CN101217463B - Method and device for controlling message forwarding - Google Patents
Method and device for controlling message forwarding Download PDFInfo
- Publication number
- CN101217463B CN101217463B CN2007103043526A CN200710304352A CN101217463B CN 101217463 B CN101217463 B CN 101217463B CN 2007103043526 A CN2007103043526 A CN 2007103043526A CN 200710304352 A CN200710304352 A CN 200710304352A CN 101217463 B CN101217463 B CN 101217463B
- Authority
- CN
- China
- Prior art keywords
- broadcast domain
- interface
- access control
- sign
- forwarding
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L51/00—User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
- H04L51/21—Monitoring or handling of messages
- H04L51/214—Monitoring or handling of messages using selective forwarding
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method and a device for forwarding control message and belongs to communication filed. The method comprises: dividing a first broadcast domain and a second broadcast domain; preserving marks of the first broadcast domain at all the interfaces of the public network side while preserving marks of the second broadcast domain at all the interfaces of the accessing side; receiving the forwarding message, studying the source medium access control address of the forwarding message and obtaining the corresponding relationship of the source medium access control address, the receiving interface and the broadcast domain mark and mapping the broadcast domain mark of the corresponding relationship and finally getting the corresponding source medium access control address forwarding item after mapping. The device consists of: a division module, a reservation module, a receiving module and a mapping module. By dividing broadcast domain and mapping broadcast domain mark, the invention does not have to modify the forwarding engine chip of the existing message forwarding device and satisfies the requirements of accessing side isolation in the two-layer network and realizes successful message forwarding.
Description
Technical field
The present invention relates to the communications field, particularly a kind of method and apparatus of controlling the message forwarding.
Background technology
In double layer network; The operation principle of two-layer equipment such as message forwarding equipment is: according to the purpose MAC that carries in the message that receives (Media Access Control; Medium access control) address; The MAC that searches equipment self transmits, and E-Packets through the corresponding outgoing interface of MAC address entries that hits.Message forwarding equipment receives message and carries out message forwarding; When also not writing down the corresponding relation of target MAC (Media Access Control) address and interface on the message forwarding equipment (this target MAC (Media Access Control) address is not also learnt to obtain); Can be with this message; On equipment self other total interfaces except that the receiving interface (can be that physical interface also can be a logic interfacing) that receives this message, broadcast; After receiving response message, according to the source MAC (target MAC (Media Access Control) address that promptly E-Packets) of this response message of noting and the corresponding relation of receiving interface (outgoing interface that promptly E-Packets), thus the successful forwarding of realization message; Simultaneously, message forwarding equipment also can be learnt the source MAC of message, and the corresponding relation that is about to this source MAC and the receiving interface that receives this message adds to during MAC transmits.When message forwarding equipment receives when being the reverse message of destination address with this source MAC, just can search MAC and transmit and directly obtain the corresponding interface of this reverse message, so need not broadcast, saved the network bandwidth to this message.
Two-layer equipment in the most double layer network is all supported (the Virtual Local Area Network according to VLAN; VLAN) or VSI (Virtual Switch Instance; Virtual switch instance) carries out the division of broadcast domain (corresponding broadcast domain ID); Avoided under the situation that target MAC (Media Access Control) address not have to learn to obtain through dividing broadcast domain, when broadcasting to the not influence of other interfaces under same broadcast domain.After the division of having carried out broadcast domain, correspondingly, the MAC in the message forwarding equipment transmits also and is divided into different many parts according to broadcast domain sign ID.For example, be divided into broadcast domain A and broadcast domain B, receive behind the message target MAC (Media Access Control) address that carries according to the corresponding broadcast domain ID (is example with A) of receiving interface and message and search and transmit; When target MAC (Media Access Control) address when also study does not obtain, only need with this message in broadcast domain A except that receiving interface other total interfaces broadcast, avoided in the message forwarding equipment not in the influence of the interface of broadcast domain A scope.
Referring to Fig. 1; Forwarding structural representation for existing two-layer network device; Receiver module sends to forwarding engine after receiving the message of need transmitting, and forwarding engine is searched the list item that the list item memory module is obtained the correspondence of MAC in transmitting; The interface corresponding according to target MAC (Media Access Control) address in the list item that obtains, forwarding engine is sent to sending module with this message and transmits; Simultaneously; Forwarding engine with the mac learning information of this message (like broadcast domain ID; MAC Address and receiving interface) report the upper strata study module, the upper strata study module carries out mac learning according to mac learning information, and the list item that study obtains is sent to the list item memory module preserves.
