CN107579963A - A kind of high performance firewall cluster - Google Patents
A kind of high performance firewall cluster Download PDFInfo
- Publication number
- CN107579963A CN107579963A CN201710737717.8A CN201710737717A CN107579963A CN 107579963 A CN107579963 A CN 107579963A CN 201710737717 A CN201710737717 A CN 201710737717A CN 107579963 A CN107579963 A CN 107579963A
- Authority
- CN
- China
- Prior art keywords
- fwso
- firewall cluster
- fire wall
- openflow
- high performance
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000007726 management method Methods 0.000 claims abstract description 7
- 230000000737 periodic effect Effects 0.000 claims description 3
- 230000008901 benefit Effects 0.000 abstract description 7
- 238000000034 method Methods 0.000 abstract description 7
- 238000005516 engineering process Methods 0.000 description 3
- 230000007547 defect Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 230000004888 barrier function Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 238000013507 mapping Methods 0.000 description 1
- 238000003032 molecular docking Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000011144 upstream manufacturing Methods 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a kind of high performance firewall cluster, firewall cluster includes multiple fire walls, FWSO and Openflow interchangers, Openflow switch configurations are between LAN and fire wall, FWSO connection Openflow interchangers, multiple fire walls are managed using firewall cluster management method.The high performance firewall cluster of the present invention employs the flow scheduling that high-performance intelligent dispatching method intelligently shares several steps completion firewall clusters by port discovery, load collection and converting flow, take full advantage of the high forwarding performance of openflow interchangers, the advantage of the high CPU disposal abilities of X86 servers, flow can be distributed according to each member's carrying out practically in firewall cluster and status information dynamic and intelligent.
Description
Technical field
The invention belongs to firewall technology field, is related to a kind of high performance firewall cluster.
Background technology
Firewall box is a kind of general safety means, applied to a variety of security protection scenes, is possessed on fire wall big
The security protection business of amount, such as inter-domain policies, packet filtering, DPI, SSLVPN, security strategy etc..General fire wall is deployed in public affairs
Net outlet, the access isolated between Intranet and outer net.
Fire wall is because the business of processing is complicated, and to reach high-performance need to be equipped with high hardware configuration, and fire wall is due to certainly
The high hardware configuration of body and the software feature of complexity, often cost is higher, the fire wall performance of separate unit at some core outlets
It can not meet to require, the deployment of generally use firewall cluster, be made up of in cluster the horizontal fire wall of different performance, preposition hardware
Shunting device, typical hardware shunting device are that ECMP shunts interchanger or LB load-balancing devices.
Firewall cluster typically uses preposition load-balancing device or equal-cost route equipment, by preposition equipment shunt with up to
Required to general safety barrier propterty is improved.
Fig. 1 is the preposition equal-cost route equipment of firewall cluster, and general ECMP equipment uses interchanger, and the advantage of interchanger is
High-performance, new performance bottleneck point will not be turned into.
ECMP equipment combines to form Hash calculations using message destination address, destination interface, source address, source port, protocol number
Method, load balancing is done to flow, it is not necessary to store session information, flow forwarding is completed by hardware chip.
The defects of preposition equal-cost route equipment is present is that distribution is uneven, and the underaction when scalable appearance firewall box.
1st, equal-cost route is to do distribution processor according to five-tuple hash, and hash uniformity depends on the hash feelings of five-tuple
Condition, it can not ensure that flow can uniformly be distributed to rear-end protection wall cluster;
2nd, when capacity reducing firewall cluster, hash can be caused to redistribute, existing flow interrupt can be caused;
3rd, Back End Firewall running status can not be perceived, can not be adjusted according to loading condition or the disposal ability dynamic of fire wall
Whole distribution policy.
Fig. 2 is the preposition load-balancing device of firewall cluster, and load-balancing device does balancing link load here, no
Modification message destination address only instructs next-hop to distribute.
Load-balancing device is needed to store session session, and flow is carried out according to the Load Sharing Algorithm preset
Distribution, current load balance scheduling algorithm have:Poll, WRR, Smallest connection, weighting Smallest connection, random, source address
HASH, destination address HASH, source address port HASH scheduling algorithms, Best-case Response Time, bandwidth, weighting bandwidth.
Load-balancing device presses stream distribution, and it is thinner to distribute granularity compared to ECMP modes, there is provided a large amount of load balancing calculate
Method also makes shunting more uniform, and possesses certain ability that dynamic adjustment traffic sharing is done according to firewall state.
Load balancing does the shortcomings that preposition shunting:
1st, because load-balancing device will converge all flows, and whole session sessions are converged, new property can be turned into
Energy bottleneck point, and high performance LB equipment costs are higher.
2nd, the load-balancing algorithm that load-balancing device provides only has a small amount of algorithm and supports to gather backend nodes state, such as
Best-case Response Time, bandwidth, weighting bandwidth, and the true running status of fire wall can not be gathered, for example the CPU of fire wall is used
Rate, memory consumption, session number, enter, outgoing interface bandwidth etc., lead to not do intelligent tune according to the true service ability of fire wall
Degree.
Therefore, it is necessary to which a kind of new firewall cluster is to solve the above problems.
The content of the invention
A kind of the defects of being directed to firewall cluster in the prior art of the present invention, there is provided high performance firewall cluster.
In order to solve the above technical problems, technical scheme is used by the high performance firewall cluster of the present invention:
A kind of high performance firewall cluster, the firewall cluster include multiple fire walls, FWSO and Openflow and handed over
Change planes, between LAN and fire wall, the FWSO connections Openflow is exchanged the Openflow switch configurations
Machine, multiple fire walls are managed using firewall cluster management method, the firewall cluster management method includes
Following steps:
1) the true running status of each fire wall of FWSO dynamic instrumentations, is utilized;
2), by sending FWSO to form flow table, balanced point of guiding data forwarding stream on openflow interchanger valley-fill first packets
It is dealt on Back End Firewall cluster, wherein, balanced being distributed on Back End Firewall cluster of guiding data forwarding stream includes port
It was found that, load collect and converting flow intelligently share.
Further, the FWSO provides the interface for setting collection fire wall operation information.
Further, the port discovery comprises the following steps:
A1, fire wall send gratuitous ARP packet by down going port to OpenFlow interchangers;
B1, FWSO issue OpenFlow flow table to OpenFlow interchangers, by all gratuitous ARP packets all Packet-
In to FWSO;
C1, FWSO get the descending of every fire wall by OpenFlow flow table Packet-In gratuitous ARP packet
Mouth MAC and switch ports themselves corresponding relation.
Further, the load collection comprises the following steps:
A2, FWSO are used as cluster member by configuring addition fire wall, and the content of configuration includes fire wall title, management
IP, user name, password, down going port title, down going port IP, up going port title, CPU, internal memory and interface rate;
The loading condition of each fire wall of b2, FWSO periodic collection, the loading condition includes CPU usage, internal memory uses
Rate, user conversation number and up-downgoing flow.
Further, the converting flow, which is intelligently shared, comprises the following steps:
A3, FWSO issue OpenFlow flow table to OpenFlow interchangers, by all TCP and UDP type messages first packets all
On send FWSO;
B3, FWSO select the FW of a minimum load, and inquire corresponding FW_ according to FW_RunningLoad data
Mac and openflowSwitch_port, issues flow table;
C3, fire wall go out public network direction interface and make nat outbound so that return packet is sent on same fire wall.
Further, FWSO data format is Netconf forms in step 1).
Beneficial effect:The high performance firewall cluster of the present invention employs high-performance intelligent dispatching method and sent out by port
Existing, load is collected and converting flow intelligently shares the flow scheduling that several steps complete firewall cluster, is taken full advantage of
The high forwarding performance of openflow interchangers, the advantage of the high CPU disposal abilities of X86 servers, can be according to firewall cluster
In each member's carrying out practically and status information dynamic and intelligent distribution flow.
Brief description of the drawings
Fig. 1 is the structural representation of the preposition equal-cost route equipment of firewall cluster;
Fig. 2 is the structural representation of the preposition load-balancing device of firewall cluster;
The structural representation of the high performance firewall cluster of Fig. 3 present invention.
Embodiment
Below in conjunction with the accompanying drawings and specific embodiment, the present invention is furture elucidated, it should be understood that these embodiments are merely to illustrate
The present invention rather than limitation the scope of the present invention, after the present invention has been read, those skilled in the art are each to the present invention's
The modification of the kind equivalent form of value falls within the application appended claims limited range.
FWSO (Service Orchestrator) is the controller under a kind of firewall cluster scene, is responsible for fire wall
Topology learning and traffic distribution.
FWSO uses X86 servers, the high-performance CPU disposal abilities provided using common hardware, does the distribution control of flow
System.Openflow interchangers possess high performance chip forward process ability, do the forwarding surface processing of flow.
In Fig. 3 scene, FWSO cooperates with fire wall, OpenFlow Switch, uses port discovery, load
Collect, converting flow intelligently shares three kinds of technologies to realize the flow equalization of firewall cluster.
First, port discovery
1), fire wall sends gratuitous ARP packet by down going port to OpenFlow interchangers.
2), FWSO issues OpenFlow flow table to OpenFlow interchangers, by all gratuitous ARP packets all Packet-
In to FWSO;
3), FWSO is by OpenFlow flow table Packet-In gratuitous ARP packet, gets the descending of every fire wall
Mouth MAC and the corresponding relation with switch ports themselves
(FW_mac~openflowSwitch_port).
Gratuitous ARP packet content is IP, MAC corresponding informance;Openflow packet-in messages carry interchanger
Incoming interface information and original ARP messages, therefore can obtain:
Table 1, port discovery table
2nd, load is collected
1), FWSO can add fire wall and be used as cluster member by configuring, and configuration content includes as follows:
Table 2, cluster member allocation list
The IP address configured by down going port, with reference to the IP address carried in gratuitous ARP packet, may learn fire wall
With the corresponding relation (FW~FW_mac) of MAC Address
Specific mapping method:
With reference to table 1, table 2, the IP address that ARP messages carry during topology learning is exactly the descending of firewall cluster member configuration
The corresponding relation that can draw fire wall and MAC Address is compared in interface IP, two tables.See the above table two red row of getting the bid.
2), (KPI of load can include CPU usage to the loading condition of each fire wall of FWSO periodic collections, internal memory uses
Rate, user conversation number, up-downgoing flow etc.);
Table 3, form data (FW~FW_RunningLoad);
The equipment real-time traffic information periodically obtained is as follows:
CPU usage:cpu_ratio;Memory usage:mem_ratio;User conversation number:UserNum uplink traffics:
uplinkRate;Downlink traffic:downlinkRate.
User can preset number of users threshold value, uplink traffic threshold value, downlink traffic threshold value:
User conversation number threshold value:userMax;Uplink traffic threshold value:uplinkRateMax;Downlink traffic threshold value:
downlinkRateMax。
The percentage that indices account in total running priority level index:
CPU usage accounting:%a;Memory usage accounting:%b;User conversation number utilization rate accounting:%c;Upstream
Measure utilization rate accounting:%d;Downlink traffic utilization rate accounting:%e.
Running_Load=cpu_ratio*%a+mem_ratio*%b+ (userNum/userMax) * %c+
(uplinkRate/uplinkRateMax) * %d+ (downlinkRate/downlinkRateMax) * %e.
3rd, converting flow is intelligently shared
1), FWSO issues OpenFlow flow table to OpenFlow interchangers, by all TCP, UDP type message first packets all on
Send FWSO;Or it is that openflow exchange interface MAC messages are processing is sent on first packet packet-in to purpose MAC.
2), FWSO selects the FW of a minimum load, and inquire corresponding FW_ according to FW_RunningLoad data
Mac and openflowSwitch_port, issues flow table.
Flow table feature:
Match items:Message five-tuple information
Action items:FW_mac is encapsulated to send from openflowSwitch_port ports.
Ensure that flow subsequent packet is directly forwarded by flow table.
3), fire wall goes out public network direction interface and makees nat outbound, ensures that return packet is sent on same fire wall.
Embodiment 1
Assuming that it is as follows as cluster member, respective parameter to there is currently two firewall boxs:
The parameter of table 4, fire wall
1), these parameter configurations on FWSO after, FWSO to openflow interchangers issue flow table rule:Gratuitous ARP
Message up sending FWSO.
2), the transmission of gratuitous ARP packet cycle is enabled in fire wall down going port.
3), FWSO receives gratuitous ARP packet information and forms data, table 5.
Table 5, tables of data
4), FWSO forms fire wall and MAC information relationships
The fire wall of table 6 and MAC information relationship tables
| MAC | Openflow interchanger outgoing interfaces | |
| Fire wall A | 1-1-1 | InterfaceG0/0/1 |
| Fire wall B | 2-2-2 | InterfaceG0/0/2 |
5), cycle collection protecting wall loading condition
The loading condition acquisition tables of the fire wall of table 7
The percentage that indices account in total running priority level index:
CPU usage accounting:20%;Memory usage accounting:20%;User conversation number utilization rate accounting:20%
Uplink traffic utilization rate accounting:20%;Downlink traffic utilization rate accounting:20%.
RunningLoad fire walls A=30%*20%+50%*20%+ (2000/5000) * 20%+ (100/500) *
20%+ (200/500) * 20%=0.36.
RunningLoad fire walls B=50%*20%+60%*20%+ (1000/3000) * 20%+ (30/100) *
20%+ (50/100) * 20%=0.44.
The loading condition table of the fire wall of table 8
6), cycle collection protecting wall loading condition
7) FWSO, is sent on TCP, UDP service traffics first packet, FWSO is according to current firewall cluster loading condition flow point
The person fire wall A that issues light load, issues flow table:The flow encapsulates MAC Address 1-1-1 from openflow exchange interfaces
Interface G0/0/1 are sent
8), fire wall A receives the message flow, does security protection business processing.
The present invention proposes the high-performance intelligent dispatching method of firewall cluster, is collected by port discovery, load, forwarding
Flow quantity intelligent shares the flow scheduling that several steps complete firewall cluster, takes full advantage of the high forwarding of openflow interchangers
Performance, the advantage of the high CPU disposal abilities of X86 servers, and the interface of docking different vendor fire wall running status is provided, can
To distribute flow according to each member's carrying out practically, status information dynamic and intelligent in firewall cluster.
Claims (6)
- A kind of 1. high performance firewall cluster, it is characterised in that:The firewall cluster include multiple fire walls, FWSO and Openflow interchangers, the Openflow switch configurations are between LAN and fire wall, described in the FWSO connections Openflow interchangers, multiple fire walls are managed using firewall cluster management method, the firewall cluster Management method comprises the following steps:1) the true running status of each fire wall of FWSO dynamic instrumentations, is utilized;2), by sending FWSO to form flow table on openflow interchanger valley-fill first packets, guiding data forwarding stream is balanced to be distributed to On Back End Firewall cluster, wherein, balanced being distributed on Back End Firewall cluster of guiding data forwarding stream include port discovery, Load is collected and converting flow is intelligently shared.
- 2. high performance firewall cluster as claimed in claim 1, it is characterised in that:The FWSO, which is provided, sets collection fire wall fortune The interface of row information.
- 3. high performance firewall cluster as claimed in claim 1, it is characterised in that:The port discovery comprises the following steps:A1, fire wall send gratuitous ARP packet by down going port to OpenFlow interchangers;B1, FWSO issue OpenFlow flow table to OpenFlow interchangers, and all gratuitous ARP packets Packet-in are arrived FWSO;C1, FWSO get the down going port MAC of every fire wall by OpenFlow flow table Packet-In gratuitous ARP packet With the corresponding relation of switch ports themselves.
- 4. high performance firewall cluster as claimed in claim 1, it is characterised in that:The load collection comprises the following steps:A2, FWSO are used as cluster member by configuring addition fire wall, and the content of configuration includes fire wall title, management IP, used Name in an account book, password, down going port title, down going port IP, up going port title, CPU, internal memory and interface rate;The loading condition of each fire wall of b2, FWSO periodic collection, the loading condition include CPU usage, memory usage, use Family session number and up-downgoing flow.
- 5. high performance firewall cluster as claimed in claim 1, it is characterised in that:The converting flow is intelligently shared including following Step:A3, FWSO issue OpenFlow flow table to OpenFlow interchangers, by all TCP and UDP type messages first packets all on give FWSO;B3, FWSO select the FW of a minimum load according to FW_RunningLoad data, and FW_mac corresponding to inquiring with And openflowSwitch_port, issue flow table;C3, fire wall go out public network direction interface and make nat outbound so that return packet is sent on same fire wall.
- 6. high performance firewall cluster as claimed in claim 1, it is characterised in that:FWSO data format is in step 1) Netconf forms.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710737717.8A CN107579963A (en) | 2017-08-24 | 2017-08-24 | A kind of high performance firewall cluster |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710737717.8A CN107579963A (en) | 2017-08-24 | 2017-08-24 | A kind of high performance firewall cluster |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107579963A true CN107579963A (en) | 2018-01-12 |
Family
ID=61035293
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710737717.8A Pending CN107579963A (en) | 2017-08-24 | 2017-08-24 | A kind of high performance firewall cluster |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107579963A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108989352A (en) * | 2018-09-03 | 2018-12-11 | 平安科技(深圳)有限公司 | Method of realizing fireproof wall, device, computer equipment and storage medium |
| CN111866046A (en) * | 2019-04-30 | 2020-10-30 | 华为技术有限公司 | Method for realizing cluster and related equipment |
| CN114640532A (en) * | 2022-03-29 | 2022-06-17 | 联想(北京)有限公司 | Processing method and device and electronic equipment |
| CN114666090A (en) * | 2022-02-11 | 2022-06-24 | 广州理工学院 | Fire-proof wall |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1645861A (en) * | 2005-01-20 | 2005-07-27 | 武汉市中光通信公司 | Flexible exchanging network method for passing fire wall |
| US7055173B1 (en) * | 1997-12-19 | 2006-05-30 | Avaya Technology Corp. | Firewall pooling in a network flowswitch |
| US20060174336A1 (en) * | 2002-09-06 | 2006-08-03 | Jyshyang Chen | VPN and firewall integrated system |
| CN101651680A (en) * | 2009-09-14 | 2010-02-17 | 杭州华三通信技术有限公司 | Network safety allocating method and network safety device |
| CN104104561A (en) * | 2014-08-11 | 2014-10-15 | 武汉大学 | SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol |
| KR20150078626A (en) * | 2013-12-31 | 2015-07-08 | 주식회사 시큐아이 | Network system and method for controlling network |
| CN105530259A (en) * | 2015-12-22 | 2016-04-27 | 华为技术有限公司 | Message filtering method and equipment |
| CN105681305A (en) * | 2016-01-15 | 2016-06-15 | 北京工业大学 | SDN firewall system and implementation method |
| CN105847257A (en) * | 2016-03-25 | 2016-08-10 | 麦克·麦扎里克 | Clustered computer network system and method for resource distribution and configuration |
| CN106656905A (en) * | 2015-10-28 | 2017-05-10 | 杭州华三通信技术有限公司 | Firewall cluster realization method and apparatus |
-
2017
- 2017-08-24 CN CN201710737717.8A patent/CN107579963A/en active Pending
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7055173B1 (en) * | 1997-12-19 | 2006-05-30 | Avaya Technology Corp. | Firewall pooling in a network flowswitch |
| US20060174336A1 (en) * | 2002-09-06 | 2006-08-03 | Jyshyang Chen | VPN and firewall integrated system |
| CN1645861A (en) * | 2005-01-20 | 2005-07-27 | 武汉市中光通信公司 | Flexible exchanging network method for passing fire wall |
| CN101651680A (en) * | 2009-09-14 | 2010-02-17 | 杭州华三通信技术有限公司 | Network safety allocating method and network safety device |
| KR20150078626A (en) * | 2013-12-31 | 2015-07-08 | 주식회사 시큐아이 | Network system and method for controlling network |
| CN104104561A (en) * | 2014-08-11 | 2014-10-15 | 武汉大学 | SDN (self-defending network) firewall state detecting method and system based on OpenFlow protocol |
| CN106656905A (en) * | 2015-10-28 | 2017-05-10 | 杭州华三通信技术有限公司 | Firewall cluster realization method and apparatus |
| CN105530259A (en) * | 2015-12-22 | 2016-04-27 | 华为技术有限公司 | Message filtering method and equipment |
| CN105681305A (en) * | 2016-01-15 | 2016-06-15 | 北京工业大学 | SDN firewall system and implementation method |
| CN105847257A (en) * | 2016-03-25 | 2016-08-10 | 麦克·麦扎里克 | Clustered computer network system and method for resource distribution and configuration |
Non-Patent Citations (3)
| Title |
|---|
| 刘琦;陈云芳;张伟;: "软件定义网络下状态防火墙的设计与实现", no. 11 * |
| 张俊帅;杨昊;: "OpenFlow交换机流表转发设计与实现", no. 03 * |
| 张海刚;: "关于集群防火墙负载均衡优化的研究", 电脑知识与技术, no. 34 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108989352A (en) * | 2018-09-03 | 2018-12-11 | 平安科技(深圳)有限公司 | Method of realizing fireproof wall, device, computer equipment and storage medium |
| CN111866046A (en) * | 2019-04-30 | 2020-10-30 | 华为技术有限公司 | Method for realizing cluster and related equipment |
| CN114666090A (en) * | 2022-02-11 | 2022-06-24 | 广州理工学院 | Fire-proof wall |
| CN114640532A (en) * | 2022-03-29 | 2022-06-17 | 联想(北京)有限公司 | Processing method and device and electronic equipment |
| CN114640532B (en) * | 2022-03-29 | 2023-03-24 | 联想(北京)有限公司 | Processing method and device and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107689992A (en) | A kind of high performance firewall cluster implementation method | |
| CN100508460C (en) | Power prioritization in power source equipment | |
| CN106341346B (en) | A kind of routing algorithm ensureing QoS in data center network based on SDN | |
| CN107579963A (en) | A kind of high performance firewall cluster | |
| CN104022960B (en) | Method and apparatus based on OpenFlow protocol realizations PVLAN | |
| CN103685009B (en) | Data packet processing method and system as well as controller | |
| JP2008532358A (en) | Admission control and routing of telecommunications networks considering all physical links and all logical links | |
| CN106059942A (en) | Flow control method based on load prediction in SDN network | |
| CN106712899A (en) | Port rate adjustment method and device | |
| EP4184937A1 (en) | Method, apparatus, and system for communication in data centre | |
| CN105122747A (en) | Control device and control method in software defined network (sdn) | |
| CN111526089B (en) | Data fusion transmission and scheduling device based on variable-length granularity | |
| CN112218315A (en) | End-to-end QoS policy execution and Ethernet data forwarding method of 5G private network | |
| CN102638409A (en) | Method for controlling traffics among channels in architecture of network element based on forwarding and control separation | |
| CN108337184A (en) | Flow equalization dispatching method and device | |
| CN104980368A (en) | Bandwidth guarantee method and apparatus in software defined network (SDN) | |
| CN107508736B (en) | A kind of Internet framework of multi-service convergence access | |
| He et al. | Performance of multipath in fiber-wireless (FiWi) access network with network virtualization | |
| CN102201981A (en) | Network video conferencing system based on video signal flow acceleration and acceleration method thereof | |
| CN101764741A (en) | Filtering and shunting device and method supporting multi-service function | |
| CN101374096B (en) | Virtual concurrent internet architecture | |
| Li et al. | QoE-based bandwidth allocation with SDN in FTTH networks | |
| Hwang et al. | Load balancing and routing mechanism based on software defined network in data centers | |
| CN114338422B (en) | Middle-large enterprise network based on MPLS and realization method thereof | |
| KR101404491B1 (en) | System and Method for dynamic bandwidth setting of subnet based on OpenFlow network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| AD01 | Patent right deemed abandoned |
Effective date of abandoning: 20240507 |
|
| AD01 | Patent right deemed abandoned |