KR20200120330A - Method, apparatus and computer program for supporting vlans in software defined network - Google Patents

Abstract

The present invention relates to a method of providing a VLAN service in a software-defined network, and when a legacy network is changed to a software-defined network, the controller generates a terminal information table including VLAN setting information of the terminal in a state before the change in step a. ; In the case of a unicast packet, a flow rule for setting an openflow switch to process the VLAN tag of the unicast packet according to the VLAN setting information of the destination terminal of the packet and transmit it to a port connected to the destination terminal B applying to the open flow switch; And in the case of a broadcast packet, processing the VLAN tag of the broadcast packet according to VLAN setting information of a terminal belonging to the broadcast domain of the source terminal of the broadcast packet, and processing the VLAN tag of the broadcast packet to the terminal belonging to the broadcast domain. And a step c of applying a flow rule for setting the open flow switch to transmit to a connected port to the open flow switch.

Description

How to support VLANs in a software-defined network, device and computer programs {METHOD, APPARATUS AND COMPUTER PROGRAM FOR SUPPORTING VLANS IN SOFTWARE DEFINED NETWORK}

The present invention relates to a method of managing a network. More specifically, the present invention relates to a method for providing a VLAN function using an open flow protocol and supporting mobility of a terminal without the need to change VLAN settings of a terminal or a switch when changing from a legacy network to a software defined network.

Software Defined Networking (hereinafter referred to as SDN) refers to a technology that manages all network equipment in a network by an intelligent central management system. SDN technology has the advantage of being able to develop and assign various functions compared to the existing network structure by processing the control operations related to packet processing performed by the existing hardware type network equipment on its behalf by a controller provided in the form of software. .

The SDN system generally includes a controller server that controls an entire network, a plurality of openflow switches that are controlled by the controller server and process packets, and a host corresponding to a lower layer of the openflow switch. Here, the openflow switch is responsible for only the packet transmission/reception function, and packet routing, management and control are all performed at the controller server. In other words, separating the Data Plane and Control Plane constituting the network equipment can be seen as the basic structure of SDN.

1 is a diagram for describing a configuration of a software defined network. Referring to FIG. 1, a software defined network may include a controller server 100, a network device 200, and a host 300. The network device 200 and the host 300 may be referred to as a node, and a link may mean a connection between two nodes.

The controller server 100 manages network equipment 200, and centrally manages and controls a plurality of network equipment 200. Specifically, the controller server 100 is equipped with application programs that perform functions such as topology management, path management related to packet processing, link discovery, and packet flow flow management. It can be implemented in a form.

The network device 200 processes packets under the control of the controller server 100. Examples of the network equipment 200 include mobile communication base stations, base station controllers, gateway equipment, switches of wired networks, and routers.

In a software defined network, the controller server 100 and the openflow switch 200 must exchange information with each other, and the OpenFlow protocol is widely used as a protocol for this. In other words, the openflow protocol is a standard standard that enables communication between the controller server 100 and the openflow switch 200.

According to the OpenFlow protocol, the switch 200 exchanges information with the controller server 100 through a control channel, and one or more flow tables, group tables, meter tables and/or data for pipeline processing. Alternatively, it may have one or more ports as a network interface for packet delivery.

Open Networking Foundation, “OpenFlow Specification 1.3.0”

The present invention relates to a method of providing a dynamic VLAN service using an openflow protocol and supporting movement of a terminal when changing a legacy network to a software defined network, without having to separately configure a terminal and/or switch.

A method of providing a VLAN service in a software-defined network according to an embodiment of the present invention, when a legacy network is changed to a software-defined network, the controller generates a terminal information table including VLAN configuration information of the terminal in a state before change. step a; In the case of a unicast packet, a flow rule for setting an openflow switch to process the VLAN tag of the unicast packet according to the VLAN setting information of the destination terminal of the packet and transmit it to a port connected to the destination terminal B applying to the open flow switch; And in the case of a broadcast packet, processing the VLAN tag of the broadcast packet according to VLAN setting information of a terminal belonging to the broadcast domain of the source terminal of the broadcast packet, and processing the VLAN tag of the broadcast packet to the terminal belonging to the broadcast domain. And a step c of applying a flow rule for setting the open flow switch to transmit to a connected port to the open flow switch.

According to the present invention, when changing a legacy network to a software-defined network, the controller provides a VLAN function using an openflow protocol and supports the movement of the terminal without the need to separately set the terminal and/or switch. There is.

1 is a diagram for explaining the configuration of a software defined network
2 is a diagram for explaining a prior art for VLAN configuration
3 is a diagram for explaining a problem with the configuration of a legacy network and VLAN setting
4 is a view for explaining an embodiment of the present invention for setting a VLAN when replacing a legacy network with a software defined network
5 is a diagram for explaining a method of supporting mobility of a terminal according to an embodiment of the present invention
6 is a flowchart illustrating a method of configuring a VLAN when changing a legacy network to a software defined network according to an embodiment of the present invention

The present invention is not limited to the description of the embodiments to be described below, and it is obvious that various modifications may be made without departing from the technical gist of the present invention. Further, in describing the embodiments, descriptions of technical contents that are widely known in the technical field to which the present invention pertains and are not directly related to the technical subject matter of the present invention will be omitted.

Meanwhile, in the accompanying drawings, the same elements are represented by the same reference numerals. In addition, some components in the accompanying drawings may be exaggerated, omitted, or schematically illustrated. This is to clarify the gist of the present invention by omitting unnecessary description not related to the gist of the present invention. Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

In the specification of the present invention, the term "flow rule" should be understood to mean a network policy applied by a controller server in a software defined network from the standpoint of a person skilled in the relevant industry.

Furthermore, in the present specification, the openflow switch may be understood as a concept including a switch supporting only the openflow protocol, a virtual switch supporting the openflow protocol, and a general L2 switch supporting the openflow protocol.

Conventionally, a local network was configured according to the physical location of users. For example, in a company, if Team A uses the main building and Team B and Team C share an annex, switches for Team A, Team B, and Team C are installed in the main building, annex, and annex respectively to divide the network area. And, packet exchange between teams is handled through routers.

To solve this problem, most network switches support VLAN. VLAN is a function that logically connects hosts that are not physically connected to the same network switch into one network. Using VLAN, a network can be logically configured. Furthermore, when the VLAN is used, the broadcast domain is separated, which is advantageous for security and reduces the overall network traffic.

For example, in the case of the network shown in FIG. 2A, network A and network B communicate via router 30, switch 40 is a user host 41 and 42 belonging to team A, switch 50 is a user host 51 belonging to team B, It is connecting 52, 53.

In this case, it may be considered a case where the user 53 of the B team moves the physical location to the office space of the A team while maintaining the belonging of the B team. At this time, if the switches 40 and 50 support VLAN, the network as shown in FIG. 2B can be configured without the need for user 53 to separately install a switch for using network B.

That is, in the example of FIG. 2B, the network operator sets the VLANs of the switch 40 to network A and network B, assigns them to hosts 41, 42, and 53, respectively, and connects the switch 40 and the switch 50. When the network is configured using the VLAN function of the switch as described above, the host 53 can use Network B even though the physical location has been moved.

However, the method of allocating VLANs to each port of the switch has a problem that network operation becomes cumbersome because the network operator must manually set the VLAN of the switch whenever the host moves. Therefore, when a host connects to a port of a switch, a dynamic VLAN concept has emerged that automatically assigns a VLAN according to the host's address.

To this end, in the conventional legacy network, a dynamic VLAN function was provided by installing a dedicated network device for providing the corresponding function, for example, VMPS (VLAN Membership Policy Server) in the network. VMPS is a dedicated hardware device with software that dynamically configures the host's VLAN and can be installed in a way that is connected to a large switch in the data center.

However, according to the present invention, it is possible to implement a dynamic VLAN using an openflow protocol in a software defined network without the need to add dedicated network equipment. Furthermore, the administrator can provide the VLAN function to the network using the openflow protocol without having to set the VLAN of the switch or the VLAN of the terminal.

More specifically, according to an embodiment of the present invention, when switching from a legacy network to a software-defined network, the controller can provide a VLAN function to the network without the need to configure VLANs in the terminal or switch. Furthermore, it is possible to provide IP mobility of a terminal by dynamically setting a VLAN to a terminal that has moved the switch as well as a new terminal that first accesses a switch in a local network.

3 and 4 are diagrams for explaining an embodiment of the present invention in which a VLAN is set when a legacy network is changed to a software defined network.

3 is an example of a legacy network comprising a legacy switch 310, IP phone 352, hosts 312, 354, and voice gateway 362. In such a network that includes IP phones, it is common for hosts and IP phones to set different VLANs to separate computer data and phone data.

Therefore, in the example of FIG. 3, the first host 312 and the second host 354 use 10.0.1.3 and 10.0.1.2 as IPs, respectively, and IP phone 352 and voice gateway 362 use 10.0.2.2 and 10.0.2.254 as IPs, respectively. The use case can be considered.

At this time, the second host 354 and the IP phone 352 have a link connected to the switch 310, but since they use different IP bands, if the administrator does not directly access the terminal and set the VLAN individually, communication will be disabled. Therefore, the administrator accesses the host 354 to set the first VLAN, connects to the IP phone 352 to set the second VLAN, and connects to the switch 310 to set the IP phone 352 and the second port connected to the host 354 as trunk. Will have to do.

Furthermore, since the host 312 and the voice gateway 362 are directly connected to the switch 310, a VLAN can be set for the corresponding port of the switch 310 without a separate VLAN setting. That is, the administrator may access the switch 310 to set the first VLAN on the first port connected to the host 312, and set the second VLAN on the third port connected to the voice gateway 362.

In such a network, if a switch or network device is replaced, a complicated VLAN setting process must be performed, and if a mistake occurs in the process, communication will be disabled.

For example, in order to change the legacy network illustrated in FIG. 3 to a software defined network, the legacy switch 310 may be replaced with an open flow switch. 4 is an example of a software-defined network in which the legacy switch 310 of FIG. 3 is replaced with an open flow switch 410 and the controller 420 controls the network. In the example of FIG. 4, it is assumed that the host 464 newly connects to the open flow switch 410.

According to an embodiment of the present invention, when changing a legacy network to a software-defined network, there is no need to set or change VLANs in a terminal or switch, and a dynamic VLAN function can be provided by a controller to the network even if VMPS is not installed. .

More specifically, in the example of FIG. 4, the controller 420 and the openflow switch 410 are connected through a control channel, and the controller 420 may collect terminal information of a network using packet information collected from the switch 410. Furthermore, the VLAN function of the network can be provided using the terminal information without needing to change the VLAN settings of the terminals 412, 452, 454, 462, and 464.

For example, when the openflow switch 410 is installed to replace the legacy switch 310 of FIG. 3 and terminals 412, 452, 454, 462, and 464 are connected to the switch 410, the switch 410 transmits all packets received from the terminal as packets. It will send a message to the controller 420.

The controller 420 according to an embodiment of the present invention may generate an information table of a terminal as shown in Table 1 below by using packet information received by the switch 410. The information table of the terminal may be stored in the storage of the controller 420.

Identification number in Figure 4 IP Mac Vlan Port 412 10.0.1.3 1st MAC 0 One 454 10.0.1.2 2nd MAC VLAN 1 2 452 10.0.2.2 3rd MAC 2nd VLAN 2 462 10.0.2.254 4th MAC 0 3 464 10.0.1.4 5th MAC 0 4

If you create the terminal information table as shown in Table 1, the controller 420 uses the same IP band for hosts 412, 464, and host 454, but hosts 412 and 464 do not have VLAN set, and host 454 has VLAN set. Can be confirmed. Furthermore, it can be seen that IP phone 452 and voice gateway 462 also use the same IP band, but IP phone 452 has VLAN set, and voice gateway 462 does not have VLAN set. In order to provide a VLAN function to the network without changing the VLAN settings of the 452 and 462, a flow rule can be set in the openflow switch 410.

More specifically, according to an embodiment of the present invention, a flow rule configured to transmit a unicast packet with a destination specified to a port connected to the destination terminal by processing the VLAN tag of the packet according to the VLAN setting of the destination terminal is set to the switch 410. The VLAN function of the network can be provided by applying the method.

For example, in the example of FIG. 4, if the flow rule shown in Table 2 below is applied to the switch 410, the VLAN function can be provided to the network without the need to change the VLAN settings of the hosts 412, 452, 454, and 462.

Priority Match Instruction Tagged packet 21000 VLAN tag presence Destination MAC: 1st MAC Strip_vlan, output: 1st port Untagged packet 20000 Destination MAC: 1st MAC output: 1st port Broadcast packet 5000 Source MAC: 1st MAC broadcast packet output: 4th port
set_vlan: 1st VLAN, output: 2nd port NO Match One - Send to controller

The first row of Table 2 is a packet with a VLAN tag and the first MAC address is the destination MAC address, i.e., host 412 is the destination and in the case of a VLAN tagged unicast packet, the destination host 412 does not have a VLAN setting. The packet path is set to transmit to the first port in a state where is deleted. Furthermore, in the second row of Table 2, in the case of a packet with no VLAN tag and the first source being the destination MAC address, that is, a unicast packet with the host 412 being the destination and no VLAN tag, the first row is as it is because the destination host 412 has no VLAN setting You are setting up a packet path to send to the port.

Further, the third row of Table 2 shows that the source MAC address is the first MAC, that is, the broadcast packet generated by the host 412 is transmitted to the fourth port and the second port, respectively, in order to be broadcast to the hosts 454 and 464 having the same IP band. , The broadcast packet transmitted to the second port is controlled to be transmitted by setting a VLAN tag according to the VLAN setting of the destination terminal. According to the host information table in Table 1, since the host 454 is set as the first VLAN, the first VLAN tag is set in the broadcast packet.

5 is a diagram for describing a method of supporting mobility of a terminal according to an embodiment of the present invention.

In the network illustrated in FIG. 5A, the switch 510 is installed on the first floor, the switch 520 is installed on the second floor to process packets of the corresponding layer, and the router 530 processes communication with other layers.

In such a network, if a user moves the IP phone 514 from the first floor to the second floor, a case may occur. For example, IP phone 514 is connected to the second port of the switch 510 as in the example of FIG. 5A and then connected to the fifth port of the switch 520 as in the example of FIG. 5B. At this time, in the legacy network, in order to use the IP phone 514 on the first floor, it will have to go through a complicated VLAN setting process.

However, according to an embodiment of the present invention, when the switches 510 and 520 are changed to open flow switches, the flow rules for providing VLANs are applied to the switches 510 and 520, so that the mobility and dynamics of the terminal do not need to be changed. VLAN service can be provided.

More specifically, in the case where switches 510 and 520 are changed to open flow switches in the network illustrated in FIG. 5A, the switches 510 and 520 are connected to a controller through a control channel, and the controller receives packet information collected from the switches 510 and 520. Can be used to collect network terminal information.

For example, in the example of FIG. 5A, when legacy switches 510 and 520 are changed to open flow switches and installed, and terminals 512, 514, 516, 522, 524, and 526 are connected to respective switches, switches 510 and 520 are the terminals. The packet received from will be transmitted to the controller as a message as a packet.

A controller according to an embodiment of the present invention creates a terminal information table as shown in Table 4 below using packet information received from the switch 510, and uses the packet information received from switch 520 to generate terminal information as shown in Table 5 below. A table may be created, and the host information table may be stored in a storage of the controller.

Identification number in Figure 5a IP Mac Vlan Port 512 10.0.3.3 1st MAC One 514 10.0.4.2 2nd MAC VLAN 1 2 516 10.0.3.2 3rd MAC 2nd VLAN 2 518 10.0.4.254 4th MAC 3

Identification number in Figure 5a IP Mac Vlan Port 522 10.0.1.3 5th MAC One 524 10.0.2.2 6th MAC 2nd VLAN 2 526 10.0.1.2 7th MAC VLAN 1 2 528 10.0.2.254 8th MAC 3

If you create the terminal information table as shown in Table 4, the controller uses the same IP band in the network connected to the switch 510, but hosts 512 and 516 use the same IP band, but the host 512 has no VLAN set, and the host 516 has VLAN set. Can be confirmed. Furthermore, it can be seen that IP phone 514 and voice gateway 518 also use the same IP band, but IP phone 514 has VLAN set and voice gateway 518 has VLAN set.

Furthermore, if the terminal information table shown in Table 5 is created, the controller uses the same IP band in the network connected to the switch 520, but the host 522 does not have a VLAN, and the host 526 has a VLAN. It can be confirmed that there is. Furthermore, it can be seen that IP phone 524 and voice gateway 528 also use the same IP band, but IP phone 524 has a VLAN setting and a voice gateway 528 has a VLAN setting.

In such a situation, it is possible to consider a case in which a user's seat is changed from the first floor to the second floor and the used IP telephone is moved to the second floor. In this case, as shown in FIG. 5B, the connection position of the Internet phone 514 will be changed from the switch 510 to the switch 520. Furthermore, unless the user's team has changed, it would be appropriate to still share the broadcast domain of Internet Phone 514 with 518 on the first floor.

On the other hand, when the connection location of IP phone 514 is changed, the controller will change the terminal information table as shown in Tables 6 and 7 below using the packet information received at the switches 510 and 520.

Identification number in Figure 5b IP Mac Vlan Port 512 10.0.3.3 1st MAC One 516 10.0.3.2 3rd MAC 2nd VLAN 2 518 10.0.4.254 4th MAC 3

Identification number in Figure 5b IP Mac Vlan Port 522 10.0.1.3 5th MAC One 524 10.0.2.2 6th MAC 2nd VLAN 2 526 10.0.1.2 7th MAC VLAN 1 2 528 10.0.2.254 8th MAC 3 514 10.0.4.2 2nd MAC VLAN 1 5

Referring to Table 7, IP phone 514 whose access location is changed to switch 520 cannot be grouped into one VLAN because the IP band is different from other IP phones 524 and voice gateway 528. Since the first VLAN is set, host 526 It can be seen that communication is disabled due to conflict between the and VLAN settings. However, in the controller according to the embodiment of the present invention, the administrator accesses the IP phone 514 and/or the switches 510 and 520 and does not need to change the VLAN setting separately. A flow rule can be set to provide the switch 520 with the VLAN function of the IP phone 514.

More specifically, in the example of FIG. 5B, if the flow rule shown in Table 8 below is applied to the switch 520, IP phone 514 communication can be provided without changing the VLAN settings of IP phone 514 and host 524, and IP The phone 514 can operate as a broadcast domain with the voice gateway 518 on the first floor.

Priority Match Instruction Tagged packet 21000 VLAN tag presence Destination MAC: 2nd MAC mod_vlan: 1st VLAN, output: 5th port Untagged packet 20000 Destination MAC: 2nd MAC set_vlan: 1st VLAN, output: 5th port Broadcast packet 5000 Source MAC: Second MAC broadcast packet output: 4th port NO Match One - Send to controller

The first row of Table 8 shows a packet with a VLAN tag and a second MAC address of the destination MAC address, i.e., IP phone 514 is the destination and VLAN tagged unicast packets have VLAN set to 1 on the destination IP phone 514. Therefore, after changing the VLAN tag to 1, the packet path is set to transmit to the fifth port. Furthermore, in the second row of Table 8, in the case of a packet with no VLAN tag and the second source is the destination MAC address, that is, IP phone 514 is the destination and unicast packet without VLAN tag, the VLAN is set to 1 in the destination IP phone 514. Therefore, the VLAN tag is set to 1 and the packet path is set to transmit to the fifth port.

Furthermore, the third row of Table 8 shows that the source MAC address is the second MAC, i.e., the broadcast packet generated by IP phone 514 is broadcast to the voice gateway 518 of the first layer having the same IP band. It is setting to transmit.

Meanwhile, in the example of FIG. 5A, it may be considered a case where the user's seat is changed from the first floor to the second floor and the team is also changed. In this case, when the user moves his IP telephone to the second floor, the connection position of the Internet telephone 514 will be changed from the switch 510 to the switch 520 as shown in FIG. 5B. Furthermore, because the user's team has changed, the IP of the Internet phone 514 can be changed to the same band as the other Internet phone 524 on the second floor.

In this case, according to an embodiment of the present invention, if the flow rule shown in Table 9 below is applied to the switch 520, communication of the IP phone 514 can be provided without the need to change the VLAN settings of the IP phone 514 and other terminals, IP phone 514 can operate as a broadcast domain with voice gateway 528 and other IP phone 524 on the second floor.

Priority Match Instruction Tagged packet 21000 VLAN tag presence Destination MAC: 2nd MAC mod_vlan: 1st VLAN, output: 5th port Untagged packet 20000 Destination MAC: 2nd MAC set_vlan: 1st VLAN, output: 5th port Broadcast packet 5000 Source MAC: Second MAC broadcast packet Strip_vlan, output: 3rd port
mod_vlan: 1st VLAN, output: 2nd port
strip_vlan, output: 4th port NO Match One - Send to controller

In the third row of Table 9, the source MAC address is the second MAC, i.e., the broadcast packet generated by IP phone 514 processes VLAN tags to be broadcast to the voice gateway 528 and IP phone 524 of the second layer having the same IP band. Is set to In other words, the packet broadcast to the voice gateway 528 removes the VLAN tag according to the VLAN setting of the voice gateway 528, and the packet broadcast to the IP phone 524 is set to change the VLAN tag to 1 according to the VLAN setting of the IP phone 524. have. Furthermore, the VLAN tag is removed and transmission is set to be transmitted to the fourth port connected to the router. FIG. 6 is a flowchart illustrating a method of configuring a VLAN when changing a legacy network to a software defined network according to an embodiment of the present invention. .

When the legacy network is changed to a software-defined network, the controller can collect messages that are packets from the openflow switch. By using this, the controller according to the embodiment of the present invention can generate the information table of the terminal. (Step 610)

More specifically, the controller collects the status information of the terminal set in the legacy network before the change to the software-defined network, such as the terminal's IP address, MAC address, and VLAN setting information, using a packet-in message, and the terminal information table Can be created. The controller can provide the dynamic VLAN function in the software defined network as it is set in the legacy network without needing to change the VLAN settings of the switch and/or the terminal by referring to the terminal information table.

Thereafter, the controller according to an embodiment of the present invention may set a flow rule for providing a VLAN function to an open flow switch.

More specifically, in the case of a unicast packet destined for an arbitrary terminal, the controller checks the VLAN setting of the destination terminal in the terminal information table (step 620), and (step 622) the corresponding packet according to the VLAN setting of the destination terminal. You can configure the switch to handle VLAN tags.

For example, if VLAN is not set on the destination terminal, the controller removes the VLAN tag using the strip_vlan action for packets with VLAN tags, and switches the packets without VLAN tags to be transmitted to the port connected to the destination as it is. You can apply the flow rule to configure the switch. (Step 624)

As another example, if a VLAN is set at the destination terminal, the controller changes the VLAN tag to match the VLAN setting of the destination terminal using the mod_vlan action for packets with a VLAN tag, and the packets without a VLAN tag change the VLAN tag of the destination terminal. After setting the VLAN tag using the set_vlan action to match with, the flow rule that sets the switch to transmit to the port connected to the destination can be applied to the switch. (Step 626)

Further, in the case of a broadcast packet sourced from an arbitrary terminal, the controller checks the broadcast domain of the source terminal in the information table of the terminal (step 630) and corresponds to the VLAN setting of the terminal belonging to the broadcast domain. You can configure the switch to handle VLAN tags in packets.

For example, for a broadcast packet without a VLAN tag because the source terminal has no VLAN setting, if a terminal belonging to the broadcast domain has a VLAN setting, a VLAN tag can be set on the packet according to the corresponding VLAN setting using the set_vlan action. On the other hand, if the terminal belonging to the broadcast domain does not have a VLAN setting, a flow rule for setting the switch to transmit to a port connected to the terminal belonging to the broadcast domain as it is can be applied to the switch. (Step 634)

Meanwhile, since the source terminal has a VLAN setting, the broadcast packet with VLAN tag is as it is if the terminal belonging to the broadcast domain has VLAN setting, and if the terminal belonging to the broadcast domain does not have VLAN setting, remove the VLAN tag using the strip_vlan action and broadcast. A flow rule for setting the switch to transmit to a port connected to a terminal belonging to the cast domain can be applied to the switch. (Step 636)

According to such an embodiment of the present invention, even if a legacy network is changed to a software defined network, the controller can provide a dynamic VLAN service without changing the VLAN setting of the terminal or switch, thereby increasing the convenience of network management. have.

The embodiments of the present invention disclosed in the present specification and drawings are provided only to provide specific examples to easily explain the technical content of the present invention and to aid understanding of the present invention, and are not intended to limit the scope of the present invention. It is apparent to those of ordinary skill in the art that other modifications based on the technical idea of the present invention can be implemented in addition to the embodiments posted here.

Claims (6)

In a method of providing a VLAN service in a software defined network,
A step of generating a terminal information table including VLAN setting information of the terminal in a state before the change in the controller when the legacy network is changed to a software defined network;
In the case of a unicast packet, a flow rule for setting an openflow switch to process the VLAN tag of the unicast packet according to the VLAN setting information of the destination terminal of the packet and transmit it to a port connected to the destination terminal B applying to the open flow switch; And
In the case of a broadcast packet, the controller processes the VLAN tag of the broadcast packet according to the VLAN setting information of the terminal belonging to the broadcast domain of the source terminal of the broadcast packet, and is connected to the terminal belonging to the broadcast domain. And a step c of applying a flow rule for setting the openflow switch to transmit to a port to the openflow switch. The method of claim 1, wherein step B,
When there is no VLAN setting in the destination terminal, if there is a VLAN tag in the unicast packet, the VLAN tag is removed, and if there is no VLAN tag in the unicast packet, the openflow switch is set to transmit to the port as it is. VLAN service providing method comprising the step of applying to the open flow switch. The method of claim 1, wherein step B,
When the destination terminal has a VLAN setting, if the unicast packet has a VLAN tag, the VLAN tag of the unicast packet is changed to match the VLAN setting of the destination terminal, and if the unicast packet has no VLAN tag, the And applying a flow rule for setting the openflow switch to transmit to the port by setting the VLAN tag in the unicast packet to match the VLAN setting of the destination terminal, to the openflow switch. How to provide services. The method of claim 1, wherein step C,
When a terminal belonging to the broadcast domain does not have a VLAN setting, if there is a VLAN tag in the broadcast packet, the VLAN tag is removed, and if there is no VLAN tag in the broadcast packet, the openflow switch is set to transmit to the port as it is. And applying a flow rule to the open flow switch. The method of claim 1, wherein step C,
When a terminal belonging to the broadcast domain has a VLAN setting, if the broadcast packet has a VLAN tag, the VLAN tag of the broadcast packet is changed to match the VLAN setting of the terminal belonging to the broadcast domain, and the broadcast packet If there is no VLAN tag in the cast packet, a flow rule for setting the openflow switch to transmit to the port by setting the VLAN tag in the broadcast packet to match the VLAN setting of a terminal belonging to the broadcast domain is the openflow switch. VLAN service providing method comprising the step of applying to. The method of claim 1, wherein step A,
In the controller, using a message that is a packet received from the openflow switch, generating the terminal information table including at least one of an IP address, a MAC address, and the VLAN setting information of the terminal in the pre-change state VLAN service providing method comprising a.

Images