Unlock instant, AI-driven research and patent intelligence for your innovation.

Virtual local area network port isolation method and system

A technology of virtual local area network and port isolation, applied in the field of port isolation and VLAN-based port isolation, it can solve the problems that port isolation cannot be realized, and the isolation method cannot meet the flexible needs of users, and achieves the effect of good versatility and wide application.

Active Publication Date: 2018-07-10
MAIPU COMM TECH CO LTD
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This rough isolation method cannot meet the flexible needs of users, and it will also cause users who do not need to be isolated to be actually isolated.
The egress entry cannot implement VLAN-based port isolation

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtual local area network port isolation method and system
  • Virtual local area network port isolation method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0029] Such as figure 1 As shown, the virtual local area network port isolation method of the embodiment of the present invention, the main steps are as follows:

[0030] S101. Set a keyword in the entry content processor of each switch chip, where the keyword includes a virtual local area network number, a chip number, and a port address. And store the above keywords in the tri-state content addressable memory of the entry content processor.

[0031] After selecting the IFP component in the CAP, it is necessary to determine the matching fields. The matching fields are keywords that can meet the scene requirements set according to user needs. In the embodiment of the present invention, since users in the virtual local area network are to be isolated, the matching field must first include the number (VLAN ID) of the virtual local area network, and secondly include the port address (srcPort ID) and chip number (mod ID) of the isolated port. ), and usually set the L3route field...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to port isolation technology in the field of data communication. The invention discloses a virtual local area network port isolation method, comprising the steps of: a. setting keywords in the entry processor of each switching chip, the keywords including the virtual local area network number, chip number, port address and whether to pass through the routing field ; b. Assign a value to the keyword of each switch chip, and set the value of whether the routing field has not been routed; c. After the message enters the switch, perform keyword matching, and perform corresponding actions according to the keyword assignment. The invention simultaneously discloses a virtual local area network port isolation system, which includes a keyword setting module, a keyword assignment module and a keyword matching module. The invention can flexibly configure the virtual local area network where the isolated port and the isolated port are isolated, and solves the problem that users isolated in one virtual local area network are also isolated in other virtual local area networks.

Description

technical field [0001] The invention relates to a port isolation technology in the field of data communication, in particular to a port isolation technology based on a VLAN (Virtual Local Area Network, virtual local area network) realized by using an IFP (IngressContentAware Processor, ingress content processor). Background technique [0002] With the increase of the number of internal network users and the improvement of business diversity requirements, the problem of switch access security has become increasingly prominent. For security reasons, it must be ensured that only legitimate users can access the network system of the data center. [0003] The emergence of early virtual local area networks is to divide a local area network (LAN) into multiple logical local area networks - virtual local area networks. Each virtual local area network is a broadcast domain, and the communication between hosts in a virtual local area network is the same as in a local area network, bu...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/46
Inventor 严林
Owner MAIPU COMM TECH CO LTD