JP2017017465A - Address conversion system, address conversion duplication method and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an address conversion system capable of duplicating address conversion processing, an address conversion duplication method and a program.SOLUTION: An address conversion device 2 includes: a storage unit 22; an address conversion control unit 21 which generates dynamic address conversion information triggered by the reception of a packet, to store into the storage unit 22; and a transmitter unit 23 which transmits the generated dynamic address conversion information to a PCP device 4 according to PCP. The PCP device 4 includes: a storage unit 43; a receiver unit 41 which receives the conversion information from the address conversion device 2, to store into the storage unit 43; and a transmitter unit 42 which transmits to an address conversion device 3 the conversion information received from the address conversion device 2. The address conversion device 3 includes: a storage unit 32; and a receiver unit 34 which receives the conversion information transmitted from the PCP device 4, to store into the storage unit 32.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an address translation system, an address translation duplexing method, and a program.

  In recent years, virtualization of communication devices is being performed. For example, Patent Document 1 discloses a technique related to a virtual router. Moreover, there is a vCPE NAT (virtual customer premises equipment network address translation) system as such a virtualized equipment. The vCPE NAT system is not a NAT device constructed by dedicated hardware, but a NAT device realized on a virtual machine having a general-purpose server configuration.

  In the vCPE NAT system, PCP (Port Control Protocol) defined in RFC (Request For Comment) 6887 of IETF (Internet Engineering Task Force) is recommended as a method for setting translation information for address translation. According to RFC 6887, a PCP Client device (hereinafter referred to as a PCP client device) acquires translation information of a static address transmitted from a subscriber terminal in the home, and sends the obtained conversion information to the vCPE NAT device according to the PCP. By transmitting, registration of static address translation information is performed in the vCPE NAT device. By following such a procedure, the subscriber can set the static conversion information for the vCPE NAT system regardless of the location as long as the subscriber is connected to the network.

JP-T-2004-509523

  In the case where the NAT device is duplicated, when the standby NAT device is switched to the active system, the conversion information that has been used by the active NAT device needs to be taken over. Here, as described above, the PCP Client device can hold the static conversion information set by the subscriber using the subscriber terminal. However, most of the conversion information in the vCPE NAT system is port conversion information generated when the vCPE NAT device receives a packet. In addition, there is no means for transmitting port conversion information generated when a packet is received between the PCP Client device and the vCPE NAT device. For this reason, the PCP Client device cannot hold all the conversion information that the vCPE NAT device has. Therefore, when the standby NAT device is switched to the active system, all conversion information cannot be taken over.

  The present invention has been made against the background described above, and it is an object of the present invention to provide an address translation system, a method for duplexing address translation, and a program that can duplicate address translation processing.

  The address translation system according to the present invention includes a first address translation device and a second address translation device that perform address translation, and the first address translation device and the second address translation according to PCP (Port Control Protocol). A PCP device that communicates at least address translation information with the device, and each of the first address translation device and the second address translation device operates as a first storage means and its own device as an active system. An address translation control unit that generates dynamic address translation information upon receipt of the packet and stores the information in the first storage unit, and a dynamic address generated by the address translation control unit. First transmission means for transmitting address conversion information to the PCP device according to the PCP, and receiving the conversion information transmitted by the PCP device A first receiving means for storing in the first storage means, wherein the address conversion control unit performs address conversion based on the conversion information stored in the first storage means, and the PCP device The second storage means, the second receiving means for receiving the conversion information transmitted by the first transmission means, and storing it in the second storage means, and the second storage means storing it in the second storage means And the second transmission means for transmitting the translation information transmitted by the first transmission means to the standby system out of the first address translation device and the second address translation device. .

  In addition, the duplexing method of address translation according to the present invention includes a step in which a first device that performs address translation operating as an active system generates dynamic address translation information when a packet is received, A step in which the first device transmits the generated conversion information to the second device in accordance with PCP (Port Control Protocol); a step in which the second device receives the conversion information in accordance with PCP; And a step of transmitting the conversion information to a third device in a standby system that performs address conversion according to PCP, and a step of receiving the conversion information according to PCP.

  In addition, the program according to the present invention uses PCP (Port Control Protocol) to generate dynamic address translation information generated when a first address translation device that performs address translation that is operating as an active system receives a packet. And receiving the translation information from the first address translation device and transmitting the received translation information to a second address translation device in a standby system that performs address translation according to PCP.

  ADVANTAGE OF THE INVENTION According to this invention, the address translation system which can duplicate the process of address translation, the duplex method of address translation, and a program can be provided.

It is a schematic diagram which shows the structure of the address translation system concerning embodiment. It is a schematic diagram which shows the structure of the address translation system concerning embodiment. It is a table | surface which shows an example of the conversion table concerning embodiment. It is a table | surface which shows the main elements in the flame | frame of the PCP PEER signal used for embodiment. 4 is a table showing a correspondence relationship between elements of a conversion table and elements of a PCP PEER response signal in an active NAT apparatus and PCP client apparatus according to an embodiment. 7 is a table showing a correspondence relationship between elements of a conversion table and elements of a PCP PEER request signal in a standby NAT apparatus and a PCP client apparatus according to an embodiment. It is a table | surface which shows the main elements in the flame | frame of the PCP MAP signal used for embodiment. 4 is a table showing a correspondence relationship between elements of a conversion table and elements of a PCP MAP request signal in an active NAT apparatus, a standby NAT apparatus, and a PCP client apparatus according to an embodiment. It is a table | surface which shows the main elements in the flame | frame of the PCP Announce signal used for embodiment. It is a sequence chart which shows an example of the operation | movement which transfers the dynamic conversion information produced | generated on the occasion of reception of the packet concerning embodiment to a standby NAT apparatus. It is a sequence chart which shows an example of the operation | movement which transmits the static conversion information which the PCP client apparatus concerning embodiment acquired to the NAT apparatus. It is a sequence chart which shows an example of the switching operation | movement of the NAT apparatus concerning embodiment. It is a sequence chart which shows an example of operation | movement of the address translation system when the NAT apparatus concerning embodiment is replaced | exchanged.

(Outline of the embodiment of the present invention)
Prior to the description of the embodiment, an outline of the embodiment according to the present invention will be described. FIG. 1 is a schematic diagram showing a configuration of an address translation system 1 according to an embodiment of the present invention. The address translation system 1 includes an address translation device 2, an address translation device 3, and a PCP device 4. In the address translation system 1, the address translation device 2 and the PCP device 4 communicate with each other according to the PCP. Similarly, the address translation device 3 and the PCP device 4 communicate with each other according to the PCP.

  The address translation device 2 and the address translation device 3 are both NAT devices that perform address translation between a first network such as an internal network and a second network such as an external network. Here, in the address translation system 1, one of the address translation device 2 and the address translation device 3 is operating as an active system, and the other is a standby system. That is, in the address translation system 1, the address translation processing is duplexed by hot standby using the address translation device 2 and the address translation device 3.

  The address translation device 2 includes an address translation control unit 21, a storage unit 22, a transmission unit 23, and a reception unit 24. The address conversion control unit 21 performs address conversion based on the conversion information stored in the storage unit 22. Further, the address translation control unit 21 generates dynamic address translation information triggered by reception of a packet and stores it in the storage unit 22 when the device is operating as an active system. Note that the conversion information is not limited to information indicating the correspondence between addresses in conversion, but may include information indicating the correspondence between ports in conversion. Therefore, the address translation device 2 may perform not only address translation but also port translation as address translation.

  The storage unit 22 is realized by a storage device such as a RAM (Random Access Memory) and stores conversion information. The transmission unit 23 and the reception unit 24 communicate with the PCP device 4 according to PCP. In particular, the transmission unit 23 transmits the dynamic address conversion information generated by the address conversion control unit 21 to the PCP device 4. The receiving unit 24 receives the conversion information transmitted by the PCP device 4 and stores it in the storage unit 22.

  The address translation device 3 has the same configuration as the address translation device 2. That is, the address translation device 3 includes an address translation control unit 31, a storage unit 32, a transmission unit 33, and a reception unit 34. Since each configuration of the address translation device 3 is the same as that of the address translation device 2 as described above, description thereof is omitted.

  The PCP device 4 is a device that communicates at least with respect to address translation information with the address translation device 2 and the address translation device 3 according to PCP. The PCP device 4 includes a reception unit 41, a transmission unit 42, and a storage unit 43.

  The reception unit 41 receives the conversion information transmitted by the transmission unit 23 of the address conversion device 2 or the transmission unit 33 of the address conversion device 3 and stores it in the storage unit 43. More specifically, the receiving unit 41 receives conversion information from the address translation device 2 or the address translation device 3 that is operating as an active system, and stores the received conversion information in the storage unit 43.

The transmission unit 42 waits for the conversion information transmitted from the transmission unit 23 of the address conversion device 2 or the transmission unit 33 of the address conversion device 3 stored in the storage unit 43, among the address conversion device 2 and the address conversion device 3. Send to the system. In other words, the transmission unit 42 reads the conversion information transmitted from the active system of the address conversion device 2 and the address conversion device 3 from the storage unit 43 and transmits it to the standby system.
The storage unit 43 is realized by a storage device such as a RAM and stores conversion information.

  As described above, in the address translation system 1, dynamic address translation information generated when a packet is received from the active address translation device to the standby address translation device via the PCP device 4 is received. Can be transferred. Therefore, according to the address translation system 1, the address translation process can be duplicated.

(Details of the embodiment)
The details of the embodiments of the present invention will be described below with reference to the drawings. FIG. 2 is a schematic diagram showing a configuration of the address translation system 100 according to the embodiment of the present invention. As shown in FIG. 2, the address translation system 100 includes a NAT device 200, a NAT device 300, a PCP client device 400, an L2 switch 110, and an L2 switch 120. The NAT devices 200 and 300 may be referred to as address translation devices. The PCP client device 400 may also be referred to as a PCP device.

  The address translation system 100 is a vCPE NAT system and is arranged in a facility (station building) of an Internet service provider. The address translation system 100 is realized on a virtual machine having a general-purpose server configuration. Therefore, in the NAT device 200, the NAT device 300, and the PCP client device 400 in the address translation system 100, the following components are realized using resources such as a CPU and a memory allocated to the virtual machine.

  In the address translation system 100, the NAT device 200 and the PCP client device 400 communicate with each other using PCP as a communication protocol. Similarly, the NAT device 300 and the PCP client device 400 communicate with each other using PCP as a communication protocol.

  The NAT device 200 and the NAT device 300 are both NAT devices that perform address conversion between the network 501 and the network 502. In the present embodiment, the network 501 is a network provided by an Internet service provider, and the network 502 is the Internet. For example, a subscriber terminal 600 is connected to the network 501. The NAT device 200 and the NAT device 300 transmit and receive packets to and from the network 501 via the L2 switch 110. The NAT device 200 and the NAT device 300 transmit and receive packets to and from the network 502 via the L2 switch 120.

  In the address translation system 100, one of the NAT device 200 and the NAT device 300 is operating as an active system, and the other is a standby system. As described above, in the address translation system 100, the NAT device 200 and the NAT device 300 are used to realize duplexing of the address translation processing in the communication between the network 501 and the network 502.

  In the following description of the present embodiment, for convenience of explanation, it is assumed that the NAT device 200 is an active system and the NAT device 300 is a standby system. Therefore, when describing each configuration of the NAT device 200, the configuration as the active system will be described. Further, when describing each configuration of the NAT device 300, a configuration as a standby system will be described. However, in order to function as a standby system, each configuration of the NAT device 200 may include a corresponding configuration in the NAT device 300 described later. Similarly, in order to function as an active system, each configuration of the NAT device 300 may include a corresponding configuration in the NAT device 200 described later.

The NAT device 200 includes a NAT control unit 210, a storage area 220, and a PCP server unit 235.
The NAT control unit 210 performs address conversion based on the conversion information stored in the storage area 220. In the present embodiment, the conversion information stored in the storage area 220 is specifically standby port setting information and port conversion information. Note that the standby port setting information is conversion information regarding a standby port when the subscriber terminal 600 is accessed from a device (not shown) on the network 502 side, and is specifically a conversion table of addresses and port numbers. The port conversion information is conversion information when the subscriber terminal 600 accesses a device (not shown) on the network 502 side, and is specifically an address and port number conversion table.

  Further, the NAT control unit 210 generates dynamic conversion information triggered by reception of a packet from the subscriber terminal 600 and stores it in the storage area 220. That is, the NAT control unit 210 generates conversion information for dynamic NAT and stores it in the storage unit 22. More specifically, the NAT control unit 210 generates port conversion information when receiving a packet from the subscriber terminal 600 and generating a session. Note that the port conversion information by the NAT device 200 is generated by a known technique. For example, the NAT control unit 210 generates port conversion information by referring to an address table managed in the NAT device 200 and selecting an unassigned address.

  The storage area 220 is a storage area in a storage device such as a RAM, and stores conversion information. The storage area 220 stores dynamic conversion information generated by the NAT control unit 210 and conversion information received from the PCP client device 400.

  The PCP server unit 235 communicates with the PCP client device 400 in accordance with PCP. Specifically, the PCP server unit 235 performs the following communication. The PCP server unit 235 transmits the dynamic conversion information generated by the NAT control unit 210 to the PCP client device 400. Further, the PCP server unit 235 receives the conversion information transmitted by the PCP client device 400. The PCP server unit 235 stores the received conversion information in the storage area 220.

  Specifically, the PCP server unit 235 transmits a PCP MAP response signal, a PCP PEER response signal, and a PCP Announce response signal to the PCP client device 400 as transmission according to PCP. Further, the PCP server unit 235 specifically receives a PCP MAP request signal, a PCP PEER request signal, and a PCP Announce request signal transmitted from the PCP client device 400 as reception in accordance with PCP.

  According to RFC 6887, a signal issued from the PCP client apparatus 400 is called a “request” signal, and a signal issued from the NAT apparatus 200 or the NAT apparatus 300 is called a “response” signal. Therefore, in accordance with such a definition, the PCP MAP response signal, the PCP PEER response signal, the PCP Announce response signal, the PCP MAP request signal, the PCP PEER request signal, and the PCP Announce request signal may be referred to as the PCP MAP response signal. The PCP PEER response signal and the PCP Announce response signal are not necessarily issued as responses to the PCP MAP request signal, the PCP PEER request signal, and the PCP Announce request signal, but may be issued spontaneously. For this reason, in the following description, “response” or “request” may be simply omitted and referred to as a PCP MAP signal, a PCP PEER signal, a PCP Announce signal, a PCP MAP signal, a PCP PEER signal, or a PCP Announce signal. . Details of these signals will be described later.

  The configuration related to transmission of the PCP server unit 235 may be referred to as a transmission unit, and the configuration related to reception of the PCP server unit 235 may be referred to as a reception unit.

  Next, the PCP client device 400 will be described. The PCP client device 400 includes a PCP client unit 415, a storage area 430, a static conversion information acquisition unit 440, and a switching unit 450.

The PCP client unit 415 communicates with the NAT device 200 and the NAT device 300 in accordance with PCP. Specifically, the PCP client unit 415 performs the following communication.
The PCP client unit 415 receives dynamic conversion information transmitted from the PCP server unit 235 of the NAT device 200 or the PCP server unit 335 of the NAT device 300. The PCP client unit 415 receives dynamic conversion information from the NAT device 200 when the NAT device 200 is an active system, and dynamically receives information from the NAT device 300 when the NAT device 300 is an active system. Receive conversion information. The PCP client unit 415 stores the received conversion information in the storage area 430.

  Further, the PCP client unit 415 reads the conversion information stored in the storage area 430 and transmits it to the NAT device 200 and the NAT device 300. Here, the PCP client unit 415 transmits the static conversion information acquired by the static conversion information acquisition unit 440 described later to the NAT device 200 and the NAT device 300. Further, the PCP client unit 415 transmits dynamic conversion information transmitted from the NAT device 200 or the NAT device 300 to the standby system of the NAT device 200 and the NAT device 300. In other words, the PCP client unit 415 has a role of transmitting dynamic conversion information obtained from the active NAT device to the standby NAT device in accordance with the PCP.

  Specifically, the PCP client unit 415 transmits a PCP MAP request signal, a PCP PEER request signal, and a PCP Announce request signal to the NAT device 200 or the NAT device 300 as transmission in accordance with PCP. Further, the PCP client unit 415 specifically receives a PCP MAP response signal, a PCP PEER response signal, and a PCP Announce response signal transmitted from the NAT device 200 or the NAT device 300 as reception in accordance with PCP.

  The configuration related to transmission of the PCP client unit 415 may be referred to as a transmission unit, and the configuration related to reception of the PCP client unit 415 may be referred to as a reception unit.

  The storage area 430 is a storage area in a storage device such as a RAM, and stores conversion information. The storage area 430 stores static conversion information acquired by the static conversion information acquisition unit 440 and dynamic conversion information received from the NAT device 200 or the NAT device 300.

  The static conversion information acquisition unit 440 acquires static conversion information. That is, the static conversion information acquisition unit 440 acquires conversion information for static NAT. The static conversion includes standby port setting information and port conversion information. That is, in the present embodiment, the static conversion information is an address and port number conversion table.

  Note that the static conversion information acquisition unit 440 acquires static conversion information by a known method. For example, conversion information specified by a user such as a subscriber or default conversion information is acquired from the subscriber terminal 600. More specifically, the user uses the subscriber terminal 600 arranged in the house or the like to the PCP client device 400 via the NAT device 200 or the NAT device 300 to receive port setting information and port conversion information. Send. Note that HTTP (Hypertext Transfer Protocol) is used as a communication protocol at that time.

  Further, the static conversion information acquisition unit 440 stores the acquired static conversion information in the storage area 430. The static conversion information stored in the storage area 430 is transmitted to the NAT device 200 and the NAT device 300 by the PCP client unit 415. The NAT device 200 and the NAT device 300 store the received standby port setting information and port conversion information in the storage area 220 or the storage area 320, and register these information.

  The switching unit 450 monitors the operating state of the NAT device 200 and the NAT device 300 that is operating as the active system, and when the operating state is abnormal, the switching unit 450 of the NAT device 200 and the NAT device 300 is the standby system. Switch to operate as the active system. The switching unit 450 realizes switching by performing communication according to the PCP with the NAT device 200 and the NAT device 300. The switching unit 450 transmits a PCP Announce signal (to be described later) to the active NAT device, and monitors the operating state of the active NAT device by confirming the response. In addition, the switching unit 450 switches the NAT device using the PCP Announce signal.

  Next, the NAT device 300 will be described. The NAT device 300 includes a NAT control unit 310, a storage area 320, and a PCP server unit 335. Here, the NAT control unit 310 corresponds to the NAT control unit 210 in the NAT device 200, the storage area 320 corresponds to the storage area 220 in the NAT device 200, and the PCP server unit 335 corresponds to the PCP server unit 235 in the NAT device 200. Equivalent to.

  Hereinafter, the configuration of the NAT device 300 as a standby system will be described. In the case of the standby system, the packet does not pass through the NAT device 300. For this reason, in the case of the standby system, the NAT control unit 310 does not perform the address conversion or dynamic generation of the conversion information described as the process of the NAT control unit 210 of the active NAT device 200.

  When the PCP server unit 335 receives an instruction to switch to the active system from the PCP client device 400, the NAT control unit 310 starts the above processing as the active system. At this time, the NAT control unit 310 instructs the L2 switch 110 and the L2 switch 120 to switch the packet path by transmitting a GArp (Gratuitous ARP) signal as a switching signal. Here, since the conversion information used by the NAT device 200 during operation is stored in the storage area 320, there is no problem even if the NAT device 300 is switched from the standby system to the active system.

  The storage area 320 is a storage area in a storage device such as a RAM, and stores conversion information. Even when the NAT device 300 is on standby, the storage area 320 stores the conversion information received by the PCP server unit 335 from the PCP client device 400.

  The PCP server unit 335 communicates with the PCP client device 400 in accordance with PCP. Specifically, the PCP server unit 335 performs the following communication. That is, the standby PCP server unit 335 receives, from the PCP client device 400, static conversion information acquired by the PCP client device 400 and dynamic conversion information generated by the active NAT device 200. The PCP server unit 335 stores the received conversion information in the storage area 320.

  The PCP server unit 335 receives the PCP MAP request signal, the PCP PEER request signal, and the PCP Announce request signal transmitted from the PCP client device 400 as reception according to the PCP, similarly to the active PCP server unit 235. Further, the PCP server unit 335 transmits a PCP MAP response signal, a PCP PEER response signal, and a PCP Announce response signal to the PCP client device 400 as transmission according to PCP.

  The configuration related to transmission of the PCP server unit 335 may be referred to as a transmission unit, and the configuration related to reception of the PCP server unit 335 may be referred to as a reception unit.

  The L2 switch 110 and the L2 switch 120 switch packet paths when receiving a switching signal (GArp signal) from the NAT device 200 or the NAT device 300. That is, the L2 switch 110 and the L2 switch 120 perform path switching so that the packet passes through a NAT device that newly operates as an active system.

  Here, the conversion table will be described. The storage area 220 of the NAT apparatus 200, the storage area 320 of the NAT apparatus 300, and the storage area 430 of the PCP client apparatus 400 store, for example, a conversion table as shown in FIG. The conversion table is conversion information expressed in a table format. Specifically, the conversion table is a table storing standby port setting information and port conversion information. As shown in FIG. 3, for example, the conversion information is collected in one table.

  In the conversion table shown in FIG. 3, “SA” (source address) represents the IP address of subscriber terminal 600, and “SP” (source port) represents the port number of subscriber terminal 600. “DA” (destination address) represents a destination IP address of a device existing in the network 502, and “DP” (destination port) represents a destination port number of this device. Further, “PA” (public address) represents an IP address issued from the NAT control unit 210 or the NAT control unit 310 or an IP address set as static conversion information by the user. Similarly, “PP” (public port) represents a port number issued from the NAT control unit 210 or the NAT control unit 310 or a port number set as static conversion information by the user. “Protocol” represents a protocol number. “Dynamic / Static” indicates whether the information is dynamic conversion information or static conversion information. That is, “static” in the table represents static conversion information, and “dynamic” represents dynamic conversion information.

  Assuming that the conversion table shown in FIG. 3 is a conversion table stored in the storage area 220 of the NAT device 200, the contents of the conversion table shown in FIG. In the conversion table shown in FIG. The conversion information 1 is an example of standby port setting information registered by the PCP MAP request signal. That is, no. The conversion information 1 is static conversion information received by the NAT device 200 from the PCP client device 400. No. The conversion information 2 is an example of port conversion information registered by the PCP PEER request signal. That is, no. The conversion information 2 is also static conversion information received by the NAT device 200 from the PCP client device 400. No. The conversion information 3 is an example of port conversion information generated by the active NAT device, that is, the NAT device 200. That is, no. The conversion information 3 is dynamic conversion information.

  As described above, the NAT device 200, the NAT device 300, and the PCP client device 400 manage dynamic conversion information in one table in addition to conversion information statically set by a user such as a subscriber. Here, as shown in FIG. 3, in the present embodiment, since the conversion information is managed as static conversion information or dynamic conversion information, each stored conversion information is It is possible to identify whether it is static or dynamic. For this reason, the handling of conversion information can be changed depending on whether it is static or dynamic. For example, static conversion information can be stored semi-permanently, and dynamic conversion information can have a storage time limit.

  Next, details of communication according to the PCP in the present embodiment will be described. In the present embodiment, conversion information is transferred and a NAT device is switched using a PCP PEER signal, a PCP MAP signal, and a PCP Announce signal. In the present embodiment, these signals defined in RFC 6887 are expanded and used as follows. According to RFC 6887, the PCP PEER signal is a signal used when a user registers address and port conversion information necessary for accessing the device on the network 502 side from the subscriber terminal 600. . Further, according to RFC 6887, the PCP MAP signal is a signal used when a user registers address and port conversion information necessary for accessing the subscriber terminal 600 from a device on the network 502 side. . Further, according to RFC 6887, the PCP Announce signal is used when the port mapping setting based on the conversion information transmitted from the PCP client device 400 is lost due to a restart of the NAT device or the like. Signal.

  Here, the PCP PEER signal used in the present embodiment will be described. FIG. 4 is a table showing main elements in the frame of the PCP PEER signal used in the present embodiment. In the table of FIG. 4, items indicated by “Req” indicate elements of the PCP PEER request signal, and items indicated by “Res” indicate elements of the PCP PEER response signal.

  The PCP PEER signal used in the present embodiment extends the PCP PEER signal defined in RFC 6887 in the following points. That is, as shown in FIG. 4, in the PCP PEER signal used in the present embodiment, a Dynamic / Static notification area (element surrounded by a thick line in FIG. 4) is newly added as a signal element. In addition, as described above, the PCP PEER signal defined in RFC 6887 is used to transmit static conversion information. However, in the PCP PEER signal according to the present embodiment, other than static conversion information. It is characteristic in that it is also used for transmitting dynamic conversion information.

  The PCP server unit 235 of the NAT device 200 that is the active system transmits the dynamic conversion information generated by the NAT control unit 210 to the PCP client device 400 using a PCP PEER response signal. In addition, the PCP client unit 415 of the PCP client device 400 acquires the dynamic conversion information generated by the NAT control unit 210 by receiving this PCP PEER response signal. In addition, the PCP client unit 415 of the PCP client device 400 transmits the acquired dynamic conversion information to the NAT device 300 that is a standby system using a PCP PEER request signal. The PCP server unit 335 of the NAT device 300 acquires the dynamic conversion information generated by the NAT device 200 by receiving this PCP PEER request signal.

FIG. 5 is a table showing a correspondence relationship between elements of the conversion table and elements of the PCP PEER response signal in the active NAT apparatus 200 and the PCP client apparatus 400. As shown in FIG. 5, each element of the conversion table is transmitted / received from the active NAT device 200 to the PCP client device 400 by the PCP PEER response signal as follows.
The table element “Protocol” is transmitted and received by the signal element “Protocol” of the PCP PEER response signal.
The table element “Dynamic / Static” is transmitted and received by the signal element “Dynamic / Static” of the PCP PEER response signal.
The table element “SP” is transmitted / received by the signal element “Internal Port” of the PCP PEER response signal.
The table element “PP” is transmitted / received by the signal element “Assigned External Port” of the PCP PEER response signal.
The table element “PA” is transmitted / received by the signal element “Assigned External IP Address” of the PCP PEER response signal.
The table element “SA” is transmitted and received by a signal element “Internal IP Address” of the PCP PEER response signal.
The table element “DA” is transmitted and received by the signal element “Remote peer IP Address” of the PCP PEER response signal.
The table element “DP” is transmitted and received by the signal element “Remote peer port” of the PCP PEER response signal.

  When the conversion information is static, the value of the expanded signal element “Dynamic / Static” in the PCP PEER signal is a value indicating static, that is, “static”. When the conversion information is dynamic, the value of the extended signal element “Dynamic / Static” in the PCP PEER signal is a value indicating dynamic, that is, “dynamic”. Therefore, for the dynamic conversion information generated by the NAT control unit 210 transmitted from the active NAT apparatus 200, the value of the signal element “Dynamic / Static” is “dynamic”. As described above, the active NAT device 200 transmits dynamic conversion information using the PCP PEER signal to which “dynamic” that is an identifier indicating dynamic conversion information is added.

  When the PCP client apparatus 400 receives the conversion information from the active NAT apparatus 200, the PCP client apparatus 400 confirms the signal element “Dynamic / Static” to determine whether each conversion information is dynamic conversion information or static conversion information. Can be distinguished. That is, when “static” is set in the extended area of the PCP PEER response signal, the PCP client apparatus 400 determines that the conversion information is static, and in the extended area of the PCP PEER response signal, If “dynamic” is set, it is determined as dynamic conversion information.

  In the present embodiment, in the case of static conversion information, “static” is explicitly set in the conversion table and the PCP PEER signal, but “static” may not be set. That is, in the case of static conversion information, nothing may be set in the table element “Dynamic / Static” and the signal element “Dynamic / Static”. In this case, if nothing is specified in the signal element “Dynamic / Static”, the PCP client apparatus 400 determines that the conversion information is static.

FIG. 6 is a table showing a correspondence relationship between elements of the conversion table and elements of the PCP PEER request signal in the standby NAT apparatus 300 and the PCP client apparatus 400. As shown in FIG. 6, each element of the conversion table is transmitted / received from the PCP client apparatus 400 to the standby NAT apparatus 300 as follows in response to a PCP PEER request signal.
The table element “Protocol” is transmitted and received by the signal element “Protocol” of the PCP PEER request signal.
The table element “Dynamic / Static” is transmitted and received by the signal element “Dynamic / Static” of the PCP PEER request signal.
The table element “SP” is transmitted / received by the signal element “Internal Port” of the PCP PEER request signal.
The table element “PP” is transmitted / received by the signal element “Suggested External Port” of the PCP PEER request signal.
The table element “PA” is transmitted / received by the signal element “Suggested External IP Address” of the PCP PEER request signal.
The table element “SA” is transmitted / received by the signal element “Internal IP Address” of the PCP PEER request signal.
The table element “DA” is transmitted / received by the signal element “Remote peer IP Address” of the PCP PEER request signal.
The table element “DP” is transmitted / received by the signal element “Remote peer port” of the PCP PEER request signal.

  Here, regarding the dynamic conversion information generated by the NAT control unit 210 transmitted from the PCP client device 400 to the standby NAT device 300, the value of the table element “Dynamic / Static” and the signal element “Dynamic” are used. The value of “/ Static” is “dynamic”.

  The PCP PEER request signal is used not only for dynamic conversion information transmission to the standby NAT device 300 but also for static conversion information transmission to the active NAT device 200 and the standby NAT device 300. It is done. In this case, for the static conversion information transmitted from the PCP client device 400, the value of the table element “Dynamic / Static” and the value of the signal element “Dynamic / Static” are “static”. The correspondence relationship when the static conversion information is transmitted to the active NAT device 200 by the PCP PEER request signal is the same as the correspondence relationship shown in FIG. That is, the standby NAT device in FIG. 6 may be replaced with an active NAT device.

  By receiving the PCP PEER request signal as described above, the standby NAT device 300 acquires the dynamic conversion information generated by the active NAT device 200. Thus, in this embodiment, not only static conversion information but also dynamic conversion information generated by the active NAT device is transmitted and received between the NAT device and the PCP client device by the PCP PEER signal. The

  Next, the PCP MAP signal used in this embodiment will be described. FIG. 7 is a table showing main elements in the frame of the PCP MAP signal used in the present embodiment. In the table of FIG. 7, items indicated by “Req” indicate elements of the PCP MAP request signal, and items indicated by “Res” indicate elements of the PCP MAP response signal.

  The PCP MAP signal used in the present embodiment extends the PCP MAP signal defined in RFC 6887 in the following points. That is, as shown in FIG. 7, in the PCP MAP signal used in the present embodiment, a new Dynamic / Static notification area (element surrounded by a thick line in FIG. 7) is a signal element as in the PCP PEER signal. Has been added as.

  The PCP client unit 415 of the PCP client device 400 transmits the static conversion information acquired by the static conversion information acquisition unit 440 to the NAT device 200 and the NAT device 300 using a PCP MAP request signal. The PCP server unit 235 of the NAT device 200 and the PCP server unit 335 of the NAT device 300 receive this PCP MAP request signal to acquire static conversion information.

FIG. 8 is a table showing a correspondence relationship between elements of the conversion table and elements of the PCP MAP request signal in the active NAT apparatus 200, the standby NAT apparatus 300, and the PCP client apparatus 400. As shown in FIG. 8, each element of the conversion table is transmitted / received from the PCP client device 400 to the NAT device 200 and the NAT device 300 as follows by a PCP MAP request signal.
The table element “Protocol” is transmitted and received by the signal element “Protocol” of the PCP MAP request signal.
The table element “Dynamic / Static” is transmitted and received by the signal element “Dynamic / Static” of the PCP MAP request signal.
The table element “SP” is transmitted / received by the signal element “Internal Port” of the PCP MAP request signal.
The table element “PP” is transmitted / received by the signal element “Suggested External Port” of the PCP MAP request signal.
The table element “PA” is transmitted and received by the signal element “Suggested External IP Address” of the PCP MAP request signal.
The table element “SA” is transmitted and received by the signal element “Internal IP Address” of the PCP MAP request signal.

  As described above, the PCP MAP signal according to the present embodiment is extended to include a dynamic / static notification area indicating whether the conversion information is static or dynamic as a signal element. For this reason, the PCP client apparatus 400 can distinguish whether the conversion information to be transmitted by the PCP MAP signal is static conversion information or dynamic conversion information. When static conversion information is transmitted by the PCP MAP signal, the Dynamic / Static area of the signal element and the table element is “static”.

  Next, a PCP Announce signal used in this embodiment will be described. FIG. 9 is a table showing main elements in a frame of the PCP Announce signal used in the present embodiment. In the table of FIG. 9, items indicated by “Req” indicate elements of the PCP Announce request signal, and items indicated by “Res” indicate elements of the PCP Announce response signal.

  The PCP Announce signal used in the present embodiment extends the PCP Announce signal defined in RFC 6887 in the following points. That is, in this embodiment, since the PCP Announce signal is used for system switching of the NAT device, the PCP Announce signal uses an Active / Inactive / Announce notification area (element surrounded by a bold line in FIG. 9) as a signal element. Has been extended to include. This signal element indicates whether the PCP Announce signal is a signal notifying the switch to the active system using the PCP Announce signal, or the signal notifying the switch to the standby system using the PCP Announce signal. This is for identifying whether it is a normal PCP Announce signal.

  The switching unit 450 of the PCP client device 400 performs switching using a PCP Announce signal to which “Active” or “Inactive”, which is information for instructing switching, is added. Therefore, when the PCP client unit 415 of the PCP client apparatus 400 instructs the NAT apparatus to switch to the active system, this signal element is set to “Active” and transmits a PCP Announce signal to the NAT apparatus.

  When the PCP client unit 415 instructs the NAT device to switch to the standby system, this signal element is set to “Inactive” and transmits a PCP Announce signal to the NAT device.

  When transmitting a PCP Announce signal as a normal PCP Announce signal when the port mapping setting is lost, the PCP client unit 415 sets “Announce” to this signal element for transmission. In the case of a normal PCP Announce signal, there is no need to specify anything for this signal element.

  Next, the operation of the address translation system 100 will be described. First, an operation for transferring dynamic conversion information generated upon reception of a packet from the active NAT device to the standby NAT device will be described. In this case, the NAT device 200 is assumed to be the active system, and the NAT device 300 is assumed to be the standby system.

  FIG. 10 is a sequence chart illustrating an example of an operation for transferring dynamic conversion information generated upon reception of a packet to a standby NAT device. Hereinafter, an operation flow will be described with reference to FIG.

  In step 10 (S10), the NAT device 200 receives the packet.

  In step 11 (S11), the NAT control unit 210 of the NAT device 200 generates dynamic conversion information. Specifically, the NAT control unit 210 creates port conversion information.

  In step 12 (S12), the NAT control unit 210 stores the created port conversion information. Specifically, the NAT control unit 210 stores the data in the storage area 220 in the format shown in FIG.

  In step 13 (S13), the PCP server unit 235 of the NAT device 200 transmits the created port conversion information to the PCP client device 400. Specifically, the PCP server unit 235 transmits the port conversion information to the PCP client device 400 using the above-described PCP PEER response signal.

  In step 14 (S14), the PCP client apparatus 400 receives and stores the port conversion information transmitted in step 13. Specifically, the PCP client unit 415 receives the PCP PEER response signal transmitted in step 13 and stores the port conversion information in the storage area 430.

  In step 15 (S15), the PCP client unit 415 of the PCP client device 400 transmits the currently held port conversion information to the standby NAT device 300. Specifically, the PCP client unit 415 transmits the port conversion information to the NAT device 300 using the above-described PCP PEER request signal.

  In step 16 (S16), the NAT device 300 stores the received port conversion information. Specifically, the PCP server unit 335 of the NAT device 300 receives the PCP PEER request signal transmitted in step 15 and stores the port conversion information in the storage area 320.

  In step 17 (S 17), the PCP server unit 335 transmits the PCP PEER response signal to the PCP client device 400, thereby notifying the PCP client device 400 of the processing result of step 16.

  With the above operation, the port conversion information is synchronized between the active NAT device and the standby NAT device, and the call information can be continued when the system is switched due to a failure.

  Next, an operation of transmitting the static conversion information acquired by the PCP client device 400 to the NAT device 200 and the NAT device 300 will be described.

  FIG. 11 is a sequence chart illustrating an example of an operation of transmitting the static conversion information acquired by the PCP client device 400 to the NAT device 200 and the NAT device 300. The operation flow will be described below with reference to FIG.

  In step 20 (S20), the PCP client unit 415 of the PCP client device 400 acquires static conversion information set by the user from the storage area 430. Specifically, the PCP client unit 415 reads out the static standby port setting information and port conversion information acquired by the static conversion information acquisition unit 440 from the storage area 430.

  In step 21 (S21), the PCP client unit 415 transmits the acquired static conversion information to the NAT device 200 and the NAT device 300. Specifically, the PCP client unit 415 transmits static standby port setting information to the NAT device 200 and the NAT device 300 using the above-described PCP MAP request signal. Further, the PCP client unit 415 transmits static port conversion information to the NAT device 200 and the NAT device 300 using the above-described PCP PEER request signal.

  In step 22 (S22), the NAT device 200 and the NAT device 300 receive and store the standby port setting information and port conversion information transmitted in step 21. Specifically, when the PCP server unit 235 receives the PCP MAP request signal transmitted in step 21, it stores the standby port setting information in the storage area 220. When receiving the PCP PEER request signal transmitted in step 21, the PCP server unit 235 stores the port conversion information in the storage area 220. Similarly, when receiving the PCP MAP request signal transmitted in step 21, the PCP server unit 335 stores standby port setting information in the storage area 320. When the PCP server unit 335 receives the PCP PEER request signal transmitted in step 21, the PCP server unit 335 stores the port conversion information in the storage area 320.

  In step 23 (S23), the PCP server unit 235 and the PCP server unit 335 transmit the PCP MAP response signal or the PCP PEER response signal to the PCP client device 400, thereby obtaining the processing result of step 22 as the PCP client device. Tell 400.

  With the above operation, the NAT device 200 and the NAT device 300 can acquire static conversion information held by the PCP client device 400.

  Next, the switching operation of the NAT device will be described. When a shutdown or disconnection occurs in the active NAT device, the address translation system 100 switches the standby NAT device to the active NAT device. In this switching field operation, the above-described PCP Announce signal is used.

  FIG. 12 is a sequence chart showing an example of the switching operation of the NAT device. Here, an operation will be described as an example when an abnormality occurs in the active NAT device 200 and the standby NAT device 300 is switched to the active system. Hereinafter, an operation flow will be described with reference to FIG.

  In step 30 (S30), an abnormality such as shutdown or disconnection occurs in the active NAT device 200.

  In step 31 (S31), the PCP client device 400 transmits the above-described PCP Announce request signal to the NAT device 200 that is the active system. Specifically, the PCP client unit 415 of the PCP client device 400 sets the Announce in the Active / Inactive / Announce notification area of the PCP Announce request signal, and performs transmission. Note that the PCP client unit 415 may perform transmission without setting anything in the notification area.

  When the switching unit 450 of the PCP client device 400 does not receive the above-described PCP Announce response signal from the NAT device 200 in response to the signal transmitted in step 31, it determines that an abnormality has occurred in the NAT device 200.

  In step 32 (S32), the switching unit 450 starts switching of the NAT device. As a result, the PCP client unit 415 transmits “PCP Announce request signal” to the NAT device 300 by setting “Active” in the notification area to instruct the NAT device 300 to switch to the active system.

  In step 33 (S33), the NAT device 300 which has been a standby system makes a state transition to the active system.

  In step 34 (S34), the PCP server unit 335 of the NAT device 300 transmits a PCP Announce response signal to the PCP client device 400 in order to transmit the state transition result.

  In step 35 (S35), the PCP client unit 415 sets “Inactive” in the notification area and issues a PCP Announce request signal in order to instruct the NAT device 200 that has been the active system to switch to the standby system. Is transmitted to the NAT device 200.

In step 36 (S36), the NAT device 200 makes a state transition to the standby system.
In step 37 (S37), the PCP server unit 235 of the NAT device 200 transmits a PCP Announce response signal to the PCP client device 400 in order to transmit the state transition result.

In step 38 (S38), the NAT device 300 transmits a GArp signal to the L2 switch 110 and the L2 switch 120. In step 39 (S39), the NAT device 300 receives a GArp Reply signal that is a response signal to the GArp signal transmitted in step 38.
With the above operation, the address translation system 100 performs system switching of the NAT device.

  Finally, the operation when the NAT device is replaced will be described. FIG. 13 is a sequence chart showing an example of the operation of the address translation system 100 when the NAT device is replaced. Here, a case will be described as an example where the NAT device 200 that has become a standby system is replaced with a new NAT device 200 by the operation shown in FIG. That is, in FIG. 12, the NAT device 300 is an active system, and the NAT device 200 is a standby system. The operation flow will be described below with reference to FIG.

  In step 40 (S40), device replacement of the NAT device 200 which is a standby system is performed.

  In step 41 (S41), the new NAT device 200 transmits a PCP Announce response signal to the PCP client device 400. Note that the PCP client unit 415 sets Announce in the Active / Inactive / Announce notification area of the PCP Announce response signal, and performs transmission.

  In step 42 (S42), the PCP client unit 415 transmits “PCP Announce request signal” to the NAT device 200 with “Inactive” set in the notification area to instruct the NAT device 200 to become a standby system.

  In step 43 (S43), the NAT device 200 transmits a PCP Announce response signal to the PCP client device 400.

  In step 44 (S 44), the PCP client unit 415 of the PCP client apparatus 400 acquires conversion information from the storage area 430. Specifically, the PCP client unit 415 reads out static standby port setting information, port conversion information, and dynamic port conversion information from the storage area 430.

  In step 45 (S45), the PCP client unit 415 transmits the conversion information to the NAT device 200. Specifically, the PCP client unit 415 transmits the standby port setting information to the NAT device 200 using the above-described PCP MAP request signal. Further, the PCP client unit 415 transmits the port conversion information to the NAT device 200 using the above-described PCP PEER request signal.

In step 46 (S46), the NAT device 200 stores the received port conversion information and standby port setting information. Specifically, the PCP server unit 235 of the NAT device 200 receives the PCP PEER request signal and the PCP MAP request signal transmitted in step 45 and stores the port conversion information and the standby port setting information in the storage area 320.
Through the above operation, the replaced new standby NAT device can obtain the conversion information.

  As described above, in the address translation system 100, the dynamic address translation information generated when the packet is received from the active NAT apparatus to the standby NAT apparatus via the PCP client apparatus 400 is received. Can be transferred. Also, transfer of conversion information and switching of the NAT device are realized by using PCP signals. According to such an address translation system 100, the address translation process can be duplicated. More specifically, according to the address translation system 100, the hot standby can be duplicated regardless of the location of the active NAT device and the standby NAT device.

  Note that the present invention is not limited to the above-described embodiment, and can be changed as appropriate without departing from the spirit of the present invention. The address translation system 100 has a computer function, and each configuration of the address translation system 100 can be realized by executing a program by the CPU.

  The program may be stored using various types of non-transitory computer readable media and supplied to a computer. Non-transitory computer readable media include various types of tangible storage media. Examples of non-transitory computer-readable media include magnetic recording media (for example, flexible disks, magnetic tapes, hard disk drives), magneto-optical recording media (for example, magneto-optical disks), CD-ROMs (Read Only Memory), CD-Rs, CD-R / W and semiconductor memory (for example, mask ROM, PROM (Programmable ROM), EPROM (Erasable PROM), flash ROM, RAM (random access memory)) are included. The program may also be supplied to the computer by various types of transitory computer readable media. Examples of transitory computer readable media include electrical signals, optical signals, and electromagnetic waves. The temporary computer-readable medium can supply the program to the computer via a wired communication path such as an electric wire and an optical fiber, or a wireless communication path.

1, 100 Address translation system 2, 3 Address translation device 21, 31 Address translation control unit 22, 32, 43 Storage unit 23, 33, 42 Transmission unit 24, 34, 41 Reception unit 110, 120 L2 switch 200, 300 NAT device 210, 310 NAT control unit 220, 320, 430 Storage area 235, 335 PCP server unit 400 PCP client device 415 PCP client unit 440 Static conversion information acquisition unit 450 Switching unit 501, 502 Network 600 Subscriber terminal

Claims (9)

A first address translation device and a second address translation device for performing address translation;
In accordance with PCP (Port Control Protocol), a PCP device that communicates with the first address translation device and the second address translation device at least about address translation information,
The first address translation device and the second address translation device are respectively
First storage means;
An address translation control unit that generates dynamic address translation information triggered by reception of a packet and stores the dynamic address translation information in the first storage unit when the device is operating as an active system;
First transmission means for transmitting the dynamic address translation information generated by the address translation control unit to the PCP device according to the PCP;
Receiving the conversion information transmitted by the PCP device, and storing the first information in the first storage means,
The address conversion control unit performs address conversion based on the conversion information stored in the first storage unit,
The PCP device
A second storage means;
A second receiving means for receiving the conversion information sent by the first sending means and storing it in the second storage means;
The translation information transmitted by the first transmission means stored in the second storage means is transmitted to the standby system out of the first address translation device and the second address translation device. An address conversion system comprising: a second transmission unit. The PCP device
One of the first address translation device and the second address translation device that is operating as an active system is monitored, and when the operation status is abnormal, the first address translation device, The address translation system according to claim 1, further comprising switching means for switching the standby system to operate as the active system in the second address translation device. The PCP device
Static translation information acquisition means for acquiring static address translation information and storing it in the second storage means,
The second transmission means sends the conversion information acquired by the static conversion information acquisition means stored in the second storage means to the first address conversion device and the second address conversion device. The address conversion system according to claim 1 or 2. The address translation system according to claim 1, wherein the first address translation device, the second address translation device, and the PCP device are configured on a virtual machine. The said 1st transmission means transmits the said conversion information using the PCP PEER signal to which the identifier which shows that it is dynamic address conversion information was added. Address translation system. The address conversion system according to claim 2, wherein the switching unit performs switching using a PCP Announce signal to which information instructing switching is added. The address translation system according to any one of claims 1 to 6, wherein the first address translation device, the second address translation device, and the PCP device are provided in a facility of an Internet service provider. A step of generating a dynamic address translation information triggered by reception of a packet by a first device performing address translation operating as an active system;
The first device transmits the generated conversion information to the second device in accordance with PCP (Port Control Protocol);
The second device receiving the conversion information according to PCP;
The second device transmits the conversion information to a third device in a standby system that performs address conversion according to PCP;
A second method of address translation comprising: the third device receiving the translation information according to PCP. Dynamic address translation information generated by a first address translation device that performs address translation operating as an active system triggered by reception of a packet is transmitted from the first address translation device according to PCP (Port Control Protocol). Receiving step;
A program for causing a computer to execute the step of transmitting the received conversion information to a second address conversion device of a standby system that performs address conversion in accordance with PCP.

Images