CN105491045A - Authentication-free access control method, apparatus, device and system - Google Patents
Authentication-free access control method, apparatus, device and system Download PDFInfo
- Publication number
- CN105491045A CN105491045A CN201510906111.3A CN201510906111A CN105491045A CN 105491045 A CN105491045 A CN 105491045A CN 201510906111 A CN201510906111 A CN 201510906111A CN 105491045 A CN105491045 A CN 105491045A
- Authority
- CN
- China
- Prior art keywords
- message
- authentication
- domain name
- dnsresponse
- exempt
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides an authentication-free access control method, apparatus, device and system. According to the authentication-free access control method, apparatus, device and system provided by the invention, a new authentication-free address white list is set according to a preset domain name address white list, a domain name address carried in a DNS Response message and the relationship of corresponding IP addresses, therefore the authentication-free access control of a controlled user is realized, and the problem that a specific APP cannot both realize controlled security guarantee and non authentication in an consumption application process is solved.
Description
Technical field
The present invention relates to communication technical field, particularly relate to a kind of authentication-exempt connection control method, device, equipment and system.
Background technology
Internet era, various emerging service continues to bring out, and as micro-letter, Alipay and various APP arise at the historic moment, be also born with quick, the new operation mode of safety, but consumer also wishes fast to be served under safe consumption prerequisite simultaneously.
As everyone knows, network security is the precondition of fine-grained management.The maximum authentication techniques of current use have 802.1x technology, web authentication technology.
Fig. 1 is a typical web authentication networking diagram, the interface of nucleus equipment opens web authentication, focuses on nucleus equipment by the management of the whole network user, facilitates whole wet end to affix one's name to, and reduces the cost that follow-up monitoring is safeguarded.Nucleus equipment is as the gateway of the whole network user, and second line of a couplet user only has by the normal accesses network of ability after authentication.Wherein, the equipment opening certification is called NAS (NetworkAccessSecurity) equipment by us.
The basic procedure that user authentication is reached the standard grade, mainly comprises the interception of TCP message, the pseudo-establishment of connection of TCP, and the certification that is redirected and user of HTTP message is reached the standard grade.Any TCP request message that unauthenticated user sends all can be tackled by equipment, and serves as object network address and user and set up pseudo-connection, user is redirected to certificate server, completes verification process.
But in the APP consumer applications processes such as the micro-letter of terminal use or Alipay, micro-letter or Alipay are all first scan, can send the URL address (HTTP message) of corresponding server, but NAS equipment is not owing to having corresponding certification list item, terminal use cannot to be reached the standard grade consumption by certification.
Summary of the invention
The invention provides a kind of authentication-exempt connection control method, device, equipment and system, cannot accomplish existingly controlledly to ensure that safety again can the problem of authentication-exempt in consumer applications process in order to solve specific APP in prior art.
The invention provides a kind of authentication-exempt connection control method, described method comprises:
The DNSQuery information and sending that receiving terminal subscriber equipment sends is to dns server;
The DNSResponse message that reception dns server returns also resolves described DNSResponse message, when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, IP address corresponding with described domain name addresses of carrying in DNSResponse message is set in the white list of authentication-exempt address;
The access message that receiving terminal subscriber equipment sends, when the URL of described access message access meets authentication-exempt address white list, described access message of directly letting pass.
Present invention also offers a kind of authentication-exempt access control apparatus, described device comprises:
Packet sending and receiving module, the DNSQuery information and sending sent for receiving terminal subscriber equipment to dns server, and for receiving the DNSResponse message that dns server returns;
Packet parsing module, for resolving described DNSResponse message;
Message processing module (MPM), for when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, is set to IP address corresponding with described domain name addresses of carrying in DNSResponse message in the white list of authentication-exempt address;
Packet sending and receiving module is also for access message that receiving terminal subscriber equipment sends;
Message processing module (MPM) also for when the URL of described access message access meets authentication-exempt address white list, the directly described access message of clearance.
Invention further provides a kind of authentication-exempt access control equipment, described equipment comprises above-mentioned authentication-exempt access control apparatus.
The present invention has reoffered a kind of authentication-exempt access control system, and described system comprises above-mentioned authentication-exempt access control equipment, also comprises dns server;
Described dns server is for the DNSQuery message that receives authentication-exempt access control equipment and send and return DNSResponse message to authentication-exempt access control equipment.
Authentication-exempt connection control method of the present invention, device, equipment and system, by the domain name addresses white list that basis pre-sets, and the relation of the domain name addresses of carrying in DNSResponse message and corresponding IP address, new authentication-exempt address white list is set, achieve the authentication-exempt access control of controlled users, solve specific APP and cannot accomplish existingly controlledly to ensure that safety again can the problem of authentication-exempt in consumer applications process.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is web authentication networking diagram;
The authentication-exempt connection control method flow chart that Fig. 2 provides for the embodiment of the present invention one;
The authentication-exempt connection control method flow chart that Fig. 3 provides for the embodiment of the present invention two;
The authentication-exempt connection control method flow chart that Fig. 4 provides for the embodiment of the present invention three;
Fig. 5 is domain name addresses white list;
Fig. 6 is DNSQuery message format;
Fig. 7 is DNSResponse message format;
Fig. 8 is authentication-exempt address white list;
The authentication-exempt access control apparatus structural representation that Fig. 9 provides for the embodiment of the present invention four;
The authentication-exempt access control apparatus structural representation that Figure 10 provides for the embodiment of the present invention five;
The authentication-exempt access control system schematic diagram that Figure 11 provides for the embodiment of the present invention six;
The authentication-exempt access control system schematic diagram that Figure 12 provides for the embodiment of the present invention seven.
Embodiment
For making the object of the embodiment of the present invention, technical scheme and advantage clearly, below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
Cannot accomplish existingly controlledly to ensure that safety again can the problem of authentication-exempt in consumer applications process to solve specific APP in prior art, the present invention proposes a kind of authentication-exempt access control scheme.
The authentication-exempt connection control method flow chart that Fig. 2 provides for the embodiment of the present invention one, specifically comprises the following steps:
101, the DNSQuery information and sending that receiving terminal subscriber equipment sends is to dns server;
The executive agent of the present invention program is the authentication-exempt access control apparatus corresponding with method, this device can be a part for authentication-exempt access control equipment, such as this equipment can be NAS equipment, NAS equipment one end connects dns server, the other end connects end user device, or connects end user device by another access device.Embodiment is that NAS equipment is described for example with executive agent below, it should be noted that this does not form restriction to the solution of the present invention.
NAS equipment receives at the port one be connected with end user device (Port1) the DNSQuery message that end user device sends, domain name addresses is carried in Query message, for to IP address corresponding to this domain name addresses of dns server request, be DNS message due to what receive, then this message let pass and send to dns server.
201, the DNSResponse message that reception dns server returns also resolves described DNSResponse message;
301, when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, IP address corresponding with described domain name addresses of carrying in DNSResponse message is set in the white list of authentication-exempt address;
Domain name addresses white list can generate according to appointment APP or specified URL.
Dns server processes this message and returns DNSResponse message after receiving DNSQuery message, domain name addresses and corresponding IP address can be carried in DNSResponses message, wherein domain name addresses is identical with the domain name addresses of asking in DNSQuery message, this IP address, according to the IP address inquired about this domain name addresses in the server and obtain, is carried in DNSResponses message and returns to end user device by corresponding IP address and dns server.
NAS equipment is when receiving this DNSResponse message, parse the domain name addresses and corresponding IP address of carrying in this message, when this domain name addresses is in the domain name addresses white list pre-set, represent that the message of this domain name addresses of access and corresponding IP address can directly be let pass, therefore the IP address of correspondence can be set in another authentication-exempt address white list.
401, the access message that receiving terminal subscriber equipment sends, when the URL of described access message access meets authentication-exempt address white list, described access message of directly letting pass.
Subsequent terminal subscriber equipment sends access message to NAS equipment, directly lets pass to the access message of access URL in the white list of authentication-exempt address.
The authentication-exempt connection control method of the present embodiment passes through the domain name addresses white list according to pre-setting, and the relation of the domain name addresses of carrying in DNSResponse message and corresponding IP address, new authentication-exempt address white list is set, achieve the authentication-exempt access control of controlled users, solve specific APP and cannot accomplish existingly controlledly to ensure that safety again can the problem of authentication-exempt in consumer applications process.
Fig. 3 gives the authentication-exempt connection control method flow chart that the embodiment of the present invention two provides, and embodiment two is on the basis of embodiment one, further comprising the steps of:
501, when the domain name addresses of carrying in DNSResponse message is at the domain name addresses white list pre-set, described domain name addresses of carrying is set in the white list of authentication-exempt address.
Because the domain name addresses of carrying in DNSResponse message is originally in domain name addresses white list, therefore also this domain name addresses can be set in the white list of authentication-exempt address, when the URL of end user device access be no matter domain name addresses or IP address in this authentication-exempt address white list, all can directly let pass.
Fig. 4 gives the authentication-exempt connection control method flow chart that the embodiment of the present invention three provides, embodiment three on the basis of embodiment one,
Step 201 is specifically as follows:
Receive the DNSResponse message that dns server returns, DNSResponse message is resolved, from the value of message format Queries field, obtain the domain name addresses of carrying in DNSResponse message, from the value of message format Answers field, obtain IP address corresponding with described domain name addresses of carrying in DNSResponse message.
Aforesaid operations can be smelt and visits (DNS-Sniffer) function and realize by arranging DNS on the port be connected with server, and DNS smells spy and can resolve DNS packet and analyze.
It should be noted that, embodiment three also can comprise above step further on the basis of embodiment two.
The implementation of the present invention program is described with a detailed example below:
Suppose terminal use A, by micro-letter scanning, access dns.weixin.qq.com, at NAS Equipments Setting weixinAPP or specified URL: dns.weixin.qq.com, trigger equipment generates domain name addresses white list, as shown in Figure 5, arranging DNS at port 2 (Port2) port be connected with dns server smells spy function simultaneously.
The micro-letter scanning of terminal use A needs the address dns.weixin.qq.com of access, end user device sends DNSQuery message (message object IP address 192.168.58.110, message content is with dns.weixin.qq.com field) require domain name mapping to dns server, give the form of DNSQuery message as shown in Figure 6.
The port one (Port1) that NAS equipment is connected with end user device receives DNSQuery message, owing to being DNS message, then directly let pass, be transmitted to dns server and carry out domain name mapping, DNSResponse message is responded after dns server process, message format as shown in Figure 7, according to corresponding 4 the IP addresses of the known domain name addresses dns.weixin.qq.com of message content.
After the Port2 port of NAS equipment receives DNSResponse message, spy (DNS-Sniffer) function is smelt to Queries and Answers field message parse in DNSResponse message format by its DNS, when in Queries field, Name field domain name content drops on domain name addresses white list in Fig. 5, again in conjunction with Answers field message generation authentication-exempt address white list, give authentication-exempt address white list as shown in Figure 8.
URL when end-user access: when domain name addresses or IP address character close and state Host and Address field value in the white list of authentication-exempt address, directly let pass without the need to certification.
The authentication-exempt access control apparatus structural representation that Fig. 9 provides for the embodiment of the present invention four, described device comprises:
Packet sending and receiving module 10, the DNSQuery information and sending sent for receiving terminal subscriber equipment to dns server, and for receiving the DNSResponse message that dns server returns;
Packet parsing module 20, for resolving described DNSResponse message;
Message processing module (MPM) 30, for when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, IP address corresponding with described domain name addresses of carrying in DNSResponse message is set in the white list of authentication-exempt address;
Packet sending and receiving module 10 is also for access message that receiving terminal subscriber equipment sends;
Message processing module (MPM) 30 also for when the URL of described access message access meets authentication-exempt address white list, the directly described access message of clearance.
Further alternative, described domain name addresses of carrying also for when the domain name addresses of carrying in DNSResponse message is at the domain name addresses white list pre-set, is set in the white list of authentication-exempt address by described message processing module (MPM) 30.
Figure 10 exempts from inking device structural representation for the network that the embodiment of the present invention five provides, and further alternative, described device also comprises:
Configuration module 40, for generating domain name addresses white list according to appointment APP or specified URL.
Further alternative, described packet parsing module 20 specifically for: DNSResponse message is resolved, from the value of message format Queries field, obtain the domain name addresses of carrying in DNSResponse message, from the value of message format Answers field, obtain IP address corresponding with described domain name addresses of carrying in DNSResponse message.
The authentication-exempt access control apparatus of the present embodiment passes through the domain name addresses white list according to pre-setting, and the relation of the domain name addresses of carrying in DNSResponse message and corresponding IP address, new authentication-exempt address white list is set, achieve the authentication-exempt access control of controlled users, solve specific APP and cannot accomplish existingly controlledly to ensure that safety again can the problem of authentication-exempt in consumer applications process.
In addition, present invention also offers a kind of authentication-exempt access control equipment, described equipment comprises above-mentioned authentication-exempt access control apparatus.
Further, as shown in figure 11, invention further provides a kind of authentication-exempt access control system, described system comprises above-mentioned authentication-exempt access control equipment 01, also comprises dns server 02;
Wherein authentication-exempt access control equipment 01 is connected with dns server 02, and dns server 02 is for the DNSQuery message that receives authentication-exempt access control equipment and send and return DNSResponse message to authentication-exempt access control equipment.
Further, as shown in figure 12, the present invention has reoffered a kind of authentication-exempt access control system, and described system comprises above-mentioned authentication-exempt access control equipment 01, dns server 02, also comprises end user device 03;
Wherein authentication-exempt access control equipment 01 is connected with end user device 03 with dns server 02 respectively, and end user device 03 for sending DNSQuery message to authentication-exempt access control equipment, and sends access message to authentication-exempt access control equipment.
One of ordinary skill in the art will appreciate that: all or part of step realizing said method embodiment can have been come by the hardware that program command is relevant, aforesaid program can be stored in a computer read/write memory medium, this program, when performing, performs the step comprising said method embodiment; And aforesaid storage medium comprises: ROM, RAM, magnetic disc or CD etc. various can be program code stored medium.
Device embodiment described above is only schematic, the module wherein illustrated as separating component or unit or can may not be and physically separate, parts as unit display can be or may not be physical location, namely can be positioned at a place, or also can be distributed at least two network element.Some or all of module wherein or unit can be selected according to the actual needs to realize the object of the present embodiment scheme.Those of ordinary skill in the art, when not paying performing creative labour, are namely appreciated that and implement.
Last it is noted that above embodiment is only in order to illustrate technical scheme of the present invention, be not intended to limit; Although with reference to previous embodiment to invention has been detailed description, those of ordinary skill in the art is to be understood that: it still can be modified to the technical scheme described in foregoing embodiments, or carries out equivalent replacement to wherein portion of techniques feature; And these amendments or replacement, do not make the essence of appropriate technical solution depart from the spirit and scope of various embodiments of the present invention technical scheme.
Claims (10)
1. an authentication-exempt connection control method, is characterized in that, described method comprises:
The DNSQuery information and sending that receiving terminal subscriber equipment sends is to dns server;
The DNSResponse message that reception dns server returns also resolves described DNSResponse message, when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, IP address corresponding with described domain name addresses of carrying in DNSResponse message is set in the white list of authentication-exempt address;
The access message that receiving terminal subscriber equipment sends, when the URL of described access message access meets authentication-exempt address white list, described access message of directly letting pass.
2. method according to claim 1, is characterized in that, described method also comprises:
When the domain name addresses of carrying in DNSResponse message is at the domain name addresses white list pre-set, described domain name addresses of carrying is set in the white list of authentication-exempt address.
3. method according to claim 1 and 2, is characterized in that, described method also comprises:
Domain name addresses white list is generated according to appointment APP or specified URL.
4. method according to claim 1 and 2, is characterized in that,
The described DNSResponse message of described parsing specifically comprises:
DNSResponse message is resolved, from the value of message format Queries field, obtain the domain name addresses of carrying in DNSResponse message, from the value of message format Answers field, obtain IP address corresponding with described domain name addresses of carrying in DNSResponse message.
5. an authentication-exempt access control apparatus, is characterized in that, described device comprises:
Packet sending and receiving module, the DNSQuery information and sending sent for receiving terminal subscriber equipment to dns server, and for receiving the DNSResponse message that dns server returns;
Packet parsing module, for resolving described DNSResponse message;
Message processing module (MPM), for when the domain name addresses of carrying in DNSResponse message is in the domain name addresses white list pre-set, is set to IP address corresponding with described domain name addresses of carrying in DNSResponse message in the white list of authentication-exempt address;
Packet sending and receiving module is also for access message that receiving terminal subscriber equipment sends;
Message processing module (MPM) also for when the URL of described access message access meets authentication-exempt address white list, the directly described access message of clearance.
6. device according to claim 5, is characterized in that,
Described domain name addresses of carrying also for when the domain name addresses of carrying in DNSResponse message is at the domain name addresses white list pre-set, is set in the white list of authentication-exempt address by described message processing module (MPM).
7. the device according to claim 5 or 6, is characterized in that, described device also comprises:
Configuration module, for generating domain name addresses white list according to appointment APP or specified URL.
8. the device according to claim 5 or 6, is characterized in that,
Described packet parsing module specifically for: DNSResponse message is resolved, from the value of message format Queries field, obtain the domain name addresses of carrying in DNSResponse message, from the value of message format Answers field, obtain IP address corresponding with described domain name addresses of carrying in DNSResponse message.
9. an authentication-exempt access control equipment, is characterized in that, described equipment comprises the device as described in any one of claim 5-8.
10. an authentication-exempt access control system, is characterized in that, described system comprises equipment according to claim 9, also comprises dns server;
Described dns server is for the DNSQuery message that receives authentication-exempt access control equipment and send and return DNSResponse message to authentication-exempt access control equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510906111.3A CN105491045A (en) | 2015-12-09 | 2015-12-09 | Authentication-free access control method, apparatus, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510906111.3A CN105491045A (en) | 2015-12-09 | 2015-12-09 | Authentication-free access control method, apparatus, device and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105491045A true CN105491045A (en) | 2016-04-13 |
Family
ID=55677760
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510906111.3A Pending CN105491045A (en) | 2015-12-09 | 2015-12-09 | Authentication-free access control method, apparatus, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105491045A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106899711A (en) * | 2017-05-09 | 2017-06-27 | 南京赢纳信息科技有限公司 | A kind of dynamic territory analyzing module and its black and white lists implementation method based on Linux |
| CN107295006A (en) * | 2017-07-28 | 2017-10-24 | 上海斐讯数据通信技术有限公司 | Authentication-exempt accesses URL method and system |
| CN107979655A (en) * | 2017-09-29 | 2018-05-01 | 新华三技术有限公司 | Access control method, access control apparatus and access device |
| CN108809892A (en) * | 2017-04-27 | 2018-11-13 | 贵州白山云科技有限公司 | A kind of IP white lists generation method and device |
| CN111787028A (en) * | 2020-07-29 | 2020-10-16 | 成都飞鱼星科技股份有限公司 | Network access control method, equipment and storage medium |
| CN114500094A (en) * | 2022-02-24 | 2022-05-13 | 新华三技术有限公司合肥分公司 | Access method and device |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102006286A (en) * | 2010-10-29 | 2011-04-06 | 北京星网锐捷网络技术有限公司 | Access management method, device and system as well as access device for information system |
| CN104023001A (en) * | 2013-12-25 | 2014-09-03 | 上海寰创通信科技股份有限公司 | Method for AC equipment to forward unauthorized message information |
| CN104158808A (en) * | 2014-08-19 | 2014-11-19 | 杭州华三通信技术有限公司 | Portal authentication method based on APP application and device |
| CN104301180A (en) * | 2014-10-16 | 2015-01-21 | 杭州华三通信技术有限公司 | Service message processing method and device |
| CN104506510A (en) * | 2014-12-15 | 2015-04-08 | 百度在线网络技术(北京)有限公司 | Method and device for equipment authentication and authentication service system |
-
2015
- 2015-12-09 CN CN201510906111.3A patent/CN105491045A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102006286A (en) * | 2010-10-29 | 2011-04-06 | 北京星网锐捷网络技术有限公司 | Access management method, device and system as well as access device for information system |
| CN104023001A (en) * | 2013-12-25 | 2014-09-03 | 上海寰创通信科技股份有限公司 | Method for AC equipment to forward unauthorized message information |
| CN104158808A (en) * | 2014-08-19 | 2014-11-19 | 杭州华三通信技术有限公司 | Portal authentication method based on APP application and device |
| CN104301180A (en) * | 2014-10-16 | 2015-01-21 | 杭州华三通信技术有限公司 | Service message processing method and device |
| CN104506510A (en) * | 2014-12-15 | 2015-04-08 | 百度在线网络技术(北京)有限公司 | Method and device for equipment authentication and authentication service system |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108809892A (en) * | 2017-04-27 | 2018-11-13 | 贵州白山云科技有限公司 | A kind of IP white lists generation method and device |
| CN106899711A (en) * | 2017-05-09 | 2017-06-27 | 南京赢纳信息科技有限公司 | A kind of dynamic territory analyzing module and its black and white lists implementation method based on Linux |
| CN107295006A (en) * | 2017-07-28 | 2017-10-24 | 上海斐讯数据通信技术有限公司 | Authentication-exempt accesses URL method and system |
| CN107979655A (en) * | 2017-09-29 | 2018-05-01 | 新华三技术有限公司 | Access control method, access control apparatus and access device |
| CN111787028A (en) * | 2020-07-29 | 2020-10-16 | 成都飞鱼星科技股份有限公司 | Network access control method, equipment and storage medium |
| CN114500094A (en) * | 2022-02-24 | 2022-05-13 | 新华三技术有限公司合肥分公司 | Access method and device |
| CN114500094B (en) * | 2022-02-24 | 2024-03-12 | 新华三技术有限公司合肥分公司 | Access method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105491045A (en) | Authentication-free access control method, apparatus, device and system | |
| CN112272158A (en) | Data proxy method, system and proxy server | |
| CN104243627A (en) | Domain name resolution method, device and system | |
| CN102739684B (en) | Portal authentication method based on virtual IP address, and server thereof | |
| CN102884764A (en) | Message receiving method, deep packet inspection device, and system | |
| CN105430016A (en) | Network access authentication method and system | |
| CN111049946B (en) | Portal authentication method, portal authentication system, electronic equipment and storage medium | |
| CN105873055B (en) | Wireless network access authentication method and device | |
| CN103428211A (en) | Network authentication system on basis of switchboards and authentication method for network authentication system | |
| CN113341798A (en) | Method, system, device, equipment and storage medium for remotely accessing application | |
| CN105991565A (en) | Reading and writing separation method and system and database agent server | |
| CN112714027B (en) | Method and system for accessing terminal equipment of Internet of things to gateway | |
| CN112039905B (en) | Reverse connection-based network communication method and device, electronic equipment and medium | |
| US8903998B2 (en) | Apparatus and method for monitoring web application telecommunication data by user | |
| CN104468619A (en) | Method and gateway for achieving dual-stack web authentication | |
| CN114465791B (en) | Method and device for establishing white list in network management equipment, storage medium and processor | |
| EP3267633A1 (en) | Information processing system, proxy server, address duplication prevention method, and computer-readable recording medium | |
| CN111885217A (en) | Data communication method, device, equipment and storage medium | |
| CN107911496A (en) | A kind of VPN service terminal acts on behalf of the method and device of DNS | |
| CN101945053B (en) | Method and device for transmitting message | |
| CN104092751B (en) | A kind of Operational Visit method and apparatus | |
| CN106375489B (en) | Method and device for processing Media Access Control (MAC) address | |
| CN103986793B (en) | A kind of method and system of lifting Portal certification IP address service efficiencies | |
| CN109495602B (en) | Method and device for processing network access abnormity | |
| CN104009999A (en) | Method and device for preventing ARP cheating and network access server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160413 |
|
| RJ01 | Rejection of invention patent application after publication |