WO2023039831A1 - Method and apparatus for selective importing ip route - Google Patents

Method and apparatus for selective importing ip route Download PDF

Info

Publication number
WO2023039831A1
WO2023039831A1 PCT/CN2021/119062 CN2021119062W WO2023039831A1 WO 2023039831 A1 WO2023039831 A1 WO 2023039831A1 CN 2021119062 W CN2021119062 W CN 2021119062W WO 2023039831 A1 WO2023039831 A1 WO 2023039831A1
Authority
WO
WIPO (PCT)
Prior art keywords
route
edge node
provider edge
importing
routing table
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2021/119062
Other languages
French (fr)
Inventor
Jiang He
Zhe Zhou
Congjie ZHANG
Jie Wang
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telefonaktiebolaget LM Ericsson AB
Original Assignee
Telefonaktiebolaget LM Ericsson AB
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonaktiebolaget LM Ericsson AB filed Critical Telefonaktiebolaget LM Ericsson AB
Priority to US18/692,657 priority Critical patent/US20240388531A1/en
Priority to EP21957116.3A priority patent/EP4402987A4/en
Priority to PCT/CN2021/119062 priority patent/WO2023039831A1/en
Publication of WO2023039831A1 publication Critical patent/WO2023039831A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4604LAN interconnection over a backbone network, e.g. Internet, Frame Relay
    • H04L12/462LAN interconnection over a bridge based backbone
    • H04L12/4625Single bridge functionality, e.g. connection of two networks over a single bridge
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • H04L45/04Interdomain routing, e.g. hierarchical routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/745Address table lookup; Address filtering

Definitions

  • the non-limiting and exemplary embodiments of the present disclosure generally relate to the technical field of communications, and specifically to methods and apparatuses for selective importing IP (Internet Protocol) route.
  • IP Internet Protocol
  • Layer 3 i.e., Network Layer
  • broadcast domains e.g., IP subnets
  • EVPN Ethernet Virtual Private Network
  • MPLS multi-protocol label switching
  • An IP subnet is represented by an EVPN Instance (EVI) for a VLAN (Virtual Local Area Network) -based service or by an (EVI, VLAN) for a VLAN-aware bundle service.
  • EVPN IRB Integrated Routing and Bridging
  • the inter-subnet communication is traditionally achieved at centralized L3 Gateway (L3GW) devices where all the inter-subnet forwarding is performed and all the inter-subnet communication policies are enforced.
  • L3GW L3 Gateway
  • IRB functionality is introduced on the PEs (also referred to as EVPN NVEs (Network Virtualization Edges) ) attached to TSes in order to avoid inefficient forwarding of tenant traffic.
  • PEs also referred to as EVPN NVEs (Network Virtualization Edges)
  • AC Attachment Circuit
  • EVPN IRB introduces a large number of IP host routes (EVPN Route Type 2) , which consume much more forwarding plane resources than before.
  • IP host routes EVPN Route Type 2
  • BGP-LU BGP (Border Gateway Protocol) Labeled Unicast) routes
  • host routes for local MAC-VRF/BT Bridge Table
  • the importing to IP-VRF is not mandatory.
  • the receiving PE can still forward the packet to the destination based on the route of the MAC-VRF/BT and/or the subnet of the IRB interface. Without the IP host routes, sometimes sub-optimal routing can happen.
  • an improved solution for importing IP route may be desirable.
  • a method performed by a first provider edge node in a network.
  • the method comprises receiving an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
  • IP Internet Protocol
  • the method further comprises determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • the method further comprises importing the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
  • the method further comprises skipping importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
  • determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises determining to import the IP route to the IP routing table of the first provider edge node when at least one customer device connected to the first provider edge node is in the broadcast domain.
  • determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises determining whether to import the IP route to the IP routing table of the first provider edge node based on an importing policy when no customer device connected to the first provider edge node is in the broadcast domain.
  • the importing policy is determined based on at least one of resource utilization or administrative control.
  • the importing policy comprises at least one of when resource consumption is beyond or equal to a threshold, disabling IP route importing, when resource consumption is below the threshold, enabling IP route importing, when a configuration indicates enabling the IP route importing, enabling IP route importing, or when a configuration indicates disabling the IP route importing, disabling IP route importing.
  • the IP route comprises an Ethernet Virtual Private Network (EVPN) Medium Access Control/Internet Protocol (MAC/IP) Advertisement Route.
  • EVPN Ethernet Virtual Private Network
  • MAC/IP Medium Access Control/Internet Protocol
  • the IP routing table comprises a Virtual Private Network (VPN) Routing and Forwarding table for IP routes.
  • VPN Virtual Private Network
  • the broadcast domain corresponds to a Virtual Local Area Network (VLAN) .
  • VLAN Virtual Local Area Network
  • the network comprises Ethernet Virtual Private Network (EVPN) Integrated Routing and Bridging (IRB) feature.
  • EVPN Virtual Private Network
  • IRB Integrated Routing and Bridging
  • a first provider edge node in a network comprises a processor and a memory coupled to the processor. Said memory contains instructions executable by said processor. Said first provider edge node is operative to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. Said first provider edge node is further operative to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • IP Internet Protocol
  • a first provider edge node comprises a receiving module and a determining module.
  • the receiving module may be configured to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
  • the determining module may be configured to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • IP Internet Protocol
  • the first provider edge node further comprises an importing module configured to import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
  • the first provider edge node further comprises a skipping module configured to skip importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
  • a computer program product comprising instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the method according to the first aspect of the disclosure.
  • a computer-readable storage medium storing instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the method according to the first aspect of the disclosure.
  • the proposed solution can protect critical routes from being out of resource.
  • the proposed solution can optimize forwarding plane resource utilization.
  • the proposed solution can enable flexible compromise between resource utilization and optimal forwarding.
  • the proposed solution can be compliant to EVPN IRB specification.
  • FIG. 1 shows an example of system architecture according to an embodiment of the present disclosure
  • FIG. 2 shows a flowchart of a method according to an embodiment of the present disclosure
  • FIG. 3 shows a flowchart of a method according to another embodiment of the present disclosure
  • FIG. 4 shows a flowchart of a selective IP route importing procedure according to an embodiment of the present disclosure
  • FIG. 5 shows an example of sub-optimal forwarding according to an embodiment of the present disclosure
  • FIG. 6 is a block diagram showing an apparatus suitable for practicing some embodiments of the disclosure.
  • FIG. 7 is a block diagram showing a first provider edge node according to an embodiment of the disclosure.
  • network refers to a network following any suitable (wireless or wired) communication standards.
  • network and “system” can be used interchangeably.
  • the communications between two communication devices in the network may be performed according to any suitable communication protocols, including, but not limited to, the communication protocols as defined by a standard organization such as IETF.
  • the communication protocols may comprise various route protocols, switching protocols and/or any other protocols either currently known or to be developed in the future.
  • the term “provider edge node” or “provider edge device (PE) ” refers to a network function (NF) which can be implemented in a network element (physical or virtual) of a communication network.
  • the provider edge node or PE can be implemented either as a network element on a dedicated hardware, as a software instance running on a dedicated hardware, or as a virtualized function instantiated on an appropriate platform, e.g. on a cloud infrastructure.
  • Virtualizing means creating virtual versions of apparatuses or devices which may include virtualizing hardware platforms, storage devices and networking resources.
  • virtualization can be applied to a provider edge node and relates to an implementation in which at least a portion of the functionality is implemented as one or more virtual components (e.g., via one or more applications, components, functions, virtual machines or containers executing on one or more physical processing nodes in one or more networks) .
  • some or all of the functions described herein may be implemented as virtual components executed by one or more virtual machines implemented in one or more virtual environments hosted by one or more of hardware nodes. Further, in embodiments in which the virtual node is not a radio access node or does not require radio connectivity (e.g., a core network node) , then the provider edge node or PE may be entirely virtualized.
  • the virtual node is not a radio access node or does not require radio connectivity (e.g., a core network node)
  • the provider edge node or PE may be entirely virtualized.
  • the functions may be implemented by one or more applications (which may alternatively be called software instances, virtual appliances, network functions, virtual nodes, virtual network functions, etc. ) operative to implement some of the features, functions, and/or benefits of some of the embodiments disclosed herein.
  • Applications are run in virtualization environment which provides hardware comprising processing circuitry and memory.
  • Memory contains instructions executable by processing circuitry whereby application is operative to provide one or more of the features, benefits, and/or functions disclosed herein.
  • Virtualization environment comprises general-purpose or special-purpose network hardware devices comprising a set of one or more processors or processing circuitry, which may be commercial off-the-shelf (COTS) processors, dedicated Application Specific Integrated Circuits (ASICs) , or any other type of processing circuitry including digital or analog hardware components or special purpose processors.
  • Each hardware device may comprise memory which may be non-persistent memory for temporarily storing instructions or software executed by processing circuitry.
  • Each hardware device may comprise one or more network interface controllers (NICs) , also known as network interface cards, which include physical network interface.
  • NICs network interface controllers
  • Each hardware device may also include non-transitory, persistent, machine-readable storage media -having stored therein software and/or instructions executable by processing circuitry.
  • Software may include any type of software including software for instantiating one or more virtualization layers (also referred to as hypervisors) , software to execute virtual machines as well as software allowing it to execute functions, features and/or benefits described in relation with some embodiment
  • Virtual machines comprise virtual processing, virtual memory, virtual networking or interface and virtual storage, and may be run by a corresponding virtualization layer or hypervisor. Different embodiments of the instance of virtual appliance may be implemented on one or more of virtual machines, and the implementations may be made in different ways.
  • processing circuitry executes software to instantiate the hypervisor or virtualization layer, which may sometimes be referred to as a virtual machine monitor (VMM) .
  • Virtualization layer may present a virtual operating platform that appears like networking hardware to virtual machine.
  • references in the specification to “one embodiment, ” “an embodiment, ” “an example embodiment, ” and the like indicate that the embodiment described may include a particular feature, structure, or characteristic, but it is not necessary that every embodiment includes the particular feature, structure, or characteristic. Moreover, such phrases are not necessarily referring to the same embodiment. Further, when a particular feature, structure, or characteristic is described in connection with an embodiment, it is submitted that it is within the knowledge of one skilled in the art to affect such feature, structure, or characteristic in connection with other embodiments whether or not explicitly described.
  • first and second etc. may be used herein to describe various elements, these elements should not be limited by these terms. These terms are only used to distinguish one element from another. For example, a first element could be termed a second element, and similarly, a second element could be termed a first element, without departing from the scope of example embodiments.
  • the term “and/or” includes any and all combinations of one or more of the associated listed terms.
  • the phrase “at least one of A and B” or “at least one of A or B” should be understood to mean “only A, only B, or both A and B. ”
  • the phrase “A and/or B” should be understood to mean “only A, only B, or both A and B. ”
  • a communication system may further include any additional elements suitable to support communication between any two communication devices.
  • the communication system may provide communication and various types of services to one or more customer devices to facilitate the customer devices’ access to and/or use of the services provided by, or via, the communication system.
  • FIG. 1 shows an example of system architecture according to an embodiment of the present disclosure.
  • the system may comprise two provider edge nodes (PEs) simply denoted as PE1 and PE2 which can communicate with each other over a network 20.
  • PEs provider edge nodes
  • Each PE may connect to one or more CEs (Customer Edge devices) or customer devices over Attachment Circuit (AC) .
  • CEs Customer Edge devices
  • AC Attachment Circuit
  • the network 20 may be any suitable network.
  • the network 20 may be, for example, an IP based network, or an MPLS based network, or a combination thereof.
  • the network 20 may be EVPN with IRB feature.
  • the CE enables a customer device to connect to the PE.
  • the customer device may be, for example, a terminal device a mobile phone, a pad computer, a laptop computer, a desktop computer, or any other devices with wired and/or wireless communication capability.
  • the CE may be a host, a router, a switch, a gateway, a modem, a firewall, a network interface controller (NIC) , a hub, a bridge, or any other type of data transfer device.
  • the PE is an edge node of the network 20 and functions as an edge device responsible for providing the customer device with VPN service such as EVPN services.
  • the PE may be, for example, a router, a switch, a gateway, a modem, a firewall, an NIC, a hub, a bridge, or any other type of data transfer device. As described above, PE can be a virtual instance/functionality.
  • an enterprise has CEs (for example, application servers) deployed in multiple data centers at different locations to communicate with each other within the same L3VPN (layer 3 VPN) .
  • CEs for example, application servers
  • L3VPN layer 3 VPN
  • the EVPN IRB may be used to accommodate L3VPN services over the transport networks connecting to these data centers.
  • These CE devices located in different data centers can be considered as belonging to the same EVPN instance.
  • IP-VRF IP Virtual Routing and Forwarding table
  • MAC-VRFs MAC Virtual Routing and Forwarding tables
  • An IP-VRF as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 4364, the disclosure of which is incorporated by reference herein in its entirety, is the instantiation of an IPVPN instance in a PE.
  • a MAC-VRF as defined in IETF RFC7432, the disclosure of which is incorporated by reference herein in its entirety, is the instantiation of an EVI (EVPN Instance) in a PE.
  • a MAC-VRF consists of one or more bridge tables, where each bridge table corresponds to a VLAN (broadcast domain) . If service interfaces for an EVPN PE are configured in VLAN-Based mode (i.e., section 6.1 of IETF RFC7432) , then there is only a single bridge table per MAC-VRF (per EVI) -i.e., there is only one tenant VLAN per EVI. However, if service interfaces for an EVPN PE are configured in VLAN-Aware Bundle mode (i.e., section 6.3 of IETF RFC7432) , then there are several bridge tables per MAC-VRF (per EVI) -i.e., there are several tenant VLANs per EVI.
  • Each bridge table is connected to an IP-VRF via an L3 interface called IRB interface. Since a single tenant subnet is typically represented by a VLAN (and thus supported by a single bridge table) , for a given tenant there are as many bridge tables as there are subnets and thus there are also as many IRB interfaces between the tenant IP-VRF and the associated bridge tables.
  • FIG. 2 shows a flowchart of a method according to an embodiment of the present disclosure, which may be performed by an apparatus implemented in or at or as a first provider edge node in a network or communicatively coupled to the first provider edge node.
  • the apparatus may provide means or modules for accomplishing various parts of the method 200 as well as means or modules for accomplishing other processes in conjunction with other components.
  • the network may be any suitable communication network.
  • the network may be the network which can provide virtual network service.
  • the network may be the network which can provide intra and inter-subnet forwarding service.
  • the network may be the network which can provide Layer 3 forwarding service.
  • the network may comprise Ethernet Virtual Private Network (EVPN) Integrated Routing and Bridging (IRB) feature for example as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
  • EVPN Virtual Private Network
  • IRB Integrated Routing and Bridging
  • the first provider edge node may be any suitable device. As described above, the first provider edge node can be a virtual instance/functionality.
  • the first provider edge node may be an edge device with IRB capability.
  • the first provider edge node may be attached to one or more Tenant Systems (TSes) .
  • TSes Tenant Systems
  • the first provider edge node with IRB capability receives tenant traffic over an Attachment Circuit (AC) , it can not only locally bridge the tenant intra-subnet traffic but also can locally route the tenant inter-subnet traffic on a packet by packet basis thus meeting the requirements for both intra and inter-subnet forwarding.
  • the first provider edge node may be PE with IRB capability as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
  • the first provider edge node may receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
  • IP Internet Protocol
  • the second provider edge node may be any suitable device. As described above, the second provider edge node can be a virtual instance/functionality.
  • the second provider edge node may be an edge device with IRB capability.
  • the second provider edge node may be attached to one or more Tenant Systems (TSes) .
  • TSes Tenant Systems
  • the first provider edge node with IRB capability receives tenant traffic over an Attachment Circuit (AC) , it can not only locally bridge the tenant intra-subnet traffic but also can locally route the tenant inter-subnet traffic on a packet by packet basis thus meeting the requirements for both intra and inter-subnet forwarding.
  • the second provider edge node may be PE with IRB capability as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
  • a broadcast domain is a collection of network devices that receive broadcast traffic from each other.
  • an EVI consists of a single or multiple broadcast domains.
  • a broadcast domain is equivalent to an EVI.
  • VLAN-aware bundle service model an EVI contains multiple broadcast domains.
  • broadcast domain and subnet are equivalent terms and wherever "subnet” is used, it means "IP subnet” .
  • the broadcast domain corresponds to a Virtual Local Area Network (VLAN) .
  • VLAN Virtual Local Area Network
  • the IP route may comprise any suitable information.
  • the IP route comprises an Ethernet Virtual Private Network (EVPN) Medium Access Control/Internet Protocol (MAC/IP) Advertisement Route.
  • EVPN Ethernet Virtual Private Network
  • MAC/IP Medium Access Control/Internet Protocol
  • the IP route may be same as the MAC/IP Advertisement Route as described in section 7.2 of IETF RFC7432.
  • the first provider edge node may determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • the policy may be predefined or configured in the first provider edge node.
  • the policy in different provider edge nodes may be different for example depending on application scenarios or provider edge node performance.
  • the first provider edge node may determine to import the IP route to the IP routing table of the first provider edge node.
  • the first provider edge node may determine whether to import the IP route to the IP routing table of the first provider edge node based on an importing policy.
  • the importing policy may be predefined or configured in the first provider edge node.
  • the importing policy in different provider edge nodes may be different for example depending on application scenarios or provider edge node performance.
  • the importing policy may be determined in various ways. In an embodiment, the importing policy is determined based on at least one of resource utilization or administrative control. In addition, the importing policy may be determined based on priority of IP route, user profile, etc.
  • Flexible policy control can be implemented to decide importing or not. Thus critical IP host routes are protected.
  • the importing policy can be based on forwarding plane resource utilization status, and/or administrative control.
  • a threshold may be defined (for example, 60%) and when resource consumption is beyond or equal to the threshold, the first provider edge node may disable the IP host routes importing. When resource consumption is below the threshold, the first provider edge node may enable the IP host route importing.
  • Administrative control based It is a configuration (on/off) to enable/disable the IP route importing. When enabled, the first provider edge node may import the received IP host routes to forwarding plane. When disabled, the first provider edge node may not import the received IP host routes to forwarding plane.
  • a threshold is defined for routing table utilization on MAC/IP routes, for example, 60%. If the threshold is not reached, IP host route importing is accepted. Otherwise, importing is stopped.
  • the threshold may be determined based on various ways such as predefined, configured, learnt by machine learning.
  • IP host route importing is accepted. otherwise, IP host route importing is rejected.
  • the importing policy comprises at least one of:
  • Disabling IP route importing means that the IP route can not be imported to the IP routing table of the first provider edge node. Enabling IP route importing means that the IP route can be imported to the IP routing table of the first provider edge node.
  • the importing policy may be configured with a priority. When there are two or more importing policies, the importing policy with the highest priority will be used to determine whether to import the IP route to the IP routing table of the first provider edge node.
  • FIG. 3 shows a flowchart of a method according to another embodiment of the present disclosure, which may be performed by an apparatus implemented in or at or as a first provider edge node in a network or communicatively coupled to the first provider edge node.
  • the apparatus may provide means or modules for accomplishing various parts of the method 300 as well as means or modules for accomplishing other processes in conjunction with other components. For some parts which have been described in the above embodiments, detailed description thereof is omitted here for brevity.
  • the first provider edge node may receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
  • IP Internet Protocol
  • the first provider edge node may determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • Block 304 is same as block 204 of FIG. 2.
  • the first provider edge node may import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
  • the first provider edge node may skip import the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
  • FIG. 4 shows a flowchart of a selective IP route importing procedure according to an embodiment of the present disclosure. This embodiment is implemented in EVPN IRB.
  • PE2 receives an EVPN MAC/IP Advertisement route, which is advertised by PE1.
  • PE2 then selectively imports received EVPN MAC/IP Advertisement route.
  • IRB1 10.10.10.0/24) is configured
  • BGP Border Gateway Protocol
  • On PE1 when a host route (10.10.10.6/32) is dynamically learnt on MAC-VRF1/BT1 (identified by Route Target/VLAN configured) , this route is advertised via BGP (via EVPN route type 2, MAC/IP route) to other PEs.
  • PE2 receives MAC/IP route to be imported to IP-VRF.
  • IP-VRF IP-VRF1/BT1
  • policy control resource utilization based as example here
  • policy control for selective importing the IP host routes is implemented when the receiving PE does not have the corresponding MAC-VRF/BT.
  • PE2 determines whether MAC-VRF1/BT1 is available on PE2. When MAC-VRF1/BT1 is available on PE2, the MAC/IP route is imported to IP-VRF1 at block 405.
  • PE2 checks importing policy.
  • the importing policy may comprises at least one of forwarding resource utilization status, administrative control (e.g., on/off) or other conditions.
  • PE2 determines whether importing is permitted based on the importing policy. For example, on PE2, the routing table resource utilization is below 60% (a pre-configured threshold) . Then an entry of 10.10.10.6/32 -> PE1 is installed (e.g., imported to IP-VRF1) at block 406. At a later time, another host route (10.10.10.7/32) is received by PE2, at this time the routing table resource utilization is beyond 60%, this host route is not installed to the routing table at block 405.
  • FIGs. 2-4 may be viewed as method steps, and/or as operations that result from operation of computer program code, and/or as a plurality of coupled logic circuit elements constructed to carry out the associated function (s) .
  • the schematic flow chart diagrams described above are generally set forth as logical flow chart diagrams. As such, the depicted order and labeled steps are indicative of specific embodiments of the presented methods. Other steps and methods may be conceived that are equivalent in function, logic, or effect to one or more steps, or portions thereof, of the illustrated methods. Additionally, the order in which a particular method occurs may or may not strictly adhere to the order of the corresponding steps shown.
  • FIG. 5 shows an example of sub-optimal forwarding according to an embodiment of the present disclosure.
  • PE2 can forward traffic to CE1 to either PE1 or PE3 based on load balance. About half traffic will be forwarded via sub-optimal path (PE2->PE3->PE1) .
  • Selective IP route importing accommodates compromise between forwarding resource utilization optimization and optimal forwarding. Policy control provides enough possibility and flexibility for compromise to customer.
  • the proposed solution can protect critical routes from being out of resource.
  • the proposed solution can optimize forwarding plane resource utilization.
  • the proposed solution can enable flexible compromise between resource utilization and optimal forwarding.
  • the proposed solution can be compliant to EVPN IRB specification.
  • FIG. 6 is a block diagram showing an apparatus suitable for practicing some embodiments of the disclosure.
  • the first provider edge node described above may be implemented as or through the apparatus 600.
  • the apparatus 600 comprises at least one processor 621, such as a digital processor (DP) , and at least one memory (MEM) 622 coupled to the processor 621.
  • the apparatus 620 may further comprise a transmitter TX and receiver RX 623 coupled to the processor 621.
  • the MEM 622 stores a program (PROG) 624.
  • the PROG 624 may include instructions that, when executed on the associated processor 621, enable the apparatus 620 to operate in accordance with the embodiments of the present disclosure.
  • a combination of the at least one processor 621 and the at least one MEM 622 may form processing means 626 adapted to implement various embodiments of the present disclosure.
  • Various embodiments of the present disclosure may be implemented by computer program executable by one or more of the processor 621, software, firmware, hardware or in a combination thereof.
  • the MEM 622 may be of any type suitable to the local technical environment and may be implemented using any suitable data storage technology, such as semiconductor based memory devices, magnetic memory devices and systems, optical memory devices and systems, fixed memories and removable memories, as non-limiting examples.
  • the processor 621 may be of any type suitable to the local technical environment, and may include one or more of general purpose computers, special purpose computers, microprocessors, digital signal processors (DSPs) and processors based on multicore processor architecture, as non-limiting examples.
  • general purpose computers special purpose computers
  • microprocessors microprocessors
  • DSPs digital signal processors
  • processors based on multicore processor architecture, as non-limiting examples.
  • the memory 622 contains instructions executable by the processor 621, whereby the first provider edge node operates according to any step of the methods related to the first provider edge node as described above.
  • FIG. 7 is a block diagram showing a first provider edge node according to an embodiment of the disclosure.
  • the first provider edge node 700 comprises a receiving module 702 and a determining module 704.
  • the receiving module 702 may be configured to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
  • the determining module 704 may be configured to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  • IP Internet Protocol
  • the first provider edge node 700 further comprises an importing module 706 configured to import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
  • the first provider edge node 700 further comprises a skipping module 708 configured to skip importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
  • unit or module may have conventional meaning in the field of electronics, electrical devices and/or electronic devices and may include, for example, electrical and/or electronic circuitry, devices, modules, processors, memories, logic solid state and/or discrete devices, computer programs or instructions for carrying out respective tasks, procedures, computations, outputs, and/or displaying functions, and so on, as such as those that are described herein.
  • the first provider edge node may not need a fixed processor or memory, any computing resource and storage resource may be arranged from the first provider edge node in the communication system.
  • the introduction of virtualization technology and network computing technology may improve the usage efficiency of the network resources and the flexibility of the network.
  • a computer program product being tangibly stored on a computer readable storage medium and including instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the methods as described above.
  • a computer-readable storage medium storing instructions which when executed by at least one processor, cause the at least one processor to carry out any of the methods as described above.
  • the present disclosure may also provide a carrier containing the computer program as mentioned above, wherein the carrier is one of an electronic signal, optical signal, radio signal, or computer readable storage medium.
  • the computer readable storage medium can be, for example, an optical compact disk or an electronic memory device like a RAM (random access memory) , a ROM (read only memory) , Flash memory, magnetic tape, CD-ROM, DVD, Blue-ray disc and the like.
  • an apparatus implementing one or more functions of a corresponding apparatus described with an embodiment comprises not only prior art means, but also means for implementing the one or more functions of the corresponding apparatus described with the embodiment and it may comprise separate means for each separate function or means that may be configured to perform one or more functions.
  • these techniques may be implemented in hardware (one or more apparatuses) , firmware (one or more apparatuses) , software (one or more modules) , or combinations thereof.
  • firmware or software implementation may be made through modules (e.g., procedures, functions, and so on) that perform the functions described herein.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Embodiments of the present disclosure provide method and apparatus for selective importing IP route. A method performed by a first provider edge node in a network comprises receiving an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. The method further comprises determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy.

Description

METHOD AND APPARATUS FOR SELECTIVE IMPORTING IP ROUTE TECHNICAL FIELD
The non-limiting and exemplary embodiments of the present disclosure generally relate to the technical field of communications, and specifically to methods and apparatuses for selective importing IP (Internet Protocol) route.
BACKGROUND
This section introduces aspects that may facilitate a better understanding of the disclosure. Accordingly, the statements of this section are to be read in this light and are not to be understood as admissions about what is in the prior art or what is not in the prior art.
Layer 3 (i.e., Network Layer) forwarding among hosts across different broadcast domains (e.g., IP subnets) may be required in some networks.
EVPN (Ethernet Virtual Private Network) provides an extensible and flexible multi-homing VPN (Virtual Private Network) solution over an multi-protocol label switching (MPLS) core/IP network for intra-subnet connectivity among Tenant Systems (TSes) and End Devices that can be physical or virtual. An IP subnet is represented by an EVPN Instance (EVI) for a VLAN (Virtual Local Area Network) -based service or by an (EVI, VLAN) for a VLAN-aware bundle service. However, there are scenarios for which there is a need for a dynamic and efficient inter-subnet connectivity among these Tenant Systems and End Devices while maintaining the multi-homing capabilities of EVPN. The EVPN IRB (Integrated Routing and Bridging) can address such requirements.
The inter-subnet communication is traditionally achieved at centralized L3 Gateway (L3GW) devices where all the inter-subnet forwarding is performed and all the inter-subnet communication policies are enforced. When two TSes belonging to two different subnets connected to the same PE wanted to communicate with each other, their traffic needed to be backhauled from the PE all the way to the centralized gateway where inter-subnet switching is performed and then back to the PE. For today's large multi-tenant data center, this scheme is very inefficient and sometimes impractical.
In order to overcome the drawback of the centralized layer-3 GW approach, IRB functionality is introduced on the PEs (also referred to as EVPN NVEs (Network Virtualization Edges) ) attached to TSes in order to avoid inefficient forwarding of tenant traffic. When a PE with IRB capability receives tenant traffic over an Attachment Circuit (AC) , it can not only locally bridge the tenant intra-subnet traffic but also can locally route the tenant inter-subnet traffic on a  packet by packet basis thus meeting the requirements for both intra and inter-subnet forwarding and avoiding non-optimal traffic forwarding associated with centralized layer-3 GW approach.
As described in draft-ietf-bess-evpn-inter-subnet-forwarding-15 (an Internet-Draft of IETF (Internet Engineering Task Force) ) , the disclosure of which is incorporated by reference herein in its entirety, in symmetric mode, when a PE (provider edge node) receives an EVPN MAC/IP (Medium Access Control/Internet Protocol) Advertisement route, it uses IP-VRF (VPN Routing and Forwarding table for IP routes) route target to identify a corresponding IP-VRF and imports the IP address into it. Once the PE receives a packet destined to the IP address, by lookup the imported IP route, the PE forwards the packet to the destination.
SUMMARY
This summary is provided to introduce a selection of concepts in a simplified form that are further described below in the detailed description. This summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used to limit the scope of the claimed subject matter.
There are some problems in the existing solutions for Layer 3 forwarding among hosts across different broadcast domains (e.g., IP subnets) . For example, EVPN IRB introduces a large number of IP host routes (EVPN Route Type 2) , which consume much more forwarding plane resources than before. There may be not sufficient resources for critical IP routes, such as BGP-LU (BGP (Border Gateway Protocol) Labeled Unicast) routes, host routes for local MAC-VRF/BT (Bridge Table) , which may lead to traffic loss. If a receiving PE does not have the MAC-VRF/BT identified by the MAC/IP route, the importing to IP-VRF is not mandatory. At that time, the receiving PE can still forward the packet to the destination based on the route of the MAC-VRF/BT and/or the subnet of the IRB interface. Without the IP host routes, sometimes sub-optimal routing can happen.
To overcome or mitigate at least one above mentioned problems or other problems, an improved solution for importing IP route may be desirable.
In a first aspect of the disclosure, there is provided a method performed by a first provider edge node in a network. The method comprises receiving an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. The method further comprises determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
In an embodiment, the method further comprises importing the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
In an embodiment, the method further comprises skipping importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
In an embodiment, determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises determining to import the IP route to the IP routing table of the first provider edge node when at least one customer device connected to the first provider edge node is in the broadcast domain.
In an embodiment, determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises determining whether to import the IP route to the IP routing table of the first provider edge node based on an importing policy when no customer device connected to the first provider edge node is in the broadcast domain.
In an embodiment, the importing policy is determined based on at least one of resource utilization or administrative control.
In an embodiment, the importing policy comprises at least one of when resource consumption is beyond or equal to a threshold, disabling IP route importing, when resource consumption is below the threshold, enabling IP route importing, when a configuration indicates enabling the IP route importing, enabling IP route importing, or when a configuration indicates disabling the IP route importing, disabling IP route importing.
In an embodiment, the IP route comprises an Ethernet Virtual Private Network (EVPN) Medium Access Control/Internet Protocol (MAC/IP) Advertisement Route.
In an embodiment, the IP routing table comprises a Virtual Private Network (VPN) Routing and Forwarding table for IP routes.
In an embodiment, the broadcast domain corresponds to a Virtual Local Area Network (VLAN) .
In an embodiment, the network comprises Ethernet Virtual Private Network (EVPN) Integrated Routing and Bridging (IRB) feature.
In a second aspect of the disclosure, there is provided a first provider edge node in a network. The first provider edge node comprises a processor and a memory coupled to the processor. Said memory contains instructions executable by said processor. Said first provider edge node is operative to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. Said first provider edge node is further operative to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
In a third aspect of the disclosure, there is provided a first provider edge node. The first provider edge node comprises a receiving module and a determining module. The receiving  module may be configured to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. The determining module may be configured to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
In an embodiment, the first provider edge node further comprises an importing module configured to import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
In an embodiment, the first provider edge node further comprises a skipping module configured to skip importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
In a fourth aspect of the disclosure, there is provided a computer program product comprising instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the method according to the first aspect of the disclosure.
In a fifth aspect of the disclosure, there is provided a computer-readable storage medium storing instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the method according to the first aspect of the disclosure.
Embodiments herein afford many advantages, of which a non-exhaustive list of examples follows. In some embodiments herein, the proposed solution can protect critical routes from being out of resource. In some embodiments herein, the proposed solution can optimize forwarding plane resource utilization. In some embodiments herein, the proposed solution can enable flexible compromise between resource utilization and optimal forwarding. In some embodiments herein, the proposed solution can be compliant to EVPN IRB specification. In some embodiments herein, there is no inter-operability issue due to local behavior on the provide edge device. The embodiments herein are not limited to the features and advantages mentioned above. A person skilled in the art will recognize additional features and advantages upon reading the following detailed description.
BRIEF DESCRIPTION OF THE DRAWINGS
The above and other aspects, features, and benefits of various embodiments of the present disclosure will become more fully apparent, by way of example, from the following detailed description with reference to the accompanying drawings, in which like reference numerals or letters are used to designate like or equivalent elements. The drawings are illustrated  for facilitating better understanding of the embodiments of the disclosure and not necessarily drawn to scale, in which:
FIG. 1 shows an example of system architecture according to an embodiment of the present disclosure;
FIG. 2 shows a flowchart of a method according to an embodiment of the present disclosure;
FIG. 3 shows a flowchart of a method according to another embodiment of the present disclosure;
FIG. 4 shows a flowchart of a selective IP route importing procedure according to an embodiment of the present disclosure;
FIG. 5 shows an example of sub-optimal forwarding according to an embodiment of the present disclosure;
FIG. 6 is a block diagram showing an apparatus suitable for practicing some embodiments of the disclosure; and
FIG. 7 is a block diagram showing a first provider edge node according to an embodiment of the disclosure.
DETAILED DESCRIPTION
The embodiments of the present disclosure are described in detail with reference to the accompanying drawings. It should be understood that these embodiments are discussed only for the purpose of enabling those skilled persons in the art to better understand and thus implement the present disclosure, rather than suggesting any limitations on the scope of the present disclosure. Reference throughout this specification to features, advantages, or similar language does not imply that all of the features and advantages that may be realized with the present disclosure should be or are in any single embodiment of the disclosure. Rather, language referring to the features and advantages is understood to mean that a specific feature, advantage, or characteristic described in connection with an embodiment is included in at least one embodiment of the present disclosure. Furthermore, the described features, advantages, and characteristics of the disclosure may be combined in any suitable manner in one or more embodiments. One skilled in the relevant art will recognize that the disclosure may be practiced without one or more of the specific features or advantages of a particular embodiment. In other instances, additional features and advantages may be recognized in certain embodiments that may not be present in all embodiments of the disclosure.
As used herein, the term “network” refers to a network following any suitable (wireless or wired) communication standards. In the following description, the terms “network”  and “system” can be used interchangeably. Furthermore, the communications between two communication devices in the network may be performed according to any suitable communication protocols, including, but not limited to, the communication protocols as defined by a standard organization such as IETF. For example, the communication protocols may comprise various route protocols, switching protocols and/or any other protocols either currently known or to be developed in the future.
As used herein, the term “provider edge node” or “provider edge device (PE) ” refers to a network function (NF) which can be implemented in a network element (physical or virtual) of a communication network. For example, the provider edge node or PE can be implemented either as a network element on a dedicated hardware, as a software instance running on a dedicated hardware, or as a virtualized function instantiated on an appropriate platform, e.g. on a cloud infrastructure.
Virtualizing means creating virtual versions of apparatuses or devices which may include virtualizing hardware platforms, storage devices and networking resources. As used herein, virtualization can be applied to a provider edge node and relates to an implementation in which at least a portion of the functionality is implemented as one or more virtual components (e.g., via one or more applications, components, functions, virtual machines or containers executing on one or more physical processing nodes in one or more networks) .
In some embodiments, some or all of the functions described herein may be implemented as virtual components executed by one or more virtual machines implemented in one or more virtual environments hosted by one or more of hardware nodes. Further, in embodiments in which the virtual node is not a radio access node or does not require radio connectivity (e.g., a core network node) , then the provider edge node or PE may be entirely virtualized.
The functions may be implemented by one or more applications (which may alternatively be called software instances, virtual appliances, network functions, virtual nodes, virtual network functions, etc. ) operative to implement some of the features, functions, and/or benefits of some of the embodiments disclosed herein. Applications are run in virtualization environment which provides hardware comprising processing circuitry and memory. Memory contains instructions executable by processing circuitry whereby application is operative to provide one or more of the features, benefits, and/or functions disclosed herein.
Virtualization environment, comprises general-purpose or special-purpose network hardware devices comprising a set of one or more processors or processing circuitry, which may be commercial off-the-shelf (COTS) processors, dedicated Application Specific Integrated Circuits (ASICs) , or any other type of processing circuitry including digital or analog hardware components or special purpose processors. Each hardware device may comprise memory which  may be non-persistent memory for temporarily storing instructions or software executed by processing circuitry. Each hardware device may comprise one or more network interface controllers (NICs) , also known as network interface cards, which include physical network interface. Each hardware device may also include non-transitory, persistent, machine-readable storage media -having stored therein software and/or instructions executable by processing circuitry. Software may include any type of software including software for instantiating one or more virtualization layers (also referred to as hypervisors) , software to execute virtual machines as well as software allowing it to execute functions, features and/or benefits described in relation with some embodiments described herein.
Virtual machines, comprise virtual processing, virtual memory, virtual networking or interface and virtual storage, and may be run by a corresponding virtualization layer or hypervisor. Different embodiments of the instance of virtual appliance may be implemented on one or more of virtual machines, and the implementations may be made in different ways.
During operation, processing circuitry executes software to instantiate the hypervisor or virtualization layer, which may sometimes be referred to as a virtual machine monitor (VMM) . Virtualization layer may present a virtual operating platform that appears like networking hardware to virtual machine.
References in the specification to “one embodiment, ” “an embodiment, ” “an example embodiment, ” and the like indicate that the embodiment described may include a particular feature, structure, or characteristic, but it is not necessary that every embodiment includes the particular feature, structure, or characteristic. Moreover, such phrases are not necessarily referring to the same embodiment. Further, when a particular feature, structure, or characteristic is described in connection with an embodiment, it is submitted that it is within the knowledge of one skilled in the art to affect such feature, structure, or characteristic in connection with other embodiments whether or not explicitly described.
It shall be understood that although the terms “first” and “second” etc. may be used herein to describe various elements, these elements should not be limited by these terms. These terms are only used to distinguish one element from another. For example, a first element could be termed a second element, and similarly, a second element could be termed a first element, without departing from the scope of example embodiments. As used herein, the term “and/or” includes any and all combinations of one or more of the associated listed terms.
As used herein, the phrase “at least one of A and B” or “at least one of A or B” should be understood to mean “only A, only B, or both A and B. ” The phrase “A and/or B” should be understood to mean “only A, only B, or both A and B. ”
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of example embodiments. As used herein, the singular forms “a” , “an” and “the” are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms “comprises” , “comprising” , “has” , “having” , “includes” and/or “including” , when used herein, specify the presence of stated features, elements, and/or components etc., but do not preclude the presence or addition of one or more other features, elements, components and/or combinations thereof.
It is noted that these terms as used in this document are used only for ease of description and differentiation among nodes, devices or networks etc. With the development of the technology, other terms with the similar/same meanings may also be used.
In the following description and claims, unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skills in the art to which this disclosure belongs.
It is noted that some embodiments of the present disclosure are mainly described in relation to the EVPN IRB being used as non-limiting examples for certain exemplary network configurations and system deployments. As such, the description of exemplary embodiments given herein specifically refers to terminology which is directly related thereto. Such terminology is only used in the context of the presented non-limiting examples and embodiments, and does naturally not limit the present disclosure in any way. Rather, any other system configuration may equally be utilized as long as exemplary embodiments described herein are applicable.
Although the subject matter described herein may be implemented in any appropriate type of system using any suitable components, the embodiments disclosed herein are described in relation to a communication system complied with the exemplary system architecture illustrated in FIG. 1. For simplicity, the system architecture of FIG. 1 only depict some exemplary elements. In practice, a communication system may further include any additional elements suitable to support communication between any two communication devices. The communication system may provide communication and various types of services to one or more customer devices to facilitate the customer devices’ access to and/or use of the services provided by, or via, the communication system.
FIG. 1 shows an example of system architecture according to an embodiment of the present disclosure. The system may comprise two provider edge nodes (PEs) simply denoted as PE1 and PE2 which can communicate with each other over a network 20. Each PE may connect to one or more CEs (Customer Edge devices) or customer devices over Attachment Circuit (AC) . Although two PEs are shown in FIG. 1, there may be more or less PEs.
The network 20 may be any suitable network. The network 20 may be, for example, an IP based network, or an MPLS based network, or a combination thereof. In an embodiment, the network 20 may be EVPN with IRB feature.
The CE enables a customer device to connect to the PE. The customer device may be, for example, a terminal device a mobile phone, a pad computer, a laptop computer, a desktop computer, or any other devices with wired and/or wireless communication capability. The CE may be a host, a router, a switch, a gateway, a modem, a firewall, a network interface controller (NIC) , a hub, a bridge, or any other type of data transfer device. The PE is an edge node of the network 20 and functions as an edge device responsible for providing the customer device with VPN service such as EVPN services. The PE may be, for example, a router, a switch, a gateway, a modem, a firewall, an NIC, a hub, a bridge, or any other type of data transfer device. As described above, PE can be a virtual instance/functionality.
As an exemplary example, it is assumed that an enterprise has CEs (for example, application servers) deployed in multiple data centers at different locations to communicate with each other within the same L3VPN (layer 3 VPN) . As the data centers are interconnected through transport networks such as IP/MPLS, then, the EVPN IRB may be used to accommodate L3VPN services over the transport networks connecting to these data centers. These CE devices located in different data centers can be considered as belonging to the same EVPN instance.
A tenant needing IRB services on a PE, requires an IP Virtual Routing and Forwarding table (IP-VRF) along with one or more MAC Virtual Routing and Forwarding tables (MAC-VRFs) . An IP-VRF, as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 4364, the disclosure of which is incorporated by reference herein in its entirety, is the instantiation of an IPVPN instance in a PE. A MAC-VRF, as defined in IETF RFC7432, the disclosure of which is incorporated by reference herein in its entirety, is the instantiation of an EVI (EVPN Instance) in a PE. A MAC-VRF consists of one or more bridge tables, where each bridge table corresponds to a VLAN (broadcast domain) . If service interfaces for an EVPN PE are configured in VLAN-Based mode (i.e., section 6.1 of IETF RFC7432) , then there is only a single bridge table per MAC-VRF (per EVI) -i.e., there is only one tenant VLAN per EVI. However, if service interfaces for an EVPN PE are configured in VLAN-Aware Bundle mode (i.e., section 6.3 of IETF RFC7432) , then there are several bridge tables per MAC-VRF (per EVI) -i.e., there are several tenant VLANs per EVI.
Each bridge table is connected to an IP-VRF via an L3 interface called IRB interface. Since a single tenant subnet is typically represented by a VLAN (and thus supported by a single bridge table) , for a given tenant there are as many bridge tables as there are subnets and thus there are also as many IRB interfaces between the tenant IP-VRF and the associated bridge tables.
FIG. 2 shows a flowchart of a method according to an embodiment of the present disclosure, which may be performed by an apparatus implemented in or at or as a first provider edge node in a network or communicatively coupled to the first provider edge node. As such, the apparatus may provide means or modules for accomplishing various parts of the method 200 as well as means or modules for accomplishing other processes in conjunction with other components.
The network may be any suitable communication network. For example, the network may be the network which can provide virtual network service. The network may be the network which can provide intra and inter-subnet forwarding service. The network may be the network which can provide Layer 3 forwarding service. In an embodiment, the network may comprise Ethernet Virtual Private Network (EVPN) Integrated Routing and Bridging (IRB) feature for example as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
The first provider edge node may be any suitable device. As described above, the first provider edge node can be a virtual instance/functionality. For example, the first provider edge node may be an edge device with IRB capability. The first provider edge node may be attached to one or more Tenant Systems (TSes) . When the first provider edge node with IRB capability receives tenant traffic over an Attachment Circuit (AC) , it can not only locally bridge the tenant intra-subnet traffic but also can locally route the tenant inter-subnet traffic on a packet by packet basis thus meeting the requirements for both intra and inter-subnet forwarding. In an embodiment, the first provider edge node may be PE with IRB capability as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
At block 202, the first provider edge node may receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network.
The second provider edge node may be any suitable device. As described above, the second provider edge node can be a virtual instance/functionality. For example, the second provider edge node may be an edge device with IRB capability. The second provider edge node may be attached to one or more Tenant Systems (TSes) . When the first provider edge node with IRB capability receives tenant traffic over an Attachment Circuit (AC) , it can not only locally bridge the tenant intra-subnet traffic but also can locally route the tenant inter-subnet traffic on a packet by packet basis thus meeting the requirements for both intra and inter-subnet forwarding. In an embodiment, the second provider edge node may be PE with IRB capability as described in draft-ietf-bess-evpn-inter-subnet-forwarding-15.
A broadcast domain is a collection of network devices that receive broadcast traffic from each other. As per IETF RFC7432, an EVI consists of a single or multiple broadcast domains. In the case of VLAN-bundle and VLAN-based service models (see IETF RFC7432) , a broadcast  domain is equivalent to an EVI. In the case of VLAN-aware bundle service model, an EVI contains multiple broadcast domains. In an embodiment, broadcast domain and subnet are equivalent terms and wherever "subnet" is used, it means "IP subnet" . In an embodiment, the broadcast domain corresponds to a Virtual Local Area Network (VLAN) .
The IP route may comprise any suitable information. In an embodiment, the IP route comprises an Ethernet Virtual Private Network (EVPN) Medium Access Control/Internet Protocol (MAC/IP) Advertisement Route. For example, the IP route may be same as the MAC/IP Advertisement Route as described in section 7.2 of IETF RFC7432.
At block 204, the first provider edge node may determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy. The policy may be predefined or configured in the first provider edge node. The policy in different provider edge nodes may be different for example depending on application scenarios or provider edge node performance.
In an embodiment, when at least one customer device connected to the first provider edge node is in the broadcast domain, the first provider edge node may determine to import the IP route to the IP routing table of the first provider edge node.
In an embodiment, when no customer device connected to the first provider edge node is in the broadcast domain (i.e., all customer devices connected to the first provider edge node are not in the broadcast domain) , the first provider edge node may determine whether to import the IP route to the IP routing table of the first provider edge node based on an importing policy. The importing policy may be predefined or configured in the first provider edge node. The importing policy in different provider edge nodes may be different for example depending on application scenarios or provider edge node performance.
The importing policy may be determined in various ways. In an embodiment, the importing policy is determined based on at least one of resource utilization or administrative control. In addition, the importing policy may be determined based on priority of IP route, user profile, etc.
Flexible policy control can be implemented to decide importing or not. Thus critical IP host routes are protected.
The importing policy can be based on forwarding plane resource utilization status, and/or administrative control.
● Resource utilization based: A threshold may be defined (for example, 60%) and when resource consumption is beyond or equal to the threshold, the first provider edge node may disable the IP host routes importing. When resource consumption is below the threshold, the first provider edge node may enable the IP host route importing.
● Administrative control based: It is a configuration (on/off) to enable/disable the IP route importing. When enabled, the first provider edge node may import the received IP host routes to forwarding plane. When disabled, the first provider edge node may not import the received IP host routes to forwarding plane.
There can be other policies and their combinations to determine importing or not.
As a first example, a threshold is defined for routing table utilization on MAC/IP routes, for example, 60%. If the threshold is not reached, IP host route importing is accepted. Otherwise, importing is stopped.
The threshold may be determined based on various ways such as predefined, configured, learnt by machine learning.
As a second example, administrator manually determines to import or not through configuration (on/off) . When the configuration is on, IP host route importing is accepted. otherwise, IP host route importing is rejected.
In an embodiment, the importing policy comprises at least one of:
● when resource consumption is beyond or equal to a threshold, disabling IP route importing,
● when resource consumption is below the threshold, enabling IP route importing,
● when a configuration indicates enabling the IP route importing, enabling IP route importing, or
● when a configuration indicates disabling the IP route importing, disabling IP route importing.
Disabling IP route importing means that the IP route can not be imported to the IP routing table of the first provider edge node. Enabling IP route importing means that the IP route can be imported to the IP routing table of the first provider edge node.
In an embodiment, the importing policy may be configured with a priority. When there are two or more importing policies, the importing policy with the highest priority will be used to determine whether to import the IP route to the IP routing table of the first provider edge node.
FIG. 3 shows a flowchart of a method according to another embodiment of the present disclosure, which may be performed by an apparatus implemented in or at or as a first provider edge node in a network or communicatively coupled to the first provider edge node. As such, the apparatus may provide means or modules for accomplishing various parts of the method 300 as well as means or modules for accomplishing other processes in conjunction with other components. For some parts which have been described in the above embodiments, detailed description thereof is omitted here for brevity.
At block 302, the first provider edge node may receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. Block 302 is same as block 202 of FIG. 2.
At block 304, the first provider edge node may determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy. Block 304 is same as block 204 of FIG. 2.
At block 306, the first provider edge node may import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
At block 308, the first provider edge node may skip import the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
FIG. 4 shows a flowchart of a selective IP route importing procedure according to an embodiment of the present disclosure. This embodiment is implemented in EVPN IRB.
Using FIG. 1 as an example, PE2 receives an EVPN MAC/IP Advertisement route, which is advertised by PE1. PE2 then selectively imports received EVPN MAC/IP Advertisement route. On PE1, when IRB1 (10.10.10.0/24) is configured, this route is advertised via Border Gateway Protocol (BGP) (via traditional L3VPN or EVPN route type 5) to other PEs. On PE2 routing table, an entry of 10.10.10.0/24 -> PE1 is installed. On PE1, when a host route (10.10.10.6/32) is dynamically learnt on MAC-VRF1/BT1 (identified by Route Target/VLAN configured) , this route is advertised via BGP (via EVPN route type 2, MAC/IP route) to other PEs.
At block 401, PE2 receives MAC/IP route to be imported to IP-VRF. On PE2, there is no MAC-VRF1/BT1 and policy control (resource utilization based as example here) is implemented before importing. For example, policy control for selective importing the IP host routes is implemented when the receiving PE does not have the corresponding MAC-VRF/BT.
At block 402, PE2 determines whether MAC-VRF1/BT1 is available on PE2. When MAC-VRF1/BT1 is available on PE2, the MAC/IP route is imported to IP-VRF1 at block 405.
At block 403, when MAC-VRF1/BT1 is not available on PE2, PE2 checks importing policy. For example, the importing policy may comprises at least one of forwarding resource utilization status, administrative control (e.g., on/off) or other conditions.
At block 404, PE2 determines whether importing is permitted based on the importing policy. For example, on PE2, the routing table resource utilization is below 60% (a pre-configured threshold) . Then an entry of 10.10.10.6/32 -> PE1 is installed (e.g., imported to IP-VRF1) at block 406. At a later time, another host route (10.10.10.7/32) is received by PE2, at  this time the routing table resource utilization is beyond 60%, this host route is not installed to the routing table at block 405.
When a packet destined to 10.10.10.6 is arrived on PE2, after routing table lookup, the entry of 10.10.10.6/32 -> PE1 is hit. The packet is forwarded via this entry to PE1/IP-VRF1 and then to MAC-VRF1/BT1.
When a packet destined to 10.10.10.7 is arrived on PE2, after routing table lookup, the entry of 10.10.10.0/24 -> PE1 is hit. The packet is forwarded via this entry to PE1/IP-VRF1 and then to MAC-VRF1/BT1.
The various blocks/steps shown in FIGs. 2-4 may be viewed as method steps, and/or as operations that result from operation of computer program code, and/or as a plurality of coupled logic circuit elements constructed to carry out the associated function (s) . The schematic flow chart diagrams described above are generally set forth as logical flow chart diagrams. As such, the depicted order and labeled steps are indicative of specific embodiments of the presented methods. Other steps and methods may be conceived that are equivalent in function, logic, or effect to one or more steps, or portions thereof, of the illustrated methods. Additionally, the order in which a particular method occurs may or may not strictly adhere to the order of the corresponding steps shown.
FIG. 5 shows an example of sub-optimal forwarding according to an embodiment of the present disclosure.
As described in FIG. 5, sometimes sub-optimal forwarding could happen if the IP route is not accepted. At this time, PE2 can forward traffic to CE1 to either PE1 or PE3 based on load balance. About half traffic will be forwarded via sub-optimal path (PE2->PE3->PE1) . Selective IP route importing accommodates compromise between forwarding resource utilization optimization and optimal forwarding. Policy control provides enough possibility and flexibility for compromise to customer.
Embodiments herein afford many advantages, of which a non-exhaustive list of examples follows. In some embodiments herein, the proposed solution can protect critical routes from being out of resource. In some embodiments herein, the proposed solution can optimize forwarding plane resource utilization. In some embodiments herein, the proposed solution can enable flexible compromise between resource utilization and optimal forwarding. In some embodiments herein, the proposed solution can be compliant to EVPN IRB specification. In some embodiments herein, there is no inter-operability issue due to local behavior on the provide edge device. The embodiments herein are not limited to the features and advantages mentioned above. A person skilled in the art will recognize additional features and advantages upon reading the following detailed description.
FIG. 6 is a block diagram showing an apparatus suitable for practicing some embodiments of the disclosure. For example, the first provider edge node described above may be implemented as or through the apparatus 600.
The apparatus 600 comprises at least one processor 621, such as a digital processor (DP) , and at least one memory (MEM) 622 coupled to the processor 621. The apparatus 620 may further comprise a transmitter TX and receiver RX 623 coupled to the processor 621. The MEM 622 stores a program (PROG) 624. The PROG 624 may include instructions that, when executed on the associated processor 621, enable the apparatus 620 to operate in accordance with the embodiments of the present disclosure. A combination of the at least one processor 621 and the at least one MEM 622 may form processing means 626 adapted to implement various embodiments of the present disclosure.
Various embodiments of the present disclosure may be implemented by computer program executable by one or more of the processor 621, software, firmware, hardware or in a combination thereof.
The MEM 622 may be of any type suitable to the local technical environment and may be implemented using any suitable data storage technology, such as semiconductor based memory devices, magnetic memory devices and systems, optical memory devices and systems, fixed memories and removable memories, as non-limiting examples.
The processor 621 may be of any type suitable to the local technical environment, and may include one or more of general purpose computers, special purpose computers, microprocessors, digital signal processors (DSPs) and processors based on multicore processor architecture, as non-limiting examples.
In an embodiment where the apparatus is implemented as or at the first provider edge node, the memory 622 contains instructions executable by the processor 621, whereby the first provider edge node operates according to any step of the methods related to the first provider edge node as described above.
FIG. 7 is a block diagram showing a first provider edge node according to an embodiment of the disclosure. As shown, the first provider edge node 700 comprises a receiving module 702 and a determining module 704. The receiving module 702 may be configured to receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network. The determining module 704 may be configured to determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
In an embodiment, the first provider edge node 700 further comprises an importing module 706 configured to import the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node.
In an embodiment, the first provider edge node 700 further comprises a skipping module 708 configured to skip importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
The term unit or module may have conventional meaning in the field of electronics, electrical devices and/or electronic devices and may include, for example, electrical and/or electronic circuitry, devices, modules, processors, memories, logic solid state and/or discrete devices, computer programs or instructions for carrying out respective tasks, procedures, computations, outputs, and/or displaying functions, and so on, as such as those that are described herein.
With function units, the first provider edge node may not need a fixed processor or memory, any computing resource and storage resource may be arranged from the first provider edge node in the communication system. The introduction of virtualization technology and network computing technology may improve the usage efficiency of the network resources and the flexibility of the network.
According to an aspect of the disclosure it is provided a computer program product being tangibly stored on a computer readable storage medium and including instructions which, when executed on at least one processor, cause the at least one processor to carry out any of the methods as described above.
According to an aspect of the disclosure it is provided a computer-readable storage medium storing instructions which when executed by at least one processor, cause the at least one processor to carry out any of the methods as described above.
In addition, the present disclosure may also provide a carrier containing the computer program as mentioned above, wherein the carrier is one of an electronic signal, optical signal, radio signal, or computer readable storage medium. The computer readable storage medium can be, for example, an optical compact disk or an electronic memory device like a RAM (random access memory) , a ROM (read only memory) , Flash memory, magnetic tape, CD-ROM, DVD, Blue-ray disc and the like.
The techniques described herein may be implemented by various means so that an apparatus implementing one or more functions of a corresponding apparatus described with an embodiment comprises not only prior art means, but also means for implementing the one or more functions of the corresponding apparatus described with the embodiment and it may comprise  separate means for each separate function or means that may be configured to perform one or more functions. For example, these techniques may be implemented in hardware (one or more apparatuses) , firmware (one or more apparatuses) , software (one or more modules) , or combinations thereof. For a firmware or software, implementation may be made through modules (e.g., procedures, functions, and so on) that perform the functions described herein.
Exemplary embodiments herein have been described above with reference to block diagrams and flowchart illustrations of methods and apparatuses. It will be understood that each block of the block diagrams and flowchart illustrations, and combinations of blocks in the block diagrams and flowchart illustrations, respectively, can be implemented by various means including computer program instructions. These computer program instructions may be loaded onto a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions which execute on the computer or other programmable data processing apparatus create means for implementing the functions specified in the flowchart block or blocks.
Further, while operations are depicted in a particular order, this should not be understood as requiring that such operations be performed in the particular order shown or in sequential order, or that all illustrated operations be performed, to achieve desirable results. In certain circumstances, multitasking and parallel processing may be advantageous. Likewise, while several specific implementation details are contained in the above discussions, these should not be construed as limitations on the scope of the subject matter described herein, but rather as descriptions of features that may be specific to particular embodiments. Certain features that are described in the context of separate embodiments may also be implemented in combination in a single embodiment. Conversely, various features that are described in the context of a single embodiment may also be implemented in multiple embodiments separately or in any suitable sub-combination.
While this specification contains many specific implementation details, these should not be construed as limitations on the scope of any implementation or of what may be claimed, but rather as descriptions of features that may be specific to particular embodiments of particular implementations. Certain features that are described in this specification in the context of separate embodiments can also be implemented in combination in a single embodiment. Conversely, various features that are described in the context of a single embodiment can also be implemented in multiple embodiments separately or in any suitable sub-combination. Moreover, although features may be described above as acting in certain combinations and even initially claimed as such, one or more features from a claimed combination can in some cases be excised from the  combination, and the claimed combination may be directed to a sub-combination or variation of a sub-combination.
It will be obvious to a person skilled in the art that, as the technology advances, the inventive concept can be implemented in various ways. The above described embodiments are given for describing rather than limiting the disclosure, and it is to be understood that modifications and variations may be resorted to without departing from the spirit and scope of the disclosure as those skilled in the art readily understand. Such modifications and variations are considered to be within the scope of the disclosure and the appended claims. The protection scope of the disclosure is defined by the accompanying claims.

Claims (14)

  1. A method (200) performed by a first provider edge node in a network, comprising:
    receiving (202) an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network; and
    determining (204) whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  2. The method according to claim 1, further comprising:
    importing (306) the IP route to the IP routing table of the first provider edge node when determining to import the IP route to the IP routing table of the first provider edge node; and/or
    skipping (308) importing the IP route to the IP routing table of the first provider edge node when determining to skip importing the IP route to the IP routing table of the first provider edge node.
  3. The method according to claim 1 or 2, wherein determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises:
    when at least one customer device connected to the first provider edge node is in the broadcast domain, determining to import the IP route to the IP routing table of the first provider edge node.
  4. The method according to any of claims 1-3, wherein determining whether to import the IP route to an IP routing table of the first provider edge node based on a policy comprises:
    when no customer device connected to the first provider edge node is in the broadcast domain, determining whether to import the IP route to the IP routing table of the first provider edge node based on an importing policy.
  5. The method according to claim 4, wherein the importing policy is determined based on at least one of:
    resource utilization, or
    administrative control.
  6. The method according to claim 5, wherein the importing policy comprises at least one of:
    when resource consumption is beyond or equal to a threshold, disabling IP route importing,
    when resource consumption is below the threshold, enabling IP route importing,
    when a configuration indicates enabling the IP route importing, enabling IP route importing, or
    when a configuration indicates disabling the IP route importing, disabling IP route importing.
  7. The method according to any of claims 1-6, wherein the IP route comprises an Ethernet Virtual Private Network (EVPN) Medium Access Control/Internet Protocol (MAC/IP) Advertisement Route.
  8. The method according to any of claims 1-7, wherein the IP routing table comprises a Virtual Private Network (VPN) Routing and Forwarding table for IP routes.
  9. The method according to any of claims 1-8, wherein the broadcast domain corresponds to a Virtual Local Area Network (VLAN) .
  10. The method according to any of claims 1-9, wherein the network comprises Ethernet Virtual Private Network (EVPN) Integrated Routing and Bridging (IRB) feature.
  11. A first provider edge node (600) in a network, comprising:
    a processor (621) ; and
    a memory (622) coupled to the processor (621) , said memory (622) containing instructions executable by said processor (621) , whereby said first provider edge node (600) is operative to:
    receive an Internet Protocol (IP) route for a customer device in a broadcast domain from a second provider edge node in the network; and
    determine whether to import the IP route to an IP routing table of the first provider edge node based on a policy.
  12. The first provider edge node according to claim 11, wherein the first provider edge node is further operative to perform the method of any one of claims 2 to 10.
  13. A computer-readable storage medium storing instructions which when executed by at least one processor, cause the at least one processor to perform the method according to any one of claims 1 to 10.
  14. A computer program product comprising instructions which when executed by at least one processor, cause the at least one processor to perform the method according to any of claims 1 to 10.
PCT/CN2021/119062 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route Ceased WO2023039831A1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
US18/692,657 US20240388531A1 (en) 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route
EP21957116.3A EP4402987A4 (en) 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route
PCT/CN2021/119062 WO2023039831A1 (en) 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2021/119062 WO2023039831A1 (en) 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route

Publications (1)

Publication Number Publication Date
WO2023039831A1 true WO2023039831A1 (en) 2023-03-23

Family

ID=85602295

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/119062 Ceased WO2023039831A1 (en) 2021-09-17 2021-09-17 Method and apparatus for selective importing ip route

Country Status (3)

Country Link
US (1) US20240388531A1 (en)
EP (1) EP4402987A4 (en)
WO (1) WO2023039831A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080267187A1 (en) * 2005-02-14 2008-10-30 Marko Kulmala Method for Providing Virtual Private Network Services Between Autonomous Systems
CN102281533A (en) * 2011-08-03 2011-12-14 华为技术有限公司 Method, system and router for establishing LSP based on RT
CN111800338A (en) * 2020-06-01 2020-10-20 锐捷网络股份有限公司 Inter-AS EVPN routing interaction method and device

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20170373973A1 (en) * 2016-06-27 2017-12-28 Juniper Networks, Inc. Signaling ip address mobility in ethernet virtual private networks
US10958570B2 (en) * 2019-04-04 2021-03-23 Cisco Technology, Inc. Interoperability between symmetric and asymmetric EVPN IRB modes
US11924083B2 (en) * 2020-06-16 2024-03-05 Cisco Technology, Inc. Multiple network interfacing
US11716277B2 (en) * 2021-02-11 2023-08-01 Cisco Technology, Inc. Integrated routing and bridging route reduction in ethernet virtual private network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080267187A1 (en) * 2005-02-14 2008-10-30 Marko Kulmala Method for Providing Virtual Private Network Services Between Autonomous Systems
CN102281533A (en) * 2011-08-03 2011-12-14 华为技术有限公司 Method, system and router for establishing LSP based on RT
CN111800338A (en) * 2020-06-01 2020-10-20 锐捷网络股份有限公司 Inter-AS EVPN routing interaction method and device

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
11 June 2012 (2012-06-11), P. PILLAY-ESNAULT CISCO SYSTEMS P. MOYER POLLERE, INC. J. DOYLE JEFF DOYLE AND ASSOCIATES E. ERTEKIN M. LUNDBERG BOOZ ALLEN HAMILT: "OSPFv3 as a Provider Edge to Customer Edge (PE-CE) Routing Protocol; rfc6565.txt", XP015081550, Database accession no. 6565 *
See also references of EP4402987A4 *

Also Published As

Publication number Publication date
US20240388531A1 (en) 2024-11-21
EP4402987A1 (en) 2024-07-24
EP4402987A4 (en) 2025-06-18

Similar Documents

Publication Publication Date Title
US11102033B2 (en) Method and apparatus for implementing a flexible virtual local area network
US10715419B1 (en) Software defined networking between virtualized entities of a data center and external entities
US9973420B2 (en) Heterogeneous overlay network translation for domain unification
EP4161003B1 (en) Evpn host routed bridging (hrb) and evpn cloud native data center
US9331940B2 (en) System and method providing distributed virtual routing and switching (DVRS)
US8560663B2 (en) Using MPLS for virtual private cloud network isolation in openflow-enabled cloud computing
US9250941B2 (en) Apparatus and method for segregating tenant specific data when using MPLS in openflow-enabled cloud computing
CN104813288B (en) Apparatus and method for separating tenant specific data when using MPLS in OPENFLOW enabled cloud computing
US12155569B1 (en) Multi-stage virtual private network service provisioning for containerized routers
US11108683B2 (en) Techniques for preferred path local switching in EVPN-VPWS
WO2014111767A1 (en) Scalable network overlay virtualization using conventional virtual switches
US20210184970A1 (en) Disambiguating traffic in networking environments with multiple virtual routing and forwarding (vrf) logical routers
US9590855B2 (en) Configuration of transparent interconnection of lots of links (TRILL) protocol enabled device ports in edge virtual bridging (EVB) networks
WO2020212998A1 (en) Network address allocation in a virtual layer 2 domain spanning across multiple container clusters
US20240291753A1 (en) Policy enforcement for bare metal servers by top of rack switches
WO2018150222A1 (en) Internet protocol (ip) address allocation over virtual layer 2 networks
US20250007828A1 (en) Containerized virtual router for use with a virtual private cloud
WO2023039831A1 (en) Method and apparatus for selective importing ip route
EP4485192A1 (en) Redundant containerized virtual routers for use with a virtual private cloud
US20210042142A1 (en) Efficient traffic forwarding between virtual machines
CN117255019A (en) Systems, methods and storage media for virtualized computing infrastructure

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21957116

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 18692657

Country of ref document: US

WWE Wipo information: entry into national phase

Ref document number: 2021957116

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 2021957116

Country of ref document: EP

Effective date: 20240417