A method and system for realizing cross-ipv6 and ipv4 vpn mutual access

A technology of NAT64 and ipv4 addresses, which is applied in the field of Internet communication, can solve the problems of difficulty in management, complex implementation methods of IPv6 and IPv4 network intercommunication between VPNs, etc., and achieve the effect of simple and convenient configuration and high security performance

Active Publication Date: 2018-12-18
FENGHUO COMM SCI & TECH CO LTD
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The purpose of the embodiments of the present invention is to provide a method and system for realizing VPN mutual access across IPv6 and IPv4, so as to solve the problems in the prior art that the implementation method of mutual transmission between IPv6 and IPv4 networks between VPNs is complex and difficult to manage

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for realizing cross-ipv6 and ipv4 vpn mutual access
  • A method and system for realizing cross-ipv6 and ipv4 vpn mutual access
  • A method and system for realizing cross-ipv6 and ipv4 vpn mutual access

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0043] Such as figure 2 Shown is a schematic flow diagram of a method for realizing cross-IPv6 and IPv4 VPN mutual access provided by the present invention. When the IPv6-side VPN initiates a data access message for the IPv4-side VPN, refer to figure 1 As shown in the system architecture diagram, the method includes the following steps:

[0044] In step 201, the destination address is obtained by resolving the destination identifier according to the DNS64 server, and the destination address is carried in the data access message;

[0045] In step 202, obtain the NAT64 address pool bound by the serial number of the ACL according to the source IPv6 address carried in the access message of the data, and obtain the VPN on the IPv4 side according to the VPN bound by the serial number of the ACL;

[0046] In step 203, according to the NAT64 address pool, the source IPv6 address is converted into a source IPv4 address that can be used in the IPv4 side VPN, and an unused port is sele...

Embodiment 2

[0071] Such as image 3 Shown is a system architecture diagram for implementing cross-IPv6 and IPv4 VPN mutual access provided by the embodiment of the present invention, including an IPv6-side source terminal, an IPv6-side DNS64 server, a NAT64 server, and an IPv4-side destination terminal. The source terminal is connected to DNS64 server, and establish a data link with the destination terminal through the NAT64 server, wherein the destination terminal is connected to the DNS64 server, specifically:

[0072] The source terminal obtains the destination address through the DNS64 server, and carries it in the data access message and sends it to the NAT64 server;

[0073] The NAT64 server obtains the NAT64 address pool bound by the serial number of the ACL according to the source IPv6 address carried in the access message of the data, and obtains the VPN on the IPv4 side according to the VPN bound by the serial number of the ACL;

[0074] The NAT64 server converts the source IPv...

Embodiment 3

[0079] The embodiment of the present invention provides a method for mutual access from IPv6 networks to IPv4 networks between different VPNs. Specifically include the following steps:

[0080] S401. Configure a prefix (prefix), IPv6-side VPN and IPv4-side VPN, and configure a NAT64 address pool assigned to source IPv6.

[0081] In order to implement mutual access between IPv6IPv4 across VPNs, there must be an address or address pool for source IPv6 and destination IPv6 translation. Embodiments of the present invention realize configuring a VPN of IPv6 and a VPN of IPv4 in the network; Then configure one or more address pools for the IPv6 VPN, i.e. NAT64 address pools, and this address pool is mainly used as source IPv6 to convert to It is used for the source IPv4 of the IPv4 network; prefix is ​​mainly used for matching the destination IPv6 address. When the destination address matches the prefix, the prefix is ​​stripped to obtain an IPv4 address as the destination address ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention is applicable to the field of Internet communication, and provides a method and system for realizing VPN mutual access across IPv6 and IPv4. When the VPN on the IPv6 side initiates a data access message for the VPN on the IPv4 side, the method includes: according to the DNS64 server Parse the destination identifier to obtain the destination address, which is carried in the data access message; obtain the NAT64 address pool bound to the sequence number of the ACL according to the source IPv6 address carried in the data access message, and according to The VPN bound to the serial number of the ACL obtains the VPN on the IPv4 side; converts the source IPv6 address into a source IPv4 address that can be used in the VPN on the IPv4 side according to the NAT64 address pool; strips off the prefix of the destination address to obtain a legal destination IPv4 address; According to the destination IPv4 address, the VPN on the IPv4 side forwards the data access message through the IPv4 protocol stack. By applying the method and system for mutual access between different VPNs through NAT64 of the present invention, the mutual access between different VPNs can be easily realized, the configuration is simple and convenient, and the security performance is high.

Description

technical field [0001] The invention belongs to the field of Internet communication, and in particular relates to a method for realizing VPN mutual access across IPv6 and IPv4. Background technique [0002] IPv6 is the fundamental solution to the problem of IPv4 address exhaustion. However, due to the large number of existing IPv4 users, most existing networks do not yet support IPv6 applications, making it difficult to evolve from IPv4 to IPv6. In order to ensure smooth transition of users and services, we expect that the entire evolution cycle will be a long-term process, that is to say, IPv6 will coexist with IPv4 for a long time. Therefore, the IPv6 transition scheme is particularly important. Moreover, due to the rapid development of Internet technology, L3 VPNs have been widely used by enterprises, governments, etc., and are used for network isolation. However, in actual application scenarios, there may be mutual access between VPNs. demand. [0003] However, there ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/46H04L29/12
CPCH04L12/4641H04L61/103H04L61/251H04L61/2521H04L61/5061H04L61/4511
Inventor 杨帅刘磊
Owner FENGHUO COMM SCI & TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap