The embodiments of the present disclosure provide a method for transmitting packet in a virtual network. In the method, an access switch receives a layer 3 packet carrying a VNID (virtual network IDentifier) from a vm in a remote Data center. The access switch determines a DN (designated node) corresponding to the VNID and generates a layer 2 frame according to the layer 3 packet, where the layer 2 frame includes the MAC (Media access Control) address of the DN. The access switch to the DN transmits the layer 2 frame according to the MAC address of the DN such that the DN determines a layer 3 destination address according to the layer 2 frame. This avoids packet flooding in Data center when vm was migrated.
|
6. #3# A top of rack (TOR) switch, comprising a processor executing program codes stored in a memory, which configure the TOR switch to:
receive a layer 2 frame carrying a virtual network identifier (VNID); wherein the TOR switch is the designated node (DN) corresponding to the VNID carried in the layer 2 frame;
extract a layer 3 destination address from the layer 2 frame;
determine whether a virtual machine (vm) corresponding to the L3 destination is in the TOR switch or has migrated;
determine another TOR switch to which the vm was migrated, according to the VNID and the layer 3 destination address, when the vm has migrated, and transmit the layer 2 frame to the another TOR switch where the vm migrated, when the vm has migrated.
1. #3# A method for transmitting packets in virtual network with respect to a virtual machine (vm) migration, comprising:
receiving, by a top of rack (TOR) switch, a layer 2 frame carrying a virtual network identifier (VNID); wherein the TOR switch is the designated node (DN) corresponding to the VNID carried in the layer 2 frame;
extracting, by the TOR switch, a layer 3 destination address from the layer 2 frame;
determining, by the TOR switch, whether a vm corresponding to the layer 3 destination address is in the TOR switch or the vm has migrated;
determining, by the TOR switch, another TOR switch to which the vm was migrated, according to the VNID and the layer 3 destination address, when the vm has migrated, and transmitting, by the TOR switch, the layer 2 frame to the another TOR switch to which the vm migrated.
11. #3# A communication system, comprising:
an access switch configured to receive a layer 3 packet from a remote data center carrying a virtual network identifier (VNID), determine a designated node (DN) corresponding to the VNID, wherein the DN is a top of rack (TOR) switch; generate a layer 2 frame carrying the VNID according to the layer 3 packet, and transmit the layer 2 frame to the TOR switch; and
the TOR switch, configured to receive the layer 2 frame carrying the VNID, extract a layer 3 destination address from the layer 2 frame, determine whether a virtual machine (vm) corresponding to the layer 3 destination address is in the TOR switch or the vm has migrated; determine another TOR switch to which the vm was migrated, according to the VNID and the layer 3 destination address, when the vm has migrated, and transmit the layer 2 frame to the another TOR switch to which the vm migrated.
2. The method according to #3# claim 1, wherein determining another TOR switch comprises:
looking up, by the TOR switch, a layer 2 table according to the layer 3 destination address, and determining the another TOR switch to which the vm was migrated;
wherein the layer 2 table indicates at least one of the following: a mapping between a vm Internet Protocol (IP) address and a TOR switch media access control (MAC) address for a migrated vm and a mapping between a vm IP address and a vm MAC address for a non-migrated vm.
3. The method according to #3# claim 1, further comprising:
determining a MAC address of the vm according to the VNID and the layer 3 destination address, when the vm is in the TOR switch, and transmitting the layer 2 frame to the vm.
4. The method according to #3# claim 3, wherein determining the MAC address comprises:
looking up, by the TOR switch, a layer 2 table according to the layer 3 destination address, and determines the MAC address;
wherein the layer 2 table indicates at least one of the following: a mapping between a vm IP address and a TOR switch MAC address for a migrated vm and a mapping between a vm IP address and a vm MAC address for a non-migrated vm.
5. The method according to #3# claim 1, further comprising:
receiving, by the top of rack (TOR) switch, an address resolution protocol (ARP) broadcast transmitted by a vm which migrated to the TOR switch;
checking, by the TOR switch, a virtual network identifier (VNID) of the ARP broadcast;
determining, by the TOR switch, whether the TOR switch is the DN corresponding to the VNID of the ARP broadcast;
generating, by the TOR switch, a proxy ARP broadcast with a media access control (MAC) address of the TOR switch, and broadcasting the proxy ARP broadcast along with the VNID, when the TOR switch is not the DN corresponding to the VNID of the ARP broadcast;
updating, by the TOR switch, a layer 2 table, when the TOR switch is the DN corresponding to the VNID of the ARP broadcast.
7. The TOR switch according to #3# claim 6, wherein the another TOR switch to which the vm was migrated is determined by looking up a layer 2 table according to the layer 3 destination address,
wherein the layer 2 table indicates at least one of the following: a mapping between a vm Internet Protocol (IP) address and a TOR switch media access control (MAC) address for a migrated vm and a mapping between a vm IP address and a vm MAC address for a non-migrated vm.
8. The TOR switch according to #3# claim 6, the TOR switch is further configured to:
determine the MAC address of the vm, according to the layer 3 destination address, and transmit the layer 2 frame to the vm, when the vm is in the TOR switch.
9. The TOR switch according to #3# claim 8, wherein the MAC address of the vm is determined by looking up a layer 2 table according to the layer 3 destination address,
wherein the layer 2 table indicates at least one of the following: a mapping between a vm Internet Protocol (IP) address and a TOR switch media access control (MAC) address for a migrated vm and a mapping between a vm IP address and a vm MAC address for a non-migrated vm.
10. The TOR switch according to #3# claim 6, the TOR switch is further configured to:
receive an address resolution protocol (ARP) broadcast transmitted by a vm which migrated to the TOR switch;
determine a virtual network identifier (VNID) of the ARP broadcast;
determine whether the TOR switch is the DN corresponding to the VNID of the ARP broadcast or not;
generate a proxy ARP broadcast with the a media access control (MAC) address of the TOR and broadcast the proxy ARP broadcast along with the VNID, if the TOR switch is not the DN corresponding to the VNID of the ARP broadcast, and
update the layer 2 table when the TOR switch is the DN corresponding to the VNID of the ARP broadcast.
12. The system according to #3# claim 11, wherein the access switch is configured to look up a MAC table according to the VNID, and determine the DN corresponding to the VNID,
wherein the MAC table indicates a mapping between the MAC address of the DN and the VNID.
13. The system according to #3# claim 11, wherein the TOR switch is further configured to look up a layer 2 table according to the layer 3 destination address, and determine the another TOR switch to which the vm migrated,
wherein the layer 2 table indicates at least one of the following: a mapping between a vm Internet Protocol (IP) address and a TOR media access control (MAC) address for a migrated vm and a mapping between a vm IP address and a vm MAC address for a non-migrated vm.
14. The system according to #3# claim 13, wherein the TOR switch is further configured to receive an address resolution protocol (ARP) broadcast transmitted by a vm which migrated to the TOR switch, check a VNID of the ARP broadcast, generate a proxy ARP broadcast carrying the VNID of the ARP broadcast, if the TOR switch is not the DN corresponding to the VNID of the ARP broadcast; and, update the layer 2 table when the TOR switch is the DN corresponding to the VNID of the ARP broadcast.
|
This application claims priority to Indian Patent Application No. IN4323/CHE/2012, filed on Oct. 17, 2012, which is hereby incorporated by reference in its entirety.
This application relates to VN (Virtual Network), in particular, to a method, apparatus, and system for transmitting packets in virtual network for reducing ARP (Address Resolutin Protocol) flooding and MAC (Media Access Control) address table size in DC (Data Center).
With introduction of VM (Virtual Machine), its migration to other physical sever in the DC will involve new challenges, such as scattered subnets may cross TORs (Top of Rack) and disjointed address may exist; but the migrated VMs will continue to maintain same IP address.
With introduction of hypervisor with VMs and Network virtualization in the Data Center, the size of MAC table will be very huge. This is the global problem that the Data Center needs to solve.
To solve this problem, the prior art provides two solutions, one is that each subnet was assigned to a TOR switch and VM Migration was disallowed, the other is enable Layer 3 capabilities on a TOR, but that causes the high cost and leads to the similar problem in the Layer 3 (L3).
However the applicant found that, there is a clear need for VM Migration in a flat Layer 2 (L2) network within the DC, but the current technology leads to exponential ARP flooding as well increase in MAC table size on the access switch. For example, when the VM is migrated from one TOR to other TOR, the other TOR do not know how to forward the packet of the VM, and Access switch will flood the packet over the whole Layer 2 Network, such that the Access switch may needs to maintain tens of thousands ARP Entries.
The present disclosure provides a method, apparatus and system for reducing ARP flooding and MAC address table size in DC.
According to a first aspect of the present disclosure, a method for transmitting packet in Virtual Network is provided, the method includes: receiving, by an access switch, a Layer 3 packet carrying a VNID (Virtual Network IDentifier) from a VM in a remote Data Center; determining, by the access switch, a DN (Designated Node) corresponding to the VNID; generating, by the access switch, a Layer 2 frame according to the Layer 3 packet, where, the Layer 2 frame includes the MAC (Media Access Control) address of the DN; and transmitting, by the access switch to the DN, the Layer 2 frame according to the MAC address of the DN, such that the UN determines Layer 3 destination address according to the Layer 2 frame.
According to a second aspect of the present disclosure, another method for transmitting packet in Virtual Network is provided, the method includes: receiving, by a TOR (Top of Rack) switch, a Layer 2 frame carrying a VNID; extracting, by the TOR switch, a Layer 3 destination address from the Layer 2 frame; determining, by the TOR switch, whether a VM (Virtual Machine) corresponding to the Layer 3 destination address is in the TOR switch or the VM has migrated; determining, another TOR switch to which the VM migrated, according to the Layer 3 destination address, when the VM has migrated, and transmitting the Layer 2 frame to the another TOR switch.
According to a third aspect of the present disclosure, a further method for transmitting packet in Virtual Network is provided, the method includes: receiving, by a TOR switch, an ARP transmitted by a VM which migrated to the TOR switch; checking, by the TOR switch, the VNID corresponding to the ARP; determining, by the TOR switch, whether the TOR switch is the DN corresponding to the VNID or not; generating, by the TOR switch, proxy ARP with the TOR MAC address, and broadcasting along with the VNID, when the TOR switch is not the DN corresponding to the VNID; updating, by the TOR switch, the Layer 2 table, when the TOR switch is the DN corresponding to the VNID.
According to a fourth aspect of the present disclosure, an access switch is provided, the access switch comprises: a receiving unit configured to receive a Layer 3 packet from a VM in a remote Data Center carrying a VNID (Virtual Network IDentifier); a determining unit configured to determine a DN (Designated Node) corresponding to the VNID, according to the VNID; a generating unit configured to generate a Layer 2 frame according to the Layer 3 packet, where, the Layer 2 frame includes the MAC (Media Access Control) address of the DN; and a transmitting unit configured to transmit the Layer 2 frame to the DN according to the MAC address of the DN, such that the DN determines a Layer 3 destination address according to the Layer 2 frame.
According to a fifth aspect of the present disclosure, a TOR switch is provided, the TOR switch comprises: a receiving unit configured to receive a Layer 2 frame along with a VNID; an extracting unit configured to extracting a Layer 3 destination address from the Layer 2 frame; a determining unit configured to determine whether a VM corresponding to the Layer 3 destination is in the TOR switch or has migrated, a first performing unit configured to determine another TOR switch to which the VM migrated, according to the Layer 3 destination address, and transmit the Layer 2 frame to the another TOR switch where the VM migrated, when the VM has migrated.
According to a sixth aspect of the present disclosure, another TOR switch is provided, the TOR switch comprises: a receiving unit configured to receive an ARP transmitted by a VM which migrated to the TOR switch; a checking unit configured to determine the VNID corresponding to the ARP; a determining unit configured to determine whether the TOR switch is the DN corresponding to the VNID or not; a performing unit configured to generate proxy ARP with the TOR MAC address and broadcast carrying the VNID, if the TOR switch is not the DN corresponding to the VNID, and an updating unit configured to update the Layer 2 table, if the TOR switch is the DN corresponding to the VNID.
According to a seventh aspect of the present disclosure, a communication system is provided, the system comprises: an access switch configured to receive a Layer 3 packet from a remote Data Center carrying a VNID, determine a DN corresponding to the VNID, generate a Layer 2 frame carrying the VNID according to the Layer 3 packet, and transmit the Layer 2 frame to the DN; and a plurality of TOR switches, each configured to receive the Layer 2 frame carrying the VNID, extract a Layer 3 destination address according to the Layer 2 frame, determine another TOR switch or a migrated VM, and transmit the Layer 2 frame to the another TOR switch or the migrated VM.
The advantages of the present disclosure are that, first, it can avoid the packet flooding in data center when a VM is migrated; second, it can avoid the ARP broadcast when a VM is migrated to different TORs; third, it can avoid the growing ARP table size in access switch; fourth, it can avoid the growing ARP table size in TOR.
The drawings are included to provide further understanding of the present disclosure, which constitute a part of the specification and illustrate the preferred embodiments of the present disclosure, and are used for setting forth the principles of the present disclosure together with the description. The same element is represented with the same reference number throughout the drawings.
The many features and advantages of the embodiments are apparent from the detailed specification and, thus, it is intended by the appended claims to cover all such features and advantages of the embodiments that fall within the true spirit and scope thereof. Further, since numerous modifications and changes will readily occur to those skilled in the art, it is not desired to limit the inventive embodiments to the exact construction and operation illustrated and described, and accordingly all suitable modifications and equivalents may be resorted to, falling within the scope thereof′.
In the present application, embodiments of the disclosure are described primarily in the context of access switch and TOR switches in Virtual Network. However, it shall be appreciated that the disclosure is not limited to the context of access switch and TOR switches, and may relate to any type of appropriate electronic apparatus having the function of switches.
The preferred embodiments of the present disclosure are described as follows in reference to the drawings.
In an embodiment of the present disclosure, the access switch preserves VN-DN MAC table, the VN-DN MAC table indicates the mapping between VN and DN. For example, when DN is designated to respective ‘Virtual Network Identifier’, the access switch will maintain the mapping table between ‘Virtual Network Identifier’ and ‘Designated Node MAC’. As shown in
In an embodiment of the present disclosure, each DN preserves Layer 2 table, the Layer 2 table indicated the mapping between VM IP address and TOR MAC address, or the Layer 2 table indicates a Mapping between VM IP address and VM MAC address, or the Layer 2 table indicates a mapping between VM IP address and TOR MAC address and a Mapping between VM IP address and VM MAC address. For example, for Migrated VM, the Layer 2 table will maintain a mapping between VM IP address and TOR MAC address learned via proxy ARP learning; for non-migrated VM, the Layer 2 table will maintain a mapping between VM IP address and VM MAC address. As shown in
Refer to
The method, apparatus and system according to the embodiments of the present disclosure will be described in detail in the following in connection with the figures.
The embodiment of the present disclosure provides a method for transmitting a packet in Virtual Network.
step 401: an access switch receives a Layer 3 packet carrying a VNID (Virtual Network IDentifier) from a remote Data Center;
The Layer 3 packet is sent from one VM to another VM in the Data Center. In the embodiment, the VM which sends the Layer 3 packet is called as VMs (VM source), the VM which receives the Layer 3 packet is called as VMd (VM destination). The VMs sends the ARP request to find the destination MAC address. Local TOR will generate the ARP reply, where, if the TOR is unknown or non-local, the ARP reply is with access switch MAC;
The Layer 3 packet is used to indicate a packet in Layer 3, the packet can carry data, control information and so on, it is defined in TCP/IP (Transmission Control Protocol/Internet Protocol), and the content is combined here and do not described any further.
step 402: the access switch determines a DN (Designated Node) corresponding to the VNID;
step 403: the access switch generates a Layer 2 frame according to the Layer 3 packet, the Layer 2 frame comprises the MAC (Media Access Control) address of the DN; and
step 404: the access switch transmits the Layer 2 frame to the DN according to the MAC address of the DN, such that the DN determines a Layer 3 destination address according to the Layer 2 frame.
Where, once the Layer 2 frame reaches the access switch originated from the VMs to the VMd, it will follow the same flow as if it has come from outside DC as explained earlier.
In an implementation of step 402, the access switch looks up a VN-DN MAC table according to the VNID, and determines the DN corresponding to the VNID. The VN-DN MAC Table indicates a Mapping between DN MAC address and VNID as described above.
In this embodiment, when a Virtual Network is spanned across Multiple TORs, one of the TOR switch will be identified as ‘Designated Node’ (DN) by configuration. Access switch will only maintain DN's MAC address with regard to corresponding Virtualization entity (Virtual Network). That is to say, each Virtual Network corresponds to a DN, access switch maintains a VN-DN MAC table which indicates the relationship of each VN and its DN, and finds out the destination TOR (DN) by looking up the table.
With the embodiment of the method, the ARP flooding can be reduced or avoided in the access network, and the Layer 2 table (VN-DN MAC table) can be controlled in access switch.
The embodiment of the present disclosure provides a method for transmitting packets in Virtual Network.
step 501: a TOR switch receives a Layer 2 frame carrying a VNID;
where, the Layer 2 frame also carries a MAC address so as to reach the TOR switch.
Where, the Layer 2 frame corresponds to the Layer 3 packet described in embodiment 1, and the Layer 2 frame is sent from the VMs to the VMd.
step 502: the TOR switch extracts a Layer 3 destination address from the Layer 2 frame;
where, the TOR switch can extract the Layer 3 destination address by peeking into the Layer 2 frame. It can be achieved by existing method and shall not be described any further.
step 503: the TOR switch decides whether the VMd is in the TOR switch or the VMd has migrated.
In one embodiment, the VMd is in the TOR switch, in another embodiment, the VMd has migrated. If the VMd has migrated, then step 504-505 are carried out, if the VMd is in the TOR, then step 506-507 are carried out;
step 504: the TOR switch determines another TOR switch to which the VMd migrated, according to the VNID and the Layer 3 destination address;
where, the migrated VM (VMd) is the destination of the Layer 2 frame (Layer 3 packet), because the VMd is migrated, its TOR switch should be redetermined.
step 505: the TOR switch transmits the Layer 2 frame to the another TOR switch to which the VMd migrated.
The TOR switch of this embodiment will receive the Layer 2 frame transmitted by the access switch described in embodiment 1, and determine the destination VM of the Layer 2 frame.
In an implement way of step 504, the TOR switch looks up a Layer 2 table according to the VNID and the Layer 3 destination address, and determines the another TOR switch to which the VM migrated. The Layer 2 table indicates a mapping between VM IP address and TOR MAC address for Migrated VM, or the Layer 2 table indicate a mapping between VM IP address and VM MAC address for non-migrated VM as described above, or the Layer 2 table indicated a mapping between VM IP address and TOR MAC address for Migrated VM and a mapping between VM IP address and VM MAC address for non-migrated VM as described above. With the Layer 2 table, the TOR switch can find out the destination of the Layer 2 frame.
In this embodiment, the TOR switch is the DN of the Virtual Network, after receiving the Layer 2 frame, the DN (the TOR switch) will peek into Layer 3 destination address according to the Layer 2 frame, and lookup the Layer 2 table described above with VNID and the Layer 3 destination address as key, and get the MAC address of the another TOR (to which the VMd was migrated), and generate Layer 2 frame carrying the TOR MAC address, and transmit the Layer 2 frame to the another TOR switch.
In another embodiment, the VM is in the TOR switch, then, the method further comprises:
step 506: the TOR switch determines the VM MAC address according to the VNID and the Layer 3 destination address;
Where, the VM is the VMd. In the embodiment, since the VMd is in the TOR switch, so the destination TOR switch has decided, and then the VMd MAC address should be determined for transmitting the Layer 2 frame to its destination.
step 507: the TOR switch transmits the Layer 2 frame to the VM;
where, in step 506, the MAC address of the VMd has been determined, in step 507, the Layer 2 frame can be transmit to the VMd.
In an implementation of step 505, the TOR switch looks up the Layer 2 table according to the VNID and the Layer 3 destination address, and determines the migrated VM, where, the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM, or the Layer 2 table indicates a Mapping between VM IP address and VM MAC address for non-migrated VM as described above, or the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM and a Mapping between VM IP address and VM MAC address for non-migrated VM as described above.
In this embodiment, the TOR switch is not the DN of the Virtual Network, but it is the TOR switch where the VMd migrated, after receiving the Layer 2 frame, the TOR switch will peek into Layer 3 destination address according to the Layer 2 frame, and lookup the Layer 2 table described above with VNID and the Layer 3 destination address as key, and get the MAC address of the VMd, and forward the Layer 2 frame with the MAC address of the VMd as destination MAC address which reach physical hosts/server based on local edge virtual bridge technology.
With the embodiment of the method, the ARP flooding can be reduced or avoided in access network, and the Layer 2 table can be controlled in access switch.
The embodiment of the present disclosure provides a method for transmitting packets in Virtual Network.
step 601: a TOR switch receives an ARP broadcast transmitted by a VM which migrated to the TOR switch;
where, whenever a VM migrated to a new physical server, like the TOR switch, it will generate an ARP broadcast with VM MAC address, and broadcast the ARP from its server to the physical server (the TOR switch).
step 602: the TOR switch determines a VNID corresponding to the ARP request;
where, the TOR switch will check the VNID corresponds to the ARP broadcast by available mechanism, such as interface, ARP which depends on VMware implementation.
step 603: the TOR switch determines whether the TOR switch is the DN corresponding to the VNID;
step 604: if the TOR switch is not the DN corresponding to the VNID, the TOR switch generates a proxy ARP broadcast with the TOR MAC address and broadcasts the proxy ARP broadcast along with the VNID;
step 605: if the TOR switch is the DN corresponding to the VNID, the TOR switch updates the Layer 2 table.
With the embodiment of the method, the ARP flooding can be reduced or avoided in access network, and the Layer 2 table can be controlled in access switch.
For further understanding of the method of embodiments 1-3, the method of the present disclosure shall be described in detail with respect to a process of transmission of a Layer 3 packet in a virtual network in conjunction with the accompanying drawings.
Please refer to
Please refer to
For Access Switch as Described in Embodiment 1.
The access switch maintains a VN-DN MAC table, as shown in
For DN1 (TOR1 Switch) as Described in Embodiment 2.
The DN1 maintains a Layer 2 table, as shown in
For TOR2 Switch as Described in Embodiment 2.
Like TOR1 switch in embodiment 2, the TOR2 maintains a Layer 2 table, as shown in
As described in embodiment 3, whenever the VM2 migrated (on top of TOR2), it will broadcast its ARP broadcast from it's server (host/VM in TOR2) to TOR2, in this case, the TOR2 will check corresponding VNID by available mechanism, such as interface/ARP which depends on implementation. If TOR is not the DN corresponds to the VNID, such as TOR2, the TOR will generate proxy ARP broadcast (with TOR2 MAC address and VM IP address) carrying the VNID, as shown in
With regard to the embodiments 1-3 of method according to the present disclosure, the packet flooding in data center when the VM is migrated, the ARP broadcast when VM is migrated to different TORs, the growing ARP table size in access switch, and the growing ARP table size in TOR switch have been avoided.
This embodiment of the present disclosure further provides an access switch. This embodiment corresponds to the method of the above embodiment 1 and the same content will not be described further.
As shown in
The receiving unit 101 is used to receive a Layer 3 packet from a remote Data Center carrying a VNID, the determining unit 102 is used to determine a DN corresponding to the VNID according to the VNID, the generating unit 103 is used to generate a Layer 2 frame according to the Layer 3 packet, where, the Layer 2 frame includes the MAC (Media Access Control) address of the DN, and the transmitting unit 104 is used to transmit the Layer 2 frame to the DN according to the MAC address of the DN, such that the DN determines a Layer 3 destination address according to the Layer 2 frame.
In this embodiment, the determining unit 102 is used to look up a VN-DN MAC table according to the VNID, and determine the DN corresponding to the VNID. In which, the VN-DN MAC Table indicates a Mapping between Designated Node MAC address and Virtual Network IDentifier.
With the embodiment of the access switch, the ARP flooding can be reduced or avoided in access network, and the Layer 2 table (VN-DN MAC table) can be controlled in access switch.
This embodiment of the present disclosure further provides a TOR switch. This embodiment corresponds to the method of the above embodiment 2 and the same content will not be described further.
As shown in
The receiving unit 111 is used to receive a Layer 2 frame along with a VNID. The extracting unit 112 is used to extract a Layer 3 destination address from the Layer 2 frame. The determining unit 113 is used to determine whether the VM is in the TOR switch or the VM has migrated. The first performing unit 114 is used to determine another TOR switch to which a VM was migrated according to the Layer 3 destination address, and transmit the Layer 2 frame to the another TOR switch to which the VM was migrated, when the VM has migrated. The second performing unit 115 is used to determine the VM MAC address according to the Layer 3 destination address, and transmit the Layer 2 frame to the VM, when the VM is in the TOR switch.
In this embodiment, the first performing unit 114 is used to look up a Layer 2 table according to the Layer 3 destination address, and determine the another TOR switch to which the VM was migrated. where, the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM, or the Layer 2 table indicates a Mapping between VM IP address and VM MAC address for non-migrated VM, or the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM and a Mapping between VM IP address and VM MAC address for non-migrated VM.
In this embodiment, the second performing unit 115 is used to look up a Layer 2 table according to the Layer 3 destination address, and determine the migrated VM. where, the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM, or the Layer 2 table indicates a Mapping between VM IP address and VM MAC address for non-migrated VM, or the Layer 2 table indicates a Mapping between VM IP address and TOR MAC address for Migrated VM and a Mapping between VM IP address and VM MAC address for non-migrated VM.
With the embodiment of the TOR switch, the ARP flooding can be reduced or avoided in access network, and the Layer 2 table can be controlled in access switch.
This embodiment of the present disclosure further provides a TOR switch. This embodiment corresponds to the method of the above embodiment 3 and the same content will not be described further.
As shown in
The receiving unit 121 is used to receive an ARP broadcast transmitted by a VM which migrated to the TOR switch, the checking unit 122 is used to determine a VNID corresponding to the ARP, the determining unit 123 is used to determine whether the TOR switch is the DN corresponding to the VNID, the performing unit 124 is used to generates a proxy ARP broadcast with the TOR MAC address and broadcasts the proxy ARP broadcast carrying the VNID, when the TOR switch is not the DN corresponding to the VNID, the updating unit 125 is used to update the Layer 2 table, when the TOR switch is the DN corresponding to the VNID.
With the embodiment of the TOR switch, the ARP flooding can be reduced or avoided in access network, and the Layer 2 table can be controlled in access switch.
This embodiment of the present disclosure further provides a communication system.
As shown in
the access switch 131 is used to receive a Layer 3 packet from a remote Data Center carrying a VNID, determine a DN corresponding to the VNID, generate a Layer 2 frame along carrying the VNID according to the Layer 3 packet, and transmit the Layer 2 frame to the DN; and each TOR switch 132 is used to receive the Layer 2 frame carrying the VNID, extract a Layer 3 destination address according to the Layer 2 frame, determine another TOR switch or a migrated VM, and transmit the Layer 2 frame to the another TOR switch or the migrated VM.
In this embodiment, the access switch 131 is used to look up a VN-DN MAC table according to the VNID, and determine the DN corresponding to the VNID, in which, the VN-DN MAC Table indicates a Mapping between Designated Node MAC address and Virtual Network IDentifier.
In this embodiment, one of the TOR switches is used to look up a Layer 2 table according to the VNID and the Layer 3 destination address, and determine the another TOR switch to which the VM migrated, in which, the Layer 2 table indicates a Mapping between VM_IP address and TOR_MAC address for Migrated VM, or the Layer 2 table indicates a Mapping between VM_IP address and VM_MAC address for non-migrated VM, or the Layer 2 table indicates a Mapping between VM_IP address and TOR_MAC address for Migrated VM and a Mapping between VM_IP address and VM_MAC address for non-migrated VM.
In this embodiment, each of other TOR switches except one is used to look up a Layer 2 table according to the VNID and the Layer 3 destination address, and determine the migrated VM, in which, the Layer 2 table indicates a Mapping between VM_IP address and TOR_MAC address for Migrated VM, or the Layer 2 table indicates a Mapping between VM_IP address and VM_MAC address for non-migrated VM, or the Layer 2 table indicates a Mapping between VM_IP address and TOR_MAC address for Migrated VM and a Mapping between VM_IP address and VM_MAC address for non-migrated VM.
In this embodiment, each of the TOR switches is further used to check VNID to which the VM corresponds, generate a proxy ARP broadcast carrying the VNID, if the TOR switch is not the DN corresponding to the VNID, update the Layer 2 table, if the TOR switch is the DN corresponding to the VNID.
In the embodiment of the system of the present disclosure, the access switch 131 can be implemented with access switch in embodiment 4, and the content is combined here, and do not described further.
In the embodiment of the system of the present disclosure, the TOR switch 132 can be implemented with TOR switch in embodiment 5, or embodiment 5 and 6, and the content is combined here, and do not described further.
With regard to the system of the present disclosure, avoided the packet flooding in data center when the VM is migrated, avoided the ARP broadcast when VM is migrated to different TORs, avoided the growing ARP table size in access switch, and avoided the growing ARP table size in TOR switch.
The embodiments of the present disclosure further provide a computer-readable program, wherein when the program is executed in an access switch, the program enables the computer to carry out the method for transmitting packet in virtual network as described in embodiment 1.
The embodiments of the present disclosure further provide a storage medium in which a computer-readable program is stored, wherein the computer-readable program enables the computer to carry out the method for transmitting packet in virtual network as described in embodiment 1.
The embodiments of the present disclosure further provide a computer-readable program, wherein when the program is executed in a TOR switch, the program enables the computer to carry out the method for transmitting packet in virtual network as described in embodiment 2 or embodiment 3.
The embodiments of the present disclosure further provide a storage medium in which a computer-readable program is stored, wherein the computer-readable program enables the computer to carry out the method for transmitting packet in virtual network as described in embodiment 2 or embodiment 3.
It should be understood that each of the parts of the present disclosure may be implemented by hardware, software, firmware, or a combination thereof. In the above embodiments, multiple steps or methods may be realized by software or firmware that is stored in the memory and executed by an appropriate instruction executing system. For example, if it is realized by hardware, it may be realized by any one of the following technologies known in the art or a combination thereof as in another embodiment: a discrete logic circuit having a logic gate circuit for realizing logic functions of data signals, application-specific integrated circuit having an appropriate combined logic gate circuit, a programmable gate array (PGA), and a field programmable gate array (FPGA), etc.
The description or blocks in the flowcharts or of any process or method in other manners may be understood as being indicative of comprising one or more modules, segments or parts for realizing the codes of executable instructions of the steps in specific logic functions or processes, and that the scope of the preferred embodiments of the present disclosure comprise other implementations, wherein the functions may be executed in manners different from those shown or discussed, including executing the functions according to the related functions in a substantially simultaneous manner or in a reverse order, which should be understood by those skilled in the art to which the present disclosure pertains.
The logic and/or steps shown in the flowcharts or described in other manners here may be, for example, understood as a sequencing list of executable instructions for realizing logic functions, which may be implemented in any computer readable medium, for use by an instruction executing system, device or apparatus (such as a system including a computer, a system including a processor, or other systems capable of extracting instructions from an instruction executing system, device or apparatus and executing the instructions), or for use in combination with the instruction executing system, device or apparatus.
The above literal description and drawings show various features of the present disclosure. It should be understood that those skilled in the art may prepare appropriate computer codes to carry out each of the steps and processes as described above and shown in the drawings. It should be also understood that all the terminals, computers, servers, and networks may be any type, and the computer codes may be prepared according to the disclosure to carry out the present disclosure by using the apparatus.
Particular embodiments of the present disclosure have been disclosed herein. Those skilled in the art will readily recognize that the present disclosure is applicable in other environments. In practice, there exist many embodiments and implementations. The appended claims are by no means intended to limit the scope of the present disclosure to the above particular embodiments. Furthermore, any reference to “a device to . . . ” is an explanation of device plus function for describing elements and claims, and it is not desired that any element using no reference to “a device to . . . ” is understood as an element of device plus function, even though the wording of “device” is included in that claim.
Although a particular preferred embodiment or embodiments have been shown and the present disclosure has been described, it is obvious that equivalent modifications and variants are conceivable to those skilled in the art in reading and understanding the description and drawings. Especially for various functions executed by the above elements (portions, assemblies, apparatus, and compositions, etc,), except otherwise specified, it is desirable that the terms (including the reference to “device”) describing these elements correspond to any element executing particular functions of these elements (i.e. functional equivalents), even though the element is different from that executing the function of an exemplary embodiment or embodiments illustrated in the present disclosure with respect to structure. Furthermore, although the a particular feature of the present disclosure is described with respect to only one or more of the illustrated embodiments, such a feature may be combined with one or more other features of other embodiments as desired and in consideration of advantageous aspects of any given or particular application.
Patent | Priority | Assignee | Title |
10382390, | Apr 28 2017 | Cisco Technology, Inc. | Support for optimized microsegmentation of end points using layer 2 isolation and proxy-ARP within data center |
10992636, | Sep 29 2017 | Cisco Technology, Inc. | Mitigating network/hardware address explosion in network devices |
11019025, | Apr 28 2017 | Cisco Technology, Inc. | Support for optimized microsegmentation of end points using layer 2 isolation and proxy-ARP within data center |
11381543, | Sep 29 2017 | Cisco Technology, Inc. | Mitigating network/hardware address explosion in network devices |
Patent | Priority | Assignee | Title |
8990371, | Jan 31 2012 | International Business Machines Corporation | Interconnecting data centers for migration of virtual machines |
9014184, | Sep 24 2009 | ZOOM VIDEO COMMUNICATIONS, INC | System and method for identifying communication between virtual servers |
20130232492, | |||
20150188730, | |||
CN102143068, | |||
CN102457583, | |||
CN102549977, | |||
CN102647338, |
Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
Aug 20 2013 | K, KESHAVA A | HUAWEI TECHNOLOGIES CO , LTD | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 031084 | /0463 | |
Aug 20 2013 | DHODY, DHRUV | HUAWEI TECHNOLOGIES CO , LTD | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 031084 | /0463 | |
Aug 26 2013 | Huawei Technologies Co., Ltd. | (assignment on the face of the patent) | / |
Date | Maintenance Fee Events |
Aug 08 2019 | M1551: Payment of Maintenance Fee, 4th Year, Large Entity. |
Aug 09 2023 | M1552: Payment of Maintenance Fee, 8th Year, Large Entity. |
Date | Maintenance Schedule |
Feb 23 2019 | 4 years fee payment window open |
Aug 23 2019 | 6 months grace period start (w surcharge) |
Feb 23 2020 | patent expiry (for year 4) |
Feb 23 2022 | 2 years to revive unintentionally abandoned end. (for year 4) |
Feb 23 2023 | 8 years fee payment window open |
Aug 23 2023 | 6 months grace period start (w surcharge) |
Feb 23 2024 | patent expiry (for year 8) |
Feb 23 2026 | 2 years to revive unintentionally abandoned end. (for year 8) |
Feb 23 2027 | 12 years fee payment window open |
Aug 23 2027 | 6 months grace period start (w surcharge) |
Feb 23 2028 | patent expiry (for year 12) |
Feb 23 2030 | 2 years to revive unintentionally abandoned end. (for year 12) |