WO2024098079A2 - Protection de sortie rapide générale - Google Patents

Protection de sortie rapide générale Download PDF

Info

Publication number
WO2024098079A2
WO2024098079A2 PCT/US2023/081291 US2023081291W WO2024098079A2 WO 2024098079 A2 WO2024098079 A2 WO 2024098079A2 US 2023081291 W US2023081291 W US 2023081291W WO 2024098079 A2 WO2024098079 A2 WO 2024098079A2
Authority
WO
WIPO (PCT)
Prior art keywords
node
egress
primary
domain
egress node
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/US2023/081291
Other languages
English (en)
Other versions
WO2024098079A3 (fr
Inventor
Huaimo Chen
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
FutureWei Technologies Inc
Original Assignee
FutureWei Technologies Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by FutureWei Technologies Inc filed Critical FutureWei Technologies Inc
Publication of WO2024098079A2 publication Critical patent/WO2024098079A2/fr
Publication of WO2024098079A3 publication Critical patent/WO2024098079A3/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/28Routing or path finding of packets in data switching networks using route fault recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • H04L45/04Interdomain routing, e.g. hierarchical routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/16Multipoint routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/22Alternate routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/30Routing of multiclass traffic

Definitions

  • the present disclosure is generally related to the field of egress protection and, in particular, to egress protection against the failure of a node or link in a domain or a network.
  • the disclosed aspects/embodiments provide fast egress protection (EP) against the failure of an egress node of various types of domains or networks.
  • These domains or netw orks may include a Border Gateway Protocol (BGP) domain, a BIER domain, a segment routing version 6 (SRv6) domain, or an interior gateway protocol (IGP) domain.
  • BGP Border Gateway Protocol
  • SRv6 segment routing version 6
  • IGP interior gateway protocol
  • a backup egress node of an egress node distributes information about egress protection to neighboring nodes of the egress node. The information is used by the neighboring nodes to forward packets to the backup egress node when the egress node has failed. Therefore, packet routing within various domains is improved.
  • a first aspect relates to a method implemented by a network node neighboring a primary egress node in a domain, comprising receiving a piece of egress protection information that identifies a backup egress node for the primary' egress node; making a determination, in response to receiving the egress protection information, to protect the primary egress node with the backup egress node when the primary egress node fails; detecting w hether the primary egress node has failed when forwarding a packet to the primary egress node; and forwarding, in response to the detennination and in response to detecting the primary egress node has failed, the packet to the backup egress node to transmit the packet to a customer edge (CE) receiver.
  • CE customer edge
  • another implementation of the aspect provides that the egress protection information is received from the backup egress node or from both the primary egress node and the backup egress node.
  • another implementation of the aspect further comprising detecting whether the primary 7 egress node has failed via a bi-directional forwarding detection (BFD) session between the network node and the primary' egress node.
  • BFD bi-directional forwarding detection
  • the domain is a Border Gateway Protocol (BGP) domain, an interior gateway protocol (IGP) domain, a bit index explicit replication (BIER) domain, or a segment routing version 6 (SRv6) domain
  • the method further comprises receiving the egress protection information that comprises an IP address prefix for an IP anycast address from the primary 7 egress node and the backup egress node, and wherein the IP anycast address is configured on the primary egress node and the backup egress node by a network operator or tools.
  • another implementation of the aspect provides that when the domain is the BGP domain, the method further comprises identifying a remote node using information in a routing information base (RIB); and forwarding, after detecting the primary 7 egress node has failed, the packet with IP anycast address to the remote node through a tunnel.
  • RIB routing information base
  • another implementation of the aspect provides that when the domain is the IGP domain, the method further comprises identifying, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary 7 egress node has failed, either forwarding the packet w ith IP anycast address to the intermediate node when the intermediate node is directly connected to the network node, or forwarding the packet with IP anycast address, through a tunnel, to the intennediate node when the intennediate node is not directly connected to the network node.
  • LFA loop free alternative
  • another implementation of the aspect provides that when the domain is the BIER domain, the method further comprises receiving the egress protection information that comprises the IP address prefix for the IP anycast address and a Bit-Forwarding Router Identifier (BFR-ID) for the IP address prefix; identifying, in response to the receiving, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary egress node has failed, either forwarding the packet with the BFR-ID to the intermediate node when the intermediate node is directly connected to the network node, or forwarding the packet with IP anycast address and the BFR-ID, through a tunnel, to the intermediate node when the intermediate node is not directly connected to the network node.
  • BFR-ID Bit-Forwarding Router Identifier
  • another implementation of the aspect provides that when the domain is the SRv6 domain, the method further comprises identifying, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and forwarding, after detecting the primary' egress node has failed, the packet with the IP anycast address to the intermediate node.
  • LFA loop free alternative
  • the LFA comprises a basic LFA or a topology independent (TI) LFA.
  • another implementation of the aspect further comprising forwarding, in response to detecting the primary egress node has not failed, the packet with the IP anycast address to the primary egress node according to forwarding information base (FIB) or bit index forwarding table (BIFT).
  • FIB forwarding information base
  • BIFT bit index forwarding table
  • a second aspect relates to a network node neighboring a primary egress node in a domain, comprising: a memory storing instructions; and one or more processors coupled to the memory, wherein the one or more processors are configured to execute the instructions to cause the network node to receive a piece of egress protection information that identifies a backup egress node for the primary egress node; make a determination, in response to receiving the egress protection information, to protect the primary egress node with the backup egress node when the primary' egress node fails; detect whether the primary egress node has failed when forwarding a packet to the primary egress node; and forward, in response to the determination and in response to detecting the primary egress node has failed, the packet to the backup egress node to transmit the packet to a customer edge (CE) receiver.
  • CE customer edge
  • another implementation of the aspect provides that the egress protection information is received from the backup egress node or from both the primary egress node and the backup egress node.
  • another implementation of the aspect provides that one or more processors are configured to execute the instructions to further cause the network node to detect whether the primary egress node has failed via a bi-directional forwarding detection (BFD) session between the network node and the primary egress node.
  • BFD bi-directional forwarding detection
  • the domain is a Border Gateway Protocol (BGP) domain, an interior gateway protocol (IGP) domain, a bit index explicit replication (BIER) domain, or a segment routing version 6 (SRv6) domain
  • BGP Border Gateway Protocol
  • IGP interior gateway protocol
  • BIER bit index explicit replication
  • SRv6 segment routing version 6
  • the one or more processors are configured to execute the instructions to further cause the netw ork node to receive the egress protection information that comprises an IP address prefix for an IP anycast address from the primary egress node and the backup egress node, and wherein the IP anycast address is configured on the primary egress node and the backup egress node by a network operator or tools.
  • another implementation of the aspect provides that when the domain is the BGP domain, the one or more processors are configured to execute the instructions to further cause the network node to identify a remote node using information in a routing information base (RIB); and forward, after detecting the primary egress node has failed, the packet with IP anycast address to the remote node through a tunnel.
  • RIB routing information base
  • another implementation of the aspect provides that when the domain is the IGP domain, the one or more processors are configured to execute the instructions to further cause the network node to identify, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary egress node has failed, either forw ard the packet with IP anycast address to the intermediate node when the intermediate node is directly connected to the network node, or forward the packet with IP anycast address, through a tunnel, to the intermediate node when the intermediate node is not directly connected to the network node.
  • LFA loop free alternative
  • another implementation of the aspect provides that when the domain is the BIER domain, the one or more processors are configured to execute the instructions to further cause the network node to receive the egress protection information that comprises the IP address prefix for the IP anycast address and a Bit-Forwarding Router Identifier (BFR-ID) for the IP address prefix; identify, in response to the receiving, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary egress node has failed, either forward the packet with the BFR-ID to the intermediate node when the intermediate node is directly connected to the network node, or forward the packet with the IP anycast address and the BFR-ID, through a tunnel, to the intermediate node when the intermediate node is not directly connected to the network node.
  • BFR-ID Bit-Forwarding Router Identifier
  • another implementation of the aspect provides that when the domain is the SRv6 domain, the one or more processors are configured to execute the instructions to further cause the network node to identify, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and forward, after detecting the primary egress node has failed, the packet with the IP anycast address to the intermediate node.
  • LFA loop free alternative
  • the LFA comprises a basic LFA or a topology' independent (TI) LFA.
  • another implementation of the aspect provides that one or more processors are configured to execute the instructions to further cause the network node to forward, in response to detecting the primary' egress node has not failed, the packet with the IP anycast address to the primary' egress node according to forwarding information base (FIB) or bit index forwarding table (BIFT).
  • FIB forwarding information base
  • BIFT bit index forwarding table
  • a third aspect relates to a non-transitory computer readable medium comprising a computer program product for use by a network node, the computer program product comprising computer executable instructions stored on the non-transitory computer readable medium that, when executed by one or more processors, cause the first network node to execute the method of any of the first aspect.
  • a fourth aspect relates to a network node neighboring a primary egress node in a domain, comprising receiving means configured to receive a piece of egress protection information that identifies a backup egress node for the primary' egress node; processing means configured to make a determination, in response to receiving the egress protection infonnation, to protect the primary egress node with the backup egress node when the primary’ egress node fails; and detect whether the primary egress node has failed when forwarding a packet to the primary' egress node; and transmitting means configured to forward, in response to the determination and in response to detecting the primary egress node has failed, the packet to the backup egress node to transmit the packet to a customer edge (CE) receiver.
  • CE customer edge
  • any one of the foregoing embodiments may be combined with any one or more of the other foregoing embodiments to create a new embodiment within the scope of the present disclosure.
  • FIG. 1 is a schematic diagram of a network topology for fast egress protection according to an embodiment of the disclosure.
  • FIG. 2A is a schematic diagram of a BGP topology including a BGP domain according to an embodiment of the disclosure.
  • FIG. 2B is a schematic diagram of fast egress protection in a BGP domain according to an embodiment of the disclosure.
  • FIG. 3A is a schematic diagram of an IGP topology including an IGP domain according to an embodiment of the disclosure.
  • FIG. 3B is a schematic diagram of fast egress protection in an IGP domain according to an embodiment of the disclosure.
  • FIG. 4A is a schematic diagram of a BIER topology including a BIER domain according to an embodiment of the disclosure.
  • FIG. 4B is a schematic diagram of fast egress protection in a BIER domain according to an embodiment of the disclosure.
  • FIG. 5A is a schematic diagram of an SRv6 topology including an SRv6 domain according to an embodiment of the disclosure.
  • FIG. 5B is a schematic diagram of fast egress protection in an SRv6 domain according to an embodiment of the disclosure.
  • FIG. 6 is a method implemented by a network node in a domain according to an embodiment of the disclosure.
  • FIG. 7 is a schematic diagram of a network apparatus according to an embodiment of the disclosure.
  • EP fast egress protection
  • a backup egress node of an egress node distributes information about egress protection to neighboring nodes of the egress node. The information is used by the neighboring nodes to forward packets to the backup egress node when the egress node has failed. Therefore, packet routing and network reliability within various domains are improved.
  • the disclosed embodiments can be deployed in any router, switch, and controller, which are used by service providers around the world.
  • FIG. 1 is a schematic diagram of a network topology 100 including a domain 102.
  • the domain 102 may be a BGP domain, an IGP domain, a BIER domain, or an SRv6 domain.
  • the domain 102 comprises a plurality of network nodes 104, 106, 108, 110, 112, 114, 116, and 118. While eight network nodes 104-118 are shown in the domain 102, more or fewer nodes may be included in practical applications.
  • the network nodes 104-118 have been given a letter designation.
  • the network node 104 has the designation A
  • the network node 106 has the designation B
  • the network node 108 has the designation C
  • the network node 110 has the designation D
  • the network node 112 has the designation E
  • the network node 114 has the designation F
  • the network node 116 has the designation G
  • the network node 118 has the designation H.
  • Each of the network nodes 104-118 may comprise a router, swatch, or other telecommunications device configured to receive, route, store, and transmit packets.
  • Some of the network nodes namely the network nodes 104. 106, 112. and 118, are disposed at an edge of the domain 102.
  • the network nodes 104, 106, 112, and 1 18 receiving packets from outside the domain 102 may be referred to as ingress network nodes (or simply, ingress nodes).
  • the network nodes 104, 106, 112, and 118 transmitting packets out of the domain 102 may be referred to as egress network nodes (or simply, egress nodes).
  • each of the network nodes 104, 106, 112. and 118 may function as an ingress network node and/or an egress network node.
  • the network nodes 108, 1 10, 114, and 116 forwarding packets within the domain 102 may be referred to as transit network nodes.
  • Each of the network nodes 104, 106, 112, and 118 may be referred to herein as a destination network node.
  • the network nodes 104, 106. 112, and 118 have each been assigned a bit forw arding router identifier (BFR-id) or an internet protocol (IP) anycast address.
  • BFR-id bit forw arding router identifier
  • IP internet protocol
  • Anycast is a well-known network addressing and routing methodology in which a single destination IP address is shared by a group of network nodes in multiple locations. The routing algorithm selects the single receiver from the group based on which is the nearest according to some distance or cost measure. For example, each of the network nodes 104, and 106 is configured with an IP anycast address of 10.1.1.0.
  • Each of the network nodes 104-118 has one or more neighbor nodes.
  • a neighbor node refers to a network node that is only one hop away from the network node.
  • network node 104 has two neighbor nodes in FIG. 1, namely network node 108 and network node 116.
  • the network nodes 104-118 in FIG. 1 are coupled to, and communicate with each other, via links 122.
  • the links 122 may be wired, wireless, or some combination thereof.
  • Each of the links 122 has a cost.
  • the network node 104 and the network node 106 are each coupled to a customer edge (CE) receiver 120 outside the domain 102.
  • the CE receiver 120 is configured to receive packets from, and send packets to, the network node 104 and the network node 106.
  • the network node 104 may be referred to herein as a primary egress node (or simply an egress node), and the network node 106 may be referred to herein as a backup egress node for the primary’ egress node 104.
  • a primary’ egress node is a network node that functions as the primary point of egress for traffic received from a neighbor node while the network node is functioning normally.
  • a backup egress node is a network node that functions as the backup point of egress for traffic received from a neighbor node when the primary 7 egress node is functioning abnormally or has failed.
  • the disclosed embodiments include mechanisms for fast protection against the failure of an egress node in various types of domains or networks including a BGP domain, an IGP domain, a BIER domain, and an SRv6 domain.
  • abackup egress node e.g., node 106
  • egress protection information is configured on the backup egress node to protect the primary egress node (e.g., node 104).
  • the backup egress node distributes the egress protection information, through IGP, to the direct neighbors of the primary egress node.
  • the egress protection information indicates that the backup egress node protects the primary' egress node.
  • an upstream hop e.g., node 108 or node 116 sends the packet to the egress node 104 according to its forwarding information base (FIB) (as shown by an arrow 124 in FIG. 1).
  • FIB forwarding information base
  • an upstream hop detects the failure of the primary egress node 104 using a fast failure detection method such as a bi-directional forwarding detection (BFD) method and as a point of local repair (PLR) extend its forwarding information base (FIB) for protecting the primary 7 egress node with the backup egress node 106.
  • BFD bi-directional forwarding detection
  • PLR point of local repair
  • FIB forwarding information base
  • the upstream hop using the egress protection information, sends the packet to the backup egress node 106 configured to protect the primary egress node once the PLR detects the failure (as shown by an arrow 126 in FIG. 1).
  • the upstream hop of the primary egress node is its direct neighbor.
  • the backup egress node 106 then sends the packet to the CE receiver 120.
  • FIG. 2A is a schematic diagram of a BGP topology 200A including a plurality 7 of BGP domains according to an embodiment of the disclosure.
  • redundancy in a BGP network is provided at the routing level using an IP anycast address.
  • using this redundancy for egress protection is slow.
  • the traffic to the egress node continues flowing toward the egress node and gets lost until the network converges on the failure.
  • the network convergence on BGP takes seconds.
  • the BGP topology 7 200A comprises a plurality of BGP domains (or autonomous systems (ASs)) 202, 204, and 206. While three BGP domains/ASs are shown in the BGP topology 200A, more or fewer domains may be included in practical applications. For ease of discussion, all of the BGP domains/ASs 202-206 have been given letter designation. For example, the BGP domain 202 has the designation AS1 , the BGP domain 204 has the designation AS2, and the BGP domain 206 has the designation AS3.
  • the network node 208 (or node A) may be referred to herein as a primary 7 egress node (or simply an egress node), and the network node 210 (or node B) may be referred to herein as a backup egress node for the primary egress node 208.
  • the network nodes 208 and 210 are configured with an IP anycast address of 10.1.1.0.
  • a neighboring node such as node C (or node 212) receives a packet with the IP anycast address as its destination, the node C sends the packet toward the closer node with the IP anycast address.
  • node C has at least two paths from the node C to the destination (i.e., the IP anycast address).
  • a first path is from node C to node A and a second path is from node C to node B.
  • the BGP routing algorithm selects the path from the at least two paths based on which is the nearest according to cost measure. In a first case, when the first path from node C to node A has the least cost (or the shortest), node C sends the packet toward node A. In a second case, when the path from node C to node B has the least cost, node C sends the packet toward node B.
  • node C when the path from node C to node A has the same cost as the path from node C to node B, node C sends the packet to node A (or node B) depending on whether node C sends the last packet with the same address to node B (or node A).
  • the IP anycast address when one of the two nodes A and B fails and the network converges on the failure, there is only one path from node C to the destination (i. e. , the IP anycast address). If node A fails, there is one path from node C to node B and node C sends the packet to node B. If node B fails, there is one path from node C to node A and node C sends the packet to node A.
  • the IP anycast address is configured on nodes A and B for redundancy
  • the BGP routes, for the IP anycast address on nodes A and B are distributed in the BGP topology 200 A. The configuration and distribution are reused for fast protection of egress node A (or B).
  • the primary egress node 208 (or node A) and the backup egress node 210 (or node B) are configured with an IP anycast address of 10.1.1.0.
  • node A and node B distribute the egress protection information about the backup egress to the direct neighbors of node A (as shown by arrow 214 in FIG. 2A).
  • the egress protection information is the IP anycast address distributed by node A and node B.
  • Node C determines whether to provide fast egress protection for node A based on the received egress protection information and pre-defined conditions.
  • the pre-defined conditions are: 1) Node C is connected to node A, 2) Node C can fast detect the failure of node A using BFD, 3) Node C has two paths to the prefix corresponding to the same IP anycast address configured on node A and node B (e.g., node C has two paths to prefix 10.1.1.0/24 corresponding to IP anycast address 10.1.1.0 configured on nodes A and B as shown in FIG.
  • FIG. 2B is a schematic diagram of fast egress protection in a BGP nelw ork topology 200B according to an embodiment of the disclosure.
  • node C after node C determines to protect the primary egress node A with the backup egress node B, node C provides fast protection against the failure of the egress node as follows.
  • node C in normal operations (i.e.. node A is functioning normally), after receiving a packet with IP anycast address 10. 1.1.0 as destination, node C sends the packet to node A according to its FIB (as shown by an arrow 218 in FIG. 2B).
  • node C detects the failure of node A using a fast failure detection method such as a bidirectional forwarding detection (BFD) method.
  • BFD bidirectional forwarding detection
  • node C After detecting the failure of node A, node C sends the packet with IP anycast address 10.1.1.0 as the destination to a remote node (e.g., node F 216) through a tunnel such as an internet protocol (IP) tunnel (as shown by an arrow 220 in FIG. 2B).
  • IP internet protocol
  • Node F is far enough away from 10.1.1.0 through node A such that the path from the node F to 10. 1.
  • 1.0 through node B is shorter than the path from the node F to 10. 1. 1.0 through node A.
  • Node C finds the remote node using the information in Routing Information Base (RIB) such as Adj-RIBs-In and local (LOC)-RIB, and builds the IP tunnel to the remote node in advance.
  • RIB Routing Information Base
  • LOC local
  • node F when node F receives the packet with IP anycast address 10.1.1.0 as a destination from the IP tunnel, node F sends the packet towards node B instead of node A since node F has a shorter path to 10.1.1.0 through node B.
  • FIG. 3 A is a schematic diagram of an IGP topology 300 A including an IGP domain 302 according to an embodiment of the disclosure.
  • an IGP domain 302 comprises an area 304 with an implementation of configuration and distribution of fast egress protection information.
  • the network nodes and links depicted in FIG. 3A are similar to the network nodes and links depicted in FIG. 1. For the sake of brevity, a detailed description of these elements is not repeated herein.
  • the network node 104 (or node A) may be referred to herein as a primary egress node (or simply an egress node), and the network node 106 (or node B) may be referred to herein as a backup egress node for the primary egress node 104.
  • the network nodes 104 and 106 are configured with an IP anycast address of 10.1 . 1 .0.
  • a neighboring node such as node 108 (or node C) receives a packet with the IP anycast address as its destination, the node 108 sends the packet toward the closer node with the IP anycast address.
  • node C has at least two paths from the node C to the destination (i.e., the IP anycast address).
  • a first path is from node C to node A and a second path is from node C to node B.
  • the IGP routing algorithm selects the path from the at least two paths based on which is the nearest according to cost measure. Assume that the cost from node B to the IP anycast address makes the path from node C to the address via node A is shorter than the path from the node C to the address via node B.
  • the IGPs running on A and B distribute the IP address prefix 10.1.1.0/32 for the IP anycast address configured on nodes A and B. Every node in the area 304 receives the prefix.
  • the egress protection information about the prefix distributed in the area 304 is used by the neighbors of the node A for fast protection against the failure of node A.
  • the configuration and distribution are reused for fast protection of egress node A (or B).
  • a mechanism of determination of fast egress protection in the IGP domain 302 is described as follows.
  • the primary egress node 104 (or node A) and the backup egress node 106 (or node B) are configured with an IP anycast address of 10.1.1.0.
  • node A and node B distribute the egress protection information about the backup egress to the direct neighbors of the node A (as shown by an arrow 306 in FIG. 3 A).
  • Node C determines whether to provide fast egress protection for node A based on the received egress protection information and pre-defined conditions.
  • the pre-defined conditions are: 1) Node C is connected to node A, 2) Node C can fast detect the failure of node A using BFD. 3) Node C has two paths to the IP address prefix corresponding to the same IP anycast address configured on node A and node B (e.g., node C has two paths to prefix 10.1.1.0/32 corresponding to IP anycast address 10.1.1.0 configured on nodes A and B as shown in FIG. 3 A), and 4) The path from node C to the IP address prefix through node A is shorter than the path from node C to the IP address prefix through another node B since the cost from node B to the address configured makes the former path shorter than the latter.
  • node C determines that it can provide the fast protection for egress node A when the four conditions are met.
  • FIG. 3B is a schematic diagram of fast egress protection in an IGP network topology 300B according to an embodiment of the disclosure.
  • node C after determining to protect the primary egress node A with the backup egress node B, node C provides fast protection against the failure of the egress node as follow s.
  • node C in normal operations (i.e., node A is functioning normally), after receiving a packet with IP anycast address 10.1.1.0 as destination, node C sends the packet to node A according to its FIB (as shown by an arrow 308 in FIG. 3B).
  • node C when the node A is functioning abnormally or has failed, node C detects the failure of node A using a fast failure detection method such as a bi-directional forwarding detection (BFD) method. After detecting the failure of node A, node C sends the packet with IP anycast address 10.1.1.0 as destination to a loop free alternative (LFA).
  • the LFA comprises a basic LFA or a topology independent (TI) LFA.
  • the LFA node is far enough away from 10.1.1.0 through node A such that the path from the LFA to 10. 1.1.0 through node B is shorter than the path from the LFA to 10.1.1.0 through node A (or the path from the LFA to B is shorter than the path from the LFA to node A).
  • node C sends the packet with 10.1.1.0 as destination to the LFA through a tunnel to the LFA.
  • node C sends the packet to node B through an IP tunnel or an SR tunnel from node C to node B.
  • node C sends the packet to the LFA without using any tunnel (as shown by an arrow 310 in FIG. 3 A).
  • the LFA when the LFA such as node D receives the packet with 10.1.1.0 as destination, the LFA sends the packet towards node B instead of node A since the LFA has a shorter path to 10.1.1.0 through node B. Node B then sends the packet to the CE receiver 120.
  • FIG. 4A is a schematic diagram of a BIER topology' 400A including a BIER domain 402 according to an embodiment of the disclosure.
  • a BIER domain 402 comprises an area 404 with an implementation of configuration and distribution of fast egress protection information.
  • the network nodes and links depicted in FIG. 4A are similar to the network nodes and links depicted in FIG. 1. For the sake of brevity 7 , a detailed description of these elements is not repeated herein.
  • the network node 104 (or node A) may be referred to herein as a primary egress node (or simply an egress node), and the network node 106 (or node B) may' be referred to herein as a backup egress node for the primary egress node 104.
  • the network nodes 104 and 106 are configured with an IP anycast address of 10.1.1.0.
  • a neighboring node such as node 108 (or node C) receives a packet with the IP anycast address as its destination, the node 108 sends the packet toward the closer node with the IP anycast address.
  • node C has at least two paths from the node C to the destination (i.e., the IP anycast address).
  • a first path is from node C to node A and a second path is from node C to node B.
  • the routing algorithm selects the path from the at least two paths based on which is the nearest according to cost measure. Assume that the cost from node B to the address configured makes the path from node C to the address via A shorter than the path from the node C to the address via B.
  • the IGPs running on A and B distribute the IP address prefix 10.1.1.0/32 for the IP anycast address configured on nodes A and B. Every node in the area receives the prefix.
  • a Bit-Forwarding Router Identifier (BFR-ID) is configured for each IP anycast address prefix as a unicast IP address prefix.
  • the mapping between the BFR-ID and the IP anycast address prefix is distributed in the area 404.
  • the egress protection information about the prefix and BFR- ID distributed in the area 404 is used by the neighbors of the node A for fast protection against the failure of node A.
  • the configuration and distribution are reused for fast protection of egress node A (or B).
  • a mechanism of determination of fast egress protection in the BIER domain 402 is described as follows.
  • the primary egress node 104 (or node A) and the backup egress node 106 (or node B) are configured with an IP anycast address of 10.1.1.0.
  • node A and node B distributes the egress protection information about the backup egress to the direct neighbors of the node A (as shown by an arrow 406 in FIG. 3 A).
  • Node C as a direct neighbor of the node A determines whether to provide fast egress protection for node A based on the received egress protection information and pre-defined conditions.
  • the pre-defined conditions are: 1) Node C is connected to node A, 2) Node C can fast detect the failure of node A using a fast failure detection method such as BFD. 3) Node C has two paths to the IP address prefix corresponding to the same IP anycast address configured on node A and node B (e.g., node C has two paths to prefix 10.1.1.0/32 corresponding to IP anycast address 10.1.1.0 configured on nodes A and B as shown in FIG. 4A), 4) The path from node C to the IP address prefix 10.1.1.0/32 through node A is shorter than the path from node C to 10.1.1.0/32 through node B.
  • the path from node C to the prefix through node A has less cost than the path from node C to the prefix through node B, and 5)
  • the prefix 10. 1.1.0/32 for anycast address 10.1.1.0 on node A has BFR-ID 101, which is the same as the BFR-ID 101 that the prefix 10.1.1.0/32 for the anycast address 10.1.1.0 on node B has.
  • node C determines that it can provide the fast protection for egress node A when the five conditions are met.
  • the pre-defined conditions are the first four conditions of the five conditions: 1) to 4) as described above. In this case, the prefix 10.1.1.0/32 for anycast address 10.
  • 1.1.0 on node A has BFR-ID 101, which may be different from the BFR-ID that the prefix 10.1.1.0/32 for the anycast address 10.1.1.0 on node B has.
  • the prefix 10.1.1.0/32 for anycast address 10. 1.1.0 on node B has BFR-ID 102.
  • FIG. 4B is a schematic diagram of fast egress protection in a BIER netw ork 400B according to an embodiment of the disclosure.
  • node C after determining to protect the primary egress node A with the backup egress node B. node C provides fast protection against the failure of the egress node as follows.
  • node C in normal operations (i.e., node A is functioning normally), after receiving a packet with bitstring comprising a bit of value one for the BFR-ID of prefix 10.1.1.0/32 as destination, node C sends the packet to node A according to its Bit Index Forwarding Table (BIFT) (as shown by an arrow 408 in FIG. 4B).
  • BIFT Bit Index Forwarding Table
  • node C when the node A is functioning abnormally or has failed, node C detects the failure of node A using a fast failure detection method such as a bi-directional forwarding detection (BFD) method. After detecting the failure of node A node C sends the packet with bitstring having a bit of value 1 for 10.1.1.0/32 to a loop free alternative (LFA).
  • the LFA comprises a basic LFA or a topology independent (TI) LFA.
  • the LFA node is far enough away from 10.1.1.0 through node A such that the path from the LFA to 10.1.1.0 through node B is shorter than the path from the LFA to 10.1.1.0 through node A (or the path from the LFA to B is shorter than the path from the LFA to node A).
  • the prefix 10 10. 1.
  • BFR-ID 101 which may be different from the BFR-ID such as 102 that the prefix 10.1.1.0/32 for the anycast address 10.1.1.0 on node B has, node C sets the bit for BFR- ID 101 to 0 (zero) and sets the bit for BFR-ID 102 to 1 (one) in the packet with the bitstring before sending the packet to the loop free alternative (LFA).
  • node C sends the packet wi th 10.1. 1.0 as destination to the LFA through a tunnel to the LFA.
  • node C sends the packet to node B through an IP tunnel or segment routing (SR) tunnel from node C to node B (as show n by an arrow 410 in FIG. 4B).
  • SR segment routing
  • the LFA forwards the packet according to its BIFT.
  • node C sends the packet to the LFA without using any tunnel.
  • the LFA such as node D receives the packet with bitstring having a bit of value 1 for 10.1.1.0/32 as destination
  • the LFA sends the packet towards node B instead of node A since the LFA has a shorter path through node B.
  • Node B then sends the packet to the CE receiver 120.
  • FIG. 5A is a schematic diagram of an SRv6 topology 500A including an SRv6 domain 502 according to an embodiment of the disclosure.
  • an Srv6 domain 502 comprises an area 504 with an implementation of configuration and distribution of fast egress protection information.
  • the network nodes and links depicted in FIG. 5A are similar to the netw ork nodes and links depicted in FIG. 1. For the sake of brevity 7 , a detailed description of these elements is not repeated herein.
  • the network node 104 (or node A) may be referred to herein as a primary egress node (or simply an egress node), and the network node 106 (or node B) may be referred to herein as a backup egress node for the primary egress node 104.
  • the network nodes 104 and 106 are configured with an IP anycast address of 2001 :db8:al36::/128.
  • a neighboring node such as node 108 (or node C) receives a packet with the IP anycast address as its destination, the node 108 sends the packet toward the closer node with the IP anycast address.
  • node C has at least two paths from the node C to the destination (i.e., the IP anycast address).
  • a first path is from node C to node A and a second path is from node C to node B.
  • the SRv6 routing algorithm selects the path from the at least two paths based on which is the nearest according to cost measure. Assume that the cost from node B to the address configured makes the path from a neighboring node (i.e. node C) to the address via A shorter than the path from the neighboring node to the address via B.
  • the IGPs running on A and B distribute the IP address prefix 2001:db8:al36::/128 for the IP anycast address configured on nodes A and B. Every node in the area 504 receives the prefix.
  • the egress protection information about the prefix distributed in the area 504 is used by the neighbors of the node A for fast protection against the failure of node A.
  • the configuration and distribution are reused for fast protection of egress node A (or B).
  • the primary egress node 104 (or node A) and the backup egress node 106 (or node B) are configured with an IP anycast address of 2001 :db8:al36::/128.
  • node A and node B distributes the egress protection information about the backup egress to the direct neighbors of the node A (as shown by an arrow 506 in FIG. 5A).
  • the egress protection information is the IP anycast address distributed by node A and node B.
  • Node C determines whether it provides fast egress protection for node A based on the received egress protection information.
  • Node C provides fast protection for node A based on pre-defined conditions.
  • the pre-defined conditions are: 1) Node C connects to node A, 2) Node C can fast detects the failure of node A using a method such as BFD, 3) Node C has two paths to the IP address prefix corresponding to the same IP anycast address configured on node A and node B (e.g., node C has two paths to prefix 2001 :db8:al 36: 128 corresponding to IP anycast address configured on nodes A and B as shown in FIG.
  • the path from node C to the IP address prefix 2001 :db8:al36::/128 through node A is shorter than the path from node C to the IP address prefix through another node B.
  • the path from node C to the prefix 2001 :db8:al36::/128 through node A has less cost than the path from node C to the prefix through node B.
  • node C determines that it provides the fast protection for egress node A when the four conditions are met.
  • FIG. 5B is a schematic diagram of fast egress protection in a SRv6 network 500B according to an embodiment of the disclosure.
  • node C after determining to protect the primary egress node A with the backup egress node B of, node C provides fast protection against the failure of the egress node as follows.
  • node C in normal operations (i.e., node A is functioning normally), after receiving a packet with IP anycast address 2001 :db8:al36::/128 as destination, node C sends node A the packet according to its FIB (as shown by an arrow 508 in FIG. 5B).
  • node C when the node A is functioning abnormally or has failed, node C detects the failure of node A using a fast failure detection method such as a bi-directional forwarding detection (BFD) method. After detecting the failure of node A, node C sends the packet with 2001:db8:al36::/128 as destination to a loop free alternative (LFA).
  • the LFA comprises a basic LFA or a topology independent (TI) LFA.
  • the LFA node is far enough away from 2001 :db8:al36::/128 through node A such that the path from the LFA to 2001 :db8:al36: :/l 28 through node B is shorter than the path from the LFA to 2001 :db8:al36::/128 through node A (or the path from the LFA to B is shorter than the path from the LFA to node A).
  • node C sends the packet to the LFA without using any tunnel (as shown by an arrow 510 in FIG. 5A).
  • the LFA such as node D receives the packet with 2001 :db8:al 36: 128 as destination
  • the LFA sends the packet towards node B instead of node A since the LFA has a shorter path to 2001 :db8:al36::/128 through node B.
  • Node B then sends the packet to the CE receiver 120.
  • FIG. 6 is a method 600 implemented by a network node (e.g., network node 108) neighboring a primary egress node in a domain according to an embodiment of the disclosure. The method may be performed by the network node.
  • a network node e.g., network node 108 neighboring a primary egress node in a domain according to an embodiment of the disclosure. The method may be performed by the network node.
  • the network node receives a piece of egress protection information that identifies a backup egress node for the primary egress node.
  • the TLV structure is received from a rimary egress node.
  • the domain comprises a Border Gateway Protocol (BGP) domain, an interior gateway protocol (IGP) domain, a bit index explicit replication (BIER) domain, or a segment routing version 6 (SRv6) domain.
  • BGP Border Gateway Protocol
  • IGP interior gateway protocol
  • BIER bit index explicit replication
  • SRv6 segment routing version 6
  • the egress protection information is received from the primary egress node and the backup egress node.
  • a network operator or tools configures an internet protocol (IP) anycast address on the primary' egress node and the backup egress node; and the network node receives the egress protection information that comprises an IP address prefix for the IP anycast address from the primary egress node and the backup egress node.
  • IP internet protocol
  • the network node make a determination, in response to receiving the egress protection information, to protect the primary egress node with the backup egress node when the primary' egress node fails.
  • the network node detects whether the primary egress node has failed when forwarding a packet to the primary egress node. [0079] In block 608, the network node forwards, in response to the detennination and in response to detecting the primary egress node has failed, the packet to the backup egress node to transmit the packet to a customer edge (CE) receiver. In an embodiment, the network node forwards, in response to detecting the primary egress node has not failed, the packet with the IP anycast address to the primary egress node according to forwarding information base (FIB) or bit index forwarding table (BIFT).
  • FIB forwarding information base
  • BIFT bit index forwarding table
  • the network node when the domain is the BGP domain, the network node further identifies a remote node using information in a routing information base (RIB); and forward, after detecting the primary egress node has failed, the packet with IP anycast address to the remote node through a tunnel such as an IP tunnel.
  • RIB routing information base
  • the network node when the domain is the IGP domain, the network node further identifies, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary egress node has failed, either forwarding the packet w ith IP anycast address to the intermediate node when the intermediate node is directly connected to the network node, or forwarding the packet with IP anycast address, through a tunnel, to the intermediate node when the intermediate node is not directly connected to the network node.
  • LFA loop free alternative
  • the network node when the domain is the BIER domain, the network node further receives the egress protection information that comprises the IP address prefix for the IP anycast address and a Bit-Forwarding Router Identifier (BFR-ID) for the IP address prefix; identifies, in response to the receiving, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and after detecting the primary egress node has failed, either forward the packet with the BFR-ID to the intermediate node when the intermediate node is directly connected to the network node, or forward the packet with IP anycast address and the BFR-ID, through a tunnel, to the intermediate node when the intermediate node is not directly connected to the network node.
  • BFR-ID Bit-Forwarding Router Identifier
  • the network node when the domain is the SRv6 domain, the network node further identifies, in response to the determination, an intermediate node that is a loop free alternative (LFA) to the backup egress node; and forw ard, after detecting the primary egress node has failed, the packet with the IP anycast address to the intermediate node.
  • LFA comprises a basic LFA or a topology independent (TI) LFA.
  • FIG. 7 is a schematic diagram of a network apparatus 700 (e.g., a network node, a destination node, a neighbor node, etc.).
  • the network apparatus 700 is suitable for implementing the disclosed embodiments as described herein.
  • the network apparatus 700 comprises ingress ports/ingress means 710 and receiver units (Rx)/receiving means 720 for receiving data; a processor, logic unit, or central processing unit (CPU)/processing means 730 to process the data; transmitter units (Tx)/transmitting means 740 and egress ports/egress means 750 for transmitting the data; and a memory/memory means 760 for storing the data.
  • Rx receiver units
  • CPU central processing unit
  • the network apparatus 700 may also comprise optical-to-electrical (OE) components and electrical-to-optical (EO) components coupled to the ingress ports/ingress means 710, the receiver units/receiving means 720, the transmitter units/transmitting means 740, and the egress ports/egress means 750 for egress or ingress of optical or electrical signals.
  • OE optical-to-electrical
  • EO electrical-to-optical
  • the processor/processing means 730 is implemented by hardware and software.
  • the processor/processing means 730 may be implemented as one or more CPU chips, cores (e.g., as a multi-core processor), field-programmable gate arrays (FPGAs), application specific integrated circuits (ASICs), and digital signal processors (DSPs).
  • the processor/processing means 730 is in communication with the ingress ports/ingress means 710.
  • the processor/processing means 730 comprises a fast egress protection module 770.
  • the fast egress protection module 770 is able to implement the methods disclosed herein.
  • fast egress protection module 770 therefore provides a substantial improvement to the functionality of the network apparatus 700 and effects a transformation of the network apparatus 700 to a different state.
  • the fast egress protection module 770 is implemented as instructions stored in the memory/memory means 760 and executed by the processor/processing means 730.
  • the network apparatus 700 may also include input and/or output (I/O) or devices/I/O means 780 for communicating data to and from a user.
  • the I/O devices or I/O means 780 may include output devices such as a display for displaying video data, speakers for outputting audio data, etc.
  • the EO devices or VO means 780 may also include input devices, such as a keyboard, mouse, trackball, etc., and/or corresponding interfaces for interacting with such output devices.
  • the memory/memory means 760 comprises one or more disks, tape drives, and solid- state drives and may be used as an over-flow data storage device, to store programs when such programs are selected for execution, and to store instructions and data that are read during program execution.
  • the memory/memory means 760 may be volatile and/or non-volatile and may be read-only memory (ROM), random access memory (RAM), ternary content-addressable memory (TCAM), and/or static random-access memory (SRAM).

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

L'invention concerne un procédé mis en œuvre par un nœud de réseau voisin d'un nœud de sortie primaire dans un domaine, comprenant la réception d'un élément d'informations de protection de sortie qui identifie un nœud de sortie de secours pour le nœud de sortie primaire ; la détermination, en réponse à la réception des informations de protection de sortie, du fait de protéger le nœud de sortie primaire avec le nœud de sortie de secours lorsque le nœud de sortie primaire échoue ; la détection du fait que le nœud de sortie primaire a échoué ou non lors du transfert d'un paquet au nœud de sortie primaire ; et le transfert, en réponse à la détermination et en réponse à la détection du fait que le nœud de sortie primaire a échoué, du paquet au nœud de sortie de secours pour transmettre le paquet à un récepteur de périphérique de client (CE).
PCT/US2023/081291 2023-02-03 2023-11-28 Protection de sortie rapide générale Ceased WO2024098079A2 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US202363443253P 2023-02-03 2023-02-03
US63/443,253 2023-02-03

Publications (2)

Publication Number Publication Date
WO2024098079A2 true WO2024098079A2 (fr) 2024-05-10
WO2024098079A3 WO2024098079A3 (fr) 2024-06-13

Family

ID=90931707

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2023/081291 Ceased WO2024098079A2 (fr) 2023-02-03 2023-11-28 Protection de sortie rapide générale

Country Status (1)

Country Link
WO (1) WO2024098079A2 (fr)

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022132305A1 (fr) * 2020-12-18 2022-06-23 Futurewei Technologies, Inc. Protection de sortie d'ingénierie du trafic par réplication explicite d'index binaire

Also Published As

Publication number Publication date
WO2024098079A3 (fr) 2024-06-13

Similar Documents

Publication Publication Date Title
Shand et al. IP fast reroute framework
US11646960B2 (en) Controller provided protection paths
EP2686988B1 (fr) Procédé et appareil pour un reroutage rapide de paquets ldp
US20070019646A1 (en) Method and apparatus for constructing a repair path for multicast data
US11962491B2 (en) Source routing tunnel ingress protection
US11546252B2 (en) Fast flooding topology protection
US20230308394A1 (en) Bit Index Explicit Replication Traffic Engineering Egress Protection
US7885179B1 (en) Method and apparatus for constructing a repair path around a non-available component in a data communications network
US20230283558A1 (en) Bit Index Explicit Replication Traffic Engineering Fast Reroute
US12603831B2 (en) Bit index explicit replication fast reroute
WO2024098079A2 (fr) Protection de sortie rapide générale
CA2567512A1 (fr) Methode et dispositif de maintien de la connectivite d'un reseau au moyen de trajet(s) commute(s) par labels
US12562977B2 (en) Framework for BIER fast reroute
US12483465B2 (en) Bit index explicit replication egress protection
WO2024092284A1 (fr) Algorithmes pour les chemins les plus courts vers les voisins
EP4260536A2 (fr) Extensions igp pour bier-te

Legal Events

Date Code Title Description
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 23829258

Country of ref document: EP

Kind code of ref document: A2