Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and equipment for NAT (network address translation) processing during distribution of multiple service boards in distributed system

A distributed system, multi-service board technology, applied in the field of network communication and network security, can solve the problem that the reverse packet cannot find the NAT session entry, the hsah value is different, and the reverse packet cannot be successfully sent back to the original host, etc. question

Inactive Publication Date: 2015-04-29
BEIJING TOPSEC TECH +2
View PDF5 Cites 19 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] After a lot of research, the inventor found that there are the following problems in implementing the NAT function in the existing distributed system: First, for the same host, the message sent by it has been processed by NAT, resulting in the occurrence of quaternion information in the message. As a result, the hsah value calculated before and after the packet conversion may be different. After the packet address translation, the forward packet may be distributed to a different service board from the reverse packet, and the forward packet cannot be found for the reverse packet. The NAT session entry created by the file, so that the reverse packet cannot be successfully sent back to the original host

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and equipment for NAT (network address translation) processing during distribution of multiple service boards in distributed system
  • Method and equipment for NAT (network address translation) processing during distribution of multiple service boards in distributed system
  • Method and equipment for NAT (network address translation) processing during distribution of multiple service boards in distributed system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] In order to enable those skilled in the art to better understand the solutions of the present invention, the following will clearly and completely describe the technical solutions in the embodiments of the present invention in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments are only It is an embodiment of a part of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts shall fall within the protection scope of the present invention.

[0033] In order to facilitate the understanding of the technical solution of the present invention, a simple analysis of the technical problem to be solved by the present invention is firstly carried out.

[0034] First, introduce the principle of NAT function implementation, refer to image 3 As shown, it is the schematic diagram ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses a method and equipment for NAT (network address translation) processing during distribution of multiple service boards in a distributed system, and the method and the equipment are applied to the technical field of network safety and can be used for guaranteeing a forward message and a reverse message to be distributed to the same service board and solving the problem of conflict between message ports in the service boards. The method comprises the following steps: performing address translation on an IP (internet protocol) address of a message according to an NAT strategy matched with the forward IP message; performing translation on a source port number in an IP message quaternion according to a preset hash constraint condition, wherein the preset hash constraint condition is that a hash value of the message quaternion after address translation and port translation of the IP message is equal to a hash value of the message quaternion before address translation and port translation of the IP message; creating an NAT session table item of the IP message according to the translation process of the IP message.

Description

technical field [0001] The invention relates to the fields of network communication and network security, in particular to a NAT processing method and equipment for multi-service board distribution in a distributed system. Background technique [0002] refer to figure 1 As shown, it is a schematic diagram of the network equipment structure under the distributed system architecture. The network equipment (such as routers, switches, and firewalls, etc.) of the distributed system architecture is mainly composed of equipment racks and plug boards on the racks. Including: the main control board, the interface board and the service board, and the boards are connected through the switching network. The main control board is mainly responsible for the management and version production and upgrading of various plug-in boards on the rack; the interface board is responsible for receiving, forwarding and sending messages (such as IP messages); the service board realizes various busines...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/12H04L29/08
CPCH04L61/2517H04L63/0218H04L2101/604
Inventor 付言华常超邹希良陈旭
Owner BEIJING TOPSEC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com