CN103475598A - Method for partitioning user priorities through SPI (serial peripheral interface) - Google Patents
Method for partitioning user priorities through SPI (serial peripheral interface) Download PDFInfo
- Publication number
- CN103475598A CN103475598A CN2013103713275A CN201310371327A CN103475598A CN 103475598 A CN103475598 A CN 103475598A CN 2013103713275 A CN2013103713275 A CN 2013103713275A CN 201310371327 A CN201310371327 A CN 201310371327A CN 103475598 A CN103475598 A CN 103475598A
- Authority
- CN
- China
- Prior art keywords
- message
- spi
- queue
- esp
- priorities
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method for partitioning user priorities through an SPI (serial peripheral interface). The method comprises the following steps: S1, partitioning the range of SPI values of an ESP (electronic stability program) message into N segments by firewall equipment, setting the priorities to be decreased successively from the first segment to the Nth segment, enabling an IP address to correspond to the range of the SPI values of each segment according to user requirements, determining one SPI value from the range of the SPI values corresponding to the IP address of the message, allocating the SPI value to the ESP message, encrypting the ESP message and then transmitting the encrypted ESP message to forwarding firewall equipment; and S2, uniformly placing the received ESP messages in a message forwarding queue by the forwarding firewall equipment, deleting the messages with lower priorities from the queue when the queue is full, and placing the messages with higher priorities into the queue. By differentiating the priorities of users, when the network traffic explodes, the problem that the user messages with higher priorities are lost can be effectively avoided.
Description
Technical field
The present invention relates to network communications technology field, particularly a kind of method of dividing User Priority by SPI.
Background technology
At present, when network traffics explode, because the firewall box disposal ability is limited, therefore can cause the packet loss problem, yet, if can the priority of message be set in advance, can be according to user's priority to the message processing of classifying, such as, what the priority of Internet video message was arranged is higher, hanging down of the priority level initializing of access websites, because during user's access websites, HTTP connects when overtime all can resend connection request automatically, and the user generally can stay for some time after clicking connection, therefore less demanding to real-time.Give an example by above, can find out the importance of distinguishing User Priority.The loss problem that so just can avoid message dropping that priority is higher to bring.
Summary of the invention
(1) technical problem that will solve
The present invention will solve is to improve the lower problem of fail safe that in the network equipment, message is processed, especially for when network traffics explode, due to the importance that can't distinguish information just, the loss problem that causes information dropout that priority is higher to bring.
(2) technical scheme
For solving the problems of the technologies described above, the invention provides a kind of method of dividing User Priority by SPI, it is characterized in that,
Comprise the following steps:
S1: firewall box is divided into the N section by the scope of the SPI value of ESP message, and arrange from the 1st to the priority of N section and successively decrease successively, according to user's request, that the IP address is corresponding with the SPI value scope of each section, determine a SPI value according to message IP address and distribute to described ESP message from corresponding SPI value scope, then being sent to the forwarding firewall box after described ESP message is encrypted;
S2: forward firewall box the ESP message unification received is placed in a message forwarding queue, when queue full, the message that the queue medium priority is lower is deleted, and the message that priority is higher continues to put into queue.
(3) beneficial effect
The present invention is by the method for SPI Differentiated Services type, and the user of different demands is classified, and with this, reaches the purpose of Differentiated Services priority.
Embodiment
Below the specific embodiment of the present invention is described in further detail.Following examples are used for the present invention is described, but are not used for limiting the scope of the invention.
The method of present embodiment comprises the following steps:
S1: firewall box is divided into the N section by the scope of the SPI value of ESP message, and arrange from the 1st to the priority of N section and successively decrease successively, according to user's request, that the IP address is corresponding with the SPI value scope of each section, determine a SPI value according to message IP address and distribute to described ESP message from corresponding SPI value scope, then being sent to the forwarding firewall box after described ESP message is encrypted;
S2: forward firewall box the ESP message unification received is placed in a message forwarding queue, when queue full, the message that the queue medium priority is lower is deleted, and the message that priority is higher continues to put into queue.
The present invention is by the method for SPI Differentiated Services type, and the user of different demands is classified, and with this, reaches the purpose of Differentiated Services priority.
Above execution mode is only for illustrating the present invention; and be not limitation of the present invention; the those of ordinary skill in relevant technologies field; without departing from the spirit and scope of the present invention; can also make a variety of changes and modification; therefore all technical schemes that are equal to also belong to category of the present invention, and scope of patent protection of the present invention should be defined by the claims.
Claims (1)
1. a method of dividing User Priority by SPI, is characterized in that,
Comprise the following steps:
S1: firewall box is divided into the N section by the scope of the SPI value of ESP message, and arrange from the 1st to the priority of N section and successively decrease successively, according to user's request, that the IP address is corresponding with the SPI value scope of each section, determine a SPI value according to message IP address and distribute to described ESP message from corresponding SPI value scope, then being sent to the forwarding firewall box after described ESP message is encrypted;
S2: forward firewall box the ESP message unification received is placed in a message forwarding queue, when queue full, the message that the queue medium priority is lower is deleted, and the message that priority is higher continues to put into queue.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013103713275A CN103475598A (en) | 2013-08-23 | 2013-08-23 | Method for partitioning user priorities through SPI (serial peripheral interface) |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013103713275A CN103475598A (en) | 2013-08-23 | 2013-08-23 | Method for partitioning user priorities through SPI (serial peripheral interface) |
Publications (1)
Publication Number | Publication Date |
---|---|
CN103475598A true CN103475598A (en) | 2013-12-25 |
Family
ID=49800303
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2013103713275A Pending CN103475598A (en) | 2013-08-23 | 2013-08-23 | Method for partitioning user priorities through SPI (serial peripheral interface) |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103475598A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2021037216A1 (en) * | 2019-08-29 | 2021-03-04 | 华为技术有限公司 | Message transmission method and device, and computer storage medium |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7095716B1 (en) * | 2001-03-30 | 2006-08-22 | Juniper Networks, Inc. | Internet security device and method |
CN1917469A (en) * | 2005-08-18 | 2007-02-21 | 中国长城计算机深圳股份有限公司 | Method for controlling transmission of message based on priorities of message |
CN101110672A (en) * | 2006-07-19 | 2008-01-23 | 华为技术有限公司 | Method and system for establishing ESP security alliance in communication system |
CN102469087A (en) * | 2010-11-17 | 2012-05-23 | 中兴通讯股份有限公司 | Method and system for realizing control of quality of service, |
-
2013
- 2013-08-23 CN CN2013103713275A patent/CN103475598A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7095716B1 (en) * | 2001-03-30 | 2006-08-22 | Juniper Networks, Inc. | Internet security device and method |
CN1917469A (en) * | 2005-08-18 | 2007-02-21 | 中国长城计算机深圳股份有限公司 | Method for controlling transmission of message based on priorities of message |
CN101110672A (en) * | 2006-07-19 | 2008-01-23 | 华为技术有限公司 | Method and system for establishing ESP security alliance in communication system |
CN102469087A (en) * | 2010-11-17 | 2012-05-23 | 中兴通讯股份有限公司 | Method and system for realizing control of quality of service, |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2021037216A1 (en) * | 2019-08-29 | 2021-03-04 | 华为技术有限公司 | Message transmission method and device, and computer storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2950206C (en) | Flow entry configuration method, apparatus, and system | |
CN105959195B (en) | Industrial internet field layer broadband bus technology implementation method | |
CN103986715B (en) | A kind of method and device of control of network flow quantity | |
CN105791213B (en) | Policy optimization device and method | |
PH12020550861A1 (en) | Data control method and terminal device | |
RU2014100914A (en) | METHOD AND DEVICE FOR TRANSMISSION / RECEIVING OF MULTIMEDIA-CONTENT IN THE MULTIMEDIA SYSTEM | |
RU2014117037A (en) | METHOD OF MANAGEMENT THE BANDBAND AND THE RELATED DEVICE | |
WO2014079091A1 (en) | Time-triggered ethernet-based data transmission method and node device | |
CN101286996A (en) | Storm attack resisting method and apparatus | |
CN106453126A (en) | Virtual machine traffic control method and device | |
WO2020083301A1 (en) | Network slice method, computer device and storage medium | |
CN106506392A (en) | A kind of network congestion processing method and device | |
CN105141637A (en) | Transmission encryption method taking flows as granularity | |
WO2015172373A1 (en) | Data processing method and apparatus for openflow network | |
CN102904823A (en) | Accurate flow control method based on multi-user multi-service of memory | |
CN106330762A (en) | Method of switch to accelerate data processing, CPU core for carrying out acceleration processing on data and switch | |
TW201616386A (en) | Cloud virtual network security protection method and system | |
CN103188171A (en) | Message scheduling method and equipment | |
WO2016008212A1 (en) | Terminal as well as method for detecting security of terminal data interaction, and storage medium | |
WO2012155702A1 (en) | Method, system, service processing server for updating service key | |
CN103560970A (en) | Method for realizing downlink speed limitation of network device with multiple LAN ports | |
CN103475598A (en) | Method for partitioning user priorities through SPI (serial peripheral interface) | |
CN103200112A (en) | Computer network transmission control protocol (TCP) flow control method | |
CN105939404B (en) | The acquisition methods and device of NAT resource | |
CN107995199A (en) | The port speed constraint method and device of the network equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination |