The method of the automatic reporting MAC address of a kind of device of optical network unit at remote side to network management system
Technical field
The invention belongs to fiber optic communication field, relate to optical network unit at remote side (ONU) equipment in the EPON (EPON) based on gigabit Ethernet to the method for the automatic reporting MAC address of network management system.
Background technology
EPON is that Ethernet is applied to a kind of new topological form in the broadband access network.EPON generally is made up of a local side node optical line terminal (OLT) and an a plurality of distant-end node optical network unit (ONU) that is positioned at branch that is positioned at tree root.Be connected by passive optical distribution network (ODN) between OLT and the ONU, as shown in Figure 1.OLT generally places service provider's one side, and optical access network is connected to IP, an ATM or SONET backbone network.OLT also will provide the interface with network management system (following abbreviation network management system), so that network management system is carried out Operations,Administration And Maintenance to EPON.And ONU generally is placed on user's one side, can be positioned at roadside (FTTC mode), or terminal use location (FTTH and FTTB mode), for the user provides broadband voice, and image and data service.
Two optical transmission direction at two wavelength are defined as follows respectively respectively in EPON:
Signal is down direction from OLT to ONU, for broadcast mode sends;
Signal is up direction from ONU to OLT, adopts time division multiple access (TDMA) technology.
Signal transmission all among the EPON all are to finish between OLT and ONU.On EPON system descending direction, EPON is the broadcasting medium of a point to multiple spot, and the ethernet frame that is sent by OLT arrives each ONU by the mode of single copy broadcast.ONU receives only the destination to be local bag and to consign to the user, and other frame is abandoned.On up direction, a plurality of ONU share a up channel.The hierarchical model of EPON network and OSI7 layer reference model be compatible (showing as Fig. 2) mutually, EPON on architecture to 802.3 also not very big changes.
Consider the Ethernet of the peculiar point of PON to multiple spot (P2MP) topology, IEEE 802.3ah working group has been extended to multiple spot MAC control sublayer with the MAC control sublayer of definition among the IEEE 802.3.Fig. 3 is the function diagram of the multiple spot MAC control sublayer after expanding.As can be seen from Figure, multiple spot MAC control sublayer is on the function of original ethernet mac control sublayer, has increased the function of light multiple spot (OMP) control.The OMP controlled function mainly relies on Multi-point Control Protocol (MPCP) to realize.The purpose of MPCP realizes a controllable network configuration exactly, as automatic discovery and the registration of ONU, and optimizes upstream bandwidth utilance or the like by range finding.
For the function (function among the figure in the empty frame) of finishing OMP shown in Figure 3, outside the MAC control sub-layer message (PAUSE frame) that has defined, the MPCP agreement has also been introduced 5 new control messages: GATE, REPORT, REGISTER_REQ, REGISTER, and REGISTER_ACK.MPCP message is unmarked ethernet frame, and its length is minimum ethernet frame length (64 byte).
The automatic discovery of describing in the MPCP agreement and registration process have defined the handshake procedure between an OLT and the ONU.Its major function is to find each ONU in system reset or after powering on, and perhaps finds initiate ONU in the process of operate as normal; Give newfound ONU assignment logic link identifier (LLID); Learn the MAC Address of newfound ONU, and will distribute to the LLID of this ONU and its MAC Address is mapped; Loop Round Trip Time (RTT) to ONU carries out bigness scale; Ability parameter to ONU is held consultation or the like.
Whole discovery and registration process are initiated and are driven by OLT, and ONU is response passively just.In the central controlled TDMA EPON by OLT, for fear of conflict, all ONU only could send data after having received the mandate that OLT provides.Simultaneously, in order to improve the utilance of upstream bandwidth, OLT arranges to authorize only can for the online ONU that has registered.The ONU of those power down or off-line is occupying system resources more not just.
Because OLT is the particular location that can't predict initiate ONU, therefore can not accurately arrange it to send the time of register requirement.In order not influence the operate as normal of other ONU that registered, OLT is necessary for discovery and the registration of new ONU and arranges special time slot.For this reason, OLT must be regularly or is opened one aperiodically and find window, gives initiate chance of ONU that does not also have registration.Because in finding window, the ONU that has registered can not send data, therefore find that the frequency of window can not be too intensive, otherwise will reduce the utilance of upstream bandwidth.And the length of finding window wants the ONU that can satisfy farthest also can be found.For example, when the distance between ONU and the OLT was 20km, its RTT was approximately 200 μ s, also to consider the opening and closing time of laser, and the lock in time of OLT receiver, therefore, for ultimate range is the EPON system of 20km, finds that the length of window should be about 250 μ s.Fig. 4 is the flow chart of the ONU registration process stipulated in the IEEE802.3ah EPON draft.
At first, GATE message is found in one of OLT broadcasting, and this message has been carried time started and the length of finding window.The ONU that has registered will ignore this message after receiving the discovery GATE message of broadcasting, and stop to send all data.After unregistered ONU receives this message, wait for that window begins.In case after finding that window begins, just send a REGISTER_REQ message to OLT.Different with data window is that a plurality of ONU can visit OLT simultaneously in finding window, therefore may bump, and need to adopt contention resolution.Find that at one in the window, OLT can receive the REGISTER_REQ message that a plurality of ONU send.In the REGISTER_REQ message, the laser that has comprised MAC Address, the ONU of ONU opens and closes number of the data grant that the multipotency of time parameter, ONU supports or the like.Receive that OLT just registers to ONU after the REGISTER_REQ message, distribute new logical port number (promptly distributing LLID), and the MAC of ONU is bundled on the corresponding logical port number.
In case after OLT has accepted the register requirement of ONU, just send a REGISTER message to the ONU that proposes register requirement.In REGISTER message, comprised the LLID that distributes to this ONU, the lock in time of OLT, and the performance that OLT supported.Simultaneously, capability vector and the laser switch parameter of OLT feedback ONU are used for the negotiation of performance parameter.Now, OLT has enough information to dispatch the up sending time slots of ONU.So send a general data GATE message to ONU, make it send a REGISTER_ACK message.After OLT receives the REGISTER_ACK of ONU, just show that the discovery procedure of this ONU finishes, ONU is registered, and can begin to have communicated by letter normally.
From top introduction as can be seen, the MPCP agreement of IEEE 802.3ah formulation at present mainly is at the control of OLT to ONU, comprises automatic discovery and the registration of ONU, allocated bandwidth or the like.But how OLT automatically reports network management system with far-end ONU information, and particularly the characteristic information of the ONU equipment that opened the first time reports network management system, does not but have relevant regulation.
In EPON, OLT and ONU are master slave relations, and the transmission of the registration of ONU, report and data all will be carried out under the control of OLT.Therefore in the network management system of EPON, also should show this several type structure intuitively.With the subordinate management object of ONU as OLT.But OLT and ONU reality is not a machine frame inside, and the ultimate range between the two can be 10km or 20km.Therefore network management system can not be located ONU by the slot number in the OLT machine frame.And, all adopt passive device to link to each other between OLT and the ONU, for example optical fiber, the optical fiber connector and passive photosynthetic road/splitter etc.Therefore in EPON, also can't identify or locate ONU by port numbers as traditional active network.It is unique that what can identify an ONU is exactly the MAC Address of ONU equipment.
At present, when the user when an ONU is installed in application, must manually the MAC Address of this ONU be input in the network management system by the network management personnel, and then transmitting order to lower levels allows the ONU registration by OLT.At present, an OLT can control 32 or 64 ONU at most, can also accomplish 128 ONU of an OLT control future.In a carrier-class equipment, a machine frame can also insert a plurality of OLT ply-yarn drills.The number of the ONU that such EPON network management system is managed is on hundred even thousand orders of magnitude.If the MAC Address that all needs the network management personnel manually to import ONU could be opened, network management personnel and engineering opening personnel's workload will be very big, and inconvenient.
In sum, this data bit that ONU equipment needs is the sign of long MAC Address, but also lack in existing management system this MAC Address that indicates ONU is input to mechanism in the network management system automatically.
The present invention has provided the method that the MAC Address of all ONU that newly open is reported automatically network management system, realizes more humane administration interface.The method can also be used for preventing that illegal (unauthorized) user from entering into the EPON network simultaneously.In this method, whether OLT automatic distinguishing ONU is the ONU that finds for the first time, and the information (MAC Address) of this ONU that will obtain in the MPCP registration process reports network management system, the affirmation of wait network management system automatically.Do not give before this ONU authorizes obtaining network management system, OLT will forbid that this ONU continues to be connected in the EPON system, takies Internet resources.After using this method, can simplify engineering opening or network management personnel's operation, increase work efficiency.And prevent illegal or malicious user equipment takies Internet resources.
Summary of the invention
The object of the invention is to provide the method for a kind of optical network unit at remote side (ONU) equipment to the automatic reporting MAC address of network management system, and this method does not need artificial key entry, and avoids repeating to report.
Another object of the present invention provides a kind of to the OLT of the automatic reporting MAC address of network management system single-deck.
A kind of optical network unit at remote side provided by the invention (ONU) equipment is to the method for the automatic reporting MAC address of network management system, comprise step: during system initialization, in OLT, set up unauthorized ONU mac address table according to the ONU MAC Address that Multi-point Control Protocol (MPCP) process obtains, and report webmaster;
Webmaster is authorized the unauthorized ONU that the OLT single-deck reports, and the MAC Address of undelegated ONU is transferred to authorized in the ONU sequence number mapping table hurdle, sets up ONU sequence number mapping table, and network management system will issue the sequence number mapping table and give optical line terminal (OLT);
After OLT has detected the ONU registration, if in local sequence number mapping table and unauthorized ONU mac address table, find the clauses and subclauses of mating with the MAC Address of the ONU that attempts to register, show that this ONU is the ONU that finds for the first time, the OLT single-deck will add the MAC Address of this ONU in the unauthorized ONU of this locality mac address table, report network management system then;
When network management system is confirmed to authorize this ONU, the MAC Address of this ONU added to authorize the sequence number mapping table, be handed down to the OLT single-deck;
Compare the sequence number mapping table of local preservation and the new sequence number mapping table that receives from webmaster one by one, so that whether discovery has the ONU that newly is authorized to and once authorize but the ONU of present cancellation mandate;
If under identical sequence number, the MAC Address hurdle is complete 0 under local this sequence number of sequence number mapping table of preserving, and the MAC Address under this sequence number is an effective address in the sequence number mapping table that receives, then represent have new ONU to be authorized to or be cancelled the ONU that authorizes authorized again, the OLT single-deck is written to this MAC Address in the local sequence number mapping table, and give an order and remove blockade, if the MAC Address of this ONU in the unauthorized table, also wants it never to delete in the authorization list to this ONU;
If in the local sequence number mapping table of OLT single-deck, under some sequence numbers to an efficient MAC address should be arranged, but in the sequence number mapping table of newly receiving, there is not this sequence number, be cancelled with regard to the mandate of representing this ONU, the OLT single-deck is with the MAC Address hurdle zero clearing under this sequence number in the local sequence number mapping table, and give an order and block the communication of this ONU, also this MAC Address will be inserted in the unauthorized chained list simultaneously, report webmaster.
Provided by the invention a kind of to the OLT of the automatic reporting MAC address of network management system single-deck, comprise: unauthorized table maintenance module, during system initialization, the log-on message of all ONU will directly mail to this module, and be responsible for the MAC Address of ONU is recorded in the unauthorized address link list, report webmaster by reporting module;
Receive and comparison module, after webmaster has issued the sequence number mapping table, this module will contrast local sequence number mapping table and the sequence number table that newly receives, and judge whether the ONU of new mandate and the ONU that cancellation is authorized then;
Sequence number mapping table maintenance module is notified this module with the comparative result of comparison module, if new mandate ONU is arranged, this module is stored in the MAC Address of this ONU in the local sequence number mapping table;
ONU registration management module notifies this module to allow this ONU registration;
Unauthorized table table look-up module also will be delivered to this MAC Address this module simultaneously, and this module is searched in the unauthorized address link list, if found occurrence, just notifies unauthorized table maintenance module that this MAC Address is deleted from chained list.
The MAC Address that the present invention has realized far-end ONU equipment reports automatically to network management system, does not need artificial key entry.
As previously mentioned, the MPCP agreement allows OLT to find have new ONU to join network, but the MPCP process just terminates at the MAC of OLT layer.Still how the MAC Address of ONU is delivered in the network management system at present without any standard or bibliographical information OLT.Defined the communication protocol between a cover OLT and the network management system among the present invention.The MAC Address of ONU can be reported network management system by this agreement OLT, and obtain the mandate of network management system.This agreement also network enabled administrative staff is manually imported the MAC Address of ONU, and authorizes.
From the angle of practicability, in a PON system, along separate routes than being at least 1: 32.Promptly OLT single-deck is minimum should connect 32 ONU.In a telecom carrier-class device, can hold 16 OLT single-decks with a machine frame, 32 ONU of each OLT single-deck support are example, a set of network administration systems will be managed 512 ONU.If the MAC Address of these ONU all need manually be imported, and will be very huge workload.Utilize the method among the present invention, in system initialization when beginning (for example), each piece OLT single-deck can will report network management system automatically by the ONU MAC Address that obtains in the MPCP process.Do not need webmaster personnel or engineering opening personnel to import by hand, saved a large amount of hand labours.
The present invention distinguishes ONU equipment of finding for the first time and the ONU equipment of having authorized, and avoids repeating to report.
We are divided three classes ONU, and a class is the ONU that OLT finds for the first time, still waits for the network management system mandate; Second class had been found that exactly, but do not obtain the network management system mandate always, perhaps once be authorized to, but because some reason (as arrearage etc.) and no longer continue the ONU that authorizes; The 3rd class ONU is exactly the mandate that has obtained network management system, ONU that can proper communication.We are referred to as the first kind and the second class ONU is unauthorized ONU, and the 3rd class ONU is for authorizing ONU.
In order to alleviate the traffic between OLT and the network management system, OLT only need report network management system with the MAC Address of unauthorized ONU.Then need not this report again for the MAC Address of authorizing ONU.Therefore the OLT single-deck must write down the ONU that has authorized, so that distinguish unauthorized ONU and authorized ONU.
The present invention forbids illegal or malicious user takies Internet resources.
Find automatically in the face of ONU in the past and the description of registration process in as can be seen, in case OLT finds to have ONU to attempt registration, will distribute one or more LLID to give this ONU automatically, then to these LLID allocation of network resources, as bandwidth etc.This procedural net guard system is uncontrollable.So just make the EPON network be very easy to be subjected to the attack of malicious user, can't prevent does not have authorized CU Internet resources yet.Though can use PPPOE or 802.1X authentication to prevent the above-described problem from occurring, also needing increases extra equipment such as authentication server, and has also brought certain processing expenditure.
Having proposed among the present invention a kind ofly to prevent that illegal or malicious user from taking the method for Internet resources, is effectively replenishing PPPOE or 802.1x authentication.In the method, for the ONU that does not obtain the network management system mandate, OLT will send the MPCP message of removing registration, makes that these ONU can't continue to use.In case after obtaining the webmaster mandate, OLT requires these ONU to register again again.
Description of drawings
Fig. 1 is the PON system schematic;
Fig. 2 is the hierarchical model of EPON;
Fig. 3 is multiple spot MAC controlled function figure;
Fig. 4 is ONU registration process figure;
Fig. 5 is the The general frame of OLT single-deck and network management system;
Fig. 6 is the network management protocol frame assumption diagram;
Fig. 7 is that OLT single-deck module is supported the flow chart that MAC Address reports automatically;
Fig. 8 is that network management system is supported the flow chart that the ONU MAC Address reports automatically;
Fig. 9 is a functional block diagram of handling sequence number mapping table and unauthorized ONU mac address table in the OLT single-deck.
Figure 10 (a) is ONU MAC Address network management interface figure when being system initialization;
Figure 10 (b) is OLT single-deck ONUMAC address network management interface figure when having reported unauthorized ONUMAC address;
Figure 10 (c) is webmaster staff ONU MAC Address network management interface figure when authorizing to ONU;
Figure 10 (d) is webmaster personnel ONU MAC Address network management interface figure when having cancelled the mandate of two ONU;
Embodiment
In the present invention, the OLT single-deck is collected the resulting ONU information of EPON acp chip, reports network management system by the agreement of formulating then.And the registration process to undelegated ONU is intervened.To describe in detail to the present invention below.
Fig. 5 is the The general frame of OLT single-deck and network management system.The EPON acp chip is carried out the MPCP function of IEEE802.3ah defined among the figure.And OLT single-deck module provides the interface between network management system and the EPON acp chip.EPON acp chip and OLT single-deck are carried out operations such as initialization and the alarm of equipment performance statistics.The ONU MAC Address that this programme proposed is obtained automatically and is reported the function of network management system mainly to carry out in OLT single-deck module.Network management system module and OLT single-deck module communicate, and by OLT single-deck module OLT single-deck and whole EPON system are managed and safeguard.
Communicate by self-defining frame format between OLT single-deck and the network management system, we are called the network management protocol frame.Frame format is seen Fig. 6.Table 1 is the meaning and the value of each parameter of frame head.
The value and the meaning of table 1 network management protocol frame head parameter
Parameter name |
Byte number |
The parameter meaning is described |
Slot number |
|
For carrier-class equipment, slot number is encoded from 1~N, N is the equipment of the OLT single-deck quantity that can insert at most of a machine frame for 1U, owing to have only a single-deck, so slot number is defined as 1 |
Frame length |
|
Frame length only is the length of payload part, does not comprise frame head length |
Frame type |
|
1: the expression frame is the command frame 2 that webmaster issues: the expression frame is the response frame of OLT single-deck or initiatively reports frame |
Frame number |
|
The sequence number of frame |
Command id |
|
The coding of the title of the order that frame is entrained, for example to report the order ID of frame automatically be that the order ID that 0x50f3 issues the frame of authorizing ONU sequence number mapping table is 0x50f1 to the ONU MAC Address ... |
The payload format that issues the command frame of authorizing ONU sequence number mapping table is for seeing Table 2; Unauthorized ONU MAC Address reports the form of frame payload to see Table 3 automatically:
Table 2 has been authorized the command frame payload format of ONU sequence number mapping table
Parameter name |
Scope |
Points for attention |
The ONU number of authorizing |
1-64 |
The entrained ONU that has authorized in this command frame |
(n) |
|
The number of MAC Address |
Sequence number 1 |
|
|
ONU MAC Address 1 |
The normal MAC address format |
Sequence number is the MAC Address of 1 ONU |
… |
… |
… |
Sequence number n |
|
|
ONU MAC Address n |
The normal MAC address format |
Sequence number is the MAC Address of the ONU of n |
Table 3 unauthorized ONU MAC Address reports the form of frame payload automatically
Parameter name |
Scope |
Points for attention |
Clauses and subclauses number (m) |
1-64 |
The number of the ONUMAC address of back |
ONU MAC Address 1 |
The normal MAC address format |
|
… |
… |
|
ONU MAC Address m |
The normal MAC address format |
|
The OLT single-deck is in order to collect the MAC of unauthorized ONU, the record MAC Address of having authorized ONU simultaneously, specific justice two forms.Table 2 record is called for short and has authorized ONU sequence number mapping table by the MAC Address of the ONU of network management system mandate and sequence number mapping table.Every ONU in this table can normally use the EPON network.
Table 4 has been authorized the sequence number mapping table (authorization list) of ONU
Authorized the ONU sequence number |
Authorized the ONU MAC Address |
1 |
MAC1 |
2 |
MAC2 |
... |
.. |
In order to reduce the expense that the OLT single-deck is communicated by letter with network management system, when between network management system and OLT single-deck, communicating by letter, all be to use the ONU sequence number of 2 bytes to indicate ONU, rather than use 6 byte MAC addresses.Network management system will be distributed a sequence number for each authorized ONU.Network management system is responsible for setting up the corresponding relation of sequence number and the MAC Address of the ONU that all have been authorized among the EPON, and uses to issue and authorize the protocol frame of ONU sequence number mapping table that this corresponding relation is informed the OLT single-deck.When having new ONU to be authorized to or to have ONU to be cancelled the mandate qualification, network management system all will issue a sequence number mapping table and give the OLT single-deck.The OLT single-deck is preserved this table in this locality.
The webmaster personnel can human configuration authorize ONU sequence number mapping table on network management interface, promptly key in the MAC Address of ONU, and distribute corresponding sequence number, are handed down to the OLT single-deck then.But it is so very dumb.In order to alleviate webmaster staff and network opening personnel's workload, this paper has proposed a scheme, supports the OLT single-deck not have the MAC Address of authorized ONU to report network management system automatically again new discovery.Therefore, this paper has defined the mac address table (at this paper abbreviate the unauthorized table as with the lower part) of a unauthorized ONU again in addition, sees Table 3.This table is set up by the OLT single-deck, and when this table had renewal, the OLT single-deck should table with active upload, and network management system also can be regular or be irregularly extracted to the OLT single-deck in needs.
Table 5 unauthorized ONU mac address table
Unauthorized ONU MAC Address |
MAC1 |
MAC2 |
... |
Fig. 7 supports the state transition diagram that the ONU MAC Address reports automatically for the OLT single-deck.After single-deck OLT module detects the ONU registration, (will receive that the ONU that the EPON acp chip reports finds message), will carry out following operation:
1. at first search the sequence number mapping table of having authorized ONU, check whether the MAC Address of this ONU has occurrence in table.If occurrence is arranged, show that then this ONU is authorized ONU, this ONU can normally use Internet resources.In system initialization (as beginning time), the sequence number mapping table is generally sky (do not get rid of the situation that manually in advance the MAC Address of all ONU in the system is input to the sequence number mapping table, but needn't so), so the process of searching the sequence number mapping table can be omitted.
If 2. the sequence number mapping table is empty or does not find occurrence in mapping table, represent that then this ONU does not obtain the network management system mandate.OLT single-deck module will continue to search unauthorized ONU mac address table.If in unauthorized ONUMAC address table, found occurrence, represent that this ONU is the ONU that belongs to second class, once found before promptly, but never obtained network management system mandate (or once be authorized to, but cancelled mandate now).The single-deck module will continue to stop this ONU registration, but not revise unauthorized ONU mac address table.
If 3. unauthorized ONU mac address table is for empty (as system initialization time) or do not find clauses and subclauses with the MAC Address coupling of the ONU that attempts to register in unauthorized ONU mac address table, show that this ONU is the ONU that finds for the first time.The OLT single-deck will stop the registration of this ONU so, forbids that this ONU uses Internet resources.And in the unauthorized ONU of this locality mac address table, add the MAC Address of this ONU, report network management system then.
The sequence number and the MAC Address mapping table hurdle (referring to Figure 10) that 4. unauthorized ONU mac address table hurdle are arranged on network management interface and authorized ONU.After webmaster receives the unauthorized ONU mac address table that the OLT single-deck reports, show the MAC Address of all unauthorized ONU in will the unauthorized ONU table hurdle on network management interface.Comprise newfound unauthorized ONU, and once be authorized to, but cancelled the ONU that authorizes now.Webmaster personnel or engineering opening personnel's task determines whether these ONU are authorized exactly.If some ONU is authorized, only need this ONU is never transferred in the sequence number mapping table hurdle and gets final product in the authorization list hurdle.And do not need the artificial MAC Address of in the sequence number mapping table, keying in ONU.When webmaster revised authorize ONU sequence number mapping table after, new sequence number mapping table will be handed down to OLT single-deck software.In beginning just, there is not mapping table in the system, all ONU are undelegated.All ONU will carry out registration and the discovery procedure described in this paper the 2nd joint in the system, so the OLT single-deck can obtain the MAC Address of all ONU, and report network management system.Webmaster personnel or engineering opening personnel can see the MAC Address of all ONU in the system in unauthorized table hurdle, and these MAC Address are added in the mapping table, and are handed down to the OLT single-deck, and system just can open.Whole process does not need webmaster personnel or engineering opening personnel to import the MAC Address of any ONU by hand.Handling process about webmaster is seen Fig. 8.
After the OLT single-deck receives the ONU of the mandate sequence number mapping table that network management system issues, will carry out following operation:
1. local sequence number mapping table of preserving of comparison software and the new sequence number mapping table that receives from webmaster one by one.So that whether discovery has the ONU that newly is authorized to and once authorizes but the ONU of cancellation mandate now.Because network management system issues when having authorized ONU sequence number mapping table at every turn, all MAC Address and the sequence number of all ONU that has authorized can be issued one time again, and the ONU that does not authorize or no longer continue to authorize just no longer issues.For example:
Issue for the first time:
The sequence number MAC Address
1 ONU1 MAC
2 ONU2 MAC
3 ONU3 MAC
ONU1, ONU2 and ONU3 have been authorized in expression now.
Issue for the second time:
The sequence number MAC Address
1 ONU1 MAC
3 ONU3 MAC
4 ONU4MAC
ONU4 has newly been authorized in expression again except ONU1 and ONU3, and ONU2 no longer continues to authorize.
If 2. under identical sequence number, the MAC Address hurdle is complete 0 under local this sequence number of sequence number mapping table of preserving, and receive the sequence number mapping table in MAC Address under this sequence number be effective address, then expression has new ONU to be authorized to or has been cancelled the ONU authorized again (the as above ONU4 in the example) that authorizes.Then the OLT single-deck is written to this MAC Address in the local sequence number mapping table.And software is given an order and is removed blockade to this ONU.If the MAC Address of this ONU in not authorized table, also wants it never to delete in the authorization list.
If 3. in the local sequence number mapping table of OLT single-deck, to an efficient MAC address should be arranged, still in the sequence number mapping table of newly receiving, do not have this sequence number under some sequence numbers, be cancelled (the as above ONU2 in the example) with regard to the mandate of representing this ONU.The OLT single-deck is with the MAC Address hurdle zero clearing under this sequence number in the local sequence number mapping table, and the communication of this ONU of blockade that gives an order.Also this MAC Address to be inserted in the unauthorized chained list simultaneously, report webmaster.
If 4. under identical sequence number, the MAC Address identical (for example going up ONU1 and ONU3 in the example) that writes down under this sequence number in MAC Address that is write down and the sequence number mapping table of newly receiving in the local sequence number mapping table of preserving of OLT single-deck, then the OLT single-deck is not done any operation.
To be example with the EPON of company of the Fiberhome telecommunication product network management system that reality is used below, introduce the method that network management system is obtained the MAC Address of far-end ONU equipment among the EPON automatically.
The data structure of main definition is exactly to have authorized ONU sequence number mapping table and unauthorized ONU mac address table on the OLT single-deck.
1. authorized the definition of ONU sequence number mapping table data structure
The number of considering the ONU that an OLT can support is limited, mostly is 64 at present most.That is to say that under the situation of full configuration the number of following the ONU that has authorized that can connect of an OLT single-deck can be above 64.In order to simplify the operation, we are defined as a two-dimensional array structure with the sequence number mapping table of authorizing ONU on the OLT single-deck, and array name is called mapTable:
unsigned char mapTable[N][8];
The sequence number of ONU under OLT single-deck of the first dimension expression of this array; The MAC Address (6 byte MAC addresses add the reservation of 2 bytes) of the ONU that 8 byte records of second dimension are corresponding with sequence number.Promptly this array has N capable, and capable number is exactly the sequence number of ONU.And content of each row is exactly the MAC Address of the ONU corresponding with this sequence number.If some sequence number i do not distribute, perhaps sequence number is that the ONU of i no longer is authorized to, and then the content that i is capable be complete zero.
In system initialization,, also there is not ONU to be authorized in the expression system with the whole zero clearings of all elements of this array.When the OLT single-deck receives the ONU of the mandate sequence number mapping table that network management system issues,, the MAC Address of correspondence is stored in the mapTable array units corresponding according to the ONU sequence number.If some sequence numbers are not distributed to ONU or the pairing ONU of some sequence numbers has been cancelled mandate, clauses and subclauses corresponding in the array are 0.
2. the data structure definition of unauthorized ONU mac address table
Because undelegated ONU mac address table will often add and deletion action.Promptly when the OLT single-deck has been found a new unauthorized ONU, its MAC Address be joined in the unauthorized ONU mac address table, report network management system then immediately, perhaps wait for the inquiry of network management system.When ONU was authorized to, the OLT single-deck also will never be deleted the MAC Address of this ONU in the authorization list.Therefore, we have defined the mac address table that a list structure is represented unauthorized ONU, insert and deletion action with convenient.This chained list name is called unAuthenMacT, is defined as follows:
typedef struct unAuthenMacT
{
Unsigned char unAuthenMac[8]; /
*Unauthorized ONU address
*/
Struct unAuthenMacTable
*Next; /
*Point to the pointer of next node
*/
}UNAUTHENMACTABLE;
UNAUTHENMACTABLE
*unAuMacTableH;
Each node of this chained list all is a structure, has comprised the MAC Address of undelegated ONU and the pointer that points to next node.This chained list has a head pointer:
*UnAuMacTableH.When having a new node to insert, all be inserted into linked list head.
3. the definition of functional block
Fig. 9 is definition and a graph of a relation of handling the functional block of sequence number mapping table and unauthorized ONU mac address table in the OLT single-deck.
Whole functional can be divided into two major parts: sequence number mapping table function blocks and unauthorized list processing function piece.
Sequence number mapping table function blocks comprises: receive ﹠amp; Comparison module, sequence number mapping table maintenance module, table look-up module, and ONU registration management module.
Unauthorized list processing function piece comprises: table look-up module and unauthorized ONU mac address table maintenance module.
Two public reporting module of functional block.
Reception in the sequence number mapping table function blocks and alternative module of comparison module control.When receiving and comparison module never receives the sequence number mapping table that webmaster issues (as system initialization time), the log-on message of all ONU will directly mail to unauthorized table maintenance module.The latter is responsible for the MAC Address of ONU is recorded in the unAuthenMacT chained list.And report webmaster by reporting module.
After webmaster has issued the sequence number mapping table, reception and comparison module will contrast local mapTable and the sequence number table that newly receives, and judge whether the ONU of new mandate and the ONU that cancellation is authorized then.And comparative result is informed sequence number mapping table maintenance module.If new mandate ONU is arranged, sequence number mapping table maintenance module is stored in the MAC Address of this ONU among the local mapTable, and notice ONU registration management module allows this ONU registration.Also this MAC Address will be delivered to unauthorized table table look-up module simultaneously, the latter will search in the unAuthenMacT chained list, if found occurrence, just notify unauthorized table maintenance module that this MAC Address is deleted from chained list.If there is ONU to be cancelled mandate, then sequence number mapping table maintenance module will be with the MAC Address zero clearing of respective entries in the mapTable array.And notice ONU registration management module stops this ONU to continue to use Internet resources.Also to notify unauthorized table maintenance module that this MAC Address is added in the unAuthenMacT chained list.
After receiving the sequence number mapping table that webmaster issues, receive and comparison module can be provided with a sign.After this, if the ONU registration is arranged again, log-on message no longer directly sends to unauthorized table maintenance module, but sends to sequence number mapping table table look-up module.This module is responsible for checking whether the ONU of attempt registration is the ONU that has authorized, and promptly in the mapTable array whether occurrence is arranged.If have, then notify ONU registration management module, allow this ONU renewal of registration.If there is not occurrence, then notify ONU registration management module to stop the ONU registration, also MAC Address to be passed to unauthorized table table look-up module simultaneously, search whether in the unauthorized table, if the ONU that never write down in the past, then unauthorized table maintenance module also will record the MAC Address of this ONU in the unAuthenMacT chained list.
Figure 10 is the EPON network management interface of actual use.As previously mentioned, unauthorized ONU MAC Address hurdle and authorized ONU sequence number mapping table hurdle is arranged on the network management interface.In the sequence number mapping table, except ONU sequence number and corresponding MAC Address, also increased a whether authorization options.
On the interface, also be provided with respectively and obtain key and issue key.Whether webmaster personnel or engineering opening personnel can be manually key in the MAC Address of ONU in the MAC Address hurdle, and beat in the authorization options and to collude, and expression authorizes for this ONU, click then and issue key, and the mac address table of mandate is handed down to the OLT single-deck.Also can give an order (key is obtained in click), require the OLT single-deck to report MAC Address and the sequence number mapping table of undelegated ONU.
When system initialization, unauthorized table hurdle and the authorization list hurdle all be empty, see Figure 10 (a).After key was obtained in webmaster personnel click, the OLT single-deck all reported webmaster with the address of the ONU that all are found in the system, and shows in unauthorized table hurdle, sees Figure 10 (b).If the webmaster personnel confirm to give all ONU to authorize, then all ONU are transferred to the authorization list hurdle, and click and issue key and be handed down to the OLT single-deck, see Figure 10 (c).Figure 10 (d) has been for the webmaster personnel have cancelled the mandate that sequence number is 10 and 11 ONU, be handed down to the OLT single-deck after, click again and obtain key, the MAC Address of these two ONU can show in the unauthorized table again.
The scheme that provides among the present invention makes the network management system of EPON can obtain the MAC Address of ONU automatically from the OLT single-deck, and be shown to the webmaster personnel on network management interface.Thereby the complexity of easy webmaster personnel or engineering opening personnel operation makes more hommization of network management interface.Has very significantly practical value when opening multi-section ONU especially at the same time.Simultaneously, utilizing the method ONU can also be divided into authorizes and unauthorized two big classes, forbid unauthorized ONU registration, therefore can be used for preventing that illegal (unauthorized) user from entering into the EPON network, make the disabled user be stopped among the EPON network ODN, not entering the bandwidth-intensive exchange of EPON or the exchange of the first line of a couplet, alleviate the PPPOE load of server, is that the useful of authentications such as IEEE802.1X and PPPOE replenished.