At present, when making up double layer network, have the demand that side is isolated that inserts usually; It is public network side and insert between the side can the intercommunication two layer message; And can not E-Packet mutually between the equipment between the access side, referring to Fig. 2, insert VPLS (the Virtual Provate LAN Service that side is isolated for having launched; The virtual special local area network service) equipment network sketch map; Wherein, message forwarding equipment describes for example with SPE (Superstratum Provider Edge, top service merchant's edge device) 4; The public network side apparatus comprises: SPE1, PE (Provider Edge, provider edge equipment) 2 and SPE3; Access side device comprises: UPE (Underlayer PE, the PE of lower floor) 1, UPE2, CE (Customer Edge, customer edge devices) 1 and CE2; Correspondingly, the public network side interface of SPE4 is respectively interface 1, the interface 2 that connects SPE1 that connects SPE3, the interface 3 that connects PE2; Insert side interface and be respectively interface 4, the interface 5 that connects UPE2, the interface 6 that connects CE1 that connects UPE1, the interface 7 that connects CE2; Require the public network side interface this moment and insert the mutual forwarding that to carry out message between the side interface, and insert the mutual forwarding that does not allow to carry out message between the side interface.
The inventor finds in realizing process of the present invention: because the proposition of the demand that the access side is isolated in two layers of networking is newer; Also do not form standard; And the two-layer network device forwarding engine generally is to adopt ASIC (Application Specific Intergrated Circuits; The chip of the non-programmable modification of application-specific integrated circuit (ASIC)) changing is accomplished, and when design, does not carry out the consideration of this demand, so can not support to satisfy the forwarding demand that above-mentioned access side is isolated automatically.
Summary of the invention
In order on two-layer network device, to realize the forwarding of control message, realized that particularly the message of satisfied access side isolation requirement is transmitted, the embodiment of the invention provides a kind of method and apparatus that message is transmitted of controlling.Said technical scheme is following:
A kind of method of controlling the message forwarding, said method comprises:
Divide first broadcast domain and second broadcast domain; Said first broadcast domain comprises the public network side and inserts the side total interface; Said second broadcast domain comprises said public network side total interface;
On said public network side total interface, preserve said first broadcast domain sign, on said access side total interface, preserve said second broadcast domain sign;
Reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon, obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign;
According to said corresponding relation, generate the corresponding forwarding table of medium access control item of said broadcast domain sign, and the interface in the forwarding table of medium access control item of said broadcast domain sign correspondence is set to the black hole interface;
Said reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon; Obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign, specifically comprise:
When said public network side interface reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and said first broadcast domain sign; First broadcast domain sign in the said corresponding relation is mapped as second broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said second broadcast domain sign; Or,
When said access side interface reception E-Packets; Said access side interface is received the corresponding relation that the source medium access control address learning that E-Packets obtains said source Media Access Control address, receiving interface and said second broadcast domain sign; Said second broadcast domain sign in the corresponding relation of said source Media Access Control address, receiving interface and said second broadcast domain sign is mapped as said first broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said first broadcast domain sign.
A kind of equipment of controlling the message forwarding, said equipment comprises:
Divide module, be used to divide first broadcast domain and second broadcast domain; Said first broadcast domain comprises said public network side and inserts the side total interface; Said second broadcast domain comprises said public network side total interface;
Preserve module, be used on said public network side total interface, preserving said first broadcast domain sign, on said access side total interface, preserve said second broadcast domain sign;
Receiver module is used for reception and E-Packets;
Mapping block; Be used for when said receiver module receive E-Packet after; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon, obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign;
Module is set; Be used for when said mapping block is learnt the corresponding relation of said source Media Access Control address, receiving interface and said broadcast domain sign; Generate the corresponding forwarding table of medium access control item of said broadcast domain sign, and the interface in the forwarding table of medium access control item of said broadcast domain sign correspondence is set to the black hole interface;
Said mapping block specifically comprises:
First map unit; Be used for when said public network side interface reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and said first broadcast domain sign; First broadcast domain sign in the said corresponding relation is mapped as second broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said second broadcast domain sign;
Second map unit; Be used for when said access side interface reception E-Packets; Said access side interface is received the corresponding relation that the source medium access control address learning that E-Packets obtains said source Media Access Control address, receiving interface and said second broadcast domain sign; Said second broadcast domain sign in the corresponding relation of said source Media Access Control address, receiving interface and said second broadcast domain sign is mapped as said first broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said first broadcast domain sign.
The beneficial effect of the technical scheme that the embodiment of the invention provides is:
Through the mode of on message forwarding equipment, dividing a plurality of broadcast domains and the broadcast domain sign being shone upon; Realize the control message forwarding; Need not revise on the basis of the forwarding engine in the present message forwarding equipment, can support automatically and satisfy to have realized in double layer network, satisfying under the condition that inserts the side isolation to E-Packet.
Description of drawings
Fig. 1 is the structural representation of the message forwarding equipment that provides of prior art;
Fig. 2 is the equipment network sketch map of launching the isolation of access side that prior art provides;
Fig. 3 is the method flow diagram that the control message that provides of the embodiment of the invention 1 is transmitted;
Fig. 4 is the equipment sketch map that the control message that provides of the embodiment of the invention 4 is transmitted.
Embodiment
For making the object of the invention, technical scheme and advantage clearer, will combine accompanying drawing that embodiment of the present invention is done to describe in detail further below.
The technical scheme that the embodiment of the invention provides; Realize controlling message forwarding through the mode of on message forwarding equipment, dividing a plurality of broadcast domains and the broadcast domain sign is shone upon, realized in double layer network, satisfying under the condition that inserts the side isolation E-Packeting.
The embodiment of the invention provides a kind of method that message is transmitted of controlling; The VPLS message forwarding equipment networking sketch map that provides with Fig. 2 is that example describes; Wherein, When making up double layer network, launched isolation to inserting side as required, the equipment that does not promptly allow to insert between the side carries out the mutual forwarding of message; The method that adopts the embodiment of the invention to provide can support to insert the side isolation on the basis of the message forwarding equipment forwarding engine that does not change existing double layer network, realize the successful forwarding to message.Referring to Fig. 3, the method flow diagram that the control message that provides for the embodiment of the invention is transmitted, particular content comprises:
101: will launch the double layer network that inserts the side isolation and be divided into two broadcast domains: broadcast domain A and broadcast domain B, wherein broadcast domain A comprises all public network side interfaces 1,2,3 of message forwarding equipment and inserts side interface 4,5,6,7; Broadcast domain B only comprises public network side interface 1,2,3.
102: the sign A that in the information table of the interface of all public network side interfaces 1,2,3, preserves broadcast domain A; And, all preserve the sign B of broadcast domain B in inserting the interface message table of side interfaces 4,5,6,7.
103: receive to E-Packet; Searching the MAC that is designated index with the corresponding broadcast domain of receiving interface transmits and carries out message forwarding; And carry out the source mac learning that this E-Packets; And the sign of the broadcast domain in the corresponding relation that study is obtained is shone upon the corresponding MAC forwarding-table item of broadcast domain sign after obtaining shining upon accordingly.
Receive from the situation of public network side message with from the situation that inserts the side message to this message forwarding equipment respectively below to be described in detail that particular content is following:
1) receives to be forwarded to the message that inserts side from the public network side time when message forwarding equipment; The MAC that is designated index that searches with broadcast domain A transmits; And carry out the source mac learning, and the sign of the broadcast domain in the corresponding relation that will obtain after will learning A is mapped as broadcast domain sign B.
Present embodiment receives to be that example describes to the message that the access side is transmitted with public network side interface 1, thes contents are as follows:
A. when this target MAC (Media Access Control) address that E-Packets is the equipment CE1 of access side; And it is 6 o'clock that message forwarding equipment has been learnt the corresponding interface of this CE1; The sign A of the broadcast domain A that then preserves with interface 1 is an index; Search the corresponding MAC of broadcast domain A and transmit, obtain the corresponding interface 6 of this purpose MAC, this is E-Packeted sends to the interface 6 of access side correspondence according to the mode of clean culture.
When on this message forwarding equipment; When also not writing down the corresponding relation of this purpose MAC that E-Packets and interface (this target MAC (Media Access Control) address does not also have study to obtain); The interface message of the broadcast domain A that then preserves in the information table of this message forwarding equipment according to the interface of interface 1; To broadcasting to the corresponding total interface 1,2,3,4,5,6,7 of broadcast domain A; Pass through comparison then,, realized that other interfaces except receiving interface carry out message broadcasting in the corresponding total interface of broadcast domain A this moment the message packet loss of mailing to interface 1 to the receiving interface and the transmission interface of message; After receiving response message; In like manner; Message forwarding equipment can be according to the source MAC and the corresponding relation of receiving interface of this response message of noting, and the source MAC of the response message noted according to message forwarding equipment and the corresponding relation of receiving interface are transmitted thereby realization will E-Packet.
B. carry out the source mac learning to E-Packeting, the broadcast domain A in the corresponding relation of the broadcast domain A that study is obtained, MAC Address, receiving interface is mapped as broadcast domain B, obtains the MAC forwarding-table item of broadcast domain B.
For example: carry out the source mac learning to E-Packeting, obtain the corresponding relation of this MAC Address, broadcast domain A, receiving interface, the sign of the broadcast domain in this corresponding relation is shone upon, be about to identify A and be mapped as sign B, obtain the MAC forwarding-table item of broadcast domain B.Referring to table 1,,, be the example of the MAC forwarding-table item that obtains after the mapping referring to table 2 for the corresponding relation example that generates before the mapping.Wherein, when carrying out the mapping of broadcast domain sign, can realize that the embodiment of the invention does not limit the mapping algorithm that is adopted through the mapping algorithm of the supported correspondence of software.
Table 1
The broadcast domain sign | MAC Address | Interface |
A | ? |
1 |
Table 2
The broadcast domain sign | MAC Address | Interface |
B | ? |
1 |
Because to the source mac learning, the broadcast domain A in the corresponding relation of the broadcast domain A that study is obtained, MAC Address, receiving interface is mapped as broadcast domain B, obtains the MAC forwarding-table item of broadcast domain B above-mentioned.This moment is when receiving from access the E-Packeting of side when message forwarding equipment (and the target MAC (Media Access Control) address corresponding equipment of this message in the public network side time); Can be that index search MAC transmits just, this message is sent to the public network side interface according to mode of unicast to insert the broadcast domain sign B that preserves on the side interface.
2) when message forwarding equipment was received the message that need transmit from the access side, the MAC that is designated index that searches with broadcast domain B transmitted, and carries out the source mac learning, and the sign of the broadcast domain after will learning B is mapped as broadcast domain sign A.
Present embodiment thes contents are as follows to receive that through inserting side interface 4 message that needs to transmit is that example describes:
A. when equipment PE2 that this target MAC (Media Access Control) address that E-Packets is the public network side; And it is 3 o'clock that message forwarding equipment has been learnt the corresponding interface of this PE2; The sign B of the broadcast domain B that then preserves with interface 4 is an index; Search the corresponding MAC of broadcast domain B and transmit, obtain the corresponding interface 3 of this target MAC (Media Access Control) address, this message is sent to the interface 3 of public network side correspondence according to the mode of clean culture.
When on this message forwarding equipment; When also not writing down the corresponding relation of this purpose MAC that E-Packets and interface (this target MAC (Media Access Control) address does not also have study to obtain); The interface message of the broadcast domain B that then preserves in the interface message table of this message forwarding equipment according to interface 4 is to broadcasting to the corresponding total interface 1,2,3 of broadcast domain B; After receiving response message; In like manner; Message forwarding equipment can be according to the source MAC and the corresponding relation of receiving interface of this response message of noting, and the source MAC of the response message noted according to message forwarding equipment and the corresponding relation of receiving interface are transmitted thereby realization will E-Packet.
B. carry out the source mac learning to E-Packeting, the broadcast domain B in the corresponding relation of the broadcast domain B that study is obtained, MAC Address, receiving interface is mapped as broadcast domain A, obtains the MAC forwarding-table item of broadcast domain A.
For example: when carrying out the source mac learning, obtain the corresponding relation of this MAC Address, broadcast domain A, receiving interface, the sign of the broadcast domain in this corresponding relation is shone upon, be about to identify B and be mapped as sign A, obtain the MAC forwarding-table item of broadcast domain A.Referring to table 3, be the corresponding relation example of the generation before the mapping; Referring to table 4, be the example of the MAC forwarding-table item that obtains after the mapping.
Table 3
The broadcast domain sign | MAC Address | |
B | MAC4 | |
4 |
Table 4
The broadcast domain sign | MAC Address | Interface |
A | ? |
4 |
Because to the source mac learning, the broadcast domain B in the corresponding relation of the broadcast domain B that study is obtained, MAC Address, receiving interface is mapped as broadcast domain A, obtains the MAC forwarding-table item of broadcast domain A above-mentioned.Receive from the E-Packeting of public network side (and the target MAC (Media Access Control) address corresponding equipment of this message in the access side time) when message forwarding equipment this moment; Can be that index search MAC transmits just, this message is sent to the access side interface according to mode of unicast with the broadcast domain sign A that preserves on the public network side interface.
In sum, can be implemented in the double layer network, can realize satisfying when message is transmitted and insert the requirement that side is isolated through said method:
When receiving through the public network side interface when E-Packeting; Because what on the interface of public network side, preserve is the sign of broadcast domain A; So being to use broadcast domain A is the index forwarding of tabling look-up; When target MAC (Media Access Control) address is unknown, can this message be broadcast to (comprising inserting side interface) of the total interface among the broadcast domain A; When the target MAC (Media Access Control) address corresponding equipment when inserting side because when carrying out MAC address learning, the MAC Address list item of broadcast domain B is mapped as the MAC Address list item of broadcast domain A, the message that the public network side joint is received just can send to the access side interface according to mode of unicast.
When receiving when E-Packeting through inserting side interface; Because what on the interface that inserts side, preserve is the sign of broadcast domain B; So being to use broadcast domain B is the index forwarding of tabling look-up; When target MAC (Media Access Control) address is unknown, can this message be broadcast to the total interface (wherein include only the public network side interface, do not comprise and insert side interface) among the broadcast domain B; When target MAC (Media Access Control) address corresponding equipment during in the public network side, because when carrying out MAC address learning, the MAC Address list item of broadcast domain A has been mapped as the MAC Address list item of broadcast domain B, insert the message that side receives and just can send to the public network side interface according to mode of unicast.
The public network side this shows, owing to can intercom with the message that inserts side mutually; And between the access side interface since can not learn the other side be index with broadcast domain B the time MAC Address, so can not carry out the communication of mode of unicast according to the situation of known MAC Address; And because when carrying out broadcast mode communication by the situation of unknown MAC Address, the interface that inserts side not in the broadcast domain B of correspondence, so broadcast mode also can't be communicated by letter, inserts the purpose that side is isolated thereby reached.
The mode of the embodiment of the invention through on message forwarding equipment, dividing a plurality of broadcast domains and the broadcast domain sign being shone upon; Realize the control message forwarding; Need not revise on the basis of the forwarding engine in the present message forwarding equipment, can support automatically and satisfy to have realized in double layer network, satisfying under the condition that inserts the side isolation to E-Packet.
The method that the control message that the embodiment of the invention 1 provides is transmitted can also further be optimized; Present embodiment is through shining upon the corresponding relation of generation before to carrying out MAC address entries among the embodiment 1; MAC address entries according to this corresponding relation generation; The interface that is provided with in this MAC address entries is the black hole interface, has avoided effectively owing in MAC transmits, can not find out source MAC, and has caused continuing the problem of reporting MAC learn.
Present embodiment still is elaborated with the situation that the access side interface receives message to receive message from the public network side interface respectively, and particular content is following:
1) receives when desiring to be forwarded to E-Packeting of interface 1 when message forwarding equipment through other interfaces of public network side; For example; This target MAC (Media Access Control) address that E-Packets is MAC1, and this moment is when the MAC that searches broadcast domain A transmits, because the MAC of this broadcast domain A does not write down the list item of this MAC1 and interface 1 correspondence in transmitting; And cause continuing the reporting MAC learn owing in the MAC of broadcast domain A transmits, can not find out corresponding list item.Present embodiment is through in the transmitting of broadcast domain A, and the mode that generates a MAC address entries corresponding with the MAC1 address of learning solves the problems referred to above, and solution is following:
In the transmitting of broadcast domain A; The corresponding relation of MAC1, broadcast domain A and the interface 1 that obtains according to study; Generate a MAC address entries according to this corresponding relation; And the interface that this MAC address entries is corresponding is set to the black hole interface, and making the corresponding state of this interface is the black hole pattern, that is to say that hitting this interface packets can directly be dropped.Referring to table 5, to because table 1 provides corresponding relation, generate the MAC address entries of a broadcast domain A, as shown in table 5, the interface in this list item is set to the black hole interface.At this moment, when the target MAC (Media Access Control) address of reverse message has hit this MAC address entries because the corresponding interface of this MAC address entries is the black hole interface, thus this reverse message directly abandoned, thereby avoided the problem of lasting reporting MAC learn effectively.
Table 5
The broadcast domain sign | MAC Address | Interface |
A | MAC1 | The black hole |
2) receive when desiring to be forwarded to E-Packeting of interface 4 when message forwarding equipment through other interfaces that insert side; This target MAC (Media Access Control) address that E-Packets is MAC4; This moment is when the MAC that searches broadcast domain B transmits; Owing to do not write down the list item of this MAC4 and interface 4 correspondences during the MAC of this broadcast domain B transmits, and cause continuing the reporting MAC learn owing in the MAC of broadcast domain B transmits, can not find out corresponding list item.During present embodiment is transmitted through the MAC at broadcast domain B, generate the mode corresponding to the MAC address entries of MAC4 address and solve the problems referred to above, solution is following:
In the transmitting of broadcast domain B, the corresponding relation of MAC4, broadcast domain B and the interface 4 that obtains according to study generates a MAC address entries according to this corresponding relation; And the corresponding interface of this list item is set to the black hole interface, and making the corresponding state of this interface is the black hole pattern, that is to say that hitting this interface packets can directly be dropped; Referring to table 6; To table 3 corresponding relation is provided, generates the MAC address entries of a broadcast domain B, the interface of this list item is set to the black hole interface.At this moment, when the target MAC (Media Access Control) address of reverse message has hit this MAC address entries, because the corresponding interface of this MAC address entries is the black hole interface, so this reverse message is dropped.
Table 6
The broadcast domain sign | MAC Address | Interface |
B | MAC4 | The black hole |
Present embodiment; Outgoing interface among the broadcast domain B is set to the purpose of black hole interface; Be that though can be index search the other side's MAC Address with broadcast domain B, both sides still can not communicate between the access side interface; Promptly guaranteed in this case, message forwarding equipment can have been reached when E-Packeting insert the purpose that side is isolated.
Because the method that has adopted present embodiment to provide; So preserving before the MAC address entries of newly learning at the upper strata of existing two-layer network device study module; Information according to the broadcast domain mapping block judges whether two corresponding broadcast domains earlier; If have then for these two broadcast domains respectively issue a MAC address entries of newly learning, the outgoing interface of a copy of it MAC address entries interface that is set to learn only, another part is set to the black hole interface.
The embodiment of the invention reaches when guaranteeing that message forwarding equipment E-Packets and inserts side and isolate under the prerequisite of purpose, has also avoided effectively owing in MAC transmits, can not find out source MAC, and has caused continuing the problem of reporting MAC learn.
One skilled in the art will appreciate that and carrying out double layer network when safeguarding, the broadcasting of when regular meeting adopts the mode of the static MAC of human configuration to avoid mac learning, carrying out is transmitted, and maybe will E-Packet to introduce a target MAC (Media Access Control) address not at the interface of its scope.Therefore, in the present embodiment, preserve in can also transmitting at the MAC of broadcast domain A and/or B by the corresponding list item of the static mac address of webmaster or human configuration (broadcast domain sign, MAC Address and corresponding interface).Usually configuring static MAC has certain special purpose, promptly when message hits this list item, just message is forwarded on the corresponding interface of this list item, thereby realizes the specific purposes that message is transmitted.The mode that goes out MAC Address through this static configuration can be implemented under the situation of launching the isolation of access side, and the equipment that inserts between the side can intercom mutually.
The embodiment of the invention goes out the mode of MAC Address through static configuration, has realized inserting under the situation that side isolates launching, and access side device carries out can completely carrying out mutual message forwarding when specific purposes are communicated by letter when needs.
Referring to Fig. 4, the embodiment of the invention provides a kind of equipment that message is transmitted of controlling, and equipment comprises:
Divide module, be used to divide first broadcast domain and second broadcast domain; First broadcast domain comprises the public network side and inserts the side total interface; Second broadcast domain comprises public network side total interface;
Preserve module, be used on public network side total interface, preserving first broadcast domain sign, inserting preservation second broadcast domain sign on the side total interface;
Receiver module is used for reception and E-Packets;
Mapping block; Be used for when receiver module receive E-Packet after; The source medium access control address learning that E-Packets is obtained the corresponding relation of source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in corresponding relation sign shone upon, obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign.
Wherein, when the interface that E-Packets when reception was the public network side interface, mapping block can also specifically comprise:
First map unit; Be used for that to E-Packet be during from the public network side interface when receiver module receives; The source medium access control address learning that E-Packets is obtained the corresponding relation of source Media Access Control address, receiving interface and first broadcast domain sign; First broadcast domain sign in the corresponding relation is mapped as second broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of second broadcast domain sign.
Wherein, the interface that E-Packets when reception is that mapping block can also specifically comprise when inserting side interface:
Second map unit; Be used for when E-Packeting of receiving of receiver module be when inserting side interface; Receive the corresponding relation that the source medium access control address learning that E-Packets obtains source Media Access Control address, receiving interface and second broadcast domain sign to inserting side interface; Second broadcast domain sign in the corresponding relation of source Media Access Control address, receiving interface and second broadcast domain sign is mapped as first broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of first broadcast domain sign.
Wherein, equipment comprises that also forwarding module is used for the corresponding broadcast domain sign of interface that E-Packets according to reception, searches the corresponding forwarding table of medium access control of broadcast domain sign and carries out the message forwarding.
For fear of the situation that continues the reporting MAC learn, this equipment can also comprise:
Module is set; Be used for when mapping block is learnt the corresponding relation of source Media Access Control address, receiving interface and broadcast domain sign; Generate the corresponding forwarding table of medium access control item of broadcast domain sign, and the interface in the forwarding table of medium access control item of broadcast domain sign correspondence is set to the black hole interface.
For the forwarding of the specific purposes that realize message, for example insert under the situation that side isolates having launched, for special purpose, insert side and insert when certain two equipment need carry out mutual communication between the side, equipment also comprises:
Configuration module is used for obtaining the corresponding forwarding table of medium access control item of broadcast domain sign through the mode of static configuration.
The equipment that the control message that the embodiment of the invention provides is transmitted through splitting the mode of broadcast domain and broadcast domain sign mapping, is realized the control message forwarding.Particularly be directed against present message forwarding equipment under the prerequisite that satisfies the demand that inserts the side isolation, and need not revise the forwarding engine in the forwarding process, realized the successful forwarding of message.
The technical scheme that the embodiment of the invention provides; Through the mode of on message forwarding equipment, dividing a plurality of broadcast domains and the broadcast domain sign being shone upon; Realize the control message forwarding; Need not revise on the basis of the forwarding engine in the present message forwarding equipment, can support automatically and satisfy to have realized in double layer network, satisfying under the condition that inserts the side isolation to E-Packet.
Part steps in the embodiment of the invention can utilize software to realize that corresponding software programs can be stored in the storage medium that can read, like CD or hard disk etc.
The above is merely preferred embodiment of the present invention, and is in order to restriction the present invention, not all within spirit of the present invention and principle, any modification of being done, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (4)
1. control the method that message is transmitted for one kind, it is characterized in that said method comprises:
Divide first broadcast domain and second broadcast domain; Said first broadcast domain comprises the public network side and inserts the side total interface; Said second broadcast domain comprises said public network side total interface;
On said public network side total interface, preserve said first broadcast domain sign, on said access side total interface, preserve said second broadcast domain sign;
Reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon, obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign;
According to said corresponding relation, generate the corresponding forwarding table of medium access control item of said broadcast domain sign, and the interface in the forwarding table of medium access control item of said broadcast domain sign correspondence is set to the black hole interface;
Said reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon; Obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign, specifically comprise:
When said public network side interface reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and said first broadcast domain sign; First broadcast domain sign in the said corresponding relation is mapped as second broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said second broadcast domain sign; Or,
When said access side interface reception E-Packets; Said access side interface is received the corresponding relation that the source medium access control address learning that E-Packets obtains said source Media Access Control address, receiving interface and said second broadcast domain sign; Said second broadcast domain sign in the corresponding relation of said source Media Access Control address, receiving interface and said second broadcast domain sign is mapped as said first broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said first broadcast domain sign.
2. the method that control message as claimed in claim 1 is transmitted; It is characterized in that; Said method also comprises: receives when E-Packeting, and the broadcast domain sign corresponding according to the interface that receives said message, the forwarding table of medium access control of searching said broadcast domain sign correspondence carries out message and transmits.
3. control the equipment that message is transmitted for one kind, it is characterized in that said equipment comprises:
Divide module, be used to divide first broadcast domain and second broadcast domain; Said first broadcast domain comprises said public network side and inserts the side total interface; Said second broadcast domain comprises said public network side total interface;
Preserve module, be used on said public network side total interface, preserving said first broadcast domain sign, on said access side total interface, preserve said second broadcast domain sign;
Receiver module is used for reception and E-Packets;
Mapping block; Be used for when said receiver module receive E-Packet after; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and broadcast domain sign; And the broadcast domain in said corresponding relation sign shone upon, obtain shining upon the corresponding source Media Access Control address forwarding-table item of back broadcast domain sign;
Module is set; Be used for when said mapping block is learnt the corresponding relation of said source Media Access Control address, receiving interface and said broadcast domain sign; Generate the corresponding forwarding table of medium access control item of said broadcast domain sign, and the interface in the forwarding table of medium access control item of said broadcast domain sign correspondence is set to the black hole interface;
Said mapping block specifically comprises:
First map unit; Be used for when said public network side interface reception E-Packets; The said source medium access control address learning that E-Packets is obtained the corresponding relation of said source Media Access Control address, receiving interface and said first broadcast domain sign; First broadcast domain sign in the said corresponding relation is mapped as second broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said second broadcast domain sign;
Second map unit; Be used for when said access side interface reception E-Packets; Said access side interface is received the corresponding relation that the source medium access control address learning that E-Packets obtains said source Media Access Control address, receiving interface and said second broadcast domain sign; Said second broadcast domain sign in the corresponding relation of said source Media Access Control address, receiving interface and said second broadcast domain sign is mapped as said first broadcast domain sign, generates the corresponding source Media Access Control address forwarding-table item of said first broadcast domain sign.
4. the equipment that control message as claimed in claim 3 is transmitted; It is characterized in that; Said equipment comprises that also forwarding module is used for according to receiving the corresponding broadcast domain sign of the said interface that E-Packets, and the forwarding table of medium access control of searching said broadcast domain sign correspondence carries out message and transmits.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2007103043526A CN101217463B (en) | 2007-12-27 | 2007-12-27 | Method and device for controlling message forwarding |
PCT/CN2008/073131 WO2009086757A1 (en) | 2007-12-27 | 2008-11-20 | Method and device for controlling message forwarding |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2007103043526A CN101217463B (en) | 2007-12-27 | 2007-12-27 | Method and device for controlling message forwarding |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101217463A CN101217463A (en) | 2008-07-09 |
CN101217463B true CN101217463B (en) | 2012-04-18 |
Family
ID=39623826
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2007103043526A Expired - Fee Related CN101217463B (en) | 2007-12-27 | 2007-12-27 | Method and device for controlling message forwarding |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101217463B (en) |
WO (1) | WO2009086757A1 (en) |
Families Citing this family (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101217463B (en) * | 2007-12-27 | 2012-04-18 | 华为技术有限公司 | Method and device for controlling message forwarding |
CN101494610B (en) * | 2009-03-12 | 2011-06-22 | 福建星网锐捷网络有限公司 | Method for processing message and switch |
CN101616082B (en) * | 2009-07-29 | 2011-09-07 | 杭州华三通信技术有限公司 | Method for message processing in VPLS service network and device |
CN102137108A (en) * | 2011-03-16 | 2011-07-27 | 华为技术有限公司 | Method for message registration and exchanger |
CN102308539A (en) * | 2011-07-08 | 2012-01-04 | 华为技术有限公司 | Method and device of fast shift of forwarding port |
WO2013168737A1 (en) | 2012-05-09 | 2013-11-14 | 日本電気株式会社 | Communication system, control device, communication method, and program |
CN102811173B (en) * | 2012-07-26 | 2015-12-02 | 杭州华三通信技术有限公司 | A kind of MAC address learning method and apparatus |
CN102801625B (en) * | 2012-08-17 | 2016-06-08 | 杭州华三通信技术有限公司 | A kind of method of heterogeneous network double layer intercommunication and equipment |
CN102916877B (en) * | 2012-09-19 | 2015-06-17 | 华为技术有限公司 | Method and device for setting up black hole media access control (MAC) forwarding table |
CN103401782B (en) * | 2013-07-24 | 2017-04-05 | 杭州华三通信技术有限公司 | A kind of MAC Address synchronous method and equipment |
CN104065571B (en) * | 2014-06-05 | 2017-11-03 | 福建星网锐捷网络有限公司 | A kind of broadcasting packet processing method, apparatus and system |
CN106850388B (en) * | 2017-02-27 | 2020-04-03 | 迈普通信技术股份有限公司 | Method and device for forwarding message by VPLS network |
CN111541610A (en) * | 2020-04-21 | 2020-08-14 | 北京天融信网络安全技术有限公司 | Communication method, communication device, network equipment and computer readable storage medium |
CN111817958B (en) * | 2020-06-10 | 2023-04-07 | 新华三信息安全技术有限公司 | Message forwarding method and network equipment |
CN113472655B (en) * | 2021-06-18 | 2023-06-13 | 新华三信息安全技术有限公司 | Method and device for managing two-layer forwarding table items |
CN115941383B (en) * | 2022-11-28 | 2023-12-22 | 北京神经元网络技术有限公司 | Network domain distribution method, device and equipment for broadband field bus multi-domain switching system |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1538685A (en) * | 2003-10-23 | 2004-10-20 | 港湾网络有限公司 | Method of isolation of bilayer VLAN port |
CN1809032A (en) * | 2006-02-20 | 2006-07-26 | 杭州华为三康技术有限公司 | Method of dynamically learning address on MAC layer |
CN101056267A (en) * | 2007-05-15 | 2007-10-17 | 杭州华三通信技术有限公司 | Layer 2 forwarding method and forwarding device |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6208649B1 (en) * | 1998-03-11 | 2001-03-27 | Cisco Technology, Inc. | Derived VLAN mapping technique |
CN1277378C (en) * | 2002-12-11 | 2006-09-27 | 华为技术有限公司 | Two-layer message isolating method |
US8352637B2 (en) * | 2003-09-23 | 2013-01-08 | Hewlett-Packard Development Company, L.P. | Techniques for resolving network connectivity |
US20070177597A1 (en) * | 2006-02-02 | 2007-08-02 | Yu Ju | Ethernet connection-based forwarding process |
CN101217463B (en) * | 2007-12-27 | 2012-04-18 | 华为技术有限公司 | Method and device for controlling message forwarding |
-
2007
- 2007-12-27 CN CN2007103043526A patent/CN101217463B/en not_active Expired - Fee Related
-
2008
- 2008-11-20 WO PCT/CN2008/073131 patent/WO2009086757A1/en active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1538685A (en) * | 2003-10-23 | 2004-10-20 | 港湾网络有限公司 | Method of isolation of bilayer VLAN port |
CN1809032A (en) * | 2006-02-20 | 2006-07-26 | 杭州华为三康技术有限公司 | Method of dynamically learning address on MAC layer |
CN101056267A (en) * | 2007-05-15 | 2007-10-17 | 杭州华三通信技术有限公司 | Layer 2 forwarding method and forwarding device |
Also Published As
Publication number | Publication date |
---|---|
WO2009086757A1 (en) | 2009-07-16 |
CN101217463A (en) | 2008-07-09 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101217463B (en) | Method and device for controlling message forwarding | |
CN101877671B (en) | Sending method of mirror image message, switch chip and Ethernet router | |
CN103259725B (en) | Messaging method and network equipment | |
EP1919127B1 (en) | A data packet transmission method and a lan switch device based on the vlan | |
CN101808042B (en) | Access method and device of multiprotocol label switching double-layer virtual private network | |
CN102611634A (en) | IP (Internet protocol) network access method and edge device | |
CN102123106B (en) | MAC (Multi-Access Computer) addresses learning method and device in virtual private local area network service (VPLS) network | |
CN103685006A (en) | Packet forwarding method for edge device and edge device | |
CN100568853C (en) | Layer 2 forwarding method and forwarding unit | |
WO2007135666A3 (en) | Mac address learning in a distributed bridge | |
CN104869081B (en) | MESSAGE EXCHANGE processing method, business board and internet exchange system | |
CN102347889B (en) | Message forwarding method, system and device in H-VPLS (Hierarchical Virtual Private local area network service) | |
CN102811173B (en) | A kind of MAC address learning method and apparatus | |
CN101924699B (en) | Message forwarding method, system and provider edge equipment | |
WO2015127643A1 (en) | Method and communication node for learning mac address in a layer-2 communication network | |
CN106209638A (en) | From VLAN to the message forwarding method of virtual expansible LAN and equipment | |
CN101572655A (en) | Method and equipment for port isolation | |
CN107800549A (en) | The method and apparatus that multi-tenant facility environment MDC is realized in port based on switching equipment | |
CN100559772C (en) | Mixed virtual private network system and backbone network edge apparatus and collocation method thereof | |
JP6887523B2 (en) | MAC address synchronization | |
CN102394825B (en) | Method and device for processing message | |
US20080175254A1 (en) | Method of learning address in Virtual LAN system | |
CN101197760A (en) | User grouping intercommunication/isolation device in virtual special network service | |
CN104253751B (en) | A kind of message transmitting method and equipment based on multi-role host | |
CN102035659A (en) | Method and device for broadcasting messages in domain dividing process |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20120418 Termination date: 20191227 |
|
CF01 | Termination of patent right due to non-payment of annual fee |