CN1819548A

CN1819548A - Port re-enabling by monitoring link status

Info

Publication number: CN1819548A
Application number: CNA2005101171319A
Authority: CN
Inventors: 蒂莫西·希克斯; 菲尔·加安格; 杰格吉特·巴蒂亚
Original assignee: Alcatel NV
Current assignee: Alcatel CIT SA; Alcatel Lucent NV
Priority date: 2004-11-01
Filing date: 2005-11-01
Publication date: 2006-08-16
Anticipated expiration: 2025-11-01
Also published as: CN100550829C

Abstract

The present invention features embodiments of automatically re-enabling a disabled port or physical media interface by monitoring the link status of the physical layer interface. Any change in the link status automatically re-enables a previously disabled port, thereby permitting data coming in through the previously disabled port to be admitted into the switch and automatically forwarded or routed/switched, without the network administrator manually issuing any commands to manually re-enable the port.

Description

By the monitoring link status port re-enabling

The cross reference of related application

It is No.60/624 that the application requires the sequence number of on November 1st, 2004 application, 416, name is called the priority of the U.S. Provisional Patent Application of " Port Re-enabling by Monitoring Link Status ", with it by with reference to introducing the application.

Technical field

The present invention relates generally to for automatically enabling exchange and/or the media interface of routing device or the technology of port. Especially, the present invention relates to for provide in exchange and/or routing device inside the Link State monitoring system and with such Link State automatically enable one since comprise safety in violation of rules and regulations various violations and the previous system and method for the disabled or port that gets clogged.

Background technology

Now, can obtain many switches that the ability of forbidding or obstruction physical port is provided to the network manager. Forbidding or close port mean the all-network communication that is blocked on those ports usually. Do like this to prevent network because because the safety of coming in from those ports or the caused unnecessary data service of policy violation and service disruption. These can comprise in violation of rules and regulations: virus attack, excessive ping request, have not related with a particular port subnet Internet Protocol (IP) address excessive import grouping into, be assigned to address resolution protocol (ARP) data cell of another exchange or routing device and above the protocol Data Unit (PDU) of limit bandwidth or other network thresholding.

Yet these disabled ports are not permanent disabled. If in violation of rules and regulations or the standard of stipulating these interface disablings be repaired or no longer exist, then enable these ports and use it for Web portal and export business.

Yet in order to enable these disabled ports, the network manager must identify each particular exchange/routing device of the port-mark number of each disabled port and these ports. In addition, the keeper must manually send Management Information Base and gives exchange/routing device in order to enable these ports. This process bothers very much, labour intensity is large, and expends time in, particularly when the keeper is a catenet of management.

Thereby therefore need a kind of avoiding manually to enable the mechanism that port also reduces the heavy burdens for the keeper. The invention solves this needs.

Summary of the invention

Feature of the present invention is the embodiment that automatically reactivates a disabled port or physical medium interface by the Link State of monitors physical layer interface. Any variation in the Link State all reactivates a previous disabled port automatically, enter switch and automatically transmit or route/exchange thereby allow to be accepted by the data that previous disabled port is come in, manually reactivate this port and needn't the network manager manually send any order.

In the first embodiment, the invention provides a forwarding unit, it comprises one or more physical layer interfaces, one or more data link layer controller and an exchange/routing module. These physical layer interfaces receive the data from communication network. The data link layer controller comprises one or more media access controllers (MAC) port, port designator and at least one mac processor. The data that the data link layer controller abandoned or admitted the Link State of determining based on physical layer interface according to the numerical value that is included in the port designator. On the other hand, exchange/routing module is suitable for transmitting these data cells of being transmitted by the data link layer controller.

In another embodiment, the invention provides a kind of method that one in the forwarding unit port that before got clogged is automatically terminated obstruction. Port and the indication port blocked designator whether port get clogged that gets clogged that gets clogged is associated. The method comprise the steps: via with a physical layer interface receiving data units of the port association that gets clogged; The Link State of monitors physical layer interface; When in monitored Link State, changing, automatically reset the port blocked designator; And when port blocked designator indication unblocking, admit and import data cell into. This method can also comprise following additional step: be received in one or more network strategies that network internal is carried out; The port blocked designator is set; And when blocking, port blocked designator indication abandons data cell.

In another embodiment, the invention provides a kind of forwarding unit, comprising: one or more physical layer interfaces are suitable for receiving the one or more data cells from communication network; One or more data link layer controllers; And the forwarding module that operationally is coupled to one or more data link layer controllers. Each data link layer controller comprises one or more media access controllers (MAC) port, and each MAC port is suitable for operationally being coupled to one or more physical layer interfaces; One or more port designators, wherein each port designator is associated with one of MAC port, and each port designator is suitable for indicating that related MAC port gets clogged or unblocking; And at least one mac processor, operationally be coupled to one or more MAC port, be suitable for reading one or more port designators and be suitable for selecting to abandon or admit the one or more data cells that received by one or more physical layer interfaces based on these one or more port designators. Forwarding module is suitable for receiving one or more data cells of being admitted by one or more data link layer controllers, and is suitable for transmitting the one or more data cells that receive from the data link layer controller.

Description of drawings

In the accompanying drawings with example but the mode of not limiting to shows the present invention, wherein:

Fig. 1 is the senior state transition diagram according to a port of the embodiment of the invention;

Fig. 2 illustrates according to a unblocking port of the embodiment of the invention and the high level block diagram of two ports that get clogged;

Fig. 3 is the high level schematic diagram according to a forwarding unit of the embodiment of the invention;

Fig. 4 is the high level flow chart that illustrates according to the operation of the port that gets clogged of the embodiment of the invention;

Fig. 5 is the high level flow chart that illustrates according to the operation when link-state change occurs of the embodiment of the invention;

Fig. 6 is the block diagram according to an exchange/routing device of the embodiment of the invention, shows this equipment and how to process the variety of protocol data cell;

Fig. 7 is the chart that illustrates according to the numerical value of the sign of the embodiment of the invention or designator, and wherein whether particular port of this sign or designator indication should get clogged and illustrate when Link State to change how to revise such numerical value when occuring;

Fig. 8 is that according to the embodiment of the invention is suitable for carrying out the Link State monitoring and port reactivates the multilayer exchange/route of operation or the functional block diagram of forwarding unit;

Fig. 9 is the high level schematic diagram of layer 1 and layer 2 processor or module according to the preferred embodiment of the invention; And

Figure 10 is the interactional high level, functional block diagram that illustrates according to modules and the parts of the embodiment of the invention.

The specific embodiment

It is not to understand the present invention concerning the principle of the invention limits by example that the following detailed description can realize and use mode of the present invention with clearly a kind of so that those skilled in the art, and described a plurality of embodiment of the present invention, modification, distortion, possibility and purposes, comprised the pattern that is considered at present realize the best of the present invention.

In order to understand better accompanying drawing, similarly numbered Reference numeral in different accompanying drawings and the description and be used for referring in the following description identical or similar structure, action, operation or process step. In addition, the Reference numerals in 100 series, for example 102 and 104, in Fig. 1, introduce at first, the Reference numeral of 200 series, for example 222 and 224, in Fig. 2, introduce at first, and so on. Therefore, the Reference numeral of 900 series, for example 920 and 940, in Fig. 9, introduce at first.

Generally speaking, one embodiment of the present of invention comprise whether a definite particular port exists certain port forbidding condition. If any such condition exists, then port is forbidden by automatic or manual, thereby preventing from further admitting enters switching equipment and outwards transmit or the transmitting and receiving data unit from exchange or forwarding unit. If the Link State of this particular port is changed into link-down (link down) from link operation (link up), then exist as long as no the forbidding condition, this port is just enabled automatically, thereby can carry out the transmission of receiving data units. Thereby, the reactivating of the handover trigger port of Link State, and network manager that needn't be other gets involved. Thereby the network manager do not need to determine which port be block or which equipment comprise the port that gets clogged, even do not need to give an order so that the previous disabled port of reactivation.

Fig. 1 is the senior state figure that illustrates according to each state of a port of the embodiment of the invention. In original state, usually in system between the starting period, port is activated or is disengaged and blocks 102. If but any port block condition 104 exists, then port is disabled or block 106. Whenever existing a Link State to change or switching 108---especially run to link-down or when from the link-down to the link, moving, the port one 06 that gets clogged is become unblocking or again is activated 110 from link. Whenever any port block condition occurs at 112 o'clock, the port one 10 that then will not block become get clogged or forbidding 106.

Fig. 2 is the high level block diagram according to a preferred duplex port of the embodiment of the invention. In a preferred embodiment, duplex port have two parts one by one receiving unit be called as the ingress port parts and spread out of part and be called as port of export mouthpiece. In the preferred embodiment, a unblocking port 200 has the inlet part that is in the unblocking state, be referred to herein as unblocking inlet part 202 and be in the spout member of unblocking situation, be referred to herein as unblocking spout member 204.

On the other hand, first port 210 that gets clogged has to be in and gets clogged or the inlet part of disabled status, is referred to herein as the inlet part 212 that gets clogged. This embodiment operates so that but the protocol Data Unit (PDU) that is sent to the ingress port parts that get clogged is received further is not accepted by physical interface layer or layer one (PHY) enters in the switching equipment. Level discussed herein refers to seven levels of open system interconnection (OSI) (OSI) reference model. If a port of export mouthpiece 214 gets clogged, it can not be used to transmit and spread out of PDU. But if it is disengaged obstruction or enables, then it can be used to further transmit spread out of PDU.

In a preferred embodiment, second port 220 that gets clogged has the inlet part of getting clogged 222 and removes and block spout member 224. In another embodiment, first port 210 that gets clogged has inlet part 212 and the spout member 214 that is configured to blocking data. In another embodiment, port is a non-duplex port, and therefore, one receives or incoming port is blocked fully or fully unblocking. It also is feasible also having another embodiment of the present invention, and wherein the ingress port parts are disengaged and block simultaneously that port of export mouthpiece gets clogged.

Fig. 3 is the high level schematic diagram according to the forwarding unit with the port that gets clogged 300 of the embodiment of the invention. In the preferred embodiment, the port that gets clogged only makes its ingress port parts get clogged---and the spout member unblocking allows to spread out of business thus. Even the ingress port parts get clogged, also receive and import into or inbound data unit 302 via physical layer interface/layer one (PHY) 330.

Forwarding unit 300 of the present invention comprises any switch, router or anyly preferably operate the forwarding unit of (comprising exchange in the layer 2 and the route in the layer 3) in a plurality of layer of osi model. In addition, each exchange of the present invention or forwarding unit 300 preferably comprise a plurality of physical ports 330, and these physical ports preferably move with dual-mode.

In certain embodiments, phy interface 330 is embodied in the IC chip that merges one or more network ports, special IC (ASIC) for example, and each port operationally is coupled to a network link. Preferably, phy interface 330 is suitable for monitoring related Link State, and when link is non-running the informing network keeper. For the PHY chip, if PHY 330 is closed, then physical link state usually can not be monitored. Therefore, in a preferred embodiment of the invention, according to embodiments of the invention, even port gets clogged, PHY layer 330 is not disabled or close. On the contrary, preferably, the entrance Network on media access controller (MAC)/2 grade of 340 place's port blocked of layer, and allow simultaneously physical link PHY 330 maintenance activities, come monitoring link status to enable embodiments of the invention. Therefore, import data cell 302 into and be dropped at layer 2 or MAC layer 340 place, and further its further admittance is not entered forwarding unit 300 thus.

In a preferred embodiment of the invention, even inlet part is in the state of getting clogged, outgoi8ng data unit 304 also may still be transmitted or send from forwarding unit via a port with the spout member that is in the unblocking state. Outgoi8ng data unit 304 uses the unblocking spout member of port to send out PHY 330. Therefore, this preferred embodiment of the present invention can be received by the ingress port parts at PHY layer place PDU or data cell, but can't help this forwarding unit transmits, and the port of export mouthpiece of same port still can be utilized to transmit the PDU that spreads out of that may receive from other port (not shown).

Forwarding unit 300 of the present invention preferably also comprises batch processing instruction or program module 310, if it is carried out by processor (preferably, computer processor), then Internet 3 parts 350, MAC layer 340 and PHY layer 330 is controlled. For example, program module 310 control MAC layers 306 abandon and import data cell into, and the Link State of monitoring 308PHY layer 330. In one embodiment, program module is with the form specific implementation of software.

Fig. 4 illustrates forbidding or blocks the high level flow chart of the logical operation of a port. In the first operation 450, identification port block condition group. These congestion condition are relevant with network utilisation that come into force and effective, and can depend on other activity of data service threshold value, virus attack, service-denial, broadcast storm, safety problem and possibility negative influence network.

In one embodiment, transmitting or switching equipment 300 interior predefine congestion condition. But, can make amendment to these predefine conditions. Additional congestion condition also can be by the network manager, and preferably by a device configuration management device, manual definition also is incorporated in the equipment.

After identification port block condition group (step 450), judge the entry data unit or enter port service whether satisfied one or more congestion condition, and import PDU into and whether should be dropped (checking 452). If PDU will be accepted and enter into switching equipment or be forwarded from switching equipment---mean that they do not meet congestion condition, then switching equipment is correspondingly processed these PDU or data cell, if and be fit to thus, then from that equipment they are transmitted (step 454).

To get clogged if import PDU into, then by using a Boolean sign, a register or any similar numerical indicators forbidding ingress port parts (step 456). Entrance blocks sign and is set to the numerical value that this port of indication should get clogged, and for example is worth "True" or " 1 ". Block sign (step 456) in case be provided with entrance, then block and import PDU into, mean that the PDU that receives via the exchanged equipment of disabled ingress port parts does not transmit from this switching equipment---they are abandoned (step 458). Therefore in a preferred embodiment, port of export mouthpiece is not disabled and can use it for and spread out of PDU, and therefore, is unwanted for the sign of port of export mouthpiece. Sign, set of landmarks or other numerical indicators also can be used for single worker (non-duplex) port.

Fig. 5 has illustrated a high level flow chart, show a Link State or Link State change how to be used to automatically enable one disabled/port gets clogged. Use can obtain the link-state information of each port according to port interface of the layer 1 (PHY) of osi model and by interrupting. Preferably, also link-state information is monitored continuously. Fig. 5 utilizes the port explanation that preferably gets clogged, and namely the ingress port parts get clogged and port of export mouthpiece is disengaged obstruction.

In the first operation (step 530), the Link State/situation of detection port. (check 532), so again monitoring link status (step 530) if do not change in the Link State. If but the Link State of that port (run to link-down or move from link) changes, determine so ingress port parts whether disabled (check 534) from the link-down to the link. This can be determined by the numerical value of checking entrance obstruction sign or any similar designator. Preferably, monitor continuously the Link State of each port.

If the ingress port parts obtain a for example "True" value disabled (check 534) by blocking at entrance in the sign, then by being blocked sign, entrance is re-set as, for example, " vacation " automatically reactivate that ingress port parts (step 536). This operation means, via those ingress port parts, no longer block now and import PDU into, and therefore switching equipment should and process to be used for further the forwarding with its admittance.

Forwarding unit according to prior art, the variation of Link State also initiates to relate to the changed condition process (step 538) of one or more functions and responsibility, its function and responsibility for example comprise: send first message to the IP address, state that the link of that particular port is closed and sends a trap (trap) to a simple network protocol manager.

Fig. 6 is illustrated in block diagram how to process various PDU in the forwarding unit 600 of the present invention. In the first example, the first inbound PDU 602 is received via PHY by a duplex port, and duplex port has entrance 620B and outlet 620A port part. Ingress port parts 620B and port of export mouthpiece 620A are disengaged and block/be activated. Because ingress port parts 620B is disengaged obstruction, so the port of export mouthpiece 620A that then the first entrance PDU 602 that imports into is processed by same port or other port by equipment 600 transfers PDU 604.

In another example, duplex port has disabled/get clogged ingress port parts 624B and one and enables/unblocking port of export mouthpiece 624A. Get clogged the second inbound PDU 606 of ingress port parts 624B of use is received by the Physical layer of this port. But switch 600 abandons this second inbound PDU 608, means that PDU 608 no longer is accepted to enter switch and do not transmit from switch 600.

In another example, the 3rd PDU 628 uses it to be activated the reception of one of port part by equipment. It can be via unblocking ingress port parts 620B or any other unblocking port part (not shown) and is received. Can or by any being activated/unblocking port of export mouthpiece the 3rd PDU 628 be transmitted 634 via unblocking port of export mouthpiece 620A, 624A goes out outside the switch 600. But, if port of export mouthpiece gets clogged or is disabled---not shown, then can not transmit with this port of export mouthpiece that gets clogged and spread out of PDU.

Fig. 7 has illustrated two example port blocked state tables 702 in the embodiment of the invention, 708 and indicate 704,710 exemplary value. In this example, only have the ingress port parts of duplex port #999 disabled---port of export mouthpiece is activated.

The some application that comprise strategy (comprising security strategy), control network can be in forwarding unit 600,300 interior realizations. A web portal limit value criterion for example can be identified as using or tactful ID (sign) " 0001 ". In one embodiment of the invention, use a strategy or use ID at switch 600 each application of interior identification or strategies, each strategy/application has its oneself sign, and indication comprises whether a particular port of its entrance, outlet or two port parts should be disabled. Although not shown, also exist indication to block the mode which port mark relates to or represent.

According to embodiments of the invention, each port in the switch 600 can have its oneself mark, indicating that particular port is be activated or disabled, if and be fit to, just whether entrance, outlet or two port parts all get clogged or unblocking---for example, port #999: entrance is disabled/gets clogged, outlet is activated/unblocking; And port #888: entrance is disabled/blocks, disabled/as to block. In a preferred embodiment, this port block sign is the one or more registers in the layer 2. Those of ordinary skills should understand: have many modes to indicate such numerical value, for example by bit manipulation, by "True" and " vacation " value and by " 0 " or " 1 " value. For example via different data or object construction and register array, can use the alternate manner of realizing this characteristic.

It is possible can having at any given time different value at the strategy of switch 600 interior realizations. According to some condition and in the different time, each strategy or application can get clogged its request and change into unblocking from port, and vice versa. First form 702 indication strategy " 001 " request port #999 get clogged---indicate by "True". On the other hand, strategy " 0002 " and " 0003 " request port #999 unblocking---indicate by " vacation ". As long as exist a request port to get clogged/disabled strategy, then the embodiment of the invention is preferably all application and the tactful ingress port parts that block or forbid that port. This be by port block sign (port is #999 in this case) is set to "True" finishes 704. This means that also the PDU that comes in by these ingress port parts should be dropped and not transmit from switching equipment.

Usually monitor continuously the Link State of each port, thereby the variation of Link State particularly runs to the variation of closing from link, triggers the change of value of statistical indicant, namely sign be reset 710 so that previous disabled port be activated now. All application or the strategy held for the mark of that particular port also are reset as shown in exemplary table 708. One embodiment of the present of invention with in the Link State this change automatically reactivate one previous disabled/port that gets clogged, and therefore, can process now the incoming call PDU that receives so that it can be transmitted by forwarding unit.

Below, the exemplary pseudo-code of the higher-order logic of presentation graphs 7 has been shown in Table I.

Table I

// by a link monitoring module or function, a sign can be set
	// aPort-＞blockFlag=TRUE is set;
	// aPort-＞blockFlag=TRUE is set;
	// this module monitors Link State, it can also can be drives interrupts via Infinite Cyclic both

	void aPortLinkStateMonitor(void)
{	void aPortLinkStateMonitor(void)
{	// initialize
aPort-＞blockFlag＝FALSE；	// initialize
aPort-＞blockFlag＝FALSE；	aPort-＞aPhyLinkStatus＝LINK_DOWN；
aPort-＞aLocalLinkStatus＝LINK_DOWN；	aPort-＞aPhyLinkStatus＝LINK_DOWN；
aPort-＞aLocalLinkStatus＝LINK_DOWN；
// other suitable characteristic or operation
// other suitable characteristic or operation

while(1){
while(1){
// other suitable characteristic or operation
// other suitable characteristic or operation
getLinkStatus(aPort)；
getLinkStatus(aPort)；
// other suitable characteristic or operation
// other suitable characteristic or operation
if(aPort-＞aPhyLinkStatus＝＝LINK_DOWN){
if(aPort-＞aPhyLinkStatus＝＝LINK_DOWN){	if(aPort-＞aLocalLinkStatus＝＝LINK_UP){
// or by unpluging port or restarting a remote port	if(aPort-＞aLocalLinkStatus＝＝LINK_UP){
// or by unpluging port or restarting a remote port	// that aPort is become is inactive
aPort-＞aLocalLinkStatus＝LINK_DOWN	// that aPort is become is inactive
aPort-＞aLocalLinkStatus＝LINK_DOWN	if(aPort-＞blockFlag＝＝TRUE){
// mark will be released-be re-set as FALSE	if(aPort-＞blockFlag＝＝TRUE){
// mark will be released-be re-set as FALSE	aPort-＞blockFlag＝FALSE；
…	aPort-＞blockFlag＝FALSE；
…	}
}	}
}	}


	if(aPort-＞aPhyLinkStatus＝＝LINK_UP){
if(aPort-＞aLocalLinkStatus＝＝LINK_DOWN){	if(aPort-＞aPhyLinkStatus＝＝LINK_UP){
if(aPort-＞aLocalLinkStatus＝＝LINK_DOWN){	//aPort becomes movable
// insert port or recover remote port	//aPort becomes movable
// insert port or recover remote port
// enable switching port
// enable switching port	setSwitchingPort(aPort，RX，ENABLE)；
…	setSwitchingPort(aPort，RX，ENABLE)；
…	}
}	}
}
}//_end_of_while
}//_end_of_while
}//_end_of_aPortLinkStateMonitor
}//_end_of_aPortLinkStateMonitor

	// this is a routine, it arranges/resets sign (the mark port is activated or is disabled)-port manager
int aPortBlockIngressFlow(int appid，int portid，bool block)

{
{	// record attempt the getting clogged application id of port

	// acquisition port organization
aPort＝getAPortStructure(portid)；	// acquisition port organization
aPort＝getAPortStructure(portid)；
// this is effective for active port
// this is effective for active port	if(aPort-＞aLocalLinkStatus＝＝LINK_UP){
If sign is held in // some application, do not reset this sign	if(aPort-＞aLocalLinkStatus＝＝LINK_UP){
	// because to allow a plurality of application hold this sign be possible

	if(entry(appid)exists){
// it is called	if(entry(appid)exists){
// it is called	return OK；
}	return OK；
}
addEntry(appid)；
addEntry(appid)；
if(block＝＝TRUE){
if(block＝＝TRUE){

// forbidding inlet streams
// forbidding inlet streams	setSwitchingPort(aPort，RX，DISABLE)；
	setSwitchingPort(aPort，RX，DISABLE)；
	// will not receive
/ / Logically, the link will be closed. Including the management modules, including making Applications and clear	// will not receive
	reportLinkStatus(aPort，LINK_DOWN)；
	reportLinkStatus(aPort，LINK_DOWN)；
	aPort-＞blockFlag＝TRUE；
}	aPort-＞blockFlag＝TRUE；
}	else if(checkEntry(appid)＝＝TRUE){
removeEntry(appid)；	else if(checkEntry(appid)＝＝TRUE){
removeEntry(appid)；	aPort-＞blockFlag＝FALSE；
}	aPort-＞blockFlag＝FALSE；
}	}
else{	}
else{	/ / As long as the status of the link is closed (/ / If the link status is off)
/ / Routine is bypassed (/ / Routine is bypassed)
/ / Routine is bypassed (/ / Routine is bypassed)	return ERROR；
}	return ERROR；

return OK；
return OK；	}

Figure 8 is a suitable for carrying out the invention the port link status monitoring and management of the multi-layer switching Functional block diagram of machine 800. An embodiment of the switch 800 includes one or more OSI Layer 1 And the layer 2 processors (L1 & 2 processor) 804, one or more switching modules 806 and a management Module 820, which cooperate in order to all of the modules each physical port 802 through the receiving opening Export data services and transmitting data traffic. For the purpose of this embodiment, from another network node The data flow switch point 800 is called the entry on this data unit or protocol data unit (PDU). In contrast, internally propagated to a physical port 802 for transmission to another network node Point unblocking data is called exporting data or outgoing PDU or data elements. ...

Management module 820 typically includes a network used to maintain and implement business strategies strategy tube Processor 824, a configuration manager 822, a link monitor 862 and a port management 828. Preferably, the policy manager 824 applications to achieve the strategy or in part, based on learning from the source Exported learning operation layer 2 and / or Layer 3 addressing information received from other routing devices in the way By the information, as well as from the use of such as Simple Network Management Protocol (SNMP) messages via the Configuration Management 826 822 by network administrators to upload filtering rules. Learning from the source to the other network nodes, and Administrator to obtain business / network policies available and the routing engine 830 854 by the forwarding Co-expressed. ...

There are many ways to change the link state of a port. For example, Microsoft (TM) Windows-based The mouth of the personal computer (PC) connected to a port, such as port # 999. By just from the network Wall outlet or from a PC on the network interface card to disconnect the network cable connector can Link state changes. Or just restart the PC once again put off or open the link status Running from the link-state switches to link off or switched to the link from the link down run. If Link status is changed / switched - link running to the link off or link Close State to the running state of the link, the link monitor 862 detects this change, and accordingly Enable notification port manager 828 that is associated with that link specific port. By using the chain Road status changes, can be easily re-enable a port. For example, users only need to restart Moving their systems, or they simply unplug and re-plug the network cable back to their Network connection can be re-enabled their ports. Thereby reducing network management intervention. ...

This

link monitor

862 and 828 communications port manager, the corresponding port manager 828 And to identify the appropriate port, preferably duplex port (inlet, outlet, or two port portion Pieces) is set to be enabled / unblocked or is disabled / blocked. Port Manager 828 also re-set the application or policy blocking flag, or put this information to policy management 824, policy manager 824 then again to set the appropriate application or strategies. In the preferred Embodiment, the port manager 828 communicates L1 & 2 processor and set / reset the appropriate When the control register (Rx and Tx), indicating including the corresponding parts in the inlet and outlet ports Should within a port is blocked. Therefore, in the process L1 & 2 processor in the selected pass The drop in the data unit. ...

This

link monitor

Preferably, the switching module 806 comprises a routing engine 830, a forwarding table 854 and A queue manager 840. The routing engine 830 comprises a classifier 832 in order, which receives The entry from the data bus 805A PDU, the PDU checking one or more fields, and Used by content-addressable memory 833 PDU categorized into multiple streams of a stream. In One embodiment, the management module 820, especially for port manager 828, the command switch Module 806 and the switching module 806 or the present invention is achieved with the blocking properties and discard. In In this embodiment, the routing engine 830 from a blocked port discards incoming data units. However, if the PDU is not to be discarded - is accepted, the routing engine 830 also from maintaining In the high-speed memory 854 to obtain the forwarding forwarding information. 854 from the forwarding acquired Preferably, the forwarding information includes, but is not limited to, for example, a stream identifier that specifies the prospective Prepare the appropriate PDU specific export those required forwarding operations. ...

To be transmitted to the data unit that export, forwarding operation preferably includes, but is not Limited to: data for repackaging header conversion for converting one or more VLAN tags Attached to the PDU VLAN tag is pushed in from the PDU is used to delete one or more VLAN tagging VLAN tag pop reserve network resources for quality of service (QoS), Used to monitor the customer's business accounting and billing for selectively filtering the PDU validation, access Control, including Address Resolution Protocol (ARP) to learn a higher level control, source learning, and for PDU switch resources are allocated to determine the relative priority class of service (CoS).

% E5% 9C% A8% E8% BD% AC% E5% 8F% 91% E5% A4% 84% E7% 90% 86% E5% 99% A8834% E4% B9% 8B% E5% 90% 8E% EF % BC% 8CPDU% E8% A2% AB% E4% BC% A0% E5% 88% B0% E5% B9% B6% E5% AD% 98% E5% 82% A8% E5% 9C% A8% E9% 98 % 9F% E5% 88% 97% E7% AE% A1% E7% 90% 86% E5% 99% A8840% E4% B8% AD% E7% 9B% B4% 0A% 20% 20% 20% 20% 20 % 20% 20% 20% 20% 20% 20% 20% E5% 88% B0% E5% B8% A6% E5% AE% BD% E4% B8% BA% E5% 8F% AF% E7% 94% A8 % E4% BB% A5% E6% 8A% 8APDU% E5% 8F% 91% E9% 80% 81% E5% 88% B0% E9% 80% 82% E5% BD% 93% E7% 9A% 84% E5 % 87% BA% E5% 8F% A3% E7% AB% AF% E5% 8F% A3% E9% 83% A8% E4% BB% B6% E4% B8% BA% E6% AD% A2% E3% 80 % 82% E7% 89% B9% E5% 88% AB% E5% 9C% B0% EF% BC% 8C% E5% 87% BA% 0A% 20% 20% 20% 20% 20% 20% 20% 20 % 20% 20% 20% 20% E5% 8F% A3PDU% E8% A2% AB% E7% BC% 93% E5% AD% 98% E5% 9C% A8% E7% BC% 93% E5% AD% 98 % E5% 99% A8842% E4% B8% AD% E7% 9A% 84% E4% B8% 80% E4% B8% AA% E6% 88% 96% E5% A4% 9A% E4% B8% AA% E4 % BC% 98% E5% 85% 88% E7% BA% A7% E9% 98% 9F% E5% 88% 97% E4% B8% AD% E7% 9B% B4% E5% 88% B0% E5% AE % 83% E4% BB% AC% E8% A2% AB% 0A% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% E8% B0% 83% E5% BA % A6% E5% 99% A8844% E7% BB% 8F% E7% 94% B1% E8% BE% 93% E5% 87% BA% E6% 95% B0% E6% 8D% AE% E6% 80% BB % E7% BA% BF805B% E5% 8F% 91% E9% 80% 81% E5% 88% B0% E9% 80% 82% E5% BD% 93% E7% 9A% 84% E5% 87% BA% E5 % 8F% A3% E7% AB% AF% E5% 8F% A3% E9% 83% A8% E4% BB% B6802% E4% B8% BA% 0A% 20% 20% 20% 20% 20% 20% 20 % 20% 20% 20% 20% 20% E6% AD% A2% E3% 80% 82

Figure 9 is a preferred of the present invention L1 & 2 functional block diagram of processor 804. In this A preferred embodiment, a L1 & 2 processor 804 via a network generally includes a communication link for Exchange PDU (such as Ethernet frames) of a plurality of physical layer interface (PHY) 940 and a media access control System (MAC) interface. Preferably, L1 & 2 processor further includes at least one data link layer control Device 900. Running in the physical layer PHY 940 each execution, including PDU (such as Ethernet character Stream number), including the receive and transmit traditional network interface functions.

Upon receiving the communication link from the associated entry in a PDU 902, the data from the communication Link of electrical or optical signal is converted into a PHY 940 byte stream, which is then sent to the An associated MAC Media Interface / Port 910. In the transmit mode, PHY 940 把 from An associated MAC port 910 converted into a byte stream for the electrical or optical medium, Signal. PHY 940 media types for which it is attached is specified.

The preferred embodiment of the data link layer controller 900 includes one or more MAC ports / Interface 910. Preferably, each of the plurality of ports 910 are adapted to receive ingress data and transmit Exports duplex ports. Run at the MAC layer two port 910 includes an Ethernet frame execution Receive and transmit functions, including the traditional network interface. In receive mode, preferably, MAC Port 910 to perform various functions, which include, but are not limited to: (a) MAC frame unpacking Analysis, for example, from the Ethernet type / length field to extract the encapsulated protocol type, frame priority Level, VLAN tagged frames are user priority and precedence or DiffServ mapping with IP frames The TOS byte; (b) using the received data, and the decapsulated packet frame check sequence (FCS) value Error checking; and (c) asymmetric and symmetric flow control including: for example, flow control frames received Frame is transmitted by the network neighbors stop or suspend the frame transmission. Frame from the MAC port 910 and then in the MAC processor 920 processed locally. According to the present invention is characterized, preferably, by A blocked inlet port 952 is received by the MAC PDU is discarded processor 920 is completed. ...

Figure 10 is a high level functional block diagram illustrating generally how the characteristics of the present invention. This figure also shows in more detail a data link layer controller 900, although only some of its portion Points. The preferred embodiment includes a MAC port 910 or to both the two control registers Control Register Relevance: receive (Rx) control register 1010 and transmit (Tx) control register 1020. Rx and Tx control register 1010 is indicative of the control register 1020 inlet and outlet ends Port members are respectively a sign should be blocked. These registers are preferably made of a port manager 828 setting and resetting.

% E7% AD% 96% E7% 95% A5% E7% AE% A1% E7% 90% 86% E5% 99% A8824% E4% B8% 8E% E7% AB% AF% E5% 8F% A3% E7 % AE% A1% E7% 90% 86% E5% 99% A8828% E8% BF% 9B% E8% A1% 8C% E9% 80% 9A% E4% BF% A1% EF% BC% 8C% E4% BB % 8E% E8% 80% 8C% E5% 90% 91% E7% AB% AF% E5% 8F% A3% E7% AE% A1% E7% 90% 86% E5% 99% A8828% 0A% 20% 20 % 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% E6% 8F% 90% E4% BE% 9B% E5% 9C% A8% E6% 9C% AC% E5% 8F% 91 % E6% 98% 8E% E7% 9A% 84% E8% BD% AC% E5% 8F% 91% E8% AE% BE% E5% A4% 87% E4% B8% AD% E5% AE% 9E% E7 % 8E% B0% E7% 9A% 84% E5% 90% 84% E7% A7% 8D% E5% BA% 94% E7% 94% A8% E6% 88% 96% E7% AD% 96% E7% 95 % A51040% E3% 80% 82% E4% B8% 8A% E8% BF% B0% E5% BA% 94% E7% 94% A8% E6% 88% 96% E7% AD% 96% 0A% 20% 20 % 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% E7% 95% A5% E6% A0% 87% E5% BF% 97% E5% 8F% AF% E4% BB% A5 % E8% A2% AB% E5% AD% 98% E5% 82% A8% E5% 9C% A8% E7% AD% 96% E7% 95% A5% E7% AE% A1% E7% 90% 86% E5 % 99% A8% E4% B8% AD% EF% BC% 8C% E4% BD% 86% E6% 98% AF% E4% BC% 98% E9% 80% 89% E5% 9C% B0% E8% A2 % AB% E7% AB% AF% E5% 8F% A3% E7% AE% A1% E7% 90% 86% E5% 99% A8828% E5% AD% 98% E5% 82% A8% 0A% 20% 20 % 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% E5% B9% B6% E4% BF% 9D% E6% 8C% 81% E3% 80% 82

Link manager 862 and the port manager 828 communicates to the port manager 828 mention Each PHY 940 for link information 1030. In one example, PHY is a gigabit Bit Interface Converter (GBIC). Link manager 862 also provides it to the port manager information In order to judge is to set or reset the layer 2/Mac port 910 in the

control register

1010, 1020.

In a preferred embodiment, MAC processor 920 reads the control register included - Rx

Tx control register

1010 and 1020 in the control register one or more values 952. If The one or more values indicate the port should be blocked ingress port component, the MAC processor 920 discarded or not to accept from that port 910 for incoming / ingress data unit, which does not deal with Incoming data unit to be further from the forwarding device for transmission. On the other hand, if the value Indicating the incoming port 910 via the incoming data unit should be processed, the MAC processing Data processing unit 920 for further transmission. As described above, according to the present invention, as If the egress port component is not blocked, then the ingress port is disabled component's MAC port 910 It can still be exported from the port component for transmission. ...

Tx control register

According to the present invention has been described above a preferred embodiment of the present description, so that it can Convey an understanding of the present invention. However, the present invention switches, forwarding devices, link monitoring Controller module, the port manager module, port blocking signs and tactics mark many configurations in this Not specifically described, but the present invention is the use of these configurations are applied. The present invention should not be a result of In this regard it as limited to the particular embodiment described, but should be understood that the present invention is compared to, for example, Eg, switches, link monitoring module, port manager and signs usually have broad applicability. For example, this can not explicitly discussed in other ways port block, the inlet and outlet, Within the switch to be recognized as being enabled or disabled. For example, their values may not be The management module itself is stored or processed, but the switch module is stored within itself or By treatment. Another variant is: Link management functions in the form of a software program to be combined Part of the port manager, preferably, be stored in a computer readable medium and may be A computer to execute to perform the steps of the present inventors. These features of the present invention can also be hard , Software, or a combination of both (firmware) in the form of implementation. As shown, where the discarded entry for Deformation data can be another layer, such as layer 3 is completed. You can also use the wireless port. ...

Claims

1 A via one or more links for operatively coupled to the communication network forwarding device Equipment, the forwarding device comprising:

At least one interface has an associated port state, wherein the at least one interface adapted to:

Operatively coupled to the one or more links in an associated link;

If the port status is unblocked, then through the association receives inbound link count According to the unit, and

If the port status is blocked, then discarded from the data associated with a single inbound link Yuan; and

Link monitor adapted to detect the one or more links in the link status of each link State changes; and

Port manager, adapted to respond to the detection of the associated link in the link state variable Technology, the at least one port from blocking the port state changes automatically unblocked.

(2) If the forwarding apparatus according to claim 1, wherein the associated port state further includes an inlet end Port Status and outlet port status.

3, such as forwarding device of claim 1, further comprising:

Policy Manager, adapted to the communication network to one or more policies and operatively coupled Bonded to the port manager;

Wherein the port manager is further adapted in response to the communication network to one or more policies to the Less a port of port state changes from unblocking blocked.

4, such as forwarding device of claim 2, wherein the at least one interface is further adapted to:

If the outlet port status is unblocked, then forwarded via the link associated data sheets Million.

5 A for forwarding device will automatically unblock the blocked port method set the transponder Preparation for operatively coupled to the communication network, the ports to be blocked off with a blocking port indicator is Union, the blocked port indicator adapted to indicate that the port is blocked or be unblocked blocked Plug, the method comprising the steps of:

Associated with the ports to be blocked from an interface to receive one or more data units;

Monitor the link status of the interface;

When the link status is monitored change occurs, to reset the port indicator is blocked To indicate unblocked; and

When this association unblock blocked port indicator indicates when the acceptance is received from the interface To one or more data units.

6 The method as claimed in claim 5, further comprising the steps of:

The communication network receives one or more policies;

Based on the received one or more of the policy setting indicator to indicate the blocked port is blocked Cypriot port; and

When the blocked port indicator indicates a blocked port, the interface discards received from To one or more data units.

7 A method for operatively coupled to the communication network forwarding devices, the apparatus comprising:

One or more physical layer interfaces adapted to receive from the communication network, one or more data Unit;

One or more data link layer controller, where each data link layer controller comprises:

One or more media access controller (MAC) ports, each MAC port adapted to

Operatively coupled to the one or more of a physical layer interface;

One or more port indicators, wherein each port of the indicator with a MAC port An associated joint, and each port indicator adapted to indicate that the associated MAC port blocking Plug or unblocked; and

At least one MAC processor, operatively coupled to the one or more MAC Ports, adapted to read the one or more ports indicator, and is adapted based on the one or Discard indicator to select multiple ports and acceptance by that one or more physical layer interfaces connected

Receive one or more data units; and

Forwarding module operatively coupled to the one or more data link layer controller adapted Receives the one or more data link layer controller of the acceptance of one or more data units, And for forwarding from the data link layer controller receives the one or more data sheets Million.

As claimed in claim 7, wherein the one or more MAC ports each further Including:

Components and the ingress port

Egress port components.

9 The apparatus of claim 8, wherein the one or more ports each indicator also contain Including:

Inlet port to the inlet port member associated indicator member, the inlet port indicator Adapted to indicate the ingress port component is blocked or be unblocked; and

Components associated with the outlet port egress port component indicator, the outlet port designator Adapted to indicate the exit port assembly is blocked or be unblocked.

A process as claimed in claim 9, further comprising:

Link monitors, operably coupled to multiple physical interfaces, suitable for monitoring multiple physical access Port link status; and

Port manager, operatively coupled to the link monitoring unit, adapted to monitor the link based on the State to the one or more port indicators are alternately arranged, and reset to congestion indication And unblocking's instructions.