CN107172101A - Port isolation and VLAN isolation switching methods and application in an epon - Google Patents

Port isolation and VLAN isolation switching methods and application in an epon Download PDF

Info

Publication number
CN107172101A
CN107172101A CN201710570267.8A CN201710570267A CN107172101A CN 107172101 A CN107172101 A CN 107172101A CN 201710570267 A CN201710570267 A CN 201710570267A CN 107172101 A CN107172101 A CN 107172101A
Authority
CN
China
Prior art keywords
vlan
port
isolation
desirable
same
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710570267.8A
Other languages
Chinese (zh)
Inventor
李峰
袁奕琛
沈超
姜伟
谭杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
LOOTOM TELCOVIDEO NETWORK WUXI CO Ltd
Original Assignee
LOOTOM TELCOVIDEO NETWORK WUXI CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by LOOTOM TELCOVIDEO NETWORK WUXI CO Ltd filed Critical LOOTOM TELCOVIDEO NETWORK WUXI CO Ltd
Priority to CN201710570267.8A priority Critical patent/CN107172101A/en
Publication of CN107172101A publication Critical patent/CN107172101A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B10/00Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
    • H04B10/80Optical aspects relating to the use of optical transmission for specific applications, not provided for in groups H04B10/03 - H04B10/70, e.g. optical power feeding or optical transmission through water
    • H04B10/85Protection from unauthorised access, e.g. eavesdrop protection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Small-Scale Networks (AREA)

Abstract

The invention provides a kind of port isolation and the method for VLAN isolation switchings, the switching that flexibly and efficiently completing port isolation is isolated with VLAN allows user to use eased convenience, operating efficiency is higher, including:Port isolation, it would be desirable to which the VLAN of the port of port isolation is arranged to difference so that can not be communicated between port;VLAN isolates, it would be desirable to which the VLAN of the port of VLAN isolation is arranged to identical, can communicate, can not be communicated between different VLAN port between same VLAN port;When being switched to port isolation from VLAN isolation, it would be desirable to which the VLAN of the port of port isolation is from same vlan change into different VLAN;Isolate when being switched to VLAN from port isolation, it would be desirable to which the VLAN of the port of VLAN isolation is from different vlan changes into same VLAN, and present invention also offers application of this method in EPON terminals.

Description

Port isolation and VLAN isolation switching methods and application in an epon
Technical field
Isolate switching method and in EPON the present invention relates to technical field of network security, more particularly to port isolation and VLAN In application.
Background technology
Port isolation technology is, in order to realize the isolation between message, to be kept apart different ports by configuring Come, make all enter the technology of row data communication between each port;VLAN isolation technologies are also for realizing between message Isolation, by configuring VLAN by different port progress data isolations, makes that between port the technology of row data communication can not be entered.
For at present, port isolation technology and VLAN isolation technologies belong to two kinds of different technologies, but its basic goal It is provided to by configuring port, the technology for being isolated the data between port.But it is comparatively laborious to operate at present, Since it is desired that being configured to realize respective isolation features respectively.Sometimes carry out a kind of isolation skill therefrom according to actual needs Another isolation technology of art switching, it is even more comparatively laborious, or even need to close one of which isolation features to lead to Cross configuration and complete another isolation.Since so, operating efficiency is lower, and data are carried out without a kind of efficient method The handover operation of processing.
The content of the invention
In view of the above-mentioned problems, the invention provides a kind of port isolation and the method for VLAN isolation switchings, it is flexible and efficient The seamless switching that ground completing port isolation is isolated with VLAN, allows user to use eased convenience, operating efficiency is higher, this Application present invention also offers this method in EPON terminals outside.
Its technical scheme is such:A kind of port isolation and VLAN isolation switching methods, it is characterised in that including:
Port isolation, it would be desirable to which the VLAN of the port of port isolation is configured to different VLAN so that can not be communicated between port, Realize port isolation;
VLAN isolates, it would be desirable to which the VLAN of the port of VLAN isolation is configured to can between same VLAN, same VLAN port Different communication between communication, different VLAN port, realizes that VLAN isolates;
When being switched to port isolation from VLAN isolation, it would be desirable to which the VLAN of the port of port isolation is from same vlan change into not Same VLAN;
When being switched to VLAN isolation from port isolation, it would be desirable to which the VLAN of the port of VLAN isolation is from different vlan changes into same One VLAN.
A kind of application of port isolation and VLAN isolation switching methods in EPON terminals, OLT device is connected by optical splitter ONU equipment is connect, each port of ONU equipment connects PC respectively, it is characterised in that:
When setting port isolation, OLT device control ONU equipment, it would be desirable to which the VLAN of the port of port isolation is configured to difference VLAN so that connecting can not communicate between the PC of each port;
When setting VLAN to isolate, OLT device control ONU equipment, it would be desirable to which the VLAN of the port of VLAN isolation is configured to same It can communicate, can not be communicated between the PC with different VLAN between VLAN, the PC with same VLAN;
When being switched to VLAN isolation from port isolation, OLT device control ONU equipment, it would be desirable to the port of VLAN isolation VLAN can communicate from different vlan changes into same VLAN between the PC with same VLAN, the PC with different VLAN It can not be communicated between machine.
When being switched to port isolation from VLAN isolation, OLT device control ONU equipment, it would be desirable to the port of port isolation VLAN from same vlan change into different VLAN so that connecting can not communicate between the PC of each port.
The method of port isolation and VLAN the isolation switching of the present invention, when by port configuration VLAN isolation, configures phase It can be communicated with data between VLAN port, data can not be communicated between different VLAN, configure port Into port isolation, each port is configured to different VLAN, so all without data communication between each port, so that The effect of port isolation is reached, when needing to be switched to port isolation from VLAN isolation, it is only necessary to by each port VLAN be configured to difference, the effect of port isolation will be realized, it is achieved thereby that from VLAN isolation switch to port isolation;Need Port isolation is switched into VLAN isolation, it would be desirable to which data communication port is configured to identical VLAN, can thus reach The effect of VLAN isolation, thus switches to VLAN isolation, and method of the invention does not need user to switch over operation, it is only necessary to logical The simple function of configuring and can be achieved desired by it is crossed, seamless switching is realized, allows user to use eased convenience, work Make more efficient.
Brief description of the drawings
Methods of the Fig. 1 for port isolation of the invention and VLAN the isolation switching of the present invention and the application in EPON terminals Schematic diagram.
Embodiment
A kind of method of port isolation and VLAN the isolation switching of the present invention, including:Port isolation, it would be desirable to port every From the VLAN of port be configured to different VLAN so that can not be communicated between port, realize port isolation;VLAN isolates, will The VLAN of the port of VLAN isolation is needed to be configured to communicate between same VLAN, same VLAN port, different VLAN's Different communication between port, realizes that VLAN isolates;When being switched to port isolation from VLAN isolation, it would be desirable to the end of port isolation Mouthful VLAN from same vlan change into different VLAN;When being switched to VLAN isolation from port isolation, it would be desirable to which VLAN isolates Port VLAN from different vlan changes into same VLAN.
Specific embodiment one:
See Fig. 1, application of the method that port isolation of the invention and VLAN isolation switch in EPON terminals, OLT device 1 is led to The connection ONU equipment 3 of optical splitter 2 is crossed, each port of ONU equipment 3 connects PC 4 in PC 4, the present embodiment respectively there are 4, point Wei not PC1, PC2, PC3, PC4.
When setting VLAN to isolate, OLT device control ONU equipment, configuration port Port1 and port Port2 is VLAN 100, configuration port Port3 and port Port4 are VLAN 200, and the port Port1 and port Port2 of ONU equipment are set as same VLAN, port Port3 and port Port4 are set to same VLAN, are thus port Port1, port Port2 and port Port3, port Port4 have been set as VLAN isolation, and it is one group, port Port3, port Port4 to make port Port1, port Port2 It for one group, can communicate, can be communicated between port Port3 and port Port4 between port Port1 and port Port2, so that It can communicate, can be communicated between PC3 and PC4 between PC1 and PC2, port Port1 and port Port3, port Port1 and end Mouth Port4, port Port2 cannot communicate between port Port3, port Port2 and port Port4.
By ONU end mouthful Port1 VLAN it is 100 by OLT device when being switched to port isolation from VLAN isolation, end Mouth Port2 VLAN is 200, and port Port3 VLAN is 300, and port Port4 VLAN is 400, that is, does not need handover configurations Mode, is configured to port isolation by ONU, makes to communicate respectively between four ports, so that PC1, PC2, PC3, PC4 Between can not communicate.
When set port isolation when, by OLT device by the port Port1 of ONU equipment VLAN be 100, port Port2 VLAN be 200, port Port3 VLAN is 300, and port Port4 VLAN is 400, and the VLAN of each port is different, four It can not be communicated between port, realize port isolation.
When being switched to VLAN isolation from port isolation, OLT device control ONU equipment configures port Port1 and port Port3 is VLAN 200, and configuration port Port2 and port Port4 is VLAN 300, ONU port Port1 and port Port3 Be set as same VLAN, port Port2 and port Port4 and be set to same VLAN, be thus port Port1, port Port3 and Port Port2, port Port4 have been set as VLAN isolation, and it is one group, port Port2, port to make port Port1, port Port3 Port4 is one group, can communicate, can lead between port Port2 and port Port4 between port Port1 and port Port3 Letter, so as to can be communicated between PC1 and PC3, can communicate between PC2 and PC4.
The method of port isolation and VLAN the isolation switching of the present invention, when by port configuration VLAN isolation, configures phase It can be communicated with data between VLAN port, data can not be communicated between different VLAN, configure port Into port isolation, each port is configured to different VLAN, so all without data communication between each port, so that The effect of port isolation is reached, when needing to be switched to port isolation from VLAN isolation, it is only necessary to by each port VLAN be configured to difference, the effect of port isolation will be realized, it is achieved thereby that from VLAN isolation switch to port isolation;Need Port isolation is switched into VLAN isolation, it would be desirable to which data communication port is configured to identical VLAN, can thus reach The effect of VLAN isolation, thus switches to VLAN isolation, and method of the invention does not need user to switch over operation, it is only necessary to logical The simple function of configuring and can be achieved desired by it is crossed, seamless switching is realized, allows user to use eased convenience, work Make more efficient.
More than, it is only the present invention preferably embodiment, but protection scope of the present invention is not limited thereto, and it is any Be familiar with the people of the technology disclosed herein technical scope in, the change or replacement that can be readily occurred in, should all cover this Within the protection domain of invention.Therefore, protection scope of the present invention should be defined by scope of the claims.

Claims (2)

1. port isolation and VLAN isolation switching methods, it is characterised in that including:
Port isolation, it would be desirable to which the VLAN of the port of port isolation is configured to different VLAN so that can not be communicated between port, Realize port isolation;
VLAN isolates, it would be desirable to which the VLAN of the port of VLAN isolation is configured to can between same VLAN, same VLAN port It can not be communicated between communication, different VLAN port, realize that VLAN isolates;
When being switched to port isolation from VLAN isolation, it would be desirable to which the VLAN of the port of port isolation is from same vlan change into not Same VLAN;
When being switched to VLAN isolation from port isolation, it would be desirable to which the VLAN of the port of VLAN isolation is from different vlan changes into same One VLAN.
2. the application of port isolation and VLAN isolation switching method in an epon, OLT device connects ONU equipment by optical splitter, Each port of ONU equipment connects PC respectively, it is characterised in that:
When setting port isolation, OLT device control ONU equipment, it would be desirable to which the VLAN of the port of port isolation is configured to difference VLAN so that connecting can not communicate between the PC of each port;
When setting VLAN to isolate, OLT device control ONU equipment, it would be desirable to which the VLAN of the port of VLAN isolation is configured to same It can communicate, can not be communicated between the PC with different VLAN between VLAN, the PC with same VLAN;
When being switched to VLAN isolation from port isolation, OLT device control ONU equipment, it would be desirable to the port of VLAN isolation VLAN can communicate from different vlan changes into same VLAN between the PC with same VLAN, the PC with different VLAN It can not be communicated between machine;
When being switched to port isolation from VLAN isolation, OLT device control ONU equipment, it would be desirable to the port of port isolation VLAN is from same vlan change into different VLAN so that connecting can not communicate between the PC of each port.
CN201710570267.8A 2017-07-13 2017-07-13 Port isolation and VLAN isolation switching methods and application in an epon Pending CN107172101A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710570267.8A CN107172101A (en) 2017-07-13 2017-07-13 Port isolation and VLAN isolation switching methods and application in an epon

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710570267.8A CN107172101A (en) 2017-07-13 2017-07-13 Port isolation and VLAN isolation switching methods and application in an epon

Publications (1)

Publication Number Publication Date
CN107172101A true CN107172101A (en) 2017-09-15

Family

ID=59824098

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710570267.8A Pending CN107172101A (en) 2017-07-13 2017-07-13 Port isolation and VLAN isolation switching methods and application in an epon

Country Status (1)

Country Link
CN (1) CN107172101A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109257664A (en) * 2018-10-26 2019-01-22 武汉长光科技有限公司 A method of supporting PON system port isolation
CN110460917A (en) * 2019-07-11 2019-11-15 烽火通信科技股份有限公司 The method and system of different user intercommunication are realized in PON access system
CN111030911A (en) * 2018-10-09 2020-04-17 中车株洲电力机车研究所有限公司 Train network system and terminal equipment access management method for train network system
CN113890791A (en) * 2021-09-17 2022-01-04 华能伊敏煤电有限责任公司 Multi-network fusion method based on open pit coal mine

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101047583A (en) * 2006-03-31 2007-10-03 株式会社日立制作所 Passive optical network system and correlation method for support virtual local network service
CN101222497A (en) * 2007-01-11 2008-07-16 国际商业机器公司 System and method for virtualized resource configuration
US20140366118A1 (en) * 2013-06-05 2014-12-11 Fortinet, Inc. Cloud based logging service
CN104734953A (en) * 2015-03-24 2015-06-24 福建星网锐捷网络有限公司 Method and device for achieving message layer-2 isolation based on VLAN and interchanger

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101047583A (en) * 2006-03-31 2007-10-03 株式会社日立制作所 Passive optical network system and correlation method for support virtual local network service
CN101222497A (en) * 2007-01-11 2008-07-16 国际商业机器公司 System and method for virtualized resource configuration
US8973098B2 (en) * 2007-01-11 2015-03-03 International Business Machines Corporation System and method for virtualized resource configuration
US20140366118A1 (en) * 2013-06-05 2014-12-11 Fortinet, Inc. Cloud based logging service
CN104734953A (en) * 2015-03-24 2015-06-24 福建星网锐捷网络有限公司 Method and device for achieving message layer-2 isolation based on VLAN and interchanger

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
王珏文: "《《基于EOPN技术光纤到户宽带接入网的设计与研究》》", 《中国知网》 *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111030911A (en) * 2018-10-09 2020-04-17 中车株洲电力机车研究所有限公司 Train network system and terminal equipment access management method for train network system
CN109257664A (en) * 2018-10-26 2019-01-22 武汉长光科技有限公司 A method of supporting PON system port isolation
CN110460917A (en) * 2019-07-11 2019-11-15 烽火通信科技股份有限公司 The method and system of different user intercommunication are realized in PON access system
CN110460917B (en) * 2019-07-11 2022-02-15 烽火通信科技股份有限公司 Method and system for realizing intercommunication of different users in PON access system
CN113890791A (en) * 2021-09-17 2022-01-04 华能伊敏煤电有限责任公司 Multi-network fusion method based on open pit coal mine

Similar Documents

Publication Publication Date Title
CN107172101A (en) Port isolation and VLAN isolation switching methods and application in an epon
US20080170495A1 (en) Breakdown and Decoupling Tolerant Communications Network, a Data Path Switching Device and a Corresponding Method
JP2008275169A (en) Electrofluidic modular system
US10608369B2 (en) Series module, connection module and modular designed control arrangement
WO1998028883B1 (en) Network including multi-protocol cross-connect switch
WO2008121763A3 (en) Programmable high speed crossbar switch
GB2364475A (en) A device and a method in a switched telecommunication system
US5469001A (en) Switch network
US7737573B2 (en) Power over ethernet combiner
CN104919783B (en) For connecting the network equipment mounting rail of detachable module
CN108769873A (en) A kind of signal switching circuit and electronic equipment
GB2533836A (en) Modular RF matrix switch
CN105871624B (en) Independent of transmission method in the dynamic SDN control signaling band of control private network
US9706274B2 (en) Distributed control of a modular switching system
CN105406910B (en) Optical path backup and mimo transmission system, near-end device, far end device
CN208656504U (en) Detection circuit, control system and electrical equipment
US10135363B2 (en) Communication device and system
US10079622B2 (en) Point-to-multipoint communication system in which automatic ID allocation is possible
US9094317B2 (en) Processor topology switches
JP2018505593A (en) RF high power generator
CN110334039A (en) A kind of RJ11 turns RJ45 converter
CN105611678B (en) LED adjusts RGB control systems and light fixture
ATE381829T1 (en) COMMUNICATION SYSTEM
CN102938740A (en) Method and device for controlling internet protocol security (IPSEC) load sharing through user number
US20220197250A1 (en) Pneumatic control device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170915

RJ01 Rejection of invention patent application after publication