JP2003152767A - Communication system, relay node, converted name resolution server, relay method, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a communication system that relays communication data without imposing a load on a user even when a private address sequence is in duplicate between different private networks. SOLUTION: The communication system converts the private address sequence of a receiver party side private network into a different sequence to use it for relaying communication data. In this case, the communication system copes with the conversion by using a conversion gateway and a conversion name resolution node, and the private network and communication nodes need no functions for the address sequence conversion.

Description

Detailed Description of the Invention

[0001]

TECHNICAL FIELD The present invention relates to a technique of relaying communication data between communication nodes of different private networks via a public network. In particular,
The present invention relates to an address problem solving technique in the case where private addresses overlap each other between different private networks due to reasons such as overlapping of private address sequences between different private networks. In this specification, communication data refers to all data used for authentication, connection, communication and the like. Further, a description of simply a private address with respect to a virtual private address means a real private address.

[0002]

2. Description of the Related Art In a private network using a private address, communication data using the private address is transmitted and received between a plurality of communication nodes belonging to the private network.

On the other hand, in a public network using a public address, communication data using the public address is transmitted and received between a plurality of communication nodes belonging to this public network.

Further, when transmitting / receiving communication data via a public network between communication nodes belonging to different private networks, a gateway device for connecting each private network and the public network is used. That is, the gateway device belonging to the private network of the originating communication node and the gateway device belonging to the private network of the terminating communication node relay the communication data via the public network.

[0005]

In each private network, the private address used in its own private network is autonomously set in each private network. That is, it is not done to refer to the method of deciding the private address in another private network and set its own private address so as not to overlap with others.

Therefore, when trying to relay communication data between communication nodes having different private addresses, private addresses in the different private networks may overlap. In such a case, which address is issued Since it is difficult to identify which address is the receiving side,
A situation occurs in which communication data cannot be relayed.

[0007] For example, when the private address of the originating communication node and the private address of the terminating communication node overlap, the destination of the originating communication node is not the private network. A complicated procedure such as clearly specifying that the communication node belongs to a different private network and transferring the communication data to the relay node is required. As a result, a large amount of burden such as additional cost for wear has been requested,
It is not desirable from the viewpoint of improving the quality of service to users.

The present invention has been made against such a background, and even when private address sequences overlap between different private networks, communication data can be relayed without demanding a burden on the user. An object of the present invention is to provide a communication system, a relay node, a conversion relay node, a conversion name resolution server, a relay method, and a program that can be performed.

[0009]

SUMMARY OF THE INVENTION According to the present invention, when the private address sequences assigned to the communication nodes of different private networks that try to send and receive communication data overlap, the private address of the receiving side private network is used. It is characterized in that a series is converted into a different series and used for relaying communication data. In this case, the present invention is characterized in that the relay node for conversion is used, and the public network and the communication node do not require a function for address sequence conversion. Therefore, it is not necessary to modify the existing public network or communication node,
All that is required is to add a relay node for conversion.

That is, the first aspect of the present invention is to provide a private network using a private address,
A public network using a public address is provided, wherein the private network includes a communication node and a relay node that connect and communicate with each other in the private network based on the private address, and the relay node has a public address in the public network. Communication means between the communication nodes in the different private networks, the communication data between the communication nodes in the different private networks via the public network and the relay nodes provided in the respective private networks. It is a communication system that is relayed by.

Here, a feature of the present invention is that at least one of the relay nodes is a virtual network of a series different from the series corresponding to the private address series used in the private network on the receiving side. Means for converting a private address into an original real private address, and the communication node serving as the originating side and / or the relay node has a private address sequence used in its own private network and the private network of the private network serving as the receiving side. Means for comparing the address sequence with each other to determine the presence or absence of duplication; and means for selecting a conversion relay node including the conversion means from the relay nodes when the judgment result of this judgment means indicates duplication. Is equipped with.

Further, when the conversion relay node is provided in the private network on the receiving side,
By means of transmitting and receiving communication data to and from the other relay node that is the originating side based on the virtual private address given to the communication node that is the receiving side, and by the other relay node that is the originating side With the communication node which becomes the receiving side based on this real private address, the relayed communication data addressed to the virtual private address is converted by the converting means into the real private address of the communication node which becomes the receiving side. It is desirable to include means for transmitting and receiving the communication data between them.

In addition, when the conversion relay node is provided in the private network serving as the originating side, the virtual node provided to the communication node serving as the destination between the communication node serving as the originating side and the communication node serving as the originating side. Means for transmitting and receiving communication data based on the private address, and the means for converting the communication data addressed to the virtual private address into the real private address of the communication node serving as the destination side to obtain this real private address. It is desirable to provide means for transmitting / receiving the communication data to / from the other relay node on the receiving side.

The converting means converts an address conversion table in which a virtual private address corresponding to a real private address is written, and the virtual private address into the real private address based on the address conversion table. It can be realized by including address conversion means.

Further, before the communication node on the calling side communicates with the communication node on the receiving side, it is necessary to resolve the name of the communication node on the receiving side. Therefore, it is desirable to provide a function for name resolution in the communication system.

For example, the communication node serving as the calling side may include a translated name resolution table in which a virtual private address corresponding to the name of the communication node serving as the called side is written.

In this example, if the communication node in the private network of the calling side is provided with the translated name resolution table, the communication node itself becomes the calling side communication node. You can do name resolution with. Further, even if the communication node does not have the translated name resolution table, the communication node with respect to another communication node in the private network to which the self belongs when the communication node becomes the originator of the communication node. Name resolution can be performed by sending a name resolution request. This has the advantage that the communication time required for name resolution can be short.

Alternatively, the conversion relay node includes a conversion name resolution table in which a virtual private address corresponding to the communication node name of the receiving side is written, and a calling side including the communication node name of the receiving side. And a means for responding the virtual private address based on the translated name resolution table to a name resolution request from the communication node and / or the relay node.

In this example, the conversion relay node also has a name resolution function, and by adding the conversion relay node to an existing network, the name resolution function can be added at the same time. There is an advantage that cost and labor can be reduced.

Alternatively, a translation name resolution table in which a virtual private address corresponding to the name of the communication node on the receiving side is written, and the communication node on the outgoing side including the communication node name on the incoming side and / or A translation name resolution server having means for responding to the name resolution request from the relay node with the virtual private address based on the translation name resolution table is provided, and the translation relay node becomes a source side. Means for accepting the name resolution request from the communication node and / or the relay node, and means for transferring the name resolution request accepted by the acceptance means to the translated name resolution server,
It is also possible to include means for acquiring an answer to the name resolution request from the conversion name resolution server, and means for transferring the answer acquired by the acquisition means to the communication node and / or the relay node serving as a calling side. .

In this example, since it is possible to update the translated name resolution table by maintaining and managing only the translated name resolution server, there is an advantage that the efficiency of updating the translated name resolution table is good.

