CN107204886A - A kind of method and device of serve port management - Google Patents

A kind of method and device of serve port management Download PDF

Info

Publication number
CN107204886A
CN107204886A CN201610149529.9A CN201610149529A CN107204886A CN 107204886 A CN107204886 A CN 107204886A CN 201610149529 A CN201610149529 A CN 201610149529A CN 107204886 A CN107204886 A CN 107204886A
Authority
CN
China
Prior art keywords
terminal device
network
port
state
reservation service
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201610149529.9A
Other languages
Chinese (zh)
Inventor
丰雏凤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201610149529.9A priority Critical patent/CN107204886A/en
Priority to PCT/CN2016/081884 priority patent/WO2016197782A2/en
Publication of CN107204886A publication Critical patent/CN107204886A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/10Active monitoring, e.g. heartbeat, ping or trace-route
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/12Arrangements for remote connection or disconnection of substations or of equipment thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • H04L43/0805Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
    • H04L43/0811Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • Environmental & Geological Engineering (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Cardiology (AREA)
  • General Health & Medical Sciences (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)
  • Small-Scale Networks (AREA)

Abstract

The embodiment of the invention discloses a kind of serve port management method and device, wherein, this method includes:Whether the terminal device for being not attached to network using detection is connected to the network;If detecting the terminal device is connected to the network, then close the technical scheme of the reservation service port in opening in the terminal device, its serve port can not be closed automatically when reaching the standard grade (access network) by solving terminal device present in correlation technique, the problem of user is subject to network attack in using terminal equipment, its serve port can be closed automatically in access network by realizing terminal device, can realize effectively prevents from carrying out network attack to terminal device by serve port, brings higher network security to experience to user.

