CN105991464A - Network traffic shunting method, main control board, interface board and gateway device - Google Patents
Network traffic shunting method, main control board, interface board and gateway device Download PDFInfo
- Publication number
- CN105991464A CN105991464A CN201510188888.0A CN201510188888A CN105991464A CN 105991464 A CN105991464 A CN 105991464A CN 201510188888 A CN201510188888 A CN 201510188888A CN 105991464 A CN105991464 A CN 105991464A
- Authority
- CN
- China
- Prior art keywords
- interface
- network
- network traffics
- configuration information
- intranet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention provides a network traffic shunting method, a main control board, an interface board and a gateway device. The method includes the following steps that: interface division settings of a user for the interfaces of a gateway device are received, and interface configuration information is generated; and the interface configuration information is sent to the interface board, so that the interface board can set internal network-domain interfaces according to the interface configuration information and can carry out intra-domain forwarding on network traffic of network-domain interfaces simultaneously comprises an incoming interface and an outgoing interface. With the network traffic shunting method provided by the invention adopted, network traffic exchanged between internal network interfaces are directly forwarded to other network elements in the internal network domain at the interface board, and the network traffic is not required to be forwarded to other business boards, so that software loaded by CPUs on the other business boards does not need to search routing table entries to realize the forwarding of the network traffic, and therefore, the load of the CPUs of the other business boards can be decreased, the traffic forwarding speed of the business boards can be improved, and the performance of the whole gateway can be improved.
Description
Technical field
The present invention relates to network communication technology field, particularly relate to the shunt method of a kind of network traffics, master
Control plate, interface board and gateway device.
Background technology
Network application, network demand increasingly complex at present, user constantly increases newly for realizing intelligent network
Service traffics, and be no longer limited to " accessing outer network from inner network ", progressively require that regional realizes network
Two-way intercommunication or single-pass.
For the networking situation of mutual flow between the network element of zones of different in internal lan i.e. Intranet territory, existing
The main implementation having technology is as follows: the gateway of Intranet domain network element such as terminal, server etc. all points to core
Heart gateway, the software that between Intranet, all mutual flows all load through the CPU of core gateway carries out route and turns
Send out.But the software that prior art is loaded by core gateway CPU carries out flow forwarding, can consume and set
Standby cpu resource, and need all flows including, Intranet accesses Intranet, accessing outer network from inner network, outer net
The flow accessing Intranet forwards configuration forwarding strategy, because of configuration strategy mixing cause core gateway configuration complicated,
Forward the problems such as pressure is big, loaded down with trivial details.
Summary of the invention
In view of this, the present invention provides the shunt method of a kind of network traffics, is applied to frame gateway device
Master control borad in, above-mentioned frame gateway device also includes: interface board, one or more business boards, Intranet
In territory, the interface that outreaches of all network elements is both connected on above-mentioned interface board, and said method includes: receive user
Gateway device interface is carried out the setting of interface division, generates interface configuration information;Wherein, above-mentioned interface
Configuration information includes: arranged by the interface that interface is connected that outreaches with above-mentioned Intranet domain network element on interface board
For Intranet domain interface;The network traffics that incoming interface and outgoing interface belong to above-mentioned Intranet domain interface are carried out not
Forward in doing the territory of Business Processing;Above-mentioned interface configuration information is handed down to above-mentioned interface board, so that above-mentioned
Interface board arranges Intranet domain interface according to above-mentioned interface configuration information and belongs to incoming interface and outgoing interface
The network traffics stating Intranet domain interface do forwarding in territory.
Alternatively, the shunt method of above-mentioned network traffics, also include: store above-mentioned interface configuration information.
On the other hand, it is provided that the shunt method of another network traffics, it is applied to frame gateway device
Interface board in, above-mentioned frame gateway device also includes master control borad, one or more business boards, Intranet territory
In the interface that outreaches of all network elements be both connected on above-mentioned interface board, said method includes: receive above-mentioned master
The control interface configuration information that issues of plate, above-mentioned interface configuration information includes: by interface board with above-mentioned Intranet
The interface that interface is connected that outreaches of domain network element is set to Intranet domain interface;Incoming interface and outgoing interface are all belonged to
Forward in the network traffics of above-mentioned Intranet domain interface do not do the territory of Business Processing;According to above-mentioned interface
The interface that interface is connected that outreaches with above-mentioned Intranet domain network element on interface board is set to Intranet by configuration information
Domain interface;Receive from the network traffics of above-mentioned Intranet domain interface and inquire about above-mentioned network according to route table items
The outgoing interface of flow;In judging that whether the outgoing interface of above-mentioned network traffics is according to above-mentioned interface configuration information
Net domain interface;If the outgoing interface of above-mentioned network traffics is Intranet domain interface, above-mentioned network traffics are carried out not
Forward in doing the territory of Business Processing.
Alternatively, above-mentioned interface configuration information also includes: connect removing above-mentioned Intranet territory on above-mentioned interface board
The remaining interface of mouth is set to outer net domain interface;By incoming interface be Intranet domain interface, outgoing interface be outer net territory
The network traffics of interface are sent to above-mentioned business board and do Business Processing;Said method also includes: according to above-mentioned
Interface configuration information judges whether the outgoing interface of above-mentioned network traffics is outer net domain interface;If above-mentioned network flow
The outgoing interface of amount is outer net domain interface, above-mentioned network traffics is sent to according to above-mentioned interface configuration information
State business board and carry out Business Processing.
Alternatively, the above-mentioned outgoing interface inquiring about above-mentioned network traffics according to route table items, including: obtain net
The purpose IP address of network traffic messages;Purpose IP address coupling according to above-mentioned network traffics message is above-mentioned
The destination network segment of route table items;According to the destination network segment matched, inquire about the outgoing interface of above-mentioned network traffics.
The shunt method of corresponding above-mentioned network traffics, it is provided that the master control borad of a kind of gateway device, including:
Information collocation module, carries out the setting of interface division for receiving user to gateway device interface, raw
Become interface configuration information;Wherein, above-mentioned interface configuration information includes: by interface board with above-mentioned Intranet territory
The interface that interface is connected that outreaches of network element is set to Intranet domain interface;Incoming interface and outgoing interface are belonged to
The network traffics of above-mentioned Intranet domain interface forward in not doing the territory of Business Processing;Configuration information issues mould
Block, for being handed down to above-mentioned interface board by above-mentioned interface configuration information, so that above-mentioned interface board is according to above-mentioned
Interface configuration information arranges Intranet domain interface and incoming interface and outgoing interface belongs to above-mentioned Intranet domain interface
Network traffics forward in doing territory.
Optionally, the master control borad of above-mentioned gateway device, also include: memory module, be used for storing above-mentioned connecing
Mouth configuration information.
It addition, additionally provide the interface board of a kind of gateway device, including: configuration information receiver module, use
In receiving the interface configuration information that issues of master control borad, above-mentioned interface configuration information includes: by interface board with
The interface that interface is connected that outreaches of above-mentioned Intranet domain network element is set to Intranet domain interface;To incoming interface and going out
Interface belongs to forward in the network traffics of above-mentioned Intranet domain interface do not do the territory of Business Processing;Interface
Module is set, for according to above-mentioned interface configuration information by interface board with the outreaching of above-mentioned Intranet domain network element
The interface that interface is connected is set to Intranet domain interface;Outgoing interface enquiry module, for receiving from above-mentioned
The network traffics of Intranet domain interface also inquire about the outgoing interface of above-mentioned network traffics according to route table items;Judge mould
Whether block, be that Intranet territory connects for judging the outgoing interface of above-mentioned network traffics according to above-mentioned interface configuration information
Mouthful;Forwarding module in territory, is used in the case of the outgoing interface of above-mentioned network traffics is Intranet domain interface,
Forward in above-mentioned network traffics are not done the territory of Business Processing.
Optionally, above-mentioned outgoing interface enquiry module, including: purpose IP acquiring unit, it is used for obtaining network
The purpose IP address of traffic messages;Matching unit, for purpose IP according to above-mentioned network traffics message
The destination network segment of address coupling route table items;Query unit, for according to the destination network segment matched, looking into
Ask the outgoing interface of above-mentioned network traffics.
Additionally, additionally provide a kind of gateway device, including one or more business boards, also include: above-mentioned
Arbitrary described master control borad and any of the above-described described interface board, wherein, Intranet domain network element outreach interface
It is both connected on above-mentioned interface board.
Specifically, the present invention is achieved through the following technical solutions:
The shunt method of the network traffics that the present invention provides, sets by docking interface on oralia simply
Put and can realize the shunting from Intranet territory flow at interface board.By between interior network interface at interface board
Mutual network traffics are directly forwarded to other network element in Intranet territory, it is not necessary to be forwarded to other business board
The software lookup route table items that CPU on business board is loaded forwards, and alleviates other business board
The load of CPU, and then also improve the flow forwarding speed of business board, thus improve whole gateway and set
Standby performance.
Accompanying drawing explanation
Fig. 1 is the structural representation of frame gateway device embodiment of the present invention;
Fig. 2 is the networking schematic diagram of the shunt method embodiment of application inventive network flow;
Fig. 3 is the flow chart of the shunt method embodiment one of inventive network flow;
Fig. 4 is the flow chart of the shunt method embodiment two of inventive network flow;
Fig. 5 is the schematic diagram that interface board of the present invention carries out network traffics forwarding embodiment;
Fig. 6 is the structured flowchart of the master control borad embodiment of gateway device of the present invention;
Fig. 7 is the structured flowchart of the interface board embodiment of gateway device of the present invention;
Fig. 8 is the structured flowchart of outgoing interface enquiry module embodiment in interface board of the present invention.
Detailed description of the invention
Understandable, below in conjunction with the accompanying drawings for enabling the above-mentioned purpose of the present invention, feature and advantage to become apparent from
The present invention is further detailed explanation with detailed description of the invention.
The embodiment of the invention discloses the shunt method of a kind of network traffics, be used for solving to hand between interior network interface
Shunting in the case of flow need not the networking of business of doing mutually processes.What is called need not do business and refers to business
Flowing of access only does routing forwarding, does not do the Business Processing such as NAT conversion, flow analysis, audit.
