CN1567883A - Method for implementing automatic establishment of VPN address pool - Google Patents
Method for implementing automatic establishment of VPN address pool Download PDFInfo
- Publication number
- CN1567883A CN1567883A CN 03148657 CN03148657A CN1567883A CN 1567883 A CN1567883 A CN 1567883A CN 03148657 CN03148657 CN 03148657 CN 03148657 A CN03148657 A CN 03148657A CN 1567883 A CN1567883 A CN 1567883A
- Authority
- CN
- China
- Prior art keywords
- vlan
- address
- mask
- address pool
- attribute
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Small-Scale Networks (AREA)
Abstract
The invention discloses a method of automatically establishing virtual local area network (VLAN) address tank, including: A. obtaining VLAN ID by command line or network management agent module interface function; B. using the VLAN ID to call the corresponding relationship between the VLAN ID and three-layer interface Internet protocol (IP) address as well as subnet mask (MASK) so as to obtain IP and MASK, and then judging if it succeeds in obtaining them: if it does, execute the step C and otherwise fail in establishing address tank; C. setting the VLAN property into an internal allocating mode and according to the obtained IP address and MASK, establishing the address tank. It omits the fussy course that the user manually configures an address tank and establishes binding, especially effective for larger numbers of VLANs.
Description
Technical field
The present invention relates to the distribution technique of IP address, be meant a kind of implementation method of automatic establishment Virtual Local Area Network address pool especially.
Background technology
DHCP (Dynamic Host Configuration Protocol, DHCP) be on the TCP/IP network, to make client computer obtain the agreement of configuration information, this agreement is based on the BOOTP agreement, and functions such as automatic distribution available network address on the basis of BOOTP agreement, have been added, thoroughly solve the management that is difficult to that static assigned ip address brings, easily problems such as conflict.
At present, adopting Dynamic Host Configuration Protocol server (SERVER) is indispensable means for client's distributing IP address.Simultaneously, in order to save operator's investment, the built-in DHCP SERVER network switch occurred, this network switch can be saved the investment of a DHCP SERVER server.
When the network switch adopts built-in DHCP SERVER, two kinds of networking modes are arranged usually.
As shown in Figure 1, first kind of networking mode is that client computer directly links to each other with the network switch with built-in DHCP SERVER, or client computer links to each other with DHCP SERVER indirectly by Layer 2 switch.
This networking mode can mark off a lot of VLAN on three-tier switch, the corresponding subnet of each VLAN is so will create address pool according to this address and mask again for one three layer interface address of VLAN manual configuration and subnet mask of correspondence; Behind each network segment configuration address pond of institute, again the address pool and the corresponding VLAN that prepare are bound one by one, just can carry out the distribution of IP address.
As shown in Figure 2, another kind of networking mode is that client computer is passed through DHCP relay (RELAY) and linked to each other with switch with built-in DHCP SERVER, and client computer can be isolated two subnets by DHCP RELAY.
This networking mode, which address pool switch can decide in according to the corresponding field in the DHCP message and distribute the address by behind order line or the network management interface configuration address pond again.
Below address pool that first kind of networking mode created be called the VLAN address pool, the address pool that second kind of networking mode created is called global address pool.
At present, most of users adopt first kind of mode to carry out networking.When adopting first kind of mode to carry out networking, many users consider that from secure context what usually each VLAN network segment scope is provided with is very little, and therefore, the VLAN number that contains in the system will be very big.And no matter the number of VLAN has muchly, when DHCP SERVER is set, each VLAN is wanted address pool of manual configuration, then the address pool that configures is bound one by one with corresponding VLAN, could the distributing IP address.Undoubtedly, in this case, the workload in configuration address pond is very big, and is consuming time also longer relatively.
Summary of the invention
In view of this, the invention provides the implementation method in a kind of automatic establishment virtual local area network address pond, be applied in the network switch of built-in DPCH protocol server, make it when configuration of IP address, can simplify configuration mode, realize that VLAN distributes the zero configuration amount of address pool.
The implementation method in a kind of automatic establishment virtual local area network address pond comprises:
A. obtain VLAN ID by order line or OAMAgent module interface function;
B. utilize VLAN sign (ID) to call corresponding relation between VLAN ID and three layer interface Internet Protocol (IP) addresses and the subnet mask (MASK), acquisition IP and MASK judge whether to obtain success, if success, execution in step C then, otherwise, the address pool failure created;
C. this VLAN attribute is made as the internal distribution mode, and according to obtain ' address and MASK, create address pool.
Corresponding relation between described VLAN ID and IP address and the MASK is to obtain by VLAN module interface function.
Corresponding relation between described VLAN ID and IP address and the MASK is what set in advance.
After step B created the address pool failure, this method further comprised:
B1, this VLAN attribute is made as the internal distribution mode, creates VLAN three layer interface IP address and MASK;
B2, judge whether the VLAN attribute of this three layer interfaces IP address and MASK correspondence is internal distribution, and, if, execution in step B3, otherwise, the address pool failure created;
B3, create address pool according to three layer interface IP addresses and MASK.
Three layer interfaces of VLAN described in the step B1 are to select at random among the VLAN that never is used.
The present invention is by the VLAN interface function of automatic calling system inside, thereby address pool is created in realization automatically.This method has been save user's manual configuration and has also been created the loaded down with trivial details process of binding in the pond, address one by one, especially to effective especially under the big situation of VLAN quantity.
Description of drawings
Fig. 1 is first kind of networking mode schematic diagram of the network switch of the built-in DHCP SERVER of employing;
Fig. 2 is second kind of networking mode schematic diagram of the network switch of the built-in DHCP SERVER of employing;
Fig. 3 is set to the schematic flow sheet that home address is distributed for the present invention VLAN attribute;
Fig. 4 realizes creating automatically the schematic flow sheet of VLAN address pool for the present invention;
Fig. 5 is after introducing method of the present invention, the schematic flow sheet of switch processes DHCP message.
Embodiment
Describe technical scheme of the present invention in detail below in conjunction with the drawings and specific embodiments.
Need to prove that the VLAN attribute is divided into inside and outside two kinds of IP address assignment modes, correspond respectively to built-in DHCP SERVER and distribute and the external DHCP SERVER method of salary distribution.Wherein, the built-in DHCP SERVER method of salary distribution is to give client computer distributing IP address by the built-in address pond; The external DHCPSERVER method of salary distribution is to transmit the DHCP request message of client computer by built-in DHCP RELAY, makes other support the equipment of DHCP SERVER to come the customer in response Address requests, is its distributing IP address.Therefore, if be built-in DHCP SERVER, when this equipment is received the DHCP request message that client computer sends, will distribute the address in the built-in address pond, for this client computer; If switch inside does not have built-in DHCPSERVER, then can not be its distributing IP address, but the message of receiving is forwarded to other subscriber equipment, respond by other subscriber equipment.
Therefore, when three-tier switch configuration VLAN address pool, at first will then it be made as the home address method of salary distribution for it disposes one three layer interface IP address and MASK, interface IP address and subnet mask just determine the network segment scope of its place VLAN.
Present embodiment is to dispose three layer interface IP address and MASK automatically by existing VLAN module.The VLAN module comprises two parts, and a part is three layer interface functions of VLAN module correspondence, i.e. VLAN interface function, and another part is a VLAN controll block array.The VLAN module mainly is responsible for the management of switch VLAN, as creating, delete VLAN etc.Three layer interface function data structure of VLAN module correspondence comprise the unicast ip address chain of interface index, interface, the multicast IP address chain of interface etc.Wherein, comprise interface gateway IP address, subnet mask in the unicast ip address chain of interface.The data structure of VLAN controll block array comprises ifindex, the VLAN broadcasting of VLAN type, vlan state, VLAN interface correspondence etc.The corresponding three layer interface index values of storage in this array.
Here, because three layer interface IP address and MASK one to one are provided in the three layer interface function data structure of VLAN film piece correspondence with VLAN ID,, present embodiment obtains IP and MASK automatically so calling the VLAN module according to VLAN.Certainly, also can set in advance the corresponding relation between VLAN ID and IP and the MASK, so just can obtain IP and MASK by this corresponding relation.
Referring to shown in Figure 3, the concrete steps that this VLAN address assignment attribute is set to create in the process of internal distribution mode the VLAN address pool are as follows:
Step 301, certain VLAN attribute of input are set to the order of the implicit IP address method of salary distribution.
Three layer interface IP addresses and MASK that step 304, basis obtain create the VLAN address pool.
From said process as can be seen, in establishing the process that the VLAN attribute is the internal distribution mode, can create the VLAN address pool automatically, if three layer interfaces do not obtain IP address and MASK in the step 303, then can not create the VLAN address pool, therefore after the VLAN attribute is made as the internal distribution mode, need carry out the establishment of VLAN address pool once more.
Referring to shown in Figure 4, after system VLAN attribute was set to the home address method of salary distribution, the detailed process of creating address pool once more was as follows:
Step 401, user create VLAN three layer interface IP address and MASK by order.Here, VLAN three layer interfaces are that the user is according to selecting at random among the VLAN that is not used in the system.
Step 402, judge whether the VLAN attribute of this three layer interfaces IP address and MASK correspondence is internal distribution, and, if, execution in step 403, otherwise, jump out.
Step 403, create address pool according to three layer interface IP addresses and MASK.
The above is a detailed process of creating the VLAN address pool automatically.The present invention creates the method for address pool only at the establishment of VLAN address pool, does not comprise the establishment of global address pool.
Certainly, in contrast, also can delete the address pool of having created automatically.Have dual mode all can cause the deletion of address pool: first kind, the user is with the home address distributive property cancellation of VLAN; Second kind, the user judges whether the VLAN attribute is the internal distribution attribute, if then delete address pool by order deletion VLAN or VLAN three layer interfaces.
Referring to shown in Figure 5, when system introduces the present invention, promptly to have created automatically after the address pool, the process of switch processes DHCP message is as follows:
After step 501, switch are received the DHCP message that send on the bottom, judge whether this message is broadcasting packet, if, execution in step 502, otherwise, execution in step 505;
Step 502, find corresponding VLAN address pool according to VLAN ID, if find, then execution in step 503, otherwise message is handled failure, jumps out.
The interface function distributing IP address of step 503, call address administration module judges whether to be allocated successfully, if success, then execution in step 504, otherwise message is handled failure, jumps out.
The interface function of step 506, call address administration module comes the distributing IP address, judges whether to be allocated successfully, if be allocated successfully, then the dhcp response message write in the IP address that obtains, and this message is beamed back DHCPRELAY.
From above-mentioned steps as can be seen, DHCP SERVER module can be selected corresponding address pool automatically according to message content.This method has been save user's manual configuration and has also been created the loaded down with trivial details process of binding in the pond, address one by one, especially to effective especially under the big situation of VLAN quantity.
The above only is preferred embodiment of the present invention, and is in order to restriction the present invention, within the spirit and principles in the present invention not all, any modification of being done, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (5)
1, the implementation method in a kind of automatic establishment virtual local area network address pond is characterized in that this method may further comprise the steps:
A. obtain VLAN ID by order line or OAMAgent module interface function;
B. utilize VLAN sign (ID) to call corresponding relation between VLAN ID and three layer interface Internet Protocol (IP) addresses and the subnet mask (MASK), acquisition IP and MASK judge whether to obtain success, if success, execution in step C then, otherwise, the address pool failure created;
C. this VLAN attribute is made as the internal distribution mode, and, creates address pool according to the IP address and the MASK that obtain.
2, method according to claim 1 is characterized in that, the corresponding relation between described VLAN ID and IP address and the MASK is to obtain by VLAN module interface function.
3, method according to claim 1 is characterized in that, the corresponding relation between described VLAN ID and IP address and the MASK is what set in advance.
4, method according to claim 1 is characterized in that, after step B created the address pool failure, this method further comprised:
B1, this VLAN attribute is made as the internal distribution mode, creates VLAN three layer interface IP address and MASK;
B2, judge whether the VLAN attribute of this three layer interfaces IP address and MASK correspondence is internal distribution, and, if, execution in step B3, otherwise, the address pool failure created;
B3, create address pool according to three layer interface IP addresses and MASK.
5, method according to claim 4 is characterized in that, three layer interfaces of VLAN described in the step B1 are to select at random among the VLAN that never is used.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB031486576A CN1332539C (en) | 2003-06-12 | 2003-06-12 | Method for implementing automatic establishment of VPN address pool |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB031486576A CN1332539C (en) | 2003-06-12 | 2003-06-12 | Method for implementing automatic establishment of VPN address pool |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1567883A true CN1567883A (en) | 2005-01-19 |
| CN1332539C CN1332539C (en) | 2007-08-15 |
Family
ID=34472340
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB031486576A Expired - Fee Related CN1332539C (en) | 2003-06-12 | 2003-06-12 | Method for implementing automatic establishment of VPN address pool |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1332539C (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101651722B (en) * | 2009-08-28 | 2011-09-14 | 华为技术有限公司 | Method, device and system for automatically allocating IP address |
| CN104734864A (en) * | 2013-12-18 | 2015-06-24 | 华为技术有限公司 | Method and device for generating BNG (Broadband Network Gateway) pool in network |
| CN104780078A (en) * | 2015-04-03 | 2015-07-15 | 山东华软金盾软件有限公司 | Method and system for initiatively detecting IP (Internet protocol) of switch |
| WO2018161795A1 (en) * | 2017-03-09 | 2018-09-13 | 华为技术有限公司 | Routing priority configuration method, device, and controller |
| CN111130976A (en) * | 2019-11-15 | 2020-05-08 | 苏州浪潮智能科技有限公司 | Method, equipment and medium for configuring virtual local area network of white box switch |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1162797B1 (en) * | 2000-06-09 | 2010-12-08 | Broadcom Corporation | Flexible header protocol for network switch |
-
2003
- 2003-06-12 CN CNB031486576A patent/CN1332539C/en not_active Expired - Fee Related
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101651722B (en) * | 2009-08-28 | 2011-09-14 | 华为技术有限公司 | Method, device and system for automatically allocating IP address |
| CN104734864A (en) * | 2013-12-18 | 2015-06-24 | 华为技术有限公司 | Method and device for generating BNG (Broadband Network Gateway) pool in network |
| CN104734864B (en) * | 2013-12-18 | 2018-02-23 | 华为技术有限公司 | The method and apparatus that wideband network gateway pond is generated in network |
| CN104780078A (en) * | 2015-04-03 | 2015-07-15 | 山东华软金盾软件有限公司 | Method and system for initiatively detecting IP (Internet protocol) of switch |
| WO2018161795A1 (en) * | 2017-03-09 | 2018-09-13 | 华为技术有限公司 | Routing priority configuration method, device, and controller |
| CN108574635A (en) * | 2017-03-09 | 2018-09-25 | 华为技术有限公司 | A kind of routing priority configuration method, equipment and controller |
| US11018990B2 (en) | 2017-03-09 | 2021-05-25 | Huawei Technologies Co., Ltd. | Route priority configuration method, device, and controller |
| CN108574635B (en) * | 2017-03-09 | 2021-06-22 | 华为技术有限公司 | Routing priority configuration method, device and controller |
| CN111130976A (en) * | 2019-11-15 | 2020-05-08 | 苏州浪潮智能科技有限公司 | Method, equipment and medium for configuring virtual local area network of white box switch |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1332539C (en) | 2007-08-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1123154C (en) | System, device and method for routine selection dhcp configuration agreement packets | |
| CN1213567C (en) | Concentrated network equipment managing method | |
| CN1188983C (en) | Method of altering network equipment IP address via network managing equipment | |
| CN1744612A (en) | DHCP address allocation method | |
| CN1949784A (en) | IP address requesting method for DHCP client by DHCP repeater | |
| CN1643879A (en) | AAA server system for efficient access control and address assignment | |
| CN1855820A (en) | Method for providing business according to its type | |
| CN1859304A (en) | Method for realizing neighbour discovery | |
| CN1567837A (en) | A method and system for multicast source control | |
| CN1889572A (en) | Internet protocol address distributing method and dynamic main machine configuration protocol relay | |
| CN1705313A (en) | IP communications system and IP address allocation method | |
| CN1859409A (en) | Method and system for improving network dynamic host configuration DHCP safety | |
| CN1852187A (en) | Method for realizing access-in management of on-line apparatus | |
| CN101035012A (en) | Ethernet multi-layer switcher secure protection method based on DHCP and IP | |
| CN101047914A (en) | Coprocessing system for mobile communication terminal and its method | |
| CN1835515A (en) | Method and device of going repeating in configuration procedue of dynamic host address | |
| EP2806598B1 (en) | Method and system for managing address resources | |
| CN1452342A (en) | Method for managing broadcast of multi-broadcast service source in mobile network | |
| US20160205063A1 (en) | Method, device and system for implementing address sharing | |
| CN1901474A (en) | IP address distributing method and device | |
| CN1859376A (en) | Link backup method based on route | |
| CN1567883A (en) | Method for implementing automatic establishment of VPN address pool | |
| CN1917436A (en) | Method for realizing concentrating type management for network devices based on Web | |
| CN1487697A (en) | IP address distributing management method for wideband access equipment | |
| CN1561072A (en) | Method for sharing user IP address pool |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20070815 Termination date: 20210612 |