CN117811875A - Household intercommunication network access method and device - Google Patents
Household intercommunication network access method and device Download PDFInfo
- Publication number
- CN117811875A CN117811875A CN202311854513.4A CN202311854513A CN117811875A CN 117811875 A CN117811875 A CN 117811875A CN 202311854513 A CN202311854513 A CN 202311854513A CN 117811875 A CN117811875 A CN 117811875A
- Authority
- CN
- China
- Prior art keywords
- message
- switch
- interworking
- srv6
- home network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 55
- 238000006243 chemical reaction Methods 0.000 claims description 30
- 238000013507 mapping Methods 0.000 claims description 9
- 230000003993 interaction Effects 0.000 claims description 4
- 238000011144 upstream manufacturing Methods 0.000 claims description 3
- 238000004891 communication Methods 0.000 abstract description 8
- 238000004806 packaging method and process Methods 0.000 abstract description 2
- 238000010586 diagram Methods 0.000 description 11
- 238000005516 engineering process Methods 0.000 description 9
- 230000008569 process Effects 0.000 description 9
- 230000005540 biological transmission Effects 0.000 description 6
- 238000005538 encapsulation Methods 0.000 description 5
- 230000006855 networking Effects 0.000 description 4
- 230000005641 tunneling Effects 0.000 description 4
- 101150082208 DIABLO gene Proteins 0.000 description 2
- 102100033189 Diablo IAP-binding mitochondrial protein Human genes 0.000 description 2
- 230000009977 dual effect Effects 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- CKRLIWFOVCLXTP-UHFFFAOYSA-N 4-phenyl-1-propyl-3,6-dihydro-2h-pyridine Chemical compound C1N(CCC)CCC(C=2C=CC=CC=2)=C1 CKRLIWFOVCLXTP-UHFFFAOYSA-N 0.000 description 1
- 102100032373 Coiled-coil domain-containing protein 85B Human genes 0.000 description 1
- 101000868814 Homo sapiens Coiled-coil domain-containing protein 85B Proteins 0.000 description 1
- 101000648997 Homo sapiens Tripartite motif-containing protein 44 Proteins 0.000 description 1
- 102100028017 Tripartite motif-containing protein 44 Human genes 0.000 description 1
- 230000004913 activation Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- LVTYICIALWPMFW-UHFFFAOYSA-N diisopropanolamine Chemical compound CC(O)CNCC(C)O LVTYICIALWPMFW-UHFFFAOYSA-N 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000003672 processing method Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/565—Conversion or adaptation of application format or content
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to the technical field of network communication, and provides a home intercommunication network access method and device. The method comprises the steps that a first message is reported to a first leaf switch through a first terminal in a first home network, is converted into a first Srv6 message, and is transmitted to a first intercommunication switch through a first Srv6 tunnel; the first interworking exchanger transmits the MAC address of the target equipment carried in the first Srv6 message to the second interworking exchanger through the second Srv6 tunnel; the second intercommunication exchanger converts the first Srv6 message into the second message, and transmits the second message to the target gateway through the third Srv6 tunnel, the first leaf exchanger and the target gateway are used for packaging and unpacking the message, the first home network and the second home network are directly opened through the Srv6 tunnel and the intercommunication exchanger without a public network, the network layer is simple in configuration and strong in expandability, the use requirement of a super-large-scale data center can be met, and the use limitation of a LAN-LAN mutual access relay scene is broken.
Description
Technical Field
The present invention relates to the field of network communication technologies, and in particular, to a method and an apparatus for accessing a home interworking network.
Background
LAN-LAN interview and relay are two important concepts in network connection and configuration; wherein the local area network (Local Area Network, abbreviated LAN). LAN-LAN inter-access means that devices or systems between different local area networks can communicate with each other, often requiring that network devices (e.g., routers, switches, etc.) be properly configured in order to establish communication connections between the different local area networks. Relay (Relay) is a connection between network devices used to forward data packets between two or more networks.
LAN-LAN interview the most common application is a relay scenario of home or enterprise local area network wireless fidelity (Wireless Fidelity, abbreviated WiFi), which is commonly used to forward packets of one local area network to another. Common techniques for mature home interworking foreign networking are point-to-point tunneling protocol (Point to Point Tunneling Protocol, abbreviated PPTP protocol), two-Layer tunneling protocol (Layer 2 Tunneling Protocol, abbreviated L2TP protocol), internet security protocol (Internet Protocol Security, abbreviated IPSec) and open source virtual private network (Open Virtual Private Network, abbreviated OPENVPN).
The LAN-LAN mutual access limitation of the prior art is too large, and is only suitable for a relay scenario inside a home or a small company. The traditional Internet VPN, a virtual channel across a LAN-WAN, is more suitable for the public network domain of LAN-to-WAN (Wide Area Network, abbreviated WAN).
The existing network deployment mode generally relates to complex configuration of a network layer, that is to say, when some interconnection sites are added or deleted, the configuration of the existing sites is also affected, so that the network maintenance cost is high; the complex configuration of the network layer also results in relatively limited network applicability, so that the number of interconnected stations, the number of extended virtual local area networks (Virtual Local Area Network, VLANs) and the capacity of the media access control address (Media Access Control Address, abbreviated as MAC address) are limited, and cannot meet the use requirements of large-scale and ultra-large-scale data centers, and the scalability is poor.
In view of this, overcoming the drawbacks of the prior art is a problem to be solved in the art.
Disclosure of Invention
The invention aims to provide a home intercommunication network access method and a home intercommunication network access device, which aim to open a first home network and a second home network in different or the same edge network through a cloud gateway network under the condition of not passing through a public network, realize access to own or network resources inside each other and can meet the use requirement of a super-large-scale data center; the network deployment method solves the problems that the network deployment method in the prior art relates to complex configuration of a network layer, poor expandability and overlarge LAN-LAN mutual access limitation, is only suitable for a relay scene in a family or a small company, and the traditional LAN-WAN virtual channel is more suitable for a LAN-to-WAN scene.
The invention adopts the following technical scheme:
in a first aspect, the present invention provides a home interworking network access method, in which an interworking switch is set in each edge network, and the first interworking switch and the second interworking switch are connected in advance according to home network information of a different place provided by a user; a first Srv6 tunnel is established between a first leaf switch and the first interworking switch, a second Srv6 tunnel is established between the first interworking switch and the second interworking switch, and a third Srv6 tunnel is established between a destination gateway in a second home network and the second interworking switch; the first interworking switch is an interworking switch in an edge network where a first home network is located, the second interworking switch is an interworking switch in an edge network where a second home network is located, the first leaf switch is a switch directly connected under a broadband access server on an upper layer of the first home network, and the target gateway is gateway equipment corresponding to target equipment required to be accessed in the second home network; the first home network and the second home network are different home networks of the same user; the method comprises the following steps:
A first terminal in a first home network reports a first message to the first leaf switch; the first message carries the MAC address of the first terminal and the MAC address of the destination device;
the first leaf switch converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first interworking switch through the first Srv6 tunnel;
the first interworking exchanger transmits the first Srv6 message to the second interworking exchanger through the second Srv6 tunnel according to the MAC address of the destination device carried in the first Srv6 message;
the second interworking exchanger converts the first Srv6 message into a second message, and transmits the second message to the target gateway through the third Srv6 tunnel so as to realize the mutual access between the first home network and the second home network.