The shunt method embodiment of network traffics disclosed by the invention is applied in a kind of frame gateway device,
The structural representation of frame gateway device of the present invention as shown in Figure 1, the frame gateway that the present invention provides sets
Standby can be a kind of frame close coupling equipment, including: master control borad, interface board, one or more types
Forwarding service plate, each board is connected by internal switching network (Fabric).Wherein, master control borad is used
In manage other boards, such as each business board is configured, according to study to procotol for connecing
Oralia and each forwarding service plate generate route table items and are handed down to each board.Interface board is used for as gateway
Equipment provides and outreaches interface and provide exchange forwarding capability, and interface board is provided with network interface and exchange core
Sheet.Other forwarding service plate carries two tasks, and one is the Business Processing to application of electronic report level, separately
One Business Processing being message is carried out forwarded level;The Business Processing of so-called application layer refers to from opening
Put from the point of view of seven layer model in the Business Processing containing in Internet, such as FW (Fireworks, fire wall),
IPS (Intrusion Prevention System, intrusion prevention system) and UAG (Uniform audit
Gateway, unified audit gateway) to process of message etc..The most above-mentioned forwarding service plate is permissible
It is one or more in FW plate, IPS plate, UAG plate.
The present invention allows the handling process of network traffics mutual between network manager's interface to Intranet territory to enter
Row is made rational planning for.Networking with reference to the shunt method embodiment of the application inventive network flow shown in Fig. 2
Schematic diagram, so-called Intranet territory is the internal lan at user place, in fig. 2, server 1, clothes
Business device 2, PC1, PC2 network connect the network area of composition and are Intranet territory.Corresponding, public network A,
Public network B, public network C are then outer net territory, and above-mentioned public network can be telecommunications, UNICOM, movement, education network etc.
Public network.Intranet territory is connected by gateway device with outer net territory.
In implementing the networking of shunt method of the network traffics that the present invention provides, all network elements in Intranet territory
The interface (not shown) that outreaches be both connected on the interface board of gateway device.I.e. on network planning rank
Section, the interface quantity that interface board is arranged is at least equal to the quantity of network elements all in Intranet territory.In Intranet territory
The interface that outreaches of each network element can serve as accessing outer network from inner network, Intranet access Intranet, extranet access Intranet
Interface.
With reference to Fig. 3, it is shown that the flow chart of the shunt method embodiment one of inventive network flow, application
In the master control borad of above-mentioned frame gateway device, said method includes:
The setting that gateway device interface is divided by step 31, reception user, generates interface configuration information;
Wherein, above-mentioned interface configuration information includes: be connected by the interface that outreaches with Intranet domain network element on interface board
Interface be set to Intranet domain interface;Incoming interface and outgoing interface are belonged to the network traffics of Intranet domain interface
Forward in not doing the territory of Business Processing;
In the embodiment of the present invention, user can pass through network management interface or order line configuration order to master control board card
CPU issue the interface of docking oralia and carry out the information that configures, thus realize the network from Intranet territory
The reasonable diffluence of flow.Above-mentioned user can be domestic consumer or network manager.
In step 31, the division to network device interface can be specifically, press the interface of the network equipment
It is divided into Intranet domain interface, outer net domain interface, server domain interface etc. according to region.The above-mentioned network equipment
Interface includes Ethernet interface, VLAN (the Virtual Local being arranged on interface board and each forwarding service plate
Area Network, VLAN) the conventional forwarded mouth such as interface, aggregation interface.The present invention is real
Executing in example, all Intranet domain interfaces are distributed on interface board, and outer net domain interface and server domain interface can
To be arranged on any board.
In the embodiment of the present invention, step 31 mainly include by interface board with Intranet domain network element outreach interface
The interface definition being connected is Intranet domain interface, and arrange incoming interface and outgoing interface are belonged to above-mentioned in
The network traffics of net domain interface forward in carrying out territory.The service traffics forwarded in i.e. doing territory must meet two bars
Part: one, these network traffics from the network element in Intranet territory and are sent to interface board by Intranet domain interface;Two,
The outgoing interface of above-mentioned network traffics belongs to Intranet domain interface.
Forward in so-called territory, that is interface board does without above-mentioned network traffics are transmitted to other business boards
Business Processing, and its that the outgoing interface inquired by the exchange chip on interface board is forwarded in Intranet territory
His network element.Forwarding in the territory of network traffics is to realize a network traffics network element from Intranet territory to be forwarded to
The process of another network element, with reference to shown in Fig. 2, the network traffics between server 1 and PC2 forward
Forward in i.e. belonging to territory.
Alternatively, in an alternative embodiment of the invention, above-mentioned interface configuration information can also include: will connect
On oralia, other interface except Intranet domain interface is set to outer net domain interface;It is that Intranet territory connects by incoming interface
Mouthful, outgoing interface be that the network traffics of outer net domain interface are sent to other business boards and do Business Processing.That is, if
Outgoing interface from the network traffics in Intranet territory is outer net domain interface, then above-mentioned network traffics done and turn between territory
Send out.Forward between so-called territory, it is simply that the network traffics from Intranet territory are sent in gateway device other
Forwarding service plate such as FW business board, IPS business board, UAG business board etc. do corresponding Business Processing;
Sent to outer net territory by the outer net domain interface on above-mentioned interface board afterwards, as in figure 2 it is shown, from PC1 to
The network traffics that public network C is done forward and are between territory forwarding.
It is further preferred that the shunt method of the network traffics of present invention offer, in mainboard plate side, also may be used
To include: store above-mentioned interface configuration information.The embodiment of the present invention increases and preserves above-mentioned interface configuration letter
The step of breath, is on the one hand easy to the gateway device record user historical process to network configuration, on the other hand
Can be in the case of system accident power-off, automatic restoration interface configures, and promotes the user's body of gateway device
Test.
