A VPN multi-party connection method based on ipsec

A connection method and IP address technology, applied in the communication field, can solve problems such as difficult adaptation, video service delay, increased operation and maintenance costs, etc.

Active Publication Date: 2017-12-19
BEIJING SAPLING TECH
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] With the development of the network, especially the network economy, the enterprises are expanding day by day, the distribution of customers is becoming wider and wider, and the number of partners is increasing day by day. This situation promotes the increasing benefits of enterprises, and on the other hand, it also highlights the functional defects of traditional enterprise networks. : The private line connection method of the traditional enterprise network based on a fixed physical location has been difficult to meet the needs of modern enterprises. Therefore, enterprises have put forward higher requirements for their own network construction, mainly in the flexibility, security, economy, and scalability of the network. aspect
[0006] Obviously, in the above processing scheme, the multicast data stream needs to be encapsulated and decapsulated twice by GER and IPSec before it can be finally processed. This has a great impact on services that are sensitive to transmission delays, such as voice services, and will also affect video services. cause a large delay
Moreover, the solution requires the central node and branch nodes to support both IPSec and GRE VPN technologies, which increases the operation and maintenance costs of the solution

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A VPN multi-party connection method based on ipsec
  • A VPN multi-party connection method based on ipsec

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0032] Embodiment 1 of the present invention provides a kind of VPN connection method based on IPSec, it is characterized in that, comprises the following steps:

[0033] Step 202, building a network structure, specifically including:

[0034] Step 2021, classify the nodes that may need to be connected, and divide the nodes into a key node and several general nodes according to specific needs;

[0035] Step 2022, determine the affiliation relationship between key nodes and general nodes, and the key nodes are subordinate to several general nodes;

[0036] Step 2023, configure a node relationship routing table on the key node, the table at least includes the ID, IP address and MAC address of the key node, and the ID, IP address and MAC address of the general nodes subordinate to the key node;

[0037] Step 2024, configure a node relationship routing table on all general nodes, the table at least includes the general node's own ID, IP address and MAC address, and the key node's...

Embodiment 2

[0052] Before the step 2041, it also includes:

[0053] Step 2040, the first general node receives the session request initiated by the user, and judges whether the session to be connected is a two-party session or a multi-party session, if it is a two-party session, use the general IPSec VPN connection process to connect;

[0054] Those of ordinary skill in the art can understand that all or part of the processes in the method of the above-mentioned embodiments can be completed by instructing related hardware through a host program. The program can be stored in a host-readable storage medium. The program During execution, it may include the processes of the embodiments of the above-mentioned methods. Wherein, the storage medium may be a magnetic disk, an optical disk, a read-only memory (Read-Only Memory, ROM) or a random access memory (Random Access Memory, RAM) and the like.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

In the present invention, in the IPSec VPN that needs multi-party sessions, by dividing all nodes that need to be connected into key nodes and general nodes, and setting their affiliation, when initiating a multi-party session, the key nodes are forwarded, so that the data Passed between nodes participating in a multiparty session in a secure manner. The invention does not need to use any additional protocol, does not need to repackage and pack the data packets to be sent, and realizes multi-party conversation. Through the establishment of key nodes, it is only necessary to ensure the forwarding performance of key nodes, that is, to achieve multi-party secure connections to other general nodes, so that application environments such as enterprises can obtain efficient and economical operating modes.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a VPN connection method. Background technique [0002] The development of information technology and the widespread use of the Internet, while bringing great convenience to people's life and work, have also made people very worried about the security of communication data and the operation of computer systems on the Internet based on the open protocol platform TCP / IP. safety. At present, a variety of secure communication technologies have been applied to data transmission in the Internet. Among them, the Internet Protocol Security (IPSec) communication protocol implemented at the network layer is completely transparent to the application layer, so it is very suitable for the existing TCP / IP network. By adding IPSec security modules without modifying the settings of application systems and software, a common secure network communication environment is constructed for vario...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/46H04L12/741H04L29/06H04L45/74
Inventor 苏长君郑曙光
Owner BEIJING SAPLING TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap