CN116506375A - Wireless bridging switch based on WIFI6 communication - Google Patents

Wireless bridging switch based on WIFI6 communication Download PDF

Info

Publication number
CN116506375A
CN116506375A CN202310413924.3A CN202310413924A CN116506375A CN 116506375 A CN116506375 A CN 116506375A CN 202310413924 A CN202310413924 A CN 202310413924A CN 116506375 A CN116506375 A CN 116506375A
Authority
CN
China
Prior art keywords
wifi6
data transmission
communication
transmission end
chip
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310413924.3A
Other languages
Chinese (zh)
Inventor
王斌
马兴华
谭刘颗
王建国
张�杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hunan Hengmao Information Technology Co ltd
Original Assignee
Hunan Hengmao Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hunan Hengmao Information Technology Co ltd filed Critical Hunan Hengmao Information Technology Co ltd
Priority to CN202310413924.3A priority Critical patent/CN116506375A/en
Publication of CN116506375A publication Critical patent/CN116506375A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/10Packet switching elements characterised by the switching fabric construction
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/15Interconnection of switching modules
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/14Backbone network devices
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Abstract

The invention provides a wireless bridging switch based on WIFI6 communication, wherein a first data transmission end of a switching chip is connected with a first data transmission end of a central processing unit, a second data transmission end of the switching chip and a third data transmission end of the switching chip are both connected with the first data transmission end of a bridge, and a fourth data transmission end of the switching chip is connected with the first data transmission end of a physical layer interface chip; the second data transmission end of the bridge is connected with the first data transmission end of the baseband signal processing chip, the second data transmission end of the baseband signal processing chip is connected with the first data transmission end of the modulation and demodulation module and the first data transmission end of the power amplification module, and the second data transmission end of the modulation and demodulation module and the second data transmission end of the power amplification module are connected with the wifi antenna; the second data transmission end of the physical layer interface chip is connected with the network port; the network requirements of temporary office sites or sites with inconvenient wiring are met.

Description

Wireless bridging switch based on WIFI6 communication
Technical Field
The invention relates to the technical field of switches, in particular to a wireless bridging switch based on WIFI6 communication.
Background
A Switch (Switch) means a "Switch" is a network device used for electrical (optical) signal forwarding. It can provide an unshared electrical signal path for any two network nodes of the access switch. The switches that are now common are ethernet switches, voice over phone switches, fiber switches, soft switches, etc. The switch performs switching through three modes of through type, store-and-forward and fragment isolation.
The current switches in the market are in butt joint with other switches, and communication between the two switches is realized through network cables (twisted pair) and RJ45 connectors or optical fiber cables and optical modules. In the occasions of large-scale enterprises, communities, schools, markets and the like, a plurality of switches are required to be arranged in series to meet the whole network requirement. Therefore, the network is planned in the initial stage of building the floor corridor, and the network cable or the optical fiber cable is embedded into the building entity in advance. If the building is well built, the network is not deployed in the early stage, or network terminal equipment is required to be expanded later, a switch and a terminal are required to be added, and then network cable wiring between floors is improved, so that the difficulty is great, and the overall attractiveness of the building is affected. In the fields of temporary office work in construction sites and the like or inconvenient wiring, the interconnection mode of the switches on the market at present is inconvenient and has low flexibility. At present, the local management of the switch needs to be managed by accessing a computer into a network through a network cable or accessing a serial port line into the switch, so that the safety is not high and the management is not very convenient.
Disclosure of Invention
The invention provides a wireless bridging switch based on WIFI6 communication, which aims to meet network requirements of temporary office places or places with inconvenient wiring.
In order to achieve the above object, the present invention provides a wireless bridging switch based on WIFI6 communication, including:
the system comprises a switching chip, a central processing unit, a baseband signal processing chip for encoding and decoding WIFI6 signal data, a bridge, a modulation and demodulation module, a power amplification module, a WIFI antenna and a physical layer interface chip;
the first data transmission end of the exchange chip is connected with the first data transmission end of the central processing unit, the second data transmission end of the exchange chip and the third data transmission end of the exchange chip are connected with the first data transmission end of the bridge, and the fourth data transmission end of the exchange chip is connected with the first data transmission end of the physical layer interface chip; the second data transmission end of the bridge is connected with the first data transmission end of the baseband signal processing chip, the second data transmission end of the baseband signal processing chip is respectively connected with the first data transmission end of the modem module and the first data transmission end of the power amplification module, and the second data transmission end of the modem module and the second data transmission end of the power amplification module are connected with the wifi antenna; the second data transmission end of the physical layer interface chip is connected with the network port.
Optionally, the method further comprises: a POE module;
the first data transmission end of the POE module is connected with the second data transmission end of the physical layer interface chip, and the second data transmission end of the POE module is connected with the network port.
Further, the device also comprises an optical module;
the first data transmission end of the optical module is connected with the fifth data transmission end of the exchange chip, and the second data transmission end of the optical module is connected with the optical port.
Further, the system also comprises a first clock Zhong Jingzhen, a second clock crystal oscillator and a third clock crystal oscillator;
the first time Zhong Jingzhen is connected with the central processing unit;
the second clock crystal oscillator is connected with the modulation and demodulation module and the power amplification module;
the third clock crystal oscillator is connected with the physical layer interface chip.
Further, the system also comprises a solid-state memory and a dynamic memory;
the solid-state memory and the dynamic memory are both connected with the output end of the central processing unit.
Further, the power supply module is also included;
the output end of the power module is respectively connected with the power end of the modulation-demodulation module, the power end of the power amplification module, the power end of the exchange chip, the power end of the baseband signal processing chip, the power end of the physical layer interface chip and the power end of the POE module.
Further, the second data transmission end and the third data transmission end of the exchange chip are gigabit service ports;
the second data transmission end of the exchange chip is a 2.4GHz business receiving and transmitting port;
the third data transmission end of the exchange chip is a 5GHz service receiving and transmitting port.
The invention also provides a communication method of the wireless bridging switch based on WIFI6 communication, which is applied to the wireless bridging switch based on WIFI6 communication, and comprises the following steps:
step 1, a wireless bridging switch based on WIFI6 communication is powered on, and an authentication task is automatically started after the system operates stably;
step 2, the wireless bridging switch based on WIFI6 communication closes a port connected with the baseband signal processing chip, starts a local port to forward an authentication protocol message to the central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, sending the packaged authentication protocol message to an exchange chip for validity verification, obtaining a legal authentication protocol message and sending the legal authentication protocol message to receiving equipment;
and 4, after the receiving equipment is matched with the legal authentication protocol message, establishing connection with a wireless bridging switch based on WIFI6 communication.
Furthermore, a plurality of wireless bridge switches based on WIFI6 communication establish communication through WIFI6 to form a service networking; the plurality of wireless bridge switches based on the WIFI6 communication comprise a plurality of wireless bridge switches based on the WIFI6 communication of the sending end and a plurality of wireless bridge switches based on the WIFI6 communication of the receiving end;
and each wireless bridging switch based on WIFI6 communication in the service networking performs security authentication in a mutual authentication mode.
Further, the mutual authentication method includes:
step 1, all wireless bridge switches based on WIFI6 communication are electrified, an authentication task process is automatically started after the system operation is stable, and the wireless bridge switches based on the WIFI6 communication at a transmitting end transmit an authentication protocol message;
step 2, aiming at the wireless bridging switch based on WIFI6 communication of each transmitting end, the wireless bridging switch based on WIFI6 communication closes the port local port forwarding connected with the baseband signal processing chip, configures an access control list ACL to forward the authentication protocol message to the central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, the wireless bridging switch based on WIFI6 communication of each transmitting end transmits the packaged message to the exchange chip for validity verification, and a legal authentication protocol message is obtained and transmitted to the wireless bridging switch based on WIFI6 communication of the receiving end;
and 4, after the wireless bridging switch based on the WIFI6 communication of the receiving end is matched with the legal authentication protocol message, establishing service networking with the wireless bridging switch based on the WIFI6 communication of the receiving end.
The scheme of the invention has the following beneficial effects:
the invention receives signals through a WIFI antenna, transmits the signals to a modulation and demodulation module and a power amplification module for demodulation and amplification, then transmits the signals to a baseband signal processing chip for encoding and decoding WIFI6 signal data, processes the signals through the baseband signal processing chip, transmits the signals to an exchange chip through a bridge, closes a port local port connected with the baseband signal processing chip for forwarding, configures an access control list ACL to forward an authentication protocol message to a central processing unit for encapsulation, and transmits the encapsulated message to the exchange chip for validity check to obtain a legal authentication protocol message and transmits the legal authentication protocol message to receiving equipment through the WIFI antenna or a network port connected with a physical layer interface chip, thereby realizing wireless communication with the receiving equipment; compared with the traditional mode of butt joint through network cables or optical fiber cables, the invention has no requirement on deployment positions, can flexibly move positions, is more convenient to install, meets the network requirements of temporary office places or places with inconvenient wiring, and simultaneously enhances the communication safety performance of the switch.
Other advantageous effects of the present invention will be described in detail in the detailed description section which follows.
Drawings
FIG. 1 is a schematic block diagram of an embodiment of the present invention;
fig. 2 is a schematic diagram of a service networking according to an embodiment of the present invention;
fig. 3 is a schematic diagram of an authentication protocol packet structure according to an embodiment of the present invention.
Detailed Description
In order to make the technical problems, technical solutions and advantages to be solved more apparent, the following detailed description will be given with reference to the accompanying drawings and specific embodiments. It will be apparent that the described embodiments are some, but not all, embodiments of the invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
In the description of the present invention, it should be noted that the directions or positional relationships indicated by the terms "center", "upper", "lower", "left", "right", "vertical", "horizontal", "inner", "outer", etc. are based on the directions or positional relationships shown in the drawings, are merely for convenience of describing the present invention and simplifying the description, and do not indicate or imply that the devices or elements referred to must have a specific orientation, be configured and operated in a specific orientation, and thus should not be construed as limiting the present invention. Furthermore, the terms "first," "second," and "third" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance.
In the description of the present invention, it should be noted that, unless explicitly stated and limited otherwise, the terms "mounted," "connected," and "connected" are to be construed broadly, and may be, for example, a locked connection, a removable connection, or an integral connection; can be mechanically or electrically connected; can be directly connected or indirectly connected through an intermediate medium, and can be communication between two elements. The specific meaning of the above terms in the present invention will be understood in specific cases by those of ordinary skill in the art.
In addition, the technical features of the different embodiments of the present invention described below may be combined with each other as long as they do not collide with each other.
Aiming at the existing problems, the invention provides a wireless bridging switch based on WIFI6 communication.
As shown in fig. 1, an embodiment of the present invention provides a wireless bridging switch based on WIFI6 communication, including:
the system comprises a switching chip, a central processing unit, a baseband signal processing chip for encoding and decoding WIFI6 signal data, a bridge, a modulation and demodulation module, a power amplification module, a WIFI antenna and a physical layer interface chip;
in the embodiment of the invention, the protocol standard adopted by the invention is IEEE802.11ax, and the type adopted by the exchange chip is RTL9311, which can be a hundred megabyte or kilomega exchange chip or a ten megabyte exchange chip; the CPU can directly adopt a system-level chip (SystemonChip, SOC) integrated by the MAC medium access control chip, or can be externally arranged with an independent CPU; the baseband signal processing chip adopts a baseband signal processing chip of WIFI6, such as MT7905DA, and is used for encoding and decoding WIFI6 signal data; the bridge may be of the LAN7431 type, mainly to perform conversion between PCIe signals and SGMII/RGMII signals; in the embodiment of the invention, the modulation-demodulation module and the power amplification module are integrated into a whole, and the adopted model can be MT7975DN and the like, and mainly completes one conversion between an analog signal and a digital signal; because the baseband signal processing chip provides two frequencies of 2.4GHz and 5GHz, two 2.4GHz and two 5GHz wifi antennas are needed, the wifi antennas can be in an internal mode or an external mode, but if the equipment shell of the switch is a metal shell, the wifi antennas are needed to be externally arranged; the chip model adopted by a Physical interface chip (PHY chip) can be RTL8218D and the like, the PHY chip is generally a gigabit PHY chip, the uplink is connected with a serializer serdes of the MAC by adopting a QSFMI protocol, and the downlink extends ports through the PHY chip and generally adopts a mode divided into four.
The first data transmission end of the exchange chip is connected with the first data transmission end of the central processing unit, the second data transmission end of the exchange chip and the third data transmission end of the exchange chip are connected with the first data transmission end of the bridge, and the fourth data transmission end of the exchange chip is connected with the first data transmission end of the physical layer interface chip; the second data transmission end of the bridge is connected with the first data transmission end of the baseband signal processing chip, the second data transmission end of the baseband signal processing chip is respectively connected with the first data transmission end of the modem module and the first data transmission end of the power amplification module, and the second data transmission end of the modem module and the second data transmission end of the power amplification module are both connected with the wifi antenna; the second data transmission end of the physical layer interface chip is connected with the network port.
The embodiment of the invention receives signals through a WIFI antenna, transmits the signals to a modulation and demodulation module and a power amplification module for demodulation and amplification, then sends the signals to a baseband signal processing chip for encoding and decoding WIFI6 signal data, processes the signals through the baseband signal processing chip, sends the signals to an exchange chip through a bridge, closes a port connected with the baseband signal processing chip, starts a local port to forward an authentication protocol message to a central processing unit for encapsulation, and sends the encapsulated message to the exchange chip for validity check to obtain a legal authentication protocol message and sends the legal authentication protocol message to receiving equipment through the WIFI antenna or a network port connected with a physical layer interface chip.
Specifically, when the switch is a POE switch, the method further includes: a POE (poweroverlay, active ethernet) module;
the first data transmission end of the POE module is connected with the second data transmission end of the physical layer interface chip, and the second data transmission end of the POE module is connected with the network port and mainly used for supplying Power to the Power Device (PD) Power receiving terminal equipment connected with the electric port and providing functions of Power dispatching, protection and the like.
Specifically, the system also comprises a SFP (SmallFormPluggable) optical module;
the first data transmission end of the optical module is connected with the fifth data transmission end of the exchange chip, and the second data transmission end of the optical module is connected with the optical port.
Specifically, the system also comprises a first clock crystal oscillator, a second clock crystal oscillator and a third clock crystal oscillator;
the first time Zhong Jingzhen is connected with the central processing unit;
the second clock crystal oscillator is connected with the modulation and demodulation module and the power amplification module;
the third clock crystal oscillator is connected with the physical layer interface chip.
Specifically, the memory also comprises a solid-state memory FLASH and a dynamic memory DDR;
the solid-state memory and the dynamic memory are both connected with the output end of the central processing unit.
Specifically, the power supply module is also included;
the output end of the power module is respectively connected with the power end of the modulation-demodulation module, the power end of the power amplification module, the power end of the exchange chip, the power end of the baseband signal processing chip, the power end of the physical layer interface chip and the power end of the POE module.
The power module is integrated with a power supply, an overvoltage protection circuit, an overcurrent protection circuit and a lightning protection circuit which provide protection for other chips, and if equipment is a POE switch, the power supply is required to be a POE power supply and power is required to be supplied to power equipment (PD) power receiving terminal equipment hung below a network port.
Specifically, the second data transmission end and the third data transmission end of the exchange chip are gigabit service ports; the second data transmission end of the exchange chip is a 2.4GHz business receiving and transmitting port; the third data transmission end of the exchange chip is a 5GHz service receiving and transmitting port.
The wireless bridging switch based on the WIFI6 communication provided by the embodiment of the invention can be used for hybrid networking of a plurality of wireless bridging switches based on the WIFI6 communication, and can be used for two-layer networking or three-layer networking. The wireless bridging switch based on WIFI6 communication and the wireless bridging switch based on WIFI6 communication are connected through WIFI6 wireless signals, and like a network cable or optical fiber line connection, the types of the wireless bridging switch based on WIFI6 communication include: WIFI6 wireless bridge POE switch, WIFI6 wireless bridge giga switch, WIFI6 wireless bridge trillion switch, WIFI6 wireless bridge two-layer switch, WIFI6 wireless bridge three-layer switch etc..
As shown in the service networking diagram in fig. 2, 5 wireless bridging switches based on WIFI6 communication establish connection through WIFI6 wireless bridging, wherein No. 1, no. 2 and No. 3 wireless bridging switches form a ring network through WIFI6 wireless connection, no. 2 and No. 4 are directly connected through WIFI6 wireless, and No. 3 and No. 5 are directly connected through WIFI6 wireless. The wireless bridging switch No. 1 is connected with the exit router through a wire. The 5 wireless bridge switches based on WIFI6 communication can be connected with terminal network equipment such as an electronic display screen, an IP telephone, an AP, a conference television, a server, a computer, broadcasting system equipment, a monitoring camera, a non-tube switch and the like through network cables, so that network and data forwarding are provided for the terminal equipment, meanwhile, the 5 wireless bridge switches based on WIFI6 communication can be configured to communicate with a specified mobile phone or tablet personal computer through WIFI6, and the method can be used for other terminal equipment supporting WIFI.
In the embodiment of the invention, two gigabit service ports of the switching chip are adopted as WIFI6 external communication ports, namely port27 and port28, wherein one port receives and transmits 2.4GHz service, the other port receives and transmits 5GHz service, and the other ports of the switching chip are used as common service ports, can be designed as electric ports and optical ports, and are determined according to the specification of the chip.
The embodiment of the invention also provides a communication method of the wireless bridging switch based on WIFI6 communication, which is applied to the wireless bridging switch based on WIFI6 communication, and comprises the following steps:
step 1, a wireless bridging switch based on WIFI6 communication is powered on, and an authentication task is automatically started after the system operates stably;
step 2, the wireless bridging switch based on WIFI6 communication closes the port local port forwarding connected with the baseband signal processing chip, configures an access control list ACL to forward the authentication protocol message to the central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, the packaged authentication protocol messages are respectively sent to the exchange chip from two ports connected with the baseband signal processing chip to carry out validity check, and legal authentication protocol messages are obtained and sent to the receiving equipment;
and 4, after the receiving equipment is matched with the legal authentication protocol message, establishing connection between the wireless bridging switch based on WIFI6 communication and the receiving equipment.
Specifically, a plurality of wireless bridge switches based on WIFI6 communication form a service networking; the plurality of wireless bridge switches based on the WIFI6 communication comprise a plurality of wireless bridge switches based on the WIFI6 communication of the sending end and a plurality of wireless bridge switches based on the WIFI6 communication of the receiving end;
and each wireless bridging switch based on WIFI6 communication in the service networking performs security authentication in a mutual authentication mode.
Specifically, the mutual authentication method includes:
step 1, all wireless bridge switches based on WIFI6 communication are electrified, an authentication task process is automatically started after the system operation is stable, and the wireless bridge switches based on the WIFI6 communication at a transmitting end transmit an authentication protocol message;
step 2, aiming at the wireless bridging switch based on WIFI6 communication of each transmitting end, the wireless bridging switch based on WIFI6 communication closes the port local port forwarding connected with the baseband signal processing chip, configures an access control list ACL to forward the authentication protocol message to the central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, the wireless bridging switch based on WIFI6 communication of each transmitting end sends the packaged message to the exchange chip for validity verification through two ports connected with the baseband signal processing chip, and a legal authentication protocol message is obtained and sent to the wireless bridging switch based on WIFI6 communication of the receiving end;
and 4, after the wireless bridging switch based on the WIFI6 communication of the receiving end is matched with the legal authentication protocol message, establishing service networking with the wireless bridging switch based on the WIFI6 communication of the receiving end.
Specifically, the embodiment of the invention performs security authentication with other wireless bridging switches based on WIFI6 communication through a mutual authentication mode, an SSID authentication verification mode of a traditional WIFI router is not needed, the wireless bridging switch based on WIFI6 communication is directly connected with an Ethernet port of a switching chip instead of a PCIe interface of a CPU (central processing unit) like the wireless router, so that service forwarding is hard forwarding and is not soft forwarding of the CPU, and thus, the bidirectional full duplex Gbps line speed forwarding can be achieved by designing.
The authentication protocol adopts a two-layer private protocol, and the message cannot be intercepted by the mobile phone or the notebook under the general condition, can be taken as an illegal message by the mobile phone or a computer operating system, is discarded by default, can be stolen only by a special tool, and is relatively safe. The protocol message format is shown in fig. 3, and the MAC of the message destination is a multicast address 01:80:c2:17:04:17, but is not limited to this multicast MAC; the source MAC address is the address of the switch itself; the ethernet protocol type is 0x1771, but is not limited to this protocol number; the message data content comprises message type, check code, priority, default VLAN and other information. Wherein the message type is TLV message type of the protocol, and different message interactions can be defined by different message types. The check code is used for checking the unified identification of protocol communication between the devices, if the check codes are inconsistent, the message is considered illegal, and the message is discarded, so that authentication fails; the check code is generated according to a certain algorithm through the source MAC address, the default VLAN and the KEY value, and the generation algorithm is as follows:
definition of CharKEY [16]:
charKEY[16]={0x11,0x33,0x56,0x12,0xa5,0x30,0xb6,0x1c,0x98,0x3d,0xbf,0x88,0xb2,0x1c,0x1e,0x26};
checksum=(mac[0]&key[0]+mac[1]&key[1]+mac[2]&key[2]+mac[3]&key[3])+((mac[4]&key[4]+mac[5]&key[5]+VLAN[0]&key[6]+VLAN[1]&key[7])&0xff)<<8+((mac[0]|key[8]+mac[1]|key[9]+mac[2]|key[10]+mac[3]|key[11])&0xff)<<16+((mac[4]|key[12]+mac[5]|key[13]+VLAN[0]|key[14]+VLAN[1]|key[15])&0xff)<<24。
the default virtual local area network (VirtualLocalAreaNetwork, VLAN) is the virtual local area network ID number (Port-baseVlanID, PVID) of the Port where the exchange chip and the baseband signal processing chip are in butt joint, so that the wireless bridging switches based on WIFI6 communication in butt joint through WIFI6 need to negotiate uniformly to set the PVID of the MAC Port in wireless butt joint to be identical, the PVID is configured as 4094, and if 4094 negotiations fail, the PVID is decreased downwards until the PVID meets VLANID mutually. The priority, i.e. default VLAN negotiation, refers to the PVID of the switch with higher priority.
The security authentication mode flow of the embodiment of the invention is as follows:
after the wireless bridging switch based on WIFI6 communication is electrified and the system operates stably, an authentication task process of the wireless bridging switch based on WIFI6 communication is automatically started, no service set identification (ServiceSetIdentifier, SSID) is matched in a bridging mode, the switches can communicate with each other through WIFI by default, and two ports connected with 2.4GHz and 5GHz of the switch are configured into static convergence ports, so that the forwarding bandwidth is enlarged, and load zoning and link redundancy are realized. The switch closes the local port of the port connected with the baseband signal processing chip to transmit, i.e. the received message is not transmitted to the receiving port, thereby preventing storm and abnormal loop from generating. The switch assigns a filtering rule by configuring an access control list (AccessControlList, ACL) function, allows a target MAC to be the MAC of the switch authentication protocol, allows a protocol number to be the protocol number of an authentication message protocol type, and sends a message with an input port number being a port connected with a baseband signal processing chip to a CPU (central processing unit), and other messages are discarded if the message does not have an 802.1Q header or a VLANID carried in an 802.1Q header is a default VLAN. The CPU encapsulates the authentication protocol message according to the embodiment of the invention according to the protocol message format, the TLV message content is obtained from the switch preservation configuration, if the preservation configuration is not available, the default value is adopted for filling, the check code is generated and filled through the algorithm, and the message type is the request message;
the exchange chip sends out the encapsulated authentication protocol messages from two ports which are in butt joint with 2.4GHz and 5GHz respectively; after receiving authentication protocol messages sent by the wireless bridging switch based on WIFI6 communication of the sending end, the wireless bridging switch based on WIFI6 communication of the receiving end sends the messages meeting ACL rules to a CPU, and other messages are discarded if no 802.1Q header or VLANID carried in 802.1Q is a default VLAN; the CPU sends the message to an authentication processing task, generates a checksum by a checksum generation algorithm according to the source MAC carried by the message and a default VLAN by analyzing the content of the message, considers legal if the value is consistent with the checksum carried by the message, discards the message if the value is not matched with the checksum carried by the message, and cannot synchronize information such as the default VLAN and the like with each other, so that connection cannot be established;
after the wireless bridging switch based on WIFI6 communication of the receiving end is matched with the authentication protocol message of legal verification, the response message is also packaged in a protocol message format, the message type is the response, and other TLV data filling and request messages are consistent; the TLV refers to a structural body consisting of data type Tag, data Length and data Value, and almost any data type can be described; by mutually negotiating the default VLAN, if the default VLAN is inconsistent with the opposite terminal, the default VLAN with the highest priority is used as the reference, the port default VLAN connected with the baseband signal processing chip is changed into the VLAN with the highest priority, and meanwhile, the port VLAN type connected with the baseband signal processing chip is changed into a multi-load mode trunk, namely, the 802.1Q header of the corresponding forwarding VLANID is added when the service message goes out from the port.
After passing the authentication protocol, the method I: each exchanger can configure two ports connected with the baseband signal processing chip as two common service ports, if two exchangers communicate through WIFI6, as shown in a service networking in fig. 2, if two PCs below the No. 2 exchanger and the No. 3 exchanger are required to form the same local area network, the No. 2 exchanger and the No. 3 exchanger form a virtual local area network by configuring the same VLAN, and the ports connected with the terminals of the same network segment are divided into the VLAN to form the virtual local area network, namely the addresses are the same network segment; meanwhile, the MAC port connected with the baseband signal processing chip is added under the VLAN by default; because the MAC port connected with the baseband signal processing chip is in a trunk mode, messages forwarded by a non-default VLAN can be carried by 802.1Q Ethernet messages of the forwarding VLAN when the messages are sent out from the port, and WIFI data messages sent by other mobile phones, flat plates, notebook computers, common wireless routers and the like by default are forwarded by the default VLAN when the messages are not carried with 802.1Q, namely the radio messages, according to ACL filtering rules set in an illegal wireless service message filtering method, the messages can be discarded, so that access of some illegal terminals to a switching network can be effectively prevented, and the intention of illegal terminals to steal service messages can be avoided.
The second method is as follows: the method comprises the steps that a common port of a switch is set to be a customer port attribute, forwarding is carried out on the basis of an inner VLAN (virtual local area network) layer, a port connected with a baseband signal processing chip in the switch is set to be an uplink cascade port attribute, forwarding is carried out on the basis of an outer VLAN layer virtual local area network layer, a common port service message is sent out from the uplink cascade port, and a layer of tag header based on a WIFI6 port default VLAN is inserted in front of an inter VLAN tag header in a double tag mode. After receiving the double tag message, the port connected with the baseband signal processing chip checks and filters the VLAN based on a safety filtering method of a QinQ (802.1Q-in-802.1Q) mode, then strips off the outer tag, and then uses the inner tag to forward the service. By configuring ACL rules, if a port connected with a baseband signal processing chip receives a data message (except an authentication protocol message of the embodiment of the invention) without a double tag mark and the outer layer tagvlan is not equal to a default VLAN, discarding the data message; the processing mode can play a good role in protecting the safety of service data;
and a third method: and the switch fills all VLAN lists configured by the equipment into the message TLV as data contents through the authentication protocol message and carries out. And acquiring a corresponding VLAN list after passing the authentication of the authentication protocol message of the port connected with the baseband signal processing chip. At this time, based on the filtering method of the service VLAN, the exchanger filters the message coming in from the port connected with the baseband signal processing chip by issuing ACL rule, only allows the message tagvlan to pass through the VLAN in the VLAN list, if the message carries 802.1Q message of other VLAN ids, the message is discarded, if the message is a unit message (non-authentication protocol message), the message is discarded as well. The processing mode can play a role in protecting the safety of targeted service data, but occupies more ACL expression resources.
The three filtering methods are all hardware filtering, and the forwarding performance and the delay are not affected, namely, the participation of a Central Processing Unit (CPU) is not needed. Therefore, by adopting the wireless bridging switch based on WIFI6 communication in the embodiment of the invention, the service message entering from the wired network port can be forwarded from the port connected with the baseband signal processing chip at full speed, and the message entering from the interface connected with the baseband signal processing chip can also be forwarded to other network ports of the switch at full speed.
The security authentication mode adopted by the invention can allow the appointed mobile phone or PC to log in the wireless bridging switch based on the WIFI6 communication through WIFI, and carry out local management on the wireless bridging switch based on the WIFI6 communication, thereby greatly reducing the equipment management difficulty and discarding the traditional mode of accessing the network cable or the serial port management switch. The mobile phone management switch equipment does not need to be accessed to the Internet, and is different from the traditional cloud management and Internet of things management mode, and the traditional mode is that the switch itself needs to be accessed to the Internet.
Specifically, after passing the above-mentioned security authentication protocol, the embodiment of the present invention theoretically only sends the authentication protocol message to the CPU of the switch through the port connected to the baseband signal processing chip, and other messages are sent to other service ports of the switch, and if the ACL discard filtering rule is satisfied, the messages are filtered and discarded. However, if the user wants to manage the switch locally through wireless wifi by a certain mobile phone or notebook computer, the message of the mobile phone or notebook computer needs to be sent to the Central Processing Unit (CPU) of the switch, but is not filtered.
The method comprises the following steps: at this time, the mobile phone or the notebook needs to install an application software of the authentication protocol of the present invention, and sends an authentication management protocol request to the WIFI network interface through the application software, and after the request is authorized, the switch will manage the MAC of the terminal device, write in the ACL rule with high priority, and allow the message of the source MAC matching the ACL rule MAC to pass through, so as to achieve the purpose of managing the switch.
The second method is as follows: the exchanger stores the MAC address of the terminal equipment which needs to be accessed to the management exchanger in advance, issues the ACL of the port which allows the source MAC to be connected with the message of the MAC through wifi6, stores the configuration, and therefore the terminal can normally communicate with the CPU of the exchanger.
According to the embodiment of the invention, the WIFI6 signal is externally provided by embedding the baseband signal processing chip, the modulation-demodulation and power amplification module and the bridge in the existing switch; after a single switch is systematic, the equipment participating in bridging is enabled to establish a private switch wireless connection intranet through authentication, joining, automatic issuing switch safety configuration and the like through the automatic matching protocol, so that the load pressure of the switch is greatly reduced; compared with the traditional mode of butt joint through network cables or optical fiber cables, the embodiment of the invention has no requirement on deployment positions, can flexibly move the positions, is more convenient to deploy, meets the network requirements of temporary office places or places with inconvenient wiring, and simultaneously enhances the communication safety performance of the switch.
While the foregoing is directed to the preferred embodiments of the present invention, it will be appreciated by those skilled in the art that various modifications and adaptations can be made without departing from the principles of the present invention, and such modifications and adaptations are intended to be comprehended within the scope of the present invention.

Claims (10)

1. A wireless bridging switch based on WIFI6 communications, comprising:
the system comprises a switching chip, a central processing unit, a baseband signal processing chip for encoding and decoding WIFI6 signal data, a bridge, a modulation and demodulation module, a power amplification module, a WIFI antenna and a physical layer interface chip;
the first data transmission end of the exchange chip is connected with the first data transmission end of the central processing unit, the second data transmission end of the exchange chip and the third data transmission end of the exchange chip are both connected with the first data transmission end of the bridge, and the fourth data transmission end of the exchange chip is connected with the first data transmission end of the physical layer interface chip; the second data transmission end of the bridge is connected with the first data transmission end of the baseband signal processing chip, the second data transmission end of the baseband signal processing chip is respectively connected with the first data transmission end of the modem module and the first data transmission end of the power amplification module, and the second data transmission end of the modem module and the second data transmission end of the power amplification module are both connected with the wifi antenna; and the second data transmission end of the physical layer interface chip is connected with the network port.
2. The WIFI6 communication based wireless bridging switch of claim 1, further comprising: a POE module;
the first data transmission end of the POE module is connected with the second data transmission end of the physical layer interface chip, and the second data transmission end of the POE module is connected with the network port.
3. The WIFI6 communication based wireless bridging switch of claim 1, further comprising an optical module;
the first data transmission end of the optical module is connected with the fifth data transmission end of the exchange chip, and the second data transmission end of the optical module is connected with the optical port.
4. The WIFI6 communication based wireless bridge switch of claim 1, further comprising a first clock crystal, a second clock crystal, and a third clock crystal;
the first clock crystal oscillator is connected with the central processing unit;
the second clock crystal oscillator is connected with the modulation and demodulation module and the power amplification module;
and the third clock crystal oscillator is connected with the physical layer interface chip.
5. The WIFI6 communication based wireless bridge switch of claim 1, further comprising a solid state memory and a dynamic memory;
the solid-state memory and the dynamic memory are both connected with the output end of the central processing unit.
6. The WIFI6 communication based wireless bridging switch of claim 2, further comprising a power module;
the output end of the power module is respectively connected with the power end of the modem module, the power end of the power amplification module, the power end of the exchange chip, the power end of the baseband signal processing chip, the power end of the physical layer interface chip and the power end of the POE module.
7. The wireless bridging switch based on WIFI6 communications according to claim 2, wherein,
the second data transmission end and the third data transmission end of the exchange chip are gigabit service ports;
the second data transmission end of the exchange chip is a 2.4GHz business receiving and transmitting port;
and the third data transmission end of the exchange chip is a 5GHz service receiving and transmitting port.
8. A communication method of a wireless bridge switch based on WIFI6 communication, applied to the wireless bridge switch based on WIFI6 communication according to any one of claims 1 to 7, the method comprising:
step 1, powering up the wireless bridging switch based on WIFI6 communication, and automatically starting an authentication task after the system operates stably;
step 2, the wireless bridging switch based on WIFI6 communication closes the port local port forwarding connected with the baseband signal processing chip, configures an access control list ACL to forward the authentication protocol message to a central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, the packaged authentication protocol messages are respectively sent to the exchange chip from two ports connected with the baseband signal processing chip for validity verification, and legal authentication protocol messages are obtained and sent to receiving equipment;
and 4, after the receiving equipment is matched with the legal authentication protocol message, the wireless bridging switch based on the WIFI6 communication is connected with the receiving equipment.
9. The method for communication based on WIFI6 communication according to claim 8, wherein,
a plurality of wireless bridge switches based on WIFI6 communication establish communication through WIFI6 to form a service networking; the plurality of wireless bridge exchanges based on the WIFI6 communication comprise a plurality of wireless bridge exchanges based on the WIFI6 communication of the sending end and a plurality of wireless bridge exchanges based on the WIFI6 communication of the receiving end;
and each wireless bridging switch based on WIFI6 communication in the service networking performs security authentication in a mutual authentication mode.
10. The communication method of the wireless bridge switch based on WIFI6 communication according to claim 9, wherein the mutual authentication method includes:
step 1, all wireless bridge switches based on WIFI6 communication are electrified, an authentication task process is automatically started after the system operation is stable, and the wireless bridge switches based on the WIFI6 communication at a transmitting end transmit an authentication protocol message;
step 2, aiming at the wireless bridging switch based on WIFI6 communication of each transmitting end, the wireless bridging switch based on WIFI6 communication closes the port local port forwarding connected with the baseband signal processing chip, configures an access control list ACL to forward an authentication protocol message to the central processing unit, and encapsulates the authentication protocol message according to a protocol message format;
step 3, the wireless bridging switch based on WIFI6 communication of each transmitting end sends the packaged message to the exchange chip for validity verification through two ports connected with the baseband signal processing chip, and a legal authentication protocol message is obtained and sent to the wireless bridging switch based on WIFI6 communication of the receiving end;
and 4, after the wireless bridging switch based on the WIFI6 communication of the receiving end is matched with the legal authentication protocol message, establishing service networking with the wireless bridging switch based on the WIFI6 communication of the receiving end.
CN202310413924.3A 2023-04-18 2023-04-18 Wireless bridging switch based on WIFI6 communication Pending CN116506375A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310413924.3A CN116506375A (en) 2023-04-18 2023-04-18 Wireless bridging switch based on WIFI6 communication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310413924.3A CN116506375A (en) 2023-04-18 2023-04-18 Wireless bridging switch based on WIFI6 communication

Publications (1)

Publication Number Publication Date
CN116506375A true CN116506375A (en) 2023-07-28

Family

ID=87322380

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310413924.3A Pending CN116506375A (en) 2023-04-18 2023-04-18 Wireless bridging switch based on WIFI6 communication

Country Status (1)

Country Link
CN (1) CN116506375A (en)

Similar Documents

Publication Publication Date Title
US20210359910A1 (en) Packet data unit (pdu) structure for supporting distributed relay control protocol (drcp)
US9154935B2 (en) Wireless home mesh network bridging adaptor
US9504089B2 (en) System and method for wireless station bridging
EP2378720B1 (en) Extranet networking method, system and device for multicast virtual private network
CN100583773C (en) Method and device for controlling data link layer elements with network layer elements
US20070147354A1 (en) Local area network
US8411701B2 (en) Inter-working of EFM-OAM and CFM-OAM for mobile backhaul networks
CN110366153A (en) A kind of method of bluetooth ad hoc network
CN219893335U (en) Wireless bridging switch based on WIFI6 communication
CN116506375A (en) Wireless bridging switch based on WIFI6 communication
WO2022007749A1 (en) Data transmission method and apparatus
CN220108019U (en) Dual-system wireless switch based on WIFI6
WO2021227491A1 (en) Communication method, up device and cp device
WO2014166201A1 (en) Multiband wireless communication method, coordinating device, and network
CN116455841A (en) Dual-system wireless switch based on WIFI6
US20030206543A1 (en) Partitioned medium access control
US20090141693A1 (en) Technique for Achieving Connectivity between Telecommunication Stations
CN115883256B (en) Data transmission method, device and storage medium based on encryption tunnel
CN116032635A (en) Data transmission method and system using public network to replace private line network
Harshitha et al. Implementation of Ad Hoc and Relay Mode in WLAN

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination