Summary of the invention
The present invention aims to provide a kind of technical scheme, and main purpose of the present invention is: be to provide a kind of multicast access control method and access device thereof based on the service provider, the multicast services that each multicast services merchant provides is that the basis manages with the multicast packets.To the multicast quantity of each multicast packets current service, multicast bandwidth limits, and does not allow to surpass the thresholding that allows, to avoid seizing the Internet resources of other multicast packets.All multicast group that provide belong to a unique multicast packets.The group that guarantees service quality is carried out network resource reservation based on moving speed.Thereby avoid the disorderly competition between the multicast services that many service providers provide, guarantee that the Internet resources of high preferential priority groups can not occupied by the low priority multicast services, strengthen the quality of multicast services and the stability of system.
According to an aspect of the present invention, provide the processing method of in a kind of network access equipment multicast service being asked clearly here, a kind of multicast access control method based on the service provider promptly is provided, wherein,
A) set in advance and comprise the configuration information that the service provider provides multicast services, comprising using multicast packets that all multicast services that each service provider provides are carried out control and management, the multicast group that service provider provides belongs to corresponding multicast packets;
B) except received multicast service request being carried out the access authority of common user side, bandwidth, outside the inspection of existing resource, also according to total multicast service quantity of the multicast packets of this multicast service provider configuration, bandwidth is verified, thereby guarantees that this multicast services does not influence other service providers' multicast service.
Method as previously discussed, wherein, in the described step a): for the multicast service bag of all multicast services that provide owing to each service provider of management, following attribute is set thresholding: the total channel quantity that guarantees service, guarantee the total bandwidth of service, the total bandwidth of current multicast services, total multicast services quantity is at the actual thresholding that can not surpass this setting when serving that provides.
Method as previously discussed, wherein, multicast group that all service providers provide needs pre-configured its bandwidth attribute, business service grade: the guaranteeing service quality service as whether still is a generic services.
Method as previously discussed, wherein, all pre-configured multicast group that the multicast service bag is comprised, the channel quantity of wherein total assurance service and the total channel bandwidth of assurance service, the total bandwidth of current actual multicast services, total multicast services quantity of current active service is to be less than or equal to predefined threshold value.
Method as previously discussed, wherein, the total bandwidth thresholding of the multicast services that all multicast service bags are disposed, the summation of total multicast services quantity should be used for the bandwidth of multicast service and total multicast group quantity that system can support less than total network side that physical device can provide.
Method as previously discussed, wherein, for the multicast group that guarantees service, system reserves the resource of corresponding bandwidth resource and multicast forward table when the keeper is pre-configured in advance, guarantee the user when request adds these multicast group that guarantee service, service always can obtain.
Method as previously discussed wherein, for request common multicast group, is merely able to use common group of institute's network resource shared, is used for the Internet resources of general service in all common group of bags of sharing in a multicast packets.When shared resource is finished using, new multicast request should be rejected, and serves institute's reserved resource current to be not to be used, can not to take reserved resource even system is assurance.
According to another aspect of the present invention, a kind of control device that multicast service request is handled that is used in network access equipment is provided here, network access equipment based on service provider's multicast access control method just is provided, it is characterized in that: use the multicast service processing unit in the described access device, this device comprises: multicast inking device, access control apparatus and transmitting multicast data device;
The multicast inking device: mainly the configuration information that all multicast services are needed manages;
Access control apparatus: mainly finish multicast request is carried out the access control judgement according to the configuration information in the multicast inking device;
Transmitting multicast data device: be used for transmitting the multicast packet of receiving from network side and flow to the Customer Premises Network port according to multicast forward table.
Access device as previously discussed, wherein, described multicast inking device comprises:
The multicast group management devices: carry out the configuration management merit to all multicast group, interpolation is provided, revise, the operational administrative of deletion and configuration validity are verified:
The multicast packets management devices: carry out the configuration management function to all multicast packets, as adding, revise, the operational administrative of deletion and configuration validity are verified:
User information apparatus: carry out to all user rights the configuration management function of the information that bandwidth etc. are relevant with user's multicast service.
Access device as previously discussed, wherein, described access control apparatus comprises:
Access control apparatus based on the user: receive the multicast request of user side, carry out the bandwidth that normal multicast user inserts, control of authority:
Based on multicast services merchant access control apparatus:, should carry out checking whether allow this request to this group based on the configuration information of multicast services merchant in the multicast inking device for the multicast group of first user request.
The technique effect that the present invention brought: the invention provides a kind of method, use the way of resource reservation to guarantee that Internet resources can obtain forever to the multicast group of high priority, how the time can surely add these groups to cause the user.Thereby improve user's satisfaction to multicast services.Multicast to different multicast services merchants manages based on multicast packets, thereby the multicast services of each multicast provider is had the assurance of certain multicast quantity and bandwidth, and can not seized by malice, also makes the use of Internet resources fairer and more reasonable.The fair and reasonable use of Internet resources also can guarantee the quality that network is served, and reduces the possibility of the bandwidth swelling plug of network, thereby improves whole service quality.
Embodiment
Below in conjunction with accompanying drawing preferred implementation of the present invention is described in detail.
Fig. 1 is based on the multicast service system topology example under typical many service providers provided by the present invention environment.To the hereinafter understanding of content, as follows for convenience to each description of equipment shown in the figure:
User terminal A, user terminal B wherein only are shown for simplicity's sake.User terminal A and B typically as TV set-top box, personal computer, mobile phone etc., are connected to the user-side port (hereinafter to be referred as port) of access device C via modulator-demodulator in wired or wireless mode.Access device C, typically as access device among DSLAM (Digital Subscriber Line Access Multiplexer), LAN SWITCH (LAN switch), GPON (gigabit passive optical network) or the EPON (Ethernet passive optical network) etc., it is between multicast router F and user terminal.The D of multicast services provider provides multicast services by multicast source server G to IP network; The E of multicast services provider provides multicast services by multicast source server H to IP network.All users that access device C connects down can ask to join the multicast services that the D of multicast services provider and E provide.All multicast services are shared access device C, the Internet resources of IP network, and as bandwidth, multicast forward table (the multicast entry quantity of general device hardware is limited).
User terminal A, B use the group membership to concern the multicast group from its desired adding to described access device C that report of agreement, described group membership concerns that agreement for example: typical MLD (multicast monitoring discovery) agreement etc. under typical IGMP (IGMP) agreement, IPV6 (Internet protocol sixth version) environment under IPV4 (Internet protocol the 4th edition) environment, hereinafter, be that example describes with the IGMP agreement with being without loss of generality.Whether access device C is by having authority to add this group to the user, whether active user's bandwidth is enough, and carry out the access control judgement that the present invention proposes based on the multicast services merchant, judge whether current network resources supports enough that this multicast group provides multicast services to this user, and do not influence other multicast services.If all inspections are passed through, access device C is to the corresponding multicast group of multicast router F request.Multicast router F is forwarded to access device C with the multicast data flow of multicast server G or H transmission, and access device C forwarding multicasting flows to corresponding user.Except that being that other processing procedures in other patent requests, or all have detailed description in the open document in the standard multicast agreement the innovation that proposes of the present invention carrying out access control judgment part based on the multicast services merchant, this paper no longer is elaborated.
Come to describe the effect of the access control based on the multicast services merchant provided by the present invention further combined with Fig. 2 below in user multicast request control procedure from access device C system perspective.
Access device C is receiving the A from the user, during the multicast request of B, uses the multicast service processing unit to finish processing to request message, and its main subassembly comprises with the lower part: multicast inking device 21, access control apparatus 22 and transmitting multicast data device 23.
Multicast inking device 21: network configuration management person mainly finishes the configuration information that multicast services is needed by this device and is managed for configuration.Multicast inking device 21 mainly contains following three sub-devices: multicast group management devices 211: the corresponding multicast group of each multicast channel, this device is carried out the configuration management merit to all multicast group, interpolation is provided, revises, the operational administrative of deletion and configuration validity are verified.Multicast packets management devices 212: each multicast packets can be represented a multicast services merchant's information, and this device is carried out the configuration management function to all multicast packets, as adding, revises, and the operational administrative of deletion and configuration validity are verified.User information apparatus 213: corresponding carry out the be connected management of port relevant information of each user terminal of configuration DSLAM, comprising the authority of this user port, management of information such as bandwidth.
Access control apparatus 22: that finishes mainly that multicast request that the user who receives is sent handles may.This device carries out access control according to the configuration information in the multicast inking device and judges.If judge and pass through, then in multicast forward table 231, the relative users port is joined the multicast group of this request group.Access control apparatus 22 mainly contains following two sub-devices: based on user's access control apparatus 221: the multicast request that receives user side, carry out the bandwidth that normal multicast user inserts, control of authority, the function of this device has had detailed introduction in other patent files, text of the present invention is not describing in detail.Based on multicast services merchant access control apparatus 222: for the multicast group of first user request, should carry out checking whether allow this request to this group based on the configuration information of multicast services merchant in the multicast inking device, provide service if ratify this group to the user, whether influence other high priority multicasts business and other multicast services merchant's business.
Transmitting multicast data device 23: be used for transmitting the multicast packet of receiving from network side and flow to the Customer Premises Network port according to multicast forward table 231.
Be that an example is described the function that sub-device that access device C implements each multicast service processing unit in this programme finishes and the detailed step of execution below:
Suppose many providers: the D of provider, the E of provider, the M of provider has embodied their configuration in the form of storage management in the multicast packets management devices 212 of access device C.The corresponding multicast services merchant of each bag.
Table 1 multicast packets table
Multicast packets ID |
The service provider |
Channel quantity |
The channel quantity that guarantees |
The bandwidth that guarantees |
Common frequency channel quantity |
1 |
The D of provider |
150 |
50 |
400M |
40 |
2 |
The E of provider |
40 |
20 |
100M |
10 |
… |
… |
… |
… |
… |
… |
n |
The M of provider |
280 |
30 |
200M |
20 |
This form shows the configuration attribute of each multicast provider, the D of provider for example, currently provide 150 channels altogether, can use the network bandwidth altogether is 400M, wherein can be 50 high priority channel services of giving security, all bandwidth and high priority channel bandwidth are all guaranteed by the DSLAM system.Tool is surplused the channel of 100 low priorities and will be competed and use 40 multicast forwarding clauses and subclauses resources.The E of provider currently provides 40 channels altogether, and can use the network bandwidth altogether is 100M, wherein can be 20 high priority channel services of giving security, and all bandwidth and high priority channel bandwidth are all guaranteed by the DSLAM system.The channel of all the other 20 low priorities will be competed and use 10 multicast forwarding clauses and subclauses resources.
The multicast channel that each service provider provides manages maintenance by multicast group management devices 211, and corresponding multicast group source table is as follows:
Table 2 multicast group table
Multicast group id |
Multicast group address |
Peak bandwidth |
The average bandwidth |
Guarantee service mark |
Multicast packets ID |
1 |
225.1.1.1 |
2.8M |
2.5M |
Guarantee service groups |
1 |
2 |
225.1.1.2 |
3M |
2.5M |
Common group |
1 |
3 |
225.1.2.3 |
4M |
3M |
Guarantee service groups |
1 |
… |
… |
… |
… |
… |
… |
i |
237.1.2.3 |
3M |
2.5M |
Guarantee service groups |
|
To each multicast group, multicast packets ID illustrates which multicast packets this multicast source belongs to, and can find corresponding provider by the multicast packets table; Guarantee that service mark is used for illustrating whether this business needs to be guaranteed.Bandwidth information is used when bandwidth control is checked.
Come to describe the access control based on the multicast services merchant provided by the present invention when adding or revising the operation of a multicast group further combined with Fig. 3 below from multicast group management devices 211 angles, below multicast group management devices 211 needs to carry out several steps validity check, all inspections are passed through, and then this operation is passed through:
In step S31, begin to carry out the attribute that adds new multicast group or revise the group that has existed.
Among the step S32, carry out assurance service mark inspection, if this mark is common group then directly transfers to step S35 inspection and pass through to the multicast group of this operation; If the assurance service groups continues the inspection of S33;
Among the step S33, in the multicast packets at this multicast group place the quantity of guaranteed service groups check, judge with following formula, transfer to step S36 if judge failure, check failure; If check and pass through, continue the inspection of S34;
The channel quantity of the assurance of ∑ (this bag in institute guaranteed service groups quantity)<=bag support
Among the step S34, in the multicast packets at this multicast group place the total bandwidth of guaranteed service groups check, judge with following formula, transfer to step S36 if judge failure, check failure; If check and pass through, carry out step S35;
The assurance bandwidth that ∑ (in the bag guaranteed service groups average bandwidth)<=bag is supported
Among the step S35, multicast group management devices 211 is accepted the current operative configuration of administrative staff, upgrades the information of multicast group table.
Among the step S36, multicast group management devices 211 is checked the current con-figuration information authentication failed of administrative staff, refuses current operation.
Come to describe the access control based on the multicast services merchant provided by the present invention when adding or revising the operation of a multicast packets further combined with Fig. 4 below from multicast packets management devices 212 angles, below multicast packets management devices 212 needs to carry out several steps validity check, all inspections are passed through, and then this operation is passed through:
In step S41, begin to carry out the attribute that adds new multicast packets or revise the bag that has existed.
Among the step S42, the quantity of assurance service groups all in this bag is checked, judge, transfer to step S47, check failure if judge failure with following formula; If check and pass through, continue the inspection of S43;
The channel quantity of the assurance of ∑ (this bag in institute guaranteed service groups quantity)<=bag support
Among the step S43, in this bag the total bandwidth of guaranteed service groups check, judge with following formula, transfer to step S47 if judge failure, check failure; If check and pass through, carry out step S44;
The assurance bandwidth that ∑ (in the bag guaranteed service groups average bandwidth)<=bag is supported
Among the step S44, check, judge, transfer to step S47, check failure if judge failure with following formula in the quantity of system level to all service groups; If check and pass through, continue the inspection of S45;
The maximum multicast channel quantity that ∑ (channel quantity of the assurance of each bag)+∑ (the common frequency channel quantity of each bag)<=system supports.
Among the step S45, system level to all bags guarantee total bandwidth inspection, judge with following formula, transfer to step S47 if judge failure, check failure; If check and pass through, carry out step S45;
∑ (bandwidth of the assurance of each bag)<=system's support is used for the maximum bandwidth of multicast
Among the step S46, multicast packets management devices 212 is accepted the current operative configuration of administrative staff, upgrades the information of multicast packets table.
Among the step S47, multicast packets management devices 212 is checked the current con-figuration information authentication failed of administrative staff, refuses current operation.
Manage owing to this part information of managing is mainly used in based on user's access control for user information apparatus 213 with based on user's access control apparatus 221, in other patent files, be described, irrelevant with the content that the present invention describes, so this paper be not described in detail.
Describe in detail to send further combined with Fig. 5 below and add a multicast group, and describe access control apparatus 22 and sub-device thereof emphatically: so the detail operations step of carrying out based on multicast services merchant access control apparatus 222 to a complete process process that receives this multicast data flow from the user.
User A sends the service service request that application adds a multicast group to access device C among the step S51; Access device C receives the operating procedure of this request and execution in step 52 to step 5A.
Among the step S52, the multicast group information that the access control apparatus 221 based on the user of access device C is safeguarded according to the user profile and the multicast group management devices 211 of the user port configuration of safeguarding in the user information apparatus 213 is carried out user access control inspection (this paper is not described in detail checking process); If check failure, transfer to step S57 and carry out.If check successfully, step below continuing to carry out;
Among the step S53, access device C judges that based on multicast services merchant access control apparatus 222 to current group be first user's request; If other users have been arranged, this multicast services provides service this access device C merchant, checks successfully, transfers to step S58 and carries out.If first user's request, step below continuing to carry out;
Among the step S54, access device C judges to current group it is to guarantee service groups based on multicast services merchant access control apparatus 222; If, for example add a multicast group when user A application " 225.1.1.1 " the service service request time, based on multicast services merchant access control apparatus 222 checking multicast source at first, it is multicast packets 1 that inspection obtains this group, the assurance service groups of the D of provider, the multicast forwarding clauses and subclauses of its bandwidth are reserved, and should pass through based on service provider's access control inspection, transfer to step S58 and carry out.If the common multicast group, step below continuing to carry out;
Among the step S55, access device C judges to current group it is common group of service based on multicast services merchant access control apparatus 222, for example add a multicast group when user A application " 225.1.1.2 " the service service request time, based on multicast services merchant access control apparatus 222 checking multicast source at first, it is multicast packets 1 that inspection obtains this group, the generic services group of the D of provider, it need carry out following inspection:
∑ (the average bandwidth that the current active of the D of provider is common group)+2.5M (new request group " 225.1.1.2 " average bandwidth)<=400M (maximum bandwidth of the D of provider)-∑ (the average bandwidth of the assurance service groups of the D of provider) is transferred to step S57 and is carried out if check failure; If check successfully, step below continuing to carry out;
Among the step S56, access device C based on multicast services merchant access control apparatus 222 at multicast group " 225.1.1.2 " and the service service request, check below need carrying out:
∑ (quantity that the current active of the D of provider is common group)+1<=40 (the common frequency channel quantity of the D of provider)
If check failure, transfer to step S57 and carry out; If check successfully, step below continuing to carry out;
Step S57 carries out all failures and handles, and refuses current request and joins message.
Step S58 carries out the processing path of all access control successes.The multicast forward table of step S59 in the transmitting multicast data device adds the forwarding information that this user A adds multicast.
Among the step S5A, access device C transmits this request to network router.
Among the step S5B, multicast router is forwarded to access device C with multicast data flow.
Among the step S5C, the multicast forwarding device of access device C is forwarded to corresponding port according to multicast forward table with multicast data flow.
Above embodiment is only for the usefulness that the present invention is described, but not limiting the scope of the invention.Relevant those skilled in the art under the situation that does not break away from the spirit and scope of the present invention, can also make various conversion or modification, and the technical scheme that all are equal to also should belong within the category of the present invention's protection, is limited by each claim.