A private network application identification system, method, SDN controller, and p-device

An application identification and controller technology, applied in the field of data communication, can solve the problems of MPLS message processing logic, poor generality, limited application, etc., to achieve good fault diagnosis and security defense, rapid identification, and simple implementation. Effect

Active Publication Date: 2022-04-15
MAIPU COMM TECH CO LTD
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] The embodiment of the present invention provides a private network application identification system, method, SDN controller, and P device, which are used to solve the poor versatility and limited application of the existing private network application identification scheme, which affects the existing MPLS packet processing logic Larger, also need to increase the problem of additional deployment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A private network application identification system, method, SDN controller, and p-device
  • A private network application identification system, method, SDN controller, and p-device
  • A private network application identification system, method, SDN controller, and p-device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0041] The embodiment of the present invention provides a private network application identification system, such as figure 1 As shown, the system includes at least a P device and an SDN controller, and the SDN controller establishes a communication connection with the P device. In order to better illustrate a private network application identification system provided by an embodiment of the present invention, figure 1 In the example, two CE devices CE1 and CE2 are provided, an ingress PE (or called IngressPE) device and an egress PE (or called Egress PE) device, and the SDN controller establishes communication connections with all PE devices in the network. A communication connection can be established between the SDN controller and devices such as P and PE through various protocols, such as a network configuration protocol (Network Configuration Protocol, NETCONF for short) connection.

[0042] When CE1 in the user network communicates with CE2 in the user network, CE1 sends...

Embodiment 2

[0062] The embodiment of the present invention provides a private network application identification method, such as image 3 As shown, the method includes:

[0063] Step 301, the P device receives the MPLS message sent by the ingress PE device, obtains the address of the egress PE device corresponding to the MPLS message, and parses the MPLS message to obtain the VPN label and message feature information assigned by the egress PE device; The egress PE device address, the VPN label assigned by the egress PE device, and packet feature information are sent to the SDN controller.

[0064] In the embodiment of the present invention, the egress PE device actively sends information such as the VPN label assigned by the egress PE device to the ingress PE device. After the ingress PE device receives the IP packet sent by the CE device in the user network, it encapsulates the IP packet with an MPLS label header, encapsulates the VPN label allocated by the egress PE device in the botto...

Embodiment 3

[0076] An embodiment of the present invention provides a private network application identification method, which is applied to an SDN controller, such as Figure 4 As shown, the method includes:

[0077] Step 401: Receive the egress PE device address corresponding to the MPLS message sent by the P device, and the VPN label and message feature information assigned by the egress PE device in the MPLS message. Wherein, the packet characteristic information may include IP quintuple information.

[0078] Step 402, comparing the received egress PE device address and the VPN label assigned by the egress PE device with the pre-acquired PE device address, the corresponding relationship between the PE device assigned VPN label and the VPN, and determining the VPN corresponding to the MPLS message, The private network application corresponding to the MPLS message is determined in combination with the message characteristic information. In this way, the visualization of private network...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a private network application identification system, method, SDN controller, and P equipment, relates to the field of data communication, and realizes visualization of private network application traffic in a service provider network. The system includes at least a P device and an SDN controller, wherein the SDN controller is configured to receive from the P device the egress PE device address corresponding to the MPLS message and the egress PE device allocation in the MPLS message compare the received address of the egress PE device and the VPN label assigned by the egress PE device with the pre-acquired PE device address, the corresponding relationship between the VPN label assigned by the PE device and the VPN, and determine The VPN corresponding to the MPLS message, and determine the private network application corresponding to the MPLS message in combination with the message feature information.

Description

technical field [0001] The invention belongs to the field of data communication, and in particular relates to a private network application identification system and method, an SDN controller, and a P device. Background technique [0002] Multi-Protocol Label Switching (MPLS for short) technology is a backbone network technology that is widely used at present. The combination of Layer 2 switching technology fully utilizes the flexibility of IP routing and the simplicity of Layer 2 switching. Therefore, many operators and enterprises have adopted MPLS technology to build their own networks to achieve cross-regional, safe and reliable , Manageable network services. [0003] A virtual private network (Virtual Private Network, referred to as VPN) is a private network simulated in a common network architecture. Multiple sites of VPN users are connected to each other through a service provider network (public network), and all private networks (user networks) Sites can communica...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L45/50
CPCH04L45/50
Inventor 李诚
Owner MAIPU COMM TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap