JP4692570B2 - Communications system - Google Patents

Description

  The present invention relates to data communication performed between a plurality of communication devices via a communication network, and more particularly to a technique for ensuring reliability such as falsification of data or prevention of eavesdropping by a third party.

  Conventionally, when a communication system is constructed by interconnecting LANs (Local Area Networks) installed in a plurality of bases (for example, each branch) in a company or the like, the LANs in each base from the viewpoint of ensuring reliability. Is generally connected by a dedicated communication line (hereinafter referred to as a dedicated line). However, laying a dedicated line requires a great investment, and its operation and management requires a large amount of money. Therefore, it is desired to realize reliability of data communication while performing data communication using a general public line shared by an unspecified number of people such as the Internet. An example of a technology that meets such needs is VPN (Virtual Private Network). VPN is a technology that enables a point-to-point connection virtually like a dedicated line using a general public line. In VPN, reliability is ensured by establishing a communication path (hereinafter referred to as a VPN tunnel) corresponding to encryption and other party authentication between communication devices at both ends of data communication, and performing data communication via this VPN tunnel. Realized.

In order to use VPN, it is necessary to make various settings for encryption and other party authentication (for example, storing an encryption key and an authentication key in advance) in communication devices located at both ends of the VPN tunnel. In addition, the setting contents of both communication devices should not contradict each other. Conventionally, this type of setting work is generally performed manually by an operation manager of the communication system. However, when there are a large number of communication devices that need to be set up, such as in-house communication systems, the setting work requires a lot of work, and a setup error causes troubles in establishing a VPN tunnel. There was a problem. Therefore, various techniques for reducing the labor of setting work for using VPN have been proposed, and the technique disclosed in Patent Document 1 can be cited as an example. Patent Document 1 includes a setting server that stores in advance a network setting information integrated file (hereinafter referred to as “setting information file”) in which various setting contents regarding encryption and other party authentication are described, and both ends of the VPN tunnel. It is disclosed that each of the communication devices (in Patent Document 1, an inter-LAN connection device) downloads the setting information file and performs settings for encryption and counterpart authentication according to the file contents.
JP 2004-328688 A

  According to the technique disclosed in Patent Document 1, a VPN tunnel connection destination is determined in advance for each communication device, and a setting information file corresponding to the connection destination is created and stored in the setting server. These communication devices can always be connected to each other through a VPN tunnel in a constant connection form (hereinafter referred to as network topology). For example, as shown in FIG. 9A, four communication devices from communication device 80A to communication device 80D are connected to the communication network, and the network topology shown in FIG. 9B is connected to these four communication devices. For example, a setting information file having the following content may be stored in the setting server 90. That is, in the setting information file for the communication devices 80A, 80C, and 80D, the VPN tunnel connection destination is the communication device 80B, and in the setting information file for the communication device 80B, the VPN tunnel connection destination is the communication device. It is only necessary to write 80A, 80C and 80D. In addition, it is necessary to write various parameters (encryption key and partner authentication key) used when establishing the VPN tunnel in each setting information file.

By the way, in the network topology shown in FIG. 9B, when a failure occurs in a communication device that plays the role of an intermediate node that transfers received data to another node (communication device 80B in FIG. 9), the intermediate node Communication between nodes between them becomes impossible. When a failure occurs in a communication device assigned the role of an intermediate node in the network topology, it is necessary to take measures against the failure such as rearranging the network topology (see dotted line in FIG. 9B). In the technique disclosed in Document 1, a VPN tunnel connection destination for each communication device is determined in advance (in other words, which node of the network topology plays a role for each communication device is determined in advance). ) Is the premise, and this is not possible. Further, in a communication system in which each communication device is not always operated as in a video conference system, the same problem occurs because the communication device to which the role of the intermediate node is not always operated. obtain.
The present invention has been made in view of the above problems, and enables easy establishment of a VPN tunnel between a plurality of communication devices, and optimization of the network topology according to the operation status of each communication device. It is an object to provide a technology that makes it possible to perform the above.

  In order to solve the above problems, the present invention includes a plurality of slave units and a master unit that communicates with each of the plurality of slave units, and each of the plurality of slave units is provided from the master unit A VPN tunnel is established with other slave units according to the control data, and the master unit monitors its operation by communicating with each of the plurality of slave units and relays data to other slave units. When it is detected that the slave unit assigned the role of the intermediate node to be performed is not operating, control data is given to instruct to establish a VPN tunnel with the slave unit that is not operating The control unit calculates and gives new control data for instructing to establish a VPN tunnel with another slave unit different from the slave unit that is not in operation, and is not in operation Network topology so that the slave unit does not become an intermediate node The to provide a communication system, characterized in that recombining.

  In a more preferred aspect, each of the plurality of slave units included in the communication system is a relay device that relays data communication between a subordinate communication terminal and another communication terminal, and the master unit includes the plurality of slave units. The network topology is treated as if the slave units that are not performing data communication are handled by all the slave communication terminals under the control of the data communication execution status by communicating with the communication terminals under each slave unit It is characterized by recombining.

  In a further preferred aspect, each of the plurality of slave units included in the communication system notifies the master unit of the start when the operation is started, and the master unit represents an initial network topology that represents a predetermined network topology. Topology data is stored in advance, and the base unit determines the connection destination of the VPN tunnel by applying each of the slave units that have notified the start of operation to each node of the network topology represented by the initial topology data. And calculating control data indicating that a VPN tunnel is established with the connection destination.

Hereinafter, the best mode for carrying out the present invention will be described with reference to the drawings.
FIG. 1A is a diagram illustrating a configuration example of a communication system 1 according to an embodiment of the present invention. This communication system 1 is for providing a video conference communication service to users at each of a plurality of geographically distant bases (for example, each branch of a company). In the example shown in FIG. 1 (A), the communication system 1 uses a local LAN 30-k (k = 1-7) laid at each of seven bases as a relay device 20-k (k = 1-7). The network topology management apparatus 40 is connected to the communication network 10 and further connected to the communication network 10. In this embodiment, a case where seven local LANs 30-k are each connected to the communication network 10 via the relay device 20-k is described. However, the local LANs 30-k connected to the communication network 10 are described. The number of k may be 2 to 6, or may be 8 or more.

  The communication network 10 is a general public line shared by an unspecified number of people such as the Internet. The communication network 10 mediates data communication performed according to a predetermined communication protocol between communication devices accommodated in the own network. Various communication protocols can be used for each protocol layer. For example, IP (Internet Protocol) is used for the network layer, TCP (Transmission Control Protocol) or UDP (User Datagram Protocol) is used for the transport layer, and RTP (Real-time Transport Protocol) is used for the application layer. It is. Further, in data communication via the communication network 10, it is possible to prevent data tampering or wiretapping by a third party using the VPN described above.

  FIG. 1B is a diagram illustrating a configuration example of the local LAN 30-k. In the example shown in FIG. 1B, the local LAN 30-k includes a voice communication terminal 31-k and an image communication terminal 32-k. The voice communication terminal 31-k in FIG. 1B collects the voice of the user and sends voice data representing the voice to the multipoint connection device (not shown in FIG. The electronic device receives the audio data transmitted from the multipoint connection device and outputs the sound represented by the audio data. Here, the multipoint connection device receives voice data transmitted from each of the plurality of voice communication terminals 31-k, and receives from each voice communication terminal 31-k another voice communication terminal 31-k. This is an electronic device that transmits audio data obtained by mixing received audio data. On the other hand, the image communication terminal 32-k multicasts image data obtained by capturing an image of the user to the other image communication terminal 32-k, while multicast transmission from each of the other image communication terminals 32-k. It is an electronic device that receives incoming image data and displays an image represented by each image data. That is, the voice communication terminal 31-k and the image communication terminal 32-k serve as a conference communication terminal that allows the user to use the video conference service.

  The relay device 20-k in FIG. 1A is a VPN-compatible router, and is a subordinate communication device (for example, a voice communication terminal 31-k included in the local LAN 30-k connected to the relay device 20-k. And the image communication terminal 32-k) and the data communication between the communication devices under the other relay device 20-k. In the present embodiment, the relay device 20-k establishes a VPN tunnel with another relay device 20-k under the control of the network topology management device 40, and transmits / receives data via this VPN tunnel. . As a result, data communication between the local LANs can be performed via the communication network 10 which is a general public network while preventing data tampering and wiretapping by a third party.

The network topology management device 40 in FIG. 1A is an electronic device that communicates with each of the relay devices 20-k functioning as slave units via the communication network 10 and functions as a master unit that performs network topology construction control. is there. More specifically, the network topology management device 40 detects the start of operation of the relay device 20-k, instructs the connection destination of the VPN tunnel, and constructs, for example, a tree-type network topology shown in FIG. . Then, the network topology management device 40 monitors the operation of each relay device 20-k via the communication network 10, and detects that the relay device 20-k assigned the role of the intermediate node is not operating. The other relay device 20-k that has instructed to establish a VPN tunnel with the relay device 20-k is instructed to change the connection destination of the VPN tunnel, and the relay device 20 that is not in operation is instructed. The process of rearranging the network topology so that -k does not become an intermediate node is also executed.
Hereinafter, the relay device 20-k and the network topology management device 40 that show the features of this embodiment will be mainly described.

FIG. 2 is a block diagram illustrating a configuration example of the relay device 20-k.
2, the relay device 20-k includes a control unit 310, a first communication interface (hereinafter referred to as I / F) unit 320a, a second communication I / F unit 320b, a storage unit 330, and each of these components. It includes a bus 340 that mediates data exchange between them.

  The controller 310 is, for example, a CPU (Central Processing Unit). The control unit 310 executes processing characteristic of the slave unit according to the present embodiment in accordance with the slave unit side control program 332b stored in advance in the storage unit 330. The processing executed by the control unit 310 according to the handset side control program 332b will be clarified later. The first communication I / F unit 320a and the second communication I / F unit 320b are, for example, NICs (Network Interface Cards), and are connected to different communication networks. Specifically, the first communication I / F unit 320a is connected to the communication network 10, and the second communication I / F unit 320b is connected to the local LAN 30-k. The first communication I / F unit 320a and the second communication I / F unit 320b receive data transmitted from a communication network as a connection destination and deliver the data to the control unit 310, while being delivered from the control unit 310. Data is transmitted to each communication network of the connection destination.

  As illustrated in FIG. 2, the storage unit 330 includes a volatile storage unit 331 and a nonvolatile storage unit 332. The volatile storage unit 331 is, for example, a RAM (Random Access Memory), and the nonvolatile storage unit 332 is, for example, a hard disk or a Flash ROM (Read Only Memory). The volatile storage unit 331 is used as a work area when the child device side control program 332b is executed. The volatile storage unit 331 stores communication control data 331a transmitted from the network topology management device 40. The communication control data 331a includes data related to establishment of a VPN tunnel and data related to data communication via the VPN tunnel. The communication control data 331a is used when establishing a VPN tunnel and performing data communication via the VPN tunnel. Here, as data relating to the establishment of the VPN tunnel, a connection destination identifier (for example, an IP address of a connection destination, a MAC (Media Access Control) address, etc.) uniquely indicating another relay apparatus 20-k that is a connection destination of the VPN tunnel. Communication parameters) and parameters used when establishing the VPN tunnel (for example, an encryption key, a partner authentication key, etc.). Further, examples of data related to data communication via the VPN tunnel include a routing table and data related to image data multicast communication (for example, a multicast address or a communication address of the relay device 20-k serving as a transfer destination of image data). .

  In the nonvolatile storage unit 332, a parent device identifier 332a and a child device side control program 332b are stored in advance. The parent device identifier 332a uniquely identifies the parent device (in this embodiment, the network topology management device 40) that gives the relay device 20-k the connection destination of the VPN tunnel and various parameters used when establishing it. It is an identifier. In the present embodiment, the communication address of the network topology management device 40 is written in advance as the parent device identifier 332a in the nonvolatile storage unit 332 of each relay device 20-k. On the other hand, the handset-side control program 332b is a program that causes the control unit 310 to execute processing that significantly shows the features of the handset according to the present embodiment (state notification processing, data update processing, and communication control processing shown in FIG. 2). is there.

  The status notification process in FIG. 2 is a process executed when the relay device 20-k is powered on (not shown) and thereafter at regular time intervals. In the state notification process executed when the power is turned on, the control unit 310 sends a communication message (hereinafter referred to as an operation start notification) to notify the start of operation of the relay device 20-k to the parent device identifier 332a (that is, the network topology management device). 40 communication addresses) as a destination address. On the other hand, in the status notification process executed at regular time intervals after the power is turned on, the control unit 310 sends a communication message (hereinafter referred to as “operation notification”) to notify that the own apparatus is in operation to the parent unit identifier 332a. As the destination address. Although details will be described later, the network topology management device 40 starts the operation of the relay device 20-k as the transmission source by receiving the operation start notification transmitted from the relay device 20-k in this way. The operation status of the relay device 20-k that is the transmission source can be monitored by detecting and receiving the operation notification transmitted at regular time intervals thereafter.

  The data update process of FIG. 2 is a process of writing the communication control data 331a to the volatile storage unit 331 and updating it. This data update process is executed in response to reception of communication control data transmitted from the communication device (in this embodiment, the network topology management device 40) indicated by the parent device identifier 332a. For example, a process of writing the communication control data in the volatile storage unit 331 is executed when the communication control data returned as a response to the operation start notification is received, and thereafter each time the communication control data is received A process of updating the communication control data 331a stored in the volatile storage unit 331 (that is, an overwriting process) is executed with the received communication control data.

The communication control processing of FIG. 2 establishes a VPN tunnel according to the communication control data 331a stored in the volatile storage unit 331, and executes routing of data transmitted / received through the VPN tunnel according to the communication control data 331a. It is processing to do.
The above is the configuration of the relay device 20-k.

Next, the configuration of the network topology management device 40 will be described with reference to FIG.
FIG. 3 is a block diagram illustrating a configuration example of the network topology management device 40. 3, the same components as those in FIG. 2 are denoted by the same reference numerals. As apparent from a comparison between FIG. 2 and FIG. 3, the configuration of the network topology management device 40 is different from the configuration of the relay device 20-k in the following three points. First, the second communication I / F unit 320b is not provided. This is because the network topology management device 40 is not a relay device that connects another communication network to the communication network 10. Second, the communication control data 331a is not stored in the volatile storage unit 331. The reason why the communication control data 331a is not stored in the volatile storage unit 331 of the network topology management device 40 is that it is not necessary to establish a VPN tunnel with another communication device. Third, the initial topology data 332c and the parent device side control program 332d are stored in the nonvolatile storage unit 332 instead of the parent device identifier 332a and the child device side control program 332b. The processing executed by the control unit 310 according to the parent device side control program 332d will be clarified later.

  The initial topology data 332c is data representing a network topology realized by establishing a VPN tunnel between each of the relay apparatuses 20-k included in the communication system 1. FIG. 4A is a diagram illustrating an example of the initial topology data 332c. Initial topology data 332c illustrated in FIG. 4A is data representing a tree-type network topology (see FIG. 4B) having seven nodes from node 01 to node 07. As shown in FIG. 4A, the initial topology data 332c stores the node identifiers of other nodes to which the VPN tunnel is connected in association with the node identifiers uniquely indicating each node forming the network topology. Has been. The initial topology data 332c is used when determining the connection destination of the VPN tunnel at the time when the operation of each relay device 20-k is started in the communication system 1. In this embodiment, data representing a tree-type network topology is used as initial topology data. However, data representing other forms of network topology such as a bus type, a ring type, or a star type may be used as a matter of course. .

  FIG. 5 is a diagram illustrating an example of processing executed by the network topology management apparatus 40 according to the parent device side control program 332d. As shown in FIG. 5, the control unit 310 that operates according to the parent device side control program 332d executes three processes of an initial topology forming process SA01, an operation monitoring process SA02, and a topology recombination process SA03.

  The initial topology formation process SA01 in FIG. 5 is a process that is executed when an operation start notification is received. This initial topology formation process SA01 is a process of determining the connection destination of the VPN tunnel by applying the relay device 20-k as the transmission source in the order of reception of the operation start notification to each node of the network topology represented by the initial topology data 332c. is there. More specifically, in the initial topology formation process SA01, the control unit 310 first writes connection configuration data, which is a copy of the initial topology data, to the volatile storage unit 331, and thereafter receives an operation start notification. The following processing is executed. That is, the control unit 310 replaces the node identifiers included in the connection configuration data with the communication address of the relay device 20-k that is the transmission source of the operation start notification one by one in descending order of the node identifiers. Update. In the connection form data updated in this way, the relay device 20-k having each communication address associated with each node as a VPN connection destination is connected to the relay device 20-k applied to that node. This is the connection destination of the VPN tunnel. Then, when the connection destination of the VPN tunnel is determined for each relay device 20-k, the control unit 310 calculates an encryption key and a partner authentication key necessary for establishing the VPN tunnel, generates a routing table, and the like. The communication control data is generated and transmitted to each relay device 20-k.

  For example, seven units from the relay devices 20-1 to 20-7 include the relay device 20-4, the relay device 20-3, the relay device 20-5, the relay device 20-1, the relay device 20-2, and the relay device 20. −6 and the relay device 20-7 are transmitted in the order of operation start, and when the network management device 40 receives the operation start notification in this order, each relay device 20-k is transferred to each node from the node 01 to the node 07 in the order of reception. The process of applying them one by one is executed. Then, by establishing a VPN tunnel in each relay device 20-k according to the communication control data generated as a result of the fitting, the network topology shown in FIG. 1C is realized.

  The operation monitoring process SA02 is a process for monitoring the operation status of each relay device 20-k from the reception status of the operation notification transmitted from each of the relay devices 20-k to which communication control data is given. As described above, since each relay device 20-k transmits an operation notification at regular time intervals, if each relay device 20-k is operating normally, the control unit 310 performs each relay operation. The operation notification transmitted from the device 20-k is received at approximately the time interval. For this reason, when reception of the operation notification from any of the relay apparatuses 20-k is interrupted, the control unit 310 determines that the relay apparatus 20-k is not operating normally. Then, the control unit 310 executes the topology recombination process SA03 when the relay device 20-k that is determined not to be operating is assigned the role of an intermediate node. Whether or not the relay device 20-k determined not to be in operation plays a role of an intermediate node, refers to the connection form data stored in the volatile storage unit 331, and the VPN tunnel It can be determined by checking whether there are a plurality of connection destinations. This is because the relay apparatus 20-k to which the role of the intermediate node is assigned has at least two VPN tunnel connection destinations.

The topology recombination process SA03 is a process for recombining the network topology so that the relay device 20-k determined not to be operating does not become an intermediate node. The recombination of the network topology is a connection destination of a new VPN tunnel to another relay device 20-k (hereinafter referred to as a control target device) that has designated the relay device 20-k determined not to be in operation as a VPN tunnel connection destination. This is realized by giving communication control data for instructing. The control unit 310 selects one of the control target devices, applies the selected relay device 20-k to a node corresponding to the relay device 20-k determined not to be operating, and controls each control target device. The connection destination of the new VPN tunnel about is determined, communication control data representing the connection destination of the new VPN tunnel is generated, and the process given to each control target device is executed. For example, when it is detected that the relay device 20-3 is not operating in the network topology shown in FIG. 6A, the relay device 20-1 is connected to the relay device 20- as shown in FIG. The network topology is rearranged by applying to the node corresponding to 3. Note that various modes are conceivable as a selection method of the relay device 20-k applied to the node corresponding to the relay device 20-k determined not to be operating. For example, the device with the youngest communication address is selected from the control target devices that were not intermediate nodes in the network topology before recombination.
The above is the configuration of the network topology management device 40.

  As described above, in the present embodiment, each relay device 20-k only needs to store the communication address of the network topology management device 40 functioning as a parent device, and the communication given to each relay device 20-k. The control data is calculated by the network topology management device 40. For this reason, it is not necessary for the operation manager of the communication system 1 to manually perform various settings, and labor for establishing a VPN tunnel between the relay apparatuses 20-k is reduced. Further, according to the present embodiment, when the relay device 20-k assigned the role of the intermediate node according to the initial topology data 332c is not operating, the other relay device 20 is replaced with the relay device 20-k. The network topology is reassigned to assign the role of an intermediate node to -k, and there is no problem in data communication. That is, according to this embodiment, it is possible to optimize the network topology according to the operation status of the relay device 20-k.

As mentioned above, although one Embodiment of this invention was described, of course, you may add the deformation | transformation described below to this Embodiment.
(1) In the above-described embodiment, the network topology management device 40 is connected to the communication network 10 separately from the local LANs 30-k. However, the network topology management device 40 is connected via any of the local LANs 30-k. Of course, it may be connected to the communication network 10. As described above, in the aspect in which the network topology management device 40 is connected to any of the local LANs 30-k, the network topology management device 40 may be provided with the function of a multipoint connection device. In the above-described embodiment, the present invention is applied to the video conference communication system. However, the application target of the present invention is not limited to the video conference communication system. In short, as long as the communication system includes a plurality of relay apparatuses that establish a VPN tunnel with each other to form a predetermined network topology, the present invention can be applied to control the establishment of the network topology in any communication system. Is possible. In the above-described embodiment, the slave unit that establishes the VPN tunnel under the control of the master unit (network topology management device 40) and forms a certain network topology is the communication terminal (voice communication terminal 31-k) under its control. And the image communication terminal 32-k) and the relay device 20-k that controls data communication between the communication terminals under the control of other slave units, the communication terminals positioned at both ends of the data communication are described above. Of course, it is good as a machine.

(2) In the above-described embodiment, triggered by detecting that the relay device 20-k assigned the role of the intermediate node is not operating in the network topology represented by the initial topology data, the relay that is not operating The network topology management apparatus 40 is instructed to connect a new VPN tunnel to another relay apparatus 20-k that has instructed the apparatus 20-k as a VPN tunnel connection destination, and to rearrange the network topology. . However, as shown in FIG. 7, a backup VPN tunnel (indicated by a one-dot chain line bidirectional arrow in FIG. 7) is established between the relay devices 20-k in advance and assigned the role of an intermediate node. When it is detected that the relay device 20-k is not in operation, a backup VPN tunnel is provided to each of the other relay devices 20-k that has designated the relay device 20-k as a VPN tunnel connection destination. It is also possible to prompt the user to change the setting so as to perform data communication. According to such an aspect, even when the relay device 20-k assigned the role of the intermediate node is not operating, it is possible to save the trouble of reestablishing the VPN tunnel.

(3) In the above-described embodiment, the network topology is reconfigured so that the relay device 20-k that is not operating does not become an intermediate node. However, the relay device 20-k in which the subordinate communication device is not performing data communication (the relay device 20-k in which the subordinate voice communication terminal 31-k and the image communication terminal 32-k are not participating in the video conference) is in the middle. Of course, it is also possible to rearrange the network topology so that it does not become a node. This is to avoid an unnecessary lengthening of the data transmission path. Note that this causes the network topology management device 40 to execute processing for inquiring whether or not data communication is being performed with respect to the communication terminal under the relay device 20-k, and the subordinate communication terminal performs data communication. The relay device 20-k that has not performed the operation can be realized by causing the network topology management device 40 to execute the topology recombination processing assuming that the relay device 20-k is not in operation. Further, among the data included in the communication control data 331a, for the data related to the data communication via the VPN tunnel (data related to the routing table and multicast communication), for example, a process of deleting at the end of the video conference is performed for each relay device 20. -K or the network topology management device 40 may be executed.

(4) In the above-described embodiment, when each relay device 20-k is applied to each node of the network topology, the earlier the operation start notification is transmitted, the more the node is assigned to the node having the lower node number. However, when the data processing capability is superior or inferior, such as the hardware performance of each relay device 20-k is different, the data processing capability (or a weight determined in advance by the network administrator according to the data processing capability) The higher relay device 20-k may be assigned to an intermediate node (node 02 or node 03 in FIG. 6). Here, the data processing capability of the relay device 20-k is, for example, a static data processing capability determined by so-called catalog specifications such as an operation clock of the CPU constituting the control unit 310 and a storage capacity of the volatile storage unit 331 ( That is, the maximum data processing capability that can be exhibited by the relay device 20-k) may be used, or dynamic data that is determined according to network usage conditions such as data communication amount, delay, and usage bandwidth that change every moment. It may be data processing capability. This is because an operation start notification or operation in which each relay apparatus 20-k is given priority data indicating priority (for example, the higher the data processing capacity, the higher the priority) according to the data processing capacity. While the notification is transmitted to each relay device 20-k, the network topology management device 40 applies to the network topology represented by the initial topology data so that the relay device 20-k having a higher priority becomes an intermediate node, and This is realized by recombining the network topology. In the above-described embodiment, the network topology is reconfigured in response to the detection that the relay device 20-k to which the role of the intermediate node is assigned is not operating, but the change in the network usage status (for example, the available bandwidth) Width, delay, change in data communication volume), application operation status, application usage status at each site, and equipment required for using the application (for example, when the application is video conference communication, a relay device 20-k, voice communication terminal 31-k, and image communication terminal 32-k), the network topology may be rearranged.

(5) In the above-described embodiment, the network topology management device 40 is caused to execute the process of giving the communication control data to each relay device 20-k to form a predetermined network topology. Etc., and an image representing the network topology formed in each relay device 20-k may be displayed on the display unit. According to such an aspect, it becomes possible to make the operation manager of the communication system 1 visually grasp the network topology formed in the communication system 1.

(6) In the above-described embodiment, the initial topology data 332c shown in FIG. 4A is stored in advance in the nonvolatile storage unit 332 of the network topology management apparatus 40, and the connection form is a copy of the initial topology data 332c. The VPN tunnel connection destination for each relay device 20-k is determined by writing the data into the volatile storage unit 331 and updating the node identifier included in this connection form data with the communication address of the transmission source of the operation start notification. The initial topology was formed. However, as shown in FIG. 8A, in addition to the node identifier (serial number assigned to each node (Index in FIG. 8A)), the relay device 20- applied to the node identified by the node identifier. Each time an operation start notification is received using initial topology data having an individual identifier storage area (initial value is NULL (0x00)) for uniquely identifying k, the source MAC address (for example, FIG. 8B) (0x0027a8) or the like) may be stored in the individual identifier storage area, the VPN tunnel connection destination for each relay device 20-k may be determined, and an initial topology may be formed (see FIG. 8B). Note that the MAC address is a communication address of 48 bits in total representing the manufacturer and manufacturer in the upper 24 bits and representing individual devices in the lower 24 bits, but in FIG. 8, in order to avoid making the drawing complicated. Only the lower 24 bits of the MAC address are illustrated as individual identifiers. Then, in the situation where the initial topology is formed as shown in FIG. 8B, the relay device (for example, the MAC address is “2”) assigned the role of the intermediate node (the node whose node identifier is “# 2”). When a failure occurs in the relay device (0x007d17 ″), the network topology may be rearranged in the following manner. For example, when the relay device having the MAC address “0x00992b” (the relay device having the node identifier “# 5”) is to play the role of the intermediate node, the node identifier is “ The MAC address “0x00992b” is written into the individual identifier storage area of the node with # 2 ”, and NULL is written into the individual identifier storage area of the node with the node identifier“ # 5 ”(see FIG. 8C). Then, the network topology is instructed to each relay apparatus corresponding to the node whose node identifier is “# 1” or “# 4” by specifying a new connection destination (that is, MAC address “0x00992b”) of the VPN tunnel. It is recombination.

  Further, as shown in FIGS. 8D and 8E, topology data (see FIG. 8D) representing the connection relationship between the nodes and operation representing the correspondence between each node and the relay device. Situation management data (see FIG. 8E) may be prepared separately, and both data may be associated with a node identifier. As shown in FIGS. 8D and 8E, in the aspect in which the topology data and the operation status management data are prepared separately, the topology data is stored in the nonvolatile storage unit 332 of the network topology management device 40. However, the operation status management data may be stored in the volatile storage unit 331. This is because only the operation status management data needs to be sequentially updated in response to the reception of the operation start notification, and the topology data need not be updated.

(7) In the above-described embodiment, the slave unit side control program 332b for causing the control unit 310 of the relay device 20-k to execute processing characteristic of the slave device according to the above embodiment is the relay device 20-k. It was previously stored in the nonvolatile storage unit 332. However, the slave unit side control program 332b may be written and distributed on a computer-readable recording medium such as a CD-ROM (Compact Disk-Read Only Memory), or downloaded via an electric communication line such as the Internet. You may distribute by. By executing the handset side control program 332b distributed in this way by a control unit (CPU) of a general computer device such as a personal computer, the computer device can be operated as the handset. Become. In the case where the computer device that operates as a child device plays the role of the relay device 20-k, it is necessary to mount two NICs connected to different communication networks in the computer device. Similarly, the parent device side control program 332d may be written and distributed on a computer-readable recording medium, or may be distributed by downloading via a telecommunication line.

1 is a diagram illustrating a configuration example of a communication system 1 according to an embodiment of the present invention and an example of a network topology in the communication system 1. FIG. It is a figure which shows the structural example of the relay apparatus 20-k contained in the communication system 1. 2 is a diagram illustrating a configuration example of a network topology management device 40 included in the communication system 1. FIG. It is a figure which shows an example of the network topology which the example of the initial topology data 332c memorize | stored in the network topology management apparatus 40 and the initial topology data 332c represent. It is a figure for demonstrating the process which the control part 310 of the network topology management apparatus 40 performs according to the main | base station side control program 332d. 3 is a diagram for explaining network topology recombination processing executed in the communication system 1. FIG. It is a figure which shows an example of the network topology concerning a modification (2). It is a figure which shows an example of the topology data which concern on a modification (6). It is a figure for demonstrating the conventional problem.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 1 ... Communication system, 10 ... Communication network, 20-k (k = 1-7) ... Relay apparatus, 30-k (k = 1-7) ... Local LAN, 31-k (k = 1-7) ... Voice communication terminal, 32-k (k = 1 to 7) ... Image communication terminal, 40 ... Network topology management device, 310 ... Control unit, 320a ... First communication I / F unit, 320b ... Second communication I / F unit , 330 ... storage unit, 331 ... volatile storage unit, 332 ... non-volatile storage unit, 332a ... master unit identifier, 332b ... slave unit side control program, 332c ... initial topology data, 332d ... master unit side control program, 340 ... bus.

Claims (3)

A device that manages network topology between communication devices, and a plurality of communication devices that establish VPN tunnels with other communication devices according to control data received from the device that manages the network topology ,
An apparatus for managing the network topology is:
When it is detected that said through communication with each of the plurality of communication devices performs its operation monitoring, communication device that assigned the role of an intermediate node for relaying data to the other communication device is not running, between other different communication devices to the communication device that received control data for instructing to establish a VPN tunnel, and the operation and non communication device between a communication device that is not the operating A new communication data for instructing to establish a VPN tunnel is calculated and given, and the network topology is rearranged so that the inactive communication device does not become an intermediate node. Each of the plurality of communication devices is a relay device that relays data communication between a subordinate communication terminal and another communication terminal,
An apparatus for managing the network topology is:
Communicate with the communication terminals under each of the plurality of communication devices to monitor the execution status of data communication, and treat all the communication devices under the control as non-operating relay devices that are not performing data communication The communication system according to claim 1, wherein recombination of the network topology is performed. Each of the plurality of communication devices notifies the device that manages the network topology triggered by the start of operation,
In the apparatus for managing the network topology, initial topology data representing a predetermined network topology is stored in advance,
The apparatus for managing the network topology determines the connection destination of the VPN tunnel by applying each communication apparatus that has notified the start of operation to each node of the network topology represented by the initial topology data, and determines the connection destination. The communication system according to claim 1, wherein control data for instructing establishment of a VPN tunnel is calculated.

Images