Step 32, above-mentioned interface configuration information is handed down to interface board, so that interface board is according to above-mentioned interface
Configuration information arranges Intranet domain interface and incoming interface and outgoing interface belongs to the network of described Intranet domain interface
Flow forwards in doing territory.
The interface configuration information of user setup is handed down to interface board for master control borad from control plane by step 32
Process.After interface board receives the interface configuration information that master control borad issues, by interface board with Intranet territory
The interface that interface is connected that outreaches of network element is set to Intranet domain interface.Interface board is connect by above-mentioned Intranet territory
Mouth receives the network traffics from Intranet territory, inquires interface according to the message information of network traffics.Judge
Whether outgoing interface belongs to Intranet domain interface, forward in the most above-mentioned network traffics carry out territory.
Alternatively, in an alternative embodiment of the invention, if the outgoing interface of network traffics is outer net domain interface,
Then carry out above-mentioned network traffics forwarding between territory.It is to say, for belonging to from Intranet territory, destination
The network traffics in outer net territory forward after carrying out regular traffic process according to prior art.
As can be seen here, the shunt method of the network traffics that the present invention provides, by docking on oralia simply
The setting of interface can realize the shunting from Intranet territory flow at interface board.By interior at interface board
Network traffics mutual between network interface are directly forwarded to other network element in Intranet territory, it is not necessary to be forwarded to it
The software lookup route table items that its business board makes the CPU on business board load forwards, and alleviates it
The load of its business board CPU, and then also improve the flow forwarding speed of other business board, thus improve
The flow forwarding speed of whole gateway device.
Corresponding, Fig. 4 shows the flow process of the shunt method embodiment two of the network traffics that the present invention provides
Figure, the executive agent of the method embodiment is the interface board of gateway device.Equally, the group of the method is implemented
In web frame, in Intranet territory, the interface that outreaches of all network elements is both connected on interface board.Said method includes:
The interface configuration information that step 41, reception master control borad issue, above-mentioned interface configuration information includes: will
On interface board, the interface that interface is connected that outreaches with described Intranet domain network element is set to Intranet domain interface;Right
Incoming interface and outgoing interface belong in the territory that the network traffics of described Intranet domain interface do not do Business Processing
Forward;
Step 42, according to interface configuration information, the interface that outreaches with Intranet domain network element on interface board is connected
Interface be set to Intranet domain interface;
The schematic diagram of network traffics forwarding is carried out, it is assumed that arrange on interface board with reference to the interface board shown in Fig. 5
Have eight interfaces, each interface be designated 1-8, wherein, the external connecting of network element in interface 1-4 and Intranet territory
Mouth is connected, then interface 1-4 is set to Intranet domain interface.Optionally, residue interface 5-8 is set to
Outer net domain interface.
Step 43, reception from the network traffics of Intranet domain interface and inquire about network traffics according to route table items
Outgoing interface;
In step 43, in interface board, the route table items of storage is that master control borad is issued on interface board in advance.
The route table items issued according to master control borad inquires about the process of the outlet of network traffics, particularly as follows: according to network
The outgoing interface of feature (characterizing specific message flow) the inquiry correspondence of traffic messages.Refer to table 1 institute
The example of the route table items shown, user can arrange purpose IP address and belong to the 5.5.1.0--5.5.1.254 network segment
Message enter after gateway device, the interface 1 on interface board forwards;Definition purpose IP address
Belong to the message of the 5.5.2.0--5.5.2.254 network segment interface 2 on interface board to forward, the like.
Table 1 is the most exemplary, during reality is implemented, and the matching characteristic of query message outgoing interface foundation
Can also is that other message characteristic.
| Sequence number | Destination network segment | Interface identifier |
| 1 | 5.5.1.0--5.5.1.254 | Interface 1 |
| 2 | 5.5.2.0--5.5.2.254 | Interface 2 |
| 3 | 5.5.3.0--5.5.3.254 | Interface 3 |
| 4 | 5.5.4.0--5.5.4.254 | Interface 4 |
| 5 | 5.5.5.0--5.5.5.254 | Interface 5 |
| 6 | 5.5.6.0--5.5.6.254 | Interface 6 |
| 7 | 5.5.7.0--5.5.7.254 | Interface 7 |
| 8 | 5.5.8.0--5.5.8.254 | Interface 8 |
Table 1
In conjunction with table 1, the route table items issued according to described master control borad in step 43 inquires about described network traffics
The specific implementation process of outgoing interface may include that
Step A, the purpose IP address of acquisition network traffics message;
Step B, mate the destination network segment of route table items according to the purpose IP address of described network traffics message;
In step B, on interface board, the route table items of storage is that master control borad is handed down to interface board when system start-up
Route table items.
Step C, according to the corresponding destination network segment matched in described route table items, inquire about described network flow
The outgoing interface of amount.
Illustratively, it is assumed that from the IP ground of the first network traffic messages that the Intranet domain interface 1 of interface board receives
Location is 5.5.3.1, then by the 3rd route forwarding table items in inquiry table 1, first network flow report
The outgoing interface of literary composition is interface 3.In like manner, it is assumed that the second network received from the Intranet domain interface 2 of interface board
The purpose IP address of traffic messages is 5.5.7.1, then by the 7th route table items in inquiry table 1,
The outgoing interface of the second network traffics message is interface 7.
Whether step 44, the outgoing interface judging described network traffics according to described interface configuration information are Intranet
Domain interface;
If the outgoing interface of the described network traffics of step 45 is Intranet domain interface, then connect by described Intranet territory
Forward in not doing the territory of Business Processing mouthful to described network traffics.
Alternatively, in an alternative embodiment of the invention, master control borad is handed down to the interface configuration information of interface board
Can also include: after removing described Intranet domain interface on described interface board, remaining interface is set to outer net
Domain interface;By incoming interface be Intranet domain interface, outgoing interface be that the network traffics of outer net domain interface are sent to it
He does Business Processing by business board;
Can also include on the basis of Fig. 4 embodiment: judge network traffics according to interface configuration information
Whether outgoing interface is outer net domain interface;If the outgoing interface of network traffics is outer net domain interface, connect according to above-mentioned
Described network traffics are sent to other business boards and carry out Business Processing by mouth configuration information.
The schematic diagram forwarded network traffics below in conjunction with the interface board of the gateway device shown in Fig. 5 is said
The bright above-mentioned implementation process that network traffics are forwarded.Assume to set the interface being designated 1~4 on interface board
It is set to Intranet domain interface, the interface that interface board is designated 5~8 is set to outer net domain interface.Through step
43 inquiries learn that the outgoing interface 3 of first network flow belongs to Intranet domain interface, then do first network flow
Forward in territory.As it is shown in figure 5, represent the forwarding road of first network traffic messages with black bands arrow solid line
Footpath, particularly as follows: first flow message enters gateway device, interface board through the Intranet domain interface 1 of interface board
Other network elements of directly first network flow being forwarded in Intranet territory by interface 3 of forwarding chip.Phase
For prior art, because the interface on docking oralia is divided so that network mutual between Intranet
Flow is no longer forwarded to other business board and does Business Processing, alleviates other business board CPU in gateway device
Load.
In like manner, learn that the outgoing interface 7 of the second network traffics belongs to outer net domain interface, then through step 43 inquiry
Second network traffics are done and forwards between territory.As it is shown in figure 5, represent the second network with black bands arrow dotted line
The forward-path of traffic messages, sets particularly as follows: second flow message enters gateway through the interface 2 of interface board
Standby, it is outer net domain interface that interface board exchange chip inquires the outgoing interface 7 of this flow, according to prior art
Natural mode can sequentially pass through above-mentioned FW plate, UAG plate, the CPU of IPS plate do corresponding business
Process, sent to outer net territory by outer net domain interface 7 afterwards.
It follows that the shunt method of the network traffics of present invention employing, join according to the interface of user setup
Confidence ceases, and the interface that interface board is connected with Intranet domain network element is set to Intranet domain interface, by outgoing interface
Forward in carrying out territory for the network traffics of Intranet domain interface, it is achieved that to the network traffics accessing intranet and extranet
Shunting effect, it is to avoid the CPU that mutual network traffics between interior network interface are transmitted to other business board is carried out
Business Processing, alleviates the load of other forwarding service plate CPU in gateway device, improves gateway device
Performance.
For aforesaid each method embodiment, in order to be briefly described, therefore it is all expressed as a series of dynamic
Combining, but those skilled in the art know with this, the present invention is not by described sequence of movement
Limiting, because according to the present invention, some step can use other orders or carry out simultaneously.
Secondly, those skilled in the art also should know, embodiment described in this description belongs to can
Select embodiment, necessary to involved action and the module not necessarily present invention.
Corresponding with the shunt method embodiment one of aforementioned network flow, present invention also offers a kind of gateway
The master control borad embodiment of equipment, with reference to the knot of the master control borad embodiment of the gateway device of the present invention shown in Fig. 6
Structure block diagram, including:
Information collocation module 61, carries out the setting of interface division for receiving user to gateway device interface,
Generate interface configuration information;Wherein, described interface configuration information includes: by interface board with described Intranet
The interface that interface is connected that outreaches of domain network element is set to Intranet domain interface;Incoming interface and outgoing interface are all belonged to
Forward in the network traffics of described Intranet domain interface do not do the territory of Business Processing.Optionally, above-mentioned
The interface configuration information that information collocation module 61 generates can also include: will remove above-mentioned Intranet on interface board
After domain interface, remaining interface is set to outer net domain interface;It is that Intranet domain interface, outgoing interface are by incoming interface
The network traffics of outer net domain interface are sent to other business boards and do Business Processing.
Configuration distributing module 62, for described interface configuration information is handed down to described interface board, so that institute
State interface board arrange Intranet domain interface according to described interface configuration information and incoming interface and outgoing interface are belonged to
The network traffics of described Intranet domain interface forward in doing territory.
Optionally, in another embodiment of master control borad of the gateway device provided in the present invention, it is also possible to including:
Memory module, is used for storing above-mentioned interface configuration information.
The shunt method embodiment two of the network traffics of corresponding aforementioned offer, present invention also offers a kind of net
The interface board embodiment of pass equipment, with reference to the structural frames of the interface board embodiment of the gateway device shown in Fig. 7
Figure, including:
Configuration information receiver module 71, for receiving the interface configuration information that master control borad issues, described interface
Configuration information includes: arranged by the interface that interface is connected that outreaches with described Intranet domain network element on interface board
For Intranet domain interface;The network traffics that incoming interface and outgoing interface belong to described Intranet domain interface are carried out not
Forward in doing the territory of Business Processing;
Optionally, the interface configuration information that configuration information receiver module 71 receives can also include: by institute
State remaining interface after removing described Intranet domain interface on interface board and be set to outer net domain interface;By incoming interface
It is sent to other business boards for the network traffics that Intranet domain interface, outgoing interface are outer net domain interface do at business
Reason.
