Unlock instant, AI-driven research and patent intelligence for your innovation.

Implementation method and device for rule index management based on tcam multi-level flow table

A technology for implementing methods and rules, applied in the field of multi-level flow table lookup mechanism, which can solve problems such as difficult operations for users

Active Publication Date: 2019-07-23
KYLAND TECH CO LTD
View PDF11 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] This index management mechanism can no longer satisfy the multi-level flow table lookup mechanism, because three indexes with different rules will be used in the multilevel flow table lookup mechanism involved in the invention. If each needs to be specified by the user, then It will add a lot of cumbersome operations to users, not to mention that it is even more difficult for users to operate when deleting flow entries.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Implementation method and device for rule index management based on tcam multi-level flow table
  • Implementation method and device for rule index management based on tcam multi-level flow table
  • Implementation method and device for rule index management based on tcam multi-level flow table

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0053] In order to reduce the waste of TCAM space resources and ensure that data packets are processed normally, the embodiments of the present invention provide a method and device for optimizing rule entries for message processing.

[0054] Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

[0055] refer to figure 1 As shown, the present invention will be described in detail below through the specific embodiments shown in the accompanying drawings. However, these embodiments do not limi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a rule index management implementation method and device based on a TCAM multistage flow table, and the method comprises the steps: building a corresponding sorting chain table based on a rule index, wherein the sorting chain table comprises a first-order rule index and / or a second-order rule index; adding the second-order rule index to the corresponding first-order rule index, wherein the second-order rule index comprises an action schedule index, a second-order lookup index, and a user customized rule index; querying the TCAM multistage flow table, judging whether to carry out second-order lookup or not according to a return value of the first-order rule index, carrying out the first-order lookup and / or second-order look-up according to a judgment result, and carrying out the corresponding processing operation. The method and device not only solve a problem of multistage lookup of equipment for processing a large flow and various types of complex businesses, but also overcome a difficulty, caused by a specified rule number, in index adding and query in the prior art.

Description

technical field [0001] The invention relates to the technical field of computer network communication and the field of industrial network security, in particular to a method and a device for realizing a multi-level flow table look-up mechanism in a network security device. Background technique [0002] With the continuous deepening and popularization of informatization, network information security technology has been widely valued by countries all over the world. Network security switching equipment, firewalls, gateways and other equipment play a pivotal role in the field of network information security. In such a big environment, the traditional one-level look-up table mechanism based on Tri-State Content Addressable Memory (TCAM) can no longer meet the needs of improving information security performance. [0003] TCAM (Ternary content addressable memory) is a ternary content addressable memory, which is mainly used to quickly look up entries such as access control lists (...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/24H04L29/06
Inventor 徐小海
Owner KYLAND TECH CO LTD