WO2019020114A1 - Load sharing method and system, and computer-readable storage medium - Google Patents

Load sharing method and system, and computer-readable storage medium Download PDF

Info

Publication number
WO2019020114A1
WO2019020114A1 PCT/CN2018/097511 CN2018097511W WO2019020114A1 WO 2019020114 A1 WO2019020114 A1 WO 2019020114A1 CN 2018097511 W CN2018097511 W CN 2018097511W WO 2019020114 A1 WO2019020114 A1 WO 2019020114A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
load sharing
platform
control
forwarding
Prior art date
Application number
PCT/CN2018/097511
Other languages
French (fr)
Chinese (zh)
Inventor
王怀滨
都珂
洪先进
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2019020114A1 publication Critical patent/WO2019020114A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/12Avoiding congestion; Recovering from congestion
    • H04L47/125Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering

Definitions

  • the present disclosure relates to the field of communications, for example, to a load sharing method, system, and computer readable storage medium.
  • SDN Software Defined Network
  • NFV Network Function Virtualization
  • Broadband network gateway (BNG), as a traditional broadband access gateway device, plays a very important role in user broadband access services and scenarios.
  • BNG Broadband network gateway
  • the main requirements for BNG equipment in user access are user authentication, access control, and traffic scheduling.
  • QoS/HQoS Quality of Service/Hierarchical Quality of Service
  • the requirements for such aspects are constantly improving.
  • the requirements for the open and programmable capabilities of BNG equipment to provide services are increasing.
  • VLAN virtual local area network
  • the present invention provides a load sharing method, a system, and a computer readable storage medium, which implement load sharing of a forwarding platform and improve utilization of components in the forwarding platform.
  • the present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet.
  • the present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement the load sharing method as described above. .
  • the present application also provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by a processor to implement the load sharing method as described above.
  • FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application
  • FIG. 2 is a schematic flowchart of a first embodiment of a load sharing method according to the present application
  • the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform, and A refinement flow diagram of performing flow forwarding on the data packet according to the result of the flow policy and the user information;
  • FIG. 4 is a schematic flowchart of a second embodiment of a load sharing method according to the present application.
  • FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application.
  • FIG. 6 is a flow chart of performing a flow policy on a data packet corresponding to the control packet in the forwarding platform according to the best component in the forwarding platform in the example of the present application, and according to the traffic policy result and the broadband access
  • FIG. 7 is a schematic flowchart of a fourth embodiment of a load sharing method according to the present application.
  • FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.
  • VLAN virtual local area network
  • the present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet.
  • the forwarding platform After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving.
  • the control packet sent by the forwarding platform the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform.
  • the load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Performing a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performing flow forwarding on the data packet according to the traffic policy result and the user information, thereby implementing load sharing of the forwarding platform. And improve the utilization of components within the forwarding platform.
  • FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application.
  • the terminal in the embodiment of the present application may be a personal computer (PC), or may be a residential gateway (RG), a customer premises equipment (CPE), or a network telephone (Voice over Intemet Protocol. VoIP). ), a terminal device having a broadband dialing function, such as an Internet Protocol Television (IPTV), a Set Top Box (STB), or an Integrated Access Device (IAD).
  • PC personal computer
  • RG residential gateway
  • CPE customer premises equipment
  • VoIP Voice over Intemet Protocol. VoIP
  • IPTV Internet Protocol Television
  • STB Set Top Box
  • IAD Integrated Access Device
  • the terminal may include a processor 1001, such as a CPU, a network interface 1004, a user interface 1003, a memory 1005, and a communication bus 1002.
  • the communication bus 1002 is arranged to implement connection communication between these components.
  • the user interface 1003 can include a display, an input unit such as a keyboard, and the user interface 1003 can also include a standard wired interface and a wireless interface.
  • Network interface 1004 may include a standard wired interface and a wireless interface (such as a WI-FI interface).
  • the memory 1005 may be a random access memory (RAM) or a non-volatile memory such as a disk storage.
  • the memory 1005 may also be a storage device independent of the aforementioned processor 1001.
  • the terminal may further include a camera, a radio frequency (RF) circuit, a sensor, an audio circuit, a WiFi module, and the like.
  • the sensors can be, for example, light sensors, motion sensors, and other sensors.
  • the light sensor may include an ambient light sensor and a proximity sensor, wherein the ambient light sensor can adjust the brightness of the display according to the brightness of the ambient light, and the proximity sensor can close the display when the mobile terminal moves to the ear. And at least one of the backlights.
  • the gravity acceleration sensor can detect the magnitude of acceleration in a plurality of directions (generally three axes), and can detect the magnitude and direction of gravity when stationary, and can be used for identifying the posture of the mobile terminal (such as horizontal and vertical screen switching). , related games, magnetometer attitude calibration), vibration recognition related functions (such as pedometer and tapping); of course, the mobile terminal can also be equipped with other sensors such as gyroscopes, barometers, hygrometers, thermometers, and infrared sensors. I will not repeat them here.
  • terminal structure shown in FIG. 1 does not constitute a limitation to the terminal, and may include more or less components than those illustrated, or a combination of certain components, or different component arrangements.
  • an operating system may be included in the memory 1005 as a computer storage medium.
  • a network communication module may be included in the memory 1005 as a computer storage medium.
  • a user interface module may be included in the memory 1005 as a computer storage medium.
  • a load sharing program may be included in the memory 1005 as a computer storage medium.
  • the network interface 1004 may be configured to connect to the background server for data communication with the background server; the user interface 1003 may be configured to connect to the client (user end) for data communication with the client; and the processor 1001 may be configured to call the load sharing program stored in the memory 1005, and perform the following operations: receiving a control message sent by the forwarding platform, and extracting user information according to the control message; and receiving a preset load according to the user information
  • the sharing algorithm performs a calculation to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; and the user equipment is accessed to the optimal component, so that the optimal component is
  • the data packet corresponding to the control packet in the forwarding platform performs a traffic policy, and forwards the data packet according to the result of the execution flow policy and the user information.
  • the processor 1001 can call the load sharing program stored in the memory 1005, and also performs the following operations:
  • the user equipment is accessed by the user equipment, and the request message corresponding to the initial message is sent to the user equipment, so that the user equipment passes the
  • the best component and the control platform perform the interaction of the message protocol corresponding to the proposal message to negotiate the use of the network security system authentication mode; and initiate the network security system according to the negotiation result and the user information.
  • An authentication request so that the network security system performs authentication and authorization processing on the user, and feeds back user authorization information corresponding to the user; and obtains a broadband access user table according to the user authorization information and the user information, and And the best component sends the broadband access user table, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet, and according to the result of the execution flow policy and the The broadband access user table forwards the data packet.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the first port of the plurality of ports is abnormal, the user equipment is accessed to the second port of the optimal component that is in a normal state.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform sends a control message to the control platform; and the control platform extracts according to the control message.
  • User information the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines an optimal component of the user equipment corresponding to the user information in the forwarding platform, and connects the user equipment Entering the best component; the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user The information is forwarded by the data packet.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the state of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform responds to the initial message, and generates an offer report corresponding to the initial message. Sending to the user equipment, so that the user equipment performs the interaction with the message protocol corresponding to the proposal message by using the optimal component to negotiate the use of the network security system authentication mode; The control platform initiates an authentication request to the network security system according to the negotiation result and the user information, so that the network security system performs authentication and authorization processing on the user information, and feeds back a user corresponding to the user.
  • the authorization information is obtained by the control platform according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component; the best in the forwarding platform
  • the component performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy
  • the step of performing the flow forwarding of the data packet by the user information includes: performing, by the best component in the forwarding platform, a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The result of the execution of the flow policy and the broadband access user table forward the data packet.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the optimal component in the forwarding platform matches the data feature corresponding to the data packet corresponding to the control packet, And performing flow classification according to the flow feature, so that the flow policy is executed; the optimal component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform receives an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing, And determining, according to the protocol type of the initial packet and the preset flow table, whether the initial packet is a control packet or a data packet; and based on the initial packet being a control packet, encapsulating the control packet, And sending, by the preset tunnel corresponding to the encapsulation protocol, the encapsulated control packet to the control platform; and determining, according to the data packet, whether there is a broadband connection corresponding to the user in the forwarding platform.
  • the user table if yes, performing the following steps on the data packet: the best component in the forwarding platform performs a traffic policy on the data packet, and according to the result of the execution flow policy and the broadband The access user table forwards the data packet.
  • the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform decapsulates the encapsulated control message, and according to the decapsulated Control messages to extract user information.
  • FIG. 2 is a schematic flowchart diagram of a first embodiment of a load sharing method according to the present application.
  • the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S10, S20, and S30.
  • step S10 the control packet sent by the forwarding platform is received, and user information is extracted according to the control packet.
  • the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform.
  • the forwarding platform refers to a part of the system for receiving and forwarding data packets.
  • the forwarding platform may include a forwarding plane of a broadband access gateway (BNG) and a virtual broadband access gateway (Virtual Broadcast Network Gateway). , vBNG) forwarding plane, mainly responsible for the forwarding and control of user traffic, and the execution of user-related flow policies.
  • BNG broadband access gateway
  • vBNG Virtual Broadcast Network Gateway
  • the control platform refers to the part used in the system to transmit commands and calculate entries.
  • the control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.
  • the control platform when the control platform receives the control packet sent by the forwarding platform, the control information is extracted according to the control packet, including the user's multiple address (MAC) information and the access chain. Road information, etc.
  • MAC multiple address
  • step S20 the user information is calculated according to the preset load sharing algorithm, and the optimal component of the user equipment corresponding to the user information is determined in the forwarding platform.
  • the control platform calculates an optimal component for accessing the user in the forwarding platform according to the user information and the preset load sharing algorithm.
  • six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6.
  • two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T2 includes three access ports P4, P5, and P6.
  • the corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6).
  • the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6.
  • the syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4). And B6 (P6, P4, P5) and so on.
  • the number of the user access port, the forwarding component, and the backup component is not limited to the embodiment, and the data in this embodiment is only for convenience of description.
  • the number of ports in the forwarding component and the backup component is determined according to actual conditions.
  • the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful.
  • B1 P1, P2, P3
  • P1 the master port.
  • the next port in the backup component is automatically selected as the user equipment access port.
  • which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components.
  • the user equipment in order to prevent the port state from being abnormal, the user equipment cannot be accessed.
  • the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, And accessing the user equipment to the first port; when the status of the first port is abnormal, accessing the user equipment to a second port of a plurality of ports that is in a normal state.
  • the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm.
  • the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo.
  • the basic syntax of the backup component is: B ⁇ (P1, P2, P3), Mod(MAC) ⁇ .
  • each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B ⁇ (Px, Py, Pz), Mod(MAC), VMAC ⁇ , where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.
  • step S30 the user equipment is accessed to the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The flow policy result and the user information stream forward the data packet.
  • the load sharing system further includes a network security system, where the control packet and the data packet are derived from an initial report corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband. Text.
  • FIG. 3 is that the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform.
  • a detailed flowchart of the flow forwarding of the data packet according to the result of the flow policy and the user information, and step S30 includes steps S31 to S34.
  • step S31 the user equipment is accessed to the best component.
  • step S32 the initial message is sent, and the proposal message corresponding to the initial message is sent to the user equipment, so that the user equipment performs the best component with the control platform.
  • the interaction of the message protocol corresponding to the proposed message is negotiated to use the network security system authentication mode.
  • step S33 an authentication request is initiated to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back corresponding to the user.
  • User authorization information is included in step S33.
  • step S34 the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is delivered to the optimal component, so that the optimal component pair is And performing a flow policy on the data packet corresponding to the control packet, and performing flow forwarding on the data packet according to the result of the flow policy and the broadband access user table.
  • the load sharing system further includes a network security system
  • the network security system refers to an authentication, authorization, and accounting AAA system.
  • AAA is an abbreviation for Authentication, Authorization, and Accounting. It is a security management mechanism for access control in network security. It provides three security services: authentication, authorization, and accounting.
  • the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing.
  • the control message is derived from an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing.
  • the broadband dialing method includes an Ethernet-based Point to Point Protocol over Ethernet (PPPoE) dialing and a Dynamic Host Configuration Protocol (DHCP) dialing.
  • PPPoE Point to Point Protocol over Ethernet
  • DHCP Dynamic Host Configuration Protocol
  • the user equipment After the user equipment performs broadband dialing, it will send and dial the broadband dialing.
  • the initial packet corresponding to the mode is sent to the forwarding platform.
  • the corresponding initial packet is a PPPoE Active Discovery Initiation (PADI) packet; after the DHCP dialup, the corresponding initial packet is a DHCP Discover message.
  • PADI PPPoE Active Discovery Initiation
  • the initial The message is sent, and the proposal message corresponding to the initial message is generated and sent to the user equipment.
  • the proposal messages corresponding to the PADI message and the DHCP Discover message are respectively a PPPoE Active Discovery Offer (PADO) message and a DHCP Offer message.
  • PADO PPPoE Active Discovery Offer
  • the user equipment performs the interaction of the corresponding message protocol with the control platform through the best component of the access, and negotiates the network security system authentication mode during the interaction.
  • the packet protocols corresponding to the PADO packet and the DHCP Offer packet are the PPPoE protocol and the DHCP protocol, respectively.
  • an authentication request is initiated to the AAA system according to the negotiation result and the user information, so that the AAA system authenticates the user. And authorized processing, and feedback user authorization information corresponding to the user, and further obtaining a broadband access user table according to the user authorization information and the user information.
  • the broadband access user table includes a user's MAC address, an IP address, and user authorization information.
  • the broadband access user table is sent to the optimal component, so that the optimal component performs a traffic policy, such as a QoS policy and security, on the data packet corresponding to the control packet. The policy and the like, and forwarding the data packet according to the result of the execution of the flow policy and the broadband access user table.
  • the present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy, The user information forwards the data packet.
  • the forwarding platform After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving.
  • the control packet sent by the forwarding platform the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform.
  • the load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Transmitting a data packet corresponding to the control packet in the forwarding platform, and performing a flow policy according to the result of the execution of the traffic policy and the user information, thereby implementing forwarding of the data packet Load sharing and improved utilization of components within the forwarding platform.
  • FIG. 4 is a schematic flowchart diagram of a second embodiment of a load sharing method according to the present application.
  • the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S100 to S400.
  • step S100 the forwarding platform sends a control message to the control platform.
  • step S200 the control platform extracts user information according to the control message.
  • step S300 the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines that an optimal component of the user equipment corresponding to the user information is accessed in the forwarding platform, and the user is The device accesses the best component.
  • step S400 the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user information pair.
  • the data packet is forwarded by the stream.
  • the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform.
  • the forwarding platform is used to receive and forward data packets in the system.
  • the forwarding platform may include a forwarding plane of the BNG and a forwarding plane of the vBNG, and is mainly responsible for forwarding and controlling user traffic, and related to the user. Execution of the strategy.
  • the control platform refers to the part used in the system to transmit commands and calculate entries.
  • the control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.
  • the load sharing method includes: the forwarding platform sends a control message to the control platform, and the control platform extracts user information according to the control message, where the user information includes the user's MAC information and access link information. Wait.
  • the control platform calculates, according to the user information, an optimal component for accessing the user in the forwarding platform by using a preset load sharing algorithm, which can help the user determine that the forwarding platform is most suitable for the user.
  • the component to which the device is connected For convenience of description, in the embodiment, six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6.
  • two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T1 includes three access ports P4, P5, and P6.
  • the corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6).
  • the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6.
  • the syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4), and B6 (P6, P4, P5), etc.
  • the number of user access ports, forwarding components, and backup components is not limited to this embodiment, and the data in this embodiment is for convenience of description.
  • the number of ports in the forwarding component and the backup component is determined according to actual conditions.
  • the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful.
  • B1 P1, P2, P3
  • P1 the master port.
  • the next port in the backup component is automatically selected as the user equipment access port.
  • which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components.
  • the user equipment in order to prevent the port state from being abnormal, the user equipment cannot be accessed.
  • the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, The user equipment is connected to the first port; when the status of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state.
  • the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm.
  • the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo.
  • the basic syntax of the backup component is: B ⁇ (P1, P2, P3), Mod(MAC) ⁇ .
  • each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B ⁇ (Px, Py, Pz), Mod(MAC), VMAC ⁇ , where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.
  • the user equipment is connected to the optimal component, and a traffic policy is performed on the data packet corresponding to the control packet by using the optimal component, and the data packet is performed according to the result of the traffic policy.
  • Stream forwarding The application implements load sharing of the forwarding platform and improves the utilization of components in the forwarding platform.
  • FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application.
  • the third embodiment shown in Fig. 5 is described in the second embodiment shown in Fig. 4.
  • the load sharing system further includes a network security system, and the control packet and the data packet are derived from an initial packet corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband, the load
  • the sharing method includes steps S310, S320, and S330 between the step S300 and the step S400 in addition to the steps S100 to S400 in FIG.
  • step S310 the control platform responds to the initial message, and generates an offer message corresponding to the initial message to be sent to the user equipment, so that the user equipment passes the best component. Performing interaction with the message platform corresponding to the proposal message with the control platform to negotiate the use of the network security system authentication mode.
  • step S320 the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and provides feedback.
  • User authorization information corresponding to the user.
  • the control platform needs to perform the interaction of the corresponding message protocol, and the user is authenticated and authorized by the network security system.
  • the user authorization information corresponding to the user can obtain the broadband access user list.
  • the optimal component responds to the proposal message corresponding to the initial message, and generates a message protocol corresponding to the proposal message to be sent to the message protocol.
  • the user equipment is configured to enable the user equipment to perform the interaction of the message protocol through the optimal component and the control platform to negotiate the use of the network security system authentication mode.
  • the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, and the network security system performs authentication and authorization processing on the user, and obtains user authorization information.
  • the network security system refers to the authentication, authorization, and accounting AAA systems. It is a security management mechanism for access control in network security. It provides authentication, authorization, and accounting. service.
  • the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing.
  • step S330 the control platform obtains a broadband access user table according to the user authorization information and the user information, and delivers the broadband access user table to the optimal component.
  • the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component, where the broadband access user table includes User's MAC address, IP address, and user authorization information.
  • the load sharing method performs step S400, and the best component in the forwarding platform performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the execution flow policy.
  • the broadband access user table forwards the data packet.
  • step S400 is a flow chart of performing a flow policy on a data packet corresponding to the control packet, and performing a flow policy according to the result of the execution flow policy and the broadband access user table pair.
  • a schematic diagram of the refinement flow of the data packet for stream forwarding, that is, step S400 includes steps S411 and S412.
  • step S411 the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby executing a flow policy.
  • step S412 the best component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  • the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby Execute a flow policy.
  • a traffic policy is to classify user traffic into packets and provide equal QoS services for the same type of traffic to provide differentiated services for different service types. For example, rate limiting, filtering, packet statistics, and redirection (policy routing) can be performed according to different traffic classifications.
  • the flow policy includes QoS policies and security policies.
  • the best component in the forwarding platform forwards the data packet according to the result of executing the traffic policy and the broadband access user table.
  • FIG. 7 is a schematic flowchart diagram of a fourth embodiment of a load sharing method according to the present application.
  • the fourth embodiment of FIG. 7 is described based on the third embodiment shown in FIG. 5, and the load sharing method further includes steps S800, S900, and S1000.
  • the forwarding platform receives the initial packet corresponding to the broadband dialing mode that is sent by the user equipment after the broadband dialing, and distinguishes the initial report according to the protocol type of the initial packet and the preset flow table. If the initial message is a control message, the process proceeds to step S900. If the initial message is a data message, the process proceeds to step S1000.
  • control packet is encapsulated based on the initial packet, and the encapsulated control packet is sent to the portal through a preset tunnel corresponding to the control packet.
  • the control platform The control platform.
  • the initial packet corresponding to the broadband dialing is sent to the forwarding platform.
  • the initial report needs to be determined according to the protocol type of the initial packet and the preset flow table. Whether the control packet is a data packet or a data packet, only the control packet can be sent to the control platform for processing through the forwarding platform.
  • the preset flow table may be an OpenFlow flow table pre-stored in the forwarding platform, and each flow entry of the OpenFlow flow table is composed of three parts: a header field for packet matching, and is used for statistics. Counters that match the number of packets, which are used to show how the matched packets are processed (Actions). In the judgment, the header content of the received initial message is matched according to the header field.
  • the encapsulation is a process of attaching the necessary protocol information to the data before the network transmission.
  • the encapsulation protocol includes a Generic Routing Encapsulation (GRE) protocol and a Layer 2 Forwarding Protocol (L2F protocol).
  • GRE Generic Routing Encapsulation
  • L2F Layer 2 Forwarding Protocol
  • the second layer of the virtual private network (L2VPN) encapsulation protocol and the trunk encapsulation protocol, and the preset tunnels corresponding to the encapsulation protocol include a GRE tunnel, an L2F tunnel, an L2VPN tunnel, and a trunk tunnel.
  • step S200 in FIG. 5, wherein the step 200 includes step S210.
  • step S210 the control platform decapsulates the encapsulated control message, and extracts user information according to the decapsulated control message.
  • the control platform decapsulates the encapsulated control packet, and extracts the user information according to the decapsulated control packet.
  • Decapsulation is the reverse process of encapsulation, which refers to the process of removing protocol control information layer by layer.
  • step S1000 it is determined whether there is a broadband access user table corresponding to the user in the forwarding platform, and if yes, performing step S400 on the data packet, if the initial packet is a data packet.
  • the best component in the forwarding platform performs a flow policy on the data packet, and forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  • the data packet when the data packet is distinguished from the initial packet, it is further determined whether there is a broadband access user table corresponding to the user in the forwarding platform.
  • the forwarding platform has the broadband access user table corresponding to the user, the best component in the forwarding platform performs a traffic policy, such as a QoS policy and a security policy, on the data packet, and according to the traffic policy result.
  • the data packet is forwarded by the broadband access user table of the user.
  • the data packet is discarded. Of course, this situation exists only in the initial stage, and the forwarding platform has not received the broadband access user table corresponding to the user. .
  • FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.
  • the forwarding platform includes a first user table management module, a control packet encapsulation module, a flow classification module, and a data packet forwarding module.
  • the control platform includes a second user table management module, a message protocol processing module, and a control packet.
  • the encapsulation module and the load sharing policy module are included in the forwarding platform.
  • the forwarding platform when the forwarding platform receives the control packet sent by the user equipment, the control packet is encapsulated in the control packet encapsulation module, and the encapsulated control packet is sent to the control through a preset tunnel.
  • the platform decapsulates the encapsulated control packet by extracting the control packet decapsulation module in the control platform, and extracts user information.
  • the load sharing policy is requested by the load sharing policy module according to the user information, so that the load sharing strategy is used in the load sharing policy module to calculate, and the access in the forwarding platform is determined to correspond to the user information. The best component of the user device and access the user device to the best component.
  • the message protocol processing module responds to the control message, and generates an offer message corresponding to the control message to be sent to the user equipment, so that the user equipment passes the optimal group price.
  • the control platform performs an interaction of the message protocol corresponding to the proposal message.
  • the message protocol processing module in the control platform initiates an authentication request to the network security system according to the user information, so that the network security system performs authentication and authorization processing on the user, and The user authorization information corresponding to the user is fed back to the message protocol processing module.
  • the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component.
  • the flow classification module in the forwarding platform matches the data feature to the data packet, and performs traffic classification according to the flow feature, thereby executing a flow policy; and performing the flow policy according to the result and the broadband connection.
  • the data packet forwarding module in the forwarding platform forwards the data packet to the user table.
  • the present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement any of the above embodiments.
  • the present application further provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by the processor to implement the load sharing method according to any of the above embodiments.
  • the embodiments of the computer readable storage medium of the present application are substantially the same as the embodiments of the load sharing method described above, and are not described herein.
  • the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better.
  • Implementation Based on such understanding, the technical solution of the present application, which is essential or contributes to the related art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, as described above).
  • the disk, the optical disk includes a plurality of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the method described in the various embodiments of the present application.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Disclosed is a load sharing method. The load sharing method is applied to a load sharing system. The load sharing system comprises: a forwarding platform and a control platform. The load sharing method comprises: receiving a control message sent by the forwarding platform, and extracting user information according to the control message; making calculation through a pre-set load sharing algorithm according to the user information, so as to determine the best assembly, for access of a user equipment corresponding to the user information, in the forwarding platform; the user equipment accessing the best assembly, so that the best assembly executes a stream policy on a data message, corresponding to the control message, in the forwarding platform and performs stream forwarding on the data message according to a result of the execution of the stream policy and the user information.

Description

负荷分担方法、***及计算机可读存储介质Load sharing method, system and computer readable storage medium
本公开要求在2017年07月27日提交中国专利局、申请号为201710636450.3的中国专利申请的优先权,该申请的全部内容通过引用结合在本公开中。The present disclosure claims the priority of the Chinese Patent Application, filed on Jul. 27, 2017, the entire disclosure of
技术领域Technical field
本公开涉及通信领域,例如涉及一种负荷分担方法、***及计算机可读存储介质。The present disclosure relates to the field of communications, for example, to a load sharing method, system, and computer readable storage medium.
背景技术Background technique
随着软件定义网络(Software Defined Network,SDN)技术和网络功能虚拟化(Network Function Virtualization,NFV)技术的发展,城域网从传统以网络为核心的架构朝着以数据中心为核心的网络架构演进,传统的网元设备也从专业化朝着通用化演进。而传统的网元设备从专业化朝着通用化演进主要需要解决两个解耦:控制与转发的解耦,软件与硬件的解耦。With the development of Software Defined Network (SDN) technology and Network Function Virtualization (NFV) technology, the metropolitan area network moves from the traditional network-centric architecture to the data center-centric network architecture. Evolution, traditional network element equipment has also evolved from specialization to generalization. The evolution of traditional network element equipment from specialization to generalization mainly needs to solve two decoupling: decoupling of control and forwarding, decoupling of software and hardware.
宽带接入网关(Broadband network gateway,BNG)作为传统的宽带接入网关设备,在用户宽带接入业务和场景中起着非常重要的作用。一般而言,对BNG设备在用户接入上的主要要求是用户认证、接入控制和流量调度等。然而,随着各种互联网业务的层出不穷,对BNG设备支持的用户的会话数、用户接入带宽、用户支持服务质量/分层服务质量(Quality of Service/Hierarchical Quality of Service,QoS/HQoS)能力等方面的要求不断提高,例如对BNG设备对外提供业务开放、可编程的能力的要求越来越高。基于上述原因,BNG设备有必要基于SDN/NFV的架构实现上述两个解耦,因此,BNG转发与控制的解耦已成为一种趋势。然而目前在BNG转发与控制解耦后,用户设备接入转发平台内进行负荷分担时,同一虚拟局域网(Virtual Local Area Network,VLAN)的端口只能接到同一转发平台内组件中,从而导致转发平台内组件的利用率较低。Broadband network gateway (BNG), as a traditional broadband access gateway device, plays a very important role in user broadband access services and scenarios. In general, the main requirements for BNG equipment in user access are user authentication, access control, and traffic scheduling. However, with the emergence of various Internet services, the number of sessions supported by the BNG device, the user access bandwidth, and the Quality of Service/Hierarchical Quality of Service (QoS/HQoS) capability. The requirements for such aspects are constantly improving. For example, the requirements for the open and programmable capabilities of BNG equipment to provide services are increasing. For the above reasons, it is necessary for the BNG equipment to implement the above two decoupling based on the SDN/NFV architecture. Therefore, the decoupling of BNG forwarding and control has become a trend. However, when the BNG forwarding and control are decoupled, the port of the same virtual local area network (VLAN) can only be connected to the same forwarding platform component when the user equipment is connected to the forwarding platform for load sharing. The utilization of components within the platform is low.
发明内容Summary of the invention
本申请提供一种负荷分担方法、***及计算机可读存储介质,实现转发平台的负荷分担,提高转发平台内组件的利用率。The present invention provides a load sharing method, a system, and a computer readable storage medium, which implement load sharing of a forwarding platform and improve utilization of components in the forwarding platform.
本申请提供一种负荷分担方法,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括:接收所 述转发平台发送的控制报文,并根据所述控制报文提取用户信息;根据所述用户信息通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件;将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发。The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet.
本申请还提供一种负荷分担***,所述负荷分担***包括:控制平台、转发平台和负荷分担程序,所述负荷分担程序被所述控制平台和转发平台执行时实现如上所述的负荷分担方法。The present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement the load sharing method as described above. .
本申请还提供一种计算机可读存储介质,所述计算机可读存储介质上存储有负荷分担程序,所述负荷分担程序被处理器执行时实现如上所述的负荷分担方法。The present application also provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by a processor to implement the load sharing method as described above.
附图概述BRIEF abstract
图1为本申请实施例方案涉及的硬件运行环境的终端结构示意图;1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application;
图2为本申请负荷分担方法第一实施例的流程示意图;2 is a schematic flowchart of a first embodiment of a load sharing method according to the present application;
图3为本申请实施例中将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发的细化流程示意图;In the embodiment of the present application, the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform, and A refinement flow diagram of performing flow forwarding on the data packet according to the result of the flow policy and the user information;
图4为本申请负荷分担方法第二实施例的流程示意图;4 is a schematic flowchart of a second embodiment of a load sharing method according to the present application;
图5为本申请负荷分担方法第三实施例的流程示意图;FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application;
图6为本申请实例中所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述宽带接入用户表对所述数据报文进行流转发的细化流程示意图;6 is a flow chart of performing a flow policy on a data packet corresponding to the control packet in the forwarding platform according to the best component in the forwarding platform in the example of the present application, and according to the traffic policy result and the broadband access A detailed flow diagram of the flow forwarding of the data packet by the user table;
图7为本申请负荷分担方法第四实施例的流程示意图;7 is a schematic flowchart of a fourth embodiment of a load sharing method according to the present application;
图8为本申请负荷分担方法第四实施例涉及的时序图。FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.
本申请目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The implementation, functional features and advantages of the present application will be further described with reference to the accompanying drawings.
具体实施方式Detailed ways
应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限定本发明。It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
由于在相关技术中,在BNG转发平台与控制平台解耦后,用户设备接入转发平台内进行负荷分担时,同一虚拟局域网(VLAN)的端口只能接到同一转发平台内组件中,从而导致转发平台内组件的利用率较低。In the related art, when the BNG forwarding platform is decoupled from the control platform, and the user equipment accesses the forwarding platform for load sharing, the ports of the same virtual local area network (VLAN) can only be connected to the components in the same forwarding platform, thereby causing The utilization of components within the forwarding platform is low.
本申请提供一种负荷分担方法,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括:接收所述转发平台发送的控制报文,并根据所述控制报文提取用户信息;根据所述用户信息通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件;将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发。通过上述方式,本申请基于转发平台与控制平台解耦后,此时转发平台具备了资源池化的基础,而资源池化的重要特点就是转发平台内的业务动态负荷分担,当控制平台在接收到转发平台发送的控制报文时,可提取出用户信息,并根据该用户信息通过预设负荷分担算法进行计算,从而确定出所述转发平台内接入所述用户的最佳组件,该预设负荷分担算法基于当前的用户设备接入情况来帮助用户确定出该转发平台内最适合该用户设备接入的组件,然后将所述用户设备接入到该最佳组件中,最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发,从而实现了转发平台的负荷分担,并提高了转发平台内组件的利用率。The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation by using a preset load sharing algorithm according to the user information, and determining an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the traffic policy result and the user The information is forwarded by the data packet. After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving. When the control packet sent by the forwarding platform is sent, the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform. The load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Performing a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performing flow forwarding on the data packet according to the traffic policy result and the user information, thereby implementing load sharing of the forwarding platform. And improve the utilization of components within the forwarding platform.
如图1所示,图1为本申请实施例方案涉及的硬件运行环境的终端结构示意图。As shown in FIG. 1 , FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment according to an embodiment of the present application.
本申请实施例中的终端可以是个人计算机(Personal Computer,PC),也可以是住宅网关(Residential Gateway,RG)、用户侧设备(Customer Premise Equipment.CPE)、网络电话(Voice over Intemet Protocol.VoIP)、网络电视(Internet Protocol Television,IPTV)、机顶盒(Set Top Box,STB)、综合接入设备(Integrated Access Device,IAD)等具有宽带拨号功能的终端设备。The terminal in the embodiment of the present application may be a personal computer (PC), or may be a residential gateway (RG), a customer premises equipment (CPE), or a network telephone (Voice over Intemet Protocol. VoIP). ), a terminal device having a broadband dialing function, such as an Internet Protocol Television (IPTV), a Set Top Box (STB), or an Integrated Access Device (IAD).
如图1所示,该终端可以包括:处理器1001,例如CPU,网络接口1004, 用户接口1003,存储器1005,通信总线1002。其中,通信总线1002设置为实现这些组件之间的连接通信。用户接口1003可以包括显示屏(Display)、输入单元比如键盘(Keyboard),用户接口1003还可以包括标准的有线接口和无线接口。网络接口1004可以包括标准的有线接口和无线接口(如WI-FI接口)。存储器1005可以是高速随机存储器(random access memory,RAM),也可以是稳定的存储器(non-volatile memory),例如磁盘存储器。存储器1005还可以是独立于前述处理器1001的存储装置。As shown in FIG. 1, the terminal may include a processor 1001, such as a CPU, a network interface 1004, a user interface 1003, a memory 1005, and a communication bus 1002. Among them, the communication bus 1002 is arranged to implement connection communication between these components. The user interface 1003 can include a display, an input unit such as a keyboard, and the user interface 1003 can also include a standard wired interface and a wireless interface. Network interface 1004 may include a standard wired interface and a wireless interface (such as a WI-FI interface). The memory 1005 may be a random access memory (RAM) or a non-volatile memory such as a disk storage. The memory 1005 may also be a storage device independent of the aforementioned processor 1001.
在一实施例中,终端还可以包括摄像头、射频(Radio Frequency,RF)电路,传感器、音频电路、以及WiFi模块等。传感器可以是比如光传感器、运动传感器以及其他传感器。在一实施例中,光传感器可包括环境光传感器及接近传感器,其中,环境光传感器可根据环境光线的明暗来调节显示屏的亮度,接近传感器可在移动终端移动到耳边时,关闭显示屏和背光中的至少一项。作为运动传感器的一种,重力加速度传感器可检测多个方向上(一般为三轴)加速度的大小,静止时可检测出重力的大小及方向,可用于识别移动终端姿态的应用(比如横竖屏切换、相关游戏、磁力计姿态校准)、振动识别相关功能(比如计步器与敲击)等;当然,移动终端还可配置陀螺仪、气压计、湿度计、温度计、以及红外线传感器等其他传感器,在此不再赘述。In an embodiment, the terminal may further include a camera, a radio frequency (RF) circuit, a sensor, an audio circuit, a WiFi module, and the like. The sensors can be, for example, light sensors, motion sensors, and other sensors. In an embodiment, the light sensor may include an ambient light sensor and a proximity sensor, wherein the ambient light sensor can adjust the brightness of the display according to the brightness of the ambient light, and the proximity sensor can close the display when the mobile terminal moves to the ear. And at least one of the backlights. As a kind of motion sensor, the gravity acceleration sensor can detect the magnitude of acceleration in a plurality of directions (generally three axes), and can detect the magnitude and direction of gravity when stationary, and can be used for identifying the posture of the mobile terminal (such as horizontal and vertical screen switching). , related games, magnetometer attitude calibration), vibration recognition related functions (such as pedometer and tapping); of course, the mobile terminal can also be equipped with other sensors such as gyroscopes, barometers, hygrometers, thermometers, and infrared sensors. I will not repeat them here.
本领域技术人员可以理解,图1中示出的终端结构并不构成对终端的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件布置。It will be understood by those skilled in the art that the terminal structure shown in FIG. 1 does not constitute a limitation to the terminal, and may include more or less components than those illustrated, or a combination of certain components, or different component arrangements.
如图1所示,作为一种计算机存储介质的存储器1005中可以包括操作***、网络通信模块、用户接口模块以及负荷分担程序。As shown in FIG. 1, an operating system, a network communication module, a user interface module, and a load sharing program may be included in the memory 1005 as a computer storage medium.
在图1所示的终端中,网络接口1004可以设置为连接后台服务器,与后台服务器进行数据通信;用户接口1003可以设置为连接客户端(用户端),与客户端进行数据通信;而处理器1001可以设置为调用存储器1005中存储的负荷分担程序,并执行以下操作:接收所述转发平台发送的控制报文,并根据所述控制报文提取用户信息;根据所述用户信息通过预设负荷分担算法进行计算,以确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件;将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。In the terminal shown in FIG. 1, the network interface 1004 may be configured to connect to the background server for data communication with the background server; the user interface 1003 may be configured to connect to the client (user end) for data communication with the client; and the processor 1001 may be configured to call the load sharing program stored in the memory 1005, and perform the following operations: receiving a control message sent by the forwarding platform, and extracting user information according to the control message; and receiving a preset load according to the user information The sharing algorithm performs a calculation to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; and the user equipment is accessed to the optimal component, so that the optimal component is The data packet corresponding to the control packet in the forwarding platform performs a traffic policy, and forwards the data packet according to the result of the execution flow policy and the user information.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序, 还执行以下操作:In an embodiment, the processor 1001 can call the load sharing program stored in the memory 1005, and also performs the following operations:
将所述用户设备接入所述最佳组件;对所述初始报文进行响应,并生成与所述初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式;根据所述协商结果和所述用户信息向所述网络安全***发起认证请求,以使得所述网络安全***对用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息;根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表,以使得所述最佳组件对与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。And the user equipment is accessed by the user equipment, and the request message corresponding to the initial message is sent to the user equipment, so that the user equipment passes the The best component and the control platform perform the interaction of the message protocol corresponding to the proposal message to negotiate the use of the network security system authentication mode; and initiate the network security system according to the negotiation result and the user information. An authentication request, so that the network security system performs authentication and authorization processing on the user, and feeds back user authorization information corresponding to the user; and obtains a broadband access user table according to the user authorization information and the user information, and And the best component sends the broadband access user table, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet, and according to the result of the execution flow policy and the The broadband access user table forwards the data packet.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:当多个端口中的第一端口状态正常时,将所述用户设备接入所述第一端口;当多个端口中的第一端口状态异常时,将所述用户设备接入所述最佳组件中状态正常的第二端口。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the first port of the plurality of ports is abnormal, the user equipment is accessed to the second port of the optimal component that is in a normal state.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:所述转发平台向所述控制平台发送控制报文;所述控制平台根据所述控制报文提取用户信息;所述控制平台根据所述用户信息通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件,并将所述用户设备接入所述最佳组件;所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform sends a control message to the control platform; and the control platform extracts according to the control message. User information; the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines an optimal component of the user equipment corresponding to the user information in the forwarding platform, and connects the user equipment Entering the best component; the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user The information is forwarded by the data packet.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:当多个端口中的第一端口状态正常时,将所述用户设备接入所述第一端口;当所述第一端口状态异常时,将所述用户设备接入多个端口中状态正常的第二端口。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: when the first port status of the multiple ports is normal, the user equipment is accessed to the first port. When the state of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:所述控制平台对所述初始报文进行响应,并生成与所述初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式;所述控制平台根据所述协商结果和所述用户信息向所述网络安全***发起认证请求,以使得所述网络安全***对所述用户信息进行 认证和授权处理,并反馈与所述用户对应的用户授权信息;所述控制平台根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表;所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发的步骤,包括:所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform responds to the initial message, and generates an offer report corresponding to the initial message. Sending to the user equipment, so that the user equipment performs the interaction with the message protocol corresponding to the proposal message by using the optimal component to negotiate the use of the network security system authentication mode; The control platform initiates an authentication request to the network security system according to the negotiation result and the user information, so that the network security system performs authentication and authorization processing on the user information, and feeds back a user corresponding to the user. The authorization information is obtained by the control platform according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component; the best in the forwarding platform The component performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy The step of performing the flow forwarding of the data packet by the user information includes: performing, by the best component in the forwarding platform, a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The result of the execution of the flow policy and the broadband access user table forward the data packet.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:所述转发平台内的最佳组件对与所述控制报文对应的数据报文匹配流特征,并根据所述流特征进行流分类,从而执行流策略;所述转发平台内的最佳组件根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the optimal component in the forwarding platform matches the data feature corresponding to the data packet corresponding to the control packet, And performing flow classification according to the flow feature, so that the flow policy is executed; the optimal component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:所述转发平台接收用户设备宽带拨号后发送的与所述宽带拨号方式相对应的初始报文,并根据所述初始报文的协议类型和预设流表区分所述初始报文是控制报文还是数据报文;基于所述初始报文是控制报文,对所述控制报文进行封装,并通过与封装协议对应的预设隧道将所述封装后的控制报文发送至所述控制平台;基于所述初始报文是数据报文,判断所述转发平台内是否有用户对应的宽带接入用户表,若有,则对所述数据报文执行以下步骤:所述转发平台内的最佳组件对所述数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the forwarding platform receives an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing, And determining, according to the protocol type of the initial packet and the preset flow table, whether the initial packet is a control packet or a data packet; and based on the initial packet being a control packet, encapsulating the control packet, And sending, by the preset tunnel corresponding to the encapsulation protocol, the encapsulated control packet to the control platform; and determining, according to the data packet, whether there is a broadband connection corresponding to the user in the forwarding platform. In the user table, if yes, performing the following steps on the data packet: the best component in the forwarding platform performs a traffic policy on the data packet, and according to the result of the execution flow policy and the broadband The access user table forwards the data packet.
在一实施例中,处理器1001可以调用存储器1005中存储的负荷分担程序,还执行以下操作:所述控制平台对所述封装后的控制报文进行解封装,并根据所述解封装后的控制报文提取用户信息。In an embodiment, the processor 1001 may call the load sharing program stored in the memory 1005, and further perform the following operations: the control platform decapsulates the encapsulated control message, and according to the decapsulated Control messages to extract user information.
请参阅图2,图2为本申请负荷分担方法第一实施例的流程示意图。Please refer to FIG. 2. FIG. 2 is a schematic flowchart diagram of a first embodiment of a load sharing method according to the present application.
在本申请实施例中,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括步骤S10、S20和S30。In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S10, S20, and S30.
在步骤S10中,接收所述转发平台发送的控制报文,并根据所述控制报文提取用户信息。In step S10, the control packet sent by the forwarding platform is received, and user information is extracted according to the control packet.
在本申请实施例中,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台。其中,转发平台是指***中用来进行数据报文的接收、转发的部分,转发平台可以包括宽带接入网关(Broadcast Network Gateway,BNG)的转发面和虚拟宽带接入网关(Virtual Broadcast Network Gateway,vBNG)的转发面,主要负责用户流量的转发和控制,以及对用户相关的流策略的执行。而控制平台是指***中用来传送指令、计算表项的部分,控制平台可以包括BNG的控制面和vBNG的控制面,主要进行宽带用户接入的协议协商、用户认证、接入控制和用户管理等。In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform. The forwarding platform refers to a part of the system for receiving and forwarding data packets. The forwarding platform may include a forwarding plane of a broadband access gateway (BNG) and a virtual broadband access gateway (Virtual Broadcast Network Gateway). , vBNG) forwarding plane, mainly responsible for the forwarding and control of user traffic, and the execution of user-related flow policies. The control platform refers to the part used in the system to transmit commands and calculate entries. The control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.
在本申请实施例中,当控制平台接收到转发平台发送的控制报文时,会根据该控制报文提取出用户信息,包括用户的多址信道(Media Address Control,MAC)信息和接入链路信息等。In the embodiment of the present application, when the control platform receives the control packet sent by the forwarding platform, the control information is extracted according to the control packet, including the user's multiple address (MAC) information and the access chain. Road information, etc.
在步骤S20中,根据所述用户信息通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件。In step S20, the user information is calculated according to the preset load sharing algorithm, and the optimal component of the user equipment corresponding to the user information is determined in the forwarding platform.
在本申请实施例中,控制平台会根据用户信息和预设负荷分担算法计算出转发平台内接入该用户的最佳组件。为方便说明,在本实施例中以6个用户接入端口为例进行说明,分别记为P1、P2、P3、P4、P5、以及P6。在一实施例中,划分出2个转发组件,分别记为T1和T2,假设T1包括P1、P2、以及P3三个接入端口,T2包括P4、P5、以及P6三个接入端口,则对应的语法表达分别为T1(P1,P2,P3),T2(P4、P5、P6)。根据分组算法,将转发组件自动分成若干备份组件,分别记为B1、B2、B3、B4、B5、以及B6等。这些备份组件的语法为B1(P1,P2,P3),B2(P2,P3,P1)、B3(P3,P1,P2)、B4(P4,P5,P6)、B5(P5,P6,P4)、以及B6(P6,P4,P5)等。在应用实施例中,用户接入端口、转发组件和备份组件的数量不限于本实施例,本实施例中的数据仅为了方便说明。在应用实施例中,转发组件和备份组件中的端口数根据实际情况确定。此外,转发组件中的端口没有主备的区分,表示一种分组,而备份组件中的端口是有状态的。比如B1(P1,P2,P3),其中P1为主端口,当P1状态关闭或者异常后,自动选择备份组件中的下一个端口作为用户设备接入端口。在一实施例中,用户设备应该接入到哪个备份组件,是通过预设负荷分担算法计算出的,即所计算出的最佳组件为备份组件中的某一个。在一实施例中,为了避免端口状态异常,导致用户设备无法接入,因此,通过负荷分担算法所确定出的最佳组件中有多个端口,当多个端口中的第一端口状态正常时,将所述 用户设备接入所述第一端口;当所述第一端口状态异常时,将所述用户设备接入多个端口中的中状态正常的第二端口。在一实施例中,预设负荷分担算法可以根据用户的MAC信息,或用户报文信息(如802.1P信息),或用户的接入链路信息(如VLAN信息)等,当然,也可以将这些信息综合考虑,形成综合的负荷分担算法。例如,根据用户的MAC信息进行求模,根据模的结果进行负荷分担,备份组件的基本语法组成为:B{(P1,P2,P3),Mod(MAC)}。在一实施例中,每个备份组件都需要有虚拟MAC,同一个转发组件内的不同备份组件的虚拟MAC是不同的。因此,备份组件的基本语法组成为:B{(Px,Py,Pz),Mod(MAC),VMAC},其中B为备份组件,MAC为用户的MAC地址,Px、Py、Pz为用户接入端口,VMAC为备份组件的虚拟MAC地址。从而,根据该负荷分担算法确定所述转发平台内接入所述用户的最佳组件,即最适合该用户设备接入的备份组件。In the embodiment of the present application, the control platform calculates an optimal component for accessing the user in the forwarding platform according to the user information and the preset load sharing algorithm. For convenience of description, in the embodiment, six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6. In an embodiment, two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T2 includes three access ports P4, P5, and P6. The corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6). According to the grouping algorithm, the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6. The syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4). And B6 (P6, P4, P5) and so on. In the application embodiment, the number of the user access port, the forwarding component, and the backup component is not limited to the embodiment, and the data in this embodiment is only for convenience of description. In an application embodiment, the number of ports in the forwarding component and the backup component is determined according to actual conditions. In addition, the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful. For example, B1 (P1, P2, P3), where P1 is the master port. When the P1 state is closed or abnormal, the next port in the backup component is automatically selected as the user equipment access port. In an embodiment, which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components. In an embodiment, in order to prevent the port state from being abnormal, the user equipment cannot be accessed. Therefore, the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, And accessing the user equipment to the first port; when the status of the first port is abnormal, accessing the user equipment to a second port of a plurality of ports that is in a normal state. In an embodiment, the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm. For example, the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo. The basic syntax of the backup component is: B{(P1, P2, P3), Mod(MAC)}. In an embodiment, each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B{(Px, Py, Pz), Mod(MAC), VMAC}, where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.
在步骤S30中,将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发。In step S30, the user equipment is accessed to the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the The flow policy result and the user information stream forward the data packet.
在本申请实施例中,所述负荷分担***还包括网络安全***,所述控制报文和数据报文来源于用户设备宽带拨号时向所述转发平台发送的与宽带拨号方式相对应的初始报文。如图3所示,图3为将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述用户信息对所述数据报文进行流转发的细化流程示意图,步骤S30包括步骤S31至S34。In the embodiment of the present application, the load sharing system further includes a network security system, where the control packet and the data packet are derived from an initial report corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband. Text. As shown in FIG. 3, FIG. 3 is that the user equipment is connected to the optimal component, so that the optimal component performs a flow policy on a data packet corresponding to the control packet in the forwarding platform. And a detailed flowchart of the flow forwarding of the data packet according to the result of the flow policy and the user information, and step S30 includes steps S31 to S34.
在步骤S31中,将所述用户设备接入所述最佳组件。In step S31, the user equipment is accessed to the best component.
在步骤S32中,对所述初始报文进行响应,并生成与初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式。In step S32, the initial message is sent, and the proposal message corresponding to the initial message is sent to the user equipment, so that the user equipment performs the best component with the control platform. The interaction of the message protocol corresponding to the proposed message is negotiated to use the network security system authentication mode.
在步骤S33中,根据所述协商的结果和所述用户信息向所述网络安全***发起认证请求,以使得所述网络安全***对所述用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息。In step S33, an authentication request is initiated to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back corresponding to the user. User authorization information.
在步骤S34中,根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表,以使得所述最佳组件对与所 述控制报文对应的数据报文执行流策略,并根据所述流策略结果和所述宽带接入用户表对所述数据报文进行流转发。In step S34, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is delivered to the optimal component, so that the optimal component pair is And performing a flow policy on the data packet corresponding to the control packet, and performing flow forwarding on the data packet according to the result of the flow policy and the broadband access user table.
在本申请实施例中,所述负荷分担***还包括网络安全***,网络安全***,是指认证、授权和计费AAA***。其中,AAA是认证(Authentication)、授权(Authorization)和计费(Accounting)的简称,是网络安全中进行访问控制的一种安全管理机制,提供认证、授权和计费三种安全服务。在一实施例中,认证是对用户的身份进行验证,判断其是否为合法用户;授权是对通过认证的用户,授权其可以使用哪些服务;计费是记录用户使用网络服务的资源情况,这些信息将作为计费的依据。此外,所述控制报文来源于用户设备宽带拨号后发送的与宽带拨号方式相对应的初始报文。其中,宽带拨号方式包括基于以太网的点对点协议(Point to Point Protocol over Ethernet,PPPoE)拨号和动态主机配置协议(Dynamic Host Configuration Protocol,DHCP)拨号,用户设备进行宽带拨号后,会发送与宽带拨号方式对应的初始报文到转发平台中。在一实施例中,PPPoE拨号后,对应的初始报文为PPPoE主动发现初始(PPPoE Active Discovery Initiation,PADI)报文;DHCP拨号后,对应的初始报文为DHCP Discover报文。In the embodiment of the present application, the load sharing system further includes a network security system, and the network security system refers to an authentication, authorization, and accounting AAA system. AAA is an abbreviation for Authentication, Authorization, and Accounting. It is a security management mechanism for access control in network security. It provides three security services: authentication, authorization, and accounting. In an embodiment, the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing. In addition, the control message is derived from an initial message corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing. The broadband dialing method includes an Ethernet-based Point to Point Protocol over Ethernet (PPPoE) dialing and a Dynamic Host Configuration Protocol (DHCP) dialing. After the user equipment performs broadband dialing, it will send and dial the broadband dialing. The initial packet corresponding to the mode is sent to the forwarding platform. In an embodiment, after the PPPoE dials, the corresponding initial packet is a PPPoE Active Discovery Initiation (PADI) packet; after the DHCP dialup, the corresponding initial packet is a DHCP Discover message.
在本申请实施例中,所述控制平台根据上述负荷分担算法计算出所述转发平台内接入所述用户的最佳组件后,将所述用户设备接入所述最佳组件后,对初始报文进行响应,并生成与初始报文对应的提议报文发送至用户设备。在一实施例中,与PADI报文和DHCP Discover报文对应的提议报文分别为PPPoE主动发现提议(PPPoE Active Discovery Offer.PADO)报文和DHCP Offer报文。在一实施例中,使得用户设备通过接入的最佳组件与控制平台进行对应报文协议的交互,在交互过程中协商使用网络安全***认证方式。其中,与PADO报文和DHCP Offer报文对应的报文协议分别为PPPoE协议和DHCP协议。In the embodiment of the present application, after the control platform calculates the best component of the user in the forwarding platform according to the load sharing algorithm, after the user equipment accesses the optimal component, the initial The message is sent, and the proposal message corresponding to the initial message is generated and sent to the user equipment. In an embodiment, the proposal messages corresponding to the PADI message and the DHCP Discover message are respectively a PPPoE Active Discovery Offer (PADO) message and a DHCP Offer message. In an embodiment, the user equipment performs the interaction of the corresponding message protocol with the control platform through the best component of the access, and negotiates the network security system authentication mode during the interaction. The packet protocols corresponding to the PADO packet and the DHCP Offer packet are the PPPoE protocol and the DHCP protocol, respectively.
在一实施例中,为了得到宽带接入用户表,从而进行流转发,因此,根据所述协商结果和用户信息向所述AAA***发起认证请求,以使得所述AAA***对所述用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息,进而根据所述用户授权信息和所述用户信息得到宽带接入用户表。其中,该宽带接入用户表包括用户的MAC地址、IP地址和用户授权信息。在一实施例中,将该宽带接入用户表下发至所述最佳组件,以使得所述最佳组件对与所述控制报文对应的数据报文执行流策略,如QoS策略和安全策略等,并根据所述执行 流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In an embodiment, in order to obtain a broadband access user table, and performing flow forwarding, an authentication request is initiated to the AAA system according to the negotiation result and the user information, so that the AAA system authenticates the user. And authorized processing, and feedback user authorization information corresponding to the user, and further obtaining a broadband access user table according to the user authorization information and the user information. The broadband access user table includes a user's MAC address, an IP address, and user authorization information. In an embodiment, the broadband access user table is sent to the optimal component, so that the optimal component performs a traffic policy, such as a QoS policy and security, on the data packet corresponding to the control packet. The policy and the like, and forwarding the data packet according to the result of the execution of the flow policy and the broadband access user table.
本申请提供一种负荷分担方法,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括:接收所述转发平台发送的控制报文,并根据所述控制报文提取用户信息;根据所述用户信息通过预设负荷分担算法进行计算,以确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件;将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。通过上述方式,本申请基于转发平台与控制平台解耦后,此时转发平台具备了资源池化的基础,而资源池化的重要特点就是转发平台内的业务动态负荷分担,当控制平台在接收到转发平台发送的控制报文时,可提取出用户信息,并根据该用户信息通过预设负荷分担算法进行计算,从而确定出所述转发平台内接入所述用户的最佳组件,该预设负荷分担算法基于当前的用户设备接入情况来帮助用户确定出该转发平台内最适合该用户设备接入的组件,然后将所述用户设备接入到该最佳组件中,最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发,从而实现了转发平台的负荷分担,并提高了转发平台内组件的利用率。The present invention provides a load sharing method, where the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes: receiving a control packet sent by the forwarding platform. And extracting user information according to the control message; performing calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform; The user equipment accesses the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy, The user information forwards the data packet. After the method is decoupled based on the forwarding platform and the control platform, the forwarding platform has the basis of resource pooling, and the important feature of the resource pooling is that the dynamic load sharing in the forwarding platform is received when the control platform is receiving. When the control packet sent by the forwarding platform is sent, the user information may be extracted, and the user information is calculated according to the preset load balancing algorithm to determine the optimal component for accessing the user in the forwarding platform. The load sharing algorithm is configured to help the user determine the component that is most suitable for accessing the user equipment in the forwarding platform based on the current user equipment access situation, and then access the user equipment to the optimal component, and the optimal component pair Transmitting a data packet corresponding to the control packet in the forwarding platform, and performing a flow policy according to the result of the execution of the traffic policy and the user information, thereby implementing forwarding of the data packet Load sharing and improved utilization of components within the forwarding platform.
请参阅图4,图4为本申请负荷分担方法第二实施例的流程示意图。Please refer to FIG. 4. FIG. 4 is a schematic flowchart diagram of a second embodiment of a load sharing method according to the present application.
在本申请实施例中,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括步骤S100至步骤S400。In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes steps S100 to S400.
在步骤S100中,所述转发平台向所述控制平台发送控制报文。In step S100, the forwarding platform sends a control message to the control platform.
在步骤S200中,所述控制平台根据所述控制报文提取用户信息。In step S200, the control platform extracts user information according to the control message.
在步骤S300中,所述控制平台根据所述用户信息通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件,并将所述用户设备接入所述最佳组件。In step S300, the control platform performs calculation according to the user information by using a preset load sharing algorithm, and determines that an optimal component of the user equipment corresponding to the user information is accessed in the forwarding platform, and the user is The device accesses the best component.
在步骤S400中,所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。In step S400, the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of the execution flow policy and the user information pair. The data packet is forwarded by the stream.
在本申请实施例中,所述负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台。其中,转发平台是指***中用来进行数据报文的接收、转发的部分,转发平台可以包括BNG的转发面和vBNG的转发面,主要负责用户流量的转发和控制,以及对用户相关的流策略的执行。而控制平台是指***中用来传送指令、计算表项的部分,控制平台可以包括BNG的控制面和vBNG的控制面,主要进行宽带用户接入的协议协商、用户认证、接入控制和用户管理等。In the embodiment of the present application, the load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform. The forwarding platform is used to receive and forward data packets in the system. The forwarding platform may include a forwarding plane of the BNG and a forwarding plane of the vBNG, and is mainly responsible for forwarding and controlling user traffic, and related to the user. Execution of the strategy. The control platform refers to the part used in the system to transmit commands and calculate entries. The control platform may include the control plane of the BNG and the control plane of the vBNG, and mainly perform protocol negotiation, user authentication, access control, and users for broadband user access. Management, etc.
在本申请实施例中,该负荷分担方法包括:转发平台向控制平台发送控制报文,进而控制平台根据所述控制报文提取用户信息,该用户信息包括用户的MAC信息和接入链路信息等。In the embodiment of the present application, the load sharing method includes: the forwarding platform sends a control message to the control platform, and the control platform extracts user information according to the control message, where the user information includes the user's MAC information and access link information. Wait.
在一实施例中,控制平台根据所述用户信息,通过预设负荷分担算法计算出所述转发平台内接入所述用户的最佳组件,可帮助用户确定出该转发平台内最适合该用户设备接入的组件。为方便说明,在本实施例中以6个用户接入端口为例进行说明,分别记为P1、P2、P3、P4、P5、以及P6。在一实施例中,划分出2个转发组件,分别记为T1和T2,假设T1包括P1、P2、以及P3三个接入端口,T1包括P4、P5、以及P6三个接入端口,则对应的语法表达分别为T1(P1,P2,P3),T2(P4、P5、P6)。根据分组算法,将转发组件自动分成若干备份组件,分别记为B1、B2、B3、B4、B5、以及B6等。其中,这些备份组件的语法为B1(P1,P2,P3),B2(P2,P3,P1)、B3(P3,P1,P2)、B4(P4,P5,P6)、B5(P5,P6,P4)、以及B6(P6,P4,P5)等。在一实施例中,用户接入端口、转发组件和备份组件的数量不限于本实施例,本实施例中的数据仅为了方便说明。在一实施例中,转发组件和备份组件中的端口数根据实际情况确定。此外,转发组件中的端口没有主备的区分,表示一种分组,而备份组件中的端口是有状态的。比如B1(P1,P2,P3),其中P1为主端口,当P1状态关闭或者异常后,自动选择备份组件中的下一个端口作为用户设备接入端口。在一实施例中,用户设备应该接入到哪个备份组件,是通过预设负荷分担算法计算出的,即所计算出的最佳组件为备份组件中的某一个。在一实施例中,为了避免端口状态异常,导致用户设备无法接入,因此,通过负荷分担算法所确定出的最佳组件中有多个端口,当多个端口中的第一端口状态正常时,将所述用户设备接入所述第一端口;当所述第一端口状态异常时,将所述用户设备接入多个端口中状态正常的第二端口。在一实施例中,预设负荷分担算法可以根 据用户的MAC信息,或用户报文信息(如802.1P信息),或用户的接入链路信息(如VLAN信息)等,当然,也可以将这些信息综合考虑,形成综合的负荷分担算法。例如,根据用户的MAC信息进行求模,根据模的结果进行负荷分担,备份组件的基本语法组成为:B{(P1,P2,P3),Mod(MAC)}。在一实施例中,每个备份组件都需要有虚拟MAC,同一个转发组件内的不同备份组件的虚拟MAC是不同的。因此,备份组件的基本语法组成为:B{(Px,Py,Pz),Mod(MAC),VMAC},其中B为备份组件,MAC为用户的MAC地址,Px、Py、Pz为用户接入端口,VMAC为备份组件的虚拟MAC地址。从而,根据该负荷分担算法确定所述转发平台内接入所述用户的最佳组件,即最适合该用户设备接入的备份组件。In an embodiment, the control platform calculates, according to the user information, an optimal component for accessing the user in the forwarding platform by using a preset load sharing algorithm, which can help the user determine that the forwarding platform is most suitable for the user. The component to which the device is connected. For convenience of description, in the embodiment, six user access ports are taken as an example for description, and are respectively recorded as P1, P2, P3, P4, P5, and P6. In an embodiment, two forwarding components are respectively divided into T1 and T2, and it is assumed that T1 includes three access ports P1, P2, and P3, and T1 includes three access ports P4, P5, and P6. The corresponding grammatical expressions are T1 (P1, P2, P3) and T2 (P4, P5, P6). According to the grouping algorithm, the forwarding component is automatically divided into several backup components, which are respectively recorded as B1, B2, B3, B4, B5, and B6. Among them, the syntax of these backup components is B1 (P1, P2, P3), B2 (P2, P3, P1), B3 (P3, P1, P2), B4 (P4, P5, P6), B5 (P5, P6, P4), and B6 (P6, P4, P5), etc. In an embodiment, the number of user access ports, forwarding components, and backup components is not limited to this embodiment, and the data in this embodiment is for convenience of description. In an embodiment, the number of ports in the forwarding component and the backup component is determined according to actual conditions. In addition, the ports in the forwarding component do not have a distinction between active and standby, indicating a packet, and the ports in the backup component are stateful. For example, B1 (P1, P2, P3), where P1 is the master port. When the P1 state is closed or abnormal, the next port in the backup component is automatically selected as the user equipment access port. In an embodiment, which backup component the user equipment should access is calculated by a preset load sharing algorithm, that is, the calculated optimal component is one of the backup components. In an embodiment, in order to prevent the port state from being abnormal, the user equipment cannot be accessed. Therefore, the optimal component determined by the load sharing algorithm has multiple ports, and when the first port of the multiple ports is in a normal state, The user equipment is connected to the first port; when the status of the first port is abnormal, the user equipment is connected to a second port of a plurality of ports that is in a normal state. In an embodiment, the preset load sharing algorithm may be based on the user's MAC information, or user message information (such as 802.1P information), or the user's access link information (such as VLAN information), etc., of course, This information is considered together to form a comprehensive load sharing algorithm. For example, the modulo is performed according to the MAC information of the user, and load sharing is performed according to the result of the modulo. The basic syntax of the backup component is: B{(P1, P2, P3), Mod(MAC)}. In an embodiment, each backup component requires a virtual MAC, and the virtual MACs of different backup components within the same forwarding component are different. Therefore, the basic syntax of the backup component is: B{(Px, Py, Pz), Mod(MAC), VMAC}, where B is the backup component, MAC is the user's MAC address, and Px, Py, Pz are user accesses. Port, VMAC is the virtual MAC address of the backup component. Therefore, according to the load sharing algorithm, an optimal component for accessing the user in the forwarding platform is determined, that is, a backup component that is most suitable for access by the user equipment.
在一实施例中,将所述用户设备接入所述最佳组件,并通过该最佳组件对与控制报文对应的数据报文执行流策略,并根据流策略结果对该数据报文进行流转发。本申请实现了转发平台的负荷分担,并提高了转发平台内组件的利用率。In an embodiment, the user equipment is connected to the optimal component, and a traffic policy is performed on the data packet corresponding to the control packet by using the optimal component, and the data packet is performed according to the result of the traffic policy. Stream forwarding. The application implements load sharing of the forwarding platform and improves the utilization of components in the forwarding platform.
图5为本申请负荷分担方法第三实施例的流程示意图。FIG. 5 is a schematic flowchart of a third embodiment of a load sharing method according to the present application.
图5所示的第三实施例是图4所示的第二实施例进行描述的。所述负荷分担***还包括网络安全***,所述控制报文和数据报文来源于用户设备宽带拨号时向所述转发平台发送的与所述宽带拨号方式相对应的初始报文,所述负荷分担方法除了包括图4中的步骤S100至步骤S400之外,还包括在所述步骤S300和所述步骤S400之间的步骤S310、S320和S330。The third embodiment shown in Fig. 5 is described in the second embodiment shown in Fig. 4. The load sharing system further includes a network security system, and the control packet and the data packet are derived from an initial packet corresponding to the broadband dialing mode sent to the forwarding platform when the user equipment dials the broadband, the load The sharing method includes steps S310, S320, and S330 between the step S300 and the step S400 in addition to the steps S100 to S400 in FIG.
在步骤S310中,所述控制平台对所述初始报文进行响应,并生成与所述初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式。In step S310, the control platform responds to the initial message, and generates an offer message corresponding to the initial message to be sent to the user equipment, so that the user equipment passes the best component. Performing interaction with the message platform corresponding to the proposal message with the control platform to negotiate the use of the network security system authentication mode.
在步骤S320中,所述控制平台根据所述协商的结果和所述用户信息,向所述网络安全***发起认证请求,以使得所述网络安全***对所述用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息。In step S320, the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and provides feedback. User authorization information corresponding to the user.
为了得到宽带接入用户表,从而进行流转发,在本申请实施例中,首先控制平台需要进行对应报文协议的交互,并通过网络安全***对该用户进行认证和授权处理后反馈的与所述用户对应的用户授权信息才能获得宽带接入用户表。In order to obtain the broadband access user table and perform the flow forwarding, in the embodiment of the present application, the control platform needs to perform the interaction of the corresponding message protocol, and the user is authenticated and authorized by the network security system. The user authorization information corresponding to the user can obtain the broadband access user list.
在一实施例中,在用户设备接入到最佳组件后,通过该最佳组件响应与所述初始报文对应的提议报文,并生成与所述提议报文对应的报文协议发送至用户设备,以使得该用户设备通过所述最佳组件和所述控制平台进行所述报文协议的交互,以协商使用网络安全***认证方式。In an embodiment, after the user equipment accesses the optimal component, the optimal component responds to the proposal message corresponding to the initial message, and generates a message protocol corresponding to the proposal message to be sent to the message protocol. The user equipment is configured to enable the user equipment to perform the interaction of the message protocol through the optimal component and the control platform to negotiate the use of the network security system authentication mode.
在一实施例中,控制平台根据该协商的结果和用户信息向网络安全***发起认证请求,进而网络安全***对所述用户进行认证、授权处理,得到用户授权信息。其中,网络安全***,是指认证(Authentication)、授权(Authorization)和计费(Accounting)AAA***,是网络安全中进行访问控制的一种安全管理机制,提供认证、授权和计费三种安全服务。在一实施例中,认证是对用户的身份进行验证,判断其是否为合法用户;授权是对通过认证的用户,授权其可以使用哪些服务;计费是记录用户使用网络服务的资源情况,这些信息将作为计费的依据。In an embodiment, the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, and the network security system performs authentication and authorization processing on the user, and obtains user authorization information. Among them, the network security system refers to the authentication, authorization, and accounting AAA systems. It is a security management mechanism for access control in network security. It provides authentication, authorization, and accounting. service. In an embodiment, the authentication is to verify the identity of the user and determine whether it is a legitimate user; the authorization is to authorize the authenticated user, which services can be used; and the charging is to record the resources of the user using the network service. Information will be used as a basis for billing.
在步骤S330中,所述控制平台根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表。In step S330, the control platform obtains a broadband access user table according to the user authorization information and the user information, and delivers the broadband access user table to the optimal component.
在一实施例中,根据所述用户授权信息和所述用户信息得到宽带接入用户表,并将该宽带接入用户表下发至所述最佳组件,其中,该宽带接入用户表包括用户的MAC地址、IP地址和用户授权信息。In an embodiment, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component, where the broadband access user table includes User's MAC address, IP address, and user authorization information.
此时,所述负荷分担方法执行步骤S400,所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。At this time, the load sharing method performs step S400, and the best component in the forwarding platform performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the execution flow policy. As a result, the broadband access user table forwards the data packet.
图6为本申请实例中所述转发平台内的最佳组件对与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发的细化流程示意图,即步骤S400包括步骤S411和S412。6 is a flow chart of performing a flow policy on a data packet corresponding to the control packet, and performing a flow policy according to the result of the execution flow policy and the broadband access user table pair. A schematic diagram of the refinement flow of the data packet for stream forwarding, that is, step S400 includes steps S411 and S412.
在步骤S411中,所述转发平台内的最佳组件对与所述控制报文对应的数据报文匹配流特征,并根据所述流特征进行流分类,从而执行流策略。In step S411, the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby executing a flow policy.
在步骤S412中,所述转发平台内的最佳组件根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In step S412, the best component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
为针对不同用户的业务类型提供差分服务,在本申请实施例中,转发平台内的最佳组件对与控制报文对应的数据报文匹配流特征,并根据所述流特征进行流分类,从而执行流策略。其中流策略是指通过将用户流量分类,把具有某 类共同特征的报文划分为一类,为相同类型的流量提供同等的QoS服务,从而针对不同的业务类型提供差分服务。例如,可以根据不同的流分类做限速、过滤、报文统计、以及重定向(策略路由)等。此外,流策略包括QoS策略和安全策略等。In the embodiment of the present application, the best component in the forwarding platform matches the data feature corresponding to the control packet with the flow feature, and performs traffic classification according to the flow feature, thereby Execute a flow policy. A traffic policy is to classify user traffic into packets and provide equal QoS services for the same type of traffic to provide differentiated services for different service types. For example, rate limiting, filtering, packet statistics, and redirection (policy routing) can be performed according to different traffic classifications. In addition, the flow policy includes QoS policies and security policies.
在一实施例中,转发平台内的最佳组件根据执行流策略的结果和宽带接入用户表对数据报文进行流转发。In an embodiment, the best component in the forwarding platform forwards the data packet according to the result of executing the traffic policy and the broadband access user table.
图7为本申请负荷分担方法第四实施例的流程示意图。FIG. 7 is a schematic flowchart diagram of a fourth embodiment of a load sharing method according to the present application.
图7的第四实施例是基于图5所示的第三实施例进行描述,该负荷分担方法还包括步骤S800、S900和S1000。The fourth embodiment of FIG. 7 is described based on the third embodiment shown in FIG. 5, and the load sharing method further includes steps S800, S900, and S1000.
在步骤S800中,所述转发平台接收用户设备宽带拨号后发送的与所述宽带拨号方式相对应的初始报文,并根据所述初始报文的协议类型和预设流表区分所述初始报文是控制报文还是数据报文;若所述初始报文是控制报文则转到步骤S900,若所述初始报文是数据报文,则转到步骤S1000。In the step S800, the forwarding platform receives the initial packet corresponding to the broadband dialing mode that is sent by the user equipment after the broadband dialing, and distinguishes the initial report according to the protocol type of the initial packet and the preset flow table. If the initial message is a control message, the process proceeds to step S900. If the initial message is a data message, the process proceeds to step S1000.
在步骤S900中,基于所述初始报文是控制报文,对所述控制报文进行封装,并通过与所述控制报文对应的预设隧道将所述封装后的控制报文发送至所述控制平台。In the step S900, the control packet is encapsulated based on the initial packet, and the encapsulated control packet is sent to the portal through a preset tunnel corresponding to the control packet. The control platform.
在本申请实施例中,在用户进行宽带拨号后,会发送与所述宽带拨号对应的初始报文到转发平台,此时,需要根据初始报文的协议类型和预设流表判断该初始报文是控制报文还是数据报文,只有控制报文才能通过转发平台发送到控制平台进行处理。其中,预设流表可以为在转发平台中预存的OpenFlow流表,该OpenFlow流表的每个流表项都由3部分组成:用于数据包匹配的包头域(Header Fields),用于统计匹配数据包个数的计数器(Counters),用于展示匹配的数据包如何处理的动作(Actions)。在判断时,是根据包头域对接收到的初始报文的报头内容进行匹配。In the embodiment of the present application, after the user performs the broadband dialing, the initial packet corresponding to the broadband dialing is sent to the forwarding platform. In this case, the initial report needs to be determined according to the protocol type of the initial packet and the preset flow table. Whether the control packet is a data packet or a data packet, only the control packet can be sent to the control platform for processing through the forwarding platform. The preset flow table may be an OpenFlow flow table pre-stored in the forwarding platform, and each flow entry of the OpenFlow flow table is composed of three parts: a header field for packet matching, and is used for statistics. Counters that match the number of packets, which are used to show how the matched packets are processed (Actions). In the judgment, the header content of the received initial message is matched according to the header field.
当所述初始报文是控制报文时,为保证报文的安全性,对该控制报文进行封装,并通过与封装协议对应的预设隧道将封装后的控制报文发送到控制平台。其中,封装是一个在进行网络传输之前,对数据附加上必要的协议信息的过程,封装协议有通用路由封装(Generic Routing Encapsulation,GRE)协议、第二层转发协议(Level 2Forwarding protocol,L2F协议)、第二层虚拟专用网(Level 2Virtual Private Networks,L2VPN)封装协议和trunk封装协议等,与封装协议对 应的预设隧道包括GRE隧道、L2F隧道、L2VPN隧道和trunk隧道等。When the initial packet is a control packet, the control packet is encapsulated and the encapsulated control packet is sent to the control platform through a preset tunnel corresponding to the encapsulation protocol. The encapsulation is a process of attaching the necessary protocol information to the data before the network transmission. The encapsulation protocol includes a Generic Routing Encapsulation (GRE) protocol and a Layer 2 Forwarding Protocol (L2F protocol). The second layer of the virtual private network (L2VPN) encapsulation protocol and the trunk encapsulation protocol, and the preset tunnels corresponding to the encapsulation protocol include a GRE tunnel, an L2F tunnel, an L2VPN tunnel, and a trunk tunnel.
此时,所述方法继续执行图5中的步骤S200,其中所述步骤200包括步骤S210。At this time, the method continues to perform step S200 in FIG. 5, wherein the step 200 includes step S210.
在步骤S210中,所述控制平台对所述封装后的控制报文进行解封装,并根据所述解封装后的控制报文提取用户信息。In step S210, the control platform decapsulates the encapsulated control message, and extracts user information according to the decapsulated control message.
在本申请实施例中,当转发平台向控制平台发送封装后的控制报文后,控制平台对封装后的控制报文进行解封装,并根据所述解封装后的控制报文提取用户信息。其中,解封装是封装的逆过程,是指逐层去掉协议控制信息的过程。In the embodiment of the present application, after the forwarding platform sends the encapsulated control packet to the control platform, the control platform decapsulates the encapsulated control packet, and extracts the user information according to the decapsulated control packet. Decapsulation is the reverse process of encapsulation, which refers to the process of removing protocol control information layer by layer.
此时,所述方法继续执行图5中的步骤S300、S310、S320、S330和S400。At this time, the method continues to perform steps S300, S310, S320, S330, and S400 in FIG.
在步骤S1000中,基于所述初始报文是数据报文,判断所述转发平台内是否有与用户对应的宽带接入用户表,若有,则对所述数据报文执行步骤S400:所述转发平台内的最佳组件对所述数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。In step S1000, it is determined whether there is a broadband access user table corresponding to the user in the forwarding platform, and if yes, performing step S400 on the data packet, if the initial packet is a data packet. The best component in the forwarding platform performs a flow policy on the data packet, and forwards the data packet according to the result of the execution flow policy and the broadband access user table.
在本申请实施例中,当从所述初始报文中区分出数据报文时,则进一步判断转发平台内是否有该用户对应的宽带接入用户表。当该转发平台内有该用户对应的宽带接入用户表时,则该转发平台内的最佳组件对该数据报文执行流策略,如QoS策略和安全策略等,并根据所述流策略结果和该用户的宽带接入用户表对所述数据报文进行流转发。当该转发平台内没有该用户的宽带接入用户表时,则丢弃该数据报文,当然,这种情况只存在于初始阶段,转发平台还未接收到该用户对应的宽带接入用户表时。In the embodiment of the present application, when the data packet is distinguished from the initial packet, it is further determined whether there is a broadband access user table corresponding to the user in the forwarding platform. When the forwarding platform has the broadband access user table corresponding to the user, the best component in the forwarding platform performs a traffic policy, such as a QoS policy and a security policy, on the data packet, and according to the traffic policy result. The data packet is forwarded by the broadband access user table of the user. When there is no broadband access user list of the user in the forwarding platform, the data packet is discarded. Of course, this situation exists only in the initial stage, and the forwarding platform has not received the broadband access user table corresponding to the user. .
图8为本申请负荷分担方法第四实施例涉及的时序图。FIG. 8 is a timing diagram of a fourth embodiment of the load sharing method of the present application.
如图8所示,转发平台包括第一用户表管理模块,控制报文封装模块,流分类模块和数据报文转发模块,控制平台包括第二用户表管理模块,报文协议处理模块,控制报文解封装模块,以及负荷分担策略模块。As shown in FIG. 8, the forwarding platform includes a first user table management module, a control packet encapsulation module, a flow classification module, and a data packet forwarding module. The control platform includes a second user table management module, a message protocol processing module, and a control packet. The encapsulation module and the load sharing policy module.
在一实施例中,当转发平台接收到用户设备宽带拨号时所发送的控制报文时,会在控制报文封装模块进行封装,并通过预设隧道将经封装后的控制报文发送到控制平台,通过控制平台内的控制报文解封装模块对该封装后的控制报文进行解封装,并提取出用户信息。在一实施例中,根据该用户信息向负荷分担策略模块请求负荷分担策略,从而在负荷分担策略模块内通过预设负荷分担算法进行计算,确定所述转发平台内接入与所述用户信息对应的用户设备的最 佳组件,并将所述用户设备接入所述最佳组件。在一实施例中,在报文协议处理模块对所述控制报文进行响应,并生成与所述控制报文对应的提议报文发送到用户设备,从而使得用户设备通过所述最佳组价和控制平台进行与所述提议报文对应的报文协议的交互。In an embodiment, when the forwarding platform receives the control packet sent by the user equipment, the control packet is encapsulated in the control packet encapsulation module, and the encapsulated control packet is sent to the control through a preset tunnel. The platform decapsulates the encapsulated control packet by extracting the control packet decapsulation module in the control platform, and extracts user information. In an embodiment, the load sharing policy is requested by the load sharing policy module according to the user information, so that the load sharing strategy is used in the load sharing policy module to calculate, and the access in the forwarding platform is determined to correspond to the user information. The best component of the user device and access the user device to the best component. In an embodiment, the message protocol processing module responds to the control message, and generates an offer message corresponding to the control message to be sent to the user equipment, so that the user equipment passes the optimal group price. And the control platform performs an interaction of the message protocol corresponding to the proposal message.
在一实施例中,所述控制平台内的报文协议处理模块根据用户信息向所述网络安全***发起认证请求,以使得所述网络安全***对所述用户进行认证和授权处理,并将与所述用户对应的用户授权信息反馈到报文协议处理模块。在一实施例中,根据该用户授权信息和用户信息得到宽带接入用户表,并向所述最佳组件下发该宽带接入用户表。In an embodiment, the message protocol processing module in the control platform initiates an authentication request to the network security system according to the user information, so that the network security system performs authentication and authorization processing on the user, and The user authorization information corresponding to the user is fed back to the message protocol processing module. In an embodiment, the broadband access user table is obtained according to the user authorization information and the user information, and the broadband access user table is sent to the optimal component.
在一实施例中,在转发平台内的流分类模块对数据报文匹配流特征,并根据所述流特征进行流分类,从而执行流策略;根据所述执行流策略的结果和所述宽带接入用户表,转发平台内的数据报文转发模块对所述数据报文进行流转发。In an embodiment, the flow classification module in the forwarding platform matches the data feature to the data packet, and performs traffic classification according to the flow feature, thereby executing a flow policy; and performing the flow policy according to the result and the broadband connection. The data packet forwarding module in the forwarding platform forwards the data packet to the user table.
本申请还提出一种负荷分担***,所述负荷分担***包括:控制平台、转发平台和负荷分担程序,所述负荷分担程序被所述控制平台和转发平台执行时实现如以上任一项实施例所述的负荷分担方法。The present application further provides a load sharing system, where the load sharing system includes: a control platform, a forwarding platform, and a load sharing program, and the load sharing program is implemented by the control platform and the forwarding platform to implement any of the above embodiments. The load sharing method described.
本申请负荷分担***的具体实施例与上述负荷分担方法各实施例基本相同,在此不作赘述。The specific embodiments of the load sharing system of the present application are substantially the same as the foregoing embodiments of the load sharing method, and are not described herein.
本申请还提出一种计算机可读存储介质,该计算机可读存储介质上存储有负荷分担程序,所述负荷分担程序被处理器执行时实现如以上任一项实施例所述的负荷分担方法。The present application further provides a computer readable storage medium having a load sharing program stored thereon, the load sharing program being implemented by the processor to implement the load sharing method according to any of the above embodiments.
本申请计算机可读存储介质的实施例与上述负荷分担方法各实施例基本相同,在此不作赘述。The embodiments of the computer readable storage medium of the present application are substantially the same as the embodiments of the load sharing method described above, and are not described herein.
需要说明的是,在本文中,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者***不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者***所固有的要素。在没有更多限制的情况下,由语句“包括一个......”限定的要素,并不排除在包括该要素的过程、方法、物品或者*** 中还存在另外的相同要素。It is to be understood that the term "comprises", "comprising", or any other variants thereof, is intended to encompass a non-exclusive inclusion, such that a process, method, article, or It also includes other elements that are not explicitly listed, or elements that are inherent to such a process, method, item, or system. An element defined by the phrase "comprising a ...", without further limitation, does not exclude the presence of additional equivalent elements in the process, method, item, or system that comprises the element.
上述本申请实施例序号仅仅为了描述,不代表实施例的优劣。The serial numbers of the embodiments of the present application are merely for the description, and do not represent the advantages and disadvantages of the embodiments.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到上述实施例方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本申请的技术方案本质上或者说对相关技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在如上所述的一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,空调器,或者网络设备等)执行本申请各个实施例所述的方法。Through the description of the above embodiments, those skilled in the art can clearly understand that the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better. Implementation. Based on such understanding, the technical solution of the present application, which is essential or contributes to the related art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, as described above). The disk, the optical disk, includes a plurality of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the method described in the various embodiments of the present application.

Claims (11)

  1. 一种负荷分担方法,应用于负荷分担***中,所述负荷分担***包括转发平台和控制平台,所述负荷分担方法包括:A load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing method includes:
    接收所述转发平台发送的控制报文,并根据所述控制报文提取用户信息;Receiving a control packet sent by the forwarding platform, and extracting user information according to the control packet;
    根据所述用户信息通过预设负荷分担算法进行计算,以确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件;Performing calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform;
    将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。The user equipment is connected to the optimal component, so that the optimal component performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and according to the result of executing the traffic policy And forwarding, by using the user information, the data packet.
  2. 如权利要求1所述的负荷分担方法,其中,所述负荷分担***还包括网络安全***,所述控制报文和数据报文来源于用户设备宽带拨号时向所述转发平台发送的初始报文,所述将所述用户设备接入所述最佳组件,以使得所述最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发,包括:The load sharing method according to claim 1, wherein the load sharing system further comprises a network security system, and the control message and the data message are derived from an initial message sent to the forwarding platform when the user equipment dials the broadband. The user equipment is connected to the optimal component, so that the optimal component performs a flow policy on the data packet corresponding to the control packet in the forwarding platform, and according to the execution flow. The result of the policy and the user information are used to forward the data packet, including:
    将所述用户设备接入所述最佳组件;Accessing the user equipment to the optimal component;
    对所述初始报文进行响应,并生成与所述初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式;Responding to the initial message, and generating an offer message corresponding to the initial message to be sent to the user equipment, so that the user equipment performs the The interaction of the packet protocol corresponding to the proposed packet is negotiated to use the network security system authentication mode;
    根据所述协商的结果和所述用户信息向所述网络安全***发起认证请求,以使得所述网络安全***对用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息;And sending an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back user authorization information corresponding to the user;
    根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表,以使得所述最佳组件对与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。Obtaining a broadband access user table according to the user authorization information and the user information, and delivering the broadband access user table to the optimal component, so that the optimal component pair corresponds to the control packet The data packet performs a traffic policy, and forwards the data packet according to the result of the execution of the traffic policy and the broadband access user table.
  3. 如权利要求1所述的负荷分担方法,其中,所述最佳组件包括多个端口,所述将所述用户设备接入所述最佳组件,包括:The load sharing method of claim 1, wherein the optimal component comprises a plurality of ports, and the accessing the user equipment to the optimal component comprises:
    当所述多个端口中的第一端口状态正常时,将所述用户设备接入所述第一端口;When the first port of the multiple ports is in a normal state, the user equipment is accessed to the first port;
    当所述第一端口状态异常时,将所述用户设备接入所述多个端口中状态正常的第二端口。When the status of the first port is abnormal, the user equipment is connected to a second port of the plurality of ports that is in a normal state.
  4. 一种负荷分担方法应用于负荷分担***中,所述负荷分担***包括转发 平台和控制平台,所述负荷分担***包括:A load sharing method is applied to a load sharing system, where the load sharing system includes a forwarding platform and a control platform, and the load sharing system includes:
    所述转发平台向所述控制平台发送控制报文;Transmitting platform sends a control message to the control platform;
    所述控制平台根据所述控制报文提取用户信息;The control platform extracts user information according to the control message;
    所述控制平台根据所述用户信息通过预设负荷分担算法进行计算,以确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件,并将所述用户设备接入所述最佳组件;The control platform performs calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform, and accesses the user equipment. Describe the best components;
    所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述用户信息对所述数据报文进行流转发。The best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performs the data packet according to the result of the execution flow policy and the user information. Perform stream forwarding.
  5. 如权利要求4所述的负荷分担方法,其中,所述最佳组件中包括多个端口,所述将所述用户设备接入所述最佳组件,包括:The load sharing method of claim 4, wherein the optimal component comprises a plurality of ports, and the accessing the user equipment to the optimal component comprises:
    当所述多个端口中的第一端口状态正常时,将所述用户设备接入所述第一端口;When the first port of the multiple ports is in a normal state, the user equipment is accessed to the first port;
    当所述第一端口状态异常时,将所述用户设备接入所述多个端口中的中状态正常的第二端口。When the status of the first port is abnormal, the user equipment is accessed to a second port of the plurality of ports that is in a normal state.
  6. 如权利要求4所述的负荷分担方法,其中,所述负荷分担***还包括网络安全***,所述控制报文和数据报文来源于用户设备宽带拨号时向所述转发平台发送的与宽带拨号方式相对应的初始报文;所述控制平台根据所述用户信息通过预设负荷分担算法进行计算,以确定所述转发平台内接入与所述用户信息对应的用户设备的最佳组件,并将所述用户设备接入所述最佳组件之后,包括:The load sharing method according to claim 4, wherein the load sharing system further comprises a network security system, and the control message and the data message are derived from the broadband dialing sent to the forwarding platform when the user equipment dials the broadband. The initial message corresponding to the mode; the control platform performs calculation according to the user information by using a preset load sharing algorithm to determine an optimal component of the user equipment corresponding to the user information in the forwarding platform, and After the user equipment is connected to the optimal component, the method includes:
    所述控制平台对所述初始报文进行响应,并生成与所述初始报文对应的提议报文发送至所述用户设备,以使得所述用户设备通过所述最佳组件与所述控制平台进行与所述提议报文对应的报文协议的交互,以协商使用网络安全***认证方式;The control platform responds to the initial packet, and generates an offer message corresponding to the initial packet to be sent to the user equipment, so that the user equipment passes the optimal component and the control platform. Performing an interaction of the message protocol corresponding to the proposal message to negotiate the use of the network security system authentication mode;
    所述控制平台根据所述协商的结果和所述用户信息,向所述网络安全***发起认证请求,以使得所述网络安全***对用户进行认证和授权处理,并反馈与所述用户对应的用户授权信息;And the control platform initiates an authentication request to the network security system according to the result of the negotiation and the user information, so that the network security system performs authentication and authorization processing on the user, and feeds back a user corresponding to the user. Authorization information;
    所述控制平台根据所述用户授权信息和所述用户信息得到宽带接入用户表,并向所述最佳组件下发所述宽带接入用户表。The control platform obtains the broadband access user table according to the user authorization information and the user information, and delivers the broadband access user table to the optimal component.
  7. 如权利要求6所述的负荷分担方法,其中,所述转发平台内的最佳组件对所述转发平台内与所述控制报文对应的数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发,包括:The load sharing method according to claim 6, wherein the best component in the forwarding platform performs a traffic policy on the data packet corresponding to the control packet in the forwarding platform, and performs a traffic policy according to the And the broadband access user table forwards the data packet, including:
    所述转发平台内的最佳组件对与所述控制报文对应的数据报文匹配流特征,并根据所述流特征进行流分类,从而执行流策略;And the best component in the forwarding platform matches the flow feature of the data packet corresponding to the control packet, and performs traffic classification according to the flow feature, so as to execute a flow policy;
    所述转发平台内的最佳组件根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。The optimal component in the forwarding platform forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  8. 如权利要求6所述的负荷分担方法,所述转发平台向所述控制平台发送控制报文之前,还包括:The load sharing method of claim 6, before the forwarding platform sends the control message to the control platform, the method further includes:
    所述转发平台接收用户设备宽带拨号后发送的与宽带拨号方式相对应的初始报文,并根据所述初始报文的协议类型和预设流表区分所述初始报文是控制报文还是数据报文;The forwarding platform receives the initial packet corresponding to the broadband dialing mode sent by the user equipment after the broadband dialing, and distinguishes whether the initial packet is a control packet or a data according to the protocol type of the initial packet and the preset flow table. Message
    基于所述初始报文是控制报文,对所述控制报文进行封装,并通过与封装协议对应的预设隧道将所述封装后的控制报文发送至所述控制平台;The encapsulated control packet is sent to the control platform by using a preset tunnel corresponding to the encapsulation protocol, based on the initial packet being a control packet, and the control packet is encapsulated;
    基于所述初始报文是数据报文,判断所述转发平台内是否有与用户对应的宽带接入用户表,若有,则对所述数据报文执行以下步骤:所述转发平台内的最佳组件对所述数据报文执行流策略,并根据所述执行流策略的结果和所述宽带接入用户表对所述数据报文进行流转发。Determining, according to the data packet, whether there is a broadband access user table corresponding to the user in the forwarding platform, and if yes, performing the following steps on the data packet: the most in the forwarding platform The best component performs a flow policy on the data packet, and forwards the data packet according to the result of the execution flow policy and the broadband access user table.
  9. 如权利要求8所述的负荷分担方法,其中,所述控制平台根据所述控制报文提取用户信息,包括:The load sharing method according to claim 8, wherein the control platform extracts user information according to the control message, including:
    所述控制平台对所述封装后的控制报文进行解封装,并根据所述解封装后的控制报文提取用户信息。The control platform decapsulates the encapsulated control message, and extracts user information according to the decapsulated control message.
  10. 一种负荷分担***,包括:控制平台、转发平台和负荷分担程序,所述负荷分担程序被所述控制平台和转发平台执行时实现如权利要求4至9中任一项所述的负荷分担方法。A load sharing system, comprising: a control platform, a forwarding platform, and a load sharing program, wherein the load sharing program is implemented by the control platform and the forwarding platform, and the load sharing method according to any one of claims 4 to 9 is implemented .
  11. 一种计算机可读存储介质,所述计算机可读存储介质上存储有负荷分担程序,所述负荷分担程序被处理器执行时实现如权利要求4至9中任一项所述的负荷分担方法。A computer readable storage medium storing a load sharing program, wherein the load sharing program is executed by a processor to implement the load sharing method according to any one of claims 4 to 9.
PCT/CN2018/097511 2017-07-27 2018-07-27 Load sharing method and system, and computer-readable storage medium WO2019020114A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201710636450.3 2017-07-27
CN201710636450.3A CN109309627B (en) 2017-07-27 2017-07-27 Load sharing method, system and computer readable storage medium

Publications (1)

Publication Number Publication Date
WO2019020114A1 true WO2019020114A1 (en) 2019-01-31

Family

ID=65041043

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/097511 WO2019020114A1 (en) 2017-07-27 2018-07-27 Load sharing method and system, and computer-readable storage medium

Country Status (2)

Country Link
CN (1) CN109309627B (en)
WO (1) WO2019020114A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337819A (en) * 2014-08-15 2016-02-17 中国电信股份有限公司 Data processing method of broadband access gateway, broadband access gateway and network system
CN105610632A (en) * 2016-02-14 2016-05-25 华为技术有限公司 Virtual network device and related method
US20160149788A1 (en) * 2014-11-20 2016-05-26 Telefonaktiebolaget L M Ericsson (pubI) Passive Performance Measurement for Inline Service Chaining
CN105634956A (en) * 2015-12-31 2016-06-01 华为技术有限公司 Message forwarding method, device and system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100450038C (en) * 2006-09-29 2009-01-07 杭州华三通信技术有限公司 Link load sharing method and relay device
CN103095597B (en) * 2011-10-28 2017-04-26 华为技术有限公司 Load balancing method and device
CN106302353B (en) * 2015-06-04 2020-01-10 华为技术有限公司 Identity authentication method, identity authentication system and related equipment
CN105262698B (en) * 2015-10-28 2019-03-01 华为技术有限公司 A kind of methods, devices and systems of load balancing

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105337819A (en) * 2014-08-15 2016-02-17 中国电信股份有限公司 Data processing method of broadband access gateway, broadband access gateway and network system
US20160149788A1 (en) * 2014-11-20 2016-05-26 Telefonaktiebolaget L M Ericsson (pubI) Passive Performance Measurement for Inline Service Chaining
CN105634956A (en) * 2015-12-31 2016-06-01 华为技术有限公司 Message forwarding method, device and system
CN105610632A (en) * 2016-02-14 2016-05-25 华为技术有限公司 Virtual network device and related method

Also Published As

Publication number Publication date
CN109309627A (en) 2019-02-05
CN109309627B (en) 2022-05-20

Similar Documents

Publication Publication Date Title
US10122622B2 (en) Exchanging application metadata for application context aware service insertion in service function chain
CN108234235B (en) Method, network device and computer-readable storage medium for data monitoring
US9596211B2 (en) Cloud based customer premises equipment
US11606223B2 (en) Broadband remote access server (BRAS) system-based packet encapsulation
WO2019033920A1 (en) Method and device enabling network side to identify and control remote user equipment
WO2018188082A1 (en) Method, device, and system for implementing strategy control
WO2017016473A1 (en) Tunnel detection method, apparatus, and system
CN106416146B (en) Communication apparatus, communication method, and communication system
US20100208731A1 (en) Communication device and method for controlling communication device
US20220286904A1 (en) Technique for Controlling and Performing Data Traffic Handling in a Core Network Domain
WO2011082584A1 (en) Implementing method, network and terminal for processing data packet classification
EP3440810B1 (en) Quality of service (qos) support for tactile traffic
WO2019041332A1 (en) Method and system for optimizing transmission of acceleration network
CN109309627B (en) Load sharing method, system and computer readable storage medium
US11075919B2 (en) System and method for providing proximity alert for trusted visitor
US20150089058A1 (en) System and method for software defined adaptation of broadband network gateway services
JP4985455B2 (en) Priority control system, priority control device, priority control method, and priority control program
US20240163217A1 (en) Apparatuses, methods and non-transitory computer-readable storage mediums for network access to residential gateways
US11902052B1 (en) Separate PFCP session model for network access by residential gateways
US20240039762A1 (en) Combined pfcp session model for network access by residential gateways
WO2017113355A1 (en) Service management method, device, entity and service offering system
WO2012083803A1 (en) Priority inheritance method and system for quality of service in identifier network
WO2013060190A1 (en) Path establishment method and roaming broadband remote access server
CN117460085A (en) Individual PFCP session model for residential gateway network access
CN114826745A (en) Method for realizing user authentication in transparent scene

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18838934

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 25/06/2020)

122 Ep: pct application non-entry in european phase

Ref document number: 18838934

Country of ref document: EP

Kind code of ref document: A1