CN1487704A - Network address converting data output method - Google Patents
Network address converting data output method Download PDFInfo
- Publication number
- CN1487704A CN1487704A CNA031558526A CN03155852A CN1487704A CN 1487704 A CN1487704 A CN 1487704A CN A031558526 A CNA031558526 A CN A031558526A CN 03155852 A CN03155852 A CN 03155852A CN 1487704 A CN1487704 A CN 1487704A
- Authority
- CN
- China
- Prior art keywords
- data
- mapping relations
- data output
- packet
- network address
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The network address converting data output method includes the following steps: setting several data output ports for network address converting equipment; establishing the mapping relation records between the upstream data package header information and the data output ports and forming mapping relation table of all the mapping relation records; and indexing said mapping relation table based on the header information of all the upstream data package to look for the data output port corresponding to the header information of the data package for the output of the data package. The present invention makes it possible for several users to share the total bandwidth provided by several data output ports and to avoid jamming of data flow.
Description
Technical field
The present invention relates to the data communication field, particularly relate to a kind of implementation method of network address translation data output.
Background technology
In data communication system, network address translation (NAT, Network AddressTranslation) technology can be hidden the IP address of each local area network (LAN) inside; And after the private IP address by conversion local area network (LAN) inside is legitimate ip address, the Internet network that visit is outside; Simultaneously can also limit and manage the visit of external network, thereby protect the safety of internal lan effectively, play the management role of internal/outer network exchanges data internal lan.In addition, the NAT technology can also be used to solve the problem of present Ipv4 address resource deficiency, therefore plays an important role in the data communication evolution.
At present, in such as network equipments such as router, Web current load balancing equipment, dynamic firewalls, all be provided with nat feature, the legitimate ip address between source IP address in the local area network (LAN) and net is carried out bi-directional conversion.
NAT comprises three types: static NAT (Static NAT), pooled NAT (Pooled NAT) and Port-Level NAT (Network Address Port Translation).
Wherein static NAT is be provided with the simplest and be easy to a kind ofly, and each main frame in the internal network all forever is mapped to certain legal IP address in the external network.
Pooled NAT then is externally to have defined a series of legitimate ip address in the network, adopts the method for dynamic assignment to be mapped to internal network.
Port-Level NAT is meant that all connections with local area network (LAN) inside all are mapped on the independent legal IP address of external network, an additional TCP/UDP port numbers by the NAT unified distribution on this independent legal IP address is used for the packet of local area network (LAN) inside is sent by the TCP/UDP port of conversion by the NAT unified distribution simultaneously.Connect the different TCP/UDP port numbers of link assignment by NAT to each and distinguish different connection links.
Generally all have a plurality of data-in ports and a data output port in the NAT device at present, by in NAT device, safeguarding a state table (NAT Table), the source IP address of local area network (LAN) internal data bag is converted to legitimate ip address, and after the source TCP/UDP port numbers of this packet input is converted to the TCP/UDP port numbers of NAT unified distribution, output to external network.
With reference to Fig. 1, be the schematic diagram of packet conversion between local area network (LAN) and the external network: when the inner source IP address of the local area network (LAN) main frame that is 10.0.0.10 sends a packet to external network, at first in this local area network (LAN), encapsulating the source IP address S=10.0.0.10 that finishes, source TCP/UDP port numbers Sport=3017, packet { S=10.0.0.10, the Sport=3017 of purpose IP address d=138.76.29.7 and purpose TCP/UDP port numbers dpoft=23; D=138.76.29.7, dporr=23} mail to the NAT device in this local area network (LAN); By this NAT device this packet is changed, source IP address S=10.0.0.10 in this packet is converted to legitimate ip address S=138.76.28.4, the source TCP/UDP port numbers Sport=3017 in this packet is converted to the TCP/UDP port numbers Sport=1024 of NAT unified distribution; NAT device is packet { S=138.76.28.4, Sport=1024 after changing then; D=138.76.29.7 mails to external network behind the dport=23}.
When being sent packet to the respective host of this local area network (LAN) inside by external network, packet will carry out the processing of inverse process through NAT device the time, promptly legitimate ip address is converted to source IP address.Equally with reference to Fig. 1, when IP address in the external network be the main frame of 138.76.29.7 send packet to local area network (LAN) in private IP address when being the main frame of 10.0.0.10, packet is { S=138.76.29.7, Sport=23; D=138.76.28.4, when dport=1024} arrives NAT device in this local area network (LAN), legitimate ip address d=138.76.28.4 is converted to source IP address d=10.0.0.10, purpose TCP/UDP port numbers dport=1024 is converted to corresponding source TCP/UDP port numbers dporr=3017; NAT device is packet { S=138.76.29.7, Sport=23 after changing then; D=10.0.0.10, dport=3017} send among the main frame 10.0.0.10.
In each NAT device, all include between a plurality of source IP addresss and the legitimate ip address in the state table of being safeguarded, the mapping relations between the TCP/UDP port numbers of multiple source TCP/UDP port numbers and NAT unified distribution.When each NAT device is transmitted each packet, all to carry out table lookup operation, index corresponding TCP/UDP port numbers and IP address packet is carried out corresponding conversion according to the header packet information of packet.
But that the TCP/UDP port by NAT unified distribution all only is set is corresponding with inner a plurality of data-in ports as data-out port for each NAT device at present, makes all interior users of local area network (LAN) can only share a data output port.When having a plurality of users to send packet simultaneously in the local area network (LAN) to NAT device, problem of the link bandwidth deficiency that is provided by a data output port just may be provided for this, make multi-user's packet take place congested at this data-out port place, thereby may cause the packet conversion speed slowly or the generation of packet loss phenomenon, cause the instability of NAT device performance.
Summary of the invention
The technical problem to be solved in the present invention is to propose a kind of a plurality of data-out ports that are provided with in NAT device, avoids data traffic that congested network address translation data output method takes place.
For addressing the above problem, the present invention proposes a kind of network address translation data output method, comprise the following steps:
(1) for network address translation apparatus a plurality of data-out ports is set;
(2) set up the header packet information of upstream data bag and the mapping relations record of each data-out port, all mapping relations records form the mapping relations table;
(3) according to the mapping relations table of the header packet information index step (2) of each upstream data bag, find the data-out port corresponding and export this packet with the header packet information of this packet.
Wherein further comprise step in the above-mentioned steps (3):
(31) check the header packet information of each upstream data bag;
(32), judge whether to find the data-out port corresponding, if utilize the data-out port that finds to export this upstream data bag with this header packet information according to the described mapping relations table of the header packet information index in the step (31); If not, in described a plurality of data-out ports, find out current data flow minimal data output port and export this upstream data bag.
Wherein further comprise step in the above-mentioned steps (32):
(41) be respectively each data-out port a counter is set;
(42) mapping relations record of the every increase of each data-out port, corresponding counter add 1 operation;
(43) check the count value that each counter is current respectively, find out the counter of count value minimum, the data-out port under this counter as current data flow minimal data output port.
Wherein further comprise step in the above-mentioned steps (43):
(61) set up the header packet information of upstream data bag of the data-out port output under the counter of count value minimum and the mapping relations record of this data-out port, and add in the described mapping relations table;
(62) counter to the count value minimum that finds out adds 1 operation.
Described method comprises also that at interval the mapping relation table is safeguarded cycle time the mapping relations record that does not have indexed mistake is at the appointed time carried out deletion action, and described deletion action realizes as follows:
(81) be respectively every mapping relations recording setting state parameter in the mapping relations table, and all state parameters all are set to 0;
(82) at interval the state parameter of every mapping relations record is added 1 operation cycle time;
(83) every mapping relations write down at every turn when indexed, and the state parameter of this mapping relations record is put 0;
(84) if the state parameter of mapping relations record more than or equal to a regulation constant, is then deleted this mapping relations record from the mapping relations table.
Said method comprises that also the counter that the mapping relations of deleting are write down on the pairing data-out port subtracts 1 operation.
Beneficial effect of the present invention: because the present invention is provided with a plurality of data-out ports in NAT device, many data output links are provided, thereby have solved problems such as the bandwidth deficiency that tradition is caused by a data output port dateout bag, congestion of data flow.A plurality of users of while can also carry out multiplexing between a plurality of data-out ports that are provided with, and share the total bandwidth that a plurality of data-out ports provide.
Description of drawings
Fig. 1 is the schematic diagram of network address port transfer process in the prior art;
Fig. 2 is the NAT device simple structure schematic diagram of network address translation data output method specific embodiment of the present invention;
Fig. 3 is the most initial mapping relations hoist pennants of network address translation data output method specific embodiment of the present invention;
Fig. 4 is the overall flow figure of network address translation data output method specific embodiment scheme of the present invention;
Fig. 5 is the flow chart of in the network address translation data output method specific embodiment of the present invention the mapping relation record being deleted.
Embodiment
NAT device is meant the equipment with nat feature, for solving at present owing to only having a data output port in the NAT device when causing the multidata bag to export simultaneously, issuable congestion phenomenon, need to improve existing NAT device data-out port number is set, as 2,3,4 or more data output port can be set.
At first a plurality of data-out ports are set for network address translation apparatus.With reference to Fig. 2, it is the rough schematic that NAT device is provided with 4 data output ports, among the figure to 4 data output ports defined nucleotide sequences number, i.e. data-out port 1 (Port1), data-out port 2 (Port2), data-out port 3 (Port3) and data-out port 4 (Port4) respectively; Come up packet is carried out exporting to external network, upstream data bag described here is meant by the packet of internal network to outside Network Transmission, internal network is at first the data-in port input of the packet of encapsulation by NAT device, after the process NAT device carries out the IP address transition, by 4 one of them outputs of data output port.
Set up the header packet information of upstream data bag and the mapping relations record of each data-out port once more.Here all mapping relations record form mapping relations tables at first to 4 data output ports of this NAT device to setting up a mapping relations table by the residing internal network of NAT device packet attribute commonly used.With reference to Fig. 3, set up 4 mapping relations records, every record comprises packet source IP address, purpose IP address, the one-to-one relationship of type of data packet and data output end slogan; Then the mapping relations table of setting up is stored in the internal memory.Wherein packet source IP address, purpose IP address, information such as type of data packet are included in the header packet information of each packet, thus intercepted data packet is only needed the extraction and analysis header packet information at every turn, again according to the header packet information index mapping relations table that obtains.Be state parameter of every mapping relations recording setting simultaneously, be used for identifying the user mode of each bar mapping relations record, and at first all give same initial value 0 all state parameters.
For each data-out port of this NAT device is provided with a counter respectively, be used for identifying the size of the data traffic of each data-out port, and, determine the initial value of each counter respectively according to each data-out port number that corresponding mapping relations write down in the mapping relations table.If the mapping relations table is shown in Figure 3, then the initial value of the counter on data-out port Port1, Port2, Port3 and the Port4 all is 1, because the number of the mapping relations record corresponding with each data-out port all is one in this mapping relations table.
For each follow-up upstream data bag, the header packet information index mapping relations table according to this upstream data bag finds the data-out port corresponding with the header packet information of this packet and exports this packet.
With reference to Fig. 4, be the overall process flow chart of a kind of network address translation data output method of the present invention.In step 10, NAT device carries out capturing operation to each packet through self.
In the step 20, judge whether each packet of intercepting and capturing belongs to the upstream data bag, and judgment mode is the data-in port type according to intercepted data packet, if data-in port is masked as LOCAL, just can be judged as the upstream data bag; If it is exactly downlink data packet that data-in port is masked as GLOBAL.Wherein data-in port sign LOCAL or GLOBAL are to be determined by the configuration of NAT.If judged result is for being execution in step 30; If the result is for denying execution in step 70.
In the step 30, read the header packet information of analyzing each packet, for example from the header packet information of each packet, extract the type information etc. of source IP address, purpose IP address and this packet of this packet.
In the step 40, according to the type information of source IP address, purpose IP address and this packet of this packet that obtains in the step 30, whether index has all identical mapping relations record of type information with source IP address, purpose IP address and this packet of this packet in the mapping relations table of storage; If index, forward step 50 to; If do not index, forward step 80 to.
In the step 50, the mapping relations record corresponding data output end slogan all identical with the type information of source IP address, purpose IP address and this packet of this packet in the mapping relations table that indexes in the step 40 fed back to this packet, and export this packet by this data-out port.
In the step 60, the state parameter of the mapping relations record all identical with the type information of source IP address, purpose IP address and this packet of this packet in the mapping relations table that indexes in the step 40 is put 0, be used for representing that these mapping relations write down nearest indexed mistake.
In the step 70,, packet is carried out reverse IP address transition according to the normal conversion regime of NAT if packet is downlink data packet (promptly being transferred to the packet of internal network from external network).
In the step 80, check the count value that each counter is current respectively, find out the counter of count value minimum, the data-out port under this counter as current data flow minimal data output port, and is exported this packet by this data-out port.
In the step 90, the rolling counters forward numerical value minimal data output port that finds in the header packet information (type information that comprises source IP address, purpose IP address and this packet of this packet) of this packet and the step 80 is set up a mapping relations record, and this mapping relations record is added in the mapping relations table.Simultaneously the state parameter of this mapping relations record is put 0, be used for representing that these mapping relations write down firm indexed mistake once.
In the step 100, the counter of the count value minimum that finds in the step 80 is added 1 operation, be used for representing and to increase the affiliated data-out port of a mapping relations record and this counter corresponding.
If in the step 80, all equate through checking the count value that all counters obtain the individual count device, then start anew in proper order to select according to the data output end slogan.
According to Fig. 2 and shown in Figure 3, when NAT device receives a upstream data bag, if through extracting the header packet information of this packet, the source IP address that obtains this packet is that 10.0.0.1, purpose IP address are 192.168.0.1, and this type of data packet is TCP (Transmission ControlProtocol) packet.The mapping relations table shown in Figure 3 according to these header packet information index, through index, finding data-out port that should the packet header packet information is Port2, then with this packet by data-out port Port2 output.The state parameter of this mapping relations record that will index simultaneously puts 0.
If NAT device receives another one upstream data bag, if through extracting the header packet information of this packet, the source IP address that obtains this packet is that 10.0.0.3, purpose IP address are 192.168.1.1, and this type of data packet is UDP (User Datagram Protocol) packet.According to these header packet information index mapping relations tables, with the data-out port of searching less than correspondence, further operation is the count value of checking 4 counters on the data output port, find out the counter of count value minimum, and the output port of the data-out port under this counter as this packet.Because the count value of the counter in the mapping relations table shown in Figure 3 on each data-out port all is 1, so abide by the principle that the data output end slogan is selected in proper order, begin to distribute from Port1, Port1 is distributed to this packet as its data-out port.
Be the source IP address of this packet that 10.0.0.3, purpose IP address are 192.168.1.1 simultaneously, type of data packet is that header packet information and the data-out port Port1 of UDP sets up a mapping relations record; And this mapping relations record added in the mapping relations table.Further also to add 1 operation to the counter on the Port1.After promptly finishing aforesaid operations, the present count value of the counter on the Port1 is 2, is illustrated in to have two mapping relations records corresponding with Port1 in the mapping relations table.
With reference to Fig. 5, can also further there be the mapping relations record of indexed mistake to carry out deletion action at the appointed time to some of shining upon in the relation table.Be provided with and cycle time the mapping relation table carried out the loop cycle maintenance, everyly reach time one-period, be provided with regularly and interrupt, in break period, the maintenance state of mapping relations table is changed to " feasible ", the mapping relation table is carried out updating maintenance, and then the maintenance state of mapping relations table is changed to " infeasible ", in order to when the subsequent cycle time arrives, maintenance state to the mapping relation table is changed to " feasible " again, and the mapping relation table is carried out updating maintenance.
In the step 160, judge at first whether the current maintenance state of mapping relations table is " feasible "; If, forward step 180 to, if not, continue execution in step 160, be in wait state, after the maintenance state of mapping relations table is " feasible ", continue to carry out downwards.
In the step 180, check each bar mapping relations record in the mapping relations table one by one, at first the state parameter to article one mapping relations record adds 1 operation;
In the step 200, the state parameter of article one mapping relations record is judged that whether see its current state parameter more than or equal to n, n is a natural number; If execution in step 220 if not, does not deal with this article one mapping relations record, rotate back into and be in wait state in the step 160.
In the step 220, this article one mapping relations record is deleted from the mapping relations table.
In the step 240, the mapping relations of deletion in the step 220 are write down counter on the pairing data-out port subtract 1 operation, mapping relations record that should data-out port is reduced one with expression.
In the step 260, continue next the bar mapping relations record in the mapping relation table is carried out the judgement of state parameter, transfer back in the step 180.
Up in this cycle, all the mapping relations record complete inspections in the mapping relations table are finished, wait for the updating maintenance that enters following one-period then.
If is set cycle time was 5 seconds, carried out once to shining upon the updating maintenance of relation table.Per operation in 5 seconds is once interrupted, maintenance state with the mapping relations table is changed to " feasible " then, further mapping relations table is as shown in Figure 2 safeguarded, check the state parameter of each bar mapping relations record one by one, and the state parameter that one by one each bar mapping relations is write down adds 1 operation.As to { 10.0.0.2; 192.168.255.0; The UDP message bag; These mapping relations of Port4} write down weekly the phase add 1 the operation, all do not have indexed mistake in a period of time if these mapping relations are recorded in, the numerical value of its state parameter will add up; Phase is once judged weekly then, see that whether the current state parameter of this mapping relations record is more than or equal to a certain natural number n, if more than or equal to n, prove that then this mapping relations record is not having indexed mistake (each when indexed because every mapping relations write down in second more than or equal to 5 * n, its state parameter all can be put 0), so processing deleted in this mapping relations record.Simultaneously the counter on the Port4 is subtracted 1 operation, expression reduces by a mapping relations record corresponding with Port4.
Network address translation data output method of the present invention by a plurality of data-out ports are set, and is provided with a counter, to identify the size of each data-out port data traffic on each data-out port in NAT device; And set up mapping relations record between each data-out port and each packet header packet information, form the mapping relations table; And be every mapping relations recording setting state parameter in the mapping relations table, to identify every current user mode of mapping relations record; And every mapping relations record is carried out deletion action according to the numerical values recited of the state parameter of every mapping relations record.Based on the updating maintenance operation of this dynamic interpolation of mapping relations table and deletion, finish the purpose of NAT device multiport output upstream data bag, a plurality of packets can dynamically be shared the total bandwidth that a plurality of data-out ports provide simultaneously.Solved the flow congestion problem that all packets in the NAT device in the past can only cause by the output of individual data output port.
The above only is a preferred implementation of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.
Claims (10)
1, a kind of network address translation data output method is characterized in that, comprises the following steps:
(1) for network address translation apparatus a plurality of data-out ports is set;
(2) set up the header packet information of upstream data bag and the mapping relations record of each data-out port, all mapping relations records form the mapping relations table;
(3) according to the mapping relations table of the header packet information index step (2) of each upstream data bag, find the data-out port corresponding and export this packet with the header packet information of this packet.
2, network address translation data output method according to claim 1 is characterized in that, also comprises the step that described mapping relations table is stored in the described step (2).
3, network address translation data output method according to claim 1 is characterized in that, further comprises step in the described step (3):
(31) check the header packet information of each upstream data bag;
(32), judge whether to find the data-out port corresponding, if utilize the data-out port that finds to export this upstream data bag with this header packet information according to the described mapping relations table of the header packet information index in the step (31); If not, in described a plurality of data-out ports, find out current data flow minimal data output port and export this upstream data bag.
4, network address translation data output method according to claim 3 is characterized in that, further comprises step in the described step (32):
(41) be respectively each data-out port a counter is set;
(42) mapping relations record of the every increase of each data-out port, corresponding counter add 1 operation;
(43) check the count value that each counter is current respectively, find out the counter of count value minimum, the data-out port under this counter as current data flow minimal data output port.
5, network address translation data output method according to claim 4 is characterized in that, described step (43) if in by checking that to obtain the current count value of each counter all identical, then choose in proper order according to the data output end slogan.
6, network address translation data output method according to claim 5 is characterized in that, further comprises step in the described step (43):
(61) set up the header packet information of upstream data bag of the data-out port output under the counter of count value minimum and the mapping relations record of this data-out port, and add in the described mapping relations table;
(62) counter to the count value minimum that finds out adds 1 operation.
7, network address translation data output method according to claim 1, it is characterized in that, described method also comprises at interval the mapping relation table is safeguarded cycle time, the mapping relations record that does not have indexed mistake is at the appointed time carried out deletion action.
8, method according to claim 7 is characterized in that, described deletion action realizes as follows:
(81) be respectively every mapping relations recording setting state parameter in the mapping relations table, and all state parameters all are set to 0;
(82) at interval the state parameter of every mapping relations record is added 1 operation cycle time;
(83) every mapping relations write down at every turn when indexed, and the state parameter of this mapping relations record is put 0;
(84) if the state parameter of mapping relations record more than or equal to a regulation constant, is then deleted this mapping relations record from the mapping relations table.
9, network address translation data output method according to claim 8 is characterized in that, comprises also after the described step (84) that the counter that the mapping relations of deleting are write down on the pairing data-out port subtracts 1 operation.
According to claim 1,3 or 6 described network address translation data output methods, it is characterized in that 10, described upstream data bag is by the packet of internal network to outside Network Transmission; And described header packet information comprises source IP address, purpose IP address and the type of data packet of packet.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 03155852 CN1249960C (en) | 2003-08-26 | 2003-08-26 | Network address converting data output method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 03155852 CN1249960C (en) | 2003-08-26 | 2003-08-26 | Network address converting data output method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1487704A true CN1487704A (en) | 2004-04-07 |
| CN1249960C CN1249960C (en) | 2006-04-05 |
Family
ID=34156854
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 03155852 Expired - Fee Related CN1249960C (en) | 2003-08-26 | 2003-08-26 | Network address converting data output method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1249960C (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101431440B (en) * | 2008-11-28 | 2010-10-27 | 杭州华三通信技术有限公司 | Flux monitoring method and apparatus |
| CN101068212B (en) * | 2007-06-11 | 2010-12-29 | 中兴通讯股份有限公司 | Network address switching retransmitting device and method |
| CN103945014A (en) * | 2013-01-21 | 2014-07-23 | 中国科学院声学研究所 | Port multiplexing method in PAT mode and network address translation equipment |
-
2003
- 2003-08-26 CN CN 03155852 patent/CN1249960C/en not_active Expired - Fee Related
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101068212B (en) * | 2007-06-11 | 2010-12-29 | 中兴通讯股份有限公司 | Network address switching retransmitting device and method |
| CN101431440B (en) * | 2008-11-28 | 2010-10-27 | 杭州华三通信技术有限公司 | Flux monitoring method and apparatus |
| CN103945014A (en) * | 2013-01-21 | 2014-07-23 | 中国科学院声学研究所 | Port multiplexing method in PAT mode and network address translation equipment |
| CN103945014B (en) * | 2013-01-21 | 2017-09-26 | 中国科学院声学研究所 | Multiplexed port method and network address translation apparatus under a kind of PAT patterns |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1249960C (en) | 2006-04-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Van Lunteren | High-performance pattern-matching for intrusion detection | |
| CN108833299B (en) | Large-scale network data processing method based on reconfigurable switching chip architecture | |
| US20210160350A1 (en) | Generating programmatically defined fields of metadata for network packets | |
| CN100477671C (en) | Network address converting method for supporting multi-dialogue application-layer protocol under PAT mode | |
| CN101087296B (en) | Method for utilizing network processor to translate the IPv4/IPv6 network protocol | |
| US10666564B2 (en) | Increasing entropy across routing table segments | |
| CN103117948A (en) | Hierarchical parallel high-speed network transmission control protocol (TCP) flow recombination method based on field programmable gate array (FPGA) | |
| CN105162626A (en) | Network traffic depth identification system and method based on many-core processor | |
| CN1874313A (en) | Method of processing packet and metwork device | |
| CN1725705A (en) | Method for detecting flow attacking message characteristic of network equipment | |
| CN112558948A (en) | Method and device for identifying message under mass flow | |
| CN1838627A (en) | Method for realizing QinQ access | |
| CN107659515A (en) | Message processing method, device, message processing chip and server | |
| CN102904730A (en) | Intelligent acceleration network card capable of filtering and picking traffic according to protocol, port and IP address | |
| CN104361296B (en) | A kind of lookup method of parallel Large Copacity accesses control list | |
| CN1216473C (en) | TCAM high-speed search method and system supporting multiple nexthop | |
| US20150341471A1 (en) | Method for making 32-bit addressing of sv data by utilizing fpga | |
| CN1866845A (en) | Virtual identifying method for multicast forwarding table output port | |
| CN102891809A (en) | Interface order-preserving method and system of messages of multi-core network device | |
| CN1741504A (en) | Flow controlling method based on application and network equipment for making applied flow control | |
| CN1249960C (en) | Network address converting data output method | |
| CN103167049A (en) | Translation method of network addresses distributed according to needs, equipment and system | |
| Raumer et al. | Performance exploration of software-based packet processing systems | |
| CN103179109B (en) | Filter bypass devices and methods therefors based on two grades of session query functions | |
| CN101582884B (en) | System and method for 3G data packet reorganization based on FPGA |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20060405 Termination date: 20090928 |