Supercharge Your Innovation With Domain-Expert AI Agents!

Source role information processing method and forwarding chip

A forwarding chip and processing source technology, applied in the field of network communication, can solve the problem of high upgrade cost, achieve the effect of reducing management cost, convenient management, and strong functional correlation

Active Publication Date: 2013-11-06
NEW H3C TECH CO LTD
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] It can be seen that the above-mentioned methods in the prior art all require major changes to the functions of the existing equipment, and the upgrade cost is relatively high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Source role information processing method and forwarding chip
  • Source role information processing method and forwarding chip
  • Source role information processing method and forwarding chip

Examples

Experimental program
Comparison scheme
Effect test

example 1

[0047] Example 1: If the user equipment is directly connected to the Ingress device, and the Ingress device directly interacts with the access authentication server, corresponding to the first and third application scenarios above, the Ingress uses authentication to configure the source information of the message and The process of the correspondence between source role tags is as follows: Figure 6 As shown, the following steps may be included:

[0048] Step 601: The user equipment initiates an authentication request to the Ingress device.

[0049] Step 602: the Ingress device forwards the authentication request to the access authentication server.

[0050] Step 603: After the user equipment passes the authentication, the access authentication server sends the role information of the user equipment to the Ingress device.

[0051] Step 604: The Ingress device sends the corresponding relationship between the ingress port receiving the authentication request and the source rol...

example 2

[0053] Example 2: If the user equipment accesses the Ingress device through an ordinary device, and the ordinary device interacts with the access authentication server, which corresponds to the second and fourth application scenarios above, the Ingress uses authentication to configure the source of the message The process of correspondence between information and source role tag is as follows: Figure 7 As shown, the following steps may be included:

[0054] Step 701: the user equipment initiates an authentication request to the common equipment.

[0055] Step 702: The common device forwards the authentication request to the access authentication server.

[0056] Step 703: After the user equipment passes the authentication, the access authentication server sends the role information of the user equipment to the common equipment.

[0057] Step 704: The ordinary device sends the corresponding relationship between the role information of the user equipment and the source addres...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a source role information processing method and a source role information processing forwarding chip. The method comprises the following steps of: when an Ingress function is enabled, inserting a source role tag into a data message as an inner-layer virtual local area network (VLAN) tag of the data message; when an intermediate equipment function is enabled and the data message is forwarded, keeping the source role tag serving as the inner-layer VLAN tag in the data message unchanged; and when an Egress function is enabled, acquiring the source role tag serving as the inner-layer VLAN tag from the data message, thereby performing role-based access control. By the method, the QinQ function of the conventional forwarding chip is utilized, and the function of conventional network equipment is not required to be relatively more changed, so the upgrading cost of a network is reduced. The invention simultaneously provides the universal forwarding chip. A more flexible foundation is laid for upper-layer software, and convenience is brought to management over the forwarding chip.

Description

technical field [0001] The invention relates to the technical field of network communication, in particular to a method for processing source role information and a forwarding chip. Background technique [0002] In order to ensure the security of the network, when the user accesses the network, the user needs to be authenticated, and after the authentication, the user's access authority needs to be restricted by means of access control, that is, by configuring the access control list (ACL). The traditional access control method is mainly based on the IP address, but it will cause the disadvantages of too many ACL configurations and a large workload of configuration management caused by the change of the IP address. Therefore, a role-based access control method is proposed. The basic idea is: assign source role tags to users, assign destination role tags to servers, and ACL performs access control based on the source role tags and destination role tags accordingly. This role...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/28H04L12/931H04L29/06H04L12/911
Inventor 宋玉兵杨小朋
Owner NEW H3C TECH CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com