Description

A kind of method and device of serve port management
Technical field
The present invention relates to the communications field, the method and device managed in particular to a kind of serve port.
Background technology
Terminal device will first pass through the test of production line before the commercialization that networks.As shown in figure 1, production line Networking mode it is logical for the personal computer (personalcom puter, referred to as PC) equipped with the tool of production The descending network interface that interchanger connects terminal device is crossed, up going port is not connected to network.Pass through telnet terminal devices Local default configuration address 192.168.1.1 carry out batch and dispatch from the factory personalizing parameters configuration and hardware detection. And on the other hand, network hacker and rogue software pass through No. 23 ports of terminal device and 80 port malicious attacks It is more and more in the event of network termination equipment.In order to ensure user normally uses business, not by assault, Need to close a terminal the functions of equipment Telnet services.
There is terminal device in correlation technique can not close its service end automatically when reaching the standard grade (access network) Mouthful, the problem of user is subject to network attack in using terminal equipment not yet proposes effective at present Solution.
The content of the invention
The embodiment provides a kind of method and device of serve port management, at least to solve phase Terminal device present in the technology of pass can not close its serve port automatically in access network, and user makes The problem of network attack being subject to during with terminal device.
There is provided a kind of method that serve port is managed, the party for one side according to embodiments of the present invention Method can include:Whether the terminal device that detection is not attached to network is connected to the network;If detecting The terminal device is connected to the network, then closes predetermined in opening in the terminal device Serve port.
Further, it is described to close in the terminal device reservation service port being under opening also It can include:Judge whether it is that the state of the reservation service port is set to described open by Network Management Equipment Open state;If it is not, then closing the reservation service port.
Further, this method can also include:Opening is in the terminal device is closed After reservation service port, the mode set command that the Network Management Equipment is sent is received, wherein, the shape State sets instruction to be used to indicate the state of the reservation service port being set to the opening or closing State;Respond the state that the mode set command sets the reservation service port, and by the shape of storage State mark is provided for indicating to be to be set to the state of the reservation service port by the Network Management Equipment The opening or the closed mode.
Further, this method can also include:Opening is in the terminal device is closed After reservation service port, the factory reset instruction that the Network Management Equipment is sent is received;Response is described Factory reset instructs the reset condition that the state of the reservation service port is reverted to Default Value; Detect whether the terminal device becomes connected to the shape of the network from the state for being not attached to the network State;If detect the terminal device become connected to from the state for being not attached to the network it is described The state of network, then close in the terminal device and be in the reservation service port of opening.
Further, this method can also include:Opening is in the terminal device is closed After reservation service port, the restarting terminal device or terminal device disconnection and institute are being detected After the connection for stating network, the state of the reservation service port is kept.
Further, detect whether the terminal device for being not attached to network is connected to the network and can also wrap Include:It is EPON (Passive Optical Network, referred to as PON) in the terminal device During terminal device, if detecting as the light produced by up PON mouthfuls of the terminal device connect optical fiber Signal, then judge that detecting the terminal device is connected to the network.
Further, detect whether the terminal device for being not attached to network is connected to the network and can also wrap Include:It is LAN (Local Area Network, referred to as LAN) upstream terminal in the terminal device When equipment or digital subscriber line (Digital Subscriber Line, referred to as DSL) terminal device, if Netting twine is connected by the uplink network port of the terminal device and interconnection agreement between the network in broadband is received (InternetProtocol, referred to as IP) address, then judge to detect the terminal device be connected to it is described Network.
Further, reservation service port can at least include:Telnet serve ports.
There is provided the device that a kind of serve port is managed, the dress for another aspect according to embodiments of the present invention Putting to include:Whether first detection module, the terminal device that network is not attached to for detecting is connected to The network;First closedown module, if being connected to the network for detecting the terminal device, Close in the terminal device and be in the reservation service port of opening.
Further, first closedown module can include:Judging unit, for judge whether be by The state of the reservation service port is set to the opening by Network Management Equipment;Closing unit, is used for If it is not, then closing the reservation service port.
Further, described device can also include:First receiving module, for closing the terminal In equipment after the reservation service port in opening, the state for receiving the Network Management Equipment transmission is set Instruction is put, wherein, the mode set command is used to indicate to set the state of the reservation service port For the opening or closed mode;First respond module, sets for responding the mode set command The state of the reservation service port is put, and it is by described that the status indicator of storage is provided for into instruction The state of the reservation service port is set to the opening or the closed mode by Network Management Equipment.
Further, described device can also include:Second receiving module, for closing the terminal In equipment after the reservation service port in opening, recovering for the Network Management Equipment transmission is received Factory sets instruction;Second respond module, for responding the factory reset instruction by the predetermined clothes The state of business port reverts to the reset condition of Default Value;Second detection module, for detecting the end Whether end equipment becomes connected to the state of the network from the state for being not attached to the network;Second closes Mold closing block, if being changed into connecting from the state for being not attached to the network for detecting the terminal device The state of the network is connected to, then closes in the terminal device and is in the reservation service of opening Port.
Further, described device can also include:Module is kept, for closing the terminal device In in opening reservation service port after, detecting the restarting terminal device or described Terminal device is disconnected after the connection with the network, keeps the state of the reservation service port.
Further, the first detection module can be also used for, and be PON terminals in the terminal device During equipment, if detecting as the optical signal produced by up PON mouthfuls of the terminal device connect optical fiber, Then judge that detecting the terminal device is connected to the network;And/or, it is LAN in the terminal device When upstream terminal equipment or DSL terminal devices, if connecting netting twine by the uplink network port of the terminal device Broadband IP address is received, then judges that detecting the terminal device is connected to the network.
Further, the reservation service port can at least include:Telnet serve ports.
By the present invention and embodiment, whether the terminal device for being not attached to network using detection is connected to institute State network;If detecting the terminal device is connected to the network, closes in the terminal device and locate Technical scheme in the reservation service port of opening, solves terminal device present in correlation technique Its serve port can not be closed automatically when reaching the standard grade (access network), user holds in using terminal equipment The problem of being subject to network attack, its service can be closed automatically in access network by realizing terminal device Port, it is possible to achieve effectively prevent from carrying out network attack to terminal device by serve port, to user Higher network security is brought to experience.
Brief description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes one of the application Point, schematic description and description of the invention is used to explain the present invention, does not constitute to the present invention's It is improper to limit.In the accompanying drawings:
Fig. 1 is terminal device test scene schematic diagram on a production line in correlation technique;
Fig. 2 is a kind of flow chart one of serve port management method according to embodiments of the present invention;
Fig. 3 is the flowchart 2 of another serve port management method according to embodiments of the present invention;
Fig. 4 is the flow chart 3 of another serve port management method according to embodiments of the present invention;
Fig. 5 is the flow chart four of another serve port management method according to embodiments of the present invention;
Fig. 6 is a kind of structured flowchart one of serve port managing device according to embodiments of the present invention;
Fig. 7 is the structured flowchart two of another serve port managing device according to embodiments of the present invention;
Fig. 8 is the structured flowchart three of another serve port managing device according to embodiments of the present invention;
