CN101534248A - Deep packet identification method, system and business board - Google Patents
Deep packet identification method, system and business board Download PDFInfo
- Publication number
- CN101534248A CN101534248A CN200910082122A CN200910082122A CN101534248A CN 101534248 A CN101534248 A CN 101534248A CN 200910082122 A CN200910082122 A CN 200910082122A CN 200910082122 A CN200910082122 A CN 200910082122A CN 101534248 A CN101534248 A CN 101534248A
- Authority
- CN
- China
- Prior art keywords
- key value
- service message
- business board
- action
- corresponding relation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a deep packet identification method, a system and a business board. The method comprises the steps of receiving a business packet, obtaining a key value carried in the business packet and determining whether a strategic action which is corresponding to the key value is existed or not, if the strategic action which corresponds to the key value exists, the business packet is processed according to the strategic action which corresponds to the key value. The bottleneck problem caused by centralizing a business flow on a DPI single board for identification and treatment in the prior art can be avoided through the embodiment of the invention, thereby realizing the improvement of system performance.
Description
Technical field
The present invention relates to the network flow management technology, particularly a kind of deep packet identification method and system and business board.
Background technology
(Deep Packet Inspect, DPI) management of technology reinforcement network traffics has become the common recognition of current network operator to utilize deep message identification.What industry was general at present is centralized DPI scheme, be to have one or more centralized DPI veneer in the network equipment (for example router), the Business Stream that a last business board will need to make DPI all sends to centralized DPI veneer, by centralized DPI veneer Business Stream is discerned and handled, afterwards, the Business Stream after the DPI veneer will be handled sends to port of export business board.
The inventor finds prior art in realizing process of the present invention there are the following problems at least: centralized DPI veneer need be discerned and handle all Business Streams that need make DPI, and the work flow after will handling sends out, and the processing forward ability of centralized DPI veneer is limited, causes existing centralized scheme to have bottleneck.
Summary of the invention
The embodiment of the invention provides a kind of deep packet identification method and system and business board, solves existing centralized DPI and handles the bottleneck problem that causes.
The embodiment of the invention provides a kind of deep message processing method, comprising:
Receive service message, and obtain the key value that carries in the service message;
Judge whether to exist and this key value corresponding strategy action;
When existing,, this service message is handled according to moving with this key value corresponding strategy with this key value corresponding strategy action.
The embodiment of the invention provides a kind of business board, comprising:
Acquisition module is used to receive service message, and obtains the key value that carries in the service message;
Judge module is used to judge whether exist and this key value corresponding strategy action;
Processing module is used for according to moving with this key value corresponding strategy, this service message being handled when existing with this key value corresponding strategy action.
The embodiment of the invention also provides a kind of business board, comprising:
Acquisition module is used to receive service message, and obtains the key value that carries in the service message;
Judge module is used to judge whether exist and this key value corresponding strategy action;
Sending module, be used for when existing with this key value corresponding strategy action, described service message is sent to deep message identification veneer, described deep message identification form buttress is according to this key value corresponding strategy action this service message being handled, described policy action is to send to deep message identification veneer with service message simultaneously, perhaps preserves in advance in the deep message identification veneer.
The embodiment of the invention provides a kind of deep message treatment system, comprising:
Business board is used for sending described service message and discerning veneer to deep message when not having the key value corresponding strategy action of carrying with the service message that receives;
Deep message identification veneer, be used to receive described service message, described service message is discerned and handled, set up the corresponding relation of this key value and policy action and described corresponding relation is sent to described business board, the service message after handling is sent to the next business board or the network equipment;
Described business board also is used to preserve described corresponding relation.
The embodiment of the invention also provides a kind of deep message treatment system, comprising:
Business board, be used for when not having the key value corresponding strategy action of carrying with the service message that receives, described service message is discerned, set up the corresponding relation of described key value and policy action, and described corresponding relation and service message are sent to deep message identification veneer;
Deep message identification veneer is used to preserve described corresponding relation, handle described service message according to moving with described key value corresponding strategy, and the service message after will handling sends to the next business board or the network equipment.
As shown from the above technical solution, the embodiment of the invention is handled or is discerned service message by business board, perhaps further service message is discerned and handled, make the DPI veneer only discern or handle, perhaps need not the DPI veneer, because business board has stronger forwarding disposal ability with respect to the DPI veneer, can avoid existing and Business Stream is concentrated on the DPI veneer discern and handle the bottleneck problem that causes, realize the raising of systematic function.
Description of drawings
Fig. 1 is the method flow schematic diagram of first embodiment of the invention;
Fig. 2 is the method flow schematic diagram of second embodiment of the invention;
Fig. 3 is the method flow schematic diagram of third embodiment of the invention;
Fig. 4 is the method flow schematic diagram of fourth embodiment of the invention;
Fig. 5 is the structural representation of the business board of fifth embodiment of the invention;
Fig. 6 is the structural representation of the business board of sixth embodiment of the invention;
Fig. 7 is the structural representation of the business board of seventh embodiment of the invention;
Fig. 8 is the structural representation of the business board of eighth embodiment of the invention;
Fig. 9 is the structural representation of the system of ninth embodiment of the invention.
Embodiment
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Fig. 1 is the method flow schematic diagram of first embodiment of the invention, comprising:
11: business board receives the service message in the Business Stream, and obtains the key value that carries in the service message;
12: business board judges whether to exist and this key value corresponding strategy action;
13: when existing,, this service message is handled according to moving with this key value corresponding strategy with this key value corresponding strategy action.Be specifically as follows: business board is according to moving with this key value corresponding strategy, this service message is handled, perhaps, business board sends to the DPI veneer with this service message,, this service message is handled, wherein according to moving by the DPI veneer with this key value corresponding strategy, can obtain the corresponding relation of preserving key value and policy action in the DPI veneer in advance, also can be business board sends to DPI veneer with the corresponding relation of policy action with professional message with key value.Concrete can be referring to following embodiment.
Present embodiment by business board Business Stream is handled or the DPI veneer is only handled, and can avoid existing and Business Stream is concentrated on the DPI veneer discern and handle the bottleneck problem that causes, and realizes the raising of systematic function.
DPI can use by sensing network, and the means of network control and management are provided to operator.So-called " degree of depth " is to compare with the level of common message detection, common message only detects the content below 4 layers of IP bag, comprise source IP address, purpose IP address, source port number, destination slogan and protocol number, and DPI detects except detecting aforesaid 5 kinds, also increased detection to application layer, can discern the type of service of various traffic streams, and different Business Streams be controlled and managed according to different types of service.
Present DPI veneer can be divided into Forwarding plane and control plane, Forwarding plane to the service message through the Business Stream of DPI veneer transmit, discern, operation such as processing, control plane is preserved pre-configured information, for example, and the corresponding relation of type of service and policy action.
The DPI veneer has the identification of Business Stream and disposal ability, so-called " identification " is for when the Forwarding plane of DPI veneer is received the service message of a certain Business Stream first, this service message is carried out deep analysis, obtain type of service, and obtain and this type of service corresponding strategy action to control plane.Forwarding plane can obtain key value and (obtain key value and need not the deep layer parsing in the heading of service message, get final product according to common parsing), afterwards, set up the key value and the policy action corresponding relation (corresponding relation of different business stream can be kept in the stream table) of Business Stream.The five-tuple (source IP address, purpose IP address, source port number, destination slogan, protocol number) that this key value carries in can the heading for service message, perhaps, for the private network that adapts to is more and more widely used, this key value also can be hexa-atomic group, promptly on the basis of above-mentioned five-tuple, also comprise virtual private networks sign (Virtual Private Network Identity, VPN ID).Because all service messages of same Business Stream have identical key value, therefore, after the first service message of a certain Business Stream discerned (deep analysis) setting up corresponding relation, service message in this follow-up Business Stream need not to discern again, just can be directly obtains the corresponding strategy action according to the key value of service message in the corresponding relation of having set up.
So-called " processings " be Forwarding plane according to the key value of setting up and the corresponding relation of policy action, make service message carry out corresponding strategy and move, for example dropping packets, change priority, redirected etc.
At present thisly focus on the identification and the processing of Business Stream, and the ability of DPI veneer is limited, therefore can cause performance bottleneck by the DPI veneer.For addressing this problem, the embodiment of the invention has proposed distributed DPI scheme.Distributed DPI scheme in the embodiment of the invention comprises recognition function in the DPI veneer or processing capacity is split on business board, also comprises recognition function and processing capacity all are integrated on the business board, and need not to be provided with the DPI veneer again.Below two kinds of schemes will be described respectively:
Fig. 2 is the method flow schematic diagram of second embodiment of the invention, and present embodiment splits scene on business board and DPI veneer at processing capacity.Referring to Fig. 2, present embodiment comprises:
21: business board receives the service message in the Business Stream, and obtains the key value that carries in the service message.
22: business board judges whether to exist and this key value corresponding strategy action, if, carry out 23, otherwise, carry out 24.
23: business board this service message is handled, and the service message after will handling is transmitted to the next business board or the network equipment according to moving with this key value corresponding strategy.
24: business board is transmitted to the DPI veneer with this service message.
The 25:DPI veneer is discerned this service message, obtains the corresponding relation of this key value and policy action.
The 26:DPI veneer this service message is handled, and the service message after will handling is transmitted to the next business board or the network equipment according to moving with this key value corresponding strategy.
The 27:DPI veneer sends to business board with the corresponding relation of this key value and policy action.
28: business board is preserved the corresponding relation of this key value and policy action.
26 and 27 or 28 no sequential restriction relations.
Present embodiment is by set handling function in business board, directly service message is handled in the time of can in business board, having the corresponding relation of key value and policy action, directly be transmitted to next business board afterwards, and need not business board the service message of all processes is all issued the DPI veneer, handle by the DPI veneer, the bottleneck problem that can avoid the DPI veneer to concentrate identification and processing to cause can improve systematic function.
Fig. 3 is the method flow schematic diagram of third embodiment of the invention, and present embodiment is all concentrated the scene that is arranged on the business board at recognition function and processing capacity.Referring to Fig. 3, present embodiment comprises:
31: business board receives the service message in the business board reception Business Stream, and obtains the key value that carries in the service message.
32: business board judges whether to exist and this key value corresponding strategy action, if, carry out 33, otherwise, carry out 34.
33: business board is handled this service message according to moving with this key value corresponding strategy, and the service message of directly transmitting after handling is given the next business board or the network equipment.
34: business board is discerned this service message, obtains the corresponding relation of this key value and policy action.
35: business board is handled this service message according to moving with this key value corresponding strategy, and the service message of directly transmitting after handling is given the next business board or the network equipment.
36: business board is preserved the corresponding relation of this key value and policy action.
35 and 36 no sequential restriction relations.
Present embodiment is by being provided with recognition function and processing capacity in business board, discerning and handle alternative DPI veneer by business board discerns and handles, because the forwarding and the disposal ability of business board are all strong than the DPI veneer, therefore the bottleneck problem that can avoid the DPI veneer to concentrate identification and processing to cause can improve systematic function.
Fig. 4 is the method flow schematic diagram of fourth embodiment of the invention, and present embodiment is arranged on the business board at recognition function, and processing capacity is arranged on the scene on the DPI veneer.Referring to Fig. 4, present embodiment comprises:
41: business board receives the service message in the business board reception Business Stream, and obtains the key value that carries in the service message.
42: business board judges whether to exist and this key value corresponding strategy action, if, carry out 43, otherwise, carry out 45.
43: business board sends to the DPI veneer with this service message, has preserved the corresponding relation of this key value and policy action in this DPI veneer, and perhaps, business board sends to the DPI veneer with the corresponding relation of key value and policy action simultaneously.
The 44:DPI veneer is handled this service message according to moving with this key value corresponding strategy, and the service message of transmitting after handling is given the next business board or the network equipment.
45: business board is discerned this service message, obtains the corresponding relation of this key value and policy action.
46: business board is preserved the corresponding relation of this key value and policy action.
47: business board sends to the DPI veneer with the corresponding relation of this key value and policy action.Be understandable that, when business board in 43 also sends to the DPI veneer with the corresponding relation of key value and policy action simultaneously, need not to preserve in advance this corresponding relation in the DPI veneer, then this 43 can not carried out.
Present embodiment is by being provided with recognition function in business board, set handling function in the DPI veneer can be avoided the concentrated identification of DPI veneer and handle the bottleneck problem that causes, and can improve systematic function.
Fig. 5 is the structural representation of the business board of fifth embodiment of the invention, comprises acquisition module 51, judge module 52 and processing module 53.Acquisition module 51 is used to receive service message, and obtains the key value that carries in the service message; Judge module 52 is connected with acquisition module 51, is used to judge whether exist and this key value corresponding strategy action; Processing module 53 is connected with judge module 52, is used for according to moving with this key value corresponding strategy, this service message being handled when existing with this key value corresponding strategy action.
Present embodiment by business board Business Stream is handled or the DPI veneer is only handled, and can avoid existing and Business Stream is concentrated on the DPI veneer discern and handle the bottleneck problem that causes, and realizes the raising of systematic function.
Fig. 6 is the structural representation of the business board of sixth embodiment of the invention, comprises and the corresponding identical acquisition module 61 of the 5th embodiment, judge module 62 and processing module 63, also comprises forwarding module 64 and stream table module 65.Forwarding module 64 is connected with judge module 62, be used for when not existing with this key value corresponding strategy action, described service message is sent to the DPI veneer, by the DPI veneer described service message is discerned and handled, set up the corresponding relation of this key value and policy action and send described corresponding relation by the DPI veneer; Stream table module 65 is used to preserve described corresponding relation, and afterwards, judge module 62 can be judged according to the corresponding relation whether stream is shown to exist in the module 65.
Present embodiment is by set handling function in business board, directly service message is handled in the time of can in business board, having the corresponding relation of key value and policy action, directly be transmitted to next business board afterwards, and need not business board the service message of all processes is all issued the DPI veneer, handle by the DPI veneer, the bottleneck problem that can avoid the DPI veneer to concentrate identification and processing to cause can improve systematic function.
Fig. 7 is the structural representation of the business board of seventh embodiment of the invention, comprises and the corresponding identical acquisition module 71 of the 5th embodiment, judge module 72 and processing module 73, also comprises identification module 74 and stream table module 75.Identification module 74 is connected with judge module 72, is used for when not existing with this key value corresponding strategy action, and described business board is discerned described service message, sets up the corresponding relation of described key value and policy action; Stream table module 75 is connected with identification module 74, is used to preserve described corresponding relation, and afterwards, judge module 72 can be judged according to the corresponding relation whether stream is shown to exist in the module 75.
Present embodiment is by being provided with recognition function and processing capacity in business board, discerning and handle alternative DPI veneer by business board discerns and handles, because the forwarding and the disposal ability of business board are all strong than the DPI veneer, therefore the bottleneck problem that can avoid the DPI veneer to concentrate identification and processing to cause can improve systematic function.
Fig. 8 is the structural representation of the business board of eighth embodiment of the invention, comprises acquisition module corresponding with the 5th embodiment 81 and judge module 82, also comprises sending module 83, identification module 84 and stream table module 85.Sending module 83 is connected with judge module 82, be used for when existing with this key value corresponding strategy action, directly described service message is sent to described DPI veneer, perhaps direct corresponding relation with described service message and key value and policy action sends to described DPI veneer; Identification module 84 is connected with judge module 82, is used for when not existing with this key value corresponding strategy action described service message being discerned, and sets up the corresponding relation of described key value and policy action; Stream table module 85 is connected with identification module 84, is used to preserve described corresponding relation, and afterwards, judge module 82 can be judged according to the corresponding relation whether stream is shown to exist in the module 85.
Present embodiment is by being provided with recognition function in business board, set handling function in the DPI veneer can be avoided the concentrated identification of DPI veneer and handle the bottleneck problem that causes, and can improve systematic function.
Fig. 9 is the structural representation of the system of ninth embodiment of the invention, comprises business board 91 and DPI veneer 92.
Wherein,
Perhaps,
Present embodiment is provided with recognition function, perhaps by set handling function in business board in the DPI veneer, recognition function is set in business board, set handling function in the DPI veneer, the bottleneck problem that can avoid the DPI veneer to concentrate identification and processing to cause can improve systematic function.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can be finished by the relevant hardware of program command, aforesaid program can be stored in the computer read/write memory medium, this program is carried out the step that comprises said method embodiment when carrying out; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
It should be noted that at last: above embodiment is only in order to technical scheme of the present invention to be described but not limit it, although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that: it still can make amendment or be equal to replacement technical scheme of the present invention, and these modifications or be equal to replacement and also can not make amended technical scheme break away from the spirit and scope of technical solution of the present invention.
Claims (14)
1, a kind of deep packet identification method is characterized in that, comprising:
Receive service message, and obtain the key value that carries in the service message;
Judge whether to exist and this key value corresponding strategy action;
When existing,, this service message is handled according to moving with this key value corresponding strategy with this key value corresponding strategy action.
2, method according to claim 1 is characterized in that, when business board did not have recognition capability, this method also comprised:
When not existing with this key value corresponding strategy action, described service message is sent to deep message identification veneer, by deep message identification veneer described service message is discerned and handled, set up the corresponding relation of this key value and policy action and described corresponding relation is sent to described business board by deep message identification veneer;
Described business board is preserved the corresponding relation of described key value and policy action.
3, method according to claim 1 is characterized in that, when business board had recognition capability, this method also comprised:
When not existing with this key value corresponding strategy action, described business board is discerned described service message, sets up the corresponding relation of described key value and policy action;
Preserve the corresponding relation of described key value and policy action.
4, method according to claim 1 is characterized in that, this method also comprises:
Business board sends to described deep message identification veneer with described service message;
Described basis and this key value corresponding strategy are moved, and this service message are handled comprise: described deep message identification form buttress is according to handling this service message with this key value corresponding strategy action of preserving.
5, method according to claim 4 is characterized in that, also comprises:
When not existing with this key value corresponding strategy action, business board is discerned described service message, sets up the corresponding relation of described key value and policy action;
Preserve the corresponding relation of described key value and policy action;
The corresponding relation of described key value and policy action is sent to described deep message identification veneer.
6, a kind of business board is characterized in that, comprising:
Acquisition module is used to receive service message, and obtains the key value that carries in the service message;
Judge module is used to judge whether exist and this key value corresponding strategy action;
Processing module is used for according to moving with this key value corresponding strategy, this service message being handled when existing with this key value corresponding strategy action.
7, business board according to claim 6 is characterized in that, also comprises:
Forwarding module, be used for when not existing with this key value corresponding strategy action, described service message is sent to deep message identification veneer, by deep message identification veneer described service message is discerned and handled, set up the corresponding relation of this key value and policy action and send described corresponding relation by deep message identification veneer;
Stream table module is used to preserve described corresponding relation.
8, business board according to claim 6 is characterized in that, also comprises:
Identification module is used for when not existing with this key value corresponding strategy action, and described business board is discerned described service message, sets up the corresponding relation of described key value and policy action;
Stream table module is used to preserve described corresponding relation.
9, a kind of business board is characterized in that, comprising:
Acquisition module is used to receive service message, and obtains the key value that carries in the service message;
Judge module is used to judge whether exist and this key value corresponding strategy action;
Sending module, be used for when existing with this key value corresponding strategy action, described service message is sent to deep message identification veneer, described deep message identification form buttress is according to this key value corresponding strategy action this service message being handled, described policy action is to send to deep message identification veneer with service message simultaneously, perhaps preserves in advance in the deep message identification veneer.
10, business board according to claim 9 is characterized in that, also comprises:
Identification module is used for when not existing with this key value corresponding strategy action described service message being discerned, and sets up the corresponding relation of described key value and policy action;
Stream table module is used to preserve described corresponding relation;
Described sending module also is used for described corresponding relation is sent to described deep message identification veneer.
11, a kind of deep message recognition system is characterized in that, comprising:
Business board is used for sending described service message and discerning veneer to deep message when not having the key value corresponding strategy action of carrying with the service message that receives;
Deep message identification veneer, be used to receive described service message, described service message is discerned and handled, set up the corresponding relation of this key value and policy action and described corresponding relation is sent to described business board, the service message after handling is sent to the next business board or the network equipment;
Described business board also is used to preserve described corresponding relation.
12, system according to claim 11, it is characterized in that, described business board also is used for when having the key value corresponding strategy action of carrying with the service message that receives, according to described policy action described service message is handled, and the service message after will handling sends to the next business board or the network equipment.
13, a kind of deep message recognition system is characterized in that, comprising:
Business board, be used for when not having the key value corresponding strategy action of carrying with the service message that receives, described service message is discerned, set up the corresponding relation of described key value and policy action, and described corresponding relation and service message are sent to deep message identification veneer;
Deep message identification veneer is used to preserve described corresponding relation, handle described service message according to moving with described key value corresponding strategy, and the service message after will handling sends to the next business board or the network equipment.
14, system according to claim 13 is characterized in that, described business board also is used for when having the key value corresponding strategy action of carrying with the service message that receives, and directly described service message is sent to described deep message identification veneer.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100821229A CN101534248B (en) | 2009-04-14 | 2009-04-14 | Deep packet identification method, system and business board |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100821229A CN101534248B (en) | 2009-04-14 | 2009-04-14 | Deep packet identification method, system and business board |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101534248A true CN101534248A (en) | 2009-09-16 |
| CN101534248B CN101534248B (en) | 2011-12-28 |
Family
ID=41104643
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100821229A Expired - Fee Related CN101534248B (en) | 2009-04-14 | 2009-04-14 | Deep packet identification method, system and business board |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101534248B (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101945021A (en) * | 2010-09-20 | 2011-01-12 | 中兴通讯股份有限公司 | Method and system for realizing strategy synchronization |
| CN102098272A (en) * | 2009-12-10 | 2011-06-15 | 华为技术有限公司 | Protocol identification method, device and system |
| CN102137022A (en) * | 2011-04-01 | 2011-07-27 | 华为技术有限公司 | Method for identifying information of data packet, crawler engine and network system |
| CN102938739A (en) * | 2012-11-26 | 2013-02-20 | 华为技术有限公司 | Deep packet inspection method and device |
| WO2014029094A1 (en) * | 2012-08-23 | 2014-02-27 | 华为技术有限公司 | Packet processing method, deep packet inspection requesting network element, and deep packet inspection device |
| CN103888307A (en) * | 2012-12-20 | 2014-06-25 | 中国电信股份有限公司 | Method, user side board card and broadband access gateway used for optimizing deep packet detection |
| CN104219238A (en) * | 2014-08-30 | 2014-12-17 | 华为技术有限公司 | Message processing method and device |
| CN107896182A (en) * | 2017-11-30 | 2018-04-10 | 新华三技术有限公司 | Message forwarding method and device |
| CN108667708A (en) * | 2018-04-19 | 2018-10-16 | 国家计算机网络与信息安全管理中心 | The acquisition analysis system and capturing analysis method of one kind of multiple VPN flows |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100452773C (en) * | 2006-08-02 | 2009-01-14 | 杭州华三通信技术有限公司 | Data transmitting method and apparatus based on virtual LAN |
| CN101399749B (en) * | 2007-09-27 | 2012-04-04 | 华为技术有限公司 | Method, system and device for packet filtering |
| CN101179509A (en) * | 2007-12-10 | 2008-05-14 | 中兴通讯股份有限公司 | Point-to-point protocol based MAC address and access circuit binding method and apparatus |
-
2009
- 2009-04-14 CN CN2009100821229A patent/CN101534248B/en not_active Expired - Fee Related
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102098272B (en) * | 2009-12-10 | 2014-02-19 | 华为技术有限公司 | Protocol identification method, device and system |
| CN102098272A (en) * | 2009-12-10 | 2011-06-15 | 华为技术有限公司 | Protocol identification method, device and system |
| WO2011069388A1 (en) * | 2009-12-10 | 2011-06-16 | 华为技术有限公司 | Method, apparatus and system for protocol identification |
| US8782068B2 (en) | 2009-12-10 | 2014-07-15 | Huawei Technologies Co., Ltd. | Method, apparatus and system for protocol identification |
| CN101945021B (en) * | 2010-09-20 | 2014-07-02 | 中兴通讯股份有限公司 | Method and system for realizing strategy synchronization |
| CN101945021A (en) * | 2010-09-20 | 2011-01-12 | 中兴通讯股份有限公司 | Method and system for realizing strategy synchronization |
| CN102137022B (en) * | 2011-04-01 | 2013-11-06 | 华为技术有限公司 | Method for identifying information of data packet, crawler engine and network system |
| CN102137022A (en) * | 2011-04-01 | 2011-07-27 | 华为技术有限公司 | Method for identifying information of data packet, crawler engine and network system |
| WO2014029094A1 (en) * | 2012-08-23 | 2014-02-27 | 华为技术有限公司 | Packet processing method, deep packet inspection requesting network element, and deep packet inspection device |
| US9461894B2 (en) | 2012-08-23 | 2016-10-04 | Huawei Technologies Co., Ltd. | Packet processing method, deep packet inspection request network element and deep packet inspection device |
| CN104145451A (en) * | 2012-08-23 | 2014-11-12 | 华为技术有限公司 | Packet processing method, deep packet inspection requesting network element, and deep packet inspection device |
| CN104145451B (en) * | 2012-08-23 | 2017-07-14 | 华为技术有限公司 | Message processing method, deep-packet detection request network element and deep packet inspection device |
| CN102938739A (en) * | 2012-11-26 | 2013-02-20 | 华为技术有限公司 | Deep packet inspection method and device |
| CN102938739B (en) * | 2012-11-26 | 2016-08-24 | 华为技术有限公司 | Deep message detection method and apparatus |
| CN103888307A (en) * | 2012-12-20 | 2014-06-25 | 中国电信股份有限公司 | Method, user side board card and broadband access gateway used for optimizing deep packet detection |
| CN104219238A (en) * | 2014-08-30 | 2014-12-17 | 华为技术有限公司 | Message processing method and device |
| CN107896182A (en) * | 2017-11-30 | 2018-04-10 | 新华三技术有限公司 | Message forwarding method and device |
| CN108667708A (en) * | 2018-04-19 | 2018-10-16 | 国家计算机网络与信息安全管理中心 | The acquisition analysis system and capturing analysis method of one kind of multiple VPN flows |
| CN108667708B (en) * | 2018-04-19 | 2019-08-13 | 国家计算机网络与信息安全管理中心 | The acquisition analysis system and capturing analysis method of one kind of multiple VPN flows |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101534248B (en) | 2011-12-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101534248B (en) | Deep packet identification method, system and business board | |
| EP3142310B1 (en) | Method, device, and system for configuring flow entries | |
| US10033648B2 (en) | Multicast message forwarding method and device | |
| CN101394360B (en) | Processing method, access device and communication system for address resolution protocol | |
| CN101094236B (en) | Method for processing message in address resolution protocol, communication system, and forwarding planar process portion | |
| CN102624611B (en) | Method, device, processor and network equipment for message dispersion | |
| US7710959B2 (en) | Private VLAN edge across multiple switch modules | |
| CN102368736B (en) | Message sending method and equipment | |
| US7096272B1 (en) | Methods and apparatus for pooling and depooling the transmission of stream data | |
| CN105553880A (en) | Date processing method and device in software-defined networking | |
| CN101325554B (en) | Method for establishing route, forwarding chip and three-layer switchboard | |
| CN111801911B (en) | Traffic function chain congestion tracking | |
| CN102769557B (en) | A kind of transmission method of business datum message and device | |
| CN1946061B (en) | Method and device for fast processing message | |
| KR20170013332A (en) | Openflow communication method, system, controller, and service gateway | |
| US10667175B2 (en) | Systems and methods for segmentation and reassembly of data frames in 802.11 wireless local area networks | |
| CN105141521A (en) | Device and method of using protection switching mechanism to realize multi-system link aggregation | |
| CN102739462B (en) | Test message sending method and device | |
| WO2018014742A1 (en) | Method and apparatus for configuring port of port extender | |
| CN115225734A (en) | Message processing method and network equipment | |
| CN101969404A (en) | Method and equipment for processing messages | |
| CN102195887A (en) | Message processing method, device and network security equipment | |
| CN101997772A (en) | Flow control method, device, system and network equipment | |
| CN105284083A (en) | OpenFlow device and IP network device communication method, device and system | |
| CN102655476B (en) | Internet protocol flow transmitting method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20170818 Address after: 201, room 1, building A, No. 518053, front Bay Road, Qianhai, Shenzhen Shenzhen cooperation zone, Guangdong, China Patentee after: Shenzhen Zhitong World Technology Service Co. Ltd. Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee before: Huawei Technologies Co., Ltd. |
|
| TR01 | Transfer of patent right | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20090916 Assignee: Shenzhen Vimicro Tech Co. Ltd. Assignor: Shenzhen Zhitong World Technology Service Co. Ltd. Contract record no.: 2017440020097 Denomination of invention: Deep packet identification method, system and business board Granted publication date: 20111228 License type: Common License Record date: 20171211 |
|
| EE01 | Entry into force of recordation of patent licensing contract | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20111228 Termination date: 20200414 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |