CN214125323U - One-way communication network equipment - Google Patents

One-way communication network equipment Download PDF

Info

Publication number
CN214125323U
CN214125323U CN202023242661.5U CN202023242661U CN214125323U CN 214125323 U CN214125323 U CN 214125323U CN 202023242661 U CN202023242661 U CN 202023242661U CN 214125323 U CN214125323 U CN 214125323U
Authority
CN
China
Prior art keywords
physical layer
layer
communication network
output
retiming
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202023242661.5U
Other languages
Chinese (zh)
Inventor
王向红
刘景宾
乔宁
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nuclear And Radiation Safety Center Ministry Of Ecology And Environment
Beijing Winicssec Technologies Co Ltd
Original Assignee
Nuclear And Radiation Safety Center Ministry Of Ecology And Environment
Beijing Winicssec Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nuclear And Radiation Safety Center Ministry Of Ecology And Environment, Beijing Winicssec Technologies Co Ltd filed Critical Nuclear And Radiation Safety Center Ministry Of Ecology And Environment
Priority to CN202023242661.5U priority Critical patent/CN214125323U/en
Application granted granted Critical
Publication of CN214125323U publication Critical patent/CN214125323U/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Communication Control (AREA)

Abstract

A unidirectional communications network device comprising a physical layer and a data link layer connected by an interface, further comprising: a retiming device comprising an input, a first output, and a second output; and a secondary physical layer, the secondary physical layer including transmitting and receiving. The transmission of the auxiliary physical layer is connected with the input of the retiming device, the reception of the auxiliary physical layer is connected with the first output of the retiming device, the reception of the physical layer is connected with the second output of the retiming device, the transmission of the physical layer is connected with the reception of the data link layer, and the transmission of the data link layer is not connected.

Description

One-way communication network equipment
Technical Field
The utility model relates to a computer technology field, concretely relates to one-way communication network equipment of independent interface of ethernet media.
Background
Currently, some enterprises or government departments have a security requirement on the internal network, and require that the internal network is physically isolated from the external network, and the internal network and the external network are in one-way communication, that is, data is allowed to be transmitted from the external network to the internal network, but data in the internal network is not allowed to be transmitted to the external network. According to the standard of the ethernet, the physical layer transmission of the ethernet requires the integrity of the link, and this function enables the physical layer chip of the ethernet to automatically disable its sending function if it does not receive data within a certain time, i.e. it can only perform bidirectional transmission, and cannot perform unidirectional communication.
SUMMERY OF THE UTILITY MODEL
Technical problem
The current part adopts special network gate equipment to physically isolate an internal network from an external network, but the network gate is high in cost, additional equipment needs to be introduced, and networking is complex. And the other part of the system realizes data one-way communication in a software mode, but data leakage can still be caused due to hackers, viruses, human reasons and the like, and great loss is caused.
In addition, the current network devices are all composed of devices such as a physical layer, a data link layer, and a processor (CPU). With the development of ethernet technology, the port density and the transmission rate are improved, the integration level of devices is continuously improved, a media interface between a data link layer and a physical layer is also developed from a parallel bus containing signals of data, clock, control and the like which are transmitted and received to a serial bus, the serial bus only has a pair of signal lines for transmitting and receiving, and the information of the data, the clock, the control and the like is transmitted on the pair of signal lines, so that the interface cannot realize unidirectional communication in physics.
In view of this, the utility model provides a realize the communication network equipment of the one-way communication of media medium interface USXGMII/QSGMII/SGMII bus to solve the problem that appears in the one-way communication of network equipment.
Problem solving scheme
According to an aspect of the present invention, there is provided an unidirectional communication network device, including a physical layer and a data link layer connected through an interface, which is characterized by further comprising:
a retiming device comprising an input, a first output, and a second output; and
a secondary physical layer, the secondary physical layer including transmitting and receiving,
wherein the content of the first and second substances,
the transmission of the auxiliary physical layer is connected to the input of the retiming device,
the reception of the auxiliary physical layer is connected to a first output of the retiming device,
the reception of the physical layer is connected to a second output of the retiming device,
the transmission of the physical layer is connected with the reception of the data link layer, and
the data link layer transmission does not connect.
Further, the interface between the physical layer and the data link layer is USXGMII, QSGMII or SGMII.
Further, the physical layer and the secondary physical layer are the same type of device, and the physical layer and the secondary physical layer are IEEE802.3 compliant physical layer devices.
Further, the retiming device is a dual or multi-channel retiming device, and a frequency of the retiming device is aligned with a rate of an interface between the physical layer and the data link layer.
Further, the link state of the input and output sides of the electrical port of the physical layer is configured to be automatic.
Further, the link states of the physical layer, the data link layer and the secondary physical layer on the interface side between the physical layer and the data link layer are forced to be linked.
Further, a signal input from the input of the retiming device is output to the first output of the retiming device after being retimed by the retiming device, and the retiming device loops back the signal from the input to the second output.
Beneficial effects of the utility model
According to the utility model discloses an one-way communication network equipment can realize the one-way communication network transmission of the independent interface USXGMII of media/QSGMII SGMII, specifically, realizes the one-way communication of ethernet network equipment such as gateway, firewall and audit, satisfies only to receive secret demands such as outwards sending. When deployment group network, need general gateway equipment originally and add the gatekeeper class isolation equipment and just can realize one-way communication, only need adopt the utility model discloses a one-way gateway equipment can realize, has simplified the type and the quantity of equipment less, has simplified network topology structure, has reduced the complexity and has saved the cost.
Drawings
The accompanying drawings are included to provide a better understanding of the present invention and are not intended to constitute an undue limitation on the invention. Wherein:
fig. 1 is a block diagram of a media independent interface implementation unidirectional communication network device according to a preferred embodiment of the present invention.
Fig. 2 is a block diagram of the implementation principle of USXGMII/QSGMII/SGMII unidirectional communication of the media independent interface according to a preferred embodiment of the present invention.
Detailed Description
The technical solution of the present invention will be clearly and completely described below with reference to the specific embodiments of the present invention and the accompanying drawings. It is obvious that the described embodiments are only a part of the preferred embodiments of the present invention, and not all embodiments. Based on the embodiments in the present invention, all other embodiments obtained by a person skilled in the art without creative work belong to the protection scope of the present invention.
Fig. 1 is a block diagram of a one-way communication network device 10 implementing a media independent interface USXGMII/QSGMII/SGMII according to a preferred embodiment of the present invention. As shown in fig. 1, a typical network device implementation includes a physical layer 1, a link layer (data link layer) 2, a processor (CPU), and other devices, and a retiming device (Retimer)3 and a physical layer (auxiliary physical layer) 4 are added to this embodiment based on the typical network device implementation. A unidirectional connection between link layer 2 and physical layer 1, a unidirectional connection between physical layer 1 and retiming device 3, and a transmit and receive bidirectional connection between retiming device 3 and auxiliary physical layer 4. The embodiment ensures that the physical layer 1 and the external network can normally establish connection through the retiming method, thereby realizing normal communication. The transmission from the link layer 2 to the physical layer 1 is cut off, so that the possibility that the internal network transmits data to the external network is blocked, and the requirement of one-way communication is further met.
The present embodiment is described in detail below with reference to fig. 2.
Fig. 2 is a block diagram of the principle of implementation of the media independent interface USXGMII/QSGMII/SGMII unidirectional communication according to a preferred embodiment of the present invention, as shown, the unidirectional communication network device 10 according to the present invention comprises a physical layer 1, a link layer 2, a Retimer3 and a physical layer 4. Wherein, the physical layer 1 and the link layer 2 are connected through a USXGMII/SGMII interface. Physical layer 1 and physical layer 4 are the same type of device and are physical layer devices that conform to IEEE 802.3. Retimer3 is a dual or multi-channel retiming device with a frequency consistent with the USXGMII/QSGMII/SGMII rate of the interface.
The transmission Tx of the physical layer 1 is connected to the reception Rx of the link layer 2, and the reception of the physical layer 1 is connected to the output (second output) OutB of the timer 3.
The transmission of link layer 2 is not connected to any object, and the reception of link layer 2 is connected to the transmission Tx of physical layer 1.
The input InA of Retimer3 is connected to the transmit Tx of physical layer 4, the output (first output) OutA of Retimer3 is connected to the receive Rx of physical layer 4, and the output OutB of Retimer3 is connected to the receive Rx of physical layer 1.
The link state of the input and output sides of the electrical port of the physical layer 1 is configured to be automatic to ensure that the docking device can communicate with it normally. The link state of the physical layer 1, the link layer 2 and the physical layer 4 on the USXGMII/QSGMII/SGMII side is forced to link. Retimer3 retimes the signal of input InA and outputs it to output OutA, and Retimer3 sets loopback to loop back the input signal of input InA to output OutB. The link layer 2 configures the link to be in a forced link state, and simultaneously sets the link to be in a powerup (power-on) state.
The operation principle of the unidirectional communication network device 10 according to the present embodiment is explained below.
The physical layer transmission of the ethernet requires the link to have integrity, which makes the ethernet physical layer device automatically disable its sending function if it does not receive data within a certain time, so it can only perform bidirectional transmission, but cannot implement unidirectional communication. The embodiment described above uses a physical layer as an auxiliary physical layer device to simulate the receiving and sending data of the interfacing link to the physical layer device, thereby ensuring that the physical layer device is in a normal state and continuously sends correct data to the actual receiving end of the link layer.
More specifically, the physical layer 4 serves as an auxiliary device, which provides correct link information to the receiving Rx of the physical layer 1, so as to ensure that the physical layer 1 can correctly transmit data to the receiving end of the link layer 2, thereby implementing the function of unidirectional communication.
The physical layer 4 as an auxiliary device apparatus configures the link state as a forced link. The information of the transmission code stream of the physical layer 4 is sent to the input InA of the Retimer3, and the Retimer3 simultaneously sends the information to the output OutA and the output OutB.
The ethernet specification IEEE802.3 defines a set of ordered sets for the code stream information transmitted on the media independent interface data line, where the ordered sets are equivalent to the control protocol on the physical link, and are used to implement the transmission of state information such as in-band data alignment, clock recovery, flow control, link rate, duplex, etc. on the serial bus, and ensure the normal communication of the physical link.
The physical layer 4 is a standard device meeting the protocol requirements of IEEE802.3, so the bitstream information sent by the physical layer 4 arrives at the receiving Rx of the physical layer 4 after being retimed by the Retimer 3. Because the code stream information contains control information such as data, clock, rate, flow control and the like, the receiving Rx of the physical layer 4 can normally receive correct information on the link, thereby ensuring the normal establishment of the link of the physical layer 4 and continuously sending the code stream information on the link. That is, the code stream sent by the Tx of the physical layer 4 is sent back to the Rx thereof after being retimed, and the code stream information sent by the link of the opposite end is simulated, thereby ensuring the link state of the link and the integrity and correctness of the code stream information.
In addition, as the code stream of the physical layer 4 for transmitting Tx is simultaneously transmitted to the Rx of the physical layer 1 after passing through the InA input by the Retimer3, the physical layer 1 completes link establishment of the physical layer 1 after receiving correct data, clock, rate, flow control and other control information, ensures that the connection state of the physical layer 1 is correct, and transmits data to the Rx of the link layer 2, thereby realizing the function of unidirectional communication.
The above describes a one-way communication network device 10 according to a preferred embodiment of the present invention. According to the utility model discloses a one-way communication network equipment 10, the interface between physical layer 1 and link layer 2 is USXGMII/SGMII. The physical layer 1 and the physical layer 4 are of the same type of device. Retimer3 is a dual or multi-channel Retimer with a clock frequency compatible with the USXGMII/QSGMII/SGMII rate of the interface. The transmission Tx of the physical layer 1 is connected to the reception Rx of the link layer 2, and the transmission Tx of the link layer 2 is not connected. The Tx of the physical layer 4 is connected to the input of timer 3; retimer3 retimes the input signal and divides it into two outputs, one output is connected to Rx of phy 1 and the other output is connected to Rx of phy 4.
Utilize as above according to the utility model discloses an one-way communication network equipment can realize the one-way communication network transmission of independent interface USXGMII of media/QSGMII/SGMII, specifically, realizes the one-way communication of ethernet network equipment such as gateway, firewall and audit, satisfies only to receive secret demands such as not outwards sending. When deployment group network, need general gateway equipment originally and add the gatekeeper class isolation equipment and just can realize one-way communication, only need adopt the utility model discloses a one-way gateway equipment can realize, has simplified the type and the quantity of equipment less, has simplified network topology structure, has reduced the complexity and has saved the cost.
The above detailed description does not limit the scope of the present invention. Those skilled in the art will appreciate that various modifications, combinations, sub-combinations, and substitutions can occur, depending on design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (11)

1. A unidirectional communications network device comprising a physical layer and a data link layer connected by an interface, further comprising:
a retiming device comprising an input, a first output, and a second output; and
a secondary physical layer, the secondary physical layer including transmitting and receiving,
wherein the content of the first and second substances,
the transmission of the auxiliary physical layer is connected to the input of the retiming device,
the reception of the auxiliary physical layer is connected to a first output of the retiming device,
the reception of the physical layer is connected to a second output of the retiming device,
the transmission of the physical layer is connected with the reception of the data link layer, and
the data link layer transmission does not connect.
2. The unidirectional communication network device of claim 1, wherein,
the interface between the physical layer and the data link layer is USXGMII.
3. The unidirectional communication network device of claim 1, wherein,
the interface between the physical layer and the data link layer is QSGMII.
4. The unidirectional communication network device of claim 1, wherein,
the interface between the physical layer and the data link layer is SGMII.
5. The unidirectional communication network device of any one of claims 1 to 4, wherein,
the physical layer and the auxiliary physical layer are the same type of device.
6. The unidirectional communication network device of claim 5, wherein,
the physical layer and the auxiliary physical layer are physical layer devices conforming to IEEE 802.3.
7. The unidirectional communication network device of any one of claims 1 to 4, wherein,
the retiming device is a dual or multi-channel retiming device.
8. The unidirectional communication network device of any one of claims 1 to 4, wherein,
the frequency of the retiming device is consistent with the rate of the interface between the physical layer and the data link layer.
9. The unidirectional communication network device of any one of claims 1 to 4, wherein,
and the link state of the input and output sides of the electric port of the physical layer is configured to be automatic.
10. The unidirectional communication network device of any one of claims 1 to 4, wherein,
the link states of the physical layer, the data link layer and the auxiliary physical layer on the interface side between the physical layer and the data link layer are forced to be linked.
11. The unidirectional communication network device of any one of claims 1 to 4, wherein,
a signal input from the input of the retiming device is output to the first output of the retiming device after being retimed by the retiming device, and
the retiming device loops back a signal from the input to the second output.
CN202023242661.5U 2020-12-29 2020-12-29 One-way communication network equipment Active CN214125323U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202023242661.5U CN214125323U (en) 2020-12-29 2020-12-29 One-way communication network equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202023242661.5U CN214125323U (en) 2020-12-29 2020-12-29 One-way communication network equipment

Publications (1)

Publication Number Publication Date
CN214125323U true CN214125323U (en) 2021-09-03

Family

ID=77486845

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202023242661.5U Active CN214125323U (en) 2020-12-29 2020-12-29 One-way communication network equipment

Country Status (1)

Country Link
CN (1) CN214125323U (en)

Similar Documents

Publication Publication Date Title
US6424627B1 (en) Full-duplex medium tap apparatus and system
CN110190876B (en) Physical layer and virtualized physical layer suitable for EHF contactless communication
US7149397B2 (en) 10/100/1000Base-T small-form-factor-pluggable module
EP2928108B1 (en) System, method and apparatus for multi-lane auto-negotiation over reduced lane media
US20100250821A1 (en) Inter-processor communication link with manageability port
CN108733608B (en) USB link bridge
CN104243010B (en) A kind of intermediate station wireless interconnected method, system and intermediate station
Dawoud et al. Serial communication protocols and standards
CN109120624A (en) A kind of more plane loose coupling high band wide data exchange systems
Florit et al. SpaceFibre multi-lane: SpaceFibre, long paper
US9455867B2 (en) Automatic configuration of a repeater
CN214125323U (en) One-way communication network equipment
CN201623716U (en) Unidirectional transmission system with feedback function
US20110305246A1 (en) System and Method for Enhanced Physical Layer Device Interface Capability for Backward Support of Fast Retrain
CN107181702B (en) Device for realizing RapidIO and Ethernet fusion exchange
CN210578638U (en) 5G customer premises equipment
CN114442514A (en) USB3.0/3.1 control system based on FPGA
US20240104046A1 (en) Spread spectrum clock negotiation method, and peripheral component interconnect express device and system
CN102035733B (en) Method for establishing serial data transparent transmission channel by Ethernet
CN104541479A (en) Communication controller
CN1937630A (en) System and component for realizing first component and second component communication
CN106330357B (en) A kind of transfer check method, node and the system of SERDES
CN107634972B (en) Unidirectional communication system and board card of nuclear power station safety level system and non-safety level system
CN207382350U (en) The one-way communication system and board of nuclear power station security level system and non-security grade system
CN108683513A (en) The one-way communication system and board of nuclear power station security level system and non-security grade system

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant