[go: up one dir, main page]

WO2014176989A1 - Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau - Google Patents

Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau Download PDF

Info

Publication number
WO2014176989A1
WO2014176989A1 PCT/CN2014/075736 CN2014075736W WO2014176989A1 WO 2014176989 A1 WO2014176989 A1 WO 2014176989A1 CN 2014075736 W CN2014075736 W CN 2014075736W WO 2014176989 A1 WO2014176989 A1 WO 2014176989A1
Authority
WO
WIPO (PCT)
Prior art keywords
class
vrf
network
interface
virtual
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2014/075736
Other languages
English (en)
Chinese (zh)
Inventor
顾忠禹
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Publication of WO2014176989A1 publication Critical patent/WO2014176989A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0213Standardised network management protocols, e.g. simple network management protocol [SNMP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/40Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks using virtualisation of network functions or resources, e.g. SDN or NFV entities

Definitions

  • the present invention relates to the field of communications, and in particular, to a network management method and system, a virtual network entity, and a network device.
  • a network management method and system Traditional network management is logged into a specific network device through a Simple Network Management Protocol (SNMP) protocol or a TCP/IP Terminal Emulation Protocol (TELNET). Perform configuration management and other functions. Due to the large number of manufacturers and the large number of network devices, it is necessary for network administrators to be familiar with the configuration methods of various manufacturers and various related devices. It is a heavy burden for a large network administrator. Therefore, the automation and standardization of network management is especially important. How to provide standardized equipment management and network management has always been the goal of the standardization organization.
  • the Distributed Management Task Force is based on the Public Information Model (CIM), a large number of standardization work for computer systems, or specific servers, and introduced a The standard of the series, which covers various components of the server, software functions, and network functions.
  • CIM Public Information Model
  • For network functions including: Local Area Network (LAN) interface, definition of IP interface, and related IP configuration, Dynamic Host Configuration Protocol (DHCP) and Domain Name System (Domain Name System) , referred to as DNS) Client configuration and so on.
  • LAN Local Area Network
  • DHCP Dynamic Host Configuration Protocol
  • Domain Name System Domain Name System
  • NSM Working Group The NSM Working Group
  • NSMWG standardize the management of network services.
  • the status quo of related standards research is that for virtual networks, it is mainly for L2 networks, especially the connection between servers and external switches, and the broader and more general network model for L3 networks, which is embodied in DSP20025. And DSP20034, but these contents, as shown in the network management structure model of the NSMMW DSP10046 network management service specification shown in Figure 1, do not give a model about VPN network management and related management operations. Further, although the CIM model already includes some content of the network model, the coverage is relatively wide.
  • the model describes many related aspects of the network through more than 40 graphics, including: Open Shortest Path First (OSPF), Border Gateway Protocol (BGP), Virtual LAN (VLAN), Quality of Service (Quality of Service) It is abbreviated as QoS, Multi-Protocol Label Switching (MPLS), etc.
  • OSPF Open Shortest Path First
  • BGP Border Gateway Protocol
  • VLAN Virtual LAN
  • QoS Quality of Service
  • MPLS Multi-Protocol Label Switching
  • MPLS Multi-Protocol Label Switching
  • MPLS Service MPLS Segment
  • MPLS Protocol Endpoint MPLS LSP
  • MPLS Tunnel MPLS Capabilities
  • MPLS Performance MPLS Performance
  • MPLS Virtual Private Network MPLS Virtual Private Network
  • MPLS VPN is a very popular network service that can bring great benefits to operators, but its network management is still based on manual configuration by network administrators. Management is dominant, and there is still a lack of automated management methods.
  • the virtual network of the data center can also be implemented by the MPLS VPN mechanism.
  • the present invention provides a network management method and system, a virtual network entity, and a network device, to solve at least the above problems, in a related art, and a technical solution, such as a solution for automatically managing a virtual network. .
  • a method for managing a virtual network is provided.
  • the method includes: defining a virtual network entity (Virtual Network Entity, VNE for short) class based on a public information model CIM, where the VNE class passes The interface class and the tunnel class implement the access between the users of the virtual network and the connections between different VNEs in the virtual network.
  • the network management system communicates with the network devices of the VNE type through the CIM application execution mechanism to implement management of the virtual network.
  • the VNE class is a Virtual Routing Forwarding (VRF) class
  • the interface class includes one of the following: an IP interface class
  • the tunnel class includes one of the following: Multi-Protocol Label Switching MPLS Tunnel, IP-in-IP tunnel for implementing multi-protocol label switching MPLS virtual private network VPN deployment on non-MPLS tunnels.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, a routing protocol supported by the VRF access interface, and a route distinguisher of the VRF (Route Distinguisher, hereinafter referred to as RD).
  • the route target of the VRF (Route Target, RT for short).
  • the VRF class implementation method information element includes performing at least one of the following operations: generating or deleting a VRF, configuring a VRF class route specifier RD and a route target RT, and configuring a route reflector related parameter;
  • the method includes the following steps: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol or a static route running on the VRF interface.
  • the method before the network is the MPLS VPN, before the network management system communicates with the network device that implements the VNE, the method further includes: defining an extended MPLS service class and an extended MPLS segment.
  • the MPLS service class includes one of the following information elements: a support capability for the VPN, and a type of the VPN; the MPLS segment class includes the following information elements: a stacking of the multi-layer label, and including the label stack The number of layers and the label of the corresponding layer.
  • the MPLS service class includes the following information elements: Support for the Multi-Protocol Border Gateway Protocol (MP-BGP).
  • MP-BGP Multi-Protocol Border Gateway Protocol
  • the VNE class includes: a virtual router class or a virtual switch class.
  • the information element of the virtual router class or the quasi-switch class comprises at least one of the following: a virtual router or virtual switch identifier, a virtual router or virtual switch forwarding table, a virtual router or a virtual switch access interface.
  • the implementation method of the virtual router class or the virtual switch class includes at least one of: generating or deleting a virtual router/virtual switch, configuring an identifier VN-ID of the VRF, configuring a route reflector related parameter;
  • the interface of the router class/virtual switch class performs at least one of the following operations: configuring or deleting the IP interface or L2 interface of the virtual router/virtual switch, and configuring or reconfiguring the protocol supported by the virtual router/virtual switch.
  • a public information model CIM-based multi-protocol label switching MPLS virtual private network VPN management method comprising: defining a CIM-based virtual network function VRF class, where The VNF class implements the connection between the MPLS VPN users and the connection between different VNFs in the virtual network through the interface class and the tunnel class.
  • the network management system communicates with the network device that implements the VNF class through the CIM application execution mechanism to implement MPLS. VPN management.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, a routing protocol supported by the VRF access interface, a routing specifier RD of the VRF, and a routing target RT o of the VRF.
  • the VRF class implementation method information element includes at least one of the following: generating or deleting a VRF, configuring a VRF class route specifier RD and a route target RT, and configuring a route reflector related parameter; performing the VRF class interface Performing at least one of the following: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol and/or a static route running on the VRF interface.
  • the network management system before the network management system communicates with the network device that implements the VNF class, the network management system further includes: defining an extended MPLS service class and an extended MPLS segment class; wherein the MPLS service class includes the following information elements: The support capability of the VPN and the type of the VPN; the MPLS segment class includes the following information elements: the stacking of the multi-layer label, the number of layers of the label stack, and the label of the corresponding layer.
  • the MPLS service class includes the following information elements: Support for MP-BGP.
  • the tunnel class comprises: an IP-in-IP tunnel for implementing deployment of a multi-protocol label switching MPLS virtual private network VPN on a non-MPLS tunnel.
  • a virtual network management method based on a common information model CIM based layer 3 network virtualization NV03 comprising: defining a CIM-based virtual network function VRF class, where The VNF class implements the access of the user of the virtual network and the connection between different VNFs in the virtual network through the interface class and the tunnel class; the interface class includes an IP interface or an L2 interface class; and the tunnel class includes IP- An in-IP tunnel, or a Layer 3-based network virtualization NV03 tunnel; the network management system communicates with a VRF-like network device through a CIM application execution mechanism to implement management of the NV03-based virtual network.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, and an identifier VN-ID of the VRF.
  • the VRF implementation method information element includes at least one of the following: generating or deleting a VRF, configuring an identifier VN-ID of the VRF, configuring a route reflector related parameter, and performing at least one of the following on the interface of the VRF class Operation: Configure or delete the VRF IP interface or L2 interface, and configure or reconfigure the protocols supported by the VRF.
  • the IP-in-IP tunnel includes one of the following: an extended virtual local area network (VXLAN tunnel), a network virtualized universal route encapsulation NVGRE tunnel, a layer 3 based network virtualization NV03 tunnel, and a universal route encapsulation GRE tunnel.
  • VXLAN tunnel extended virtual local area network
  • NVGRE tunnel network virtualized universal route encapsulation NVGRE tunnel
  • layer 3 based network virtualization NV03 tunnel a layer 3 based network virtualization NV03 tunnel
  • GRE tunnel universal route encapsulation GRE tunnel
  • a network management system including: a communication module configured to perform HTTP communication based on a public information model CIM or a hypertext transfer protocol with a network device performing a virtual network entity VNE function; a management module, configured to configure and manage at least one of the following within the virtual network by using a CIM application execution mechanism: performing a VNE-type network device; performing a VNF-type multi-protocol label switching MPLS virtual private network VPN network device;
  • the virtual network function of NV03 is a network device of the VRF class.
  • a virtual network entity VNE comprising: a communication module configured to communicate with a network management system; a configuration module configured to receive the VNE class running on the VNE a configuration of the network management system; an execution module, configured to implement a VNE class, wherein the VNE class is defined based on a common information model CIM, and the VNE class implements connection of a user of the virtual network through an associated interface class and a tunnel class Incoming and implementing connections between different VNEs in a virtual network.
  • said execution module is arranged to implement said VNE class when said information element of said VRF class comprises at least one of:
  • the execution module is configured to implement the VNE class when the VNE class, the interface class, and the tunnel class satisfy the following conditions: the VNE class is a virtual route forwarding function VRF class; the interface class
  • the method includes one of the following: an IP interface class; the tunnel class includes one of the following: a multi-protocol label switching MPLS tunnel, an IP-in-IP for implementing multi-protocol label switching MPLS virtual private network VPN deployment on a non-MPLS tunnel tunnel.
  • the execution module is configured to implement the VNE class in the following cases: the implementation method information element of the VRF class includes performing at least one of the following operations: generating or deleting a VRF, configuring a route specifier RD of a VRF class, and The route target RT and the configuration route reflector related parameters; the implementation of the interface class includes performing at least one of the following operations: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol or a static route running on the VRF interface.
  • a network device of a multi-protocol label switching MPLS virtual private network VPN based on a public information model CIM including: a communication module, configured to communicate with a network management system; a configuration module, setting The VRF class is configured to implement a VRF class, where the VRF class is configured to implement a VRF class, and the VNF class is configured by using a virtual network function VRF class running on the network device.
  • the associated interface class and tunnel class implements the access of the MPLS VPN user and the connection between different VNFs in the virtual network.
  • said execution module is arranged to implement said VRF class when said information element of said VRF class comprises at least one of:
  • the execution module is configured to implement the VRF class in the following cases: the implementation method information element of the VRF class includes the following at least one of the following: implementing the VRF class: generating or deleting a VRF, configuring a route of a VRF class The RD and the route target RT are configured to configure a route reflector related parameter; perform at least one of the following operations on the interface of the VRF class: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol running on the VRF interface and / or static routing.
  • a network device based on a public information model CIM Network Virtualization over Layer 3, NV03 for short
  • CIM Network Virtualization over Layer 3, NV03 for short
  • the management system performs communication; the configuration module is configured to receive the configuration of the network management system by using a VRF class running on the network device; and the execution module is configured to implement a VRF class, wherein the VRF class is based on a CIM definition
  • the VNF class implements the access of the user of the virtual network and the connection between different VNFs in the virtual network through the associated interface class and the tunnel class;
  • the interface class includes an IP interface or an L2 interface class; Classes include IP-in-IP tunnels, or Layer 3 based network virtualization NV03 tunnels.
  • the execution module implements the VRF class in at least one of the following: the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, and an identifier VN-ID of the VRF.
  • the VRF implementation method information element includes at least one of the following: generating or deleting a VRF, configuring an identifier VN-ID of the VRF, and configuring a route reflector related parameter; performing at least one of the following operations on the interface of the VRF class: Or remove the VRF IP interface or L2 interface, and configure or reconfigure the protocols supported by the VRF.
  • FIG. 1 is a structural diagram of an existing CIM network model of NSMMW according to the related art
  • FIG. 2 is a definition (one) of existing MPLS related classes of DMTF according to the related art; Technical DMTF existing definition of MPLS related classes (Part 2);
  • FIG. 4 is a flow chart of a network management method according to an embodiment of the present invention;
  • FIG. 5 is a CIM-based MPLS VPN management according to an embodiment of the present invention.
  • FIG. 6 is a flowchart of a virtual network management method based on CIM-based NV03 according to an embodiment of the present invention;
  • FIG. 7 is a structural block diagram of a network management system according to an embodiment of the present invention;
  • FIG. 8 is a block diagram of a network management system according to an embodiment of the present invention;
  • FIG. 9 is a structural block diagram of a CIM-based MPLS VPN network device according to an embodiment of the present invention
  • FIG. 10 is a structural block diagram of a CIM-based NV03 network device according to an embodiment of the present invention
  • FIG. 12 is a schematic diagram showing the definition of a VRF class according to Embodiment 1 of the present invention
  • FIG. 13 is a schematic diagram of a network structure according to Embodiment 3 of the present invention.
  • the network management method includes: Step S402, defining a CIM-based VNE class, where the VNE class implements access of a virtual network user through an interface class and a tunnel class, and implements different VNEs in the virtual network.
  • the network management system communicates with the network device that implements the VNE through the CIM application execution mechanism to implement management of the virtual network.
  • the VNE class is a virtual route forwarding function VRF;
  • the interface class includes one of the following: an IP interface class;
  • the tunnel class includes one of the following: a multi-protocol label switching MPLS tunnel, and is used to implement multi-protocol label switching MPLS virtual IP-in-IP tunnel for private network VPN deployment on non-MPLS tunnels.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, a routing protocol supported by the VRF access interface, a routing specifier RD of the VRF, and a routing target RT of the VRF.
  • the implementation method information element of the VRF class includes performing at least one of the following operations: generating or deleting a VRF, configuring a route specifier RD of the VRF class, and a route target RT, and configuring a parameter related to the route reflector; Including performing at least one of the following: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol or static route running on the VRF interface.
  • the method further includes: defining an extended MPLS service class and an extended MPLS segment class;
  • the MPLS service class includes one of the following information elements: support capability for the VPN, and type of the VPN;
  • the MPLS segment class includes the following information elements: Pushing the multi-layer label, and including the number of layers of the label stack and the corresponding layer s Mark.
  • the above MPLS service class includes the following information elements: Support for Multi-Protocol Border Gateway Protocol MP-BGP.
  • the foregoing VNE class includes: a virtual router class or a virtual switch class.
  • the information element of the virtual router class or the pseudo-switch class includes at least one of the following: a virtual router or virtual switch identifier, a virtual router or virtual switch forwarding table, a virtual router or a virtual switch access interface.
  • the implementation method of the virtual router class or the virtual switch class includes at least one of the following: generating or deleting a virtual router/virtual switch, configuring an identifier VN-ID of the VRF, and configuring a parameter related to the route reflector; /
  • the interface of the virtual switch class performs at least one of the following operations: Configure or delete the IP interface or L2 interface of the virtual router/virtual switch, and configure or reconfigure the protocols supported by the above virtual router/virtual switch.
  • Step S502 Defining a CIM-based VRF class, where the VNF class passes an interface class and The tunnel class implements the connection between the MPLS VPN users and the connection between different VNFs in the virtual network.
  • the network management system communicates with the network device that implements the VNF type through the CIM application execution mechanism to implement management of the MPLS VPN.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, a routing protocol supported by the VRF access interface, a routing specifier RD of the VRF, and a routing target RT of the VRF.
  • the VRF class implementation method information element includes at least one of the following: generating or deleting a VRF, configuring a VRF class route specifier RD and a route target RT, and configuring a route reflector related parameter; performing the following on the VRF class interface; At least one of the operations: configuring or deleting the VRF interface, and configuring or reconfiguring the routing protocol and/or static route running on the VRF interface.
  • the network management system before the network management system communicates with the network device that implements the VNF type, the network management system further includes: defining an extended MPLS service class and an extended MPLS segment class; wherein the foregoing MPLS service class includes the following information elements: Supporting capabilities and types of VPNs;
  • the MPLS segment class includes the following information elements: Push stacking of multi-layer tags, Layers of tag stacks, and tags of corresponding layers.
  • the above MPLS service class includes the following information elements: Support for MP-BGP.
  • the tunnel class includes: an IP-in-IP tunnel for implementing deployment of a multi-protocol label switching MPLS virtual private network VPN on a non-MPLS tunnel.
  • Step S602 Defining a CIM-based virtual network function VRF class, where the VNF class implements access of a virtual network user through an interface class and a tunnel class, and implements different VNFs in the virtual network.
  • the above interface type includes an IP interface or an L2 interface class;
  • the tunnel class includes an IP-in-IP tunnel, or a layer 3 based network virtualization NVO3 tunnel;
  • Step S604 the network management system implements a mechanism and implementation through a CIM application.
  • the VRF network device communicates to manage the NVO3-based virtual network.
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access P, and an identifier VN-ID of the VRF.
  • the VRF implementation method information element includes at least one of the following: generating or deleting a VRF, configuring an identifier VN-ID of the VRF, and configuring a route reflector related parameter; performing at least one of the following operations on the interface of the VRF class: Configure or remove the VRF IP interface or L2 interface, and configure or reconfigure the protocols supported by the above VRF.
  • the foregoing IP-in-IP tunnel includes one of the following: an extended virtual local area network (VXLAN tunnel), a network virtualized universal route encapsulation NVGRE tunnel, a layer 3 based network virtualization NVO3 tunnel, and a universal route encapsulation GRE tunnel.
  • FIG. 7 is a structural block diagram of a network management system according to an embodiment of the present invention. As shown in FIG.
  • the system includes: a communication module 70 configured to perform HTTP communication based on a public information model CIM or a hypertext transfer protocol with a network device that performs a virtual network entity VNE function;
  • the configuration and management module 72 is connected to the communication module 70 and configured to configure and manage at least one of the following within the virtual network by using a CIM application execution mechanism: performing a VNE-type network device; performing a VNF-type multi-protocol label switching MPLS virtual A network device of a private network VPN; a network device of a VRF type that performs an NVO3-based virtual network function.
  • FIG. 8 is a structural block diagram of a VNE according to an embodiment of the present invention. As shown in FIG.
  • the VNE includes: a communication module 80 configured to communicate with a network management system; a configuration module 82 configured to receive a configuration of the network management system by a VNE class running on the VNE; and an execution module 84 Set to implement the VNE class, where the VNE class is defined based on the public information model CIM, and the VNE class implements access of the user of the virtual network through the associated interface class and tunnel class and implements different VNEs in the virtual network.
  • the execution module 84 is configured to implement the VNE class when the information element of the VRF class includes at least one of the following:
  • the execution module 84 is configured to implement the VNE class when the VNE class, the interface class, and the tunnel class satisfy the following conditions:
  • the VNE class is a virtual route forwarding function VRF class; and the interface class includes one of the following: IP Interface class;
  • the above tunnel class includes one of the following: a multi-protocol label switching MPLS tunnel, an IP-in-IP tunnel for implementing multi-protocol label switching MPLS virtual private network VPN deployment on a non-MPLS tunnel.
  • the execution module 84 is configured to implement the VNE class in the following cases:
  • the implementation method information element of the VRF class includes performing at least one of the following operations: generating or deleting a VRF, configuring a route specifier RD of a VRF class, and a route target RT, Configuring a route reflector related parameter;
  • the implementation of the foregoing interface class includes performing at least one of the following operations: configuring or deleting a VRF interface, and configuring or reconfiguring a routing protocol or a static route running on the VRF interface.
  • 9 is a structural block diagram of a network device of a CIM-based MPLS VPN according to an embodiment of the present invention.
  • the device includes: The communication module 90 is configured to communicate with the network management system; the configuration module 92 is configured to receive the configuration of the network management system by using a virtual network function VRF class running on the network device; and the executing module 94 is configured to implement the VRF class,
  • the VRF class is defined based on the CIM.
  • the VNF class implements the access of the MPLS VPN user and the connection between different VNFs in the virtual network through the associated interface class and the tunnel class.
  • the execution module 94 is configured to implement the VRF class when the information element of the VRF class includes at least one of the following:
  • the execution module 94 is configured to implement the VRF class in the following cases: the VRF class implementation method information element includes at least one of the following VRF classes: generating or deleting a VRF, and configuring a VRF class route specifier RD Perform the following parameters on the interface of the VRF interface: Configure or delete the VRF interface, and configure or reconfigure the routing protocol and/or static route running on the VRF interface.
  • 10 is a structural block diagram of a CIM-based NV03 network device according to an embodiment of the present invention. As shown in FIG.
  • the device includes: a communication module 100 configured to communicate with a network management system; and a configuration module 102 configured to pass The VRF class running on the network device receives the configuration of the network management system; the execution module 104 is configured to implement a VRF class, wherein the VRF class is defined based on a CIM, and the VNF class passes the associated interface class and tunnel class.
  • the access between the users of the virtual network and the connection between different VNFs in the virtual network are implemented;
  • the interface class includes an IP interface or an L2 interface class;
  • the tunnel class includes an IP-in-IP tunnel, or a layer 3 based network virtual NVO3 tunnel.
  • the above execution module 104 implements the above VRF class in at least one of the following cases:
  • the information element of the VRF class includes at least one of the following: a VRF forwarding table, a VRF access interface, and an identifier VN-ID of the VRF.
  • the VRF implementation method information element includes at least one of the following: generating or deleting a VRF, and configuring a VRF.
  • the identifier VN-ID, the configuration route reflector related parameter perform at least one of the following operations on the interface of the VRF class: configure or delete the VRF IP interface or the L2 interface, and configure or reconfigure the protocol supported by the VRF.
  • the embodiment of the invention further provides a CIM-based MPLS VPN management method and system.
  • a virtual network (VN) management method includes: defining a VRF (Virtual Route Forwarding (Function)) class based on a Common Information Model (CIM) syntax, the VRF class being a CIM information element of a VRF class and corresponding thereto
  • the network device constituting the network performs network management by supporting the VRF class and its corresponding CIM information element and corresponding implementation methods thereof.
  • the VRF class is associated with one or more of the following types, including but not limited to: an L3 interface class, a routing class, and a Label Distribution Protocol (LDP).
  • the routing class further includes: a static route, a dynamic route; the dynamic route includes but is not limited to: a Routing Information Protocol (RIP), OSPF, BGP; preferably, the foregoing method
  • the VRF class includes one or more of the following information elements:
  • the VRF forwarding table the access interface of the VRF, the routing protocol supported by the interface, the routing specifier (RD) of the VRF, and the routing target (RT) of the VRF.
  • the VRF class includes the following one or Implementation of several configuration operations/information elements: Generate/delete virtual route forwarding (VRF), configure static routing entries and corresponding interfaces of VRFs, configure access interfaces, configure routing protocols on access interfaces, and configure VRFs.
  • VRF Generate/delete virtual route forwarding
  • VRF Generate/delete virtual route forwarding
  • RD route destination
  • configuration route reflector related parameters configure route reflector related parameters.
  • the virtual network connection class includes one or more of the following: Physical interface, VLAN sub-interface, Label Switched Path (LSP) tunnel, Internet Protocol (IP), Transmission Control Protocol (TCP), Generic Routing Encapsulation (GRE) tunnel, Internet Protocol Security Tunnel and Layer 2 Tunneling Protocol (L2TP) Tunnel
  • LSP Label Switched Path
  • IP Internet Protocol
  • TCP Transmission Control Protocol
  • GRE Generic Routing Encapsulation
  • L2TP Layer 2 Tunneling Protocol
  • This embodiment implements automatic management of virtual networks by defining CIM-based VRF classes, which can greatly improve management efficiency and reduce the error probability of configuration management.
  • the present invention also extends the management method of MPLS VPN to a general virtual network management method.
  • Embodiment 1 This embodiment provides a CIM-based MPLS VPN network management method. As shown in FIG.
  • the method includes the following operations: Defining a CIM-based VRF class, where the VRF class is composed of a corresponding CIM information element and its corresponding
  • the network device constituting the network supports network management through the network management system by supporting CIM information elements of the VRF class and corresponding implementation methods thereof.
  • the network device includes, but is not limited to, a router, a switch, and related gateway devices, such as a Broadband Remote Access Server (BRAS), and a Packet Data Network Gateway (PDN). -GW), security gateway, and more.
  • BRAS Broadband Remote Access Server
  • PDN Packet Data Network Gateway
  • the VRF class in order to implement the management function of the MPLS VPN, the VRF class needs to be associated with one or more of the following types, specifically, but not limited to: an interface class, or an IP protocol endpoint class, and a tunnel class.
  • the interface class implements MPLS VPN client access
  • the tunnel class is embodied by the MPLS protocol endpoint class to implement the connection between different sites of the MPLS VPN.
  • MPLS protocol endpoint class the MPLS protocol endpoint class.
  • the VRF class is a subclass of the Enabled Logical Element class of the existing CIM architecture.
  • the interface class includes an interface with the customer edge router CE and an interface between the PE and the P router.
  • the former is used to access the user's site network, and the latter is used to connect the VRF to other VRFs in the VPN; further, the interface also includes an interface for the VPN to access the INTERNET.
  • the VRF needs to implement routing interaction with the site network and other VRFs in the VPN through the routing protocol on the connection interface. Therefore, the interface class needs to associate a routing protocol on the interface or configure a static route.
  • the routing protocol is implemented by various routing protocol service classes under the CIM technical system, including an OSPF routing service class and a BGP routing service class.
  • the MPLS protocol endpoint class implements the VRF routing interaction between the VRF and other sites in the VPN through the MP-BGP protocol running on it.
  • the data forwarding of the VPN is implemented by using an MPLS tunnel LSP.
  • the establishment of the LSP is implemented using the existing MPLS technology, which is generally the label distribution protocol LDP protocol.
  • LDP protocol label distribution protocol
  • the data forwarding of the MPLS VPN generally requires two layers of labels, the internal label is used to indicate the network interface of the destination address, and the outer label is used to forward the packet in the MPLS backbone network.
  • the MPLS segment class needs to support the push operation of the multi-layer label stack.
  • the MPLSOutSegment class In order to implement the stacking of multi-layer labels, new information elements need to be added in the MPLSOutSegment class, including: inner label, and inner label push operation.
  • a 3-layer label is required, which can be defined as: NPush- indicates the number of times the stack is pushed, that is, the number of layers of the label; and specific labels at different levels.
  • the existing MPLS service class needs to add new information elements, including but not limited to: VPN support, and VPN types. For VPN types, specifically include L3, or L2 VPN, or both.
  • the routing class includes: a static route, a dynamic route; the dynamic route includes but is not limited to:
  • the BGP and OSPF service classes are used to represent BGP and OSPF routes.
  • the configuration includes: static routing configuration, OSPF routing protocol configuration, BGP routing protocol configuration, etc.
  • the specific configuration data is: Static routing settings
  • IGP routing setting data including support for OSPF
  • EGP routing setting data including support for BGP.
  • the static routing sets information element of the data class, including but not limited to: a static routing entry;
  • the IGP routing setting data IGPRoutingSettingData class and the external border gateway protocol EGPRoutingSettingData class are optional and can be omitted.
  • the IG P routing settings data IGPRoutingSettingData class includes information elements, including but not limited to: area number; external border gateway protocol EGPRoutingSettingData class information elements, including but not limited to: autonomous domain number.
  • this is implemented through the IP configuration service class IPConfigurationService, which can perform static IP configuration on the interface, or can pass
  • the VRF class includes one or more of the following information elements:
  • the VRF class includes one or more of the following types: Configuration operations, ie information elements of the class implementation: Generate/delete virtual route forwarding (VRF), configure routing specifiers (RD) and routing targets (RT) for VRF classes, configure route reflectors; interfaces to VRFs
  • Configuration operations include: generating/deleting a VRF interface, configuring the IP address of the VRF interface, and configuring/reconfiguring the routing protocol or static route running on the interface.
  • the MPLS VPN may use an IP tunnel to perform data forwarding between the VRFs.
  • an IP tunnel endpoint class is introduced to provide an IP tunnel to implement network connection and forwarding.
  • the specific tunnel class may include one or more of the following: Generic Routing Encapsulation (GRE) tunnel, IP-in-IP tunnel, Internet Protocol security tunnel, and Layer 2 Tunneling Protocol (L2TP) tunnel. Since it is an IP tunnel, it can be represented by the IP protocol endpoint class and the IP network connection IPNetworkConnection class in Figure 11.
  • GRE Generic Routing Encapsulation
  • IP-in-IP tunnel IP-in-IP tunnel
  • Internet Protocol security tunnel Internet Protocol security tunnel
  • L2TP Layer 2 Tunneling Protocol
  • the interface class in the CIM technology system, can be represented by an IP connection class, indicating an interface, a connection and an IP address configuration, and a link layer-based interface technology, such as an Ethernet interface. Classes are used for hosting and presentation.
  • the MPLS endpoint class and the MPLS service class include, but are not limited to, the label distribution protocol LDP endpoint class.
  • the related MPLS VPN statistics class is also configured to collect statistics about the MPLS VPN. The specific statistics include, but are not limited to, the number of VPN sites, the number of interfaces, and the types of routing protocols supported.
  • Embodiment 2 In a specific network deployment, MPSL VPN clients generally need Internet (INTERNET) access.
  • the NAT address class and the related interface class are used to implement MPLS VPN to ij INTERNET access.
  • the NAT class mainly implements the conversion of the private IP address of the MPLS VPN to the INTERNET public address; and the interface class is embodied by the IP protocol endpoint class, and the internal traffic of the MPLS VPN is imported into the general MPLS network, thereby implementing the INTERNET. Access.
  • Embodiment 3 In the data center network, one technology currently under development is a virtual network implementation technology based on overlapping networks, that is, layer 3 based network virtualization NVO3.
  • the basic idea is to use VRF to perform network isolation for different users/tenants.
  • the VRF function is implemented by introducing Network Virtualization Edge (NVE), and through a specific type of IP tunnel class, that is, by having a special identifier.
  • NVE Network Virtualization Edge
  • IP-in-IP tunnel encapsulation of the VN-ID (detailed in the prior art, refer to the related documents of the IETF) to implement information exchange and traffic forwarding between different NVEs.
  • the NVE can be implemented through a normal PC server, or an access switch, or other network device.
  • the implementation mechanism of NVO3 is very similar to that of MPLS VPN. It is implemented by configuring edge devices. The difference is that NVO3 is configured with NVE, and MPLS VPN is configured for carrier edge PE devices.
  • NVO3 is configured with NVE
  • MPLS VPN is configured for carrier edge PE devices.
  • Figure 13 the network structure of MPLS VPN and NVO3 is also shown.
  • the management implementation scheme of the foregoing MPLS VPN is extended to implement management of the NVO3 virtual network.
  • it includes the VRF class, the L3/L2 interface class, and the NVO3 protocol endpoint class.
  • This corresponds to the aforementioned VRF class, interface class, and tunnel class.
  • the interface of the NVO3 virtual network can access not the CE router, but an independent virtual machine, or a physical computer. Therefore, access can only be achieved through the L2 interface class.
  • L3 interface support is reserved here.
  • the NVO3 tunnel class or the IP protocol endpoint class implements information exchange and packet forwarding between different VRFs.
  • VXLAN For the specific tunneling technology, there are several forms such as VXLAN, NVGRE and NVO3 encapsulation, so there are different definitions in terms of their specific information elements.
  • Other VRF classes are related to: generation, deletion, and related configuration operations, similar to MPLS VPN VRF.
  • Embodiment 4 According to another aspect of the embodiments of the present invention, management of a virtual network implemented based on a virtual network device in a network virtualization/virtualization environment may also be implemented.
  • Network virtualization refers to a network device that can be virtualized into multiple virtual network devices, but these virtual network devices, like their corresponding physical devices, can be used as a stand-alone device, and with other The virtual device is isolated, or further virtualized by its physical device itself to satisfy the deployed application of the network.
  • the main purpose of network virtualization is to optimize the use of network devices, or to support new business functions.
  • Virtualization generally refers to the virtualization of a computer system.
  • a computer can be virtualized into multiple virtual machines, and each virtual machine is like a separate computer.
  • the virtual network device in the network virtualization includes: a virtual router, a virtual switch, or a virtual firewall, and the like.
  • virtual devices such as virtual switches and virtual routers can be implemented, and the connection paths between virtual devices can be realized.
  • a virtual network device such as a virtual switch or a virtual router can be implemented to implement an independent virtual network.
  • the specific network deployment method forms a virtual network like a physical switch, a router, and the like to form a physical network.
  • the above related virtual routers, virtual switches, etc., related virtual network devices can be represented by the virtual network element VNE in FIG.
  • a specific implementation method is to generate a related virtual device, for example, in a computer supporting a CIM technology mechanism, and/or a network device, for example Virtual switches, virtual routers, and virtual network connections, or various tunneling technologies, or even physical network connections, connect these virtual devices to form a network.
  • the protocol function running on the virtual network device is configured to implement a fully functional virtual network and delivered to the user.
  • the CIM-based virtual router class/virtual switch class VNE class and the interface class and tunnel class associated with the virtual router class/virtual switch class are defined. As shown in Figure 13.
  • the protocol endpoint ProtocolEndpoint class Compared with the embodiment of MPLS VPN, except for the NVE class, the protocol endpoint ProtocolEndpoint class, the network connection NetworkConnection class, and the like, the other contents are the same. Further, the protocol end ProtocolEndpoint point class, the network connection NetworkConnection class class 4 IPProtocolEndpoint class, the IPNetworkConnection class parent class, including more standard content, specifically, does not include L3 connections and ports, and also includes L2 ports and connections. That is, in this implementation class, the connection of the Layer 2 network can be further supported.
  • the protocol endpoint class, or the interface class includes an IP interface class or an L2 interface class, where the tunnel class is an IP-in-IP tunnel, an MPLS tunnel class, or one of a network device or a server supporting virtualization.
  • the information element of the virtual router class/virtual switch class includes at least one of the following: a virtual router/virtual switch identifier, a virtual router/virtual switch forwarding table, and a virtual router/virtual switch access interface.
  • the method of the virtual router class/virtual switch class includes at least one of: generating or deleting a virtual router/virtual switch, configuring an identifier VN-ID of the VRF, configuring a route reflector; and authenticating the virtual router class/virtual
  • the interface of the switch class performs at least one of the following operations: configuring or deleting an IP interface or an L2 interface of the virtual router/virtual switch, and configuring or reconfiguring a protocol supported by the virtual router/virtual switch.
  • the tunnel class includes but is not limited to one of the following: an IP-in-IP tunnel, a VXLAN tunnel,
  • An NVGRE tunnel, an NV03 tunnel, a GRE tunnel, an MPLS tunnel, a virtualized network device, or a virtual tunnel in a server Through the above settings and related parameter configuration. Management of a CIM-based virtual network can be implemented. Further, a statistical class of the related virtual network is defined, which is used to collect statistics about the virtual network. The specific statistics include, but are not limited to, the number of VPN sites, the number of interfaces, and the types of routing protocols supported. It should be further noted that the foregoing VNE also includes abstraction and support for a virtual firewall or other virtual device, which may be formed by a virtual device or a related virtual device, and the connection relationship may be used. The same method is implemented.
  • software is also provided for performing the technical solutions described in the above embodiments and preferred embodiments.
  • software is also provided for performing the technical solutions described in the above embodiments and preferred embodiments.
  • a storage medium is provided, the software being stored, including but not limited to: an optical disk, a floppy disk, a hard disk, a rewritable memory, and the like.
  • the computing device may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein.
  • the steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps are fabricated as a single integrated circuit module.
  • the invention is not limited to any specific combination of hardware and software.
  • the above are only the preferred embodiments of the present invention, and are not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
  • the above technical solution provided by the present invention can be applied to a network management process, and adopts a technical means for managing a virtual network by using a VRF class, and solves the problem that the virtual network is not automatically managed automatically in the related technology.
  • Technical issues such as solutions enable automated management of CIM-based networks.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

La présente invention concerne un procédé et un système de gestion de réseau, une entité de réseau virtuel et un dispositif de réseau. Le procédé susmentionné comprend les étapes suivantes : la définition d'une classe d'entité de réseau virtuel (VNE) basée sur un modèle d'information commun (CIM), la classe de VNE réalisant l'accès d'un utilisateur d'un réseau virtuel et la connexion parmi différents VNE dans le réseau virtuel par le biais d'une classe d'interface et d'une classe de tunnel ; et un système de gestion de réseau réalisant une communication à travers un mécanisme d'exécution d'application de CIM et un dispositif de réseau, qui amène la classe de VNE à réaliser la gestion du réseau virtuel. Grâce à la solution technique susmentionnée de l'invention, le problème technique, en l'état de la technique, selon lequel il n'existe effectivement aucune solution pour gérer automatiquement le réseau virtuel et analogues, est résolu, ce qui permet de réaliser la gestion automatique du réseau sur la base du CIM.
PCT/CN2014/075736 2013-09-17 2014-04-18 Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau Ceased WO2014176989A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310426220.6A CN104468162A (zh) 2013-09-17 2013-09-17 网络管理方法及系统、虚拟网络实体、网络设备
CN201310426220.6 2013-09-17

Publications (1)

Publication Number Publication Date
WO2014176989A1 true WO2014176989A1 (fr) 2014-11-06

Family

ID=51843121

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/075736 Ceased WO2014176989A1 (fr) 2013-09-17 2014-04-18 Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau

Country Status (2)

Country Link
CN (1) CN104468162A (fr)
WO (1) WO2014176989A1 (fr)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016095493A1 (fr) * 2014-12-19 2016-06-23 中兴通讯股份有限公司 Procédé, appareil et contrôleur destinés à un traitement de virtualisation de ressource
CN107005587A (zh) * 2014-11-18 2017-08-01 思科技术公司 链接网络环境中的分布式应用的系统和方法
CN110378786A (zh) * 2019-07-29 2019-10-25 中国工商银行股份有限公司 模型训练方法、违约传导风险识别方法、装置及存储介质
CN111464342A (zh) * 2020-03-19 2020-07-28 烽火通信科技股份有限公司 网络设备管理信息分布式路由汇聚方法及系统

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106301829B (zh) 2015-05-21 2019-08-09 华为技术有限公司 一种网络业务扩容的方法和装置
EP3349397B1 (fr) 2015-09-30 2020-07-29 Huawei Technologies Co., Ltd. Procédé, dispositif et système de mise à l'échelle
WO2018004407A1 (fr) 2016-06-29 2018-01-04 Telefonaktiebolaget Lm Ericsson (Publ) Systèmes et procédés de contrôle d'accès à des services
WO2018023338A1 (fr) * 2016-08-01 2018-02-08 华为技术有限公司 Procédé de gestion de fonction réseau, et dispositif de gestion de fonction réseau
CN109361605B (zh) * 2018-11-26 2021-05-04 武汉烽火技术服务有限公司 一种传输网系统的双ip部署的业务保护方法及系统

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101520739A (zh) * 2008-02-26 2009-09-02 国际商业机器公司 构建基于存储管理计划规范的设备的模拟器的方法和装置
CN101548263A (zh) * 2007-05-10 2009-09-30 美国博通公司 模拟用户和/或拥有者的不透明管理数据选项的方法和系统
CN101908996A (zh) * 2010-08-24 2010-12-08 福建星网锐捷网络有限公司 接入私有网络的方法、数据传输方法及装置和系统
CN102708253A (zh) * 2012-05-17 2012-10-03 广东电网公司电力科学研究院 电力自动化信息系统cim模型符合度测试方法和装置
US8387069B2 (en) * 2006-07-28 2013-02-26 Dell Products L.P. Method to support dynamic object extensions for common information model (CIM) operation and maintenance

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8387069B2 (en) * 2006-07-28 2013-02-26 Dell Products L.P. Method to support dynamic object extensions for common information model (CIM) operation and maintenance
CN101548263A (zh) * 2007-05-10 2009-09-30 美国博通公司 模拟用户和/或拥有者的不透明管理数据选项的方法和系统
CN101520739A (zh) * 2008-02-26 2009-09-02 国际商业机器公司 构建基于存储管理计划规范的设备的模拟器的方法和装置
CN101908996A (zh) * 2010-08-24 2010-12-08 福建星网锐捷网络有限公司 接入私有网络的方法、数据传输方法及装置和系统
CN102708253A (zh) * 2012-05-17 2012-10-03 广东电网公司电力科学研究院 电力自动化信息系统cim模型符合度测试方法和装置

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107005587A (zh) * 2014-11-18 2017-08-01 思科技术公司 链接网络环境中的分布式应用的系统和方法
US10417025B2 (en) 2014-11-18 2019-09-17 Cisco Technology, Inc. System and method to chain distributed applications in a network environment
CN107005587B (zh) * 2014-11-18 2020-09-08 思科技术公司 链接网络环境中的分布式应用的系统和方法
WO2016095493A1 (fr) * 2014-12-19 2016-06-23 中兴通讯股份有限公司 Procédé, appareil et contrôleur destinés à un traitement de virtualisation de ressource
CN110378786A (zh) * 2019-07-29 2019-10-25 中国工商银行股份有限公司 模型训练方法、违约传导风险识别方法、装置及存储介质
CN110378786B (zh) * 2019-07-29 2022-09-02 中国工商银行股份有限公司 模型训练方法、违约传导风险识别方法、装置及存储介质
CN111464342A (zh) * 2020-03-19 2020-07-28 烽火通信科技股份有限公司 网络设备管理信息分布式路由汇聚方法及系统
CN111464342B (zh) * 2020-03-19 2023-04-07 烽火通信科技股份有限公司 网络设备管理信息分布式路由汇聚方法及系统

Also Published As

Publication number Publication date
CN104468162A (zh) 2015-03-25

Similar Documents

Publication Publication Date Title
CN110635935B (zh) 为用户接口的相应服务接口使用多个evpn路由
US8307422B2 (en) Routing device having integrated MPLS-aware firewall
EP3219057B1 (fr) Déviation de route inter-vrf (routage et transfert virtuel) optimisée en environnements reposant sur une superposition de réseaux
US8316435B1 (en) Routing device having integrated MPLS-aware firewall with virtual security system support
CN108702328B (zh) 用于穿越分段路由和mpls网络的业务的灵活路径拼接和选择的is-is扩展
Lasserre et al. Framework for data center (DC) network virtualization
WO2014176989A1 (fr) Procédé et système de gestion de réseau, entité de réseau virtuel et dispositif de réseau
EP3692685B1 (fr) Commande à distance de tranches de réseau dans un réseau
CN111756566B (zh) 支持和不支持issu装置的混合网络中软件升级部署
US20110110370A1 (en) Compressed virtual routing and forwarding in a communications network
EP3809641B1 (fr) Amélioration de la mise en miroir des ports sur evpn vxlan
US11792119B2 (en) Multi-protocol service chaining among devices of interconnected topology
EP4068697B1 (fr) Réacheminement rapide pour des réseaux privés virtuels ethernet - réseau local virtuel extensible
WO2017037615A1 (fr) Procédé et appareil de modification d'états de réacheminement dans un dispositif de réseau d'un réseau défini par logiciel
CN107547335A (zh) 在evpn中信号通知ip地址移动的方法和网络设备
CN107040463A (zh) 用于避免由于非对称mac获悉的流量泛洪的系统
CN108886494B (zh) 使用中间系统到中间系统(is-is)的伪线建立和保持的方法和装置
CN114978975A (zh) 以太网虚拟私有网络中的bum业务的快速重路由
CN118337561A (zh) 在多宿主以太网段部署中缩短融合时间和/或避免脑裂
EP3893447B1 (fr) Procédé pour créer une session de détection de connectivité, dispositif de réseau et système
WO2019229760A1 (fr) Procédé et appareil pour la dissémination optimisée d'informations de transfert de couche 3 dans des réseaux de réseautage défini par logiciel (sdn)
SE541314C2 (en) Methods and apparatuses for routing data packets in a network topology
US12363030B2 (en) Multi-protocol service chaining among devices of interconnected topology
WO2014173116A1 (fr) Procédé et système de gestion de réseau virtuel
CN119011692A (zh) 一种信息处理方法及装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14791705

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14791705

Country of ref document: EP

Kind code of ref document: A1