Unlock instant, AI-driven research and patent intelligence for your innovation.

Method and device for secure message forwarding

A forwarding method and message technology, applied in the field of network communication, can solve the problems of increasing traffic processing load, affecting the performance of servers and switches, etc., achieving the effect of realizing security protection and avoiding traffic forwarding to external processing

Active Publication Date: 2018-07-20
NEW H3C TECH CO LTD
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the implementation process of the existing technology, the internal traffic of the server needs to be guided to the external processing, which increases the load of traffic processing and affects the performance of the server and the switch; at the same time, the traffic guidance requires the cooperation of the external access switch, which requires a dedicated physical switching device

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for secure message forwarding
  • Method and device for secure message forwarding
  • Method and device for secure message forwarding

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] In order to make the object, technical solution and advantages of the present invention clearer, the solutions of the present invention will be further described in detail below with reference to the accompanying drawings and examples.

[0027] The core idea of ​​the present invention is to create a virtual firewall based on a virtualization platform on a physical machine, such as a server. The virtual firewall runs on the virtual platform as a special virtual machine. The created virtual firewall can have the same functions as a traditional physical firewall. Security features. When security protection is required for access traffic between virtual machines inside the server, the administrator can configure the corresponding security policy on the VFW, and the VFW can automatically configure the traffic diversion policy in the virtual switch (vSwtich), and save it in the form of a flow table in vSwtich Among them, the vSwitch can match the traffic according to the cont...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a message security forwarding method, which is applied to a virtual firewall VFW. The method includes: the VFW notifies the virtual switch to establish a corresponding flow diversion strategy according to the security strategy configured by itself, and the flow diversion strategy is used to instruct the virtual switch to After receiving the packet sent by the source virtual machine that matches the traffic diversion policy, the VFW guides it to the VFW; when the VFW receives the packet forwarded by the virtual switch, it performs security processing on the packet based on its own configured security policy, and sends the processed The message of the security policy is forwarded to the destination virtual machine through the virtual switch; wherein, the VFW and the virtual switch are built in the same physical machine based on the virtualization platform. The invention also discloses a message security forwarding device. Adopting the present invention can prevent the flow from being forwarded to external processing.

Description

technical field [0001] The invention relates to the technical field of network communication, in particular to a message security forwarding method and device. Background technique [0002] With the rapid development of cloud computing technology, data center virtualization has gradually become popular among the people. Facing the virtualization of resources, its security issues have also attracted more and more attention. Traditional firewall devices can provide security protection and business isolation for traffic in the network, but in a virtual environment, the traffic between multiple virtual machines (Virtual Machine, VM) inside the server usually exists inside the server and will not be transmitted to the server. In the external physical firewall, the physical firewall cannot protect it. [0003] In order to solve the problem of security protection of the traffic between virtual machines in the server, the existing technology mainly uses the "extracorporeal circulat...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/801
CPCH04L63/0227H04L12/6418H04L67/63H04L67/131
Inventor 吕振峰孙松儿
Owner NEW H3C TECH CO LTD