Further, the home network information includes: the account information of the user, a QinQ conversion rule between the first home network and the second home network, an IP address of the first home network and an IP address of the second home network.
Further, the connecting the first interworking switch with the second interworking switch in advance according to the home network information of the different places provided by the user specifically includes:
the management system acquires the remote home network information, and associates the account information with the QinQ conversion rule so as to open a mutual access service between the first home network and the second home network of the user;
respectively issuing the QinQ conversion rule to a first access cloud gateway, the first intercommunication switch, the second intercommunication switch and the target gateway of the first home network;
the first access cloud gateway, the first intercommunication switch, the second intercommunication switch and the destination gateway respectively configure the received QinQ conversion rule to self equipment so as to connect the first intercommunication switch and the second intercommunication switch.
Further, the first interworking switch transmits the first Srv6 message to the second interworking switch through the second Srv6 tunnel according to the MAC address of the destination device carried in the first Srv6 message, which specifically includes:
the first intercommunication exchanger configures an inner layer VLAN and an outer layer VLAN on own equipment in advance according to QinQ conversion rules configured by the own equipment; the inner layer VLAN is used for identifying the first terminal, and the outer layer VLAN is used for identifying an edge network to be forwarded to;
When the first intercommunication exchanger communicates with a first home network for the first time, an internal forwarding table is built in self equipment; taking the MAC address of a first terminal in a first inner layer message of a received first Srv6 message as the MAC address of the inner layer VLAN, taking the MAC address of target equipment in the first inner layer message as the MAC address of the outer layer VLAN, and obtaining the MAC address mapping relation between the inner layer VLAN and the outer layer VLAN; associating the MAC address mapping relation with the QinQ conversion rule and recording the relation in the internal forwarding table;
in the internal forwarding table, a forwarding entry matched with QinQ information of a second home network and an MAC address of target equipment in a first inner layer message of a received first Srv6 message is found; and forwarding the first inner layer message to the second intercommunication interaction machine according to the forwarding item.
Further, the establishing a first Srv6 tunnel between the first leaf switch and the first interworking switch, establishing a second Srv6 tunnel between the first interworking switch and the second interworking switch, and establishing a third Srv6 tunnel between a destination gateway in a second home network and the second interworking switch specifically includes:
Establishing a VPLS tunnel between the first leaf switch and a first access cloud gateway; establishing a VPWS tunnel between the first access cloud gateway and the first intercommunication switch; obtaining the first Srv6 tunnel according to a VPLS tunnel and a VPWS tunnel between the first leaf switch and the first interworking switch;
establishing a VPWS tunnel between the first interworking switch and the second interworking switch; obtaining the second Srv6 tunnel according to the VPWS tunnel between the first interworking exchanger and the second interworking exchanger;
establishing a VPWS tunnel between the second interworking exchanger and the destination gateway; and obtaining the third Srv6 tunnel according to the VPWS tunnel between the destination gateway and the second intercommunication switch.
Further, the first leaf switch converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first interworking switch through the first Srv6 tunnel, which specifically includes:
the first leaf switch generates a Srv6 message header according to SID information acquired from an upstream router, an IP address of the first home network and an IP address of the second home network; adding the Srv6 message header at the front end of the first message to obtain the first Srv6 message; transmitting the first Srv6 message to the first access cloud gateway through a corresponding VPLS tunnel;
The first access cloud gateway replaces the QinQ information of the first home network in the first Srv6 message with the QinQ information of the second home network to obtain a modified first Srv6 message;
the first access cloud gateway decapsulates the modified first Srv6 message to obtain a first inner layer message corresponding to the modified first Srv6 message and an IP address of the second home network; and transmitting the first inner layer message to the first intercommunication exchanger through a corresponding VPWS tunnel according to the IP address of the second home network.
Further, when forwarding the first inner layer packet to the second interworking exchange according to the forwarding entry, the method further includes:
when the first interworking switch identifies that the edge network to be forwarded in the forwarding entry is the edge network where the first interworking switch is located, the first inner layer message is not transmitted to the second interworking switch, and the first inner layer message is directly transmitted to the destination gateway, so that the destination gateway transmits the second decapsulated message to the destination device.
Further, when the destination device is a second terminal in the second home network, the destination gateway is a second access cloud gateway of the second home network; after the second message is transmitted to the destination gateway through the third Srv6 tunnel, the method specifically includes:
The second access cloud gateway replaces the QinQ information of the second home network with the QinQ information of the first home network in the second message according to the QinQ conversion rule configured by the self equipment to obtain a second Srv6 message;
a VPLS tunnel is established between the second access cloud gateway and the second leaf switch in advance; the second leaf switch is a switch directly connected under a broadband access server at the upper layer of the second home network; transmitting the second Srv6 message to the second leaf switch;
the second leaf switch decapsulates the second Srv6 message to obtain a second inner layer message corresponding to the second Srv6 message; and transmitting the second inner layer message to the second terminal through a VLAN according to the QinQ information of the first home network in the second inner layer message.
Further, when the destination device communicates with the storage server in the second home network, the destination gateway is a service gateway in an edge network where the second home network is located; after the second message is transmitted to the destination gateway through the third Srv6 tunnel, the method specifically includes:
The service gateway unpacks the second message to obtain a third inner layer message corresponding to the second message and an IP address of the second home network;
and transmitting the second inner layer message to the storage server according to the IP address of the second home network.
In a second aspect, the present invention further provides a home interworking network access device, configured to implement the home interworking network access method of the first aspect, where the home interworking network access device includes:
at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor for performing the home interworking network access method of the first aspect.
In a third aspect, the present invention also provides a non-volatile computer storage medium storing computer executable instructions for execution by one or more processors to perform the home interworking network access method of the first aspect.
The invention reports the first message to the first leaf switch through the first terminal in the first home network, further converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first intercommunication switch through the first Srv6 tunnel; the first interworking exchanger transmits the MAC address of the target equipment carried in the first Srv6 message to the second interworking exchanger through the second Srv6 tunnel; the second intercommunication exchanger converts the first Srv6 message into the second message, and transmits the second message to the destination gateway through the third Srv6 tunnel, packages and unpacks the message through the first leaf exchanger and the destination gateway, directly opens the first home network and the second home network in different or same edge networks through the Srv6 tunnel and the intercommunication exchanger without passing through a public network, realizes accessing own or mutually internal network resources, has simple network layer configuration and strong expandability, can meet the use requirement of a super-large scale data center, and breaks the use limitation of LAN-LAN mutual access relay scenes.
Drawings
In order to more clearly illustrate the technical solution of the embodiments of the present invention, the drawings that are required to be used in the embodiments of the present invention will be briefly described below. It is evident that the drawings described below are only some embodiments of the present invention and that other drawings may be obtained from these drawings without inventive effort for a person of ordinary skill in the art.
Fig. 1 is a schematic overall flow diagram of a home interworking network access method according to an embodiment of the present invention;
fig. 2 is a schematic diagram of a networking topology according to an embodiment of the present invention;
FIG. 3 is a schematic flow chart of step 10 of the embodiment of the present invention;
fig. 4 is a schematic diagram of inter-home interworking interview provided by an embodiment of the present invention;
FIG. 5 is a schematic flow chart of step 20 of the embodiment of the present invention;
fig. 6 is a schematic diagram of another networking topology according to an embodiment of the present invention;
FIG. 7 is a schematic view of a tunnel according to an embodiment of the present invention;
FIG. 8 is a first cross-visit schematic provided by an embodiment of the present invention;
FIG. 9 is a flow chart of step 30 of an embodiment of the present invention;
FIG. 10 is a schematic flow chart of step 40 of the embodiment of the present invention;
FIG. 11 is a schematic flow chart of step 40 of an embodiment of the present invention;
FIG. 12 is a schematic view of another tunnel provided by an embodiment of the present invention;
FIG. 13 is a second cross-access schematic provided by an embodiment of the present invention;
FIG. 14 is a third cross-visit schematic provided by an embodiment of the present invention;
fig. 15 is a schematic diagram of a mutual access example from a first home network to a second home network according to an embodiment of the present invention;
fig. 16 is a schematic diagram of another mutual access example from a first home network to a second home network according to an embodiment of the present invention;
fig. 17 is a schematic diagram of a mutual access example from a second home network to a first home network according to an embodiment of the present invention;
fig. 18 is a schematic diagram of another mutual access example from a second home network to a first home network according to an embodiment of the present invention;
FIG. 19 is a schematic diagram of inter-machine-room interworking of vNAS servers provided by an embodiment of the present invention;
fig. 20 is a schematic architecture diagram of a home interworking network access device according to an embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the drawings and examples, in order to make the objects, technical solutions and advantages of the present invention more apparent. It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the invention.
In the description of the present invention, terms such as "inner", "outer", "longitudinal", "transverse", "upper", "lower", "top", "bottom", and the like refer to an orientation or positional relationship based on that shown in the drawings, and are merely for convenience in describing the present invention and do not require that the present invention must be constructed and operated in a particular orientation, and thus should not be construed as limiting the present invention.
The terms "first," "second," and the like herein are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defining "a first", "a second", etc. may explicitly or implicitly include one or more such feature. In the description of the present application, unless otherwise indicated, the meaning of "a plurality" is two or more.
In the present application, unless explicitly specified and limited otherwise, the term "coupled" is to be construed broadly, and for example, "coupled" may be either fixedly coupled, detachably coupled, or integrally formed; can be directly connected or indirectly connected through an intermediate medium.
In addition, the technical features of the embodiments of the present invention described below may be combined with each other as long as they do not collide with each other.
Example 1:
as shown in fig. 1, embodiment 1 of the present invention provides a home interworking network access method, in which an interworking switch is set in each edge network, and a first interworking switch and a second interworking switch are connected in advance according to home network information of a different place provided by a user; a first Srv6 tunnel is established between a first leaf switch and the first interworking switch, a second Srv6 tunnel is established between the first interworking switch and the second interworking switch, and a third Srv6 tunnel is established between a destination gateway in a second home network and the second interworking switch; the first interworking switch is an interworking switch in an edge network where a first home network is located, the second interworking switch is an interworking switch in an edge network where a second home network is located, the first leaf switch is a switch directly connected under a broadband access server on an upper layer of the first home network, and the target gateway is gateway equipment corresponding to target equipment required to be accessed in the second home network; the first home network and the second home network are different home networks of the same user; the method comprises the following steps:
Step 10: a first terminal in a first home network reports a first message to the first leaf switch; the first message carries the MAC address of the first terminal and the MAC address of the destination device.
The first home network and the second home network belong to access networks of different places, may be different edge cloud nodes, namely belong to different edge networks, and may also be the same edge cloud node, but different access cloud gateways.
For example, as shown in fig. 2, a terminal 1 (first terminal) in a first home network generates a first message, and transmits the first message to a terminal 2 (destination device) in a second home network. The terminal 1 and the terminal 2 are necessarily connected to the interworking switch through different access cloud gateways (not shown in fig. 2), the terminal 1 is connected to a first leaf switch, the first leaf switch is connected to a corresponding access cloud gateway in the first home network, and the access cloud gateway is connected to the first interworking switch.
The terminal 1 generates a first message and uploads the first message to aleaf (first leaf switch); the destination device of the first message is the terminal 2, and carries the MAC address of the terminal 1 and the MAC address of the terminal 2.
Step 20: the first leaf switch converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first interworking switch through the first Srv6 tunnel.
Wherein the intercommunication exchanger is a two-layer exchanger.
The embodiment of the invention is based on the segment routing (Segment Routing IPv, SRv 6) protocol of the IPv6 forwarding plane, and SRv6 can integrate a two-layer virtual private network and a three-layer virtual private network in a Multi-protocol label switching (Multi-Protocol Label Switiching, MPLS) network through an Ethernet virtual private network (Ethernet Virtual Private Network, EVPN), so that the protocol can be simplified, and the configuration management is simpler; wherein the two-layer virtual private network comprises a virtual private line service (Virtual Private Wire Service, abbreviated as VPWS) and a virtual private local area network service (Virtual Private Lan Service, abbreviated as VPLS), and the three-layer virtual private network comprises a multiprotocol border gateway protocol (Multiprotocol Border Gateway Protocol, abbreviated as MP-BGP protocol).
Step 30: and the first interworking switch transmits the first Srv6 message to the second interworking switch through the second Srv6 tunnel according to the MAC address of the destination device carried in the first Srv6 message.
The cloud broadband multipoint networking forms a big two-layer concept, requiring different or the same regions, and the first home network and the second home network of different or the same edge Yun Jiedian (edge network) are all opened through the cloud gateway network and can access network resources of themselves or each other without passing through a public network. The large two-layer network is to package the original two-layer message sent by the source host computer through the tunnel technology, then to carry out transparent transmission in the existing network, to reach the destination, then to unpack the original message, and to forward the original message to the target host computer, thereby realizing the two-layer communication between the host computers; through encapsulation and decapsulation, a large two-layer network is overlaid on top of the existing base network.
In the embodiment of the invention, the first leaf switch is used as a first message encapsulation SRv message header, a SRv tunnel is established between the first leaf switch and the target gateway, the message is transmitted through the SRv tunnel, the SRv protocol is utilized to realize a large two-layer network, and the mutual access between the first home network and the second home network can be realized without a public network.
Step 40: the second interworking exchanger converts the first Srv6 message into a second message, and transmits the second message to the target gateway through the third Srv6 tunnel so as to realize the mutual access between the first home network and the second home network.
The invention reports the first message to the first leaf switch through the first terminal in the first home network, further converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first intercommunication switch through the first Srv6 tunnel; the first interworking exchanger transmits the MAC address of the target equipment carried in the first Srv6 message to the second interworking exchanger through the second Srv6 tunnel; the second intercommunication exchanger converts the first Srv6 message into the second message, and transmits the second message to the destination gateway through the third Srv6 tunnel, the first leaf exchanger and the destination gateway are used for packaging and unpacking the message, the public network is not needed, the first home network and the second home network in different or same edge networks are directly connected through the Srv6 tunnel and the intercommunication exchanger, network resources of the first home network and the second home network are accessed or mutually internal are realized, the network layer configuration is concise, the expandability is strong, the use requirement of a super-large scale data center can be met, and the limitation of LAN-LAN mutual access relay scene is broken.
In order to better illustrate the home interworking network access method of the present invention, the remote home network information according to the embodiment of the present invention is further described, where the remote home network information includes: the account information of the user, a QinQ conversion rule between the first home network and the second home network, an IP address of the first home network and an IP address of the second home network. Wherein the QinQ conversion rules are used to modify the QinQ configuration to encapsulate another ethernet frame in the ethernet frame to support multi-level VLAN nesting. By encapsulating the destination address field as an external VLAN tag, routing decisions and forwarding can be performed according to the destination address when the data packet passes through the QinQ switch. When the terminal device is connected to the access cloud gateway, the IP address of the first home network and the IP address of the second home network are required to correctly identify and route the data packet.
The home network information of the different place further includes link information between the first terminal and the destination device, an IP address pool corresponding to the first home network, an IP address pool corresponding to the second home network, etc., and a person skilled in the art selects the specific whole content of the home network information of the different place according to the specific use scenario, which is not limited herein.
QinQ is a two-layer VPN technology that encapsulates an outer VLAN Tag (Tag) on an operator network edge device for a user's private network packet, so that the packet carries the two-layer VLAN Tag across the operator's backbone network (public network). The network equipment in the public network only forwards the message according to the outer VLAN label, and learns the source MAC address table item of the message into the MAC address table of the VLAN where the outer label is positioned, and the private VLAN label of the user is used as the data part in the message to be transmitted in the transmission process.
The MAC address is a medium access control address, also called physical address, hardware address, used to define the location of the network device; in a local area network, each network device has a unique MAC address that identifies the location of the network device in the network.
In order to establish a connection between the first home network and the second home network, as shown in fig. 3, before the step 10, the connecting between the first interworking switch and the second interworking switch according to the home network information of the different place provided by the user in advance specifically includes:
In step 101, the management system acquires the home network information of the different place, and associates the account information with the QinQ conversion rule to open a interview service between the first home network and the second home network of the user.
In an alternative embodiment, the management system may use a management platform (Integrated Operation Management Platform, abbreviated IOMP) to manage input/output traffic between network devices. And establishing a mapping relation list for opening the mutual access service, and storing account information and corresponding QinQ conversion rules.
In step 102, the QinQ conversion rule is issued to the first access cloud gateway, the first interworking switch, the second interworking switch, and the destination gateway of the first home network, respectively.
In step 103, the first access cloud gateway, the first interworking switch, the second interworking switch, and the destination gateway respectively configure the received QinQ conversion rule to their own devices, so as to connect the first interworking switch and the second interworking switch.
After the user opens the interview service between the first home network and the second home network, the operator configures the QinQ conversion rule to the equipment to be used through the management system, so that when the message is received, the message is forwarded according to the QinQ conversion rule configured by the equipment.
In order to pre-establish a Srv6 tunnel between a first leaf switch and a destination gateway to pass through the Srv6 tunnel and realize home inter-access without passing through a public network, as shown in fig. 3, the method specifically includes the steps of establishing a first Srv6 tunnel between the first leaf switch and the first interworking switch, establishing a second Srv6 tunnel between the first interworking switch and the second interworking switch, and establishing a third Srv6 tunnel between the destination gateway and the second interworking switch in the second home network:
in step 104, a VPLS tunnel is established between the first leaf switch and the first access cloud gateway; establishing a VPWS tunnel between the first access cloud gateway and the first intercommunication switch; and obtaining the first Srv6 tunnel according to the VPLS tunnel and the VPWS tunnel between the first leaf switch and the first intercommunication switch.
The method comprises the steps of establishing a pair of (LAN|WAN) dual-homing SRv tunnels between an access cloud gateway and a leaf switch respectively; when a message needs to be forwarded to the WAN side, it is not until it comes out of the access cloud gateway, but it needs to enter the leaf switch again.
In step 105, establishing a VPWS tunnel between the first interworking switch and the second interworking switch; and obtaining the second Srv6 tunnel according to the VPWS tunnel between the first interworking exchanger and the second interworking exchanger.
In step 106, a VPWS tunnel is established between the second interworking switch and the destination gateway; and obtaining the third Srv6 tunnel according to the VPWS tunnel between the destination gateway and the second intercommunication switch.
As shown in fig. 4, the Srv6 tunnel of the embodiment of the present invention is composed of a plurality of VPWS tunnels and VPLS tunnels; the access cloud gateway and the interworking switch are VPWS tunnels, which are not shown in fig. 4.
The traditional LAN-WAN virtual channel is more suitable for the problem of LAN-to-WAN scene, and the embodiment of the invention adopts the EVPN technology to transversely penetrate through the LAN-LAN; the dual homing dual activation technology based on EVPN can realize that when the interconnected sites are added and deleted, a Single-side deployment mode (Single-side) is adopted, and the configuration of the existing sites is not affected.
To further illustrate the process of transmitting the message on the Srv6 tunnel, as shown in fig. 5, the step 20 specifically includes:
step 201: the first leaf switch generates a Srv6 message header according to SID information acquired from an upstream router, an IP address of the first home network and an IP address of the second home network; adding the Srv6 message header at the front end of the first message to obtain the first Srv6 message; and transmitting the first Srv6 message to the first access cloud gateway through a corresponding VPLS tunnel.
The Srv6 message header comprises an IP address of a source message sending end, an IP address of a destination address, and SID (Segment Identifier ), wherein SID information is used for guiding equipment supporting Srv6 protocol to forward the message. SID information may be obtained from a local router or a router directly connected to the local router. For example, the local router configures SID information and encodes it into a Srv6 header, and the local router can identify its published Locator and use the SID information to determine the forwarding path of the packet.
Step 202: and the first access cloud gateway replaces the QinQ information of the first home network in the first Srv6 message with the QinQ information of the second home network to obtain a modified first Srv6 message.
As shown in fig. 4, EVPN is a virtualized private network technology, where multiple EVPN instances exist on an edge network device, and each EVPN instance is connected to one or more groups of user networks, so as to form one or more cross-domain two-layer networks.
When the user message is transmitted on the public network, the user message carries two layers of labels, wherein the inner layer is a private network label, and the outer layer is a public network label. When the QinQ packet is routed from the edge device to the core device, the edge device learns the routing information according to the outer label to guide the forwarding path.
Step 203: the first access cloud gateway decapsulates the modified first Srv6 message to obtain a first inner layer message corresponding to the modified first Srv6 message and an IP address of the second home network; and transmitting the first inner layer message to the first intercommunication exchanger through a corresponding VPWS tunnel according to the IP address of the second home network.
The embodiment of the invention provides a specific example of communication between a first terminal of a first home network and a second terminal of a second home network, which is specifically as follows:
wherein the first home network and the second home network are not in the same edge network.
1. As shown in fig. 6, the home interworking environment main device includes: 2 leaf switches (aleaf: 172.16.127.47 and bleaf: 172.16.127.49), 2 access cloud gateways (access cloud gateways 1:172.16.123.19 and access cloud gateways 2:172.16.123.15), 2 service gateways (service cloud gateways 1:172.16.123.14 and service cloud gateways 2:172.16.122.9), 2 interworking switches (interworking switches 1:172.16.21 and interworking switches 2:172.16.123.13), 2 NAS systems (NAS systems 1:172.17.100.33 and NAS systems 2:172.17.102.133), 2 ESXs (for providing virtual machine terminals, terminal 1 and terminal 2 respectively), a set of broadband access servers (Broadband Remote Access Server, abbreviated as BRAS) and several switches;
2. Each access, intercommunication and service gateway is communicated with the IOMP through a management switch;
the IOMP distributes configuration data to each access cloud gateway, the intercommunication switch and the service gateway through a management port of the management switch;
4. each access cloud gateway, the intercommunication exchanger and the service gateway report heartbeat, log, alarm and other information to the IOMP platform through the management port;
5. the access cloud gateway establishes SRv tunnels with aleaf and bleaf respectively establishing a pair of (LAN|WAN) dual-homing;
6. as shown by a dotted line in fig. 7, two access cloud gateways respectively establish a VPWS tunnel with the interworking switch 1;
7. as shown by the dotted line in fig. 8, the terminal 1 makes a double-layer VLAN through the QinQ switch (172.16.122.5 and 172.16.122.17), then makes a path north through the VLAN transparent transmission to reach aleaf and bleaf, aleaf or bleaf for the packet encapsulation Srv6 header, makes a path through the LAN VPLS tunnel to forward the packet to the access cloud gateway 1, makes the access cloud gateway 1 transmit the packet to the interworking switch 2 through the VPWS tunnel established between the access cloud gateway 1 and the interworking switch 1, makes the interworking switch 2 transmit the packet to the access cloud gateway 2 through the internal forwarding table, makes the access cloud gateway 2 transmit the packet back to aleaf and bleaf through the LAN VPLS tunnel established with aleaf and bleaf respectively, makes the inner layer packet to the terminal 2 through the VLAN transparent transmission after the aleaf and bleaf are decapsulated, thereby realizing LAN-LAN interworking.
In order to forward a message from an edge network where a first home network is located to an edge network where a second home is located through a first interworking switch and a second interworking switch, so as to implement a home interview, as shown in fig. 9, the step 30 specifically includes:
step 301: the first intercommunication exchanger configures an inner layer VLAN and an outer layer VLAN on own equipment in advance according to QinQ conversion rules configured by the own equipment; the inner layer VLAN is used for identifying the first terminal, and the outer layer VLAN is used for identifying an edge network to be forwarded.
And configuring VLAN on the intercommunication equipment, and adding the interface needing intercommunication into the corresponding VLAN. Configuring a QinQ function to enable the intercommunication equipment to identify and process the message with the two layers of VLAN labels; the QinQ functions are enabled on the corresponding network devices and the QinQ conversion rules (i.e., the QinQ conversion rules issued by the management system) are configured.
In configuring QinQ, it is often necessary to configure inner and outer VLANs on the switch. The inner VLAN is used to identify network devices connected to the network and the outer VLAN is used to identify different VLANs or subnets. In the process of data packet forwarding, the interworking switch learns the MAC address of the inner VLAN to the outer VLAN so as to forward the data packet correctly.
Step 302: when the first intercommunication exchanger communicates with a first home network for the first time, an internal forwarding table is built in self equipment; taking the MAC address of a first terminal in a first inner layer message of a received first Srv6 message as the MAC address of the inner layer VLAN, taking the MAC address of target equipment in the first inner layer message as the MAC address of the outer layer VLAN, and obtaining the MAC address mapping relation between the inner layer VLAN and the outer layer VLAN; and associating the MAC address mapping relation with the QinQ conversion rule and recording the MAC address mapping relation in the internal forwarding table.
The internal forwarding table is a table for determining a data message forwarding path in the interworking switch; it looks up the corresponding forwarding entry based on specific information (e.g., MAC address, IP address, qinQ information, etc.) to determine to which port or next hop network device the data packet should be forwarded.
Step 303: in the internal forwarding table, a forwarding entry matched with QinQ information of a second home network and an MAC address of target equipment in a first inner layer message of a received first Srv6 message is found; and forwarding the first inner layer message to the second intercommunication interaction machine according to the forwarding item.
The process of forwarding the first inner layer message by the interworking switch according to the internal forwarding table and the QinQ in the first inner layer message is as follows:
the method comprises the steps of receiving a first inner layer message, and analyzing QinQ information in the first inner layer message, wherein the QinQ information comprises an inner layer VLAN label, an outer layer VLAN label and the like; and analyzing the destination MAC address of the message to determine the position of the destination device.
And searching in an internal forwarding table according to the parsed QinQ information and the MAC address of the destination device. The internal forwarding table stores the mapping relation between various QinQ information and corresponding forwarding table items; and searching for a matched forwarding entry according to the parsed QinQ information and the MAC address of the destination device.
And after the matched forwarding entry is found, forwarding the first inner layer message to a corresponding port or next hop network equipment according to the indication in the forwarding entry.
When the first interworking switch identifies that the edge network to be forwarded in the forwarding entry is the edge network where the first interworking switch is located, the first inner layer message is not transmitted to the second interworking switch, and the first inner layer message is directly transmitted to the destination gateway, so that the destination gateway transmits the unpacked second message to the destination device.
When the first home network and the second home network are in the same edge network, the first intercommunication exchanger does not need to carry out data transmission with the second intercommunication exchanger in the other edge network, and only needs to forward the received first inner layer message to the corresponding destination gateway.
In order to further explain the mutual access between the first terminal in the first home network and the second terminal in the second home network, when the destination device is the second terminal in the second home network, the destination gateway is a second access cloud gateway of the second home network. As shown in fig. 10, after the second packet is transmitted to the destination gateway through the third Srv6 tunnel in the step 40, the method specifically includes:
step 401a: and the second access cloud gateway replaces the QinQ information of the second home network with the QinQ information of the first home network in the second message according to the QinQ conversion rule configured by the self equipment to obtain a second Srv6 message.
Step 402a: a VPLS tunnel is established between the second access cloud gateway and the second leaf switch in advance; the second leaf switch is a switch directly connected under a broadband access server at the upper layer of the second home network; and transmitting the second Srv6 message to the second leaf switch.
A pair of (LAN|WAN) dual-homing SRv tunnels are respectively established between the access cloud gateway and the second leaf switch; in performing LAN-LAN mutual access between the first home network and the second home network, only the lan_vpls tunnel (i.e., VPLS tunnel) therein is used.
Step 403a: the second leaf switch decapsulates the second Srv6 message to obtain a second inner layer message corresponding to the second Srv6 message; and transmitting the second inner layer message to the second terminal through a VLAN according to the QinQ information of the first home network in the second inner layer message.
The second leaf switch removes the Srv6 header of the second Srv6 message to decapsulate it into the second inner layer message.
In order to further explain the mutual access between the first terminal in the first home network and the storage server in the second home network, when the destination device communicates with the storage server in the second home network, the destination gateway is a service gateway in an edge network where the second home network is located. As shown in fig. 11, after the second packet is transmitted to the destination gateway through the third Srv6 tunnel in the step 40, the method specifically includes:
step 401b: and the service gateway decapsulates the second message to obtain a third inner layer message corresponding to the second message and the IP address of the second home network.
Step 402b: and transmitting the second inner layer message to the storage server according to the IP address of the second home network.
Wherein the storage server is selected by one of ordinary skill in the art based on the particular use scenario, in alternative embodiments the storage server may be a network attached storage (Network Attached Storage, abbreviated NAS) system and a virtualized network attached storage (Virtualization Network Attached Storage, abbreviated vnnas) system. The storage server communicates according to the IP address.
The embodiment of the invention provides a specific example that a first terminal of a first home network communicates with a NAS system 1 of a second home network, which is specifically as follows:
wherein the first home network and the second home network are on the same edge network.
1. As shown by the dashed line in fig. 12, 1 VPWS tunnel is created between the access cloud gateway 1 and the traffic gateway 1;
2. as shown by the broken line in fig. 13, the terminal 1 makes a double-layer VLAN through the QinQ switch, then passes through the VLAN to cross two layers and reaches aleaf and bleaf all the way north for message encapsulation Srv6 header, and forwards the message to the access cloud gateway 1 through the lan vpls tunnel and crosses three layers, the access cloud gateway 1 transmits the message to the service gateway 1 through the VPWS tunnel established between the access cloud gateway 1 and the service gateway 1, and the service gateway 1 decapsulates the message and then sends the message from the output interface to the NAS system 1, thereby realizing access to the NAS system 1.
The embodiment of the present invention provides a specific example in which a first terminal of a first home network communicates with a NAS system 2 of a second home network, specifically as follows:
wherein the first home network and the second home network are not in the same edge network.
1. 1 VPWS tunnel is established between the access cloud gateway 1 and the intercommunication exchanger 1;
2. as shown by the dashed line in fig. 12, 1 VPWS tunnel is created between the interworking switch 1 and the traffic gateway 2;
3. as shown by the dotted line in fig. 14, after the message of the terminal 1 reaches the access cloud gateway 1, the message is transmitted to the interworking switch 1 through a VPWS tunnel between the access cloud gateway 1 and the interworking switch 1, the interworking switch 1 transmits the message to the service gateway 2 through an internal forwarding table walking the VPWS tunnel, and the service gateway 2 decapsulates the message and then sends the message from the output interface to the NAS system 2, thereby realizing access to the NAS system 2.
The embodiment of the invention realizes a LAN-LAN mutual access technology passing through SRv, can provide direct connection for network stations, is especially a complete mesh WAN, and meets the requirement of simplifying network topology structure design. For companies that need integrated voice or video communications, it is important to eliminate network jitter, reduce latency and packet loss; the convenience of operation and maintenance deployment also brings value to the development of the technology.
The difference between the LAN-LAN mutual access technology passing through SRv and the frame relay mode of the LAN-LAN mutual access relay scene in the prior art is not only in the technical level, but also changes the payment mode; that is, when facing the user, the payment can be made according to the number of virtual circuits connected; when facing enterprises, the network site can be used as a unit, the charging is carried out according to the access quantity, the number of communication ports and the bandwidth (or time delay), and the user can select different levels of service according to self tariff requirements.
Specifically, two optional application scenarios of the home interworking network access method of the embodiment of the present invention are provided below: firstly, an account corresponds to a plurality of home networks in the home city, so that communication among terminals in the plurality of home networks can be realized, and Multi-access mobile edge computing (Multi-access Mobile Edge Computing is abbreviated as MEC) resource sharing can be realized; for example, intelligent home hard disk sharing, intelligent monitoring, intelligent home control, child care, and old-fashioned green surfing, etc. The second is applied to medium and large-sized internet of things systems, such as take-away platforms, e-commerce platforms, banking systems, internet hospitals and the like; the goods or services purchased by the user no longer need to be sent throughout the network to the headquarter process, but are distributed directly to the surrounding areas without going through the public network, thereby providing a faster and more efficient response.
Example 2:
the embodiment of the invention provides a specific example of mutual access between a first home network and a second home network. As shown in fig. 4, 15 and 16, when the user traffic originates from a first terminal of a first home network and the destination device is a second terminal in a second home network, the following operations are performed:
user traffic arrives at the access cloud gateway 1: "SRv in service" outer layer dip= > evpn1; "evpn entry rule" evpn1+qinqa= > lan_vni1+vport; query "home IP forwarding table": inner layer DIPB/24= > qinqb+evpnx+ (lgmac 2 is not used); the// send to the virtual port; the virtual port receives packets, out_network=newtype, and calls SRv to go out of service; "SRv out-service" evpnx= > rsid+outer layer SIP/DIP; the QinQB is replaced.
As shown in fig. 4, 17 and 18, when the user traffic originates from the second terminal of the second home network and the destination device is the first terminal in the first home network, the following operations are performed:
user traffic arrives at the access cloud gateway 2: "SRv in service" outer layer dip= > evpn2; "evpn entry rules" evpn2+ QinQB > lan_vni2+ vport; query "home IP forwarding table": inner layer DIPA/24= > qinqa+evpnx+lgmac1; the// send to the virtual port; the virtual port receives packets, out_network=newtype, and calls SRv to go out of service; "SRv out-service" evpnx= > rsid+outer layer SIP/DIP; the QinQB is replaced.
Example 3:
under the actual application scene, the process of accessing the VSW flow scheduling is as follows:
physical port:
the VSW receives SRv flow, if the flow is a protocol message > a loopback port, if not, the flow continues;
2. invoking service_srv6_local_sid SERVICE, dipv6- > evpn instance? The method comprises the steps of carrying out a first treatment on the surface of the
3. Invoking service_evpn_in_forward SERVICE, EVPN > evpn_gp (network type = LAN/WAN/MEC); qinq+evpn > vnfd+vni:
from LAN to MEC, mecoacl or VCPE:
4. if network type = LAN, a QinQ conversion is performed (record buss QinQ to ext vlan [2 ]);
5. calling a service: service_vni_service_route, vni+qinq > SERVICE [8], invoking service_service SERVICE, dip+service [8] - > SERVICE [ i ] (record exit rule.service [ i ]. Evpn_gp), transferring to virtual port;
6. otherwise judging VXLANMEC service, and forwarding the service to a corresponding service VSW or an interworking VSW if the service is successful;
7. otherwise forwarding VEPE according to the ingress rule (buss_vni+qinq > vport):
from MEC to LAN:
8. if network type=mec, reverse QinQ conversion is performed (record LAN QinQ to ext.vlan [2 ]);
9. lan_vni+qinq > lan_evpn_gp (evpn out rule already exists) needs to be sent to LAN side;
from MECLOCAL to LAN or VCPE:
10. if network type = MECLOCAL, reverse QinQ conversion is performed (record LAN QinQ to extvlan [2 ]);
11. Judging that the inner SMAC is in the range of the slidetMac (indicating that VCPE is processed), and sending the SMAC to the LAN side, and outputting Lan_vni+QinQ > lan_evpn_gp (the evpn output rule exists);
12. otherwise, the data is sent to VCPE according to the entry rule (Lan_vni+QinQ > vport).
Example 4:
in an actual application scene, the operation of the virtual port of the access cloud gateway is as follows:
1. the MEC virtual port of the access vSwitch receives packets, if in_network=MEC (possibly from service/interworking VSW) or MECLOACL, the SRv tunnel header of the outer layer is stripped, and a SRv message is packaged and sent to the LAN side according to out_vni+QinQ- > lan_evpn_gp (out rule);
2. otherwise, the flow (possibly sent to a service/interworking VSW) at the MEC side is sent out according to the recorded evpn_grp_id encapsulation SRv message;
3. the vcpe virtual port of the access VSW receives the packet (which needs to be sent to the LAN/WAN/intercommunication exchange side), and calls the EVPN output rule out_vni+QinQ- > evpn_gp package SRv message to send.
Example 5:
in an actual application scenario, the VCPE traffic scheduling process is as follows:
and (3) uplink:
vcpe determines dmac= 1gmac, processing unchanged;
VCPE judges dmac as a broadcast message, if the dmac is a dhcp message, the processing is unchanged; the ar broadcast request message of the terminal interview needs to be broadcast to a target mult lan interface (judged by dip); other messages need to be broadcast to each multlan interface;
3. Otherwise, the VCPE determines that the VCPE is two-layer forwarding (dmac |=1 gmac and not broadcast), finds a mutlan interface according to dip, fills out vni_qinq of the mutlan interface, and forwards the VCPE to the access VSW.
And (3) downlink: without passing through VCPE.
Example 6:
as shown in fig. 19, the service rule of the account number 1 is opened on the access cloud gateway 1, and the tunnel is directed to the two-layer interworking gateway, and the two-layer interworking gateways of the two machine rooms are connected by the tunnel. And opening the vNAS service of the account number 1 on the service gateway of the machine room 2.
Under the actual application scene, the process of interworking VSW flow scheduling is as follows:
physical port:
the VSW receives SRv flow, if the flow is a protocol message- > a loopback port, if not, the flow continues;
2. invoking a service_srv6_local_sid SERVICE, a dipv6- > evpn instance;
3. invoking service_evpn_in_forward SERVICE, EVPN > evpn_gp: (no evpn ingress and egress rules are required on interworking VSW);
4. finding a VAC port (evpn_gp- > in_intf);
5. looking up a VAC forwarding table, finding a target VAC port (in_intf+QinQ > out_intf) according to the QinQ, and performing QinQ transparent transmission;
virtual port:
6. the target VAC sub-interface receives the message and encapsulates SRv message according to the bound exit (out_intf- > evpn_grp).
Example 7:
fig. 20 is a schematic architecture diagram of a home interworking network access device according to an embodiment of the present invention. The home interworking network access device of the present embodiment includes one or more processors 21 and a memory 22. In fig. 20, a processor 21 is taken as an example.
The processor 21 and the memory 22 may be connected by a bus or otherwise, which is illustrated in fig. 20 as a bus connection.
The memory 22 is used as a nonvolatile computer-readable storage medium for storing a nonvolatile software program and a nonvolatile computer-executable program, as in the home interworking network access method of embodiment 1. The processor 21 executes the home interworking network access method by running a non-volatile software program and instructions stored in the memory 22.
The memory 22 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid-state storage device. In some embodiments, memory 22 may optionally include memory located remotely from processor 21, which may be connected to processor 21 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The program instructions/modules are stored in the memory 22, and when executed by the one or more processors 21, perform the home interworking network access method in the above-described embodiment 1, for example, perform the respective steps shown in fig. 1, 3, 5, and 9 to 11 described above.
It should be noted that, because the content of information interaction and execution process between modules and units in the above-mentioned device and system is based on the same concept as the processing method embodiment of the present invention, specific content may be referred to the description in the method embodiment of the present invention, and will not be repeated here.
Those of ordinary skill in the art will appreciate that all or a portion of the steps in the various methods of the embodiments may be implemented by a program that instructs associated hardware, the program may be stored on a computer readable storage medium, the storage medium may include: read Only Memory (ROM), random access Memory (RAM, random Access Memory), magnetic or optical disk, and the like.
The foregoing description of the preferred embodiments of the invention is not intended to be limiting, but rather is intended to cover all modifications, equivalents, and alternatives falling within the spirit and principles of the invention.
Claims (10)
1. A home intercommunication network access method is characterized in that an intercommunication switch is arranged in each edge network, and a first intercommunication switch and a second intercommunication switch are connected in advance according to different-place home network information provided by a user; a first Srv6 tunnel is established between a first leaf switch and the first interworking switch, a second Srv6 tunnel is established between the first interworking switch and the second interworking switch, and a third Srv6 tunnel is established between a destination gateway in a second home network and the second interworking switch; the first interworking switch is an interworking switch in an edge network where a first home network is located, the second interworking switch is an interworking switch in an edge network where a second home network is located, the first leaf switch is a switch directly connected under a broadband access server on an upper layer of the first home network, and the target gateway is gateway equipment corresponding to target equipment required to be accessed in the second home network; the first home network and the second home network are different home networks of the same user; the method comprises the following steps:
A first terminal in a first home network reports a first message to the first leaf switch; the first message carries the MAC address of the first terminal and the MAC address of the destination device;
the first leaf switch converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first interworking switch through the first Srv6 tunnel;
the first interworking exchanger transmits the first Srv6 message to the second interworking exchanger through the second Srv6 tunnel according to the MAC address of the destination device carried in the first Srv6 message;
the second interworking exchanger converts the first Srv6 message into a second message, and transmits the second message to the target gateway through the third Srv6 tunnel so as to realize the mutual access between the first home network and the second home network.
2. The home interworking network access method of claim 1, wherein the offsite home network information comprises: the account information of the user, a QinQ conversion rule between the first home network and the second home network, an IP address of the first home network and an IP address of the second home network.
3. The home interworking network access method according to claim 2, wherein the connecting the first interworking switch with the second interworking switch in advance according to the home network information of the different place provided by the user, specifically comprises:
the management system acquires the remote home network information, and associates the account information with the QinQ conversion rule so as to open a mutual access service between the first home network and the second home network of the user;
respectively issuing the QinQ conversion rule to a first access cloud gateway, the first intercommunication switch, the second intercommunication switch and the target gateway of the first home network;
the first access cloud gateway, the first intercommunication switch, the second intercommunication switch and the destination gateway respectively configure the received QinQ conversion rule to self equipment so as to connect the first intercommunication switch and the second intercommunication switch.
4. The home interworking network access method according to claim 2, wherein the first interworking switch transmits the first Srv6 message to the second interworking switch through the second Srv6 tunnel according to the MAC address of the destination device carried in the first Srv6 message, and specifically comprises:
The first intercommunication exchanger configures an inner layer VLAN and an outer layer VLAN on own equipment in advance according to QinQ conversion rules configured by the own equipment; the inner layer VLAN is used for identifying the first terminal, and the outer layer VLAN is used for identifying an edge network to be forwarded to;
when the first intercommunication exchanger communicates with a first home network for the first time, an internal forwarding table is built in self equipment; taking the MAC address of a first terminal in a first inner layer message of a received first Srv6 message as the MAC address of the inner layer VLAN, taking the MAC address of target equipment in the first inner layer message as the MAC address of the outer layer VLAN, and obtaining the MAC address mapping relation between the inner layer VLAN and the outer layer VLAN; associating the MAC address mapping relation with the QinQ conversion rule and recording the relation in the internal forwarding table;
in the internal forwarding table, a forwarding entry matched with QinQ information of a second home network and an MAC address of target equipment in a first inner layer message of a received first Srv6 message is found; and forwarding the first inner layer message to the second intercommunication interaction machine according to the forwarding item.
5. The home interworking network access method according to claim 1, wherein the establishing a first Srv6 tunnel between a first leaf switch and the first interworking switch, establishing a second Srv6 tunnel between the first interworking switch and the second interworking switch, and establishing a third Srv6 tunnel between a destination gateway in the second home network and the second interworking switch, comprises:
Establishing a VPLS tunnel between the first leaf switch and a first access cloud gateway; establishing a VPWS tunnel between the first access cloud gateway and the first intercommunication switch; obtaining the first Srv6 tunnel according to a VPLS tunnel and a VPWS tunnel between the first leaf switch and the first interworking switch;
establishing a VPWS tunnel between the first interworking switch and the second interworking switch; obtaining the second Srv6 tunnel according to the VPWS tunnel between the first interworking exchanger and the second interworking exchanger;
establishing a VPWS tunnel between the second interworking exchanger and the destination gateway; and obtaining the third Srv6 tunnel according to the VPWS tunnel between the destination gateway and the second intercommunication switch.
6. The home interworking network access method of claim 5, wherein the first leaf switch converts the first message into a first Srv6 message, and transmits the first Srv6 message to the first interworking switch through the first Srv6 tunnel, and specifically comprising:
the first leaf switch generates a Srv6 message header according to SID information acquired from an upstream router, an IP address of the first home network and an IP address of the second home network; adding the Srv6 message header at the front end of the first message to obtain the first Srv6 message; transmitting the first Srv6 message to the first access cloud gateway through a corresponding VPLS tunnel;
The first access cloud gateway replaces the QinQ information of the first home network in the first Srv6 message with the QinQ information of the second home network to obtain a modified first Srv6 message;
the first access cloud gateway decapsulates the modified first Srv6 message to obtain a first inner layer message corresponding to the modified first Srv6 message and an IP address of the second home network; and transmitting the first inner layer message to the first intercommunication exchanger through a corresponding VPWS tunnel according to the IP address of the second home network.
7. The home interworking network access method of claim 6, wherein when forwarding the first inner layer message to the second interworking exchange according to the forwarding entry, further comprising:
when the first interworking switch identifies that the edge network to be forwarded in the forwarding entry is the edge network where the first interworking switch is located, the first inner layer message is not transmitted to the second interworking switch, and the first inner layer message is directly transmitted to the destination gateway, so that the destination gateway transmits the second decapsulated message to the destination device.
8. The home interworking network access method of claim 5, wherein when the destination device is a second terminal in the second home network, the destination gateway is a second access cloud gateway of the second home network; after the second message is transmitted to the destination gateway through the third Srv6 tunnel, the method specifically includes:
the second access cloud gateway replaces the QinQ information of the second home network with the QinQ information of the first home network in the second message according to the QinQ conversion rule configured by the self equipment to obtain a second Srv6 message;
a VPLS tunnel is established between the second access cloud gateway and the second leaf switch in advance; the second leaf switch is a switch directly connected under a broadband access server at the upper layer of the second home network; transmitting the second Srv6 message to the second leaf switch;
the second leaf switch decapsulates the second Srv6 message to obtain a second inner layer message corresponding to the second Srv6 message; and transmitting the second inner layer message to the second terminal through a VLAN according to the QinQ information of the first home network in the second inner layer message.
9. The home interworking network access method of claim 5, wherein when the destination device communicates for a storage server in the second home network, the destination gateway is a service gateway in an edge network where the second home network is located; after the second message is transmitted to the destination gateway through the third Srv6 tunnel, the method specifically includes:
the service gateway unpacks the second message to obtain a third inner layer message corresponding to the second message and an IP address of the second home network;
and transmitting the second inner layer message to the storage server according to the IP address of the second home network.
10. A home interworking network access device comprising at least one processor and a memory, said at least one processor and memory being connected by a data bus, said memory storing instructions executable by said at least one processor, said instructions, when executed by said processor, for implementing the home interworking network access method of any of claims 1-9.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311854513.4A CN117811875A (en) | 2023-12-29 | 2023-12-29 | Household intercommunication network access method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311854513.4A CN117811875A (en) | 2023-12-29 | 2023-12-29 | Household intercommunication network access method and device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN117811875A true CN117811875A (en) | 2024-04-02 |
Family
ID=90427451
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202311854513.4A Pending CN117811875A (en) | 2023-12-29 | 2023-12-29 | Household intercommunication network access method and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN117811875A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN118158775A (en) * | 2024-05-10 | 2024-06-07 | 中国电信股份有限公司 | Household portable network construction method, data transmission method, system and related equipment |
CN118713937A (en) * | 2024-08-29 | 2024-09-27 | 武汉智云无限科技有限责任公司 | Campus network login method and device based on cloud gateway |
-
2023
- 2023-12-29 CN CN202311854513.4A patent/CN117811875A/en active Pending
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN118158775A (en) * | 2024-05-10 | 2024-06-07 | 中国电信股份有限公司 | Household portable network construction method, data transmission method, system and related equipment |
CN118713937A (en) * | 2024-08-29 | 2024-09-27 | 武汉智云无限科技有限责任公司 | Campus network login method and device based on cloud gateway |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109873760B (en) | Method and device for processing route, and method and device for data transmission | |
CN107911258B (en) | SDN network-based security resource pool implementation method and system | |
US20220078114A1 (en) | Method and Apparatus for Providing Service for Traffic Flow | |
CN106936777B (en) | Cloud computing distributed network implementation method and system based on OpenFlow | |
US9621373B2 (en) | Proxy address resolution protocol on a controller device | |
US10666459B1 (en) | System and method to facilitate interoperability between virtual private LAN service (VPLS) and ethernet virtual private network (EVPN) with all-active multi-homing | |
US8819267B2 (en) | Network virtualization without gateway function | |
WO2016066072A1 (en) | Method and device for realizing communication between nvo3 network and mpls network | |
CN108199963B (en) | Message forwarding method and device | |
EP3069471B1 (en) | Optimized multicast routing in a clos-like network | |
WO2015165311A1 (en) | Method for transmitting data packet and provider edge device | |
CN117811875A (en) | Household intercommunication network access method and device | |
CN104869042A (en) | Message forwarding method and message forwarding device | |
CN108964940A (en) | Message method and device, storage medium | |
CN101800691A (en) | Method, equipment and system for establishing data forwarding paths in ethernets | |
CN108092890B (en) | Route establishing method and device | |
WO2012122844A1 (en) | Method and system for domain-based interconnection of transparent interconnection over lots of links network | |
JP2002247089A (en) | Packet routing method and device | |
CN110431827A (en) | Distributed network gate framework is realized using location identifier separated protocol to be used for 3GPP mobility | |
US7480306B2 (en) | Interworking functionality | |
CN114598644A (en) | BIER message forwarding method, equipment and system | |
JP2019117972A (en) | Network management device, network system, method, and program | |
US20070165603A1 (en) | Access network system, subscriber station device, and network terminal device | |
CN103634210B (en) | Find the method and apparatus of the opposite end PE equipment of VPLS example | |
WO2014040422A1 (en) | Control method and device for medium access control address learning and route bridge |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination |