JP2013046406A5 - - Google Patents
Download PDFInfo
- Publication number
- JP2013046406A5 JP2013046406A5 JP2011220366A JP2011220366A JP2013046406A5 JP 2013046406 A5 JP2013046406 A5 JP 2013046406A5 JP 2011220366 A JP2011220366 A JP 2011220366A JP 2011220366 A JP2011220366 A JP 2011220366A JP 2013046406 A5 JP2013046406 A5 JP 2013046406A5
- Authority
- JP
- Japan
- Prior art keywords
- address
- destination
- nic
- source
- tcp
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Description
上記課題を解決するために、本発明のネットワークゲートウェイ装置は、第一のNICと、第二のNICと、前記第一のNICおよび前記第二のNICとの間でTCP/IP通信処理を行うTCP/IPプロトコルスタックと、前記第一のNICから受信して前記TCP/IPプロトコルスタックに送信する受信パケットに付されているアドレス、および前記TCP/IPプロトコルスタックから受信して前記第二のNICに送信する送信パケットに付されているアドレスを変換するアドレス変換処理部と、を有し、前記アドレス変換処理部は、前記第一のNICから受信した前記受信パケットに付されている送信元MACアドレスを第一仮MACアドレスに変換し、送信元IPアドレスを第一仮IPアドレスに変換し、宛先MACアドレスを前記第一のNICに付されている第一のNICMACアドレスに変換し、および宛先IPアドレスを前記第一のNICに付されている第一のNICIPアドレスに変換する変換処理と、前記TCP/IPプロトコルスタックから受信した前記送信パケットに付されている送信元MACアドレス、送信元IPアドレス、宛先MACアドレスおよび宛先IPアドレスを、送信元および宛先として設定するアドレスに変換する変換処理を行なうことを特徴とする。 In order to solve the above problems, the network gateway device of the present invention performs TCP / IP communication processing between the first NIC, the second NIC, and the first NIC and the second NIC. A TCP / IP protocol stack, an address attached to a received packet received from the first NIC and transmitted to the TCP / IP protocol stack, and a second NIC received from the TCP / IP protocol stack An address translation processing unit that translates an address attached to a transmission packet to be transmitted to the source MAC, and the address translation processing unit is a source MAC attached to the received packet received from the first NIC The address is converted to the first temporary MAC address, the source IP address is converted to the first temporary IP address, and the destination MAC address A conversion process for converting the first NIC MAC address assigned to the first NIC, and converting a destination IP address to a first NIC IP address assigned to the first NIC; and the TCP / IP Performing a conversion process for converting a source MAC address, a source IP address, a destination MAC address, and a destination IP address attached to the transmission packet received from the protocol stack into addresses set as a source and a destination. And
Claims (7)
第二のNICと、
前記第一のNICおよび前記第二のNICとの間でTCP/IP通信処理を行うTCP/IPプロトコルスタックと、
前記第一のNICから受信して前記TCP/IPプロトコルスタックに送信する受信パケットに付されているアドレス、および前記TCP/IPプロトコルスタックから受信して前記第二のNICに送信する送信パケットに付されているアドレスを変換するアドレス変換処理部と、を有し、
前記アドレス変換処理部は、前記第一のNICから受信した前記受信パケットに付されている送信元MACアドレスを第一仮MACアドレスに変換し、送信元IPアドレスを第一仮IPアドレスに変換し、宛先MACアドレスを前記第一のNICに付されている第一のNICMACアドレスに変換し、および宛先IPアドレスを前記第一のNICに付されている第一のNICIPアドレスに変換する変換処理と、前記TCP/IPプロトコルスタックから受信した前記送信パケットに付されている送信元MACアドレス、送信元IPアドレス、宛先MACアドレスおよび宛先IPアドレスを、送信元および宛先として設定するアドレスに変換する変換処理を行なうことを特徴とするネットワークゲートウェイ装置。 The first NIC,
A second NIC,
A TCP / IP protocol stack for performing TCP / IP communication processing between the first NIC and the second NIC;
An address attached to a reception packet received from the first NIC and transmitted to the TCP / IP protocol stack, and a transmission packet received from the TCP / IP protocol stack and transmitted to the second NIC. An address conversion processing unit for converting the address being
The address conversion processing unit converts a source MAC address attached to the received packet received from the first NIC into a first temporary MAC address, and converts the source IP address into a first temporary IP address. Converting a destination MAC address to a first NIC MAC address assigned to the first NIC, and converting a destination IP address to a first NIC IP address assigned to the first NIC; Conversion processing for converting a source MAC address, a source IP address, a destination MAC address, and a destination IP address attached to the transmission packet received from the TCP / IP protocol stack into addresses set as a source and a destination A network gateway device characterized in that:
前記拡張TCP処理部において前記所定の処理が施された前記送信パケットを、前記TCP/IPプロトコルスタックから前記アドレス変換処理部に送信することを特徴とする請求項1に記載のネットワークゲートウェイ装置。 And an extended TCP processing unit that performs predetermined processing on the payload portion of the data sent from the TCP / IP protocol stack and returns the data to the TCP / IP protocol stack.
The network gateway device according to claim 1, wherein the transmission packet subjected to the predetermined processing in the extended TCP processing unit is transmitted from the TCP / IP protocol stack to the address translation processing unit.
前記アドレス変換処理部は、前記受信パケット判定部により前記受信パケットが前記処理対象であると判定された場合に、前記受信パケットに付されているアドレスの前記変換処理を行なうことを特徴とする請求項2に記載のネットワークゲートウェイ装置。 Further, the address translation processing unit includes a received packet determination unit that determines whether the received packet received from the first NIC is the predetermined processing target in the extended TCP processing unit,
The address conversion processing unit performs the conversion processing of an address attached to the received packet when the received packet determining unit determines that the received packet is the processing target. Item 3. The network gateway device according to Item 2.
前記TCP/IPプロトコルスタックから受信した前記送信パケットに付されている宛先MACアドレスおよび宛先IPアドレスを、宛先として新たに設定したMACアドレスおよびIPアドレスに変換する処理であることを特徴とする請求項1から請求項4のいずれかに記載のネットワークゲートウェイ装置。 The conversion process for converting the address set as the source and destination includes the source MAC address and source IP address attached to the transmission packet received from the TCP / IP protocol stack from the first NIC. Write back to the source MAC address and the source IP address attached to the received packet received,
The destination MAC address and the destination IP address attached to the transmission packet received from the TCP / IP protocol stack are converted into a MAC address and an IP address newly set as a destination. The network gateway device according to any one of claims 1 to 4.
前記TCP/IPプロトコルスタックから受信した前記送信パケットに付されている送信元MACアドレスおよび送信元IPアドレスを、送信元として新たに設定したMACアドレスおよびIPアドレスに変換する処理であることを特徴とする請求項1から請求項4のいずれかに記載のネットワークゲートウェイ装置。 In the conversion process for converting to the address set as the source and destination, the destination MAC address and the destination IP address attached to the transmission packet received from the TCP / IP protocol stack are received from the first NIC. Write back to the destination MAC address and the destination IP address attached to the received packet,
It is a process of converting a transmission source MAC address and a transmission source IP address attached to the transmission packet received from the TCP / IP protocol stack into a MAC address and an IP address newly set as a transmission source. The network gateway device according to any one of claims 1 to 4.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2011220366A JP5750352B2 (en) | 2011-10-04 | 2011-10-04 | Network gateway device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2011220366A JP5750352B2 (en) | 2011-10-04 | 2011-10-04 | Network gateway device |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2011180215A Division JP4843116B1 (en) | 2011-08-22 | 2011-08-22 | Network gateway device |
Publications (3)
Publication Number | Publication Date |
---|---|
JP2013046406A JP2013046406A (en) | 2013-03-04 |
JP2013046406A5 true JP2013046406A5 (en) | 2014-10-02 |
JP5750352B2 JP5750352B2 (en) | 2015-07-22 |
Family
ID=48009919
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2011220366A Active JP5750352B2 (en) | 2011-10-04 | 2011-10-04 | Network gateway device |
Country Status (1)
Country | Link |
---|---|
JP (1) | JP5750352B2 (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20150235052A1 (en) | 2014-02-17 | 2015-08-20 | Samsung Electronics Co., Ltd. | Electronic device and method for protecting users privacy |
JP6896073B2 (en) * | 2017-06-15 | 2021-06-30 | 三菱電機株式会社 | Gateway device and network system |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100405113B1 (en) * | 2001-06-22 | 2003-11-10 | 주식회사 엑스큐어넷 | Method for implementing transparent gateway or proxy in a network |
US7249191B1 (en) * | 2002-09-20 | 2007-07-24 | Blue Coat Systems, Inc. | Transparent bridge that terminates TCP connections |
US7756956B2 (en) * | 2002-11-14 | 2010-07-13 | Canon Development Americas, Inc. | Mimic support address resolution |
WO2008007432A1 (en) * | 2006-07-13 | 2008-01-17 | T T T Kabushikikaisha | Relay device |
-
2011
- 2011-10-04 JP JP2011220366A patent/JP5750352B2/en active Active
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP2012182802A5 (en) | ||
WO2014115157A8 (en) | Address resolution in software-defined networks | |
WO2012112719A3 (en) | Internet protocol mapping resolution in fixed mobile convergence networks | |
EP3240250A3 (en) | Virtual router terminating an overlay tunnel in a storage area network | |
JP2017123674A5 (en) | ||
JP2012533958A5 (en) | ||
WO2013052898A3 (en) | Systems and methods for data packet processing of ip fragments using network address translation functionality | |
WO2008097611A3 (en) | Wireless multicast proxy | |
WO2008146296A3 (en) | Network and computer firewall protection with dynamic address isolation to a device | |
WO2012108687A3 (en) | Method of detecting arp spoofing attacks using arp locking and computer-readable recording medium storing program for executing the method | |
EP3624429A3 (en) | Reducing arp/nd flooding in cloud environment | |
WO2008097454A3 (en) | Method and system of providing ip-based packet communications in a utility network | |
CA2875365C (en) | Routing vlan tagged packets to far end addresses of virtual forwarding instances using separate administrations | |
JP2014180049A5 (en) | ||
WO2010043254A8 (en) | Secure access in a communication network | |
JP2011514100A5 (en) | ||
WO2011103840A3 (en) | Virtual private cloud connection method and tunnel proxy server | |
JP2013532438A5 (en) | ||
WO2012053836A3 (en) | Ipv6 address management method and gateway performing same | |
WO2012126433A3 (en) | Access control method and system, and access terminal | |
WO2011005551A3 (en) | Method and apparatus for simulating ip multinetting | |
WO2014036382A3 (en) | Byte caching in wireless communication networks | |
TW200609737A (en) | Data transfer system, communication protocol conversion cradle, address conversion method used therefor, and program thereof | |
WO2011157126A3 (en) | Packet forwarding method and inter-network routing apparatus | |
MX2016000241A (en) | Method and apparatus for forwarding data of network device. |