电信科学 ›› 2017, Vol. 33 ›› Issue (3): 95-99.doi: 10.11959/j.issn.1000-0801.2017053

• 运营技术广角 • 上一篇    下一篇

基于SDN的政企vCPE VPN业务研究

扶奉超,王鹏,谢元宝   

  1. 中国电信股份有限公司广州研究院,广东 广州510630
  • 修回日期:2017-02-18 出版日期:2017-03-01 发布日期:2017-04-05
  • 作者简介:扶奉超(1991-),女,中国电信股份有限公司广州研究院数据通信工程师,主要从事宽带接入网技术的研究工作。|王鹏(1973-),男,中国电信股份有限公司广州研究院高级工程师,主要从事宽带接入网技术的研究工作。|谢元宝(1989-),男,中国电信股份有限公司广州研究院移动通信工程师,主要从事LTE网络关键技术的研究工作。

Research on VPN service for government and enterprise customers in SDN-based vCPE networks

Fengchao FU,Peng WANG,Yuanbao XIE   

  1. Guangzhou Research Institute of China Telecom Co.,Ltd., Guangzhou 510630, China
  • Revised:2017-02-18 Online:2017-03-01 Published:2017-04-05

摘要:

SDN已成为当前的研究热点。用SDN技术实现vCPE的主要思想是通用硬件+软件的方式实现CPE,同时用SDN控制器集中管理vCPE,并提供开放的北向可编程接口。采用此方法,不仅可以为政企客户提供丰富的增值业务,还可以加快政企客户业务部署速度,增强业务灵活部署的能力。提出了基于SDN技术的vCPE模型,并研究采用vCPE后,如何根据企业不同的需求实现VPN业务的问题。提出了3种适用于vCPE的VPN技术,即VxLAN VPN、MPLS协议VPN和IPSec VPN,并从多角度比较了3种方法的优劣。此外还提出VxLAN VPN、MPLS VPN和IPSec VPN的融合方案,在保证VPN业务高安全性的同时,分别保持VxLAN VPN低成本的优势和MPLS VPN高传输速率和QoS保障的优势,从而使得政企客户能够根据自身带宽、安全性和时延等需求,选购灵活的随选VPN产品。

关键词: vCPE, 软件定义网络, 虚拟专用网, VxLAN, 多协议标签交换, IPSec

Abstract:

SDN technology has been studied widely recently. The main idea of SDN-based vCPE is using custom hardware and software to replace CPE. All vCPEs are managed by the SDN controller in a centralized way and the open programmable north interface can be provided. In this way, not only a wealth of value-added services can be provided for government and enterprise customers, but also the pace of deploying services can be speeded up and the flexibility can be enhanced. A SDN based vCPE model was proposed and the problem of how to realize VPN services for government and enterprise customers in SDN-based vCPE networks according to their own needs was researched. Three VPN technologies of VxLAN VPN, MPLS VPN and IPSec VPN were proposed and they were compared from different perspectives. In addition, fused schemes were proposed to combine the advantages in security, transmission rate and QoS, so that government and enterprise customers can select flexible VPN products according to their own needs in bandwidth, security, delay and others.

Key words: vCPE, softwave defined networking, virtual private network, VxLAN, MPLS, IPSec

中图分类号: 

No Suggested Reading articles found!