WO2008050061A2 - Communication method and system relating to the dhcp protocol - Google Patents

Communication method and system relating to the dhcp protocol Download PDF

Info

Publication number
WO2008050061A2
WO2008050061A2 PCT/FR2007/052233 FR2007052233W WO2008050061A2 WO 2008050061 A2 WO2008050061 A2 WO 2008050061A2 FR 2007052233 W FR2007052233 W FR 2007052233W WO 2008050061 A2 WO2008050061 A2 WO 2008050061A2
Authority
WO
WIPO (PCT)
Prior art keywords
message
dhcp
relay
server
address
Prior art date
Application number
PCT/FR2007/052233
Other languages
French (fr)
Other versions
WO2008050061A3 (en
Inventor
François BOURDAIS
Nicolas Fourel
Original Assignee
France Telecom
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by France Telecom filed Critical France Telecom
Publication of WO2008050061A2 publication Critical patent/WO2008050061A2/en
Publication of WO2008050061A3 publication Critical patent/WO2008050061A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • H04L61/5014Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]

Definitions

  • the present invention relates to a communication system and method relating to DHCP.
  • DHCP Dynamic Host Configuration Protocol
  • a DHCP server dynamically assigns configuration data to a device that connects to a network to which the DHCP server belongs.
  • these configuration data include an IP address of the equipment.
  • the terminal When a device, such as a client terminal, connects to an IP network, the terminal first transmits in "broadcast" mode (simultaneous transmission of a message to several possible receivers) a request for data request from configuration. Only a DHCP server is adapted to respond to such a request by assigning the terminal configuration data (including IP address) and sending them.
  • the IP network is divided into a plurality of subnets and the operational DHCP server or servers are connected to one or more different subnets.
  • a request broadcast in broadcast mode by a terminal of one of the subnets that does not include a DHCP server remains confined within the subnet and can not reach any server.
  • a DHCP relay in each subnet that does not include a DHCP server, the role of the relay being to transfer the requests sent in "broadcast" mode on the subnet from the relay to a relay. or multiple servers.
  • the relay When the relay sends the request sent by the terminal to one or more servers, the relay generally modifies the content of the message, in particular to ensure that the response of the server to this request will be correctly transmitted to the terminal via the relay .
  • the DHCP relay it is common for the DHCP relay to replace the content of the area of the request called "option 54", titled “server-identifier”, initially containing the IP address of the server, by its own IP address.
  • This option informs the terminal of the DHCP server address so that it can send the following requests in unicast mode, and thus communicate with it directly without having to issue requests in "broadcast” mode.
  • the terminal newly connected to the network must communicate with the unicast server, that is to say, directly, it sends its requests to the relay which then transmits them to the server.
  • “relay agent information option” is another option that DHCP devices may modify.
  • option 82 of the DHCP message is considered trusted since it has been added by a DHCP device that is a device configured by the network operator. This is why option 82 of DHCP messages is increasingly used to transfer information over an IP network.
  • RFC 3046 defines option 82 and its division into sub-options, it does not impose any particular format or presentation of the information in option 82.
  • the presentation of information is thus unique to each DHCP relay type.
  • the relays implemented in the Redback SE 800, Cisco 7200, and Juniper ERX devices are three known relays that have option 82 in different ways. Therefore, if the server wishes to use the confidence information transmitted via option 82 of the message, it must first proceed to an identification of the type of relay that inserted this information in the message before being able to interpret these informations.
  • DHCP servers are not designed to handle this heterogeneity of presentation formats and their operation is limited only to reading the raw information.
  • the subject of the invention is a communication device for a telecommunication network comprising at least one DHCP relay and at least one DHCP server, the device being able to intercept at least one DHCP message from a said relay and destined for a said server, and comprising means for modifying a content of an option field of an intercepted message, in particular of the option field 82, so that the presentation format of said content after modification is independent of the relay whose originates said message, and means for transmitting the modified message to the recipient server.
  • the fact that the presentation format is independent of the relay means that when the intercepted message is a first message from a relay of a first type, and a second message is intercepted from a second relay of a second type different from the first type, the modification made is such that the presentation formats of these contents after modification are the same.
  • the invention makes it possible to overcome the difficulties related to the heterogeneity of the presentation formats of the information contained in the option fields indicated by the DHCP relay, including the option field 82 of a DHCP message.
  • the receiving server is thus able to exploit the information conveyed in this message, regardless of the relay through which the message has passed.
  • the communication device will also be called DHCP gateway.
  • the communication device when the intercepted message is a message said incident message, the communication device according to the invention is able to intercept a response message sent by a said server in response to the incident message and includes means for modifying a message. content of said option field of the response message so as to restore the presentation format used in the incident message before modifying the incident message.
  • a gateway type DHCP communication device inserted between the DHCP server and the DHCP relay whose function is to modify the Option 82 content of a message exchanged between the relay and the server, regardless of the message transfer direction.
  • the relay receiving the modified response message can therefore treat this message as if no modification had been made by the device according to the invention.
  • the presence of such a device in the network is transparent for the servers as for the relays communicating with each other via this device.
  • a communication device may also include one or more of the following features.
  • the device is intended to be inserted between first and second subnetworks of the telecommunications network, the device being arranged to intercept all the messages sent from one of the subnets to a DHCP server of the other. subnet as well as any replies sent back by the DHCP server. Thus, the device acts on all the messages sent on the network to or from the server.
  • the device comprises means for replacing, in an intercepted message, in particular in an option 54 of the message, the IP address of the DHCP server receiving the message by the IP address of said device.
  • the receiving device of the message will subsequently communicate directly with the server, without the new message passing through the relay, it will send its DHCP data to the address contained in option 54, that is, ie the gateway which will be ensured to see all messages to the server.
  • the device comprises means for replacing, in an intercepted message, in particular in a GIADDR field of the message, the IP address of the DHCP relay sending the message by the IP address of said device.
  • the server wishes to respond to the relay, it will send its data to the address contained in the GIADDR field, that is to say to the gateway which will be ensured to see all messages from the server.
  • the invention also relates to a communication system, comprising at least one DHCP relay, at least one DHCP server and a device as previously defined.
  • the invention also relates to a communication method in a telecommunication network comprising at least one DHCP relay and at least one DHCP server, a device implementing the following steps:
  • the device when the intercepted message is a message said incident message, the device implements further the following steps,
  • a method according to the invention may also include one or more of the following features
  • the method comprises a step during which the device modifies the intercepted message, in particular an option 54 of the message, by replacing the IP address of the DHCP relay transmitting the message with the IP address of said device.
  • the receiving device of the message will subsequently communicate directly with the server, without the new message passing through the relay, it will send its DHCP data to the address contained in option 54, that is to say the gateway which will be ensured to see all messages to the server.
  • the method comprises a step during which the device modifies the intercepted message, in particular a GIADDR field of the message, by replacing the IP address of the destination DHCP server of the message with the IP address of said device.
  • the server when the server wishes to respond to the relay, it will send its data to the address contained in the GIADDR field, that is to say to the gateway which will be ensured to see all messages from the server.
  • the intercepted message being an incident message
  • the device when the device intercepts a response message to the incident message, it modifies the response message so as to restore a modified item when changing the incident message.
  • the intercepted message being a first message from the relay, the relay being of a first type, it implements the interception step to intercept a second message from a second relay of a second different type of the first type and it implements the step of modifying the content of option 82 of the two messages so that the presentation formats of said content are the same.
  • This modification of the content of the DHCP message according to a common presentation format makes it possible to use several types of DHCP relays and a single type of DHCP server without modifying them, even if their presentation formats of the information contained in option 82 of the messages are heterogeneous.
  • the subject of the invention is also a signal conveying a message from a DHCP relay and intended to be transmitted to a DHCP server, the presentation format of a content of an option field of said message being independent of the relay from which said message comes.
  • the invention also relates to a computer program capable of controlling the implementation of the steps of a method as defined above.
  • the invention also relates to a data recording medium, comprising a program as defined above.
  • the invention also relates to a provision of a program as previously defined for download.
  • FIG. 1 shows a data transmission network designated by the general reference 10.
  • the network 10 comprises two sub-networks 12 and 14. Terminals 16 are connected to the first sub-network 12, and terminals 18 are connected to the second subnet 14. The transmission of data in the network
  • routers 20 are provided by means of routers 20.
  • the network 10 comprises a communication system 21 comprising a plurality of DHCP equipment.
  • the communication system 21 comprises a single DHCP server 22 forming part of the second subnet 14.
  • the first subnet 12 does not include any DHCP server. It comprises however a DHCP relay 24 forming part of the communication system 21 and intended to relay the DHCP messages sent by the equipment 16 of the first subnet 12 to the DHCP server 22 of the second subnet 14.
  • the role of the DHCP server is to assign an IP address to a newly connected network terminal that requests it. Since a new terminal does not know the IP address of the DHCP server, it sends a request in "broadcast” mode, that is to say a request sent throughout the network.
  • the server 22, responding to an IP address assignment message modifies the content of option 54 of the message, entitled "Server-identifier", by inserting its own IP address. This makes it possible to inform the terminal of the IP address of the DHCP server so that the terminal can transmit the DHCP messages in unicast mode during the exchanges of subsequent DHCP messages, that is to say directly to the attention of the server. .
  • Two cases can be envisaged depending on whether a terminal 16 connected to the first sub-network 12 or a terminal 18 connected to the second sub-network 14 is considered.
  • the 11 transmits a message in "broadcast" mode of configuration data assignment request, including request for assigning an IP address.
  • the message broadcast in "broadcast” mode is transmitted throughout the second subnet 14 but can not exceed the limits. Since the server 18 is part of this second subnet 14, it receives the message from the IP address assignment request and responds directly to it.
  • an IP address assignment request message transmitted in "broadcast" mode by a terminal 16 belonging to the first subnet 12 remains confined within the first subnet 12 and can not directly reach the DHCP server 22 because it belongs to the second subnet 14.
  • the role of the DHCP relay 24 is to detect messages sent by terminals 16 belonging to the first subnet
  • Relay 24 is previously informed of the address of server 22 for the redirection of messages.
  • the relay 24 is able to change the content of DHCP messages.
  • the DHCP relay modifies the DHCP messages sent by the terminal 16 to add its own IP address in a field named GIADDR.
  • the IP address contained in the GIADDR field that is to say the IP address of the relay 24, is used by the server 22 to send the response to the IP address assignment request to the relay 24 which then transfers to the terminal 16.
  • the DHCP relay changes the contents of option 54 of DHCP messages by inserting its own IP address instead of the IP address of the DHCP server originally contained in this option. This allows the subsequent messages that the terminal 16 expects to send to the DHCP server to be sent to the DHCP relay.
  • the relay 24 ensures that all the DHCP messages exchanged between the server 22 and terminals 16 of the first subnet 12 pass through it.
  • the relay 24 is arranged to modify the contents of the option 82 entitled "Relay Agent Information Option", for example, to insert in the DHCP message sent between the terminal 16 and the relay 22 , an identifier of the line of the terminal 16, regardless of the direction of transmission of the message.
  • the encoding format of the data contained in the option field 82 is not standardized and actually depends on the type of DHCP relay 24 modifying that content.
  • the three DHCP relays implemented in the aforementioned Redback SE 800, Cisco 7200, and Juniper ERX devices each present the information contained in option 82 in a different manner.
  • a Cisco 7200-type DHCP Relay encodes this bit-line information into a sub-option 2 of option 82 "remote-ID" as follows: o 520e 020c 0101 0000 0000 0000 2025 OOaa
  • a Redback SE 800 relay presents the contents of option 82 in a different way since this content is coded in ASCII format in sub-option 1 entitled "circuit-ID". The presentation is as follows:
  • a Juniper ERX-type relay presents the ASCII line information in Option 82 sub-option 1 in a different way:
  • each type of DHCP relay presents the content of the option 82 of the DHCP frame in a manner that is unique to it.
  • the DHCP server 22 is not suitable for processing these different data encoding formats. . Indeed, by the standard, these servers process the content of option 82 without modifying it, this in particular in order not to complicate the processing of requests made by these servers and not to degrade the performance of these servers in terms of concerns the processing times of requests.
  • the communication system 21 comprises a communication device 26, also called gateway 26, for the processing of the DHCP messages exchanged between the relay 24 and the server 22 of the network 10.
  • the gateway 26 is interposed between the two routers 20 respectively part of the subnets 12 and 14, and to ensure the transmission of DHCP messages from one of the subnets to the other.
  • the gateway 26 is distinct from the DHCP relay 24 and the DHCP server 22 and comprises means 28 for modifying the content of the option 82 of a message exchanged between the relay 24 and the server 22.
  • the gateway 26 further comprises means 30 to transmit the modified message to the receiving DHCP device of the message.
  • Means 28 are capable of modifying the content of option 82 of the DHCP messages exchanged according to a predetermined presentation according to the equipment receiving the DHCP message.
  • the gateway 26 comprises means 32 for storing the predetermined presentation of each DHCP equipment.
  • the means 28 are also able to modify the content of the option 54 and the GIADDR field of the messages.
  • the predetermined presentation associated with a DHCP relay 24 depends on the model of the relay. Examples of pre-defined presentations used by the DHCP Redback SE 800, Cisco 7200, and Juniper ERX relays have been previously described.
  • sub-option 1 of option 82 is coded in ASCII format and formatted as follows:
  • the different subfields are separated by predefined characters ("!, 7 “,”: “,”. “, Etc.) and the subfields are predefined.
  • the subfields are:
  • DSLAMJdentifier represents the DSLAM (Digital Subscriber Line Access Multiplexer)
  • chassis the chassis number
  • the "slot" field represents the slot identifier
  • the "port" field represents the port number
  • the "vpi" field represents the virtual path identifier ("virtual path identifier")
  • the "vci" field represents the virtual channel identifier ("virtual channel identifier"). Then, the line information of the previously described example would be coded as follows:
  • the gateway of the invention it is possible to use several different DHCP relay models on the same network without having to make the DHCP server capable of interpreting different presentations of the option 82.
  • the gateway modifies the contents of option 82 of the two messages. so that the presentation formats of said content are the same.
  • each DHCP device receives messages whose content is presented in the way that is most easy for them to interpret.
  • gateway 26 may have additional functions.
  • the gateway 26 can filter the exchanged DHCP messages according to their content or their number. For example, the gateway 26 can limit the number of DHCP leases allocated per subnet by refusing to transmit the new lease allocation requests when the limit of allocated leases is reached. The gateway 26 can also count the DHCP messages exchanged between a terminal and the DHCP server in order to identify the terminals whose behavior is abnormal, especially those whose activity exceeds a predetermined threshold.
  • the gateway 26 In order for the gateway 26 to be able to modify a maximum of DHCP messages exchanged between the relays 24 and the server 22, it is desirable for all the exchanged messages to pass through the gateway 26. For this, two embodiments can be envisaged.
  • the gateway 26 is neither the source nor the recipient of the message and does not modify the information for routing the message in the network. In particular, it modifies neither the GIADDR field nor the source and destination IP addresses of the message. The gateway 26 modifies only the contents of certain options including the option 82. In order for all the messages to pass through the gateway and since the gateway is neither the source nor the recipient of the messages, it is necessary that the routing equipments of the network are configured so that all the messages exchanged from one of the subnets to the other pass through the gateway. In the event of software or hardware failure of the gateway, it is advantageous to provide a so-called "bypass" or bypass mode, in which the messages cross the gateway without being modified.
  • the gateway masquerades as a DHCP relay from the point of view of the DHCP server and pretends to be a DHCP server from the point of view of the DHCP relay. Under these conditions, each DHCP equipment believing to send a DHCP message to another DHCP device will actually send it to the gateway through which all DHCP messages will then pass.
  • the gateway modifies the GIADDR field and the content of option 54 messages exchanged between the network equipment.
  • a message from a client terminal which has been relayed by a DHCP relay to a DHCP server, passes through the gateway, it modifies the message to replace the IP address of the DHCP relay initially contained in the GIADDR field by its own IP address. It also modifies the content of option 82 according to the invention.
  • the gateway stores, in its storage means 32, the initial content of the GIADDR field and the presentation of the option 82. To retrieve this stored information, the gateway associates with a unique identifier of the DHCP transaction, for example the identifier Xid or the MAC address of the client terminal.
  • the DHCP server Upon receiving the message, the DHCP server uses the IP address contained in the GIADDR field to respond. Thus, it will send its response message to the gateway.
  • the gateway Upon receipt of this response message, the gateway again modifies the contents of option 82 to be presented as specified by the relay to which the message is sent. For this, it reuses the information stored in the storage means 32 and in particular the initial content of the GIADDR field which corresponds to the IP address to which the modified response message is transmitted.
  • the gateway modifies the response message to replace the IP address of the DHCP server initially contained in option 54 of the message by its own IP address. This address will then be used by the client terminal if it wishes to communicate directly with the DHCP server.
  • the gateway is assured that all DHCP messages pass through it, without however the DHCP equipment noticing it.

Abstract

The invention relates to a communication device (21) for a telecommunication network comprising at least one DHCP relay (24) and a DHCP server (22). The device is able to intercept a DHCP message originating from the relay (24) and destined for the server (22) or vice versa and comprises means (28) for modifying the content of the option (82) of the message intercepted and for transmitting the modified message to the relay (24) or to the destination server.

Description

Procédé et système de communication relatifs au protocole DHCP Method and system for communicating with DHCP
La présente invention concerne un système et un procédé de communication relatifs au protocole DHCP.The present invention relates to a communication system and method relating to DHCP.
On connaît dans l'état de la technique un système de communication entre une pluralité d'équipements de type DHCP (de l'anglais Dynamic Host Configuration Protocol) comprenant au moins un relais DHCP et un serveur DHCP. Un serveur DHCP permet d'attribuer de manière dynamique des données de configuration à un équipement se connectant à un réseau dont fait partie le serveur DHCP. Sur un réseau de type IP, ces données de configuration comprennent notamment une adresse IP de l'équipement. Lorsqu'un équipement, tel qu'un terminal client, se connecte à un réseau IP, le terminal émet tout d'abord en mode "broadcast" (transmission simultanée d'un message à plusieurs récepteurs possibles) une requête de demande de données de configuration. Seul un serveur DHCP est adapté pour répondre à une telle requête en attribuant au terminal des données de configuration (adresse IP notamment) et en les lui envoyant.It is known in the state of the art a communication system between a plurality of equipment type DHCP (Dynamic Host Configuration Protocol) comprising at least one DHCP relay and a DHCP server. A DHCP server dynamically assigns configuration data to a device that connects to a network to which the DHCP server belongs. On an IP type network, these configuration data include an IP address of the equipment. When a device, such as a client terminal, connects to an IP network, the terminal first transmits in "broadcast" mode (simultaneous transmission of a message to several possible receivers) a request for data request from configuration. Only a DHCP server is adapted to respond to such a request by assigning the terminal configuration data (including IP address) and sending them.
Parfois, le réseau IP est divisé en une pluralité de sous-réseaux et le ou les serveurs DHCP opérationnels sont raccordés à un ou plusieurs sous-réseaux différents. Dans ce cas, une requête émise en mode « broadcast » par un terminal d'un des sous-réseaux ne comprenant pas de serveur DHCP, reste confinée au sein du sous-réseau et ne peut pas atteindre aucun serveur.Sometimes, the IP network is divided into a plurality of subnets and the operational DHCP server or servers are connected to one or more different subnets. In this case, a request broadcast in broadcast mode by a terminal of one of the subnets that does not include a DHCP server remains confined within the subnet and can not reach any server.
Pour résoudre ce problème il est connu d'intégrer un relais DHCP dans chaque sous-réseau ne comprenant pas de serveur DHCP, le rôle du relais étant de transférer les requêtes émises en mode "broadcast" sur le sous-réseau depuis le relais vers un ou plusieurs serveurs. Lorsque le relais fait suivre la requête émise par le terminal vers un ou plusieurs serveurs, le relais modifie généralement le contenu du message, notamment pour s'assurer que la réponse du serveur à cette requête sera correctement transmise au terminal par l'intermédiaire du relais.To solve this problem, it is known to integrate a DHCP relay in each subnet that does not include a DHCP server, the role of the relay being to transfer the requests sent in "broadcast" mode on the subnet from the relay to a relay. or multiple servers. When the relay sends the request sent by the terminal to one or more servers, the relay generally modifies the content of the message, in particular to ensure that the response of the server to this request will be correctly transmitted to the terminal via the relay .
Par exemple, il est courant que le relais DHCP remplace le contenu de la zone de la requête dénommée « option 54 », intitulée « server-identifier », contenant initialement l'adresse IP du serveur, par sa propre adresse IP. Cette option permet d'informer le terminal de l'adresse du serveur DHCP pour qu'il puisse émettre les requêtes suivantes en mode unicast, et ainsi communiquer avec lui de manière directe sans avoir besoin d'émettre des requêtes en mode « broadcast ». Ainsi, lorsque le terminal nouvellement connecté au réseau doit communiquer avec le serveur en unicast, c'est-à-dire de manière directe, il envoie ses requêtes vers le relais qui les transmet ensuite au serveur. L'option 82 intitulée « relay agent information option » est une autre option dont les équipements DHCP sont susceptibles de modifier le contenu. Cette option est définie dans le document de I1IETF Network Working Group RFC 3046 intitulé « DHCP Relay Agent Information Option » de janvier 2001 . Comme cela est précisé dans le paragraphe 5 de ce document, les informations contenues dans l'option 82 du message DHCP sont considérées comme de confiance puisqu'elles ont été ajoutées par un équipement DHCP qui est un équipement configuré par l'opérateur du réseau. C'est la raison pour laquelle l'option 82 des messages DHCP est de plus en plus utilisée pour transférer des informations sur un réseau IP.For example, it is common for the DHCP relay to replace the content of the area of the request called "option 54", titled "server-identifier", initially containing the IP address of the server, by its own IP address. This option informs the terminal of the DHCP server address so that it can send the following requests in unicast mode, and thus communicate with it directly without having to issue requests in "broadcast" mode. Thus, when the terminal newly connected to the network must communicate with the unicast server, that is to say, directly, it sends its requests to the relay which then transmits them to the server. Option 82, "relay agent information option", is another option that DHCP devices may modify. This option is set in the document I 1 IETF Network Working Group RFC 3046 entitled "DHCP Relay Agent Option Information" in January 2001. As stated in paragraph 5 of this document, the information contained in option 82 of the DHCP message is considered trusted since it has been added by a DHCP device that is a device configured by the network operator. This is why option 82 of DHCP messages is increasingly used to transfer information over an IP network.
Toutefois, bien que la norme RFC 3046 définisse l'option 82 et son découpage en sous-options, elle n'impose pas de présentation ou de format particuliers des informations contenues dans l'option 82. La présentation des informations est ainsi propre à chaque type de relais DHCP. Par exemple, les relais implémentés dans les équipements Redback SE 800, Cisco 7200, Juniper ERX sont trois relais connus qui présentent l'option 82 de manière différente. Dès lors, si le serveur souhaite utiliser les informations de confiance transmises par l'intermédiaire de l'option 82 du message, il doit procéder tout d'abord à une identification du type de relais ayant inséré ces informations dans le message avant de pouvoir interpréter ces informations.However, although RFC 3046 defines option 82 and its division into sub-options, it does not impose any particular format or presentation of the information in option 82. The presentation of information is thus unique to each DHCP relay type. For example, the relays implemented in the Redback SE 800, Cisco 7200, and Juniper ERX devices are three known relays that have option 82 in different ways. Therefore, if the server wishes to use the confidence information transmitted via option 82 of the message, it must first proceed to an identification of the type of relay that inserted this information in the message before being able to interpret these informations.
Or actuellement, les serveurs DHCP ne sont pas conçus pour gérer cette hétérogénéité de formats de présentation et leur fonctionnement se limite uniquement à la lecture des informations brutes.Currently, however, DHCP servers are not designed to handle this heterogeneity of presentation formats and their operation is limited only to reading the raw information.
L'invention a pour objet un dispositif de communication pour un réseau de télécommunication comprenant au moins un relais DHCP et au moins un serveur DHCP, le dispositif étant apte à intercepter au moins un message DHCP en provenance d'un dit relais et à destination d'un dit serveur, et comprenant des moyens pour modifier un contenu d'un champ d'option d'un message intercepté, notamment du champ d'option 82, de sorte que le format de présentation dudit contenu après modification soit indépendant du relais dont provient ledit message, et des moyens pour transmettre le message modifié au serveur destinataire.The subject of the invention is a communication device for a telecommunication network comprising at least one DHCP relay and at least one DHCP server, the device being able to intercept at least one DHCP message from a said relay and destined for a said server, and comprising means for modifying a content of an option field of an intercepted message, in particular of the option field 82, so that the presentation format of said content after modification is independent of the relay whose originates said message, and means for transmitting the modified message to the recipient server.
Le fait que le format de présentation soit indépendant du relais signifie que lorsque le message intercepté est un premier message en provenance d'un relais d'un premier type, et qu'un second message est intercepté en provenance d'un second relais d'un second type différent du premier type, la modification opérée est telle que les formats de présentation de ces contenus après modification sont les mêmes.The fact that the presentation format is independent of the relay means that when the intercepted message is a first message from a relay of a first type, and a second message is intercepted from a second relay of a second type different from the first type, the modification made is such that the presentation formats of these contents after modification are the same.
L'invention permet de pallier les difficultés liées à l'hétérogénéité des formats de présentation des informations contenues dans les champs d'option renseignés par les relais DHCP, notamment le champ de l'option 82 d'un message DHCP. Le serveur récepteur est ainsi à même d'exploiter les informations véhiculées dans ce message, et ce quel que soit le relais par lequel le message a transité.The invention makes it possible to overcome the difficulties related to the heterogeneity of the presentation formats of the information contained in the option fields indicated by the DHCP relay, including the option field 82 of a DHCP message. The receiving server is thus able to exploit the information conveyed in this message, regardless of the relay through which the message has passed.
Dans la suite de la description, le dispositif de communication selon l'invention sera également qualifié de passerelle DHCP.In the following description, the communication device according to the invention will also be called DHCP gateway.
Selon un mode de réalisation, lorsque le message intercepté est un message dit message incident, le dispositif de communication selon l'invention est apte à intercepter un message de réponse émis par un dit serveur en réponse au message incident et comprend des moyens pour modifier un contenu dudit champ d'option du message de réponse de sorte à restaurer le format de présentation utilisé dans le message incident avant modification du message incident.According to one embodiment, when the intercepted message is a message said incident message, the communication device according to the invention is able to intercept a response message sent by a said server in response to the incident message and includes means for modifying a message. content of said option field of the response message so as to restore the presentation format used in the incident message before modifying the incident message.
Selon l'invention, on propose donc d'ajouter dans le système de communication DHCP de l'état de la technique un dispositif de communication DHCP, de type passerelle, inséré entre le serveur DHCP et le relais DHCP qui a pour fonction de modifier le contenu de l'option 82 d'un message échangé entre le relais et le serveur, quel que soit le sens de transfert du message. Le relais recevant le message de réponse modifié peut donc traiter ce message comme si aucune modification n'avait été effectuée par le dispositif selon l'invention. La présence d'un tel dispositif dans le réseau est transparente pour les serveurs comme pour les relais communiquant entre eux par l'intermédiaire de ce dispositif.According to the invention, it is therefore proposed to add in the prior art DHCP communication system a gateway type DHCP communication device inserted between the DHCP server and the DHCP relay whose function is to modify the Option 82 content of a message exchanged between the relay and the server, regardless of the message transfer direction. The relay receiving the modified response message can therefore treat this message as if no modification had been made by the device according to the invention. The presence of such a device in the network is transparent for the servers as for the relays communicating with each other via this device.
Un dispositif de communication selon l'invention peut également comprendre l'une ou plusieurs des caractéristiques suivantes.A communication device according to the invention may also include one or more of the following features.
- Le dispositif est destiné à être inséré entre des premier et second sous-réseaux du réseau de télécommunication, le dispositif étant agencé pour intercepter tous les messages émis depuis l'un des sous-réseaux à destination d'un serveur DHCP de l'autre sous-réseau ainsi que toutes les réponses émises en retour par le serveur DHCP. Ainsi, le dispositif agit sur tous les messages émis sur le réseau à destination ou en provenance du serveur.The device is intended to be inserted between first and second subnetworks of the telecommunications network, the device being arranged to intercept all the messages sent from one of the subnets to a DHCP server of the other. subnet as well as any replies sent back by the DHCP server. Thus, the device acts on all the messages sent on the network to or from the server.
- Le dispositif comprend des moyens pour remplacer, dans un message intercepté, notamment dans une option 54 du message, l'adresse IP du serveur DHCP destinataire du message par l'adresse IP dudit dispositif. Ainsi, lorsque l'équipement destinataire du message souhaitera par la suite communiquer directement avec le serveur, sans que le nouveau message ne transite par le relais, il enverra ses données DHCP à l'adresse contenue dans l'option 54, c'est- à-dire à la passerelle qui sera ainsi assurée de voir passer tous les messages à destination du serveur. - Le dispositif comprend des moyens pour remplacer, dans un message intercepté, notamment dans un champ GIADDR du message, l'adresse IP du relais DHCP émetteur du message par l'adresse IP dudit dispositif. Ainsi, lorsque le serveur souhaitera répondre au relais, il enverra ses données à l'adresse contenue dans le champ GIADDR, c'est-à-dire à la passerelle qui sera ainsi assurée de voir passer tous les messages en provenance du serveur.The device comprises means for replacing, in an intercepted message, in particular in an option 54 of the message, the IP address of the DHCP server receiving the message by the IP address of said device. Thus, when the receiving device of the message will subsequently communicate directly with the server, without the new message passing through the relay, it will send its DHCP data to the address contained in option 54, that is, ie the gateway which will be ensured to see all messages to the server. The device comprises means for replacing, in an intercepted message, in particular in a GIADDR field of the message, the IP address of the DHCP relay sending the message by the IP address of said device. Thus, when the server wishes to respond to the relay, it will send its data to the address contained in the GIADDR field, that is to say to the gateway which will be ensured to see all messages from the server.
L'invention a également pour objet un système de communication, comprenant au moins un relais DHCP, au moins un serveur DHCP et un dispositif tel que précédemment défini.The invention also relates to a communication system, comprising at least one DHCP relay, at least one DHCP server and a device as previously defined.
L'invention a également pour objet un procédé de communication dans un réseau de télécommunication comprenant au moins un relais DHCP et au moins un serveur DHCP, un dispositif mettant en œuvre les étapes suivantes:The invention also relates to a communication method in a telecommunication network comprising at least one DHCP relay and at least one DHCP server, a device implementing the following steps:
- interception d'au moins un message en provenance d'un dit relais et à destination d'un dit serveur,- interception of at least one message from a said relay and to a said server,
- modification d'un contenu d'un champ d'option d'un message intercepté, notamment du champ d'option 82, de sorte que le format de présentation dudit contenu après modification soit indépendant du relais dont provient ledit message, etmodifying a content of an option field of an intercepted message, in particular of the option field 82, so that the presentation format of said content after modification is independent of the relay from which said message originates, and
- transmission du message modifié au serveur ou au relais destinataire.- transmission of the modified message to the destination server or relay.
Selon un mode de réalisation du procédé de communication selon l'invention, lorsque le message intercepté est un message dit message incident, le dispositif met en œuvre en outre les étapes suivantes,According to one embodiment of the communication method according to the invention, when the intercepted message is a message said incident message, the device implements further the following steps,
- interception d'un message de réponse émis par un dit serveur en réponse au message incident,interception of a response message sent by a said server in response to the incident message,
- modification d'un contenu dudit champ d'option du message de réponse de sorte à restaurer le format de présentation utilisé dans le message incident avant modification du message incident.modifying a content of said option field of the response message so as to restore the presentation format used in the incident message before modifying the incident message.
Un procédé selon l'invention peut également comprendre l'une ou plusieurs des caractéristiques suivantesA method according to the invention may also include one or more of the following features
- Le procédé comprend une étape au cours de laquelle le dispositif modifie le message intercepté, notamment une option 54 du message, en remplaçant l'adresse IP du relais DHCP émetteur du message par l'adresse IP dudit dispositif. Ainsi, lorsque l'équipement destinataire du message souhaitera par la suite communiquer directement avec le serveur, sans que le nouveau message ne transite par le relais, il enverra ses données DHCP à l'adresse contenue dans l'option 54, c'est-à-dire à la passerelle qui sera ainsi assurée de voir passer tous les messages à destination du serveur.The method comprises a step during which the device modifies the intercepted message, in particular an option 54 of the message, by replacing the IP address of the DHCP relay transmitting the message with the IP address of said device. Thus, when the receiving device of the message will subsequently communicate directly with the server, without the new message passing through the relay, it will send its DHCP data to the address contained in option 54, that is to say the gateway which will be ensured to see all messages to the server.
- Le procédé comprend une étape au cours de laquelle le dispositif modifie le message intercepté, notamment un champ GIADDR du message, en remplaçant l'adresse IP du serveur DHCP destinataire du message par l'adresse IP dudit dispositif. Ainsi, lorsque le serveur souhaitera répondre au relais, il enverra ses données à l'adresse contenue dans le champ GIADDR, c'est-à-dire à la passerelle qui sera ainsi assurée de voir passer tous les messages en provenance du serveur.The method comprises a step during which the device modifies the intercepted message, in particular a GIADDR field of the message, by replacing the IP address of the destination DHCP server of the message with the IP address of said device. Thus, when the server wishes to respond to the relay, it will send its data to the address contained in the GIADDR field, that is to say to the gateway which will be ensured to see all messages from the server.
- Le message intercepté étant un message incident, lorsque le dispositif intercepte un message de réponse au message incident, il modifie le message de réponse de manière à restaurer un élément modifié lors de la modification du message incident.- The intercepted message being an incident message, when the device intercepts a response message to the incident message, it modifies the response message so as to restore a modified item when changing the incident message.
- Le message intercepté étant un premier message en provenance du relais, le relais étant d'une premier type, on met en œuvre à nouveau l'étape d'interception pour intercepter un second message en provenance d'un second relais d'un second type différent du premier type et on met en œuvre l'étape de modification du contenu de l'option 82 des deux messages de sorte que les formats de présentation dudit contenu soient les mêmes. Cette modification du contenu du message DHCP selon un format de présentation commun permet d'utiliser plusieurs types de relais DHCP et un seul type de serveur DHCP sans les modifier, même si leurs formats de présentation des informations contenues dans l'option 82 des messages sont hétérogènes.- The intercepted message being a first message from the relay, the relay being of a first type, it implements the interception step to intercept a second message from a second relay of a second different type of the first type and it implements the step of modifying the content of option 82 of the two messages so that the presentation formats of said content are the same. This modification of the content of the DHCP message according to a common presentation format makes it possible to use several types of DHCP relays and a single type of DHCP server without modifying them, even if their presentation formats of the information contained in option 82 of the messages are heterogeneous.
L'invention a également pour objet un signal véhiculant un message en provenance d'un relais DHCP et destiné à être transmis à un serveur DHCP, le format de présentation d'un contenu d'un champ d'option dudit message étant indépendant du relais dont provient ledit message.The subject of the invention is also a signal conveying a message from a DHCP relay and intended to be transmitted to a DHCP server, the presentation format of a content of an option field of said message being independent of the relay from which said message comes.
L'invention a également pour objet un programme d'ordinateur apte à commander la mise en œuvre des étapes d'un procédé tel que défini précédemment.The invention also relates to a computer program capable of controlling the implementation of the steps of a method as defined above.
L'invention a également pour objet un support d'enregistrement de données, comprenant un programme tel que défini précédemment.The invention also relates to a data recording medium, comprising a program as defined above.
L'invention a également pour objet une mise à disposition d'un programme tel que précédemment défini en vue de son téléchargement.The invention also relates to a provision of a program as previously defined for download.
L'invention sera mieux comprise à la lecture de la description qui va suivre, donnée uniquement à titre d'exemple et faite en se référant à la figure unique annexée qui est un schéma d'un système de communication selon l'invention. On a représenté sur la figure 1 un réseau de transmission de données désigné par la référence générale 10. Sur cet exemple, le réseau 10 comprend deux sous-réseaux 12 et 14. Des terminaux 16 sont connectés au premier sous-réseau 12, et des terminaux 18 sont connectés au second sous-réseau 14. La transmission des données dans le réseauThe invention will be better understood on reading the description which follows, given solely by way of example and with reference to the single appended figure which is a diagram of a communication system according to the invention. FIG. 1 shows a data transmission network designated by the general reference 10. In this example, the network 10 comprises two sub-networks 12 and 14. Terminals 16 are connected to the first sub-network 12, and terminals 18 are connected to the second subnet 14. The transmission of data in the network
10 est assurée au moyen de routeurs 20.10 is provided by means of routers 20.
Le réseau 10 comprend un système de communication 21 comprenant une pluralité d'équipements DHCP. Le système de communication 21 comprend un unique serveur DHCP 22 faisant partie du second sous-réseau 14.The network 10 comprises a communication system 21 comprising a plurality of DHCP equipment. The communication system 21 comprises a single DHCP server 22 forming part of the second subnet 14.
Le premier sous-réseau 12 ne comprend aucun serveur DHCP. Il comprend en revanche un relais DHCP 24 faisant partie du système de communication 21 et destiné à relayer les messages DHCP émis par les équipements 16 du premier sous-réseau 12 vers le serveur DHCP 22 du second sous-réseau 14.The first subnet 12 does not include any DHCP server. It comprises however a DHCP relay 24 forming part of the communication system 21 and intended to relay the DHCP messages sent by the equipment 16 of the first subnet 12 to the DHCP server 22 of the second subnet 14.
Le rôle du serveur DHCP est d'attribuer une adresse IP à un terminal nouvellement connecté au réseau qui en fait la requête. Etant donné qu'un nouveau terminal ne connaît pas l'adresse IP du serveur DHCP, il émet une requête en mode "broadcast", c'est-à-dire une requête émise dans tout le réseau. Le serveur 22, en répondant à un message d'attribution d'adresse IP, modifie le contenu de l'option 54 du message, intitulée « Server-identifier », en y insérant sa propre adresse IP. Cela permet d'informer le terminal de l'adresse IP du serveur DHCP pour que le terminal puisse émettre les messages DHCP en mode unicast lors des échanges de messages DHCP suivants, c'est- à-dire directement à l'attention du serveur 22.The role of the DHCP server is to assign an IP address to a newly connected network terminal that requests it. Since a new terminal does not know the IP address of the DHCP server, it sends a request in "broadcast" mode, that is to say a request sent throughout the network. The server 22, responding to an IP address assignment message, modifies the content of option 54 of the message, entitled "Server-identifier", by inserting its own IP address. This makes it possible to inform the terminal of the IP address of the DHCP server so that the terminal can transmit the DHCP messages in unicast mode during the exchanges of subsequent DHCP messages, that is to say directly to the attention of the server. .
Deux cas de figure sont envisageables selon que l'on considère un terminal 16 connecté au premier sous-réseau 12 ou un terminal 18 connecté au second sous-réseau 14.Two cases can be envisaged depending on whether a terminal 16 connected to the first sub-network 12 or a terminal 18 connected to the second sub-network 14 is considered.
Selon un premier cas, lorsqu'un terminal 18 se connecte au second sous-réseau 14,According to a first case, when a terminal 18 connects to the second subnet 14,
11 émet un message en mode "broadcast" de demande d'attribution de données de configuration, notamment de demande d'attribution d'une adresse IP. Le message émis en mode « broadcast » est transmis dans tout le second sous-réseau 14 mais ne peut en dépasser les limites. Comme le serveur 18 fait partie de ce second sous-réseau 14, il reçoit le message de la demande d'attribution d'adresse IP et y répond directement.11 transmits a message in "broadcast" mode of configuration data assignment request, including request for assigning an IP address. The message broadcast in "broadcast" mode is transmitted throughout the second subnet 14 but can not exceed the limits. Since the server 18 is part of this second subnet 14, it receives the message from the IP address assignment request and responds directly to it.
Selon un deuxième cas, un message de demande d'attribution d'adresse IP émis en mode "broadcast" par un terminal 16 appartenant au premier sous-réseau 12, reste confiné au sein du premier sous-réseau 12 et ne peut atteindre directement le serveur DHCP 22 du fait qu'il appartient au second sous-réseau 14. Le rôle du relais DHCP 24 est de détecter les messages émis par des terminaux 16 appartenant au premier sous-réseauAccording to a second case, an IP address assignment request message transmitted in "broadcast" mode by a terminal 16 belonging to the first subnet 12 remains confined within the first subnet 12 and can not directly reach the DHCP server 22 because it belongs to the second subnet 14. The role of the DHCP relay 24 is to detect messages sent by terminals 16 belonging to the first subnet
12 et de les transférer au serveur 22 présent dans le second sous-réseau 14. Pour cela, le relais 24 est au préalable informé de l'adresse du serveur 22 pour la redirection des messages.12 and transfer them to the server 22 present in the second subnet 14. For this, Relay 24 is previously informed of the address of server 22 for the redirection of messages.
Pour s'assurer que les échanges de messages DHCP entre le terminal 16 et le serveur DHCP 22 transitent systématiquement par son intermédiaire, le relais 24 est apte à modifier le contenu des messages DHCP.To ensure that the exchange of DHCP messages between the terminal 16 and the DHCP server 22 routinely through it, the relay 24 is able to change the content of DHCP messages.
Tout d'abord, le relais DHCP modifie les messages DHCP émis par le terminal 16 pour y ajouter sa propre adresse IP dans un champ nommé GIADDR. L'adresse IP contenue dans le champ GIADDR, c'est-à-dire l'adresse IP du relais 24, est utilisée par le serveur 22 pour envoyer la réponse à la demande d'attribution d'adresse IP au relais 24 qui la transfère ensuite au terminal 16.First, the DHCP relay modifies the DHCP messages sent by the terminal 16 to add its own IP address in a field named GIADDR. The IP address contained in the GIADDR field, that is to say the IP address of the relay 24, is used by the server 22 to send the response to the IP address assignment request to the relay 24 which then transfers to the terminal 16.
En outre, le relais DHCP modifie le contenu de l'option 54 des messages DHCP en y insérant sa propre adresse IP, en remplacement de l'adresse IP du serveur DHCP initialement contenue dans cette option. Cela permet que les messages suivants que le terminal 16 croit émettre à l'attention du serveur DHCP, soient en réalité envoyés au relais DHCP.In addition, the DHCP relay changes the contents of option 54 of DHCP messages by inserting its own IP address instead of the IP address of the DHCP server originally contained in this option. This allows the subsequent messages that the terminal 16 expects to send to the DHCP server to be sent to the DHCP relay.
Ainsi, grâce à ces modifications apportées au contenu des messages DHCP, le relais 24 s'assure que l'ensemble des messages DHCP échangés entre le serveur 22 et des terminaux 16 du premier sous-réseau 12 transitent par son intermédiaire.Thus, by virtue of these modifications made to the content of the DHCP messages, the relay 24 ensures that all the DHCP messages exchanged between the server 22 and terminals 16 of the first subnet 12 pass through it.
Outre le champ GIADDR et l'option 54, le relais 24 est agencé pour modifier le contenu de l'option 82 intitulée « Relay Agent Information Option », par exemple, pour insérer dans le message DHCP émis entre le terminal 16 et le relais 22, un identifiant de la ligne du terminal 16, et ce quel que soit le sens de transmission du message.In addition to the GIADDR field and the option 54, the relay 24 is arranged to modify the contents of the option 82 entitled "Relay Agent Information Option", for example, to insert in the DHCP message sent between the terminal 16 and the relay 22 , an identifier of the line of the terminal 16, regardless of the direction of transmission of the message.
Cependant, le format de codage des données contenues dans le champ d'option 82 n'est pas standardisé et dépend en réalité du type de relais DHCP 24 modifiant ce contenu. Les trois relais DHCP implémentés dans les équipements Redback SE 800, Cisco 7200, et Juniper ERX précédemment cités présentent chacun les informations contenues dans l'option 82 de manière différente.However, the encoding format of the data contained in the option field 82 is not standardized and actually depends on the type of DHCP relay 24 modifying that content. The three DHCP relays implemented in the aforementioned Redback SE 800, Cisco 7200, and Juniper ERX devices each present the information contained in option 82 in a different manner.
Supposons par exemple que les informations de ligne du terminal 16 sont les suivantes :For example, assume that the line information of the terminal 16 is as follows:
- Slot de la carte ATM sur l'équipement : 1 ;- Slot of the ATM card on the equipment: 1;
- Port ATM : 0 ;- ATM port: 0;
- Chemin virtuel ATM : 37 ;- ATM virtual path: 37;
- Canal virtuel ATM : 170.- ATM virtual channel: 170.
Un relais DHCP de type Cisco 7200 encode cette information de ligne au format binaire dans une sous-option 2 de l'option 82 intitulée « remote-ID » de la façon suivante : o 520e 020c 0101 0000 0000 0000 2025 OOaa Un relais Redback SE 800 présente le contenu de l'option 82 de manière différente puisque ce contenu est codé au format ASCII dans la sous-option 1 intitulée « circuit-ID ». La présentation est la suivante :A Cisco 7200-type DHCP Relay encodes this bit-line information into a sub-option 2 of option 82 "remote-ID" as follows: o 520e 020c 0101 0000 0000 0000 2025 OOaa A Redback SE 800 relay presents the contents of option 82 in a different way since this content is coded in ASCII format in sub-option 1 entitled "circuit-ID". The presentation is as follows:
O 1/0 vpi-vci 37 170O 1/0 vpi-vci 37 170
Enfin, un relais de type Juniper ERX présente l'information de ligne au format ASCII dans la sous-option 1 de l'option 82 d'une manière encore différente :Finally, a Juniper ERX-type relay presents the ASCII line information in Option 82 sub-option 1 in a different way:
O ATM 1/0 vpi/vci 37 170O ATM 1/0 vpi / vci 37 170
II apparaît donc que chaque type de relais DHCP présente le contenu de l'option 82 de la trame DHCP d'une manière qui lui est propre.It therefore appears that each type of DHCP relay presents the content of the option 82 of the DHCP frame in a manner that is unique to it.
Or, le serveur DHCP 22 n'est pas adapté pour traiter ces différents formats de codage de données. . En effet, de par la norme, ces serveurs traitent le contenu de l'option 82 sans le modifier, ceci notamment afin de ne pas complexifier le traitement des requêtes effectué par ces serveurs et de ne pas dégrader les performances de ces serveurs en ce qui concerne les durées de traitement des requêtes. Pour résoudre ce problème, le système de communication 21 comprend un dispositif de communication 26, également appelé passerelle 26, pour le traitement des messages DHCP échangés entre le relais 24 et le serveur 22 du réseau 10.However, the DHCP server 22 is not suitable for processing these different data encoding formats. . Indeed, by the standard, these servers process the content of option 82 without modifying it, this in particular in order not to complicate the processing of requests made by these servers and not to degrade the performance of these servers in terms of concerns the processing times of requests. To solve this problem, the communication system 21 comprises a communication device 26, also called gateway 26, for the processing of the DHCP messages exchanged between the relay 24 and the server 22 of the network 10.
La passerelle 26 est intercalée entre les deux routeurs 20 faisant respectivement partie des sous-réseaux 12 et 14, et permettant d'assurer la transmission des messages DHCP depuis l'un des sous-réseaux vers l'autre. La passerelle 26 est distincte du relais DHCP 24 et du serveur DHCP 22 et comprend des moyens 28 pour modifier le contenu de l'option 82 d'un message échangé entre le relais 24 et le serveur 22. La passerelle 26 comprend en outre des moyens 30 pour transmettre le message modifié vers l'équipement DHCP destinataire du message.The gateway 26 is interposed between the two routers 20 respectively part of the subnets 12 and 14, and to ensure the transmission of DHCP messages from one of the subnets to the other. The gateway 26 is distinct from the DHCP relay 24 and the DHCP server 22 and comprises means 28 for modifying the content of the option 82 of a message exchanged between the relay 24 and the server 22. The gateway 26 further comprises means 30 to transmit the modified message to the receiving DHCP device of the message.
Les moyens 28 sont aptes à modifier le contenu de l'option 82 des messages DHCP échangés selon une présentation prédéterminée fonction de l'équipement destinataire du message DHCP. A cet effet, la passerelle 26 comprend des moyens 32 de stockage de la présentation prédéterminée de chaque équipement DHCP.Means 28 are capable of modifying the content of option 82 of the DHCP messages exchanged according to a predetermined presentation according to the equipment receiving the DHCP message. For this purpose, the gateway 26 comprises means 32 for storing the predetermined presentation of each DHCP equipment.
Les moyens 28 sont également aptes à modifier le contenu de l'option 54 et du champ GIADDR des messages.The means 28 are also able to modify the content of the option 54 and the GIADDR field of the messages.
La présentation prédéterminée associée à un relais DHCP 24 dépend du modèle du relais. Des exemples de présentations prédéterminées utilisées par les relais DHCP Redback SE 800, Cisco 7200, et Juniper ERX ont été décrits précédemment.The predetermined presentation associated with a DHCP relay 24 depends on the model of the relay. Examples of pre-defined presentations used by the DHCP Redback SE 800, Cisco 7200, and Juniper ERX relays have been previously described.
Pour simplifier le traitement des messages DHCP reçus par un serveur DHCP, on propose dans le présent mode de réalisation de l'invention que, pour tous les messages DHCP transmis à un serveur DHCP, les données contenues dans la sous-option 1 de l'option 82 soient codées au format ASCII et formatées de la manière suivante :To simplify the processing of DHCP messages received by a DHCP server, it is proposed in the present embodiment of the invention that for all messages DHCP sent to a DHCP server, the data contained in sub-option 1 of option 82 is coded in ASCII format and formatted as follows:
DSLAM-ldentifier!chassis!atm !slot/port :vpi.vciDSLAM-ldentifier! Chassis! Atm! Slot / port: vpi.vci
Dans ce mode de codage, les différents sous-champs sont séparés par des caractères prédéfinis ("!", 7", ":", ".", etc ..) et les sous-champs sont prédéfinis. Dans l'exemple, les sous-champs sont les suivants:In this coding mode, the different subfields are separated by predefined characters ("!", 7 ",": ",". ", Etc.) and the subfields are predefined. the subfields are:
- le champ "DSLAMJdentifier" représente l'identifiant de multiplexeur (DSLAM, Digital Subscriber Line Access Multiplexer)the field "DSLAMJdentifier" represents the DSLAM (Digital Subscriber Line Access Multiplexer)
- le champ "châssis" représente le numéro de châssis,- the "chassis" field represents the chassis number,
- le champ "atm" représente le type de ligne,the field "atm" represents the type of line,
- le champ "slot" représente l'identifiant de slot,the "slot" field represents the slot identifier,
- le champ "port" représente le numéro de port,the "port" field represents the port number,
- le champ "vpi" représente l'identifiant de chemin virtuel ("virtual path identifier"), etthe "vpi" field represents the virtual path identifier ("virtual path identifier"), and
- le champ "vci" représente l'identifiant de canal virtuel ("virtual channel identifier"). Alors, l'information de ligne de l'exemple précédemment décrit serait codée de la manière suivante :the "vci" field represents the virtual channel identifier ("virtual channel identifier"). Then, the line information of the previously described example would be coded as follows:
DSLAM-PARIS!12345!atm!1/0:37.170DSLAM-12345 PARIS atm 1/0!!! 37170
Grâce à l'utilisation de la passerelle de l'invention, il est possible d'utiliser plusieurs modèles de relais DHCP différents sur un même réseau sans qu'il faille rendre le serveur DHCP capable d'interpréter différentes présentations de l'option 82.By using the gateway of the invention, it is possible to use several different DHCP relay models on the same network without having to make the DHCP server capable of interpreting different presentations of the option 82.
Par exemple, si la passerelle intercepte deux messages en provenance respectivement d'un premier relais d'un premier type et d'un second relais d'un second type différent du premier type, elle modifie le contenu de l'option 82 des deux messages de sorte que les formats de présentation dudit contenu soient les mêmes.For example, if the gateway intercepts two messages from respectively a first relay of a first type and a second relay of a second type different from the first type, it modifies the contents of option 82 of the two messages. so that the presentation formats of said content are the same.
Bien entendu, lorsque la passerelle intercepte un message de réponse à un message incident, il modifie le message de réponse de manière à restaurer le format de présentation modifié lors de la modification du message incident. Ainsi, chaque équipement DHCP reçoit des messages dont le contenu est présenté de la façon qui leur est la plus simple à interpréter.Of course, when the gateway intercepts a response message to an incident message, it modifies the response message so as to restore the modified presentation format when modifying the incident message. Thus, each DHCP device receives messages whose content is presented in the way that is most easy for them to interpret.
Mise à part la fonction principale de modification du contenu de l'option 82 des messages DHCP échangés, la passerelle 26 peut avoir des fonctions supplémentaires.Apart from the main function of modifying the content of option 82 of the exchanged DHCP messages, gateway 26 may have additional functions.
La passerelle 26 peut filtrer les messages DHCP échangés en fonction de leur contenu ou de leur nombre. Par exemple, la passerelle 26 peut limiter le nombre de baux DHCP alloués par sous-réseau en refusant de transmettre les nouvelles demandes d'allocation de bail lorsque la limite de baux alloués est atteinte. La passerelle 26 peut également comptabiliser les messages DHCP échangés entre un terminal et le serveur DHCP dans le but d'identifier les terminaux dont le comportement est anormal, notamment ceux dont l'activité dépasse un seuil prédéterminé.The gateway 26 can filter the exchanged DHCP messages according to their content or their number. For example, the gateway 26 can limit the number of DHCP leases allocated per subnet by refusing to transmit the new lease allocation requests when the limit of allocated leases is reached. The gateway 26 can also count the DHCP messages exchanged between a terminal and the DHCP server in order to identify the terminals whose behavior is abnormal, especially those whose activity exceeds a predetermined threshold.
Pour que la passerelle 26 puisse modifier un maximum de messages DHCP échangés entre les relais 24 et le serveur 22, il est souhaitable que tous les messages échangés transitent par la passerelle 26. Pour cela, deux modes de réalisation sont envisageables.In order for the gateway 26 to be able to modify a maximum of DHCP messages exchanged between the relays 24 and the server 22, it is desirable for all the exchanged messages to pass through the gateway 26. For this, two embodiments can be envisaged.
Selon un premier mode de réalisation, dit mode « bridge », la passerelle 26 n'est ni la source, ni le destinataire du message et ne modifie pas les informations permettant le routage du message dans le réseau. En particulier, elle ne modifie ni le champ GIADDR, ni les adresses IP source et destination du message. La passerelle 26 ne modifie que le contenu de certaines options dont l'option 82. Pour que tous les messages transitent par la passerelle et puisque la passerelle n'est ni la source ni le destinataire des messages, il est nécessaire que les équipements de routage du réseau soient configurés pour que tous les messages échangés depuis l'un des sous-réseaux vers l'autre transitent par la passerelle. En cas de panne logicielle ou matérielle de la passerelle, il est intéressant de prévoir un mode dit de « bypass », ou de dérivation, dans lequel les messages traversent la passerelle sans être modifiés.According to a first embodiment, said "bridge" mode, the gateway 26 is neither the source nor the recipient of the message and does not modify the information for routing the message in the network. In particular, it modifies neither the GIADDR field nor the source and destination IP addresses of the message. The gateway 26 modifies only the contents of certain options including the option 82. In order for all the messages to pass through the gateway and since the gateway is neither the source nor the recipient of the messages, it is necessary that the routing equipments of the network are configured so that all the messages exchanged from one of the subnets to the other pass through the gateway. In the event of software or hardware failure of the gateway, it is advantageous to provide a so-called "bypass" or bypass mode, in which the messages cross the gateway without being modified.
Selon un second mode de réalisation, dit mode « proxy », la passerelle se fait passer pour un relais DHCP du point de vue du serveur DHCP et se fait passer pour un serveur DHCP du point de vue du relais DHCP. Dans ces conditions, chaque équipement DHCP croyant émettre un message DHCP en destination d'un autre équipement DHCP l'enverra en réalité à la passerelle par laquelle transiteront alors tous les messages DHCP.According to a second embodiment, called "proxy" mode, the gateway masquerades as a DHCP relay from the point of view of the DHCP server and pretends to be a DHCP server from the point of view of the DHCP relay. Under these conditions, each DHCP equipment believing to send a DHCP message to another DHCP device will actually send it to the gateway through which all DHCP messages will then pass.
Pour procéder ainsi, la passerelle modifie le champ GIADDR et le contenu de l'option 54 des messages échangés entre les équipements du réseau.To do this, the gateway modifies the GIADDR field and the content of option 54 messages exchanged between the network equipment.
Par exemple, lorsqu'un message d'un terminal client, qui a été relayé par un relais DHCP en direction d'un serveur DHCP, transite par la passerelle, elle modifie le message pour remplacer l'adresse IP du relais DHCP initialement contenue dans le champ GIADDR par sa propre adresse IP. Elle modifie également le contenu de l'option 82 conformément à l'invention.For example, when a message from a client terminal, which has been relayed by a DHCP relay to a DHCP server, passes through the gateway, it modifies the message to replace the IP address of the DHCP relay initially contained in the GIADDR field by its own IP address. It also modifies the content of option 82 according to the invention.
Puis, avant de transmettre ce message modifié au serveur DHCP, la passerelle stocke, dans ses moyens de stockage 32, le contenu initial du champ GIADDR ainsi que la présentation de l'option 82. Pour retrouver ces informations stockées, la passerelle les associe à un identifiant unique de la transaction DHCP, par exemple à l'identifiant Xid ou bien à l'adresse MAC du terminal client.Then, before transmitting this modified message to the DHCP server, the gateway stores, in its storage means 32, the initial content of the GIADDR field and the presentation of the option 82. To retrieve this stored information, the gateway associates with a unique identifier of the DHCP transaction, for example the identifier Xid or the MAC address of the client terminal.
A la réception du message, le serveur DHCP utilise l'adresse IP contenue dans le champ GIADDR pour répondre. Ainsi, il enverra son message de réponse à la passerelle.Upon receiving the message, the DHCP server uses the IP address contained in the GIADDR field to respond. Thus, it will send its response message to the gateway.
A la réception de ce message de réponse, la passerelle modifie de nouveau le contenu de l'option 82 pour qu'il soit présenté de la manière spécifiée par le relais destinataire du message. Pour cela, elle réutilise les informations stockées dans les moyens de stockage 32 et notamment le contenu initial du champ GIADDR qui correspond à l'adresse IP à laquelle transmettre le message de réponse modifié.Upon receipt of this response message, the gateway again modifies the contents of option 82 to be presented as specified by the relay to which the message is sent. For this, it reuses the information stored in the storage means 32 and in particular the initial content of the GIADDR field which corresponds to the IP address to which the modified response message is transmitted.
En outre, la passerelle modifie le message de réponse pour remplacer l'adresse IP du serveur DHCP initialement contenue dans l'option 54 du message par sa propre adresse IP. Cette adresse sera alors utilisée par le terminal client s'il souhaite communiquer directement avec le serveur DHCP.In addition, the gateway modifies the response message to replace the IP address of the DHCP server initially contained in option 54 of the message by its own IP address. This address will then be used by the client terminal if it wishes to communicate directly with the DHCP server.
Grâce à ce mode de réalisation, la passerelle est assurée que tous les messages DHCP la traversent, sans néanmoins que les équipements DHCP ne s'en aperçoivent.Thanks to this embodiment, the gateway is assured that all DHCP messages pass through it, without however the DHCP equipment noticing it.
On notera enfin que l'invention ne se limite pas aux modes de réalisation précédemment décrits. Finally, note that the invention is not limited to the embodiments described above.

Claims

REVENDICATIONS
1. Dispositif (26) de communication pour un réseau de télécommunication comprenant au moins un relais DHCP (24) et au moins un serveur DHCP (22), le dispositif étant apte à intercepter au moins un message DHCP en provenance d'un dit relais (24) et à destination d'un dit serveur (22), et comprenant des moyens (28) pour modifier un contenu d'un champ d'option d'un message intercepté de sorte que le format de présentation dudit contenu après modification soit indépendant du relais dont provient ledit message, et des moyens pour transmettre le message modifié au serveur destinataire (22).A communication device (26) for a telecommunications network comprising at least one DHCP relay (24) and at least one DHCP server (22), the device being able to intercept at least one DHCP message from a said relay (24) and to a said server (22), and comprising means (28) for modifying a content of an option field of an intercepted message so that the presentation format of said content after modification is relay independent from which said message comes, and means for transmitting the modified message to the destination server (22).
2. Dispositif de communication (26) selon la revendication 1 , dans lequel le message intercepté étant un message incident, le dispositif est apte à intercepter un message de réponse émis par un dit serveur (22) en réponse au message incident, ledit dispositif comprenant des moyens (28) pour modifier un contenu dudit champ d'option du message de réponse de sorte à restaurer le format de présentation utilisé dans le message incident avant modification du message incident.2. Communication device (26) according to claim 1, wherein the intercepted message being an incident message, the device is able to intercept a response message sent by a said server (22) in response to the incident message, said device comprising means (28) for modifying a content of said option field of the response message so as to restore the presentation format used in the incident message before modifying the incident message.
3. Dispositif de communication (26) selon la revendication 2, destiné à être inséré entre un premier (12) sous-réseau et second (14) sous-réseau du réseau de télécommunication, le dispositif étant agencé pour intercepter tous les messages émis depuis l'un des sous-réseau à destination d'un serveur DHCP de l'autre sous-réseau ainsi que toutes les réponses émises en retour par le serveur DHCP.3. Communication device (26) according to claim 2, intended to be inserted between a first (12) subnetwork and second (14) subnetwork of the telecommunications network, the device being arranged to intercept all the messages sent from one subnet to a DHCP server on the other subnet, and any replies sent back by the DHCP server.
4. Dispositif de communication (26) selon l'une quelconque des revendications précédentes, le dispositif comprenant des moyens (28) pour remplacer, dans un champ d'option d'un message intercepté, notamment dans le champ d'option 54, l'adresse IP du serveur DHCP (22) destinataire du message par l'adresse IP dudit dispositif (21 ).A communication device (26) according to any one of the preceding claims, the device comprising means (28) for replacing, in an option field of an intercepted message, in particular in the option field 54, the IP address of the DHCP server (22) receiving the message by the IP address of said device (21).
5. Dispositif de communication (26) selon l'une quelconque des revendications précédentes, le dispositif comprenant des moyens (28) pour remplacer, dans un champ d'option d'un message intercepté, notamment dans le champ d'option GIADDR, l'adresse IP du relais DHCP (24) émetteur du message par l'adresse IP dudit dispositif (21 ).5. Communication device (26) according to any one of the preceding claims, the device comprising means (28) for replacing, in an option field of an intercepted message, in particular in the GIADDR option field, IP address of the DHCP relay (24) transmitting the message by the IP address of said device (21).
6. Système de communication (21 ) comprenant au moins un relais DHCP (24), au moins un serveur DHCP (22) et un dispositif (26) selon l'une quelconque des revendications précédentes.A communication system (21) comprising at least one DHCP relay (24), at least one DHCP server (22) and a device (26) according to any one of the preceding claims.
7. Procédé de communication dans un réseau de télécommunication comprenant au moins un relais DHCP (24) et au moins un serveur DHCP (22), lors duquel un dispositif (26) dudit réseau met en œuvre les étapes suivantes : - interception d'au moins un message en provenance d'un dit relais et à destination d'un dit serveur,7. A communication method in a telecommunication network comprising at least one DHCP relay (24) and at least one DHCP server (22), in which a device (26) of said network implements the following steps: - interception of at least one message from a said relay and to a said server,
- modification d'un contenu d'un champ d'option d'un message intercepté, de sorte que le format de présentation dudit contenu après modification soit indépendant du relais dont provient ledit message, et transmission du message modifié au serveur ou au relais destinataire.modifying a content of an option field of an intercepted message, so that the presentation format of said content after modification is independent of the relay from which said message originates, and transmission of the modified message to the destination server or relay .
8. Procédé de communication (26) selon la revendication 7, dans lequel le message intercepté étant un message incident, le dispositif met en œuvre les étapes suivantes,The communication method (26) of claim 7, wherein the intercepted message is an incident message, the device implements the following steps,
- interception d'un message de réponse émis par un dit serveur (22) en réponse au message incident,interception of a response message sent by a said server (22) in response to the incident message,
- modification d'un contenu dudit champ d'option du message de réponse de sorte à restaurer le format de présentation utilisé dans le message incident avant modification du message incident.modifying a content of said option field of the response message so as to restore the presentation format used in the incident message before modifying the incident message.
9. Procédé de communication selon la revendication 7 ou 8, comprenant une étape au cours de laquelle le dispositif (26) modifie le contenu d'un champ du message intercepté, notamment le contenu du champ GIADDR, en remplaçant l'adresse IP du serveur DHCP (22) destinataire du message par l'adresse IP dudit dispositif (21 ).9. The communication method as claimed in claim 7, comprising a step during which the device modifies the content of a field of the intercepted message, in particular the content of the GIADDR field, by replacing the IP address of the server. DHCP (22) recipient of the message by the IP address of said device (21).
10. Procédé de communication selon l'une quelconque des revendications 7 à 9, dans lequel, le procédé comprend une étape au cours de laquelle le dispositif (26) modifie le message intercepté, notamment une option 54 du message, en remplaçant l'adresse IP du relais DHCP (24) émetteur du message par l'adresse IP dudit dispositif (21 ).The communication method according to any one of claims 7 to 9, wherein the method comprises a step in which the device (26) modifies the intercepted message, including an option 54 of the message, by replacing the address IP of the DHCP relay (24) transmitting the message by the IP address of said device (21).
1 1. Signal véhiculant un message en provenance d'un relais DHCP (24) et destiné à être transmis à un serveur DHCP (22), le format de présentation d'un contenu d'un champ d'option dudit message étant indépendant du relais dont provient ledit message.1 1. Signal carrying a message from a DHCP relay (24) and intended to be transmitted to a DHCP server (22), the presentation format of a content of an option field of said message being independent of relay from which said message.
12. Programme d'ordinateur apte à commander la mise en oeuvre des étapes d'un procédé selon l'une quelconque des revendications 7 à 10.Computer program capable of controlling the implementation of the steps of a method according to any one of claims 7 to 10.
13. Support d'enregistrement de données comprenant un programme selon la revendication précédente.13. Data recording medium comprising a program according to the preceding claim.
14. Mise à disposition d'un programme en vue de son téléchargement, le programme étant conforme à la revendication 12. 14. Provision of a program for downloading, the program being in accordance with claim 12.
PCT/FR2007/052233 2006-10-25 2007-10-23 Communication method and system relating to the dhcp protocol WO2008050061A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0654517 2006-10-25
FR0654517 2006-10-25

Publications (2)

Publication Number Publication Date
WO2008050061A2 true WO2008050061A2 (en) 2008-05-02
WO2008050061A3 WO2008050061A3 (en) 2008-07-10

Family

ID=38013045

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2007/052233 WO2008050061A2 (en) 2006-10-25 2007-10-23 Communication method and system relating to the dhcp protocol

Country Status (1)

Country Link
WO (1) WO2008050061A2 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2451125A1 (en) * 2009-07-28 2012-05-09 ZTE Corporation Method and system for realizing network topology discovery
US9148401B2 (en) 2009-06-11 2015-09-29 Huawei Technologies Co., Ltd. Method for obtaining IP address of DHCPV6 server, DHCPV6 server, and DHCPV6 communication system
CN108600408A (en) * 2018-03-30 2018-09-28 新华三技术有限公司 The method and device of request address

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6876667B1 (en) * 2001-04-30 2005-04-05 Cisco Technology, Inc. Method and apparatus for establishing class of service configuration in a network device of a broadband cable network using dynamic host configuration protocol

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6876667B1 (en) * 2001-04-30 2005-04-05 Cisco Technology, Inc. Method and apparatus for establishing class of service configuration in a network device of a broadband cable network using dynamic host configuration protocol

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
ALCATEL: "Enhanced Subscriber Management for Triple Play - APPLYING PROGRAMMABLE SUBSCRIBER CONFIGURATION POLICIES" APPLICATION NOTE, [Online] 10 novembre 2006 (2006-11-10), pages 1-9, XP002479539 Extrait de l'Internet: URL:http://www1.alcatel-lucent.com/doctypes/opgapplicationbrochure/pdf/PSCP_an.pdf> [extrait le 2008-05-07] *
JOSHI P KURAPATI INFOSYS TECHNOLOGIES LTD B: "Extension of DHCP Leasequery in Bridging/Switching networks" IETF STANDARD-WORKING-DRAFT, INTERNET ENGINEERING TASK FORCE, IETF, CH, no. 1, 4 août 2006 (2006-08-04), XP015047079 ISSN: 0000-0004 *
PATRICK MOTOROLA BCS M: "DHCP Relay Agent Information Option" IETF STANDARD, INTERNET ENGINEERING TASK FORCE, IETF, CH, janvier 2001 (2001-01), XP015008829 ISSN: 0000-0003 cité dans la demande *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9148401B2 (en) 2009-06-11 2015-09-29 Huawei Technologies Co., Ltd. Method for obtaining IP address of DHCPV6 server, DHCPV6 server, and DHCPV6 communication system
EP2451125A1 (en) * 2009-07-28 2012-05-09 ZTE Corporation Method and system for realizing network topology discovery
EP2451125A4 (en) * 2009-07-28 2014-07-02 Zte Corp Method and system for realizing network topology discovery
CN108600408A (en) * 2018-03-30 2018-09-28 新华三技术有限公司 The method and device of request address

Also Published As

Publication number Publication date
WO2008050061A3 (en) 2008-07-10

Similar Documents

Publication Publication Date Title
EP3476095B1 (en) Method for multi-path udp communication method between two terminals
EP3476096B1 (en) Udp communication method between two terminals via multiple paths
EP1494391B1 (en) Automatic configuration of a DHCP-compatible access router, for specific handling of the IP-dataflows from a client terminal
EP3646557A1 (en) Method of quic communication via multiple paths
EP3284224B1 (en) Method for emulating a multipath connection
EP3340489B1 (en) System and method for data transmission in a satellite system
EP2294798B1 (en) Method and related device for routing a data packet in a network
EP3387862A1 (en) Device and method for wireless communication in an ip network
FR3100408A1 (en) PROCESS FOR CONFIGURING A WIRELESS COMMUNICATION COVERAGE EXTENSION SYSTEM AND A WIRELESS COMMUNICATION COVERAGE EXTENSION SYSTEM IMPLEMENTING SUCH PROCESS
US20040032876A1 (en) Selection of transmission channels
WO2008050061A2 (en) Communication method and system relating to the dhcp protocol
US20090024739A1 (en) Endpoint discriminator in network transport protocol startup packets
Ferreira et al. A transport layer abstraction for peer-to-peer networks
EP3526956B1 (en) Method for negotiating a quality of service offered by a gateway to terminals
EP3123673A1 (en) Method for routing data through an internet access box
WO2015197978A1 (en) Method of protecting a router against attacks
EP3747238B1 (en) Aggregating a plurality of radio connections in a wireless network
FR3094590A1 (en) Gateway and method for differentiating traffic emitted by the gateway, device and method for managing traffic.
EP2890026B1 (en) Communication method implemented by a relay node
EP1517478B1 (en) Method and system of controlling a network access point and recording media, access point and control device for carrying out said method
CN109510801B (en) Explicit forward proxy and SSL interception integrated system and operation method thereof
WO2020120850A1 (en) Terminal that can be connected simultaneously to multiple access networks, method for differentiating traffic emitted by the terminal, device and method for managing the traffic
FR3124681A1 (en) Method of processing a connection between user equipment and remote equipment in a communication network, control method, devices, satellite, earth station, system and corresponding computer programs.
EP2439901A1 (en) Processing method in a module of an access device suitable for connecting a remote network to a plurality of local area networks, associated module and computer program
WO2008031967A2 (en) Method of supervising a session for accessing a service set up by a client terminal by means of a dynamic configuration protocol

Legal Events

Date Code Title Description
NENP Non-entry into the national phase

Ref country code: DE

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07858652

Country of ref document: EP

Kind code of ref document: A2

122 Ep: pct application non-entry in european phase

Ref document number: 07858652

Country of ref document: EP

Kind code of ref document: A2