Method for realizing communication load equilibrium and gateway, central gateway thereof

A communication load and gateway technology, which is applied in the direction of network connection, data exchange network, digital transmission system, etc., can solve the problems that the load balancing method of IPsec security gateway has not been found, can not really improve the usability of VPN network, etc., and achieve the enhancement of actual operation ability , meet high availability requirements, and improve overall performance

Active Publication Date: 2008-02-06
MAIPU COMM TECH CO LTD
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Its shortcoming is that it can only realize the backup function, but cannot realize the load balancing of IPsec communication between the devices in the security gateway group, so it cannot really improve the availability of the VPN network
[0005] However, in the various existing technical solutions, no method specifically for IPsec security gateway load balancing has been found.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for realizing communication load equilibrium and gateway, central gateway thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] See Figure 1. The "security gateway" mentioned in this article refers to its security performance, and it can be called "upper gateway" or "central gateway" in terms of its position in the network.

[0016] A "tunnel" as described herein is a communication channel. The tunnel described in this implementation mode focuses on the communication channel for encapsulating packets using IPsec technology, and is also a secure communication tunnel.

[0017] Considering the particularity of IPsec technology, in order to correctly implement IPsec encapsulation and decapsulation, it is necessary to maintain consistent security parameters between the two tunnel parties and ensure the synchronization of related states, which makes the common load balancing scheme unable to meet its needs; The VPN security gateway used for load balancing is regarded as a gateway group, and the lower-end gateway establishes an IPsec tunnel with each of the gateways. The devices in the gateway group n...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention is a method and gateway as well as central gateway for balancing communication load, relating to the computer network communication and safety field, and especially relating to a method for balancing the loads of key network devices in the virtual private network (VPN) built by IPsec technique. The invention includes the following steps: a. tunnels are established between bottom-end gateway and many top-end gateways; b. the bottom-end gateway allocates local communication quantity to each tunnel. It adopts a simple and practical policy, by the system of and initiatively and uniformly allocating communication quantity to each opposite end, implementing the load balance for the key safety gateway devices, thus the whole performance of VPN, strengthening actual operating ability of IPsec VPN. The invention is applied to IPsec VPNs in various topological structures and can meet high usability requirement of enterprise VPN with heavy service.

Description

technical field [0001] The invention relates to the field of computer network communication and security, in particular to a method for balancing the load of key network equipment in a virtual private network established by using IPsec technology. Background technique [0002] The rapid development of the Internet makes it possible to build a virtual private network (VPN) for a specific organization on the public network. Among various VPN technologies, IPsec technology is favored by people for its safety, reliability, easy deployment and low cost. IPsec refers to the IP layer security protocol family, which can provide security services such as data source authentication, confidentiality, data integrity protection, and anti-replay attack for IP packets. Using IPsec technology can ensure the security of internal network data transmission on the public network. [0003] IPsec is essentially a tunnel technology, but this tunnel is a secure data transmission channel protected...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/24H04L12/66
Inventor 范恒英刘煜
Owner MAIPU COMM TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap