Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method, device and system for assuring correct execution

A technology with correct execution order, applied in the field of network communication, can solve the problems of reversed execution order of ACL rules, discarded, unable to meet customer needs, etc.

Active Publication Date: 2007-03-21
NEW H3C TECH CO LTD
View PDF0 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0015] However, referring to Figure 1, since the mask corresponding to rule 3 is the same as the first issued rule 1, the MASK entry and RULE entry corresponding to rule 3 are both in the MASK entry and RULE entry corresponding to rule 2 Before, in this way, when the network device receives a message that can match rule 3 and rule 2 at the same time on port 1, because the actions in rule 3 and rule 2 conflict, it will only execute according to the first established MASK entry 1 matches the action in rule 3, that is, forwards the packet, and does not execute the action in rule 2 that is matched according to the established MASK entry 2, that is, discards the packet. In this way, the execution of the ACL rule occurs. The problem of reverse order, that is to say, in the actual service implementation, the network device does not execute the service processing corresponding to rule 1, rule 2 and rule 3 in sequence according to the implementation requirements of ACL rules
[0016] When the execution sequence of the ACL rules is reversed, if the two ACL rules with the reverse execution order intersect and the actions conflict, for example, for rule 2 and rule 3, rule 2 and rule 3 intersect and the actions conflict, the rule 2 requires discarding the packets whose IP address meets the rule 2.2.11.3 / 32, but rule 3 requires forwarding the packets whose IP address meets the rule 2.2.11.3 / 32, then, after executing the two ACL rules in reverse order, then Can not perform correct business processing on the message, unable to meet customer needs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and system for assuring correct execution
  • Method, device and system for assuring correct execution
  • Method, device and system for assuring correct execution

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0055] The present invention proposes a method to ensure the correct execution of ACL rules. Its core idea is to compare all ACL rules issued to any port of the network device to determine whether there are any two ACL rules with reversed execution order. If it is, the two ACL rules are adjusted according to the principle of first issuing the rules and effective; the network device sets the hardware table entries corresponding to the ports according to all the adjusted ACL rules.

[0056] Correspondingly, the present invention also proposes a device for ensuring correct execution of ACL rules. Fig. 2A is a schematic diagram of the structure of a device for ensuring correct execution in the present invention. Referring to Fig. 2A, in the present invention, the device for ensuring correct execution of ACL rules includes: an interaction unit and an adjustment unit, wherein,

[0057] The interaction unit is used to sequentially receive all ACL rules issued to any port of the network d...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

A method for ensuring correct execution includes comparing all rules down-sent on any port of network device to judge whether any two rules are upside down in execution order or not and regulating any two rules according to principle of first down-send rule to be firstly validated if it is then down-sending all regulated rules on said port of network device in sequence for ensuring correct service treatment on message. The unit used fro realizing said method is also disclosed.

Description

Technical field [0001] The present invention relates to network communication technology, in particular to a method, device and system for ensuring correct execution of access control list (ACL) rules. Background technique [0002] At present, in order to enable network devices to perform various business processing according to user requirements when receiving messages, for example, to redirect received messages or discard received messages, it is usually necessary to connect to the network The port of the device issues corresponding ACL rules. In the ACL rules, the service processing requirements of various packets are recorded. When a network device receives a packet on a port, it first matches the packet with the ACL rule corresponding to the port, and performs corresponding service processing on the packet according to the matched ACL rule. [0003] Table name Effect Table item composition structure Function Description MASK table ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/56
Inventor 王明辉赵品
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com