Background technology
The present stage of network equipment continual renovation and network technology develop rapidly, utilizing coaxial optical fiber hybrid network (HFC) access technology is present popular a kind of access technology.Operation provides the consumer wideband access service based on the data, services interface specification (DOCSIS) or the European DOCSIS standard (EuroDOCSIS) of cable on hfc plant.On hfc plant, can use link-layer technologies to carry out the access authentication of user mandate.
Cable Modem Terminal System (CMTS) is the equipment between hfc plant and the metropolitan area network.Present access authentication of user mandate is on CMTS peer-peer protocol (PPPoE) message based on Ethernet to be terminated, and the access authentication accounting mandate, transmits by the upper strata router that directly is connected on CMTS then.Described termination is to extract in the PPPoE message after the Useful Information, useful information is sent to authentication and accounting mandate (AAA) locates, and abandons this message then.The PPPoE message terminates on CMTS, so CMTS is considered as the server of this message; After the authentication and accounting mandate, transmit by the upper strata router that is connected on CMTS, so CMTS also bears the function of route.
For above-mentioned prior art, following shortcoming is arranged:
1) CMTS is not the server apparatus of specialty, and the access authentication accounting function of Broadband Remote Access Server (B-RAS) is very powerful, and the server capability of CMTS and access authentication accounting function can not show a candle to B-RAS, can have certain defective on these functions;
2) customer group more among a small circle has a CMTS, for a customer group in a big way, several CMTS must be arranged, and therefore a CMTS can not improve the complexity of operation maintenance to all user's unified managements;
3) CMTS should bear the function of route again as two layers of bridging device, also wants the role of reception server, so the performance of CMTS is professional inadequately, and the equipment complexity may influence wherein some performance.
In sum, exist the most important reason of these shortcomings to be exactly, in the access authentication accounting mandate, the PPPoE message is to terminate on CMTS, so CMTS bears a lot of functions, the performance that influence is whole.
Summary of the invention
In view of this, the object of the present invention is to provide a kind of message transmitting method on CMTS,,, and on the access server of upper strata, finish the access authentication accounting mandate message transmission on CMTS, only to do simple the processing.
For achieving the above object, the invention provides a kind of message transmitting method on Cable Modem Terminal System, it is characterized in that this method comprises:
A) the up outgoing interface that configuration message is transmitted on Cable Modem Terminal System;
B) Cable Modem Terminal System is transmitted uplink message, according to the up outgoing interface that is disposed among the step a, uplink message is forwarded to this up outgoing interface, and the top service device is received this uplink message and finished the access authentication accounting mandate.
Wherein, the described forwarding uplink message of step b further comprises: from uplink message, extract the MAC Address and the descending outgoing interface of this uplink message institute respective user, deposit in and transmit;
Step b further comprises: Cable Modem Terminal System converting downlink message, according to the target MAC (Media Access Control) address in the downlink message, search in described the transmitting descending outgoing interface that should the user,, then downlink message is forwarded to corresponding descending outgoing interface if find; If search less than, then downlink message is forwarded to total interface with broadcast mode.
Wherein, described message is the peer-peer protocol message based on Ethernet in the middle of the IPv4 network.
Wherein, described message is the peer-peer protocol message based on Ethernet in the middle of the IPv6 network.
Wherein, the described method of step a comprises: according to the type difference of message, dispose different up outgoing interfaces;
The method that the described uplink message of step b is forwarded to this up outgoing interface comprises: Cable Modem Terminal System is judged the type of uplink message, and uplink message is forwarded to corresponding up outgoing interface.
Wherein, the described method of step a further comprises: at the backup interface of Cable Modem Terminal System collocating uplink outgoing interface;
The method of the described forwarding uplink message of step b further comprises: judge the up outgoing interface fault that is disposed, uplink message is forwarded to backup interface.
Wherein, the method for the backup interface of the described collocating uplink outgoing interface of step a comprises: according to the type difference of message, dispose different backup interfaces;
The described method that uplink message is forwarded to backup interface of step b comprises: Cable Modem Terminal System is judged the type of uplink message, and uplink message is forwarded to corresponding backup interface.
Wherein, according to the networking situation, when Cable Modem Terminal System need be represented with different VLANs, the method described in the step a further comprised: Cable Modem Terminal System configuring virtual LAN sign;
Method described in the step b further comprises: uplink message is added to described VLAN ID in this message before transmitting; Downlink message removes described VLAN ID before transmitting.
Wherein, the method for extracting described in the step b further comprises: from uplink message, extract the cable modem sign of this uplink message institute respective user;
The method that depositing in described in the step b transmitted comprises: MAC Address, descending outgoing interface and cable modem sign are deposited in correspondingly transmit;
The retransmission method of the downlink message described in the step b comprises: according to the target MAC (Media Access Control) address in the downlink message, from transmit, search the descending outgoing interface and the cable modem sign of this user's correspondence, if find, then obtain this user's log-on message, according to this log-on message downlink message is forwarded to corresponding descending outgoing interface then according to the cable modem sign; If search less than, then downlink message is transmitted to total interface with broadcast mode.
Wherein, the described method of transmitting that deposits in of step b comprises:
When the uplink message of user's transmission passes through this Cable Modem Terminal System, judge whether the descending outgoing interface of respective user changes, if do not change, descending outgoing interface need not deposit this again in and transmit; If change, descending outgoing interface deposits this again in and transmits, and covers original record.
Among the present invention, on CMTS, message is only made simple process, this message that has been actually transparent transmission, message does not terminate on CMTS, and therefore, the burden of CMTS alleviates.This message is transparent in the powerful access server of upper-layer functionality, terminates on this server, and finishes the access authentication accounting mandate, therefore provide more perfect access authentication accounting authorization service to the user, and by this server, can the unified management user, improve the performance of whole system.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing, lift specific embodiment, the present invention is further detailed explanation.
Shown in Figure 1, CMTS is the bridging device between hfc plant and the metropolitan area network, and the CMTS upper strata meets B-RAS, connects metropolitan area network by B-RAS.Among the present invention, the message that is used for the access authentication accounting mandate that transmits on CMTS is two layer message (a data link layer message), specifically be the PPPoE message, this PPPoE message can be the PPPoE message in the middle of the IPv4 network, also can be the PPPoE message in the middle of the IPv6 network.Be presented in CMTS below in detail and go up processing PPPoE method of message, to finish the access authentication accounting mandate preferably.
The general thought of transmitting the PPPoE message on CMTS is: at first, and the up outgoing interface that configuration PPPoE message is transmitted on CMTS; When transmitting up PPPoE message, from up PPPoE message, extract the information of this up PPPoE message institute respective user, deposit in and transmit, then up PPPoE message is forwarded to the up outgoing interface that is disposed, by this PPPoE message of termination among the access server B-RAS of upper strata, finish the access authentication accounting mandate; In the time of converting downlink PPPoE message, according to information in the descending PPPoE message, search described transmitting, will be forwarded to corresponding interface to descending PPPoE message according to lookup result then.
Figure 2 shows that the method for configuration PPPoE message transmissions on CMTS is described in detail as follows:
Step 201: the up outgoing interface of configuration PPPoE message on CMTS, its interface is 1/8/1;
Step 202: dispose the backup interface of above-mentioned up outgoing interface on CMTS again, its interface is 1/8/2;
Step 203: according to the networking situation, under the situation that CMTS need show with the different virtual LAN vlan table, CMTS configuring virtual LAN sign (VLAN ID), this sign can be expressed as 112; Under the situation that CMTS need not show with different vlan tables, CMTS does not dispose VLAN ID, and this sign can be with 0 expression.
User side CM is according to the DOCSIS/EuroDOCSIS standard, on the CMTS under this user, register, be that CM reaches the standard grade, make the user be linked in the hfc plant, the user is assigned to an IP address, also is assigned to the required time slot of physical connection, afterwards the user can with network service, be that the user can send message to network side, also can receive the message of network side.Below introduce in detail configuring condition according to above-mentioned CMTS, on CMTS, transmit the PPPoE method of message.
Figure 3 shows that the process of handling uplink message at CMTS, specifically describe as follows:
Step 301: the user arrives CMTS to the uplink message that network side sends;
Step 302:CMTS judges the transmission method whether disposed the PPPoE message in this CMTS, when judging the transmission method that has disposed the PPPoE message, and execution in step 303; When judging when not disposing execution in step 304;
Step 303:CMTS judges further whether this message is the PPPoE message, if then execution in step 305; If not, then execution in step 304;
Step 304: adopt the prior art scheme, handle and transmit this message;
Step 305:, handle and transmit this PPPoE message to corresponding up outgoing interface according to the configuration information of CMTS;
Step 306: this PPPoE message of termination in B-RAS, and finish the access authentication accounting mandate.
According to above-mentioned steps, CMTS carries out the access authentication accounting mandate to up PPPoE message transmission to the B-RAS of upper strata, the shortcoming that therefore can avoid in the prior art being set forth.
Converting downlink PPPoE message in step 305, needs that at first this up PPPoE message is done some and handles for convenience, then up PPPoE message is forwarded to corresponding up outgoing interface, is described in detail as follows:
The information of this PPPoE message institute respective user of study from up PPPoE message: the descending outgoing interface of this PPPoE user's MAC Address, this user's correspondence, the CM of this user's correspondence sign etc., then these user profile are deposited in correspondingly and transmit, as shown in table 1, make and can inquire about the other information of this user according to user's MAC address.When a user is connected with network by CMTS for the first time, need registered user's information, deposit in and transmit; When this user is connected with network by this CMTS once more, do not need registered user's information again, unless this user's user profile is upgraded, at this moment need to set up new registration procedure, cover original register information.
This user's MAC address |
The descending outgoing interface of this user's correspondence |
The CM sign of this user's correspondence |
0002-0e1f-00c3 |
1/1/1 |
112 |
...... |
...... |
...... |
00fc-ffdb-10100 |
1/2/1 |
7 |
Table 1
Before up PPPoE message is transmitted, also to judge the VLAN ID that whether disposes on the CMTS described in step 203, if having, then on up PPPoE message, add VLAN ID; If no, be left intact.
The up outgoing interface that up PPPoE message transmissions is disposed to the step 201 then, 1/8/1; If judge this up outgoing interface fault or congested is arranged, the backup interface that up PPPoE message transmissions is disposed to the step 202 then, 1/8/2.
Figure 4 shows that the process of handling downlink message at CMTS, specifically describe as follows:
Step 401: network side sends downlink message to the user, and this message arrives CMTS by B-RAS;
Step 402:CMTS judges the transmission method whether disposed the PPPoE message in this CMTS, when judging the transmission method that has disposed the PPPoE message, and execution in step 403; When judging when not disposing execution in step 405;
Step 403:CMTS judges further whether this message is the PPPoE message, if then execution in step 404; If not, then execution in step 405;
Step 404:CMTS judges whether this PPPoE message arrives this CMTS from the up outgoing interface that is disposed, if then execution in step 406; If not, then execution in step 405;
Step 405: adopt the prior art scheme, handle and transmit this message;
Step 406: the information that obtains when transmitting according to up PPPoE message is transmitted this PPPoE message, specifically describes as follows:
In the descending PPPoE message VLAN ID is arranged, then remove the VLAN ID in the descending PPPoE message.
From descending PPPoE message, obtain target MAC (Media Access Control) address, be 0002-0e1f-00c3,, search transmit (table 1) described in the up PPPoE message transmissions, search the descending outgoing interface and the CM sign of this target MAC (Media Access Control) address respective user according to this target MAC (Media Access Control) address.
If finding out descending outgoing interface that should the user from transmit is 1/1/1, CM is designated 112, CMTS obtains the log-on message of corresponding CM according to CM sign 112, according to this log-on message descending PPPoE message is forwarded to the descending outgoing interface 1/1/1 that obtains of inquiring about then; If search to come out user profile, CMTS transmits to total interface the PPPoE message with broadcast mode.
In sum, CMTS has carried out the transparent transmission processing to the PPPoE message, and promptly the PPPoE message does not terminate on CMTS, but this message of transparent transmission terminates in the powerful server of upper-layer functionality, and does the access authentication accounting mandate.Therefore, provide perfectly access authentication accounting mandated program by server, and the burden of CMTS alleviates greatly, and the user has improved the performance of whole network also by unified management.
The above only is preferred embodiment of the present invention, and is in order to restriction the present invention, within the spirit and principles in the present invention not all, any modification of being done, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.