A method and device for matching inner layer message of tunnel message

A technology of tunneling packets and packets, which is applied in the field of communication, can solve problems such as failure to match normally, and achieve the effects of avoiding failure to match normally and reducing ACL resources

Active Publication Date: 2022-07-22
NEW H3C SECURITY TECH CO LTD
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In addition, switch chips generally only support a certain length of UDF offset. For IPV6 (Internet Protocol Version 6, Internet Protocol Version 6) tunnel packets, the UDF offset supported by the chip exceeds the UDF offset, resulting in failure to match normally.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for matching inner layer message of tunnel message
  • A method and device for matching inner layer message of tunnel message
  • A method and device for matching inner layer message of tunnel message

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0040] The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application. Obviously, the described embodiments are only a part of the embodiments of the present application, but not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by those of ordinary skill in the art based on the present application fall within the protection scope of the present application.

[0041] In order to solve the technical problem in the prior art that matching inner layer packets of tunnel packets needs to consume more ACL resources, the embodiments of the present application provide a method and device for matching inner layer packets of tunnel packets.

[0042] see figure 1 , figure 1 A schematic flowchart of a method for matching inner layer packets of tunnel packets provided by the embodiment of the present ap...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiments of the present application provide a method and device for matching inner layer packets of tunnel packets, to obtain a tunnel packet to be matched; decapsulate the tunnel packet to obtain an inner layer packet of the tunnel packet; identify the inner layer packet The target protocol identifier of the message, based on the configuration information of the pre-configured micro-segment, to determine the target micro-segment group to which the target protocol identifier belongs; wherein, the configuration information of the micro-segment includes: preset micro-segment group grouping information of multiple protocol identifiers; Match the access control list ACL based on the target micro-segment group, where the ACL contains matching items for each micro-segment group and the packet processing action corresponding to each matching item; determine the matching item that matches the target micro-segmentation group, and execute the The packet processing action corresponding to the matching item. This reduces the ACL resources consumed by inner packets matching tunnel packets.

Description

technical field [0001] The present application relates to the field of communication technologies, and in particular, to a method and device for matching inner layer packets of tunnel packets. Background technique [0002] ACL (Access Control Lists, Access Control List) is a list of instructions applied to a router interface, used to instruct the router which data packets can be accepted and which data packets need to be rejected. [0003] Tunnel packets refer to the technology of using one network protocol to transmit another network protocol. Tunnel packets usually include inner packets and outer tunnel encapsulation. [0004] For a tunnel network, the outgoing port of the tunnel needs to identify the protocol of the inner packet of the tunnel packet, such as OSPF (Open Shortest Path First) protocol, DHCP (Dynamic Host Configuration Protocol, Dynamic Host Configuration Protocol) protocol, etc. After identifying the protocol of the inner-layer packet, match the ACL, and se...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/46H04L47/70H04L61/2592
CPCH04L12/4633H04L63/101H04L47/825H04L2212/00
Inventor 严进波李光袁锋
Owner NEW H3C SECURITY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap