PACKET FORWARDING METHOD AND APPARATUS, NETWORK NODE AND STORAGE MEDIUM

(19)

(11)

EP 4 152 728 A8

(12)	CORRECTED EUROPEAN PATENT APPLICATION
	published in accordance with Art. 153(4) EPC

(15)	Correction information:
	Corrected version no 1 (W1 A1)

(48)	Corrigendum issued on:
	28.06.2023 Bulletin 2023/26

(43)	Date of publication:
	22.03.2023 Bulletin 2023/12

(21)	Application number: 21944452.8

(22)	Date of filing: 29.06.2021

(51)

International Patent Classification (IPC):

H04L 45/74^(2022.01)

(52)	Cooperative Patent Classification (CPC):
	H04L 45/50; H04L 45/34; H04L 63/08; H04L 63/0272; H04L 63/164; H04L 63/12; H04L 69/22

(86)	International application number:
	PCT/CN2021/103176

(87)	International publication number:
	WO 2023/272498 (05.01.2023 Gazette 2023/01)

(84)	Designated Contracting States:
	AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR
	Designated Extension States:
	BA ME
	Designated Validation States:
	KH MA MD TN

(71)	Applicant: New H3C Technologies Co., Ltd.
	Binjiang District Hangzhou Zhejiang 310052 (CN)

(72)	Inventors:
	CHANG, Xiangqing Beijing 100102 (CN) LEI, Zhaoyan Beijing 100102 (CN) LIN, Tao Beijing 100102 (CN) QIN, Juan Beijing 100102 (CN)

(74)	Representative: Zimmermann & Partner Patentanwälte mbB
	Postfach 330 920 80069 München 80069 München (DE)

(54)	PACKET FORWARDING METHOD AND APPARATUS, NETWORK NODE AND STORAGE MEDIUM

(57) Disclosed is a method and an apparatus for packet forwarding, which relate to the network technology field and are applied to a network node. The method comprises: obtaining an SRV6 packet; if a function field in a target SID contains a security authentication instruction, obtaining a target argument based on an operation indicated by the security authentication instruction, and performing security authentication processing on the SRv6 packet based on the target argument; wherein, the target SID is an SID, corresponding to the network node, in a segment list carried by a header of the SRv6 packet, and the target argument is: an argument for the security authentication instruction recorded in the header; and forwarding the processed SRv6 packet to a next-hop device. By applying the solution for packet forwarding according to examples of the present disclosure, the security in forwarding the SRv6 packet along the SRv6 forwarding path can be improved.