CN113794640B - Message processing method, device, equipment and machine readable storage medium - Google Patents
Message processing method, device, equipment and machine readable storage medium Download PDFInfo
- Publication number
- CN113794640B CN113794640B CN202110962960.6A CN202110962960A CN113794640B CN 113794640 B CN113794640 B CN 113794640B CN 202110962960 A CN202110962960 A CN 202110962960A CN 113794640 B CN113794640 B CN 113794640B
- Authority
- CN
- China
- Prior art keywords
- information
- mapping relation
- firewall
- service log
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
- H04L45/745—Address table lookup; Address filtering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/618—Details of network addresses
- H04L2101/622—Layer-2 addresses, e.g. medium access control [MAC] addresses
Abstract
The present disclosure provides a message processing method, device, apparatus and machine-readable storage medium, the method comprising: receiving a mapping relation table sent by a firewall, and updating a quick lookup table pre-established locally according to the mapping relation table; inquiring ID information associated with the service log in a quick lookup table, and adding the ID information to the associated service log; sending a service log with ID information to firewall equipment; the ID information is used to enable the firewall device to distribute the service log to the associated logical device according to the ID information. According to the technical scheme, the firewall sends the mapping relation table with the mapping relation between the ID information of the logic equipment and the MAC address to the additional service board, and the additional service board adds the associated ID information in the service log according to the mapping relation table, so that the next-hop equipment for receiving the service log distributes the service log to the corresponding logic equipment according to the ID information, and the problem that message attribution cannot be distinguished is solved.
Description
Technical Field
The present disclosure relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a machine-readable storage medium for processing a packet.
Background
The virtualization of the firewall is to logically divide one physical firewall device into a plurality of virtual firewall devices, but to share physical resources such as a CPU (central processing unit), a memory and the like; different virtual firewalls are completely isolated in configuration and forwarding, so that function customization, personalized management and maximum utilization of resources are realized. A physical device is divided into a plurality of logical devices through virtualization technology, and each logical device is called a Context. Each Context has own exclusive software and hardware resources and runs independently. In a user view, each Context is an independent device, so that the management and the maintenance are convenient; for a manager, one physical device can be virtualized into a plurality of logical devices for different branch organizations to use, so that the networking flexibility is improved.
In the firewall device, a card-inserting device is often added as an additional service board to handle some special services, such as running an artificial intelligence algorithm for flow analysis, running a third-party engine for virus detection, and the like.
The plug-in card can be deployed in series or in parallel by a bypass in the firewall device (no matter which deployment mode is adopted, a problem is encountered, namely when the firewall device is virtualized into a multi-user scene, an additional plug-in card system cannot distinguish which logic device the processed message flow belongs to.
Disclosure of Invention
In view of the above, the present disclosure provides a message processing method, a message processing apparatus, an electronic device, and a machine-readable storage medium to solve the problem that the message attributions cannot be distinguished.
The specific technical scheme is as follows:
the present disclosure provides a message processing method, which is applied to an additional service board, and the method includes: receiving a mapping relation table sent by a firewall, and updating a quick lookup table pre-established locally according to the mapping relation table; inquiring ID information associated with the service log in a quick lookup table, and adding the ID information to the associated service log; sending a service log with ID information to firewall equipment; the ID information is used for enabling the firewall equipment to distribute the service log to the associated logic equipment according to the ID information.
As a technical solution, the querying ID information associated with a service log in a fast lookup table, and adding the ID information to the associated service log includes: receiving a service message of a bypass mirror image, and inquiring related ID information in a quick lookup table according to an MAC address of the service message; and processing the service message to generate a service log, and adding a field for recording the associated ID information in the service log.
As a technical scheme, the receiving of the mapping relation table sent by the firewall updates a local pre-established fast lookup table according to the mapping relation table, including; acquiring a current mapping relation table from a firewall according to a preset period interval, or receiving the mapping relation table sent after the firewall updates the mapping relation table; and updating a local pre-established quick lookup table according to the mapping relation table.
As a technical solution, the mapping relationship table is generated by the firewall according to the mapping relationship between the ID information of each logical device and the MAC address of the associated network port.
The present disclosure also provides a message processing apparatus, which is applied to an additional service board, and the apparatus includes: the table item module is used for receiving the mapping relation table sent by the firewall and updating a quick lookup table which is pre-established locally according to the mapping relation table; the adding module is used for inquiring the ID information associated with the service log in the quick lookup table and adding the ID information to the associated service log; the sending module is used for sending the service log with the ID information to the firewall equipment; the ID information is used to enable the firewall device to distribute the service log to the associated logical device according to the ID information.
As a technical solution, the querying ID information associated with a service log in a fast lookup table, and adding the ID information to the associated service log includes: receiving a service message of a bypass mirror image, and inquiring associated ID information in a quick lookup table according to an MAC address of the service message; and processing the service message to generate a service log, and adding a field for recording the associated ID information in the service log.
As a technical scheme, the receiving of the mapping relation table sent by the firewall updates a local pre-established fast lookup table according to the mapping relation table, including; acquiring a current mapping relation table from a firewall according to a preset period interval, or receiving the mapping relation table sent by the firewall after updating the mapping relation table; and updating a local pre-established quick lookup table according to the mapping relation table.
As a technical solution, the mapping relationship table is generated by the firewall according to the mapping relationship between the ID information of each logical device and the MAC address of the associated network port.
The present disclosure also provides an electronic device, which includes a processor and a machine-readable storage medium, where the machine-readable storage medium stores machine-executable instructions capable of being executed by the processor, and the processor executes the machine-executable instructions to implement the foregoing message processing method.
The present disclosure also provides a machine-readable storage medium having stored thereon machine-executable instructions that, when invoked and executed by a processor, cause the processor to implement the aforementioned message processing method.
The technical scheme provided by the disclosure at least brings the following beneficial effects:
the firewall sends the mapping relation table with the mapping relation between the ID information of the logic equipment and the MAC address to the additional service board, and the additional service board adds the associated ID information in the service log according to the mapping relation table, so that the next-hop equipment for receiving the service log distributes the service log to the corresponding logic equipment according to the ID information, and the problem that the attributions of the messages cannot be distinguished is solved.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments of the present disclosure or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present disclosure, and other drawings can be obtained by those skilled in the art according to the drawings of the embodiments of the present disclosure.
Fig. 1 is a flowchart of a message processing method according to an embodiment of the present disclosure;
FIG. 2 is a block diagram of a message processing device in one embodiment of the present disclosure;
fig. 3 is a hardware configuration diagram of an electronic device in an embodiment of the present disclosure.
Detailed Description
The terminology used in the embodiments of the present disclosure is for the purpose of describing particular embodiments only and is not intended to be limiting of the disclosure. As used in this disclosure and the claims, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein is meant to encompass any and all possible combinations of one or more of the associated listed items.
It is to be understood that although the terms first, second, third, etc. may be used herein to describe various information in the embodiments of the present disclosure, such information should not be limited by these terms. These terms are only used to distinguish one type of information from another. For example, first information may also be referred to as second information, and similarly, second information may also be referred to as first information, without departing from the scope of the present disclosure. Depending on the context, moreover, the word "if" is used may be interpreted as "at … …" or "at … …" or "in response to a determination".
The present disclosure provides a message processing method, a message processing apparatus, an electronic device, and a machine-readable storage medium, so as to solve the problem that the attributions of messages cannot be distinguished.
Specifically, the technical scheme is as follows.
In an embodiment, the present disclosure provides a message processing method, which is applied to an additional service board, and the method includes: receiving a mapping relation table sent by a firewall, and updating a quick lookup table pre-established locally according to the mapping relation table; inquiring ID information associated with the service log in a quick lookup table, and adding the ID information to the associated service log; sending a service log with ID information to firewall equipment; the ID information is used to enable the firewall device to distribute the service log to the associated logical device according to the ID information.
Specifically, as shown in fig. 1, the method comprises the following steps:
step S11, receiving a mapping relation table sent by a firewall, and updating a quick lookup table pre-established locally according to the mapping relation table;
step S12, inquiring ID information associated with the service log in the quick lookup table, and adding the ID information to the associated service log;
and step S13, sending the service log with the ID information to the firewall equipment.
The ID information is used to enable the firewall device to distribute the service log to the associated logical device according to the ID information. The firewall sends the mapping relation table with the mapping relation between the ID information of the logic equipment and the MAC address to the additional service board, and the additional service board adds the associated ID information in the service log according to the mapping relation table, so that the next-hop equipment for receiving the service log distributes the service log to the corresponding logic equipment according to the ID information, and the problem that the attributions of the messages cannot be distinguished is solved.
In one embodiment, the querying the fast lookup table for ID information associated with the service log and adding the ID information to the associated service log includes: receiving a service message of a bypass mirror image, and inquiring associated ID information in a quick lookup table according to an MAC address of the service message; and processing the service message to generate a service log, and adding a field for recording the associated ID information in the service log.
In one embodiment, the receiving of the mapping relationship table sent by the firewall updates a fast lookup table pre-established locally according to the mapping relationship table, including; acquiring a current mapping relation table from a firewall according to a preset period interval, or receiving the mapping relation table sent after the firewall updates the mapping relation table; and updating a local pre-established quick lookup table according to the mapping relation table.
In one embodiment, the mapping relation table is generated by the firewall according to the mapping relation between the ID information of each logical device and the MAC address of the associated network port.
When a user configures a multi-context environment on a firewall, the firewall collects the context id and the corresponding relation of the network ports and stores the context id and the corresponding relation in a specified file. When the firewall is started or the corresponding relation is found to change, the context id and the corresponding relation of the network port are analyzed to the memory. The firewall acquires a context id and the MAC address of each network port in the network port mapping relation table, and establishes a mapping relation table of the MAC address and the context id;
after the additional service board is started, the firewall connection is attempted until the connection is established. After finding that the additional service board is connected, the firewall sends a mapping relation table to the additional service board, and the connection mode between the firewall and the additional service board can be that the additional service board is connected with the firewall or that the firewall is actively connected with the additional service board; the connection may be based on socket TCP, HTTP Restful interface, or other manners.
And storing the received mapping relation table on the additional service board into a memory, and establishing a fast lookup table such as a Hash lookup table according to the mapping relation table. After the additional service board receives the message, it obtains the source and destination MAC addresses, and searches the context id corresponding to the MAC address (if not found, it is processed according to default context), where the additional service board needs to distinguish context in its own service, the additional service board uses the found context id to realize context distinction, for example, the context id is added to the service log sent to the firewall, and the firewall will store the log into the log storage modules of different users according to the context id, so that it can ensure that each user can only see the service log generated by its own flow.
In an embodiment, the present disclosure also provides a message processing apparatus, as shown in fig. 2, applied to an additional service board, where the apparatus includes: the table entry module 21 is configured to receive a mapping relationship table sent by the firewall, and update a fast lookup table pre-established locally according to the mapping relationship table; the adding module 22 is configured to query the ID information associated with the service log in the fast lookup table, and add the ID information to the associated service log; the sending module 23 is configured to send a service log with ID information to the firewall device; the ID information is used to enable the firewall device to distribute the service log to the associated logical device according to the ID information.
In one embodiment, the querying the fast lookup table for ID information associated with the service log and adding the ID information to the associated service log includes: receiving a service message of a bypass mirror image, and inquiring associated ID information in a quick lookup table according to an MAC address of the service message; and processing the service message to generate a service log, and adding a field for recording the associated ID information in the service log.
In one embodiment, the receiving of the mapping relationship table sent by the firewall updates a fast lookup table pre-established locally according to the mapping relationship table, including; acquiring a current mapping relation table from the management equipment according to a preset period interval, or receiving the mapping relation table sent by the management equipment after updating the mapping relation table; and updating a local pre-established quick lookup table according to the mapping relation table.
In one embodiment, the mapping relation table is generated by the management device according to the mapping relation between the ID information of each logical device and the MAC address of the associated port.
The device embodiments are the same or similar to the corresponding method embodiments and are not described herein again.
In an embodiment, the present disclosure provides an electronic device, including a processor and a machine-readable storage medium, where the machine-readable storage medium stores machine-executable instructions capable of being executed by the processor, and the processor executes the machine-executable instructions to implement the foregoing message processing method, and from a hardware level, a schematic diagram of a hardware architecture may be as shown in fig. 3.
In one embodiment, the present disclosure provides a machine-readable storage medium having stored thereon machine-executable instructions that, when invoked and executed by a processor, cause the processor to implement the message processing method described above.
Here, a machine-readable storage medium may be any electronic, magnetic, optical, or other physical storage device that can contain or store information such as executable instructions, data, and so forth. For example, the machine-readable storage medium may be: a RAM (random Access Memory), a volatile Memory, a non-volatile Memory, a flash Memory, a storage drive (e.g., a hard drive), a solid state drive, any type of storage disk (e.g., an optical disk, a dvd, etc.), or similar storage medium, or a combination thereof.
The systems, devices, modules or units described in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. A typical implementation device is a computer, which may take the form of a personal computer, laptop computer, cellular telephone, camera phone, smart phone, personal digital assistant, media player, navigation device, email messaging device, game console, tablet computer, wearable device, or a combination of any of these devices.
For convenience of description, the above devices are described as being divided into various units by function, and are described separately. Of course, the functionality of the various elements may be implemented in the same one or more software and/or hardware implementations in practicing the disclosure.
As will be appreciated by one skilled in the art, embodiments of the present disclosure may be provided as a method, system, or computer program product. Accordingly, the present disclosure may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, embodiments of the present disclosure may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and so forth) having computer-usable program code embodied therein.
The present disclosure is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the disclosure. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Furthermore, these computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
As will be appreciated by one skilled in the art, embodiments of the present disclosure may be provided as a method, system, or computer program product. Accordingly, the present disclosure may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present disclosure may take the form of a computer program product embodied on one or more computer-usable storage media (which may include, but is not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The above description is only an embodiment of the present disclosure, and is not intended to limit the present disclosure. Various modifications and variations of this disclosure will be apparent to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present disclosure should be included in the scope of the claims of the present disclosure.
Claims (6)
1. A message processing method is applied to an additional service board, and the method comprises the following steps:
receiving a mapping relation table sent by a firewall, and updating a quick lookup table pre-established locally according to the mapping relation table;
inquiring ID information associated with the service log in a quick lookup table, and adding the ID information to the associated service log;
sending a service log with ID information to a firewall;
the ID information is used for enabling the firewall to distribute the service log to the associated logic equipment according to the ID information;
the querying the ID information associated with the service log in the fast lookup table, and adding the ID information to the associated service log, includes:
receiving a service message of a bypass mirror image, and inquiring related ID information in a quick lookup table according to an MAC address of the service message;
processing the service message to generate a service log, and adding a field for recording associated ID information in the service log;
the mapping relation table is generated by the firewall according to the mapping relation between the ID information of each logic device and the MAC address of the associated network port.
2. The method according to claim 1, wherein the receiving of the mapping relation table sent by the firewall updates a fast lookup table pre-established locally according to the mapping relation table, including;
acquiring a current mapping relation table from a firewall according to a preset period interval, or receiving the mapping relation table sent after the firewall updates the mapping relation table;
and updating a local pre-established quick lookup table according to the mapping relation table.
3. A message processing apparatus, applied to an additional service board, the apparatus comprising:
the table item module is used for receiving the mapping relation table sent by the firewall and updating a quick lookup table which is pre-established locally according to the mapping relation table;
the adding module is used for inquiring the ID information associated with the service log in the quick lookup table and adding the ID information to the associated service log;
the sending module is used for sending the service log with the ID information to the firewall;
the ID information is used for enabling the firewall to distribute the service logs to the associated logic equipment according to the ID information;
the querying the ID information associated with the service log in the fast lookup table, and adding the ID information to the associated service log, includes:
receiving a service message of a bypass mirror image, and inquiring associated ID information in a quick lookup table according to an MAC address of the service message;
processing the service message to generate a service log, and adding a field for recording associated ID information in the service log;
the mapping relation table is generated by the firewall according to the mapping relation between the ID information of each logic device and the MAC address of the associated network port.
4. The apparatus according to claim 3, wherein the receiving firewall sends a mapping table, and the receiving firewall updates a fast lookup table pre-established locally according to the mapping table, including;
acquiring a current mapping relation table from a firewall according to a preset period interval, or receiving the mapping relation table sent after the firewall updates the mapping relation table;
and updating a local pre-established quick lookup table according to the mapping relation table.
5. An electronic device, comprising: a processor and a machine-readable storage medium storing machine-executable instructions executable by the processor to perform the method of any of claims 1-2.
6. A machine-readable storage medium having stored thereon machine-executable instructions which, when invoked and executed by a processor, cause the processor to implement the method of any of claims 1-2.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110962960.6A CN113794640B (en) | 2021-08-20 | 2021-08-20 | Message processing method, device, equipment and machine readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110962960.6A CN113794640B (en) | 2021-08-20 | 2021-08-20 | Message processing method, device, equipment and machine readable storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN113794640A CN113794640A (en) | 2021-12-14 |
| CN113794640B true CN113794640B (en) | 2022-11-18 |
Family
ID=78876290
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110962960.6A Active CN113794640B (en) | 2021-08-20 | 2021-08-20 | Message processing method, device, equipment and machine readable storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113794640B (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710669A (en) * | 2012-06-29 | 2012-10-03 | 杭州华三通信技术有限公司 | Firewall strategic control method and device |
| CN107273266A (en) * | 2017-06-09 | 2017-10-20 | 上海艾融软件股份有限公司 | A kind of processing method and processing device of application daily record |
| WO2019055830A1 (en) * | 2017-09-15 | 2019-03-21 | Palo Alto Networks, Inc. | Fine-grained firewall policy enforcement using session app id and endpoint process id correlation |
| CN111132170A (en) * | 2019-12-31 | 2020-05-08 | 奇安信科技集团股份有限公司 | Communication method and device of virtual firewall, virtual firewall and topological structure |
| CN111694793A (en) * | 2020-06-12 | 2020-09-22 | 北京金山云网络技术有限公司 | Log storage method and device and log query method and device |
| CN111786973A (en) * | 2020-06-19 | 2020-10-16 | 北京百度网讯科技有限公司 | Stream log acquisition method, device, equipment and storage medium |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090198707A1 (en) * | 2008-02-06 | 2009-08-06 | Electronic Data Systems Corporation | System and method for managing firewall log records |
| CN103825976B (en) * | 2014-03-04 | 2017-05-10 | 新华三技术有限公司 | NAT (network address translation) processing method and device in distributed system architecture |
| CN104994022B (en) * | 2015-05-15 | 2019-06-07 | 新华三技术有限公司 | A kind of method and business board of message transmissions |
| CN108632074B (en) * | 2017-08-24 | 2020-10-02 | 新华三信息安全技术有限公司 | Service configuration file issuing method and device |
| CN112333162B (en) * | 2020-10-23 | 2022-05-24 | 新华三信息安全技术有限公司 | Service processing method and equipment |
-
2021
- 2021-08-20 CN CN202110962960.6A patent/CN113794640B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710669A (en) * | 2012-06-29 | 2012-10-03 | 杭州华三通信技术有限公司 | Firewall strategic control method and device |
| CN107273266A (en) * | 2017-06-09 | 2017-10-20 | 上海艾融软件股份有限公司 | A kind of processing method and processing device of application daily record |
| WO2019055830A1 (en) * | 2017-09-15 | 2019-03-21 | Palo Alto Networks, Inc. | Fine-grained firewall policy enforcement using session app id and endpoint process id correlation |
| CN111132170A (en) * | 2019-12-31 | 2020-05-08 | 奇安信科技集团股份有限公司 | Communication method and device of virtual firewall, virtual firewall and topological structure |
| CN111694793A (en) * | 2020-06-12 | 2020-09-22 | 北京金山云网络技术有限公司 | Log storage method and device and log query method and device |
| CN111786973A (en) * | 2020-06-19 | 2020-10-16 | 北京百度网讯科技有限公司 | Stream log acquisition method, device, equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN113794640A (en) | 2021-12-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107547391B (en) | Message transmission method and device | |
| CN108600109B (en) | Message forwarding method and device | |
| CN108390954B (en) | Message transmission method and device | |
| CN109104364B (en) | Designated forwarder election method and device | |
| WO2017003974A1 (en) | User-feedback-based tenant-level message filtering | |
| CN108259346B (en) | Equivalent routing table item establishing method and device | |
| CN107786450B (en) | Data message transmission method and device and machine-readable storage medium | |
| CN109412926B (en) | Tunnel establishment method and device | |
| CN106921578B (en) | Method and device for generating forwarding table item | |
| US9009782B2 (en) | Steering traffic among multiple network services using a centralized dispatcher | |
| CN108566344B (en) | Message processing method and device | |
| CN108718276B (en) | Message forwarding method and device | |
| CN110784345A (en) | Network traffic processing method and device, electronic equipment and machine-readable storage medium | |
| CN112272166A (en) | Traffic processing method, device, equipment and machine readable storage medium | |
| CN108259348B (en) | Message transmission method and device | |
| CN113794640B (en) | Message processing method, device, equipment and machine readable storage medium | |
| CN106789671B (en) | Service message forwarding method and device | |
| CN111131048A (en) | Network traffic forwarding method and device, electronic equipment and machine-readable storage medium | |
| CN112148426A (en) | Bandwidth allocation method and device | |
| CN107547382B (en) | Neighbor relation discovery method and device | |
| CN111510435A (en) | Network security policy migration method and device | |
| CN108632125B (en) | Multicast table item management method, device, equipment and machine readable storage medium | |
| CN107046503B (en) | Message transmission method, system and device | |
| CN113992565B (en) | Multicast message processing method and device | |
| CN115174474A (en) | Private cloud SFC implementation method and device based on SRv6 |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |