Technical development and CN2 mentality of designing of Internet of future generation
The summary has canvassed the technological development trend of Internet of future generation, including network expansibility, network usability, network control, network security, IPv6 technology and QoS business control technology, have introduced the overall mentality of designing of China Telecom CN2 network briefly.
Internet’s development strategy of future generation of the keyword
Internet has already become the one of the most important information infrastructure modern society, become the network that business such as pronunciation, data and video bore the weight of in unison. But with the intersection of popularization and take, commercialization and broad band that employ, deficiency and defect that Internet technology exist expose, come out gradually at present, become the bottleneck further developed. For this reason, industry canvass and implement Internet NGI of future generation Carry out the transition and development problem. Through the knowing again of a series of questions and challenges brought toward flourishing development of IP business in recent years, it feel we it should can can expand, not high characteristics main when it is of future generation Internet with, but control, security, ends high go end to can last location and call out, corresponding key technology is semiconductor and router designing technique, the route is calculated and look for technology, IPv6/ MPLS technology, network administrative skill, QoS technology, broadband access technology. Carry on the discussion to the main technological development trend realizing the aforesaid goal as follows.
A network expansibility
In recent years, what IP employed is fast and popular to melt to put forward the severe challenge with the broad band expansion to Internet. It is to realize and guarantee the expanding main technology of the network that high-capacity router, high-speed chains, large-scale networks support and share technology, large-scale network route to stabilize technology. Among them the most key one is the high-capacity router manufacturing technology, there is multi-type at present in the solution, the most feasible method is to adopt the structural scheme of the integrated router, this scheme is also called the router matrix technology or many machine cases Multi-Chassis Combination technique. Each node of it is made up of a exchange matrix machine case and a plurality of interface board machine case, the connection between all machine cases is connecting within the router, has reduced the chain quantity, but only a management and route control the engine, it is a router in logic, thus make the network topological and the route structure is succinct and clear. Adopt the backplates of new high capacity, each interconnected machine case of low-cost mere interface, not needing ordinary interface board card in order to realize QoS deployment, the route transfers to issuing, visits and controls the tabulation ACL Specialized ASIC and ultrafast storage chip array that function must adopt of counting etc., in addition, adopt the low-cost light source VCSEL, the interconnected cost between the making machine cases is well below the interconnected way of the ordinary port; In addition, have also overcome and adopted the bandwidth bottleneck problem that the interconnected way of the ordinary port brings, can solve the capacity expanding problem of the router well while cooperating with centralized exchange matrix, have really realized the key routers of vast capacity of Tbit/ s grade and several dozen Tbis/ s grade. At present, adopting the route crime unit case that this kind of thinking develops exchanges the capacity and already reaches 1.28 Tbit/ s, it exchange matrix it is with 250% acceleration than,adopt by machine cases many in combination technique,the most large to if you can’t exchange by capacity, last 92 Tbit/ s, support 1 152 40 Gbit/ s ports, has reduced the interconnected port among POP inner apparatus greatly. But so large-scale many machine case combination techniques require the apparatus to have extremely high dependability in practical application, consider the unit trouble may cause calamitous influence on network and business, whether economic and feasible still remain to be proved in practice. 40Gbit/ s transmission system also takes several years to just possess the terms commercial in scale, whether the optical cable of the existing network could be supported and also need to do a large amount of research and transformation and work in transmission of 40 Gbit/ s.
From the development of long-term, the exchange matrix of the electricity should be always limit to device and microstrip to handle craft, consumption and bunch and disturb on the speed, its scale will be limit to the chip logic and pin are counted, the improvement of the interface speed is limited by complexity dealt with in Baotou. In addition enormous the intersection of route and table that increase day by day punish and exchange, lead to the fact very much loud burden rapidly line. In addition, present router operating system and network management tool do not still possess good security. Though already there are many solutions, often too complicated, may consume too many router handling capacities or may introduce the new security loophole. In brief, there is no ideal final scheme in fact in the long-term expansion question of the router, deep research work is still continuing going on.
Increase the network capacity through many equivalent chains, it is the basic tool that the large-scale IP network is designed. IGP route agreement based on state algorithm of the chain can support the load of up to 16 equivalent routes to share at present, have basically responded to the request that the network is expanded. But introduce the route reflector RR in BGP route agreement And then, transmit the alternative to route information and shield many information of equivalent routes, the load of making BGP unable to make use of IGP to realize the equivalent route shares the choice of the foot-path and shorts out most, cause the flow to be distributed unbalancedly, has influenced the expansibility of the network seriously.
The router controls engines to generally adopt 64 bit high performance much CPU, SPF route can be regarded as and disposed data and agreement news content digital coding way at the same time, adopt SSHv2 based on TCP to convey, transfer RPC with the simple long-range course The way is realized and operated and controlled. XML language can express the complicated management target with inherent logic relation, model, relation for instance among port, agreement, business and them,etc., has raised and operated efficiency and target’s standardization greatly; Adopt SSHv2 Contact method at the same time, dependability, security, interaction are better. But shortly after NETCONF agreement is drafted, manages target’s model and sets up the task strenuously, it takes time for the apparatus to support, the whole technology is ripe to probably also take 2-3 years. In brief, NETCONF represents the direction of agreement development of network management, especially in the configuration management of the apparatus and business open management etc. and employ, SNMP gathers the use with respects such as the fault alarm,etc. in the data and exists for a long time.
The business of the Internet controls and mainly inserts the control point and realizes in the business, generally point the business router SR With the broadband access server BRAS . RADIUS and COPS two kinds of agreement systems can realize administrative system of the business and business insert the communication between the control points at present, realize management and control of the business. RADIUS is based on UDP, realizes the control function by attribute value, has already been used extensively in AAA has authorized, but RADIUS agreement can’t meet the demand that business controls in dependability, security, interaction, expansibility and online course are controlled. COPS is based on TCP, optimizes the design of MIB storehouse, strengthens the mutual ability to operate, can adjust the business online. But such respects as COPS supported in MIB storehouse, manufacturer have just started, much need of work is improved and finished. The proposition of NETCONF agreement brought to COPS agreement and assaulted greatly, so took RADIUS agreement as the core and realized AAA and simple business control recently, it can be tried that some on the basis of COPS agreement business administrative system. Vitality according to midium or long term, it is based on XML technology getting which have more stronger in NETCONF,should concerns positive.
4 network security
The security of the network is one of the greatest defects of present Internet. The key to the online security is to realize that employs physics of tracing to the source and assailant in the layer, Internet and physical floor to make a reservation. Usually, trace to the source and adopt one layer of ways to trace to the source and combine together of Internet and physics to realize, the final goal is to realize similar DDoS is attacked. It is to deter the security precautionary technology of the way to trace to the source afterwards, present PSTN can possess the tracing to the source.
Employing layer can discern and authorize to trace to the source through one’s own identity to realize, also can increase Internet information in employing one floor of agreements, turn it into question of tracing to the source of the Internet, for example increase the address information of source of the persons who send in the E-mail agreement MSTP and POP agreement, also the source address information of the persons who can be sent by the server record of the E-mail, will employ the tracing back to and transferring to the Internet of layer, is realized by the latter.
The Internet traces to the source to realize according to the source IP address, physics layer trace to the source, insert between the control point adopting one the intersection of user and one VLAN or the intersection of PVC and way set up physics layer point-to-point to connect in user and business, realize users insert the localization of the physical position. Limited by IPv4 address quantity, ordinary users surf the Net and adopt PPP dialing or DHCP to realize dynamic address assignment at present, enterprises surf the Net and adopt NAT technology, all these trace to the source to bring the difficulty to the Internet. Set up the intact address resource management information storehouse, combine IP address and corresponding information of the physical port information in information of RADIUS account keeping, realize tracing to the source of the Internet, and realize finally the physics layer traces to the source, it is the present feasible scheme.
In the business inserts the apparatus of control point, adopt strict sowing the reverse route to look for uRPF only Technology, can basically prevent the source address from cheating. After adopting IPv6 technology in the future, all individuals and enterprise terminal stations can distribute into the permanent public IP address, therefore is very apt to discern that send the type of the apparatus, realize the security of carrying the end; Combine uRPF technology again, it is expected to solve tracing to the source of the Internet fundamentally.
5 IPv6 technology
Present Internet is based on IPv4 agreement, it is available to still have 1,400 million addresses left, may all exhaust in about 2010. In addition, IPv4 inherent defect in employing restraining from, managing flexibility, security can’t meet demands of development in the future more and more either, it is an inevitable main trend that Internet turns to Internet of future generation based on IPv6 gradually, IPv6 is one of the essential features of Internet of future generation.
Adopting IPv6 solves the address that IPv4 exists to limit fundamentally, and can support to move IP more effectively, the advantage that it brings to business realizing and network operation and management is revolutionary character: First, IPv6 makes the space of address expand from 32bit of IPv4 to 128bit, has totally dispelled network barrier and communication barrier that Internet’s address barrier causes, have solved the end of Internet to seeking the location and calling out, help to run the network and extend towards enterprise’s network and family’s network one of the end; Second, I6 has prevented dynamic address assignment and network address from changing NAT Use,solve Internet problem of tracing to the source,it is be basic to provide for online security, clear away the obstacle that NAT realizes to the business at the same time; Third, IPv6 agreement disposes and moves IPv6 agreement, can make the portable terminal realize that move in different freedom that inserts between medium on the premise of not changing one’s own IP address, it is 3G, WLAN, WiMAX,etc. one has not sewn and used and created the condition; Fourth, IPv6 agreement, through a series of automatic discovery and disposing the function automatically, simplify network nodal management and maintenance, can realize and use simultaneously, help to support to move application of the node and a large number of small-scale electrical home appliances and communication equipment; The fifth, can develop a lot new hot application, especially P2P business after adopting IPv6, for example in the chat of line, game on line,etc..
The technical standard about IPv6 has already been basically shaped, but the real network moves forward very slowly: On one hand IPv4 can still be dealt with the address demand of about 5 through adopting measures such as NAT,etc.; On the other hand, the operation way relation between IP address way and upper strata agreement and network is close, realize IPv4 upgrades to IPv6 and nearly involve all apparatuses and application on net, time consuming and strenuous, greater risk exists.
6 QoS business control technology
Present Internet is one ” Do one’s best ” Network,what has been is it strict to had and machine-processed QoS concept. And Internet of future generation needs QoS mechanism that can run, this requires the network to possess the ability of two respects of quality assurance of the business and business quality control. Annotate and guard against theft in QoS key technology including quality assurance, quality control, QoS management, QoS business with relevant business.
Quality guarantees it is mainly light year, DiffServ and flow project TE moderately Combine together, try hard to realize summarily. Find result in real time according to international operator and the intersection of research and structure, Internet flow accord with Poisson, distribute model. The research institute in Guangzhou of China Telecom adopts the test result to the key router of mainstream of this model to reveal: While supporting as 50% on average, it is O to lose bag rate, shake within 10μ s equally; While supporting as 80% on average, it is 0 to lose bag rate, shake about 30μ s; Close to 100% in average load When proruption has been already more serious ,If QoS formation buffers the capacity and is greater than 1 000 IPs to wrap up, loses bag rate about O.2%, shakes and controls about 600μ s. If adopt QoS mechanism, Critical and Best Effort business is in case of 6% and 94% of total bandwidth respectively: It is O to lose bag rate in Critical business, shake about 60μ s; It is about O.3% to lose bag rate in Best Effort business, shake about 1.2 ms. Therefore, adopt the high-end router of new generation, even the quality of the high grade business can get the assurance in heavily loaded cases.
In the intersection of DiffServ and framework, the intersection of deployment and algorithm, the intersection of formation and quantity, buffer size and throw the intersection of bag and tactics determine the behavior PHB that the apparatus beat each time . Generally require each physical port to support the data of 100 ms to buffer ability, the logic port of each business is greater than 8 formation and 8 and rigorously enforce preferential grade, support the tactics of losing the bag based on WRED. The development trend of the edge business router is possessing abundant business support, dealing with and upgrading ability and level formation deployment mechanism,etc..
The quality control of network is the important component that the network controls, how to realize Internet difference divides the key of the business in the light year network. Internet of future generation should possess to different bag types, employ type and business type, the ones that realized and can dispose artificially lost the bag proportion and lost bag way, wrapped up the aspect of control of haphazard preface and MPLS, dispose FRR, can realize the protection switch of 50ms in 50 chains between the key nodes; CN2 can offer the whole network MPLS two layers / three layers of VPN business.
CN2 has also built the network administrative system together, adopts the thinking of the centralized management of the whole network, focus the consruction on the business administrative system that VPN business, QoS business, online security are correlated with VIP customer’s business.
Besides technological measure, the design of the business strategy is very crucial too, according to the present engineering level, can’t expect a high-quality network to be open to all business and all users, that will be a very complicated and passive situation. Therefore, the simple business strategy of adopting trying hard of CN2 network, mainly open 4 kinds of important business in initial stage, namely it is interconnected to bear the weight of the enterprises with quality assurance and exchange relaying and important interconnected starry sky Vnet with the VIP customer inserting, 3G relaying and softly Business. Existing ChinaNet Internet of China Telecom will be regarded as bearing the weight of the network of ordinary Internet’s business, two networks will coexist and complementary for a long time, will bear the weight of IP business of China Telecom together.
In brief, construction of CN2 establish one having high business of quality assurance bear the weight of the platform unified for the intersection of China Telecom and of future generation development of network, it will form a part of the network of future generation too oneself. Convince construction of network this promote of our country of future generation the intersection of network technique and overall expansion of business to a great extent and to merge to perform, progress, cut down network.
—-” telecommunication technology ”
Leave a Reply