Switch, wide area network connection system, network and wide area network connection control method

A technology for connecting systems and wide area networks, which is applied in the field of three-layer switches, can solve problems such as potential safety hazards of local area networks, and achieve the effect of improving security

Inactive Publication Date: 2014-03-26
PHICOMM (SHANGHAI) CO LTD
View PDF4 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Since WAN users have methods and channels to access internal users of the LAN, this brings great hidden dangers to the security of the LAN.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Switch, wide area network connection system, network and wide area network connection control method
  • Switch, wide area network connection system, network and wide area network connection control method
  • Switch, wide area network connection system, network and wide area network connection control method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0033] The layer-3 switch of this embodiment includes at least one uplink port used to connect to the wide area network and at least one downlink port used to connect to the local area network. The at least one uplink port is closed by default. When the downlink port receives an external network connection instruction, it is opened and connected to the wide area network, and the at least one uplink port is disconnected from the wide area network and closed when the at least one downlink port receives an external network disconnection instruction.

[0034] Such as figure 1 Shown, utilize the network connection control method of the layer-3 switch of embodiment 1 to comprise the following steps:

[0035] S 101a , setting the at least one uplink port to be closed; S 102a , the at least one downlink port receives the external network connection instruction; S 103a , the at least one uplink port is open and connected to the wide area network; S 104a , the at least downlink port...

Embodiment 2

[0038] The difference between the layer-3 switch in this embodiment and the layer-3 switch in embodiment 1 is that, in the layer-3 switch in this embodiment, when there is no data transmission between the local area network and the wide area network within a preset period of time, the at least one The LAN port is disconnected from the WAN and turned off.

[0039] Such as figure 2 As shown, comparing the network connection control method using the three-layer switch of embodiment 2 with the network connection control method using the three-layer switch of embodiment 1, the step S 104a Replaced by a step S 104b : The at least downlink port receives the external network disconnection command, or detects that there is no data transmission between the LAN and the WAN within a preset period of time. Among them, the step S 104b include figure 2 All steps within the dotted box. When the at least one downlink port does not receive the external network disconnection command and d...

Embodiment 3

[0042] The wide area network connection system of the present embodiment comprises the layer-3 switch of embodiment 2 and a management server, and the management server is respectively connected with the local area network and the layer-3 switch, and the management server is used to receive an external network connection request sent by a local area network computer order, and after confirming that the LAN computer has the WAN authority, send the external network connection command to the three-layer switch, and after the LAN computer sends the external network disconnection command to the at least one downlink port, the at least one uplink port is disconnected. Open and close the connection to the WAN.

[0043] In addition, the management server is also used to send the external network connection command to the layer-3 switch after receiving an intranet connection request command sent by a WAN computer and confirming that the WAN computer has LAN authority, so that the WAN co...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a layer-three switch, a wide area network connection system comprising the layer-three switch, a network based on the layer-three switch and the wide area network connection system, and a wide area network control method. An upper link port of the layer-three switch is closed by default, and is only opened when a lower link port receives an outer network connection command, and is connected with a wide area network; and the upper link port is disconnected from the wide area network and is closed when the lower link port receives an outer network disconnection command. According to the layer-three switch, the wide area network connection system, the network and the wide area network connection control method of the invention, the upper link port of the layer-three switch is set to be in a normally-closed state, such that, local area network equipment connected with an internal port of the layer-three switch and the wide area network can be physically isolated, and the security of a local area network can be improved.

Description

technical field [0001] The invention relates to a three-layer switch, a wide area network connection system, a network and a wide area network connection control method. Background technique [0002] During the Ethernet switch networking process, the devices connected to the switch port can access each other according to fixed rules, especially the mutual access between the LAN and the WAN. Since WAN users have methods and channels to access the internal users of the LAN, this brings great hidden dangers to the security of the LAN. Especially for some enterprise internal LANs, the information involved may involve commercial secrets, and there are higher requirements for the security of the LANs. Contents of the invention [0003] The technical problem to be solved by the present invention is to overcome the defects in the prior art that WAN users have methods and accesses to access the internal users of the LAN, thus reducing the security of the LAN, and propose a three-l...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/937H04L12/46H04L29/06
Inventor 蒋汉初
Owner PHICOMM (SHANGHAI) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap