CN102088388B - Method and equipment for automatically distributing/acquiring virtual local area network configuration information - Google Patents
Method and equipment for automatically distributing/acquiring virtual local area network configuration information Download PDFInfo
- Publication number
- CN102088388B CN102088388B CN200910200027.4A CN200910200027A CN102088388B CN 102088388 B CN102088388 B CN 102088388B CN 200910200027 A CN200910200027 A CN 200910200027A CN 102088388 B CN102088388 B CN 102088388B
- Authority
- CN
- China
- Prior art keywords
- area network
- local area
- access point
- configuration information
- iapp
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention discloses a method for automatically distributing virtual local area network configuration information in a wireless local area network. The method comprises the following steps of: receiving an inter-access point protocol (IAPP) registration request message from access point equipment; verifying the validity of the access point equipment; and when the access point equipment is proved valid through verification, providing the virtual local area network configuration information for the access point equipment by using an IAPP protocol. Through the method, the virtual local area network configuration information can be automatically distributed to the access point equipment, and is distributed at the initialization stage of the access point equipment, so that the problem of unavailable distribution of the virtual local area network configuration information by an authentication server due to quick switching of a wireless working station in the prior art is solved. The invention also discloses a relevant authentication server, a method for acquiring the virtual local area network configuration information from the access point equipment in the wireless local area network and relevant access point equipment.
Description
Technical field
The present invention relates to WLAN (wireless local area network) (WLAN), specifically, relate to the technology of configuring virtual LAN in WLAN (wireless local area network) (VLAN).
Background technology
Extensive use along with wireless local area network technology, the scale of WLAN (wireless local area network) increases day by day, for example, at present a lot of urban construction " wireless city " based on WiFi network, the part that the WLAN (wireless local area network) based on WiFi has been Telecommunication operation Network from " local " network Development among a small circle.Therefore, how to manage and configure large-scale WLAN (wireless local area network) and become an important problem.
According to the configuration of WLAN (wireless local area network) and use, virtual local area network technology has been proposed to distinguish the various packets for different objects.So-called " VLAN " refers to the wireless stations in WLAN (wireless local area network) is logically divided into one by one to the network segment to realize the technology of virtual workgroup.A VLAN forms a logical subnetwork, and allows the wireless stations in different physical locations to add in this VLAN.
Fig. 1 shows the schematic diagram at wireless local network VLAN.As shown in Figure 1, three access point apparatus AP1, AP2 and AP3 are connected to Ethernet switch via distributed system (Ethernet), and and then be connected to certificate server, radius server for example, wherein access point apparatus AP3 is operated under a plurality of service set identifier (SSID) pattern, on access point apparatus AP3, can realize VLAN.Access point apparatus AP3 is only used single BSSID (BSSID), but can send a plurality of beacons, and each beacon has a service set identifier, and this service set identifier is assigned with a corresponding VLAN.For the wireless stations that is associated with different service set identifier, access point apparatus AP3 distributes the VLAN corresponding with service set identifier to it.For example, wireless stations STA1 is associated with service set identifier SSID1, wireless stations STA2 and STA3 are associated with service set identifier SSID2, access point apparatus AP3 distributes to wireless stations STA1 by the virtual LAN VLAN corresponding with service set identifier SSID1 1, and the virtual LAN VLAN corresponding with service set identifier SSID2 2 distributed to wireless stations STA2 and STA3.Like this, the sign from the packet of wireless stations STA1 with virtual LAN VLAN 1, and from the packet of wireless stations STA2 and STA3 the sign with virtual LAN VLAN 2.
In the prior art, a kind of technology of VLAN of setting up alternately based on certificate server has been proposed.In the example shown in Fig. 1, first wireless stations is associated with an access point apparatus, after the certified server of wireless stations is successfully verified, certificate server is embedded in the VLAN sign corresponding with this wireless stations in the authentication response message that represents good authentication, and is transferred to access point apparatus.This access point apparatus extracts VLAN sign from authentication response message, and is distributed to wireless stations.Details about this technology, can be in US Patent No. 7, in 339,915 " Virtual LAN Override in a Multiple BSSID Mode ofOperation " and technical literature " Dynamic VLAN Assignment with RADIUS Serverand Wireless LAN Controller Configuration Example ", find.
In above-mentioned technology, the VLAN sign comprising the authentication response of access point apparatus based on returning from certificate server, distributes VLAN sign to wireless stations, and this can cause following problem:
1. due to only after the certified server of wireless stations is successfully verified, access point apparatus could distribute VLAN sign according to returned authentication response message, therefore, require the access point apparatus all in WLAN (wireless local area network) should the corresponding virtual local area network tags resource of advance reservation, yet each access point apparatus is not also known the virtual local area network tags resource that other access point apparatus is reserved, may occur that identical virtual local area network tags represents different implications at different access point apparatus places, thereby cause the misuse of virtual local area network tags.
2. when wireless stations occurs to switch fast between two access point apparatus, according to the robust security network of stipulating in IEEE802.11i/IEEE802.11r (RSN), series of fortified passes connection for wireless stations supports quick re-authentication to switch, be that re-authentication can be used the safe context transmitting between access point apparatus, and need not be undertaken by certificate server.Like this, if wireless stations is associated with the new service set identifier of object access point apparatus, object access point apparatus can not be received the authentication response message that is embedded with VLAN sign from certificate server, thereby can not distribute VLAN sign to wireless stations.
3. this technical scheme relates to access point apparatus and the related protocol of particular device provider, lacks versatility and compatibility, is not suitable for the large-scale WLAN (wireless local area network) that comprises many heterogeneous access point devices.
Summary of the invention
The present invention is just in view of above-mentioned technical problem proposes, its object is to provide a kind of method of virtual local area network configuration information and relevant certificate server of automatically distributing in WLAN (wireless local area network), and a kind of in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information and relevant access point apparatus, it can realize automatic configuration and the dynamic management of VLAN, be particularly useful for large-scale WLAN (wireless local area network), and can support the access point apparatus of distinct device provider to there is versatility and compatibility.
According to a first aspect of the invention, provide a kind of method of automatically distributing virtual local area network configuration information in WLAN (wireless local area network), comprising: receive access point interaction protocol (IAPP) login request message from access point apparatus; Verify the validity of described access point apparatus; And be verified as when effective at described access point apparatus, use IAPP agreement to provide virtual local area network configuration information to described access point apparatus.
According to a second aspect of the invention, provide a kind of in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information, comprising: to certificate server, send access point interaction protocol (IAPP) login request message; And receive by the virtual local area network configuration information of IAPP protocol transmission from described certificate server.
According to a third aspect of the present invention, provide a kind of certificate server for WLAN (wireless local area network), comprising: receiving system, for receiving access point interaction protocol (IAPP) login request message from access point apparatus; Demo plant, for verifying the validity of described access point apparatus; And information provider unit, when effective for being verified as at described access point apparatus, use IAPP agreement to provide virtual local area network configuration information to described access point apparatus.
According to a fourth aspect of the present invention, provide a kind of access point apparatus for WLAN (wireless local area network), comprising: dispensing device, for sending access point interaction protocol (IAPP) login request message to certificate server; And receiving system, for receiving by the virtual local area network configuration information of IAPP protocol transmission from described certificate server.
Accompanying drawing explanation
Fig. 1 is the schematic diagram at wireless local network VLAN that uses prior art;
Fig. 2 is the flow chart that automatically distributes the method for virtual local area network configuration information in WLAN (wireless local area network) according to an embodiment of the invention;
The schematic diagram of the form of Tu3Shi IAPP radius vendor particular community;
Fig. 4 be according to an embodiment of the invention in WLAN (wireless local area network) access point apparatus obtain the flow chart of the method for virtual local area network configuration information;
Fig. 5 is the schematic diagram that uses Fig. 2 and method configuring virtual LAN embodiment illustrated in fig. 4;
Fig. 6 is the schematic block diagram of the certificate server for WLAN (wireless local area network) according to an embodiment of the invention;
Fig. 7 is the schematic block diagram of the access point apparatus for WLAN (wireless local area network) according to an embodiment of the invention.
Embodiment
Believe that, by the detailed description to specific embodiments of the invention below in conjunction with accompanying drawing, above-mentioned purpose of the present invention, feature and advantage will be more obvious.
Fig. 2 shows the flow chart that automatically distributes the method for virtual local area network configuration information in WLAN (wireless local area network) according to an embodiment of the invention.Below in conjunction with accompanying drawing, the present embodiment is elaborated.
In the present embodiment, WLAN (wireless local area network) can comprise certificate server and at least one access point apparatus, and this certificate server is connected via distributed system (Ethernet) with access point apparatus.Preferably, certificate server is radius server.At this, authentication server stores is also managed the virtual local area network configuration information that it is responsible for all WLAN (wireless local area network) of authentication.When access point apparatus enters first this WLAN (wireless local area network) or new access point apparatus and wants to enter this WLAN (wireless local area network), certificate server can be used the method for the present embodiment automatically to access point apparatus, to distribute virtual local area network configuration information in the registration process of access point apparatus.
As shown in Figure 2, at step S201, receive access point interaction protocol (IAPP) login request message from access point apparatus.When access point apparatus is wanted to enter WLAN (wireless local area network), first need to register to certificate server.By registration process, access point apparatus will its membership qualification in this WLAN (wireless local area network) of registration, and obtain for set up with other access point apparatus of this WLAN (wireless local area network) between the security parameter that is connected of secure broadcast.In the present embodiment, use IAPP agreement to communicate between access point apparatus and certificate server, IAPP agreement has detailed regulation in IEEE802.11f standard.IEEE802.11f has stipulated function and the agreement that access point apparatus and other access point apparatus communicate, and one of them important function is to form and safeguard a WLAN (wireless local area network) (extended service set).Because IAPP agreement is the agreement of standard, therefore, the method for the present embodiment is applicable to any equipment supplier's access point apparatus.
In the present embodiment, IAPP login request message is IAPP RegistrationAccess-Request message, the COS that it comprises IAPP registration.
After receiving IAPP login request message, at step S205, the validity of checking access point apparatus, verifies whether this access point apparatus is effective member of this WLAN (wireless local area network).This proof procedure is followed the process of stipulating in IEEE802.11f standard, and this is known for the person of ordinary skill of the art, and the description thereof will be omitted herein.
Then, at step S210, when access point apparatus is verified as when effective, certificate server is used IAPP agreement to provide virtual local area network configuration information to this access point apparatus.In the present embodiment, authentication server stores also maintains the virtual local area network configuration information that it is responsible for all WLAN (wireless local area network) of authentication, and it comprises: the mapping of service set identifier and VLAN sign.Virtual local area network configuration information has been recorded the general virtual local area network (LAN) label using in above-mentioned all WLAN (wireless local area network).
In the present embodiment, certificate server is accepted message by virtual local area network configuration information together with IAPP registration and is transferred to access point apparatus.Particularly, when access point apparatus is verified as when effective, in accepting message, IAPP registration embeds virtual local area network configuration information.In the present embodiment, IAPPRADIUS vendor specific attribute (Vendor-Specific Attribute, be called for short VSA) is expanded to realize virtual local area network configuration information is embedded in to IAPP registration accepts in message.Fig. 3 shows the form of IAPP RADIUS VSA, and wherein " supplier's type " field and " attribute data " field are expanded.Table 1 shows the content of the field after expansion, wherein " attribute data " field corresponding with the value " 1 " to " 14 " of " supplier's type " field represents existing attribute, and from the value " 15 " of " supplier's type " field, corresponding " attribute data " field has been recorded respectively the mapping of service set identifier (SSID) with VLAN sign (VLANID), i.e. virtual local area network configuration information.
Table 1
| Supplier's | Attribute data | |
| 1 | IAPP-Liveliness-Nonce | |
| 2 | New-BSSID-Security-Block | |
| 3 | Old-BSSID-Security- |
|
| 4 | Supported-ESP-Authentication-Algorithms | |
| 5 | Supported-ESP-Transforms | |
| 6 | ESS-New-ESP-Transform-Key | |
| 7 | ESS-New-ESP-Authentication-Key | |
| 9 | ESS-Old-ESP-Transform-Key | |
| 10 | ESS-Old-ESP-Authentication-Key | |
| 11 | ESS-ESP-Transform-ID | |
| 12 | ESS-ESP-Authenticaiton0ID | |
| 13 | ESS-ESP-SPI | |
| 14 | New-BSSID-Security-Block-IV | |
| 15 | SSID1:VLANID1 | |
| 16 | SSID2:VLANID2 | |
| 17 | SSID3:VLANID3 | |
| 18 | SSID4:VLANID4 | |
| 19 | SSID5:VLANID5 | |
| 20 | … |
When embedding virtual local area network configuration information, first generate the IAPPRADISU vendor specific attribute that comprises virtual local area network configuration information, then, Jiang Gai IAPP radius vendor particular community is included in IAPP registration and accepts in message.Then, the IAPP registration that has embedded virtual local area network configuration information is accepted to message and send to access point apparatus.
In the present embodiment, to accept message be IAPP RegistrationAccess-Accept message for IAPP registration.
When access point apparatus is verified as when invalid, certificate server returns to IAPP registration reject message.
By above description, can find out, the automatic method of virtual local area network configuration information of distributing in WLAN (wireless local area network) of the present embodiment is by binding the registration of virtual local area network configuration information and access point apparatus, can automatically to access point apparatus, distribute virtual local area network configuration information, be particularly useful for large-scale WLAN (wireless local area network), and, because the initial phase that is distributed in access point apparatus of virtual local area network configuration information is carried out, therefore the problem that the certificate server of having avoided in prior art the quick switching due to wireless stations to cause can not distribute virtual local area network configuration information.In addition, the method for the present embodiment adopts IAPP agreement, can be applicable to the access point apparatus of distinct device provider.
Under same inventive concept, Fig. 4 show according to an embodiment of the invention in WLAN (wireless local area network) access point apparatus obtain the flow chart of the method for virtual local area network configuration information.Below in conjunction with accompanying drawing, the present embodiment is described in detail, wherein, for the part with embodiment is identical above, suitably the description thereof will be omitted.
As shown in Figure 4, at step S401, access point apparatus sends IAPP login request message to certificate server.When access point apparatus is wanted to enter WLAN (wireless local area network), its certificate server to this WLAN (wireless local area network) is registered, and is verified the validity of this access point apparatus by certificate server.Particularly, the module of being responsible for IAPP in access point apparatus sends IAPP login request message to certificate server, to register the membership qualification of this access point apparatus in WLAN (wireless local area network) to certificate server, and obtains security parameter.In the present embodiment, IAPP login request message is IAPP RegistrationAccess-Request message, the COS that it comprises IAPP registration.
When access point apparatus is verified as when effective, at step S405, this access point apparatus receives by the virtual local area network configuration information of IAPP protocol transmission from certificate server.In the present embodiment, virtual local area network configuration information is embedded in IAPP registration as the part of IAPP radius vendor particular community (VSA) and accepts in message.As previously mentioned, in IAPP RADIUS VSA, comprise virtual local area network configuration information, it is the mapping of service set identifier and VLAN sign, then, when access point apparatus is verified as when effective, certificate server is included in IAPP registration by IAPP RADIUS VSA and accepts in message, and sends to access point apparatus.In the present embodiment, to accept message be IAPP Registration Access-Accept message for IAPP registration.
Further, when access point apparatus receives IAPP registration, accept after message, at step S410, from this IAPP registration, accept to extract message virtual local area network configuration information.Then, after wireless stations success association service set identifier, at step S415, the service set identifier that access point apparatus is associated according to this wireless stations, distributes corresponding VLAN sign to it.
Those of ordinary skill in the art can understand, and step S410 and S415 relate to the further operation of access point apparatus after obtaining virtual local area network configuration information, without being included in the method for the present embodiment.
By above description, can find out, the method that the access point apparatus in WLAN (wireless local area network) of the present embodiment obtains virtual local area network configuration information can make access point apparatus pass through the virtual local area network configuration information in registration process automatic acquisition WLAN (wireless local area network) at initial phase, thereby realizes automatic configuration and the dynamic management of VLAN.
Fig. 5 shows the schematic diagram that uses Fig. 2 and method configuring virtual LAN in WLAN (wireless local area network) embodiment illustrated in fig. 4.As shown in Figure 5, WLAN (wireless local area network) comprises: as the radius server of certificate server, Ethernet switch and two access point apparatus AP1 and AP2, wherein, access point apparatus is connected to Ethernet switch via distributed system, and then is connected to radius server.When access point apparatus AP3 wants to add this WLAN (wireless local area network), the IAPP module of access point apparatus AP3 sends IAPP Registration Access-Request message to radius server, to register access point apparatus AP3 to radius server.Then, radius server is verified access point apparatus AP3.When radius server checking access point apparatus AP3 is effective, to access point apparatus AP3, return to IAPP Registration Access-Accept message, in this message, be embedded with virtual local area network configuration information, i.e. the mapping of service set identifier and VLAN sign.Like this, after access point apparatus AP3 succeeds in registration, just obtained the virtual local area network configuration information of this WLAN (wireless local area network).
Under same inventive concept, Fig. 6 shows the schematic block diagram of the certificate server 600 for WLAN (wireless local area network) according to an embodiment of the invention.Below in conjunction with accompanying drawing, the present embodiment is described in detail, wherein, for the part with embodiment is identical above, suitably the description thereof will be omitted.
As shown in Figure 6, the certificate server 600 of the present embodiment comprises: receiving system 601, and it receives the IAPP login request message from access point apparatus; Demo plant 602, the validity of its checking access point apparatus; And information provider unit 603, it is verified as when effective at access point apparatus, uses IAPP agreement to provide virtual local area network configuration information to this access point apparatus.
In the certificate server 600 of the present embodiment, when receiving system 601 receives after the IAPP login request message from access point apparatus, 602 pairs of these access point apparatus of demo plant are verified, verify whether this access point apparatus is effective member of WLAN (wireless local area network).When demo plant 602 verifies that this access point apparatus is effective, information provider unit 603 provides the virtual local area network configuration information of this WLAN (wireless local area network) to this access point apparatus by IAPP agreement.In the present embodiment, virtual local area network configuration information is accepted to offer access point apparatus together with message with IAPP registration, and wherein virtual local area network configuration information comprises the mapping of service set identifier and VLAN sign.
In information provider unit 603, first, merge module 6031 embeds virtual local area network configuration information in message is accepted in IAPP registration.Particularly, the generation unit in merge module 6031 generates the IAPP radius vendor particular community that comprises virtual local area network configuration information, then in message is accepted in IAPP registration, comprises this IAPP radius vendor particular community by comprising unit.Then, sending module 6032 is accepted message by this IAPP registration and is sent to access point apparatus.
The certificate server 600 that it should be pointed out that the present embodiment can be realized automatic method of distributing virtual local area network configuration information in WLAN (wireless local area network) as shown in Figure 2 in operation.
Under same inventive concept, Fig. 7 shows the schematic block diagram of the access point apparatus 700 for WLAN (wireless local area network) according to an embodiment of the invention.Below in conjunction with accompanying drawing, the present embodiment is described in detail, wherein, for the part with embodiment is identical above, suitably the description thereof will be omitted.
As shown in Figure 7, the access point apparatus 700 of the present embodiment comprises: dispensing device 701, and it sends IAPP login request message to certificate server; And receiving system 702, it is verified as when effective at access point apparatus 700, from certificate server, receives by the virtual local area network configuration information of IAPP protocol transmission.
In the access point apparatus 700 of the present embodiment, the virtual local area network configuration information that receiving system 702 receives is embedded in the IAPP registration that certificate server returns and accepts in message, as a part for IAPPRADIUS vendor specific attribute.
Further, the access point apparatus 700 of the present embodiment also comprises extraction element 703, and it accepts to extract message virtual local area network configuration information from received IAPP registration.In addition, the access point apparatus 700 of the present embodiment also comprises distributor 704, when wireless working point is successfully associated with after service set identifier, the service set identifier that distributor 704 can be associated according to wireless stations, distributes corresponding VLAN sign to this wireless stations.
The access point apparatus 700 that it should be pointed out that the present embodiment can be realized the method that access point apparatus in WLAN (wireless local area network) as shown in Figure 4 obtains virtual local area network configuration information in operation.
Should be understood that, the certificate server of above-described embodiment, access point apparatus and their parts separately can be by such as very lagre scale integrated circuit (VLSIC) or gate array, realize such as the semiconductor of logic chip, transistor etc. or such as the hardware circuit of the programmable hardware device of field programmable gate array, programmable logic device etc., also can use the software of being carried out by various types of processors to realize, also can be realized by the combination of above-mentioned hardware circuit and software.
Although by some exemplary embodiments, describe method of automatically distributing virtual local area network configuration information in WLAN (wireless local area network) of the present invention and relevant certificate server in detail above and in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information and relevant access point apparatus, but above these embodiment are not exhaustive, and those skilled in the art can realize variations and modifications within the spirit and scope of the present invention.Therefore, the present invention is not limited to these embodiment, and scope of the present invention is only defined by the appended claims.
Claims (18)
1. the method that certificate server distributes virtual local area network configuration information automatically in WLAN (wireless local area network), comprising:
Reception is from access point interaction protocol (IAPP) login request message of access point apparatus;
Verify the validity of described access point apparatus; And
At described access point apparatus, be verified as when effective, use IAPP agreement to provide virtual local area network configuration information to described access point apparatus.
2. the method that certificate server distributes virtual local area network configuration information automatically in WLAN (wireless local area network) according to claim 1, wherein, described use IAPP agreement provides the step of virtual local area network configuration information to comprise to described access point apparatus:
In accepting message, IAPP registration embeds described virtual local area network configuration information; And
To described access point apparatus, send described IAPP registration and accept message.
3. the method that certificate server distributes virtual local area network configuration information automatically in WLAN (wireless local area network) according to claim 2, wherein, the described step that embeds described virtual local area network configuration information in message is accepted in IAPP registration comprises:
Generate IAPP radius vendor particular community, it comprises described virtual local area network configuration information; And
In accepting message, described IAPP registration comprises described IAPP radius vendor particular community.
4. the method for automatically distributing virtual local area network configuration information according to the certificate server in WLAN (wireless local area network) described in claims 1 to 3 any one, wherein, described virtual local area network configuration information comprises: the mapping of service set identifier and VLAN sign.
5. in WLAN (wireless local area network), access point apparatus obtains the method for virtual local area network configuration information, comprising:
To certificate server, send access point interaction protocol (IAPP) login request message; And
At described access point apparatus, be verified as when effective, from described certificate server, receive by the virtual local area network configuration information of IAPP protocol transmission.
According to claim 5 in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information, wherein, described virtual local area network configuration information is embedded in IAPP registration as the part of IAPP radius vendor particular community and accepts in message.
According to claim 6 in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information, also comprise:
From described IAPP registration, accept to extract message described virtual local area network configuration information.
According to claim 7 in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information, wherein, described virtual local area network configuration information comprises: the mapping of service set identifier and VLAN sign.
According to claim 8 in WLAN (wireless local area network) access point apparatus obtain the method for virtual local area network configuration information, also comprise:
The service set identifier associated according to wireless stations, distributes corresponding VLAN sign to described wireless stations.
10. for a certificate server for WLAN (wireless local area network), comprising:
Receiving system, for receiving access point interaction protocol (IAPP) login request message from access point apparatus;
Demo plant, for verifying the validity of described access point apparatus; And
Information provider unit, when effective for being verified as at described access point apparatus, is used IAPP agreement to provide virtual local area network configuration information to described access point apparatus.
11. certificate servers according to claim 10, wherein, described information provider unit comprises:
Merge module, embeds described virtual local area network configuration information for accepting message in IAPP registration; And
Sending module, accepts message for send described IAPP registration to described access point apparatus.
12. certificate servers according to claim 11, wherein, described merge module comprises:
Generation unit, for generating IAPP radius vendor particular community, it comprises described virtual local area network configuration information; And
Comprise unit, for accept message in described IAPP registration, comprise described IAPP radius vendor particular community.
13. according to claim 10 to the certificate server described in 12 any one, and wherein, described virtual local area network configuration information comprises: the mapping of service set identifier and VLAN sign.
14. 1 kinds of access point apparatus for WLAN (wireless local area network), comprising:
Dispensing device, for sending access point interaction protocol (IAPP) login request message to certificate server; And
Receiving system, when effective for being verified as at described access point apparatus, receives by the virtual local area network configuration information of IAPP protocol transmission from described certificate server.
15. access point apparatus according to claim 14, wherein, described virtual local area network configuration information is embedded in IAPP registration as the part of IAPP radius vendor particular community and accepts in message.
16. access point apparatus according to claim 15, also comprise: extraction element, extracts described virtual local area network configuration information for accepting message from described IAPP registration.
17. access point apparatus according to claim 16, wherein, described virtual local area network configuration information comprises: the mapping of service set identifier and VLAN sign.
18. access point apparatus according to claim 17, also comprise: distributor, for the service set identifier associated according to wireless stations, distributes corresponding VLAN sign to described wireless stations.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910200027.4A CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910200027.4A CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102088388A CN102088388A (en) | 2011-06-08 |
| CN102088388B true CN102088388B (en) | 2014-04-02 |
Family
ID=44100009
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910200027.4A Active CN102088388B (en) | 2009-12-02 | 2009-12-02 | Method and equipment for automatically distributing/acquiring virtual local area network configuration information |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102088388B (en) |
Cited By (23)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9769016B2 (en) | 2010-06-07 | 2017-09-19 | Brocade Communications Systems, Inc. | Advanced link tracking for virtual cluster switching |
| US9774543B2 (en) | 2013-01-11 | 2017-09-26 | Brocade Communications Systems, Inc. | MAC address synchronization in a fabric switch |
| US9806949B2 (en) | 2013-09-06 | 2017-10-31 | Brocade Communications Systems, Inc. | Transparent interconnection of Ethernet fabric switches |
| US9807031B2 (en) | 2010-07-16 | 2017-10-31 | Brocade Communications Systems, Inc. | System and method for network configuration |
| US9807005B2 (en) | 2015-03-17 | 2017-10-31 | Brocade Communications Systems, Inc. | Multi-fabric manager |
| US9807017B2 (en) | 2013-01-11 | 2017-10-31 | Brocade Communications Systems, Inc. | Multicast traffic load balancing over virtual link aggregation |
| US9807007B2 (en) | 2014-08-11 | 2017-10-31 | Brocade Communications Systems, Inc. | Progressive MAC address learning |
| US9848040B2 (en) | 2010-06-07 | 2017-12-19 | Brocade Communications Systems, Inc. | Name services for virtual cluster switching |
| US9871676B2 (en) | 2013-03-15 | 2018-01-16 | Brocade Communications Systems LLC | Scalable gateways for a fabric switch |
| US9887916B2 (en) | 2012-03-22 | 2018-02-06 | Brocade Communications Systems LLC | Overlay tunnel in a fabric switch |
| US9912612B2 (en) | 2013-10-28 | 2018-03-06 | Brocade Communications Systems LLC | Extended ethernet fabric switches |
| US9912614B2 (en) | 2015-12-07 | 2018-03-06 | Brocade Communications Systems LLC | Interconnection of switches based on hierarchical overlay tunneling |
| US9942097B2 (en) | 2015-01-05 | 2018-04-10 | Brocade Communications Systems LLC | Power management in a network of interconnected switches |
| US9942173B2 (en) | 2010-05-28 | 2018-04-10 | Brocade Communications System Llc | Distributed configuration management for virtual cluster switching |
| US9998365B2 (en) | 2012-05-18 | 2018-06-12 | Brocade Communications Systems, LLC | Network feedback in software-defined networks |
| US10038592B2 (en) | 2015-03-17 | 2018-07-31 | Brocade Communications Systems LLC | Identifier assignment to a new switch in a switch group |
| US10044568B2 (en) | 2014-05-13 | 2018-08-07 | Brocade Communications Systems LLC | Network extension groups of global VLANs in a fabric switch |
| US10063473B2 (en) | 2014-04-30 | 2018-08-28 | Brocade Communications Systems LLC | Method and system for facilitating switch virtualization in a network of interconnected switches |
| US10075394B2 (en) | 2012-11-16 | 2018-09-11 | Brocade Communications Systems LLC | Virtual link aggregations across multiple fabric switches |
| US10164883B2 (en) | 2011-11-10 | 2018-12-25 | Avago Technologies International Sales Pte. Limited | System and method for flow management in software-defined networks |
| US10171303B2 (en) | 2015-09-16 | 2019-01-01 | Avago Technologies International Sales Pte. Limited | IP-based interconnection of switches with a logical chassis |
| US10237090B2 (en) | 2016-10-28 | 2019-03-19 | Avago Technologies International Sales Pte. Limited | Rule-based network identifier mapping |
| US10277464B2 (en) | 2012-05-22 | 2019-04-30 | Arris Enterprises Llc | Client auto-configuration in a multi-switch link aggregation |
Families Citing this family (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8867552B2 (en) | 2010-05-03 | 2014-10-21 | Brocade Communications Systems, Inc. | Virtual cluster switching |
| US9736085B2 (en) | 2011-08-29 | 2017-08-15 | Brocade Communications Systems, Inc. | End-to end lossless Ethernet in Ethernet fabric |
| US8995272B2 (en) | 2012-01-26 | 2015-03-31 | Brocade Communication Systems, Inc. | Link aggregation in software-defined networks |
| US9742693B2 (en) * | 2012-02-27 | 2017-08-22 | Brocade Communications Systems, Inc. | Dynamic service insertion in a fabric switch |
| US9565099B2 (en) | 2013-03-01 | 2017-02-07 | Brocade Communications Systems, Inc. | Spanning tree in fabric switches |
| US9699001B2 (en) | 2013-06-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Scalable and segregated network virtualization |
| US9548873B2 (en) | 2014-02-10 | 2017-01-17 | Brocade Communications Systems, Inc. | Virtual extensible LAN tunnel keepalives |
| US10581758B2 (en) | 2014-03-19 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Distributed hot standby links for vLAG |
| US10476698B2 (en) | 2014-03-20 | 2019-11-12 | Avago Technologies International Sales Pte. Limited | Redundent virtual link aggregation group |
| US10616108B2 (en) | 2014-07-29 | 2020-04-07 | Avago Technologies International Sales Pte. Limited | Scalable MAC address virtualization |
| US9699029B2 (en) | 2014-10-10 | 2017-07-04 | Brocade Communications Systems, Inc. | Distributed configuration management in a switch group |
| US10579406B2 (en) | 2015-04-08 | 2020-03-03 | Avago Technologies International Sales Pte. Limited | Dynamic orchestration of overlay tunnels |
| US10439929B2 (en) | 2015-07-31 | 2019-10-08 | Avago Technologies International Sales Pte. Limited | Graceful recovery of a multicast-enabled switch |
| CN111600787B (en) * | 2020-05-20 | 2022-08-19 | 奇安信网神信息技术(北京)股份有限公司 | Information processing method, information processing apparatus, electronic device, and medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1330073A1 (en) * | 2002-01-18 | 2003-07-23 | Nokia Corporation | Method and apparatus for access control of a wireless terminal device in a communications network |
| CN1805391A (en) * | 2005-01-13 | 2006-07-19 | 华为技术有限公司 | Method and apparatus for supporting multiple logical networks in wireless LAN |
| CN101159646A (en) * | 2007-11-23 | 2008-04-09 | 杭州华三通信技术有限公司 | Login method and apparatus for AP |
-
2009
- 2009-12-02 CN CN200910200027.4A patent/CN102088388B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1330073A1 (en) * | 2002-01-18 | 2003-07-23 | Nokia Corporation | Method and apparatus for access control of a wireless terminal device in a communications network |
| CN1805391A (en) * | 2005-01-13 | 2006-07-19 | 华为技术有限公司 | Method and apparatus for supporting multiple logical networks in wireless LAN |
| CN101159646A (en) * | 2007-11-23 | 2008-04-09 | 杭州华三通信技术有限公司 | Login method and apparatus for AP |
Cited By (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9942173B2 (en) | 2010-05-28 | 2018-04-10 | Brocade Communications System Llc | Distributed configuration management for virtual cluster switching |
| US9769016B2 (en) | 2010-06-07 | 2017-09-19 | Brocade Communications Systems, Inc. | Advanced link tracking for virtual cluster switching |
| US9848040B2 (en) | 2010-06-07 | 2017-12-19 | Brocade Communications Systems, Inc. | Name services for virtual cluster switching |
| US9807031B2 (en) | 2010-07-16 | 2017-10-31 | Brocade Communications Systems, Inc. | System and method for network configuration |
| US10164883B2 (en) | 2011-11-10 | 2018-12-25 | Avago Technologies International Sales Pte. Limited | System and method for flow management in software-defined networks |
| US9887916B2 (en) | 2012-03-22 | 2018-02-06 | Brocade Communications Systems LLC | Overlay tunnel in a fabric switch |
| US9998365B2 (en) | 2012-05-18 | 2018-06-12 | Brocade Communications Systems, LLC | Network feedback in software-defined networks |
| US10277464B2 (en) | 2012-05-22 | 2019-04-30 | Arris Enterprises Llc | Client auto-configuration in a multi-switch link aggregation |
| US10075394B2 (en) | 2012-11-16 | 2018-09-11 | Brocade Communications Systems LLC | Virtual link aggregations across multiple fabric switches |
| US9807017B2 (en) | 2013-01-11 | 2017-10-31 | Brocade Communications Systems, Inc. | Multicast traffic load balancing over virtual link aggregation |
| US9774543B2 (en) | 2013-01-11 | 2017-09-26 | Brocade Communications Systems, Inc. | MAC address synchronization in a fabric switch |
| US9871676B2 (en) | 2013-03-15 | 2018-01-16 | Brocade Communications Systems LLC | Scalable gateways for a fabric switch |
| US9806949B2 (en) | 2013-09-06 | 2017-10-31 | Brocade Communications Systems, Inc. | Transparent interconnection of Ethernet fabric switches |
| US9912612B2 (en) | 2013-10-28 | 2018-03-06 | Brocade Communications Systems LLC | Extended ethernet fabric switches |
| US10063473B2 (en) | 2014-04-30 | 2018-08-28 | Brocade Communications Systems LLC | Method and system for facilitating switch virtualization in a network of interconnected switches |
| US10044568B2 (en) | 2014-05-13 | 2018-08-07 | Brocade Communications Systems LLC | Network extension groups of global VLANs in a fabric switch |
| US9807007B2 (en) | 2014-08-11 | 2017-10-31 | Brocade Communications Systems, Inc. | Progressive MAC address learning |
| US10284469B2 (en) | 2014-08-11 | 2019-05-07 | Avago Technologies International Sales Pte. Limited | Progressive MAC address learning |
| US9942097B2 (en) | 2015-01-05 | 2018-04-10 | Brocade Communications Systems LLC | Power management in a network of interconnected switches |
| US10038592B2 (en) | 2015-03-17 | 2018-07-31 | Brocade Communications Systems LLC | Identifier assignment to a new switch in a switch group |
| US9807005B2 (en) | 2015-03-17 | 2017-10-31 | Brocade Communications Systems, Inc. | Multi-fabric manager |
| US10171303B2 (en) | 2015-09-16 | 2019-01-01 | Avago Technologies International Sales Pte. Limited | IP-based interconnection of switches with a logical chassis |
| US9912614B2 (en) | 2015-12-07 | 2018-03-06 | Brocade Communications Systems LLC | Interconnection of switches based on hierarchical overlay tunneling |
| US10237090B2 (en) | 2016-10-28 | 2019-03-19 | Avago Technologies International Sales Pte. Limited | Rule-based network identifier mapping |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102088388A (en) | 2011-06-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102088388B (en) | Method and equipment for automatically distributing/acquiring virtual local area network configuration information | |
| CN106851632B (en) | A kind of method and device of smart machine access WLAN | |
| EP3622690B1 (en) | Cloud based wifi network setup for multiple access points | |
| EP2950499B1 (en) | 802.1x access session keepalive method, device, and system | |
| EP2180640A1 (en) | Ad-hoc network system and method | |
| CN101841815B (en) | Cluster controlling method based on wireless router and network system | |
| CN102739455B (en) | A kind of method of network equipments configuration and device | |
| CN106921963A (en) | A kind of smart machine accesses the method and device of WLAN | |
| KR20040042247A (en) | The method and system for performing authentification to obtain access to public wireless LAN | |
| CN102137395A (en) | Method, device and system for configuring access device | |
| US20120084415A1 (en) | Method and equipment for self-configuring transmission in self-organized network | |
| CN101222354A (en) | Intelligent terminal management method | |
| EP2291017A1 (en) | Method for network connection | |
| EP2903385A1 (en) | Method for controlling access point in wireless local area network, and communication system | |
| CN104104516A (en) | Portal authentication method and device | |
| CN101741888A (en) | Method, system and device for pushing certification page | |
| CN102710634A (en) | Intelligent WIFI (Wireless Fidelity) sharing system | |
| CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
| WO2012155742A1 (en) | Identifier assignment method and device in wireless local area network | |
| CN104618522B (en) | The method and Ethernet access equipment that IP address of terminal automatically updates | |
| CN101621433B (en) | Method, device and system for configuring access equipment | |
| CN100488137C (en) | Correlation method, system and apparatus of user relative information in network attached sub-system | |
| CN114070597B (en) | Private network cross-network authentication method and device | |
| CN102857953A (en) | Self-configuration method and device of base station | |
| KR102127028B1 (en) | Method and device for internet protocol multimedia subsystem terminal to access network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder |
Address after: 201206 Pudong Jinqiao Ning Road, Shanghai, No. 388 Patentee after: Shanghai NOKIA Baer Limited by Share Ltd Address before: 201206 Pudong Jinqiao Ning Road, Shanghai, No. 388 Patentee before: Shanghai Alcatel-Lucent Co., Ltd. |