CN102088388A - Method and equipment for automatically distributing/acquiring virtual local area network configuration information - Google Patents
Method and equipment for automatically distributing/acquiring virtual local area network configuration information Download PDFInfo
- Publication number
- CN102088388A CN102088388A CN2009102000274A CN200910200027A CN102088388A CN 102088388 A CN102088388 A CN 102088388A CN 2009102000274 A CN2009102000274 A CN 2009102000274A CN 200910200027 A CN200910200027 A CN 200910200027A CN 102088388 A CN102088388 A CN 102088388A
- Authority
- CN
- China
- Prior art keywords
- access point
- configuration information
- iapp
- point apparatus
- area network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The invention discloses a method for automatically distributing virtual local area network configuration information in a wireless local area network. The method comprises the following steps of: receiving an inter-access point protocol (IAPP) registration request message from access point equipment; verifying the validity of the access point equipment; and when the access point equipment is proved valid through verification, providing the virtual local area network configuration information for the access point equipment by using an IAPP protocol. Through the method, the virtual local area network configuration information can be automatically distributed to the access point equipment, and is distributed at the initialization stage of the access point equipment, so that the problem of unavailable distribution of the virtual local area network configuration information by an authentication server due to quick switching of a wireless working station in the prior art is solved. The invention also discloses a relevant authentication server, a method for acquiring the virtual local area network configuration information from the access point equipment in the wireless local area network and relevant access point equipment.
Description
Technical field
The present invention relates to wireless lan (wlan), specifically, relate to the technology of configuring virtual LAN in WLAN (wireless local area network) (VLAN).
Background technology
Extensive use along with wireless local area network technology, the scale of WLAN (wireless local area network) increases day by day, for example, a lot of urban construction at present based on " wireless city " of WiFi network, be the part of telecom operation network based on the WLAN (wireless local area network) of WiFi among a small circle " local " network development.Therefore, how to manage and dispose large-scale WLAN (wireless local area network) and become an important problem.
According to the configuration and the use of WLAN (wireless local area network), virtual local area network technology is used for various objectives with differentiation various packets have been proposed.So-called " VLAN " is meant the wireless stations in the WLAN (wireless local area network) logically is divided into one by one the network segment to realize the technology of virtual work group.A VLAN constitutes a logical subnetwork, and the wireless stations that allows to be in different physical locations adds in this VLAN.
Fig. 1 shows the schematic diagram at the wireless local network VLAN.As shown in Figure 1, three access point apparatus AP1, AP2 and AP3 are connected to Ethernet switch via distributed system (Ethernet), and and then be connected to certificate server, radius server for example, wherein access point apparatus AP3 is operated under a plurality of service set identifier (SSID) pattern, then can realize VLAN on access point apparatus AP3.Access point apparatus AP3 only uses single BSSID (BSSID), but can send a plurality of beacons, and each beacon has a service set identifier, and this service set identifier is assigned with a corresponding virtual local area network (LAN).For the wireless stations that is associated with different service set identifier, access point apparatus AP3 distributes and service set identifier corresponding virtual local area network (LAN) to it.For example, wireless stations STA1 is associated with service set identifier SSID1, wireless stations STA2 and STA3 are associated with service set identifier SSID2, then access point apparatus AP3 will distribute to wireless stations STA1 with service set identifier SSID1 corresponding virtual local area network (LAN) VLAN1, and will distribute to wireless stations STA2 and STA3 with service set identifier SSID2 corresponding virtual local area network (LAN) VLAN2.Like this, have the sign of virtual LAN VLAN 1, and have the sign of virtual LAN VLAN 2 from the packet of wireless stations STA2 and STA3 from the packet of wireless stations STA1.
In the prior art, proposed a kind of based on the technology of setting up VLAN with the mutual of certificate server.In example shown in Figure 1, wireless stations at first is associated with an access point apparatus, after the certified server of wireless stations is successfully verified, certificate server will be embedded in the authentication response message of expression good authentication with this wireless stations corresponding virtual local area network (LAN) sign, and be transferred to access point apparatus.This access point apparatus extracts the VLAN sign from authentication response message, and it is distributed to wireless stations.Details about this technology, can be in U.S. Pat 7, find in 339,915 " Virtual LAN Override in a Multiple BSSID Mode ofOperation " and the technical literature " Dynamic VLAN Assignment with RADIUS Serverand Wireless LAN Controller Configuration Example ".
In above-mentioned technology, access point apparatus distributes the VLAN sign based on the VLAN sign that comprises the authentication response that returns from certificate server to wireless stations, and this can cause following problem:
1. because only after the certified server of wireless stations is successfully verified, access point apparatus could distribute the VLAN sign according to the authentication response message of being returned, therefore, all access point apparatus should be reserved corresponding virtual local area network tags resource in advance in the requirement WLAN (wireless local area network), yet each access point apparatus is not also known the virtual local area network tags resource that other access point apparatus is reserved, identical virtual local area network tags may occur and represent different implications, thereby cause the misuse of virtual local area network tags at different access point apparatus places.
2. when wireless stations takes place to switch fast between two access point apparatus, according to the robust security network of stipulating among the IEEE802.11i/IEEE802.11r (RSN), series of fortified passes connection for wireless stations supports quick re-authentication to switch, be that re-authentication can use transmission safety context between access point apparatus, and need not be undertaken by certificate server.Like this, if wireless stations is associated with the new service set identifier of purpose access point apparatus, then the purpose access point apparatus can not be received the authentication response message that is embedded with the VLAN sign from certificate server, thereby can not distribute the VLAN sign to wireless stations.
3. this technical scheme relates to the access point apparatus and the related protocol of particular device provider, lacks versatility and compatibility, is not suitable for the large-scale WLAN (wireless local area network) that comprises many isomery access point apparatus.
Summary of the invention
The present invention proposes in view of above-mentioned technical problem just, its purpose is to provide a kind of method and relevant certificate server of distributing the VLAN configuration information in WLAN (wireless local area network) automatically, and a kind of in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information and relevant access point apparatus, it can realize the automatic configuration and the dynamic management of VLAN, be particularly useful for large-scale WLAN (wireless local area network), and can support the access point apparatus of distinct device provider to have versatility and compatibility.
According to a first aspect of the invention, provide a kind of method of in WLAN (wireless local area network), distributing the VLAN configuration information automatically, comprising: receive access point interaction protocol (IAPP) login request message from access point apparatus; Verify the validity of described access point apparatus; And be verified as when effective at described access point apparatus, use the IAPP agreement to provide the VLAN configuration information to described access point apparatus.
According to a second aspect of the invention, provide a kind of in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, comprising: send access point interaction protocol (IAPP) login request message to certificate server; And from the VLAN configuration information of described certificate server reception by the IAPP protocol transmission.
According to a third aspect of the present invention, provide a kind of certificate server that is used for WLAN (wireless local area network), comprising: receiving system is used to receive access point interaction protocol (IAPP) login request message from access point apparatus; Demo plant is used to verify the validity of described access point apparatus; And information provider unit, be used for being verified as when effective at described access point apparatus, use the IAPP agreement to provide the VLAN configuration information to described access point apparatus.
According to a fourth aspect of the present invention, provide a kind of access point apparatus that is used for WLAN (wireless local area network), comprising: dispensing device is used for sending access point interaction protocol (IAPP) login request message to certificate server; And receiving system, be used for receiving the VLAN configuration information that passes through the IAPP protocol transmission from described certificate server.
Description of drawings
Fig. 1 is to use the schematic diagram at the wireless local network VLAN of prior art;
Fig. 2 is the flow chart that distributes the method for VLAN configuration information in WLAN (wireless local area network) automatically according to an embodiment of the invention;
Fig. 3 is the schematic diagram of the form of IAPP radius vendor particular community;
Fig. 4 be according to an embodiment of the invention in WLAN (wireless local area network) access point apparatus obtain the flow chart of the method for VLAN configuration information;
Fig. 5 is to use the schematic diagram of Fig. 2 and method configuring virtual LAN embodiment illustrated in fig. 4;
Fig. 6 is the schematic block diagram that is used for the certificate server of WLAN (wireless local area network) according to an embodiment of the invention;
Fig. 7 is the schematic block diagram that is used for the access point apparatus of WLAN (wireless local area network) according to an embodiment of the invention.
Embodiment
Believe that by below in conjunction with the detailed description of accompanying drawing to specific embodiments of the invention, above-mentioned purpose of the present invention, feature and advantage will be more obvious.
Fig. 2 shows the flow chart that distributes the method for VLAN configuration information in WLAN (wireless local area network) automatically according to an embodiment of the invention.Below in conjunction with accompanying drawing, present embodiment is elaborated.
In the present embodiment, WLAN (wireless local area network) can comprise certificate server and at least one access point apparatus, and this certificate server is connected via distributed system (Ethernet) with access point apparatus.Preferably, certificate server is a radius server.At this, authentication server stores is also managed the VLAN configuration information that it is responsible for all WLAN (wireless local area network) of authentication.When access point apparatus entered this WLAN (wireless local area network) or new access point apparatus first and wants to enter this WLAN (wireless local area network), certificate server can use the method for present embodiment automatically to distribute the VLAN configuration information to access point apparatus in the registration process of access point apparatus.
As shown in Figure 2, at step S201, receive access point interaction protocol (IAPP) login request message from access point apparatus.When access point apparatus is wanted to enter WLAN (wireless local area network), at first need to register to certificate server.By registration process, access point apparatus will be registered its membership qualification in this WLAN (wireless local area network), and obtain to be used for to set up with other access point apparatus of this WLAN (wireless local area network) between the security parameter that is connected of secure broadcast.In the present embodiment, use the IAPP agreement to communicate between access point apparatus and the certificate server, the IAPP agreement has detailed regulation in the IEEE802.11f standard.IEEE802.11f has stipulated function and the agreement that access point apparatus and other access point apparatus communicate, and one of them important function is to form and safeguard a WLAN (wireless local area network) (extended service set).Because the IAPP agreement is the agreement of standard, therefore, the method for present embodiment is applicable to any equipment supplier's access point apparatus.
In the present embodiment, the IAPP login request message is an IAPP RegistrationAccess-Request message, and it comprises the COS of IAPP registration.
After receiving the IAPP login request message, at step S205, the validity of checking access point apparatus verifies promptly whether this access point apparatus is effective member of this WLAN (wireless local area network).This proof procedure is followed the process of stipulating in the IEEE802.11f standard, and this is known for the person of ordinary skill of the art, omits its explanation herein.
Then, at step S210, when access point apparatus is verified as when effective, certificate server uses the IAPP agreement to provide the VLAN configuration information to this access point apparatus.In the present embodiment, authentication server stores is also kept the VLAN configuration information that it is responsible for all WLAN (wireless local area network) of authentication, and it comprises: the mapping of service set identifier and VLAN sign.The VLAN configuration information has been put down in writing the general virtual local area network (LAN) label that uses in above-mentioned all WLAN (wireless local area network).
In the present embodiment, certificate server is accepted message with the VLAN configuration information together with the IAPP registration and is transferred to access point apparatus.Particularly, when access point apparatus is verified as when effective, accept to embed in the message VLAN configuration information in the IAPP registration.In the present embodiment, IAPPRADIUS vendor specific attribute (Vendor-Specific Attribute is called for short VSA) is expanded to realize that the VLAN configuration information is embedded in the IAPP registration to be accepted in the message.Fig. 3 shows the form of IAPP RADIUS VSA, and wherein " supplier's type " field and " attribute data " field are expanded.Table 1 shows the content of the field after the expansion, wherein corresponding with the value " 1 " to " 14 " of " supplier's type " field " attribute data " field is represented existing attribute, and from the value " 15 " of " supplier's type " field, pairing " attribute data " field has been put down in writing the mapping of service set identifier (SSID) with VLAN sign (VLANID), i.e. VLAN configuration information respectively.
Table 1
| Supplier's type | Attribute data |
| 1 | IAPP-Liveliness-Nonce |
| 2 | New-BSSID-Security-Block |
| 3 | Old-BSSID-Security-Block |
| 4 | Supported-ESP-Authentication-Algorithms |
| 5 | Supported-ESP-Transforms |
| 6 | ESS-New-ESP-Transform-Key |
| 7 | ESS-New-ESP-Authentication- |
| 9 | ESS-Old-ESP-Transform-Key |
| 10 | ESS-Old-ESP-Authentication-Key |
| 11 | ESS-ESP-Transform-ID |
| 12 | ESS-ESP-Authenticaiton0ID |
| 13 | ESS-ESP-SPI |
| 14 | New-BSSID-Security-Block-IV |
| 15 | SSID1:VLANID1 |
| 16 | SSID2:VLANID2 |
| 17 | SSID3:VLANID3 |
| 18 | SSID4:VLANID4 |
| 19 | SSID5:VLANID5 |
| 20 | … |
When embedding the VLAN configuration information, at first generate the IAPPRADISU vendor specific attribute that comprises the VLAN configuration information, then, this IAPP radius vendor particular community is included in the IAPP registration accepts in the message.Then, message is accepted in the IAPP registration that has embedded the VLAN configuration information and sent to access point apparatus.
In the present embodiment, to accept message be IAPP RegistrationAccess-Accept message for IAPP registration.
When access point apparatus is verified as when invalid, certificate server returns IAPP registration reject message.
By above description as can be seen, the method of distributing the VLAN configuration information in WLAN (wireless local area network) automatically of present embodiment is by the registration binding with VLAN configuration information and access point apparatus, can automatically distribute the VLAN configuration information to access point apparatus, be particularly useful for large-scale WLAN (wireless local area network), and, because the initial phase that is distributed in access point apparatus of VLAN configuration information is carried out, the problem that the certificate server of therefore having avoided in the prior art the quick switching owing to wireless stations to cause can not distribute the VLAN configuration information.In addition, the method for present embodiment adopts the IAPP agreement, can be applicable to the access point apparatus of distinct device provider.
Under same inventive concept, Fig. 4 show according to an embodiment of the invention in WLAN (wireless local area network) access point apparatus obtain the flow chart of the method for VLAN configuration information.Below in conjunction with accompanying drawing, present embodiment is described in detail, wherein, suitably omit its explanation for the part identical with front embodiment.
As shown in Figure 4, at step S401, access point apparatus sends the IAPP login request message to certificate server.When access point apparatus was wanted to enter WLAN (wireless local area network), its certificate server to this WLAN (wireless local area network) was registered, and is verified the validity of this access point apparatus by certificate server.Particularly, the module of being responsible for IAPP in the access point apparatus sends the IAPP login request message to certificate server, registering the membership qualification of this access point apparatus in WLAN (wireless local area network) to certificate server, and obtains security parameter.In the present embodiment, the IAPP login request message is an IAPP RegistrationAccess-Request message, and it comprises the COS of IAPP registration.
When access point apparatus is verified as when effective, at step S405, this access point apparatus receives VLAN configuration information by the IAPP protocol transmission from certificate server.In the present embodiment, the VLAN configuration information is embedded in the IAPP registration as the part of IAPP radius vendor particular community (VSA) and accepts in the message.As previously mentioned, in IAPP RADIUS VSA, comprise the VLAN configuration information, it is the mapping of service set identifier and VLAN sign, then, when access point apparatus is verified as when effective, certificate server is included in the IAPP registration with IAPP RADIUS VSA and accepts in the message, and sends to access point apparatus.In the present embodiment, to accept message be IAPP Registration Access-Accept message for IAPP registration.
Further, when access point apparatus receives after IAPP registration accepts message,, accept to extract the message VLAN configuration information from this IAPP registration at step S410.Then, after wireless stations success association service set identifier, at step S415, the service set identifier that access point apparatus is associated according to this wireless stations is distributed corresponding virtual local area network (LAN) sign to it.
Those of ordinary skill in the art can understand, and step S410 and S415 relate to the further operation of access point apparatus after obtaining the VLAN configuration information, need not must be included in the method for present embodiment.
By above description as can be seen, the method that the access point apparatus in WLAN (wireless local area network) of present embodiment obtains the VLAN configuration information can make access point apparatus obtain VLAN configuration information in the WLAN (wireless local area network) at initial phase automatically by registration process, thereby realizes the automatic configuration and the dynamic management of VLAN.
Fig. 5 shows the schematic diagram that uses Fig. 2 and method configuring virtual LAN in WLAN (wireless local area network) embodiment illustrated in fig. 4.As shown in Figure 5, WLAN (wireless local area network) comprises: as the radius server of certificate server, Ethernet switch and two access point apparatus AP1 and AP2, wherein, access point apparatus is connected to Ethernet switch via distributed system, and then is connected to radius server.When access point apparatus AP3 wanted to add this WLAN (wireless local area network), the IAPP module of access point apparatus AP3 sent IAPP Registration Access-Request message to radius server, to register access point apparatus AP3 to radius server.Then, radius server is verified access point apparatus AP3.When radius server checking access point apparatus AP3 is effective, return IAPP Registration Access-Accept message to access point apparatus AP3, in this message, be embedded with the VLAN configuration information, i.e. the mapping of service set identifier and VLAN sign.Like this, after access point apparatus AP3 succeeds in registration, just obtained the VLAN configuration information of this WLAN (wireless local area network).
Under same inventive concept, Fig. 6 shows the schematic block diagram that is used for the certificate server 600 of WLAN (wireless local area network) according to an embodiment of the invention.Below in conjunction with accompanying drawing, present embodiment is described in detail, wherein, suitably omit its explanation for the part identical with front embodiment.
As shown in Figure 6, the certificate server 600 of present embodiment comprises: receiving system 601, and it receives the IAPP login request message from access point apparatus; Demo plant 602, the validity of its checking access point apparatus; And information provider unit 603, it is verified as when effective at access point apparatus, uses the IAPP agreement to provide the VLAN configuration information to this access point apparatus.
In the certificate server 600 of present embodiment, after receiving system 601 receives IAPP login request message from access point apparatus, 602 pairs of these access point apparatus of demo plant are verified, verify promptly whether this access point apparatus is effective member of WLAN (wireless local area network).When demo plant 602 these access point apparatus of checking were effective, information provider unit 603 provided the VLAN configuration information of this WLAN (wireless local area network) to this access point apparatus by the IAPP agreement.In the present embodiment, the VLAN configuration information is accepted message with the IAPP registration and is offered access point apparatus, and wherein the VLAN configuration information comprises the mapping of service set identifier and VLAN sign.
In information provider unit 603, at first, merge module 6031 accepts to embed in the message VLAN configuration information in the IAPP registration.Particularly, the generation unit in the merge module 6031 generates the IAPP radius vendor particular community that comprises the VLAN configuration information, accepts to comprise in the message this IAPP radius vendor particular community by comprising the unit in the IAPP registration again.Then, sending module 6032 is accepted message with this IAPP registration and is sent to access point apparatus.
The certificate server 600 that should be pointed out that present embodiment can be realized the method for distributing the VLAN configuration information in WLAN (wireless local area network) automatically as shown in Figure 2 in operation.
Under same inventive concept, Fig. 7 shows the schematic block diagram that is used for the access point apparatus 700 of WLAN (wireless local area network) according to an embodiment of the invention.Below in conjunction with accompanying drawing, present embodiment is described in detail, wherein, suitably omit its explanation for the part identical with front embodiment.
As shown in Figure 7, the access point apparatus 700 of present embodiment comprises: dispensing device 701, and it sends the IAPP login request message to certificate server; And receiving system 702, it is verified as when effective at access point apparatus 700, receives VLAN configuration information by the IAPP protocol transmission from certificate server.
In the access point apparatus 700 of present embodiment, the VLAN configuration information that receiving system 702 is received is embedded in the IAPP registration that certificate server returns and accepts in the message, as the part of IAPPRADIUS vendor specific attribute.
Further, the access point apparatus 700 of present embodiment also comprises extraction element 703, and it accepts to extract the message VLAN configuration information from the IAPP registration that is received.In addition, the access point apparatus 700 of present embodiment also comprises distributor 704, after wireless working point successfully was associated with service set identifier, the service set identifier that distributor 704 can be associated according to wireless stations was distributed corresponding virtual local area network (LAN) sign to this wireless stations.
The access point apparatus 700 that should be pointed out that present embodiment can realize that in operation as shown in Figure 4 access point apparatus in WLAN (wireless local area network) obtains the method for VLAN configuration information.
Should be understood that, the certificate server of the foregoing description, access point apparatus and their parts separately can be by such as very lagre scale integrated circuit (VLSIC) or gate array, realize such as the semiconductor of logic chip, transistor etc. or such as the hardware circuit of the programmable hardware device of field programmable gate array, programmable logic device etc., also can use the software of carrying out by various types of processors to realize, also can realize by the combination of above-mentioned hardware circuit and software.
Though more than by some exemplary embodiments describe method of in WLAN (wireless local area network), automatically distributing the VLAN configuration information of the present invention and relevant certificate server in detail and in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information and relevant access point apparatus, but above these embodiment are not exhaustive, and those skilled in the art can realize variations and modifications within the spirit and scope of the present invention.Therefore, the present invention is not limited to these embodiment, and scope of the present invention is only defined by the appended claims.
Claims (18)
1. method of automatically distributing the VLAN configuration information in WLAN (wireless local area network) comprises:
Reception is from access point interaction protocol (IAPP) login request message of access point apparatus;
Verify the validity of described access point apparatus; And
Be verified as when effective at described access point apparatus, use the IAPP agreement to provide the VLAN configuration information to described access point apparatus.
2. method of in WLAN (wireless local area network), distributing the VLAN configuration information automatically according to claim 1, wherein, described use IAPP agreement provides the step of VLAN configuration information to comprise to described access point apparatus:
Accept to embed in the message described VLAN configuration information in the IAPP registration; And
Send described IAPP registration to described access point apparatus and accept message.
3. method of in WLAN (wireless local area network), automatically distributing the VLAN configuration information according to claim 2, wherein, the described step of accepting to embed in the message described VLAN configuration information in the IAPP registration comprises:
Generate IAPP radius vendor particular community, it comprises described VLAN configuration information; And
Accept to comprise in the message described IAPP radius vendor particular community in described IAPP registration.
4. according to any described method of distributing the VLAN configuration information in WLAN (wireless local area network) automatically of claim 1 to 3, wherein, described VLAN configuration information comprises: the mapping of service set identifier and VLAN sign.
One kind in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, comprising:
Send access point interaction protocol (IAPP) login request message to certificate server; And
Be verified as when effective at described access point apparatus, receive VLAN configuration information by the IAPP protocol transmission from described certificate server.
6. according to claim 5 in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, wherein, described VLAN configuration information is embedded in the IAPP registration as the part of IAPP radius vendor particular community and accepts in the message.
7. according to claim 6 in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, also comprise:
Accept to extract the message described VLAN configuration information from described IAPP registration.
8. according to claim 7 in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, wherein, described VLAN configuration information comprises: the mapping of service set identifier and VLAN sign.
9. according to claim 8 in WLAN (wireless local area network) access point apparatus obtain the method for VLAN configuration information, also comprise:
The service set identifier associated according to wireless stations distributed corresponding virtual local area network (LAN) sign to described wireless stations.
10. certificate server that is used for WLAN (wireless local area network) comprises:
Receiving system is used to receive access point interaction protocol (IAPP) login request message from access point apparatus;
Demo plant is used to verify the validity of described access point apparatus; And
Information provider unit is used for being verified as when effective at described access point apparatus, uses the IAPP agreement to provide the VLAN configuration information to described access point apparatus.
11. certificate server according to claim 10, wherein, described information provider unit comprises:
Merge module is used for accepting message in the IAPP registration and embeds described VLAN configuration information; And
Sending module is used for sending described IAPP registration to described access point apparatus and accepts message.
12. certificate server according to claim 11, wherein, described merge module comprises:
Generation unit is used to generate IAPP radius vendor particular community, and it comprises described VLAN configuration information; And
Comprise the unit, be used for accepting message and comprise described IAPP radius vendor particular community in described IAPP registration.
13. according to any described certificate server of claim 10 to 12, wherein, described VLAN configuration information comprises: the mapping of service set identifier and VLAN sign.
14. an access point apparatus that is used for WLAN (wireless local area network) comprises:
Dispensing device is used for sending access point interaction protocol (IAPP) login request message to certificate server; And
Receiving system is used for being verified as when effective at described access point apparatus, receives VLAN configuration information by the IAPP protocol transmission from described certificate server.
15. access point apparatus according to claim 14, wherein, described VLAN configuration information is embedded in the IAPP registration as the part of IAPP radius vendor particular community and accepts in the message.
16. access point apparatus according to claim 15 also comprises: extraction element is used for accepting message from described IAPP registration and extracts described VLAN configuration information.
17. access point apparatus according to claim 16, wherein, described VLAN configuration information comprises: the mapping of service set identifier and VLAN sign.
18. access point apparatus according to claim 17 also comprises: distributor, be used for the service set identifier associated according to wireless stations, distribute corresponding virtual local area network (LAN) sign to described wireless stations.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910200027.4A CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910200027.4A CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102088388A true CN102088388A (en) | 2011-06-08 |
| CN102088388B CN102088388B (en) | 2014-04-02 |
Family
ID=44100009
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910200027.4A Active CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102088388B (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104272684A (en) * | 2012-02-27 | 2015-01-07 | 博科通讯***有限公司 | Dynamic service insertion in a fabric switch |
| US9699029B2 (en) | 2014-10-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Distributed configuration management in a switch group |
| US9699001B2 (en) | 2013-06-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Scalable and segregated network virtualization |
| US9729387B2 (en) | 2012-01-26 | 2017-08-08 | Brocade Communications Systems, Inc. | Link aggregation in software-defined networks |
| US9736085B2 (en) | 2011-08-29 | 2017-08-15 | Brocade Communications Systems, Inc. | End-to end lossless Ethernet in Ethernet fabric |
| US10348643B2 (en) | 2010-07-16 | 2019-07-09 | Avago Technologies International Sales Pte. Limited | System and method for network configuration |
| US10355879B2 (en) | 2014-02-10 | 2019-07-16 | Avago Technologies International Sales Pte. Limited | Virtual extensible LAN tunnel keepalives |
| US10419276B2 (en) | 2010-06-07 | 2019-09-17 | Avago Technologies International Sales Pte. Limited | Advanced link tracking for virtual cluster switching |
| US10439929B2 (en) | 2015-07-31 | 2019-10-08 | Avago Technologies International Sales Pte. Limited | Graceful recovery of a multicast-enabled switch |
| US10462049B2 (en) | 2013-03-01 | 2019-10-29 | Avago Technologies International Sales Pte. Limited | Spanning tree in fabric switches |
| US10476698B2 (en) | 2014-03-20 | 2019-11-12 | Avago Technologies International Sales Pte. Limited | Redundent virtual link aggregation group |
| US10579406B2 (en) | 2015-04-08 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Dynamic orchestration of overlay tunnels |
| US10581758B2 (en) | 2014-03-19 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Distributed hot standby links for vLAG |
| US10616108B2 (en) | 2014-07-29 | 2020-04-07 | Avago Technologies International Sales Pte. Limited | Scalable MAC address virtualization |
| US10673703B2 (en) | 2010-05-03 | 2020-06-02 | Avago Technologies International Sales Pte. Limited | Fabric switching |
| CN111600787A (en) * | 2020-05-20 | 2020-08-28 | 网神信息技术(北京)股份有限公司 | Information processing method, information processing apparatus, electronic device, and medium |
Families Citing this family (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9716672B2 (en) | 2010-05-28 | 2017-07-25 | Brocade Communications Systems, Inc. | Distributed configuration management for virtual cluster switching |
| US9270486B2 (en) | 2010-06-07 | 2016-02-23 | Brocade Communications Systems, Inc. | Name services for virtual cluster switching |
| US9450870B2 (en) | 2011-11-10 | 2016-09-20 | Brocade Communications Systems, Inc. | System and method for flow management in software-defined networks |
| US9154416B2 (en) | 2012-03-22 | 2015-10-06 | Brocade Communications Systems, Inc. | Overlay tunnel in a fabric switch |
| US9374301B2 (en) | 2012-05-18 | 2016-06-21 | Brocade Communications Systems, Inc. | Network feedback in software-defined networks |
| US10277464B2 (en) | 2012-05-22 | 2019-04-30 | Arris Enterprises Llc | Client auto-configuration in a multi-switch link aggregation |
| US9401872B2 (en) | 2012-11-16 | 2016-07-26 | Brocade Communications Systems, Inc. | Virtual link aggregations across multiple fabric switches |
| US9413691B2 (en) | 2013-01-11 | 2016-08-09 | Brocade Communications Systems, Inc. | MAC address synchronization in a fabric switch |
| US9548926B2 (en) | 2013-01-11 | 2017-01-17 | Brocade Communications Systems, Inc. | Multicast traffic load balancing over virtual link aggregation |
| US9401818B2 (en) | 2013-03-15 | 2016-07-26 | Brocade Communications Systems, Inc. | Scalable gateways for a fabric switch |
| US9806949B2 (en) | 2013-09-06 | 2017-10-31 | Brocade Communications Systems, Inc. | Transparent interconnection of Ethernet fabric switches |
| US9912612B2 (en) | 2013-10-28 | 2018-03-06 | Brocade Communications Systems LLC | Extended ethernet fabric switches |
| US10063473B2 (en) | 2014-04-30 | 2018-08-28 | Brocade Communications Systems LLC | Method and system for facilitating switch virtualization in a network of interconnected switches |
| US9800471B2 (en) | 2014-05-13 | 2017-10-24 | Brocade Communications Systems, Inc. | Network extension groups of global VLANs in a fabric switch |
| US9807007B2 (en) | 2014-08-11 | 2017-10-31 | Brocade Communications Systems, Inc. | Progressive MAC address learning |
| US9942097B2 (en) | 2015-01-05 | 2018-04-10 | Brocade Communications Systems LLC | Power management in a network of interconnected switches |
| US9807005B2 (en) | 2015-03-17 | 2017-10-31 | Brocade Communications Systems, Inc. | Multi-fabric manager |
| US10038592B2 (en) | 2015-03-17 | 2018-07-31 | Brocade Communications Systems LLC | Identifier assignment to a new switch in a switch group |
| US10171303B2 (en) | 2015-09-16 | 2019-01-01 | Avago Technologies International Sales Pte. Limited | IP-based interconnection of switches with a logical chassis |
| US9912614B2 (en) | 2015-12-07 | 2018-03-06 | Brocade Communications Systems LLC | Interconnection of switches based on hierarchical overlay tunneling |
| US10237090B2 (en) | 2016-10-28 | 2019-03-19 | Avago Technologies International Sales Pte. Limited | Rule-based network identifier mapping |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1330073A1 (en) * | 2002-01-18 | 2003-07-23 | Nokia Corporation | Method and apparatus for access control of a wireless terminal device in a communications network |
| CN1805391A (en) * | 2005-01-13 | 2006-07-19 | 华为技术有限公司 | Method and apparatus for supporting multiple logical networks in wireless LAN |
| CN101159646A (en) * | 2007-11-23 | 2008-04-09 | 杭州华三通信技术有限公司 | Login method and apparatus for AP |
-
2009
- 2009-12-02 CN CN200910200027.4A patent/CN102088388B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1330073A1 (en) * | 2002-01-18 | 2003-07-23 | Nokia Corporation | Method and apparatus for access control of a wireless terminal device in a communications network |
| CN1805391A (en) * | 2005-01-13 | 2006-07-19 | 华为技术有限公司 | Method and apparatus for supporting multiple logical networks in wireless LAN |
| CN101159646A (en) * | 2007-11-23 | 2008-04-09 | 杭州华三通信技术有限公司 | Login method and apparatus for AP |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10673703B2 (en) | 2010-05-03 | 2020-06-02 | Avago Technologies International Sales Pte. Limited | Fabric switching |
| US11757705B2 (en) | 2010-06-07 | 2023-09-12 | Avago Technologies International Sales Pte. Limited | Advanced link tracking for virtual cluster switching |
| US11438219B2 (en) | 2010-06-07 | 2022-09-06 | Avago Technologies International Sales Pte. Limited | Advanced link tracking for virtual cluster switching |
| US10924333B2 (en) | 2010-06-07 | 2021-02-16 | Avago Technologies International Sales Pte. Limited | Advanced link tracking for virtual cluster switching |
| US10419276B2 (en) | 2010-06-07 | 2019-09-17 | Avago Technologies International Sales Pte. Limited | Advanced link tracking for virtual cluster switching |
| US10348643B2 (en) | 2010-07-16 | 2019-07-09 | Avago Technologies International Sales Pte. Limited | System and method for network configuration |
| US9736085B2 (en) | 2011-08-29 | 2017-08-15 | Brocade Communications Systems, Inc. | End-to end lossless Ethernet in Ethernet fabric |
| US9729387B2 (en) | 2012-01-26 | 2017-08-08 | Brocade Communications Systems, Inc. | Link aggregation in software-defined networks |
| CN104272684B (en) * | 2012-02-27 | 2018-01-19 | 博科通讯***有限公司 | Dynamic Service insertion in Fabric interchangers |
| US9742693B2 (en) | 2012-02-27 | 2017-08-22 | Brocade Communications Systems, Inc. | Dynamic service insertion in a fabric switch |
| CN104272684A (en) * | 2012-02-27 | 2015-01-07 | 博科通讯***有限公司 | Dynamic service insertion in a fabric switch |
| US10462049B2 (en) | 2013-03-01 | 2019-10-29 | Avago Technologies International Sales Pte. Limited | Spanning tree in fabric switches |
| US9699001B2 (en) | 2013-06-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Scalable and segregated network virtualization |
| US10355879B2 (en) | 2014-02-10 | 2019-07-16 | Avago Technologies International Sales Pte. Limited | Virtual extensible LAN tunnel keepalives |
| US10581758B2 (en) | 2014-03-19 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Distributed hot standby links for vLAG |
| US10476698B2 (en) | 2014-03-20 | 2019-11-12 | Avago Technologies International Sales Pte. Limited | Redundent virtual link aggregation group |
| US10616108B2 (en) | 2014-07-29 | 2020-04-07 | Avago Technologies International Sales Pte. Limited | Scalable MAC address virtualization |
| US9699029B2 (en) | 2014-10-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Distributed configuration management in a switch group |
| US10579406B2 (en) | 2015-04-08 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Dynamic orchestration of overlay tunnels |
| US10439929B2 (en) | 2015-07-31 | 2019-10-08 | Avago Technologies International Sales Pte. Limited | Graceful recovery of a multicast-enabled switch |
| CN111600787A (en) * | 2020-05-20 | 2020-08-28 | 网神信息技术(北京)股份有限公司 | Information processing method, information processing apparatus, electronic device, and medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102088388B (en) | 2014-04-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102088388B (en) | Method and equipment for automatically distributing/acquiring virtual local area network configuration information | |
| CN106851632B (en) | A kind of method and device of smart machine access WLAN | |
| EP2180640A1 (en) | Ad-hoc network system and method | |
| CN102739455B (en) | A kind of method of network equipments configuration and device | |
| KR20040042247A (en) | The method and system for performing authentification to obtain access to public wireless LAN | |
| US20120084415A1 (en) | Method and equipment for self-configuring transmission in self-organized network | |
| CN104113915B (en) | A kind of WLAN and its sharing method, Wireless Local Area Network Gateway | |
| EP2903385A1 (en) | Method for controlling access point in wireless local area network, and communication system | |
| CN101951325A (en) | Network terminal configuration system based on automatic discovery and configuration method thereof | |
| CN101741888A (en) | Method, system and device for pushing certification page | |
| CN1929482B (en) | Network business identification method and device | |
| CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
| CN103095654A (en) | Virtual local area network (VLAN) configuration method, wireless access point and network control point | |
| CN104618522B (en) | The method and Ethernet access equipment that IP address of terminal automatically updates | |
| CN101163085A (en) | Method and system for implementing CDMA1xLNS load balancing | |
| CN104144491B (en) | A kind of method and system to the real-time positioning of WiFi terminal | |
| CN102724662A (en) | Method and device for providing differentiated services in broadband wireless network | |
| CN106535089A (en) | Machine to machine virtual private network | |
| CN101160786B (en) | Method, system and apparatus for relating the information associated with user in NASS | |
| CN103414732A (en) | Application integration device and application integration processing method | |
| CN102724333A (en) | Method, device and system for setting up IPv6 (internet protocol version 6) rapid deployment tunnel | |
| CN106331197A (en) | Method for managing Internet protocol host, broadband access server and management server | |
| CN102045684B (en) | Method and system for partition charging for wireless local area network | |
| CN102857953A (en) | Self-configuration method and device of base station | |
| CN102067527B (en) | A method and device for assisting the terminal device operation within the network in access network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder |
Address after: 201206 Pudong Jinqiao Ning Road, Shanghai, No. 388 Patentee after: Shanghai NOKIA Baer Limited by Share Ltd Address before: 201206 Pudong Jinqiao Ning Road, Shanghai, No. 388 Patentee before: Shanghai Alcatel-Lucent Co., Ltd. |