CN109246119B - PON system with authentication information automatic modification function - Google Patents
PON system with authentication information automatic modification function Download PDFInfo
- Publication number
- CN109246119B CN109246119B CN201811143284.4A CN201811143284A CN109246119B CN 109246119 B CN109246119 B CN 109246119B CN 201811143284 A CN201811143284 A CN 201811143284A CN 109246119 B CN109246119 B CN 109246119B
- Authority
- CN
- China
- Prior art keywords
- authentication information
- olt
- issuing
- ont
- modification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q11/0067—Provisions for optical access or distribution networks, e.g. Gigabit Ethernet Passive Optical Network (GE-PON), ATM-based Passive Optical Network (A-PON), PON-Ring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q2011/0079—Operation or maintenance aspects
Abstract
The invention discloses a passive optical network authentication information automatic modification system, which comprises: the system comprises a network management system, an OLT and ONTs, wherein the OLT is connected to the network management system in an up-link mode and connected with a plurality of ONTs in a down-link mode, and the OLT comprises an issuing parameter identification unit and an information issuing execution unit; the issuing parameter identification unit is used for identifying the received issuing parameters; the information issuing execution unit is an ME node newly added in the OMCI and is used for issuing the authentication information to the ONT; and the OLT determines whether to transmit the authentication information to the ONT according to the transmission parameter. The issuing parameter is generated by an MIB node interface newly added between the network management system and the OLT and is attached to the authentication information. The invention reduces the field operation workload of the ONT, reduces the maintenance cost and improves the automation level of communication operation and maintenance.
Description
Technical Field
The invention relates to the field of communication, in particular to a PON system with an authentication information automatic modification function.
Background
In a Passive Optical Network (PON) system in use today, when three operators operate and deploy and maintain FTTH services, the following procedures are usually followed: the user applies for the fixed network bandwidth, generates a work order after going to a business hall for declaring payment, and then the system assigns the work order to an engineer below, and the engineer appoints a client for the first time to install the work order; whole installation, the installation engineer of going up a door generally only needs to do two things, the first after to the scene: that is, input the LOID into the optical modem for authentication, the second piece: an account is given to a user; after the completion, the user can generally surf the internet; in later maintenance, when a user reports a dialing problem, an installation engineer needs to perform door-to-door processing, in the door-to-door process, whether a light cat is good or not is checked firstly, and the LOID or the account number is changed to the user; when the user changes the bandwidth package, the installation engineer needs to perform home-entry processing, and the home-entry processing is not required, namely, the LOID or other things are replaced; as the optical network of FTTH is getting bigger and bigger, users are getting more and more, and maintenance or installation operation of this foundation will require many installation engineers, and the labor cost is extremely high. In addition, in general on-duty maintenance, users need to go on duty in a working day, the maintenance cannot be performed as soon as the users meet weekends, working personnel on the side of an operator are not on duty in a free time, and an engineer below the operators cannot perform the maintenance, so that the phenomena of network disconnection, leave request or repair within a few days often occur; this results in a poor experience for the user.
A MIB (Management Information Base) that defines data items that a managed device must hold, operations allowed to be performed on each data item, and their meanings, i.e., data variables such as control and status Information of the managed device accessible by the Management system, are held in the MIB.
The OMCI (optical network unit Management and Control Interface) is a protocol for information interaction between the OLT and the ONT defined in the GPON standard, and is used for the OLT to manage the ONT in the GPON network, including configuration Management, fault Management, performance Management, security Management, and the like.
The ME (management entities), the OMCI protocol, manages the traffic of the ONU or the ONT by configuring the ME.
Disclosure of Invention
In order to solve the above problem, the present invention provides a PON system having an automatic authentication information modification function. The patent designs another flow mode, and the simple and repeated work is carried out by the system, and the work mode of the access layer is changed in an automatic mode to reduce the work load.
Specifically, a PON system having an automatic authentication information modification function includes: the system comprises a network management system, an OLT and ONTs, wherein the OLT is connected to the network management system in an up-link mode and connected with a plurality of ONTs in a down-link mode, and the OLT comprises an issuing parameter identification unit and an information issuing execution unit;
the issuing parameter identification unit is used for identifying the received issuing parameters;
the information issuing execution unit is an ME node newly added in the OMCI and is used for issuing the authentication information to the ONT;
and the OLT determines whether to transmit the authentication information to the ONT according to the transmission parameter.
Preferably, the issuing parameter is generated by an MIB node interface newly added between the network management system and the OLT and is attached to the authentication information; the authentication information is generated by a network management system.
Preferably, the issuing parameter includes an issuing identification bit, or further includes a restarting identification bit; the restart identification bit is used for indicating whether the ONT which modifies the authentication information is restarted immediately.
Preferably, a capability set node for identifying whether the ONT supports modification is added to the ONT, and the ONT determines whether to respond and modify the authentication information according to the capability set node.
Preferably, a capability set node table for identifying whether the downstream ONT supports modification is added to the OLT, and the OLT issues authentication information to the ONT supporting modification according to the capability set node table.
Preferably, the OLT further includes a modification result feedback unit, where the modification result feedback unit is configured to feed back, to the network management system, whether the ONT connected downstream from the OLT successfully modifies the authentication information.
Preferably, the OLT receives an authentication information modification instruction, where the authentication information modification instruction includes authentication information itself and an issue parameter;
according to different combinations of the issuing identification bits and the capability set nodes in the issuing parameters, the following authentication information modification strategies are respectively adopted:
A. if the issuing identification bit is 'issuing' and the capability set node is 'supporting', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. if the issued identification bit is 'issued' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT ignores the modification instruction and feeds back that the terminal node does not support the modification to the network management system through the OLT;
C. and if the issued identification bit is 'not issued', the OLT executes an authentication information modification instruction.
Preferably, the OLT receives an authentication information modification instruction, where the authentication information modification instruction includes authentication information itself and an issue parameter;
according to the issuing identification bit in the issuing parameter and the capability set node corresponding to the issuing target ONT, the following authentication information modification strategies are respectively adopted according to different combinations of the capability set nodes:
A. if the issuing identifier is 'issuing' and the capability set node is 'support', the OLT executes the authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. and if the issuing identifier is 'issuing' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and feeds back to the upper-level network management system: the terminal node does not support this modification;
C. and if the issuing identifier is 'not issuing', the OLT executes an authentication information modification instruction.
The invention has the beneficial effects that:
1) the authentication information of the ONT can be managed and maintained in a centralized way;
2) the whole process is automatically realized, so that manual intervention is reduced; the informatization degree is improved;
3) the operation of operating personnel is reduced, and the maintenance cost is reduced.
Drawings
FIG. 1 is a system flow diagram of the present invention;
fig. 2 is a flow chart of an embodiment of the present invention.
Detailed Description
In order to more clearly understand the technical features, objects, and effects of the present invention, embodiments of the present invention will now be described with reference to the accompanying drawings.
Specifically, a PON system having an automatic authentication information modification function includes: the system comprises a network management system, an OLT and ONTs, wherein the OLT is connected to the network management system in an up-link mode and connected with a plurality of ONTs in a down-link mode, and the OLT comprises an issuing parameter identification unit and an information issuing execution unit;
the issuing parameter identification unit is used for identifying the received issuing parameters;
the information issuing execution unit is an ME node newly added in the OMCI and is used for issuing the authentication information to the ONT;
and the OLT determines whether to transmit the authentication information to the ONT according to the transmission parameter.
Preferably, the issuing parameter is generated by an MIB node interface newly added between the network management system and the OLT and is attached to the authentication information; the authentication information is generated by a network management system.
Preferably, the issuing parameter includes an issuing identification bit, or further includes a restarting identification bit; the restart identification bit is used for indicating whether the ONT which modifies the authentication information is restarted immediately.
Preferably, a capability set node for identifying whether the ONT supports modification is added to the ONT, and the ONT determines whether to respond and modify the authentication information according to the capability set node.
Preferably, a capability set node table for identifying whether the downstream ONT supports modification is added to the OLT, and the OLT issues authentication information to the ONT supporting modification according to the capability set node table.
Preferably, the OLT further includes a modification result feedback unit, where the modification result feedback unit is configured to feed back, to the network management system, whether the ONT connected downstream from the OLT successfully modifies the authentication information.
Preferably, the OLT receives an authentication information modification instruction, where the authentication information modification instruction includes authentication information itself and an issue parameter;
according to different combinations of the issuing identification bits and the capability set nodes in the issuing parameters, the following authentication information modification strategies are respectively adopted:
A. if the issuing identification bit is 'issuing' and the capability set node is 'supporting', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. if the issued identification bit is 'issued' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT ignores the modification instruction and feeds back that the terminal node does not support the modification to the network management system through the OLT;
C. and if the issued identification bit is 'not issued', the OLT executes an authentication information modification instruction.
Preferably, the OLT receives an authentication information modification instruction, where the authentication information modification instruction includes authentication information itself and an issue parameter;
according to the issuing identification bit in the issuing parameter and the capability set node corresponding to the issuing target ONT, the following authentication information modification strategies are respectively adopted according to different combinations of the capability set nodes:
A. if the issuing identifier is 'issuing' and the capability set node is 'support', the OLT executes the authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. and if the issuing identifier is 'issuing' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and feeds back to the upper-level network management system: the terminal node does not support this modification;
C. and if the issuing identifier is 'not issuing', the OLT executes an authentication information modification instruction.
The specific implementation method comprises the following steps:
an MIB node interface for adding an identification bit is added between the network management system and the OLT;
adding an ME node for transmitting authentication information to the ONT in an OMCI in the OLT;
adding a capability set node for identifying whether modification is supported in the ONT.
Adding an MIB node interface between an OLT network management and an OLT, wherein the interface is used for telling the OLT whether to send modified authentication information to the ONT when the authentication information is modified on the OLT network management; the node may be arranged such that: the name AuthModifyToOnt, the node attribute value is enable (1) or disable (0);
when the OLT network management modifies the authentication information, two parameter values (two newly added option columns can be correspondingly added on the OLT network management) need to be issued, and the 1 st is the modified authentication information column; 2 nd is whether the modified authentication information is to be sent to the ONT column;
the OLT adds some functions in the software, adds an expanded OMCI, and the ME node A can be selected, and the purpose of the node is to send authentication information to the ONT; the software on the ONT adds a capability set node, for example: the AuthModifysupport is provided with a support (1) or a non-support (0), the support for the function is also developed on software, and when the modified authentication information is sent in the support, ONt can correctly write the modified authentication information; when the nonsport condition exists and modified authentication information is sent, the ONT ignores the modified authentication information;
when the modification information is issued, the flow is as follows: when the OLT network manager issues modification information, the OLT receives two parameter values of the issued modification authentication and AuthModifyToOnt, the OLT collects AuthModifysupport and receives AuthModifyToOnt value according to the previous capability reported by the ONT, and the judgment result comprises the following conditions:
(1) if the two information are: support + disable or notsupport + disable; the OLT does not send the authentication information to the ONT after modifying the authentication information on the OLT, and simultaneously feeds back the successful modification to the OLT network management;
(2) if the information of the two is support + enable; after the OLT modifies the authentication information on the OLT, the authentication information is simultaneously processed by OMCI, ME: a is sent to ONT, ONT receives the authentication information, modifies the authentication information; if the OMCI fed back by the ONT is set success, feeding back the successful modification to the OLT network management, otherwise, reporting the failure of the modification;
(3) if the two information are: nosupport + enable; the OLT modifies the authentication information on the OLT and feeds back to the OLT network management that the ONT does not support the authentication information modification.
It should be noted that, for simplicity of description, the above-mentioned embodiments of the method are described as a series of acts or combinations, but those skilled in the art should understand that the present application is not limited by the order of acts described, as some steps may be performed in other orders or simultaneously according to the present application. Further, those skilled in the art should also appreciate that the embodiments described in the specification are preferred embodiments and that the acts and elements referred to are not necessarily required in this application.
In the above embodiments, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a ROM, a RAM, etc.
The above disclosure is only for the purpose of illustrating the preferred embodiments of the present invention, and it is therefore to be understood that the invention is not limited by the scope of the appended claims.
Claims (6)
1. A PON system with an authentication information automatic modification function comprises: the system comprises a network management system, an OLT and ONTs, wherein the OLT is connected to the network management system in an up-link mode, and a plurality of ONTs are connected in a down-link mode; the OLT comprises a capability set node table, a sending parameter identification unit, an information sending execution unit and a modification result feedback unit;
the capability set node table is used for identifying whether the ONT connected below the OLT supports modification or not;
the issuing parameter identification unit is used for identifying the received issuing parameters, and the issuing parameters are generated by an MIB node interface newly added between the network management system and the OLT and are attached to the authentication information;
the information issuing execution unit is an ME node newly added in the OMCI and is used for issuing the authentication information to the ONT;
and generating authentication information through the network management system, and determining whether to transmit the authentication information to the ONT by the OLT according to the transmission parameters to finish the modification of the authentication information.
2. The PON system with the automatic authentication information modification function according to claim 1, wherein the issued parameters comprise an issued identification bit or a restart identification bit; the restart identification bit is used for indicating whether the ONT which modifies the authentication information is restarted immediately.
3. A PON system having an automatic authentication information modification function as claimed in claim 1, wherein a capability set node for identifying whether the ONT supports modification is added to the ONT, and the ONT decides whether to respond and modify the authentication information according to the capability set node.
4. The PON system with the function of automatically modifying the authentication information as claimed in claim 1, wherein a capability set node table for identifying whether the ONTs connected downstream thereof support modification is added to the OLT, and the OLT issues the authentication information to the ONTs supporting modification according to the capability set node table.
5. The PON system with the automatic authentication information modification function according to claim 1, wherein the OLT receives an authentication information modification instruction, and the authentication information modification instruction comprises authentication information and issuing parameters;
according to different combinations of the issuing identification bits and the capability set nodes in the issuing parameters, the following authentication information modification strategies are respectively adopted:
A. if the issuing identification bit is 'issuing' and the capability set node is 'supporting', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. if the issued identification bit is 'issued' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT ignores the modification instruction and feeds back that the terminal node does not support the modification to the network management system through the OLT;
C. and if the issued identification bit is 'not issued', the OLT executes an authentication information modification instruction.
6. The PON system with the automatic authentication information modification function according to claim 1, wherein the OLT receives an authentication information modification instruction, and the authentication information modification instruction comprises authentication information and issuing parameters;
according to the issuing identification bit in the issuing parameter and the capability set node corresponding to the issuing target ONT, the following authentication information modification strategies are respectively adopted according to different combinations of the capability set nodes:
A. if the issuing identifier is 'issuing' and the capability set node is 'support', the OLT executes the authentication information modification instruction and then issues the authentication information modification instruction to the ONT; the ONT executes the modification instruction and feeds back the modification result to the network management system through the OLT;
B. and if the issuing identifier is 'issuing' and the capability set node is 'unsupported', the OLT executes an authentication information modification instruction and feeds back to the upper-level network management system: the terminal node does not support this modification;
C. and if the issuing identifier is 'not issuing', the OLT executes an authentication information modification instruction.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811143284.4A CN109246119B (en) | 2018-09-28 | 2018-09-28 | PON system with authentication information automatic modification function |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811143284.4A CN109246119B (en) | 2018-09-28 | 2018-09-28 | PON system with authentication information automatic modification function |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109246119A CN109246119A (en) | 2019-01-18 |
| CN109246119B true CN109246119B (en) | 2021-09-14 |
Family
ID=65054031
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811143284.4A Active CN109246119B (en) | 2018-09-28 | 2018-09-28 | PON system with authentication information automatic modification function |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109246119B (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101083564A (en) * | 2007-07-24 | 2007-12-05 | 杭州华三通信技术有限公司 | Method for updating automatically optical network unit and optical line terminal |
| CN101227236A (en) * | 2007-01-19 | 2008-07-23 | 中兴通讯股份有限公司 | Method for automatic synchronization of optical network unit management data in Ethernet passive optical network |
| CN101388725A (en) * | 2007-09-14 | 2009-03-18 | 中兴通讯股份有限公司 | Method for controlling and managing network unit/optical network terminal |
| CN101677414A (en) * | 2008-09-18 | 2010-03-24 | 华为技术有限公司 | Method, system and device for leading user side terminal to obtain password |
| CN102480650A (en) * | 2010-11-22 | 2012-05-30 | 中兴通讯股份有限公司 | Information transmitting method in passive optical network system and passive optical network system |
| CN102546221A (en) * | 2010-12-08 | 2012-07-04 | 中国电信股份有限公司 | Service configuration method and system for optical network unit |
| CN103139671A (en) * | 2011-11-29 | 2013-06-05 | 中兴通讯股份有限公司 | Data synchronism method and optical line terminal of Ethernet passive optical network device |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1978654B1 (en) * | 2006-01-18 | 2014-01-08 | Huawei Technologies Co., Ltd. | A method for mapping the service stream to the service transmission channel, system and optical network terminator thereof |
| CN100499408C (en) * | 2006-05-15 | 2009-06-10 | 华为技术有限公司 | Method for configuring slave to optical line terminal and point-to-multipoint optical network system |
| US8850197B2 (en) * | 2009-07-31 | 2014-09-30 | Futurewei Technologies, Inc. | Optical network terminal management control interface-based passive optical network security enhancement |
-
2018
- 2018-09-28 CN CN201811143284.4A patent/CN109246119B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101227236A (en) * | 2007-01-19 | 2008-07-23 | 中兴通讯股份有限公司 | Method for automatic synchronization of optical network unit management data in Ethernet passive optical network |
| CN101083564A (en) * | 2007-07-24 | 2007-12-05 | 杭州华三通信技术有限公司 | Method for updating automatically optical network unit and optical line terminal |
| CN101388725A (en) * | 2007-09-14 | 2009-03-18 | 中兴通讯股份有限公司 | Method for controlling and managing network unit/optical network terminal |
| CN101677414A (en) * | 2008-09-18 | 2010-03-24 | 华为技术有限公司 | Method, system and device for leading user side terminal to obtain password |
| CN102480650A (en) * | 2010-11-22 | 2012-05-30 | 中兴通讯股份有限公司 | Information transmitting method in passive optical network system and passive optical network system |
| CN102546221A (en) * | 2010-12-08 | 2012-07-04 | 中国电信股份有限公司 | Service configuration method and system for optical network unit |
| CN103139671A (en) * | 2011-11-29 | 2013-06-05 | 中兴通讯股份有限公司 | Data synchronism method and optical line terminal of Ethernet passive optical network device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109246119A (en) | 2019-01-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110740053B (en) | Service arranging method and device | |
| EP2541868B1 (en) | Method and device for terminal management based on right control | |
| CN100511274C (en) | System and method for centralized managing and dispatching of batch work | |
| CN112104486A (en) | Kubernetes container-based network endpoint slicing method and system | |
| US8521863B2 (en) | Method and device for operating resource on shared network element | |
| CN101616024B (en) | Method and system of service opening/blocking | |
| EP3873102A1 (en) | Method for achieving optical line terminal slicing, storage medium, electronic device, and apparatus | |
| CN104796190A (en) | Automatic discovery method and system for optical cable routers | |
| CN106648771B (en) | Openstack cloud platform custom deployment system and deployment method | |
| CN106489250A (en) | Optical network unit authentication method, optical line terminal and optical network unit | |
| CN1964273A (en) | A method to interact service configuration information | |
| CN109246119B (en) | PON system with authentication information automatic modification function | |
| CN100401684C (en) | Method for implementing network management layer to information managing by element management layer | |
| CN109088885B (en) | Method for automatically modifying authentication information by local side node of passive optical network OLT | |
| US7047295B1 (en) | Generic alignment method in a multimanager environment | |
| CN101677275B (en) | System and method of managing network element authority | |
| WO2022016969A1 (en) | Data processing method and device | |
| CN106411618A (en) | Network management equipment data comparison real-time update method | |
| CN114640569A (en) | Dynamic message management apparatus, device, system, method, and storage medium | |
| CN109327529B (en) | Distributed scanning method and system | |
| CN111782363A (en) | Method and flow system for supporting multi-service scene calling | |
| CN111130851A (en) | Method for visually deploying and managing kafka cluster | |
| CN115209241A (en) | Method and device for opening network private line service | |
| CN111614482B (en) | Data batch modification method, system and storage medium | |
| US20060028985A1 (en) | Topology handler |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |