CN116016391A - Message forwarding method and system based on NAT gateway - Google Patents
Message forwarding method and system based on NAT gateway Download PDFInfo
- Publication number
- CN116016391A CN116016391A CN202211716330.1A CN202211716330A CN116016391A CN 116016391 A CN116016391 A CN 116016391A CN 202211716330 A CN202211716330 A CN 202211716330A CN 116016391 A CN116016391 A CN 116016391A
- Authority
- CN
- China
- Prior art keywords
- message
- fast
- module
- flow table
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 101000652292 Homo sapiens Serotonin N-acetyltransferase Proteins 0.000 claims abstract description 11
- 102100030547 Serotonin N-acetyltransferase Human genes 0.000 claims abstract description 11
- 230000032683 aging Effects 0.000 claims description 14
- 239000000284 extract Substances 0.000 claims description 4
- 238000000605 extraction Methods 0.000 claims 1
- 238000010586 diagram Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000006467 substitution reaction Methods 0.000 description 2
- 101150071927 AANAT gene Proteins 0.000 description 1
- -1 DNAT Proteins 0.000 description 1
- 101100513046 Neurospora crassa (strain ATCC 24698 / 74-OR23-1A / CBS 708.71 / DSM 1257 / FGSC 987) eth-1 gene Proteins 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
Images
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/50—Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate
Abstract
The application discloses a message forwarding method and system based on NAT gateway, the method includes: acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values; if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module; if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
Description
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a message forwarding method and system based on a NAT gateway.
Background
The NAT gateway is deployed in the data center and carries the forwarding of traffic between the middle of each node and between the nodes and the external network, so the performance of the NAT gateway is important. At present, the main function of the NAT gateway is realized by adopting a Linux network protocol stack, and an internal virtual network and an external physical network are connected by means of the bridging function of an openvswitch; however, when the Linux network protocol stack transmits a large flow, the NAT gateway has a large processing delay, and sometimes too many messages are accumulated to cause the gateway to be blocked, so that the virtual machine in the data center is disconnected.
Disclosure of Invention
An object of the present application is to provide a message forwarding method and system based on NAT gateway, which can improve the forwarding efficiency of the message.
In a first aspect, an embodiment of the present application provides a message forwarding method based on a NAT gateway, including:
acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values;
if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module;
if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
In one possible implementation, when the header field of the extracted message is a preset key value and the flow table entry is searched, 6-tuple < input, sip, dip, protocol, sport, dport > is used for performing hash searching.
In one possible implementation manner, the fast_datapath module includes a pkt_parameter unit and a flow_table unit, extracts a related header field through the pkt_parameter unit after the fast_datapath module acquires the message, searches a flow table entry of the message by taking the extracted header field as a preset key value, and forwards the message according to the flow table entry, including:
analyzing a header field of the message through a pkt_parser unit, and taking the header field as a preset key value as a hash calculation;
and searching a flow table item of the message according to a preset key code value through a flow_table unit, and forwarding the message according to the flow table item.
In one possible implementation manner, the fast_datapath module further comprises an Ex unit, and the Ex unit reports statistics to the protocol stack at regular time according to the packet statistics recorded by the flow table item; and simultaneously aging the flow table items which are not used any more according to the set aging time.
In one possible implementation, the fast_datapath module forwards the message, and the fast_datapath module forwards the message flow by flow better than the protocol stack processes the message packet by flow.
In one possible implementation, the agent module collects message forwarding information in the protocol stack, converts the message forwarding information into a flow table entry, and sends the flow table entry to the fast_datapath module.
In a second aspect, an embodiment of the present application provides a message forwarding system based on a NAT gateway, where, on the basis of a protocol stack, a agent module and a fast_datapath module are newly developed;
the method comprises the steps of acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values;
if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module;
if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
In one possible implementation, the message extracts a preset key value of 6-tuple < input, si, dip, protocol, sport, dport >.
In one possible implementation manner, the fast_datapath module includes a pkt_parameter unit and a flow_table unit;
the pkt_parameter unit is used for analyzing a header field of the message, and taking the header field as a preset key value as hash calculation;
the flow_table unit is used for searching the flow table item of the message according to the preset key code value and forwarding the message according to the flow table item.
In a possible implementation manner, the fast_datapath module further includes an Ex unit, where the Ex unit is configured to report statistics to a protocol stack at regular time according to the packet statistics recorded by the flow table entry; and simultaneously aging the flow table items which are not used any more according to the set aging time.
In the embodiment of the application, the message is forwarded stream by stream, after the fast_datapath module obtains the message, the hash lookup can be performed by using the preset key value of the stream to which the message belongs, only the stream table entry of the message needs to be searched once, if the stream table entry corresponding to the message is searched, the fast_datapath module can adjust the header field of the message and forward the message, and the forwarding efficiency of the message can be improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are needed in the description of the embodiments will be briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present application, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic structural diagram of a system architecture for forwarding a message based on a NAT gateway according to an embodiment of the present application;
FIG. 2 is a schematic diagram of a fast_datapath module according to an embodiment of the present disclosure;
fig. 3 is a flow chart of a message forwarding method based on a NAT gateway according to an embodiment of the present application;
fig. 4 is a schematic structural diagram of a message forwarding system based on a NAT gateway according to an embodiment of the present application.
Detailed Description
Embodiments of the present application are described below with reference to the accompanying drawings in the embodiments of the present application.
The terms "comprising" and "having" and any variations thereof in the description and claims of the present application and in the foregoing drawings are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those listed steps or elements but may include other steps or elements not listed or inherent to such process, method, article, or apparatus.
Reference herein to "an embodiment" means that a particular feature, structure, or characteristic described in connection with the embodiment may be included in at least one embodiment of the present application. The appearances of such phrases in various places in the specification are not necessarily all referring to the same embodiment, nor are separate or alternative embodiments mutually exclusive of other embodiments. Those of skill in the art will explicitly and implicitly appreciate that the embodiments described herein may be combined with other embodiments.
Referring to fig. 1, the application discloses a system architecture for forwarding a message based on a NAT gateway, where the system architecture includes an intranet server (eth 0), an extranet server (eth 1), an intranet bridge (br-tun), an extranet bridge (br-ext), an access network bridge (br-int), and a protocol stack. The intranet bridge is used for bearing vxlan traffic, the access network bridge is used for connecting the intranet bridge and the outer network bridge, and the outer network bridge is used for being connected with an outer network server to realize communication between the virtual network and the physical network. The access network bridge also interfaces with the natns network namespaces of the protocol stacks, and atts is used to implement the core functions of the NAT gateway.
The protocol stack comprises a netfilter module, a tc module and a agent module. The netfilter module realizes SNAT, DNAT and ACL of the message; the protocol stack uses a netfilter module to realize SNAT in a post-routing chain, DNAT in a pre-routing chain and ACL (access control function, mainly acting as a rule of accept or drop) in a forward chain; and implementing the qos speed limiting function by using htb through the tc module. Multiple natns gateways may exist simultaneously. The protocol stack may have multiple natns gateways simultaneously.
The agent module is positioned in the kernel network protocol stack and is mainly responsible for acquiring the forwarding information of the message, converting the forwarding information of the message into a stream table entry, and then transmitting the stream table entry to the fast_datapath module. The agent module acquires relevant information of the message according to the head field of the message as required, wherein the acquisition of the relevant information of the message comprises the following steps: vxlan-related outer layer sip, dip, vni; sip and sport during snat operation; dip, dport at the time of dnat operation; the rules on the filter chain of the netfilter forward table are drop or accept; qos rate limit rate and maximum burst traffic burst; l2 header and outgoing interface information.
The fast_datapath module is positioned in the network card driving layer, realizes the stream table items organized in a hash table mode, performs hash searching by taking the message 6-scroll < input, sip, dip, protocol, sport, dport > as a preset key value, adjusts the message header field according to the stream table item actions when the stream table items are searched, and then forwards the message; and when the hash table item cannot be found, the message is sent to a protocol stack for processing by default. Meanwhile, the fast_datapath module has the capability of actively ageing the hash table entry and the capability of actively reporting the statistical information to the agent module.
The NAT gateway processes the message from packet-by-packet processing to stream-by-stream processing, and can forward the message through the fast_datapath module, so that the forwarding performance of the message is improved by orders of magnitude, and the performance is obviously improved. The fast_datapath module can accelerate the efficiency of forwarding the message by the NAT gateway, and has excellent performance.
Referring to fig. 1, the paths for forwarding the message include an original direction first packet path, a reply direction first packet path, an original direction non-first packet path, and a reply direction non-first packet path. The original direction non-first packet path and the reply direction non-first packet path forward the message through the fast_datapath module. The original direction first packet path and the reply direction first packet path forward the message through the protocol stack.
Referring to fig. 2, the fast_datapath module includes a pkt_parameter unit, a flow_table unit and an Ex unit, where the pkt_parameter unit has a main function of resolving and parsing header fields of vxlan messages; the flow_table unit realizes the management of the flow table items and provides functions of adding/deleting/modifying/searching the flow table items and the like; finally, the Ex unit realizes the active aging function of the flow table item and the active statistics reporting function of stats after the flow table item is matched.
The stream entries consist of 6-tuple matches, stats and actions. Wherein the matches field consists of 6 total tuples of input, sip, dip, proto, sport and dport for hash value calculation and hash lookup. The stats field of the flow table entry is used for statistical information, wherein bytes and pkts are used for counting the number of bytes and messages which are matched with the flow table entry and are not lost when the speed is limited, and qbytes and qpkts are used for counting the number of bytes and messages which are matched with the flow table entry and are lost when the speed is limited. The actions field contains the action of modifying the message, and can be divided into three types of actions.
The first type of actions is: drop, ACL rule action is drop down, ACL rule action is accept down.
The second category of actions is: vxlan_decap- > snat- > qos- > l2hdr_encap, performed sequentially, the qos speed limiting function being optional.
The third category of actions is: qos- > dnat- > vxlan_encap- > l2hdr_encap, performed sequentially, qos speed limiting function is optional.
Referring to fig. 3, an embodiment of the present application provides a message forwarding method based on a NAT gateway, including but not limited to the following steps:
s101, acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as a preset key value.
In the embodiment provided by the application, the NAT gateway forwards the message one by one, and the fast_datapath module acquires the message, and performs hash searching by taking the message 6-tuple < input, sip, dip, protocol, sport, dport > as a key value.
S102, if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through the fast_datapath module.
In the embodiment provided by the application, if the flow table item of the message is found by the fast_datapath module, it can be determined that the message acquired by the fast_datapath module and the message forwarded before belong to the same flow, and the fast_datapath module can directly adjust the message header field according to the found flow table item and directly forward the message without forwarding the message through a protocol stack, so that SNAT, DNAT and ACL can be omitted from being realized on the message through the protocol stack; the efficiency of forwarding the message by the NAT gateway can be accelerated, and the performance of the NAT gateway is improved.
In the embodiment provided in the application, the fast_datapath module only needs to search the flow table entry once to forward the message.
S103, if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
Specifically, when the NAT gateway forwards a message of a flow for the first time, the fast_datapath module obtains the message, but cannot find a flow table entry corresponding to the message, and the fast_datapath module sends the message to the protocol stack, and forwards the message through the protocol stack. Specifically, the netfilter module in the protocol stack implements SNAT, DNAT, and ACL. The agent module in the protocol stack converts the vxlan information, the NAT information and the ACL information into stream table entries and inputs the stream table entries into the fast_datapath module, and when the NAT gateway forwards the message of the same stream as the message again next time, the fast_datapath module can inquire the stream table entries of the message and can forward the message by using the fast_datapath module.
In one possible implementation manner, the fast_datapath module includes a pkt_parameter unit and a flow_table unit, extracts a related header field through the pkt_parameter unit after the fast_datapath module acquires the message, searches a flow table entry of the message by taking the extracted header field as a preset key value, and forwards the message according to the flow table entry, including:
analyzing a header field of the message through a pkt_parser unit, and taking the header field as a preset key value as a hash calculation;
and searching a flow table item of the message according to a preset key code value through a flow_table unit, and forwarding the message according to the flow table item.
In the embodiment provided by the application, the pkt_parameter unit can analyze the header field of the message, and the flow_table unit can manage the flow table item corresponding to the message and can provide the functions of adding/deleting/modifying/searching the flow table item.
Wherein, the stream table entry is composed of 6-event matches, stats and actions.
In one possible implementation manner, the fast_datapath module includes an Ex unit, and the Ex unit reports statistics to the protocol stack at regular time according to the statistics of the messages recorded by the flow table item; and simultaneously aging the flow table items which are not used any more according to the set aging time.
In one possible implementation, the packet is forwarded through a fast_datapath module, and the fast_datapath module forwards the packet stream by stream. Compared with the protocol stack which processes the message packet by packet, the fast_datapath module forwards the message flow by flow, and the performance is better.
In one possible implementation, when the message is forwarded by the agent module, the agent module forwards the message stream by stream. And searching a mac field of the message when the message is forwarded through the agent module, and forwarding the message based on the mac field.
The agent module collects message forwarding information in the protocol stack, converts the message forwarding information into a stream table entry and sends the stream table entry to the fast_datapath module, so that the fast_datapath module can conveniently forward subsequent messages.
Referring to fig. 4, the embodiment of the application also discloses a message forwarding system based on the NAT gateway, and on the basis of the protocol stack, a agent module and a fast_datapath module are newly developed;
the method comprises the steps of acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values;
if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module;
if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
In one possible implementation, the preset key value is 6-tuple < input, si, dip, protocol, sport, dport >.
In one possible implementation, the fast_datapath module includes a pkt_parameter unit and a flow_table unit,
the pkt_parameter unit is used for analyzing a header field of the message, and taking the header field as a preset key value as hash calculation;
the flow_table unit is used for searching the flow table item of the message according to the preset key code value and forwarding the message according to the flow table item.
In a possible implementation manner, the fast_datapath module further includes an Ex unit, where the Ex unit is configured to report statistics to a protocol stack at regular time according to the packet statistics recorded by the flow table entry; and simultaneously aging the flow table items which are not used any more according to the set aging time.
The foregoing is merely specific embodiments of the present application, but the scope of the present application is not limited thereto, and any person skilled in the art can easily think about changes or substitutions within the technical scope of the present application, and the changes and substitutions are intended to be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (10)
1. The message forwarding method based on the NAT gateway is characterized by comprising the following steps:
acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values;
if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module;
if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
2. The message forwarding method based on the NAT gateway of claim 1, wherein when the header field of the extracted message is a preset key value to search the flow table entry, 6-tuple < input, sip, dip, protocol, sport, dport > is used to perform hash search.
3. The message forwarding method based on NAT gateway according to claim 1 or 2, wherein the fast_datapath module includes a pkt_parameter unit and a flow_table unit, extracts a relevant header field through the pkt_parameter unit after the fast_datapath module acquires the message, searches a flow table entry of the message with the extracted header field as a preset key value, and forwards the message according to the flow table entry, including:
analyzing a header field of the message through a pkt_parser unit, and taking the header field as a preset key value as a hash calculation;
and searching a flow table item of the message according to a preset key code value through a flow_table unit, and forwarding the message according to the flow table item.
4. The message forwarding method based on NAT gateway of claim 3, wherein the fast_datapath module further comprises an Ex unit, and the Ex unit reports statistics to the protocol stack at regular time according to the statistics of the messages recorded by the flow table entry; and simultaneously aging the flow table items which are not used any more according to the set aging time.
5. The NAT gateway-based message forwarding method of claim 1, wherein the fast_datapath module forwards the message with better performance than the protocol stack processes the message packet by packet and forwards the message stream by stream.
6. The message forwarding method based on the NAT gateway according to claim 1, wherein the agent module collects message forwarding information in the protocol stack and converts the message forwarding information into a flow table entry to be sent to the fast_datapath module.
7. A message forwarding system based on NAT gateway is characterized in that a agent module and a fast_datapath module are newly developed on the basis of a protocol stack;
the method comprises the steps of acquiring a message through a fast_datapath module, extracting relevant header fields, and searching a flow table item of the message by taking the extracted header fields as preset key values;
if the flow table item of the message is found, the head field of the message is adjusted according to the found flow table item, and the related message is forwarded through a fast_datapath module;
if no flow table item of the message is found, the message is sent to a protocol stack for processing through a fast_datapath module; the protocol stack realizes SNAT, DNAT and ACL of the message through a netfilter module and forwards the message; meanwhile, the newly developed agent module acquires vxlan information, nat information and ACL information of the message from the netfilter module, converts the vxlan information, nat information and ACL information into stream table items and inputs the stream table items to the fast_datapath module; the subsequent message is forwarded through the fast_datapath module.
8. The NAT gateway-based message forwarding system of claim 7, wherein the message extraction preset key value is 6-tuple < input, sip, dip, protocol, sport, dport >.
9. The NAT gateway-based message forwarding system of claim 7, wherein the fast_datapath module includes a pkt_parameter unit and a flow_table unit;
the pkt_parameter unit is used for analyzing a header field of the message, and taking the header field as a preset key value as hash calculation;
the flow_table unit is used for searching the flow table item of the message according to the preset key code value and forwarding the message according to the flow table item.
10. The NAT gateway-based message forwarding system of claim 9, wherein the fast_datapath module further includes an Ex unit for periodically reporting statistics to a protocol stack according to the packet statistics recorded by the flow table entry; and simultaneously aging the flow table items which are not used any more according to the set aging time.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211716330.1A CN116016391A (en) | 2022-12-29 | 2022-12-29 | Message forwarding method and system based on NAT gateway |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211716330.1A CN116016391A (en) | 2022-12-29 | 2022-12-29 | Message forwarding method and system based on NAT gateway |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN116016391A true CN116016391A (en) | 2023-04-25 |
Family
ID=86023016
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211716330.1A Pending CN116016391A (en) | 2022-12-29 | 2022-12-29 | Message forwarding method and system based on NAT gateway |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN116016391A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160234186A1 (en) * | 2013-09-30 | 2016-08-11 | Schneider Electric Industries Sas | Cloud-authenticated site resource management devices, apparatuses, methods and systems |
| CN109088957A (en) * | 2018-08-30 | 2018-12-25 | 京信通信系统(中国)有限公司 | The method, apparatus and equipment of NAT regulation management |
| CN113285892A (en) * | 2020-02-20 | 2021-08-20 | 华为技术有限公司 | Message processing system, message processing method, machine-readable storage medium, and program product |
| CN113691554A (en) * | 2021-09-01 | 2021-11-23 | 深圳市大洲智创科技有限公司 | Method for improving data forwarding performance of network equipment |
-
2022
- 2022-12-29 CN CN202211716330.1A patent/CN116016391A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160234186A1 (en) * | 2013-09-30 | 2016-08-11 | Schneider Electric Industries Sas | Cloud-authenticated site resource management devices, apparatuses, methods and systems |
| CN109088957A (en) * | 2018-08-30 | 2018-12-25 | 京信通信系统(中国)有限公司 | The method, apparatus and equipment of NAT regulation management |
| CN113285892A (en) * | 2020-02-20 | 2021-08-20 | 华为技术有限公司 | Message processing system, message processing method, machine-readable storage medium, and program product |
| CN113691554A (en) * | 2021-09-01 | 2021-11-23 | 深圳市大洲智创科技有限公司 | Method for improving data forwarding performance of network equipment |
Non-Patent Citations (2)
| Title |
|---|
| 3GPP: ""23234-660"", 3GPP TSG_SA\\WG2_ARCH, 21 November 2005 (2005-11-21) * |
| 里程遥, 马雪松: "基于虚拟私有云服务的网络安全风险和防护策略研究", 2019互联网安全与治理论坛论文集, 31 July 2019 (2019-07-31) * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8705362B2 (en) | Systems, methods, and apparatus for detecting a pattern within a data packet | |
| KR100733020B1 (en) | Customer MAC Frame Forwarding Method, Edge Bridge, And Storage Medium Registering Program | |
| EP3958521A1 (en) | Method and apparatus for providing service for service flow | |
| CN108141416B (en) | Message processing method, computing equipment and message processing device | |
| US10148573B2 (en) | Packet processing method, node, and system | |
| US8149705B2 (en) | Packet communications unit | |
| EP2544417B1 (en) | Communication system, path control apparatus, packet forwarding apparatus and path control method | |
| US9021591B2 (en) | Distributed network protection | |
| US10075371B2 (en) | Communication system, control apparatus, packet handling operation setting method, and program | |
| KR100997182B1 (en) | Flow information restricting apparatus and method | |
| US20070171826A1 (en) | System, method, and computer program product for controlling output port utilization | |
| US8817792B2 (en) | Data forwarding method, data processing method, system and relevant devices | |
| US20130294449A1 (en) | Efficient application recognition in network traffic | |
| CN106685827B (en) | Downlink message forwarding method and AP (access point) equipment | |
| JP2007336512A (en) | Statistical information collecting system, and apparatus thereof | |
| US10110715B2 (en) | Providing efficient routing of an operations, administration and maintenance (OAM) frame received at a port of an ethernet switch | |
| CN113489652A (en) | Data stream amplification method and device, convergence splitter and storage medium | |
| KR101500251B1 (en) | Communication system, node, packet forwarding method and computer-readable recording medium recording a program | |
| KR101292873B1 (en) | Network interface card device and method of processing traffic by using the network interface card device | |
| CN108777654B (en) | Message forwarding method and routing equipment | |
| CN116095197B (en) | Data transmission method and related device | |
| CN115484193A (en) | Method, system, storage medium and device for monitoring and analyzing network packet loss flow | |
| CN116016391A (en) | Message forwarding method and system based on NAT gateway | |
| TWI281804B (en) | Packet forwarding method and system | |
| CN111614633B (en) | Analysis method and system for L2TP protocol |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |