CN100486187C - A test method and system for L2TP tunnel specification - Google Patents
A test method and system for L2TP tunnel specification Download PDFInfo
- Publication number
- CN100486187C CN100486187C CNB2006101722424A CN200610172242A CN100486187C CN 100486187 C CN100486187 C CN 100486187C CN B2006101722424 A CNB2006101722424 A CN B2006101722424A CN 200610172242 A CN200610172242 A CN 200610172242A CN 100486187 C CN100486187 C CN 100486187C
- Authority
- CN
- China
- Prior art keywords
- tunnel
- l2tp
- message
- user
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The provided test method forL2TP specification standard in digital communication test field comprises: setting an analog server, configuring port parameters, starting the assist thread for monitoring message, and returning user certification request as certified message to the target device; allowing the certified user on line and building L2TP channel, accounting and obtaining the maximal channel specification. It also provides a test system with corresponding modules for former steps. This invention can be used for target device as LAC or LNS, and reduces test cost.
Description
Technical field
The present invention relates to the data communications test field, particularly a kind of method of testing of L2TP Tunnel specification and system.
Background technology
The maximum tunnel specification of L2TP (Layer 2 Tunnel Protocol, Layer 2 Tunneling Protocol) is the important performance indexes of tested system (SUT, System Under Test).In carrying out the SUT system of L2TP test, L2TP Access Concentrator (LAC, L2TP Access Concentrator) and two tested equipment of L2TP Network Server (LNS, L2TP Network Server) (DUT, Device Under Test) are arranged.
L2TP Access Concentrator is depended in the foundation in L2TP Network Server tunnel, generally speaking, the l2tp session of L2TP Access Concentrator is based upon in the same tunnel, set up the situation in a plurality of tunnels for needs, prior art provides a kind of and has issued the method that Tunnel-Assignment-ID (tunneling operation sign) realizes by RADIUS (Remote Authentication Dial-In User Service, the far-end dial-in customer service for checking credentials) server.
Usually the tunnel specification of the tested equipment support of each producer is all more than 10,000, in order to measure the maximum tunnel specification of tested equipment, traditional method is exactly to dispose different Tunnel-Assignment-ID for each user on radius server, this method wastes time and energy, and does not possess operability.
The method of the maximum tunnel of another kind of testing equipment specification is to adopt the tester of specialised hardware system, this quasi-instrument is made of the hardware system of special exploitation usually, its internal operation be special-purpose embedded OS, they are operated by the Control Software of moving on general-purpose platforms such as PC, work station.
Maximum tunnel specification when existing tester can test out tested equipment as L2TP Network Server.Veneer simulation LAC (PPPoL2TP)-OutGoing Node summary-is followed in the setting of its software〉order of Node Setup, each node is set in node is provided with for what tunnel number.Because the log-on count of the quantity of tester and tested equipment is all restricted, so the log-on count in each tunnel is traditionally arranged to be 1.
Yet, maximum tunnel specification when the method for testing by above-mentioned tester only can test out tested equipment as L2TP Network Server, when tested equipment during as L2TP Access Concentrator tester be merely able to as dialer, can not test out the maximum tunnel specification of L2TP Access Concentrator.
In addition, existing tester quotation is expensive, is not suitable for applying.
Summary of the invention
Based on above-mentioned analysis, the embodiment of the invention provides a kind of method of testing of L2TP Tunnel specification, comprising:
Emulating server is set;
After opening emulating server, carry out the port parameter configuration, open the message of institute's configured port then and intercept worker thread;
Following steps are carried out in circulation, and after the user can not reach the standard grade, statistics tunnel specifications parameter drew the maximum tunnel specification that described tested equipment is supported according to described tunnel specifications parameter;
The user sends authentication request to tested equipment, after described tested equipment is received described authentication request, sends authentication request packet to described emulating server;
After described emulating server listened to described authentication request packet, return authentication was given described tested equipment by message, and authentication is carried the L2TP Tunnel type by message;
Described tested equipment receives that described authentication by behind the message, allows described user to reach the standard grade, and is the newly-built L2TP Tunnel of described user.
The embodiment of the invention also provides a kind of test macro of L2TP Tunnel specification, and described system comprises:
The authentication request sending module is used to send authentication request;
The message sending module after being used to receive the authentication request of described authentication request sending module transmission, sends authentication request packet to the message response module;
The message response module, after being used to listen to the authentication request packet of described message sending module transmission, return authentication is set up module by message to the tunnel, and described authentication is carried the L2TP Tunnel type by message;
Module is set up in the tunnel, and the authentication that is used to receive described message response module transmission allows the user to reach the standard grade by behind the message, is the newly-built L2TP Tunnel of described user, and subscriber dialing of every increase with regard to a newly-built tunnel, can not be reached the standard grade up to the user again;
Statistical module is used for when constantly increasing subscriber dialing, and after the user can not reach the standard grade, statistics tunnel specifications parameter drew the maximum tunnel specification that tested equipment is supported.
The embodiment of the invention can realize emulating server on all-purpose computer, can issue the Tunnel-Assignment-ID attribute that increases progressively in batches, each user (l2tp session) all builds a tunnel, when testing out tested equipment as L2TP Access Concentrator and L2TP Network Server the maximum tunnel specification that can support; The embodiment of the invention can reduce exploitation, the testing cost of broadband access equipment, realizes the pressure test to tested broadband access equipment preferably.
Description of drawings
Fig. 1 is the method flow diagram of the L2TP Tunnel specification test that provides of the embodiment of the invention 1;
Fig. 2 is the interface schematic diagram that the L2TP that provides of the embodiment of the invention 1-Radius analog nature is provided with;
Fig. 3 is the test macro schematic diagram of the L2TP Tunnel specification that provides of the embodiment of the invention 2.
Embodiment
The invention will be further described below in conjunction with the drawings and specific embodiments, but the present invention is not limited to following examples.
The embodiment of the invention provides a kind of method of testing and system of L2TP Tunnel specification, by on computers or in other Embedded system or the equipment emulating server being set, the maximum tunnel specification of tested equipment is tested.
Emulating server comprises all aaa servers.As: RADIUS, TACACS (Terminal AccessController Access Control System, terminal access controller access control system) etc.
Embodiment 1
Present embodiment is selected the simulation radius server is set on computers, and the cost of She Zhiing is lower on computers.
Referring to Fig. 1, a kind of method of testing of L2TP Tunnel specification is provided, a simulation radius server is set on computers, and carries out following steps:
Step 101: after opening the simulation radius server, carry out parameter configuration, promptly dispose information such as authentication port, accounting port.Wherein, authentication port is used for receiving authentication request packet, is essential option, and accounting port is used for receiving charging message, is option.
Step 102: after parameter configuration is finished, open message and intercept worker thread, it is corresponding with the port of configuration in the step 101 that this message is intercepted worker thread, promptly intercepts the port that is disposed and whether receive message.
Step 103: the user gives tested equipment dialing, sends authentication request by dialing.The user here can be a Virtual User.In order to test the maximum tunnel specification of tested equipment, can use the analog dialup device to dial to tested equipment, the analog dialup device can dial in bulk, and each dialing is equivalent to a user, also can be described as a l2tp session.
Step 104: after tested equipment is received authentication request, send authentication request packet to the simulation radius server.
Step 105: after the simulation radius server listens to authentication request packet, the authentication request packet received of record also writes formation with it, return ACK (authentication is passed through) message then and give tested equipment, it is L2TP that this ACK message carries Tunnel-Type, be used to test out the maximum tunnel specification that tested equipment is supported, this ACK message also can carry Tunnel-Assignment-ID simultaneously, this Tunnel-Assignment-ID is used to identify the L2TP Tunnel of setting up later, also can carry simultaneously the Tunnel-Assignment-ID attribute that increases progressively and other some user configured optional attributes.When not carrying the Tunnel-Assignment-ID attribute that increases progressively, preferably allow the Tunnel-Assignment-ID attribute have uniqueness, with the tunnel number of utilizing statistics to set up.
Step 106: tested equipment allows this user to reach the standard grade after receiving ACK (authentication is passed through) message, is the newly-built L2TP Tunnel of this user simultaneously.
Step 107: by said method, subscriber dialing of the every increase of tested equipment, with regard to a newly-built tunnel, when the user can not reach the standard grade again, test was finished.At this moment can be by the statistics user number of reaching the standard grade, or the number of statistics l2tp session, or add up the tunnel number of setting up on the tested equipment, draw the maximum tunnel specification that tested equipment is supported.Add up the tunnel number of setting up on the tested equipment and can adopt the mode of number of statistics Tunnel-Assignment-ID, if selected the Tunnel-Assignment-ID that increases progressively, then can directly draw the maximum tunnel specification of tested equipment according to the Tunnel-Assignment-ID of maximum.
Step 108: test out tested equipment support after the maximum tunnel specification, discharge the port of selecting, authentication authorization and accounting port and accounting port.
By said method, tested equipment both can be L2TP Access Concentrator, also can be L2TP Network Server.
Referring to Fig. 2, be the interface schematic diagram of L2TP-Radius analog nature setting.Analog nature has:
The open port of RADIUS Server (server) has:
Authentication port and accounting port, wherein accounting port is an option.
Tunnel-Assignment-ID (82) is provided with:
Input length is 3 the character string and the length of input of character string, and wherein length is the type that 3 character string is used to identify the tunnel, and present embodiment is TAI, and the length of the character string of input is used to show what characters the TAI back has.The length of the character string of present embodiment input is 10, comprises that also optionally increases progressively an AssignmentID (job identification).For example, according to the setting at this interface, the Tunnel-Assignment-ID that then sets up first tunnel is TAI000 000 000 1, and the Tunnel-Assignment-ID in second tunnel will be TAI000 000 000 2, and the rest may be inferred.
Other attribute comprises:
Share the field that is used to encrypt between key Shared-Key:RADIUS server and the access server;
Tunnel client end end points Tunnel-Client-Endpoint: LAC connects the address in order to sign;
Tunnel service end end points Tunnel-Server-Endpoint: LNS connects the address in order to sign.
Also comprise two options: record receives that message and record send message.If choose these two, the simulation radius server will write down the authentication request packet received in formation and message is passed through in the authentication of transmission.Otherwise, do not carry out record.
Embodiment 2
Referring to Fig. 3, the embodiment of the invention also provides a kind of test macro of L2TP Tunnel specification, comprising:
The authentication request sending module is used to send authentication request;
The message sending module after being used to receive the authentication request of authentication request sending module transmission, sends authentication request packet to the message response module;
The message response module, after being used to listen to the authentication request packet of message sending module transmission, return authentication is set up module by message to the tunnel, and authentication is carried the L2TP Tunnel type by message;
Module is set up in the tunnel, and the authentication that is used to receive the transmission of message response module allows the user to reach the standard grade by behind the message, is the newly-built L2TP Tunnel of user;
Statistical module after being used for test and finishing, is added up, and draws the maximum tunnel specification that tested equipment is supported.
Wherein, statistical module is added up, and comprising:
Add up the user's that reaches the standard grade number;
Perhaps,
The number of statistics l2tp session;
Perhaps,
The number of the L2TP Tunnel that statistics is set up.
Authentication is also carried the tunneling operation sign by message, and this tunneling operation sign is used to identify the tunnel of foundation.
Above-described embodiment is a more preferably embodiment of the present invention, and common variation that those skilled in the art carries out in the technical solution of the present invention scope and replacement all should be included in protection scope of the present invention.
Claims (10)
1. the method for testing of a L2TP Tunnel specification is characterized in that, comprising:
Emulating server is set;
After opening emulating server, carry out the port parameter configuration, open the message of institute's configured port then and intercept worker thread;
Following steps are carried out in circulation, and after the user can not reach the standard grade, statistics tunnel specifications parameter drew the maximum tunnel specification that tested equipment is supported according to described tunnel specifications parameter;
The user sends authentication request to tested equipment, after described tested equipment is received described authentication request, sends authentication request packet to described emulating server;
After described emulating server listened to described authentication request packet, return authentication was given described tested equipment by message, and described authentication is carried the L2TP Tunnel type by message;
Described tested equipment receives that described authentication by behind the message, allows described user to reach the standard grade, and is the newly-built L2TP Tunnel of described user.
2. the method for testing of L2TP Tunnel specification as claimed in claim 1 is characterized in that, described tunnel specifications parameter comprises:
Add up the user's that reaches the standard grade number;
Perhaps,
The number of statistics l2tp session;
Perhaps,
The number of the L2TP Tunnel that statistics is set up.
3. the method for testing of L2TP Tunnel specification as claimed in claim 2 is characterized in that, described authentication is carried the tunneling operation sign by message, and the number of the L2TP Tunnel that described statistics is set up draws by adding up described tunneling operation sign.
4. the method for testing of L2TP Tunnel specification as claimed in claim 3 is characterized in that, described tunneling operation sign has the attribute of increasing progressively.
5. as the method for testing of each described L2TP Tunnel specification of claim 1 to 4, it is characterized in that described emulating server with the form of software setting on computers.
6. as the method for testing of each described L2TP Tunnel specification of claim 1 to 4, it is characterized in that described port is an authentication port, or authentication port and accounting port.
7. as the method for testing of each described L2TP Tunnel specification of claim 1 to 4, it is characterized in that described user is the user by the simulation of analog dialup device.
8. as the method for testing of each described L2TP Tunnel specification of claim 1 to 4, it is characterized in that described method also comprises:
Discharge described port.
9. the test macro of a L2TP Tunnel specification is characterized in that, described system comprises:
The authentication request sending module is used to send authentication request;
The message sending module after being used to receive the authentication request of described authentication request sending module transmission, sends authentication request packet to the message response module;
The message response module, after being used to listen to the authentication request packet of described message sending module transmission, return authentication is set up module by message to the tunnel, and described authentication is carried the L2TP Tunnel type by message;
Module is set up in the tunnel, and the authentication that is used to receive described message response module transmission allows the user to reach the standard grade by behind the message, is the newly-built L2TP Tunnel of described user, and subscriber dialing of every increase with regard to a newly-built tunnel, can not be reached the standard grade up to the user again;
Statistical module is used for when constantly increasing subscriber dialing, and after the user can not reach the standard grade, statistics tunnel specifications parameter drew the maximum tunnel specification that tested equipment is supported.
10. the test macro of L2TP Tunnel specification as claimed in claim 9 is characterized in that, described tunnel specifications parameter comprises:
Add up the user's that reaches the standard grade number;
Perhaps,
The number of statistics l2tp session;
Perhaps,
The number of the L2TP Tunnel that statistics is set up.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2006101722424A CN100486187C (en) | 2006-12-30 | 2006-12-30 | A test method and system for L2TP tunnel specification |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2006101722424A CN100486187C (en) | 2006-12-30 | 2006-12-30 | A test method and system for L2TP tunnel specification |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101009606A CN101009606A (en) | 2007-08-01 |
| CN100486187C true CN100486187C (en) | 2009-05-06 |
Family
ID=38697768
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2006101722424A Expired - Fee Related CN100486187C (en) | 2006-12-30 | 2006-12-30 | A test method and system for L2TP tunnel specification |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100486187C (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101227344B (en) * | 2008-02-03 | 2013-01-16 | 中兴通讯股份有限公司 | Method for simulating L2TP dialing |
| CN102571474B (en) * | 2010-12-30 | 2015-10-14 | 北京首信科技股份有限公司 | Virtualized Radius test macro and method |
| CN103441894A (en) * | 2013-08-20 | 2013-12-11 | 迈普通信技术股份有限公司 | Method and system for L2TP concurrent connection performance test |
| CN107566476B (en) * | 2017-08-25 | 2020-03-03 | 中国联合网络通信集团有限公司 | Access method, SDN controller, forwarding equipment and user access system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1392708A (en) * | 2001-06-19 | 2003-01-22 | 深圳市中兴通讯股份有限公司 | Allocation method of wide band access user |
| CN1564529A (en) * | 2004-04-12 | 2005-01-12 | 北京北方烽火科技有限公司 | Simple detection method for GGSN facilities |
| EP1737169A1 (en) * | 2005-06-24 | 2006-12-27 | AT&T Corp. | System, method and device for monitoring networks |
-
2006
- 2006-12-30 CN CNB2006101722424A patent/CN100486187C/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1392708A (en) * | 2001-06-19 | 2003-01-22 | 深圳市中兴通讯股份有限公司 | Allocation method of wide band access user |
| CN1564529A (en) * | 2004-04-12 | 2005-01-12 | 北京北方烽火科技有限公司 | Simple detection method for GGSN facilities |
| EP1737169A1 (en) * | 2005-06-24 | 2006-12-27 | AT&T Corp. | System, method and device for monitoring networks |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101009606A (en) | 2007-08-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI244295B (en) | Method and system for simulating multiple independent client devices in a wired or wireless network | |
| CN105933888B (en) | A kind of eSIM card method for burn-recording and device based on NFC | |
| CN105007581B (en) | A kind of network access authentication method and client | |
| CN105025044B (en) | A kind of apparatus control method and system | |
| CN100407664C (en) | Multi-network element emulation test system and implementation method | |
| CN103873449B (en) | Method for network access and system | |
| CN102131001A (en) | Remote control system and method of mobile communication terminal | |
| CN105376754B (en) | A kind of router can connect the test method of wireless user's number | |
| CN103812829B (en) | A kind of method, remote desktop server and system for improving remote desktop security | |
| CN101765133B (en) | Performance test method for testing wireless access point connected to wireless terminals and performance test system thereof | |
| CN107395601A (en) | A kind of mobile office system and method based on the safe Intranets of VPN | |
| CN100486187C (en) | A test method and system for L2TP tunnel specification | |
| CN102143492B (en) | Method for establishing virtual private network (VPN) connection, mobile terminal and server | |
| CN106792699A (en) | A kind of Wireless Fidelity Wi Fi connection methods and mobile terminal | |
| CN100568826C (en) | A kind of performance test methods of authentication service and device | |
| CN101188846B (en) | A system and method for realizing remote detection of base station | |
| CN106921460A (en) | Signal shielding system and method based on wireless network | |
| CN107645428A (en) | A kind of automatic test approach and device | |
| CN103139772A (en) | Method for processing terminal accessed to local area network and method and device for used data statistic | |
| CN206313803U (en) | A kind of router for realizing network game acceleration | |
| CN102905256A (en) | Security assessment method for wireless local area network card based on penetration test | |
| CN102202334A (en) | Method and system for testing 3G (3rd Generation) wireless router with encryption card | |
| CN109902777A (en) | Method based on handheld terminal real time inspection intelligent apparatus on-line testing result | |
| CN104135307B (en) | A kind of network share system realized by power carrier | |
| CN102843690B (en) | Wireless access point-based penetration test system and test method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090506 Termination date: 20121230 |