Unlock instant, AI-driven research and patent intelligence for your innovation.

Message processing method and device

A packet processing and service packet technology, applied in the communication field, can solve the problems of inability to realize mutual access function between tenants, invisible security domain and address information, and inability to configure static routes, so as to improve tenant experience.

Inactive Publication Date: 2021-06-22
NEW H3C SECURITY TECH CO LTD
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the SDN management system, the security domains and address information of different tenants are invisible to each other. For example, in the SDN management system, when the technician configures the routing table corresponding to the user equipment of tenant 1, he cannot see the information of tenant 2. The next hop address corresponding to the user equipment, and the SDN management system does not allow the VPN bound to the downlink sub-interface to be the destination VPN
Cross-VPN static routes cannot be configured in the SDN management system, and the mutual access function between tenants cannot be realized, resulting in poor tenant experience

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message processing method and device
  • Message processing method and device
  • Message processing method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0023] Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the following exemplary embodiments do not represent all implementations consistent with this application. Rather, they are merely examples of apparatuses and methods consistent with aspects of the present application as recited in the appended claims.

[0024] The terminology used in this application is for the purpose of describing particular embodiments only, and is not intended to limit the application. As used in this application and the appended claims, the singular forms "a", "the", and "the" are intended to include the plural forms as well, unless the context clearly dictates otherwise. It should also be understood that the term...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a message processing method and device, the method is applied to a security device, and the method comprises the following steps: receiving a service message sent by a first user device; according to the obtained first route forwarding table corresponding to the first user equipment, determining a first outbound interface and a first next hop address corresponding to the private network IP address of the second user equipment, wherein the first outbound interface is a first public network interface corresponding to the first user equipment on the safety equipment, the first next hop address is a public network IP address of a second public network interface corresponding to second user equipment on the security equipment; according to the first next hop address, sending the service message to a second public network interface through an IPsec VPN tunnel created between the first public network interface and the second public network interface; and sending the service message to the second user equipment through the second public network interface. According to the invention, the tenants in the same security device can use the public network IP address to access each other.

Description

technical field [0001] The present application relates to the field of communication technologies, and in particular to a message processing method and device. Background technique [0002] In the cloud scenario, the cloud platform will be equipped with a software-defined network (Software Defined Network, SDN) management system. Through the SDN management system, the connection and flow of tenant security devices (such as tenant firewall devices, etc.) can be realized. traction. Technicians can issue control commands to security devices through the SDN management system to achieve unified management of security devices of multiple tenants. [0003] At present, the security device usually uses a multi-tenant shared context method to realize tenant division and isolation, that is, virtualize the security device, and one security device corresponds to multiple tenants. In the tenant sharing context mode, the downlink interface of the security device is divided into multiple ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0272
Inventor 韩超
Owner NEW H3C SECURITY TECH CO LTD