计算机科学

计算机科学 ›› 2023, Vol. 50 ›› Issue (9): 357-362.doi: 10.11896/jsjkx.220800252

• 计算机网络 • 上一篇    

基于虚拟化的跨域VPN解决方案

陶志勇1,2, 张锦2,3, 阳王东2   

  1. 1 长沙民政职业技术学院软件学院 长沙 410004
    2 湖南大学信息科学与工程学院 长沙 410082
    3 湖南师范大学信息科学与工程学院 长沙 410012
  • 收稿日期:2022-08-27 修回日期:2023-01-18 出版日期:2023-09-15 发布日期:2023-09-01
  • 通讯作者: 张锦(mail_zhangjin@163.com)
  • 作者简介:(27537406@qq.com)
  • 基金资助:
    国家自然科学基金(61872127);湖南省教育厅资助科究项目(22C1433);湖南省自然科学基金(2020JJ7089);长沙民政职业技术学院横向项目(HX2023025)

Solution to Cross-domain VPN Based on Virtualization

TAO Zhiyong1,2, ZHANG Jin2,3, YANG Wangdong2   

  1. 1 Software School,Changsha Social Work College,Changsha 410004,China
    2 College of Computer Science and Electronic Engineering,Hunan University,Changsha 410082,China
    3 College of Computer Science and Electronic Engineering,Hunan Normal University,Changsha 410012,China
  • Received:2022-08-27 Revised:2023-01-18 Online:2023-09-15 Published:2023-09-01
  • About author:TAO Zhiyong,born in 1980,master,associate professor,is a member of China ComputerFederation.His main research interests include network communication and cloud computing.
    ZHANG Jin,born in 1979,Ph.D,professor,Ph.D supervisor,is a member of China Computer Federation.His main research interests include network communication,cloud computing,and software engineering.
  • Supported by:
    National Natural Science Foundation of China(61872127),Research Foundation of the Education Department of Hunan Province(22C1433),Natural Science Foundation of Hunan Province,China(2020JJ7089)and Horizontal Project of Changsha Social Work College(HX2023025).

PDF (PC)

2049

摘要: 针对目前运营商网络中构建的跨域虚拟私有网实现复杂、自治系统边界设备负载过重、存在单点故障等问题,提出了采用虚拟化方式构建跨域虚拟私有网的解决方案。该方案包括公网隧道的建立、本地VPN实例的建立、自治系统边界设备的虚拟化、边界设备私网路由的交互4个关键步骤。为评估方案的可行性,对方案进行了测试与验证,测试与验证结果表明该方案达到了预期设计的目标。为了评估方案的优越性,与传统多跳EBGP方式构建的跨域虚拟私有网在交换容量、路由条目、标签条目等维度进行了对比分析。对比结果表明,采用该方案构建的跨域虚拟私有网增强了自治系统边界设备的数据处理能力,并减少了自治系统边界设备需处理的数据量,是一种构建跨域私有网的改进方案。

关键词: 虚拟化, 多协议标签交换, 边界网关路由协议, 自治系统边界设备, 虚拟私有网

Abstract: To address the problems of complex implementation of cross-domain virtual private networks built in current carrier networks,excessive load on devices at the border of autonomous systems,and the existence of single points of failure,this paper proposes a solution for building cross-domain virtual private networks by virtualization.The scheme consists of four fundamental steps:the establishment of public network tunnels,the establishment of local VPN instances,the virtualization of autonomous system border devices,and the interaction of private network routes of border devices.To evaluate the feasibility and superiority of the scheme,comparative experiments are conducted with the cross-domain virtual private network constructed by the tradi-tional multi-hop EBGP approach in the dimensions of switching capacity,route entries,and label entries.Experimental results show that the cross-domain virtual private network constructed by this scheme enhances the data processing capability of the autonomous system boundary devices and reduces the amount of data to be processed by the autonomous system boundary devices.In general,this improved scheme is advanced and effective for building cross-domain virtual private networks.

Key words: Virtualization, Multi-protocol label switching, Border gateway routing protocol, Autonomous system boundary sevice, Virtual private network

中图分类号: 

  • TP393
[1]MA P Y,YANG G M,MAO D F,et al.Realization of intelligent routing based on SRv6+MPLS dual forwarding plane [J].Optical Communication Research,2022(1):67-70.
[2]CHEN F Q,DOU J,ZHANG D.VRF configuration design and simulation based on BGP/MPLS VPN [J].Journal of Chengdu University of Information Technology,2020,35(4):378-381.
[3]LIN D S.Dual-machine hot standby function design of VPNgateway of industrial control system [J].Computing Technology and Automation,2020,39(1):74-78.
[4]WEN T,ZHANG Q B,AN W T.Construction of cross-regional technology video conference network based on VPN technology [J].Journal of Liaoning University of Technology(Natural Science Edition),2019,39(3):164-168.
[5]XU Y Y,SU XU Z,LIU Y Q,et al.Remote monitoring system for slub yarn production based on VPN technology [J].Manufacturing Automation,2022,44(2):16-19.
[6]SHENG W S,ZHOU C,SUN Y W.The application of MPLSVPN in enterprise networks [J].Computer Technology and Development,2020,30(11):117-122.
[7]SUN G Y,JIAO J.Simulation design of routing filtering based on multiple autonomous systems [J].Journal of Capital Normal University(Natural Science Edition),2022,43(2):20-28.
[8]SUN G Y,JIA Y X.Multi-Autonomous System Routing Simulation Based on GNS3 [J].Laboratory Research and Exploration,2019,38(4):123-128.
[9]LI Y F.Simulation design of enterprise cross-domain networkingbased on BGP MPLS VPN[J].Laboratory Research and Exploration,2021,40(3):121-128.
[10]DENG C R.Analysis on the principle of cross-domain VPN networking for power dispatching data network [J].Journal of Shandong Electric Power College,2022,25(2):20-24.
[11]SONG G J,HU C,ZHOU F.MPLS-VPN architecture optimization based on layered PE technology[J].Computer Engineering,2017,43(6):66-72.
[12]TAO Z Y,ZHANG J,YANG W D,et al.Research on perfor-mance optimization of edge devices based on double-layervirtua-lization idea [J].Computer Science,2021,48(11):372-377.
[13]SUN C.Ship navigation information service platform based oncloud computing virtualization technology [J].Ship Science and Technology,2022,44(6):141-144.
[14]HU Z Y.Design of intelligent ship automation information ser-vice platform based on cloud computing virtualization technology[J].Ship Science and Technology,2021,43(22):151-153.
[15]HUANG S P,XIE J,KAN H Y.Research on the Application of IRF Virtualization Technology in the Network[J].Experimental Technology and Management,2014,31(11):124-126.
[16]BAO L L,TANG H S,JIANG S Y,et al.Research on the design of meteorological network based on IRF2 and LACP MAD[J].Computer Applications and Software,2019,36(1):37-141.
[17]WANG J W,ZHANG X L,LI Q,et al.Research progress of network function virtualization technology[J].Chinese Journal of Computers,2019,42(2):185-206.
[18]SUN T,ZHAG J X.A review of virtualization technology re-search in network experimental beds [J].Journal of Inner Mongolia University(Natural Science Edition),2018,49(5):554-560.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发