CN110035134A - Method for network address translation, device and access device - Google Patents

Method for network address translation, device and access device Download PDF

Info

Publication number
CN110035134A
CN110035134A CN201910223527.3A CN201910223527A CN110035134A CN 110035134 A CN110035134 A CN 110035134A CN 201910223527 A CN201910223527 A CN 201910223527A CN 110035134 A CN110035134 A CN 110035134A
Authority
CN
China
Prior art keywords
tunnel
aftr
address
terminal equipment
access device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910223527.3A
Other languages
Chinese (zh)
Other versions
CN110035134B (en
Inventor
章靠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Information Technologies Co Ltd
Original Assignee
New H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by New H3C Technologies Co Ltd filed Critical New H3C Technologies Co Ltd
Priority to CN201910223527.3A priority Critical patent/CN110035134B/en
Publication of CN110035134A publication Critical patent/CN110035134A/en
Application granted granted Critical
Publication of CN110035134B publication Critical patent/CN110035134B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/2854Wide area networks, e.g. public data networks
    • H04L12/2856Access arrangements, e.g. Internet access
    • H04L12/2869Operational details of access network equipments
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2592Translation of Internet protocol [IP] addresses using tunnelling or encapsulation

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The disclosure provides a kind of method for network address translation, device and access device, which is configured to address family translation router AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;Method include: detect the access device network address translation NAT business whether need to switch to be executed by core router;If detecting that NAT business needs are switched to be executed by core router, then switching notice is sent to target client terminal equipment corresponding with the NAT business, so that target client terminal equipment is established the 2nd tunnel IPv6 using core router as new AFTR equipment, the data traffic for accessing the host of the target client terminal equipment is sent to core router by the 2nd tunnel IPv6 and carries out NAT conversion.In this way, can realize the NAT translative mode of " centralization " backup " distribution " under DS-Lite scene.

Description

Method for network address translation, device and access device
Technical field
This disclosure relates to which network communication technology field, in particular to a kind of method for network address translation, device and connects Enter equipment.
Background technique
Network address translation (Network Address Translation, abbreviation NAT) is a kind of to map private net address The technology of public network address is converted to, commonly used in alleviating the insufficient awkward situation of IPv4 public network address.Figure 1A is please referred to, in common use Family is surfed the Internet in scene, and subscriber's main station (Host) can pass through customer terminal equipment (Customer Premise Equipment, letter Claim CPE) access Internet Service Provider (Internet Service Provider, abbreviation ISP) network, by ISP network reality Existing NAT business, makes the accessible common network resource of host.ISP network generally includes Broadband Remote Access Server (Broadband Remote Access Server, abbreviation BRAS) and core router (Core Router, abbreviation CR), BRAS and core router all have carrier-class NAT (Carrier-Grade NAT, abbreviation CGN) function.BRAS be usually by Multiple functional cards compositions, and NAT business is executed by its CGN business board, therefore claimed by the mode that BRAS executes NAT business For " distribution " NAT mode;Core router is usually centralized device, therefore executes NAT business by core router Mode is referred to as " centralization " NAT mode.
Summary of the invention
In a first aspect, the disclosure provides a kind of method for network address translation, it is applied to access device, which exists It is configured as AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;The described method includes:
Whether the network address translation NAT business for detecting the access device needs to switch to is held by the core router Row;
If detecting, NAT business needs are switched to and are executed by the core router, to corresponding with the NAT business Target client terminal equipment send switching notice, make the target client terminal equipment using the core router as newly AFTR equipment establishes the 2nd tunnel IPv6, will access the data traffic of the host of the target client terminal equipment by described the Two tunnels IPv6 are sent to the core router and carry out NAT conversion.
Optionally, in the above-mentioned methods, the access device is also communicated with name server, domain name server record There is the corresponding relationship of the tunnel AFTR name and address;Described send to target client terminal equipment corresponding with the NAT business switches The step of notice, comprising:
For with the tunnel target client terminal equipment corresponding target AFTR name, to domain name server send ground Location update notification makes domain name server that the core routing is revised as in address corresponding with target AFTR tunnel name The address of device;
The target client terminal equipment is notified to initiate the solution to the tunnel target AFTR name to domain name server Analysis request, to obtain the address of the core router as the address of new AFTR equipment and be established with the core router 2nd tunnel IPv6.
Optionally, in the above-mentioned methods, described that the target client terminal equipment is notified to initiate to domain name server The step of to the analysis request of the tunnel target AFTR name, comprising:
The target client terminal equipment is notified to delete the DNS cache of the tunnel target AFTR name and take to domain name Business device sends the analysis request of the tunnel target AFTR name.
Optionally, in the above-mentioned methods, the method also includes:
In access device initialization, address update notification is sent to domain name server, takes domain name Address configuration corresponding with each tunnel AFTR name is the address of the access device by business device.
Optionally, in the above-mentioned methods, the method also includes:
When there is host online on detecting the customer terminal equipment for accessing the access device for the first time, to the client terminal Equipment sends the tunnel AFTR name notice, and the customer terminal equipment is made to obtain the corresponding tunnel AFTR name, with to domain name service Device request obtains the address of corresponding AFTR equipment.
Optionally, in the above-mentioned methods, whether the NAT business for detecting the access device needs to switch to by the core The step of heart router executes, comprising:
Whether the CGN plate for detecting the access device is working properly;
When detecting the CGN plate operation irregularity, the NAT business executed by the CGN plate is determined as needing to switch to It is executed by the core router.
Second aspect, the disclosure provide a kind of network address conversion device, are applied to access device, which exists It is configured as AFTR equipment in DS-Lite framework and customer terminal equipment establishes the first tunnel IPv6;Described device includes:
Business detection module, the network address translation NAT business for detecting the access device whether need to switch to by The core router executes;
Service switching module, if being executed for detecting that NAT business needs are switched to by the core router, to Target client terminal equipment corresponding with the NAT business sends switching notice, makes the target client terminal equipment with the core Heart router establishes the 2nd tunnel IPv6 as new AFTR equipment, will access the number of the host of the target client terminal equipment The core router is sent to by the 2nd tunnel IPv6 according to flow and carries out NAT conversion.
Optionally, in above-mentioned apparatus, the access device is also communicated with name server, domain name server record There is the corresponding relationship of the tunnel AFTR name and address;The service switching module is specifically used for being directed to be set with the target client terminal The standby tunnel corresponding target AFTR name sends address update notification to domain name server, makes domain name server will be with It is revised as the address of the core router in name corresponding address in the tunnel the target AFTR;The target client terminal is notified to set The standby analysis request initiated to domain name server to the tunnel target AFTR name, to obtain the ground of the core router Location as new AFTR equipment address and establish the 2nd tunnel IPv6 with the core router.
The third aspect, the disclosure provide a kind of access device, including processor and machine readable storage medium, the machine Readable storage medium storing program for executing is stored with machine-executable instruction, and the machine-executable instruction is being executed or called by the processor When, promote the access device to realize the method for network address translation of disclosure offer.
Fourth aspect, the disclosure provide a kind of machine readable storage medium, are stored with machine-executable instruction, the machine Executable instruction promotes the processor to realize the method for network address translation of disclosure offer when being executed by processor.
Method for network address translation, device and the access device that the embodiment of the present disclosure provides are applied in DS-Lite framework Access device, detect on the access device NAT business needs switch to executed by core router when, notice and should Core router is established the new tunnel IPv6 as new AFTR equipment by the corresponding target client terminal equipment of NAT business, with Make target client terminal equipment that host flow is sent to core router and carries out NAT conversion.In this way, can be at DS-Lite The NAT translative mode of " centralization " backup " distribution " is realized under scape.
Detailed description of the invention
It, below will be to needed in the embodiment attached in order to illustrate more clearly of the technical solution of the embodiment of the present disclosure Figure is briefly described, it should be understood that the following drawings illustrates only some embodiments of the disclosure, therefore is not construed as pair The restriction of range for those of ordinary skill in the art without creative efforts, can also be according to this A little attached drawings obtain other relevant attached drawings.
Figure 1A is a kind of network architecture schematic diagram of existing NAT conversion;
Figure 1B is the schematic diagram of existing " centralization " backup " distribution " NAT mode;
Fig. 2 is the NAT converting structure schematic diagram under a kind of DS-Lite scene;
Fig. 3 is one of the network architecture schematic diagram for the NAT conversion that the embodiment of the present disclosure provides;
Fig. 4 is the flow diagram for the method for network address translation that the embodiment of the present disclosure provides;
Fig. 5 is the two of the network architecture schematic diagram for the NAT conversion that the embodiment of the present disclosure provides;
Fig. 6 is the block diagram for the access device that the embodiment of the present disclosure provides;
Fig. 7 is one of the functional block diagram of network address conversion device that the embodiment of the present disclosure provides;
Fig. 8 is the two of the functional block diagram for the network address conversion device that the embodiment of the present disclosure provides.
Icon: 100- access device;9100-BRAS;110- network address conversion device;111- business detection module; 112- service switching module;113- initialization module;The tunnel 114- name notification module;120- machine readable storage medium;130- Processor;200 (9200)-core router;300 (9300)-host;400 (9400)-public network;500 (9500)-client Terminal device;600- name server;900-ISP network.
Specific embodiment
To keep the purposes, technical schemes and advantages of the embodiment of the present disclosure clearer, below in conjunction with the embodiment of the present disclosure In attached drawing, the technical solution in the embodiment of the present disclosure is clearly and completely described, it is clear that described embodiment is Disclosure a part of the embodiment, instead of all the embodiments.The disclosure being usually described and illustrated herein in the accompanying drawings is implemented The component of example can be arranged and be designed with a variety of different configurations.
Therefore, the detailed description of the embodiment of the disclosure provided in the accompanying drawings is not intended to limit below claimed The scope of the present disclosure, but be merely representative of the selected embodiment of the disclosure.Based on the embodiment in the disclosure, this field is common Technical staff's every other embodiment obtained without making creative work belongs to the model of disclosure protection It encloses.
It should also be noted that similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi It is defined in a attached drawing, does not then need that it is further defined and explained in subsequent attached drawing.
In some actual scenes, as shown in Figure 1A, NAT transformation service, core router are mainly usually realized by BRAS As backup.In addition, please referring to Figure 1B, when the CGN business board of BRAS breaks down, customer flow is drained to core by BRAS Router, executes NAT business on core router, and this backup mode is referred to as " centralization " backup " distribution ".But In DS-Lite scene, since the tunnel being related between equipment is established, " centralization " backup " distribution " generally can not be used NAT service backup mode.
It specifically, referring to figure 2., is a kind of schematic diagram of the NAT converting structure under DS-Lite scene.In DS-Lite frame In structure, the data traffic that host 9300 is sent is possible to using IPv4 address style or IPv6 address style.Customer terminal equipment 9500, when receiving the data traffic of IPv6 address style of the transmission of host 9300, are forwarded directly to ISP network 900, through ISP Network 900 is sent to public network 9400.Customer terminal equipment 9500 is IPv4 in the source address for receiving the transmission of host 9300 When the message of private net address, IPv6 outer envelope can be added for message, and BRAS 9100 is transmitted to by tunnel.BRAS 9100 After receiving message, outer layer IPv6 tunnel encapsulation is removed, the source IP v4 private net address of message internal layer is then converted into IPv4 public affairs Public network 9400 is sent to through core router 9200 after net address.
Due to being related to the tunnel encapsulation processing to IPv4 message in DS-Lite framework, after NAT service switching, The message of customer terminal equipment 9500, which passes through the tunnel IPv6 established originally, still can be sent to BRAS 9100.Therefore DS- The NAT backup mode of " centralization " backup " distribution " can not be directly used in Lite framework.
In view of this, under present embodiments providing a kind of DS-Lite scene, when access device NAT service switching extremely When being handled by core router, the tunnel IPv6 is established with core router by access device notice customer terminal equipment again, from And message is sent to the scheme that core router carries out NAT processing.Scheme provided in this embodiment is explained in detail below It states.
Referring to figure 3., Fig. 3 is a kind of NAT framework of " centralization " backup " distribution " provided in this embodiment, wherein Host 300 can be linked into access device 100 by customer terminal equipment 500, and access device 100 and core router 200 connect It connects, core router 200 accesses public network 400.In the present embodiment, access device 100 can be BRAS, for example, can be with BRAS equipment for the distribution or frame-type that are made of multiple functional boards.In the present embodiment, access device 100 configures The first tunnel IPv6 is established at as AFTR equipment and customer terminal equipment 500.
Referring to figure 4., the present embodiment also provides a kind of network address translation side applied to access device 100 shown in Fig. 1 Method is below described in detail each step of this method.
Step S110, detect the access device 100 network address translation (Network Address Translation, NAT) whether business needs to switch to and be executed by core router 200.
In the present embodiment, NAT business is usually executed by access device 100, however in some scenes, by access device The 100 certain NAT business executed may need partly or entirely to switch to the execution of core router 200.
For example, the NAT business of access device 100 can be by the access device 100 in an example of the present embodiment NAT business board (such as CGN business board) realize.Whether access device 100 can detecte each NAT business board working properly.If When detecting a certain NAT business board operation irregularity, then the NAT business being responsible for by the NAT business board is determined as needing to cut Shift to the target NAT business executed by core router 200.
For another example, because of business demand or maintenance needs, administrator may need to refer in another example of the present embodiment Fixed certain part NAT business is temporarily switched to be executed by core router 200.Access device 100 can be with the behaviour of response management person Make, using NAT business that administrator specifies as the target NAT business for needing to switch to core router 200 and executing.
It should be noted that above-mentioned two situations are only two illustrative examples of the present embodiment, in its of the present embodiment In his example or other scenes, access device 100 can also need to switch to core router 200 by the determination of other means The NAT business of execution.
Step S120, if detecting, NAT business needs are switched to and are executed by core router 200, to the NAT industry Corresponding target client terminal equipment of being engaged in sends switching notice, makes target client terminal equipment using core router 200 as newly AFTR (AddressFamilyTransitionRouter, address family translation router) equipment establish the 2nd tunnel IPv6, with The data traffic for the host 300 for accessing the target client terminal equipment is sent to core router by the 2nd tunnel IPv6 200 carry out NAT conversion.
Optionally, referring once again to Fig. 1, in the present embodiment, access device 100 and customer terminal equipment 500 can be with It is communicated with name server 600, which can be dynamic domain name system (Dynamic Domain Name System, abbreviation DDNS) server, the name server 600 can receive for the tunnel target AFTR name address update ask It asks, changes the address corresponding with target AFTR tunnel name of its record.
In the step s 120, access device 100 can be directed to the tunnel target AFTR corresponding with target client terminal equipment Name sends address update notification (for example, DDNS update request) to name server 600, makes name server 600 will be with It is revised as the address of core router 200 in name corresponding address in the tunnel target AFTR.
Then, access device 100 can notify target client terminal equipment to initiate to name server 600 to target AFTR The analysis request of tunnel name, to obtain the address of core router 200 as the address of new AFTR equipment and be routed with core Device 200 establishes the 2nd tunnel IPv6.
For example, access device 100 can notify the DNS cache of the tunnel target client terminal equipment delete target AFTR name, In this way, target client terminal equipment can send the analysis request of the tunnel target AFTR name to name server 600.Due to this time domain Address corresponding with target AFTR tunnel name is the address of core router 200, target client terminal equipment in name server 600 The address of core router 200 can be got, and the tunnel IPv6 is established by the address and core router 200.Please refer to figure 5, target client terminal equipment can connect the customer terminal equipment 500 after establishing the 2nd tunnel IPv6 with core router 200 The IPv4 message that the host 300 received is sent is sent to core router 200 by the 2nd tunnel IPv6 and carries out NAT conversion.
Based on above equipment, in the present embodiment, when the NAT business on access device 100 needs to switch to core routing When device 200 executes, access device 100 can be by modifying the corresponding address of the tunnel target AFTR name in name server 600 For the address of core router 200, so that target client terminal equipment can get core road from name server 600 By the address of device 200, by core router 200 as new AFTR equipment, the data of host 300 are sent by the tunnel IPv6 NAT conversion is carried out to core router 200.In this way, realizing " centralization " backup " distribution " under DS-Lite framework NAT backup mode.
Optionally, in the present embodiment, access device 100 can record each client terminal and set according to the configuration of administrator The address of the standby 500 corresponding tunnel AFTR names and core router 200.In initialization, which can be to domain name Server 600 send address update notification, make name server 600 will address configuration corresponding with each tunnel AFTR name this connect Enter the address of equipment 100.
Subsequent, access device 100, which is detected for the first time on the customer terminal equipment 500 for access to access device 100, host 300 it is online when, can to the customer terminal equipment 500 send the tunnel AFTR name notice, inform customer terminal equipment 500 establish The tunnel AFTR name needed for the tunnel IPv6.It, can be to domain name service after customer terminal equipment 500 obtains the corresponding tunnel AFTR name Device 600 requests to obtain the address of corresponding AFTR equipment.Since the tunnel the AFTR name recorded in name server 600 at this time is corresponding Address be access device 100 address, access device 100 can establish IPv6 as AFTR equipment by customer terminal equipment 500 Tunnel, and the IPv4 message that host 300 is sent is sent to access device 100 and carries out NAT conversion.
Fig. 6 is please referred to, Fig. 6 is a kind of hardware structural diagram of access device 100 provided in this embodiment.The access is set Standby 100 may include processor 130 and machine readable storage medium 120.Processor 130 and machine readable storage medium 120 can be through It is communicated by system bus.Also, machine readable storage medium 120 is stored with machine-executable instruction, by reading and executing machine Machine-executable instruction corresponding with network address translation logic in device readable storage medium storing program for executing 120, processor 130 are executable above The method for network address translation of description.
Machine readable storage medium 120 referred to herein can be any electronics, magnetism, optics or other physical stores Device may include or store information, such as executable instruction, data, etc..For example, machine readable storage medium 120 can be with It is: RAM (Radom Access Memory, random access memory), volatile memory, nonvolatile memory, flash memory, deposits Store up driver (such as hard disk drive), solid state hard disk, any kind of storage dish (such as CD, dvd) or similar storage Medium or their combination.
Fig. 7 is please referred to, the present embodiment also provides a kind of network address conversion device 110, and network address conversion device 110 wraps Include at least one functional module that can be stored in a software form in machine readable storage medium 120.It functionally divides, network Address converting device 110 may include business detection module 111 and service switching module 112.
Whether the network address translation NAT business that business detection module 111 is used to detect the access device 100 needs to switch Extremely executed by core router 200.
In the present embodiment, business detection module 111 can be used for executing step S110 shown in Fig. 4, detect mould about business The specific descriptions of block 111 can join the description to step S110.
Service switching module 112, if being executed for detecting that NAT business needs are switched to by core router 200, Switching notice is sent to target client terminal equipment corresponding with the NAT business, routes target client terminal equipment with core Device 200 establishes the 2nd tunnel IPv6 as new AFTR equipment, will access the number of the host 300 of the target client terminal equipment Core router 200 is sent to by the 2nd tunnel IPv6 according to flow and carries out NAT conversion.
In the present embodiment, service switching module 112 can be used for executing step S120 shown in Fig. 4, about service switching mould The specific descriptions of block 112 can join the description to step S120.
Optionally, in the present embodiment, access device 100 is also communicated with name server 600, and name server 600 is remembered Record has the corresponding relationship of the tunnel AFTR name and address;Service switching module 112 is specifically used for being directed to and target client terminal equipment The tunnel corresponding target AFTR name sends address update notification to name server 600, makes name server 600 will be with target It is revised as the address of core router 200 in name corresponding address in the tunnel AFTR;Notify target client terminal equipment to domain name service Device 600 is initiated to the analysis request of the tunnel target AFTR name, to obtain the address of core router 200 as new AFTR equipment Address and establish the 2nd tunnel IPv6 with core router 200.
Optionally, in the present embodiment, service switching module 112 notifies target client terminal equipment delete target AFTR tunnel The DNS cache of road name makes target client terminal equipment send the analysis request of the tunnel target AFTR name to name server 600.
Optionally, Fig. 8 is please referred to, in the present embodiment, network address conversion device 110 can also include initialization module 113。
Initialization module 113 is used for when access device 100 initializes, and is sent address to name server 600 and is updated and leads to Know, makes name server 600 by the address of address configuration access device 100 corresponding with each tunnel AFTR name.
Optionally, Fig. 8 is please referred to again, and in the present embodiment, network address conversion device 110 can also include tunnel name Notification module 114.
Tunnel name notification module 114 is used on the customer terminal equipment 500 for detecting access access device 100 for the first time have When host 300 is online, the tunnel AFTR name notice is sent to the customer terminal equipment 500, makes the customer terminal equipment 500 acquisition pair The tunnel the AFTR name answered, to request to obtain the address of corresponding AFTR equipment to name server 600.
Optionally, in the present embodiment, business detection module 111 is specifically used for the NAT business board of detection access device 100 Whether working properly block;It is when detecting NAT business board operation irregularity, the NAT business executed by the NAT business board is true It is set to needs and switches to the NAT business executed by core router 200.
In conclusion method for network address translation, device and access device that the embodiment of the present disclosure provides, are applied to DS- Access device in Lite framework is detecting the NAT service switching on the access device to by core road by access device When being executed by device, notify target client terminal equipment corresponding with the NAT business using core router as new AFTR equipment The new tunnel IPv6 is established, so that host flow is sent to core router by target client terminal equipment carries out NAT conversion.Such as This, realizes the NAT translative mode of " centralization " backup " distribution " under DS-Lite scene.
In the embodiment provided by the disclosure, it should be understood that disclosed device and method, it can also be by other Mode realize.The apparatus embodiments described above are merely exemplary, for example, the flow chart and block diagram in attached drawing are shown According to device, the architectural framework in the cards of method and computer program product, function of multiple embodiments of the disclosure And operation.In this regard, each box in flowchart or block diagram can represent one of a module, section or code Point, a part of the module, section or code includes one or more for implementing the specified logical function executable Instruction.It should also be noted that function marked in the box can also be attached to be different from some implementations as replacement The sequence marked in figure occurs.For example, two continuous boxes can actually be basically executed in parallel, they sometimes may be used To execute in the opposite order, this depends on the function involved.It is also noted that each of block diagram and or flow chart The combination of box in box and block diagram and or flow chart can be based on the defined function of execution or the dedicated of movement The system of hardware is realized, or can be realized using a combination of dedicated hardware and computer instructions.
In addition, each functional module in each embodiment of the disclosure can integrate one independent portion of formation together Point, it is also possible to modules individualism, an independent part can also be integrated to form with two or more modules.
It, can be with if the function is realized and when sold or used as an independent product in the form of software function module It is stored in a computer readable storage medium.Based on this understanding, the technical solution of the disclosure is substantially in other words The part of the part that contributes to existing technology or the technical solution can be embodied in the form of software products, the meter Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be a People's computer, server or network equipment etc.) execute each embodiment the method for the disclosure all or part of the steps. And storage medium above-mentioned includes: that USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), arbitrary access are deposited The various media that can store program code such as reservoir (RAM, Random Access Memory), magnetic or disk.
It should be noted that, in this document, relational terms such as first and second and the like are used merely to a reality Body or operation are distinguished with another entity or operation, are deposited without necessarily requiring or implying between these entities or operation In any actual relationship or order or sequence.Moreover, the terms "include", "comprise" or its any other variant are intended to Non-exclusive inclusion, so that the process, method, article or equipment including a series of elements is not only wanted including those Element, but also including other elements that are not explicitly listed, or further include for this process, method, article or equipment Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that There is also other identical elements in process, method, article or equipment including the element.
The above, the only various embodiments of the disclosure, but the protection scope of the disclosure is not limited thereto, it is any Those familiar with the art can easily think of the change or the replacement in the technical scope that the disclosure discloses, and should all contain It covers within the protection scope of the disclosure.Therefore, the protection scope of the disclosure shall be subject to the protection scope of the claim.

Claims (10)

1. a kind of method for network address translation, which is characterized in that be applied to access device, the access device is in DS-Lite framework In be configured as address family translation router AFTR equipment and customer terminal equipment establishes the first tunnel IPv6;The method packet It includes:
Whether the network address translation NAT business for detecting the access device needs to switch to be executed by core router;
If detecting that NAT business needs are switched to be executed by the core router, to target corresponding with the NAT business Customer terminal equipment sends switching notice, sets the target client terminal equipment using the core router as new AFTR Standby to establish the 2nd tunnel IPv6, the data traffic that will access the host of the target client terminal equipment passes through the 2nd IPv6 Tunnel is sent to the core router and carries out NAT conversion.
2. described the method according to claim 1, wherein the access device is also communicated with name server Name server records the corresponding relationship for having the tunnel AFTR name and address;It is described whole to target customer corresponding with the NAT business End equipment sends the step of switching notice, comprising:
For with the tunnel target client terminal equipment corresponding target AFTR name, to domain name server send address more New notice, makes domain name server that the core router is revised as in address corresponding with target AFTR tunnel name Address;
The target client terminal equipment is notified to ask to the initiation of domain name server to the parsing of the tunnel target AFTR name It asks, to obtain the address of the core router as the address of new AFTR equipment and described in establishing with the core router 2nd tunnel IPv6.
3. according to the method described in claim 2, it is characterized in that, described notify the target client terminal equipment to the domain The step of name server initiates the analysis request to the tunnel target AFTR name, comprising:
The target client terminal equipment is notified to delete the DNS cache of the tunnel target AFTR name and to domain name server Send the analysis request of the tunnel target AFTR name.
4. according to the method described in claim 2, it is characterized in that, the method also includes:
In access device initialization, address update notification is sent to domain name server, makes domain name server It is the address of the access device by address configuration corresponding with each tunnel AFTR name.
5. according to the method described in claim 4, it is characterized in that, the method also includes:
When there is host online on detecting the customer terminal equipment for accessing the access device for the first time, to the customer terminal equipment The tunnel AFTR name notice is sent, so that the customer terminal equipment is obtained the corresponding tunnel AFTR name, to ask to domain name server Ask the address for obtaining corresponding AFTR equipment.
6. the method according to claim 1, wherein whether the NAT business for detecting the access device needs Switch to the step of being executed by the core router, comprising:
Whether the CGN plate for detecting the access device is working properly;
When detecting the CGN plate operation irregularity, the NAT business executed by the CGN plate is determined as needing to switch to by institute State core router execution.
7. a kind of network address conversion device, which is characterized in that be applied to access device, the access device is in DS-Lite framework In be configured as address family translation router AFTR equipment and customer terminal equipment establishes the first tunnel IPv6;Described device packet It includes:
Whether business detection module, the network address translation NAT business for detecting the access device need to switch to by core Router executes;
Service switching module, if for detecting that NAT business needs are switched to and executed by the core router, to this The corresponding target client terminal equipment of NAT business sends switching notice, makes the target client terminal equipment with the core road The 2nd tunnel IPv6 is established as new AFTR equipment by device, the data flow of the host of the target client terminal equipment will be accessed Amount is sent to the core router by the 2nd tunnel IPv6 and carries out NAT conversion.
8. device according to claim 7, which is characterized in that the access device is also communicated with name server, described Name server records the corresponding relationship for having the tunnel AFTR name and address;The service switching module be specifically used for for it is described The tunnel target client terminal equipment corresponding target AFTR name sends address update notification to domain name server, makes described The address of the core router is revised as in address corresponding with target AFTR tunnel name by name server;Described in notice Target client terminal equipment initiates the analysis request to the tunnel target AFTR name to domain name server, described in obtaining The address of core router as new AFTR equipment address and establish the 2nd tunnel IPv6 with the core router.
9. a kind of access device, which is characterized in that including processor and machine readable storage medium, the machine readable storage is situated between Matter is stored with machine-executable instruction, and the machine-executable instruction promotes described when being executed or being called by the processor Access device realizes method as claimed in any one of claims 1 to 6.
10. a kind of machine readable storage medium, which is characterized in that be stored with machine-executable instruction, the machine is executable to be referred to It enables when being executed by one or more processors, the processor is promoted to realize method as claimed in any one of claims 1 to 6.
CN201910223527.3A 2019-03-22 2019-03-22 Network address translation method, device and access equipment Active CN110035134B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910223527.3A CN110035134B (en) 2019-03-22 2019-03-22 Network address translation method, device and access equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910223527.3A CN110035134B (en) 2019-03-22 2019-03-22 Network address translation method, device and access equipment

Publications (2)

Publication Number Publication Date
CN110035134A true CN110035134A (en) 2019-07-19
CN110035134B CN110035134B (en) 2022-04-08

Family

ID=67236463

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910223527.3A Active CN110035134B (en) 2019-03-22 2019-03-22 Network address translation method, device and access equipment

Country Status (1)

Country Link
CN (1) CN110035134B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111343087A (en) * 2020-02-26 2020-06-26 深圳市风云实业有限公司 Reusable multipurpose distributed router system and implementation method
CN115967935A (en) * 2021-10-09 2023-04-14 中国电信股份有限公司 Method, device, equipment and readable medium for communication between 5G base station and 5GC through NAT gateway

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104283787A (en) * 2013-07-12 2015-01-14 中国电信股份有限公司 Routing method and system
CN104579729A (en) * 2013-10-17 2015-04-29 华为技术有限公司 CGN (carrier-grade net address translation) single board fault informing method and device
CN107547672A (en) * 2017-05-10 2018-01-05 新华三技术有限公司 The switching method and device of router
CN107819889A (en) * 2016-09-14 2018-03-20 华为技术有限公司 A kind of network address translation NAT method, equipment and system
CN108200199A (en) * 2018-02-05 2018-06-22 重庆大学 SiteServer LBS and method in IPV4 over IPV6 tunnels scene
US20190068487A1 (en) * 2016-09-07 2019-02-28 T-Mobile Usa, Inc. Network address translation in networks using multiple nat devices

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104283787A (en) * 2013-07-12 2015-01-14 中国电信股份有限公司 Routing method and system
CN104579729A (en) * 2013-10-17 2015-04-29 华为技术有限公司 CGN (carrier-grade net address translation) single board fault informing method and device
US20190068487A1 (en) * 2016-09-07 2019-02-28 T-Mobile Usa, Inc. Network address translation in networks using multiple nat devices
CN107819889A (en) * 2016-09-14 2018-03-20 华为技术有限公司 A kind of network address translation NAT method, equipment and system
CN107547672A (en) * 2017-05-10 2018-01-05 新华三技术有限公司 The switching method and device of router
CN108200199A (en) * 2018-02-05 2018-06-22 重庆大学 SiteServer LBS and method in IPV4 over IPV6 tunnels scene

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111343087A (en) * 2020-02-26 2020-06-26 深圳市风云实业有限公司 Reusable multipurpose distributed router system and implementation method
CN111343087B (en) * 2020-02-26 2022-02-01 深圳市风云实业有限公司 Reusable multipurpose distributed router system and implementation method
CN115967935A (en) * 2021-10-09 2023-04-14 中国电信股份有限公司 Method, device, equipment and readable medium for communication between 5G base station and 5GC through NAT gateway
CN115967935B (en) * 2021-10-09 2024-04-30 中国电信股份有限公司 Method, device, equipment and readable medium for 5G base station to communicate with 5GC through NAT gateway

Also Published As

Publication number Publication date
CN110035134B (en) 2022-04-08

Similar Documents

Publication Publication Date Title
US11171914B2 (en) Systems and methods for automatic inventory and DNS record generation
CN103051740B (en) Domain name analytic method, dns server and domain name analysis system
US9363229B2 (en) Domain name resolution for a hybrid cloud cluster
US10027623B2 (en) Internet protocol address resolution
Richter et al. A primer on IPv4 scarcity
US20120324063A1 (en) Method, network device, and system for automatically configuring network device in ipv6 network
US8805973B2 (en) Using routing protocols to migrate a hosted account
EP2451125B1 (en) Method and system for realizing network topology discovery
CN105359458B (en) Network device communications method and the network equipment
KR20050086925A (en) System and method for establishing communication between a client and a server in a heterogenous ip network
CN103167045B (en) Select method, dns server and the DNS management system of network layer protocol
CN103339996B (en) The method that mobile node is connected to network
CN103731516B (en) Dns resolution method and its system based on nested views
US11038745B1 (en) Rapid point of presence failure handling for content delivery networks
CN106161667A (en) A kind of domain name analytic method and device
WO2017161965A1 (en) Method, device, and system for dynamic domain name system (dns) redirection
CN103118145B (en) Based on the IPv4-over-IPv6 Multiple tunnel auto-creating method of DNS
CN105282269A (en) Local DNS root server configuration method and service method
CN109120746A (en) Method for network address translation, device and address-translating device
CN110035134A (en) Method for network address translation, device and access device
US8819198B2 (en) Using static routing to migrate a hosted account
US10243920B1 (en) Internet protocol address reassignment between virtual machine instances
CN104717639A (en) Access method for mobile client to internet and access gateway server
CN102137172A (en) Access method and access device for DNS (Domain Name Server)
CN106375489B (en) Method and device for processing Media Access Control (MAC) address

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20230620

Address after: 310052 11th Floor, 466 Changhe Road, Binjiang District, Hangzhou City, Zhejiang Province

Patentee after: H3C INFORMATION TECHNOLOGY Co.,Ltd.

Address before: 310052 Changhe Road, Binjiang District, Hangzhou, Zhejiang Province, No. 466

Patentee before: NEW H3C TECHNOLOGIES Co.,Ltd.