CN104683880A - Method for guaranteeing IP-based digital television information source safety on the basis of SDN (software defined networking) technology - Google Patents
Method for guaranteeing IP-based digital television information source safety on the basis of SDN (software defined networking) technology Download PDFInfo
- Publication number
- CN104683880A CN104683880A CN201510063207.8A CN201510063207A CN104683880A CN 104683880 A CN104683880 A CN 104683880A CN 201510063207 A CN201510063207 A CN 201510063207A CN 104683880 A CN104683880 A CN 104683880A
- Authority
- CN
- China
- Prior art keywords
- information source
- sdn
- source
- signal
- sub
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to a method for guaranteeing IP-based digital television information source safety on the basis of an SDN (software defined networking) technology. An internal information source, a main-headend core switch, SDN exchange equipment, a sub-headend service switch and external information sources are connected step by step via the same connection module; IP multicast signals are centralized into the main-headend core switch by the internal information source and are in butt joint with the SDN exchange equipment; the SDN exchange equipment customizes the program IP multicast signals appointed by the internal information source and sends the program IP multicast signals to the required sub-headend service switch; the external information sources are in butt joint with the sub-headend service switch to enable the external information sources to receive the IP multicast signals from the internal information source; the internal information source can receive the signal from the external information sources; the sub-headend service switches of different systems can be used for receiving the information source appointed by the internal information source, and the external information sources are mutually isolated. The method has the advantages of simpleness in networking, high practicality, high safety, low cost and stability in operation.
Description
Technical field
The present invention relates to a kind of method based on SDN technical guarantee IPization Digital Television information source safety.
Background technology
Radio data system, being that important Domestic News propagates platform, is also that the people obtains scientific knowledge, meets the important tool of entertainment demand.
Along with the development of TV tech, Digital Television IPization transmission mode has started progressively to replace traditional DS3, ASI transmission mode, become the trend of TV tech development, the television signal transmission pattern of all-IP is formally used in Broadcast and TV system, telecom operators.
Digital Television all-IP, be exactly adopt IP encapsulation technology from the output of the input of information source, signal content process and scheduling, signal, having broken conventional digital TV point-to-point ASI signal connected mode, realized signal stream combination in any, flexible dispatching, is the connection mode of any point-to-multipoint.
For Broadcast and TV system, after information source IPization, front end IP group broadcasting video frequency signal is from different system, and IP multicast signal stream receives and send frequently between system, after signal stream is communicated with, there is hidden danger in whole signal source system safety in operation and stability, consider from security of system, if with traditional firewall, the data protection means of exchange agreement carry out system safety protection, dispose relative complex, maintenance difficulties is larger.The present invention just in order to improve IP group broadcasting video frequency transmission security, through constantly exploring, innovation transformation and the unique information source safety system formed.
Summary of the invention
Technical problem to be solved by this invention is, there is provided a kind of flow process simple and easy, flexibility ratio is high, cost is low, possesses the method for isolation and stability, for ensureing that digital TV front-end IP signal source sends and receives safety, while the signal making built-in system and external system specify can communicate, isolate the signal outside illegal or specified scope, realize built-in system IP information source safety.
The present invention solves the problems of the technologies described above taked technical scheme: a kind of method based on SDN technical guarantee IPization Digital Television information source safety, identical link block is utilized to be connected step by step internal source, master headed core switch, SDN switching equipment, sub-headend service switch and external source, internal source is as information source center, front end, be made up of multiple information source system, bear video IP multicast signal production task, and being linked into master headed core switch by concentrated for front end information source, master headed core switch has been responsible for forwarding and reception work;
When needs are to a certain external source input signal, master headed core switch is configured in appointed output terminal mouth in the mode of static multicast and is connected with SDN switching equipment, SDN switching equipment utilizes self control and forward separating characteristic, to the IP multicast signal definition of master headed core switch output be received to specified port, be connected with the sub-headend service switch of external source by this Single port, external source obtains assigned ip video multicast in sub-headend service switch;
When internal source needs to receive multiple external source, sub-headend service switch will export specification signal to SDN switching equipment in static multicast mode, in like manner, SDN switching equipment is by the signal of multiple for definition port input, single or multiple interface of specifying is outputted to by the service of device interior automatic business processing, this interface is connected with master headed core switch, master headed core switch can only obtain the IP multicast signal after SDN switching equipment editor, then be delivered to each system use of Headend.
Compared with prior art, beneficial effect of the present invention is as follows:
1, traditional fire compartment wall isolation technology needs to increase various protocols and coordinates realization, when certain a part of IP signal increases or reduces, equipment of often locating all needs to be configured amendment, operation easier is large, security protection DeGrain, the present invention utilizes SDN technology to incorporate IP digital television system, SDN is the Internet Exchange Architecture based on OpenFlow standard, there is its chain of command and forward stalling characteristic, for far-end static IP signal, first send into SDN switching equipment, SDN switching equipment inside is furnished with rule in advance, and legal IP just can be forwarded.The process that IP multicast is passed in and out is all specify input and output, the IP multicast signal that all are non-designated can be isolated, ensure that internal source secured reception is to its exterior IP multicast signal, external source also can receive the IP multicast signal exported from built-in system simultaneously, signal effectively can isolate illegal address at reception process of transmitting, prevent broadcast storm, safeguards system safety, and greatly reduce maintenance cost and efficiency.
2, inside and outside can customize of IP multicast source transmitting-receiving, the scheduling of flexible, the safe settling signal of energy simultaneously, network configuration is simple, when needing newly-increased external signal access built-in system, only need aerial lug to be accessed SDN switching equipment port, support netting twine, fiber port, dispose simple, operation maintenance is more convenient.
3, through test in 2 years, do not occur any fault, safety and stability is high.
Accompanying drawing explanation
Fig. 1 is the schematic diagram of the method based on SDN technical guarantee IPization Digital Television information source safety of the present invention.
Fig. 2 is the schematic diagram of multiple sub-headend service switch security system of the present invention.
Embodiment
Below in conjunction with accompanying drawing and example, technical scheme of the present invention is described in further details.
As depicted in figs. 1 and 2, based on a method for SDN technical guarantee IPization Digital Television information source safety, identical link block is utilized to couple together step by step internal source, master headed core switch, SDN switching equipment, sub-headend service switch and external source.Operation principle is as follows:
As shown in Figure 1, internal source is as information source center, front end, be made up of multiple information source system, bear video IP multicast signal production task, master headed core switch is all accessed in front end signal source, master headed core switch has been responsible for forwarding and reception work, when needs are to a certain external source input signal, the mode of master headed core switch static multicast is configured in specifies delivery outlet port, this port is connected with SDN switching equipment, SDN switching equipment utilizes its control and forward separating characteristic, to the IP multicast signal definition of master headed core switch designated port output be received to specified port, and the content in this output port is required for external source, this Single port is connected with the sub-headend service switch of external source, the multicast address of definition is outputted to the port of specifying by the inner automatic business processing service of SDN switching equipment, be linked into sub-headend service switch, the address pool of regulation after exporting with SDN switching equipment can only be set up in sub-headend service switch, external source obtains assigned ip video multicast in sub-headend service switch, external source couples together to the physical link of internal source, for whole system, Signal reception unidirectional can effectively ensure internal source system safety.
As shown in Figure 2, when internal source needs the situation receiving multiple external source, sub-headend service switch will export specification signal to SDN switching equipment in static multicast mode, in like manner, SDN switching equipment is by the signal of multiple for definition port input, single or multiple interface of specifying is outputted to by the service of device interior automatic business processing, this interface is connected with master headed core switch, master headed core switch can only obtain the IP multicast signal after SDN switching equipment editor, be delivered to each system of Headend again to use, signal is the transmission of unidirectional assigned address from external source to internal source, outside illegal signals to enter into master headed core switch.
Therefore, be no matter that the present invention not only meets signal dispatching requirement, has also ensured the safe transmission of signal between system simultaneously from inside to outside or enter inside from outside.
Claims (1)
1. the method based on SDN technical guarantee IPization Digital Television information source safety, it is characterized in that, identical link block is utilized to be connected step by step internal source, master headed core switch, SDN switching equipment, sub-headend service switch and external source, internal source is as information source center, front end, be made up of multiple information source system, bear video IP multicast signal production task, and being linked into master headed core switch by concentrated for front end information source, master headed core switch has been responsible for forwarding and reception work;
When needs are to a certain external source input signal, master headed core switch is configured in appointed output terminal mouth in the mode of static multicast and is connected with SDN switching equipment, SDN switching equipment utilizes self control and forward separating characteristic, to the IP multicast signal definition of master headed core switch output be received to specified port, be connected with the sub-headend service switch of external source by this Single port, external source obtains assigned ip video multicast in sub-headend service switch;
When internal source needs to receive multiple external source, sub-headend service switch will export specification signal to SDN switching equipment in static multicast mode, in like manner, SDN switching equipment is by the signal of multiple for definition port input, single or multiple interface of specifying is outputted to by the service of device interior automatic business processing, this interface is connected with master headed core switch, master headed core switch can only obtain the IP multicast signal after SDN switching equipment editor, then be delivered to each system use of Headend.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510063207.8A CN104683880B (en) | 2015-02-06 | 2015-02-06 | A kind of method based on SDN technical guarantee IPization DTVs information source safety |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510063207.8A CN104683880B (en) | 2015-02-06 | 2015-02-06 | A kind of method based on SDN technical guarantee IPization DTVs information source safety |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104683880A true CN104683880A (en) | 2015-06-03 |
| CN104683880B CN104683880B (en) | 2018-01-09 |
Family
ID=53318352
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510063207.8A Active CN104683880B (en) | 2015-02-06 | 2015-02-06 | A kind of method based on SDN technical guarantee IPization DTVs information source safety |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104683880B (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103346969A (en) * | 2013-07-05 | 2013-10-09 | 中国科学院计算机网络信息中心 | Method for achieving dynamic multicast spanning tree path adjustment based on OpenFlow |
| CN103428771A (en) * | 2013-09-05 | 2013-12-04 | 迈普通信技术股份有限公司 | Communication method, software defined network SDN switch and communication system |
| WO2014041550A1 (en) * | 2012-09-11 | 2014-03-20 | Hewlett-Packard Development Company, L.P. | Discovering ip multicast group memberships in software defined networks |
| CN104202266A (en) * | 2014-08-04 | 2014-12-10 | 福建星网锐捷网络有限公司 | Communication method, switch, controller and communication system |
-
2015
- 2015-02-06 CN CN201510063207.8A patent/CN104683880B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014041550A1 (en) * | 2012-09-11 | 2014-03-20 | Hewlett-Packard Development Company, L.P. | Discovering ip multicast group memberships in software defined networks |
| CN103346969A (en) * | 2013-07-05 | 2013-10-09 | 中国科学院计算机网络信息中心 | Method for achieving dynamic multicast spanning tree path adjustment based on OpenFlow |
| CN103428771A (en) * | 2013-09-05 | 2013-12-04 | 迈普通信技术股份有限公司 | Communication method, software defined network SDN switch and communication system |
| CN104202266A (en) * | 2014-08-04 | 2014-12-10 | 福建星网锐捷网络有限公司 | Communication method, switch, controller and communication system |
Non-Patent Citations (2)
| Title |
|---|
| JIANFENG ZOU等: "DESIGN AND IMPLEMENTATION OF SECURE MULTICAST BASED ON SDN", 《PROCEEDINGS OF IEEE IC-BNMT2013》 * |
| 戴彬等: "SDN安全探讨: 机遇与威胁并存", 《计算机应用研究》 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104683880B (en) | 2018-01-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101257326B (en) | Method and system for matching pair of wireless transmitting kit and wireless receiving kit | |
| CN201813496U (en) | Digital video broadcasting (DVB) video gateway system | |
| US20110271317A1 (en) | Set-Top-Box Having a Built-In Master Node That Provides an External Interface for Communication and Control in a Power-Line-Based Residential Communication System | |
| CN100576813C (en) | Coaxle cable exchanging system and method | |
| CN101237291A (en) | Mdu broadcasting signal distribution system | |
| CN102227137A (en) | Network digital set top box and method for realizing multiple network access | |
| CN102938839A (en) | Monitoring front-end equipment and encoding server | |
| CN204046750U (en) | A kind of video playback box | |
| CN207117651U (en) | One kind fusion home gateway | |
| CN101945059A (en) | IP-based digital home common gateway system | |
| CN201789516U (en) | Digital family interaction system based on wireless family gateway | |
| CN102215134B (en) | Hot standby switcher of IP (Internet Protocol) code stream | |
| CN106302188A (en) | The multicast message transmission control method of a kind of switch device and device | |
| CN204350225U (en) | A kind of based on SDN technique construction IPization Digital Television information source safety system | |
| CN104683880A (en) | Method for guaranteeing IP-based digital television information source safety on the basis of SDN (software defined networking) technology | |
| CN102437940B (en) | Photoelectric conversion access device | |
| CN209330279U (en) | PON network system | |
| CN103885413B (en) | Household appliance management method, system and device | |
| CN202738038U (en) | Digital television all-in-one machine | |
| CN101924922A (en) | Monitoring method and monitoring system | |
| CA3029553C (en) | System for providing data communication over a coaxial network | |
| CN102413026A (en) | Household multifunctional intelligent management apparatus | |
| CN206759443U (en) | A kind of novel high-frequency head and wireless LTE integration systems | |
| CN202652400U (en) | Two-wire-system multi-channel signal superposition/separation system | |
| CN203734686U (en) | System for broadcasting IP multicast signal through SDH network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB03 | Change of inventor or designer information |
Inventor after: Yu Hao Inventor after: Huang Junwen Inventor after: Wang Bin Inventor after: Su Zhe Inventor after: Zhong Zhilin Inventor after: Zhu Yingde Inventor after: Zhang Weihua Inventor after: Cai Kun Inventor after: Tan Yi Inventor after: Lu Xiaodan Inventor after: Tan Junguang Inventor after: Liu Rongyi Inventor after: Wang Pei Inventor before: Wang Bin Inventor before: Wang Pei Inventor before: Zhou Ziqi Inventor before: Huang Junwen Inventor before: Su Zhe Inventor before: Zhong Zhilin Inventor before: Zhu Yingde Inventor before: Zhang Weihua Inventor before: Yu Hao Inventor before: Cai Kun Inventor before: Tan Yi Inventor before: Lu Xiaodan Inventor before: Tan Junguang Inventor before: Liu Rongyi |
|
| CB03 | Change of inventor or designer information | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |