CN110035134A - Method for network address translation, device and access device - Google Patents
Method for network address translation, device and access device Download PDFInfo
- Publication number
- CN110035134A CN110035134A CN201910223527.3A CN201910223527A CN110035134A CN 110035134 A CN110035134 A CN 110035134A CN 201910223527 A CN201910223527 A CN 201910223527A CN 110035134 A CN110035134 A CN 110035134A
- Authority
- CN
- China
- Prior art keywords
- tunnel
- aftr
- address
- terminal equipment
- access device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
- H04L12/2856—Access arrangements, e.g. Internet access
- H04L12/2869—Operational details of access network equipments
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/2592—Translation of Internet protocol [IP] addresses using tunnelling or encapsulation
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
The disclosure provides a kind of method for network address translation, device and access device, which is configured to address family translation router AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;Method include: detect the access device network address translation NAT business whether need to switch to be executed by core router;If detecting that NAT business needs are switched to be executed by core router, then switching notice is sent to target client terminal equipment corresponding with the NAT business, so that target client terminal equipment is established the 2nd tunnel IPv6 using core router as new AFTR equipment, the data traffic for accessing the host of the target client terminal equipment is sent to core router by the 2nd tunnel IPv6 and carries out NAT conversion.In this way, can realize the NAT translative mode of " centralization " backup " distribution " under DS-Lite scene.
Description
Technical field
This disclosure relates to which network communication technology field, in particular to a kind of method for network address translation, device and connects
Enter equipment.
Background technique
Network address translation (Network Address Translation, abbreviation NAT) is a kind of to map private net address
The technology of public network address is converted to, commonly used in alleviating the insufficient awkward situation of IPv4 public network address.Figure 1A is please referred to, in common use
Family is surfed the Internet in scene, and subscriber's main station (Host) can pass through customer terminal equipment (Customer Premise Equipment, letter
Claim CPE) access Internet Service Provider (Internet Service Provider, abbreviation ISP) network, by ISP network reality
Existing NAT business, makes the accessible common network resource of host.ISP network generally includes Broadband Remote Access Server
(Broadband Remote Access Server, abbreviation BRAS) and core router (Core Router, abbreviation CR),
BRAS and core router all have carrier-class NAT (Carrier-Grade NAT, abbreviation CGN) function.BRAS be usually by
Multiple functional cards compositions, and NAT business is executed by its CGN business board, therefore claimed by the mode that BRAS executes NAT business
For " distribution " NAT mode;Core router is usually centralized device, therefore executes NAT business by core router
Mode is referred to as " centralization " NAT mode.
Summary of the invention
In a first aspect, the disclosure provides a kind of method for network address translation, it is applied to access device, which exists
It is configured as AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;The described method includes:
Whether the network address translation NAT business for detecting the access device needs to switch to is held by the core router
Row;
If detecting, NAT business needs are switched to and are executed by the core router, to corresponding with the NAT business
Target client terminal equipment send switching notice, make the target client terminal equipment using the core router as newly
AFTR equipment establishes the 2nd tunnel IPv6, will access the data traffic of the host of the target client terminal equipment by described the
Two tunnels IPv6 are sent to the core router and carry out NAT conversion.
Optionally, in the above-mentioned methods, the access device is also communicated with name server, domain name server record
There is the corresponding relationship of the tunnel AFTR name and address;Described send to target client terminal equipment corresponding with the NAT business switches
The step of notice, comprising:
For with the tunnel target client terminal equipment corresponding target AFTR name, to domain name server send ground
Location update notification makes domain name server that the core routing is revised as in address corresponding with target AFTR tunnel name
The address of device;
The target client terminal equipment is notified to initiate the solution to the tunnel target AFTR name to domain name server
Analysis request, to obtain the address of the core router as the address of new AFTR equipment and be established with the core router
2nd tunnel IPv6.
Optionally, in the above-mentioned methods, described that the target client terminal equipment is notified to initiate to domain name server
The step of to the analysis request of the tunnel target AFTR name, comprising:
The target client terminal equipment is notified to delete the DNS cache of the tunnel target AFTR name and take to domain name
Business device sends the analysis request of the tunnel target AFTR name.
Optionally, in the above-mentioned methods, the method also includes:
In access device initialization, address update notification is sent to domain name server, takes domain name
Address configuration corresponding with each tunnel AFTR name is the address of the access device by business device.
Optionally, in the above-mentioned methods, the method also includes:
When there is host online on detecting the customer terminal equipment for accessing the access device for the first time, to the client terminal
Equipment sends the tunnel AFTR name notice, and the customer terminal equipment is made to obtain the corresponding tunnel AFTR name, with to domain name service
Device request obtains the address of corresponding AFTR equipment.
Optionally, in the above-mentioned methods, whether the NAT business for detecting the access device needs to switch to by the core
The step of heart router executes, comprising:
Whether the CGN plate for detecting the access device is working properly;
When detecting the CGN plate operation irregularity, the NAT business executed by the CGN plate is determined as needing to switch to
It is executed by the core router.
Second aspect, the disclosure provide a kind of network address conversion device, are applied to access device, which exists
It is configured as AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;Described device includes:
Business detection module, the network address translation NAT business for detecting the access device whether need to switch to by
The core router executes;
Service switching module, if being executed for detecting that NAT business needs are switched to by the core router, to
Target client terminal equipment corresponding with the NAT business sends switching notice, makes the target client terminal equipment with the core
Heart router establishes the 2nd tunnel IPv6 as new AFTR equipment, will access the number of the host of the target client terminal equipment
The core router is sent to by the 2nd tunnel IPv6 according to flow and carries out NAT conversion.
Optionally, in above-mentioned apparatus, the access device is also communicated with name server, domain name server record
There is the corresponding relationship of the tunnel AFTR name and address;The service switching module is specifically used for being directed to be set with the target client terminal
The standby tunnel corresponding target AFTR name sends address update notification to domain name server, makes domain name server will be with
It is revised as the address of the core router in name corresponding address in the tunnel the target AFTR;The target client terminal is notified to set
The standby analysis request initiated to domain name server to the tunnel target AFTR name, to obtain the ground of the core router
Location as new AFTR equipment address and establish the 2nd tunnel IPv6 with the core router.
The third aspect, the disclosure provide a kind of access device, including processor and machine readable storage medium, the machine
Readable storage medium storing program for executing is stored with machine-executable instruction, and the machine-executable instruction is being executed or called by the processor
When, promote the access device to realize the method for network address translation of disclosure offer.
Fourth aspect, the disclosure provide a kind of machine readable storage medium, are stored with machine-executable instruction, the machine
Executable instruction promotes the processor to realize the method for network address translation of disclosure offer when being executed by processor.
Method for network address translation, device and the access device that the embodiment of the present disclosure provides are applied in DS-Lite framework
Access device, detect on the access device NAT business needs switch to executed by core router when, notice and should
Core router is established the new tunnel IPv6 as new AFTR equipment by the corresponding target client terminal equipment of NAT business, with
Make target client terminal equipment that host flow is sent to core router and carries out NAT conversion.In this way, can be at DS-Lite
The NAT translative mode of " centralization " backup " distribution " is realized under scape.
Detailed description of the invention
It, below will be to needed in the embodiment attached in order to illustrate more clearly of the technical solution of the embodiment of the present disclosure
Figure is briefly described, it should be understood that the following drawings illustrates only some embodiments of the disclosure, therefore is not construed as pair
The restriction of range for those of ordinary skill in the art without creative efforts, can also be according to this
A little attached drawings obtain other relevant attached drawings.
Figure 1A is a kind of network architecture schematic diagram of existing NAT conversion;
Figure 1B is the schematic diagram of existing " centralization " backup " distribution " NAT mode;
Fig. 2 is the NAT converting structure schematic diagram under a kind of DS-Lite scene;
Fig. 3 is one of the network architecture schematic diagram for the NAT conversion that the embodiment of the present disclosure provides;
Fig. 4 is the flow diagram for the method for network address translation that the embodiment of the present disclosure provides;
Fig. 5 is the two of the network architecture schematic diagram for the NAT conversion that the embodiment of the present disclosure provides;
Fig. 6 is the block diagram for the access device that the embodiment of the present disclosure provides;
Fig. 7 is one of the functional block diagram of network address conversion device that the embodiment of the present disclosure provides;
Fig. 8 is the two of the functional block diagram for the network address conversion device that the embodiment of the present disclosure provides.
Icon: 100- access device;9100-BRAS;110- network address conversion device;111- business detection module;
112- service switching module;113- initialization module;The tunnel 114- name notification module;120- machine readable storage medium;130-
Processor;200 (9200)-core router;300 (9300)-host;400 (9400)-public network;500 (9500)-client
Terminal device;600- name server;900-ISP network.
Specific embodiment
To keep the purposes, technical schemes and advantages of the embodiment of the present disclosure clearer, below in conjunction with the embodiment of the present disclosure
In attached drawing, the technical solution in the embodiment of the present disclosure is clearly and completely described, it is clear that described embodiment is
Disclosure a part of the embodiment, instead of all the embodiments.The disclosure being usually described and illustrated herein in the accompanying drawings is implemented
The component of example can be arranged and be designed with a variety of different configurations.
Therefore, the detailed description of the embodiment of the disclosure provided in the accompanying drawings is not intended to limit below claimed
The scope of the present disclosure, but be merely representative of the selected embodiment of the disclosure.Based on the embodiment in the disclosure, this field is common
Technical staff's every other embodiment obtained without making creative work belongs to the model of disclosure protection
It encloses.
It should also be noted that similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi
It is defined in a attached drawing, does not then need that it is further defined and explained in subsequent attached drawing.
In some actual scenes, as shown in Figure 1A, NAT transformation service, core router are mainly usually realized by BRAS
As backup.In addition, please referring to Figure 1B, when the CGN business board of BRAS breaks down, customer flow is drained to core by BRAS
Router, executes NAT business on core router, and this backup mode is referred to as " centralization " backup " distribution ".But
In DS-Lite scene, since the tunnel being related between equipment is established, " centralization " backup " distribution " generally can not be used
NAT service backup mode.
It specifically, referring to figure 2., is a kind of schematic diagram of the NAT converting structure under DS-Lite scene.In DS-Lite frame
In structure, the data traffic that host 9300 is sent is possible to using IPv4 address style or IPv6 address style.Customer terminal equipment
9500, when receiving the data traffic of IPv6 address style of the transmission of host 9300, are forwarded directly to ISP network 900, through ISP
Network 900 is sent to public network 9400.Customer terminal equipment 9500 is IPv4 in the source address for receiving the transmission of host 9300
When the message of private net address, IPv6 outer envelope can be added for message, and BRAS 9100 is transmitted to by tunnel.BRAS 9100
After receiving message, outer layer IPv6 tunnel encapsulation is removed, the source IP v4 private net address of message internal layer is then converted into IPv4 public affairs
Public network 9400 is sent to through core router 9200 after net address.
Due to being related to the tunnel encapsulation processing to IPv4 message in DS-Lite framework, after NAT service switching,
The message of customer terminal equipment 9500, which passes through the tunnel IPv6 established originally, still can be sent to BRAS 9100.Therefore DS-
The NAT backup mode of " centralization " backup " distribution " can not be directly used in Lite framework.
In view of this, under present embodiments providing a kind of DS-Lite scene, when access device NAT service switching extremely
When being handled by core router, the tunnel IPv6 is established with core router by access device notice customer terminal equipment again, from
And message is sent to the scheme that core router carries out NAT processing.Scheme provided in this embodiment is explained in detail below
It states.
Referring to figure 3., Fig. 3 is a kind of NAT framework of " centralization " backup " distribution " provided in this embodiment, wherein
Host 300 can be linked into access device 100 by customer terminal equipment 500, and access device 100 and core router 200 connect
It connects, core router 200 accesses public network 400.In the present embodiment, access device 100 can be BRAS, for example, can be with
BRAS equipment for the distribution or frame-type that are made of multiple functional boards.In the present embodiment, access device 100 configures
The first tunnel IPv6 is established at as AFTR equipment and customer terminal equipment 500.
Referring to figure 4., the present embodiment also provides a kind of network address translation side applied to access device 100 shown in Fig. 1
Method is below described in detail each step of this method.
Step S110, detect the access device 100 network address translation (Network Address Translation,
NAT) whether business needs to switch to and be executed by core router 200.
In the present embodiment, NAT business is usually executed by access device 100, however in some scenes, by access device
The 100 certain NAT business executed may need partly or entirely to switch to the execution of core router 200.
For example, the NAT business of access device 100 can be by the access device 100 in an example of the present embodiment
NAT business board (such as CGN business board) realize.Whether access device 100 can detecte each NAT business board working properly.If
When detecting a certain NAT business board operation irregularity, then the NAT business being responsible for by the NAT business board is determined as needing to cut
Shift to the target NAT business executed by core router 200.
For another example, because of business demand or maintenance needs, administrator may need to refer in another example of the present embodiment
Fixed certain part NAT business is temporarily switched to be executed by core router 200.Access device 100 can be with the behaviour of response management person
Make, using NAT business that administrator specifies as the target NAT business for needing to switch to core router 200 and executing.
It should be noted that above-mentioned two situations are only two illustrative examples of the present embodiment, in its of the present embodiment
In his example or other scenes, access device 100 can also need to switch to core router 200 by the determination of other means
The NAT business of execution.
Step S120, if detecting, NAT business needs are switched to and are executed by core router 200, to the NAT industry
Corresponding target client terminal equipment of being engaged in sends switching notice, makes target client terminal equipment using core router 200 as newly
AFTR (AddressFamilyTransitionRouter, address family translation router) equipment establish the 2nd tunnel IPv6, with
The data traffic for the host 300 for accessing the target client terminal equipment is sent to core router by the 2nd tunnel IPv6
200 carry out NAT conversion.
Optionally, referring once again to Fig. 1, in the present embodiment, access device 100 and customer terminal equipment 500 can be with
It is communicated with name server 600, which can be dynamic domain name system (Dynamic Domain Name
System, abbreviation DDNS) server, the name server 600 can receive for the tunnel target AFTR name address update ask
It asks, changes the address corresponding with target AFTR tunnel name of its record.
In the step s 120, access device 100 can be directed to the tunnel target AFTR corresponding with target client terminal equipment
Name sends address update notification (for example, DDNS update request) to name server 600, makes name server 600 will be with
It is revised as the address of core router 200 in name corresponding address in the tunnel target AFTR.
Then, access device 100 can notify target client terminal equipment to initiate to name server 600 to target AFTR
The analysis request of tunnel name, to obtain the address of core router 200 as the address of new AFTR equipment and be routed with core
Device 200 establishes the 2nd tunnel IPv6.
For example, access device 100 can notify the DNS cache of the tunnel target client terminal equipment delete target AFTR name,
In this way, target client terminal equipment can send the analysis request of the tunnel target AFTR name to name server 600.Due to this time domain
Address corresponding with target AFTR tunnel name is the address of core router 200, target client terminal equipment in name server 600
The address of core router 200 can be got, and the tunnel IPv6 is established by the address and core router 200.Please refer to figure
5, target client terminal equipment can connect the customer terminal equipment 500 after establishing the 2nd tunnel IPv6 with core router 200
The IPv4 message that the host 300 received is sent is sent to core router 200 by the 2nd tunnel IPv6 and carries out NAT conversion.
Based on above equipment, in the present embodiment, when the NAT business on access device 100 needs to switch to core routing
When device 200 executes, access device 100 can be by modifying the corresponding address of the tunnel target AFTR name in name server 600
For the address of core router 200, so that target client terminal equipment can get core road from name server 600
By the address of device 200, by core router 200 as new AFTR equipment, the data of host 300 are sent by the tunnel IPv6
NAT conversion is carried out to core router 200.In this way, realizing " centralization " backup " distribution " under DS-Lite framework
NAT backup mode.
Optionally, in the present embodiment, access device 100 can record each client terminal and set according to the configuration of administrator
The address of the standby 500 corresponding tunnel AFTR names and core router 200.In initialization, which can be to domain name
Server 600 send address update notification, make name server 600 will address configuration corresponding with each tunnel AFTR name this connect
Enter the address of equipment 100.
Subsequent, access device 100, which is detected for the first time on the customer terminal equipment 500 for access to access device 100, host
300 it is online when, can to the customer terminal equipment 500 send the tunnel AFTR name notice, inform customer terminal equipment 500 establish
The tunnel AFTR name needed for the tunnel IPv6.It, can be to domain name service after customer terminal equipment 500 obtains the corresponding tunnel AFTR name
Device 600 requests to obtain the address of corresponding AFTR equipment.Since the tunnel the AFTR name recorded in name server 600 at this time is corresponding
Address be access device 100 address, access device 100 can establish IPv6 as AFTR equipment by customer terminal equipment 500
Tunnel, and the IPv4 message that host 300 is sent is sent to access device 100 and carries out NAT conversion.
Fig. 6 is please referred to, Fig. 6 is a kind of hardware structural diagram of access device 100 provided in this embodiment.The access is set
Standby 100 may include processor 130 and machine readable storage medium 120.Processor 130 and machine readable storage medium 120 can be through
It is communicated by system bus.Also, machine readable storage medium 120 is stored with machine-executable instruction, by reading and executing machine
Machine-executable instruction corresponding with network address translation logic in device readable storage medium storing program for executing 120, processor 130 are executable above
The method for network address translation of description.
Machine readable storage medium 120 referred to herein can be any electronics, magnetism, optics or other physical stores
Device may include or store information, such as executable instruction, data, etc..For example, machine readable storage medium 120 can be with
It is: RAM (Radom Access Memory, random access memory), volatile memory, nonvolatile memory, flash memory, deposits
Store up driver (such as hard disk drive), solid state hard disk, any kind of storage dish (such as CD, dvd) or similar storage
Medium or their combination.
Fig. 7 is please referred to, the present embodiment also provides a kind of network address conversion device 110, and network address conversion device 110 wraps
Include at least one functional module that can be stored in a software form in machine readable storage medium 120.It functionally divides, network
Address converting device 110 may include business detection module 111 and service switching module 112.
Whether the network address translation NAT business that business detection module 111 is used to detect the access device 100 needs to switch
Extremely executed by core router 200.
In the present embodiment, business detection module 111 can be used for executing step S110 shown in Fig. 4, detect mould about business
The specific descriptions of block 111 can join the description to step S110.
Service switching module 112, if being executed for detecting that NAT business needs are switched to by core router 200,
Switching notice is sent to target client terminal equipment corresponding with the NAT business, routes target client terminal equipment with core
Device 200 establishes the 2nd tunnel IPv6 as new AFTR equipment, will access the number of the host 300 of the target client terminal equipment
Core router 200 is sent to by the 2nd tunnel IPv6 according to flow and carries out NAT conversion.
In the present embodiment, service switching module 112 can be used for executing step S120 shown in Fig. 4, about service switching mould
The specific descriptions of block 112 can join the description to step S120.
Optionally, in the present embodiment, access device 100 is also communicated with name server 600, and name server 600 is remembered
Record has the corresponding relationship of the tunnel AFTR name and address;Service switching module 112 is specifically used for being directed to and target client terminal equipment
The tunnel corresponding target AFTR name sends address update notification to name server 600, makes name server 600 will be with target
It is revised as the address of core router 200 in name corresponding address in the tunnel AFTR;Notify target client terminal equipment to domain name service
Device 600 is initiated to the analysis request of the tunnel target AFTR name, to obtain the address of core router 200 as new AFTR equipment
Address and establish the 2nd tunnel IPv6 with core router 200.
Optionally, in the present embodiment, service switching module 112 notifies target client terminal equipment delete target AFTR tunnel
The DNS cache of road name makes target client terminal equipment send the analysis request of the tunnel target AFTR name to name server 600.
Optionally, Fig. 8 is please referred to, in the present embodiment, network address conversion device 110 can also include initialization module
113。
Initialization module 113 is used for when access device 100 initializes, and is sent address to name server 600 and is updated and leads to
Know, makes name server 600 by the address of address configuration access device 100 corresponding with each tunnel AFTR name.
Optionally, Fig. 8 is please referred to again, and in the present embodiment, network address conversion device 110 can also include tunnel name
Notification module 114.
Tunnel name notification module 114 is used on the customer terminal equipment 500 for detecting access access device 100 for the first time have
When host 300 is online, the tunnel AFTR name notice is sent to the customer terminal equipment 500, makes the customer terminal equipment 500 acquisition pair
The tunnel the AFTR name answered, to request to obtain the address of corresponding AFTR equipment to name server 600.
Optionally, in the present embodiment, business detection module 111 is specifically used for the NAT business board of detection access device 100
Whether working properly block;It is when detecting NAT business board operation irregularity, the NAT business executed by the NAT business board is true
It is set to needs and switches to the NAT business executed by core router 200.
In conclusion method for network address translation, device and access device that the embodiment of the present disclosure provides, are applied to DS-
Access device in Lite framework is detecting the NAT service switching on the access device to by core road by access device
When being executed by device, notify target client terminal equipment corresponding with the NAT business using core router as new AFTR equipment
The new tunnel IPv6 is established, so that host flow is sent to core router by target client terminal equipment carries out NAT conversion.Such as
This, realizes the NAT translative mode of " centralization " backup " distribution " under DS-Lite scene.
In the embodiment provided by the disclosure, it should be understood that disclosed device and method, it can also be by other
Mode realize.The apparatus embodiments described above are merely exemplary, for example, the flow chart and block diagram in attached drawing are shown
According to device, the architectural framework in the cards of method and computer program product, function of multiple embodiments of the disclosure
And operation.In this regard, each box in flowchart or block diagram can represent one of a module, section or code
Point, a part of the module, section or code includes one or more for implementing the specified logical function executable
Instruction.It should also be noted that function marked in the box can also be attached to be different from some implementations as replacement
The sequence marked in figure occurs.For example, two continuous boxes can actually be basically executed in parallel, they sometimes may be used
To execute in the opposite order, this depends on the function involved.It is also noted that each of block diagram and or flow chart
The combination of box in box and block diagram and or flow chart can be based on the defined function of execution or the dedicated of movement
The system of hardware is realized, or can be realized using a combination of dedicated hardware and computer instructions.
In addition, each functional module in each embodiment of the disclosure can integrate one independent portion of formation together
Point, it is also possible to modules individualism, an independent part can also be integrated to form with two or more modules.
It, can be with if the function is realized and when sold or used as an independent product in the form of software function module
It is stored in a computer readable storage medium.Based on this understanding, the technical solution of the disclosure is substantially in other words
The part of the part that contributes to existing technology or the technical solution can be embodied in the form of software products, the meter
Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be a
People's computer, server or network equipment etc.) execute each embodiment the method for the disclosure all or part of the steps.
And storage medium above-mentioned includes: that USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), arbitrary access are deposited
The various media that can store program code such as reservoir (RAM, Random Access Memory), magnetic or disk.
It should be noted that, in this document, relational terms such as first and second and the like are used merely to a reality
Body or operation are distinguished with another entity or operation, are deposited without necessarily requiring or implying between these entities or operation
In any actual relationship or order or sequence.Moreover, the terms "include", "comprise" or its any other variant are intended to
Non-exclusive inclusion, so that the process, method, article or equipment including a series of elements is not only wanted including those
Element, but also including other elements that are not explicitly listed, or further include for this process, method, article or equipment
Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that
There is also other identical elements in process, method, article or equipment including the element.
The above, the only various embodiments of the disclosure, but the protection scope of the disclosure is not limited thereto, it is any
Those familiar with the art can easily think of the change or the replacement in the technical scope that the disclosure discloses, and should all contain
It covers within the protection scope of the disclosure.Therefore, the protection scope of the disclosure shall be subject to the protection scope of the claim.
Claims (10)
1. a kind of method for network address translation, which is characterized in that be applied to access device, the access device is in DS-Lite framework
In be configured as address family translation router AFTR equipment and customer terminal equipment establishes the first tunnel IPv6;The method packet
It includes:
Whether the network address translation NAT business for detecting the access device needs to switch to be executed by core router;
If detecting that NAT business needs are switched to be executed by the core router, to target corresponding with the NAT business
Customer terminal equipment sends switching notice, sets the target client terminal equipment using the core router as new AFTR
Standby to establish the 2nd tunnel IPv6, the data traffic that will access the host of the target client terminal equipment passes through the 2nd IPv6
Tunnel is sent to the core router and carries out NAT conversion.
2. described the method according to claim 1, wherein the access device is also communicated with name server
Name server records the corresponding relationship for having the tunnel AFTR name and address;It is described whole to target customer corresponding with the NAT business
End equipment sends the step of switching notice, comprising:
For with the tunnel target client terminal equipment corresponding target AFTR name, to domain name server send address more
New notice, makes domain name server that the core router is revised as in address corresponding with target AFTR tunnel name
Address;
The target client terminal equipment is notified to ask to the initiation of domain name server to the parsing of the tunnel target AFTR name
It asks, to obtain the address of the core router as the address of new AFTR equipment and described in establishing with the core router
2nd tunnel IPv6.
3. according to the method described in claim 2, it is characterized in that, described notify the target client terminal equipment to the domain
The step of name server initiates the analysis request to the tunnel target AFTR name, comprising:
The target client terminal equipment is notified to delete the DNS cache of the tunnel target AFTR name and to domain name server
Send the analysis request of the tunnel target AFTR name.
4. according to the method described in claim 2, it is characterized in that, the method also includes:
In access device initialization, address update notification is sent to domain name server, makes domain name server
It is the address of the access device by address configuration corresponding with each tunnel AFTR name.
5. according to the method described in claim 4, it is characterized in that, the method also includes:
When there is host online on detecting the customer terminal equipment for accessing the access device for the first time, to the customer terminal equipment
The tunnel AFTR name notice is sent, so that the customer terminal equipment is obtained the corresponding tunnel AFTR name, to ask to domain name server
Ask the address for obtaining corresponding AFTR equipment.
6. the method according to claim 1, wherein whether the NAT business for detecting the access device needs
Switch to the step of being executed by the core router, comprising:
Whether the CGN plate for detecting the access device is working properly;
When detecting the CGN plate operation irregularity, the NAT business executed by the CGN plate is determined as needing to switch to by institute
State core router execution.
7. a kind of network address conversion device, which is characterized in that be applied to access device, the access device is in DS-Lite framework
In be configured as address family translation router AFTR equipment and customer terminal equipment establishes the first tunnel IPv6;Described device packet
It includes:
Whether business detection module, the network address translation NAT business for detecting the access device need to switch to by core
Router executes;
Service switching module, if for detecting that NAT business needs are switched to and executed by the core router, to this
The corresponding target client terminal equipment of NAT business sends switching notice, makes the target client terminal equipment with the core road
The 2nd tunnel IPv6 is established as new AFTR equipment by device, the data flow of the host of the target client terminal equipment will be accessed
Amount is sent to the core router by the 2nd tunnel IPv6 and carries out NAT conversion.
8. device according to claim 7, which is characterized in that the access device is also communicated with name server, described
Name server records the corresponding relationship for having the tunnel AFTR name and address;The service switching module be specifically used for for it is described
The tunnel target client terminal equipment corresponding target AFTR name sends address update notification to domain name server, makes described
The address of the core router is revised as in address corresponding with target AFTR tunnel name by name server;Described in notice
Target client terminal equipment initiates the analysis request to the tunnel target AFTR name to domain name server, described in obtaining
The address of core router as new AFTR equipment address and establish the 2nd tunnel IPv6 with the core router.
9. a kind of access device, which is characterized in that including processor and machine readable storage medium, the machine readable storage is situated between
Matter is stored with machine-executable instruction, and the machine-executable instruction promotes described when being executed or being called by the processor
Access device realizes method as claimed in any one of claims 1 to 6.
10. a kind of machine readable storage medium, which is characterized in that be stored with machine-executable instruction, the machine is executable to be referred to
It enables when being executed by one or more processors, the processor is promoted to realize method as claimed in any one of claims 1 to 6.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910223527.3A CN110035134B (en) | 2019-03-22 | 2019-03-22 | Network address translation method, device and access equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910223527.3A CN110035134B (en) | 2019-03-22 | 2019-03-22 | Network address translation method, device and access equipment |
Publications (2)
Publication Number | Publication Date |
---|---|
CN110035134A true CN110035134A (en) | 2019-07-19 |
CN110035134B CN110035134B (en) | 2022-04-08 |
Family
ID=67236463
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910223527.3A Active CN110035134B (en) | 2019-03-22 | 2019-03-22 | Network address translation method, device and access equipment |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110035134B (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111343087A (en) * | 2020-02-26 | 2020-06-26 | 深圳市风云实业有限公司 | Reusable multipurpose distributed router system and implementation method |
CN115967935A (en) * | 2021-10-09 | 2023-04-14 | 中国电信股份有限公司 | Method, device, equipment and readable medium for communication between 5G base station and 5GC through NAT gateway |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104283787A (en) * | 2013-07-12 | 2015-01-14 | 中国电信股份有限公司 | Routing method and system |
CN104579729A (en) * | 2013-10-17 | 2015-04-29 | 华为技术有限公司 | CGN (carrier-grade net address translation) single board fault informing method and device |
CN107547672A (en) * | 2017-05-10 | 2018-01-05 | 新华三技术有限公司 | The switching method and device of router |
CN107819889A (en) * | 2016-09-14 | 2018-03-20 | 华为技术有限公司 | A kind of network address translation NAT method, equipment and system |
CN108200199A (en) * | 2018-02-05 | 2018-06-22 | 重庆大学 | SiteServer LBS and method in IPV4 over IPV6 tunnels scene |
US20190068487A1 (en) * | 2016-09-07 | 2019-02-28 | T-Mobile Usa, Inc. | Network address translation in networks using multiple nat devices |
-
2019
- 2019-03-22 CN CN201910223527.3A patent/CN110035134B/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104283787A (en) * | 2013-07-12 | 2015-01-14 | 中国电信股份有限公司 | Routing method and system |
CN104579729A (en) * | 2013-10-17 | 2015-04-29 | 华为技术有限公司 | CGN (carrier-grade net address translation) single board fault informing method and device |
US20190068487A1 (en) * | 2016-09-07 | 2019-02-28 | T-Mobile Usa, Inc. | Network address translation in networks using multiple nat devices |
CN107819889A (en) * | 2016-09-14 | 2018-03-20 | 华为技术有限公司 | A kind of network address translation NAT method, equipment and system |
CN107547672A (en) * | 2017-05-10 | 2018-01-05 | 新华三技术有限公司 | The switching method and device of router |
CN108200199A (en) * | 2018-02-05 | 2018-06-22 | 重庆大学 | SiteServer LBS and method in IPV4 over IPV6 tunnels scene |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111343087A (en) * | 2020-02-26 | 2020-06-26 | 深圳市风云实业有限公司 | Reusable multipurpose distributed router system and implementation method |
CN111343087B (en) * | 2020-02-26 | 2022-02-01 | 深圳市风云实业有限公司 | Reusable multipurpose distributed router system and implementation method |
CN115967935A (en) * | 2021-10-09 | 2023-04-14 | 中国电信股份有限公司 | Method, device, equipment and readable medium for communication between 5G base station and 5GC through NAT gateway |
CN115967935B (en) * | 2021-10-09 | 2024-04-30 | 中国电信股份有限公司 | Method, device, equipment and readable medium for 5G base station to communicate with 5GC through NAT gateway |
Also Published As
Publication number | Publication date |
---|---|
CN110035134B (en) | 2022-04-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11171914B2 (en) | Systems and methods for automatic inventory and DNS record generation | |
CN103051740B (en) | Domain name analytic method, dns server and domain name analysis system | |
US9363229B2 (en) | Domain name resolution for a hybrid cloud cluster | |
US10027623B2 (en) | Internet protocol address resolution | |
Richter et al. | A primer on IPv4 scarcity | |
US20120324063A1 (en) | Method, network device, and system for automatically configuring network device in ipv6 network | |
US8805973B2 (en) | Using routing protocols to migrate a hosted account | |
EP2451125B1 (en) | Method and system for realizing network topology discovery | |
CN105359458B (en) | Network device communications method and the network equipment | |
KR20050086925A (en) | System and method for establishing communication between a client and a server in a heterogenous ip network | |
CN103167045B (en) | Select method, dns server and the DNS management system of network layer protocol | |
CN103339996B (en) | The method that mobile node is connected to network | |
CN103731516B (en) | Dns resolution method and its system based on nested views | |
US11038745B1 (en) | Rapid point of presence failure handling for content delivery networks | |
CN106161667A (en) | A kind of domain name analytic method and device | |
WO2017161965A1 (en) | Method, device, and system for dynamic domain name system (dns) redirection | |
CN103118145B (en) | Based on the IPv4-over-IPv6 Multiple tunnel auto-creating method of DNS | |
CN105282269A (en) | Local DNS root server configuration method and service method | |
CN109120746A (en) | Method for network address translation, device and address-translating device | |
CN110035134A (en) | Method for network address translation, device and access device | |
US8819198B2 (en) | Using static routing to migrate a hosted account | |
US10243920B1 (en) | Internet protocol address reassignment between virtual machine instances | |
CN104717639A (en) | Access method for mobile client to internet and access gateway server | |
CN102137172A (en) | Access method and access device for DNS (Domain Name Server) | |
CN106375489B (en) | Method and device for processing Media Access Control (MAC) address |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20230620 Address after: 310052 11th Floor, 466 Changhe Road, Binjiang District, Hangzhou City, Zhejiang Province Patentee after: H3C INFORMATION TECHNOLOGY Co.,Ltd. Address before: 310052 Changhe Road, Binjiang District, Hangzhou, Zhejiang Province, No. 466 Patentee before: NEW H3C TECHNOLOGIES Co.,Ltd. |