CN201307864Y - Data isolating and forwarding system based on 1394 interface - Google Patents
Data isolating and forwarding system based on 1394 interface Download PDFInfo
- Publication number
- CN201307864Y CN201307864Y CNU2008201690682U CN200820169068U CN201307864Y CN 201307864 Y CN201307864 Y CN 201307864Y CN U2008201690682 U CNU2008201690682 U CN U2008201690682U CN 200820169068 U CN200820169068 U CN 200820169068U CN 201307864 Y CN201307864 Y CN 201307864Y
- Authority
- CN
- China
- Prior art keywords
- data
- transfer equipment
- data transfer
- interfaces
- serial ports
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Landscapes
- Small-Scale Networks (AREA)
Abstract
The utility model discloses a data isolating and forwarding system based on the 1394 interface. The system comprises a first data forwarding device connected with an external network and a second data forwarding device connected with an internal network, wherein, network ports, 1394 interfaces and serial ports are arranged on both the first data forwarding device and the second data forwarding device; the first data forwarding device and the second data forwarding device which are connected with each other through the 1394 interfaces and the serial ports are connected with the external network and the internal network respectively through the network ports; the 1394 interface arranged on the first data forwarding device is a one-way interface which only sends data; the 1394 interface arranged on the second data forwarding device is a one-way interface which only receives data; the serial port arranged on the first data forwarding device is a one-way serial port which only receives control signaling; and the serial port arranged on the second data forwarding device is a one-way serial port which only sends control signaling. The utility model has the advantages of safety, high velocity, real-time transmission, low cost and convenient use.
Description
Technical field
The utility model relates to a kind of data isolation repeater system, especially a kind of data isolation repeater system based on 1394 interfaces.
Background technology
For guaranteeing safety, all concerning security matters private networks need and other outer nets are isolated, but the concerning security matters private network many times needs some data penetration transmission of other networks to come in, and the data of concerning security matters private network can not pass to other networks, and this isolation that generally is called data is transmitted.Development along with information industry, more and more urgent to the needs that data security, isolation at high speed between the heterogeneous networks are transmitted, for the high-speed isolated that solves data between the heterogeneous networks is transmitted, often need add a kind of based on network equipment between concerning security matters private network and other outer nets, be the patent of invention disclosed " information bridge network safety isolator " of " 01132400.7 " as the patent No..The isolation retransmission method of similar realization principle and device are a lot, but all be based on network, the isolation of data is transmitted must pass through network layer, the various viruses of propagating on the network all are based on principle design, control and the propagation of network layer protocol at present, have so just brought very large potential safety hazard.
Summary of the invention
Technical problem to be solved in the utility model provides a kind of safety high speed, real-time Transmission, the cost data isolation repeater system based on 1394 interfaces low, easy to use.
The technical scheme in the invention for solving the above technical problem is: second data transfer equipment that this system comprises first data transfer equipment that joins with outer net, joins with Intranet, its design feature is to be equipped with network interface, 1394 interfaces and serial ports on described first data transfer equipment and second data transfer equipment, first data transfer equipment, second data transfer equipment join with outer net, Intranet respectively by network interface, join by 1394 interfaces and serial ports between first data transfer equipment and second data transfer equipment; Wherein 1394 set interfaces are the one-way interfaces that only sends data on first data transfer equipment, 1394 set on second data transfer equipment interfaces are for only accepting the one-way interfaces of data, set serial ports is the unidirectional serial ports that receives only the control signaling on first data transfer equipment, and set serial ports is the unidirectional serial ports that only sends control signaling on second data transfer equipment.
First data transfer equipment described in the utility model and second data transfer equipment are PC, work station, server or embedded device.
Outer net described in the utility model is a common network, and Intranet is the concerning security matters network.
Serial ports described in the utility model adopts RS-232 or 485 agreements.
Network interface described in the utility model is a standard ethernet mouth or based on 802.11 wireless network interface.
1394 interfaces described in the utility model are the interface based on the IEEE1394 standard, its transmission and be received as basic I/O read-write mode.
The utility model compared with prior art, have following beneficial effect: this system has added first data transfer equipment and second data transfer equipment between outer net and Intranet, outer net is a common network, Intranet is the concerning security matters network, 1394 interfaces by one-way only operation between two data forwarding units are connected with serial ports, data and control signaling all can only be between it one-way transmission, irrelevant with network layer, significantly improved the fail safe of system; The transmission speed of present 1394 interfaces is 400Mb/s, and its conservative one-way transmission speed is 200Mb/s, the transmission speed height; Two data forwarding units can carry out transfer of data in real time, and data transfer equipment employing PC, work station, server or embedded device, do not need special customization, and cost is low, and overall structure is simple, and is easy to use.
Description of drawings
Fig. 1 is a structural representation of the present utility model.
Fig. 2 is the structural representation of the utility model embodiment.
Embodiment
Referring to Fig. 1, present embodiment comprises first data transfer equipment 1 that joins with outer net, second data transfer equipment 2 that joins with Intranet, first data transfer equipment 1 is provided with network interface 11,1394 interfaces 12 and serial ports 13, second data transfer equipment 2 is provided with network interface 21,1394 interfaces 22 and serial ports 23, first data transfer equipment 1, second data transfer equipment 2 is by passing through network interface 11 respectively, 21 and outer net, Intranet is joined, and 1394 interfaces 12 on first data transfer equipment 1 are connected with 1394 interfaces 22 on second data transfer equipment 2,1394 interfaces 12 are the one-way interfaces of only being responsible for sending data, 1394 interfaces 22 are for only being responsible for accepting the one-way interfaces of data, serial ports 13 on first data transfer equipment 1 is connected with 1394 interfaces 23 on second data transfer equipment 2, serial ports 13 is a unidirectional serial ports of only being responsible for receiving the control signaling, the unidirectional serial ports of serial ports 23 for only being responsible for sending control signaling.Serial ports 13 and serial ports 23 adopt RS-232 or 485 agreements, network interface 11 and network interface 12 are standard ethernet mouth or based on 802.11 wireless network interface, 1394 interfaces 12 and 1394 interfaces 22 are the interface based on the IEEE1394 standard, its transmission and be received as basic I/O read-write mode.
First data transfer equipment 1 and second data transfer equipment 2 are PC, work station, server or embedded device.Outer net is a common network, and Intranet is the concerning security matters network that needs and other nets are isolated.
Setting according to Intranet user, second data transfer equipment 2 that links to each other with Intranet sends control command from serial ports 23, the serial ports 13 of first data transfer equipment 1 is received control command, 1 pair of control command of first data transfer equipment is resolved, according to control command to the time, the requirement of Data Source, first data transfer equipment 1 at the appointed time from outside read specific data by network interface 11 from data source on the net, first data transfer equipment 1 is write by 1394 port ones 2 specific data that reads again with basic I/O mode is delivered to 1394 ports 22 of second data transfer equipment 2,1394 ports 22 of second data transfer equipment 2 read corresponding data in the mode that basic I/O reads, and the specific data that second data transfer equipment 2 is received 1394 interfaces 22 is delivered to the destination address place of Intranet by network interface 21.
Referring to Fig. 2, transmitting with the isolation of the data between public security network and the Fire Net is that embodiment is described further.Public security network (Intranet) belongs to the concerning security matters network, Fire Net (outer net) is a separate network in the area that has, because public security need of work, the public security network often needs in the Fire Net some video monitoring data transparent transmission to come in, the data of public security network can not pass on the Fire Net, the video data of Fire Net is through the video server compressed encoding of front end, and the standard of compressed encoding can be mpeg 4 standard, H.264 standard or AVS standard or other standards, and data traffic is general bigger.Setting according to the public security network user, second data transfer equipment 2 that links to each other with the public security network sends control command from serial ports 23, the serial ports 13 of first data transfer equipment 1 is received control command, 1 pair of control command of first data transfer equipment is done parsing, according to control command to the time, the requirement of Data Source, first data transfer equipment 1 at the appointed time from the Fire Net by reading the designated data for the network interface 11 of Ethernet interface, first data transfer equipment 1 is write by 1394 port ones 2 video data that reads again with basic I/O mode is delivered to 1394 ports 22 of second data transfer equipment 2, the mode that 1394 ports 22 of second data transfer equipment 2 are read with basic I/O reads corresponding video data, second data transfer equipment 2 again with the video data read by sending on the decoder for the network interface 21 of Ethernet interface, decoder decompresses to the video data of receiving, the compressed format of the employing of the video server in the form that decompresses and the Fire Net is corresponding, and decoded video data is received on the screen.Like this, the user of public security network just can be in real time, safety, seen the video monitoring data of Fire Net at high speed.
Claims (6)
1, a kind of data isolation repeater system based on 1394 interfaces, second data transfer equipment that comprises first data transfer equipment that joins with outer net, joins with Intranet, it is characterized in that: be equipped with network interface, 1394 interfaces and serial ports on described first data transfer equipment and second data transfer equipment, first data transfer equipment, second data transfer equipment join with outer net, Intranet respectively by network interface, join by 1394 interfaces and serial ports between first data transfer equipment and second data transfer equipment; Wherein 1394 set interfaces are the one-way interfaces that only sends data on first data transfer equipment, 1394 set on second data transfer equipment interfaces are for only accepting the one-way interfaces of data, set serial ports is the unidirectional serial ports that receives only the control signaling on first data transfer equipment, and set serial ports is the unidirectional serial ports that only sends control signaling on second data transfer equipment.
2, the data isolation repeater system based on 1394 interfaces according to claim 1, it is characterized in that: described first data transfer equipment and second data transfer equipment are PC, work station, server or embedded device.
3, the data isolation repeater system based on 1394 interfaces according to claim 1, it is characterized in that: described outer net is a common network, Intranet is the concerning security matters network.
4, the data isolation repeater system based on 1394 interfaces according to claim 1 is characterized in that: described serial ports adopts RS-232 or 485 agreements.
5, the data isolation repeater system based on 1394 interfaces according to claim 1 is characterized in that: described network interface is a standard ethernet mouth or based on 802.11 wireless network interface.
6, the data isolation repeater system based on 1394 interfaces according to claim 1 is characterized in that: described 1394 interfaces are for based on the interface of IEEE1394 standard, its transmission and be received as basic I/O read-write mode.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2008201690682U CN201307864Y (en) | 2008-12-04 | 2008-12-04 | Data isolating and forwarding system based on 1394 interface |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2008201690682U CN201307864Y (en) | 2008-12-04 | 2008-12-04 | Data isolating and forwarding system based on 1394 interface |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN201307864Y true CN201307864Y (en) | 2009-09-09 |
Family
ID=41100329
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNU2008201690682U Expired - Lifetime CN201307864Y (en) | 2008-12-04 | 2008-12-04 | Data isolating and forwarding system based on 1394 interface |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN201307864Y (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102202055A (en) * | 2011-04-28 | 2011-09-28 | 广州汇智通信技术有限公司 | Isolation gateway |
| CN102208982A (en) * | 2011-04-28 | 2011-10-05 | 广州汇智通信技术有限公司 | Isolation gateway |
| CN102497313A (en) * | 2011-12-08 | 2012-06-13 | 公安部第三研究所 | Cross-platform application system of surveillance video resources and realization method thereof |
| CN102710638A (en) * | 2012-05-31 | 2012-10-03 | 广东电网公司电力科学研究院 | Device and method for isolating data by adopting non-network manner |
| CN102882850A (en) * | 2012-09-03 | 2013-01-16 | 广东电网公司电力科学研究院 | Cryptographic device and method thereof for isolating data by employing non-network way |
| CN103491072A (en) * | 2013-09-06 | 2014-01-01 | 北京信息控制研究所 | Boundary access control method based on double one-way separation gatekeepers |
| CN107809415A (en) * | 2017-08-07 | 2018-03-16 | 国网河南省电力公司 | Network isolation system and its implementation based on double half-duplex channel transmission technologys |
| CN108206938A (en) * | 2016-12-20 | 2018-06-26 | 成都鼎桥通信技术有限公司 | A kind of method of video distribution of Police Computer Network |
-
2008
- 2008-12-04 CN CNU2008201690682U patent/CN201307864Y/en not_active Expired - Lifetime
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102202055A (en) * | 2011-04-28 | 2011-09-28 | 广州汇智通信技术有限公司 | Isolation gateway |
| CN102208982A (en) * | 2011-04-28 | 2011-10-05 | 广州汇智通信技术有限公司 | Isolation gateway |
| CN102497313A (en) * | 2011-12-08 | 2012-06-13 | 公安部第三研究所 | Cross-platform application system of surveillance video resources and realization method thereof |
| CN102497313B (en) * | 2011-12-08 | 2015-03-04 | 公安部第三研究所 | Cross-platform application system of surveillance video resources and realization method thereof |
| CN102710638A (en) * | 2012-05-31 | 2012-10-03 | 广东电网公司电力科学研究院 | Device and method for isolating data by adopting non-network manner |
| CN102882850A (en) * | 2012-09-03 | 2013-01-16 | 广东电网公司电力科学研究院 | Cryptographic device and method thereof for isolating data by employing non-network way |
| CN102882850B (en) * | 2012-09-03 | 2015-11-18 | 广东电网公司电力科学研究院 | A kind of encryption apparatus and method thereof adopting non-network mode isolated data |
| CN103491072A (en) * | 2013-09-06 | 2014-01-01 | 北京信息控制研究所 | Boundary access control method based on double one-way separation gatekeepers |
| CN103491072B (en) * | 2013-09-06 | 2017-03-15 | 中国航天系统科学与工程研究院 | A kind of border access control method based on double unidirection insulation network brakes |
| CN108206938A (en) * | 2016-12-20 | 2018-06-26 | 成都鼎桥通信技术有限公司 | A kind of method of video distribution of Police Computer Network |
| CN107809415A (en) * | 2017-08-07 | 2018-03-16 | 国网河南省电力公司 | Network isolation system and its implementation based on double half-duplex channel transmission technologys |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN201307864Y (en) | Data isolating and forwarding system based on 1394 interface | |
| CN106612141B (en) | A kind of fiber channel protocol common simulation test card and its data interactive method | |
| CN106411740B (en) | Network port extended method based on ethernet controller | |
| CN109710554A (en) | FC-AE-1553 bus and CAN bus non-transparent bridge welding system | |
| CN102591291B (en) | Industrial controller and human-machine interface bidirectional data transmission system and method | |
| CN102835091A (en) | Multi-media USB data transfer over digital interaction interface for video and audio (DIIVA) | |
| CN102347947B (en) | Streaming media adaptor, streaming media network interaction system and method | |
| CN202190284U (en) | Protocol converter for CAN bus and SpaceWire bus | |
| CN109600318A (en) | A kind of method and SDN controller monitoring application program in SDN | |
| CN109217983A (en) | A kind of job-oriented terminal communication protocol design method of industry Internet of Things | |
| CN103888446A (en) | Protocol security isolation system oriented to railway signal control network | |
| CN103442203A (en) | Network video monitoring system and method based on DM365 | |
| CN105262789A (en) | FPGA (Field Programmable Gate Array)-based MAC (Media Access Control) layer to MAC layer communication system and control method | |
| CN107579894A (en) | A kind of EBR1553 bus protocol realization devices based on FPGA | |
| CN102195984A (en) | Secure transmission device | |
| CN101072064B (en) | Ethernet relay device and method | |
| CN101867557A (en) | One-way transmission device, data acquisition system and method | |
| CN103220022B (en) | A kind of mixing intercommunication method and system | |
| CN107517222A (en) | A kind of USB interface-based one-way transmission apparatus and method | |
| CN102170381B (en) | Unpacked data two-way transmission system and method based on gigabit Ethernet physical layer interface | |
| CN202019362U (en) | Non-compression data two-way transmission system based on Gigabit network physical layer interface | |
| CN204481853U (en) | A kind of isolation gap based on SDI | |
| CN104125227A (en) | Physical isolation cross-network unidirectional optical transmission device and transmission method | |
| CN101877691B (en) | Encapsulation and decapsulation method of physical layer frame in EOC (Ethernet over Coax) network | |
| CN106250343B (en) | A kind of digital signal and usb signal mixed transport device and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term |
Granted publication date: 20090909 |
|
| CX01 | Expiry of patent term |