CN107613033B - Distributed virtual local area network implementation system and method suitable for mobile wireless node - Google Patents
Distributed virtual local area network implementation system and method suitable for mobile wireless node Download PDFInfo
- Publication number
- CN107613033B CN107613033B CN201710715793.9A CN201710715793A CN107613033B CN 107613033 B CN107613033 B CN 107613033B CN 201710715793 A CN201710715793 A CN 201710715793A CN 107613033 B CN107613033 B CN 107613033B
- Authority
- CN
- China
- Prior art keywords
- address
- packet
- vlan
- terminal
- unicast
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention relates to a distributed virtual local area network realizing system and method suitable for mobile wireless nodes, wherein the system is composed of a plurality of wireless VLAN agent devices, and each VLAN agent device comprises a wireless interface INF1, an INF2 interface, a monitoring module, a VLAN configuration table, a broadcast processing module, an ARP agent module and a unicast processing module. The invention can make a plurality of terminals form a plurality of wireless virtual local area networks through the wireless VLAN equipment, each virtual local area network is an independent broadcast domain, data isolation is carried out among all the broadcast domains, and meanwhile, through the ARP filtering function in the wireless VLAN equipment, the ARP message is prevented from being diffused among all the VLANs, thereby improving the network efficiency.
Description
Technical Field
The invention relates to a wireless local area network technology, in particular to a distributed virtual local area network implementation system and a distributed virtual local area network implementation method suitable for mobile wireless nodes.
Background
In the wired local area network, a wired network can be divided into a plurality of local area networks which are isolated from each other by configuring a Virtual Local Area Network (VLAN) in a switching device, each local area network is an independent broadcast domain, and data transmitted between the local area networks are not interfered with each other. Almost all commercial interactive devices currently support the VLAN protocol. With the rapid development of wireless technologies at present, wireless networks are becoming more and more popular, various technologies of wireless networks are emerging, wireless local area network technologies have become an indispensable component of people's life, but nodes located in the same wireless network can only be located in one broadcast domain, which not only reduces the communication efficiency of wireless networks, but also cannot realize the isolation of information among users for users accessing the same wireless network.
The patent application No. 03139932.0 discloses a method for implementing a virtual lan of a wlan ap device. The patent is a VLAN implementation method on a wireless local area network AP device, and the specific implementation process is that access point devices added into a distribution system are added into a management domain, and a management domain unique identifier is distributed for the access point devices; adding an accessed wireless terminal into a user domain, and distributing a user domain unique identifier for the wireless terminal; encapsulating the data frame into a data frame with a VLAN label, and sending the data frame to a distribution system; when receiving, checking the data frame received from the distribution system, discarding the data frame without VLAN label, matching and detecting the VLAN label in the data frame, discarding the unmatched data, and continuously forwarding the matched data after removing the VLAN label. The invention realizes the free switching of the wireless terminal when different domains are networked. However, the above patent is mainly used when a wireless terminal is freely switched between APs, and in terms of implementation, the traditional wired network interworking machine is further required to perform VLAN encapsulation and division, and in terms of final implementation, the patent is also based on one-hop wireless communication capability.
Disclosure of Invention
The invention aims to provide a distributed virtual local area network implementation system and method suitable for mobile wireless nodes.
The technical scheme for realizing the purpose of the invention is as follows: a distributed virtual local area network implementing system adapted for mobile wireless nodes, comprising a plurality of wireless VLAN proxy devices, each VLAN proxy device comprising:
a wireless interface INF1 for establishing a multi-hop wireless ad hoc network among a plurality of devices; an INF2 interface for the terminal to access;
the monitoring module is used for monitoring all data of the INF2 interface;
a VLAN configuration table including VLAN number, INF1 address, terminal address/mask, and MAC address entries;
a broadcast processing module: if the IP packet monitored by the INF2 interface is a broadcast packet, inquiring a VLAN configuration table, returning all terminal addresses in all table entries with the same VLAN number as the node, wherein the number of the terminal addresses is M, modifying the broadcast packet into M unicast packets with the destination addresses as the terminal addresses, uploading the unicast packets to a system protocol stack, and determining a forwarding process by the system protocol stack;
the ARP agent module: if the INF2 interface monitors that the packet is the ARP request packet, extracting a destination IP address in the packet, searching table entries of which the terminal addresses are matched with the destination address from a VLAN configuration table, returning MAC addresses in the table entries, and packaging an ARP response packet by taking the MAC addresses as response MAC addresses; after receiving the ARP response, the terminal sends a unicast IP packet, and if the ARP response is not received, the unicast is discarded and not sent;
a unicast processing module: if the packet monitored by the monitoring module is a unicast packet, the unicast packet is directly handed to a system protocol stack, and the protocol stack determines a forwarding process.
A distributed virtual local area network implementation method suitable for a mobile wireless node comprises the following steps:
Configuring a VLAN number and an INF1 address in a VLAN configuration table;
monitoring and acquiring address information of an INF2 interface connection terminal, and notifying the whole network through routing information on a wireless interface INF 1;
the routing on the wireless interface INF1 is converged, and other items in the VLAN configuration table are perfected according to the routing information;
If the IP grouping destination address monitored by the INF2 interface is a broadcast address, inquiring a VLAN configuration table, and returning all terminal addresses with the same VLAN number; converting the destination address of the packet capturing data into a return address, converting the return address into a plurality of unicast and sending the unicast to the port INF 1;
if the INF2 interface monitors that the packet is the ARP request packet, extracting a destination IP address in the packet, searching table entries of which the terminal addresses are matched with the destination address from a VLAN configuration table, returning MAC addresses in the table entries, and packaging an ARP response packet by taking the MAC addresses as response MAC addresses; after receiving the ARP response, the terminal sends a unicast IP packet, otherwise, the unicast is discarded and not sent;
if the destination address of the IP packet monitored by the INF2 interface is a unicast address, the IP packet is directly handed to the protocol stack of the system, and the protocol stack determines the forwarding process.
Compared with the prior art, the invention has the following beneficial effects: the invention provides a distributed virtual local area network realization system and a distributed virtual local area network realization method suitable for a mobile wireless node, which can enable a plurality of terminals to form a plurality of wireless virtual local area networks through wireless VLAN equipment, each virtual local area network is an independent broadcast domain, data among the broadcast domains are isolated, and meanwhile, through an arp filtering function in the wireless VLAN equipment, arp messages are prevented from being diffused among the VLANs, and the network efficiency is improved.
Drawings
Fig. 1 is a schematic diagram of a wireless VLAN proxy device.
Fig. 2 is a diagram of a wireless VLAN configuration table initialization process.
Fig. 3 is a diagram of a wireless VLAN broadcast packet forwarding process.
Fig. 4 is a diagram of a wireless VLAN ARP proxy implementation process.
Fig. 5 is a diagram of a wireless VLAN unicast packet forwarding process.
Fig. 6 is a schematic diagram of a wireless VLAN structure.
Detailed Description
The invention is suitable for the wireless multi-hop communication network with the group division requirement. The application objects include but are not limited to a multi-hop unmanned system cluster, a military tactical communication network, a rescue and relief network and the like. The invention has special hardware structure requirement, needs to have two external communication interfaces, one of which is a wireless interface, runs a proactive wireless ad hoc network routing protocol on the interface to complete the networking communication function of the wireless interface, and the specific implementation of the routing protocol is out of the scope of the claims of the invention. The other interface may be a wired interface or a wireless interface. Both interfaces run the TCP/IP protocol.
The method needs to be implemented by a wireless VLAN proxy device (device for short), the wireless devices that need to construct a virtual local area network access one device respectively, each device has two interfaces, one wireless interface INF1 is used for establishing a multi-hop wireless ad hoc network among multiple devices, and the other INF2 interface is used for terminal access. The INF1 port of each device is allocated with the IP address of the same network segment to form a wireless multi-hop self-organizing network, and each device runs a wireless self-organizing routing protocol at the port to realize the routing intercommunication among a plurality of devices. And the INF2 interface is used as an access port of the user terminal equipment, an IP address is not needed, and data is imported into the proxy equipment by capturing packets on the INF2 interface. The specific device structure is shown in fig. 1.
The function of each module is described as follows:
a monitoring module: snoops all data of INF2 interface.
VLAN configuration table: the VLAN configuration table entry is shown in table 1. The table contains VLAN number, INF1 address, terminal address/mask, and MAC address entries. The mapping relation between the VLAN number and the INF1 address is manually specified by a user, and the INF1 address with the same VLAN number is in the same VLAN. The terminal address information is acquired through routing information, the MAC address item is automatically generated by the terminal address item, the first two bytes of the six-byte address are fixed, and the last four bytes are the IP address of the network. The specific flow is shown in fig. 2. After the manual configuration part in the VLAN configuration table is configured, a program is started, a configuration file is read, initialization of a VLAN number and INF1 is completed, a monitoring program of an INF2 port is started, and a source address of a monitored packet is used as a terminal address and added into the configuration table. The terminal address in the configuration table is then advertised as route reachability information to the entire network through the routing protocol. And finishing the establishment of the mapping relation between the INF1 address and the terminal address in the VLAN configuration table of each node.
A broadcast processing module: as shown in fig. 3, the data forwarding state working process is that an IP packet monitored by the INF2 port is a broadcast packet, a VLAN configuration table is queried, M terminal addresses in N entries having the same VLAN number as that of the node are returned, the broadcast packet is modified into M unicast packets having destination addresses as the terminal addresses, and the unicast packets are handed to a system protocol stack, and a forwarding process is determined by the system protocol stack.
ARP agent: if the INF2 interface monitors that the packet is an ARP request packet, the destination IP address in the packet is extracted, the table entries of which the terminal addresses are matched with the destination address are searched in the VLAN configuration table, the MAC addresses in the table entries are returned, and the MAC addresses are used as response MAC addresses to encapsulate an ARP response packet. The process is shown in figure 4. And after receiving the ARP response, the terminal normally sends the unicast IP packet, otherwise, discards the unicast and does not send the unicast IP packet.
A unicast processing module: if the packet monitored by the monitoring module is a unicast packet, the unicast packet is directly handed to a system protocol stack, and the protocol stack determines a forwarding process. The process is shown in figure 5.
By internally implementing the function of an arp proxy and a VLAN configuration table, each terminal device is divided into one or more VLANs.
| VLAN number | INF1 address | Terminal address | Corresponding |
| 1 | 192.168.0.1 | 10.0.1.1 | 00-00-10-0-1-1 |
| 1 | 192.168.0.2 | 10.0.1.2 | 00-00-10-0-1-2 |
| 1 | 192.168.0.3 | 10.0.1.3 | 00-00-10-0-1-3 |
| 2 | 192.168.0.4 | 10.0.1.4 | 00-00-10-0-1-4 |
Table 1 VLAN configuration table
The present invention will be described in detail with reference to specific examples.
Examples
The embodiment provides a VLAN implementation method based on wireless multi-hop self-organization. Fig. 6 is a multi-hop wireless network of wireless VLAN devices. Each device has two interfaces INF2 and INF1, and each device has a VLAN configuration table. The VLAN configuration table in device a is shown in table 1. The VLAN number and INF1 address are added manually, and the terminal address entry and MAC address entry in the table entry are null initially. When the program is started, the listener running on the INF2 interface of device a receives the packet 10.0.1.1, and adds its source address to the terminal address entry 192.168.0.1 in the VLAN configuration table. The MAC address is set to 00-01-10-00-01-01 according to the MAC address setting rule. The same work is done by the same devices B, C and D. The terminal addresses of the respective devices will be exchanged through the routing information, and device a writes the obtained terminal address of B, C, D device and the generated MAC address into the configuration table, forming the configuration table as shown in table 1.
When the terminal 10.0.1.1 sends a packet to 10.0.1.2, firstly 10.0.1.1 sends an ARP request, the request is monitored by the INF2 interface of the device a, the MAC address corresponding to the ARP request is found to be 0-0-10-0-1-1 from table 1, an ARP reply message is sent back, after receiving the ARP reply, the terminal 10.0.1.1 sends a unicast packet with the destination address of 10.0.1.2, the packet enters the device a after being monitored by the INF2, and the device a forwards the packet according to a route formed by the multi-hop self-organizing network. If the destination address of the transmitted packet is 10.0.1.7 or 10.0.1.4, the MAC address corresponding to the terminal address with the same VLAN number cannot be found in the VLAN configuration table of device a, and an ARP reply will not be returned, and the unicast packet will be discarded at the terminal. If 10.0.1.1 sends the broadcast packet, a unicast address with the same VLAN number is returned by a table lookup: 10.0.1.2, 10.0.1.3. And the broadcast packet is encapsulated into two unicast packets with destination addresses of 10.0.1.2 and 10.0.1.3, and the routing table is inquired in a unicast mode to complete forwarding.
The method limits the range of the broadcast domain to be the same virtual local area network range, and simultaneously filters the diffusion of the ARP information and other information of the packets in the different virtual local area networks in the network.
The mapping relationship between the terminal address and the MAC address can be manually configured, or an automatic mapping manner in the embodiment can be adopted, as long as each terminal can be ensured to correspond to one MAC address; the terminal address item in the VLAN configuration table can be obtained through dynamic routing or added through manual configuration; the broadcast packet can be converted into a unicast packet to be sent, and can also be continuously sent by adopting the broadcast packet; the terminal may interface with INF2 either wirelessly or by wire.
The abbreviations involved in the present invention are explained as follows:
Claims (2)
1. a distributed virtual local area network implementing system adapted for mobile wireless nodes, comprising a plurality of wireless VLAN proxy devices, each VLAN proxy device comprising:
a wireless interface INF1, configured to establish a multi-hop wireless ad hoc network among a plurality of VLAN proxy devices; an INF2 interface for the terminal to access;
the monitoring module is used for monitoring all data of the INF2 interface;
a VLAN configuration table including VLAN number, INF1 address, terminal address/mask, and MAC address entries;
a broadcast processing module: if the IP packet monitored by the INF2 interface is a broadcast packet, inquiring a VLAN configuration table, returning all terminal addresses in all table entries with the same VLAN number as the node, wherein the number of the terminal addresses is M, modifying the broadcast packet into M unicast packets with the destination addresses as the terminal addresses, uploading the unicast packets to a system protocol stack, and determining a forwarding process by the system protocol stack;
the ARP agent module: if the INF2 interface monitors that the packet is the ARP request packet, extracting a destination IP address in the packet, searching a table entry of which the terminal address is matched with the destination address from a VLAN configuration table, returning the MAC address in the table entry of which the terminal address is matched with the destination address, and packaging an ARP response packet by taking the MAC addresses as response MAC addresses; after receiving the ARP response, the terminal sends a unicast IP packet, and if the ARP response is not received, the unicast is discarded and not sent;
a unicast processing module: if the packet monitored by the monitoring module is a unicast packet, the unicast packet is directly handed to a system protocol stack, and the protocol stack determines a forwarding process.
2. A distributed virtual local area network implementation method of the distributed virtual local area network implementation system suitable for the mobile wireless node according to claim 1, comprising the steps of:
step 1, initializing VLAN configuration table
Configuring a VLAN number and an INF1 address in a VLAN configuration table;
monitoring and acquiring address information of an INF2 interface connection terminal, and notifying the whole network through routing information on a wireless interface INF 1;
the routing on the wireless interface INF1 is converged, and other items in the VLAN configuration table are perfected according to the routing information;
step 2, data forwarding
If the IP grouping destination address monitored by the INF2 interface is a broadcast address, inquiring a VLAN configuration table, and returning all terminal addresses with the same VLAN number; converting the destination address of the packet capturing data into a return address, converting the return address into a plurality of unicast and sending the unicast to the port INF 1;
if the INF2 interface monitors that the packet is the ARP request packet, extracting a destination IP address in the packet, searching a table entry of which the terminal address is matched with the destination address from a VLAN configuration table, returning the MAC address in the table entry of which the terminal address is matched with the destination address, and packaging an ARP response packet by taking the MAC addresses as response MAC addresses; after receiving the ARP response, the terminal sends a unicast IP packet, otherwise, the unicast is discarded and not sent;
if the destination address of the IP packet monitored by the INF2 interface is a unicast address, the IP packet is directly handed to the protocol stack of the system, and the protocol stack determines the forwarding process.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710715793.9A CN107613033B (en) | 2017-08-20 | 2017-08-20 | Distributed virtual local area network implementation system and method suitable for mobile wireless node |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710715793.9A CN107613033B (en) | 2017-08-20 | 2017-08-20 | Distributed virtual local area network implementation system and method suitable for mobile wireless node |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107613033A CN107613033A (en) | 2018-01-19 |
| CN107613033B true CN107613033B (en) | 2020-09-25 |
Family
ID=61065379
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710715793.9A Active CN107613033B (en) | 2017-08-20 | 2017-08-20 | Distributed virtual local area network implementation system and method suitable for mobile wireless node |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107613033B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109361558B (en) * | 2018-12-19 | 2021-09-21 | 上海智格网通信科技有限公司 | Distributed wireless ad hoc network management method based on grid network equipment proxy node |
| CN110062061B (en) * | 2019-04-29 | 2020-06-19 | 清华大学 | Address resolution mapping method based on IP/MAC exchange |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1482711A3 (en) * | 2001-04-20 | 2009-06-24 | Egenera, Inc. | Virtual networking system and method in a processing system |
| CN101321118A (en) * | 2007-06-07 | 2008-12-10 | 杭州华三通信技术有限公司 | Method and apparatus for implementing wireless router proxy |
| CN101431810A (en) * | 2008-12-19 | 2009-05-13 | 西安电子科技大学 | Cross-layer cooperated routing method supporting multi-speed transmission in Ad Hoc network |
| CN101521895A (en) * | 2009-04-03 | 2009-09-02 | 南京邮电大学 | Forwarding method used for constructing multi-hop routing in wireless self-organizing network |
| CN104468866B (en) * | 2014-12-26 | 2017-11-21 | 陈晨 | A kind of multiple gateway terminal fast roaming method in WLAN |
| CN104468620A (en) * | 2014-12-26 | 2015-03-25 | 陈晨 | ARP hijacking and performance enhancing method in wireless local area network |
| CN105337833B (en) * | 2015-11-24 | 2018-11-13 | 中国人民解放军理工大学 | A kind of multi channel multi-hop wireless network topology simulation system of support isomery |
-
2017
- 2017-08-20 CN CN201710715793.9A patent/CN107613033B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN107613033A (en) | 2018-01-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9756682B2 (en) | Method and system for partitioning wireless local area network | |
| CN1659899B (en) | Virtual switch | |
| EP2708001B1 (en) | Label switched routing to connect low power network domains | |
| US20070195725A1 (en) | Access Point Control System, And Access Point Control Method | |
| CN102957589B (en) | Method, network node and system for service data transmission | |
| CN102932254B (en) | Message forwarding method and device | |
| CN114124618B (en) | Message transmission method and electronic equipment | |
| WO2021052399A1 (en) | Interface extension method, apparatus and system | |
| CN102413061A (en) | Message transmission method and equipment | |
| US9408061B2 (en) | Distributed network layer mobility for unified access networks | |
| US20040172480A1 (en) | Wireless LAN system for virtual LAN | |
| WO2012059821A1 (en) | A method and device for transmitting an ipv6 over low power wireless personal area network data packet | |
| CN108076682A (en) | Mesh WLAN controller, wlan device and the operating method for WLAN supplies | |
| CN104468866A (en) | Fast roaming method for multi-gateway terminal in wireless local area network | |
| CN110224936B (en) | Routing method based on MAC address and network interface | |
| CN100364289C (en) | Method for implementing layer-2 equipment interconnection in resilient packet ring (RPR) based network | |
| CN105187311A (en) | Message forwarding method and message forwarding device | |
| CN107613033B (en) | Distributed virtual local area network implementation system and method suitable for mobile wireless node | |
| CN102932225A (en) | Method, system and device for realizing communication between sub virtual local area networks | |
| US20160112311A1 (en) | Enhanced connectivity to end devices via access points of wireless local area networks (wlan) | |
| US20150098457A1 (en) | Enabling internet protocol connectivity across multi-hop mobile wireless networks via a service oriented architecture | |
| CN101714934B (en) | Transmission method of wireless distribution system | |
| Yu et al. | Improved hierarchical routing over 6LoWPAN | |
| CN108934058B (en) | Communication method and device | |
| US20140362785A1 (en) | Mapping Via Back To Back Ethernet Switches |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |