CN1210915C - Method for controlling port interactive access of Ethernet switch chip - Google Patents
Method for controlling port interactive access of Ethernet switch chip Download PDFInfo
- Publication number
- CN1210915C CN1210915C CN 02122320 CN02122320A CN1210915C CN 1210915 C CN1210915 C CN 1210915C CN 02122320 CN02122320 CN 02122320 CN 02122320 A CN02122320 A CN 02122320A CN 1210915 C CN1210915 C CN 1210915C
- Authority
- CN
- China
- Prior art keywords
- port
- switching chip
- logical
- interactive access
- fair
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Small-Scale Networks (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention relates to a mutual visiting and controlling method of an Ethernet exchange chip port for digital information transmission. The present invention is characterized in that port mutual visiting and controlling attribute is configured on each port of the multi-port Ethernet exchange chip to reflect data exchange permitting levels of each port of the exchange chip, and the permitting levels can be divided into a plurality of levels. A data frame of data exchange among the high permitting levels is passed in the data exchange, a data frame of the data exchange among the low permitting levels is discarded, and the port mutual visiting and controlling attribute is additionally added to control information of the data frame. After the data frame is received by the exchange chip, the permitting level of a source port is queried, the permitting level of a purpose port is queried through a normal retransmitting process, and whether the data frame is passed or discarded is determined according to the permitting levels of the source port and the purpose port. The present invention can simply realize the mutual visiting isolation of users in low cost, and a networking mode is flexible. The present invention can not generate collision with the existing telecommunication access, and supports stacking expansion.
Description
Technical field
The present invention relates to the transmission of digital information, relate in particular to a kind of method of Ethernet switching chip port interactive access control.
Background technology
In the multiport ethernet switching device, people wish to control neatly the data interchange between switching chip port, to guarantee the secure access of network data, especially insert under the environment in telecommunications, intercommunication data traffic between each user more should strict be controlled, insert and the use network with the safety that guarantees the user, make accounting management convenient simultaneously.
Ethernet is mainly used in local area network (LAN), is the network of sharing fully, and each of its inside computer can be exchanged visits arbitrarily.
In order to solve the excessive problem of data traffic in data isolation between different user groups and the complete shared network, international IEEE has proposed the notion and method of VLAN in ethernet local area network agreement 802.3: local area network (LAN) is divided into a plurality of different sub-local area network (LAN)s, each sub-local area network (LAN) is a VLAN and distributes a unique virtual LAN numbering, VLAN can comprise the computer on the part or all of local area network (LAN), the computer that belongs to a VLAN has identical virtual LAN numbering, can arbitrarily exchange visits between them.Otherwise the computer that does not belong to a VLAN then has different virtual LAN numberings, can not directly exchange visits between them.
Insert environment for Ethernet telecommunications, the terminal use of each access network is mutually independently, the network equipment must guarantee that each user is not subjected to other users' interference, guarantee user's access to netwoks safety, thereby the data access isolating power between the user is provided is the indispensable function of Ethernet telecommunications access device, simultaneously, data access is isolated and can also be provided convenience for charging between the user.
For the user isolation requirement under the above-mentioned telecommunications access environment, the method for relatively using always is directly to use VLAN to isolate at present, be about to each user and be divided into a VLAN, thereby the unique virtual LAN numbering of distribution is realized the user capture isolation.
But, adopt this VLAN user-isolated, following shortcoming is but arranged:
1, a LAN need be divided into a plurality of VLANs, also be, what users the LAN of a telecommunications access can support at most, will divide what local area network (LAN)s and distribute to corresponding virtual LAN numbering, and this need consume the hardware resource of a lot of costlinesses, all can't meet this requirement for the Ethernet switch that reduces cost for present great majority.
2, international IEEE does not consider the demand that the telecommunications access user data is isolated when working out the virtual local area fidonetFido, the agreement that they work out stipulates that each LAN is divided into 4095 local area network (LAN)s at most, because all in the world ethernet devices all must meet the standard ability intercommunication of this association, therefore directly use this agreement user-isolated, then no matter the network bandwidth has much, each telecommunications access to LAN section all can only insert 4095 users at most, could guarantee that each user distributes a unique virtual LAN numbering, this will restrict the design that telecommunications inserts networking plan greatly.
Summary of the invention
The object of the present invention is to provide and a kind ofly can realize the exchange visits method of the Ethernet switching chip port interactive access control isolated of user simply, at low cost.
The technical solution adopted in the present invention is: the method for this Ethernet switching chip port interactive access control is characterized in that comprising the steps:
A: on each port of multiport Ethernet switching chip, the port interactive access controlled attribute is set, in order to the fair logical rank of each port of reflection Ethernet switching chip for exchanges data, this fair logical level else act as decision in the exchange process of data, to Frame give by or abandoned;
B: this port interactive access controlled attribute is attached in the control information of Frame;
C: in the forwarding process of exchange chip, receiving data frames;
D: the fair logical rank of the port interactive access controlled attribute of query source port;
E:, obtain the fair logical rank of the port interactive access controlled attribute of destination interface and search purposes port through normal forwarding process;
F: according to the fair logical rank of the port interactive access controlled attribute of the fair logical rank of the port interactive access controlled attribute of source port and destination interface, decision with Frame give by or abandoned.
Wherein, other is provided with fair logical level multiple mode can be arranged, but which kind of mode no matter, in exchanges data, for the Frame of the exchanges data between the high relatively fair logical rank give by; Frame for the exchanges data between the low relatively fair logical rank is then abandoned.
When fair logical rank is divided into two-stage, high fair logical rank is an all-pass, low fair logical rank is independent, in exchanges data, for the Frame of the exchanges data of the switching chip port that relates to all-pass give by, being independently for source port and destination interface, the Frame of the exchanges data between the switching chip port is abandoned.
Rank in the middle of also can establishing one at all-pass and independently: group is logical.In exchanges data, the Frame that is the exchanges data between the logical switching chip port of group for source port and destination interface give by, for source port for group is logical, destination interface is for independently exchange chip and source port are abandoned for the Frame of the exchanges data between the logical switching chip port of group for independent, destination interface.
No matter what fair logical rank is divided into, in general, low fair logical other switching chip port of level is to be used to connect each terminal to insert the user, and high fair logical other switching chip port of level is the up access link that is used for switch.
As when fair logical rank is secondary, the switching chip port of all-pass is used for the up access link of switch, and independently switching chip port is used to connect each terminal access user.
As all-pass and independent between establish one group logical during as middle rank, the logical switching chip port of group can be used to group user that access is provided, and in the switch a plurality of group user is arranged, and just will organize the go side mouth with the mode of local area network (LAN) and keep apart.
In addition, when processing is piled up in the forwarding process support of exchange chip, increasing in piling up the processing label has corresponding ports exchanging visit controlled attribute mark, promptly the source port attribute of Frame is carried in the stacked labels and is delivered to other stack equipments by piling up link with Frame.
Beneficial effect of the present invention is:
1. owing to defined ethernet switch port exchanging visit controlled attribute, thereby provide a kind of technology that VLAN just can be controlled data interchange ability between ethernet switch port that do not rely on, and this set can not produce any conflict to chip forwarding processing procedure, only need to obtain the port interactive access controlled attribute of Frame source port and destination interface, according to separately fair logical rank decision make Frame by or abandon, the equipment between low fair logical other port of level can not interfere with each other;
2. fair logical rank is to be arranged on simply in the register of each port for use by Control Software, so its cost is very low;
3. port interactive access controlled attribute and VLAN are divided and are not contacted directly, thereby do not limit the distribution and the design of VLAN, and networking mode is very flexible;
4. in exchanges data, the Frame of the exchanges data between the high relatively fair logical rank give by, abandoned for the Frame of the exchanges data between the low relatively fair logical rank, the present invention realized simply like this, user's isolation of exchanging visits at low cost;
5. the fair logical rank of height and the independently low fair logical rank that are divided into all-pass when fair logical rank just can be by the basic user of the port interactive access controlled attribute realization isolation of exchanging visits;
When fair logical rank all-pass with independent between also be provided with one group logical during as middle rank, just can control various types of users' exchanging visits neatly, improve practicality of the present invention;
7. low fair logical other switching chip port of level is used to connect each terminal and inserts the user, high fair logical other switching chip port of level is used for the up access link of switch, this makes the use of this self-defining port interactive access controlled attribute insert with existing telecommunications can not produce any conflict, make the present invention more feasible, adding to organize logical switching chip port to be used to group user that access is provided, in the switch a plurality of group user are arranged, just will organize the go side mouth with the mode of local area network (LAN) keeps apart, make the present invention and existing ethernet local area network protocol-compliant, and make the Ethernet access management product can manage all subordinaties' Ethernet access device and terminal use thereof with considerably less VLAN;
8. when processing is piled up in the forwarding process support of exchange chip, in piling up the processing label, increase corresponding ports exchanging visit controlled attribute mark, promptly the source port attribute of Frame is carried in the stacked labels and is delivered to other stack equipments with Frame, so just make the present invention can support to pile up expansion easily by piling up link.
In a word, the present invention can realize user's isolation of exchanging visits simply, at low cost, and networking mode is flexible, inserts with existing telecommunications and can not produce any conflict, and support to pile up expansion.
Description of drawings
Fig. 1 is a Frame forwarding process schematic diagram of the present invention;
Fig. 2 is a networking schematic diagram of the present invention.
Embodiment
With reference to the accompanying drawings the present invention is described in further detail below:
According to Fig. 1 and Fig. 2, on each port of a multiport Ethernet switching chip, the port interactive access controlled attribute is set, with the fair logical rank of each port of reflection Ethernet switching chip for exchanges data, fair logical rank is divided into two-stage: high fair logical rank is an all-pass, low fair logical rank is independent, independently switching chip port is used to connect each terminal access user, and the switching chip port of all-pass is used for the up access link of switch.Terminal inserts user X and is connected Ethernet access device B and Ethernet access device C respectively with terminal access user Y, the corresponding port of Ethernet access device B and Ethernet access device C all is set to independently port interactive access controlled attribute, Ethernet access device A is the upstream plant of Ethernet access device B and Ethernet access device C, the corresponding port that connects Ethernet access device B and Ethernet access device C among the Ethernet access device A all is set to independently port interactive access controlled attribute, the corresponding port that connects Ethernet access device A among the Ethernet access device B is set to the port interactive access controlled attribute of all-pass, the corresponding port that connects Ethernet access device A among the Ethernet access device C is set to the port interactive access controlled attribute of all-pass, because the Ethernet access management product is as the upstream plant of Ethernet access device A, so the port that connects the Ethernet access management product among the Ethernet access device A is set to the port interactive access controlled attribute of all-pass.In exchanges data, for the Frame of the exchanges data of the switching chip port that relates to all-pass give by, be independently for source port and destination interface that the Frame of the exchanges data between the switching chip port is abandoned, this port interactive access controlled attribute is attached in the control information of Frame.
In the forwarding process of exchange chip, as shown in Figure 1, behind the exchange chip receiving data frames, the fair logical rank of the port interactive access controlled attribute of query source port, through normal forwarding process, the fair logical rank of the port interactive access controlled attribute of search purposes port, again according to the fair logical rank of the port interactive access controlled attribute of the fair logical rank of the port interactive access controlled attribute of source port and destination interface, decision with Frame give by or abandoned.
In this embodiment, as shown in Figure 2, user X and terminal insert between the user Y and can not interfere with each other, thereby have isolated user X and user Y, and, can not interfere with each other between Ethernet access device B and the Ethernet access device C yet.
Rank in the middle of fair logical rank also can be provided with one at all-pass and independently: group is logical, for relating to low relatively fair logical rank, promptly group logical or independently the Frame of the exchanges data of switching chip port abandoned, remove the Frame that is the exchanges data between the logical switching chip port of group for source port and destination interface give by, the logical switching chip port of group can be used to group user that access is provided, in the switch a plurality of group user are arranged, just will organize the go side mouth and keep apart with the mode of local area network (LAN).
In addition, when processing is piled up in the forwarding process support of exchange chip, in piling up the processing label, increase corresponding ports exchanging visit controlled attribute mark, promptly the source port attribute of Frame is carried in the stacked labels and is delivered to other stack equipments with Frame, just can carry out the inspection of port interactive access controlled attribute equally when Frame is exported like this by piling up link.
Claims (6)
1. the method for an Ethernet switching chip port interactive access control is characterized in that this method comprises the steps:
A: on each port of multiport Ethernet switching chip, the port interactive access controlled attribute is set, with the fair logical rank of each port of reflection Ethernet switching chip for exchanges data;
B: exchange chip receiving data frames;
C: the fair logical rank of the port interactive access controlled attribute of exchange chip query source port;
D:, obtain the fair logical rank of the port interactive access controlled attribute of destination interface and search purposes port through normal forwarding process;
E: according to the fair logical rank of the port interactive access controlled attribute of the fair logical rank of the port interactive access controlled attribute of source port and destination interface, decision with Frame give by or abandoned.
2. the method for Ethernet switching chip port interactive access control according to claim 1 is characterized in that: the fair logical rank described in steps A, C, D and the E is divided into two-stage: high fair logical rank is an all-pass; Low fair logical rank is independent; In exchanges data, for the Frame of the exchanges data of the switching chip port that relates to all-pass give by, being independently for source port and destination interface, the Frame of the exchanges data between the switching chip port is abandoned.
3. the method for Ethernet switching chip port interactive access control according to claim 2 is characterized in that: rank in the middle of the fair logical rank described in steps A, C, D and the E also is provided with at all-pass and independently: group is logical; In exchanges data, the Frame that is the exchanges data between the logical switching chip port of group for source port and destination interface give by, for source port for group is logical, destination interface is for independently exchange chip and source port are abandoned for the Frame of the exchanges data between the logical switching chip port of group for independent, destination interface.
4. according to the method for claim 2 or the control of 3 described Ethernet switching chip port interactive access, it is characterized in that: described low fair logical other switching chip port of level is used to connect each terminal and inserts the user, and high fair logical other switching chip port of level is used for the up access link of switch.
5. the method for Ethernet switching chip port interactive access control according to claim 3, it is characterized in that: described group of logical switching chip port can be used to group user that access is provided, in the switch a plurality of group user are arranged, just will organize the go side mouth and keep apart with the mode of local area network (LAN).
6. the method for Ethernet switching chip port interactive access control according to claim 1, it is characterized in that: the forwarding process support of described exchange chip is piled up when handling, in piling up the processing label, increase corresponding ports exchanging visit controlled attribute mark, promptly the source port attribute of Frame is carried in the stacked labels and is delivered to other stack equipments with Frame by piling up link.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02122320 CN1210915C (en) | 2002-06-06 | 2002-06-06 | Method for controlling port interactive access of Ethernet switch chip |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02122320 CN1210915C (en) | 2002-06-06 | 2002-06-06 | Method for controlling port interactive access of Ethernet switch chip |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1464693A CN1464693A (en) | 2003-12-31 |
| CN1210915C true CN1210915C (en) | 2005-07-13 |
Family
ID=29743186
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 02122320 Expired - Fee Related CN1210915C (en) | 2002-06-06 | 2002-06-06 | Method for controlling port interactive access of Ethernet switch chip |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1210915C (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101123510B (en) * | 2007-07-11 | 2011-03-02 | 中兴通讯股份有限公司 | Method, switch and switching chip for port separation of switch |
| CN101132364B (en) * | 2007-08-23 | 2012-02-29 | 新动力(北京)建筑科技有限公司 | Data addressing and repeating method and system in control network |
| CN101170502B (en) * | 2007-11-20 | 2011-10-26 | 中兴通讯股份有限公司 | A method and system for realizing mutual access between stacking members |
| CN101827366B (en) * | 2010-03-24 | 2013-03-13 | 北京星网锐捷网络技术有限公司 | Method, unit and device for isolating wireless network user |
| CN102316031A (en) * | 2011-09-05 | 2012-01-11 | 西安和利时系统工程有限公司 | Switching system |
| CN112019459B (en) * | 2020-09-09 | 2021-10-26 | 苏州盛科通信股份有限公司 | Message processing method and system based on dynamic online and offline of equipment in stacking system |
-
2002
- 2002-06-06 CN CN 02122320 patent/CN1210915C/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN1464693A (en) | 2003-12-31 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1474564A (en) | Communication method between virtual local area webs | |
| EP1345359B1 (en) | High speed protocol for interconnecting modular network devices | |
| CN1199400C (en) | Master-standby switching and load sharing system and method based on Ethernet access platform | |
| CN1099788C (en) | LAN switch architecture | |
| CN1356806A (en) | Data forwarding method for implementing virtual channel transmission in LAN | |
| CN101729355B (en) | Method for realizing particular virtual local area network and device | |
| CN1929449A (en) | Method of processing packet of virtual lan for network switch | |
| CN1677982B (en) | Device and method used for transmitting input frame in network switch | |
| CN107888519A (en) | A kind of local gigabit ethernet switch | |
| CN108347392A (en) | Service message straddle processing method, apparatus and system | |
| CN1210915C (en) | Method for controlling port interactive access of Ethernet switch chip | |
| CN101110721A (en) | Method for accessing into control address table spacing using Ethernet switch medium | |
| CN108471390A (en) | The reorientation method of service message straddle processing system and service message | |
| CN1838629A (en) | Method for realizing virtual exchange using QinQ technique | |
| CN1152525C (en) | Ethernet switch in net virtual local network switch in technique | |
| CN1601996A (en) | Method for access of IP public net of virtual exchanger system | |
| CN1731767A (en) | Switching device, method for realizing switching device and switching method | |
| JP2004159019A (en) | Extended vlan tag swap system | |
| CN1359215A (en) | Method for giving mobile terminal moveable property and radio interface equipment for executive said method | |
| CN1929435A (en) | Packet transfer device and method | |
| CN1369991A (en) | Dividing method for bond ports of switch and switch chip | |
| CN103685078A (en) | All-optical sharing cache router based on optical fiber delay lines and working method of all-optical sharing cache router | |
| CN1231018C (en) | Method and device for realizing virtual local network transmission on Ethernet exchange | |
| TWI233734B (en) | System and method of stacking network switches | |
| EP1549103A3 (en) | Packet communication system within a communication network node |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20050713 Termination date: 20190606 |