CN113079183A - Inter-board communication system of distributed firewall and communication method thereof - Google Patents
Inter-board communication system of distributed firewall and communication method thereof Download PDFInfo
- Publication number
- CN113079183A CN113079183A CN202110449017.5A CN202110449017A CN113079183A CN 113079183 A CN113079183 A CN 113079183A CN 202110449017 A CN202110449017 A CN 202110449017A CN 113079183 A CN113079183 A CN 113079183A
- Authority
- CN
- China
- Prior art keywords
- data
- layer
- communication
- communication system
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/50—Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate
Abstract
The invention relates to the technical field of communication, in particular to an inter-board communication system of a distributed firewall and a communication method thereof. The communication mechanism of the communication system sequentially comprises the following components in structural order from a bottom layer to a top layer: the device comprises a hardware physical link layer, a network interface abstraction layer, a data channel unified interface layer, a data channel and a service layer. The hardware physical link layer is provided with a connection mode between the main control board and each service module single board. The network interface abstract layer unifies the MAC sublayer and the PHY sublayer into a network interface and sends or receives messages. The data channel uniform interface layer is used for realizing multi-level data transmission requirements and requirements of different functions on a data interface. The data channels include synchronous data channels and asynchronous data channels, and the service layer is used to implement various functions, and in the layer, the type of data to be transmitted for implementing the functions is selected by the user. The inter-board communication system of the distributed firewall solves the problems that the traditional system is insufficient in overall communication performance and the inter-board communication real-time performance cannot meet requirements.
Description
Technical Field
The invention relates to the technical field of communication, in particular to an inter-board communication system of a distributed firewall and a communication method thereof.
Background
Network security is a core concern in the process of using network equipment by a user, a large amount of distributed firewall is used in the basic field of security, and meanwhile, the user knows the firewall equipment more and more deeply. In many fields, such as government, bank, finance and other government and enterprise industries, safety has become the primary factor considered by users, the demand for firewall equipment is increasing day by day, and special demands are made on the functions of firewalls according to the characteristics of the industries, wherein the requirements on the functions of distributed firewalls are higher and higher. The main features and advantages of the current distributed firewall mainly include the following: (1) enhanced system security; the distributed firewall aims at the intrusion detection and protection functions of the host, strengthens attack protection from the inside, and realizes an all-round security strategy. (2) The performance of the system is improved; the distributed firewall utilizes hardware level to realize the business module, the management module, the control module and the like by using different hardware and software systems, and each takes its own role to improve the overall performance. (3) Rich system extensibility; the distributed firewall realizes the extension of the distributed firewall on the hardware and software level.
In order to improve the performance of the distributed firewall device, it may be considered to improve the communication capability between the single boards in the distributed firewall device. In the hardware architecture of the conventional distributed firewall: the firewall mainly comprises a service board and a main control board, control and service division are realized, a complex firewall can further subdivide a service part, and for example, interface service and safety service are independently divided into time division. In the device architecture, all the boards need to communicate with each other, and it can be specifically understood that each service board is connected to the main control board to perform data communication, including communication between the main control board and the service board, and communication between the main control board and the standby main control board. Regardless of the design of the hardware structure, good interaction performance of inter-board communication is very important.
In the distributed firewall, data communication needs to be performed between the main control board and the service board, so that the system on each board updates information and some data of all boards on the device in real time, and therefore, a set of communication mechanism needs to be established in the distributed firewall, so that data communication can be performed at an early stage of system startup (generally, after the Linux kernel is started, each board needs to perform data communication, and certainly, communication can be performed after the system is started). In order to realize the rapid information interaction between the single boards in the conventional distributed firewall system, a set of communication mechanism with large concurrency and timely response needs to be realized in each single board system, and a synchronous and asynchronous mode for data transmission is realized according to specific information requirements. Therefore, the complexity of the distributed firewall system is increased, the operating efficiency is reduced, and the rapidity and the real-time performance of the interaction performance between the plates cannot meet the requirements.
Disclosure of Invention
The invention provides an inter-board communication system of a distributed firewall and a communication method thereof, which solve the problems that the traditional distributed firewall has insufficient overall communication performance and the real-time performance of inter-board communication cannot meet the requirement.
In order to overcome the defects of the prior art, the invention is realized by adopting the following technical scheme:
firstly, the invention provides an inter-board communication system of a distributed firewall, and a communication mechanism of the communication system sequentially comprises the following components according to the structural sequence from a bottom layer to a top layer: the device comprises a hardware physical link layer, a network interface abstraction layer, a data channel unified interface layer, a data channel and a service layer.
The hardware physical link layer is located at the bottommost layer of the communication system, and a connection mode between the main control board and each service module single board is set in the hardware physical link layer.
The network interface abstraction layer is used for unifying an MAC sublayer and a PHY sublayer in a hardware physical link layer into a network interface and using the network interface for sending or receiving messages.
The data channel uniform interface layer is obtained by uniformly packaging on the basis of the network interface abstract layer, and the uniformly packaged data channel uniform interface layer is used for realizing multi-level data transmission requirements and requirements of different functions on data interfaces.
The data channel comprises a synchronous data channel and an asynchronous data channel, the synchronous data channel and the asynchronous data channel are respectively used for completing two data transmission modes of synchronization and asynchronization, and the two data transmission modes of synchronization and asynchronization are selected according to whether the transmission information needs to be returned in real time according to the requirement of the user at the last time.
The service layer is located at the topmost layer of the communication system, and is used for implementing various functions, and in which the type of data to be transmitted for implementing the functions is selected by the user.
Furthermore, the connection mode between the single boards in the hardware physical link layer adopts the SGMII protocol for linking.
Further, the delivery requirements and functions implemented in the data channel uniform interface layer include unicast transmission, multicast transmission, and broadcast transmission.
Secondly, the invention also comprises a communication method between boards of the distributed firewall, the communication method is based on the communication mechanism provided by the communication system between boards of the distributed firewall, and a high-performance thread set scheduling method is adopted to realize the quick information interaction between single boards in the communication system; the communication method comprises the following steps:
s1: initializing basic conditions of a communication system; creating or preparing a global data structure, a timer, an epoll mechanism and a global waiting queue identifier;
s2: creating a high-performance thread set required for realizing communication; the high-performance thread set comprises a polling mechanism and a kernel thread set;
s3: defining a basic uniform interface of a communication system; the device comprises a synchronous data channel, an asynchronous data channel, a data channel unified interface and a network abstraction layer interface; each uniform interface is used for sending or receiving data and messages;
s4: the communication system monitors the state of the synchronous information mark on the waiting queue through the high-performance thread set according to the time interval determined by the timer after triggering the service process of the timer, and sends synchronously updated data when needed according to the judgment of the monitoring result;
s5: and the communication system synchronously updates the data on the service module single board receiving the updated data according to the received synchronous updated data and determines whether synchronous information needs to be returned or not according to the synchronous request mark.
5. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in step S1, the global data structure is used to store information that needs to be synchronized, or information that needs to be communicated in the service module board; the data types stored in the global data structure body comprise hardware design information, function realization information and user requirement information.
Further, in step S1, the identifier of the global wait queue is used to distinguish different communication information when sending and receiving communication information; the mark of the global waiting queue sets different marks for different types of synchronous information in the process of creating.
Further, in step S1, the timer is used to build a timer mechanism; in the timer mechanism, a timer is triggered at regular intervals, and a corresponding timer is called to process a service process after the timer is triggered; the service process is used for writing an identification of the synchronization information in the global waiting queue, thereby triggering a certain type of information to be communicated.
Further, in the unified interface definition process of step S3, a global variable structure is also set; the global variable structure body is used as a registration mechanism and used for storing the function of the unified interface by using a pointer function; the global variable structure also records ID values of different interfaces, processing function priorities of the interfaces, and an identifier for recording whether to establish connection and synchronously return.
Further, in step S4, after the timer service process is triggered, the communication system encapsulates the data that needs to be updated synchronously, and each time the communication system calls the next interface in the encapsulation process, the communication system encapsulates the data again according to the function difference of the interface function, and so on, until the network interface abstraction layer is reached finally, the data encapsulation is completed; at this time, the data to be updated synchronously is encapsulated into network messages, and the network messages are sent out from the hardware physical link layer of the communication system.
Further, in the process of receiving the synchronous data in step S5, the received message is split from the bottom layer to the previous layer each time, the specific header information of each layer is stripped, and finally the message reaches the service layer that needs to be updated.
The inter-board communication system of the distributed firewall and the communication method thereof provided by the invention have the following beneficial effects:
1. the communication system and the method realize the interaction of data when the distributed firewall system is started, so that each independent single board system can sense the information of each single board in the whole equipment, thereby laying a foundation for the cooperative work after the whole equipment is started and improving the overall communication performance of the distributed firewall.
2. The communication system provided by the invention uses a set of self-defined hierarchical logic structure of distributed communication, and realizes the unification of the logic communication structures of multiple single boards and multiple systems under distributed equipment.
3. The communication system and the method adopt various technologies such as a timer, a waiting queue, multithreading, an epoll mechanism and the like of a Linux kernel, realize a new communication technical scheme, highlight the combination of multiple knowledge and the comprehensive application of multiple skills, realize the high-efficiency communication among single boards in a distributed firewall and ensure the rapidity and the real-time performance of the communication among the boards in the system.
Drawings
Fig. 1 is a schematic diagram illustrating a hierarchical structure of a communication mechanism in an inter-board communication system of a distributed firewall according to this embodiment 1;
fig. 2 is a flowchart illustrating an implementation of a method for inter-board communication of a distributed firewall according to this embodiment 2;
fig. 3 is a flowchart illustrating an implementation procedure of a high-performance run set in the inter-board communication method of the distributed firewall according to this embodiment 2;
fig. 4 is a basic flowchart of data communication in the distributed firewall system according to embodiment 2.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
Example 1
As shown in fig. 1, this embodiment provides an inter-board communication system of a distributed firewall, where a communication mechanism of the communication system sequentially includes, in order from a bottom layer to a top layer: the device comprises a hardware physical link layer, a network interface abstraction layer, a data channel unified interface layer, a data channel and a service layer.
The hardware physical link layer is located at the bottommost layer of the communication system, and a connection mode between the main control board and each service module single board is set in the hardware physical link layer. In this embodiment, the connection mode between boards in the hardware physical link layer is linked by using the SGMII protocol.
The network interface abstraction layer is used for unifying an MAC sublayer and a PHY sublayer in a hardware physical link layer into a network interface and using the network interface for sending or receiving messages.
The data channel uniform interface layer is obtained by uniformly packaging on the basis of the network interface abstract layer, and the uniformly packaged data channel uniform interface layer is used for realizing multi-level data transmission requirements and requirements of different functions on data interfaces. The transmission requirements and functions implemented in the data channel uniform interface layer include unicast transmission, multicast transmission, broadcast transmission, and the like.
The data channel comprises a synchronous data channel and an asynchronous data channel, the synchronous data channel and the asynchronous data channel are respectively used for completing two data transmission modes of synchronization and asynchronization, and the two data transmission modes of synchronization and asynchronization are selected according to whether the transmission information needs to be returned in real time according to the requirement of the user at the last time.
The service layer is located at the topmost layer of the communication system, and is used for implementing various functions, and in which the type of data to be transmitted for implementing the functions is selected by the user.
Example 2
As shown in fig. 2, this embodiment provides a method for inter-board communication of a distributed firewall, where the method uses a high-performance thread set scheduling method to implement fast information interaction between boards in a communication system based on a communication mechanism provided by an inter-board communication system of the distributed firewall in embodiment 1; the communication method comprises the following steps:
s1: initializing basic conditions of a communication system; including creating or preparing a global data structure, a timer, an epoll mechanism, and a global wait queue identification.
The global data structure is used for storing information needing to be synchronized or information needing to be communicated in the service module single board; the data types stored in the global data structure body comprise hardware design information, function realization information and user requirement information.
The identification of the global waiting queue is used for distinguishing different communication information when the communication information is sent and received; the mark of the global waiting queue sets different marks for different types of synchronous information in the process of creating.
The timer is used for constructing a timer mechanism; in the timer mechanism, a timer is triggered at regular intervals, and a corresponding timer is called to process a service process after the timer is triggered; the service process is used for writing an identification of the synchronization information in the global waiting queue, thereby triggering a certain type of information to be communicated.
S2: creating a high-performance thread set required for realizing communication; the high-performance thread set comprises a polling mechanism and a kernel thread set;
the high-performance thread set mainly comprises a thread service process and an epoll mechanism, and the main work of the high-performance thread set is to monitor whether a synchronization information identifier on a waiting queue is changed or not by using the epoll mechanism so as to judge whether to synchronously update data or not. The operation flow of the high-performance thread set is shown in fig. 3, and includes the following processes:
1. creating a high-performance thread set;
2. starting to run a thread service mechanism and an epoll mechanism in a high-performance thread set;
3. the epoll mechanism executes polling and monitoring tasks, judges whether the data to be updated is reached, and makes the following decision:
(1) when the data arrives, executing a data updating task;
(2) when the data does not arrive, returning to continuously execute polling and monitoring tasks;
4. the epoll mechanism determines whether synchronization return information is needed according to the monitored identification of the synchronization information, and makes the following decision:
(1) when the information needs to be synchronously returned, the synchronous information is sent out;
(2) when the synchronous return information is not needed, the task is ended.
S3: defining a basic uniform interface of a communication system; the device comprises a synchronous data channel, an asynchronous data channel, a data channel unified interface and a network abstraction layer interface; each uniform interface is used for sending or receiving data and messages.
Meanwhile, a global variable structure body is also arranged in the step; the global variable structure body is used as a registration mechanism and used for storing the function of the unified interface by using a pointer function, and the global variable structure body also records the ID values of different interfaces, the processing function priority of the interfaces and the identification of whether to establish connection and whether to synchronously return.
S4: and the communication system monitors the state of the synchronous information mark on the waiting queue through the high-performance thread set according to the time interval determined by the timer after triggering the service process of the timer, and sends the synchronously updated data when needed according to the judgment of the monitoring result.
In this step, after the timer service process is triggered, the service process also includes the high performance thread set shown in fig. 3; then, the data which needs to be updated synchronously is packaged, and in the packaging process, each time the communication system calls the interface of the next layer, the data is packaged again according to the different functions of the interface functions, and so on until the network interface abstract layer is reached finally, and the data packaging is completed; at this time, the data to be updated synchronously is encapsulated into network messages, and the network messages are sent out from the hardware physical link layer of the communication system.
S5: and the communication system synchronously updates the data on the service module single board receiving the updated data according to the received synchronous updated data and determines whether synchronous information needs to be returned or not according to the synchronous request mark.
The step corresponds to step S4, and step S5 implements receiving of the synchronous data, and in the process, from the bottom layer to the upper layer, the received message is split each time, the specific header information of each layer is stripped, and finally, the service layer requiring data update is reached.
In detail, the basic flow of data communication is shown in fig. 4, and includes the following processes:
1. initializing a timer;
2. the timer starts to time;
3. the service thread set runs and judges whether the synchronization time is reached:
(1) when the synchronization time is up, the synchronization data is updated in time;
(2) when the synchronous time is not reached, timing is continued;
3. in the process of updating the synchronous data, simultaneously judging whether synchronous transmission is needed:
(1) when synchronous transmission is not needed, asynchronous transmission is executed, and the process is finished after data transmission is finished;
(2) when synchronous transmission is needed, synchronous transmission is executed;
4. and when the synchronous sending process is executed, synchronous return information is obtained through a feedback mechanism, and whether the synchronous return information is received is judged:
(1) when receiving the synchronous return information, ending the synchronous sending process;
(2) when the synchronous return information is not received, waiting for a certain time length; and if the synchronous return information is not received after the waiting is finished, the synchronous sending process is executed again.
By adopting the communication system and the communication method, the overall communication performance of the distributed firewall can be effectively improved, the interaction of data is realized while the system is started, and the communication efficiency and the quick response of the system are improved.
Under the communication mechanism of the embodiment, each independent single board system can effectively sense the information of each single board of the whole equipment, which also lays a foundation for the cooperative work of the whole equipment after being started.
The present invention is not limited to the above preferred embodiments, and any modifications, equivalent substitutions and improvements made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (10)
1. An inter-board communication system of a distributed firewall is characterized in that a communication mechanism of the communication system sequentially comprises the following components according to a structural sequence from a bottom layer to a top layer:
the hardware physical link layer is positioned at the bottommost layer of the communication system, and a connection mode between the main control board and each service module single board is set in the hardware physical link layer;
the network interface abstraction layer is used for unifying an MAC sublayer and a PHY sublayer in a hardware physical link layer into a network interface and using the network interface for sending or receiving a message;
the data channel uniform interface layer is obtained by uniformly packaging on the basis of a network interface abstract layer, and the uniformly packaged data channel uniform interface layer is used for realizing multi-level data transmission requirements and requirements of different functions on data interfaces;
the data channel comprises a synchronous data channel and an asynchronous data channel, wherein the synchronous data channel and the asynchronous data channel are respectively used for completing a synchronous data transmission mode and an asynchronous data transmission mode, and the synchronous data transmission mode and the asynchronous data transmission mode are selected according to whether the transmission information needs to be returned in real time or not according to the requirement of the user at the last time; and
and the service layer is positioned at the topmost layer of the communication system and is used for realizing various functions, and the type of data to be transmitted for realizing the functions is selected by a user in the service layer.
2. The distributed firewall inter-board communication system of claim 1, wherein: and the connection mode between the single boards in the hardware physical link layer adopts SGMII protocol for linking.
3. The distributed firewall inter-board communication system of claim 1, wherein: the delivery requirements and functions implemented in the data channel uniform interface layer include unicast transmission, multicast transmission, and broadcast transmission.
4. A communication method between boards of a distributed firewall is characterized in that: the communication method is based on a communication mechanism provided by the inter-board communication system of the distributed firewall according to any one of claims 1 to 3, and a high-performance thread set scheduling method is adopted to realize the rapid information interaction between single boards in the communication system; the communication method comprises the following steps:
s1: initializing basic conditions of a communication system; creating or preparing a global data structure, a timer, an epoll mechanism and a global waiting queue identifier;
s2: creating a high-performance thread set required for realizing communication; the high-performance thread set comprises a polling mechanism and a kernel thread set;
s3: defining a basic uniform interface of a communication system; the device comprises a synchronous data channel, an asynchronous data channel, a data channel unified interface and a network abstraction layer interface; each uniform interface is used for sending or receiving data and messages;
s4: the communication system monitors the state of the synchronous information mark on the waiting queue through the high-performance thread set according to the time interval determined by the timer after triggering the service process of the timer, and sends synchronously updated data when needed according to the judgment of the monitoring result;
s5: and the communication system synchronously updates the data on the service module single board receiving the updated data according to the received synchronous updated data and determines whether synchronous information needs to be returned or not according to the synchronous request mark.
5. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in step S1, the global data structure is used to store information that needs to be synchronized, or information that needs to be communicated in the service module board; the data types stored in the global data structure body comprise hardware design information, function realization information and user requirement information.
6. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in step S1, the identifier of the global wait queue is used to distinguish different communication information when sending and receiving communication information; and in the process of creating the mark of the global waiting queue, different synchronous information types are provided with different identifications.
7. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in step S1, the timer is used to build a timer mechanism; in the timer mechanism, a timer is triggered at regular intervals, and a corresponding timer is called to process a service process after the timer is triggered; the service process is used for writing an identification of synchronization information in the global waiting queue, thereby triggering a certain type of information to communicate.
8. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in the unified interface definition process of the step S3, a global variable structure is also set at the same time; the global variable structure body is used as a registration mechanism and used for storing the function of the unified interface by using a pointer function; the global variable structure also records ID values of different interfaces, processing function priorities of the interfaces, and an identifier for recording whether to establish connection and synchronously return.
9. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in step S4, after the timer service process is triggered, the communication system encapsulates the data that needs to be updated synchronously, and each time the communication system invokes a next interface in the encapsulation process, the communication system encapsulates the data again according to the function difference of the interface function, and so on, until the network interface abstraction layer is reached finally, the data encapsulation is completed; at this time, the data to be updated synchronously is encapsulated into a network message, and the network message is sent by a hardware physical link layer of the communication system.
10. The method for inter-board communication of a distributed firewall according to claim 4, wherein: in the synchronous data receiving process of step S5, from the bottom layer to the upper layer, the received message is split each time, the specific header information of each layer is stripped, and finally the service layer that needs to perform data updating is reached.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110449017.5A CN113079183B (en) | 2021-04-25 | 2021-04-25 | Inter-board communication system of distributed firewall and communication method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110449017.5A CN113079183B (en) | 2021-04-25 | 2021-04-25 | Inter-board communication system of distributed firewall and communication method thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN113079183A true CN113079183A (en) | 2021-07-06 |
| CN113079183B CN113079183B (en) | 2022-09-06 |
Family
ID=76618805
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110449017.5A Active CN113079183B (en) | 2021-04-25 | 2021-04-25 | Inter-board communication system of distributed firewall and communication method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113079183B (en) |
Citations (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060087989A1 (en) * | 2004-10-22 | 2006-04-27 | Cisco Technology, Inc., A Corporation Of California | Network device architecture for consolidating input/output and reducing latency |
| CN1805410A (en) * | 2006-01-24 | 2006-07-19 | 杭州华为三康技术有限公司 | Switching device with firewall function |
| US20060184710A1 (en) * | 2005-02-17 | 2006-08-17 | Nokia Inc. | Bridge between a single channel high speed bus and a multiple channel low speed bus |
| CN101052053A (en) * | 2007-05-09 | 2007-10-10 | 杭州华三通信技术有限公司 | Method, system and single board for realizing net port switching |
| CN101119306A (en) * | 2007-08-13 | 2008-02-06 | 杭州华三通信技术有限公司 | Method and component for implementing interface index transmission |
| TW200920030A (en) * | 2007-10-18 | 2009-05-01 | D Link Corp | The method to puncture the firewall for building the linking channel between the network terminal devices |
| CN101754221A (en) * | 2008-12-19 | 2010-06-23 | 中国移动通信集团山东有限公司 | Data transmission method between heterogeneous systems and data transmission system |
| CN103905268A (en) * | 2012-12-28 | 2014-07-02 | 华为技术有限公司 | GRE link detection method and device, main control board and communication protection system |
| CN104683352A (en) * | 2015-03-18 | 2015-06-03 | 宁波科安网信通讯科技有限公司 | Industrial communication isolation gap with double-channel ferrying function |
| CN105227463A (en) * | 2014-06-13 | 2016-01-06 | 杭州迪普科技有限公司 | Communication means in a kind of distributed apparatus between business board |
| CN105827623A (en) * | 2016-04-26 | 2016-08-03 | 山石网科通信技术有限公司 | Data center system |
| CN105939365A (en) * | 2015-06-29 | 2016-09-14 | 杭州迪普科技有限公司 | Method and device for obtaining data from service panel kernel mode by main control panel user mode |
| CN106034052A (en) * | 2015-03-13 | 2016-10-19 | 北京网御星云信息技术有限公司 | System and method for monitoring two-layer traffic among virtual machines |
| CN106501626A (en) * | 2016-12-12 | 2017-03-15 | 国网山东省电力公司菏泽供电公司 | A kind of wide area kernel phase system based on synchronous phasor measurement |
| CN106877959A (en) * | 2015-12-11 | 2017-06-20 | 深圳市中兴微电子技术有限公司 | A kind of synchronous method, apparatus and system of clock |
| CN107070539A (en) * | 2017-05-03 | 2017-08-18 | 成都国恒空间技术工程有限公司 | Seasat Radio Data System and method |
| CN107861898A (en) * | 2017-10-18 | 2018-03-30 | 湖北三江航天险峰电子信息有限公司 | A kind of High speed rear panel based on OpenVPX frameworks |
| CN107959658A (en) * | 2016-10-17 | 2018-04-24 | 北京视联动力国际信息技术有限公司 | A kind of Web conference method of data synchronization and its system |
| CN109672631A (en) * | 2017-10-16 | 2019-04-23 | 北京中科晶上科技股份有限公司 | High speed power board and control method based on VPX standard |
-
2021
- 2021-04-25 CN CN202110449017.5A patent/CN113079183B/en active Active
Patent Citations (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060087989A1 (en) * | 2004-10-22 | 2006-04-27 | Cisco Technology, Inc., A Corporation Of California | Network device architecture for consolidating input/output and reducing latency |
| US20060184710A1 (en) * | 2005-02-17 | 2006-08-17 | Nokia Inc. | Bridge between a single channel high speed bus and a multiple channel low speed bus |
| CN1805410A (en) * | 2006-01-24 | 2006-07-19 | 杭州华为三康技术有限公司 | Switching device with firewall function |
| CN101052053A (en) * | 2007-05-09 | 2007-10-10 | 杭州华三通信技术有限公司 | Method, system and single board for realizing net port switching |
| CN101119306A (en) * | 2007-08-13 | 2008-02-06 | 杭州华三通信技术有限公司 | Method and component for implementing interface index transmission |
| TW200920030A (en) * | 2007-10-18 | 2009-05-01 | D Link Corp | The method to puncture the firewall for building the linking channel between the network terminal devices |
| CN101754221A (en) * | 2008-12-19 | 2010-06-23 | 中国移动通信集团山东有限公司 | Data transmission method between heterogeneous systems and data transmission system |
| CN103905268A (en) * | 2012-12-28 | 2014-07-02 | 华为技术有限公司 | GRE link detection method and device, main control board and communication protection system |
| CN105227463A (en) * | 2014-06-13 | 2016-01-06 | 杭州迪普科技有限公司 | Communication means in a kind of distributed apparatus between business board |
| CN106034052A (en) * | 2015-03-13 | 2016-10-19 | 北京网御星云信息技术有限公司 | System and method for monitoring two-layer traffic among virtual machines |
| CN104683352A (en) * | 2015-03-18 | 2015-06-03 | 宁波科安网信通讯科技有限公司 | Industrial communication isolation gap with double-channel ferrying function |
| CN105939365A (en) * | 2015-06-29 | 2016-09-14 | 杭州迪普科技有限公司 | Method and device for obtaining data from service panel kernel mode by main control panel user mode |
| CN106877959A (en) * | 2015-12-11 | 2017-06-20 | 深圳市中兴微电子技术有限公司 | A kind of synchronous method, apparatus and system of clock |
| CN105827623A (en) * | 2016-04-26 | 2016-08-03 | 山石网科通信技术有限公司 | Data center system |
| CN107959658A (en) * | 2016-10-17 | 2018-04-24 | 北京视联动力国际信息技术有限公司 | A kind of Web conference method of data synchronization and its system |
| CN106501626A (en) * | 2016-12-12 | 2017-03-15 | 国网山东省电力公司菏泽供电公司 | A kind of wide area kernel phase system based on synchronous phasor measurement |
| CN107070539A (en) * | 2017-05-03 | 2017-08-18 | 成都国恒空间技术工程有限公司 | Seasat Radio Data System and method |
| CN109672631A (en) * | 2017-10-16 | 2019-04-23 | 北京中科晶上科技股份有限公司 | High speed power board and control method based on VPX standard |
| CN107861898A (en) * | 2017-10-18 | 2018-03-30 | 湖北三江航天险峰电子信息有限公司 | A kind of High speed rear panel based on OpenVPX frameworks |
Non-Patent Citations (3)
| Title |
|---|
| J. LAU等: "Layer Two Tunneling Protocol (Version 3)", 《IETF 》 * |
| 李烨等: "千兆防火墙技术分析和研究", 《微计算机信息》 * |
| 王海涛等: "网络处理器体系结构及应用现状和发展趋势", 《吉首大学学报(自然科学版)》 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN113079183B (en) | 2022-09-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101571813B (en) | Master/slave scheduling method in multimachine assembly | |
| CN1756194B (en) | Scheduled determination of network resource availability | |
| CN105760214A (en) | Equipment state and resource information monitoring method, related equipment and system | |
| CN103701583B (en) | Cipher processing apparatus and method | |
| CN113067850B (en) | Cluster arrangement system under multi-cloud scene | |
| CN109766201A (en) | Task distribution method, server, client and system | |
| CN107273228A (en) | Method for message transmission based on star topology framework | |
| CN104038390A (en) | Linux server cluster unified peripheral event monitoring method based on netlink | |
| US20210376994A1 (en) | Time consistency synchronization method for distributed simulation | |
| CN113055539A (en) | Communication system based on VoIP dual-redundancy exchange server | |
| CN105025063A (en) | Online data transmission method for large-scale terminal equipment | |
| CN113079183B (en) | Inter-board communication system of distributed firewall and communication method thereof | |
| CN107172139B (en) | Wireless protocol stack and implementation method thereof | |
| EP2464062B1 (en) | Method for switch device establishing topology structure and switch device | |
| CN111954165A (en) | Wireless synchronous data transmission method and device | |
| CN112448924A (en) | Message processing method, system and switching equipment compatible with multiple protocols | |
| CN111464346B (en) | Main and standby control board synchronization method and system based on ATCA (advanced telecom computing architecture) | |
| CN107566143A (en) | A kind of vertical stack finds method and apparatus | |
| EP3570492B1 (en) | Method for assigning identifiers to switches in stack, optical cable, and related device | |
| CN115152192B (en) | PCE controlled network reliability | |
| CN110138668A (en) | Stream description processing method and processing device, network entity and storage medium | |
| CN109951332B (en) | Networking method, device and system of edge computing equipment based on non-peer-to-peer network | |
| CN111124638B (en) | Multi-machine program scheduling system under embedded Linux system and implementation method | |
| CN102546233A (en) | Method for realizing serial heartbeat in high-availability cluster | |
| JP2001156874A (en) | Communication control system and its control method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |