[go: up one dir, main page]

CN101052207A - Realizing method and system for movable virtual special net - Google Patents

Realizing method and system for movable virtual special net Download PDF

Info

Publication number
CN101052207A
CN101052207A CNA2006100671444A CN200610067144A CN101052207A CN 101052207 A CN101052207 A CN 101052207A CN A2006100671444 A CNA2006100671444 A CN A2006100671444A CN 200610067144 A CN200610067144 A CN 200610067144A CN 101052207 A CN101052207 A CN 101052207A
Authority
CN
China
Prior art keywords
edge device
provider edge
mobile
provider
user equipment
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2006100671444A
Other languages
Chinese (zh)
Other versions
CN101052207B (en
Inventor
张宏科
程钢
朱红
张晖
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Beijing Jiaotong University
Original Assignee
Huawei Technologies Co Ltd
Beijing Jiaotong University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd, Beijing Jiaotong University filed Critical Huawei Technologies Co Ltd
Priority to CN2006100671444A priority Critical patent/CN101052207B/en
Priority to PCT/CN2007/000525 priority patent/WO2007112645A1/en
Publication of CN101052207A publication Critical patent/CN101052207A/en
Application granted granted Critical
Publication of CN101052207B publication Critical patent/CN101052207B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种可移动虚拟专用网的实现方法:第一用户设备通过第一提供商边缘设备向第二提供商边缘设备发布路由信息;第二用户设备通过第二提供商边缘设备获得所述路由信息;第二提供商边缘设备查询第二用户设备是否有新标签,如果有,表示第二用户设备为移动子网,则所述移动子网通过第三提供商边缘设备与所述第一用户设备进行数据传输;否则,表示第二用户设备为移动主机,则移动主机通过第二提供商边缘设备与所述第一用户设备进行数据传输。本发明还公开了一种可移动虚拟专用网。本发明提出了一种使MPLS骨干网与移动子网有机结合的BGP/MPLS VPN移动性支持的解决方案,解决了现有技术中不能支持虚拟专用网移动性的缺陷。

The invention discloses a method for implementing a mobile virtual private network: a first user equipment publishes routing information to a second provider edge device through a first provider edge device; the second user equipment obtains the routing information through the second provider edge device The above routing information; the second provider edge device inquires whether the second user equipment has a new label, and if so, it indicates that the second user equipment is a mobile subnet, and the mobile subnet communicates with the first provider edge device through the third provider edge device A user equipment performs data transmission; otherwise, it means that the second user equipment is a mobile host, and the mobile host performs data transmission with the first user equipment through the second provider edge device. The invention also discloses a mobile virtual private network. The invention proposes a BGP/MPLS VPN mobility support solution that organically combines the MPLS backbone network and the mobile subnet, and solves the defect that the virtual private network cannot support the mobility in the prior art.

Description

A kind of implementation method of movable virtual special net and system
Technical field
The present invention relates to the Virtual Private Network field, relate in particular to a kind of implementation method and system of movable virtual special net.
Background technology
VPN (Virtual Private Network, Virtual Private Network) technology is meant in the network that the common network service provider is provided and sets up dedicated network that user data is propagated in public network by the passage of a safety.VPN can allow the business user enjoy fail safe, priority, ease of manageability and the reliability the same with this user's dedicated network, has also reduced commercial expense simultaneously, and therefore, VPN becomes the development trend of enterprise network.
Wherein, MPLS (MultiProtocol Label Switching, multiprotocol label switching) VPN technologies are merit attention most in the various solutions of VPN a kind of, comprise three layers of MPLS VPN and two layers of MPLS VPN, described three layers of MPLS VPN have comprised BGP (Border GatewayProtocol again, Border Gateway Protocol)/MPLS VPN and two kinds of implementations of VR (Virtual Router, virtual router) VPN.MPLS offers label of each IP packet, and this label and IP data envelope are loaded on new MPLS packet, determines the transmission path and the priority of IP packet thus; And with the router of MPLS compatibility, can before the IP packet is transmitted by respective paths, only read the packet header label of this MPLS packet, need not go to read the information such as IP address in each IP packet again, so the exchange forwarding speed of packet is accelerated greatly.
In BGP/MPLS VPN, MBGP (MultiProtocol Border Gateway Protocol, the multi-protocols extending boundary gateway protocol) is used for distributing route at service provider backbone, MPLS is used for transmitting packet at backbone network, at PE (Provider Edge, provider's edge device) sets up different VRF (Virtual Route Forwarding for different VPN users on the router, virtual routing forwarding), and then formation MPLS transmits, the bearing capacity of the multi-protocols expansion by bgp protocol is transmitted member relation and the reachability information of VPN, realizes that between VPN user route is isolated and announcement, transmit Business Stream, allow the service provider to use public network that the VPN service of brand-new type is provided as the user.When original VPN network all functions are provided, strong QoS can also be provided (Quality Of Service, service quality) ability has reliability height, safe, characteristics such as extended capability is strong, control strategy is flexible and managerial ability is powerful.
Day by day ripe along with Next Generation Internet network standard I Pv6 (Internet Protocol Version 6, Internet protocol edition 6) had increasing manufacturer that support to the IPv6 network is provided.When each website among the VPN supported that all an IPv6 and an IPv6 interface and subinterface by PE are connected to service provisioning merchant backbone network, VPN herein promptly referred to IPv6 VPN.Wherein, BGP and extended attribute thereof are used to describe the route that IPv6 VPN website links to each other with other IPv6 VPN website by pe router.PE is by setting up reachability information and the forwarding information that VRF safeguards each IPv6VPN respectively.
In IPv6, allow each IPv6 VPN that its privately owned IPv6 address space is arranged, this means that a given address table is shown in the different system in the different VPN.This is to realize by a kind of new address family, i.e. VPN-IPv6 address family.Wherein, there are 24 bytes the VPN-IPv6 address, is made up of the RD (Route Distinguisher, route-distinguisher) of 8 bytes and the IPv6 address of 16 bytes.If two VPN use same IPv6 address prefix (representing different physical systems), PE translates into unique VPN-IPv6 address prefix to VPN by different RD, and then guarantee when two different VPN use identical address, this address will be loaded into two diverse routes, respectively corresponding each VPN.Wherein, the VPN-IPv6 address is always thought unique by BGP, and bgp extended community permission BGP carries routing iinformation and the MPLS label information from the address family of expansion.
Except encapsulating by the MPLS label switched path, the BGP/MPLS vpn solution also is extended to permission and comprises that by other tunneling technique gre tunneling, IP-in-IP tunnel and IPsec tunnel encapsulate.Equally, also allow to comprise that by MPLS LSP and other tunneling technique gre tunneling, IP-in-IP tunnel or IPsec tunnel realize the support to IPv6 VPN service.
In addition, replace IPv4 (Internet Protocol Version 4 at IPv6, the Internet protocol edition 4) in the process, because the extensive use of existing IPv4 network, will there be very long a period of time in the IPv4 network, wherein IPv4 network environment IPv6 network environment is basic identical, and just the identification message of the VPN of IPv4 is different with the formation of the VPN identification message of IPv6.
Along with the continuous evolution and the Next Generation Internet network agreement of Internet technology are better supported network mobility, people will improve day by day to the mobility demand of agreement, equipment in the network, its ambulant support is also had higher utility, but existing BGP/MPLS VPN technologies can't solve its user network mobility is supported this problem.
Summary of the invention
The problem to be solved in the present invention provides a kind of implementation method and system of movable virtual special net, so that the defective that can't provide the user network mobility to support in the prior art to be provided.
For addressing the above problem, the invention provides a kind of implementation method of movable virtual special net, may further comprise the steps:
A, first subscriber equipment are issued routing iinformation by first provider's edge device to second provider's edge device;
B, second subscriber equipment obtain described routing iinformation by described second provider's edge device;
C, described second provider's edge device is inquired about second subscriber equipment whether new label is arranged, if having, represents that second subscriber equipment is a mobile subnetwork, then changes step e; Otherwise, represent that second subscriber equipment is a mobile host, then changes step D;
D, described mobile host carry out transfer of data by second provider's edge device and described first subscriber equipment;
E, described mobile subnetwork carry out transfer of data by the 3rd provider's edge device and described first subscriber equipment.
The forming process of new label comprises described in the step C:
C1, mobile subnetwork move to the 3rd provider edge device controlled area from the second provider edge device controlled area, receive the Agent Advertisement information that the 3rd provider's edge device sends;
C2, described mobile subnetwork are according to the address prefix information co-located care-of address in the Agent Advertisement information;
C3, the 3rd provider's edge device are that mobile subnetwork distributes a multi-protocols packet label, and bind with Care-of Address, form new label.
Also comprise after forming new label:
C4, mobile subnetwork send registration information by the 3rd provider's edge device to second provider's edge device;
C5, second provider's edge device send the binding response message by the 3rd provider's edge device to mobile subnetwork.
The described registration information of step C4 comprises Binding Update information and MP-BGP MP-BGP routing update information.
Also comprise between step C4 and the step C5:
Second provider's edge device judges by Binding Update information whether itself is the home agent of this mobile subnetwork, if then Care-of Address and the new label with second subscriber equipment writes route forwarding table, otherwise, abandon this Binding Update information.
Among the step C1, mobile subnetwork obtains Agent Advertisement information from the 3rd provider's edge device by Internet control message protocol.
The 3rd provider's edge device and second provider's edge device regularly send routing broadcast information, have the prefix addresses information on the link-local in this information, and second subscriber equipment is determined the position of second subscriber equipment according to this prefix addresses information.
The second subscriber equipment broadcast router solicited message receives that provider's edge device of this solicited message is all replied this information, makes second subscriber equipment know position own.
Step D further comprises:
D11, mobile host send packet to second customer edge;
D12, second customer edge are forwarded to second provider's edge device with this packet;
D13, second provider's edge device judge by the inquiry virtual routing forwarding whether the destination address in this packet mates, if coupling is then changeed step D14, otherwise, abandon this packet;
D14, second provider's edge device are inquired about next jumping and departure interface, and distribute top label;
D15, first provider's edge device receive this packet by backbone network;
D16, first subscriber equipment obtain this packet from first provider's edge device.
Step D16 further comprises:
D161, first provider's edge device inquire first subscriber equipment by bottom label;
D162, first subscriber equipment receive this packet by the IP layer.
Step e further comprises:
E11, first subscriber equipment send to second provider's edge device by backbone network with packet;
E12, the new label of second provider edge device utilization send to the 3rd provider's edge device with packet;
E13, the 3rd provider's edge device are transmitted this packet to mobile subnetwork by the inquiry virtual routing forwarding.
Step e further comprises:
E21, mobile subnetwork send to the 3rd provider's edge device with packet;
E22, the 3rd provider's edge device by the inquiry virtual routing forwarding judge this packet whether with the first subscriber equipment matching destination address, if coupling is then changeed step e 23, otherwise, change step e 25;
E23, the 3rd provider's edge device are forwarded to first provider's edge device with packet, and inform new label;
E24, first provider's edge device are transmitted packet to first subscriber equipment, and upgrade the information among the virtual routing forwarding VRF;
E25, the 3rd provider's edge device are forwarded to second provider's edge device with packet;
E26, second provider's edge device are inquired about the matching destination address clauses and subclauses that whether have among the virtual routing forwarding VRF with first subscriber equipment, if having, then packet are forwarded to first provider's edge device, and inform new label; Otherwise, abandon this packet.
Steps A further comprises:
A1, first provider's edge device obtain the routing iinformation of first subscriber equipment;
A2, first provider's edge device write virtual routing forwarding with the address prefix in the routing iinformation of first subscriber equipment;
A3, first provider's edge device distribute multi-protocols packet label bottom label for this routing iinformation.
14, as the implementation method of movable virtual special net as described in the claim 13, it is characterized in that when first subscriber equipment was main frame, steps A 1 further comprised:
A11, first customer edge obtain the address information of first main frame;
A12, first provider's edge device obtain the routing iinformation of first customer edge.
First customer edge is by manual configuration or the automatic address information of finding to obtain first main frame.
Step B further comprises:
B1, second provider's edge device obtain the routing iinformation of first subscriber equipment from first provider's edge device by MP-BGP;
B2, second provider's edge device compare this routing iinformation and virtual routing forwarding input policing, if coupling is then changeed step B3, otherwise abandoned this routing iinformation;
B3, second provider's edge device write the Virtual Private Network routing information base with this routing iinformation;
B4, second subscriber equipment obtain this routing iinformation from second provider's edge device.
Comprise in the MP-BGP information: the loop-back address of network address prefix, first provider's edge device is as the multi-protocols packet label that next is jumped, routing iinformation is assigned with of Border Gateway Protocol and the route target community of this routing iinformation.
When mobile subnetwork moves back to former this locality when acting on behalf of, then mobile subnetwork can be received the proxy announcement message that second provider's edge device sends, thereby judge it and returned link-local, mobile subnetwork is just nullified its present care-of address and new label to second provider's edge device.
First subscriber equipment and the communication process that is arranged in mobile subnetwork, when mobile subnetwork moves to the 4th provider edge device controlled area from the 3rd provider edge device controlled area, first subscriber equipment sends to the 3rd provider's edge device with packet, adopts the overtime re-transmission mode of transmission control protocol layer to carry out transfer of data.
Mobile subnetwork can be crossed provider's edge device of communicating by letter to all and its foundation and send a message of upgrading its Care-of Address and label;
First provider's edge device obtains upgrading after this message the content of virtual routing forwarding;
First provider's edge device mails to the 4th provider's edge device with the packet of first subscriber equipment;
The 4th provider's edge device sends this packet to mobile subnetwork.
The present invention also provides a kind of realization system of movable virtual special net, comprise: backbone network, first customer edge and mobile host, wherein comprise first provider's edge device, second provider's edge device in the backbone network, first customer edge and mobile host belong to same Virtual Private Network;
First subscriber equipment is issued routing iinformation by first provider's edge device in the backbone network to second provider's edge device; Second subscriber equipment obtains described routing iinformation by described second provider's edge device; Described mobile host carries out transfer of data by second provider's edge device and first provider's edge device and described first subscriber equipment.
Comprise: backbone network, first customer edge and mobile subnetwork, wherein comprise first provider's edge device, second provider's edge device and the 3rd in the backbone network for merchant's edge device, described equipment belongs to same Virtual Private Network;
When mobile subnetwork is moved to the 3rd provider edge device control regional by the control area of second provider's edge device, will receive the Agent Advertisement information that the 3rd provider's edge device sends; Mobile subnetwork is according to the address prefix information co-located care-of address in the Agent Advertisement information; The 3rd provider's edge device is that mobile subnetwork distributes a multi-protocols packet label, and binds with Care-of Address, forms new label;
When first subscriber equipment when mobile subnetwork sends packet,
First subscriber equipment sends to second provider's edge device by first provider's edge device in the backbone network with packet; The new label of second provider edge device utilization sends to the 3rd provider's edge device with packet; The 3rd provider's edge device is transmitted this packet to mobile subnetwork by the inquiry virtual routing forwarding;
When mobile subnetwork when first subscriber equipment sends packet,
Mobile subnetwork sends to the 3rd provider's edge device with packet; The 3rd provider's edge device judge this packet whether with the first subscriber equipment matching destination address, if coupling, then the 3rd provider's edge device is forwarded to first provider's edge device with packet, and inform new label, first provider's edge device is transmitted packet to first subscriber equipment, and upgrades the information in the virtual routing forwarding; Otherwise, the 3rd provider's edge device is forwarded to second provider's edge device with packet, whether matching destination address clauses and subclauses with first subscriber equipment are arranged in second provider edge device inquiry virtual routing forwarding, if have, then packet is forwarded to first provider's edge device, and informs new label; Otherwise, abandon this packet.
Also comprise the 4th provider's edge device, first subscriber equipment and the communication process that is arranged in mobile subnetwork, when mobile subnetwork moved to the 4th provider edge device controlled area from the 3rd provider edge device controlled area, mobile subnetwork can be crossed provider's edge device of communicating by letter to all and its foundation and send a message of upgrading its Care-of Address and label; First provider's edge device obtains upgrading after this message the content of virtual routing forwarding; First provider's edge device mails to the 4th provider's edge device with the packet of first subscriber equipment; The 4th provider's edge device sends this packet to mobile subnetwork.
Compared with prior art, the present invention has the following advantages:
The present invention is directed to the network configuration that MPLS backbone network platform and user network are formed, relevant Virtual Private Network equipment and corresponding data packet transmission flow process are improved, proposed the solution that a kind of MPLS of making backbone network and mobile subnetwork realize that the BGP/MPLS VPN mobility of combination is supported, having solved can not the ambulant defective of virtual support private network in the prior art.
The present invention realizes that the subnet locomotive function can be applied to intra-company and hold a meeting under mobile environment such as train, steamer, All hosts in the whole like this mobile environment has just constituted a mobile website at this moment, promptly formed an in-company mobile subnetwork, wherein just having multiple host need keep getting in touch at any time at other website of longer following period of time and company.
The present invention does not need upgrading hardware, only needs the software of PE equipment is improved simple, the easy row of configuration mode.In addition, structure of the present invention meets popular mobile subnetwork system at present, is with good expansibility and marketing.
Description of drawings
Fig. 1 is the implementation method flow chart of movable virtual special net in a kind of specific embodiment of the present invention;
Fig. 2 is the realization system construction drawing of movable virtual special net in a kind of specific embodiment of the present invention;
Fig. 3 is a VPN routing iinformation issue flow chart in a kind of specific embodiment of the present invention;
Fig. 4 is the data transport stream journey figure of a kind of specific embodiment in Fig. 2 system;
Fig. 5 is the realization system construction drawing of movable virtual special net in another specific embodiment of invention;
Fig. 6 is that the Care-of Address and the new label of a specific embodiment in Fig. 5 system forms flow chart;
Fig. 7 is that the fixed host computer of a specific embodiment in Fig. 5 system sends data flowchart to mobile subnetwork;
Fig. 8 is that the mobile subnetwork of a specific embodiment in Fig. 5 system sends data flowchart to fixed host computer.
Embodiment
Following the present invention will be in conjunction with the accompanying drawings, and optimum implementation of the present invention is described in detail.
The flow process of the implementation method of movable virtual special net of the present invention may further comprise the steps as shown in Figure 1:
Step s101, first subscriber equipment is issued routing iinformation by first provider's edge device to second provider's edge device.
Step s102, second subscriber equipment obtains described routing iinformation by described second provider's edge device.
Step s103, whether described second provider's edge device is inquired about second subscriber equipment new label, if having, represents that second subscriber equipment is a mobile subnetwork, then changes step s105; Otherwise, represent that second subscriber equipment is a mobile host, then changes step s104.The forming process of new label comprises: mobile subnetwork moves to the 3rd provider edge device controlled area from the second provider edge device controlled area, receives the Agent Advertisement information that the 3rd provider's edge device sends; Described mobile subnetwork is according to the address prefix information co-located care-of address in the Agent Advertisement information; The 3rd provider's edge device is that mobile subnetwork distributes a multi-protocols packet label, and binds with Care-of Address, forms new label.
Step s104, described mobile host carries out transfer of data by second provider's edge device and described first subscriber equipment.
Step s105, described mobile subnetwork carries out transfer of data by the 3rd provider's edge device and described first subscriber equipment.
The present invention is equally applicable to the IPv4 network environment, just the identification message of the VPN of IPv4 is different with the formation of the VPN identification message of IPv6, in mobile IPv 4, mobile node is told home agent by the log-on message that carries in the UDP/IP bag with its Care-of Address, and the mobile node in the mobile IP v 6 notifies other nodes its Care-of Address with destination address option (Destination Options), make mobile node obtain the agreement difference that Agent Advertisement uses from the 3rd provider's edge device, similar on the flow process.Therefore, below only to describe under the IPv6 network environment.
Because for BGP/MPLS VPN, generally do not have the situation that has mobile device in its MPLS backbone network, thereby its mobility support mainly concentrates on two kinds of following situations: the one, realize to the mobility support under the IPv6 network environment that is: CE fixes, main frame moves in that each website of BGP/MPLS VPN is inner; The 2nd, main frame and each CE under each website all possess the mobility support under the IPv6 network environment, make that the whole website that links to each other with CE is that subnet has been realized locomotive function.Therefore specific embodiments of the invention also move from main frame and move two aspects with subnet and be described.
Inner realization of each website of BGP/MPLS VPN the mobility under the IPv6 network environment is realized system as shown in Figure 2, comprise: MPLS backbone network, website 1, website 2, website 3, website 4, CE1, CE2, CE3 and CE4, wherein, main frame 1 or CE1 are that first subscriber equipment, main frame 2 are second subscriber equipment; Backbone network comprises: PE1, PE2, P1, P2 and P3 have two virtual routing forwarding VRFA and VRFB respectively among PE1 and the PE2; Website 1 and website 2 belong to Virtual Private Network A, website 3 and website 4 and belong to Virtual Private Network B; Sub-district a and sub-district b are arranged among the CE2, and all P, PE and ce router are all fixed, and the main frame 2 in the website can move between sub-district a and sub-district b.Above-mentioned whole network is the territory of an IPv6, and wherein all devices is all supported IPv6.
At first carry out the issue of VPN routing iinformation,
Step s101 and step s102 further comprise as shown in Figure 3 among Fig. 1: CE1 by manual configuration or automatically mode such as discovery obtain the address information of main frame 1, then again oneself IPv6 route prefix is broadcast to PE1; PE1 obtains the routing iinformation of CE1 by route learning mechanism; PE1 writes virtual routing forwarding with the address prefix in the routing iinformation of main frame 1; Before this route of broadcasting, PE1 distributes multi-protocols packet label bottom label for this routing iinformation.PE2 obtains the routing iinformation of main frame 1 by MP-BGP broadcasting from PE1, and this broadcasting comprises: the VPN-IPv6 address prefix of this route, PE1 return the MPLS label that the address is assigned with as BGP next hop, this route, the route target community (being the route output policy) of this route VRF configuration; PE2 compares this routing iinformation and virtual routing forwarding input policing, if coupling, then PE2 writes Virtual Private Network IPv6 routing information base VPN-IPv6.RIB with this routing iinformation, and main frame 2 obtains this routing iinformation from PE2; Otherwise abandon this routing iinformation.
Step s104 further comprises as shown in Figure 4:
Will be as main frame 2 to main frame 1 issue vpn service, then earlier packet is sent to CE2, CE2 carries out the longest coupling routing inquiry, again this packet is forwarded to direct-connected PE2, PE2 inquires about corresponding VRF based on sub-interface, as destination address the coupling clauses and subclauses are arranged, then its next jumping of routing inquiry and departure sub-interface; PE2 distributes top label, arrives PE1 by the MPLS backbone network; Inquire corresponding C E1 at the PE1 place by bottom label, transmit by the IP layer then and wrap to CE1, table of query and routing is forwarded to main frame 1 again.
The mobility that whole website all is implemented under the IPv6 network environment in BGP/MPLS VPN realizes system as shown in Figure 5, comprise: MPLS backbone network, website 1, website 2, CE1 and CE2, wherein, main frame 1 or CE1 are that first subscriber equipment, CE2 are second subscriber equipment; Backbone network comprises: PE1, PE2, PE3, PE4, P1, P2 and P3 have virtual routing forwarding VRFA among PE1, PE2, PE3 and the PE4; Website 1 and website 2 belong to Virtual Private Network A; Above-mentioned whole network is the territory of an IPv6, and wherein all devices is all supported IPv6; All P, pe router are fixed, and All hosts in the website 2 and the CE2 corresponding with it all move, and make the whole website that links to each other with CE realize locomotive function.
The issue flow process of the VPN routing iinformation of this kind situation is identical with the issue flow process of mobile host, repeats no more here.
Suppose that whole website 2 is in mobile status.Each mobile host in the website 2 need not finished when leaving this locality or distinguishing more and go for couple in router AR respectively and to the work of home agent HA registration and so on this moment, remained when the host work that fix to get final product.The selected CE2 of present embodiment promptly is equivalent to MR (Mobile Router, mobile router) as the unified agent router of mobile site 2, finishes a series of activities that is similar to single MIP.
When website 2 when local (district) moves to other places (two districts), a fixing router to be arranged as HA (Home Agent, home agent) in this locality.Present embodiment selects PE2 as HA, selects PE3 as couple in router AR (Access Router, couple in router) simultaneously, and mobile subnetwork arrives the idiographic flow that communicates behind the other places as shown in Figure 6:
After website 2 moves to two districts by a district, CE2 receives the Agent Advertisement information that PE3 regularly sends, under the IPv6 network environment, CE2 finishes the router function of search by ICMPv6 router solicitation in the neighbor discovery mechanisms and router broadcast message, obtains Agent Advertisement information.PE3 and PE2 can regularly send routing broadcast message, wherein have the Prefix message on the link-local; Certainly, also can send router request message, receive that each router of this message all should be used the router broadcast acknowledgement messaging by CE2.CE2 learns that the website of oneself has moved on the foreign link after receiving its proxy announcement message, will be disposed automatically by the address according to this new address prefix information and obtain a Care-of Address.Obtain Care-of Address dual mode is arranged: passive address configuration automatically disposes automatically with the active address.This moment, PE3 can distribute a new MPLS label for CE2, and bound with its Care-of Address.
CE2 sends login request message by PE3 to its home agent PE2.This moment, CE2 need be with a mark<R in the Binding Update that is sent to the PE2 transmission 〉, to represent mobile router but not common mobile node.Also to comprise mobile network's prefix in the same Binding Update, can use for reference a kind of new mobility Header option that proposes among the NEMO and come this prefix message of load.Specific as follows: PE3 can find the CE2 address of affiliated PE2 originally by inquiring about corresponding VRFA after distributing new label for CE2.Then PE3 just is sent to PE2 with binding update messages and MP-BGP routing update message (comprising mark<R 〉, the Care-of Address of CE2 and new label etc.).
PE2 sends the binding response message by PE3 to CE2.Receive the binding update messages of CE2 as PE2 after, PE2 just can confirm its Binding Update, thereby and obtain Care-of Address and the new label of CE2 and write among the VRFA and the corresponding part of CE2, utilize MP-BGP to pass through the MPLS backbone network then and send the binding response message to CE2.After PE3 receives this response message, just the route of CE2 and new label binding will be led among its VRFA.
Owing to be in the IPv6 network environment, thereby CE2 has adopted the notice mode to come to notify its Care-of Address and new label (if in the IPv4 network environment, CE2 adopts the announcement mode to come to notify its Care-of Address and new label to other website of PE2 and VPNA simultaneously) to other website of PE2 and VPNA simultaneously.Wherein, notice has comprised Binding Update, has bound and reply and three kinds of type of messages of bind request, and they all are extension header that is placed on IPv6---in the optional header in destination.By adopting the destination address option in this IP header that the Care-of Address of CE2 is notified to PE2.Wherein bind request is: when the life span territory in the binding update messages that other website of VPNA had before been received wants expired, will send this message, come requirement CE2 to send to its new Binding Update, to obtain available Care-of Address and new label.
Suppose main frame 1 in the website 1 main frame issue vpn service in will the mobile subnetwork under CE2, idiographic flow as shown in Figure 7, main frame 1 is forwarded to PE2 by the MPLS backbone network with packet; PE2 inquires about its corresponding VRFA, find that CE2 has arrived the other places, so in table, inquired the new label of CE2 again, then same mode according to two-layer label has found PE3, PE3 is sent to CE2 by searching corresponding VRFA with bag, and CE2 inquires about corresponding routing table again and sends it to destination host.
When the mobile host among the CE2 will be when the main frame in the website 11 sends data, idiographic flow as shown in Figure 8, mobile host sends to CE2 by table of query and routing with packet, CE2 sends to PE3 by table of query and routing with this packet, PE3 inquires about corresponding VRFA, as destination address the coupling clauses and subclauses are arranged, then its next jumping of routing inquiry and departure sub-interface.Transmit bag to the destination by the MPLS backbone network again.In this process, CE2 can announce new label to PE1 by MP-BGP, after PE1 receives this message, corresponding VRFA is upgraded.Afterwards with website 2 in the communicate by letter link that just is sent to the representative of this label of mobile host, thereby this scheme has also been avoided the triangle routing issue that exists in NEMO.
When website 2 moved back to a district, then CE2 can receive the proxy announcement message that PE2 sends, and had returned home link thereby judge it, so CE2 just nullifies its present care-of address and new label to PE2, so just can work as stationary nodes again.
As at main frame 1 and the communication process that is arranged in the mobile node of website 2, website 2 has moved to another nonlocal three districts again from two districts, and this moment, main frame 1 just mail to a packet PE3, so at this moment, the mechanism of a kind of being called " overtime re-transmission " that can be by the TCP layer, promptly so long as in the scope of a<time<b (a, b can artificially limit), just think packet loss rather than think that network is obstructed and abandon the transmission of this bag is handled.And in this process, all when two districts and CE2 set up nodes in communication information and all can be recorded in it transmits, CE2 can send a message of upgrading its Care-of Address and label to these nodes, like this, PE1 will upgrade content corresponding among the VRFA after obtaining this message, then the bag with main frame 1 mails to PE4, thereby makes mobile host receive packet, has avoided packet loss that may bring owing to handover or the problem that manually retransmits.Wherein, CE2 is after confirming switching, should be immediately send binding update messages in two districts to main frame 1 and CN that all are got in touch with it, by the time after the business recovery of each CN and CE2, send Binding Update to PE2 again, embody the existing business of preferential assurance like this, then considered the service strategy of the foundation of new business.
The above only is a preferred implementation of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.

Claims (23)

1、一种可移动虚拟专用网的实现方法,其特征在于,包括以下步骤:1. A method for implementing a mobile virtual private network, comprising the following steps: A、第一用户设备通过第一提供商边缘设备向第二提供商边缘设备发布路由信息;A. The first user equipment publishes routing information to the second provider edge device through the first provider edge device; B、第二用户设备通过所述第二提供商边缘设备获得所述路由信息;B. The second user equipment obtains the routing information through the second provider edge device; C、所述第二提供商边缘设备查询第二用户设备是否有新标签,如果有,表示第二用户设备为移动子网,则转步骤E;否则,表示第二用户设备为移动主机,则转步骤D;C. The second provider edge device inquires whether the second user equipment has a new label, if yes, it means that the second user equipment is a mobile subnet, then go to step E; otherwise, it means that the second user equipment is a mobile host, then Go to step D; D、所述移动主机通过第二提供商边缘设备与所述第一用户设备进行数据传输;D. The mobile host performs data transmission with the first user equipment through the second provider edge device; E、所述移动子网通过第三提供商边缘设备与所述第一用户设备进行数据传输。E. The mobile subnet performs data transmission with the first user equipment through a third provider edge device. 2、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤C中所述新标签的形成过程包括:2. The method for implementing a mobile virtual private network according to claim 1, wherein the process of forming a new label in step C includes: C1、移动子网从第二提供商边缘设备控制区移动到第三提供商边缘设备控制区,收到第三提供商边缘设备发送的代理通告信息;C1. The mobile subnet moves from the second provider's edge device control area to the third provider's edge device control area, and receives the proxy notification information sent by the third provider's edge device; C2、所述移动子网根据代理通告信息中的地址前缀信息配置转交地址;C2. The mobile subnet configures a care-of address according to the address prefix information in the agent notification information; C3、第三提供商边缘设备为移动子网分配一个多协议分组标签,并与转交地址绑定,形成新标签。C3. The third provider edge device allocates a multi-protocol packet label to the mobile subnet, and binds it with the care-of address to form a new label. 3、如权利要求2所述可移动虚拟专用网的实现方法,其特征在于,形成新的标签后还包括:3. The implementation method of the mobile virtual private network as claimed in claim 2, characterized in that, after forming a new label, it also includes: C4、移动子网通过第三提供商边缘设备向第二提供商边缘设备发送注册请求信息;C4. The mobile subnet sends registration request information to the second provider edge device through the third provider edge device; C5、第二提供商边缘设备通过第三提供商边缘设备向移动子网发送绑定应答信息。C5. The second provider edge device sends the binding response information to the mobile subnet through the third provider edge device. 4、如权利要求3所述可移动虚拟专用网的实现方法,其特征在于,步骤C4所述注册请求信息包括绑定更新信息和多协议边界网关协议MP-BGP路由更新信息。4. The method for implementing a mobile virtual private network according to claim 3, wherein the registration request information in step C4 includes binding update information and multi-protocol border gateway protocol (MP-BGP) routing update information. 5、如权利要求3所述可移动虚拟专用网的实现方法,其特征在于,步骤C4和步骤C5之间还包括:5. The implementation method of the mobile virtual private network according to claim 3, characterized in that, between step C4 and step C5, it also includes: 第二提供商边缘设备通过绑定更新信息判断本身是否为该移动子网的家乡代理,如果是,则将第二用户设备的转交地址和新标签写入路由转发表,否则,丢弃该绑定更新信息。The second provider edge device judges whether it is the home agent of the mobile subnet through the binding update information, and if so, writes the care-of address and new label of the second user equipment into the routing and forwarding table, otherwise, discards the binding Update information. 6、如权利要求3所述可移动虚拟专用网的实现方法,其特征在于,步骤C1中,移动子网从第三提供商边缘设备通过Internet控制信息协议获得代理通告信息。6. The implementation method of the mobile virtual private network according to claim 3, characterized in that, in step C1, the mobile subnet obtains the agent announcement information from the third provider edge device through the Internet Control Information Protocol. 7、如权利要求6所述可移动虚拟专用网的实现方法,其特征在于,第三提供商边缘设备和第二提供商边缘设备定期发送路由广播信息,该信息中带有本地链路上的前缀地址信息,第二用户设备根据该前缀地址信息确定第二用户设备的位置。7. The implementation method of the mobile virtual private network according to claim 6, characterized in that, the third provider edge device and the second provider edge device periodically send routing broadcast information, and the information includes the information on the local link Prefix address information, the second user equipment determines the location of the second user equipment according to the prefix address information. 8、如权利要求6所述可移动虚拟专用网的实现方法,其特征在于,第二用户设备广播路由器请求信息,收到该请求信息的提供商边缘设备都应答该信息,使第二用户设备获知本身位置。8. The implementation method of a mobile virtual private network as claimed in claim 6, wherein the second user equipment broadcasts router request information, and all provider edge devices that receive the request information respond to the information, so that the second user equipment Know your location. 9、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤D进一步包括:9. The implementation method of a mobile virtual private network according to claim 1, wherein step D further comprises: D11、移动主机向第二用户边缘设备发送数据包;D11. The mobile host sends a data packet to the second user edge device; D12、第二用户边缘设备将该数据包转发至第二提供商边缘设备;D12. The second user edge device forwards the data packet to the second provider edge device; D13、第二提供商边缘设备通过查询虚拟路由转发表判断该数据包中的目的地址是否匹配,如果匹配,则转步骤D14,否则,丢弃该数据包;D13. The second provider's edge device judges whether the destination address in the data packet matches by querying the virtual routing forwarding table. If it matches, then go to step D14, otherwise, discard the data packet; D14、第二提供商边缘设备查询下一跳和出境接口,并分配顶部标签;D14. The second provider edge device queries the next hop and outbound interface, and assigns the top label; D15、第一提供商边缘设备通过骨干网接收该数据包;D15. The first provider edge device receives the data packet through the backbone network; D16、第一用户设备从第一提供商边缘设备获取该数据包。D16. The first user equipment obtains the data packet from the first provider edge device. 10、如权利要求9所述可移动虚拟专用网的实现方法,其特征在于,步骤D16进一步包括:10. The method for implementing a mobile virtual private network according to claim 9, wherein step D16 further comprises: D161、第一提供商边缘设备通过底部标签查询到第一用户设备;D161. The first provider edge device queries the first user equipment through the bottom label; D162、第一用户设备通过IP层接收该数据包。D162. The first user equipment receives the data packet through the IP layer. 11、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤E进一步包括:11. The implementation method of a mobile virtual private network according to claim 1, characterized in that step E further comprises: E11、第一用户设备通过骨干网将数据包发送到第二提供商边缘设备;E11. The first user equipment sends the data packet to the second provider edge device through the backbone network; E12、第二提供商边缘设备利用新标签将数据包发送到第三提供商边缘设备;E12. The second provider edge device uses the new label to send the data packet to the third provider edge device; E13、第三提供商边缘设备通过查询虚拟路由转发表转发该数据包到移动子网。E13. The third provider edge device forwards the data packet to the mobile subnet by querying the virtual routing and forwarding table. 12、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤E进一步包括:12. The implementation method of a mobile virtual private network according to claim 1, wherein step E further comprises: E21、移动子网将数据包发送到第三提供商边缘设备;E21. The mobile subnet sends the data packet to the edge device of the third provider; E22、第三提供商边缘设备通过查询虚拟路由转发表判断该数据包是否与第一用户设备目的地址匹配,如果匹配,则转步骤E23,否则,转步骤E25;E22. The third provider edge device judges whether the data packet matches the destination address of the first user equipment by querying the virtual routing and forwarding table. If it matches, go to step E23; otherwise, go to step E25; E23、第三提供商边缘设备将数据包转发到第一提供商边缘设备,并告知新标签;E23. The third provider edge device forwards the data packet to the first provider edge device, and notifies the new label; E24、第一提供商边缘设备转发数据包到第一用户设备,并更新虚拟路由转发表VRF中的信息;E24. The first provider edge device forwards the data packet to the first user equipment, and updates the information in the virtual routing and forwarding table VRF; E25、第三提供商边缘设备将数据包转发到第二提供商边缘设备;E25. The third provider edge device forwards the data packet to the second provider edge device; E26、第二提供商边缘设备查询虚拟路由转发表VRF中是否有与第一用户设备的目的地址匹配条目,如果有,则将数据包转发到第一提供商边缘设备,并告知新标签;否则,丢弃该数据包。E26. The second provider edge device queries whether there is an entry matching the destination address of the first user equipment in the virtual routing and forwarding table VRF, and if so, forwards the data packet to the first provider edge device and notifies the new label; otherwise , discarding the packet. 13、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤A进一步包括:13. The implementation method of a mobile virtual private network according to claim 1, wherein step A further comprises: A1、第一提供商边缘设备获得第一用户设备的路由信息;A1. The first provider edge device obtains the routing information of the first user equipment; A2、第一提供商边缘设备将第一用户设备的路由信息中的地址前缀写入虚拟路由转发表;A2. The first provider edge device writes the address prefix in the routing information of the first user equipment into the virtual routing forwarding table; A3、第一提供商边缘设备为该路由信息分配多协议分组标签底部标签。A3. The first provider edge device assigns the multi-protocol packet label bottom label to the routing information. 14、如权利要求13所述可移动虚拟专用网的实现方法,其特征在于,当第一用户设备为主机时,步骤A1进一步还包括:14. The method for implementing a mobile virtual private network according to claim 13, wherein when the first user equipment is the host, step A1 further includes: A11、第一用户边缘设备获得第一主机的地址信息;A11. The first user edge device obtains the address information of the first host; A12、第一提供商边缘设备获得第一用户边缘设备的路由信息。A12. The first provider edge device obtains the routing information of the first user edge device. 15、如权利要求14所述可移动虚拟专用网的实现方法,其特征在于,第一用户边缘设备通过手工配置或自动发现获得第一主机的地址信息。15. The implementation method of the mobile virtual private network according to claim 14, wherein the first user edge device obtains the address information of the first host through manual configuration or automatic discovery. 16、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,步骤B进一步包括:16. The implementation method of a mobile virtual private network according to claim 1, wherein step B further comprises: B1、第二提供商边缘设备通过多协议边界网关协议从第一提供商边缘设备获得第一用户设备的路由信息;B1. The second provider edge device obtains the routing information of the first user equipment from the first provider edge device through a multi-protocol border gateway protocol; B2、第二提供商边缘设备将该路由信息与虚拟路由转发表输入策略比较,如果匹配,则转步骤B3,否则丢弃该路由信息;B2. The second provider edge device compares the routing information with the input policy of the virtual routing forwarding table, and if they match, go to step B3, otherwise discard the routing information; B3、第二提供商边缘设备将该路由信息写入虚拟专用网路由信息库;B3. The second provider edge device writes the routing information into the virtual private network routing information database; B4、第二用户设备从第二提供商边缘设备获取该路由信息。B4. The second user equipment acquires the routing information from the second provider edge device. 17、如权利要求16所述可移动虚拟专用网的实现方法,其特征在于,多协议边界网关协议信息中包括:网络地址前缀、第一提供商边缘设备的环回地址作为边界网关协议的下一跳、路由信息被分配的多协议分组标签和该路由信息的路由目标属性。17. The implementation method of the mobile virtual private network according to claim 16, characterized in that the multi-protocol border gateway protocol information includes: network address prefix, loopback address of the first provider edge device as the border gateway protocol One hop, the multi-protocol packet label assigned to the routing information, and the routing target attribute of the routing information. 18、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,当移动子网移动回原本地代理时,则移动子网会收到第二提供商边缘设备发出的代理通告消息,从而判断出它已返回本地链路,移动子网就向第二提供商边缘设备注销其当前的转交地址和新标签。18. The implementation method of the mobile virtual private network according to claim 1, characterized in that, when the mobile subnet moves back to the original local agent, the mobile subnet will receive the agent notification message sent by the edge device of the second provider , thus judging that it has returned to the local link, the mobile subnet cancels its current care-of address and new label to the second provider edge device. 19、如权利要求1所述可移动虚拟专用网的实现方法,其特征在于,第一用户设备与位于移动子网的通信过程中,移动子网从第三提供商边缘设备控制区移动到第四提供商边缘设备控制区时,第一用户设备将数据包发送到第三提供商边缘设备,采用传输控制协议层的超时重传方式进行数据传输。19. The implementation method of the mobile virtual private network according to claim 1, characterized in that, during the communication process between the first user equipment and the mobile subnet, the mobile subnet moves from the control area of the third provider edge equipment to the second When the edge device of the four providers controls the area, the first user equipment sends the data packet to the edge device of the third provider, and transmits the data by using the timeout retransmission mode of the transmission control protocol layer. 20、如权利要求19所述可移动虚拟专用网的实现方法,其特征在于,20. The implementation method of the mobile virtual private network according to claim 19, characterized in that: 移动子网会向所有与其建立过通信的提供商边缘设备发送一个更新其转交地址和标签的消息;The mobile subnet will send a message to update its care-of address and label to all provider edge devices that have established communication with it; 第一提供商边缘设备得到此消息后更新虚拟路由转发表的内容;After receiving the message, the first provider edge device updates the content of the virtual routing and forwarding table; 第一提供商边缘设备将第一用户设备的数据包发往第四提供商边缘设备;The first provider edge device sends the data packet of the first user equipment to the fourth provider edge device; 第四提供商边缘设备向移动子网发送该数据包。The fourth provider edge device sends the data packet to the mobile subnet. 21、一种可移动虚拟专用网的实现系统,其特征在于,包括:骨干网、第一用户边缘设备和移动主机,其中骨干网中包括第一提供商边缘设备、第二提供商边缘设备,第一用户边缘设备和移动主机属于同一虚拟专用网;21. A system for implementing a mobile virtual private network, comprising: a backbone network, a first user edge device, and a mobile host, wherein the backbone network includes a first provider edge device and a second provider edge device, The first user edge device and the mobile host belong to the same virtual private network; 第一用户设备通过骨干网中的第一提供商边缘设备向第二提供商边缘设备发布路由信息;第二用户设备通过所述第二提供商边缘设备获得所述路由信息;所述移动主机通过第二提供商边缘设备和第一提供商边缘设备与所述第一用户设备进行数据传输。The first user equipment publishes routing information to the second provider edge device through the first provider edge device in the backbone network; the second user equipment obtains the routing information through the second provider edge device; the mobile host through The second provider edge device and the first provider edge device perform data transmission with the first user equipment. 22、一种可移动虚拟专用网的实现系统,其特征在于,包括:骨干网、第一用户边缘设备和移动子网,其中骨干网中包括第一提供商边缘设备、第二提供商边缘设备和第三供商边缘设备,所述设备属于同一虚拟专用网;22. A system for implementing a mobile virtual private network, characterized by comprising: a backbone network, a first user edge device, and a mobile subnet, wherein the backbone network includes a first provider edge device and a second provider edge device and a third provider edge device, said device belonging to the same virtual private network; 当移动子网由第二提供商边缘设备的控制区域移动到第三提供商边缘设备控制的区域时,将收到第三提供商边缘设备发送的代理通告信息;移动子网根据代理通告信息中的地址前缀信息配置转交地址;第三提供商边缘设备为移动子网分配一个多协议分组标签,并与转交地址绑定,形成新标签;When the mobile subnet moves from the area controlled by the second provider edge device to the area controlled by the third provider edge device, it will receive the proxy notification information sent by the third provider edge device; the mobile subnet will The address prefix information of the third provider configures the care-of address; the third provider edge device allocates a multi-protocol packet label for the mobile subnet, and binds it with the care-of address to form a new label; 当第一用户设备向移动子网发送数据包时,When the first user equipment sends a data packet to the mobile subnet, 第一用户设备通过骨干网中的第一提供商边缘设备将数据包发送到第二提供商边缘设备;第二提供商边缘设备利用新标签将数据包发送到第三提供商边缘设备;第三提供商边缘设备通过查询虚拟路由转发表转发该数据包到移动子网;The first user equipment sends the data packet to the second provider edge device through the first provider edge device in the backbone network; the second provider edge device uses the new label to send the data packet to the third provider edge device; the third provider edge device The provider edge device forwards the data packet to the mobile subnet by querying the virtual routing and forwarding table; 当移动子网向第一用户设备发送数据包时,When the mobile subnet sends a data packet to the first user equipment, 移动子网将数据包发送到第三提供商边缘设备;第三提供商边缘设备判断该数据包是否与第一用户设备目的地址匹配,如果匹配,则第三提供商边缘设备将数据包转发到第一提供商边缘设备,并告知新标签,第一提供商边缘设备转发数据包到第一用户设备,并更新虚拟路由转发表中的信息;否则,第三提供商边缘设备将数据包转发到第二提供商边缘设备,第二提供商边缘设备查询虚拟路由转发表中是否有与第一用户设备的目的地址匹配条目,如果有,则将数据包转发到第一提供商边缘设备,并告知新标签;否则,丢弃该数据包。The mobile subnet sends the data packet to the third provider edge device; the third provider edge device judges whether the data packet matches the destination address of the first user equipment, and if it matches, the third provider edge device forwards the data packet to The first provider edge device, and inform the new label, the first provider edge device forwards the data packet to the first user equipment, and updates the information in the virtual route forwarding table; otherwise, the third provider edge device forwards the data packet to The second provider edge device, the second provider edge device queries whether there is an entry matching the destination address of the first user equipment in the virtual routing and forwarding table, and if so, forwards the data packet to the first provider edge device and informs new label; otherwise, drop the packet. 23、如权利要求22所述可移动虚拟专用网的实现系统,其特征在于,还包括第四提供商边缘设备,第一用户设备与位于移动子网的通信过程中,移动子网从第三提供商边缘设备控制区移动到第四提供商边缘设备控制区时,移动子网会向所有与其建立过通信的提供商边缘设备发送一个更新其转交地址和标签的消息;第一提供商边缘设备得到此消息后更新虚拟路由转发表的内容;第一提供商边缘设备将第一用户设备的数据包发往第四提供商边缘设备;第四提供商边缘设备向移动子网发送该数据包。23. The system for implementing a mobile virtual private network according to claim 22, further comprising a fourth provider edge device, during the communication process between the first user equipment and the mobile subnet, the mobile subnet is transferred from the third When the provider edge device control area moves to the fourth provider edge device control area, the mobile subnet will send a message to update its care-of address and label to all provider edge devices that have established communication with it; the first provider edge device After receiving this message, update the content of the virtual routing and forwarding table; the first provider edge device sends the data packet of the first user equipment to the fourth provider edge device; the fourth provider edge device sends the data packet to the mobile subnet.
CN2006100671444A 2006-04-05 2006-04-05 Realizing method and system for movable virtual special net Expired - Fee Related CN101052207B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN2006100671444A CN101052207B (en) 2006-04-05 2006-04-05 Realizing method and system for movable virtual special net
PCT/CN2007/000525 WO2007112645A1 (en) 2006-04-05 2007-02-14 A method and system for implementing a mobile virtual private network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2006100671444A CN101052207B (en) 2006-04-05 2006-04-05 Realizing method and system for movable virtual special net

Publications (2)

Publication Number Publication Date
CN101052207A true CN101052207A (en) 2007-10-10
CN101052207B CN101052207B (en) 2011-04-20

Family

ID=38563088

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2006100671444A Expired - Fee Related CN101052207B (en) 2006-04-05 2006-04-05 Realizing method and system for movable virtual special net

Country Status (2)

Country Link
CN (1) CN101052207B (en)
WO (1) WO2007112645A1 (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2010020107A1 (en) * 2008-08-21 2010-02-25 中国移动通信集团公司 Number automatic routing method, updating method, withdrawing method, router and device
WO2010135887A1 (en) * 2009-05-27 2010-12-02 华为技术有限公司 Method, device and system for mobile virtual private network communication
CN102821028A (en) * 2011-06-08 2012-12-12 上海贝尔股份有限公司 Method and corresponding device for supporting virtual machine to transfer in multi-protocol label network
CN102970229A (en) * 2012-12-18 2013-03-13 网神信息技术(北京)股份有限公司 Method and device for transmitting data
CN103634217A (en) * 2013-11-13 2014-03-12 华为技术有限公司 Method for issuing route information, method and device for transmitting massage
CN105530159A (en) * 2016-01-19 2016-04-27 武汉烽火网络有限责任公司 Cross-IPv6 and IPv4 VPN inter-access method and system
CN105553678A (en) * 2014-11-04 2016-05-04 阿尔卡特朗讯 Method, equipment and system for conference routing
CN105701660A (en) * 2008-12-02 2016-06-22 贝宝公司 mobile barcode generation and payment
WO2018152825A1 (en) * 2017-02-27 2018-08-30 华为技术有限公司 Management method, and management unit and system
CN110401716A (en) * 2019-07-26 2019-11-01 宙安科技河北有限公司 Communication means and system between fringe node
CN111385204A (en) * 2018-12-27 2020-07-07 中国移动通信集团贵州有限公司 Service transmission method, device, equipment and medium
CN112910667A (en) * 2019-11-19 2021-06-04 苏州至赛信息科技有限公司 Method and device for generating network topology model, computer equipment and storage medium
CN113395206A (en) * 2020-03-13 2021-09-14 华为技术有限公司 Route determining method, device and network equipment
WO2022193682A1 (en) * 2021-03-19 2022-09-22 中国电信股份有限公司 Vpn route control method and router

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3863233B1 (en) * 2013-05-24 2024-07-10 Huawei Technologies Co., Ltd. Method and device used for ethernet virtual private network
CN106921573B (en) * 2015-12-28 2020-04-14 华为技术有限公司 NVo3 method and device for issuing tenant route in network

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8024437B2 (en) * 2003-10-30 2011-09-20 Paul Unbehagen Autodiscovery for virtual networks
CN100440881C (en) * 2003-12-22 2008-12-03 华为技术有限公司 A method for implementing mobile IP network service quality control
CN100479457C (en) * 2004-05-12 2009-04-15 华为技术有限公司 Implementation method for transferring data in virtual private network

Cited By (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8665887B2 (en) 2008-08-21 2014-03-04 China Mobile Communications Corporation Number automatic routing method, updating method, withdrawing method, router and device
WO2010020107A1 (en) * 2008-08-21 2010-02-25 中国移动通信集团公司 Number automatic routing method, updating method, withdrawing method, router and device
CN105701660A (en) * 2008-12-02 2016-06-22 贝宝公司 mobile barcode generation and payment
JP2012528492A (en) * 2009-05-27 2012-11-12 ▲ホア▼▲ウェイ▼技術有限公司 Method, apparatus and system for mobile virtual private network communication
US9084108B2 (en) 2009-05-27 2015-07-14 Huawei Technologies Co., Ltd. Method, apparatus, and system for mobile virtual private network communication
WO2010135887A1 (en) * 2009-05-27 2010-12-02 华为技术有限公司 Method, device and system for mobile virtual private network communication
CN102821028A (en) * 2011-06-08 2012-12-12 上海贝尔股份有限公司 Method and corresponding device for supporting virtual machine to transfer in multi-protocol label network
WO2012168795A1 (en) * 2011-06-08 2012-12-13 Alcatel Lucent Methods for supporting migration of virtual machines across multiprotocol label switching network and corresponding devices
CN102821028B (en) * 2011-06-08 2016-03-30 上海贝尔股份有限公司 Support the method that virtual machine moves in multiprotocol label network and corresponding equipment
CN102970229A (en) * 2012-12-18 2013-03-13 网神信息技术(北京)股份有限公司 Method and device for transmitting data
CN103634217B (en) * 2013-11-13 2017-02-08 华为技术有限公司 Method for issuing route information, method and device for transmitting massage
CN103634217A (en) * 2013-11-13 2014-03-12 华为技术有限公司 Method for issuing route information, method and device for transmitting massage
CN105553678A (en) * 2014-11-04 2016-05-04 阿尔卡特朗讯 Method, equipment and system for conference routing
CN105530159A (en) * 2016-01-19 2016-04-27 武汉烽火网络有限责任公司 Cross-IPv6 and IPv4 VPN inter-access method and system
CN105530159B (en) * 2016-01-19 2018-12-18 武汉烽火网络有限责任公司 A kind of method and system realizing the VPN across IPv6 and IPv4 and exchanging visits
WO2018152825A1 (en) * 2017-02-27 2018-08-30 华为技术有限公司 Management method, and management unit and system
CN110326355A (en) * 2017-02-27 2019-10-11 华为技术有限公司 A kind of management method, administrative unit and system
US11057309B2 (en) 2017-02-27 2021-07-06 Huawei Technologies Co., Ltd. Management method, management unit, and system
CN111385204A (en) * 2018-12-27 2020-07-07 中国移动通信集团贵州有限公司 Service transmission method, device, equipment and medium
CN111385204B (en) * 2018-12-27 2022-03-29 中国移动通信集团贵州有限公司 Service transmission method, device, equipment and medium
CN110401716A (en) * 2019-07-26 2019-11-01 宙安科技河北有限公司 Communication means and system between fringe node
CN112910667A (en) * 2019-11-19 2021-06-04 苏州至赛信息科技有限公司 Method and device for generating network topology model, computer equipment and storage medium
CN113395206A (en) * 2020-03-13 2021-09-14 华为技术有限公司 Route determining method, device and network equipment
WO2021179935A1 (en) * 2020-03-13 2021-09-16 华为技术有限公司 Route determination method, apparatus and network device
CN113395206B (en) * 2020-03-13 2023-06-02 华为技术有限公司 Route determining method, device and network equipment
WO2022193682A1 (en) * 2021-03-19 2022-09-22 中国电信股份有限公司 Vpn route control method and router

Also Published As

Publication number Publication date
WO2007112645A1 (en) 2007-10-11
CN101052207B (en) 2011-04-20

Similar Documents

Publication Publication Date Title
CN101052207A (en) Realizing method and system for movable virtual special net
CN1209898C (en) Routing in a packet switching network with mobile terminals
CN1170390C (en) Methods of Controlling Routing
CN1435027A (en) Mobile IP for mobile hoc networks
AU2003262718B2 (en) Arrangement for router attachments between roaming mobile routers in a mobile network
CN1148918C (en) Telecommunications routing
CN101151854B (en) Communication control method
CN1708962A (en) Arrangement for topology update between mobile routers
CN1801764A (en) Internet access method based on identity and location separation
US20080056210A1 (en) Moving Networks Information Server
CN1631005A (en) Device and method in access system
CN1315314C (en) Communication system and method therefor
CN1339228A (en) Public mobile data communications network
CN1511404A (en) Method and system for low overhead mobility management protocol in internet protocol layer
CN1273727A (en) Nomadic translator or router
CN1498484A (en) System for managing mobile node in mobile network
CN102379100A (en) Methods and apparatus for providing broadcast content over a unicast channel
WO2012106919A1 (en) Routing control method, apparatus and system of layer 3 virtual private network
CN1747471A (en) Communication system, server, router and mobile terminal
CN1663217A (en) Data flow between a communication node and a mobile node in a mobile network
CN101043737A (en) Terminal and terminal switching method and system
CN101047651A (en) Method, system and equipment for setting IP priority level
CN1496154A (en) Mobile communication control system and method, ruting device, server and data structure
CN110071985A (en) The address WTRU of network-control/anchor point selection method
CN1859445A (en) Mobile terminal IP address distributing method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110420

Termination date: 20170405

CF01 Termination of patent right due to non-payment of annual fee