Network Relay Device and Frame Relaying Control Method
First Claim
1. A network relay device for relaying data frames received from external devices, the network relay device comprising:
- a plurality of ports to which external devices connect, and configured pre-correlated with types of authentication to be conducted with respect to connected external devices, the types of authentication including a first authentication type and a second authentication type;
an authentication process section for determining, when an external device is connected to the network relay device, the type of authentication that the port to which the external device is connected is configured for, and if the determined type of authentication is the first authentication type, conducting mutual authentication between the network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with type of connected external device; and
a relay process section for relaying frames received from an external device with which authentication by the authentication process section has succeeded.
1 Assignment
0 Petitions
Accused Products
Abstract
A network relay device includes: a plurality of ports to which external devices connect, and configured pre-correlated with types of authentication to be conducted with respect to connected external devices; an authentication process section for determining, when an external device is connected to the network relay device, the type of authentication that the port to which the external device is connected is configured for, and if the determined type of authentication is a first authentication type, conducting mutual authentication between the network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with type of connected external device; and a relay process section for relaying frames received from an external device with which authentication by the authentication process section has succeeded.
17 Citations
14 Claims
-
1. A network relay device for relaying data frames received from external devices, the network relay device comprising:
-
a plurality of ports to which external devices connect, and configured pre-correlated with types of authentication to be conducted with respect to connected external devices, the types of authentication including a first authentication type and a second authentication type; an authentication process section for determining, when an external device is connected to the network relay device, the type of authentication that the port to which the external device is connected is configured for, and if the determined type of authentication is the first authentication type, conducting mutual authentication between the network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with type of connected external device; and a relay process section for relaying frames received from an external device with which authentication by the authentication process section has succeeded. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method executed by a network relay device for controlling relay of frames received from external devices, the method comprising:
-
a step of determining type of authentication that a port of the network relay device to which an external device is connected is configured for; a step of conducting, if the type of authentication that an external-device-connected port is configured for is a first authentication type, mutual authentication between the network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with the type of the connected external device; a step of conducting, if the type of authentication that an external-device-connected port is configured for is a second authentication type, mutual authentication between the network relay device and the external device using a predetermined authentication protocol, regardless of the type of the connected external device; and a step of relaying frames received from an external device with which mutual authentication has succeeded.
-
-
13. A system of network relay devices, comprising:
-
a first network relay device which is for relaying data frames received from external devices and which includes a plurality of ports to which external devices connect, and configured pre-correlated with types of authentication to be conducted with respect to connected external devices, the types of authentication including a first authentication type and a second authentication type, an authentication process section for determining, when an external device is connected to the first network relay device, the type of authentication that the port to which the external device is connected is configured for, and if the determined type of authentication is the first authentication type, conducting mutual authentication between the first network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with type of connected external device, and a relay process section for relaying frames received from an external device with which authentication by the authentication process section has succeeded, a permission list for identifying, by the use of information included in frames received from an external device, frames that are relay-eligible being stored in the first network relay device, the relay process section including an authentication information management section for changing content stipulated in the permission list in response to an external device'"'"'s state of connection; and at least a second network relay device connected to the first network relay device, wherein when the authentication information management section of the first network relay device has changed the content of the permission list, the authentication information management section furthermore transmits the content of the changed permission list to the second network relay device.
-
-
14. A system of network relay devices, comprising:
-
a first network relay device which is for relaying data frames received from external devices and which includes a plurality of ports to which external devices connect, and configured pre-correlated with types of authentication to be conducted with respect to connected external devices, the types of authentication including a first authentication type and a second authentication type, an authentication process section for determining, when an external device is connected to the first network relay device, the type of authentication that the port to which the external device is connected is configured for, and if the determined type of authentication is the first authentication type, conducting mutual authentication between the first network relay device and the external device using an authentication protocol chosen from among a plurality of authentication protocol candidates in accordance with type of connected external device, and a relay process section for relaying frames received from an external device with which authentication by the authentication process section has succeeded, the first network relay device having preregistered therein MAC addresses for which connection is to be permitted; and at least a second network relay device connected to the first network relay device, wherein if the MAC address of the second network relay device is among those pre-registered in the first network relay device as a connection-permitted MAC address, the authentication process section of the first network relay device treats the second network relay device as a partner with which mutual authentication has succeeded.
-
Specification