Patent application number | Description | Published |
20120124660 | VIRTUAL PRIVATE NETWORK NODE INFORMATION PROCESSING METHOD, RELEVANT DEVICE AND SYSTEM - A Virtual Private Network (VPN) node information processing method and a VPN node information processing device are provided, in which the method comprises: receiving an access request message sent by a node, in which the access request message at least carries authentication information, a current real Internet Protocol (IP) address, a node name and information indicating whether to accept extranet connection of the node; allocating a virtual IP address for the node when the authentication information of the node is correct; and registering the current real IP address, the node name, the information indicating whether to accept the extranet connection, and the virtual IP address of the node as registration information. Through the method and the device, when a node is added into a VPN, configuration of other nodes does not need to be adjusted. | 05-17-2012 |
20120300776 | METHOD FOR CREATING VIRTUAL LINK, COMMUNICATION NETWORK ELEMENT, AND ETHERNET NETWORK SYSTEM - Embodiments of the present invention provide a method for creating a virtual link, a communication network element, and an Ethernet network system. The method includes the following: a first communication network element receives a communication request message sent by a second communication network element; the first communication network element allocates a first virtual MAC address and a second virtual MAC address for the virtual link between the first communication network element and the second communication network element; the first communication network element sends a response message in response to the communication request message to the second communication network element, where the response message carries the first virtual MAC address and the second virtual MAC address. Using the technical solutions provided in the embodiments of the present invention, two communication network elements on the Ethernet are capable of performing communication using a fibre channel on the Ethernet. | 11-29-2012 |
20130315242 | Network Communication Method and Device - The present invention provides a network communication method and device. The method includes: receiving, by a VNC on a physical host, a network communication packet sent by a first virtual machine of which a host machine is the physical host and which has a mapping relationship with the VNC, where a source address carried in the network communication packet is an address of the first virtual machine, a destination address carried in the network communication packet is an address of a second virtual machine or an address of another physical host; selecting, by the physical host, a VPN network corresponding to the VNC on the physical host according to preset correspondence between the VPN network and the VNC; and sending, by the physical host, the network communication packet through the selected VPN network. The present invention lowers the restriction on setting an IP address of a virtual machine in a VPN. | 11-28-2013 |
20140359137 | METHOD, APPARATUS, NAME SERVER AND SYSTEM FOR ESTABLISHING FCOE COMMUNICATION CONNECTION - Embodiments of the present invention disclose a method, an apparatus, and a system for establishing an FCoE communication connection and a name server. According to a WWN world wide name identifier of a target to be accessed, a destination MAC address used to access the target to be accessed is acquired. According to the destination MAC address, a login operation is performed for the target to be accessed, to establish an FCoE fiber channel over Ethernet communication connection, so that an FCoE initiator may directly establish a communication connection with an FCoE target, thereby reducing data transmission delay and lightening the processing load of an original FCoE forwarder. | 12-04-2014 |
20140380415 | Method and Device for Synchronizing Network Data Flow Detection Status - A method and a device for synchronizing network data flow detection status are provided. The method includes: a status synchronizing server receives a first request sent by a first security device node, where the first request carries a first flow entry of a first data flow that is currently detected by the first security device node; determines first network data flow detection status corresponding to the first flow entry; sends a first response to the first security device node, where the first response carries the first network data flow detection status. A security device node requests previous network data flow detection status of a data flow from a status synchronizing server so as to synchronize network data flow detection status, thereby allowing the security device node to detect a network attack in a more accurate way and improving network system security. | 12-25-2014 |
20150079931 | COMMUNICATIONS METHOD, DEVICE AND SYSTEM IN MOBILE BACKHAUL TRANSPORT NETWORK - A communications method, device, and system in a mobile backhaul transport network are used to resolve a problem in the prior art that communication security in a backhaul transport network cannot be ensured in an LTE scenario. A first network node sends a request message to a control server in the mobile backhaul transport network, where the request message is used to request security information of a second network node in the mobile backhaul transport network; the first network node receives the security information of the second network node, which is returned by the control server; the first network node establishes a secure tunnel with the second network node according to the security information of the second network node to perform communication. This enables two network nodes in a mobile backhaul transport network to perform secure communication and ensures security of communication between network nodes. | 03-19-2015 |
20150106913 | Method, Apparatus, Host, and Network System for Processing Packet - A method, an apparatus, a host, and a network system for processing a packet. The method includes receiving, by a physical host through a virtual bridge in the physical host, a network packet sent by a source virtual machine in the physical host, where the network packet carries a source media access control (MAC) address and a target MAC address; obtaining, by the physical host according to the source MAC address and the target MAC address by querying correspondence between each virtual machine MAC address and a security domain, a security domain to which the source virtual machine corresponds and a security domain to which a target virtual machine corresponds; and controlling, by the physical host, the virtual bridge to discard the network packet, when the security domain to which the source virtual machine corresponds is different from a security domain corresponding to the virtual bridge. | 04-16-2015 |
20150249608 | Method, System and Apparatus for Controlling Flow Detection, Controller and Detection Device - A control method, system and apparatus for flow detection, a controller and a detection device. The method includes the controller acquires a flow identifier of a flow to be detected by each flow detection module in a network; adjusts the flow to be detected by each flow detection module according to a set load balancing policy; and delivers a detection instruction to each flow detection module, where the detection instruction includes a flow identifier of a flow to be detected by each flow detection module after the adjustment. In the present invention, because multiple flow detection modules are deployed in a network in a distributed manner, when there are a large number of switching devices included in the network, load balancing can be performed for detection of flows transmitted between these switching devices. | 09-03-2015 |