CN100373800C - Backup method capable of carrying on main interface service character - Google Patents
Backup method capable of carrying on main interface service character Download PDFInfo
- Publication number
- CN100373800C CN100373800C CNB03159221XA CN03159221A CN100373800C CN 100373800 C CN100373800 C CN 100373800C CN B03159221X A CNB03159221X A CN B03159221XA CN 03159221 A CN03159221 A CN 03159221A CN 100373800 C CN100373800 C CN 100373800C
- Authority
- CN
- China
- Prior art keywords
- interface
- backup
- main interface
- main
- traffic performance
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Hardware Redundancy (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The present invention discloses a backup method capable of succeeding main interface service characters. The method comprises the following steps that a backup interface is specified to succeed the main interface service characters through allocation; when the backup interface succeeds the main interface service characters, succeeded relation information is managed by a backup center; a succeeded service character module enquires the succeeded relation information from the backup center and the services of the backup interface are allocated according to the succeeded main interface service characters. The present invention makes the backup interface capable of automatically succeeding the allocation of main interface services and users do not need input excess allocation.
Description
Technical field
The present invention relates to the redundancy technique in the communication system, particularly a kind of backup method capable of carrying on main interface service character.
Background technology
Backup center can be divided into pure interface backup and load backup.When carrying out pure interface backup, when the state of main interface by UP (be the link layer protocol of interface consult by) when becoming DOWN (link layer protocol that is interface consults to pass through), just open backup interface, if there are a plurality of backup interfaces just just to open backup interface according to priority.When carrying out the load backup, just the load that backup interface is shared main interface can be opened, just unnecessary backup interface can be closed when flow is reduced to certain degree if the flow of main interface is excessive.
Fire compartment wall is the network equipment that is used for controlling to inner network resource accession, and it is positioned at the access entrance point of network, if network has a plurality of entrances, fire compartment wall then must all be set so that effective access to netwoks control to be provided in each entrance.Fire compartment wall often is placed between internal network and external network (as the Internet) boundary.After using fire compartment wall between network and the Internet, all must just can enter network by fire compartment wall from the communication flows of Internet.
Fire compartment wall singly is not used for the connection to the internet, can be used for controlling the visit to the special part of internal network yet, as being used in organization network internal protection large-scale computer and important resource (as data).Visit to protected data all must be through the filtration of fire compartment wall, even this visit is from organization internal.
The most basic function of fire compartment wall is to monitor and the filter communications flow that fire compartment wall can be simple or accurate, and this depends on the demand of network, and simple fire compartment wall is usually than being easier to configuration and managing, and is certain, and that the user may need is more accurate, fire compartment wall more flexibly.Present many fire compartment walls also have some other characteristics simultaneously, as carry out user identity and differentiate, information is carried out safety (encryption) handle or the like.
Generally fire compartment wall is divided into two classes: network level firewall, application layer firewall.The fire compartment wall of network layer mainly obtains the header packet information of packet, and as protocol number, source address, destination address and destination interface etc. or directly obtain the one piece of data in packet header, the fire compartment wall of application layer is then analyzed whole information flow.
Common fire compartment wall has following a few class: application gateway (Application Gateway), packet filtering, agency (Proxy).Application gateway (Application Gateway): the data of the application layer in all packets of this gateway of upchecking.Packet filtering (Packet Filter): each packet is filtered according to the defined project of user, whether meet rule etc. as source address, the destination address of comparing data bag.Packet filtering is not no matter the state of session is analyzed data yet.Agency (Proxy): generally refer to the address agency, generally be positioned on an acting server or the router.
All realize backup center in the routing operations system at present, and all realized fire compartment wall, QOS and IPSEC business.If all realize these business, just must carry out corresponding configuration respectively at main interface and backup interface about specific transactions at the main interface and the backup interface of backup center.For example, if all realize fire compartment wall, just must carry out corresponding configuration respectively at main interface and backup interface about fire compartment wall at the main interface and the backup interface of backup center.Describe with packet filtering.
Below be the configuration task list of the packet filtering and the network address translation (nat) conversion of operating system platform:
The configuration task list of packet filtering is as follows:
Allow/forbid fire compartment wall
The configuration standard Access Control List (ACL)
The configuration extended access list
The matching order of arranging access control list
The default filter type of fire compartment wall is set
The special time period is set
Be configured in the rule of application access control tabulation on the interface
Specify logging host
The configuration task list of NAT is as follows:
The configuration address pond
Arranging access control list and address pool is related on interface
On interface related (the EASY IP characteristic) of arranging access control list and interface
On interface, dispose internal server
The effective time of configuration address conversion
If all realize packet filtering, just must be respectively be configured in the rule of the Access Control List (ACL) of using on the interface at main interface and backup interface at main interface and backup interface.
If all realize NAT at main interface and backup interface, just must be respectively related in main interface and backup interface arranging access control list and address pool, arranging access control list and interface related, configuration internal server.
Because in backup center, backup interface is the backup of main interface, but when opening backup interface, existing redundancy technique can not make backup interface inherit the traffic performance of main interface automatically, need configuration one by one in advance, and when traffic performance need be revised, main interface and backup interface needed to revise simultaneously, and it is loaded down with trivial details to cause the user to dispose.
In existing standby system, main interface is configured into the row communication Business Processing, by the replacement of HMI module controls main interface and backup interface; When needing to switch, provide a checkpoint information by main interface, the checkpoint information that main interface provides comprises the active and standby inheritance information that conveys to many business modules, and according to this information, business module carries out business configuration and sets up new linking status.
In said system, all business modules all will receive inheritance information, and the intermodule Signalling exchange is many, and the resource occupation amount is bigger.
Summary of the invention
The object of the present invention is to provide a kind of backup method capable of carrying on main interface service character,, make that the resource occupation amount is little to reduce the intermodule Signalling exchange.
Implementation of the present invention:
A kind of backup method capable of carrying on main interface service character comprises step:
A, the traffic performance of specifying backup interface to inherit from main interface by configuration;
B, inherit the inheritance information of main interface traffic performance by backup center management backup interface;
C, heritable traffic performance module are inquired about described inheritance information to backup center, and by the main interface traffic performance of inheriting backup interface are carried out business configuration.
According to technique scheme:
Steps A comprises:
The address that the input configuration order disposes a plurality of interfaces;
The input configuration order indicates the main interface of a plurality of interfaces and the backup interface of this main interface;
The input configuration order indicates by the main interface traffic performance of backup interface.
In the steps A, can specify one or more backup interfaces to inherit a class traffic performance of main interface.
Described inheritance information comprises: the backup interface that main interface is included, heritable main interface traffic performance, inherit all backup interfaces of main interface one class traffic performance, the main interface name of backup interface, and backup interface is from the traffic performance of main interface succession.
Backup center is organized for the unit creation control unit with the interface the inherited information relation.Control unit record to main interface: the backup interface name that main interface name, main interface comprise, and heritable main interface traffic performance; Control unit record for backup interface: the backup interface name, the main interface name of backup interface, and backup interface is from the traffic performance of main interface succession.
The present invention is after the user has specified the backup relation and indicated professional inheritance, the business configuration that the needs that backup interface is inherited main interface automatically have been had are inherited, do not need the user to be configured again at backup interface, in addition when the main interface business configuration changes, the business that backup interface need be inherited can be upgraded automatically, does not need the user to revise synchronously at backup interface; Therefore, adopt method of the present invention can make the hommization more of succession process, saved system resource, the no longer work of participation system of professional corresponding service personality modnies that backup interface is not inherited has reduced the mutual of signaling between system.
Description of drawings
Fig. 1 is a flow chart of the present invention;
Fig. 2 is a system configuration schematic diagram of the present invention.
Embodiment
Consult shown in Figure 1ly, the backup procedure that can inherit the main interface traffic performance is as follows:
Step 10: need be from the traffic performance of main interface succession by configuration appointment backup interface;
Step 20: the inheritance information of inheriting the main interface traffic performance by backup center management backup interface;
Step 30: heritable traffic performance module is inquired about described inheritance information to backup center, and by the main interface traffic performance of inheriting backup interface is carried out business configuration.
Be elaborated below in conjunction with Fig. 2:
The user indicates backup interface and inherits the main interface traffic performance by user interface (for example user's configurating terminal) input instruction.The user can specify which or which backup interface to inherit which kind of traffic performance of main interface; Also can specify which or which backup interface no longer to inherit which kind of traffic performance of main interface.Operating system receive instruction and just these instructions change into the information that backup center can discern and give backup center.
The inheritance information of inheriting the main interface traffic performance about backup interface will be organized, note down and be safeguarded to backup center.The information of this description inheritance comprises:
The backup interface that main interface is included, promptly which backup interface main interface comprises;
Heritable main interface traffic performance, promptly which class traffic performance of main interface is inherited by backup interface;
Inherit all backup interfaces of main interface one class traffic performance, promptly which class traffic performance of main interface by which backup interface is inherited;
The main interface name of backup interface;
The traffic performance that backup interface is inherited from main interface, promptly which class traffic performance of backup interface is inherited from main interface and is come.
Backup center will be created data structure and come these inheritance information of organization and administration, and it is that base unit establishment control unit is organized that all inheritance information can be taked with the interface.Control unit for main interface will be noted down: the backup interface name that main interface name, main interface comprise, and which class traffic performance of main interface is inherited; Control unit for backup interface will be noted down: the backup interface name, and the main interface name of backup interface, which class feature of backup interface is to inherit from main interface to come.
Backup center can be to can heritable traffic performance module providing query interface, the inquiry business inheritance, and whether certain class feature that can inquire about certain interface is being to come from other interface inheritances by certain class feature of which interface inheritance and certain interface.
Concrete business module will be inquired about inheritance to backup center when carrying out user command, thereby will realize the traffic performance of backup interface succession main interface.Business module is received the configuration order that the user imports, and after the business configuration of change interface, inquires about all the backup interface names that can inherit this such business of interface to backup center, requires the business configuration of same change backup interface then according to user command.
Realize that to carry out configuration task it is example that interface 2 is inherited the NAT transfer characteristic of interface 1 automatically:
Configuration task 1: the function interface that provides by system is the address of input command configuration interface 1 and interface 2 respectively:
Configuration task 2: the input configuration order indicates the backup interface that interface 2 is interfaces 1;
Configuration task 3: the input configuration order indicates the NAT transfer characteristic of interface 1 and will be inherited by interface 2;
Configuration task 4: the input configuration order indicates NAT transfer characteristic " source address of the message that sends from interface 1 will adopt the address of interface 1 oneself ";
The NAT business module is when execution in step 4, whether the NAT characteristic of interface inheritance interface 1 will be arranged to the backup center inquiry, backup center is by the inquiry inheritance, announcement NAT business module interface 2 will be inherited the NAT characteristic of interface 1, and the NAT module is carried out the order of " address that the source address of the message that sends from interface 2 adopts interface 2 oneself ".
The present invention is after the user has specified backup relation and indicated professional inheritance, and the business configuration that the needs that backup interface is inherited main interface automatically have been had are inherited makes the hommization more of succession process, has saved system resource.The no longer work of participation system of professional corresponding service personality modnies that backup interface is not inherited has reduced the mutual of signaling between system.
Claims (7)
1. backup method capable of carrying on main interface service character is characterized in that: comprise step:
A, the traffic performance of specifying backup interface to inherit from main interface by configuration;
B, inherit the inheritance information of main interface traffic performance by backup center management backup interface;
C, heritable traffic performance module are inquired about described inheritance information to backup center, and by the main interface traffic performance of inheriting backup interface are carried out business configuration.
2. the method for claim 1, it is characterized in that: steps A comprises:
The address that the input configuration order disposes a plurality of interfaces;
The input configuration order indicates the main interface of a plurality of interfaces and the backup interface of this main interface;
The input configuration order indicates by the main interface traffic performance of backup interface.
3. method as claimed in claim 1 or 2 is characterized in that: in the steps A, can specify one or more backup interfaces to inherit a class traffic performance of main interface.
4. the method for claim 1, it is characterized in that: described inheritance information comprises: the backup interface that main interface is included, heritable main interface traffic performance, inherit all backup interfaces of main interface one class traffic performance, the main interface name of backup interface, and backup interface is from the traffic performance of main interface succession.
5. as claim 1,2 or 4 described methods, it is characterized in that: backup center is organized for the unit creation control unit with the interface the inherited information relation.
6. method as claimed in claim 5 is characterized in that: the control unit recorded content of main interface comprises: the backup interface name that main interface name, main interface comprise, and heritable main interface traffic performance.
7. method as claimed in claim 5 is characterized in that: the control unit recorded content of backup interface comprises: the backup interface name, and the main interface name of backup interface, and backup interface is from the traffic performance of main interface succession.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB03159221XA CN100373800C (en) | 2003-09-02 | 2003-09-02 | Backup method capable of carrying on main interface service character |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB03159221XA CN100373800C (en) | 2003-09-02 | 2003-09-02 | Backup method capable of carrying on main interface service character |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1592137A CN1592137A (en) | 2005-03-09 |
CN100373800C true CN100373800C (en) | 2008-03-05 |
Family
ID=34598612
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB03159221XA Expired - Fee Related CN100373800C (en) | 2003-09-02 | 2003-09-02 | Backup method capable of carrying on main interface service character |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN100373800C (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104052665B (en) * | 2014-06-03 | 2019-03-15 | 新华三技术有限公司 | A kind of determination method and apparatus of flow forward-path |
CN105743686B (en) * | 2014-12-12 | 2019-02-19 | 中兴通讯股份有限公司 | Port attribute inheritance method and device |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20010037472A1 (en) * | 2000-05-02 | 2001-11-01 | Yunzhou Li | System, device, and method for detecting and recovering from failures in a multicast communication system |
US6327260B1 (en) * | 1998-04-20 | 2001-12-04 | Lucent Technologies, Inc. | Controlled routing to a plurality of signaling interfaces at a single telephonic switch |
US20010056503A1 (en) * | 2000-04-27 | 2001-12-27 | Hibbard Richard J. | Network interface device having primary and backup interfaces for automatic dial backup upon loss of a primary connection and method of using same |
US20030028635A1 (en) * | 2000-06-09 | 2003-02-06 | Dement Jeffrey M. | Network interface redundancy |
US20030067917A1 (en) * | 2001-10-04 | 2003-04-10 | Adc Broadband Access Systems, Inc. | IGMP proxy |
US20030161260A1 (en) * | 2002-02-25 | 2003-08-28 | Sundara Murugan | Method and apparatus for implementing automatic protection switching functionality in a distributed processor data router |
-
2003
- 2003-09-02 CN CNB03159221XA patent/CN100373800C/en not_active Expired - Fee Related
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6327260B1 (en) * | 1998-04-20 | 2001-12-04 | Lucent Technologies, Inc. | Controlled routing to a plurality of signaling interfaces at a single telephonic switch |
US20010056503A1 (en) * | 2000-04-27 | 2001-12-27 | Hibbard Richard J. | Network interface device having primary and backup interfaces for automatic dial backup upon loss of a primary connection and method of using same |
US20010037472A1 (en) * | 2000-05-02 | 2001-11-01 | Yunzhou Li | System, device, and method for detecting and recovering from failures in a multicast communication system |
US20030028635A1 (en) * | 2000-06-09 | 2003-02-06 | Dement Jeffrey M. | Network interface redundancy |
US20030067917A1 (en) * | 2001-10-04 | 2003-04-10 | Adc Broadband Access Systems, Inc. | IGMP proxy |
US20030161260A1 (en) * | 2002-02-25 | 2003-08-28 | Sundara Murugan | Method and apparatus for implementing automatic protection switching functionality in a distributed processor data router |
Also Published As
Publication number | Publication date |
---|---|
CN1592137A (en) | 2005-03-09 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
RU2646343C1 (en) | Objects of virtual network interface | |
CN1773992B (en) | Communication traffic control rule generation methods and systems | |
US6850989B1 (en) | Method and apparatus for automatically configuring a network switch | |
US7633855B2 (en) | System and method for resolving address conflicts in a network | |
CN101009683A (en) | Computer system and method for processing network flow | |
CN110535831A (en) | Cluster safety management method, device and storage medium based on Kubernetes and network domains | |
Sloman et al. | Policy specification for programmable networks | |
US7519598B2 (en) | Prioritizing network management traffic | |
Hyun et al. | Interface to network security functions for cloud-based security services | |
CN108616490A (en) | A kind of method for network access control, apparatus and system | |
WO2000041091A9 (en) | Dynamic policy management apparatus and method using active network devices | |
CN100525523C (en) | Method for mobile terminal switching in packet network | |
CN103152197B (en) | Rule set layout processing method, device and cluster data system | |
CN102148715A (en) | Method and device for virtual network configuration migration | |
GB2422221A (en) | Provision of services over a common delivery platform such as a mobile telephony network | |
US20160205063A1 (en) | Method, device and system for implementing address sharing | |
RU2634183C1 (en) | Method of newsletter of updates | |
CN112637081A (en) | Bandwidth speed limiting method and device | |
CN100454832C (en) | Method compatible with proxy different editions in network management | |
CN100373800C (en) | Backup method capable of carrying on main interface service character | |
Martsola et al. | Machine to machine communication in cellular networks | |
Schmidt et al. | Addressing the challenges of mission-critical information management in next-generation net-centric pub/sub systems with opensplice dds | |
CN101263727A (en) | Method and apparatus for session establishment for emergency VOIP calls | |
Cisco | Strategies Applying Attributes | |
Cisco | Strategies for Applying Attributes |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080305 Termination date: 20190902 |
|
CF01 | Termination of patent right due to non-payment of annual fee |