WO2020108578A1 - 一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备 - Google Patents
一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备 Download PDFInfo
- Publication number
- WO2020108578A1 WO2020108578A1 PCT/CN2019/121705 CN2019121705W WO2020108578A1 WO 2020108578 A1 WO2020108578 A1 WO 2020108578A1 CN 2019121705 W CN2019121705 W CN 2019121705W WO 2020108578 A1 WO2020108578 A1 WO 2020108578A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- server
- cpe
- tcp
- receiving end
- information
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
- H04L12/2856—Access arrangements, e.g. Internet access
- H04L12/2863—Arrangements for combining access network resources elements, e.g. channel bonding
- H04L12/2865—Logical combinations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
- H04L12/2856—Access arrangements, e.g. Internet access
- H04L12/2858—Access network architectures
- H04L12/2859—Point-to-point connection between the data network and the subscribers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
- H04L12/2856—Access arrangements, e.g. Internet access
- H04L12/2869—Operational details of access network equipments
- H04L12/2898—Subscriber equipments
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0823—Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability
- H04L41/083—Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability for increasing network speed
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/163—In-band adaptation of TCP data exchange; In-band control procedures
Definitions
- This article relates to the field of software-defined wide area network (SD-WAN), in particular to a virtual intranet acceleration method and system, configuration method, storage medium, and computer equipment.
- SD-WAN software-defined wide area network
- Branches deploy Customer Terminal Equipment (CPE) to achieve intranet connectivity. Data exchanged between intranets is accelerated through SD-WAN dynamic links. In most cases, Good to meet the needs of enterprises.
- CPE Customer Terminal Equipment
- TCP Transmission Control
- this article provides a virtual intranet acceleration method and system, configuration method, storage medium and computer equipment.
- a virtual intranet acceleration method including:
- the client device CPE at the initiator When receiving the TCP request sent by the server at the initiator to the server at the receiver, the client device CPE at the initiator transmits the information of the TCP request to the CPE at the receiver;
- the CPE of the receiving end configures a connection chain between the server at the initiating end and the server at the receiving end according to the information requested by the TCP;
- TCP request and/or TCP response data are transmitted.
- the step of transmitting the information of the TCP request to the receiving end CPE includes:
- the CPE of the initiator detects a TCP request
- the information of the TCP request includes at least the following information:
- Request data the IP and port of the server on the receiving end as the target, and the IP and port of the server on the originating end as the request source.
- the CPE of the initiating end transmits the information requested by the TCP to the CPE of the receiving end through the SD-WAN reliable transmission method.
- the step of the CPE of the receiving end configuring the connection chain according to the information requested by the TCP includes:
- the CPE of the receiving end After receiving the information of the TCP request, the CPE of the receiving end uses the private protocol to parse;
- a connection chain is established between the target end and the source end.
- the server on the initiating end is a branch server, and the server on the receiving end is a headquarters server; or,
- the server at the initiating end is a headquarters server, and the server at the receiving end is a branch server.
- a configuration method for configuring an SD-WAN connection chain between a server at a receiving end and a server at an initiating end, wherein,
- the CPE at the receiving end receives the information of the TCP request encapsulated by the private protocol sent by the CPE at the initiating end, and uses the privatization protocol to parse the information of the TCP request;
- the CPE at the receiving end initiates a connection to the IP and port of the server at the receiving end, and is configured as the target end;
- the CPE at the receiving end configures the IP and port of the server at the initiating end as the source end;
- the CPE of the receiving end establishes a connection chain between the target end and the source end.
- a virtual intranet acceleration system which includes at least a software-defined wide area network SD-WAN connection initiator server, a receiver server, an initiator client device CPE, and a receiver CPE;
- the CPE at the initiating end is used to transmit the information of the TCP request to the CPE at the receiving end when receiving a TCP request sent by the server at the initiating end to the server at the receiving end;
- the CPE at the receiving end is used to configure a connection chain between the server at the initiating end and the server at the receiving end according to the information requested by the TCP;
- the server at the initiating end and the server at the receiving end are used to transmit TCP request and/or TCP response data through the connection chain.
- the CPE at the initiator is used to detect TCP requests
- the information sent by the TCP request is sent to the CPE of the receiving end through the port corresponding to the TCP request.
- the information of the TCP request includes at least the following information:
- connection chain is carried on the SD-WAN reliable transmission channel between the CPE of the initiating end and the CPE of the receiving end.
- the CPE at the receiving end is used to analyze the private protocol after receiving the information of the TCP request, initiate a connection to the IP and port of the server at the receiving end, configure the target end, and
- the IP and port of the server at the initiator end are configured as the source end, and a connection chain is established between the target end and the source end.
- a computer-readable storage medium on which a computer program is stored, which when executed, implements the steps of the virtual intranet acceleration method described above.
- a computer device including a processor, a memory, and a computer program stored on the memory, the processor implementing the computer program implements the virtual intranet acceleration method as described above step.
- This article achieves transparent acceleration of the TCP connection between the initiator and the receiver, accelerates the transmission of the TCP connection, effectively avoids the occurrence of packet loss, and solves the current method of preventing packet loss.
- the resource consumption is large and the effect is not good The problem.
- Fig. 1 is a schematic diagram of an SD-WAN basic architecture according to an exemplary embodiment.
- Fig. 2 is a flowchart of a method for accelerating a virtual intranet according to an exemplary embodiment.
- FIG. 3 is a specific flowchart of step 201 in the flow shown in FIG. 2.
- FIG. 4 is a specific flowchart of step 202 in the process shown in FIG. 3.
- Fig. 5 is a schematic diagram showing an implementation principle of a virtual intranet acceleration method according to an exemplary embodiment.
- Fig. 6 is an architectural block diagram of a virtual intranet acceleration system according to an exemplary embodiment.
- Fig. 7 is a block diagram of a computer device according to an exemplary embodiment.
- the current common practice for preventing packet loss during transmission is to transmit multiple copies of the same data packet, and reduce the probability of packet loss as much as possible through multiple transmission.
- a TCP packet of an intranet user sends two to three copies of the same data on the SD-WAN network intranet and takes different paths. Multiple transmissions occupy different paths, which increases the consumption of network resources when the amount of transmitted data is large, and cannot completely avoid packet loss.
- the embodiments herein provide a virtual intranet acceleration method and system, configuration method, storage medium, and computer equipment.
- FIG. 2 An embodiment of this document provides a virtual intranet acceleration method. Using this method to complete the data transmission process in SD-WAN is shown in FIG. 2 and includes:
- Step 201 When receiving the TCP request sent by the server of the initiator, the CPE of the initiator transmits the information of the TCP request to the CPE of the receiver.
- Step 202 The CPE at the receiving end configures the connection chain between the server at the initiating end and the server at the receiving end according to the information requested by the TCP.
- Step 203 Transmit the TCP request and/or TCP response data between the source end and the target end through the connection chain.
- the sending end includes at least a server and a CPE.
- the receiving end also includes at least the server and CPE.
- the server at the initiator can be a branch server, and the server at the receiver can be a headquarters server; or,
- the server on the originating side is the headquarters server, and the server on the receiving side is the branch server.
- the execution process of the above step 201 is shown in FIG. 3 and can be divided into the following operation steps 301 to 302:
- Step 301 The CPE at the initiator detects a TCP request
- Step 302 The CPE at the originating end encapsulates the information of the TCP request sent by the branch server using a private protocol, and then sends it to the CPE at the receiving end through the port corresponding to the TCP request;
- the TCP request information involved in this article contains at least the following information:
- the port corresponding to the TCP request refers to the port allocated in advance to the user who initiated the TCP request. That is, different users can be allocated corresponding ports in advance to transmit the data requested by the user.
- the user who initiated the TCP request may be an individual user or a business service provider.
- the CPE at the initiating end can transmit the information requested by the TCP to the CPE at the receiving end through the reliable transmission method of SD-WAN.
- the CPE at the initiating end and the CPE at the receiving end may also transmit non-TCP data through the reliable transmission method of SD-WAN.
- step 202 The execution process of the above step 202 is shown in FIG. 4 and can be divided into the following steps 401 to 404:
- Step 401 After receiving the TCP request information, the CPE at the receiving end parses the TCP request information using a private protocol to obtain the request data, the IP and port of the receiving end server as the request target, and the IP and IP of the originating end server as the request source port;
- Step 402 Initiate a connection to the acquired server IP and port of the receiving end, and configure the server IP and port of the receiving end as the target end;
- Step 403 Configure the IP and port of the server on the originating end as the source end;
- Step 404 Establish a connection chain between the target end and the source end.
- the packets transmitted by the SD-WAN virtual network channel are all IP packets, which are mainly divided into UDP and TCP.
- UDP is a connectionless mode
- TCP is a reliable transmission method based on connection. TCP will perform data packets lost during the transmission process. Retransmission to ensure reliable transmission.
- SD-WAN network In order to ensure that there is no problem of TCP over TCP, usually the underlying transmission of SD-WAN network uses ordinary UDP transmission mode, and reliable transmission is not done.
- the SD-WAN network detects POP and thinks that there is packet loss on the network, and then uses the dynamic routing switching function to switch to another good link. In this way, the intranet user's TCP connection can sense a brief packet loss. After the packet loss occurs, the user's TCP connection initiates a retransmission.
- intranet users' UDP connections may also experience packet loss. In this case, intranet users may need to manually retransmit.
- the virtual intranet acceleration method provided in the embodiment of this document can efficiently and reliably transmit TCP and non-TCP packets, successfully eliminating the impact of network jitter on transmission, greatly saving network resources, and improving user experience.
- An embodiment of this document also provides a virtual intranet communication method, which can solve the problem of packet loss in the case of network jitter in virtual channel transmission.
- a transparent proxy is used to implement TCP transparent transmission.
- the SD-WAN network uses reliable transmission to achieve transmission acceleration and avoid packet loss.
- the following takes a process of requesting and responding from a conventional branch intranet to the headquarters intranet as an example to describe the process of virtual intranet communication.
- the principle of this process is shown in FIG. 5.
- the server of the enterprise branch shown in FIG. 5 initiates a TCP request to the server of the enterprise headquarters
- the TCP request is forwarded to the CPE of the enterprise branch
- the CPE of the enterprise branch forwards the request data to the TCP through iptables forwarding.
- a transparent proxy is implemented on the port corresponding to the request.
- CPE includes iptables, proxy module and forwarding module. All requests issued by the server of the enterprise branch will first pass through the iptables of CPE, which is divided into TCP requests and non-TCP requests by iptables filtering, and then the distinguished TCP requests are sent to the corporate headquarters through the forwarding module after passing through the proxy module.
- the CPE of the enterprise branch obtains the request data, the IP and port of the target headquarters server, and the IP and port of the branch server as the request source.
- the information is encapsulated through a private protocol and forwarded to the SD-WAN network.
- SD-WAN quickly transmits the received data to the CPE equipment at the corporate headquarters through reliable transmission methods (including TCP, reliable UDP, etc.).
- the CPE at the corporate headquarters parses the private protocol, obtains the request data, request target IP and port, request source IP and port, initiates a connection to the target IP and port, and implements source and target address masquerading through TCP parameters supported by the system. For example, you can use the socket's ip_transparent option to set the request source IP and port as the connection source IP address and port. In this way, the client IP and port seen by the target server at the corporate headquarters is the address of the server of the corporate branch. For non-TCP requests, generally no special treatment.
- Subsequent request and response data can be transmitted in the connection chain used for the above transmission data to achieve the acceleration of TCP request transmission.
- the technical solution provided in the embodiments of this document is customer-agnostic and can be solved first
- the problem of TCP connection transmission acceleration can solve the problem of packet loss caused by network jitter.
- the implementation principle is the same as the above principle, except that the data transmission direction is opposite to the scenario shown in FIG.
- An embodiment of this document provides a configuration method for configuring the SD-WAN connection chain between the server at the receiving end and the server at the initiating end, where,
- the CPE at the receiving end receives the information of the TCP request encapsulated by the private protocol sent by the CPE at the initiating end, and uses the privatization protocol to parse the information of the TCP request;
- the CPE at the receiving end initiates a connection to the IP and port of the server at the receiving end, and is configured as the target end;
- the CPE at the receiving end configures the IP and port of the server at the initiating end as the source end;
- the CPE of the receiving end establishes a connection chain between the target end and the source end.
- the information requested by TCP contains at least the following information:
- the operation of the configuration method provided in this embodiment may refer to the execution process of step 202 in the virtual intranet acceleration method shown in FIG. 4, and details are not described herein again.
