CN108512752A - A kind of VPN data transmission method and VPN data transmitting device - Google Patents
A kind of VPN data transmission method and VPN data transmitting device Download PDFInfo
- Publication number
- CN108512752A CN108512752A CN201810198326.8A CN201810198326A CN108512752A CN 108512752 A CN108512752 A CN 108512752A CN 201810198326 A CN201810198326 A CN 201810198326A CN 108512752 A CN108512752 A CN 108512752A
- Authority
- CN
- China
- Prior art keywords
- data
- connection
- interfaces
- communication ends
- vpn
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/22—Alternate routing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/28—Routing or path finding of packets in data switching networks using route fault recovery
Abstract
The invention discloses a kind of VPN data transmission method and VPN data transmitting device, the VPN data transmission method includes the following steps:Vpn tunneling is established between the first communication ends and the second communication ends;Session connection is established by the vpn tunneling;Multiple data connections are established by the session connection, and pass through the multiple data connection data.The present invention between communication ends by establishing VPN control channels, and establish multiple data connections in the VPN control channels, multiple data connections can be with transmission data, and there is the abnormal data transmission all not interfered in other data connections in any circuit, as long as a data connection is normal, data can enhance the anti-interference ability of data transmission between communication ends with normal transmission, and the success rate of data transmission has been effectively ensured.It the composite can be widely applied to the fields VPN.
Description
Technical field
The present invention relates to the fields VPN, and in particular to a kind of VPN data transmission method and VPN data transmitting device.
Background technology
In the prior art, VPN (Virtual Private Network, Virtual Private Network) transmission mechanism is that communication is double
Side first establishes a vpn tunneling.Then the both sides communicated establish a session connection in this tunnel, then in this session
Data connection data are established in connection.Such data transfer mode network occur it is abnormal (unpredictable exception, such as
Network fluctuation/line fault etc.) when lead to data connection abnormal interrupt, VPN data transmission equally can also be interrupted.If met
It can not restore normal exception to long-time, then can not will be communicated for a long time between communication two party.
Invention content
A kind of VPN data transmission method of present invention offer and VPN data transmitting device are, it can be achieved that a plurality of data connection
Data effectively solve aforementioned the technical problems existing in the prior art.
To achieve the above object, first part of the present invention provides a kind of VPN data transmission method, includes the following steps:
Vpn tunneling is established between first communication ends and the second communication ends;Session connection is established by the vpn tunneling;Pass through the meeting
Multiple data connections are established in words connection, and pass through the multiple data connection data.
Alternatively, first communication ends include at least one first IP interfaces, second communication ends
It is described to establish multiple data connections and be specially including at least one 2nd IP interfaces:Choose at least one first IP interfaces with extremely
A few 2nd IP interface establishes multiple data connections.
Alternatively, first communication ends include at least one first IP interfaces, second communication ends
It is described to establish multiple data connections and be specially including at least one 2nd IP interfaces:Choose at least one end of the first IP interfaces
At least one port of mouth and the 2nd IP interfaces of corresponding number, one-to-one correspondence establish multiple data connections.
Alternatively, described to be specially by multiple data connection data:Pass through multiple data connections
Simultaneous transmission data are independent of each other between multiple data connections.
Alternatively, described to be specially by multiple data connection data:According to the number of data connection
According to delay time length, and/or, data are distributed to each data connection according to the data traffic size of data connection;
Delay time is longer, and the ratio data of distribution is smaller;Data traffic is bigger, and the ratio data of distribution is smaller.
Alternatively, the data transmission method further includes data re-transmitting mechanism, the data re-transmitting mechanism
Including:Cache the data information sent;Whether monitoring receives the feedback information of data receiver within the set time, if
It is then to remove the data information of caching;If it is not, then reselecting the data of data connection caching.
Alternatively, it includes TCP data connection or UDP message connection that the data connection, which establishes mode,.
Alternatively, the port range for establishing data connection is 1025--65535.
Second part of the present invention provides a kind of data transmission device, which includes vpn tunneling module, for logical first
Vpn tunneling is established between letter end and the second communication ends;Session connection module, for establishing session connection by the vpn tunneling;
Data connection module, for establishing multiple data connections by the session connection;Data transmission module, for by described more
A data connection transmission data.
Alternatively, first communication ends include at least one first IP interfaces, second communication ends
Including at least one 2nd IP interfaces, the Data connection module is by choosing at least one first IP interfaces and at least one the
Two IP interfaces establish multiple data connections.
Alternatively, first communication ends include the first IP interfaces, and second communication ends include second
IP interfaces, the 2nd IP interfaces that the Data connection module passes through at least one port and corresponding number of the first IP interfaces of selection
At least one port, one-to-one correspondence establish multiple data connections.
Alternatively, the data transmission device further includes data allocation module, the data allocation module
For the data delay time length according to data connection, and/or, data are distributed according to the data traffic size of data connection
To each data connection;Delay time is longer, and the ratio data of distribution is smaller;Data traffic is bigger, the data ratio of distribution
Example is smaller.
Alternatively, the data transmission device further includes data re-transmitting module, the data re-transmitting module
For caching the data information sent;Whether monitoring receives the feedback information of data receiver within the set time, if
It is then to remove the data information of caching;If it is not, then reselecting the data of data connection caching.
The beneficial effects of the present invention are:The present invention between communication ends by establishing VPN control channels, and in the VPN
Multiple data connections are established in control channel, multiple data connections can be with transmission data, and exception occurs in any circuit
The data transmission in other data connections is not all interfered with, as long as it is normal to have a data connection, data can be normal
Transmission, enhances the anti-interference ability of data transmission between communication ends, the success rate of data transmission has been effectively ensured.
Description of the drawings
Fig. 1 is the schematic diagram provided in an embodiment of the present invention that data connection is established by IP interfaces;
Fig. 2 is the schematic diagram provided in an embodiment of the present invention that data connection is established by port;
Fig. 3 is data transmission schematic diagram provided in an embodiment of the present invention;
Fig. 4 provides the flow diagram of data re-transmitting mechanism for the embodiment of the present invention;
Fig. 5 is a kind of VPN data transmitting device provided in an embodiment of the present invention.
Specific implementation mode
With reference to the accompanying drawings and in conjunction with specific embodiments, the present invention is described in further detail.
Embodiment one
An embodiment of the present invention provides a kind of VPN data transmission methods, include the following steps:In the first communication ends and second
Vpn tunneling is established between communication ends;Session connection is established by the vpn tunneling;Multiple numbers are established by the session connection
According to connection, and pass through the multiple data connection data.By establishing multiple data connections between communication ends, any
A data connection occurs all not interfering with the data transmission in other data connections in the case of exception, enhance communication ends it
Between data transmission anti-interference ability, the success rate of data transmission has been effectively ensured.
In the case where at least one communication ends have multiple IP interfaces, the IP interfaces of two communication ends can be chosen respectively
Establish multiple data connections.The schematic diagram that data connection is established by IP interfaces shown in Figure 1, first communication ends include
4 the first IP interfaces, which includes equally 4 the 2nd IP interfaces, when the first communication ends and the second communication ends pass through
After VPN agreements establish VPN control channels and session connection, according to the 5 of data connection element composition rules, i.e. source IP connects
Mouth/source port/destination IP interface/destination interface/agreement, the first IP interfaces of each of first communication ends respectively with the second communication ends
Each of the 2nd IP interfaces establish data connection, can be established in total on such vpn tunneling 16 datas connection.Connect per data
Connecing can be with transmission data.In practical applications, single data connection data can be selected according to demand, alternatively, choosing
It selects through some or all data connection simultaneous transmission data, accordingly even when certain one or more of data connection is interrupted, other
Data connection can still continue transmission data, will not lead to the interruption of data transmission, ensure that the success rate of data transmission.
Optionally, establishing multiple data connections can also be more by choosing the different IP interfaces foundation of two communication ends respectively
A data connection.
The schematic diagram that data connection is established by port as shown in Figure 2, the first communication ends and the second communication ends respectively have one
A IP interfaces, although source IP interface and destination IP interface do not change, source port and destination interface can change, because of end
Mouth 0-1024 is well-known port, and system will not generally distribute occupancy, can pass through port 1025-65535 and create data connection.
On a pair of of IP interfaces of two communication ends, a plurality of data connection can be created, also just breaches communication ends physical interface quantity
Limitation, i.e., can equally create a plurality of data connection between two physical IP interfaces.
Optionally, it is specially by multiple data connection data:It is more by multiple data connection simultaneous transmission data
It is independent of each other between a data connection.Can be by multiple data connection data between two communication ends, the data of transmission can
To be that the different data packet that a data are split is distributed to different data connection simultaneous transmission, data point can also be different
The simultaneous transmission not in different data connections, different data connections are independent of each other transmission data.
Optionally, it is specially by multiple data connection data:According to the data delay time length of data connection,
And/or data are distributed to each data connection according to the data traffic size of data connection;Delay time is longer, point
The ratio data matched is smaller;Data traffic is bigger, and the ratio data of distribution is smaller.
There are communication ends in the case of a plurality of data connection, can be arranged according to per data to connect between two communication ends
The data delay time connected is come difference the case where carrying out dynamic data transmission equilibrium, blocked according to network fluctuation, and data are all
Transmission data can be allocated according to this delay time there are one delay time, preferentially passes through delay time shorter number
According to connection transmission data, so as to promote the speed of data transmission.It is also possible to provide communication ends are connected according to per data
On data traffic size it is balanced to carry out dynamic data transmission, data traffic is bigger, and the ratio data of distribution is smaller, selection
On the one hand the smaller data connection data of data traffic reduce the transmission pressure of circuit, on the other hand can promote data
The speed of transmission and the success rate for improving data transmission.It is, of course, also possible to by consider data delay time length and
Data traffic size determines the distribution of transmission data.For example, distribution maximum ratio data are shorter in delay time and data
In the smaller data connection of flow, followed by distribute larger proportion data are shorter in delay time and number that data traffic is larger
According in connection, be again distribute small percentage data are longer in delay time and data connection that data traffic is smaller on, most
Be afterwards distribute minimum scale data are longer in delay time and data connection that data traffic is larger on.
According to the load routing policy of above-mentioned data transmission, it can effectively promote the speed of data transmission and improve data transmission
Success rate.
Above-mentioned maximum, larger, smaller, minimum data allocation proportion described with reference to specific ratio can be according to system
The actual conditions of data transmission are arranged.
Data transmission schematic diagram provided in an embodiment of the present invention shown in Fig. 3 is please referred to, before data is transmitted, according to upper
Stating load routing policy and determining needs the data transmitted that should be sent from which item or which data connection.Data are using company
The mode that supervention is sent, in the same time, every normal data connection all can have data transmitting.The bandwidth of each IP interfaces
It can be utilized, can be achieved with the bandwidth superposition of a plurality of circuit in this way, i.e., in the communication ends with multiple IP interfaces, if
Multiple IP interfaces can normal transmission data, be also equivalent to incorporate the bandwidth resources of different circuits.
Optionally, the embodiment of the present invention as shown in Figure 4 provides the flow diagram of data re-transmitting mechanism, the data transmission
Method further includes data re-transmitting mechanism, which includes:Cache the data information sent;Monitor setting when
The interior feedback information for whether receiving data receiver, if so, removing the data information of caching;If it is not, then reselecting
The data of data connection caching.
In a kind of specific embodiment, data are transmitted in a manner of multiple data messages, in transmission process, are met
It can log-on data retransmission mechanism when leading to data transmission fails to line fault.One data message is sent it by transmitting terminal
Afterwards, the data message sent can be cached simultaneously.Receiving terminal can return to ACK confirmation messages after receiving the data.It can basis
The delay setting transmitting terminal of connection receives the time of ACK confirmation messages, such as 90ms, is connect if it exceeds setting time does not receive
The ACK confirmation messages that receiving end returns, then system will be considered that data transmission fails, system is according to above-mentioned load routing policy at this time
It reselects data connection and sends data cached message.If receiving ACK confirmation messages in setting time, just removing should
The cache information of data message.
The retransmission mechanism of data transmission is set, and in data transmission procedure, the data connection of instantaneous transmission data is because of certain
Kind failure disconnects, and the success of data transmission has been effectively ensured in the data that can be still interrupted by remaining data connection.
In addition, the transmission of data continuously transmits, being not intended to send a successfully data message just can send out next
Message.After actually previous data message is sent, next data message is sent according to load routing policy at once, it is multiple
Data message is parallel transmission.
Optionally, data connection is established mode and can be determined according to the communication protocol set between communication ends, such as TCP data
Connection or UDP message connection etc..
The embodiment of the present invention between communication ends by establishing VPN control channels, and foundation is more in the VPN control channels
A data connection, and there is the abnormal data transmission all not interfered in other data connections in any circuit, as long as having one
Item connection is normal, and data can be with normal transmission, and load routing policy and data re-transmitting mechanism is arranged, and improves number
According to the rate of transmission, the anti-interference ability of data transmission between communication ends is enhanced, the success rate of data transmission has been effectively ensured.
Embodiment two
A kind of VPN data transmitting device provided in an embodiment of the present invention as shown in Figure 5, the VPN data transmitting device packet
It includes:Vpn tunneling module, for establishing vpn tunneling between the first communication ends and the second communication ends;Session connection module, is used for
By establishing multiple session connections in the VPN control channels between the first communication ends and the second communication ends;Data connection module,
For establishing multiple data connections by the session connection between the first communication ends and the second communication ends;Data transmission module,
For passing through multiple data connection data between the first communication ends and the second communication ends.
Optionally, which includes at least one first IP interfaces, which includes at least one
Two IP interfaces, the Data connection module are established by least one first IP interfaces of selection at least one 2nd IP interfaces multiple
Data connection.
Optionally, which includes the first IP interfaces, which includes the 2nd IP interfaces, which connects
Connection module is corresponded and is established by least one port of at least one port and the 2nd IP interfaces of the first IP interfaces of selection
Multiple data connections.
Optionally, the data transmission device further includes data allocation module, and the data allocation module is used for according to number
According to the data delay time length of connection, and/or, data are distributed to each data according to the data traffic size of data connection
Connection transmission;Delay time is longer, and the ratio data of distribution is smaller;Data traffic is bigger, and the ratio data of distribution is smaller.
Optionally, the data transmission device further includes data re-transmitting module, and the data re-transmitting module is for caching
The data information of transmission;Whether monitoring receives the feedback information of data receiver within the set time, if so, removing slow
The data information deposited;If it is not, then reselecting the data of data connection caching.
The specific data transfer mode of VPN data transmitting device can refer to embodiment one.
Above-mentioned technical proposal provided in an embodiment of the present invention and attached drawing, for further explanation of the invention rather than limit
System, in addition it should be noted that those of ordinary skill in the art are it is to be understood that still can be to the skill recorded in previous embodiment
Art scheme is modified, or carries out equivalent replacement to which part or all technical features, and these modifications or replacements, and
The essence of corresponding technical solution is not set to be detached from the range of technical solution of the present invention.
Claims (10)
1. a kind of VPN data transmission method, which is characterized in that include the following steps:
Vpn tunneling is established between the first communication ends and the second communication ends;
Session connection is established by the vpn tunneling;
Multiple data connections are established by the session connection, and pass through the multiple data connection data.
2. data transmission method according to claim 1, which is characterized in that first communication ends include at least one
One IP interfaces, second communication ends include at least one 2nd IP interfaces, described to establish multiple data connections and be specially:
It chooses at least one first IP interfaces and establishes multiple data connections at least one 2nd IP interfaces respectively.
3. data transmission method according to claim 1, which is characterized in that first communication ends include at least one
One IP interfaces, second communication ends include at least one 2nd IP interfaces, described to establish multiple data connections and be specially:
At least one port of at least one port and the 2nd IP interfaces of the first IP interfaces is chosen, data connection is corresponded and builds
Found multiple data connections.
4. data transmission method according to any one of claims 1 to 3, which is characterized in that described to be connected by multiple data
Connecing transmission data is specially:By multiple data connection simultaneous transmission data, it is independent of each other between multiple data connections.
5. data transmission method according to any one of claims 1 to 3, which is characterized in that described to be connected by multiple data
Connecing transmission data is specially:
According to the data delay time length of data connection
And/or
Data are distributed to each data connection according to the data traffic size of data connection;
Delay time is longer, and the ratio data of distribution is smaller;
Data traffic is bigger, and the ratio data of distribution is smaller.
6. data transmission method according to any one of claims 1 to 3, which is characterized in that the data transmission method is also
Including data re-transmitting mechanism, the data re-transmitting mechanism includes:
Cache the data information sent;
Whether monitoring receives the feedback information of data receiver within the set time,
If so, removing the data information of caching;
If it is not, then reselecting the data of data connection caching.
7. data transmission method according to any one of claims 1 to 3, which is characterized in that the data connection foundation side
Formula includes TCP data connection or UDP message connection.
8. data transmission method according to claim 3, which is characterized in that the port range for establishing data connection is
1025--65535。
9. a kind of VPN data transmitting device, which is characterized in that including:
Vpn tunneling module, for establishing vpn tunneling between the first communication ends and the second communication ends;
Session connection module, for establishing session connection by the vpn tunneling;
Data connection module, for establishing multiple data connections by the session connection;
Data transmission module, for passing through the multiple data connection data.
10. data transmission device according to claim 9, which is characterized in that first communication ends include at least one
One IP interfaces, second communication ends include at least one 2nd IP interfaces, and the Data connection module is by choosing at least one
A first IP interfaces establish multiple data connections at least one 2nd IP interfaces.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810198326.8A CN108512752A (en) | 2018-03-12 | 2018-03-12 | A kind of VPN data transmission method and VPN data transmitting device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810198326.8A CN108512752A (en) | 2018-03-12 | 2018-03-12 | A kind of VPN data transmission method and VPN data transmitting device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108512752A true CN108512752A (en) | 2018-09-07 |
Family
ID=63376379
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810198326.8A Pending CN108512752A (en) | 2018-03-12 | 2018-03-12 | A kind of VPN data transmission method and VPN data transmitting device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108512752A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109495367A (en) * | 2018-12-06 | 2019-03-19 | 安徽云探索网络科技有限公司 | Based on VPN route management system and method |
| CN112436994A (en) * | 2020-11-17 | 2021-03-02 | 联想(北京)有限公司 | Data transmission method and electronic equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030055990A1 (en) * | 2001-08-23 | 2003-03-20 | Hughes Electronics Corporation, | Single-modem multi-user virtual private network |
| US7733876B2 (en) * | 2005-02-11 | 2010-06-08 | Cisco Technology, Inc. | Inter-autonomous-system virtual private network with autodiscovery and connection signaling |
| CN104836747A (en) * | 2015-05-13 | 2015-08-12 | 汉柏科技有限公司 | Network outbound load balancing method and system |
| CN105991352A (en) * | 2015-07-22 | 2016-10-05 | 杭州迪普科技有限公司 | Security alliance backup method and security alliance backup apparatus |
-
2018
- 2018-03-12 CN CN201810198326.8A patent/CN108512752A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030055990A1 (en) * | 2001-08-23 | 2003-03-20 | Hughes Electronics Corporation, | Single-modem multi-user virtual private network |
| US7733876B2 (en) * | 2005-02-11 | 2010-06-08 | Cisco Technology, Inc. | Inter-autonomous-system virtual private network with autodiscovery and connection signaling |
| CN104836747A (en) * | 2015-05-13 | 2015-08-12 | 汉柏科技有限公司 | Network outbound load balancing method and system |
| CN105991352A (en) * | 2015-07-22 | 2016-10-05 | 杭州迪普科技有限公司 | Security alliance backup method and security alliance backup apparatus |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109495367A (en) * | 2018-12-06 | 2019-03-19 | 安徽云探索网络科技有限公司 | Based on VPN route management system and method |
| CN112436994A (en) * | 2020-11-17 | 2021-03-02 | 联想(北京)有限公司 | Data transmission method and electronic equipment |
| CN112436994B (en) * | 2020-11-17 | 2022-04-19 | 联想(北京)有限公司 | Data transmission method and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104954279B (en) | A kind of transfer control method, apparatus and system | |
| US20160380884A1 (en) | Flow-Based Distribution in Hybrid Access Networks | |
| US6826620B1 (en) | Network congestion control system and method | |
| US9479384B2 (en) | Data stream scheduling method, device, and system | |
| JP2002232427A (en) | Band controller | |
| CN102263697A (en) | Method and device for sharing aggregated link traffic | |
| CN109714267A (en) | Manage the transfer control method and system of reversed queue | |
| WO2018219100A1 (en) | Data transmission method and device | |
| CN108289007A (en) | Data pack transmission method and device | |
| EP3547690B1 (en) | Real-time video transmission method of multipath network | |
| CN111800336A (en) | Routing transmission implementation method based on multi-channel network link aggregation | |
| CN108512752A (en) | A kind of VPN data transmission method and VPN data transmitting device | |
| US10069731B2 (en) | Flow control on wireline network | |
| CN109039892B (en) | Service transmission method, network equipment and network system | |
| Ahmad et al. | Enhancing fast TCP’s performance using single TCP connection for parallel traffic flows to prevent head-of-line blocking | |
| CN101577709A (en) | IP packet multiplexing method and equipment capable of avoiding fragmentation | |
| CN113014512B (en) | Network connection accelerated forwarding method based on N: M connection dynamic mapping | |
| JP5672385B2 (en) | Transmission system, routing control device and communication device, and routing control method and communication method | |
| CN107231316A (en) | The transmission method and device of message | |
| KR100973082B1 (en) | Method and apparatus for packet shaper using dadule regulator | |
| EP2433400B1 (en) | Method for queueing packets between different layers of a communication protocol | |
| CN106789618B (en) | Standby system and its method based on virtual router backup protocol | |
| JP2002247063A (en) | Packet multiplexing system | |
| US20210281524A1 (en) | Congestion Control Processing Method, Packet Forwarding Apparatus, and Packet Receiving Apparatus | |
| JP4775036B2 (en) | Transmission bandwidth allocation method and apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180907 |
|
| RJ01 | Rejection of invention patent application after publication |