CN101179455A - Method and system for implementing VLAN based port loop detection - Google Patents
Method and system for implementing VLAN based port loop detection Download PDFInfo
- Publication number
- CN101179455A CN101179455A CNA200710196865XA CN200710196865A CN101179455A CN 101179455 A CN101179455 A CN 101179455A CN A200710196865X A CNA200710196865X A CN A200710196865XA CN 200710196865 A CN200710196865 A CN 200710196865A CN 101179455 A CN101179455 A CN 101179455A
- Authority
- CN
- China
- Prior art keywords
- vlan
- loop
- detection message
- loop detection
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides a system for detecting a loopback on a port based on a VLAN. The invention includes the following steps: a module for constructing detection message of a VLAN loopback, which is used for constructing the detection message of the VLAN loopback; a data transmitting module used for transmitting the detection message of the VLAN loopback; a data receiving module used for intercepting and receiving the detection message of the VLAN loopback and an analysis module of the VLAN loopback used for analyzing the received detection message of the VLAN loopback and confirming the VLAN with a loopback. The invention also provides a method for realizing detection of the loopback on the port based on the VLAN, in which, the detection message of the VLAN loopback is constructed and transmitted; after intercepting and receiving the message, the invention analyzes and judges whether the VLAN has any loopback. The invention eliminates hidden trouble in the existing method for detecting the loopback on a port.
Description
Technical field
The present invention relates to data communication field, be specifically related to a kind of implementation method and system that detects based on the port loop of Virtual Local Area Network.
Background technology
Along with the high speed development of information technology, the composition of network becomes increasingly complex, and network topology is varied, wherein more commonly Star Network and looped network.In the network of reality, in case network loop occurs, will cause broadcast storm, cause network paralysis, therefore there have been various Spanning-Tree Protocols to guarantee that the network equipment in the looped network loop can not occur.But Spanning-Tree Protocol can not be judged single port and whether have loop that therefore, each equipment vendors has developed the technology of single port loop detection voluntarily, prevents that loop from appearring in single port.
The implementation of existing loop detection, as shown in Figure 1, it is loop detection message (also claiming to detect bag) by constructing a particular medium access control (MAC) address, characteristics according to loop broadcasting, in case loop takes place down this port, whether detection messages will be returned detection port, correct by the target MAC (Media Access Control) address of judging message, whether be that the port sends simultaneously, determine whether there is loop under this port.
The treatment mechanism of existing port loop detection can't judge that loop takes place concrete that VLAN under the port, has following potential safety hazard:
At first, as shown in Figure 2, loop takes place in VLAN 2 on the equipment 2, and No. 1 port of equipment 1 will detect loop.Detection port does not belong to the VLAN that loop takes place, but this port may be blocked or close mistakenly.
Secondly, when detecting loop,, increased the difficulty that the engineering staff searches the physical link that loop takes place, in time cancellation loop owing to can't know it specifically is that loop takes place that VLAN.
Summary of the invention
The invention provides a kind of implementation method and system that detects based on the port loop of VLAN, eliminated the potential safety hazard that exists in the existing port loop detection treatment mechanism.
The invention provides a kind of implementation method that detects based on the port loop of VLAN, comprise the steps:
Step 1: structure VLAN loop detection message also sends;
Step 2: intercept the VLAN loop detection message, receive message after, judge according to message whether this VLAN exists loop.
Further, in the described step 1, will detect VLAN ID according to the 802.1Q agreement and insert loop detection message, write down this VLAN ID simultaneously.
Further, in the described step 2, receive message after, check whether the VLAN ID in the message consistent with the VLANID that needs detection, if unanimity then judge that there is loop in this VLAN.
The present invention also provides a kind of system that detects based on the port loop of VLAN, comprises VLAN loop detection message constructing module, data transmission blocks, data reception module, VLAN loop analysis module; Wherein VLAN loop detection message constructing module is used to construct the VLAN loop detection message; Data transmission blocks is used to send the VLAN loop detection message; Data reception module is used to intercept and receives the VLAN loop detection message; VLAN loop analysis module is used to analyze the VLAN loop detection message that receives, and determines to take place the VLAN of loop.
Further, described VLAN loop detection message constructing module is characterized in that, according to the 802.1Q agreement VLAN ID that needs detect is inserted loop detection message, writes down this VLAN ID simultaneously.
Further, described VLAN loop analysis module is characterized in that, VLAN ID in the message and the VLAN ID that need to detect is compared, if unanimity then judge that there is loop in this VLAN.
Compare with existing loop detecting method, the present invention is keeping on the present loop detection function basis, increased the function of the VLAN of definite generation loop, promptly in detection messages, add VLAN ID, the realization loop detection message is broadcasted in the VLAN of required detection, when finding loop, the concrete VLAN that loop can the correct analysis outbound port takes place down, not only avoided the action of the mistake of loop detection, also make things convenient for the engineering staff to check the physical link that loop takes place, in time cancellation loop.
Description of drawings
Fig. 1 is the handling process of existing general loop detection;
Error detection VLAN figure when Fig. 2 is general loop detection;
Fig. 3 is the concrete handling process based on the vlan port loop detecting method of the present invention;
Fig. 4 is a system block diagram of the present invention.
Embodiment
Below in conjunction with accompanying drawing this aspect is further described.
Fig. 3 is the concrete handling process based on the vlan port loop detecting method of the present invention, mainly may further comprise the steps:
The first step is according to general loop detection message mechanism structure detection messages.
In second step, the VLAN ID that needs detect is inserted in the loop detection message according to the 802.1Q agreement.
The 3rd step started loop detection message and sends process, sent loop detection message, write down the VLAN ID that is detecting simultaneously.
The 4th step started loop detection message and intercepts process, received loop detection message.
The 5th step received after the loop detection message, judged whether purpose MAC and port mate the purpose MAC and the detection port of loop detection.
The 6th step, VLAN ID in the loop detection message and the VLAN ID that checks are compared, if consistent, confirm that then loop has taken place this VLAN.
Fig. 4 is a system block diagram of the present invention, comprises VLAN loop detection message constructing module, data transmission blocks, data reception module, VLAN loop analysis module.
VLAN loop detection message constructing module generates the loop detection message that detects based on VLAN, and method for optimizing is according to the 802.1Q agreement VLAN ID that needs detect to be inserted in the general loop detection message.
Data transmission blocks starts loop detection message and sends process, sends loop detection message, writes down the VLAN ID that is detecting simultaneously, as the loop detection message validity checking sign that receives.
Data reception module starts loop detection message and intercepts process, receives loop detection message.
VLAN loop analysis module is analyzed the loop detection message that receives, judge whether purpose MAC and port mate the purpose MAC and the detection port of loop detection, if coupling, further VLAN ID in the loop detection message and the VLAN ID that checks are compared, if consistent, confirm that then loop has taken place this VLAN.
Claims (6)
1. an implementation method that detects based on the port loop of VLAN is characterized in that, comprises the steps:
Step 1: structure VLAN loop detection message also sends;
Step 2: intercept the VLAN loop detection message, receive message after, judge according to message whether this VLAN exists loop.
2. the implementation method of the port loop detection message based on VLAN as claimed in claim 1 is characterized in that:
In the described step 1, will detect VLAN ID according to the 802.1Q agreement and insert loop detection message, write down this VLANID simultaneously.
3. the implementation method of the port loop detection message based on VLAN as claimed in claim 1 is characterized in that:
In the described step 2, receive message after, check whether the VLAN ID in the message consistent with the VLAN ID that needs detection, if unanimity then judge that there is loop in this VLAN.
4. a system that detects based on the port loop of VLAN is characterized in that, comprises VLAN loop detection message constructing module, data transmission blocks, data reception module, VLAN loop analysis module;
Described VLAN loop detection message constructing module is used to construct the VLAN loop detection message;
Described data transmission blocks is used to send the VLAN loop detection message;
Described data reception module is used to intercept and receives the VLAN loop detection message;
Described VLAN loop analysis module is used to analyze the VLAN loop detection message that receives, and determines to take place the VLAN of loop.