- An embodiment of this document further provides a virtual intranet acceleration system, whose structure is shown in FIG. 6, and includes at least an initiator server at the SD-WAN connection, a server at the receiver end, a client device CPE at the initiator end, and a CPE at the receiver end.
- the CPE at the initiating end is used to transmit the information of the TCP request to the CPE at the receiving end when the TCP request sent by the server at the initiating end to the server at the receiving end is received;
- the CPE at the receiving end is used to configure the connection chain between the server at the initiating end and the server at the receiving end according to the information of the received TCP request;
- the server at the initiating end and the server at the receiving end are used to transmit TCP requests and/or TCP response data through the above connection chain.
- the CPE at the initiator can be used to detect TCP requests, and the information of the TCP requests sent by the branch server is encapsulated using a private protocol and then sent to the CPE at the receiver.
- the information requested by TCP contains at least the following information:
- Request data the IP and port of the server on the receiving end as the target, and the IP and port of the server on the originating end as the request source.
- connection chain is carried on the SD-WAN reliable transmission channel between the CPE at the initiator and the CPE at the receiver.
- the CPE at the receiving end can be used to analyze the private request after receiving the TCP request information, initiate the connection to the IP and port of the server at the receiving end, configure the target end, and configure the IP and port of the server at the initiating end as the source To establish a connection chain between the target and the source.
- the embodiments herein also provide a computer storage medium on which a computer program is stored, and when the program is executed by a processor, the steps of a virtual intranet communication method provided by the embodiments herein are implemented.
- the embodiments herein also provide a computer device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, and when the processor executes the program, the embodiments herein are implemented
- a computer device including a memory, a processor, and a computer program stored on the memory and executable on the processor, and when the processor executes the program, the embodiments herein are implemented
- the steps of a virtual intranet communication method are provided.
- the embodiments herein provide a virtual intranet acceleration method and system, a configuration method, a storage medium, and a computer device.
- the originating CPE receives the TCP request sent by the originating server to the receiving server, it transmits the TCP request information.
- CPE to the receiving end.
- the CPE at the receiving end configures a connection chain between the server at the initiating end and the server at the receiving end according to the information of the received TCP request, and then transmits the TCP request and/or TCP response data through the connection chain.
- a connection chain is established between the server at the initiating end and the server at the receiving end of the SD-WAN, and the TCP can be carried on the reliable transmission channel when the TCP request and/or TCP response data is transmitted through the connection chain. Therefore, the TCP connection between the initiator and the receiver is transparently accelerated, and the transmission of the TCP connection is accelerated, which effectively avoids the occurrence of packet loss, and solves the current method of preventing packet loss with large resource consumption and poor
- Fig. 7 is a block diagram of a computer device 700 for virtual intranet acceleration according to an exemplary embodiment.
- the computer device 700 may be provided as a server.
- the computer device 700 includes a processor 701, and the number of processors may be set to one or more as needed.
- the computer device 700 also includes a memory 702 for storing instructions executable by the processor 701, such as application programs.
- the number of memories can be set to one or more as needed.
- the processor 701 is configured to execute instructions to execute the foregoing virtual intranet acceleration method, including:
- the client device CPE at the initiator When receiving the TCP request sent by the server at the initiator to the server at the receiver, the client device CPE at the initiator transmits the information of the TCP request to the CPE at the receiver;
- the CPE of the receiving end configures a connection chain between the server at the initiating end and the server at the receiving end according to the information requested by the TCP;
- TCP request and/or TCP response data are transmitted.
- Computer storage media includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data , Including but not limited to RAM, ROM, EEPROM, flash memory or other memory technologies, CD-ROM, digital versatile disk (DVD) or other optical disk storage, magnetic cartridges, magnetic tape, magnetic disk storage or other magnetic storage devices, or may be used for Any other medium or the like that stores the desired information and can be accessed by the computer.
- the communication medium generally contains computer readable instructions, data structures, program modules, or other data in a modulated data signal such as a carrier wave or other transmission mechanism, and may include any information delivery medium .
- These computer program instructions may also be stored in a computer-readable memory that can guide a computer or other programmable data processing device to work in a specific manner, so that the instructions stored in the computer-readable memory produce an article of manufacture including an instruction device, the instructions
- the device implements the functions specified in one block or multiple blocks of the flowchart one flow or multiple flows and/or block diagrams.
- These computer program instructions can also be loaded onto a computer or other programmable data processing device, so that a series of operating steps are performed on the computer or other programmable device to produce computer-implemented processing, which is executed on the computer or other programmable device
- the instructions provide steps for implementing the functions specified in one block or multiple blocks of the flowchart one flow or multiple flows and/or block diagrams.
- the CPE at the initiating end when the CPE at the initiating end receives a TCP request sent by the server at the initiating end to the server at the receiving end, the information of the TCP request is transmitted to the CPE at the receiving end.
- the CPE at the receiving end configures a connection chain between the server at the initiating end and the server at the receiving end according to the information of the received TCP request, and then transmits the TCP request and/or TCP response data through the connection chain.
- a connection chain is established between the server at the originating end of the SD-WAN and the server at the receiving end, and through this connection chain, TCP requests and/or TCP response data are transmitted.
- the connection chain can also be carried on a reliable transmission channel.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
本文是关于一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备。涉及SD-WAN领域,解决了现有预防丢包处理方式资源消耗量大且效果欠佳的问题。该方法包括:发起端的客户端设备CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE;所述接收端的CPE根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;通过所述连接链,传输TCP请求和/或TCP响应数据。本文提供的技术方案适用于SD-WAN子系统间数据传输,实现了发起端与接收端之间的TCP连接透明加速。
Description
本文要求在2018年11月30日提交中国专利局、申请号为201811459242.1,发明名称为“一种虚拟内网加速方法、系统和计算机设备”的中国专利申请的优先权,其全部内容通过引用结合在本文中。
本文涉及软件定义广域网(SD-WAN)领域,尤其涉及一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备。
传统大型企业通常会有大量全国分公司或分部。分部规模通常都比较大,主要是承担区域本地化职能,有专门的IT部门负责网络管理和运营,部署独立的服务。总部需要访问分部的服务,分部也需要访问总部的服务。在互联网云时代,企业也会大量使用云服务,购买云机房,企业要访问云机房内服务。通常为了安全及方便管理等方面,企业通常会将总部和分部及云机房采用网络技术实现内网打通,相互访问都是内网服务形式。
由于直接部署专线的方案成本居高不下,以及使用虚拟专用网络(Virtual Private Network,VPN)方式不能保证链路稳定等原因,很多企业会采购SD-WAN产品来实现分支及云机房互联,以下以分支互联来具体说明。基本架构如图1所示,分支之间通过部署客户终端设备(Customer Premise Equipment,CPE)实现内网打通,内网之间交换的数据通过SD-WAN动态链路加速传输,大部分情况下可以良好满足企业需求。
当前预防传输过程中丢包的通常做法是对同一数据包进行多份传输,通过多份传输的方式尽量降低丢包的几率。比如内网用户的一个传输控制协议(Transmission Control Protocol,TCP)包,在SD-WAN网络内网使用发送两到三份相同的数据,走不同路径。多份传输占用不同路径,在传输数据量较大的情况下会增加对网络资源的消耗,且不能完全避免丢包的发生。
发明内容
为克服相关技术中存在的问题,本文提供一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备。
根据本文的第一方面,提供一种虚拟内网加速方法,包括:
发起端的客户端设备CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE;
所述接收端的CPE根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;
通过所述连接链,传输TCP请求和/或TCP响应数据。
其中,上述方法中,所述发起端的CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE的步骤包括:
所述发起端的CPE检测到TCP请求;
所述发起端的CPE将分支服务器发送的TCP请求的信息使用私有协议封装后,通过与所述TCP请求对应的端口向所述接收端的CPE发送,所述TCP请求的信息至少包含如下信息:
请求数据、作为目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
其中,上述方法中,所述发起端的CPE通过SD-WAN的可靠传输方式将所述TCP请求的信息传输至所述接收端的CPE。
其中,上述方法中,所述接收端的CPE根据所述TCP请求的信息,配置所述连接链的步骤包括:
所述接收端的CPE在接收到所述TCP请求的信息后,使用所述私有协议解析;
对所述接收端的服务器的IP及端口发起连接,配置目标端;
将所述发起端的服务器的IP及端口配置为源端;
在所述目标端及所述源端之间建立连接链。
其中,上述方法中,所述发起端的服务器为分支服务器,所述接收端的服务器为总部服务器;或,
所述发起端的服务器为总部服务器,所述接收端的服务器为分支服务器。
根据本文的另一方面,提供一种配置方法,用于配置接收端的服务器与发起端的服务器之间的SD-WAN连接链,其中,
接收端的CPE接收由发起端的CPE发出的使用私有协议封装后的TCP请求的信息,并使用所述私有化协议对所述TCP请求的信息进行解析;
所述接收端的CPE对接收端的服务器的IP及端口发起连接,配置为目标端;
所述接收端的CPE将发起端的服务器的IP及端口配置为源端;
所述接收端的CPE在所述目标端与所述源端之间建立连接链。
根据本文的另一方面,提供一种虚拟内网加速系统,至少包括软件定义广域网SD-WAN连接的发起端的服务器、接收端的服务器、发起端的客户端设备CPE和接收端的CPE;
所述发起端的CPE,用于在接收到所述发起端的服务器向所述接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至所述接收端的CPE;
所述接收端的CPE,用于根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;
所述发起端的服务器与所述接收端的服务器,用于通过所述连接链,传输TCP请求和/或TCP响应数据。
其中,上述系统中,所述发起端的CPE,用于检测TCP请求;
将分支服务器发送的TCP请求的信息使用私有协议封装后,通过与所述TCP请求对应的端口向所述接收端的CPE发送,所述TCP请求的信息至少包含如下信息:
请求数据、作为目标的接收端的服务器的IP及端口、作为请求来源的发起 端的服务器的IP及端口。
其中,上述系统中,所述连接链承载于所述发起端的CPE与所述接收端的CPE之间的SD-WAN可靠传输通道上。
其中,上述系统中,所述接收端的CPE,用于在接收到所述TCP请求的信息后,使用所述私有协议解析,对所述接收端的服务器的IP及端口发起连接,配置目标端,将所述发起端的服务器的IP及端口配置为源端,在所述目标端及源端之间建立连接链。
根据本文的另一方面,提供一种计算机可读存储介质,其上存储有计算机程序,所述计算机程序被执行时实现如上所述的虚拟内网加速方法的步骤。
根据本文的另一方面,提供一种计算机装置,包括处理器、存储器和存储于所述存储器上的计算机程序,所述处理器执行所述计算机程序时实现如上所述的虚拟内网加速方法的步骤。
本文实现了发起端与接收端之间的TCP连接透明加速,对TCP连接传输进行了加速,有效的避免了丢包的发生,解决了现有预防丢包处理方式资源消耗量大且效果欠佳的问题。
构成本文的一部分的附图用来提供对本文的进一步理解,本文的示意性实施例及其说明用于解释本文,并不构成对本文的不当限定。在附图中:
图1是根据一示例性实施例示出的一种SD-WAN基本架构示意图。
图2是根据一示例性实施例示出的一种虚拟内网加速方法的流程图。
图3是图2所示流程中步骤201的具体流程图。
图4是图3所示流程中步骤202的具体流程图。
图5是根据一示例性实施例示出的一种虚拟内网加速方法的实现原理示意 图。
图6是根据一示例性实施例示出的一种虚拟内网加速系统的架构框图。
图7是根据一示例性实施例示出的一种计算机设备的框图。
为使本文实施例的目的、技术方案和优点更加清楚,下面将结合本文实施例中的附图,对本文实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本文一部分实施例,而不是全部的实施例。基于本文中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本文保护的范围。需要说明的是,在不冲突的情况下,本文中的实施例及实施例中的特征可以相互任意组合。
当前预防传输过程中丢包的通常做法是对同一数据包进行多份传输,通过多份传输的方式尽量降低丢包的几率。比如内网用户的一个TCP包,在SD-WAN网络内网使用发送两到三份相同的数据,走不同路径。多份传输占用不同路径,在传输数据量较大的情况下会增加对网络资源的消耗,且不能完全避免丢包的发生。
针对上述问题,本文实施例提供了一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备。
本文的一实施例提供了一种虚拟内网加速方法,使用该方法完成SD-WAN中数据传输的流程如图2所示,包括:
步骤201、发起端的CPE在接收到发起端的服务器发送的TCP请求时,将该TCP请求的信息传输至接收端的CPE。
步骤202、接收端的CPE根据TCP请求的信息,配置发起端的服务器与接收端的服务器之间的连接链。
步骤203、通过连接链,在源端和目标端之间传输TCP请求和/或TCP响应数据。
本文实施例中,发送端至少包括有服务器和CPE。接收端至少也包括有服 务器和CPE。
发起端的服务器可以为分支服务器,接收端的服务器可以为总部服务器;或者,
发起端的服务器为总部服务器,接收端的服务器为分支服务器。
其中,假设发起端的服务器为分支服务器,接收端的服务器为总部服务器时,上述步骤201的执行过程如图3所示,可以分为如下操作步骤301至302:
步骤301、发起端的CPE检测到TCP请求;
步骤302、发起端的CPE将分支服务器发送的TCP请求的信息使用私有协议封装后,通过与TCP请求对应的端口发送给接收端的CPE;
其中,本文中涉及的TCP请求的信息至少包含如下信息:
请求数据、作为请求目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
本文中,与TCP请求对应的端口指,预先为发起该TCP请求的用户分配的端口。即可以预先为不同的用户分别分配对应的端口,以传输该用户所请求的数据。其中,发起该TCP请求的用户可以是个人用户,也可以是业务服务商。
在向接收端的CPE发送数据时,发起端的CPE可以通过SD-WAN的可靠传输方式将TCP请求的信息传输至接收端的CPE。
其中,本文实施例中,发起端的CPE与接收端的CPE还可以通过SD-WAN的可靠传输方式传输非TCP数据。
上述步骤202的执行过程如图4所示,可以分为以下步骤401至步骤404:
步骤401、接收端的CPE在接收到TCP请求的信息后,使用私有协议解析TCP请求的信息,获取请求数据、作为请求目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口;
步骤402、对所获取的接收端的服务器的IP及端口发起连接,并将接收端的服务器的IP及端口配置为目标端;
步骤403、将发起端的服务器的IP及端口配置为源端;
步骤404、在目标端及源端之间建立连接链。
SD-WAN虚拟网络通道传输的包都是IP包,主要分为UDP和TCP两种,其中UDP是无连接模式,而TCP是基于连接的可靠传输方式,TCP会对传输过程丢失的数据包进行重传以确保传输可靠。
为确保不出现TCP over TCP的问题,通常SD-WAN网络底层传输都是使用普通UDP传输方式,不做可靠传输。SD-WAN网络探测到POP,认为网络出现丢包,则使用动态路由切换功能切换到另外的良好链路上去。采用这种做法,内网用户的TCP连接可以感知短暂丢包,出现丢包后,由用户的TCP连接发起重传。另外,内网用户的UDP连接也会出现传输丢包的情况,此时,可能需要内网用户手动重传。
本文实施例提供的虚拟内网加速方法,能够高效、可靠的传输TCP及非TCP包,成功的消除了网络抖动对传输产生的影响,极大的节约了网络资源并提升了用户体验。
本文的一实施例还提供了一种虚拟内网通信方法,可以解决虚拟通道传输在网络抖动情况下存在丢包的问题。
本文实施例中使用透明代理的方式实现TCP透明传输。在两个子网络之间,SD-WAN网络使用可靠传输方式实现传输加速及规避丢包。
下面以一个常规分支内网到总部内网请求和响应的过程为例,来描述虚拟内网通信的过程,该过程的原理如图5所示。
当图5中所示的企业分支的服务器向企业总部的服务器发起一个TCP请求时,该TCP请求被转发到企业分支的CPE上,企业分支的CPE通过iptables转发实现将请求数据转发到与该TCP请求对应的端口上,实现了透明代理。
本文实施例中,CPE包含有iptables、代理模块和转发模块。企业分支的服务器发出的全部请求都会先经过CPE的iptables,由iptables过滤区分为TCP请求及非TCP请求,之后将区分出的TCP请求经由代理模块后,通过转发模块发送给企业总部。
其中,企业分支的CPE获取到请求数据、作为目标的总部服务器的IP及端 口、作为请求来源的分支服务器的IP及端口。将这些信息通过私有协议封装,转发到SD-WAN网络。
SD-WAN通过可靠传输方式(包括TCP、可靠UDP等)将收到的数据快速传输到企业总部的CPE设备上。
企业总部的CPE解析私有协议,获取到请求数据、请求目标IP及端口、请求来源IP及端口,对目标IP及端口发起连接,通过系统所支持的TCP参数来实现源目标地址伪装。例如,可以使用socket的ip_transparent选项,设置请求来源IP及端口为连接源IP地址和端口。这样企业总部的目标服务器看到的客户端IP及端口就是企业分支的服务器的地址。对于非TCP请求,一般不做特别处理。
后续请求及响应数据都可以在上述传输数据所使用的连接链里传输,实现TCP请求传输加速。
从上述描述可以看出,与相关技术中的多份发送方案,带宽浪费较大,无法根本解决网络抖动丢包问题相比,本文实施例提供的技术方案实现了对客户无感知,可以优先解决TCP连接传输加速的问题,可以解决网络抖动导致丢包的问题。
对于总部内网到分支内网的请求和响应的连接链建立过程,其实现原理与上述原理相同,只是传输数据的方向与图5所示的场景相反,本文实施例对此不再赘述。
本文的一实施例提供了一种配置方法,用于配置接收端的服务器与发起端的服务器之间的SD-WAN连接链,其中,
接收端的CPE接收由发起端的CPE发出的使用私有协议封装后的TCP请求的信息,并使用所述私有化协议对所述TCP请求的信息进行解析;
所述接收端的CPE对接收端的服务器的IP及端口发起连接,配置为目标端;
所述接收端的CPE将发起端的服务器的IP及端口配置为源端;
所述接收端的CPE在所述目标端与所述源端之间建立连接链。
其中,TCP请求的信息至少包含如下信息:
请求数据、作为请求目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
实际应用中,本实施例提供的配置方法的操作可参见图4所示的虚拟内网加速方法中步骤202的执行过程,在此不再赘述。
本文的一实施例还提供了一种虚拟内网加速系统,其结构如图6所示,至少包括SD-WAN连接的发起端的服务器、接收端的服务器、发起端的客户端设备CPE和接收端的CPE。
其中,发起端的CPE,用于在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将该TCP请求的信息传输至接收端的CPE;
接收端的CPE,用于根据接收到的TCP请求的信息,配置发起端的服务器与接收端的服务器之间的连接链;
发起端的服务器与接收端的服务器,用于通过上述连接链,传输TCP请求和/或TCP响应数据。
其中,发起端的CPE,可以用于检测TCP请求,将分支服务器发送的TCP请求的信息使用私有协议封装后,发送给接收端的CPE。
本文中,TCP请求的信息至少包含如下信息:
请求数据、作为目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
其中,连接链承载于发起端的CPE与接收端的CPE之间的SD-WAN可靠传输通道上。
其中,接收端的CPE,可以用于在接收到TCP请求的信息后,使用私有协议解析,对接收端的服务器的IP及端口发起连接,配置目标端,将发起端的服务器的IP及端口配置为源端,在目标端及源端之间建立连接链。
本文实施例还提供了一种计算机存储介质,其上存储有计算机程序,所述程序被处理器执行时实现本文的实施例提供的一种虚拟内网通信方法的步骤。
本文实施例还提供了一种计算机设备,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述处理器执行所述程序时实现本文的实施例提供的一种虚拟内网通信方法的步骤。
本文的实施例提供了一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备,发起端的CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将TCP请求的信息传输至接收端的CPE。接收端的CPE根据接收到的TCP请求的信息,配置发起端的服务器与接收端的服务器之间的连接链,然后通过该连接链,传输TCP请求和/或TCP响应数据。其中,在SD-WAN的发起端的服务器和接收端的服务器之间建立连接链,通过所述连接链,传输TCP请求和/或TCP响应数据时还可以将该连接链承载于可靠传输通道上。从而实现发起端与接收端之间的TCP连接透明加速,对TCP连接传输进行了加速,有效的避免了丢包的发生,解决了现有预防丢包处理方式资源消耗量大且效果欠佳的问题。
在基于WAN的虚拟内网加速TCP连接,加速方式对客户无感知,有效的解决了虚拟WAN网络丢包带来应用层感知丢包的问题。
图7是根据一示例性实施例示出的一种用于虚拟内网加速的计算机设备700的框图。例如,计算机设备700可以被提供为一服务器。参照图7,计算机设备700包括处理器701,处理器的个数可以根据需要设置为一个或者多个。计算机设备700还包括存储器702,用于存储可由处理器701的执行的指令,例如应用程序。存储器的个数可以根据需要设置一个或者多个。其存储的应用程序可以为一个或者多个。处理器701被配置为执行指令,以执行上述虚拟内网加速方法,包括:
发起端的客户端设备CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE;
所述接收端的CPE根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;
通过所述连接链,传输TCP请求和/或TCP响应数据。
本领域技术人员应明白,本文的实施例可提供为方法、装置(设备)、或计算机程序产品。因此,本文可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本文可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质上实施的计算机程序产品的形式。计算机存储介质包括在用于存储信息(诸如计算机可读指令、数据结构、程序模块或其他数据)的任何方法或技术中实施的易失性和非易失性、可移除和不可移除介质,包括但不限于RAM、ROM、EEPROM、闪存或其他存储器技术、CD-ROM、数字多功能盘(DVD)或其他光盘存储、磁盒、磁带、磁盘存储或其他磁存储装置、或者可以用于存储期望的信息并且可以被计算机访问的任何其他的介质等。此外,本领域普通技术人员公知的是,通信介质通常包含计算机可读指令、数据结构、程序模块或者诸如载波或其他传输机制之类的调制数据信号中的其他数据,并且可包括任何信息递送介质。
本文是参照根据本文实施例的方法、装置(设备)和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。
在本文中,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的物品或者设备不仅包括那些要素,而且 还包括没有明确列出的其他要素,或者是还包括为这种物品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括……”限定的要素,并不排除在包括所述要素的物品或者设备中还存在另外的相同要素。
尽管已描述了本文的优选实施例,但本领域内的技术人员一旦得知了基本创造性概念,则可对这些实施例作出另外的变更和修改。所以,所附权利要求意欲解释为包括优选实施例以及落入本文范围的所有变更和修改。
显然,本领域的技术人员可以对本文进行各种改动和变型而不脱离本文的精神和范围。这样,倘若本文的这些修改和变型属于本文权利要求及其等同技术的范围之内,则本文的意图也包含这些改动和变型在内。
本文中技术方案,在发起端的CPE接收到发起端的服务器向接收端的服务器发送的TCP请求时,将该TCP请求的信息传输至接收端的CPE。接收端的CPE根据收到的TCP请求的信息,配置发起端的服务器与接收端的服务器之间的连接链,然后通过该连接链,传输TCP请求和/或TCP响应数据。在SD-WAN的发起端的服务器和接收端的服务器之间建立连接链,通过该连接链,传输TCP请求和/或TCP响应数据。还可以将该连接链承载于可靠传输通道上。实现了发起端与接收端之间的TCP连接透明加速,对TCP连接传输进行了加速,有效的避免了丢包的发生,解决了现有预防丢包处理方式资源消耗量大且效果欠佳的问题。在基于WAN的虚拟内网加速TCP连接,加速方式对客户无感知,有效的解决了虚拟WAN网络丢包带来应用层感知丢包的问题。
Claims (12)
- 一种虚拟内网加速方法,包括:发起端的客户端设备CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE;所述接收端的CPE根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;通过所述连接链,传输TCP请求和/或TCP响应数据。
- 根据权利要求1所述的虚拟内网加速方法,其中,所述发起端的CPE在接收到发起端的服务器向接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至接收端的CPE的步骤包括:所述发起端的CPE检测到TCP请求;所述发起端的CPE将分支服务器发送的TCP请求的信息使用私有协议封装后,通过与所述TCP请求对应的端口向所述接收端的CPE发送,所述TCP请求的信息至少包含如下信息:请求数据、作为目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
- 根据权利要求2所述的虚拟内网加速方法,其中,所述发起端的CPE通过SD-WAN的可靠传输方式将所述TCP请求的信息传输至所述接收端的CPE。
- 根据权利要求2所述的虚拟内网加速方法,其中,所述接收端的CPE根据所述TCP请求的信息,配置所述连接链的步骤包括:所述接收端的CPE在接收到所述TCP请求的信息后,使用所述私有协议解析;对所述接收端的服务器的IP及端口发起连接,配置目标端;将所述发起端的服务器的IP及端口配置为源端;在所述目标端及所述源端之间建立连接链。
- 根据权利要求1所述的虚拟内网加速方法,其中,所述发起端的服务器为分支服务器,所述接收端的服务器为总部服务器;或,所述发起端的服务器为总部服务器,所述接收端的服务器为分支服务器。
- 一种配置方法,用于配置接收端的服务器与发起端的服务器之间的SD-WAN连接链,其中,接收端的客户端设备CPE接收由发起端的CPE发出的使用私有协议封装后的TCP请求的信息,并使用所述私有化协议对所述TCP请求的信息进行解析;所述接收端的CPE对接收端的服务器的IP及端口发起连接,配置为目标端;所述接收端的CPE将发起端的服务器的IP及端口配置为源端;所述接收端的CPE在所述目标端与所述源端之间建立连接链。
- 一种虚拟内网加速系统,至少包括软件定义广域网SD-WAN连接的发起端的服务器、接收端的服务器、发起端的客户端设备CPE和接收端的CPE;所述发起端的CPE,用于在接收到所述发起端的服务器向所述接收端的服务器发送的TCP请求时,将所述TCP请求的信息传输至所述接收端的CPE;所述接收端的CPE,用于根据所述TCP请求的信息,配置所述发起端的服务器与所述接收端的服务器之间的连接链;所述发起端的服务器与所述接收端的服务器,用于通过所述连接链,传输TCP请求和/或TCP响应数据。
- 根据权利要求7所述的虚拟内网加速系统,其中,所述发起端的CPE,用于检测TCP请求;将分支服务器发送的TCP请求的信息使用私有协议封装后,通过与所述TCP请求对应的端口向所述接收端的CPE发送,所述TCP请求的信息至少包含如下信息:请求数据、作为目标的接收端的服务器的IP及端口、作为请求来源的发起端的服务器的IP及端口。
- 根据权利要求8所述的虚拟内网加速系统,其中,所述连接链承载于所述发起端的CPE与所述接收端的CPE之间的SD-WAN可靠传输通道上。
- 根据权利要求7所述的虚拟内网加速系统,其中,所述接收端的CPE,用于在接收到所述TCP请求的信息后,使用所述私有协议解析,对所述接收端的服务器的IP及端口发起连接,配置目标端,将所述发起端的服务器的IP及端口配置为源端,在所述目标端及源端之间建立连接链。
- 一种计算机可读存储介质,其上存储有计算机程序,所述计算机程序被执行时实现如权利要求1-5中任意一项所述方法的步骤,或者所述计算机程序被执行时实现如权利要求6所述方法的步骤。
- 一种计算机设备,包括处理器、存储器和存储于所述存储器上的计算机程序,所述处理器执行所述计算机程序时实现如权利要求1-5中任意一项所述方法的步骤,或者所述处理器执行所述计算机程序时实现如权利要求6所述方法的步骤。
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US17/298,447 US11902047B2 (en) | 2018-11-30 | 2019-11-28 | Virtual intranet acceleration method and system, configuration method, storage medium, and computer apparatus |
SG11202105791WA SG11202105791WA (en) | 2018-11-30 | 2019-11-28 | Virtual intranet acceleration method and system, configuration method, storage medium, and computer apparatus |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811459242.1 | 2018-11-30 | ||
CN201811459242.1A CN111262715B (zh) | 2018-11-30 | 2018-11-30 | 一种虚拟内网加速方法、系统和计算机设备 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2020108578A1 true WO2020108578A1 (zh) | 2020-06-04 |
Family
ID=70854325
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2019/121705 WO2020108578A1 (zh) | 2018-11-30 | 2019-11-28 | 一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备 |
Country Status (4)
Country | Link |
---|---|
US (1) | US11902047B2 (zh) |
CN (2) | CN111262721B (zh) |
SG (1) | SG11202105791WA (zh) |
WO (1) | WO2020108578A1 (zh) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
RU2687711C1 (ru) * | 2015-05-19 | 2019-05-15 | Хуавэй Текнолоджиз Ко., Лтд. | Способ аппаратного ускорения и связанное устройство |
CN110971626B (zh) * | 2018-09-28 | 2024-01-19 | 贵州白山云科技股份有限公司 | 一种企业分支机构访问请求处理方法、装置及系统 |
CN111953555A (zh) * | 2020-06-29 | 2020-11-17 | 联想(北京)有限公司 | 一种链路检测方法、cpe及存储介质 |
CN112532505A (zh) * | 2020-12-01 | 2021-03-19 | 长沙市同迅计算机科技有限公司 | 基于sd-wan的局域网间通信方法、装置、可读存储介质及控制设备 |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101217441A (zh) * | 2008-01-16 | 2008-07-09 | 中兴通讯股份有限公司 | 无线射频识别阅读器的远程管理方法 |
CN103236964A (zh) * | 2013-05-07 | 2013-08-07 | 烽火通信科技股份有限公司 | 基于Linux的DS-Lite实现方法及其CPE接入设备 |
CN103379130A (zh) * | 2012-04-13 | 2013-10-30 | 深圳市腾讯计算机系统有限公司 | 一种基于应用层数据的网络接入系统和方法 |
WO2017055122A1 (en) * | 2015-09-30 | 2017-04-06 | Tessares Sa | Method and device for establishing multipath network connections |
CN106713100A (zh) * | 2015-11-17 | 2017-05-24 | 华为数字技术(苏州)有限公司 | 一种自动建立隧道的方法、cpe及汇聚设备 |
CN107454276A (zh) * | 2016-06-01 | 2017-12-08 | 中兴通讯股份有限公司 | 一种用户终端设备及其数据转发方法、及通信系统 |
CN107659673A (zh) * | 2016-07-26 | 2018-02-02 | 华为技术有限公司 | 设备通信方法、装置及系统 |
Family Cites Families (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7873060B2 (en) | 2008-10-18 | 2011-01-18 | Fortinet, Inc. | Accelerating data communication using tunnels |
US9692713B2 (en) | 2008-11-12 | 2017-06-27 | Teloip Inc. | System, apparatus and method for providing a virtual network edge and overlay |
US9426029B2 (en) * | 2008-11-12 | 2016-08-23 | Teloip Inc. | System, apparatus and method for providing improved performance of aggregated/bonded network connections with cloud provisioning |
CN101778126A (zh) * | 2009-12-31 | 2010-07-14 | 中兴通讯股份有限公司 | 自动配置服务器远程管理用户前端设备的方法及系统 |
CN102316439B (zh) * | 2011-09-09 | 2017-11-24 | 中兴通讯股份有限公司 | 一种实现用户侧设备的固件升级方法和系统 |
US8843622B1 (en) * | 2011-12-19 | 2014-09-23 | Cisco Technology, Inc. | System and method to contact and maintain status of managed devices |
US10764532B2 (en) * | 2012-10-30 | 2020-09-01 | Viavi Solutions Inc. | Method and system for locating ingress utilizing customer premises equipment |
US9407557B2 (en) * | 2012-12-22 | 2016-08-02 | Edgewater Networks, Inc. | Methods and systems to split equipment control between local and remote processing units |
JP6236933B2 (ja) * | 2013-07-02 | 2017-11-29 | 富士通株式会社 | 中継装置 |
US9612854B2 (en) * | 2013-12-18 | 2017-04-04 | Telefonaktiebolaget Lm Ericsson (Publ) | System and method for virtualizing a remote device |
CN104184749B (zh) * | 2014-09-15 | 2019-07-19 | 上海斐讯数据通信技术有限公司 | 一种sdn网络访问方法及系统 |
CN104539531B (zh) * | 2014-12-25 | 2019-08-02 | 网宿科技股份有限公司 | 数据传输方法及装置 |
US9923677B2 (en) * | 2014-12-26 | 2018-03-20 | Intel Corporation | Multiplexing many client streams over a single connection |
CN104734893B (zh) * | 2015-04-02 | 2018-02-27 | 重庆邮电大学 | 一种面向wia‑pa网络的tr069协议管理方法 |
CN108234165A (zh) * | 2016-12-14 | 2018-06-29 | 中兴通讯股份有限公司 | 一种配置网关的方法和装置 |
CN106973053B (zh) * | 2017-03-29 | 2019-10-11 | 网宿科技股份有限公司 | 宽带接入服务器的加速方法和系统 |
-
2018
- 2018-11-30 CN CN201911188871.XA patent/CN111262721B/zh active Active
- 2018-11-30 CN CN201811459242.1A patent/CN111262715B/zh active Active
-
2019
- 2019-11-28 SG SG11202105791WA patent/SG11202105791WA/en unknown
- 2019-11-28 US US17/298,447 patent/US11902047B2/en active Active
- 2019-11-28 WO PCT/CN2019/121705 patent/WO2020108578A1/zh active Application Filing
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101217441A (zh) * | 2008-01-16 | 2008-07-09 | 中兴通讯股份有限公司 | 无线射频识别阅读器的远程管理方法 |
CN103379130A (zh) * | 2012-04-13 | 2013-10-30 | 深圳市腾讯计算机系统有限公司 | 一种基于应用层数据的网络接入系统和方法 |
CN103236964A (zh) * | 2013-05-07 | 2013-08-07 | 烽火通信科技股份有限公司 | 基于Linux的DS-Lite实现方法及其CPE接入设备 |
WO2017055122A1 (en) * | 2015-09-30 | 2017-04-06 | Tessares Sa | Method and device for establishing multipath network connections |
CN106713100A (zh) * | 2015-11-17 | 2017-05-24 | 华为数字技术(苏州)有限公司 | 一种自动建立隧道的方法、cpe及汇聚设备 |
CN107454276A (zh) * | 2016-06-01 | 2017-12-08 | 中兴通讯股份有限公司 | 一种用户终端设备及其数据转发方法、及通信系统 |
CN107659673A (zh) * | 2016-07-26 | 2018-02-02 | 华为技术有限公司 | 设备通信方法、装置及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN111262715B (zh) | 2021-04-02 |
SG11202105791WA (en) | 2021-06-29 |
CN111262721B (zh) | 2021-06-15 |
CN111262715A (zh) | 2020-06-09 |
CN111262721A (zh) | 2020-06-09 |
US20220109588A1 (en) | 2022-04-07 |
US11902047B2 (en) | 2024-02-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11750419B2 (en) | Systems and methods for providing a global virtual network (GVN) | |
WO2020108578A1 (zh) | 一种虚拟内网加速方法及系统、配置方法、存储介质和计算机设备 | |
US10574763B2 (en) | Session-identifer based TWAMP data session provisioning in computer networks | |
US9231918B2 (en) | Use of virtual network interfaces and a websocket based transport mechanism to realize secure node-to-site and site-to-site virtual private network solutions | |
CN106936811B (zh) | 安全设备、系统和方法 | |
US20210075715A1 (en) | Network Construction Method, System, and Routing Device | |
CN114866521A (zh) | 会议服务器 | |
US9350711B2 (en) | Data transmission method, system, and apparatus | |
US9712649B2 (en) | CCN fragmentation gateway | |
US20160150043A1 (en) | Source ip address transparency systems and methods | |
WO2015143802A1 (zh) | 业务功能链处理方法及装置 | |
CN110290093A (zh) | Sd-wan网络架构及组网方法、报文转发方法 | |
US9716688B1 (en) | VPN for containers and virtual machines in local area networks | |
WO2016050109A1 (zh) | 一种通信方法、云管理服务器及虚拟交换机 | |
CN108064441B (zh) | 一种加速网络传输优化方法以及系统 | |
US9614816B2 (en) | Dynamic encryption for tunneled real-time communications | |
US10263913B2 (en) | Tunnel consolidation for real-time communications | |
WO2015188706A1 (zh) | 数据帧的处理方法、装置与系统 | |
Jouin | Network service mesh solving cloud native IMS networking needs | |
US9548964B1 (en) | VPN for containers and virtual machines in local area networks | |
US12052219B2 (en) | Chassis system management through data paths | |
US20240179028A1 (en) | Cloud-based virtual extensable local area network (vxlan) tunnel switching across access points | |
WO2024027419A1 (zh) | 报文发送方法、装置及系统 | |
WO2021143214A1 (zh) | 一种数据传输方法及相关的设备和系统 | |
US8402474B2 (en) | Message sending method, message sending device and message transmission system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 19888700 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 19888700 Country of ref document: EP Kind code of ref document: A1 |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 19888700 Country of ref document: EP Kind code of ref document: A1 |