Interface arranges module 72, for according to described interface configuration information by interface board with described Intranet territory
The interface that interface is connected that outreaches of network element is set to Intranet domain interface;
Corresponding, in another embodiment of interface board, interface arranges module and can be also used for according to receiving
Interface configuration information will remove remaining interface after Intranet domain interface on interface board and be set to outer net domain interface.
Outgoing interface enquiry module 73, for receiving from the network traffics of described Intranet domain interface and according to institute
State the outgoing interface of the route table items described network traffics of inquiry that master control borad issues;
With reference to the structured flowchart of the outgoing interface enquiry module embodiment shown in Fig. 8, above-mentioned outgoing interface inquiry mould
Block 73, may include that purpose IP acquiring unit 731, for obtaining purpose IP of network traffics message
Address.
Matching unit 732, mates the mesh of route table items for the purpose IP address according to network traffics message
The network segment.
Query unit 733, for according to the corresponding destination network segment matched in route table items, inquires about network
The outgoing interface of flow.
Whether judge module 74, be Intranet for judging the outgoing interface of network traffics according to interface configuration information
Domain interface.In another embodiment, above-mentioned judge module can also judge network according to interface configuration information
Whether the outgoing interface of flow is the excuse of outer net territory.
Forwarding module 75 in territory, are used in the case of the outgoing interface of described network traffics is Intranet domain interface,
Forward in described network traffics are not done the territory of Business Processing.
In another embodiment of interface board of the present invention, above-mentioned interface board can also include: forwards mould between territory
Network traffics, in the case of the outgoing interface of network traffics is outer net domain interface, are forwarded to it by block
Its business board does corresponding Business Processing, afterwards by the network traffics after Business Processing by above-mentioned outer net territory
Interface is forwarded to outer net territory.
Additionally, present invention also offers a kind of gateway device, as it is shown in figure 5, include one or more industry
Business plate, also includes: the master control borad described in any of the above-described embodiment and any of the above-described described interface board, its
In, in Intranet territory, user place, the interface that outreaches of all network elements is both connected on described interface board.
Each embodiment in this specification all uses the mode gone forward one by one to describe, and each embodiment stresses
Be all the difference with other embodiments, between each embodiment, identical similar part sees mutually
?.For system embodiment, due to itself and embodiment of the method basic simlarity, so the ratio described
Relatively simple, relevant part sees the part of embodiment of the method and illustrates.
The foregoing is only presently preferred embodiments of the present invention, not in order to limit the present invention, all at this
Within the spirit of invention and principle, any modification, equivalent substitution and improvement etc. done, should be included in
Within the scope of protection of the invention.
Claims (10)
1. a shunt method for network traffics, is applied in the master control borad of frame gateway device, described frame
Formula gateway device also includes: interface board, one or more business boards, it is characterised in that institute in Intranet territory
The interface that outreaches having network element is both connected on described interface board, and described method includes:
Receive user and gateway device interface is carried out the setting of interface division, generate interface configuration information;Its
In, described interface configuration information includes: be connected by the interface that outreaches with described Intranet domain network element on interface board
The interface connect is set to Intranet domain interface;Incoming interface and outgoing interface are belonged to the net of described Intranet domain interface
Network flow forwards in not doing the territory of Business Processing;
Described interface configuration information is handed down to described interface board, so that described interface board is according to described interface
Configuration information arranges Intranet domain interface and incoming interface and outgoing interface belongs to the network of described Intranet domain interface
Flow forwards in doing territory.
The shunt method of network traffics the most according to claim 1, it is characterised in that also include:
Store described interface configuration information.
3. a shunt method for network traffics, is applied in the interface board of frame gateway device, described frame
Formula gateway device also includes master control borad, one or more business boards, it is characterised in that all in Intranet territory
The interface that outreaches of network element is both connected on described interface board, and described method includes:
Receiving the interface configuration information that described master control borad issues, described interface configuration information includes: by interface
On plate, the interface that interface is connected that outreaches with described Intranet domain network element is set to Intranet domain interface;To entering to connect
Mouthful and outgoing interface belong to the network traffics of described Intranet domain interface and do not do forwarding in the territory of Business Processing;
According to described interface configuration information, the interface that outreaches with described Intranet domain network element on interface board is connected
Interface be set to Intranet domain interface;
Receive from the network traffics of described Intranet domain interface and inquire about described network traffics according to route table items
Outgoing interface;
Whether the outgoing interface judging described network traffics according to described interface configuration information is Intranet domain interface;
If the outgoing interface of described network traffics is Intranet domain interface, described network traffics are not done business
Forward in the territory processed.
The shunt method of network traffics the most according to claim 3, it is characterised in that described interface
Configuration information also includes: will remove outside the described remaining interface of Intranet domain interface is set on described interface board
Net domain interface;By incoming interface be Intranet domain interface, outgoing interface be that the network traffics of outer net domain interface are sent to
Described business board does Business Processing;
Described method also includes:
Whether the outgoing interface judging described network traffics according to described interface configuration information is outer net domain interface;
If the outgoing interface of described network traffics is outer net domain interface, according to described interface configuration information by described
Network traffics are sent to described business board and carry out Business Processing.
5. according to the shunt method of the network traffics described in claim 3 or 4, it is characterised in that described
The outgoing interface of described network traffics is inquired about according to route table items, including:
Obtain the purpose IP address of network traffics message;
The destination network segment of described route table items is mated in purpose IP address according to described network traffics message;
According to the destination network segment matched, inquire about the outgoing interface of described network traffics.
6. the master control borad of a gateway device, it is characterised in that including:
Information collocation module, carries out the setting of interface division for receiving user to gateway device interface, raw
Become interface configuration information;Wherein, described interface configuration information includes: by interface board with described Intranet territory
The interface that interface is connected that outreaches of network element is set to Intranet domain interface;Incoming interface and outgoing interface are belonged to
The network traffics of described Intranet domain interface forward in not doing the territory of Business Processing;
Configuration information issues module, for described interface configuration information is handed down to described interface board, so that
Described interface board arranges Intranet domain interface according to described interface configuration information and all belongs to incoming interface and outgoing interface
Forward in the network traffics of described Intranet domain interface do territory.
The master control borad of gateway device the most according to claim 6, it is characterised in that also include:
Memory module, is used for storing described interface configuration information.
8. the interface board of a gateway device, it is characterised in that including:
Configuration information receiver module, for receiving the interface configuration information that master control borad issues, described interface is joined
Confidence breath includes: be set to by the interface that interface is connected that outreaches with described Intranet domain network element on interface board
Intranet domain interface;The network traffics that incoming interface and outgoing interface are belonged to described Intranet domain interface are not done
Forward in the territory of Business Processing;
Interface arranges module, for according to described interface configuration information by interface board with described Intranet territory net
The interface that interface is connected that outreaches of unit is set to Intranet domain interface;
Outgoing interface enquiry module, for receiving from the network traffics of described Intranet domain interface and according to route
List item inquires about the outgoing interface of described network traffics;
Whether judge module, for judging the outgoing interface of described network traffics according to described interface configuration information
For Intranet domain interface;
Forwarding module in territory, is used in the case of the outgoing interface of described network traffics is Intranet domain interface,
Forward in described network traffics are not done the territory of Business Processing.
9. want the interface board of gateway device described in 8 according to right, it is characterised in that described outgoing interface is looked into
Ask module, including:
Purpose IP acquiring unit, for obtaining the purpose IP address of network traffics message;
Matching unit, mates the mesh of route table items for the purpose IP address according to described network traffics message
The network segment;
Query unit, for according to the destination network segment matched, inquiring about the outgoing interface of described network traffics.
10. a gateway device, including one or more business boards, it is characterised in that also include: power
Profit requires the master control borad described in 6 or 7 and the interface board described in claim 8 or 9, wherein, Intranet territory
The interface that outreaches of network element is both connected on described interface board.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510188888.0A CN105991464B (en) | 2015-04-20 | 2015-04-20 | Shunt method, master control borad, interface board and the gateway of network flow |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510188888.0A CN105991464B (en) | 2015-04-20 | 2015-04-20 | Shunt method, master control borad, interface board and the gateway of network flow |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105991464A true CN105991464A (en) | 2016-10-05 |
| CN105991464B CN105991464B (en) | 2018-12-25 |
Family
ID=57040328
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510188888.0A Active CN105991464B (en) | 2015-04-20 | 2015-04-20 | Shunt method, master control borad, interface board and the gateway of network flow |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105991464B (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108234615A (en) * | 2017-12-25 | 2018-06-29 | 新华三技术有限公司 | Table entry processing method, mainboard and master network device |
| CN110365580A (en) * | 2019-07-26 | 2019-10-22 | 新华三大数据技术有限公司 | Service quality scheduling method, device, electronic equipment and computer readable storage medium |
| CN111147446A (en) * | 2019-11-29 | 2020-05-12 | 深圳震有科技股份有限公司 | Media IP proxy method and equipment |
| CN111526067A (en) * | 2020-04-26 | 2020-08-11 | 恒安嘉新(北京)科技股份公司 | Network shunt and communication method of network shunt |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6907470B2 (en) * | 2000-06-29 | 2005-06-14 | Hitachi, Ltd. | Communication apparatus for routing or discarding a packet sent from a user terminal |
| CN101789875A (en) * | 2010-02-10 | 2010-07-28 | 华为技术有限公司 | Method, device and router for forwarding data flow |
| CN101789904A (en) * | 2010-02-04 | 2010-07-28 | 杭州华三通信技术有限公司 | Method and equipment for controlling flow |
| CN102123072A (en) * | 2010-01-11 | 2011-07-13 | 中兴通讯股份有限公司 | Data message classification processing method and network, and terminal |
| CN102647346A (en) * | 2012-03-30 | 2012-08-22 | 汉柏科技有限公司 | Method and system for shunting packet |
| CN102970224A (en) * | 2012-12-07 | 2013-03-13 | 重庆金美通信有限责任公司 | Method compatible with ATM (asynchronous transfer mode) system and based on IP (Internet protocol) switched network for realizing MPLS (multi-protocol label switching) message forwarding |
| CN103457819A (en) * | 2013-08-01 | 2013-12-18 | 北京华为数字技术有限公司 | Method and device for processing common gateway user service message |
| CN103546497A (en) * | 2012-07-09 | 2014-01-29 | 杭州华三通信技术有限公司 | Method and device for distributed firewall IPSec (internet protocol security) business load sharing |
| CN104243345A (en) * | 2013-06-08 | 2014-12-24 | 中国移动通信集团公司 | Traffic scheduling method, system and device based on service types |
-
2015
- 2015-04-20 CN CN201510188888.0A patent/CN105991464B/en active Active
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6907470B2 (en) * | 2000-06-29 | 2005-06-14 | Hitachi, Ltd. | Communication apparatus for routing or discarding a packet sent from a user terminal |
| CN102123072A (en) * | 2010-01-11 | 2011-07-13 | 中兴通讯股份有限公司 | Data message classification processing method and network, and terminal |
| CN101789904A (en) * | 2010-02-04 | 2010-07-28 | 杭州华三通信技术有限公司 | Method and equipment for controlling flow |
| CN101789875A (en) * | 2010-02-10 | 2010-07-28 | 华为技术有限公司 | Method, device and router for forwarding data flow |
| CN102647346A (en) * | 2012-03-30 | 2012-08-22 | 汉柏科技有限公司 | Method and system for shunting packet |
| CN103546497A (en) * | 2012-07-09 | 2014-01-29 | 杭州华三通信技术有限公司 | Method and device for distributed firewall IPSec (internet protocol security) business load sharing |
| CN102970224A (en) * | 2012-12-07 | 2013-03-13 | 重庆金美通信有限责任公司 | Method compatible with ATM (asynchronous transfer mode) system and based on IP (Internet protocol) switched network for realizing MPLS (multi-protocol label switching) message forwarding |
| CN104243345A (en) * | 2013-06-08 | 2014-12-24 | 中国移动通信集团公司 | Traffic scheduling method, system and device based on service types |
| CN103457819A (en) * | 2013-08-01 | 2013-12-18 | 北京华为数字技术有限公司 | Method and device for processing common gateway user service message |
Non-Patent Citations (2)
| Title |
|---|
| VORAVIT TANYINGYONG; MARKUS HIDELL; PETER SJODIN: "Using hardware classification to improve PC-based Openflow switching", 《2011 IEEE 12TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE SWITCHING AND ROUTING》 * |
| 张乐天: "MSTP技术在广电城域光传输网中的应用研究", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108234615A (en) * | 2017-12-25 | 2018-06-29 | 新华三技术有限公司 | Table entry processing method, mainboard and master network device |
| CN108234615B (en) * | 2017-12-25 | 2021-05-07 | 新华三技术有限公司 | Table item processing method, mainboard and main network equipment |
| CN110365580A (en) * | 2019-07-26 | 2019-10-22 | 新华三大数据技术有限公司 | Service quality scheduling method, device, electronic equipment and computer readable storage medium |
| CN110365580B (en) * | 2019-07-26 | 2022-02-22 | 新华三大数据技术有限公司 | Service quality scheduling method and device, electronic equipment and computer readable storage medium |
| CN111147446A (en) * | 2019-11-29 | 2020-05-12 | 深圳震有科技股份有限公司 | Media IP proxy method and equipment |
| CN111147446B (en) * | 2019-11-29 | 2022-12-30 | 深圳震有科技股份有限公司 | Media IP proxy method and equipment |
| CN111526067A (en) * | 2020-04-26 | 2020-08-11 | 恒安嘉新(北京)科技股份公司 | Network shunt and communication method of network shunt |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105991464B (en) | 2018-12-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106375214B (en) | A kind of Tiered routing determining method of path and device based on SDN | |
| Huang et al. | Software-defined QoS provisioning for fog computing advanced wireless sensor networks | |
| CN104780088A (en) | Service message transmission method and equipment | |
| CN104811371B (en) | A kind of brand-new instantaneous communication system | |
| CN106375384A (en) | Management system of mirror network flow in virtual network environment and control method | |
| CN106815059B (en) | Linux virtual server LVS automates O&M method and operational system | |
| CN105262667A (en) | Method and device for controlling multicast transmission in Overlay network | |
| CN108632098A (en) | Flow classifier, business route flip-flop, Message processing method and system | |
| CN105991464A (en) | Network traffic shunting method, main control board, interface board and gateway device | |
| CN104184663A (en) | Communication method and device based on software-defined network and integrated identification network | |
| CN103139075B (en) | A kind of message transmitting method and equipment | |
| CN106533973A (en) | Method and system for distributing service message, and equipment | |
| CN102812744A (en) | Inter-working of EFM-OAM and CFM-OAM for mobile backhaul networks | |
| CN107078935A (en) | Network is the cross-domain Synergistic method of service business, cooperative device and control device | |
| CN105939267A (en) | Out-of-band management method and device | |
| CN104092684A (en) | Method and device for supporting VPN based on OpenFlow protocol | |
| CN104852859A (en) | Aggregate interface service processing method and aggregate interface service processing equipment | |
| CN105635335B (en) | Social resources cut-in method, apparatus and system | |
| CN110932972B (en) | Data transmission method and device and electronic equipment | |
| CN109412877A (en) | A kind of network capabilities open system based on UTN network | |
| JP6211975B2 (en) | Network extension system, control device, and network extension method | |
| CN106027396B (en) | A kind of route control method, device and system | |
| CN104539752B (en) | Access method and system between multilevel field platform | |
| CN102158422A (en) | Message forwarding method and equipment for layer 2 ring network | |
| CN105721346A (en) | Application bandwidth configuring method and controller based on software defined network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building Applicant after: Hangzhou Dipu Polytron Technologies Inc Address before: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building Applicant before: Hangzhou Dipu Technology Co., Ltd. |
|
| COR | Change of bibliographic data | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |