The scheme includes two parts, namely, the protection of network connection and the protection of software and hardware of network management system itself.
1 network management network protection scheme
The connection of NMN includes the connection of EMU, the connection between equipment and NMS, and the connection with NMS.
1. 1 EMU connection protection
Optical transmission networks are rich in network structure, but they can be basically divided into two categories, namely, multi-route ring networks (such as single ring, intersecting ring, tangent ring, lattice network, etc.). ) and single-route chain networks (such as point-to-point, chain, star, tree, etc.). ). Here we take the typical ring network and chain network as examples to introduce their protection methods.
Fiberhome communication adopts TCP/IP protocol at EMU end, which is used to transmit network management information between network element devices (NE). In order to realize the hierarchical management of network element equipment by the network management system, our company adopts the way of gateway network element (GNE), and all network elements in the network communicate management information with the network management system through GNE. In figure 1, optical transport network 2 is an intersecting ring network structure, and there are at least two routes between all network elements in the ring and GNE. Because the EMU adopts TCP/IP protocol, when the network fails, NE can use OSPF and other protocols to converge to the route of GNE again, thus protecting the connection between NE and GNE.
However, for the optical transmission network 1, there is only one route between ne and GNE due to its chained networking structure. Fiberhome communication supports the use of edge routers, and establishes a second route between the terminal NE, the network management system and GNE, thus forming an EMU ring network structure between NE and GNE, achieving the same protection capability as the ring network.
1.2 protection of connection between equipment and network management system
In figure 1, a pair of edge routers are used to interconnect the terminals NE and OTNM2000 of the optical transmission network 1. Because edge routers can realize the conversion from FE to 2M channel, DCN network interconnection can be adopted between routers. In order to increase the security of DCN channel, we can use a router that supports dual 2M ports, such as a router that can form dual routing backup in DCN network, and use routing protocol to protect the connection between NE and EMS.
Protect the connection between 1.3 network management systems.
In the optical transport network management network, there may be some connections between EMS, between EMS and user management terminals, and between EMS and NMS. Since the connections between network management systems all adopt FE interfaces, you can also use an edge router that supports more than 2M ports to realize dual routing protection of connections, as shown in figure 1.
2 network management system software and hardware protection scheme
In the network management system, the stability of some key network management system software and hardware operation is directly related to the reliability of network management. The most important are GNE, EMS and NMS network management systems, which involve three functional layers of network management respectively. Fiberhome communication provides full-time active and standby protection from GNE to NMS, which can ensure the high reliability of network management network.
2. Protection of1GNE
Because GNE is responsible for the information exchange between all NEs and EMS in this network, once GNE fails, EMS will lose its ability to monitor the network.
Fiberhome communication supports the use of primary and standby gne to improve the security of gne. As shown in figure 1, there are two GNEs in the optical transmission network 2, which are both active and standby. When the primary GNE fails, the standby GNE will be automatically enabled. Because the management IP information of OTNM2000 has recorded the address information of the main standby GNE, EMS and all NEs only switch routes, which will not affect the normal management of the whole network.
2.2 protection of EMS
EMS is responsible for the management of the whole network, and it is the management object that maintenance personnel should face directly in network management and monitoring, and its importance is self-evident.
OTNM2000, the network element-level management system of Fiberhome Communication, supports (1+ 1) co-location and remote hot standby configuration. When the primary EMS fails, the standby EMS can fully undertake the management of the failed primary EMS, and will not affect the normal operation of the EMS network management.
As shown in figure 1, the gateway network element is connected with the main and standby network elements, and the main and standby network elements are connected through local area network (for local main and standby) or DCN (for remote main and standby). The main network manager and the standby network manager keep data synchronization through the link of the daemon. When the data of the main network management changes, the main network management daemon immediately transmits the configuration data to the standby network management, so that the data of the standby network management changes synchronously. In addition, the event records will be checked regularly between the active and standby network management, and the interval of each check can be set in the network management to further ensure the consistency of the data of the active and standby network management.
Fiberhome Communication adopts real-time hot backup setting on EMS, that is, both the active and standby EMS are in working state, which can manage and maintain the network. Under normal working conditions, all data can only be operated through user management in the main network management. When the main EMS fails, the standby EMS naturally becomes the only network element-level management platform, which is responsible for the management of the whole network. There is no need to switch between software and hardware, and there is no switching delay, which can ensure the continuity of network management work to the maximum extent.
At the same time, since the primary EMS and standby EMS are managed by NMS upstream, it is necessary to coordinate the primary EMS and standby EMS with NMS. Fiberhome communication uses CORBA interface to realize the interconnection between EMS and NMS. Through the primary and standby settings of CORBA service, when EMS is switched, the normal work between standby EMS and NMS can be realized.
2.3 NMS protection
NMS is a higher-level network management platform than EMS, which mainly realizes the unified management of multiple EMS, and realizes the management and monitoring of the whole network equipment through EMS.
The network-level management system OTNM2 100 of Fiberhome Communication also supports primary and secondary settings in the same place and in different places (1+ 1). The primary and secondary NMS maintain data synchronization through CORBA interface service, and the synchronization mechanism is the same as EMS, including active synchronization and periodic synchronization. As shown in figure 1, two network managers, the active network manager and the standby network manager, are running on the network at the same time. At the same time, the authority of the standby network management is restricted, and it is not allowed to change the configuration data to ensure the consistency of its data with the main network management. When the main network management fails, the standby network management will receive the report of the failure of the main network management, and switch to the main network management for no more than 30 seconds.
After the main network management is restored, the original standby network management is downgraded to the standby network management again, and comprehensive configuration synchronization can be carried out before the connection is established to ensure the consistency of the main and standby NMS data.
4 abstract
Fiberhome Communication has been committed to providing the safest and most reliable optical transmission network. I hope that the introduction of this article can absorb more experts' opinions on the network protection mode of transmission network management, and further enhance and enrich the network security solutions of Fiberhome Communication.