CN104168200B - A kind of method and system that acl feature is realized based on Open vSwitch - Google Patents
A kind of method and system that acl feature is realized based on Open vSwitch Download PDFInfo
- Publication number
- CN104168200B CN104168200B CN201410328769.6A CN201410328769A CN104168200B CN 104168200 B CN104168200 B CN 104168200B CN 201410328769 A CN201410328769 A CN 201410328769A CN 104168200 B CN104168200 B CN 104168200B
- Authority
- CN
- China
- Prior art keywords
- network
- acl
- open vswitch
- rule
- flow
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 27
- 238000003780 insertion Methods 0.000 abstract 1
- 230000037431 insertion Effects 0.000 abstract 1
- 238000010586 diagram Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
Landscapes
- Information Transfer Between Computers (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
技术领域technical field
本发明涉及计算机网络技术领域,具体涉及一种基于Open vSwitch实现ACL功能的方法及系统。The invention relates to the technical field of computer networks, in particular to a method and system for realizing ACL functions based on Open vSwitch.
背景技术Background technique
由于一个虚拟机上可能存在多个虚拟后的系统,系统之间通讯就需要通过网络,但和普通的物理系统间通过实体网络设备互联不同,虚拟系统的网络接口也是虚拟的,因此不能直接通过实体网络设备互联,目前流行的一种解决方案是:虚拟交换(VirtualSwitching,简称vSwitch)技术。所谓的vSwitch,是指将虚拟网桥完全在服务器(终端)硬件上实现,不涉及外部交换机的协作。Since there may be multiple virtualized systems on a virtual machine, the communication between the systems needs to go through the network, but unlike ordinary physical systems interconnected through physical network devices, the network interface of the virtual system is also virtual, so it cannot be directly connected through A currently popular solution for physical network device interconnection is: virtual switching (Virtual Switching, vSwitch for short) technology. The so-called vSwitch means that the virtual network bridge is completely implemented on the server (terminal) hardware, and does not involve the cooperation of external switches.
跟普通服务器设备一样,每个虚拟机有着自己的虚拟网卡(virtual NIC),每个virtual NIC有着自己的MAC地址和IP地址。vSwitch相当于一个虚拟的二层交换机,该交换机连接虚拟网卡和物理网卡,将虚拟机上的数据报文从物理网口转发出去。根据需要,vSwitch还可以支持二层转发、安全控制、端口镜像等功能。Like ordinary server equipment, each virtual machine has its own virtual network card (virtual NIC), and each virtual NIC has its own MAC address and IP address. The vSwitch is equivalent to a virtual Layer 2 switch, which connects the virtual network card and the physical network card, and forwards the data packets on the virtual machine through the physical network port. According to needs, vSwitch can also support Layer 2 forwarding, security control, port mirroring and other functions.
但现有技术中,利用传统的vSwitch实现访问控制列表(Access Control list,简称ACL)功能需要消耗CPU资源,对服务器的性能有影响。However, in the prior art, using a traditional vSwitch to implement the access control list (Access Control list, ACL for short) function needs to consume CPU resources, which affects the performance of the server.
发明内容Contents of the invention
针对现有技术的缺陷,本发明提供的实现ACL功能的方法,采用Open vSwitch解决虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的。Aiming at the defects of the prior art, the method for realizing the ACL function provided by the present invention adopts Open vSwitch to solve the ACL function of the virtual machine flow, thereby achieving the purpose of controlling the data flow of the virtual machine.
第一方面,本发明提供了一种基于Open vSwitch实现ACL功能的方法,该方法包括:In the first aspect, the present invention provides a method for realizing the ACL function based on Open vSwitch, the method comprising:
S1:第一主机将设置的关于某虚拟机的访问控制列表ACL规则发送到第一主机的网络控制服务端;S1: The first host sends the set ACL rules about a virtual machine to the network control server of the first host;
S2:网络控制服务端接收到ACL规则后,将所述ACL规则转换成开放虚拟交换标准Open vSwitch所使用的流Flow规则,并将所述Flow规则发送到所述虚拟机所在第二主机的网络代理服务端;S2: After receiving the ACL rule, the network control server converts the ACL rule into the Flow rule used by the open virtual switching standard Open vSwitch, and sends the Flow rule to the network of the second host where the virtual machine is located Proxy server;
S3:网络代理服务端将接收到的Flow规则转换成OVS命令,并在第二主机上执行所述OVS命令,以将所述Flow规则插入Open vSwitch的流Flow表中。S3: The network proxy server converts the received Flow rule into an OVS command, and executes the OVS command on the second host, so as to insert the Flow rule into the Flow table of the Open vSwitch.
优选地,该方法步骤S3后还包括:Preferably, the method further includes after step S3:
当虚拟机内有流量进入到Open vSwitch中,Open vSwitch会在Flow表中进行对比,并执行相应Flow规则所定义的动作。When traffic in the virtual machine enters the Open vSwitch, the Open vSwitch will compare it in the Flow table and execute the action defined by the corresponding Flow rule.
优选地,该方法步骤S2还包括:Preferably, the method step S2 also includes:
网络控制服务端将接收到的ACL规则保存到分布式数据库中。The network control server saves the received ACL rules into the distributed database.
优选地,所述ACL规则适用于网络Network或虚拟网卡。Preferably, the ACL rule is applicable to a network or a virtual network card.
优选地,所述ACL规则之间的优先级从高到低依次为:不可覆盖的网络Network级别、虚拟网卡级别以及可覆盖的Network级别。Preferably, the priorities of the ACL rules from high to low are: non-overlapping Network level, virtual network card level, and overridable Network level.
第二方面,本发明提供了一种基于Open vSwitch实现ACL功能的系统,该系统包括虚拟机、Open vSwitch、网络代理服务端及网络控制服务端;In a second aspect, the present invention provides a system for realizing the ACL function based on Open vSwitch, the system includes a virtual machine, Open vSwitch, a network proxy server and a network control server;
网络控制服务端,用于将接收到的ACL规则转换成Open vSwitch所使用的Flow规则,将所述Flow规则发送到所述虚拟机所在主机的网络代理服务端;The network control server is used to convert the received ACL rule into the Flow rule used by Open vSwitch, and send the Flow rule to the network proxy server of the host where the virtual machine is located;
网络代理服务端,用于将将接收到的Flow规则转换成OVS命令,并在本地主机上执行所述OVS命令,并将所述Flow规则插入所述Open vSwitch中的Flow表中;The network proxy server is used to convert the received Flow rule into an OVS command, and execute the OVS command on the local host, and insert the Flow rule into the Flow table in the Open vSwitch;
Open vSwitch,用于根据进入到Open vSwitch中虚拟机的流量,在其Flow表中进行对比,并执行相应Flow规则所定义的动作。The Open vSwitch is used to compare the traffic entering the virtual machine in the Open vSwitch in its Flow table, and execute the actions defined by the corresponding Flow rules.
优选地,所述网络控制服务端的功能还包括:将接收到的ACL规则保存到分布式数据库中。Preferably, the function of the network control server further includes: saving the received ACL rules into a distributed database.
优选地,所述虚拟机、所述Open vSwitch和所述网络代理服务位于同一主机,所述网络控制服务端位于另一主机。Preferably, the virtual machine, the Open vSwitch and the network proxy service are located on the same host, and the network control server is located on another host.
优选地,所述系统还包括物理交换机,用于通过物理网卡连接不同主机。Preferably, the system further includes a physical switch for connecting different hosts through physical network cards.
由上述技术方案可知,本发明提供的一种实现ACL功能的方法和系统,采用OpenvSwitch及分布式的结构解决了虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的,由于整个系统分布于不同的主机,使得服务器性能明显提高。It can be seen from the above technical solution that the method and system for realizing the ACL function provided by the present invention solves the ACL function of the virtual machine traffic by using OpenvSwitch and the distributed structure, so as to achieve the purpose of controlling the data traffic of the virtual machine. Since the entire system is distributed Compared with different hosts, the performance of the server is significantly improved.
附图说明Description of drawings
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention or the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description are only These are some embodiments of the present invention. Those skilled in the art can also obtain other drawings based on these drawings without creative work.
图1是本发明实施例提供的基于Open vSwitch实现ACL功能的方法的流程图;Fig. 1 is the flow chart of the method for realizing ACL function based on Open vSwitch that the embodiment of the present invention provides;
图2是本发明实施例提供的基于Open vSwitch实现ACL功能的系统的结构示意图;FIG. 2 is a schematic structural diagram of a system for realizing ACL functions based on Open vSwitch provided by an embodiment of the present invention;
图3是本发明另一实施例提供的Open vSwitch在Flow表中进行对比的流程示意图。Fig. 3 is a schematic flow chart of comparing Open vSwitch in a Flow table according to another embodiment of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.
Open vSwitch是一种软件,Open vSwitch即开放虚拟交换标准。如图1所示,图1示出了本发明提供的基于Open vSwitch实现ACL功能的方法的流程图,该方法包括:Open vSwitch is a kind of software, and Open vSwitch is an open virtual switching standard. As shown in Figure 1, Figure 1 shows the flow chart of the method for realizing the ACL function based on Open vSwitch provided by the present invention, and the method includes:
S1:第一主机将设置的关于某虚拟机的访问控制列表ACL规则发送到第一主机的网络控制服务端;S1: The first host sends the set ACL rules about a virtual machine to the network control server of the first host;
S2:网络控制服务端接收到ACL规则后,将所述ACL规则转换成开放虚拟交换标准Open vSwitch所使用的流Flow规则,并将所述Flow规则发送到所述虚拟机所在第二主机的网络代理服务端;S2: After receiving the ACL rule, the network control server converts the ACL rule into the Flow rule used by the open virtual switching standard Open vSwitch, and sends the Flow rule to the network of the second host where the virtual machine is located Proxy server;
S3:网络代理服务端将接收到的Flow规则转换成OVS命令,并在第二主机上执行所述OVS命令,以将所述Flow规则插入Open vSwitch的流Flow表中。S3: The network proxy server converts the received Flow rule into an OVS command, and executes the OVS command on the second host, so as to insert the Flow rule into the Flow table of the Open vSwitch.
其中,该方法步骤S3后还包括:Wherein, the method also includes after step S3:
当虚拟机内有流量进入到Open vSwitch中,Open vSwitch会在Flow表中进行对比,并执行相应Flow规则所定义的动作。When traffic in the virtual machine enters the Open vSwitch, the Open vSwitch will compare it in the Flow table and execute the action defined by the corresponding Flow rule.
因此若新设定的ACL规则为不允许TCP协议的8080端口的流量通过,则当虚拟机流量是TCP协议,且端口是8080时,就会执行DROP动作。Therefore, if the newly set ACL rule does not allow traffic on port 8080 of the TCP protocol to pass, then when the virtual machine traffic is TCP protocol and the port is 8080, the DROP action will be executed.
如图3所示,图3示出了Open vSwitch中Flow表,共包括3个Flow表Table0、Table1和Table2,由图可知,当有流量进入Open vSwitch中时,Open vSwitch在Flow表中进行对比的过程为:As shown in Figure 3, Figure 3 shows the Flow table in Open vSwitch, including three Flow tables Table0, Table1, and Table2. It can be seen from the figure that when there is traffic entering Open vSwitch, Open vSwitch compares it in the Flow table The process is:
(1)当有流量进入Open vSwitch时,Table0判断该流量是都为虚拟机网卡中出来的流量,若是,则加上VLAN Tag,并跳转到Table1;(1) When there is traffic entering Open vSwitch, Table0 judges that the traffic is all from the virtual machine NIC, if so, add VLAN Tag and jump to Table1;
(2)Table1根据优先级依次判断该流量是否与不可覆的Network级别的Flows、虚拟网卡级别的Flows及可覆盖的Network级别Flows中的Flow规则匹配,若与其中某个Flow规则匹配,则执行该Flow规则所定义的动作(action),而若需执行的动作为允许(normal)动作,跳转到Table2;(2) Table1 judges whether the traffic matches the Flow rules in the non-recoverable Network-level Flows, virtual network card-level Flows, and overridable Network-level Flows according to the priority. If it matches one of the Flow rules, execute The action (action) defined by the Flow rule, and if the action to be executed is a permitted (normal) action, jump to Table2;
(3)Table2判断该流量是否为虚拟机网卡出来的流量,若是,则去掉VLAN Tag。(3) Table2 judges whether the traffic is the traffic from the network card of the virtual machine, and if so, removes the VLAN Tag.
上述方法中的步骤S2还包括:Step S2 in the above method also includes:
网络控制服务端将接收到的ACL规则保存到分布式数据库中。The network control server saves the received ACL rules into the distributed database.
可选地,所述ACL规则适用于网络Network或虚拟网卡。具体来说,它们分别针对的是某一个网络和某一个虚拟机上的虚拟网卡。当用户给一个虚拟机的虚拟网卡设置ACL后,那么Flow只下发到虚拟机所在的主机上。当用户给一个虚拟网络设置ACL后,那么首先会查找出所有属于这个虚拟网络的虚拟网卡,之后再找出这个虚拟网卡对应的虚拟机在那些主机上,最后把这个Flow下发到这些主机上。Optionally, the ACL rule is applicable to the Network or virtual network card. Specifically, they are respectively aimed at a certain network and a virtual network card on a certain virtual machine. After the user sets the ACL for the virtual network card of a virtual machine, the Flow is only delivered to the host where the virtual machine is located. When the user sets an ACL for a virtual network, it will first find out all the virtual network cards belonging to the virtual network, and then find out the virtual machines corresponding to the virtual network card on those hosts, and finally send the Flow to these hosts .
优选地,所述ACL规则之间的优先级从高到低依次为:不可覆盖的网络Network级别、虚拟网卡级别以及可覆盖的Network级别。Preferably, the priorities of the ACL rules from high to low are: non-overlapping Network level, virtual network card level, and overridable Network level.
如图2所示,图2示出了本发明提供的基于Open vSwitch实现ACL功能的系统的结构示意图,该系统包括虚拟机、Open vSwitch、网络代理服务端及网络控制服务端。As shown in FIG. 2 , FIG. 2 shows a schematic structural diagram of a system for implementing ACL functions based on Open vSwitch provided by the present invention. The system includes a virtual machine, Open vSwitch, a network proxy server and a network control server.
具体来说,网络控制服务端,用于将接收到的ACL规则转换成Open vSwitch所使用的Flow规则,并将所述Flow规则发送到所述虚拟机所在主机的网络代理服务端;网络代理服务端,用于将将接收到的Flow规则转换成OVS命令,并在本地主机上执行所述OVS命令,并将所述Flow规则插入所述Open vSwitch中的Flow表中;Open vSwitch,用于根据进入到Open vSwitch中虚拟机的流量,在其Flow表中进行对比,并执行相应Flow规则所定义的动作。Specifically, the network control server is used to convert the received ACL rule into the Flow rule used by Open vSwitch, and send the Flow rule to the network proxy server of the host where the virtual machine is located; the network proxy service The end is used for converting the received Flow rule into an OVS command, and executing the OVS command on the local host, and inserting the Flow rule into the Flow table in the Open vSwitch; Open vSwitch is used for according to The traffic entering the virtual machine in Open vSwitch is compared in its Flow table, and the action defined by the corresponding Flow rule is executed.
而且,所述系统还包括物理交换机,用于通过物理网卡连接不同主机。Moreover, the system further includes a physical switch for connecting different hosts through physical network cards.
其中,所述虚拟机、所述Open vSwitch和所述网络代理服务位于同一主机B,所述网络控制服务端位于另一主机A。Wherein, the virtual machine, the Open vSwitch and the network proxy service are located on the same host B, and the network control server is located on another host A.
优选地,所述网络控制服务端的功能还包括:将接收到的ACL规则保存到分布式数据库中。Preferably, the function of the network control server further includes: saving the received ACL rules into a distributed database.
由上述技术方案可知,本发明提供的一种实现ACL功能的方法和系统,采用OpenvSwitch及分布式的结构解决了虚拟机流量的ACL功能,从而达到控制虚拟机数据流量的目的,由于整个系统分布于不同的主机,使得服务器性能明显提高。It can be seen from the above technical solution that the method and system for realizing the ACL function provided by the present invention solves the ACL function of the virtual machine traffic by using OpenvSwitch and the distributed structure, thereby achieving the purpose of controlling the data traffic of the virtual machine. Since the entire system is distributed Compared with different hosts, the performance of the server is significantly improved.
以上实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解;其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的精神和范围。The above embodiments are only used to illustrate the technical solutions of the present invention, rather than to limit them; although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand; Modifications are made to the recorded technical solutions, or equivalent replacements are made to some of the technical features; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (9)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410328769.6A CN104168200B (en) | 2014-07-10 | 2014-07-10 | A kind of method and system that acl feature is realized based on Open vSwitch |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410328769.6A CN104168200B (en) | 2014-07-10 | 2014-07-10 | A kind of method and system that acl feature is realized based on Open vSwitch |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104168200A CN104168200A (en) | 2014-11-26 |
| CN104168200B true CN104168200B (en) | 2017-08-25 |
Family
ID=51911836
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410328769.6A Expired - Fee Related CN104168200B (en) | 2014-07-10 | 2014-07-10 | A kind of method and system that acl feature is realized based on Open vSwitch |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104168200B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106034052B (en) * | 2015-03-13 | 2019-05-17 | 北京网御星云信息技术有限公司 | The system and method that two laminar flow amounts are monitored a kind of between of virtual machine |
| CN105245376B (en) * | 2015-10-15 | 2018-11-30 | 成都电科致远网络科技有限公司 | Residential quarters network control system based on SDN |
| US20190028409A1 (en) * | 2017-07-19 | 2019-01-24 | Alibaba Group Holding Limited | Virtual switch device and method |
| CN107612843A (en) * | 2017-09-27 | 2018-01-19 | 国云科技股份有限公司 | A method to prevent cloud platform IP and MAC forgery |
| CN108322467B (en) * | 2018-02-02 | 2021-11-05 | 云宏信息科技股份有限公司 | OVS-based virtual firewall configuration method, electronic device and storage medium |
| CN115175131B (en) * | 2022-06-29 | 2024-08-27 | Oppo广东移动通信有限公司 | Bluetooth transmission control method and device, mobile terminal and storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103701822A (en) * | 2013-12-31 | 2014-04-02 | 曙光云计算技术有限公司 | Access control method |
| CN103763309A (en) * | 2013-12-31 | 2014-04-30 | 曙光云计算技术有限公司 | Safety domain control method and system based on virtual network |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8989187B2 (en) * | 2010-06-04 | 2015-03-24 | Coraid, Inc. | Method and system of scaling a cloud computing network |
-
2014
- 2014-07-10 CN CN201410328769.6A patent/CN104168200B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103701822A (en) * | 2013-12-31 | 2014-04-02 | 曙光云计算技术有限公司 | Access control method |
| CN103763309A (en) * | 2013-12-31 | 2014-04-30 | 曙光云计算技术有限公司 | Safety domain control method and system based on virtual network |
Non-Patent Citations (1)
| Title |
|---|
| 基于Open vSwitch的虚拟网络访问控制研究;李锐等;《计算机应用与软件》;20140531;第31卷(第5期);308-311 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104168200A (en) | 2014-11-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9654395B2 (en) | SDN-based service chaining system | |
| US10452422B2 (en) | Method and apparatus for deploying virtual machine instance, and device | |
| CN109120494B (en) | Method for accessing physical machine in cloud computing system | |
| CN104168200B (en) | A kind of method and system that acl feature is realized based on Open vSwitch | |
| US9917729B2 (en) | Methods, systems, and computer readable media for multi-layer orchestration in software defined networks (SDNs) | |
| US9667538B2 (en) | Method and apparatus for connecting a gateway router to a set of scalable virtual IP network appliances in overlay networks | |
| CN105099789B (en) | A kind of network element updating method and apparatus | |
| EP3275140B1 (en) | Technique for achieving low latency in data center network environments | |
| CN104253767B (en) | A kind of implementation method of virtual burst network and a kind of interchanger | |
| US20160301603A1 (en) | Integrated routing method based on software-defined network and system thereof | |
| CN105207873A (en) | Message processing method and apparatus | |
| CA2832019A1 (en) | Network system, switch and connected terminal detection method | |
| JP7101308B2 (en) | High-speed transfer table creation | |
| CN102316043A (en) | Port virtualization method, switch and communication system | |
| CN104506614B (en) | A kind of design method at the more live data centers of distribution based on cloud computing | |
| CN107566237A (en) | A kind of data message processing method and device | |
| US10009217B2 (en) | Fault tolerant level 2 channel selection | |
| RU2602333C2 (en) | Network system, packet processing method and storage medium | |
| CN106161603B (en) | A method, device and architecture for networking | |
| WO2017063578A1 (en) | Data packet processing method and apparatus | |
| CN103765837B (en) | Multi-CPU message processing method and system, switching unit, single board | |
| CN105376256A (en) | A method for controlling user access to virtual machines based on Openflow | |
| WO2022120974A1 (en) | Virtualization security gateway system | |
| CN104767677A (en) | Access node system and computing resource pool unit for same | |
| WO2017063511A1 (en) | Sdn-based residential cell network control system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| PP01 | Preservation of patent right | ||
| PP01 | Preservation of patent right |
Effective date of registration: 20180528 Granted publication date: 20170825 |
|
| PD01 | Discharge of preservation of patent | ||
| PD01 | Discharge of preservation of patent |
Date of cancellation: 20240528 Granted publication date: 20170825 |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170825 |