Alternatively, a conversion name resolution table in which a virtual private address corresponding to the name of the communication node serving as the destination is written, and the communication node serving as the source including the name of the communication node serving as the destination and / or A translation name resolution server having means for responding the virtual private address based on the translation name resolution table in response to a name resolution request from the relay node is provided, and the translation relay node becomes a destination side. It comprises means for notifying a private address or a virtual private address of the translated name resolution server to a name resolution request from the communication node and / or the relay node, which is an originating side including the communication node name, and responds to the request. The means is the name resolution request from the communication node and / or the relay node which is the calling side. It can also be provided with means to answer the virtual private address based on the conversion name resolution table for.

In this example, since it is possible to perform the update work of the translated name resolution table by maintaining and managing only the translated name resolution server, there is an advantage that the update work efficiency of the translated name resolution table is good. In addition, since the translated name resolution server alone can perform name resolution, there is an advantage that the load on other nodes can be reduced.

A second aspect of the present invention is different from the means for mutually connecting and communicating in the private network based on the private address, and the means for mutually connecting and communicating with other relay node based on the public address in the public network. And a means for relaying communication data between communication nodes in the private network via the public network.

Here, the feature of the present invention resides in a means for comparing the private address series used in the own private network with the private address series of the private network on the receiving side to determine the presence or absence of duplication. , When the determination result of this determination means indicates that there is duplication, a virtual private of a sequence different from the relevant sequence corresponding to the private address sequence used in the private network on the receiving side from the other relay nodes And a means for selecting a conversion relay node having means for converting an address into an original real private address.

A third aspect of the present invention is to convert a virtual private address of a series different from the series corresponding to the private address series used in the private network on the receiving side into the original real private address. It is a conversion relay node characterized by including means.

When this conversion relay node is provided in the private network serving as the destination side, the virtual node provided to the communication node serving as the destination side with the other relay node serving as the originating side is provided. Means for transmitting and receiving communication data based on the temporary private address, and the real private address of the communication node serving as the receiving side for the communication data addressed to the virtual private address relayed by the other relay node serving as the sending side It is desirable to further include means for converting by the converting means and transmitting / receiving the communication data to / from the communication node on the receiving side based on the real private address.

Alternatively, when the conversion relay node is provided in the private network serving as a calling side, the virtual node provided to the communication node serving as a receiving side with the communication node serving as a calling side is provided. Means for transmitting and receiving communication data based on a private address, and the means for converting the communication data addressed to the virtual private address to the real private address of the communication node serving as the receiving side, and this real private address It is desirable to provide a means for transmitting / receiving the communication data to / from the other relay node on the receiving side based on the above.

A fourth aspect of the present invention is a communication system in which communication data between communication nodes in different private networks is relayed via relay nodes provided in each private network and a public network. A translation name resolution table that is provided and in which a virtual private address corresponding to the destination communication node name is written, and the translation name resolution table for a name resolution request including the destination communication node name And a means for responding the virtual private address based on the above.

A fifth aspect of the present invention is a relay method in which communication data between communication nodes in different private networks are relayed via relay nodes provided in each private network and a public network. .

Here, a feature of the present invention is that at least one of the relay nodes is a virtual network of a series different from the series corresponding to the private address series used in the private network on the receiving side. Means for translating a private address into an original real private address, and the communication node and / or the relay node serving as the originating side use the private address sequence used in the private network and the private network serving as the receiving side. The presence or absence of duplication is determined by comparing with the private address sequence of No. 2, and when the result of this decision indicates duplication, the conversion relay node having the conversion means is selected from the relay nodes.

Further, when the conversion relay node is provided in the private network serving as a destination side, the conversion relay node serves as a destination side with the other relay node serving as a source side. The communication data is transmitted and received based on the virtual private address given to the communication node, and the communication data addressed to the virtual private address relayed by the other relay node serving as the originating side serves as the receiving side. It is desirable that the communication data is converted into the real private address of the communication node by the converting means, and the communication data is transmitted / received to / from the communication node on the receiving side based on the real private address.

Alternatively, when the conversion relay node is provided in the private network serving as a calling side, the communication node serving as a destination side with the communication node serving as a calling side is provided by the conversion relay node. Communication data is transmitted and received based on the virtual private address assigned to the virtual private address, and the communication data addressed to the virtual private address is converted into the real private address of the communication node on the receiving side by the conversion means. It is desirable to send and receive the communication data to and from the other relay node on the receiving side based on the real private address.

A sixth aspect of the present invention is a program, which is characterized by being installed in an information processing apparatus so that the information processing apparatus can mutually communicate in a private network based on a private address. A function of connecting and communicating, a function of mutually connecting and communicating with another relay node based on a public address in the public network, and a function of relaying communication data between communication nodes in the different private network via the public network. , A function of determining the presence or absence of duplication by comparing the private address sequence used in its own private network with the private address sequence of the private network on the receiving side, and when the determination result of this determination function indicates duplication Other said relay A conversion relay node having a function of converting a virtual private address of a series different from the series corresponding to the private address series used in the private network on the receiving side from the original real private address The function corresponding to the relay node having the function of selecting is realized.

Alternatively, the program of the present invention is characterized in that, when installed in an information processing apparatus, the information processing apparatus has a function of connecting and communicating with each other in a private network based on a private address, and in a public network. With the function to connect and communicate with other relay nodes based on public address,
A function of relaying communication data between communication nodes in different private networks via the public network, and a virtual network of a series different from the series corresponding to the private address series used in the private network on the receiving side. A function corresponding to a conversion relay node having a function of converting a private address into an original real private address is realized.

Alternatively, the program of the present invention is characterized in that it is provided in the private network serving as the destination and is provided to the communication node serving as the destination between the other relay nodes serving as the originating side. And a function of transmitting and receiving communication data based on the virtual private address, and the communication data addressed to the virtual private address relayed by the other relay node serving as the sender side of the communication node serving as the destination side. A function corresponding to the conversion relay node having a function of converting into a real private address by the function of converting and transmitting / receiving the communication data to / from the destination communication node based on the real private address is realized. There is a place to let.

Alternatively, the program of the present invention is characterized in that the program is provided in the private network serving as a calling side and is assigned to the communication node serving as a destination between the communication node serving as a calling side and the communication node serving as a calling side. A function to send and receive communication data based on a virtual private address,
Between the communication data addressed to the virtual private address is converted to the real private address of the communication node on the receiving side by the function of converting the communication data to another relay node on the receiving side based on the real private address. The function corresponding to the conversion relay node having the function of transmitting and receiving the communication data is realized.

Alternatively, a feature of the program of the present invention is that when installed in an information processing device, the communication data between communication nodes in different private networks can be stored in the information processing device in the respective private networks. As a function corresponding to the conversion name resolution server provided in the communication system that is relayed through the provided relay nodes and the public network, a virtual private address corresponding to the destination communication node name is written. A function corresponding to the translated name resolution table stored therein, and a function of responding to the name resolution request including the communication node name on the receiving side with the virtual private address based on the function corresponding to the translated name resolution table. Is in the place of realizing.

By recording the program of the present invention in a recording medium, the information processing apparatus can install the program of the present invention using this recording medium. Alternatively, the program of the present invention can be installed in the information processing apparatus directly from a server holding the program of the present invention via a network.

As a result, an information processing apparatus such as a computer realizes a communication system capable of relaying communication data without demanding a burden on the user even when the private address series are duplicated between different private networks. can do.

[0041]

BEST MODE FOR CARRYING OUT THE INVENTION A communication system according to an embodiment of the present invention will be described with reference to FIGS. FIG. 1 is a diagram for explaining a procedure for relaying communication data between different private networks having different private address sequences according to the first embodiment of the present invention. FIG. 2 and FIG. 3 are diagrams for explaining a procedure for relaying communication data between different private networks having the same private address sequence according to the second and third embodiments of the present invention.

The present invention, as shown in FIGS.
Communication nodes 1 and 2 that include private networks P1 and P2 that use private addresses and a public network PA that uses public addresses, and the private networks P1 and P2 connect and communicate with each other within the private networks P1 and P2 based on the private addresses. And gateway devices 11 and 12 as relay nodes, a conversion gateway device 13, a name resolution server 14 and a conversion name resolution server 15, and the gateway device 11
And 12 and the conversion gateway device 13 mutually connect and communicate with another relay node based on the public address in the public network PA, and the communication nodes 1 and 2 in different private networks P1 and P2.
Communication data between them is a communication system in which the gateway devices 11 and 12 or the conversion gateway devices 13 provided in the respective private networks P1 and P2 are relayed via the public network PA.

Here, a feature of the present invention is that the conversion gateway device 13 is a virtual private address of a series different from the series corresponding to the private address series used in the private network P2 on the receiving side. To the original real private address, and the communication node 1 and / or the gateway device 11 on the originating side compare the private address sequence used in the private network P1 with the private address sequence on the private network P2 on the destination side. Then, the presence / absence of duplication is determined, and when this determination result indicates the presence of duplication, the conversion gateway device 13 which is the conversion relay node is selected from the gateway devices 11 or 12 or the conversion gateway device 13.

In the second embodiment, as shown in FIG. 2, the conversion gateway device 13 is provided in the receiving-side private network P2, and is provided to the communication node 2 on the receiving side with the gateway device 11. Communication data is transmitted and received based on the virtual private address, and the communication data addressed to the virtual private address relayed by the gateway device 11 is converted into the real private address of the communication node 2 on the receiving side. The communication data is transmitted / received to / from the communication node 2 on the receiving side based on the real private address.

In the second embodiment, the gateway device 11 compares the private address series of the private network P1 and the private address series of the private network P2 to determine the presence or absence of duplication, and the result of the decision indicates that there is duplication. Although the gateway device 11 selects the conversion gateway device 13 in the embodiment, the communication node 1 may determine the presence / absence of these duplications and select the conversion gateway device 13.

Further, in the third embodiment, the conversion gateway device 13 is provided in the private network P1 on the calling side, and is provided to the communication node 2 on the receiving side between the communication node 1 on the calling side and the communication node 1 on the calling side. Communication data is transmitted and received based on the virtual private address, the communication data addressed to the virtual private address is converted into the real private address of the communication node 2 that is the destination side, and the gateway device 12 is based on the real private address.
The communication data is transmitted / received to / from.

The translation gateway device 13 has an address translation table (not shown) in which a virtual private address corresponding to a real private address is written, and the virtual private address is stored in the address translation table based on the address translation table. Convert to a real private address.

Before the communication node 1 on the calling side communicates with the communication node 2 on the called side, it is necessary to resolve the name of the communication node 2 on the called side. Therefore, it is necessary to provide a function for name resolution in the communication system.

As an example (1) of the function for performing name resolution, the communication node 1 serving as the calling side resolves the converted name in which the virtual private address corresponding to the name of the communication node serving as the destination side is written. A table T is provided.

In this embodiment (No. 1), if the communication node has its own translation name resolution table T in the private network of the originating side, it assumes the position of the communicating node 1 that is the originating side. When that happens, you can resolve the name yourself. In addition, even if the communication node does not have its own translation name resolution table T,
When it takes the position of the communication node 1 that is the originating side, the name resolution can be performed by transmitting the name resolution request to another communication node in the private network to which the self belongs. This has the advantage that the communication time required for name resolution can be short.

In the embodiment of the function for performing name resolution (No. 2), the translation gateway device 13 is provided with the translation name resolution table T in which the virtual private address corresponding to the destination communication node name is written. , And responds to the name resolution request from the communication node 1 on the originating side and / or the gateway device 11 including the name of the communication node on the destination side, with the virtual private address based on the translated name resolution table T.

In this embodiment (No. 2), the conversion gateway device 13 also has a name resolution function. By adding the conversion gateway device 13 to an existing network, the name resolution function can be simultaneously expanded. There is an advantage that the cost and labor required for the expansion can be reduced.

In the embodiment of the function for performing name resolution (No. 3), a conversion name resolution table T in which a virtual private address corresponding to a communication node name on the receiving side is written is provided, and A translated name resolution server 15 is provided which responds to the name resolution request from the communication node 1 and / or the gateway device 11 which includes the communication node name, based on the translated name resolution table T, with the virtual private address. Conversion gateway device 13
Accepts the name resolution request from the originating communication node 1 and / or the gateway device 11, transfers the accepted name resolution request to the translated name resolution server 15, and the translated name resolution server 15 sends the name resolution request. To the communication node 1 and / or the gateway device 11 on the originating side of the acquired answer.
Transfer to.

In this embodiment (No. 3), the translated name resolution table T can be updated by maintaining and managing only the translated name resolution server 15. Therefore, the efficiency of the updated name resolution table T can be improved. There are good advantages.

In the embodiment (4) of the function for performing name resolution, the conversion name resolution table T in which the virtual private address corresponding to the name of the communication node on the destination side is written is provided, and the name on the destination side is described. A translated name resolution server 15 that responds to the name resolution request from the communication node 1 and / or the gateway device 11 that includes the communication node name based on the translated name resolution table T is provided. Conversion gateway device 13
Notifies the private address or virtual private address of the translated name resolution server 15 in response to a name resolution request from the communication node 1 on the originating side and / or the gateway device 11 including the communication node name on the destination side, The translated name resolution server 15 responds to the name resolution request from the originating communication node 1 and / or the gateway device 11 with the virtual private address based on the translated name resolution table T.

In this embodiment (No. 4), the translated name resolution table T can be updated by maintaining and managing only the translated name resolution server 15. Therefore, the efficiency of updating the translated name resolution table T is improved. There are good advantages.
In addition, since the conversion name resolution server 15 can perform name resolution independently, there is an advantage that the load on other nodes can be reduced.

In the following first to fifth embodiments, the structure most suitable for explanation will be described with reference to FIGS.
As will be described below, the configuration of the embodiment of the function for performing name resolution (part 3) described above is adopted and explained. However, the embodiment of the function for performing name resolution (part 1), (part 2), (part 4)
The same description can be applied to the case of adopting the above configuration except that the installation location of the function for performing name resolution is changed.

Further, the above-described name resolution is also performed for the function for performing name resolution used when there is no overlap between the private address series of the private network P1 and the private address series of the private network P2, which will be described in the first embodiment. The function can be described in the same manner as in Embodiments (1) to (4). However, in this case, the nodes used in the examples (3) and (4) of the function for performing name resolution are the gateway device 12 and the name resolution server instead of the translation gateway device 13 and the translation name resolution server 15. 1
It is 4.

The communication node 1 and / or the gateway device 11 compare the private address sequence used in the private network P2 of the destination communication node 2 with the private address sequence used in the private network P1 to which it belongs. In order to determine the presence or absence of duplication, the communication node 1 and / or the gateway device 11 need to acquire the private address sequence information in the private network P2. A table in which private address series information in each private network is recorded is held in advance, and a private address in the private network P2 is searched by searching this table. It is possible to get the series information.
Alternatively, the gateway device 12 can acquire the private address sequence information in the private network P2 by notifying the communication node 1 and / or the gateway device 11 in response to an inquiry from the communication node 1 and / or the gateway device 11.

(First Embodiment) The operation of the communication system according to the first embodiment of the present invention will be described with reference to FIG. In the first embodiment, a relay procedure when the communication node 1 and the communication node 2 have different private address series will be described. When the communication node 1 performs mutual authentication, connection, and communication with the communication node 2, first, authentication, connection, and
Then, the gateway device 11 performs authentication, connection, and communication with the gateway device 12 or the conversion gateway device 13 on the opposite side.

At this time, the gateway device 11 compares its own private address sequence with the private address sequence of the communication partner and selects the gateway device 12 or the conversion gateway device 13 on the opposite side. In the first embodiment, since the communication node 1 and the communication node 2 have different private address series, the gateway device 11
Selects and determines the gateway device 12 as the relay node on the opposite side. Next, the communication node 1 resolves the IP address (IP: PA1), which is a private address for the host name (node), to the name resolution server 14. Note that the communication node 1 compares the private address series of itself with the private address series of the communication partner and determines that the gateway apparatus 1 is the opposite side of the gateway apparatus 11.
You may select 2. As a result, the IP address (IP: PA) which is a private address from the communication node 1
Authentication and connection with the communication node 2 by communicating with 1),
Can communicate.

That is, when (1) the communication node 1 connects to the communication node 2, (2) the communication node 1 connects to the gateway device 11 of the private network P1. (3) The gateway device 11 compares the private address series of the other party with its own private address series. In the case of the first embodiment, the private address sequence of the private network P1 is the sequence B.
Since the private address sequence of the private network P2 is the sequence A, it is not necessary to use the virtual private address in the private network P2, and thus the gateway device 12 having no address translation function is selected as the relay node on the opposite side. And decide. (4) Mutual authentication and connection are performed between the gateway device 11 and the gateway device 12.
(5) In order to resolve the name of the node, the communication node 1 uses the private address IP of the name resolution server 14
Address: Send communication data to PA3. (6) In the gateway device 12, the originating address is converted as PB1 → PA10. (7) The gateway device 12 is no
An IP address (IP: PA3) which is a private address of the name resolution server 14 for performing the name resolution of de
The communication data from the communication node 1 is relayed to the destination. (8)
The name resolution server 14 searches the name resolution table,
(9) The IP address (IP: PA1), which is the private address of the communication node 2, is notified to the communication node 1 via the gateway device 12. (10) The communication node 1 connects to the IP address (IP: PA1) which is the notified private address. (11) In the gateway device 12, the originating address is converted as PB1 → PA10. (12) The gateway device 12 connects to the IP address (IP: PA1) which is a private address. (13) As a result, the gateway device 11, the public network PA, and the gateway device 12 are relayed between the communication node 1 and the communication node 2 to perform mutual authentication and connection.

For the sake of clarity, the communication from the communication node 2 to the communication node 1 is not described in detail in FIG. 1. However, in brief, the communication node 2 is a gateway. When making a response to the communication data from the communication node 1 transferred from the device 12, the source address is the IP address (IP: PA1) which is the private address of the communication node 2, and the destination address is the private address of the gateway device 12. Is sent as the IP address (IP: PA10). Upon receiving the communication data from the communication node 2, the gateway device 12 sets the destination address to the IP address (IP: PB) which is the private address of the communication node 1.
1) and transfers it to the gateway device 11 via the public network PA, and the gateway device 11 transfers this communication data to the communication node 1.

Communication data is encapsulated and transferred between the gateway device 11 and the gateway device 12. Therefore, between the gateway device 11 and the gateway device 12, the IP address (IP: G1 and G) in which the packet containing the communication data described above is the public address of the public network PA.
2) is transferred.

(Second Embodiment) The operation of the communication system according to the second embodiment of the present invention will be described with reference to FIG. In the second embodiment, a relay procedure when the communication node 1 and the communication node 2 have the same private address series will be described. Further, in the second embodiment, the conversion gateway device 13 is provided in the destination private network P2.

When the communication node 1 performs mutual authentication, connection, and communication with the communication node 2, first, authentication, connection with the gateway device 11 of the private network P1,
After that, the gateway device 11 performs authentication, connection, and communication with the gateway device 12 on the opposite side or the conversion gateway device 13. At this time, the gateway device 11 compares its own private address series with the private address series of the communication partner. In the second embodiment, the private address sequence of the private network P1 is the sequence A, and the private network P1
Since the second private address series is the series A, the two private networks P1 and P2 have the same private address series. Therefore, it is necessary to use a virtual private address in the private network P2, and the gateway device 11 is on the opposite side. The conversion gateway device 13 is selected and determined as the relay node of. The communication node 1 may compare its own private address series with the private address series of the communication partner and select the conversion gateway device 13 as the opposite side of the gateway device 11.

Next, from the communication node 1 to the conversion name resolution server 15, an IP address (virtual IP: PB) which is a virtual private address for the host name (node).
Resolve 1). The communication node 1 knows the IP address (virtual IP: PB2) which is the virtual private address of the conversion name resolution server 15, and the communication node 1
The source address is its own private address I
The P-address (IP: PA1) is set, and the destination address is transmitted to the gateway device 11 as the IP address (virtual IP: PB2) that is the virtual private address of the translated name resolution server 15. In the conversion gateway device 13,
Converts the source address of communication data that arrives from the communication node 1 by relaying the gateway device 11 to the gateway device 1
The IP address (IP: PA4) which is the private address assigned in 3 is translated, and the IP address which is a virtual private address (virtual IP: PB2 ) To an IP address (IP: PA2) which is a real private address. At this time, from the communication node 1, the translated name resolution server 15 receives an IP address (virtual IP: P) which is a virtual private address belonging to the private address series B.
B2), but the private address series A between the translation gateway device 13 and the translation name resolution server 15
IP address (I
P: Communicate with PA2).

In the communication node 1, the conversion name resolution server 1
When authentication, connection, and communication are performed via the conversion gateway device 13 to the IP address (virtual IP: PB1), which is the virtual private address of the communication node 2 received from 5, the conversion gateway device 13 converts the source address. The source address is converted into an IP address (IP: PA4) which is a private address assigned by the gateway device 13, and an IP address (virtual address) that is a virtual private address is converted according to a predetermined method or an address conversion table held by itself. IP: PB
1) is converted into an IP address (IP: PA1) which is a real private address. At this time, the communication node 1
Although the communication node 2 looks like an IP address (virtual IP: PB1), which is a virtual private address belonging to the private address series B, between the conversion gateway device 13 and the communication node 2 is a private address belonging to the private address series A. Communication is performed with an IP address (IP: PA1) which is an address. As a result, the communication node 1
Can authenticate, connect, and communicate with the communication node 2.

Comparing this with the conventional technique, in the communication node 1, the private networks P1 and P2 have the same private address series, and it is completely different in that the communication node 1 and the communication node 2 have the same private address. Without consideration, the communication node 1 can perform communication as if the private networks P1 and P2 are different private address series.

That is, when (1) the communication node 1 connects to the communication node 2, (2) the communication node 1 connects to the gateway device 11 of the private network P1. (3) In the gateway device 11, the other party's private address sequence is compared with its own private address sequence, and in the case of the second embodiment, the conversion gateway device 13 is selected and decided as the relay node on the opposite side. (4) Mutual authentication and connection are performed between the gateway device 11 and the conversion gateway device 13.
(5) The communication node 1 transmits communication data to the IP address (IP: PA2) which is the private address of the converted name resolution server 15 in order to resolve the name of the node. (6) In the conversion gateway device 13, PA1 → P
The source address is converted as A4, and the destination address is converted as PB2 → PA2. (7) Conversion gateway device 13
Is an IP address (I which is a private address of the conversion name resolution server 15 for performing name resolution of the node).
The communication data from the communication node 1 is relayed to P: PA2). (8) The translated name resolution server 15 searches the translated name resolution table T, and (9) the translated gateway device 1
To the communication node 1 via the IP address which is a virtual private address of the communication node 2 (virtual IP: PB
Notify 1). (10) The communication node 1 connects to the IP address (virtual IP: PB1) that is the notified virtual private address. (11) The conversion gateway device 13 performs source address conversion as PA1 → PA4 and destination address conversion as PB1 → PA1. (12) The conversion gateway device 13 connects to the IP address (IP: PA4) that is a private address. (13) As a result, the gateway device 11, the public network PA, and the conversion gateway device 13 are relayed between the communication node 1 and the communication node 2 to perform mutual authentication and connection.

Note that, in FIG. 2, communication from the communication node 2 to the communication node 1 is not described in detail for the sake of easy understanding, but a brief description will be given.
When the communication node 2 responds to the communication data received from the communication node 1, the IP address (IP: PA) which is the private address of the conversion gateway device 13 is used.
4) Transfer the communication data in response to. In the conversion gateway device 13, this communication data is transmitted to the communication node 2
Since it recognizes that it is a response to the communication node 1, the source address is an IP address that is a virtual private address of the communication node 2 (virtual IP: PB1).
Communication node 1 via the gateway device 11
Send to. As a result, in the communication node 1, the IP address (virtual IP: P
B1) enables communication with the communication node 2.

Communication data is encapsulated and transferred between the gateway device 11 and the conversion gateway device 13. Therefore, the gateway device 11
Between the conversion gateway device 13 and the conversion gateway device 13, a packet including the communication data described above is transmitted to the public network PA.
IP address that is the public address of (IP: G1
And G2).

(Third Embodiment) The operation of the communication system of the third embodiment of the present invention will be described with reference to FIG. In the third embodiment, a relay procedure when the communication node 1 and the communication node 2 have the same private address series will be described. Further, in the third embodiment, the conversion gateway device 13 is provided in the originating private network P1.

When the communication node 1 performs mutual authentication, connection, and communication with the communication node 2, first, authentication, connection with the gateway device 11 or the conversion gateway device 13,
Then, the gateway device 11 or the conversion gateway device 13 performs authentication, connection, and communication with the gateway device 12 on the opposite side. At this time, the communication node 1
Selects the gateway device 11 or the conversion gateway device 13 by comparing its own private address sequence with the private address sequence of the communication partner. In the third embodiment, since the private networks P1 and P2 are the same private address series, the communication node 1 selects and determines the conversion gateway device 13 as a relay node.

Next, from the communication node 1 to the conversion name resolution server 15, an IP address (virtual IP: PB) which is a virtual private address for the host name (node) is sent.
Resolve 1). The communication node 1 knows the IP address (virtual IP: PB2) which is the virtual private address of the conversion name resolution server 15, and the communication node 1
The source address is its own private address I
The P address (IP: PA1) is set, and the destination address is transmitted to the conversion gateway device 13 as the IP address (virtual IP: PB2) that is a virtual private address of the conversion name resolution server 15. In the conversion gateway device 13, an IP address that is a virtual private address (virtual IP: PB2) is converted to an IP address that is a real private address (IP: IP:
Convert to PA2). Further, in the gateway device 12, an IP address (IP: PA) which is a private address assigned by the gateway device 12 as an originating address.
Address is converted to 10). At this time, from the communication node 1, the translated name resolution server 15 is an IP which is a virtual private address belonging to the private address series B.
Although it looks like an address (virtual IP: PB2), an IP address (IP: P: P) which is a private address belonging to the private address series A between the translation gateway device 13, the gateway device 12 and the translation name resolution server 15.
Communicate in A2).

In the communication node 1, the conversion name resolution server 1
When authentication, connection, and communication are performed via the conversion gateway device 13 to the IP address (virtual IP: PB1), which is the virtual private address of the communication node 2 received from 5, the conversion gateway device 13 determines the destination address. IP that is a virtual private address according to the specified method or the address conversion table held by itself
The address (virtual IP: PB1) is converted into an IP address (IP: PA1) which is a real private address.
In the gateway device 12, the call source address is a private address I
The originating address is converted to the P address (IP: PA10).
At this time, the communication node 2 looks to the communication node 1 as an IP address (virtual IP: PB1) which is a virtual private address belonging to the private address series B, but the conversion gateway device 13 and the gateway device 12
Between the communication node 2 and the communication node 2 is an IP address (I
P: Communicate with PA1). This allows authentication, connection, and communication between the communication node 1 and the communication node 2.

Comparing this with the conventional technique, in the communication node 1, the private networks P1 and P2 have the same private address sequence, and the communication node 1 and the communication node 2 have the same private address. The communication node 1 can communicate with each other as if the private networks P1 and P2 are different private address sequences without consideration.

That is, when (1) the communication node 1 connects to the communication node 2, (2) the communication node 1 connects to the conversion gateway device 13. (3) At this time, the communication node 1 compares the private address series of the private network P1 with the private address series of the private network P2, and relays because the private address series of the private networks P1 and P2 are the same as the comparison result. The conversion gateway device 13 is selected and decided instead of the gateway device 11 as the node. (4) Mutual authentication and connection are performed between the conversion gateway device 13 and the gateway device 12. (5) In order to resolve the name of the node, the communication node 1 uses the IP address (virtual IP: virtual IP: virtual IP address) of the translated name resolution server 15.
The communication data is transmitted to PB2). (6) In the conversion gateway device 13, the destination address is converted as PB2 → PA2, and in the gateway device 12, PA1 → PA10.
The source address is converted as. (7) Gateway device 1
2 relays the communication data from the communication node 1 to the IP address (IP: PA2) which is the private address of the conversion name resolution server 15 in order to perform the name resolution of the node. (8) The translated name resolution server 15 searches the translated name resolution table T, and (9) the gateway device 1
2, I which is a virtual private address of the communication node 2 to the communication node 1 via the conversion gateway device 13.
The P address (virtual IP: PB1) is notified. (10)
The communication node 1 connects to the IP address (virtual IP: PB1) that is the notified virtual private address. (11) PB in the conversion gateway device 13
The destination address is converted as 1 → PA1, and the gateway device 12 performs source address conversion as PA1 → PA10. (12) The gateway device 12 connects to the IP address (IP: PA1) which is a private address. (13) Thereby, the communication node 1 and the communication node 2
The gateway device 12 and the public network PA and the conversion gateway device 13 are relayed to and from each other, and mutual authentication and connection are executed.

It should be noted that, in FIG. 3, the communication from the communication node 2 to the communication node 1 is not described in detail for the sake of clarity, but a brief description will be given.
When the communication node 2 responds to the communication data received from the communication node 1, the communication node 2 has an IP address (IP: PA1) which is a private address of the gateway device 12.
The communication data responding to 0) is transferred. The gateway device 12 transfers this communication data to the conversion gateway device 13. In the conversion gateway device 13,
Since it recognizes that this communication data is a response from the communication node 2 to the communication node 1, the source address is the virtual private address of the communication node 2 IP.
Communication node 1 converted to address (virtual IP: PB1)
Send to. As a result, in the communication node 1, the IP address (virtual IP: P
B1) enables communication with the communication node 2.

Communication data is encapsulated and transferred between the conversion gateway device 13 and the gateway device 12. Therefore, between the conversion gateway device 13 and the gateway device 12, the packet including the above-mentioned communication data is public network PA.
IP address that is the public address of (IP: G2
And G3).

(Fourth Embodiment) In the first embodiment, since the private address series of the private network P1 is the series A and the private address series of the private network P2 is the series B, no address conversion is required, and communication is performed. Node 1 ← → Gateway device 11 ←
-> The gateway device 12 <-> The example which relays by the communication node 2 was shown.

In the second embodiment, the private address series of the private networks P1 and P2 are both series A, and address conversion is required, so that the communication node 1 ← → gateway device 11 ← → translation gateway device 13 ← → The example in which the relay is performed by the communication node 2 has been shown.

In the third embodiment, the private address series of the private networks P1 and P2 are both series A, and address conversion is required, and the communication node 1 ← → translation gateway apparatus 13 ← → gateway apparatus 12 ← → The example in which the relay is performed by the communication node 2 has been shown.

Here, considering the case where the private address sequence of the private network P1 is the sequence C, the communication node 2 sees from the communication node 1 that the communication node 2 is a virtual private even if it is the real private address PA4. It may be the address PB4.

Therefore, in such a case, as shown in FIGS. 1 and 2, when the conversion gateway device 13 is in the private network P2 on the receiving side, the communication node 1 and / or the gateway device 11 are on the opposite side. The gateway device 12 or the conversion gateway device 13 may be selected as the relay node of the.
When the gateway device 12 is selected, address conversion is not performed, and the communication node 2 has the real private address PA4 as viewed from the communication node 1. Further, when the conversion gateway device 13 is selected, address conversion is performed, and the communication node 2 becomes a virtual private address PB4 as viewed from the communication node 1.

Further, as shown in FIG. 3, when the conversion gateway device 13 is in the destination private network P1, the communication node 1 may select the gateway device 11 as a relay node or the conversion gateway. The device 13 may be selected. When the gateway device 11 is selected, address conversion is not performed and the communication node 1
As seen from the communication node 2, the real private address PA4
Becomes Further, when the conversion gateway device 13 is selected, address conversion is performed, and the communication node 2 becomes a virtual private address PB4 as viewed from the communication node 1.

(Fifth Embodiment) The communication system of the present invention is
It can be realized using a computer device as an information processing device. By installing in the computer device, the private network P1 and P can be installed in the computer device based on the private address.
2, a function of mutually connecting and communicating with each other, a function of mutually connecting and communicating with another relay node based on a public address in the public network PA, and communication data between the communication nodes 1 and 2 in different private networks P1 and P2. Function to relay the call via the public network PA and the private network P that is the calling side
The function of comparing the private address series used in 1 with the private address series of the private network P2 on the receiving side to determine the presence or absence of duplication, and the gateway device 11 when the decision result of this decision function indicates duplication. , 12, a function of converting a virtual private address of a series different from the series corresponding to the private address series used in the private network P2 on the receiving side from the conversion gateway device 13 into the original real private address. By installing a program that realizes a function corresponding to a relay node having a function of selecting the conversion gateway device 13 which is the conversion relay node provided, the computer device corresponds to the gateway device 11 or 12. It can be a device.

Further, when installed in a computer device, the computer device has a function of connecting and communicating with each other in the private networks P1 and P2 based on the private address, and another relay node based on the public address in the public network PA. And a function of relaying communication data between the communication nodes 1 and 2 in different private networks P1 and P2 via the public network PA, and a private used in the private network P2 on the receiving side. Compiling a program that realizes a function corresponding to a conversion relay node having a function of converting a virtual private address of a different series corresponding to an address series into an original real private address. By installing the over data device, converting the gateway device 1 that computer device
A device corresponding to 3 can be used.

Further, when the conversion gateway device 13 is provided in the private network P2 on the destination side, the virtual gateway assigned to the communication node 2 on the destination side with the gateway device 11 on the originating side. Conversion by the function of transmitting and receiving communication data based on a private address and the function of converting the communication data addressed to the virtual private address relayed by the gateway device 11 into the real private address of the communication node 2 serving as the receiving side. Then, the function corresponding to the conversion gateway device 13 having the function of transmitting and receiving the communication data to and from the communication node 2 on the receiving side based on the real private address is realized.

When the conversion gateway device 13 is provided in the private network P1 on the originating side, the virtual gateway assigned to the communication node 2 on the incoming side with the communication node 1 on the originating side. And a function for transmitting and receiving communication data based on the private address, and a function for converting the communication data addressed to the virtual private address into the real private address of the communication node 2 serving as the receiving side, and converting the communication data into the real private address. Based on this, a function corresponding to the conversion gateway device 13 having a function of transmitting / receiving the communication data to / from the gateway device 12 on the receiving side is realized.

Further, by installing in a computer device, a conversion in which a virtual private address corresponding to the communication node name of the receiving side is written in the computer device as a function corresponding to the conversion name resolution server 15. A function corresponding to the name resolution table T and a function of responding the virtual private address based on the function corresponding to the translated name resolution table T in response to a name resolution request including the communication node name on the receiving side are realized. By installing the program to be installed in the computer device, the computer device can be made a device corresponding to the converted name resolution server 15.

By recording the program of the present invention in a recording medium, the computer device can install the program of the present invention using this recording medium. Alternatively, the program of the present invention can be installed in a computer device directly from a server holding the program of the present invention via a network.

As a result, the computer system can realize a communication system capable of relaying communication data without demanding the burden on the user even when the private address sequences overlap between different private networks.

(Summary of Embodiments) According to the present invention, as a first effect, not only communication in different private address series but also connection, authentication and communication between all two private networks in the same private address series. It can be performed.

As a second effect, when viewed from the communication node of the communication source, it seems that the addresses of the communication nodes of the communication partners always belong to different private address series, so that the routing can be performed without any problem.

As a third effect, the gateway devices 11 and 12 as the gateway device or the conversion gateway device 13 and the name resolution server 1 as the name resolution server.
4 or the conversion name resolution server 15 alone does not affect the communication node at all, which is effective when the communication node is expensive or when there are a large number of communication nodes, which imposes a new burden on the user of the communication node. The communication system of the present invention can be introduced without request.

As a fourth effect, the gateway devices 11 and 12 as the gateway device or the conversion gateway device 13 and the name resolution server 1 as the name resolution server.
4 or only the conversion name resolution server 15 has no effect on the public network, so that the communication system of the present invention can be used on any public network.

FIG. 4 is a diagram showing a network configuration in which a plurality of private networks are connected to one public network. FIG. 4 shows the communication system of the present invention described in the first to third embodiments. like,
Can be extended. In the example of FIG. 4, in communication between different private networks having the same private address sequence, the conversion gateway device 13 as the conversion (with hatching) gateway device 13 and the conversion name resolution server 15 as the name resolution server are selected. However, communication between different private networks having different private address sequences is handled by selecting the normal gateway device 12 (without hatching) and the name resolution server 14.

[0099]

As described above, according to the present invention,
Even if the private address series are duplicated between different private networks, communication data can be relayed without demanding the burden on the user.

[Brief description of drawings]

FIG. 1 is a diagram illustrating a relay procedure of communication data between different private networks having different private address sequences according to the first embodiment of this invention.

FIG. 2 is a diagram for explaining a procedure for relaying communication data between different private networks having the same private address sequence according to the second embodiment of the present invention.

FIG. 3 is a diagram for explaining a procedure for relaying communication data between different private networks having the same private address sequence according to the third embodiment of the present invention.

FIG. 4 is a diagram showing a network configuration in which a plurality of private networks are connected to one public network.

[Explanation of symbols]

1 and 2 communication nodes 11, 12 Gateway device 13 Conversion gateway device 14 Name resolution server 15 Translated name resolution server P1, P2 Private network PA public network T conversion name resolution table

Continued front page    (72) Inventor Takuya Inoue             1-6 Uchisaiwaicho, Chiyoda-ku, Tokyo d             Nutty Communications Inc.             Inside the company (72) Inventor Junnosuke Yamada             1-6 Uchisaiwaicho, Chiyoda-ku, Tokyo d             Nutty Communications Inc.             Inside the company F-term (reference) 5K030 HA08 HC01 HD03 HD06 HD09                       KA04                 5K033 CB01 CB09 DA06 DB12 DB16                       DB18 EC04

Claims (21)

[Claims] 1. A private network using a private address, and a public network using a public address, wherein the private network includes a communication node and a relay node for mutually connecting and communicating in the private network based on the private address, This relay node comprises means for mutually connecting and communicating with another relay node based on a public address in the public network, and communication data between communication nodes in different private networks is provided in each private network. In the communication system in which the relay nodes are relayed to each other via the public network, at least one of the relay nodes is the private network serving as a destination side. A means for converting a virtual private address of a series different from the series corresponding to the private address series used in the work into the original real private address, and the communication node and / or the relay node on the sending side, Means for comparing the private address series used in the own private network with the private address series of the private network on the receiving side to determine whether there is duplication; and when the determination result of this decision means indicates duplication, And a means for selecting a conversion relay node including the conversion means from among the relay nodes. 2. The virtual private node provided in the private network serving as a destination and provided to the communication node serving as a destination with another relay node serving as a source, the conversion relay node being provided in the private network serving as a destination. A means for transmitting and receiving communication data based on an address, and the conversion of the communication data addressed to the virtual private address relayed by the other relay node serving as a sender into the real private address of the communication node serving as a receiver. 2. The communication system according to claim 1, further comprising means for converting the communication data to and from the communication node on the receiving side based on the real private address. 3. The conversion relay node is provided in the private network serving as a calling side, and is provided with the virtual private address assigned to the communication node serving as a receiving side with the communication node serving as a calling side. A means for transmitting and receiving communication data based on the virtual private address, and converting the communication data addressed to the virtual private address into the real private address of the communication node serving as the destination by the means for converting the communication data to the destination side based on the real private address. And a means for transmitting and receiving the communication data to and from the other relay node.
The communication system described. 4. The address converting table in which a virtual private address corresponding to a real private address is written, and the converting means converts the virtual private address into the real private address based on the address conversion table. The communication system according to any one of claims 1 to 3, further comprising an address conversion unit that converts the address. 5. The conversion name resolution table in which the virtual private address corresponding to the communication node name on the receiving side is written is provided in the communication node on the calling side.
The communication system described. 6. The conversion relay node includes: a conversion name resolution table in which a virtual private address corresponding to a communication node name on the receiving side is written; and a calling side including the communication node name on the receiving side. The communication system according to claim 4, further comprising means for responding the virtual private address based on the translated name resolution table in response to a name resolution request from the communication node and / or the relay node. 7. A conversion name resolution table in which a virtual private address corresponding to a communication node name on the callee side is written, the communication node on the caller side including the communication node name on the callee side, and / or A translation name resolution server having means for responding to the name resolution request from the relay node with the virtual private address based on the translation name resolution table is provided, and the translation relay node is an originating side. Means for accepting the name resolution request from the communication node and / or the relay node, means for transferring the name resolution request accepted by the accepting means to the translated name resolution server, and the name resolution from the translated name resolution server The means for acquiring the answer to the request and the above-mentioned answer acquired by this acquiring means are the originating side The communication system according to claim 4, further comprising means for transferring to the communication node and / or the relay node. 8. A translation name resolution table in which a virtual private address corresponding to a communication node name on the callee side is written, the communication node on the caller side including the communication node name on the callee side, and / or A translation name resolution server including means for responding to the name resolution request from the relay node with the virtual private address based on the translation name resolution table is provided, and the translation relay node becomes a destination side. And a means for notifying a private address or a virtual private address of the translated name resolution server to a name resolution request from the communication node and / or the relay node, which is an originating side including the communication node name, and responds to the request. The means responds to the name resolution request from the communication node and / or the relay node that is the originating side. The communication system according to claim 4, further comprising means for returning the virtual private address based on the translated name resolution table. 9. A communication node in the private network different from each other, means for mutually connecting and communicating in the private network based on the private address, and means for mutually connecting and communicating with another relay node in the public network based on the public address. In a relay node equipped with a means for relaying communication data between the private network and the private network, the private address series used in the own private network is compared with the private address series of the private network serving as the receiving side and overlapped. Means for determining the presence / absence of the presence / absence, and when the determination result of this determination means indicates that there is duplication, the relay address corresponding to the private address sequence used in the private network on the receiving side from the other relay nodes. Relay node, comprising the means for selecting the conversion relay nodes with means for converting the virtual real private address private addresses original of different sequence than the sequence. 10. A communication node in the private network different from each other, means for mutually connecting and communicating in the private network based on the private address, and means for mutually connecting and communicating with another relay node in the public network based on the public address. In a relay node having means for relaying communication data between the private networks via the public network, a virtual private network of a series different from the series corresponding to the private address series used in the private network on the receiving side. A conversion relay node comprising means for converting an address into an original real private address. 11. Communication data based on the virtual private address provided in the private network serving as a receiving side and given to the communication node serving as a receiving side with another relay node serving as a calling side And a means for translating the communication data addressed to the virtual private address relayed by the other relay node on the originating side into a real private address of the communication node on the destination side. 11. The conversion relay node according to claim 10, further comprising means for transmitting / receiving the communication data to / from the communication node on the receiving side based on the lever's real private address. 12. Communication data is transmitted / received to / from the communication node serving as a calling side based on the virtual private address given to the communication node serving as a calling side, which is provided in the private network serving as a calling side. Means for converting the communication data addressed to the virtual private address into the real private address of the communication node serving as the destination side, and the other relay serving as the destination side based on the real private address. A means for transmitting and receiving the communication data to and from a node.
A conversion relay node described in 0. 13. Communication data between communication nodes in different private networks is provided in a communication system that is relayed between relay nodes provided in each private network and a public network, and becomes a destination side. A translated name resolution table in which a virtual private address corresponding to a communication node name is written, and a virtual private address based on the translated name resolution table for a name resolution request including the destination communication node name. A translated name resolution server comprising means for responding an address. 14. A relay method in which communication data between communication nodes in different private networks are relayed via relay nodes provided in respective private networks and a public network, at least one of the relay nodes In addition, a means for converting a virtual private address of a series different from the series corresponding to the private address series used in the private network on the receiving side to the original real private address is provided, and becomes the sending side. The communication node and / or the relay node compares the private address series used in its own private network with the private address series of the private network serving as the receiving side to determine the presence or absence of duplication, and the determination result is duplicated. Relay method and selects the conversion relay nodes with means for the conversion from among the relay nodes when showing the Ri. 15. When the conversion relay node is provided in the private network which is a destination side,
The conversion relay node transmits / receives communication data to / from another relay node on the transmission side based on the virtual private address given to the communication node on the reception side, The communication data addressed to the virtual private address relayed by the relay node is converted into the real private address of the communication node serving as a destination by the converting means, and the destination becomes the destination based on the real private address. The relay method according to claim 14, wherein the communication data is transmitted and received to and from a communication node. 16. When the conversion relay node is provided in the private network which is an originating side,
The conversion relay node transmits / receives communication data to / from the communication node serving as a sender based on the virtual private address assigned to the communication node serving as a destination, and sends / receives data to / from the virtual private address. A method for converting the communication data into a real private address of the communication node on the receiving side by the converting means, and transmitting / receiving the communication data to / from another relay node on the receiving side based on the real private address. Item 15. The relay method according to Item 14. 17. When installed in an information processing device, the information processing device has a function of connecting and communicating with each other in a private network based on a private address, and a function of mutual communication with another relay node based on a public address in a public network. And a function of relaying communication data between communication nodes in different private networks via the public network, a private address sequence used in its own private network and the private network of the receiving side. The function of comparing the private address sequence to determine the presence or absence of duplication, and when the result of the decision of this decision function indicates that there is duplication, it is used in the private network that is the receiving side from the other relay nodes. A function corresponding to a relay node that has a function of selecting a conversion relay node that has a function of converting a virtual private address of a different series corresponding to the private address series to the original real private address is realized. A program characterized by: 18. A function of connecting to and communicating with an information processing device in a private network based on a private address, when installed in the information processing device; And a function of relaying communication data between communication nodes in different private networks via the public network, and a series corresponding to a private address series used in the private network on the receiving side. A program that realizes a function corresponding to a conversion relay node having a function of converting a virtual private address of a different sequence from the original real private address. 19. Communication data based on the virtual private address provided in the private network serving as a receiving side and given to the communication node serving as a receiving side with another relay node serving as a calling side. And the function of converting the communication data addressed to the virtual private address relayed by the other relay node serving as the sending side to the real private address of the communication node serving as the receiving side. 19. The program according to claim 18, which realizes a function corresponding to the conversion relay node having a function of transmitting and receiving the communication data to and from the communication node on the receiving side based on the leveraged private address. 20. Communication data is transmitted / received to / from the communication node, which is provided on the originating side, from the private network, which is based on the virtual private address given to the communication node, which is the destination side. And a function of converting the communication data addressed to the virtual private address into a real private address of the communication node serving as a destination side, and another relay serving as a destination side based on the real private address. 19. The program according to claim 18, which realizes a function corresponding to the conversion relay node having a function of transmitting / receiving the communication data to / from a node. 21. When the information processing device is installed in the information processing device, the communication data between the communication nodes in different private networks includes the relay nodes provided in the respective private networks and the public network. As a function corresponding to the translated name resolution server provided in the communication system relayed via the communication name resolution table in which the virtual private address corresponding to the destination communication node name is written, A program that realizes a function of responding to the virtual private address based on a function corresponding to the translated name resolution table in response to a name resolution request including the communication node name on the destination side.