CA2420878A1 - Method and apparatus for searching a filtering database with one search operation - Google Patents

Method and apparatus for searching a filtering database with one search operation Download PDF

Info

Publication number
CA2420878A1
CA2420878A1 CA002420878A CA2420878A CA2420878A1 CA 2420878 A1 CA2420878 A1 CA 2420878A1 CA 002420878 A CA002420878 A CA 002420878A CA 2420878 A CA2420878 A CA 2420878A CA 2420878 A1 CA2420878 A1 CA 2420878A1
Authority
CA
Canada
Prior art keywords
identifier
data packet
group
translated
received data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002420878A
Other languages
French (fr)
Other versions
CA2420878C (en
Inventor
David A. Brown
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Mosaid Technologies Inc
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Publication of CA2420878A1 publication Critical patent/CA2420878A1/en
Application granted granted Critical
Publication of CA2420878C publication Critical patent/CA2420878C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4604LAN interconnection over a backbone network, e.g. Internet, Frame Relay
    • H04L12/462LAN interconnection over a bridge based backbone
    • H04L12/4625Single bridge functionality, e.g. connection of two networks over a single bridge
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/953Organization of data
    • Y10S707/959Network
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • Y10S707/99933Query processing, i.e. searching

Abstract

Multiple searches of a filtering database increase the time for filtering a data packet received by a switch. A switch including a translator and a filtering database for performing a single search is presented. The translator provides a translated identifier for an identifier associated with a data packet received by the switch. The translated identifier includes a group identifier corresponding to a virtual LAN group (FID) and a group member number corresponding to an identified virtual LAN (VID). The filter data base stores a static entry and a dynamic entry. The static entry stores a forwarding decision for the data packet associated with the translated identifier. The dynamic entry stores a forwarding decision for the data packet associated with the group identifier included in the translated identifier and the group member number set to don't care.

Claims (18)

1. A switch comprising:
a translator which provides a translated identifier for an identifier associated with a received data packet, the translated identifier including a group identifier corresponding to a virtual LAN group and a group member number corresponding to an identified virtual LAN; and a filtering database storing a static entry and a dynamic entry which provides a forwarding decision, for the received data packet, from a single search of the filtering database for a match for the forwarding decision associated with the translated identifier stored in the dynamic entry or the static entry, the dynamic entry storing the forwarding decision associated with the group identifier included in the translated identifier and the group member number set to a don't care, the static entry storing the forwarding decision associated with the translated identifier.
2. A switch as claimed in Claim 1 wherein the group member number identifies one of a plurality members associated with the group identifier.
3. A switch as claimed in Claim 1 wherein the filtering database is a Content Addressable Memory.
4. A switch as claimed in Claim 3 wherein the Content Addressable Memory is a ternary Content Addressable Memory.
5. A switch as claimed in Claim 1 wherein the identifier is stored in a header included in the received data packet.
6. A switch as claimed in Claim 1 wherein the identifier is a default identifier assigned by the switch to the received data packet.
7. A method for selecting a forward vector fox a received data packet comprising the steps of:
translating an identifier associated with the received data packet to a translated identifier, the translated identifier including a group identifier corresponding to a virtual LAN group and a group member number corresponding to an identified virtual LAN;
storing in a filtering database a static entry and a dynamic entry, the forwarding decision associated with the translated identifier stored in the static entry associated with the translated identifier or the dynamic entry associated with the group identifier and the group member number set to don't care; and providing, from a single search operation for the translated identifier in the filtering database the forwarding decision for the received data packet stored in the static entry or the dynamic entry in the filtering database.
8. A method as claimed in Claim 7 wherein the group member number identifies one of a plurality of members associated with the group identifier.
9. A method as claimed in Claim 7 wherein the filtering database is a Content Addressable Memory.
10. A method as claimed in Claim 9 wherein the Content Addressable Memory is a ternary Content Addressable Memory.
11. A method as claimed in Claim 7 wherein the identifier is stored in a header included in the received data packet.
12. A method as claimed in Claim 9 wherein the identifier is a default identifier assigned by the switch for the received data packet.
13. A method for selecting a forward vector for a received data packet comprising the steps of:
means for translating an identifier associated with the received data packet, the translated identifier including a group identifier corresponding to a virtual LAN and a group member number corresponding to an identified virtual LAN;
means for storing a static entry and a dynamic entry, the forwarding decision associated with the translated identifier stored in the static entry associated with the translated identifier or in the dynamic entry associated with the group identifier and the group member number set to don't care; and means for providing, from a single search operation for the translated identifier in the filtering database the forwarding decision for the received data packet stored in the static entry or the dynamic entry in the filtering database.
14. A method as claimed in Claim 13 wherein the group member number identifies one of a plurality of members associated with the group identifier.
15. A method as claimed in Claim 13 wherein the filtering database is a Content Addressable Memory.
16. A method as claimed in Claim 15 wherein the Content Addressable Memory is a ternary Content Addressable Memory.
17. A method as claimed in Claim 13 wherein the identifier is stored in a header included in the received data packet.
18. A method as claimed in Claim 13 wherein the identifier is a default identifier assigned by the switch for the received data packet.
CA2420878A 2000-08-31 2001-08-30 Method and apparatus for searching a filtering database with one search operation Expired - Fee Related CA2420878C (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US09/652,196 2000-08-31
US09/652,196 US6633567B1 (en) 2000-08-31 2000-08-31 Method and apparatus for searching a filtering database with one search operation
PCT/CA2001/001226 WO2002019638A2 (en) 2000-08-31 2001-08-30 Method and apparatus for searching a filtering database with one search operation

Publications (2)

Publication Number Publication Date
CA2420878A1 true CA2420878A1 (en) 2002-03-07
CA2420878C CA2420878C (en) 2010-06-22

Family

ID=24615882

Family Applications (1)

Application Number Title Priority Date Filing Date
CA2420878A Expired - Fee Related CA2420878C (en) 2000-08-31 2001-08-30 Method and apparatus for searching a filtering database with one search operation

Country Status (8)

Country Link
US (2) US6633567B1 (en)
KR (1) KR100863105B1 (en)
CN (1) CN1229948C (en)
AU (1) AU2001287434A1 (en)
CA (1) CA2420878C (en)
DE (1) DE10196582B3 (en)
GB (1) GB2382495B (en)
WO (1) WO2002019638A2 (en)

Families Citing this family (47)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6667967B1 (en) 1999-05-14 2003-12-23 Omninet Capital, Llc High-speed network of independently linked nodes
US6931003B2 (en) * 2000-02-09 2005-08-16 Bookline Flolmstead Llc Packet prioritization protocol for a large-scale, high speed computer network
US6633567B1 (en) * 2000-08-31 2003-10-14 Mosaid Technologies, Inc. Method and apparatus for searching a filtering database with one search operation
US6947419B2 (en) * 2001-06-12 2005-09-20 Acute Technology Corp. Apparatus for multicast forwarding in a virtual local area network environment
US6834056B2 (en) * 2001-06-26 2004-12-21 Occam Networks Virtual local area network protection switching
US6732228B1 (en) * 2001-07-19 2004-05-04 Network Elements, Inc. Multi-protocol data classification using on-chip CAM
US7609689B1 (en) * 2001-09-27 2009-10-27 Cisco Technology, Inc. System and method for mapping an index into an IPv6 address
US8045565B1 (en) 2001-11-20 2011-10-25 Brookline Flolmstead Llc Method and apparatus for an environmentally hardened ethernet network system
US8713185B2 (en) 2001-12-07 2014-04-29 Rockstar Bidco, LP Methods of establishing virtual circuits and of providing a virtual private network service through a shared network, and provider edge device for such network
US7313135B2 (en) * 2002-01-31 2007-12-25 Mosaid Technologies, Inc. Trunking in a matrix
US20030152075A1 (en) * 2002-02-14 2003-08-14 Hawthorne Austin J. Virtual local area network identifier translation in a packet-based network
US6871265B1 (en) * 2002-02-20 2005-03-22 Cisco Technology, Inc. Method and apparatus for maintaining netflow statistics using an associative memory to identify and maintain netflows
US20040006640A1 (en) * 2002-07-03 2004-01-08 Inderieden Daniel W. Notification to routing protocols of changes to routing information base
KR20020081569A (en) * 2002-09-04 2002-10-28 (주)시큐어베이스 The Management Method of tables that have entries of same size on CAM in Network device
WO2004023732A1 (en) * 2002-09-06 2004-03-18 Infineon Technologies Ag Method and apparatus for storing a port identifier in a lan switch
JP4101631B2 (en) * 2002-12-13 2008-06-18 富士通株式会社 Switching device
US7512078B2 (en) * 2003-10-15 2009-03-31 Texas Instruments Incorporated Flexible ethernet bridge
US7149214B2 (en) * 2003-11-04 2006-12-12 Cisco Technology, Inc. Dynamic unknown L2 flooding control with MAC limits
US7558273B1 (en) * 2003-12-23 2009-07-07 Extreme Networks, Inc. Methods and systems for associating and translating virtual local area network (VLAN) tags
US20050190788A1 (en) * 2004-02-27 2005-09-01 Wong Yu-Man M. System and method for VLAN multiplexing
US7460539B2 (en) * 2004-04-01 2008-12-02 Broadcom Corporation Individually programmable most significant bits of VLAN ID
US7554990B2 (en) * 2004-05-13 2009-06-30 Micrel, Inc. Static address reservation protocol in a data network
US7860096B2 (en) * 2004-06-08 2010-12-28 Oracle America, Inc. Switching method and apparatus for use in a communications network
US7602712B2 (en) * 2004-06-08 2009-10-13 Sun Microsystems, Inc. Switch method and apparatus with cut-through routing for use in a communications network
US8964547B1 (en) 2004-06-08 2015-02-24 Oracle America, Inc. Credit announcement
US7639616B1 (en) 2004-06-08 2009-12-29 Sun Microsystems, Inc. Adaptive cut-through algorithm
US7733855B1 (en) * 2004-06-08 2010-06-08 Oracle America, Inc. Community separation enforcement
US9043792B1 (en) * 2004-11-17 2015-05-26 Vmware, Inc. Virtual local area network (vlan) coordinator providing access to vlans
US10768958B2 (en) 2004-11-17 2020-09-08 Vmware, Inc. Using virtual local area networks in a virtual computer system
WO2006106588A1 (en) * 2005-03-31 2006-10-12 Fujitsu Limited Frame transfer device
US7673068B2 (en) * 2005-04-18 2010-03-02 Alcatel Lucent Method and system for implementing a high availability VLAN
JP2006311066A (en) * 2005-04-27 2006-11-09 Toshiba Corp Electronic equipment
US7796590B1 (en) * 2006-02-01 2010-09-14 Marvell Israel (M.I.S.L.) Ltd. Secure automatic learning in ethernet bridges
US8792497B2 (en) * 2006-06-05 2014-07-29 Tellabs Operations, Inc. Method and apparatus for performing link aggregation
JP4259581B2 (en) * 2007-02-07 2009-04-30 日立電線株式会社 Switching hub and LAN system
US8681641B1 (en) * 2007-06-25 2014-03-25 Cisco Technology, Inc. Loop mitigation mechanism for ethernet networks
WO2011065743A2 (en) * 2009-11-24 2011-06-03 한국전자통신연구원 Methods for transmitting a frame in a multi-user based wireless communication system
US8861495B2 (en) 2009-11-24 2014-10-14 Electronics And Telecommunications Research Institute Method for protecting data in a MU-MIMO based wireless communication system
DE112010004554T5 (en) 2009-11-24 2012-09-06 Electronics And Telecommunications Research Institute A method of restoring a frame whose transmission has failed in a MU-MIMO based wireless communication system
US20140016649A1 (en) * 2011-03-31 2014-01-16 Tejas Networks Limited Optimizing forward database for a bursty network traffic
US9590922B2 (en) * 2011-05-12 2017-03-07 Microsoft Technology Licensing, Llc Programmable and high performance switch for data center networks
US8891533B2 (en) * 2012-06-07 2014-11-18 Extreme Networks, Inc. Methods systems and apparatuses for dynamically tagging VLANs
US10419267B2 (en) 2014-01-22 2019-09-17 Lenovo Enterprise Solutions (Singapore) Pte. Ltd. Network control software notification with advance learning
US10877951B2 (en) 2014-01-22 2020-12-29 International Business Machines Corporation Network control software notification and invalidation of static entries
US20150207664A1 (en) * 2014-01-22 2015-07-23 International Business Machines Corporation Network control software notification with denial of service protection
CN106230684B (en) * 2016-08-05 2019-06-14 锐捷网络股份有限公司 Message forwarding method, interchanger and system
US11757777B2 (en) * 2021-09-23 2023-09-12 Hewlett Packard Enterprise Development Lp Assigning security group tag for infrastructure traffic and preserving security group tag in snooped packets in dynamic segmentation

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5677910A (en) * 1992-08-07 1997-10-14 Plaintree Systems Inc. High performance two-port transport LAN bridge
DE69631182T2 (en) 1995-04-28 2004-08-19 Matsushita Electric Industrial Co., Ltd., Kadoma Data transmission method
KR100472158B1 (en) * 1995-10-24 2005-08-29 코닌클리케 필립스 일렉트로닉스 엔.브이. Signals including data transmission system, transmitter, receiver, data reception method, group identifier and data field
KR0168927B1 (en) * 1995-12-23 1999-02-01 양승택 Atm vpi controlling apparatus
US6035105A (en) * 1996-01-02 2000-03-07 Cisco Technology, Inc. Multiple VLAN architecture system
KR980010816A (en) * 1996-07-31 1998-04-30 가네꼬 히사시 A local area network analyzer with a modified database
US5852607A (en) * 1997-02-26 1998-12-22 Cisco Technology, Inc. Addressing mechanism for multiple look-up tables
US5920886A (en) * 1997-03-14 1999-07-06 Music Semiconductor Corporation Accelerated hierarchical address filtering and translation using binary and ternary CAMs
US6308218B1 (en) * 1997-09-17 2001-10-23 Sony Corporation Address look-up mechanism in a multi-port bridge for a local area network
US6181699B1 (en) * 1998-07-01 2001-01-30 National Semiconductor Corporation Apparatus and method of assigning VLAN tags
KR100333250B1 (en) * 1998-10-05 2002-05-17 가나이 쓰토무 Packet forwarding apparatus with a flow detection table
US6237061B1 (en) * 1999-01-05 2001-05-22 Netlogic Microsystems, Inc. Method for longest prefix matching in a content addressable memory
US6798775B1 (en) * 1999-06-10 2004-09-28 Cisco Technology, Inc. Virtual LANs over a DLSw network
US6446131B1 (en) * 1999-06-19 2002-09-03 Hewlett-Packard Company Bridges and other layer-two devices for forwarding MAC frames
US6775281B1 (en) * 1999-09-30 2004-08-10 Mosaid Technologies, Inc. Method and apparatus for a four-way hash table
US6765866B1 (en) * 2000-02-29 2004-07-20 Mosaid Technologies, Inc. Link aggregation
US6252872B1 (en) * 2000-05-24 2001-06-26 Advanced Micro Devices, Inc. Data packet filter using contents addressable memory (CAM) and method
US6633567B1 (en) * 2000-08-31 2003-10-14 Mosaid Technologies, Inc. Method and apparatus for searching a filtering database with one search operation

Also Published As

Publication number Publication date
GB0304263D0 (en) 2003-03-26
AU2001287434A1 (en) 2002-03-13
CN1229948C (en) 2005-11-30
KR100863105B1 (en) 2008-10-13
US20040054655A1 (en) 2004-03-18
DE10196582B3 (en) 2013-04-04
GB2382495B (en) 2004-07-07
GB2382495A (en) 2003-05-28
WO2002019638A2 (en) 2002-03-07
KR20030096216A (en) 2003-12-24
CA2420878C (en) 2010-06-22
WO2002019638A3 (en) 2002-08-01
DE10196582T1 (en) 2003-07-10
US6633567B1 (en) 2003-10-14
US7302432B2 (en) 2007-11-27
CN1468482A (en) 2004-01-14

Similar Documents

Publication Publication Date Title
CA2420878A1 (en) Method and apparatus for searching a filtering database with one search operation
EP1547342B1 (en) A method and apparatus for deep packet processing
US20050021752A1 (en) Reverse path forwarding protection of packets using automated population of access control lists based on a forwarding information base
EP3293929B1 (en) Efficient matching of tcam rules using hash tables in ram
CA2484442C (en) Processing packets based on context indications
JP4742167B2 (en) Method for performing a table lookup operation using a table index that exceeds the CAM key size
US5920886A (en) Accelerated hierarchical address filtering and translation using binary and ternary CAMs
JP3627697B2 (en) Packet destination search system
US6804230B1 (en) Communication device with forwarding database having a trie search facility
CA2520769A1 (en) A bounded index extensible hash-based ipv6 address lookup method
WO2001047168A3 (en) High speed mac address search engine
CA2395491A1 (en) Forward overrides in a packet switch
CN110324245A (en) A kind of method and device to be E-Packeted based on integrated flow table
JP2006025121A (en) Frame transfer method and device therefor
CN105978814A (en) Network device and method for querying data in network device
CN106803809B (en) Message forwarding method and device
CN111131050A (en) Flow table matching method and device
CA2292368A1 (en) Data search apparatus and internetwork relay apparatus using data search apparatus
CN101465807B (en) Control method and device for data stream
CA2271879A1 (en) Atm repeater
CN111950000B (en) Access control method and device
US7299317B1 (en) Assigning prefixes to associative memory classes based on a value of a last bit of each prefix and their use including but not limited to locating a prefix and for maintaining a Patricia tree data structure
CN101110769B (en) Package transmitting method and system based on safety service
CN101106529B (en) Packet forwarding method and system based on secure service
JP2000174805A (en) Table retrieval system and router

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed

Effective date: 20160830