A Distributed Network Address Translation System

A distributed network and address translation technology, applied in the field of distributed network address translation NAT systems, can solve problems such as wasted network bandwidth, insufficient network bandwidth, and low load on NAT devices.

Inactive Publication Date: 2018-04-10
NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The load of the NAT device in the "too cold" environment is low, and the network bandwidth is wasted; the load of the NAT device in the "overheated" environment is high, and the network bandwidth is insufficient
The root cause of this situation is: resources are scattered and cannot be shared
[0010] Therefore, the traditional NAT system has a low utilization rate of IP resources and does not support resource usage strategies for load

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Distributed Network Address Translation System
  • A Distributed Network Address Translation System
  • A Distributed Network Address Translation System

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0052] The invention provides a distributed network address translation NAT system, which is suitable for the NAT environment including one or more different public IP resources, and the system includes an access layer, a multiplexing layer and a control layer. The architecture of the system is as Figure 5 As shown in the figure, the access layer is close to the intranet host and provides a transparent access environment for the upper application intranet host. The multiplexing layer aggregates system resources so that resources can be shared. The control layer implements system configuration and resource allocation.

[0053] The node in the access layer is an access server, which is recorded as an access point AP (Access Point); the AP has the functions of communicating with the host on the internal network and address translation. The access layer includes one or more access points AP.

[0054] The nodes in the multiplex layer are multiplex servers, which are recorded as...

Embodiment 2

[0066] In this embodiment, aiming at the solution provided in Embodiment 1, in order to solve the problem of route selection and session consistency in the distributed NAT system, the function of the distributed NAT system is extended.

[0067] Fine-grained public IP address allocation

[0068]The traditional NAT system monopolizes a single public IP address. The distributed NAT system in this embodiment reduces the allocation granularity of public IP addresses to the port level in consideration of the shortage of public IP addresses. For example: for a specific public IP address, there are [a,b] a total of (b-a+1) ports available, the distributed NAT system divides a single public IP address into [a,x] according to the upper application requirements and [x+1,b] two segments (a≤x

Embodiment 3

[0086] On the basis of the solutions provided in Embodiment 1 or Embodiment 2, this embodiment provides a data interaction mode between nodes at the access layer, the multiplexing layer, and the control layer.

[0087] Among them, nodes in the access layer, multiplexing layer, and control layer use three types of data streams for data interaction, and the three types of data streams are public IP submission streams, public IP acquisition streams, and system data streams; system data streams include configuration stream, log stream and business data stream. The direction, trigger mode and content of each data flow are shown in Table 3.

[0088] table 3

[0089]

[0090]

[0091] The processing process and steps of each data stream are as follows:

[0092] Public IP submission flow:

[0093] The public IP submission flow is a way to maintain resources within the system. The data direction of the public IP submission flow is from the multiplexing point MP to the resourc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a distributed network address translation system. The distributed network address translation system comprises an access layer, a multiplex layer and a control layer; middle nodes of the access layer are APs (Access Point); middle nodes of the multiplex layer are MPs (Multiplex Point); middle nodes of the control layer are CPs (Control Point); every AP is an access server; the functions of every AP comprise communicating with an internal network host, selecting public IP (Internet Protocol) resources for the internal network host, communicating with the MP owning the selected public IP resources and performing address translation; every MP is a multiplex server; the respectively owned public IP resources are maintained through every MP and meanwhile every MP is communicated with an external network through the respectively owned public IP resources; every CP comprises an IPS (IP Selector) and a CC (Control Center); every IPS is used for maintaining the public IP address resources of the MPs in the system; every CC is used for performing configuration on every layer of nodes; the APs, the MPs and the CPs are connected with each other through a tunnel which is a transmission layer connecting tunnel. The distributed network address translation system is used for performing the distributed network address translation and accordingly the utilization rate of the IP resources in the NAT (Network Address Translation) system can be improved.

Description

technical field [0001] The invention relates to the technical field of network communication, in particular to a distributed network address translation NAT (Network Address Translation) system. Background technique [0002] The Internet Assigned Numbers Authority (IANA) specifies three types of private IP address space: 10.0.0.0-10.255.255.255, 172.16.0.0-172.31.255.255 and 192.168.0.0-192.168.255.255. These three types of IP addresses can only be used on the internal network and are not allowed to be used on the Internet. The network using private IP addresses is called an internal network, referred to as "intranet"; the network using public IP addresses is called an external network, referred to as "external network" or "Internet". [0003] NAT technology is a technology that appears when IPv4 addresses are increasingly exhausted. It is mainly used to realize the function of internal network accessing external network, and was released as an RFC document in 1994. NAT pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/12
CPCH04L61/2503
Inventor 陈训逊薛晨罗浩张树壮黄亮徐原常为领刘阳袁庆升李高超郑礼雄王东安
Owner NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap