Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Switching system

A switch and port technology, applied in the field of switch systems, can solve problems such as insufficient filtering of data packets, affecting the safe and reliable operation of the system, and being infected.

Inactive Publication Date: 2012-01-11
XIAN HESHILI SYST ENG
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The traditional two-layer switch realizes the fast transmission of data through hardware. When identifying data, it only detects the MAC address field in the two-layer encapsulation of the data frame. Through this mechanism of quick inspection and release of the data packet, the data is realized. Wire-speed forwarding, so only MAC address inspection and filtering can be performed. Such a datagram filtering mechanism cannot fully filter invalid data packets. To achieve higher-level and more adequate data packet inspection and filtering, it is necessary to use more than three layers of switches
Therefore, in the network structure of the existing industrial automation system, if the devices that need network communication in the system are connected through traditional Layer 2 switches, then the security level of all devices is the same. In such a system network As long as one node in the network is infected by a virus in the structure, the nodes in the entire network may be infected, which will affect the safe and reliable operation of the entire system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Switching system
  • Switching system
  • Switching system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0048] Embodiment 1: First, the situation where there is only one switch in the switch system is introduced:

[0049] figure 1 It is a schematic diagram of the switch system provided by the present invention. Specifically, the ports on a switch can be divided into two types, one is the port with filtering function, that is, the port in the security zone, and the other is the port without the filtering function, that is, the port in the open zone. For example, if there are 24 ports on the switch, you can configure ports 1 to 12 to belong to the open zone, and ports 13 to 24 to belong to the security zone.

[0050] Since the ports in the open zone and the ports in the security zone are on the same switch, any two ports can communicate with each other, that is, between ports in the open zone, between ports in the security zone, and between ports in the open zone and security zone , the ports in the open zone can directly communicate with each other, and the ports in the securit...

Embodiment 2

[0058] Embodiment 2: The switch system includes multiple switches, such as 3 or more, and each switch has only one zone, that is, a security zone or an open zone.

[0059] image 3 It is a schematic diagram of the switch system provided by Embodiment 2 of the present invention. image 3 The switch system shown in the switch system includes 3 switches, wherein ports on switches 1 and 2 are both ports in the security zone, and ports on switch 3 are ports in the open zone.

[0060] The direct intercommunication between the ports in the security zone is realized through the following methods:

[0061] Any port in the security zone on a switch is connected to any port in the security zone on another adjacent switch.

[0062] In this embodiment, a port on the switch 1 is arbitrarily selected, a port on the switch 2 is arbitrarily selected, and the above two selected ports are connected, so that the security zones on the two switches can communicate directly, and the The packets s...

Embodiment 3

[0063] Embodiment 3: The switch system includes multiple switches, and each switch has a security zone and an open zone at the same time.

[0064] Figure 4 It is a schematic diagram of the switch system provided by Embodiment 3 of the present invention. Figure 4 In the switch system shown, there are two switches, of course, three switches or more, switch 1 and switch 2, wherein ports 1 to 12 of switch 1 belong to the open area, ports 13 to 24 belong to the security area, and switch 2 Ports 1 to 12 belong to the open zone, and ports 13 to 24 belong to the security zone. The security zone on switch 1 and the security zone on switch 2 communicate directly, and the open zones on switch 1 and switch 2 communicate only through the security zone. That is, the open areas on switch 1 and switch 2 communicate only through at least one security zone of switch 1 and switch 2. For example, the open zone of switch 1 can send messages to the security zone on switch 1, and then the securit...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a kind of one or more switches. Each switch comprises a plurality of ports. The ports on the switch comprise the ports possessing a filtering function and the ports without the filtering function. The ports possessing the filtering function belong to a safety area and the ports without the filtering function belong to an open area. The ports in the safety area are directly intercommunicated.

Description

technical field [0001] The invention relates to industrial automation network technology, in particular to a switch system. Background technique [0002] The security and reliability of network communication in industrial automation systems directly affect the security and reliability of the entire industrial automation system. The traditional two-layer switch realizes the rapid transmission of data through hardware. When identifying data, it only detects the MAC address field in the two-layer encapsulation of the data frame. Through this mechanism of quick inspection and release of the data packet, the data is realized. Wire-speed forwarding, so only MAC address inspection and filtering can be performed. Such a datagram filtering mechanism cannot fully filter invalid data packets. To achieve higher-level and more adequate data packet inspection and filtering, it is necessary to use more than three layers of switches . Therefore, in the network structure of the existing in...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/56H04L12/04H04L12/931
Inventor 方垒
Owner XIAN HESHILI SYST ENG
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com