Method and apparatus for VLAN based network access control

A technology of virtual local area network and network access, which is applied in the field of network access control based on virtual local area network. It can solve the problems of IP address pool exhaustion, easy attack and occupation of the local area network, and facilitate management and strengthen the control of the local area network on access users. Effect

Inactive Publication Date: 2004-03-31
HUAWEI TECH CO LTD
View PDF0 Cites 13 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Even if there are many access users who are not ready to access the network, the IP address resources are also occupied, which will easily cause the exhaustion of the IP address pool, and the LAN is also vulnerable to attacks, resulting in the exhaustion of the IP address pool, so that users cannot use it normally. network

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and apparatus for VLAN based network access control
  • Method and apparatus for VLAN based network access control
  • Method and apparatus for VLAN based network access control

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0049] The specific embodiment of the method of the present invention is as follows, see figure 1 :

[0050] Step 1: First, you need to configure the access rights of each port in the access control device, so that users with different access ports have different access rights; the specific configuration method can be based on the According to the operation requirements of the network operator of the device, the port for access control can be a physical port or a logical port. Taking the VLAN user access device as an example, VLAN tags are used to access the logical port of the user. The network access of the port is controlled to realize the control of the network access of different VLAN users. The user access device can set each logical port as follows:

[0051] Forcible control of logical ports: directly return a rejection message to the DHCP (Dynamic Host Configuration Protocol) request message sent by the user when accessing, that is, prohibit the user from accessing th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention refers to net access control method based on virtual LAN. The method is: configures the access authority of ports on LAN user access appliances, when a user access in LAN, user access appliance examines the authority state of application port; carries on the user LAN access control according to the authority state. The device includes: user access appliance, access control applianceand access identification server, the user accesses the net through user access appliance, and carries net access authentication through access control appliance and access authentication server.

Description

technical field [0001] The invention relates to the technical field of network communication, in particular to a virtual local area network-based network access control method and device. Background technique [0002] The current Ethernet is mainly the 10Bast-T network defined by IEEE802.3 (Institute of Electrical and Electronics Engineers 802.3 standard), that is, the network with a line rate of 10Mbps; the commonly used Ethernet technology is mainly the MAC (Media Access Network) defined by IEEE802.3 Control) technology using CSMA / CD (Carrier Sense Multiple Access with Detection) media control protocol. In the network based on CSMA / CD media control protocol, due to the existence of collision and replay phenomenon, it is difficult for the actual traffic of Ethernet to exceed the line rate of 2.5Mbps. Moreover, this limited bandwidth is also shared by all clients connected to the same LAN, and the available bandwidth for each client is even lower. [0003] Among them, comp...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L12/24H04L12/26H04L12/28
Inventor 沈宁国宋强金涛吴局业徐岗
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap