Method and system for isolating ports of virtual local area network

A virtual local area network and port isolation technology, applied in the field of port isolation, can solve the problems that the isolation method cannot meet the flexible needs of users, and cannot realize port isolation, etc., and achieves the effect of good versatility and wide application

Active Publication Date: 2014-05-07
MAIPU COMM TECH CO LTD
View PDF10 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This rough isolation method cannot meet the flexible needs of users, and it will also cause users who do not need to be isolated to be actually isolated.
The egress entry cannot implement VLAN-based port isolation

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for isolating ports of virtual local area network
  • Method and system for isolating ports of virtual local area network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0029] Such as figure 1 As shown, the main steps of the virtual local area network port isolation method in the embodiment of the present invention are as follows:

[0030] S101: Set keywords in the entry content processor of each switching chip, where the keywords include a virtual local area network number, a chip number, and a port address. And the above keywords are stored in the three-state content addressing memory of the entry content processor.

[0031] After selecting the IFP component in the CAP, the matching field must be determined. The matching field is a keyword that can meet the needs of the scene set according to user needs. In the embodiment of the present invention, since users in the virtual local area network are to be isolated, the matched field must first include the virtual local area network number (VLAN ID), and secondly include the port address of the isolated port (srcPort ID) and the chip number (mod ID). ), usually also set the L3route field to 0, whic...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to port isolation technologies in the field of data communication, and discloses a method for isolating ports of a virtual local area network. The method for isolating the ports of the virtual local area network comprises the steps that (1) keywords are set in inlet processors of exchange chips, wherein each keyword includes a virtual local area network serial number, a chip serial number, a port address and a route-passing-or-not field; (2) assignment is carried out on the keywords of the exchange chips, and the value of each route-passing-or-not field is set to be no route passing; (3) after a message enters a switch, keyword matching is carried out, and corresponding actions are carried out according to the assigned values of the keywords. The invention further discloses a system for isolating the ports of the virtual local area network. The system for isolating the ports of the virtual local area network comprises a keyword setting module, a keyword assignment module and a keyword matching module. According to the method and the system for isolating the ports of the virtual local area network, the effect that isolation ports and isolated ports are flexibly isolated in a certain local area network can be achieved, and the problem that a user who is isolated in one virtual local area network is also isolated in other virtual local area networks is solved.

Description

Technical field [0001] The present invention relates to a port isolation technology in the field of data communication, in particular to a port isolation technology based on VLAN (Virtual Local Area Network, virtual local area network) implemented by adopting IFP (Ingress Content Aware Processor, ingress content processor). Background technique [0002] With the increase in the number of internal network users and the increasing requirements for business diversity, the problem of switch access security has become increasingly prominent. For security reasons, it must be ensured that only legitimate users can access the network system of the data center. [0003] The emergence of early virtual local area networks was to divide a local area network (LAN) into multiple logical local area networks-virtual local area networks. Each virtual local area network is a broadcast domain. The communication between hosts in a virtual local area network is the same as in a local area network, but...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/46
Inventor 严林
Owner MAIPU COMM TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap