CN105991464B - Shunt method, master control borad, interface board and the gateway of network flow - Google Patents

Shunt method, master control borad, interface board and the gateway of network flow Download PDF

Info

Publication number
CN105991464B
CN105991464B CN201510188888.0A CN201510188888A CN105991464B CN 105991464 B CN105991464 B CN 105991464B CN 201510188888 A CN201510188888 A CN 201510188888A CN 105991464 B CN105991464 B CN 105991464B
Authority
CN
China
Prior art keywords
interface
domain
network flow
network
board
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510188888.0A
Other languages
Chinese (zh)
Other versions
CN105991464A (en
Inventor
董俊文
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou DPTech Technologies Co Ltd
Original Assignee
Hangzhou DPTech Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou DPTech Technologies Co Ltd filed Critical Hangzhou DPTech Technologies Co Ltd
Priority to CN201510188888.0A priority Critical patent/CN105991464B/en
Publication of CN105991464A publication Critical patent/CN105991464A/en
Application granted granted Critical
Publication of CN105991464B publication Critical patent/CN105991464B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The present invention provides shunt method, master control borad, interface board and the gateway of a kind of network flow, wherein the above method includes the setting for receiving user and carrying out interface division to gateway device interface, generates interface configuration information;Interface configuration information is handed down to interface board, so that interface board is according to interface configuration information setting Intranet domain interface and the network flow that belongs to Intranet domain interface to incoming interface and outgoing interface is done in domain and forwarded.Using the shunt method of network flow provided by the invention, network flow at interface board by interaction between interior network interface is directly forwarded to other network elements in interior domain, it does not need to be forwarded to the software lookup route table items that other business boards load the CPU on business board and be forwarded, alleviate the load of other business board CPU, the flow forwarding speed of business board is improved, and then improves the performance of entire gateway.

Description

Shunt method, master control borad, interface board and the gateway of network flow
Technical field
The present invention relates to network communication technology field more particularly to a kind of shunt methods of network flow, master control borad, interface Plate and gateway.
Background technique
Network application at present, network demand increasingly complex, user are to realize the continuous Added Business flow of intelligent network, And it is no longer limited to " accessing outer network from inner network ", each region is gradually required to realize network bi-directional intercommunication or single-pass.
It is the networking situation of interaction flow between the network element of different zones in interior domain for internal lan, the prior art Main implementation is as follows: the gateway of Intranet domain network element such as terminal, server etc. all points to core gateway, all interactions between Intranet The software that flow all passes through the CPU load of core gateway carries out routing forwarding.However the prior art passes through added by core gateway CPU The software of load carries out flow forwarding, can consume equipment cpu resource, and to need include Intranet access Intranet to all flows, interior The flow forwarding configuration forwarding strategy of net access outer net, extranet access Intranet, core gateway configures caused by mixing because of configuration strategy The problems such as complexity, big, cumbersome forwarding pressure.
Summary of the invention
In view of this, the present invention provides a kind of shunt method of network flow, the master control borad applied to frame gateway In, above-mentioned frame gateway further include: interface board, one or more business boards, the external connection interface of all network elements in interior domain It is both connected on above-mentioned interface board, the above method includes: the setting for receiving user and carrying out interface division to gateway device interface, raw At interface configuration information;Wherein, above-mentioned interface configuration information includes: by the external connection interface on interface board with above-mentioned Intranet domain network element The interface being connected is set as Intranet domain interface;To incoming interface and outgoing interface belong to the network flow of above-mentioned Intranet domain interface into It is forwarded in the capable domain for not doing business processing;Above-mentioned interface configuration information is handed down to above-mentioned interface board so that above-mentioned interface board according to Intranet domain interface is set according to above-mentioned interface configuration information and belongs to the network of above-mentioned Intranet domain interface to incoming interface and outgoing interface Flow does in domain and forwards.
Optionally, the shunt method of above-mentioned network flow, further includes: store above-mentioned interface configuration information.
On the other hand, the shunt method of another network flow is provided, the interface board applied to frame gateway In, above-mentioned frame gateway further includes master control borad, one or more business boards, and the external connection interface of all network elements is equal in interior domain It is connected on above-mentioned interface board, the above method includes: the interface configuration information for receiving above-mentioned master control borad and issuing, above-mentioned interface configuration Information includes: to set Intranet domain interface for the interface being connected on interface board with the external connection interface of above-mentioned Intranet domain network element;It is right The network flow that incoming interface and outgoing interface belong to above-mentioned Intranet domain interface is not done in the domain of business processing and is forwarded;According to upper It states interface configuration information and sets interior domain for the interface being connected on interface board with the external connection interface of above-mentioned Intranet domain network element and connect Mouthful;It receives the network flow from above-mentioned Intranet domain interface and inquires the outgoing interface of above-mentioned network flow according to route table items;Root Whether the outgoing interface that above-mentioned network flow is judged according to above-mentioned interface configuration information is Intranet domain interface;If above-mentioned network flow goes out Interface is Intranet domain interface, is not done in the domain of business processing and is forwarded to above-mentioned network flow.
Optionally, above-mentioned interface configuration information further include: above-mentioned Intranet domain interface is remaining by removing on above-mentioned interface board Interface is set as outer net domain interface;The network flow that incoming interface is Intranet domain interface, outgoing interface is outer net domain interface is sent to Above-mentioned business board does business processing;The above method further include: going out for above-mentioned network flow is judged according to above-mentioned interface configuration information Whether interface is outer net domain interface;If the outgoing interface of above-mentioned network flow is outer net domain interface, according to above-mentioned interface configuration information Above-mentioned network flow is sent to above-mentioned business board and carries out business processing.
Optionally, the above-mentioned outgoing interface that above-mentioned network flow is inquired according to route table items, comprising: obtain network flow message Purpose IP address;The destination network segment of above-mentioned route table items is matched according to the purpose IP address of above-mentioned network flow message;According to The destination network segment matched inquires the outgoing interface of above-mentioned network flow.
The shunt method of corresponding above-mentioned network flow, provides a kind of master control borad of gateway, comprising:
Information collocation module carries out the setting of interface division for receiving user to gateway device interface, generates interface and matches Confidence breath;Wherein, above-mentioned interface configuration information includes: that will be connected on interface board with the external connection interface of above-mentioned Intranet domain network element Interface is set as Intranet domain interface;The network flow for belonging to above-mentioned Intranet domain interface to incoming interface and outgoing interface is not done industry It is engaged in forwarding in the domain of processing;Configuration information issues module, for above-mentioned interface configuration information to be handed down to above-mentioned interface board, so that Above-mentioned interface board is arranged Intranet domain interface according to above-mentioned interface configuration information and belongs to above-mentioned Intranet to incoming interface and outgoing interface The network flow of domain interface is done in domain and is forwarded.
Optionally, the master control borad of above-mentioned gateway, further includes: memory module, for storing above-mentioned interface configuration information.
In addition, additionally providing a kind of interface board of gateway, comprising: configuration information receiving module, for receiving master control The interface configuration information that plate issues, above-mentioned interface configuration information include: by the external connecting on interface board with above-mentioned Intranet domain network element The interface that mouth is connected is set as Intranet domain interface;The network flow of above-mentioned Intranet domain interface is belonged to incoming interface and outgoing interface It is not done in the domain of business processing and is forwarded;Interface setup module, for according to above-mentioned interface configuration information by interface board with The interface that the external connection interface of above-mentioned Intranet domain network element is connected is set as Intranet domain interface;Outgoing interface enquiry module, for receiving Network flow from above-mentioned Intranet domain interface and the outgoing interface that above-mentioned network flow is inquired according to route table items;Judgment module, For judging whether the outgoing interface of above-mentioned network flow is Intranet domain interface according to above-mentioned interface configuration information;Mould is forwarded in domain Block, for not done business to above-mentioned network flow in the case where the outgoing interface of above-mentioned network flow is Intranet domain interface It is forwarded in the domain of processing.
Optionally, above-mentioned outgoing interface enquiry module, comprising: destination IP acquiring unit, for obtaining network flow message Purpose IP address;Matching unit, for matching the purpose net of route table items according to the purpose IP address of above-mentioned network flow message Section;Query unit, for inquiring the outgoing interface of above-mentioned network flow according to the destination network segment matched.
In addition, additionally providing a kind of gateway, including one or more business boards, further includes: described in any of the above-described Master control borad and any of the above-described interface board, wherein the external connection interface of Intranet domain network element is both connected on above-mentioned interface board.
Specifically, the present invention is achieved through the following technical solutions:
The shunt method of network flow provided by the invention, can be by being simply configured to interface on interface board It realizes at interface board to the shunting from interior domain flow.Network flow at interface board by interaction between interior network interface directly turns Other network elements in interior domain are issued, do not need to be forwarded to the software lookup that other business boards load the CPU on business board Route table items are forwarded, and alleviate the load of other business board CPU, and then also improve the flow forwarding speed of business board, To improve the performance of entire gateway.
Detailed description of the invention
Fig. 1 is the structural schematic diagram of frame gateway embodiment of the present invention;
Fig. 2 is the networking schematic diagram using the shunt method embodiment of inventive network flow;
Fig. 3 is the flow chart of the shunt method embodiment one of inventive network flow;
Fig. 4 is the flow chart of the shunt method embodiment two of inventive network flow;
Fig. 5 is the schematic diagram that interface board of the present invention carries out network flow forwarding embodiment;
Fig. 6 is the structural block diagram of the master control borad embodiment of gateway of the present invention;
Fig. 7 is the structural block diagram of the interface board embodiment of gateway of the present invention;
Fig. 8 is the structural block diagram of outgoing interface enquiry module embodiment in interface board of the present invention.
Specific embodiment
In order to make the foregoing objectives, features and advantages of the present invention clearer and more comprehensible, with reference to the accompanying drawing and specific real Applying mode, the present invention is described in further detail.
The embodiment of the invention discloses a kind of shunt methods of network flow, not for interaction flow between solving interior network interface Need to do the shunting processing in the case of the networking of business.It is so-called not need to do business and refer to that business access flow only does routing and turns Hair, does not do the business processings such as NAT conversion, flow analysis, audit.
The shunt method embodiment of network flow disclosed by the invention is applied in a kind of frame gateway, such as Fig. 1 institute The structural schematic diagram for the frame gateway of the present invention shown, frame gateway provided by the invention can be a kind of tight coupling of frame Close equipment, comprising: master control borad, interface board, one or more types forwarding service plate, each board passes through internal switching network (Fabric) it is connected.Wherein, master control borad is used to manage other boards, for example is configured to each business board, arrived according to study Network protocol be that interface board and each forwarding service plate generate route table items and be handed down to each board.Interface board is used to be net It closes equipment external connection interface is provided and exchange forwarding capability is provided, is provided with network interface and exchange chip on interface board.Other turns Sending service plate carries two tasks, and one is business processing to application of electronic report grade, another is to carry out network to message to turn The business processing of gradation;The business processing of so-called application layer, which refers to, is covering the business in network layer from the point of view of open seven layer model Processing, for example, FW (Fireworks, firewall), IPS (Intrusion Prevention System, intrusion prevention system) with And processing etc. of the UAG (Uniform audit gateway, unified gateway of auditing) to message.That is above-mentioned forwarding industry Business plate can be one or more of FW plate, IPS plate, UAG plate.
It is reasonable that the present invention allows the process flow of the network flow of interaction between the interface of the internal domain of network administrator to carry out Planning.Referring to the networking schematic diagram of the shunt method embodiment shown in Fig. 2 using inventive network flow, so-called interior domain is For the internal lan where user, in Fig. 2, the network area of server 1, server 2, PC1, PC2 network connection composition As interior domain.Corresponding, public network A, public network B, public network C are then outer domain, and above-mentioned public network can be telecommunications, connection, movement, religion Educate the public networks such as net.Interior domain is connect with outer domain by gateway.
In the networking of shunt method for implementing network flow provided by the invention, the external connecting of all network elements in interior domain Mouth (not shown) is both connected on the interface board of gateway.The interface being arranged on network planning phase, interface board Quantity of the quantity at least equal to all network elements in interior domain.The external connection interface of each network element may be used as Intranet access in interior domain The interface of outer net, Intranet access Intranet, extranet access Intranet.
Referring to Fig. 3, the flow chart of the shunt method embodiment one of inventive network flow is shown, is applied to above-mentioned frame The master control borad of gateway, the above method include:
Step 31 receives the setting that user divides gateway device interface, generates interface configuration information;Wherein, on Stating interface configuration information includes: to set interior domain for the interface that the external connection interface on interface board with Intranet domain network element is connected to connect Mouthful;The network flow that incoming interface and outgoing interface belong to Intranet domain interface is not done in the domain of business processing and is forwarded;
In the embodiment of the present invention, user can be by network management interface or order line configuration order under the CPU of master control board card The information configured to the interface of interface board is sent out, to realize the reasonable diffluence to the network flow from interior domain.It is above-mentioned User can be ordinary user or network administrator.
It, can be specifically, the interface of the network equipment be drawn according to region to dividing for network device interface in step 31 It is divided into Intranet domain interface, outer net domain interface, server domain interface etc..The interface of the above-mentioned network equipment include be set to interface board and Ethernet interface, VLAN (Virtual Local Area Network, virtual LAN) interface, polymerization on each forwarding service plate The common forwarded mouth such as interface.In the embodiment of the present invention, all Intranet domain interfaces are distributed on interface board, outer net domain interface It can be only fitted on any board with server domain interface.
In the embodiment of the present invention, step 31 includes mainly that the external connection interface on interface board with Intranet domain network element is connected Interface is defined as Intranet domain interface, and be arranged to incoming interface and outgoing interface belong to the network flow of above-mentioned Intranet domain interface into It is forwarded in row domain.Two conditions: one, network element of the network flow from interior domain must be met by doing the service traffics forwarded in domain And interface board is sent to by Intranet domain interface;Two, the outgoing interface of above-mentioned network flow belongs to Intranet domain interface.
It is forwarded in so-called domain, that is interface board is done at business it is not necessary that above-mentioned network flow is transmitted to other business boards Reason, and other network elements being forwarded to by the outgoing interface that the exchange chip on interface board inquires in interior domain.Network flow Forwarding is to realize that network flow is forwarded to the process of another network element from a network element in interior domain in domain, referring to shown in Fig. 2, Network flow forwarding between server 1 and PC2, which belongs in domain, to be forwarded.
Optionally, in an alternative embodiment of the invention, above-mentioned interface configuration information can also include: by interface board in addition to Other interfaces of Intranet domain interface are set as outer net domain interface;By incoming interface be Intranet domain interface, outgoing interface is outer net domain interface Network flow be sent to other business boards and do business processing.That is, if the outgoing interface of the network flow from interior domain is outer net Domain interface, then by above-mentioned network flow do domain between forward.It is forwarded between so-called domain, is exactly that will be sent from the network flow in Intranet domain Corresponding business processing is done to other forwarding service plates such as FW business board, IPS business board, UAG business board etc. in gateway; Outer domain is sent to by the outer net domain interface on above-mentioned interface board later, as shown in Fig. 2, the network done from PC1 to public network C Flow forwarding forwards between as domain.
It is further preferred that the shunt method of network flow provided by the invention can also include: to deposit in mainboard plate side Store up above-mentioned interface configuration information.Increase the step of saving above-mentioned interface configuration information in the embodiment of the present invention, is on the one hand convenient for net Pass equipment record user, on the other hand can be automatic extensive in the case where system accident power-off to the historical process of network configuration The configuration of multiple connection mouth, promotes the user experience of gateway.
Above-mentioned interface configuration information is handed down to interface board by step 32, so that interface board is according to above-mentioned interface configuration information Intranet domain interface is set and the network flow that belongs to the Intranet domain interface to incoming interface and outgoing interface is done in domain and forwarded.
Step 32 is the process that the interface configuration information of user setting is handed down to interface board from control plane by master control borad.It connects After oralia receives the interface configuration information that master control borad issues, the external connection interface on interface board with Intranet domain network element is connected Interface is set as Intranet domain interface.Interface board receives the network flow from interior domain by above-mentioned Intranet domain interface, according to net The message information of network flow inquires outgoing interface.Judge whether outgoing interface belongs to Intranet domain interface, if so, to above-mentioned network flow Forwarded in domain.
Optionally, in an alternative embodiment of the invention, if the outgoing interface of network flow is outer net domain interface, to above-mentioned net Network flow forward between domain.That is, for belong to outer domain from interior domain, destination network flow according to existing Technology forwards after carrying out regular traffic processing.
It can be seen that the shunt method of network flow provided by the invention, by simply being set to interface on interface board Setting can realize at interface board to the shunting from interior domain flow.By the network flow of interaction between interior network interface at interface board Other network elements for being directly forwarded in interior domain are measured, does not need to be forwarded to other business boards the CPU on business board is loaded Software lookup route table items are forwarded, and alleviate the load of other business board CPU, and then also improve the stream of other business boards Forwarding speed is measured, to improve the flow forwarding speed of entire gateway.
Corresponding, Fig. 4 shows the flow chart of the shunt method embodiment two of network flow provided by the invention, this method The executing subject of embodiment is the interface board of gateway.Equally, in the networking structure for implementing this method, all nets in interior domain The external connection interface of member is both connected on interface board.The above method includes:
Step 41 receives the interface configuration information that issues of master control borad, above-mentioned interface configuration information include: by interface board with The interface that the external connection interface of the Intranet domain network element is connected is set as Intranet domain interface;Institute is belonged to incoming interface and outgoing interface The network flow for stating Intranet domain interface, which is not done in the domain of business processing, to be forwarded;
Step 42 sets the interface that the external connection interface on interface board with Intranet domain network element is connected according to interface configuration information It is set to Intranet domain interface;
Interface board referring to Figure 5 carries out the schematic diagram of network flow forwarding, it is assumed that is provided with eight on interface board and connects Mouthful, each interface is identified as 1-8, wherein interface 1-4 is connected with the external connection interface of network element in interior domain, then interface 1-4 is arranged For Intranet domain interface.Optionally, outer net domain interface is set by remaining interface 5-8.
Step 43 receives the network flow from Intranet domain interface and inquires connecing out for network flow according to route table items Mouthful;
In step 43, the route table items stored in interface board are that master control borad is issued on interface board in advance.According to master control The process of the outlet for the route table items inquiry network flow that plate issues, specifically: according to the feature of network flow message, (characterization is special Fixed message flow) the corresponding outgoing interface of inquiry.The example of route table items shown in table 1 is please referred to, purpose can be set in user The message that IP address belongs to 5.5.1.0--5.5.1.254 network segment enters after gateway, by the interface 1 on interface board Forwarding;The message that definition purpose IP address belongs to 5.5.2.0--5.5.2.254 network segment is forwarded by the interface 2 on interface board, according to It is secondary to analogize.Table 1 is only exemplary, and during actual implementation, the matching characteristic of query message outgoing interface foundation can be with It is other message characteristics.
Serial number Destination network segment Interface identifier
1 5.5.1.0--5.5.1.254 Interface 1
2 5.5.2.0--5.5.2.254 Interface 2
3 5.5.3.0--5.5.3.254 Interface 3
4 5.5.4.0--5.5.4.254 Interface 4
5 5.5.5.0--5.5.5.254 Interface 5
6 5.5.6.0--5.5.6.254 Interface 6
7 5.5.7.0--5.5.7.254 Interface 7
8 5.5.8.0--5.5.8.254 Interface 8
Table 1
In conjunction with table 1, the outgoing interface of the network flow is inquired in step 43 according to the route table items that the master control borad issues Specific implementation process may include:
Step A, the purpose IP address of network flow message is obtained;
Step B, the destination network segment of route table items is matched according to the purpose IP address of the network flow message;In step B, The route table items stored on interface board are the route table items that master control borad is handed down to interface board when system starts.
Step C, according to the correspondence destination network segment matched in the route table items, connecing out for the network flow is inquired Mouthful.
Illustratively, it is assumed that the IP address from the received first network traffic messages of Intranet domain interface 1 of interface board is 5.5.3.1, then by the 3rd route forwarding table items in inquiry table 1 it is found that the outgoing interface of first network traffic messages is interface 3. Similarly, it is assumed that the purpose IP address from the received second network flow message of Intranet domain interface 2 of interface board is 5.5.7.1, then By the 7th route table items in inquiry table 1 it is found that the outgoing interface of the second network flow message is interface 7.
Whether step 44, the outgoing interface that the network flow is judged according to the interface configuration information are Intranet domain interface;
If the outgoing interface of step 45, the network flow is Intranet domain interface, by the Intranet domain interface to described Network flow is not done in the domain of business processing and is forwarded.
Optionally, in an alternative embodiment of the invention, the interface configuration information that master control borad is handed down to interface board can also wrap Include: remaining interface is set as outer net domain interface after removing the Intranet domain interface on the interface board;It is interior by incoming interface Domain interface, the network flow that outgoing interface is outer net domain interface are sent to other business boards and do business processing;
It can also include: to judge that the outgoing interface of network flow is according to interface configuration information on the basis of Fig. 4 embodiment No is outer net domain interface;If the outgoing interface of network flow is outer net domain interface, according to above-mentioned interface configuration information by the network Flow is sent to other business boards and carries out business processing.
It is above-mentioned right to illustrate below with reference to the interface board of gateway shown in fig. 5 to the schematic diagram that network flow is forwarded The implementation process of network flow forwarding.Assuming that setting Intranet domain interface for 1~4 interface of being identified as on interface board, will connect The interface that 5~8 are identified as on oralia is set as outer net domain interface.The outgoing interface 3 of first network flow is learnt through step 43 inquiry Belong to Intranet domain interface, then first network flow is done in domain and forwarded.As shown in figure 5, indicating first with black solid line with the arrow The forward-path of network flow message, specifically: first flow message enters gateway through the Intranet domain interface 1 of interface board, First network flow is directly forwarded to other network elements in interior domain by interface 3 by the forwarding chip of interface board.Relative to existing Have technology because being divided to the interface on interface board so that between Intranet interaction network flow be no longer forwarded to it is other Business board does business processing, alleviates the load of other business board CPU in gateway.
Similarly, learn that the outgoing interface 7 of the second network flow belongs to outer net domain interface through step 43 inquiry, then to the second network Flow forwards between doing domain.As shown in figure 5, indicating the forward-path of the second network flow message with black dotted line with the arrow, specifically Are as follows: second flow message enters gateway through the interface 2 of interface board, and interface board exchange chip inquires the outgoing interface of the flow 7 be outer net domain interface, successively can do phase by the CPU of above-mentioned FW plate, UAG plate, IPS plate according to the natural mode of the prior art The business processing answered is sent to outer domain by outer net domain interface 7 later.
It follows that the shunt method for the network flow that the present invention uses will according to the interface configuration information of user setting The interface connecting on interface board with Intranet domain network element is set as Intranet domain interface, is the network flow of Intranet domain interface by outgoing interface Forwarded in domain, realize the shunting effect of the network flow to access intranet and extranet, avoids the net of interaction between interior network interface The CPU that network flow is transmitted to other business boards carries out business processing, alleviates the negative of other forwarding service plate CPU in gateway It carries, improves the performance of gateway.
For the various method embodiments described above, for simple description, therefore, it is stated as a series of action combinations, but It is that those skilled in the art are known with this, the present invention is not limited by the sequence of acts described, because according to the present invention, certain A little steps can be performed in other orders or simultaneously.
Secondly, those skilled in the art should also know that, embodiment described in this description belongs to alternative embodiment, It is related that actions and modules are not necessarily necessary for the present invention.
Corresponding with the shunt method embodiment one of aforementioned network flow, the present invention also provides a kind of masters of gateway Plate embodiment is controlled, referring to the structural block diagram of the master control borad embodiment of gateway of the present invention shown in fig. 6, comprising:
Information collocation module 61 carries out the setting of interface division to gateway device interface for receiving user, generates interface Configuration information;Wherein, the interface configuration information includes: that will be connected on interface board with the external connection interface of the Intranet domain network element Interface be set as Intranet domain interface;The network flow for belonging to the Intranet domain interface to incoming interface and outgoing interface is not done It is forwarded in the domain of business processing.Optionally, the interface configuration information that above- mentioned information configuration module 61 generates can also include: that will connect Remaining interface is set as outer net domain interface after removing above-mentioned Intranet domain interface on oralia;It is Intranet domain interface by incoming interface, goes out Interface is sent to other business boards for the network flow of outer net domain interface and does business processing.
Configuration distributing module 62, for the interface configuration information to be handed down to the interface board, so that the interface board Intranet domain interface is set according to the interface configuration information and belongs to the net of the Intranet domain interface to incoming interface and outgoing interface Network flow does in domain and forwards.
It optionally, can also include: storage mould in another embodiment of master control borad of gateway provided by the invention Block, for storing above-mentioned interface configuration information.
The shunt method embodiment two of the network flow of corresponding aforementioned offer, the present invention also provides a kind of gateways Interface board embodiment, referring to the structural block diagram of the interface board embodiment of gateway shown in Fig. 7, comprising:
Configuration information receiving module 71, the interface configuration information issued for receiving master control borad, the interface configuration information It include: to set Intranet domain interface for the interface being connected on interface board with the external connection interface of the Intranet domain network element;To entering to connect The network flow that mouth and outgoing interface belong to the Intranet domain interface is not done in the domain of business processing and is forwarded;
It optionally, can also include: by the interface board in the received interface configuration information of configuration information receiving module 71 Remaining interface is set as outer net domain interface after the upper removing Intranet domain interface;It is Intranet domain interface, outgoing interface by incoming interface It is sent to other business boards for the network flow of outer net domain interface and does business processing.
Interface setup module 72, for according to the interface configuration information will on interface board and the Intranet domain network element it is outer The interface that connecting port is connected is set as Intranet domain interface;
Corresponding, in another embodiment of interface board, interface setup module can be also used for being matched according to the interface received Remaining interface is set as outer net domain interface after confidence breath will remove Intranet domain interface on interface board.
Outgoing interface enquiry module 73, for receiving the network flow from the Intranet domain interface and according to the master control borad The route table items issued inquire the outgoing interface of the network flow;
Referring to the structural block diagram of outgoing interface enquiry module embodiment shown in Fig. 8, above-mentioned outgoing interface enquiry module 73 can be with It include: destination IP acquiring unit 731, for obtaining the purpose IP address of network flow message.
Matching unit 732, for matching the destination network segment of route table items according to the purpose IP address of network flow message.
Query unit 733, for inquiring connecing out for network flow according to the correspondence destination network segment matched in route table items Mouthful.
Judgment module 74, for judging whether the outgoing interface of network flow is Intranet domain interface according to interface configuration information. In another embodiment, above-mentioned judgment module can also judge whether the outgoing interface of network flow is outer according to interface configuration information Domain excuse.
Forwarding module 75 in domain, for the outgoing interface of the network flow be Intranet domain interface in the case where, to described Network flow is not done in the domain of business processing and is forwarded.
In another embodiment of interface board of the present invention, above-mentioned interface board can also include: forwarding module between domain, be used for In the case that the outgoing interface of network flow is outer net domain interface, network flow is forwarded to other business boards and is done at corresponding business Reason, is forwarded to outer domain by above-mentioned outer net domain interface for the network flow after business processing later.
In addition, the present invention also provides a kind of gateways, as shown in figure 5, including one or more business boards, also wrap It includes: master control borad described in any of the above-described embodiment and any of the above-described interface board, wherein own in domain in where user The external connection interface of network element is both connected on the interface board.
All the embodiments in this specification are described in a progressive manner, the highlights of each of the examples are with The difference of other embodiments, the same or similar parts between the embodiments can be referred to each other.For system embodiment For, since it is basically similar to the method embodiment, so being described relatively simple, referring to the portion of embodiment of the method in place of correlation It defends oneself bright.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all in essence of the invention Within mind and principle, any modification, equivalent substitution, improvement and etc. done be should be included within the scope of the present invention.

Claims (10)

1. a kind of shunt method of network flow, in the master control borad applied to frame gateway, the frame gateway is also It include: interface board, one or more business boards, which is characterized in that the external connection interface of all network elements is both connected to institute in interior domain It states on interface board, which comprises
The setting that user carries out interface division to gateway device interface is received, interface configuration information is generated;Wherein, the interface is matched Confidence breath includes: to set Intranet domain interface for the interface being connected on interface board with the external connection interface of the Intranet domain network element; The network flow that incoming interface and outgoing interface belong to the Intranet domain interface is not done in the domain of business processing and is forwarded;
The interface configuration information is handed down to the interface board, so that the interface board is arranged according to the interface configuration information The Intranet domain interface and network flow for belonging to the Intranet domain interface to incoming interface and outgoing interface is done in domain and forwarded.
2. the shunt method of network flow according to claim 1, which is characterized in that further include: it stores the interface and matches Confidence breath.
3. a kind of shunt method of network flow, in the interface board applied to frame gateway, the frame gateway is also Including master control borad, one or more business boards, which is characterized in that the external connection interface of all network elements is both connected to described in interior domain On interface board, which comprises
Receive the interface configuration information that the master control borad issues, the interface configuration information include: by interface board with it is described interior The interface that the external connection interface of domain network element is connected is set as Intranet domain interface;The Intranet is belonged to incoming interface and outgoing interface The network flow of domain interface is not done in the domain of business processing and is forwarded;
The interface being connected on interface board with the external connection interface of the Intranet domain network element is arranged according to the interface configuration information For Intranet domain interface;
It receives the network flow from the Intranet domain interface and inquires the outgoing interface of the network flow according to route table items;
Whether the outgoing interface that the network flow is judged according to the interface configuration information is Intranet domain interface;
If the outgoing interface of the network flow is Intranet domain interface, the network flow is not done in the domain of business processing and turned Hair.
4. the shunt method of network flow according to claim 3, which is characterized in that the interface configuration information also wraps It includes: the remaining interface of Intranet domain interface will be removed on the interface board and be set as outer net domain interface;It is Intranet by incoming interface Domain interface, the network flow that outgoing interface is outer net domain interface are sent to the business board and do business processing;
The method also includes:
Whether the outgoing interface that the network flow is judged according to the interface configuration information is outer net domain interface;
If the outgoing interface of the network flow is outer net domain interface, the network flow is sent according to the interface configuration information Business processing is carried out to the business board.
5. the shunt method of network flow according to claim 3 or 4, which is characterized in that described to be looked into according to route table items Ask the outgoing interface of the network flow, comprising:
Obtain the purpose IP address of network flow message;
The destination network segment of the route table items is matched according to the purpose IP address of the network flow message;
According to the destination network segment matched, the outgoing interface of the network flow is inquired.
6. a kind of master control borad of gateway characterized by comprising
Information collocation module carries out the setting of interface division for receiving user to gateway device interface, generates interface and matches confidence Breath;Wherein, the interface configuration information includes: the interface setting that the external connection interface on interface board with Intranet domain network element is connected For Intranet domain interface;The network flow for belonging to the Intranet domain interface to incoming interface and outgoing interface is not done business processing It is forwarded in domain;
Configuration information issues module, for the interface configuration information to be handed down to the interface board so that the interface board according to Intranet domain interface is set according to the interface configuration information and belongs to the network of the Intranet domain interface to incoming interface and outgoing interface Flow does in domain and forwards.
7. the master control borad of gateway according to claim 6, which is characterized in that further include:
Memory module, for storing the interface configuration information.
8. a kind of interface board of gateway characterized by comprising
Configuration information receiving module, the interface configuration information issued for receiving master control borad, the interface configuration information include: by The interface being connected on interface board with the external connection interface of Intranet domain network element is set as Intranet domain interface;It is equal to incoming interface and outgoing interface The network flow for belonging to the Intranet domain interface, which is not done in the domain of business processing, to be forwarded;
Interface setup module, for according to the interface configuration information by the external connection interface on interface board with the Intranet domain network element The interface being connected is set as Intranet domain interface;
Outgoing interface enquiry module, for receiving the network flow from the Intranet domain interface and described in being inquired according to route table items The outgoing interface of network flow;
Judgment module, for judging whether the outgoing interface of the network flow is that interior domain connects according to the interface configuration information Mouthful;
Forwarding module in domain, for the outgoing interface of the network flow be Intranet domain interface in the case where, to the network flow Amount is not done in the domain of business processing and is forwarded.
9. the interface board of gateway according to claim 8, which is characterized in that the outgoing interface enquiry module, comprising:
Destination IP acquiring unit, for obtaining the purpose IP address of network flow message;
Matching unit, for matching the destination network segment of route table items according to the purpose IP address of the network flow message;
Query unit, for inquiring the outgoing interface of the network flow according to the destination network segment matched.
10. a kind of gateway, including one or more business boards, which is characterized in that further include: described in claim 6 or 7 Interface board described in master control borad and claim 8 or 9, wherein the external connection interface of Intranet domain network element is both connected to the interface board On.
CN201510188888.0A 2015-04-20 2015-04-20 Shunt method, master control borad, interface board and the gateway of network flow Active CN105991464B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510188888.0A CN105991464B (en) 2015-04-20 2015-04-20 Shunt method, master control borad, interface board and the gateway of network flow

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510188888.0A CN105991464B (en) 2015-04-20 2015-04-20 Shunt method, master control borad, interface board and the gateway of network flow

Publications (2)

Publication Number Publication Date
CN105991464A CN105991464A (en) 2016-10-05
CN105991464B true CN105991464B (en) 2018-12-25

Family

ID=57040328

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510188888.0A Active CN105991464B (en) 2015-04-20 2015-04-20 Shunt method, master control borad, interface board and the gateway of network flow

Country Status (1)

Country Link
CN (1) CN105991464B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108234615B (en) * 2017-12-25 2021-05-07 新华三技术有限公司 Table item processing method, mainboard and main network equipment
CN110365580B (en) * 2019-07-26 2022-02-22 新华三大数据技术有限公司 Service quality scheduling method and device, electronic equipment and computer readable storage medium
CN111147446B (en) * 2019-11-29 2022-12-30 深圳震有科技股份有限公司 Media IP proxy method and equipment
CN111526067B (en) * 2020-04-26 2021-11-12 恒安嘉新(北京)科技股份公司 Network shunt and communication method of network shunt

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6907470B2 (en) * 2000-06-29 2005-06-14 Hitachi, Ltd. Communication apparatus for routing or discarding a packet sent from a user terminal
CN101789875A (en) * 2010-02-10 2010-07-28 华为技术有限公司 Method, device and router for forwarding data flow
CN101789904A (en) * 2010-02-04 2010-07-28 杭州华三通信技术有限公司 Method and equipment for controlling flow
CN102123072A (en) * 2010-01-11 2011-07-13 中兴通讯股份有限公司 Data message classification processing method and network, and terminal
CN102647346A (en) * 2012-03-30 2012-08-22 汉柏科技有限公司 Method and system for shunting packet
CN102970224A (en) * 2012-12-07 2013-03-13 重庆金美通信有限责任公司 Method compatible with ATM (asynchronous transfer mode) system and based on IP (Internet protocol) switched network for realizing MPLS (multi-protocol label switching) message forwarding
CN103457819A (en) * 2013-08-01 2013-12-18 北京华为数字技术有限公司 Method and device for processing common gateway user service message
CN103546497A (en) * 2012-07-09 2014-01-29 杭州华三通信技术有限公司 Method and device for distributed firewall IPSec (internet protocol security) business load sharing
CN104243345A (en) * 2013-06-08 2014-12-24 中国移动通信集团公司 Traffic scheduling method, system and device based on service types

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6907470B2 (en) * 2000-06-29 2005-06-14 Hitachi, Ltd. Communication apparatus for routing or discarding a packet sent from a user terminal
CN102123072A (en) * 2010-01-11 2011-07-13 中兴通讯股份有限公司 Data message classification processing method and network, and terminal
CN101789904A (en) * 2010-02-04 2010-07-28 杭州华三通信技术有限公司 Method and equipment for controlling flow
CN101789875A (en) * 2010-02-10 2010-07-28 华为技术有限公司 Method, device and router for forwarding data flow
CN102647346A (en) * 2012-03-30 2012-08-22 汉柏科技有限公司 Method and system for shunting packet
CN103546497A (en) * 2012-07-09 2014-01-29 杭州华三通信技术有限公司 Method and device for distributed firewall IPSec (internet protocol security) business load sharing
CN102970224A (en) * 2012-12-07 2013-03-13 重庆金美通信有限责任公司 Method compatible with ATM (asynchronous transfer mode) system and based on IP (Internet protocol) switched network for realizing MPLS (multi-protocol label switching) message forwarding
CN104243345A (en) * 2013-06-08 2014-12-24 中国移动通信集团公司 Traffic scheduling method, system and device based on service types
CN103457819A (en) * 2013-08-01 2013-12-18 北京华为数字技术有限公司 Method and device for processing common gateway user service message

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
MSTP技术在广电城域光传输网中的应用研究;张乐天;《中国优秀硕士学位论文全文数据库 信息科技辑》;20120215;第I136-766页 *
Using hardware classification to improve PC-based Openflow switching;Voravit Tanyingyong; Markus Hidell; Peter Sjodin;《2011 IEEE 12th International Conference on High Performance Switching and Routing》;20111231;第215-221页 *

Also Published As

Publication number Publication date
CN105991464A (en) 2016-10-05

Similar Documents

Publication Publication Date Title
CN112737690B (en) Optical line terminal OLT equipment virtualization method and related equipment
CN102882758B (en) Method, network side equipment and the data center apparatus of virtual private cloud access network
CN101841451B (en) Virtual local area network-based speed limiting method and system for cloud hosts
CN105991464B (en) Shunt method, master control borad, interface board and the gateway of network flow
CN103297560B (en) A kind of method and server of data flow classification
CN111654438B (en) Method, controller and system for establishing forwarding path in network
CN105847185B (en) Message processing method, device and the distributed apparatus of distributed apparatus
CN106815059B (en) Linux virtual server LVS automates O&M method and operational system
CN104780088A (en) Service message transmission method and equipment
CN104184663B (en) Communication means and device based on software defined network and integrated identification network
US10630508B2 (en) Dynamic customer VLAN identifiers in a telecommunications network
CN102821036A (en) Method and device for achieving packet forwarding
CN104852859B (en) A kind of aggregation interface method for processing business and equipment
CN104767690B (en) A kind of flow scheduling device and method
CN103716213A (en) Method for operation in fixed access network and method for operation in user equipment
CN104092684A (en) Method and device for supporting VPN based on OpenFlow protocol
CN110474842A (en) A kind of communication means, customer terminal equipment and transmission network
CN105635335B (en) Social resources cut-in method, apparatus and system
CN107078935A (en) Network is the cross-domain Synergistic method of service business, cooperative device and control device
CN106533973A (en) Method and system for distributing service message, and equipment
He et al. Performance of multipath in fiber-wireless (FiWi) access network with network virtualization
CN103188160A (en) Flow control method and forwarding unit
WO2016101600A1 (en) Line card determination, determination processing method and device, and line card determination system
CN102404185A (en) Method and a system for achieving providing of network as service
CN102075588B (en) Method and system for realizing network address translation (NAT) transversing and equipment

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information

Address after: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building

Applicant after: Hangzhou Dipu Polytron Technologies Inc

Address before: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building

Applicant before: Hangzhou Dipu Technology Co., Ltd.

COR Change of bibliographic data
GR01 Patent grant
GR01 Patent grant