join multicast group.
b,当组播组成员退出组播组时,触发组播组信息更新的过程如下:b. When a multicast group member exits a multicast group, the process of triggering multicast group information update is as follows:
将退出的组播组成员向主播路由器发送退出组播组请求;Sending the exiting multicast group member to the anchor router to send out the multicast group request;
与该退出的组播组成员相连的交换机由于没有匹配的流表项,向SDN控制器上报PacketIn事件;The switch connected to the queried multicast group member reports the PacketIn event to the SDN controller because there is no matching flow entry.
SDN控制器分析该PacketIn事件,分析组播组成员退出组播组请求,更新指定组播组信息;The SDN controller analyzes the PacketIn event, analyzes the multicast group member to exit the multicast group request, and updates the specified multicast group information;
SDN控制器向所述与退出组播组成员相连的交换机发送退出组播组应答;The SDN controller sends an exit multicast group response to the switch connected to the member that exits the multicast group;
所述与退出组播组成员相连的交换机发送退出组播组应答到所述退出组播组的成员接口。The switch connected to the member that exits the multicast group sends an exit multicast group response to the member interface of the exiting multicast group.
c,当SDN控制器查询组播组时,触发组播组信息更新过程如下:c. When the SDN controller queries the multicast group, the process of triggering the multicast group information update is as follows:
SDN控制器定时向与组播组成员直连交换机PacketOut组播组查询请求;The SDN controller periodically queries the multicast group member to directly exchange the PacketOut multicast group query request;
交换机发送组播组查询请求到组播组成员所在接口;The switch sends a multicast group query request to the interface where the multicast group member resides.
组播组成员返回组播组查询应答;The multicast group member returns a multicast group query response.
交换机由于没有匹配的流表项,向SDN控制器上报PacketIn事件;The switch reports the PacketIn event to the SDN controller because there is no matching flow entry.
SDN控制器分析组播组查询结果,更新组播组信息。The SDN controller analyzes the multicast group query result and updates the multicast group information.
d,SDN控制器创建组播组标识d, the SDN controller creates a multicast group identifier.
本发明实施例的组播组标识具备唯一性,用以区别DC网络内其它组播组,或能够拥有网络标识的其它类型的对象,可以单独,也可以与其它网络标识组合,标定报文转发路径。The multicast group identifier of the embodiment of the present invention is unique, and can be used to distinguish other multicast groups in the DC network, or other types of objects that can have the network identifier, and can be combined with other network identifiers to calibrate the packet forwarding. path.
B,组播组主动流表项的下发B. The multicast group active flow entry is delivered.
组播组中,骨干层交换机中,会包含组播组汇集点所在的交换机,组播组汇集点所在的交换机,是通过两条以上路径向所述组播组内成员转发 数据的交换机,是组播报文近接收端的复制分发点。组播组汇集点所在的交换机,是一个组播组成员到达其它组播组成员的转发路径存在交集,最接近组播组成员的交点即组播组汇集点。In a multicast group, the backbone switch includes the switch where the multicast group aggregation point is located. The switch where the multicast group aggregation point is located is forwarded to the members in the multicast group through two or more paths. The data exchange is the replication distribution point of the multicast packet near the receiving end. The switch where the multicast group aggregation point is located is the intersection of the forwarding path of a multicast group member to other multicast group members. The closest point to the multicast group member is the multicast group aggregation point.
以图7所示网络架构为例,接入交换机1和汇聚交换机2是汇集点所在的交换机,可以是上述方法实施例中的第三交换设备。通过汇集点所在的交换机进行数据报文的复制转发,能够进一步节省DC网络带宽。组播组汇集点所在的交换机随组播组成员变化而变化。Taking the network architecture shown in FIG. 7 as an example, the access switch 1 and the aggregation switch 2 are the switches in which the aggregation point is located, and may be the third switching device in the foregoing method embodiment. The data packet can be copied and forwarded by the switch where the aggregation point is located, which can further save DC network bandwidth. The switch where the multicast group aggregation point is located varies with the multicast group member.
当组播组成员发生变化时,会触发汇聚交换机的更新,例如增加或删除组播组汇集点所在的交换机的信息等。When the multicast group member changes, it triggers the update of the aggregation switch, for example, adding or deleting the information of the switch where the multicast group aggregation point is located.
SDN控制器更新组播组汇集点信息。组播组汇集点信息包括组播组成员以及对应的组播报文转入、转出接口。其中,组播报文从组播源发往组播组汇集点所在交换机,组播报文在组播组汇集点所在交换机上的接收口为转入接口,从组播组汇集点所在交换机发往组播接收者,组播报文在组播组汇集点所在交换机的发送口即为转出接口。The SDN controller updates the multicast group collection point information. The multicast group aggregation point information includes multicast group members and corresponding multicast packet forwarding and forwarding interfaces. The multicast packet is sent from the multicast source to the switch where the multicast group is located. The receiving port of the multicast packet on the switch where the multicast group is located is the transit interface. To the multicast receiver, the multicast interface is the outgoing interface of the switch where the multicast group aggregation point is located.
SDN控制器获取组播组汇集点即汇集点所在的交换机后,生成组播组汇聚点信息,以图7为例的汇集点所在的交换机信息如表8所示:After the SDN controller obtains the multicast group aggregation point, that is, the switch where the aggregation point is located, it generates multicast group convergence point information. Table 8 shows the switch information of the aggregation point shown in Figure 7 as shown in Table 8:
Figure PCTCN2014094144-appb-000006
Figure PCTCN2014094144-appb-000006
表8Table 8
表8中,接入交换机1对成员1,出接口7,入接口4,对成员2,出接口1,入接口4,对成员3、4,出接口4,入接口1、7。汇聚交换机2对成员3,出接口4,入接口8,对成员4,出接口7,入接口8,对成员1、2,出接口8, 入接口4、7。In Table 8, the access switch 1 is connected to member 1, outbound interface 7, inbound interface 4, member 2, outbound interface 1, inbound interface 4, member 3, 4, outbound interface 4, and inbound interface 1, 7. Aggregation switch 2 to member 3, outbound interface 4, inbound interface 8, member 4, outbound interface 7, inbound interface 8, pair member 1, 2, and outbound interface 8, Incoming interfaces 4, 7.
对于汇集点交换机,SDN控制器下发的主动流表项需要符合以下特征:For the aggregation point switch, the active flow entry delivered by the SDN controller needs to meet the following characteristics:
1)匹配条件:组播组汇集点入接口、组播组标识;1) Matching conditions: multicast group aggregation point inbound interface and multicast group identifier;
2)执行动作:2) Perform the action:
a.发往接收者:复制组播报文,对复制的组播报文剥离组播组标识,将原始组播报文发送至接收者出接口a. To the receiver: copy the multicast packet, strip the multicast group ID of the copied multicast packet, and send the original multicast packet to the receiver outbound interface.
b.发往组播组下一汇集点:复制组播报文,对复制的组播报文封装到达组播组下一汇集点的转发路径,将封装好的组播报文发送至下一跳出接口。b. Send the multicast group to the next aggregation point: copy the multicast packet, encapsulate the copied multicast packet to the forwarding path of the next aggregation point of the multicast group, and send the encapsulated multicast packet to the next. Jump out of the interface.
例如,图7中对汇集点所在的交换机的主动流表项如表9所示:For example, the active flow entries of the switch where the aggregation point is located in Figure 7 are as shown in Table 9:
Figure PCTCN2014094144-appb-000007
Figure PCTCN2014094144-appb-000007
表9Table 9
表9中,SDN控制器对接入交换机1在不同接口收到的组播报文进行复制分发:成员3、4发出的组播报文在入口4收到,去往成员1的发送至接口7,去 往成员2的剥离外层路标,发送至接口1;成员1发出的组播报文在接口7收到,去往成员2的,剥离外层路标,发送至接口1,去往成员3、4的封装到达组播组汇集点汇聚交换机2的转发路径,发送至接口4。SDN控制器对汇聚交换机2在不同接口收到的组播报文进行复制分发:成员3发出的组播报文在接口4收到,去往成员4的封装到达虚拟交换机2的转发路径,发送至接口7,去往成员1、2的封装到接入交换机1的转发路径,发送至接口8;成员4发出的组播报文在接口7收到,去往成员3的发送至接口4,去往成员1、2的封装到达组播组汇集点接入交换机1的转发路径,发送至接口8;成员1、2发送的组播报文在接口8收到,去往成员3的发送至接口4,去往成员4的封装到达虚拟交换机2的转发路径,发送至接口7。In Table 9, the SDN controller replicates and distributes the multicast packets received by the access switch 1 on different interfaces: the multicast packets sent by the members 3 and 4 are received at the ingress 4, and are sent to the interface of the member 1 to the interface. 7, go The stripped outer road sign to member 2 is sent to interface 1; the multicast message sent by member 1 is received at interface 7, goes to member 2, strips the outer road sign, sends it to interface 1, and goes to member 3, 4 The encapsulation arrives at the forwarding path of the multicast group aggregation point aggregation switch 2 and is sent to the interface 4. The SDN controller replicates and distributes the multicast packets received by the aggregation switch 2 on different interfaces. The multicast packets sent by member 3 are received on interface 4, and the packet destined for member 4 reaches the forwarding path of virtual switch 2. To the interface 7, the forwarding path to the member 1, 2 to the access switch 1 is sent to the interface 8; the multicast packet sent by the member 4 is received on the interface 7, and sent to the member 3 to the interface 4, The packets destined for members 1 and 2 arrive at the forwarding path of the multicast group aggregation point access switch 1 and are sent to interface 8. The multicast packets sent by members 1 and 2 are received at interface 8, and are sent to member 3 to The interface 4, the packet destined for the member 4 reaches the forwarding path of the virtual switch 2, and is sent to the interface 7.
SDN控制器对与组播接收者直连的交换机(非汇集点交换机)下发的主动流表项需要符合以下特征:The active flow entry delivered by the SDN controller to the switch (non-convergence switch) directly connected to the multicast receiver needs to meet the following characteristics:
1)匹配条件:组播报文入口、组播组标识;1) Matching conditions: multicast packet entry and multicast group identifier;
2)执行动作:对组播报文剥离组播组标识,将原始组播报文发送至组播接收者出接口。2) Execution action: Strip the multicast group ID of the multicast packet and send the original multicast packet to the outbound interface of the multicast receiver.
例如,图7中对非汇集点交换机下发的流表项如表10所示:For example, the flow entries sent to the non-convergence switch in Figure 7 are as shown in Table 10:
Figure PCTCN2014094144-appb-000008
Figure PCTCN2014094144-appb-000008
表10Table 10
表10中,对于发往成员1的组播报文,SDN控制器为虚拟交换机1定制主动流表项,匹配组播报文入口5、组播组1标识,剥离组播报文组播组1标识,将原始组播报文发送至接口2;对于发往成员3的组播报文,SDN控制器为接入交换机3定制主动流表项,匹配组播报文入口5、组播组1标识,剥离组 播报文组播组1标识,将原始组播报文发送至接口8;对于发往成员4的组播报文,SDN控制器为虚拟交换机2定制主动流表项,匹配组播报文入口3、组播组1标识,剥离组播报文组播组1标识,将原始组播报文发送至接口1。In Table 10, for the multicast packet sent to member 1, the SDN controller customizes the active flow entry for the virtual switch 1, matches the multicast packet entry 5, the multicast group 1 identifier, and strips the multicast packet multicast group. 1 identifies the original multicast packet to be sent to interface 2. For the multicast packet sent to member 3, the SDN controller customizes the active flow entry for the access switch 3, and matches the multicast packet entry 5 and the multicast group. 1 logo, stripping group The broadcast message multicast group 1 is identified, and the original multicast packet is sent to the interface 8. For the multicast message sent to the member 4, the SDN controller customizes the active flow entry for the virtual switch 2, and matches the multicast packet entry. The multicast group 1 identifier is used to strip the multicast packet multicast group 1 and send the original multicast packet to interface 1.
C,组播组被动流表项的下发C. Delivery of passive flow entries of multicast groups
组播组中的成员,向组播组内的其它成员发送数据或业务报文时,发送组播报文至与其直接相连的交换机,该直接相连的交换机由于没有匹配的流表项,向SDN控制器上报PacketIn事件。SDN控制器分析组播报文特征,依据当前网络拓扑以及组播组信息,选择合适的转发路径。被动流表项符合以下特征:When a member of a multicast group sends data or service packets to other members in the multicast group, it sends a multicast packet to the switch directly connected to it. The directly connected switch does not have a matching flow entry to the SDN. The controller reports the PacketIn event. The SDN controller analyzes the characteristics of the multicast packet and selects an appropriate forwarding path according to the current network topology and multicast group information. Passive flow entries meet the following characteristics:
1)匹配条件:原始组播报文入口、特征;1) Matching conditions: original multicast message entry and feature;
2)执行动作:对原始组播报文依次封装组播组标识、到达组播组下一汇集点的转发路径,将封装好的组播报文发送至下一跳出接口。2) Execution action: The original multicast packet is encapsulated with the multicast group identifier and the forwarding path of the next aggregation point of the multicast group, and the encapsulated multicast packet is sent to the next hop-out interface.
例如图7所示的网络架构图中,SDN控制器下发的被动流表项如表11所示:For example, in the network architecture diagram shown in Figure 7, the passive flow entries delivered by the SDN controller are shown in Table 11:
Figure PCTCN2014094144-appb-000009
Figure PCTCN2014094144-appb-000009
表11Table 11
表11中,对成员1发出的组播报文,被动流表项指示虚拟交换机1匹配原始组播报文入口2、特征,对原始组播报文封装组播组1标识,将封装好的组播报文发送至接口5;对成员2发出的去往成员1的组播报文,被动流表项指示接入交换机1匹配原始组播报文入口1、特征,对原始组播报文封装组 播组1标识,将封装好的组播报文发送至接口7;对成员2发出的去往成员3、4的组播报文,被动流表项指示接入交换机1匹配原始组播报文入口1、特征,对原始组播报文依次封装组播组1标识、到达汇聚交换机2的转发路径,将封装好的组播报文发送至接口4;对成员3发出的组播报文,被动流表项指示接入交换机3匹配原始组播报文入口8、特征,对原始组播报文封装组播组1标识,将封装好的组播报文发送至接口5;对成员4发出的组播报文,被动流表项指示虚拟交换机2匹配原始组播报文入口1,、特征,对原始组播报文依次封装组播组1标识、到达汇聚交换机2的转发路径,将封装好的组播报文发送至接口3。In Table 11, for the multicast packet sent by member 1, the passive flow entry indicates that virtual switch 1 matches the original multicast packet entry 2. The original multicast packet encapsulates the multicast group 1 identifier and is encapsulated. The multicast packet is sent to the interface. The multicast packet sent by the member 2 to the member 1 indicates that the access switch 1 matches the original multicast packet entry 1, features, and the original multicast packet. Package group The broadcast group 1 identifier is sent to the interface 7; the multicast packet destined for the member 3 and 4 sent by the member 2, and the passive flow entry indicates that the access switch 1 matches the original multicast packet. Ingress 1, the feature, the original multicast packet is encapsulated with the multicast group 1 identifier, the forwarding path to the aggregation switch 2, and the encapsulated multicast packet is sent to the interface 4; The passive flow entry indicates that the access switch 3 matches the original multicast packet entry 8 and features, encapsulates the multicast group 1 identifier of the original multicast packet, and sends the encapsulated multicast packet to the interface 5; The multicast packet indicates that the virtual switch 2 matches the original multicast packet entry 1, and the original multicast packet encapsulates the multicast group 1 identifier and the forwarding path to the aggregation switch 2, which will be encapsulated. A good multicast packet is sent to interface 3.
DC网络各交换机按照SDN控制器下发的流表项,包括主动流表项和被动流表项,实现数据或业务报文的转发。上述组播组实现数据或业务报文的转发,不仅能够降低骨干层交换机对转发流表项的数量需求,提升了SDN控制器的资源利用率,提高SDN控制器和交换机的效率;并且通过对汇聚点交换机下发主动流表项,将数据或业务报文在发送给组播组成员的同时复制到下一个汇聚点交换机,组播报文不在源端,而在汇集点复制分发,节省了DC网络带宽。Each switch of the DC network implements the forwarding of data or service packets according to the flow entries sent by the SDN controller, including active flow entries and passive flow entries. The forwarding of data or service packets by the multicast group can reduce the number of forwarding flow entries required by the backbone switch, improve the resource utilization of the SDN controller, and improve the efficiency of the SDN controller and the switch. The aggregation point switch delivers the active flow entry, and the data or service packet is copied to the next aggregation point switch while being sent to the multicast group member. The multicast packet is not at the source end, but is copied and distributed at the aggregation point, saving DC network bandwidth.
在具体实现中,租户可以在DC内其所属主机上部署各种服务,并对其用户开放。所述租户是向数据中心DC服务供应商租赁计算、存储、网络资源的使用主体;其中,所述租户是通过租赁的数据中心资源安装、部署、发布服务的使用主体。In a specific implementation, the tenant can deploy various services on the host to which the DC belongs, and is open to its users. The tenant is a user who rents computing, storage, and network resources to a data center DC service provider; wherein the tenant is a user who installs, deploys, and publishes a service through a leased data center resource.
图8是本发明实施例中租户在DC内部署服务链的一种实现方式示意图。如图8所示,本实施例以包括防火墙、鉴权、负载均衡与数据库服务5个服务节点为例进行说明,该5个服务节点构成服务链。其中,防火墙服务所在主机由接入交换机1接入DC网络,鉴权服务所在主机由接入交换机3接入DC网络,该接入交换机3可以是本发明实施例中的第四交换设备;负载均衡服务所在主机由接入交换机2接入DC网络,数据库服务所在主机由虚拟交换机 2接入DC网络。在具体实现时,出于安全的考虑,租户希望用户在访问数据库前必须穿越防火墙,经过鉴权处理,同时考虑到数据库服务的性能和可用性,需由负载均衡服务实时调度,分配数据源。其中,所述主机是能够提供特定服务(例如防火墙等)的服务器,可以是物理服务器也可以是虚拟服务器。作为一种可选的实现方式,所述主机也可以是上述移动终端、固定终端或无线接入终端等设备,本发明实施例不限定具体的实现方式。FIG. 8 is a schematic diagram of an implementation manner in which a tenant deploys a service chain in a DC according to an embodiment of the present invention. As shown in FIG. 8, the embodiment is described by taking five service nodes including a firewall, an authentication, a load balancing, and a database service as an example. The five service nodes constitute a service chain. The host where the firewall service is located is connected to the DC network by the access switch 1, and the host where the authentication service is located is connected to the DC network by the access switch 3. The access switch 3 may be the fourth switching device in the embodiment of the present invention; The host where the equalization service is located is connected to the DC network by the access switch 2, and the host where the database service is located is configured by the virtual switch. 2 access to the DC network. In the specific implementation, for security reasons, the tenant wants the user to traverse the firewall before accessing the database, after the authentication process, and taking into account the performance and availability of the database service, the load balancing service needs to schedule and allocate the data source in real time. The host is a server capable of providing a specific service (such as a firewall, etc.), and may be a physical server or a virtual server. As an optional implementation manner, the host may also be a device such as the foregoing mobile terminal, a fixed terminal, or a wireless access terminal, and the specific embodiment of the present invention is not limited to a specific implementation manner.
租户通过部署相关服务的主机,提供相关服务。例如部署防火墙的主机,提供防火墙服务,该提供防火墙服务的主机就是一个服务节点。租户可以通过UI(User Interface,用户界面)向SDN控制器请求添加或删除服务节点。Tenants provide related services through the deployment of hosts for related services. For example, a host that deploys a firewall provides a firewall service, and the host that provides the firewall service is a service node. The tenant can request to add or delete a service node from the SDN controller through the UI (User Interface).
在服务节点添加完成后,SDN控制器为每个服务节点分配一个唯一标识,用于区别DC网络中的其它服务节点,或能够拥有网络标识的其它类型的对象,可以单独,也可以与其它网络标识组合,标定报文转发路径。例如,如表12所示,为图8的网络架构图中SDN控制器分配的服务节点的唯一网络标识。After the service node is added, the SDN controller assigns each service node a unique identifier for distinguishing other service nodes in the DC network, or other types of objects that can have the network identifier, either alone or with other networks. Identify the combination and calibrate the packet forwarding path. For example, as shown in Table 12, the unique network identifier of the service node assigned to the SDN controller in the network architecture diagram of FIG.
服务节点Service node 网络标识 Network identification
防火墙Firewall 55
鉴权 Authentication 66
负载均衡Load balancing 77
数据库1Database 1 88
数据库2 Database 2 99
表12Table 12
表12中,防火墙服务节点获得网络标识5;鉴权服务节点获得网络标识6;负载均衡服务节点获得网络标识7;数据库1服务节点获得网络标识8;数据库2服务节点获得网络标识9。In Table 12, the firewall service node obtains the network identifier 5; the authentication service node obtains the network identifier 6; the load balancing service node obtains the network identifier 7; the database 1 service node obtains the network identifier 8; and the database 2 service node obtains the network identifier 9.
本发明实施例中的服务链,即租户为其用户设定的服务序列,由服务节点按指定顺序排列组合而成,体现了租户对外提供服务的内部策略。DC允 许租户定制不同服务链,然后根据用户数据流特征将其引导到不同的服务链入口,遍历链上所有服务节点,从而实现租户对外的差分服务。在具体实现中,租户可以通过UI向控制器发起创建或删除服务链的请求,从而实现服务链的创建或删除。表13示意性的显示了图8中,服务链的几种可实现方式。The service chain in the embodiment of the present invention, that is, the service sequence set by the tenant for the user, is arranged by the service node in a specified order, and reflects the internal strategy of the tenant to provide the service externally. DC Yun The tenant customizes different service chains, and then guides them to different service chain portals according to the characteristics of the user data stream, traversing all the service nodes in the chain, thereby implementing the differentiated services of the tenants. In a specific implementation, the tenant can initiate a request to create or delete a service chain through the UI, thereby implementing creation or deletion of the service chain. Table 13 shows schematically several implementations of the service chain in Figure 8.
服务链Service chain 服务节点序列Service node sequence 网络标识序列Network identification sequence
11 防火墙-鉴权-数据库1Firewall-authentication-database 1 5-6-85-6-8
22 防火墙-鉴权-数据库2Firewall-authentication-database 2 5-6-95-6-9
33 防火墙-鉴权-负载均衡Firewall-authentication-load balancing 5-6-75-6-7
表13Table 13
表13中,租户通过第1条服务链直接为用户指定数据源为数据库1,用户流依次经过防火墙、鉴权,最终抵达数据库1,对应的网络标识序列是5–6–8;通过第2条服务链直接为用户指定数据源为数据库2,用户流依次经过防火墙、鉴权,最终抵达数据库2,对应的网络标识序列是5–6–9;通过第3条服务链由负载均衡服务为用户指定数据源,用户流依次经过防火墙、鉴权,然后由负载均衡服务调度,最终抵达负载均衡服务指定的数据库,对应的网络标识序列是5–6–7。In Table 13, the tenant directly assigns the data source to the user through the first service chain, and the user stream passes through the firewall and authentication in turn, and finally arrives at the database 1. The corresponding network identification sequence is 5–6–8; The service chain directly specifies the data source for the user as the database 2, and the user flow passes through the firewall and authentication in turn, and finally arrives at the database 2, the corresponding network identification sequence is 5–6–9; through the third service chain, the load balancing service is The user specifies the data source, and the user stream passes through the firewall, authenticates, and then is scheduled by the load balancing service, and finally arrives at the database specified by the load balancing service. The corresponding network identification sequence is 5–6–7.
实现DC网络中的服务链,可以在上述图4所示流程实现的基础上,进一步实现服务链的管理和控制。对于与服务节点直接相连的交换机,SDN控制器需要下发的主动流表项需要满足以下特征:To realize the service chain in the DC network, the management and control of the service chain can be further realized on the basis of the implementation of the process shown in FIG. 4 above. For a switch that is directly connected to a service node, the active flow entry to be delivered by the SDN controller needs to meet the following characteristics:
1)匹配条件:服务节点标识;1) Matching condition: service node identifier;
2)执行动作:对报文剥离服务节点标识,将原始报文发送至服务节点出接口。2) Execution action: The service message identifier is stripped from the service message, and the original message is sent to the outbound interface of the service node.
表14为图8所示网络架构图中,SDN控制器对与服务节点直接相连的交换机下发的主动流表项: Table 14 shows the active flow entries delivered by the SDN controller to the switch directly connected to the service node in the network architecture diagram shown in Figure 8.
Figure PCTCN2014094144-appb-000010
Figure PCTCN2014094144-appb-000010
表14Table 14
在表14中,SDN控制器指示接入交换机1关注携带防火墙服务节点标识的报文,剥离报文防火墙服务节点标识,将原始报文发送至接口1;指示接入交换机3关注携带鉴权服务节点标识的报文,剥离报文鉴权服务节点标识,将原始报文发送至接口8;指示接入交换机2关注携带负载均衡服务节点标识的报文,剥离报文负载均衡服务节点标识,发送至接口9;指示虚拟交换机2关注携带数据库服务节点标识的报文,剥离报文数据库服务节点标识,发送至相应接口。In the table 14, the SDN controller instructs the access switch 1 to focus on the packet carrying the firewall service node identifier, strips the packet firewall service node identifier, and sends the original packet to the interface 1; the access switch 3 is instructed to carry the authentication service. The packet identified by the node is stripped of the packet authentication service node identifier, and the original packet is sent to the interface 8. The access switch 2 is instructed to focus on the packet carrying the load balancing service node identifier, and the packet load balancing service node identifier is sent off. To the interface 9, the virtual switch 2 is instructed to focus on the packet carrying the identifier of the database service node, and the packet database service node identifier is stripped and sent to the corresponding interface.
对于与服务节点直接相连的交换机下发的被动流表项,需要符合以下特征:For the passive flow entry delivered by the switch directly connected to the service node, the following features are required:
1)匹配条件:原始报文入接口、特征,1) Matching conditions: original message input interface, features,
2)执行动作:依据交换机所连服务节点在服务链上的位置,对原始报文依次封装其下一服务节点标识、到达该服务节点的转发路径,将封装好的报文发送至下一跳出接口。2) Execution action: According to the location of the service node connected to the switch in the service chain, the original message is encapsulated with the next service node identifier, the forwarding path to the service node, and the encapsulated packet is sent to the next bounce. interface.
表15为实现服务链的被动流表项的一种实现方式:Table 15 shows an implementation of a passive flow entry for implementing a service chain:
转发设备Forwarding device 被动流表项Passive flow entry
虚拟交换机1Virtual switch 1 匹配条件:原始报文入接口、特征;执行动作:封装防火墙服务节点标识,发送至接口5Matching conditions: original packet inbound interface, feature; action: encapsulate firewall service node identifier, sent to interface 5
接入交换机1Access switch 1 匹配条件:原始报文入接口、特征;执行动作:封装鉴权服务节点标识、到达鉴权服务节点的转发路径,发送至接口4Matching conditions: original packet inbound interface, feature; execution action: encapsulating the authentication service node identifier, forwarding path to the authentication service node, and sending to interface 4
接入交换机3 Access switch 3 匹配条件:原始报文入接口、特征;执行动作:封装负载均衡服务节点标识、到达负载均衡服务节点的转发路径,发送至接口5Matching conditions: original packet incoming interface, feature; execution action: encapsulating the load balancing service node identifier, forwarding path to the load balancing service node, and sending to interface 5
接入交换机2 Access switch 2 匹配条件:原始报文入接口、特征;执行动作:封装数据库服务节点标识,发送至接口8Matching conditions: original packet inbound interface, feature; execution action: encapsulation database service node identifier, sent to interface 8
表15Table 15
表15中,被动流表项指示虚拟交换机1匹配原始报文入接口、特征,对原始报文封装防火墙服务节点标识,然后将封装后的报文发送至接口5;指示接入交换机1匹配原始报文入接口、特征,对原始报文封装鉴权服务节点 标识、到达鉴权服务节点的转发路径,然后将封装后的报文发送至接口4;指示接入交换机3匹配原始报文入接口、特征,对原始报文封装负载均衡服务节点标识、到达负载均衡服务节点的转发路径,然后将封装后的报文发送至接口5;指示接入交换机2匹配原始报文入接口、特征,对原始报文封装数据库服务节点标识,然后将封装后的报文发送至接口8。例如,上述接入交换机1可以是本发明实施例中的第五交换设备,汇聚交换机2为本发明实施例中的第六交换设备,接入交换机3为本发明实施例中的第七交换设备,从而实现服务链实现中不同交换机的流表下发。作为一种可能的实现方式,假如图8中接入交换机3与接入交换机1之间的路径是直接相连的,则接入交换机1就也可以是本发明实施例中的第五交换设备,接入交换机3是本发明实施例中的第七交换设备,参考上述实现服务链中的流表下发方法,也能够实现在服务链场景下不同转发规则的下发,从而达到节省网络中设备资源和带宽的目的。In Table 15, the passive flow entry indicates that the virtual switch 1 matches the original packet inbound interface and features, encapsulates the firewall service node identifier for the original packet, and then sends the encapsulated packet to interface 5; indicating that the access switch 1 matches the original Packet incoming interface, feature, and original packet encapsulation authentication service node The packet is sent to the interface 4 and the encapsulated packet is sent to the interface 4; the access switch 3 is matched with the original packet incoming interface and features, and the original packet is encapsulated with the load balancing service node identifier and the load is reached. The forwarding path of the service node is equalized, and then the encapsulated packet is sent to the interface 5; the access switch 2 is matched with the original packet inbound interface, the feature is encapsulated, the database service node identifier is encapsulated in the original packet, and then the encapsulated packet is encapsulated. Send to interface 8. For example, the access switch 1 may be the fifth switching device in the embodiment of the present invention, the aggregation switch 2 is the sixth switching device in the embodiment of the present invention, and the access switch 3 is the seventh switching device in the embodiment of the present invention. Therefore, the flow table of different switches in the service chain implementation is delivered. As a possible implementation, if the path between the access switch 3 and the access switch 1 is directly connected, the access switch 1 may also be the fifth switching device in the embodiment of the present invention. The access switch 3 is the seventh switching device in the embodiment of the present invention. Referring to the foregoing method for implementing the flow table in the service chain, the forwarding of different forwarding rules in the service chain scenario can be implemented, thereby saving devices in the network. The purpose of resources and bandwidth.
需要说明的是,由于业务报文进入服务节点必须是原始报文,SDN控制器在下发转发路径时,不能一次性定制整条服务链的转发路径,需要依据每个服务节点将路径分解成多段,每段的起始是上一服务节点,终止是下一个服务节点,每一段的路径下发方式与图4所示的实现方式类同。It should be noted that, because the service packet needs to be the original packet, the SDN controller cannot customize the forwarding path of the entire service chain at one time when the forwarding path is sent. The path needs to be decomposed into multiple segments according to each service node. The start of each segment is the last service node, and the termination is the next service node. The path for each segment is sent in the same manner as the implementation shown in Figure 4.
通过上述实施例对不同服务节点存在场景下主动流表项和被动流表项的下发,实现了在满足租户定制策略以实现数据或业务流在不同服务之间灵活穿梭的同时,不用重复下发流表,降低了SDN控制器和交换机的设备资源占用率,也相应提高SDN控制器和交换机的性能和效率。The above embodiments are used to deliver the active flow entry and the passive flow entry in the scenario of different service nodes, and the tenant customization policy is implemented to realize the flexible shuttle between data or service flow between different services. The flow meter reduces the device resource occupancy of the SDN controller and the switch, and also improves the performance and efficiency of the SDN controller and the switch.
在具体的实现中,还会存在DC支持多租户的场景,DC网络允许各租户共享其物理网络,从而构建各自租户独立的逻辑网络。租户之间的逻辑网络相互隔离,物理网络空间则可以重叠。对于多租户的场景,DC网络中的控制设备可以为每个租户分配一个唯一标识,用于区分不同的租户,实现对不同租户的管理。每个租户内的主机通过DC网络实现数据转发时,携带 分配的租户的唯一标识,通过该租户的唯一标识,来识别一个租户内的数据转发。上述实现SDN网络的数据转发方法,也可以适用于多租户的场景。在多租户场景下实现上述方法,需要控制设备下发的转发规则中进一步包含租户标识,交换设备在实现转发中,还需要匹配租户标识,并在剥离租户标识后封转数据并进行转发。具体的实现过程与上述实现过程类似,不再赘述。In a specific implementation, there is also a scenario where the DC supports multi-tenancy, and the DC network allows each tenant to share its physical network, thereby constructing a separate tenant independent logical network. The logical networks between tenants are isolated and the physical network space can overlap. For a multi-tenant scenario, the control device in the DC network can assign a unique identifier to each tenant to distinguish different tenants and implement management of different tenants. When the host in each tenant realizes data forwarding through the DC network, it carries The unique identifier of the assigned tenant, through which the tenant's unique identifier identifies the data forwarding within a tenant. The foregoing method for implementing data forwarding of an SDN network can also be applied to a scenario of multi-tenancy. To implement the above method in a multi-tenancy scenario, the forwarding rule sent by the control device further includes the tenant ID. The switching device needs to match the tenant ID in the forwarding, and then the data is forwarded and forwarded after the tenant ID is stripped. The specific implementation process is similar to the above implementation process, and will not be described again.
参考图9,图9为本发明实施例一种SDN中的控制设备900的结构示意图,包括:网络通信单元901、控制消息处理单元902、转发路径确定单元903和转发规则管理单元904;9 is a schematic structural diagram of a control device 900 in an SDN according to an embodiment of the present invention, including: a network communication unit 901, a control message processing unit 902, a forwarding path determining unit 903, and a forwarding rule management unit 904;
所述网络通信单元901,用于接收SDN中的第一交换设备发送的第一转发规则请求,并将所述第一转发规则请求发送给所述控制消息处理单元902;The network communication unit 901 is configured to receive a first forwarding rule request sent by the first switching device in the SDN, and send the first forwarding rule request to the control message processing unit 902;
所述控制消息处理单元902,用于解析所述第一转发规则请求,将解析后的所述第一转发规则请求发送给所述转发路径确定单元903,并将所述转发路径确定单元903确定的第一路径的信息以及所述转发规则管理单元生成的第一转发规则通过所述网络通信单元发送给所述第一交换设备,将所述转发规则管理单元生成的第二转发规则通过所述网络通信单元发送给所述第一路径上的第二交换设备;所述第一路径的信息是依据所述第一路径上交换设备的顺序,用交换设备之间转发路径的唯一标识表示的序列,所述第一路径的信息能够随所述数据转发给所述第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及所述第二转发规则对所述数据进行转发;The control message processing unit 902 is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit 903, and determine the forwarding path determining unit 903 The information of the first path and the first forwarding rule generated by the forwarding rule management unit are sent by the network communication unit to the first switching device, and the second forwarding rule generated by the forwarding rule management unit is used by the Sending, by the network communication unit, the second switching device on the first path; the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path The information of the first path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule. ;
所述转发路径确定单元903,用于根据所述控制消息确定单元902发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息对应的数据转发的第一路径;The forwarding path determining unit 903 is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit 902, the data forwarding corresponding to the data information carried in the first forwarding rule request. First path;
所述转发规则管理单元904,用于生成所述第一转发规则和所述第二转 发规则,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。The forwarding rule management unit 904 is configured to generate the first forwarding rule and the second forwarding Sending a rule, the second forwarding rule is received by the second switching device before receiving the data, and enables the second switching device to forward the data to the information according to the first path a switching device directly connected to the second switching device on the first path.
上述SDN中的控制设备900通过确定对所述数据信息对应的数据进行转发的第一路径,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,使得所述第二交换设备能够在接收到数据之前接收到对数据转发的转发规则,并根据接收到的数据和路径信息实现数据转发。控制设备900不需要每次对第二交换设备转发数据都下发一次转发规则,节省了控制设备在下发转发规则时的资源消耗,提高了设备的利用率,同时也节省了控制设备900与交换设备之间因多次下发转发规则所占用的带宽。The control device 900 in the SDN determines the first path forwarded by the data corresponding to the data information, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device. And causing the second switching device to forward the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device receives the data before receiving the data. The second switching device is configured to receive a forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and the path information. The control device 900 does not need to issue a forwarding rule every time the data is forwarded to the second switching device, which saves the resource consumption of the control device when the forwarding rule is sent, improves the utilization of the device, and saves the control device 900 and the exchange. The bandwidth occupied by the forwarding rules due to multiple times between devices.
可选的,所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。所述第一路径的信息嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。Optionally, the second forwarding rule is generated after the second switching device establishes a topological relationship with the directly connected switching device, or after establishing a topology relationship, where the second forwarding rule is based on the received path information. A forwarding rule that repeats forwarding of data containing the path information. The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto. The information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
作为一种可选的实现方式,所述控制设备900还包括标识管理单元905和拓扑管理单元906,如图10所示,其中:As an optional implementation manner, the control device 900 further includes an identifier management unit 905 and a topology management unit 906, as shown in FIG. 10, where:
所述标识管理单元905,用于分配和回收所述SDN中交换设备之间转发路径的唯一标识;The identifier management unit 905 is configured to allocate and reclaim a unique identifier of a forwarding path between switching devices in the SDN.
所述拓扑管理单元906,用于根据所述SDN网络拓扑的变换,更新所述SDN的网络拓扑信息; The topology management unit 906 is configured to update network topology information of the SDN according to the transformation of the SDN network topology;
相应的,所述转发路径确定单元903根据所述拓扑管理单元904中记录的网络拓扑信息,以及所述标识管理单元905分配的交换设备之间转发路径的唯一标识,结合所述控制消息确定单元902发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息转发的第一路径。Correspondingly, the forwarding path determining unit 903 combines the network topology information recorded in the topology management unit 904 with the unique identifier of the forwarding path between the switching devices allocated by the identifier management unit 905, and combines the control message determining unit. The parsed first forwarding rule request sent by the 902 determines a first path forwarded to the data information carried in the first forwarding rule request.
如图10所示,所述控制设备900还包括组播组管理单元907,As shown in FIG. 10, the control device 900 further includes a multicast group management unit 907.
所述组播组管理单元907,用于为所述SDN中的组播组分配组播组标识,所述组播组标识唯一标识一个组播组,所述组播组包含至少两个组播组成员,组播组中一个成员发送的数据能够被组播组中其它成员接收到。The multicast group management unit 907 is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies one multicast group, and the multicast group includes at least two multicast groups. Group members, data sent by one member of a multicast group can be received by other members of the multicast group.
所述转发规则管理单元903,还用于向第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述第三交换设备是与所述组播组的成员直接相连的交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The forwarding rule management unit 903 is further configured to send a third forwarding rule that includes the multicast group identifier to the third switching device, so that the third switching device encapsulates the next aggregation switch according to the third forwarding rule. The data of the path information of the path of the device is sent; the path information of the path to the next aggregation switching device is represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding. The third switching device is a switching device directly connected to a member of the multicast group, and the third switching device is a switching device that forwards data to the multicast group member through two or more paths; The next aggregation switching device forwards the data to the multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths. Switching equipment.
如图10所示,所述控制设备900还包括:As shown in FIG. 10, the control device 900 further includes:
服务链设定单元908,用于设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,并为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;The service chain setting unit 908 is configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assign a unique identifier to a device having a specific service capability in the service chain. The identification of the device;
所述转发规则管理单元903,还用于生成第四转发规则并下发给第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据转发给 所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则,所述第四交换设备是所述服务链中与具备特定服务能力的设备直接连接的交换设备。The forwarding rule management unit 903 is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a uniqueness of the first specific service capability device directly connected to the fourth switching device. Identifying, so that the fourth switching device forwards the received data to The device of the first specific service capability; the fourth forwarding rule is a forwarding rule received by the fourth switching device before receiving data that needs to be forwarded, and the fourth switching device is provided in the service chain A switching device that is directly connected to a device with a specific service capability.
相应的,所述网络通信单元901还用于接收第五交换设备发送的第五转发规则请求;Correspondingly, the network communication unit 901 is further configured to receive a fifth forwarding rule request sent by the fifth switching device;
所述控制消息处理单元902,还用于解析所述第五转发规则请求,并将解析后的所述第五转发规则请求发送给所述转发路径确定单元903;The control message processing unit 902 is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit 903;
所述转发路径确定单元903,还用于根据所述控制消息确定单元发送的解析后的所述第五转发规则请求,确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;The forwarding path determining unit 903 is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device is The third specific service device is a specific service device directly adjacent in the service chain; the service chain path is implemented according to a path of the second specific service device to the third specific service device a sequence of data forwarding forwarding devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
所述转发规则管理单元904,还用于下发第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径的信息的数据之前接收到的并能够使所述第六交换设备根据所述服务链路径信息将所述数据转发给服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The forwarding rule management unit 904 is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh Transmitting the device, or sending the sixth switching device to the sixth switching device, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is And the sixth switching device receives the data including the information of the service chain path, and enables the sixth switching device to forward the data to the service chain path according to the service chain path information. And the other switching device; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path.
本发明实施例控制设备900的实现方式,可以参考上述图1至图8所示实施例的实现方式中控制设备的实现方式来实现,不再赘述。 The implementation manner of the control device 900 in the embodiment of the present invention may be implemented by referring to the implementation manner of the control device in the implementation manner of the embodiment shown in FIG. 1 to FIG. 8 , and details are not described herein.
参考图11,本发明实施例还提供了一种SDN中数据转发***1100,包括第一交换设备1101和第二交换设备1102,所述第一交换设备1101与所述第二交换设备11021102直接相连,其特征在于:Referring to FIG. 11, an embodiment of the present invention further provides a data forwarding system 1100 in an SDN, including a first switching device 1101 and a second switching device 1102. The first switching device 1101 is directly connected to the second switching device 11021102. , which is characterized by:
所述第一交换设备1101,用于根据接收到的数据向控制设备请求转发规则,接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给所述第二交换设备1102,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;The first switching device 1101 is configured to request a forwarding rule from the control device according to the received data, receive a first forwarding rule returned by the control device, and encapsulate the first path information according to the first forwarding rule. The data is sent to the second switching device 1102, and the information of the first path is a sequence of forwarding devices that implement the data forwarding according to the first path for forwarding the data, and the forwarding path is used between the switching devices. a sequence of unique identifiers;
所述第二交换设备1102,用于接收第一交换设备1101发送的所述数据,所述第二交换设备1102根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备1102直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备1102在接收到所述数据之前接收到的,所述第二交换设备1102能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。The second switching device 1102 is configured to receive the data sent by the first switching device 1101, and the second switching device 1102 exchanges with the second according to the information about the first path and the second forwarding rule. The switching device directly connected to the device 1102 sends the data, the second forwarding rule is received by the second switching device 1102 before receiving the data, and the second switching device 1102 can be according to the first The information of the path and the second forwarding rule forward the data to a switching device directly connected to the second switching device, where the switching device directly connected to the second switching device is on the first path Switching equipment.
上述实施例提供的SDN中数据转发***1100,第一交换设备1101接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给第二交换设备1102,所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备1102在接收到所述数据之前接收到的,使得所述第二交换设备1102能够在接收到数据之前接收到对数据转发的转发规则,并根据接收到的数据和路径信息实现数据转发。第二交换设备1102不需要每次接收到数据后都获取一次转发规则,即不需要每次接收到数据后都获取一次流表进行数据转发,可以重复使用第二转发规则实现数据的转发,节省了第二交换设备1102进行数据转发时保存和使用转发规则带来的资源消耗,提高了设备的利用率;尤其是对于数据中心骨干层的交换设备,由 于转发数据量大,保存和适用大量的转发规则会带来巨大的芯片等资源消耗;通过本实施例提供的方案,能够节省交换设备的资源,使得数据中心网络中的交换设备不需要较高的性能就能实现大量的数据转发,提升了交换设备的竞争力。In the SDN data forwarding system 1100 provided by the foregoing embodiment, the first switching device 1101 receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information according to the first forwarding rule. The second switching device 1102, the second switching device forwards the data according to the information of the first path and the second forwarding rule, where the second forwarding rule is that the second switching device 1102 receives the The data is received before, so that the second switching device 1102 can receive the forwarding rule for data forwarding before receiving the data, and implement data forwarding according to the received data and path information. The second switching device 1102 does not need to acquire a forwarding rule once after receiving the data, that is, it does not need to obtain a flow table for data forwarding every time the data is received, and the second forwarding rule can be repeatedly used to implement data forwarding, thereby saving The second switching device 1102 saves and uses the resource consumption caused by the forwarding rule when performing data forwarding, thereby improving the utilization rate of the device; especially for the switching device of the data center backbone layer, The amount of forwarding data is large, and the storage and application of a large number of forwarding rules may result in a huge consumption of resources such as a chip. The solution provided in this embodiment can save resources of the switching device, so that the switching device in the data center network does not need to be higher. The performance can achieve a large amount of data forwarding, which enhances the competitiveness of switching equipment.
可选的,所述第二交换设备1102,还用于将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备1102将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息,发送给所述第三交换设备,所述第二路径的信息是实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。Optionally, the second switching device 1102 is further configured to send information about the first path to a switching device directly connected to the second switching device, or the second switching device 1102 The information of the second path of the forwarding path between the switching device directly connected to the second switching device and the forwarding path of the nth switching device is sent to the third switching device, where the information of the second path is implemented. The sequence of the switching devices on the path of the data forwarding, the sequence represented by the unique identifier of the forwarding path between the switching devices, where n is an integer and is greater than or equal to 3.
其中,所述第二转发规则是在所述第二交换设备1102与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。The second forwarding rule is generated when the second switching device 1102 establishes a topological relationship with the switching device directly connected to the second switching device 1102 or after establishing a topology relationship, and the second forwarding rule that includes the second forwarding rule is A forwarding rule that can repeatedly forward data to the path information according to the path information.
作为一种可选的实现方式,本发明实施例中,所述数据转发***还包括第i交换设备、第i-1交换设备和第i-1交换设备,所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备;In an embodiment of the present invention, the data forwarding system further includes an i-th switching device, an i-th switching device, and an i-th switching device, the i-th switching device, and the The i-1th switching device and the (i+1)th switching device are switching devices on the first path;
所述第i交换设备,用于接收所述第i-1交换设备发送的第i-1路径信息和所述数据,所述第i-1路径信息是根据实现所述数据转发的所述第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;并根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列。The i-th switching device is configured to receive the i-th path information and the data sent by the i-th switching device, where the i-th path information is according to the foregoing a sequence of the i-switching device to the n-th switching device, a sequence represented by a unique identifier of the forwarding path between the switching devices; wherein i is an integer and greater than or equal to 3; and according to the i-th path information, to the The i+1 switching device sends the data and the i-th path information, where the i-th path information is in accordance with a sequence of the i+1th switching device to the nth switching device that implements the data forwarding, and the switching device uses A sequence of unique identifier representations of the forwarding paths.
所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括: The sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
作为一种可选的实现方式,所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。As an optional implementation manner, the first path information, the second path information, and the ith path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device. The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
如图12所示,所述SDN中数据转发***1100还包括第三交换设备1103;As shown in Figure 12, the data forwarding system 1100 in the SDN further includes a third switching device 1103;
所述第一交换设备1101、所述第二交换设备1102和所述第三交换设备1103是同一组播组的成员,其中,所述第三交换设备1103是通过两条以上路径向所述组播组成员转发数据的交换设备,所述组播组的成员发送给其它成员的数据,能够被所述组播组的其它成员接收到;The first switching device 1101, the second switching device 1102, and the third switching device 1103 are members of the same multicast group, where the third switching device 1103 is to the group by using two or more paths. a switching device that forwards data to a group member, and data sent by members of the multicast group to other members can be received by other members of the multicast group;
所述第三交换设备1103,用于接收所述控制设备发送的包含组播组标识的第三转发规则,根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The third switching device 1103 is configured to receive a third forwarding rule that includes the multicast group identifier sent by the control device, and encapsulate the path information of the path that reaches the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching The device is a switching device that forwards the data to the multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
如图12所示,所述SDN中数据转发***1100还包括第五交换设备1105、第六交换设备1106和第七交换设备1107;As shown in Figure 12, the data forwarding system 1100 in the SDN further includes a fifth switching device 1105, a sixth switching device 1106, and a seventh switching device 1107;
第五交换设备1105,用于向所述控制设备发送第五转发规则请求,并 接收所述控制设备返回的到达第七交换设备1107的服务链路径,所述第五交换设备1105是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备1107是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务能力的设备的唯一标识组合而成的序列;a fifth switching device 1105, configured to send a fifth forwarding rule request to the control device, and Receiving, by the control device, a service chain path to the seventh switching device 1107, where the fifth switching device 1105 is a switching device directly connected to the second specific service capability device in the service chain, and the seventh switching device 1107 is a switching device directly connected to a third specific service capability device in the service chain, where the second specific service device and the third specific service device are specific service devices directly adjacent in the service chain, The service chain path is a sequence between the switching devices that implement the data forwarding according to the path from the second specific service device to the third specific service device, and the unique identifier of the forwarding path between the switching devices is used. a sequence of representations; the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain has an identifier that uniquely identifies the device, and the service sequence is a service a sequence of unique identifiers of devices having specific service capabilities;
所述第五交换设备1105将所述数据以及所述服务链路径信息转发给所述第七交换设备1107或所述服务链路径上的第六交换设备1106;The fifth switching device 1105 forwards the data and the service chain path information to the seventh switching device 1107 or the sixth switching device 1106 on the service chain path;
所述第六交换设备1106,用于根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备1105与所述第七交换设备1107之间的交换设备。The sixth switching device 1106 is configured to forward the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the service chain The data of the path information is previously received; wherein the sixth switching device is a switching device between the fifth switching device 1105 and the seventh switching device 1107 on the fifth path.
如图12所示,所述SDN中数据转发***1100还包括控制设备,该控制设备如图9所示的控制设备900。As shown in FIG. 12, the data forwarding system 1100 in the SDN further includes a control device, such as the control device 900 shown in FIG.
本发明实施例SDN中数据转发***1100的实现方式,可以参考上述图1至图8所示实施例的实现方式中控制设备的实现方式来实现,不再赘述。The implementation of the data forwarding system 1100 in the SDN of the embodiment of the present invention may be implemented by referring to the implementation manner of the control device in the implementation manner of the embodiment shown in FIG. 1 to FIG. 8 , and details are not described herein.
本领域普通技术人员可以意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,能够以电子硬件、计算机软件或者二者的结合来实现,为了清楚地说明硬件和软件的可互换性,在上述说明中已经按照功能一般性地描述了各示例的组成及步骤。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员 可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本发明的范围。Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the various examples described in connection with the embodiments disclosed herein can be implemented in electronic hardware, computer software, or a combination of both, for clarity of hardware and software. Interchangeability, the composition and steps of the various examples have been generally described in terms of function in the above description. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the solution. Professional skill worker Different methods may be used to implement the described functionality for each particular application, but such implementation should not be considered to be beyond the scope of the present invention.
所属领域的技术人员可以清楚地了解到,为了描述的方便和简洁,上述描述的***、装置和单元的具体工作过程,可以参考前述方法实施例中的对应过程,在此不再赘述。A person skilled in the art can clearly understand that, for the convenience and brevity of the description, the specific working process of the system, the device and the unit described above can refer to the corresponding process in the foregoing method embodiment, and details are not described herein again.
在本申请所提供的几个实施例中,应该理解到,所揭露的***、装置和方法,可以通过其它的方式实现。例如,以上所描述的装置实施例仅仅是示意性的,例如,所述单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个***,或一些特征可以忽略,或不执行。另外,所显示或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口、装置或单元的间接耦合或通信连接,也可以是电的,机械的或其它的形式连接。In the several embodiments provided by the present application, it should be understood that the disclosed systems, devices, and methods may be implemented in other manners. For example, the device embodiments described above are merely illustrative. For example, the division of the unit is only a logical function division. In actual implementation, there may be another division manner, for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, or an electrical, mechanical or other form of connection.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部单元来实现本发明实施例方案的目的。The units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the objectives of the embodiments of the present invention.
另外,在本发明各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以是两个或两个以上单元集成在一个单元中。上述集成的单元既可以采用硬件的形式实现,也可以采用软件功能单元的形式实现。In addition, each functional unit in each embodiment of the present invention may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit. The above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
所述集成的单元如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本发明的技术方案本质上或者说对现有技术做出贡献的部分,或者该技术方案的全部或部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本发明各个实施例所述方法的 全部或部分步骤。而前述的存储介质包括:U盘、移动硬盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、磁碟或者光盘等各种可以存储程序代码的介质。The integrated unit, if implemented in the form of a software functional unit and sold or used as a standalone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention contributes in essence or to the prior art, or all or part of the technical solution may be embodied in the form of a software product stored in a storage medium. Including a number of instructions for causing a computer device (which may be a personal computer, server, or network device, etc.) to perform the methods of the various embodiments of the present invention All or part of the steps. The foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .
以上所述,仅为本发明的具体实施方式,但本发明的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本发明揭露的技术范围内,可轻易想到各种等效的修改或替换,这些修改或替换都应涵盖在本发明的保护范围之内。因此,本发明的保护范围应以权利要求的保护范围为准。 The above is only the specific embodiment of the present invention, but the scope of the present invention is not limited thereto, and any equivalent person can be easily conceived within the technical scope of the present invention by any person skilled in the art. Modifications or substitutions are intended to be included within the scope of the invention. Therefore, the scope of protection of the present invention should be determined by the scope of the claims.

Claims (40)

  1. 一种软件定义网络SDN中数据转发方法,其特征在于:A data forwarding method in a software defined network SDN, characterized in that:
    接收所述SDN中第一交换设备发送的第一转发规则请求,根据所述第一转发规则请求中携带的数据信息确定对所述数据信息对应的数据进行转发的第一路径;Receiving a first forwarding rule request sent by the first switching device in the SDN, and determining, according to the data information carried in the first forwarding rule request, a first path for forwarding data corresponding to the data information;
    下发用于转发所述数据的第一转发规则给所述第一交换设备,以使所述第一交换设备封装包含第一路径的信息的所述数据并发送给第二交换设备,所述第一路径的信息是依据所述第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,使得所述第二交换设备根据所述第一路径的信息以及第二转发规则对所述数据进行转发,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。Dissipating a first forwarding rule for forwarding the data to the first switching device, so that the first switching device encapsulates the data including the information of the first path and sends the data to the second switching device, where The information of the first path is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement the data forwarding on the first path, so that the second switching device is configured according to the The information of a path and the second forwarding rule forward the data, the second forwarding rule is received by the second switching device before receiving the data, and enables the second switching device to The information of the first path forwards the data to a switching device on the first path that is directly connected to the second switching device.
  2. 根据权利要求1所述的SDN中数据转发的方法,其特征在于:The method for forwarding data in an SDN according to claim 1, wherein:
    所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。The second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, and the second forwarding rule is configured to include the path according to the received path information. The forwarding rule for the repeated forwarding of data for information.
  3. 根据权利要求1或2中所述的SDN中数据转发方法,其特征在于,所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。The data forwarding method in the SDN according to claim 1 or 2, wherein the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, and the unique between the switching device and the switching device directly connected thereto The interface identifier, or the unique identifier of the link between the switching device and the switching device to which it is directly connected.
  4. 根据权利要求1-3任一所述的SDN中数据转发方法,其特征在于,所述第一路径的信息嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。The data forwarding method in the SDN according to any one of claims 1-3, wherein the information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
  5. 根据权利要求1-4中任一所述的SDN中数据转发方法,其特征在于, 所述方法还包括:The data forwarding method in an SDN according to any one of claims 1 to 4, characterized in that The method further includes:
    创建组播组标识,所述组播组标识为唯一标识组播组的标识,所述组播组包含至少两个组播组成员,实现所述组播组成员间数据转发的交换设备包括所述第一交换设备和所述第二交换设备;Create a multicast group identifier, where the multicast group identifier is an identifier that uniquely identifies the multicast group, the multicast group includes at least two multicast group members, and the switching device that implements data forwarding between the multicast group members includes Describe the first switching device and the second switching device;
    相应的,所述第一转发规则和所述第二转发规则中还包括所述组播组标识。Correspondingly, the first forwarding rule and the second forwarding rule further include the multicast group identifier.
  6. 根据权利要求5所述的SDN中数据转发方法,其特征在于:实现所述组播组成员间数据转发的交换设备还包括第三交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;The data forwarding method in the SDN according to claim 5, wherein the switching device that implements data forwarding between the members of the multicast group further includes a third switching device, where the third switching device passes through two or more paths. a switching device for forwarding the data by the multicast group member;
    所述方法还包括:The method further includes:
    向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  7. 根据权利要求1-4中任一所述的SDN中数据转发方法,其特征在于,所述方法还包括:The method for forwarding data in an SDN according to any one of claims 1 to 4, wherein the method further comprises:
    设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;其中,与所述具备特定服务能力的设备直接连接的交换设备包括第四交换设备;Setting a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and a device having a specific service capability in the service chain is assigned an identifier that uniquely identifies the device; A switching device directly connected to a device having a specific service capability includes a fourth switching device;
    所述方法还包括:The method further includes:
    生成第四转发规则并下发给所述第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使 得所述第四交换设备将接收到的数据转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则。Generating a fourth forwarding rule and sending the fourth forwarding device to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device, so that And the fourth switching device forwards the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded.
  8. 根据权利要求7所述的SDN中数据转发方法,其特征在于,所述方法还包括:The data forwarding method in the SDN according to claim 7, wherein the method further comprises:
    接收第五交换设备发送的第五转发规则请求,根据所述第五转发规则请求中携带的数据的信息确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;Receiving a fifth forwarding rule request sent by the fifth switching device, determining, according to the information of the data carried in the fifth forwarding rule request, a service chain path to the seventh switching device, where the fifth switching device is connected to the service chain a switching device directly connected to the second specific service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third The specific service device is a specific service device directly adjacent in the service chain; the service chain path is to implement the data forwarding exchange according to the path of the second specific service device to the third specific service device a sequence of devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
    下发用于转发所述数据的第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收到的,并能够使所述第六交换设备根据服务链路径的信息将所述数据转发给所述服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。Dissipating a fifth forwarding rule for forwarding the data to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh switching device, or Sending to the sixth switching device on the path of the service chain, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data including the service chain path information, and enabling the sixth switching device to forward the data to other switching devices on the service chain path according to the information of the service chain path The sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  9. 一种软件定义网络SDN中数据转发方法,其特征在于:A data forwarding method in a software defined network SDN, characterized in that:
    第一交换设备根据接收到的数据向控制设备请求转发规则;The first switching device requests a forwarding rule from the control device according to the received data;
    所述第一交换设备接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给与所述第一交换 设备直连的第二交换设备,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;The first switching device receives the first forwarding rule returned by the control device, and encapsulates the data including the first path information to be sent to the first exchange according to the first forwarding rule. The second switching device directly connected to the device, where the information of the first path is in accordance with a sequence of switching devices that implement the data forwarding on the first path that forwards the data, and is represented by a unique identifier of a forwarding path between switching devices. the sequence of;
    所述第二交换设备接收所述第一交换设备发送的所述数据,所述第二交换设备根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,所述第二交换设备能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。The second switching device receives the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule. The switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the The second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
  10. 根据权利要求9所述的SDN中数据转发方法,其特征在于,所述方法还包括:The method of forwarding data in an SDN according to claim 9, wherein the method further comprises:
    所述第二交换设备将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息发送给与所述第二交换设备直接相连的交换设备,所述第二路径的信息是实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。Transmitting, by the second switching device, the information of the first path to a switching device directly connected to the second switching device, or the second switching device, the first path and the second switching device The information of the second path of the forwarding path between the directly connected switching device and the nth switching device is sent to the switching device directly connected to the second switching device, where the information of the second path is used to implement the data forwarding. The sequence of switching devices on the path, represented by a sequence of unique identifiers of forwarding paths between switching devices, where n is an integer and greater than or equal to 3.
  11. 根据权利要求9或10所述的SDN中数据转发方法,其特征在于,The data forwarding method in SDN according to claim 9 or 10, characterized in that
    所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。The second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after the topology relationship is established, and the second forwarding rule that includes the second forwarding rule is based on the path information. A forwarding rule that is capable of repeating forwarding of data containing path information.
  12. 根据权利要求9-11任一所述的SDN中数据转发方法,其特征在于,The data forwarding method in SDN according to any one of claims 9-11, characterized in that
    所述方法还包括:The method further includes:
    第i交换设备接收第i-1交换设备发送的第i-1路径信息和所述数据,所 述第i-1路径信息是根据实现所述数据转发的第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;The i-th switching device receives the i-th path information and the data sent by the i-th switching device, where The i-1th path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of the i-th switching device to the n-th switching device that implements the data forwarding; wherein i is an integer and is greater than or equal to 3 ;
    所述第i交换设备根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;Transmitting, by the i-th switching device, the data and the i-th path information to the i+1th switching device according to the (i-1th) path information, where the i-th path information is according to the implementation of the data forwarding a sequence of the first i+1 switching device to the nth switching device, and a sequence represented by a unique identifier of the forwarding path between the switching devices;
    所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备。The i-th switching device, the i-th switching device, and the (i+1)th switching device are switching devices on the first path.
  13. 根据权利要求12所述的SDN中数据转发方法,其特征在于,所述方法还包括:The method of forwarding data in an SDN according to claim 12, wherein the method further comprises:
    所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括:The sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
    所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
    通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
    所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  14. 根据权利要求9-13任一所述的SDN中数据转发方法,其特征在于:The data forwarding method in SDN according to any one of claims 9-13, characterized in that:
    所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。The first path information, the second path information, and the i-th path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device.
  15. 根据权利要求9-14任一所述的SDN中数据转发方法,其特征在于:The data forwarding method in SDN according to any one of claims 9-14, characterized in that:
    所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接 相连的交换设备之间链路的唯一标识。The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or the switching device directly A unique identifier for the link between the connected switching devices.
  16. 根据权利要求9-15任一所述的SDN中数据转发方法,其特征在于:The data forwarding method in SDN according to any one of claims 9-15, characterized in that:
    所述第一交换设备、所述第二交换设备和所述第三交换设备是同一组播组的成员,其中,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备,所述组播组的成员发送给其它成员的数据,能够被所述组播组的其它成员接收到;The first switching device, the second switching device, and the third switching device are members of the same multicast group, where the third switching device forwards the multicast group member through two or more paths. a data exchange device, the data sent by the members of the multicast group to other members can be received by other members of the multicast group;
    所述方法还包括:The method further includes:
    向所述第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。Sending, to the third switching device, a third forwarding rule that includes a multicast group identifier, so that the third switching device encapsulates the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  17. 根据权利要求9-15任一所述的SDN中数据转发方法,其特征在于,所述方法还包括:The method for forwarding data in an SDN according to any one of claims 9-15, wherein the method further comprises:
    第五交换设备向所述控制设备发送第五转发规则请求,并接收所述控制设备返回的到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务 能力的设备的唯一标识组合而成的序列;The fifth switching device sends a fifth forwarding rule request to the control device, and receives a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device is the second specific to the service chain. a switching device directly connected to the service capability device, the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device and the third specific service device are a specific service device directly adjacent to the service chain, where the service chain path is a sequence between the switching devices that implement the data forwarding according to the path from the second specific service device to the third specific service device a sequence, represented by a unique identifier of a forwarding path between the switching devices; the service chain is a service sequence formed by devices having specific service capabilities in the SDN, and devices having specific service capabilities in the service chain have An identifier that uniquely identifies the device, the service sequence being a sequence of unique identifiers of capable devices;
    所述第五交换设备将所述数据以及所述服务链路径信息封装后转发给所述第七交换设备或所述服务链路径上的第六交换设备;The fifth switching device encapsulates the data and the service chain path information and forwards the data to the seventh switching device or the sixth switching device on the service chain path;
    所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is that the sixth switching device receives the data including the service chain path information. Received previously; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device on the fifth path.
  18. 一种软件定义网络SDN中的控制设备,其特征在于,所述控制设备包括网络通信单元、控制消息处理单元、转发路径确定单元和转发规则管理单元;A control device in a software-defined network SDN, characterized in that the control device comprises a network communication unit, a control message processing unit, a forwarding path determining unit and a forwarding rule management unit;
    所述网络通信单元,用于接收SDN中的第一交换设备发送的第一转发规则请求,并将所述第一转发规则请求发送给所述控制消息处理单元;The network communication unit is configured to receive a first forwarding rule request sent by the first switching device in the SDN, and send the first forwarding rule request to the control message processing unit;
    所述控制消息处理单元,用于解析所述第一转发规则请求,将解析后的所述第一转发规则请求发送给所述转发路径确定单元,并将所述转发路径确定单元确定的第一路径的信息,以及所述转发规则管理单元生成的第一转发规则通过所述网络通信单元发送给所述第一交换设备,将所述转发规则管理单元生成的第二转发规则通过所述网络通信单元发送给所述第一路径上的第二交换设备;所述第一路径的信息是依据所述第一路径上交换设备的顺序,用交换设备之间转发路径的唯一标识表示的序列,所述第一路径的信息能够随所述数据转发给所述第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及所述第二转发规则对所述数据进行转发;The control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit The information of the path and the first forwarding rule generated by the forwarding rule management unit are sent to the first switching device by the network communication unit, and the second forwarding rule generated by the forwarding rule management unit is used to communicate by using the network Sending, by the unit, the second switching device on the first path; the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, The information of the first path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule;
    所述转发路径确定单元,用于根据所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息对应的数据转发的第一路径;The forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
    所述转发规则管理单元,用于生成所述第一转发规则和所述第二转发规则,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收 到的,并能够使所述第二交换设备根据所述第一路径的信息将所述数据转发给所述第一路径上与所述第二交换设备直接相连的交换设备。The forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule, where the second forwarding rule is that the second switching device receives before receiving the data And the second switching device is configured to forward the data to the switching device directly connected to the second switching device on the first path according to the information of the first path.
  19. 根据权利要求18所述的SDN中的控制设备,其特征在于:A control device in an SDN according to claim 18, wherein:
    所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,所述第二转发规则是依据接收到的路径信息对包含所述路径信息的数据重复转发的转发规则。The second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, and the second forwarding rule is configured to include the path according to the received path information. The forwarding rule for the repeated forwarding of data for information.
  20. 根据权利要求18或19中所述的SDN中的控制设备,其特征在于,所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。The control device in the SDN according to claim 18 or 19, wherein the unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, and the unique between the switching device and the switching device directly connected thereto The interface identifier, or the unique identifier of the link between the switching device and the switching device to which it is directly connected.
  21. 根据权利要求18-20任一所述的SDN中的控制设备,其特征在于,所述第一路径的信息嵌套在多协议标签交换MPLS消息中下发给所述第一交换设备。The control device in the SDN according to any one of claims 18 to 20, wherein the information of the first path is nested in the multi-protocol label switching MPLS message and sent to the first switching device.
  22. 根据权利要求18-21任一所述的SDN中的控制设备,其特征在于,所述控制设备还包括标识管理单元和拓扑管理单元:The control device in the SDN according to any one of claims 18-21, wherein the control device further comprises an identifier management unit and a topology management unit:
    所述标识管理单元,用于分配和回收所述SDN中交换设备之间转发路径的唯一标识;The identifier management unit is configured to allocate and reclaim a unique identifier of a forwarding path between the switching devices in the SDN;
    所述拓扑管理单元,用于根据所述SDN网络拓扑的变换,更新所述SDN的网络拓扑信息;The topology management unit is configured to update network topology information of the SDN according to the transformation of the SDN network topology;
    相应的,所述转发路径确定单元根据所述拓扑管理单元中记录的网络拓扑信息,以及所述标识管理单元分配的交换设备之间转发路径的唯一标识,结合所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息转发的第一路径。Correspondingly, the forwarding path determining unit determines the parsing sent by the unit according to the network topology information recorded in the topology management unit and the unique identifier of the forwarding path between the switching devices allocated by the identifier management unit. The first forwarding rule request determines a first path forwarded to the data information carried in the first forwarding rule request.
  23. 根据权利要求18-22任一所述的SDN中的控制设备,其特征在于,所述控制设备还包括组播组管理单元,The control device in the SDN according to any one of claims 18-22, wherein the control device further comprises a multicast group management unit,
    所述组播组管理单元,用于为所述SDN中的组播组分配组播组标识,所 述组播组标识唯一标识一个组播组,所述组播组包含至少两个组播组成员,组播组中一个成员发送的数据能够被组播组中其它成员接收到。The multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where The multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast group members, and data sent by one member of the multicast group can be received by other members in the multicast group.
  24. 根据权利要求23所述的SDN中的控制设备,其特征在于,A control device in an SDN according to claim 23, wherein
    所述转发规则管理单元,还用于向第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述第三交换设备是与所述组播组的成员直接相连的交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The forwarding rule management unit is further configured to send, to the third switching device, a third forwarding rule that includes the multicast group identifier, so that the third switching device encapsulates the packet to the next aggregation switching device according to the third forwarding rule. The data of the path information of the path is sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding. The third switching device is a switching device directly connected to a member of the multicast group, and the third switching device is a switching device that forwards data to the multicast group member through two or more paths; An aggregation switching device forwards the data to a multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths. Switching equipment.
  25. 根据权利要求18-22任一所述的SDN中的控制设备,其特征在于,所述控制设备还包括:The control device of the SDN according to any one of claims 18 to 22, wherein the control device further comprises:
    服务链设定单元,用于设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,并为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;a service chain setting unit, configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assigning a unique identifier to a device having a specific service capability in the service chain. Identification of the equipment;
    所述转发规则管理单元,还用于生成第四转发规则并下发给第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则,所述第四交换设备是所述服务链中与具备特定服务能力的设备直接连接的交换设备。The forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing the fourth switching device to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding rule that is received by the fourth switching device before receiving the data that needs to be forwarded. The fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
  26. 根据权利要求25所述的SDN中的控制设备,其特征在于:A control device in an SDN according to claim 25, wherein:
    所述网络通信单元还用于接收第五交换设备发送的第五转发规则请 求;The network communication unit is further configured to receive a fifth forwarding rule sent by the fifth switching device. begging;
    所述控制消息处理单元,还用于解析所述第五转发规则请求,并将解析后的所述第五转发规则请求发送给所述转发路径确定单元;The control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
    所述转发路径确定单元,还用于根据所述控制消息确定单元发送的解析后的所述第五转发规则请求,确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;The forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
    所述转发规则管理单元,还用于下发第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含服务链路径的信息的所述数据,并发送给第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径的信息的数据之前接收到的,并能够使所述第六交换设备根据所述服务链路径信息将所述数据转发给服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data including the information of the service chain path, and sends the data to the seventh exchange. The device is sent to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth forwarding rule is Receiving, by the sixth switching device, the data including the information of the service chain path, and enabling the sixth switching device to forward the data to the service chain path according to the service chain path information And the other switching device; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path.
  27. 一种软件定义网络SDN中数据转发***,包括第一交换设备和第二交换设备,所述第一交换设备与所述第二交换设备直接相连,其特征在于:A data forwarding system in a software-defined network SDN, comprising a first switching device and a second switching device, wherein the first switching device is directly connected to the second switching device, and is characterized in that:
    所述第一交换设备,用于根据接收到的数据向控制设备请求转发规则,接收所述控制设备返回的第一转发规则,并根据所述第一转发规则封装包含第一路径信息的所述数据发送给所述第二交换设备,所述第一路径的信息是根据转发所述数据的第一路径上实现所述数据转发的交换设备的先后 顺序,用交换设备之间转发路径的唯一标识表示的序列;The first switching device is configured to request a forwarding rule from the control device according to the received data, receive a first forwarding rule returned by the control device, and encapsulate the first path information according to the first forwarding rule. The data is sent to the second switching device, and the information of the first path is a sequence of switching devices that implement the data forwarding according to the first path for forwarding the data. Sequence, a sequence represented by a unique identifier of a forwarding path between switching devices;
    所述第二交换设备,用于接收第一交换设备发送的所述数据,所述第二交换设备根据所述第一路径的信息以及第二转发规则,向与所述第二交换设备直接相连的交换设备发送所述数据,所述第二转发规则是所述第二交换设备在接收到所述数据之前接收到的,所述第二交换设备能够根据所述第一路径的信息以及所述第二转发规则,将所述数据转发给与所述第二交换设备直接相连的交换设备,与所述第二交换设备直接相连的交换设备是所述第一路径上的交换设备。The second switching device is configured to receive the data sent by the first switching device, and the second switching device directly connects to the second switching device according to the information about the first path and the second forwarding rule. The switching device sends the data, the second forwarding rule is received by the second switching device before receiving the data, and the second switching device is capable of according to the information of the first path and the The second forwarding rule forwards the data to a switching device directly connected to the second switching device, and the switching device directly connected to the second switching device is a switching device on the first path.
  28. 根据权利要求27所述的SDN中数据转发***,其特征在于,The data forwarding system in SDN according to claim 27, wherein
    所述第二交换设备,还用于将所述第一路径的信息发送给与所述第二交换设备直接相连的交换设备,或所述第二交换设备将所述第一路径上与所述第二交换设备直接相连的交换设备到第n交换设备之间的转发路径的第二路径的信息,发送给与所述第二交换设备直接相连的交换设备,所述第二路径的信息是根据实现所述数据转发的路径上交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列,其中,n为整数且大于等于3。The second switching device is further configured to send information about the first path to a switching device directly connected to the second switching device, or the second switching device sends the first path to the The information about the second path of the forwarding path between the switching device directly connected to the second switching device and the second switching device is sent to the switching device directly connected to the second switching device, where the information of the second path is The sequence of the switching devices on the path for implementing the data forwarding, and the sequence represented by the unique identifier of the forwarding path between the switching devices, where n is an integer and is greater than or equal to 3.
  29. 根据权利要求27或28所述的SDN中数据转发***,其特征在于,The data forwarding system in SDN according to claim 27 or 28, characterized in that
    所述第二转发规则是在所述第二交换设备与其直接相连的交换设备建立拓扑关系时或建立拓扑关系之后生成的,包含所述第二转发规则的所述第二转发规则是依据路径信息能够对包含路径信息的数据重复转发的转发规则。The second forwarding rule is generated after the second switching device establishes a topological relationship with the switching device directly connected to the second switching device, or after the topology relationship is established, and the second forwarding rule that includes the second forwarding rule is based on the path information. A forwarding rule that is capable of repeating forwarding of data containing path information.
  30. 根据权利要求27-29任一所述的SDN中数据转发***,其特征在于,The SDN data forwarding system according to any one of claims 27-29, characterized in that
    所述数据转发***还包括第i交换设备、第i-1交换设备和第i+1交换设备,所述第i交换设备、所述第i-1交换设备以及所述第i+1交换设备是所述第一路径上的交换设备;The data forwarding system further includes an i-th switching device, an i-th switching device, and an i+1th switching device, the i-th switching device, the i-th switching device, and the i+1th switching device Is a switching device on the first path;
    所述第i交换设备,用于接收所述第i-1交换设备发送的第i-1路径信息 和所述数据,所述第i-1路径信息是根据实现所述数据转发的所述第i交换设备到第n交换设备的先后顺序,用交换设备间转发路径的唯一标识表示的序列;其中,i为整数且大于等于3;并根据所述第i-1路径信息,向所述第i+1交换设备发送所述数据和第i路径信息,所述第i路径信息是根据实现所述数据转发的所述第i+1交换设备到第n交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列。The i-th switching device is configured to receive the i-th path information sent by the i-th switching device And the data, the i-th path information is a sequence represented by a unique identifier of a forwarding path between switching devices according to a sequence of the i-th switching device to the n-th switching device that implements the data forwarding; And i is an integer and is greater than or equal to 3; and, according to the i-1th path information, sending the data and the i-th path information to the (i+1)th switching device, where the i-th path information is according to the implementation. The sequence of the i+1th switching device to the nth switching device forwarded by the data, using a sequence represented by a unique identifier of the forwarding path between the switching devices.
  31. 根据权利要求30所述的SDN中数据转发***,其特征在于,The data forwarding system in SDN according to claim 30, characterized in that
    所述第i交换设备根据所述第i-1路径信息,向第i+1交换设备发送所述数据和第i路径信息具体包括:The sending, by the ith switching device, the data and the ith path information to the (i+1)th switching device according to the (i-1)th path information specifically includes:
    所述第i交换设备从所述第i-1路径信息中剥离所述第i交换设备的转发路径的唯一标识,生成所述第i路径信息;Deleting the unique identifier of the forwarding path of the i-th switching device from the i-th path information, and generating the ith path information;
    通过所述第i交换设备的转发路径唯一标识,查询所述第i交换设备保存的第i转发规则,确定所述第i交换设备的出端口;Querying, by the forwarding path unique identifier of the i-th switching device, the ith forwarding rule saved by the i-th switching device, and determining an egress port of the i-th switching device;
    所述第i交换设备通过所述第i交换设备的出端口向第i+1交换设备发送所述数据和第i路径信息。The i-th switching device sends the data and the i-th path information to the (i+1)th switching device by using an egress port of the i-th switching device.
  32. 根据权利要求27-31任一所述的SDN中数据转发***,其特征在于:The data forwarding system in SDN according to any one of claims 27-31, characterized in that:
    所述第一路径信息,第二路径信息和第i路径信息采用多协议标签交换MPLS标签嵌套封装,一个MPLS标签头填充一个交换设备的转发路径唯一标识。The first path information, the second path information, and the i-th path information are encapsulated by a multi-protocol label switching MPLS label, and an MPLS label header fills a forwarding path unique identifier of a switching device.
  33. 根据权利要求27-32任一所述的SDN中数据转发***,其特征在于:The data forwarding system in SDN according to any one of claims 27-32, characterized in that:
    所述交换设备之间转发路径的唯一标识为交换设备的唯一标识、交换设备与其直接相连的交换设备之间的唯一接口标识、或交换设备与其直接相连的交换设备之间链路的唯一标识。The unique identifier of the forwarding path between the switching devices is a unique identifier of the switching device, a unique interface identifier between the switching device and the switching device directly connected thereto, or a unique identifier of the link between the switching device and the switching device directly connected thereto.
  34. 根据权利要求27-33任一所述的SDN中数据转发***,其特征在于:The data forwarding system in SDN according to any one of claims 27-33, characterized in that:
    所述第一交换设备、所述第二交换设备和所述第三交换设备是与同一组播组的成员直接相连的交换设备,其中,所述第三交换设备是通过两条 以上路径向所述组播组成员转发数据的交换设备,所述组播组的成员发送给其它成员的数据,能够被所述组播组的其它成员接收到;The first switching device, the second switching device, and the third switching device are switching devices directly connected to members of the same multicast group, where the third switching device passes two The above-mentioned path is a switching device that forwards data to the member of the multicast group, and the data sent by the members of the multicast group to other members can be received by other members of the multicast group;
    所述第三交换设备,用于接收所述控制设备发送的包含组播组标识的第三转发规则,根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The third switching device is configured to receive, by the control device, a third forwarding rule that includes a multicast group identifier, and encapsulate the path information of the path to the next aggregation switching device according to the third forwarding rule. The data is sent and sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding; the next aggregation switching device The switching device that forwards the data to the multicast group member, and the first switching device from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths.
  35. 根据权利要求27-33任一所述的SDN中数据转发***,其特征在于,所述SDN中数据转发***还包括第五交换设备、第六交换设备和第七交换设备;The SDN data forwarding system according to any one of claims 27 to 33, wherein the data forwarding system in the SDN further comprises a fifth switching device, a sixth switching device, and a seventh switching device;
    第五交换设备,用于向所述控制设备发送第五转发规则请求,并接收所述控制设备返回的到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备,所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备间的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,所述服务链中具备特定服务能力的设备具有唯一标识该设备的标识,所述服务序列是用所述具备特定服务能力的设备的唯一标识组合而成的序列;a fifth switching device, configured to send a fifth forwarding rule request to the control device, and receive a service chain path that is returned by the control device to the seventh switching device, where the fifth switching device is in the service chain a switching device directly connected to the second specific service capability device, the seventh switching device being a switching device directly connected to the third specific service capability device in the service chain, the second specific service device and the third specific device The service device is a specific service device directly adjacent to the service chain, and the service chain path is a switching device that implements the data forwarding according to a path from the second specific service device to the third specific service device. a sequential sequence, a sequence represented by a unique identifier of a forwarding path between the switching devices; the service chain is a service sequence formed by devices having specific service capabilities in the SDN, and the service chain has a specific service capability Device has an identity that uniquely identifies the device, and the service sequence is a unique combination of identifiers for the device with the particular service capability Into a sequence;
    所述第五交换设备将所述数据以及所述服务链路径信息转发给所述第七交换设备或所述服务链路径上的第六交换设备;The fifth switching device forwards the data and the service chain path information to the seventh switching device or the sixth switching device on the service chain path;
    所述第六交换设备,用于根据所述服务链路径信息以及第六转发规则 对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收的;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。The sixth switching device is configured to use the service chain path information and the sixth forwarding rule Forwarding the data, where the sixth forwarding rule is received by the sixth switching device before receiving the data including the service chain path information; wherein the sixth switching device is the fifth path And a switching device between the fifth switching device and the seventh switching device.
  36. 根据权利要求27-35任一所述的SDN中数据转发***,其特征在于,所述SDN中数据转发***还包括控制设备,所述控制设备包括网络通信单元、控制消息处理单元、转发路径确定单元和转发规则管理单元;The data forwarding system in SDN according to any one of claims 27 to 35, wherein the data forwarding system in the SDN further comprises a control device, wherein the control device comprises a network communication unit, a control message processing unit, and a forwarding path determination. Unit and forwarding rule management unit;
    所述网络通信单元,用于接收所述第一交换设备发送的第一转发规则请求,并将所述第一转发规则请求发送给所述控制消息处理单元;The network communication unit is configured to receive a first forwarding rule request sent by the first switching device, and send the first forwarding rule request to the control message processing unit;
    所述控制消息处理单元,用于解析所述第一转发规则请求,将解析后的所述第一转发规则请求发送给所述转发路径确定单元,并将所述转发路径确定单元确定的第一路径的信息以及所述转发规则管理单元生成的第一转发规则通过所述网络通信单元发送给所述第一交换设备,将所述转发规则管理单元生成的第二转发规则通过所述网络通信单元发送给所述第一路径上的第二交换设备;所述第一路径的信息是依据所述第一路径上交换设备的顺序,用交换设备之间转发路径的唯一标识表示的序列,所述第一路径的信息能够随所述数据转发给所述第二交换设备,使得所述第二交换设备根据所述第一路径的信息以及所述第二转发规则对所述数据进行转发;The control message processing unit is configured to parse the first forwarding rule request, send the parsed first forwarding rule request to the forwarding path determining unit, and determine the first determined by the forwarding path determining unit The information of the path and the first forwarding rule generated by the forwarding rule management unit are sent by the network communication unit to the first switching device, and the second forwarding rule generated by the forwarding rule management unit is used by the network communication unit. Sending to the second switching device on the first path; the information of the first path is a sequence represented by a unique identifier of a forwarding path between switching devices according to an order of switching devices on the first path, The information of the first path can be forwarded to the second switching device along with the data, so that the second switching device forwards the data according to the information of the first path and the second forwarding rule;
    所述转发路径确定单元,用于根据所述控制消息确定单元发送的解析后的所述第一转发规则请求,确定对所述第一转发规则请求中携带的数据信息对应的数据转发的第一路径;The forwarding path determining unit is configured to determine, according to the parsed first forwarding rule request sent by the control message determining unit, the first data forwarding corresponding to the data information carried in the first forwarding rule request path;
    所述转发规则管理单元,用于生成所述第一转发规则和所述第二转发规则。The forwarding rule management unit is configured to generate the first forwarding rule and the second forwarding rule.
  37. 根据权利要求36所述的SDN中数据转发***,其特征在于,The data forwarding system in SDN according to claim 36, wherein
    所述控制设备还包括组播组管理单元,The control device further includes a multicast group management unit,
    所述组播组管理单元,用于为所述SDN中的组播组分配组播组标识,所述组播组标识唯一标识一个组播组,所述组播组包含至少两个组播组成员, 组播组中一个成员发送的数据能够被组播组中其它成员接收到。The multicast group management unit is configured to allocate a multicast group identifier to the multicast group in the SDN, where the multicast group identifier uniquely identifies a multicast group, and the multicast group includes at least two multicast groups. Member, Data sent by one member of a multicast group can be received by other members of the multicast group.
  38. 根据权利要求37所述的SDN中数据转发***,其特征在于,The data forwarding system in SDN according to claim 37, wherein
    所述转发规则管理单元,还用于向第三交换设备发送包含组播组标识的第三转发规则,以使所述第三交换设备根据所述第三转发规则,封装到达下一汇聚交换设备的路径的路径信息的所述数据并发送;所述到达下一汇聚交换设备的路径的路径信息是按照实现数据转发的交换设备的先后顺序,用交换设备之间转发路径的唯一标识表示的序列;所述第三交换设备是与所述组播组的成员直接相连的交换设备,所述第三交换设备是通过两条以上路径向所述组播组成员转发数据的交换设备;所述下一汇聚交换设备是转发所述数据至组播组成员的路径上,从所述第三交换设备至组播组成员经过的第一个通过两条以上路径向所述组播组成员转发数据的交换设备。The forwarding rule management unit is further configured to send, to the third switching device, a third forwarding rule that includes the multicast group identifier, so that the third switching device encapsulates the packet to the next aggregation switching device according to the third forwarding rule. The data of the path information of the path is sent; the path information of the path to the next aggregation switching device is a sequence represented by a unique identifier of the forwarding path between the switching devices according to the sequence of the switching devices that implement data forwarding. The third switching device is a switching device directly connected to a member of the multicast group, and the third switching device is a switching device that forwards data to the multicast group member through two or more paths; An aggregation switching device forwards the data to a multicast group member, and the first one from the third switching device to the multicast group member forwards data to the multicast group member through two or more paths. Switching equipment.
  39. 根据权利要求36-38任一所述的SDN中数据转发***,其特征在于,所述控制设备还包括:The SDN data forwarding system according to any one of claims 36 to 38, wherein the control device further comprises:
    服务链设定单元,用于设定服务链,所述服务链是所述SDN中具备特定服务能力的设备构成的服务序列,并为所述服务链中具备特定服务能力的设备分配唯一标识该设备的标识;a service chain setting unit, configured to set a service chain, where the service chain is a service sequence formed by a device having a specific service capability in the SDN, and assigning a unique identifier to a device having a specific service capability in the service chain. Identification of the equipment;
    所述转发规则管理单元,还用于生成第四转发规则并下发给第四交换设备,所述第四转发规则包含与所述第四交换设备直接相连的第一特定服务能力设备的唯一标识,使得所述第四交换设备将接收到的数据下转发给所述第一特定服务能力的设备;所述第四转发规则是所述第四交换设备在接收到需要转发的数据之前接收的转发规则,所述第四交换设备是所述服务链中与具备特定服务能力的设备直接连接的交换设备。The forwarding rule management unit is further configured to generate a fourth forwarding rule and send the fourth forwarding rule to the fourth switching device, where the fourth forwarding rule includes a unique identifier of the first specific service capability device directly connected to the fourth switching device. And causing, by the fourth switching device, to forward the received data to the device of the first specific service capability; the fourth forwarding rule is a forwarding that is received by the fourth switching device before receiving the data that needs to be forwarded. The fourth switching device is a switching device in the service chain that is directly connected to a device having a specific service capability.
  40. 根据权利要求39所述的SDN中数据转发***,其特征在于:The data forwarding system in SDN according to claim 39, characterized in that:
    所述网络通信单元还用于接收第五交换设备发送的第五转发规则请求; The network communication unit is further configured to receive a fifth forwarding rule request sent by the fifth switching device;
    所述控制消息处理单元,还用于解析所述第五转发规则请求,并将解析后的所述第五转发规则请求发送给所述转发路径确定单元;The control message processing unit is further configured to parse the fifth forwarding rule request, and send the parsed fifth forwarding rule request to the forwarding path determining unit;
    所述转发路径确定单元,还用于根据所述控制消息确定单元发送的解析后的所述第五转发规则请求,确定到达第七交换设备的服务链路径,所述第五交换设备是与所述服务链中第二特定服务能力设备直接相连的交换设备,所述第七交换设备是与所述服务链中第三特定服务能力设备直接相连的交换设备,所述第二特定服务设备与所述第三特定服务设备是在所述服务链中直接相邻的特定服务设备;所述服务链路径是按照所述第二特定服务设备到所述第三特定服务设备的路径上实现所述数据转发的交换设备的先后顺序,用所述交换设备之间转发路径的唯一标识表示的序列;The forwarding path determining unit is further configured to determine, according to the parsed fifth forwarding rule request sent by the control message determining unit, the service chain path to the seventh switching device, where the fifth switching device is a switching device directly connected to a second specific service capability device in the service chain, where the seventh switching device is a switching device directly connected to a third specific service capability device in the service chain, and the second specific service device Said third specific service device is a specific service device directly adjacent in said service chain; said service chain path is implemented on the path of said second specific service device to said third specific service device a sequence of forwarding switching devices, a sequence represented by a unique identifier of a forwarding path between the switching devices;
    所述转发规则管理单元,还用于下发第五转发规则给所述第五交换设备,以使所述第五交换设备封装包含所述服务链路径信息的所述数据,并发送给所述第七交换设备,或发送给所述服务链路径上的第六交换设备,使得所述第六交换设备根据所述服务链路径信息以及第六转发规则对所述数据进行转发,所述第六转发规则是所述第六交换设备在接收到包含所述服务链路径信息的数据之前接收到的,并能够使所述第六交换设备根据所述服务链路径信息将所述数据转发给服务链路径上其它交换设备;其中,所述第六交换设备是所述第五路径上在所述第五交换设备与所述第七交换设备之间的交换设备。 The forwarding rule management unit is further configured to send a fifth forwarding rule to the fifth switching device, so that the fifth switching device encapsulates the data that includes the service chain path information, and sends the data to the a seventh switching device, or sent to the sixth switching device on the service chain path, so that the sixth switching device forwards the data according to the service chain path information and the sixth forwarding rule, where the sixth The forwarding rule is that the sixth switching device receives the data including the service chain path information, and enables the sixth switching device to forward the data to the service chain according to the service chain path information. The other switching device on the path; wherein the sixth switching device is a switching device between the fifth switching device and the seventh switching device in the fifth path.
PCT/CN2014/094144 2014-12-17 2014-12-17 Data forwarding method, device and system in software-defined networking (sdn) WO2016095142A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/CN2014/094144 WO2016095142A1 (en) 2014-12-17 2014-12-17 Data forwarding method, device and system in software-defined networking (sdn)
CN201480083893.9A CN107005479B (en) 2014-12-17 2014-12-17 Method, device and system for forwarding data in Software Defined Network (SDN)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2014/094144 WO2016095142A1 (en) 2014-12-17 2014-12-17 Data forwarding method, device and system in software-defined networking (sdn)

Publications (1)

Publication Number Publication Date
WO2016095142A1 true WO2016095142A1 (en) 2016-06-23

Family

ID=56125605

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/094144 WO2016095142A1 (en) 2014-12-17 2014-12-17 Data forwarding method, device and system in software-defined networking (sdn)

Country Status (2)

Country Link
CN (1) CN107005479B (en)
WO (1) WO2016095142A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108737481A (en) * 2017-04-24 2018-11-02 诺基亚通信公司 Communication means and communication equipment
WO2018233031A1 (en) * 2017-06-21 2018-12-27 深圳市盛路物联通讯技术有限公司 Internet of things-based data transmission control method and system
CN114374739A (en) * 2022-02-22 2022-04-19 深圳易可达科技有限公司 Information docking system and method

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2019205082A1 (en) * 2018-04-27 2019-10-31 华为技术有限公司 Network and network management method
CN109743326B (en) * 2019-01-10 2021-09-07 新华三云计算技术有限公司 Traffic transmission method and device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140313898A1 (en) * 2013-04-18 2014-10-23 Electronics And Telecommunications Research Institute Method for delivering emergency traffic in software defined networking networks and apparatus for performing the same
CN104158749A (en) * 2013-05-14 2014-11-19 华为技术有限公司 Message forwarding method in software defined networking, network equipment and software defined networking
CN104184663A (en) * 2014-07-17 2014-12-03 北京交通大学 Communication method and device based on software-defined network and integrated identification network

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10097452B2 (en) * 2012-04-16 2018-10-09 Telefonaktiebolaget Lm Ericsson (Publ) Chaining of inline services using software defined networking
CN103200122B (en) * 2013-03-05 2016-08-10 国家电网公司 A kind of software defined network is organized the processing method of table, system and controller
CN103457776B (en) * 2013-09-04 2016-10-12 杭州华三通信技术有限公司 The method and device of Dynamical Deployment convergent point in a kind of bidirectional protocol independent multicast

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140313898A1 (en) * 2013-04-18 2014-10-23 Electronics And Telecommunications Research Institute Method for delivering emergency traffic in software defined networking networks and apparatus for performing the same
CN104158749A (en) * 2013-05-14 2014-11-19 华为技术有限公司 Message forwarding method in software defined networking, network equipment and software defined networking
CN104184663A (en) * 2014-07-17 2014-12-03 北京交通大学 Communication method and device based on software-defined network and integrated identification network

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108737481A (en) * 2017-04-24 2018-11-02 诺基亚通信公司 Communication means and communication equipment
CN108737481B (en) * 2017-04-24 2021-04-23 诺基亚通信公司 Communication method and communication device
WO2018233031A1 (en) * 2017-06-21 2018-12-27 深圳市盛路物联通讯技术有限公司 Internet of things-based data transmission control method and system
CN114374739A (en) * 2022-02-22 2022-04-19 深圳易可达科技有限公司 Information docking system and method

Also Published As

Publication number Publication date
CN107005479B (en) 2020-06-26
CN107005479A (en) 2017-08-01

Similar Documents

Publication Publication Date Title
CN107005462B (en) Method, equipment and system for forwarding data in software defined network
CN114073052B (en) Systems, methods, and computer readable media for slice-based routing
US10063470B2 (en) Data center network system based on software-defined network and packet forwarding method, address resolution method, routing controller thereof
US8873398B2 (en) Implementing EPC in a cloud computer with openflow data plane
CN107733799B (en) Message transmission method and device
CN102724118B (en) Label distribution method and device
US9722923B2 (en) Method operating in a fixed access network and UEs
IL230406A (en) Method and cloud computing system for implementing a 3g packet core in a cloud computer with openflow data and control planes
CN104205055A (en) Implementing EPC in cloud computer with OPENFLOW data plane
US10630508B2 (en) Dynamic customer VLAN identifiers in a telecommunications network
WO2016095142A1 (en) Data forwarding method, device and system in software-defined networking (sdn)
CN103795623A (en) Method and device for realizing traffic interflow between virtual devices
WO2015039617A1 (en) Method, system, and device for packet processing
US9565112B2 (en) Load balancing in a link aggregation
US20170310581A1 (en) Communication Network, Communication Network Management Method, and Management System
WO2015066878A1 (en) Control device and control method in software defined network (sdn)
CN111147372B (en) Downlink message sending and forwarding method and device
CN102710812B (en) A kind of method, subscriber equipment and NNI interface gateway setting up tunnel
CN106716940A (en) Allocating capacity of a network connection to data steams based on type
WO2012075846A1 (en) Method and device for broadcasting domain-division time-division packet
CN110300073A (en) Cascade target selecting method, polyplant and the storage medium of port
Burakowski Role of network virtualization in designing Future Internet
CN115442304A (en) Resource determination method, forwarding device, controller, system and medium
CN115379525A (en) Communication processing method and related equipment
CN115242713A (en) IPV 6-based segmented routing message forwarding method, configuration method and equipment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14908177

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14908177

Country of ref document: EP

Kind code of ref document: A1