Method and system for managing extranet access

An external network and access request technology, applied in the field of network applications, can solve the problems of cumbersome, complex weight setting, complex expansion of NAT device clusters, etc., to achieve the effect of cost saving and traffic balance

Active Publication Date: 2017-02-08
三六零数字安全科技集团有限公司
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Specifically, because the traffic of a specific VIP can only be forwarded to one NAT device within a certain period of time, the traffic processing capability of a single NAT device is certain. If the traffic corresponding to the VIP is large, the traffic of the NAT device Processing power will become a performance bottleneck
[0012] 2) Secondly, the expansion of the NAT device cluster is more complicated
However, if another NAT device D is added, the weight setting of each service on the NAT device D will be very complicated and cumbersome

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for managing extranet access
  • Method and system for managing extranet access
  • Method and system for managing extranet access

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0090] In order to implement the function for managing external network access provided by the embodiment of the present invention, this example specifically provides a specific processing manner. In this example, the focus is on the application of the OSPF protocol, which is the basis of the embodiment of the present invention. see image 3 , the application of the OSPF protocol includes two parts: the first part is to run the OSPF protocol on the network equipment coupled with the intranet, and the second part is to run the OSPF protocol on the NAT device.

[0091] The implementation means of running the OSPF protocol on the NAT device will now be described in detail. An optional means of implementation is:

[0092] Use the zebra and ospfd components in the open source tool quagga to support the OSPF protocol, where zebra is responsible for updating the local routing table, and ospfd is responsible for the implementation of the ospf protocol and communicates with other dev...

Embodiment 2

[0100] Now take three NAT devices (NAT device A, NAT device B, and NAT device C) as an example to provide external network access services, and use these three NAT devices to undertake three services (service 1, service 2, and service 3). The total traffic is 360, assuming that the predefined traffic distribution method is equal distribution. then in this example,

[0101] The weight set by service 1 is NAT device A->120, NAT device B->120, and NAT device C->120;

[0102] The weight set by service 2 is NAT device B->120, NAT device A->120, and NAT device C->120;

[0103] The weight set for service 3 is NAT device C->120, NAT device B->120, and NAT device A->120.

[0104] In this way, under normal working conditions, the traffic of the three services respectively falls on the three NAT devices on average. However, if another NAT device D is added, the weight setting of each service on the NAT device D becomes:

[0105] The weight set by service 1 is NAT device A->90, NAT de...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for managing outer net access. The method comprises the following steps that: an intranet sends an access request through a first network device layer coupled with the intranet; the first network device layer calculates the flow of the access request sent by the intranet, and allocates the flow to each NAT (Network Address Translation) device coupled with the first network device layer according to a predetermined allocation condition using open shortest path first (OSPF) protocol; each NAT device receives the flow and forwards the flow to a second network device layer coupled with an outer net; and the second network device layer accesses the outer net using the access request carried in the flow, wherein each network device layer comprises at least one layer of network devices; and when the first network device layer comprises at least two layers of network devices, the OSPF protocol is run between network devices in which flow transmission occurs and which belong to different layers By adopting the method for managing outer net access, the operation and maintenance cost can be reduced. The invention also discloses a corresponding system.

Description

technical field [0001] The invention relates to the field of network applications, in particular to a method for managing extranet access and a system for managing extranet access. Background technique [0002] NAT (Network Address Translation, Network Address Translation) server, as a network access device, is responsible for providing access to the Internet (Internet) for machines on private network segments, and must have high availability. [0003] Currently, high availability is implemented through the VRRP (Virtual Router Redundancy Protocol, Virtual Router Redundancy Protocol) heartbeat protocol. The purpose of VRRP protocol design is to solve the problem of single point of failure caused by static routing. The core of VRRP is a selection protocol, which can dynamically assign the responsibility of a virtual router to one of the VRRP routers on the LAN. The VRRP router that controls the virtual router IP (Internet Protocol, Internet Protocol) addresses is called the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/12H04L12/803
Inventor 陈建唐会军
Owner 三六零数字安全科技集团有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap