WO2020228130A1 - Communication method and system for network management server and network element of communication device - Google Patents

Communication method and system for network management server and network element of communication device Download PDF

Info

Publication number
WO2020228130A1
WO2020228130A1 PCT/CN2019/096625 CN2019096625W WO2020228130A1 WO 2020228130 A1 WO2020228130 A1 WO 2020228130A1 CN 2019096625 W CN2019096625 W CN 2019096625W WO 2020228130 A1 WO2020228130 A1 WO 2020228130A1
Authority
WO
WIPO (PCT)
Prior art keywords
gne
management
management message
network
network element
Prior art date
Application number
PCT/CN2019/096625
Other languages
French (fr)
Chinese (zh)
Inventor
徐振兵
程小鹏
张宏
Original Assignee
烽火通信科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 烽火通信科技股份有限公司 filed Critical 烽火通信科技股份有限公司
Publication of WO2020228130A1 publication Critical patent/WO2020228130A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/34Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters 
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Definitions

  • the present invention relates to the field of communication technology, in particular to a communication method and system between a network management server of a communication device and a network element.
  • network management service programs are usually used to manage and monitor the network elements in the communication network.
  • DCN Data Communication Network
  • GNE Gateway Network Element, gateway network element
  • management messages that the network management server interacts with non-GNE are all transferred by the GNE.
  • the existing method for the network management server to send management messages to the GNE is generally: the network management service program of the network management server (hereinafter referred to as the network management program), after searching for which GNE the management message object (ie, network element) needs to be issued belongs to, The management message adds a layer of related protocol encapsulation (such as UDP protocol encapsulation), and the destination IP of UDP encapsulation is the IP address of GNE; it is also necessary to add an identifier for marking the specific network element to which the message needs to be delivered in the management message information.
  • the network management service program of the GNE (hereinafter referred to as the gateway program) performs UDP decapsulation and forwards the message to the corresponding network element according to the network element identification information.
  • the gateway program when GNE sends non-GNE management messages to the network management server, the gateway program also needs to add UDP encapsulation to the management message; in addition, because the gateway program needs to set the source IP of the management message to the GNE IP, Therefore, the gateway program still needs to add network element identification information to the management message. Subsequently, the network management program also needs to perform UDP decapsulation after receiving the management message, and determine which non-GNE sent the message according to the network element identification information.
  • the technical problem solved by the present invention is: how to simplify the management message receiving and sending logic, thereby reducing the load required for receiving and sending management messages, and improving the working efficiency of receiving and sending management messages.
  • the communication method between the network management server of the communication device and the network element provided by the present invention includes the following steps: deploy an agent program on the network management server and each GNE; the network management server and each GNE agent program establishes the GNE Tunnel, and send and receive management messages through the GNE tunnel.
  • the destination IP of the management message is the IP of the local network element.
  • the agent at the sending end will encapsulate the management message; after the management message is received, the agent at the receiving end will decapsulate the management message; the encapsulation type depends on Protocols supported by the DCN network.
  • the process of the network management server sending management messages to GNE includes: after the agent receives the management message whose destination IP is set to the IP of the network element to be received, if there is a management message corresponding to the destination IP of the management message In the GNE tunnel, the management message is encrypted according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, the encrypted management message header is encapsulated, and then the management message is transmitted through the GNE tunnel.
  • the processing flow after GNE receives the management message includes: the agent program decapsulates the management message to obtain the source IP and destination IP of the management message; if there is the source IP and the decapsulated source IP and The GNE tunnel corresponding to the destination IP decrypts the management message according to the decryption algorithm corresponding to the encryption algorithm, and then forwards the management message to the corresponding local network element according to the destination IP of the management message.
  • the communication system between the network management server of the communication device and the network element in the embodiment of the present invention includes a network management agent module arranged on the network management server and a GNE agent module arranged on each GNE; the network management agent module and each GNE agent module GNE tunnels are established;
  • the network management agent module is used to: send management messages to the corresponding GNE through the GNE tunnel;
  • the GNE proxy module is used to send management messages to the network management server through the GNE tunnel.
  • the destination IP of the management message is the IP of the local network element.
  • the network management agent module and the GNE agent module are also used to: before sending the management message, encapsulate the management message; after receiving the management message, decapsulate the management message ;
  • the encapsulation type depends on the protocol supported by the DCN network.
  • the process of the network management agent module sending management messages to GNE includes: after receiving a management message whose destination IP is set to the IP of the network element to be received, if there is a management message with the destination IP
  • the corresponding GNE tunnel encrypts the management message according to the encryption algorithm of the GNE tunnel.
  • the management message is transmitted through the GNE tunnel .
  • the GNE proxy module is also used to: decapsulate the management message received by GNE to obtain the source IP and destination IP of the management message; if it exists, it corresponds to the source IP and destination IP obtained from the decapsulation In the GNE tunnel, the management message is decrypted according to the decryption algorithm corresponding to the encryption algorithm, and then the management message is forwarded to the corresponding local network element according to the destination IP of the management message.
  • the present invention deploys an agent program on the network management server and each GNE, and establishes a GNE tunnel between the agent programs, so as to realize the sending and receiving of management messages without the need of the network management program and the gateway program.
  • the management message can be transmitted through the GNE tunnel, which can directly determine the sending and receiving end of the management message, and then the destination IP can be set to the IP of the network element to be received when the network management server sends the management message, and the management message can be sent in GNE When the source IP is set to the IP of the sending network element. Therefore, the present invention does not need to add additional network element identification information in the prior art to the management message (that is, it does not need to manage the mapping relationship between GNE and non-GNE) to complete the identification of the management message.
  • the present invention can not only send and receive management messages without the need for network management programs and gateway programs, but also can significantly simplify the logic of sending and receiving management messages; whether it is for existing network management programs and gateway programs, or the original In terms of the newly-added agent programs of the invention, all of them reduce the load required for sending and receiving management messages and improve the efficiency of sending and receiving management messages.
  • Figure 1 is a schematic diagram of the logical framework of the GNE proxy service program in an embodiment of the present invention
  • Fig. 2 is a schematic diagram of a flow of a network management server sending a management message to a local network element in an embodiment of the present invention.
  • the communication method between the network management server of the communication device and the network element in the embodiment of the present invention includes the following steps:
  • GNE agent service program (hereinafter referred to as agent program, supporting deployment in Windows and Linux environments), network management server agent program (hereinafter referred to as network management agent program) and GNE agent program (hereinafter referred to as GNE agent program) are deployed on the network management server and each GNE
  • the function of the program is basically the same, except for the difference between the settings on different carriers.
  • the network management agent program establishes a GNE tunnel with each GNE agent program, and the network management agent program is set with the destination IP of all local network elements associated with each GNE tunnel, so as to realize the penetration of the DCN network.
  • the network management server When the network management server sends a management message to GNE, the network management server sets the destination IP of the management message to the IP of the local network element to be received; the network management agent sends the management message according to the GNE tunnel corresponding to the destination IP of the management message; The destination IP of the management message is set to the IP of the network element to be received, so the subsequent GNE can directly forward the management message according to the destination IP.
  • GNE When GNE sends a management message to the network management server, GNE sets the source IP of the management message to the IP of the local network element that sends the message; the GNE agent sends the management message through the GNE tunnel.
  • the present invention implements the sending and receiving of management messages without the need of the network management program and the gateway program by deploying an agent program on the network management server and each GNE, and establishing a GNE tunnel between the agents.
  • the management message can be transmitted through the GNE tunnel, which can directly determine the sending and receiving end of the management message, and then the destination IP can be set to the IP of the network element to be received when the network management server sends the management message, and the management message can be sent in GNE
  • the present invention does not need to additionally add the network element identification information in the prior art to the management message to complete the identification of the management message.
  • the agent program at the sending end will encrypt the management message; after the management message is received, the agent program at the receiving end will decrypt the management message corresponding to the encryption.
  • Such a design can make the management message in an encrypted state during the transmission of the DCN network, thereby significantly improving the transmission security of the management message.
  • the agent at the sending end will encapsulate the management message; after the management message is received, the agent at the receiving end will decapsulate the management message; the encapsulation type depends on the DCN network support Protocol (such as IP protocol, UDP protocol, TCP protocol, etc.).
  • DCN network support Protocol such as IP protocol, UDP protocol, TCP protocol, etc.
  • the agent program completes the encapsulation in the present invention, which not only reduces the load of the network management program and the gateway program, but also improves the work efficiency of the network management program and the gateway program; Moreover, the forwarding efficiency of the encapsulation based on the IP layer protocol is higher, which further improves the efficiency of receiving and sending management messages.
  • the process of the network management server sending the management message to the GNE includes:
  • the network management agent After the network management agent receives the management message whose destination IP is set to the IP of the network element to be received, it judges whether there is a GNE tunnel corresponding to the destination IP of the management message; if so, go to S102, otherwise it means there is an error, go to Go to S106.
  • S102 The network management agent program encrypts the management message according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, after adding IP protocol encapsulation to the header of the encrypted management message, access the DCN The network port is sent to the DCN network (that is, the management message is transmitted through the GNE tunnel), and then go to S103.
  • S104 The GNE agent program judges whether there is a GNE tunnel corresponding to the source IP and the destination IP obtained by decapsulation, if yes, go to S105, otherwise, it indicates that there is an error, and go to S106.
  • the decrypted management message is sent to the management plane for processing (for example, forwarding according to the destination IP of the management message Manage messages to the corresponding local network element, etc.).
  • S106 Acquire key information (such as source IP, destination IP, or MAC address, etc.) of the management message, so as to troubleshoot problems, and discard the management message to avoid unnecessary resource occupation.
  • Acquire key information such as source IP, destination IP, or MAC address, etc.
  • the process of GNE forwarding the management messages sent by local network elements to the network management server is basically the same as the above S101 ⁇ S106.
  • the difference lies in the exchange of the main body (network management server and GNE, network management agent and GNE agent), and the management report in S101.
  • the destination IP of the message is the IP of the network management server, and the source IP is the IP of the local network element that sends the message.
  • the communication system between the network management server of the communication device and the network element in the embodiment of the present invention includes a network management agent module arranged on the network management server and a GNE agent module arranged on each GNE; the network management agent module and each GNE agent module GNE tunnels are established.
  • the functions of the network management agent module and the GNE agent module are basically the same, except that they are set on different carriers.
  • the network management agent module is used to send a management message whose destination IP is the IP of the local network element to be received to the corresponding GNE through the GNE tunnel.
  • the specific process includes:
  • the process for the network management agent module to send management messages to GNE includes: after receiving a management message whose destination IP is set to the IP of the network element to be received, if there is a GNE tunnel corresponding to the destination IP of the management message, then according to the GNE tunnel
  • the encryption algorithm encrypts the management message.
  • the management message is transmitted through the GNE tunnel.
  • the GNE proxy module is used to:
  • Both the network management agent module and the GNE agent module are also used to encrypt and encapsulate the management message before sending the management message (the encapsulation type depends on the protocol supported by the DCN network); after the management message is received, the management message is The text undergoes decryption processing and decapsulation corresponding to encryption.

Abstract

The present invention relates to the technical field of communications, and provides a communication method and system for a network management server and a network element of a communication device. The method comprises the following steps: deploying agent programs on the network management server and each GNE; and establishing a GNE tunnel for the agent programs of the network management server and each GNE, and transmitting and receiving a management packet by means of the GNE tunnel. The present invention can simplify the transmitting and receiving logic of the management packet, thereby reducing the load required by transmitting and receiving the management packet and improving the working efficiency of transmitting and receiving the management packet.

Description

通信设备的网管服务器与网元的通信方法及系统Communication method and system between network management server of communication equipment and network element 技术领域Technical field
本发明涉及通信技术领域,具体涉及一种通信设备的网管服务器与网元的通信方法及系统。The present invention relates to the field of communication technology, in particular to a communication method and system between a network management server of a communication device and a network element.
背景技术Background technique
在通信技术领域,通常采用网络管理服务程序(网管)对通信网络中的网元进行管理和监控,在网管服务器和网元不能直连情况下,通常需要采用DCN(Data Communication Network,数据通信网络)来为网元提供管理信息通信功能,从而对各个设备的远程部署和管理。直接接入DCN网络的网元通常称之为GNE(Gateway Network Element,网关网元),网管服务器与非GNE交互的管理报文,都由GNE负责中转。In the field of communication technology, network management service programs (network management) are usually used to manage and monitor the network elements in the communication network. When the network management server and network elements cannot be directly connected, it is usually necessary to use DCN (Data Communication Network) ) To provide management information communication functions for network elements, so as to remotely deploy and manage various devices. The network element directly connected to the DCN network is usually called GNE (Gateway Network Element, gateway network element), and the management messages that the network management server interacts with non-GNE are all transferred by the GNE.
现有的网管服务器向GNE发送管理报文的方法一般为:网管服务器的网络管理服务程序(以下简称网管程序),查找需要下发的管理报文对象(即网元)属于哪个GNE后,将管理报文增加一层相关协议封装(例如UDP协议封装),UDP封装的目的IP为GNE的IP地址;还需要在管理报文中添加用于标记该报文需要送达的具体网元的标识信息。GNE的网络管理服务程序(以下简称网关程序)收到管理报文后,进行UDP解封装后,根据网元标识信息将该报文转发至对应的网元。The existing method for the network management server to send management messages to the GNE is generally: the network management service program of the network management server (hereinafter referred to as the network management program), after searching for which GNE the management message object (ie, network element) needs to be issued belongs to, The management message adds a layer of related protocol encapsulation (such as UDP protocol encapsulation), and the destination IP of UDP encapsulation is the IP address of GNE; it is also necessary to add an identifier for marking the specific network element to which the message needs to be delivered in the management message information. After receiving the management message, the network management service program of the GNE (hereinafter referred to as the gateway program) performs UDP decapsulation and forwards the message to the corresponding network element according to the network element identification information.
与之同样的,GNE将非GNE的管理报文发送至网管服务器时,网关程序也需要为管理报文增加UDP封装;此外,由于网关程序需 要将管理报文的源IP设置为GNE的IP,因此网关程序还是需要为管理报文增加网元标识信息。随之,网管程序收到管理报文后也需要进行UDP解封装、并根据网元标识信息确定该报文由哪个非GNE发送。Similarly, when GNE sends non-GNE management messages to the network management server, the gateway program also needs to add UDP encapsulation to the management message; in addition, because the gateway program needs to set the source IP of the management message to the GNE IP, Therefore, the gateway program still needs to add network element identification information to the management message. Subsequently, the network management program also needs to perform UDP decapsulation after receiving the management message, and determine which non-GNE sent the message according to the network element identification information.
由此可知,无论是网管程序还是网关程序,在收发管理报文时均需要进行添加封装、解封装、以及管理GNE与非GNE之间的映射关系(即添加和识别网元标识信息),这会导致网管程序和网关程序的管理报文收发逻辑比较复杂,进而不仅增大了程序运行时的负荷,而且降低了程序运行时的工作效率。It can be seen that whether it is a network management program or a gateway program, it is necessary to add encapsulation, decapsulation, and manage the mapping relationship between GNE and non-GNE (that is, add and identify network element identification information) when sending and receiving management messages. It will cause the logic of sending and receiving management messages of the network management program and the gateway program to be more complicated, which not only increases the load when the program is running, but also reduces the work efficiency when the program is running.
发明内容Summary of the invention
针对现有技术中存在的缺陷,本发明解决的技术问题为:如何简化管理报文收发逻辑,进而减轻收发管理报文所需的负荷,提高收发管理报文的工作效率。In view of the defects in the prior art, the technical problem solved by the present invention is: how to simplify the management message receiving and sending logic, thereby reducing the load required for receiving and sending management messages, and improving the working efficiency of receiving and sending management messages.
为达到以上目的,本发明提供的通信设备的网管服务器与网元的通信方法,包括以下步骤:在网管服务器和每个GNE上均部署代理程序;网管服务器和每个GNE的代理程序均建立GNE隧道、并通过GNE隧道收发管理报文。In order to achieve the above objectives, the communication method between the network management server of the communication device and the network element provided by the present invention includes the following steps: deploy an agent program on the network management server and each GNE; the network management server and each GNE agent program establishes the GNE Tunnel, and send and receive management messages through the GNE tunnel.
在上述技术方案的基础上,网管服务器通过GNE向本地网元发送管理报文时,管理报文的目的IP本地网元的IP。On the basis of the above technical solution, when the network management server sends a management message to the local network element through the GNE, the destination IP of the management message is the IP of the local network element.
在上述技术方案的基础上,管理报文在发送之前,发送端的代理程序会对管理报文进行封装;管理报文在接收之后,接收端的代理程序会对管理报文进行解封装;封装类型依赖于DCN网络支持的协议。On the basis of the above technical solution, before the management message is sent, the agent at the sending end will encapsulate the management message; after the management message is received, the agent at the receiving end will decapsulate the management message; the encapsulation type depends on Protocols supported by the DCN network.
在上述技术方案的基础上,网管服务器向GNE发送管理报文的流程包括:代理程序收到目的IP设置为待接收网元的IP的管理报文后,若存在与管理报文的目的IP对应的GNE隧道,则根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目 的IP,在加密后的管理报文头部增加封装后,通过GNE隧道传输管理报文。On the basis of the above technical solution, the process of the network management server sending management messages to GNE includes: after the agent receives the management message whose destination IP is set to the IP of the network element to be received, if there is a management message corresponding to the destination IP of the management message In the GNE tunnel, the management message is encrypted according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, the encrypted management message header is encapsulated, and then the management message is transmitted through the GNE tunnel.
在上述技术方案的基础上,GNE收到管理报文后的处理流程包括:代理程序对管理报文进行解封装得到管理报文的源IP和目的IP;若存在与解封装得到的源IP和目的IP对应的GNE隧道,则根据与所述加密算法对应的解密算法,对管理报文进行解密处理后,根据管理报文的目的IP转发管理报文至对应的本地网元。On the basis of the above technical solution, the processing flow after GNE receives the management message includes: the agent program decapsulates the management message to obtain the source IP and destination IP of the management message; if there is the source IP and the decapsulated source IP and The GNE tunnel corresponding to the destination IP decrypts the management message according to the decryption algorithm corresponding to the encryption algorithm, and then forwards the management message to the corresponding local network element according to the destination IP of the management message.
本发明实施例中的通信设备的网管服务器与网元的通信系统,包括设置于网管服务器上的网管代理模块、以及设置于每个GNE上的GNE代理模块;网管代理模块与每个GNE代理模块均建立有GNE隧道;The communication system between the network management server of the communication device and the network element in the embodiment of the present invention includes a network management agent module arranged on the network management server and a GNE agent module arranged on each GNE; the network management agent module and each GNE agent module GNE tunnels are established;
网管代理模块用于:通过GNE隧道向对应的GNE发送管理报文;The network management agent module is used to: send management messages to the corresponding GNE through the GNE tunnel;
GNE代理模块用于:通过GNE隧道向网管服务器发送管理报文。The GNE proxy module is used to send management messages to the network management server through the GNE tunnel.
在上述技术方案的基础上,网管服务器通过GNE向本地网元发送管理报文时,管理报文的目的IP本地网元的IP。On the basis of the above technical solution, when the network management server sends a management message to the local network element through the GNE, the destination IP of the management message is the IP of the local network element.
在上述技术方案的基础上,所述网管代理模块和GNE代理模块均还用于:在发送管理报文之前,对管理报文进行封装;管理报文在接收之后,对管理报文进行解封装;封装类型依赖于DCN网络支持的协议。On the basis of the above technical solution, the network management agent module and the GNE agent module are also used to: before sending the management message, encapsulate the management message; after receiving the management message, decapsulate the management message ; The encapsulation type depends on the protocol supported by the DCN network.
在上述技术方案的基础上,所述网管代理模块向GNE发送管理报文的流程包括:收到目的IP设置为待接收网元的IP的管理报文后,若存在与管理报文的目的IP对应的GNE隧道,则根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目的IP,在加密后的管理报文头部增加封装后,通过GNE隧道传输管理报文。On the basis of the above technical solution, the process of the network management agent module sending management messages to GNE includes: after receiving a management message whose destination IP is set to the IP of the network element to be received, if there is a management message with the destination IP The corresponding GNE tunnel encrypts the management message according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, after adding encapsulation to the encrypted management message header, the management message is transmitted through the GNE tunnel .
在上述技术方案的基础上,GNE代理模块还用于:对GNE收到 的管理报文进行解封装得到管理报文的源IP和目的IP;若存在与解封装得到的源IP和目的IP对应的GNE隧道,则根据与所述加密算法对应的解密算法,对管理报文进行解密处理后,根据管理报文的目的IP转发管理报文至对应的本地网元。On the basis of the above technical solution, the GNE proxy module is also used to: decapsulate the management message received by GNE to obtain the source IP and destination IP of the management message; if it exists, it corresponds to the source IP and destination IP obtained from the decapsulation In the GNE tunnel, the management message is decrypted according to the decryption algorithm corresponding to the encryption algorithm, and then the management message is forwarded to the corresponding local network element according to the destination IP of the management message.
与现有技术相比,本发明的优点在于:Compared with the prior art, the advantages of the present invention are:
本发明通过在网管服务器和每个GNE上部署代理程序、并在代理程序间建立GNE隧道的方式,来实现在不需要网管程序和网关程序的情况下收发管理报文。The present invention deploys an agent program on the network management server and each GNE, and establishes a GNE tunnel between the agent programs, so as to realize the sending and receiving of management messages without the need of the network management program and the gateway program.
与此同时,通过GNE隧道传输管理报文,能够直接确定管理报文的收发端,进而可以在网管服务器发送管理报文时将目的IP设置为待接收网元的IP,在GNE发送管理报文时将源IP设置为发送网元的IP。因此,本发明不需要在管理报文中额外添加现有技术中的网元标识信息(即不需要管理GNE与非GNE之间的映射关系),即可完成管理报文的识别。At the same time, the management message can be transmitted through the GNE tunnel, which can directly determine the sending and receiving end of the management message, and then the destination IP can be set to the IP of the network element to be received when the network management server sends the management message, and the management message can be sent in GNE When the source IP is set to the IP of the sending network element. Therefore, the present invention does not need to add additional network element identification information in the prior art to the management message (that is, it does not need to manage the mapping relationship between GNE and non-GNE) to complete the identification of the management message.
有鉴于此,本发明不仅能够在不需要网管程序和网关程序的情况下收发管理报文,而且能够显著简化管理报文的收发逻辑;这无论是对于已存在的网管程序和网关程序,还是本发明新增的代理程序而言,均减轻了收发管理报文所需的负荷,提高了收发管理报文的工作效率。In view of this, the present invention can not only send and receive management messages without the need for network management programs and gateway programs, but also can significantly simplify the logic of sending and receiving management messages; whether it is for existing network management programs and gateway programs, or the original In terms of the newly-added agent programs of the invention, all of them reduce the load required for sending and receiving management messages and improve the efficiency of sending and receiving management messages.
附图说明Description of the drawings
图1为本发明实施例中GNE代理服务程序的逻辑框架示意图;Figure 1 is a schematic diagram of the logical framework of the GNE proxy service program in an embodiment of the present invention;
图2为本发明实施例中网管服务器向本地网元发送管理报文的流程示意图。Fig. 2 is a schematic diagram of a flow of a network management server sending a management message to a local network element in an embodiment of the present invention.
具体实施方式Detailed ways
以下结合附图及实施例对本发明作进一步详细说明。The present invention will be further described in detail below in conjunction with the drawings and embodiments.
参见图1所示,本发明实施例中的通信设备的网管服务器与网元的通信方法,包括以下步骤:Referring to FIG. 1, the communication method between the network management server of the communication device and the network element in the embodiment of the present invention includes the following steps:
在网管服务器和每个GNE上均部署GNE代理服务程序(以下简称代理程序,支持Windows和Linux环境部署),网管服务器的代理程序(以下简称网管代理程序)和GNE的代理程序(以下简称GNE代理程序)的功能基本完全相同,仅在于设置于不同载体上的区别。网管代理程序分别与每个GNE代理程序建立GNE隧道,网管代理程序上设置有与每条GNE隧道关联的所有本地网元的目的IP,以此实现DCN网络的穿通。GNE agent service program (hereinafter referred to as agent program, supporting deployment in Windows and Linux environments), network management server agent program (hereinafter referred to as network management agent program) and GNE agent program (hereinafter referred to as GNE agent program) are deployed on the network management server and each GNE The function of the program) is basically the same, except for the difference between the settings on different carriers. The network management agent program establishes a GNE tunnel with each GNE agent program, and the network management agent program is set with the destination IP of all local network elements associated with each GNE tunnel, so as to realize the penetration of the DCN network.
网管服务器向GNE发送管理报文时,网管服务器将管理报文的目的IP设置为待接收本地网元的IP;网管代理程序根据与管理报文的目的IP对应的GNE隧道发送管理报文;由于管理报文的目的IP设置为待接收网元的IP,因此后续GNE直接根据目的IP转发管理报文即可。When the network management server sends a management message to GNE, the network management server sets the destination IP of the management message to the IP of the local network element to be received; the network management agent sends the management message according to the GNE tunnel corresponding to the destination IP of the management message; The destination IP of the management message is set to the IP of the network element to be received, so the subsequent GNE can directly forward the management message according to the destination IP.
GNE向网管服务器发送管理报文时,GNE将管理报文的源IP设置为发送该报文的本地网元的IP;GNE代理程序通过GNE隧道发送管理报文。When GNE sends a management message to the network management server, GNE sets the source IP of the management message to the IP of the local network element that sends the message; the GNE agent sends the management message through the GNE tunnel.
由此可知,本发明通过在网管服务器和每个GNE上部署代理程序、并在代理程序间建立GNE隧道的方式,来实现在不需要网管程序和网关程序的情况下收发管理报文。与此同时,通过GNE隧道传输管理报文,能够直接确定管理报文的收发端,进而可以在网管服务器发送管理报文时将目的IP设置为待接收网元的IP,在GNE发送管理报文时将源IP设置为发送网元的IP。因此,本发明不需要在管理报文中额外添加现有技术中的网元标识信息,即可完成管理报文的识 别。It can be seen from this that the present invention implements the sending and receiving of management messages without the need of the network management program and the gateway program by deploying an agent program on the network management server and each GNE, and establishing a GNE tunnel between the agents. At the same time, the management message can be transmitted through the GNE tunnel, which can directly determine the sending and receiving end of the management message, and then the destination IP can be set to the IP of the network element to be received when the network management server sends the management message, and the management message can be sent in GNE When the source IP is set to the IP of the sending network element. Therefore, the present invention does not need to additionally add the network element identification information in the prior art to the management message to complete the identification of the management message.
优选的,管理报文在发送之前,发送端的代理程序会对管理报文进行加密处理;管理报文在接收之后,接收端的代理程序会对管理报文进行与加密对应的解密处理。如此设计能够让管理报文在DCN网络传递中处于加密状态,进而显著提高了管理报文的传输安全。Preferably, before the management message is sent, the agent program at the sending end will encrypt the management message; after the management message is received, the agent program at the receiving end will decrypt the management message corresponding to the encryption. Such a design can make the management message in an encrypted state during the transmission of the DCN network, thereby significantly improving the transmission security of the management message.
优选的,管理报文在发送之前,发送端的代理程序会对管理报文进行封装;管理报文在接收之后,接收端的代理程序会对管理报文进行解封装;封装类型依赖于DCN网络支持的协议(例如IP协议、UDP协议和TCP协议等)。Preferably, before the management message is sent, the agent at the sending end will encapsulate the management message; after the management message is received, the agent at the receiving end will decapsulate the management message; the encapsulation type depends on the DCN network support Protocol (such as IP protocol, UDP protocol, TCP protocol, etc.).
可知,与现有技术中通过网管程序和网关程序进行UDP协议封装相比,本发明由代理程序完成封装,不仅减轻了网管程序和网关程序的负荷,提高了网管程序和网关程序的工作效率;而且基于IP层的协议的封装的转发效率较高,进而进一步提高了管理报文的收发效率。It can be seen that, compared with the UDP protocol encapsulation performed by the network management program and the gateway program in the prior art, the agent program completes the encapsulation in the present invention, which not only reduces the load of the network management program and the gateway program, but also improves the work efficiency of the network management program and the gateway program; Moreover, the forwarding efficiency of the encapsulation based on the IP layer protocol is higher, which further improves the efficiency of receiving and sending management messages.
优选的,参见图2所示,网管服务器向GNE发送管理报文的流程包括:Preferably, referring to Figure 2, the process of the network management server sending the management message to the GNE includes:
S101:网管代理程序收到目的IP设置为待接收网元的IP的管理报文后,判断是否存在与管理报文的目的IP对应的GNE隧道;若是,转到S102,否则说明存在错误,转到S106。S101: After the network management agent receives the management message whose destination IP is set to the IP of the network element to be received, it judges whether there is a GNE tunnel corresponding to the destination IP of the management message; if so, go to S102, otherwise it means there is an error, go to Go to S106.
S102:网管代理程序根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目的IP,在加密后的管理报文头部增加IP协议的封装后,通过接入DCN的网口发送至DCN网络(即通过GNE隧道传输管理报文),转到S103。S102: The network management agent program encrypts the management message according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, after adding IP protocol encapsulation to the header of the encrypted management message, access the DCN The network port is sent to the DCN network (that is, the management message is transmitted through the GNE tunnel), and then go to S103.
S103:GNE从接入DCN的网口收到管理报文后,GNE代理程序对管理报文进行解封装得到管理报文的源IP和目的IP,转到S104。S103: After the GNE receives the management message from the network port connected to the DCN, the GNE agent program decapsulates the management message to obtain the source IP and destination IP of the management message, and then transfers to S104.
S104:GNE代理程序判断是否存在与解封装得到的源IP和目的IP对应的GNE隧道,若是,转到S105,否则说明存在错误,转到S106。S104: The GNE agent program judges whether there is a GNE tunnel corresponding to the source IP and the destination IP obtained by decapsulation, if yes, go to S105, otherwise, it indicates that there is an error, and go to S106.
S105:根据与S102中的加密算法对应的解密算法和秘钥信息,对管理报文进行解密处理后,将解密后的管理报文上送至管理平面处理(例如根据管理报文的目的IP转发管理报文至对应的本地网元等)。S105: After decrypting the management message according to the decryption algorithm and secret key information corresponding to the encryption algorithm in S102, the decrypted management message is sent to the management plane for processing (for example, forwarding according to the destination IP of the management message Manage messages to the corresponding local network element, etc.).
S106:获取管理报文的关键信息(例如源IP、目的IP或者MAC地址等),以便排查问题,丢弃管理报文,以避免造成不必要的资源占用。S106: Acquire key information (such as source IP, destination IP, or MAC address, etc.) of the management message, so as to troubleshoot problems, and discard the management message to avoid unnecessary resource occupation.
GNE将本地网元发送的管理报文转发至网管服务器的流程与上述S101~S106基本相同,区别在于主体(网管服务器和GNE,网管代理程序和GNE代理程序)互换,以及S101中的管理报文的目的IP为网管服务器的IP,源IP为发送该报文的本地网元的IP。The process of GNE forwarding the management messages sent by local network elements to the network management server is basically the same as the above S101~S106. The difference lies in the exchange of the main body (network management server and GNE, network management agent and GNE agent), and the management report in S101. The destination IP of the message is the IP of the network management server, and the source IP is the IP of the local network element that sends the message.
本发明实施例中的通信设备的网管服务器与网元的通信系统,包括设置于网管服务器上的网管代理模块、以及设置于每个GNE上的GNE代理模块;网管代理模块与每个GNE代理模块均建立有GNE隧道。网管代理模块和GNE代理模块的功能基本完全相同,仅在于设置于不同载体上的区别The communication system between the network management server of the communication device and the network element in the embodiment of the present invention includes a network management agent module arranged on the network management server and a GNE agent module arranged on each GNE; the network management agent module and each GNE agent module GNE tunnels are established. The functions of the network management agent module and the GNE agent module are basically the same, except that they are set on different carriers.
网管代理模块用于:通过GNE隧道向对应的GNE发送目的IP为待接收本地网元的IP的管理报文,具体流程包括:The network management agent module is used to send a management message whose destination IP is the IP of the local network element to be received to the corresponding GNE through the GNE tunnel. The specific process includes:
网管代理模块向GNE发送管理报文的流程包括:收到目的IP设置为待接收网元的IP的管理报文后,若存在与管理报文的目的IP对应的GNE隧道,则根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目的IP,在加密后的管理报文头部增加封装后,通过GNE隧道传输管理报文。The process for the network management agent module to send management messages to GNE includes: after receiving a management message whose destination IP is set to the IP of the network element to be received, if there is a GNE tunnel corresponding to the destination IP of the management message, then according to the GNE tunnel The encryption algorithm encrypts the management message. According to the source IP and destination IP of the GNE tunnel, after adding encapsulation to the encrypted management message header, the management message is transmitted through the GNE tunnel.
GNE代理模块用于:The GNE proxy module is used to:
(1)通过GNE隧道向网管服务器发送源IP为本地网元的IP的管理报文;(1) Send management messages whose source IP is the IP of the local network element to the network management server through the GNE tunnel;
(2)对GNE收到的管理报文进行解封装得到管理报文的源IP和目的IP;若存在与解封装得到的源IP和目的IP对应的GNE隧道,则根据与所述加密算法对应的解密算法,对管理报文进行解密处理后,根据管理报文的目的IP转发管理报文至对应的本地网元。(2) Decapsulate the management message received by GNE to obtain the source IP and destination IP of the management message; if there is a GNE tunnel corresponding to the source IP and destination IP obtained by decapsulation, it will be based on the corresponding encryption algorithm After decrypting the management message, it forwards the management message to the corresponding local network element according to the destination IP of the management message.
网管代理模块和GNE代理模块均还用于:在发送管理报文之前,对管理报文进行加密处理和封装(封装类型依赖于DCN网络支持的协议);管理报文在接收之后,对管理报文进行与加密对应的解密处理、以及解封装。Both the network management agent module and the GNE agent module are also used to encrypt and encapsulate the management message before sending the management message (the encapsulation type depends on the protocol supported by the DCN network); after the management message is received, the management message is The text undergoes decryption processing and decapsulation corresponding to encryption.
需要说明的是:本发明实施例提供的系统在进行模块间通信时,仅以上述各功能模块的划分进行举例说明,实际应用中,可以根据需要而将上述功能分配由不同的功能模块完成,即将系统的内部结构划分成不同的功能模块,以完成以上描述的全部或者部分功能。It should be noted that when the system provided by the embodiment of the present invention performs inter-module communication, only the division of the above-mentioned functional modules is used as an example for illustration. In actual applications, the above-mentioned functions can be allocated by different functional modules as required. That is, the internal structure of the system is divided into different functional modules to complete all or part of the functions described above.
进一步,本发明不局限于上述实施方式,对于本技术领域的普通技术人员来说,在不脱离本发明原理的前提下,还可以做出若干改进和润饰,这些改进和润饰也视为本发明的保护范围之内。本说明书中未作详细描述的内容属于本领域专业技术人员公知的现有技术。Further, the present invention is not limited to the above-mentioned embodiments. For those of ordinary skill in the art, without departing from the principle of the present invention, several improvements and modifications can be made, and these improvements and modifications are also regarded as the present invention. Within the scope of protection. The content not described in detail in this specification belongs to the prior art known to those skilled in the art.

Claims (10)

  1. 一种通信设备的网管服务器与网元的通信方法,其特征在于,该方法包括以下步骤:在网管服务器和每个GNE上均部署代理程序;网管服务器和每个GNE的代理程序均建立GNE隧道、并通过GNE隧道收发管理报文。A communication method between a network management server of a communication device and a network element, which is characterized in that the method includes the following steps: deploy an agent program on the network management server and each GNE; the network management server and each GNE agent establish a GNE tunnel , And send and receive management messages through the GNE tunnel.
  2. 如权利要求1所述的通信设备的网管服务器与网元的通信方法,其特征在于:网管服务器通过GNE向本地网元发送管理报文时,管理报文的目的IP本地网元的IP。The communication method between a network management server of a communication device and a network element according to claim 1, wherein when the network management server sends a management message to the local network element through the GNE, the destination IP of the management message is the IP of the local network element.
  3. 如权利要求1所述的通信设备的网管服务器与网元的通信方法,其特征在于:管理报文在发送之前,发送端的代理程序会对管理报文进行封装;管理报文在接收之后,接收端的代理程序会对管理报文进行解封装;封装类型依赖于DCN网络支持的协议。The method for communicating between a network management server of a communication device and a network element according to claim 1, characterized in that: before the management message is sent, the agent program of the sending end encapsulates the management message; after the management message is received, it is received The agent program at the end will decapsulate the management message; the type of encapsulation depends on the protocol supported by the DCN network.
  4. 如权利要求1至3任一项所述的通信设备的网管服务器与网元的通信方法,其特征在于,网管服务器向GNE发送管理报文的流程包括:代理程序收到目的IP设置为待接收网元的IP的管理报文后,若存在与管理报文的目的IP对应的GNE隧道,则根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目的IP,在加密后的管理报文头部增加封装后,通过GNE隧道传输管理报文。The communication method between the network management server of the communication device and the network element according to any one of claims 1 to 3, wherein the process of the network management server sending management messages to the GNE includes: the agent program receives the destination IP and sets it to be received After the management message of the IP of the network element, if there is a GNE tunnel corresponding to the destination IP of the management message, the management message will be encrypted according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, After the header of the encrypted management message is encapsulated, the management message is transmitted through the GNE tunnel.
  5. 如权利要求4所述的通信设备的网管服务器与网元的通信方法,其特征在于,GNE收到管理报文后的处理流程包括:代理程序对管理报文进行解封装得到管理报文的源IP和目的IP;若存在与解封装得到的源IP和目的IP对应的GNE隧道,则根据与所述加密算法对应的解密算法,对管理报文进行解密处理后,根据管理报文的目的IP转发管理报文至对应的本地网元。The communication method between the network management server of the communication device and the network element according to claim 4, wherein the processing flow after the GNE receives the management message includes: the agent program decapsulates the management message to obtain the source of the management message IP and destination IP; if there is a GNE tunnel corresponding to the source IP and destination IP obtained by decapsulation, the management message is decrypted according to the decryption algorithm corresponding to the encryption algorithm, and then the management message is decrypted according to the destination IP of the management message Forward the management message to the corresponding local network element.
  6. 一种通信设备的网管服务器与网元的通信系统,其特征在于, 该系统包括设置于网管服务器上的网管代理模块、以及设置于每个GNE上的GNE代理模块;网管代理模块与每个GNE代理模块均建立有GNE隧道;A communication system between a network management server of a communication device and a network element, characterized in that the system includes a network management agent module set on the network management server, and a GNE proxy module set on each GNE; the network management agent module and each GNE The agent modules have established GNE tunnels;
    网管代理模块用于:通过GNE隧道向对应的GNE发送管理报文;The network management agent module is used to: send management messages to the corresponding GNE through the GNE tunnel;
    GNE代理模块用于:通过GNE隧道向网管服务器发送管理报文。The GNE proxy module is used to send management messages to the network management server through the GNE tunnel.
  7. 如权利要求6所述的通信设备的网管服务器与网元的通信系统,其特征在于:网管服务器通过GNE向本地网元发送管理报文时,管理报文的目的IP本地网元的IP。The communication system between the network management server of the communication device and the network element according to claim 6, wherein when the network management server sends a management message to the local network element through the GNE, the destination IP of the management message is the IP of the local network element.
  8. 如权利要求6所述的通信设备的网管服务器与网元的通信系统,其特征在于,所述网管代理模块和GNE代理模块均还用于:在发送管理报文之前,对管理报文进行封装;管理报文在接收之后,对管理报文进行解封装;封装类型依赖于DCN网络支持的协议。The communication system between the network management server of the communication device and the network element according to claim 6, wherein the network management agent module and the GNE agent module are both further used to: encapsulate the management message before sending the management message ; After the management message is received, the management message is decapsulated; the encapsulation type depends on the protocol supported by the DCN network.
  9. 如权利要求6至8任一项所述的通信设备的网管服务器与网元的通信系统,其特征在于,所述网管代理模块向GNE发送管理报文的流程包括:收到目的IP设置为待接收网元的IP的管理报文后,若存在与管理报文的目的IP对应的GNE隧道,则根据GNE隧道的加密算法对管理报文进行加密处理,根据GNE隧道的源IP和目的IP,在加密后的管理报文头部增加封装后,通过GNE隧道传输管理报文。The communication system between the network management server of the communication device and the network element according to any one of claims 6 to 8, wherein the process of the network management agent module sending a management message to the GNE includes: receiving the destination IP and setting it as waiting After receiving the management message of the IP of the network element, if there is a GNE tunnel corresponding to the destination IP of the management message, the management message is encrypted according to the encryption algorithm of the GNE tunnel. According to the source IP and destination IP of the GNE tunnel, After adding encapsulation to the encrypted management message header, the management message is transmitted through the GNE tunnel.
  10. 如权利要求9所述的通信设备的网管服务器与网元的通信系统,其特征在于,GNE代理模块还用于:对GNE收到的管理报文进行解封装得到管理报文的源IP和目的IP;若存在与解封装得到的源IP和目的IP对应的GNE隧道,则根据与所述加密算法对应的解密算法,对管理报文进行解密处理后,根据管理报文的目的IP转发管理报文至对应的本地网元。The communication system between the network management server of the communication device and the network element according to claim 9, wherein the GNE proxy module is further used to: decapsulate the management message received by the GNE to obtain the source IP and destination of the management message IP; if there is a GNE tunnel corresponding to the source IP and destination IP obtained by decapsulation, the management message is decrypted according to the decryption algorithm corresponding to the encryption algorithm, and then the management message is forwarded according to the destination IP of the management message Text to the corresponding local network element.
PCT/CN2019/096625 2019-05-10 2019-07-19 Communication method and system for network management server and network element of communication device WO2020228130A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201910390049.5 2019-05-10
CN201910390049.5A CN111917621B (en) 2019-05-10 2019-05-10 Communication method and system for network management server and network element of communication equipment

Publications (1)

Publication Number Publication Date
WO2020228130A1 true WO2020228130A1 (en) 2020-11-19

Family

ID=73242289

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/096625 WO2020228130A1 (en) 2019-05-10 2019-07-19 Communication method and system for network management server and network element of communication device

Country Status (2)

Country Link
CN (1) CN111917621B (en)
WO (1) WO2020228130A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112929211A (en) * 2021-01-26 2021-06-08 北京华环电子设备有限公司 Method for realizing non-IP management and control equipment to be accessed to IP DCN network to be managed
CN113904868A (en) * 2021-11-02 2022-01-07 北京长焜科技有限公司 IPsec-based remote network management method

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060288092A1 (en) * 2005-06-16 2006-12-21 Infinera Corporation Xml over tcp management protocol with tunneled proxy support and connection management
CN107547220A (en) * 2016-06-27 2018-01-05 中兴通讯股份有限公司 A kind of method and device of plurality of subnets member multi-zone supervision
CN108650126A (en) * 2018-05-09 2018-10-12 华信塞姆(成都)科技有限公司 The method with interior DCN is found and configures automatically in a kind of PTN network

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB9913239D0 (en) * 1999-06-08 1999-08-04 Marconi Comm Ltd Communications arrangement
US7969998B2 (en) * 2005-06-10 2011-06-28 Cisco Technology, Inc. Method and system for tunneling data using a management protocol
CN102308523B (en) * 2011-07-27 2014-07-16 华为技术有限公司 Data communication network configuration method, gateway network element and data communication system
CN105812166B (en) * 2014-12-30 2020-06-12 中兴通讯股份有限公司 Connection implementation method and system, network server, gateway network element and management method
CN105610619B (en) * 2015-12-31 2019-04-16 北京格林伟迪科技股份有限公司 A kind of network element managing method and apparatus
CN106936615A (en) * 2015-12-31 2017-07-07 中兴通讯股份有限公司 A kind of message processing method and device
CN108243035B (en) * 2016-12-26 2021-04-09 华为技术有限公司 DCN message processing method, network equipment and network system
CN108965091B (en) * 2018-07-16 2020-11-06 烽火通信科技股份有限公司 Network element management method and system based on VXLAN tunnel

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060288092A1 (en) * 2005-06-16 2006-12-21 Infinera Corporation Xml over tcp management protocol with tunneled proxy support and connection management
CN107547220A (en) * 2016-06-27 2018-01-05 中兴通讯股份有限公司 A kind of method and device of plurality of subnets member multi-zone supervision
CN108650126A (en) * 2018-05-09 2018-10-12 华信塞姆(成都)科技有限公司 The method with interior DCN is found and configures automatically in a kind of PTN network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
WANG, YAJUAN ET AL.: "Research on Management Channel Organization Mode of Large-scale Power Grid Transmission Networks", ELECTRIC POWER INFORMATION AND COMMUNICATION TECHNOLOGY, vol. 12, no. 9, 30 September 2014 (2014-09-30), XP009524209 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112929211A (en) * 2021-01-26 2021-06-08 北京华环电子设备有限公司 Method for realizing non-IP management and control equipment to be accessed to IP DCN network to be managed
CN112929211B (en) * 2021-01-26 2023-04-18 北京华环电子设备有限公司 Method for realizing non-IP management and control equipment to be accessed to IP DCN network to be managed
CN113904868A (en) * 2021-11-02 2022-01-07 北京长焜科技有限公司 IPsec-based remote network management method

Also Published As

Publication number Publication date
CN111917621A (en) 2020-11-10
CN111917621B (en) 2021-09-07

Similar Documents

Publication Publication Date Title
CN107018134B (en) Power distribution terminal safety access platform and implementation method thereof
US9369550B2 (en) Protocol for layer two multiple network links tunnelling
US8179890B2 (en) Mobile IP over VPN communication protocol
US7380124B1 (en) Security transmission protocol for a mobility IP network
US6970446B2 (en) Method and apparatus to provide inline encryption and decryption for a wireless station via data streaming over a fast network
US10044841B2 (en) Methods and systems for creating protocol header for embedded layer two packets
JP4407452B2 (en) Server, VPN client, VPN system, and software
CN101309273B (en) Method and device for generating safety alliance
US20010020273A1 (en) Method of virtual private network communication in security gateway apparatus and security gateway apparatus using the same
CN107306198B (en) Message forwarding method, device and system
US20190124055A1 (en) Ethernet security system and method
WO2020228130A1 (en) Communication method and system for network management server and network element of communication device
CN1937571A (en) System and method for realizing VPN protocol at application layer
CN108924157B (en) Message forwarding method and device based on IPSec VPN
US7623666B2 (en) Automatic setting of security in communication network system
WO2023030160A1 (en) Packet sending method, network device, storage medium, and program product
CN115442121A (en) Traffic transmission method, system, device and storage medium
CN112367237B (en) Message forwarding method and system
CN100583891C (en) Communication encryption method and system
KR101837064B1 (en) Apparatus and method for secure communication
CN101783791B (en) System and method for realizing network access authentication, transmission encryption and UTM
CN107579932A (en) A kind of data transmission method, equipment and storage medium
CN114338116B (en) Encryption transmission method and device and SD-WAN network system
CN110650476B (en) Management frame encryption and decryption
US20220400405A1 (en) Methods and apparatus for reducing communications delay

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19928958

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19928958

Country of ref document: EP

Kind code of ref document: A1