Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for realizing IP address filtering

An IP address and MAC address technology, applied in digital transmission systems, data exchange networks, electrical components, etc., can solve problems such as excessive occupation of ACL entries, avoid IP address conflicts, and ensure centralized management.

Inactive Publication Date: 2010-06-02
ZTE CORP
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The purpose of the present invention is to propose a method and device for implementing IP address filtering, which is used to solve the problem of excessive occupation of ACL entries when implementing VID+MAC+IP binding and filtering IP addresses in a layer 2 switch device in the prior art The problem

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for realizing IP address filtering
  • Method and device for realizing IP address filtering
  • Method and device for realizing IP address filtering

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] The main technical idea of ​​the present invention is that if the user's MAC address, VLAN ID and IP address are bound, a special MAC entry is generated in the switch device, the binding flag in the entry is set, and the The bound IP address is also written into the MAC entry. The user must use the bound IP address. If another IP address is changed, normal communication will not work, and the outgoing data packets will be filtered out.

[0027] Specific embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings.

[0028] Such as figure 1 As shown, a PC with a MAC address of 00-11-C6-5B-D5-80 and a VLAN of 1 uses the bound IP (192.168.1.1) to access the Internet. The switch first uses MAC+VLAN to check the MAC learning table. The obtained corresponding MAC entry has a binding function, and IP comparison is required. The comparison result: the source IP of the data packet is the same as the IP bound in the MAC ent...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The method includes procedures: using exchanger equipment receives data a packet sent from user, and analyzing the data packet obtains source MAC address, VLAN ID, and source IP address; carrying outbinding configuration check for entry matched to the source MAC address, VLAN ID in MAC address table of exchanger equipment; comparing the source IP address with bound IP address in MAC address tableof exchanger equipment; in the two addresses are different, then the data packet is filtered out; otherwise, the data packet is sent out. The invention implements function of binding VID + MAC +IP intwo layer exchanger equipment. Thus, user must use bound IP address, cannot do optional configuration so as to prevent issue of IP address confliction, and guarantee centralized control.

Description

technical field [0001] The invention relates to a technology for realizing IP address filtering in switch equipment, in particular to a method and a device for realizing IP address filtering in switch equipment with a network processor supporting VID+MAC+IP binding. Background technique [0002] Described VID, i.e. VLAN ID, VLAN (Virtual LAN, virtual local area network), in present network, the network access port of each user all corresponds to a VID, to realize carrying out two-layer isolation with other virtual local area networks, described VID is Used to distinguish different VLANs. [0003] MAC, that is, MAC address, is the address used by the Ethernet protocol. It is the physical address of the network card used by the PC. It is stored in the EPROM of the network card. The MAC address of each PC is unique, and the MAC address of the same network card is unchanged. of. [0004] IP, that is, the address used by the Internet protocol, is mainly used for data exchange a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12H04L12/24H04L12/56H04L45/741
Inventor 顾霞李新宇刘昆
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com