Browse Prior Art Database

A New Solution for Switch Partition

IP.com Disclosure Number: IPCOM000236828D
Publication Date: 2014-May-19
Document File: 6 page(s) / 268K

Publishing Venue

The IP.com Prior Art Database

Abstract

A new solution for switch partition without MAC address learning conflict between different domains.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 53% of the total text.

Page 01 of 6

A New Solution for Switch Partition

In data center, usually, switch partition in a physical switch is needed to meet the multi-tenant business requirement. Switch partition is use to isolate the traffics belong to different business. If the different business's traffics are distinguished by different VLAN domain, the VLAN abstraction layer will implicitly provide the data separation to prevent traffic from mixing between different business domains. However, the problem is how to do the data separation while the traffics can not be separated by VLAN domain?

Known solution:

The current solution for switch partition is use the egress mask to isolate the traffics within the same VLAN.

But, the main problem for this solution is there is MAC address learning conflict between different domains.

It means the MAC address for unicast and multicast can not be learned per domain.

For example:

See picture 1. The business domain 1 & 2 use the same VLAN domain 10. Domain 1 use port P1, P2 and P3 in the physical switch. Domain 2 use port P7, P8

and P9 in the same physical switch.

1


Page 02 of 6

Picture 1 - The Data Partition by Egress Mask

To prevent traffic from mixing between different business domains, the egress mask should be defined as table 1.

Table 1- Egress Mask Definition for Data Partition

Domain

Port

Egress Mask

P1 P7, P8, P9 P2 P7, P8, P9

Domain 1
P3 P7, P8, P9 P7 P1, P2, P3 P8 P1, P2, P3 Domain 2

2


Page 03 of 6

P9 P1, P2, P3


So, the traffics within domain 1 belong to VLAN 10 will not be expand to domain 2, vice versa. But if one MAC learned on domain 1 first and the same

MAC learned on the domain 2 later, it will be treated as station move and can not meet the requirement.

This invention leverages the virtual private switched network service technology to do the data partition in a physical switch. It maps the difference customer domain to difference virtual forward instance (VFI) and forwards the traffics base on the virtual forward instance. Also, because the difference virtual forward instance have independent MAC address learning space, so, it also can resolved the MAC address learning conflict naturally between domains.

Picture 2 - The Data Partition Base on VFI

See picture 2 for example. The customer 1 use VLAN 10 among physical port 1 to 3 while customer 2 use the same VLAN 10 among physical port 7 to 9. Base on this technology, the domain for customer 1 will be map to virtual forward instance 1 and the customer domain 2 will be map to virtual forward instance 2. Even they have the same customer VLAN 10, but because they have been map to difference virtual forward instance (VFI), so, the data traffics in their domain can not expa...