Search

CN-121984946-A - IPv6 automatic deployment and management method and system based on address planning strategy

CN121984946ACN 121984946 ACN121984946 ACN 121984946ACN-121984946-A

Abstract

The invention discloses an IPv6 automatic deployment and management method and system based on an address planning strategy, and relates to the technical field of computer networks. The method comprises the steps of constructing a strategy-intention combined model according to a structured address strategy defined by a user and network intention, constructing a network topology map, obtaining an optimized cluster division scheme through multidimensional clustering analysis, combining the strategy-intention combined model and the cluster division scheme to generate an IPv6 address allocation scheme, verifying and correcting the scheme through virtual simulation and conflict prediction to obtain a final address allocation scheme, generating a configuration script and issuing the configuration script to network equipment, continuously monitoring the network operation state according to the strategy-intention combined model, and automatically triggering a correction flow when deviation is found. The invention realizes the closed loop intelligent management from strategy to configuration, and improves the rationality of IPv6 address planning, the verification reliability before deployment and the intention consistency guarantee capability in the operation and maintenance stage.

Inventors

  • MAN GUODONG
  • Fan Duoqin
  • ZHAO TING
  • WANG XINGWANG
  • WANG YONG
  • ZHOU YANRONG
  • DU WEI
  • LIU DAJUN
  • ZHANG MENGBO

Assignees

  • 兰州艾科斯信息技术有限公司

Dates

Publication Date
20260505
Application Date
20251224

Claims (10)

  1. 1. An IPv6 automatic deployment and management method based on an address planning strategy is characterized by comprising the following steps: Constructing an executable strategy-intention joint model according to a user-defined structured address planning strategy and network intention; constructing a network topology map according to the reachable information of the target network equipment; According to the network topology map, an optimized cluster division scheme for describing the internal structure of the network is obtained through multidimensional clustering analysis; generating an IPv6 address allocation scheme through optimization calculation according to the strategy-intention joint model and the optimization cluster division scheme; Virtual simulation and conflict prediction are carried out according to the IPv6 address allocation scheme and the network intention part in the strategy-intention joint model to obtain a conflict prediction result, and the IPv6 address allocation scheme is corrected according to the conflict prediction result to obtain a final IPv6 address allocation scheme; generating and issuing a configuration command of the target network equipment according to the final IPv6 address allocation scheme; and continuously monitoring the running state of the network according to the network intention part in the strategy-intention joint model, and triggering a correction flow when the deviation is found.
  2. 2. The method for automatically deploying and managing IPv6 based on an address planning strategy according to claim 1, wherein constructing an executable strategy-intention joint model according to a user-defined structured address planning strategy and network intention comprises: Converting hierarchical address rules divided according to organization, region and function into policy templates executable by network equipment; Forming an advanced business objective into a verifiable network policy constraint set, wherein the network policy constraint set at least comprises connectivity constraints, security isolation constraints and traffic path constraints; Binding the constraints in the network policy constraint set with specific address levels in the policy template through network intention labels; configuration generation rules and validation logic corresponding to the associated bound network intent are embedded in the policy template.
  3. 3. The method for automatically deploying and managing IPv6 based on an address planning strategy according to claim 1, wherein constructing a network topology map comprises: acquiring a physical connection relation between target network devices through a link layer discovery protocol to form a physical adjacent layer; Obtaining a logic neighbor relation and region division of a routing protocol layer by analyzing a routing protocol state and equipment configuration to form a logic topology layer; Integrating the physical adjacent layer and the logic topology layer to generate map data containing the relationship between the network node attribute and the edge, and constructing a network topology map according to the map data.
  4. 4. The method for automatically deploying and managing the IPv6 based on the address planning strategy according to claim 3, wherein the method for obtaining the optimized cluster division scheme for describing the internal structure of the network through multidimensional clustering analysis according to the network topology map comprises the following steps: extracting topology centrality, connection density and hierarchical position characteristics of network nodes from the network topology map as node characteristics; Simultaneously acquiring physical hop count, logical domain membership and historical traffic affinity among network nodes in a network topology map as node relation characteristics; based on the node characteristics and the node relation characteristics, carrying out weighted multidimensional clustering on the network nodes to obtain a plurality of clustering results; Based on a preset rule, determining a clustering result which meets an internal association threshold and has an explicit service boundary as an optimized cluster division scheme.
  5. 5. The method for automatically deploying and managing IPv6 based on an address planning strategy according to claim 4, wherein the generating an IPv6 address allocation scheme by optimizing calculation according to the strategy-intention joint model and the optimized cluster division scheme specifically comprises: establishing an address allocation optimization model by taking the maximum overall route aggregation degree as an optimization target and taking the meeting of a strategy template and the meeting of cluster continuous address requirements as constraints; Extracting each optimized cluster divided by the optimized cluster division scheme, and determining the priority order of IPv6 address allocation according to the importance level of each optimized cluster in the network topology map; According to the priority order, distributing continuous address blocks for each optimized cluster from an address pool, and distributing specific addresses for specific network nodes in the optimized clusters according to a minimum spanning tree structure; Evaluating the aggregation effect of the current address allocation scheme through the simulated core routing table to obtain the aggregation degree of the whole route; If the aggregation degree of the whole route reaches a preset standard, outputting the current address allocation scheme as an IPv6 address allocation scheme; If the aggregation degree of the whole route does not reach the preset standard, the aggregation degree of the whole route is calculated by taking the meeting of the strategy template and the meeting of the continuous address requirement of the cluster as constraint and the maximization of the aggregation degree of the whole route as an optimization target, iterating until the aggregation degree of the whole route meets the preset standard, and finally generating the IPv6 address allocation scheme.
  6. 6. The method for automatically deploying and managing IPv6 based on an address planning policy according to claim 1, wherein virtual simulation and collision prediction are performed according to the IPv6 address allocation scheme and a network intention part in the policy-intention joint model to obtain a collision prediction result, and the IPv6 address allocation scheme is modified according to the collision prediction result to obtain a final IPv6 address allocation scheme, comprising: acquiring a device configuration template according to the type of the target network device and manufacturer information; Loading the IPv6 address allocation scheme based on the network topology map and the equipment configuration template to construct a virtual simulation environment comprising a control plane and a data plane; Converting the network intention constraint into a test flow set, executing forwarding simulation in a virtual simulation environment, verifying whether actual behaviors accord with the intention or not, and identifying the existing intention violation event; If the intention violation event is monitored, carrying out root analysis on the intention violation event, reversely tracking to a fault source causing the intention violation event, acquiring a conflict mode of the fault source, and taking the fault source and the corresponding conflict mode as a conflict prediction result; matching a preset correction knowledge base according to the conflict prediction result to generate a correction proposal aiming at the fault source; and correcting the IPv6 address allocation scheme based on the correction proposal to obtain a final IPv6 address allocation scheme.
  7. 7. The method for automatically deploying and managing IPv6 based on address planning strategy according to claim 6, wherein the correction knowledge base is constructed by accumulating historical conflicts and correction schemes, setting confidence scores for each correction scheme, and correcting the fault source by adopting the correction scheme with the highest confidence when generating the correction proposal.
  8. 8. The method for automatically deploying and managing IPv6 based on an address planning policy according to claim 1, wherein generating and issuing a configuration command of the target network device according to the verified final IPv6 address allocation scheme includes: selecting a device configuration template according to the type of the target network device, and filling an address allocation result extracted from a final IPv6 address allocation scheme into a template variable to form a specific configuration script; And pushing the specific configuration script to the target network equipment in stages through the secure channel, and performing health check after each stage is completed.
  9. 9. The method for automatically deploying and managing IPv6 based on an address planning policy according to claim 1, wherein the method is characterized by continuously monitoring a network operation state according to a network intention part in the policy-intention joint model, and triggering a correction flow when a deviation is found, and specifically comprises: Periodically collecting the running state information of the target network equipment; Comparing the running state information with network intention constraint in the strategy-intention joint model, and verifying consistency; when an unauthorized configuration drift or intent violation event is identified, a correction procedure is automatically triggered according to predefined rules.
  10. 10. An IPv6 automation deployment and management system based on an address planning strategy, characterized in that it is configured to execute an IPv6 automation deployment and management method based on an address planning strategy according to any one of claims 1 to 9, and comprises: The strategy-intention joint modeling module is used for constructing an executable strategy-intention joint model according to the user-defined structured address planning strategy and the network intention; The network topology construction module is used for constructing a network topology map according to the reachable information of the target network equipment; the cluster division analysis module is used for obtaining an optimized cluster division scheme for describing the internal structure of the network through multidimensional clustering analysis according to the network topology map; The address scheme generating module is used for generating an IPv6 address allocation scheme through optimization calculation according to the strategy-intention joint model and the optimization cluster division scheme; The simulation verification and correction module is used for carrying out virtual simulation and conflict prediction according to the IPv6 address allocation scheme and the network intention part in the strategy-intention joint model to obtain a conflict prediction result, and correcting the IPv6 address allocation scheme according to the conflict prediction result to obtain a final IPv6 address allocation scheme; the configuration generation and issuing module is used for generating and issuing a configuration command of the target network equipment according to the final IPv6 address allocation scheme; And the operation monitoring and maintaining module is used for continuously monitoring the network operation state according to the network intention part in the strategy-intention joint model and triggering a correction flow when the deviation is found.

Description

IPv6 automatic deployment and management method and system based on address planning strategy Technical Field The invention relates to the technical field of computer networks, in particular to an IPv6 automatic deployment and management method and system based on an address planning strategy. Background Along with the popularization of the sixth version of the internet protocol, namely IPv6, the massive address space of the internet protocol supports everything interconnection and simultaneously brings the complexity problems of address planning, distribution and management. Traditional deployment methods relying on manual or semi-automated scripts are inefficient and prone to error, and have been difficult to accommodate for the need for fast deployment and refined operation and maintenance of large-scale, highly dynamic networks. The conventional IPv6 address automatic configuration tool mainly realizes batch issuing of basic parameters, and has the core defect that the comprehensive optimization cannot be performed by effectively combining a network topology structure and advanced service intention. The tool usually adopts a simple sequential allocation or static policy matching mechanism, and cannot intelligently divide address blocks according to physical connection and logical subordinate relations among devices, so that address space fragmentation and route table entry redundancy are caused, and the route aggregation efficiency and the overall network performance are affected. Meanwhile, the prior scheme lacks systematic verification and conflict prediction capability before deployment, and the generated address allocation scheme may implicitly violate potential conflicts of established security policies, traffic engineering targets or network isolation requirements, so that the deployment process is full of uncertainty, and the complexity of operation and maintenance and the later maintenance cost are increased. Disclosure of Invention Aiming at the technical problems that the prior IPv6 address allocation is disjointed with the network topology and the service intention, effective verification is lacking before configuration issuing, and continuous consistency maintenance after deployment cannot be realized, the invention provides an IPv6 automatic deployment and management method and system based on an address planning strategy. The technical scheme for solving the technical problems is as follows: In a first aspect, the present invention provides an IPv6 automated deployment and management method based on an address planning policy, including: Constructing an executable strategy-intention joint model according to a user-defined structured address planning strategy and network intention; constructing a network topology map according to the reachable information of the target network equipment; According to the network topology map, an optimized cluster division scheme for describing the internal structure of the network is obtained through multidimensional clustering analysis; generating an IPv6 address allocation scheme through optimization calculation according to the strategy-intention joint model and the optimization cluster division scheme; Virtual simulation and conflict prediction are carried out according to the IPv6 address allocation scheme and the network intention part in the strategy-intention joint model to obtain a conflict prediction result, and the IPv6 address allocation scheme is corrected according to the conflict prediction result to obtain a final IPv6 address allocation scheme; generating and issuing a configuration command of the target network equipment according to the final IPv6 address allocation scheme; and continuously monitoring the running state of the network according to the network intention part in the strategy-intention joint model, and triggering a correction flow when the deviation is found. In a second aspect, the present invention provides an IPv6 automated deployment and management system based on an address planning policy, including: The strategy-intention joint modeling module is used for constructing an executable strategy-intention joint model according to the user-defined structured address planning strategy and the network intention; The network topology construction module is used for constructing a network topology map according to the reachable information of the target network equipment; the cluster division analysis module is used for obtaining an optimized cluster division scheme for describing the internal structure of the network through multidimensional clustering analysis according to the network topology map; The address scheme generating module is used for generating an IPv6 address allocation scheme through optimization calculation according to the strategy-intention joint model and the optimization cluster division scheme; The simulation verification and correction module is used for carrying out virtual simulation and conflict predic