5. VLAN loop detection message constructing module as claimed in claim 4 is characterized in that, according to the 802.1Q agreement VLAN ID that needs detect is inserted loop detection message, writes down this VLAN ID simultaneously.
6. VLAN loop analysis module as claimed in claim 4 is characterized in that, VLAN ID in the message and the VLAN ID that need to detect is compared, if unanimity then judge that there is loop in this VLAN.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710196865XA CN101179455A (en) | 2007-12-07 | 2007-12-07 | Method and system for implementing VLAN based port loop detection |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710196865XA CN101179455A (en) | 2007-12-07 | 2007-12-07 | Method and system for implementing VLAN based port loop detection |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101179455A true CN101179455A (en) | 2008-05-14 |
Family
ID=39405553
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA200710196865XA Pending CN101179455A (en) | 2007-12-07 | 2007-12-07 | Method and system for implementing VLAN based port loop detection |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101179455A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101848121A (en) * | 2010-06-09 | 2010-09-29 | 神州数码网络(北京)有限公司 | Automatic port loop detecting and protecting method based on a plurality of VLANs |
| CN101984695A (en) * | 2010-11-15 | 2011-03-09 | 中兴通讯股份有限公司 | Link detection method for port R6 in worldwide interoperability for microwave access (WIMAX) system, base station and system |
| CN102195746A (en) * | 2010-03-17 | 2011-09-21 | 瑞昱半导体股份有限公司 | Loop detection method and network device applying same |
| CN102420721A (en) * | 2011-11-30 | 2012-04-18 | 瑞斯康达科技发展股份有限公司 | Loop detection message packaging method as well as loop detecting method and device |
| CN101753376B (en) * | 2009-12-30 | 2012-07-11 | 杭州华三通信技术有限公司 | Method and equipment for detecting link state |
| CN102801575A (en) * | 2011-05-27 | 2012-11-28 | 华为技术有限公司 | Loopback detecting method and device |
| CN105656897A (en) * | 2016-01-05 | 2016-06-08 | 大连民族大学 | Method and device for detecting port loop and method for preventing port loop detection message attacks |
| CN106059963A (en) * | 2016-06-07 | 2016-10-26 | 杭州华三通信技术有限公司 | Data transmission control method and device |
| CN106209561A (en) * | 2016-07-26 | 2016-12-07 | 杭州迪普科技有限公司 | The sending method of loop detection message and device |
| CN111092787A (en) * | 2019-12-16 | 2020-05-01 | 新华三大数据技术有限公司 | Loop detection method, loop detection device, tunnel endpoint equipment and storage medium |
-
2007
- 2007-12-07 CN CNA200710196865XA patent/CN101179455A/en active Pending
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101753376B (en) * | 2009-12-30 | 2012-07-11 | 杭州华三通信技术有限公司 | Method and equipment for detecting link state |
| CN102195746A (en) * | 2010-03-17 | 2011-09-21 | 瑞昱半导体股份有限公司 | Loop detection method and network device applying same |
| CN101848121A (en) * | 2010-06-09 | 2010-09-29 | 神州数码网络(北京)有限公司 | Automatic port loop detecting and protecting method based on a plurality of VLANs |
| CN101984695A (en) * | 2010-11-15 | 2011-03-09 | 中兴通讯股份有限公司 | Link detection method for port R6 in worldwide interoperability for microwave access (WIMAX) system, base station and system |
| CN102801575A (en) * | 2011-05-27 | 2012-11-28 | 华为技术有限公司 | Loopback detecting method and device |
| CN102801575B (en) * | 2011-05-27 | 2015-04-08 | 华为技术有限公司 | Loopback detecting method and device |
| CN102420721A (en) * | 2011-11-30 | 2012-04-18 | 瑞斯康达科技发展股份有限公司 | Loop detection message packaging method as well as loop detecting method and device |
| CN102420721B (en) * | 2011-11-30 | 2015-04-22 | 瑞斯康达科技发展股份有限公司 | Loop detection method and loop detecting device |
| CN105656897A (en) * | 2016-01-05 | 2016-06-08 | 大连民族大学 | Method and device for detecting port loop and method for preventing port loop detection message attacks |
| CN105656897B (en) * | 2016-01-05 | 2018-07-31 | 大连民族大学 | The method for detecting the method and apparatus of port loop and preventing port loop detection message attack |
| CN108418838A (en) * | 2016-01-05 | 2018-08-17 | 大连民族大学 | A method of detection port loop |
| CN108418838B (en) * | 2016-01-05 | 2020-08-07 | 大连民族大学 | Method for detecting port loop |
| CN106059963A (en) * | 2016-06-07 | 2016-10-26 | 杭州华三通信技术有限公司 | Data transmission control method and device |
| CN106059963B (en) * | 2016-06-07 | 2019-08-06 | 新华三技术有限公司 | A kind of data transfer control method and device |
| CN106209561A (en) * | 2016-07-26 | 2016-12-07 | 杭州迪普科技有限公司 | The sending method of loop detection message and device |
| CN106209561B (en) * | 2016-07-26 | 2019-06-07 | 杭州迪普科技股份有限公司 | The sending method and device of loop detection message |
| CN111092787A (en) * | 2019-12-16 | 2020-05-01 | 新华三大数据技术有限公司 | Loop detection method, loop detection device, tunnel endpoint equipment and storage medium |
| CN111092787B (en) * | 2019-12-16 | 2022-02-11 | 新华三大数据技术有限公司 | Loop detection method, loop detection device, tunnel endpoint equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101179455A (en) | Method and system for implementing VLAN based port loop detection | |
| US5319644A (en) | Method and apparatus for identifying port/station relationships in a network | |
| CA2034660C (en) | Station-to-station full duplex communication in a token ring local area network | |
| JP3857317B2 (en) | Automatic negotiation progress monitor | |
| CN103138988B (en) | Positioning treatment method and positioning treatment device of network faults | |
| CN101707608A (en) | Method and device for automatically testing application layer protocol | |
| US10802937B2 (en) | High order layer intrusion detection using neural networks | |
| IE922611A1 (en) | Method for data collision detection in a multi processor¹communication system | |
| US6718382B1 (en) | Technique for detecting leaky points within a network protocol domain | |
| CN104717105A (en) | Industrial sensor network data repeated detecting method based on standard ISA 100.11a | |
| EP1542406B1 (en) | Mechanism for detection of attacks based on impersonation in a wireless network | |
| RU2012103480A (en) | METHOD FOR LIMITING THE VOLUME OF NETWORK TRAFFIC ACCESSING TO A LOCAL NODE OPERATING ACCORDING TO THE ETHERNET PROTOCOL OF INDUSTRIAL APPLICATION | |
| CN110601919A (en) | Loopback detection method and system | |
| US7626937B2 (en) | System and method for network connection detection | |
| KR20080046129A (en) | Method and apparatus for performing security error recovery in a wireless communications system | |
| WO2016015606A1 (en) | Method for locating port connection error and related device | |
| US8064454B2 (en) | Protocol incompatibility detection | |
| US5559814A (en) | Verification of integrity of data exchanged between two telecommunication network stations | |
| US20050060434A1 (en) | Detection of hidden wireless routers | |
| US7668204B2 (en) | Port driven authentication in a network | |
| CN106685600B (en) | Message delivery method in local area network between work station | |
| Narteni et al. | Evaluating the Possibility to Perpetrate Tunneling Attacks Exploiting Short-Message-Service. | |
| CN112532603B (en) | Cross-domain file exchange leading-in device and method based on exchange authorization file | |
| US8811233B2 (en) | Topology detection method and topology detection apparatus | |
| CN101316202B (en) | On-line diagnosis method and system of embedded software, embedded software device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20080514 |