Fig. 9 is a kind of structured flowchart of serve port managing device according to the preferred embodiment of the invention;
Figure 10 is the commercial schematic diagram of a scenario of PON terminals in correlation technique;
Figure 11 is a kind of method stream of PON terminal management services port according to the preferred embodiment of the invention Cheng Tu;
Figure 12 is the commercial schematic diagram of a scenario of DSL terminals in correlation technique;
Figure 13 is a kind of DSL terminals according to the preferred embodiment of the invention or LAN terminal management services end The method flow diagram of mouth;
Figure 14 is a kind of method flow diagram of terminal management service port according to the preferred embodiment of the invention.
Embodiment
Describe the present invention in detail below with reference to accompanying drawing and in conjunction with the embodiments.It should be noted that In the case of not conflicting, the feature in embodiment and embodiment in the application can be mutually combined.
A kind of serve port management method is provided in an embodiment of the present invention, and Fig. 2 is according to the present invention The flow chart of a kind of serve port management method of embodiment, as shown in Fig. 2 the flow can be included such as Lower step:
Whether step S200, the terminal device that detection is not attached to network is connected to the network;
Step S202, if detecting terminal device is connected to network, in unlatching in equipment of closing a terminal The reservation service port of state.
The technical scheme that the present embodiment is provided:Terminal device closes predetermined service automatically after detecting networking Port.When terminal device up going port is connected to network, terminal sets detection device networking, and original be in is opened The serve port of state is opened to closing, terminal device present in correlation technique is solve at least and (connects reaching the standard grade Enter network) when can not close its serve port automatically, user is subject to network in using terminal equipment The problem of attack, its serve port can be closed automatically in access network by realizing terminal device, can be with Realization is effectively prevented by serve port to terminal device progress network attack, brings higher to user Network security is experienced.
Terminal device uses transmission control protocol (Transmission Control Protocol, referred to as TCP Agreement) common port mainly have several:(1) FTP (File Transfer Protocol, Referred to as FTP), FTP is defined, No. 21 serve ports are used;(2) Telnet is serviced Port, it is a kind of port for telnet, in terms of user can be connected remotely to by the identity of oneself On calculation machine;(3) Simple Mail Transfer protocol (Simple Mail Transfer Protocol are referred to as SMTP), Define simple message transfer protocol (SMTP), now many mail servers all be this agreement, for sending out Send mail.In such as common free mail service is exactly this mail service port, so in electronics Mail has been commonly seen so SMTP ports and has set this column in setting, what server was opened is No. 25 services Port;(4) Post Office Protocol,Version 3 (Post Office Protocol-Version 3, referred to as POP3) It is corresponding with SMTP, and POP3 is used to receive mail.Under normal circumstances, it is used in POP3 agreements 110 serve ports.It common are using udp protocol port:(1) HTTP HTTP, Surf the web webpage when, No. 80 ports must be opened on the computer that web page resources are provided to provide service. Often say " WWW service ", " Web servers " is exactly this port.(2) domain name resolution service DNS, Conversion between domain name and IP address is completed by dns server, typically be No. 53 serve ports. Other proxy server is conventional with lower port:(1) .HTTP protocol proxy servers usual end slogan: 80/8080/3128/8081/9080;(2) .SOCKS agency agreements server usual end slogan:1080; (3) .FTP protocol proxy servers usual end slogan:21;(4) .Telnet protocol proxy servers are normal Use port:23.
In a preferred embodiment, the reservation service port can at least include:Telnet serve ports. Terminal device is write from memory and opens Telnet serve ports in production test stage acquiescence, can be for generation testing tool Telnet, is set for the various tests before networking and personalizing parameters:And when networking commercial, if It is standby detect reach the standard grade after, terminal device closes the Telnet serve ports automatically, prevents networking attack from passing through Telnet serve port malicious attack terminal devices, solve terminal device present in correlation technique and are reaching the standard grade Its serve port can not be closed when (access network) automatically, user is subject in using terminal equipment The problem of network attack, the production requirement of production line should be met by realizing, and also meet operator's proposition Demand for security, the function of traditional terminal device is extended in the case where not increasing cost, to user Bring good usage experience.
Another serve port management method is provided in an embodiment of the present invention, and Fig. 3 is according to this hair The flowchart 2 of a kind of serve port management method of bright embodiment, as shown in figure 3, the flow can be wrapped Include following steps:
Whether step S300, the terminal device that detection is not attached to network is connected to the network;
Step S302, if detecting terminal device is connected to network, judges whether it is by advance by gateway device The state for determining serve port is set on state;
Step S304, in the case of no, closes the reservation service port.
Operation maintenance personnel carries out device configuration or maintenance by the open a terminal serve port of equipment of Network Management Equipment, Generally also it is not considered as that Network Management Equipment opens serve port and can endanger network security.Terminal device fixes, inflexible Execution networking, which is reached the standard grade, then closes serve port operation, may influence normal terminal equipment configuration, maintenance Flow, therefore the present embodiment specially provides the technical scheme:Terminal device connection network is being detected, First judging serve port is opened by whom, is decided whether to close the serve port again according to judged result, Not only internet security is protected, and does not influence daily normal configuration or attended operation also.
Another serve port management method is provided in an embodiment of the present invention, and Fig. 4 is according to this hair The flow chart 3 of another serve port management method of bright embodiment, as shown in figure 4, the flow can be with Comprise the following steps:
Whether step S400, the terminal device that detection is not attached to network is connected to the network;
Step S402, if detecting terminal device is connected to network, judges whether it is by advance by gateway device The state for determining serve port is set on state;
Step S404, in the case of no, closes the reservation service port;
Step S406, receives the mode set command that Network Management Equipment is sent, wherein, the mode set command For indicating the state of reservation service port being set on state or closed mode;
After terminal device networks closing serve port, gateway device can be referred to by issuing state and setting Order, terminal device can receive this mode set command;Network Management Equipment passes through the mode set command control The working condition of the serve port of terminal device processed.
Step S408, responsive state sets instruction to set the state of reservation service port, and by the shape of storage State mark is provided for indicating to be that the state of reservation service port is set on into state by Network Management Equipment Or closed mode.
Terminal device receives the instruction, and adjusts the working condition of serve port according to the instruction, and The working condition of the serve port can also be marked to be set by Network Management Equipment, facilitate operation personnel to check Working condition and the historical operation record of terminal device service port.Can be more by the method for the present embodiment The working condition of terminal device is effectively operated, log is inquired about, is easy to track and safeguards.
Another serve port management method is provided in an embodiment of the present invention, and Fig. 5 is according to this hair The flow chart four of another serve port management method of bright embodiment, as shown in figure 5, the flow can be with Comprise the following steps:
Whether step S500, the terminal device that detection is not attached to network is connected to the network;
Step S502, if detecting terminal device is connected to network, in unlatching in equipment of closing a terminal The reservation service port of state;
Step S504, after the connection of restarting terminal device or terminal device disconnection with network is detected, Keep the state of the reservation service port.
Terminal device, which networks to reach the standard grade, triggers the automatic flow for closing serve port, restarting terminal device, disconnection Network connection or the network fiber for pulling out equipment, can not change the work shape of the serve port of equipment State.In this case, the closed mode of serve port, sets even if pulling out before terminal device can be kept Standby optical fiber is connected again again, and the serve port of terminal device is also not at opening, therefore also not The flow of the closing serve port of equipment can be triggered.By the method for the present embodiment, management service port Method more facilitates, intellectuality, and port working state can be also kept even if equipment abnormal operating state, More improve the internet security of terminal device.
In a preferred embodiment, the method for management service port is in the terminal device is closed After the reservation service port of opening, it can also include:Receive the recovery that the Network Management Equipment is sent Default Value is instructed;The factory reset instruction is responded to recover the state of the reservation service port For the reset condition of Default Value;Detect the terminal device whether from the state for being not attached to the network Become connected to the state of the network;If detect the terminal device is not attached to the net from described The state of network becomes connected to the state of the network, then closes and opening is in the terminal device The reservation service port.
The pipe of terminal device is not interfered with even if the original Default Value of recovery by this preferred embodiment yet Manage the function of serve port.Remote recovery is issued by Network Management Equipment to dispatch from the factory instruction, terminal device was according to should Instruction can recover the working condition of serve port and set state for original factory, and terminal device can also be recorded The working condition designator or flag bit of serve port are also configured as recovering factory-said value.Equipment is performed and recovered Factory is configured, and first carries out Parameter reconstruction, and restarting operation can be performed afterwards.In restarting procedure such as Terminal device disconnects network, then terminal device keeps factory set conditions;If terminal device is normally weighed New to start, equipment is recovered to factory set conditions, can trigger pass when access network network is reached the standard grade again again Close serve port flow, hence it is evident that the technical scheme of the offer of present embodiment has more superiority, terminal is set Standby to be more difficult to by network attack, internet security is higher.
In a preferred embodiment, when the terminal device is PON terminal devices, detection is not connected Whether the terminal device to network is connected to the network and includes:If detecting by the upper of the terminal device The optical signal that PON mouthfuls of row is connected produced by optical fiber, then judge to detect the terminal device be connected to it is described Network.When the terminal device is LAN upstream terminals equipment or DSL terminal devices, detection is not connected Whether the terminal device to network is connected to the network and includes:If by the uplink network port of the terminal device Connect netting twine and receive broadband IP address, then judge that detecting the terminal device is connected to the network.
In the terminal device for different type or property, it is thin that the method for management service port has some Small difference, the characteristics of to adapt to different types of terminals equipment, therefore, different types of equipment can root The present invention is embodied according to the characteristics of itself.Embodiments of the invention are particularly directed to PON terminals, LAN Terminal, DSL terminals propose the management method of serve port:PON terminal devices are soft exchange type equipment, What is taken is to see that light judges whether access network;It is different from PON terminals, LAN upstream terminals equipment and DSL terminal devices all do not receive this special link of optical signal, therefore can be set up in device interior WAN (Wide Area Network wide area networks) connections when getting broadband IP address, it can be determined that For access network, serve port management process can be triggered.
The device that a kind of serve port is managed is provided in an embodiment of the present invention, and the device is used to realize Above-described embodiment and preferred embodiment, had carried out repeating no more for explanation.As used below, Term " module " can realize the combination of the software and/or hardware of predetermined function.Although following examples institute The device of description is preferably realized with software, but hardware, or the combination of software and hardware realization It is also that may and be contemplated.
Fig. 6 is a kind of structured flowchart one of serve port managing device according to embodiments of the present invention, such as Fig. 6 Shown, the device can include first detection module 60, the first closedown module 62, and the device is entered below Row explanation.
Whether first detection module 60, the terminal device that network is not attached to for detecting is connected to the net Network;;
First closedown module 62, if being connected to network for detecting terminal device, equipment of closing a terminal In be in opening reservation service port.The technical scheme that the present embodiment is provided:Terminal device is detected Automatically predetermined serve port is closed after to networking.When terminal device up going port is connected to network, terminal is set Detection device networks, and by original serve port in opening to closing, solve at least related skill Terminal device present in art can not close its serve port, user automatically when reaching the standard grade (access network) The problem of being subject to network attack in using terminal equipment, realizes terminal device in access network Its serve port can be closed automatically, it is possible to achieve effectively prevent from entering terminal device by serve port Row network attack, brings higher network security to experience to user.
In a preferred embodiment, the reservation service port can at least include:Telnet serve ports. Terminal device is write from memory and opens Telnet serve ports in production test stage acquiescence, can be for generation testing tool Telnet, is set for the various tests before networking and personalizing parameters:And when networking commercial, if It is standby detect reach the standard grade after, terminal device closes the Telnet serve ports automatically, prevents networking attack from passing through Telnet serve port malicious attack terminal devices, solve terminal device present in correlation technique and are reaching the standard grade Its serve port can not be closed when (access network) automatically, user is subject in using terminal equipment The problem of network attack, the production requirement of production line should be met by realizing, and also meet operator's proposition Demand for security, the function of traditional terminal device is extended in the case where not increasing cost, to user Bring good usage experience.
In a preferred embodiment, first closedown module can include:Judging unit, for judging Whether it is that the state of the reservation service port is set to the opening by Network Management Equipment;Close single Member, for if it is not, then closing the reservation service port.
Fig. 7 is the structured flowchart two of another serve port managing device according to embodiments of the present invention, such as Shown in Fig. 7, the device can include first detection module 70, the first closedown module 72, first and receive mould Block 74, the first respond module 76, are illustrated to the device below.
Whether first detection module 70, the terminal device that network is not attached to for detecting is connected to the net Network;;
First closedown module 72, if being connected to network for detecting terminal device, equipment of closing a terminal In be in opening reservation service port;
First receiving module 74, the reservation service for being in opening in the terminal device is closed After port, the mode set command that the Network Management Equipment is sent is received, wherein, the state, which is set, to be referred to Make for indicating the state of the reservation service port being set to the opening or closed mode;
First respond module 76, the reservation service port is set for responding the mode set command State, and it is by the predetermined clothes by the Network Management Equipment that the status indicator of storage is provided for into instruction The state of business port is set to the opening or the closed mode.
Fig. 8 is the structured flowchart three of another serve port managing device according to embodiments of the present invention, such as Shown in Fig. 8, the device can include first detection module 80, the first closedown module 82, second and receive mould Block 84, the second respond module 86, the second detection module 88, the second closedown module 89, below to the device Illustrate.
Whether first detection module 80, the terminal device that network is not attached to for detecting is connected to the net Network;;
First closedown module 82, if being connected to network for detecting terminal device, equipment of closing a terminal In be in opening reservation service port;
Second receiving module 84, the reservation service for being in opening in the terminal device is closed After port, the factory reset instruction that the Network Management Equipment is sent is received;
Second respond module 86, for responding the factory reset instruction by the reservation service port State revert to the reset condition of Default Value;
Second detection module 88, for detecting the terminal device whether from the shape for being not attached to the network State becomes connected to the state of the network;
Second closedown module 89, if being not attached to the network for detecting the terminal device from described State become connected to the state of the network, then close in the terminal device in opening The reservation service port.
The pipe of terminal device is not interfered with even if the original Default Value of recovery by this preferred embodiment yet Manage the function of serve port.Remote recovery is issued by Network Management Equipment to dispatch from the factory instruction, terminal device was according to should Instruction can recover the working condition of serve port and set state for original factory, and terminal device can also be recorded The working condition designator or flag bit of serve port are also configured as recovering factory-said value.Equipment is performed and recovered Factory is configured, and first carries out Parameter reconstruction, and restarting operation can be performed afterwards.In restarting procedure such as Terminal device disconnects network, then terminal device keeps factory set conditions;If terminal device is normally weighed New to start, equipment is recovered to factory set conditions, can trigger pass when access network network is reached the standard grade again again Close serve port flow, hence it is evident that the technical scheme of the offer of present embodiment has more superiority, terminal is set Standby to be more difficult to by network attack, internet security is higher.
In a preferred embodiment, the device can also include keeping module, for closing the end In end equipment in opening reservation service port after, detect the restarting terminal device or Terminal device described in person is disconnected after the connection with the network, keeps the state of the reservation service port.
In a preferred embodiment, the terminal device be PON terminal devices when, if detect by The optical signal that up PON mouthfuls of the terminal device are connected produced by optical fiber, then judge to detect the end End equipment is connected to the network;And/or, it is LAN upstream terminals equipment or DSL in the terminal device During terminal device, if connecting netting twine by the uplink network port of the terminal device and receiving broadband IP address, Then judge that detecting the terminal device is connected to the network.
In the terminal device for different type or property, it is thin that the method for management service port has some Small difference, the characteristics of to adapt to different types of terminals equipment, therefore, different types of equipment can root The present invention is embodied according to the characteristics of itself.Embodiments of the invention are particularly directed to PON terminals, LAN Terminal, DSL terminals propose the management method of serve port:PON terminal devices are soft exchange type equipment, What is taken is to see that light judges whether access network;It is different from PON terminals, LAN upstream terminals equipment and DSL terminal devices all do not receive this special link of optical signal, therefore can be set up in device interior WAN (Wide Area Network wide area networks) connections when getting broadband IP address, it can be determined that For access network, serve port management process can be triggered.
In the device that above-described embodiment is provided, the detection module 88, first of first detection module 60 and second The closedown module 89 of closedown module 62 and second, the first receiving module 74 and the second receiving module 84, first Respond module 76, with the second respond module 86 can be same entity apparatus or virtual module, can also It is different entity apparatus or virtual module.
In conjunction with specific embodiment, the present invention will be described below.
Fig. 9 is a kind of structured flowchart of serve port managing device according to the preferred embodiment of the invention.Should Device can be located in terminal device, can include following module:
State monitoring module 90, the first detection module 60 and second being functionally similar in above-described embodiment is examined Survey module 88, can be used for detection terminal device whether access network, when detecting network signal, really Recognize terminal device and access network;
Application service module 92, the first closedown module 62 and second that can be provided in above-described embodiment is closed Module 89, the first respond module 76, the function with the second respond module 86, can be used for reception state prison The message that module 90 notifies equipment to reach the standard grade is surveyed, and serve port is closed according to detection notice, or according to net The instruction of tube apparatus is turned on and off the working condition of serve port;It can be also used for inquiring about data base administration The field value of module 94.
Database management module 94, the first receiving module 74 that can be provided in above-described embodiment connects with second Module 84 is received, database management module 94 will can be used for identifying whether by webmaster in internal database The field for opening the serve port sets flag bit, and mark opens the serve port by webmaster;Or Person can also be provided by configuration operation of being dispatched from the factory on webmaster to equipment progress remote recovery, can be by equipment The serve port and internal database in be used for identify whether to open the word of the serve port by webmaster Duan Huifu is to reset condition of dispatching from the factory.
Can be with terminal device present in correlation technique in (access of reaching the standard grade by the device of the preferred embodiment Network) when can not close its serve port automatically, user is subject to network in using terminal equipment and attacked The problem of hitting, its serve port, Ke Yishi can be closed automatically in access network by realizing terminal device Now effectively prevent from carrying out network attack to terminal device by serve port, higher net is brought to user Network is experienced safely.Equipment acquiescence opens a certain serve port, is easy to various tests and personalization before networking Parameter setting.When networking commercial, equipment is detected reach the standard grade after, the serve port can be closed, both can be with The production requirement of production line is met, the demand for security of operator's proposition can also be met.
Automatic closing service after networking is detected further, it is preferable to which embodiment is a kind of network-termination device The method of port.Equipment acquiescence opens a certain serve port, is easy to various tests and personalization before networking Parameter setting.When networking commercial, equipment is detected reach the standard grade after, the serve port is closed automatically.In equipment When row mouth is connected to network, the state monitoring module of equipment monitors that equipment is reached the standard grade.State monitoring module is stood Monitoring notification message is sent to application service module, notifies the service module equipment to reach the standard grade.
The service module is received after monitoring notification message, checks whether the serve port is turned off.If should Serve port has been off, then the service module ignores the monitoring notification message received, does not do any Processing.If the serve port is opening, then the service module checks the word in internal database Segment value (is used for identifying whether to open the field of the serve port by webmaster), judged whether through webmaster Open the serve port.If the serve port is opened through webmaster, the service module, which is ignored, to be received Monitoring notification message, it is without any processing.If the serve port is not opened through webmaster, then The service module actively closes the serve port, no longer monitors the serve port.
Network-termination device networks after commercialization, can open or close at any time the serve port by webmaster. When opening the serve port by webmaster for the first time, database management module will can be used in internal database Identify whether that the field for having opened the serve port by webmaster sets flag bit, mark passes through webmaster Open the serve port.Dispatched from the factory configuration operation by carrying out remote recovery to equipment on webmaster, can be by It is used for identifying whether to open the serve port by webmaster in the serve port and internal database of equipment Field recover to reset condition of dispatching from the factory.
Exemplified by can managing telnet serve ports below, to describe the specific implementation of the embodiment of the present invention in detail Mode.The present invention can be embodied according to the characteristics of itself in different types of equipment.Figure 11 is PON Terminal device closes the flow chart of telnet serve ports.Figure 13 is LAN upstream terminals equipment and DSL Terminal device closes the flow chart of telnet serve ports.Figure 14 is terminal unit management telnet serve ports Complete application flow chart.
Figure 10 is the commercial schematic diagram of a scenario of PON terminals in correlation technique;
Application scenarios such as Figure 10 after terminal device networking.Figure 10 is PON (Passive Optical Networks EPONs) terminal commercial scene graph, the PON system in Figure 10 is by OLT (Optical Line Terminal optical line terminals), ODN (Optical Distribution Network passive lights distribute Network) and ONU (Optical Network Unit optical network units) three parts composition.Wherein OLT For local side apparatus, ONU is terminal device, and PON terminals described here are exactly ONU, and ONU is Network is connected to by optical fiber.
Figure 11 is a kind of method stream of PON terminal management services port according to the preferred embodiment of the invention Cheng Tu;As shown in figure 11, this method flow may include steps of:
Step S1100, detects optical signal;
PON terminal devices are soft exchange type equipment, and what is taken is to see that light closes the side of telnet services automatically Formula, up PON mouthfuls when connecting optical fiber, PON drivings detect optical signal.
Step S1102, sends detection message to telnet;
Monitoring notification message (monitor message) is sent to telnet modules, telnet module up going ports are notified Incoming fiber optic.
Step S1104, judges whether to be turned off telnet serve ports;Step is transferred in a case of yes S1108, in a case of no, is transferred to step S1106.
Step S1108, where it has, ignoring detection message;
Telnet modules are received after monitoring notification message, check whether terminal device has been switched off No. 23 services Port (telnet serve ports).If terminal device has been switched off No. 23 ports, ignore the monitoring received Notification message, it is without any processing.
Step S1106, in a case of no, determines whether that Network Management Equipment opens telnet serve ports; Where it has, being transferred to step S1108;In a case of no, it is transferred to step S1110.
If terminal device is not turned off No. 23 ports, telnet modules need to determine whether that telnet is serviced The opening of port is operated by whom.For example in inquiry database whether mark telnet services pass through net The field that pipe is opened, judges whether by opening No. 23 ports through Network Management Equipment according to the field value.Judge As a result to be by the case that Network Management Equipment opens 23 serve port, telnet modules ignore the monitoring received Notification message,
Step S1110, closes telnet serve ports.
In the case of No. 23 ports (telnet serve ports) are opened by Network Management Equipment, terminal is set It is standby to close telnet services, no longer monitor No. 23 ports, any Shen of the telnet clients to No. 23 ports It please access, telnet processes are all ignored.
Figure 12 is the commercial schematic diagram of a scenario of DSL terminals in correlation technique;
Figure 12 is the commercial scene graph of DSL (Digital Subscriber line Digital Subscriber Line) terminal.DSL By DSLAM, (Digital Subscriber line Access Multiplexer digital subscriber lines access multiple system Clutch) and DSL terminals composition.Wherein DSLAM is the local side apparatus of DSL system, and DSL terminals are Connect DSLAM's by phone copper cash.
Different from PON terminals, LAN upstream terminals equipment and DSL terminal devices all do not receive light letter Number this special link.Therefore (Wide Area Network are wide by the WAN that can be set up in device interior Domain net) connection when getting broadband IP address, is judged as that terminal equipment access network then starts closing telnet The flow of serve port.Figure 13 is may be referred to, Figure 13 is a kind of DSL according to the preferred embodiment of the invention Terminal or the method flow diagram of LAN terminal management services port.As shown in figure 13, this method flow can To comprise the following steps:
Step S1300, WAN connection gets address;
When the up going port network interface of LAN terminals or DSL terminals plugs netting twine, WAN connections get broadband IP address.
Step S1302, WAN link block sends a notification message to telnet;
Detection notice message is sent to telnet service modules, terminal device access network.
Step S1304, judges whether to be turned off telnet serve ports;Where it has, being transferred to step S1308, in a case of no, is transferred to step S1306.
Step S1308, ignores detection message;
Telnet service modules receive monitoring notification message after, judgement be telnet serve ports whether Close.Check whether to have been switched off No. 23 ports (telnet serve ports), if having been switched off No. 23 Port, ignores the monitoring notification message received, without any processing.
Step S1306, determines whether that Network Management Equipment opens telnet serve ports;In a case of yes. Step S1308 is transferred to, in a case of no, step S1310. is transferred to
Terminal device is in the case where being not turned off No. 23 serve ports, and telnet service modules judge telnet Whether the opening of serve port is what Network Management Equipment was operated.Telnet service modules check that database is got the bid Remember telnet service whether the field opened by webmaster, judged whether to open 23 through webmaster according to field value Number port, if opened through webmaster, telnet modules ignore the monitoring notification message received, do not appoint Manage where.
Step S1310, closes telnet serve ports.
It is not No. 23 ports opened through webmaster that judged result, which is, and telnet service modules close telnet services Port.Preferably, terminal device can also no longer monitor No. 23 ports, and telnet clients are held to No. 23 Any application of mouth is accessed, and telnet processes are all ignored.
Figure 14 is a kind of method flow diagram of terminal management service port according to the preferred embodiment of the invention. As shown in figure 14, this method flow may include steps of:
Step S1400, terminal equipment access network;
Step S1402, terminal device closes telnet serve ports;
Terminal equipment access network, the closing of the triggering embodiment of the present invention, preferred embodiment and embodiment Telnet service procedures, the telnet serve ports of terminal device are closed, now can only be by network O&M people Member is opened by Network Management Equipment.
Step S1404, Network Management Equipment opens the telnet serve ports of the terminal device;
Network Management Equipment sends instruction, for instruction terminal opening of device telnet serve ports.Terminal device root The telnet services of equipment are opened according to the instruction of Network Management Equipment, mark telnet services are opened for Network Management Equipment, Field in database is set accordingly, and mark is opened by webmaster.
Step S1406, terminal device is locally accessed by telnet serve ports and configures the terminal device;
Operation maintenance personnel can be in the local terminal default configuration address by telnet access equipments of terminal device 192.168.1.1, or by any one WAN link address of telnet remote access equipments, and pass through Telnet serve ports are accessed, configured, safeguarding the terminal device.
Step S1408, Network Management Equipment closes the telnet serve ports of the terminal device;
Operation maintenance personnel sends out code, the telnet service ends for instruction terminal pass hull closure by webmaster Mouthful.At this time telnet clients can not all complete telnet access in Local or Remote, and realization prevents terminal Equipment improves the internet security of equipment by the network attack serviced by telnet.
It should be noted that terminal device networks, and close automatically after telnet service procedures.Terminal device weight Open or disconnect network connection, the working condition of equipment telnet serve ports can not be changed, end is prevented End equipment is restarted or disconnected network and reconnects into network, causes telnet serve ports to be opened, is subject to The problem of network attack.
Step S1410, Network Management Equipment sends instruction, the Default Value for remote recovery terminal device;
Network Management Equipment issues remote recovery and dispatched from the factory instruction, and instruction terminal equipment reverts to Default Value, telnet Serve port reverts to original factory state.The flag bit in device interior database is also resumed simultaneously For factory-said value.
Telnet serve ports are opened in step S1412, terminal device factory reset.
After step S1412, if terminal device access network again, terminal device can be transferred to and hold Row step S1400.
Equipment performs recovery and dispatched from the factory configuration, first carries out Parameter reconstruction, and restarting can be performed afterwards and is operated. If pulling out the connecting line of up going port in restarting procedure, equipment is recovered to factory state.Specific table It is now:Telnet serve ports acquiescence is opened, and locally can access 192.168.1.1 addresses by telnet. Telnet services are marked in device interior database, and whether the field opened through webmaster reverts to the initial value that dispatches from the factory. If not pulling out the connecting line of up going port in restarting procedure, equipment is recovered to factory state, Automatic closing telnet service procedures can be triggered when reaching the standard grade again again.
Further, the preferred embodiment of the present invention also provides a kind of method of terminal unit management serve port, This method may include steps of:Before networking, the serve port is opened;During networking, end is detected End equipment is reached the standard grade;Confirm whether the serve port closes;In the case where the serve port is opened, Determine whether that webmaster opens the serve port;In the case where judged result is no, the clothes are closed Business port.The method of the embodiment, which can both have been solved, to meet the production requirement of production line, that is, be opened In the case of serve port;The demand for security of operator's proposition can also be met simultaneously, i.e. terminal device connects Enter and serve port is closed after network, the problem of preventing the network attack by serve port, terminal device is write from memory Recognize a certain serve port of unlatching, be easy to the various tests before networking and personalizing parameters to set.Network commercial When, equipment is detected reach the standard grade after, the serve port is closed automatically.
In summary, by above-described embodiment, preferred embodiment and embodiment, it is not attached to using detection Whether the terminal device of network is connected to the network;If detecting the terminal device is connected to the net Network, then close the technical scheme of the reservation service port in opening in the terminal device, solves Terminal device present in correlation technique when reaching the standard grade (access network) can not close its service end automatically Mouthful, the problem of user is subject to network attack in using terminal equipment realizes terminal device and connect Its serve port can be closed when entering network automatically, it is possible to achieve effectively prevent by serve port to end End equipment carries out network attack, brings higher network security to experience to user.
Obviously, those skilled in the art should be understood that above-mentioned each module of the invention or each step can To be realized with general computing device, they can be concentrated on single computing device, or distribution On the network that multiple computing devices are constituted, alternatively, the journey that they can be can perform with computing device Sequence code is realized, it is thus possible to be stored in storage device by computing device to perform, and And in some cases, can to perform shown or described step different from order herein, or They are fabricated to each integrated circuit modules respectively, or multiple modules in them or step are made Realized into single integrated circuit module.So, the present invention is not restricted to any specific hardware and software With reference to.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for this area Technical staff for, the present invention can have various modifications and variations.It is all in the spirit and principles in the present invention Within, any modification, equivalent substitution and improvements made etc. should be included in protection scope of the present invention Within.

Claims (15)

1. a kind of serve port management method, it is characterised in that including:
Whether the terminal device that detection is not attached to network is connected to the network;
If detecting the terminal device is connected to the network, closes to be in the terminal device and open Open the reservation service port of state.
2. according to the method described in claim 1, it is characterised in that described to close in the terminal device Reservation service port under opening includes:
Judge whether it is that the state of the reservation service port is set to the unlatching shape by Network Management Equipment State;
If it is not, then closing the reservation service port.
3. method according to claim 2, it is characterised in that locate in the terminal device is closed After the reservation service port of opening, in addition to:
The mode set command that the Network Management Equipment is sent is received, wherein, the mode set command is used for The state of the reservation service port is set to the opening or closed mode by instruction;
Respond the state that the mode set command sets the reservation service port, and by the state of storage Mark is provided for indicating to be that the state of the reservation service port is set into institute by the Network Management Equipment State opening or the closed mode.
4. method according to claim 2, it is characterised in that locate in the terminal device is closed After the reservation service port of opening, in addition to:
Receive the factory reset instruction that the Network Management Equipment is sent;
Respond the factory reset instruction and the state of the reservation service port is reverted into Default Value Reset condition;
Detect whether the terminal device becomes connected to the network from the state for being not attached to the network State;
If detect the terminal device become connected to from the state for being not attached to the network it is described The state of network, then close in the terminal device and be in the reservation service port of opening.
5. according to the method described in claim 1, it is characterised in that locate in the terminal device is closed After the reservation service port of opening, in addition to:
Detect the restarting terminal device or the terminal device disconnect connection with the network it Afterwards, the state of the reservation service port is kept.
6. according to the method described in claim 1, it is characterised in that in the terminal device be PON During terminal device, detect whether the terminal device for being not attached to network is connected to the network and includes:
If detecting as the optical signal produced by up PON mouthfuls of the terminal device connect optical fiber, Judgement detects the terminal device and is connected to the network.
7. according to the method described in claim 1, it is characterised in that in the terminal device be LAN When upstream terminal equipment or DSL terminal devices, whether the terminal device that detection is not attached to network is connected to The network includes:
If connecting netting twine by the uplink network port of the terminal device and receiving broadband IP address, inspection is judged Measure the terminal device and be connected to the network.
8. method according to any one of claim 1 to 7, it is characterised in that the predetermined clothes Business port at least includes:Telnet serve ports.
9. a kind of serve port managing device, it is characterised in that described device includes:
Whether first detection module, the terminal device that network is not attached to for detecting is connected to the network;
First closedown module, if being connected to the network for detecting the terminal device, closes institute State the reservation service port that opening is in terminal device.
10. device according to claim 9, it is characterised in that first closedown module includes:
Judging unit, for judging whether it is to be set the state of the reservation service port by Network Management Equipment For the opening;
Closing unit, for if it is not, then closing the reservation service port.
11. device according to claim 10, it is characterised in that described device also includes:
First receiving module, the reservation service end for being in opening in the terminal device is closed After mouthful, the mode set command that the Network Management Equipment is sent is received, wherein, the mode set command For indicating the state of the reservation service port being set to the opening or closed mode;
First respond module, the shape of the reservation service port is set for responding the mode set command State, and it is by the reservation service by the Network Management Equipment that the status indicator of storage is provided for into instruction The state of port is set to the opening or the closed mode.
12. device according to claim 10, it is characterised in that described device also includes:
Second receiving module, the reservation service end for being in opening in the terminal device is closed After mouthful, the factory reset instruction that the Network Management Equipment is sent is received;
Second respond module, for responding the factory reset instruction by the reservation service port State reverts to the reset condition of Default Value;
Second detection module, for detecting the terminal device whether from the state for being not attached to the network Become connected to the state of the network;
Second closedown module, if being not attached to the network for detecting the terminal device from described State becomes connected to the state of the network, then closes in the terminal device and be in the institute of opening State reservation service port.
13. device according to claim 9, it is characterised in that described device also includes:
Keep module, in the terminal device is closed the reservation service port in opening it Afterwards, detect the restarting terminal device or the terminal device disconnect connection with the network it Afterwards, the state of the reservation service port is kept.
14. device according to claim 9, it is characterised in that the first detection module is also used In,
When the terminal device is PON terminal devices, if detecting by the up of the terminal device The PON mouthfuls of optical signals that connect produced by optical fiber, then judge that detecting the terminal device is connected to the net Network;And/or,
When the terminal device is LAN upstream terminals equipment or DSL terminal devices, if by the end The uplink network port of end equipment connects netting twine and receives broadband IP address, then judges that detecting the terminal sets It is standby to be connected to the network.
15. the device according to any one of claim 9 to 14, it is characterised in that described predetermined Serve port at least includes:Telnet serve ports.
CN201610149529.9A 2016-03-16 2016-03-16 A kind of method and device of serve port management Withdrawn CN107204886A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201610149529.9A CN107204886A (en) 2016-03-16 2016-03-16 A kind of method and device of serve port management
PCT/CN2016/081884 WO2016197782A2 (en) 2016-03-16 2016-05-12 Service port management method and apparatus, and computer readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610149529.9A CN107204886A (en) 2016-03-16 2016-03-16 A kind of method and device of serve port management

Publications (1)

Publication Number Publication Date
CN107204886A true CN107204886A (en) 2017-09-26

Family

ID=57502822

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610149529.9A Withdrawn CN107204886A (en) 2016-03-16 2016-03-16 A kind of method and device of serve port management

Country Status (2)

Country Link
CN (1) CN107204886A (en)
WO (1) WO2016197782A2 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109756502A (en) * 2019-01-14 2019-05-14 郭军 Terminal prot unifies control platform
CN113347166A (en) * 2021-05-24 2021-09-03 广西电网有限责任公司 Method, device and system for preventing safety risk of optical transmission equipment of power grid
CN113347511A (en) * 2021-05-24 2021-09-03 广西电网有限责任公司 Method, device and system for defending hop-by-hop attack in optical transmission network
CN113507384A (en) * 2021-06-22 2021-10-15 深圳市亿联无限科技有限公司 System and method for switching working modes of equipment

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124483B (en) * 2021-11-09 2024-04-30 浙江航芯科技有限公司 Method, system and equipment for obtaining router background super manager authority

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1564623A1 (en) * 2004-02-13 2005-08-17 Microsoft Corporation System and method for securing a computer system connected to a network from attacks
CN101141245A (en) * 2007-08-29 2008-03-12 深圳市同强信息技术有限责任公司 Movable medium external connection monitoring system and method
US20090024844A1 (en) * 2007-07-16 2009-01-22 Hewlett-Packard Development Company, L.P. Terminal And Method For Receiving Data In A Network
CN104144218A (en) * 2014-08-04 2014-11-12 三星电子(中国)研发中心 End-to-end connection building method and device
CN104639536A (en) * 2015-01-05 2015-05-20 浪潮(北京)电子信息产业有限公司 Method and system for preventing network attack

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ES2310123B1 (en) * 2007-05-07 2009-11-05 Vodafone España, S.A. REMOTE ACCESS FROM AN EXTENSION OF A WEB BROWSER TO THE INFORMATION OF A MOBILE TERMINAL.
CN102143154B (en) * 2010-12-28 2015-12-09 华为技术有限公司 For method and the media server of preventing attack on media server
CN103763119A (en) * 2011-03-09 2014-04-30 成都勤智数码科技股份有限公司 Telnet/SSH-based network terminal management method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1564623A1 (en) * 2004-02-13 2005-08-17 Microsoft Corporation System and method for securing a computer system connected to a network from attacks
US20090024844A1 (en) * 2007-07-16 2009-01-22 Hewlett-Packard Development Company, L.P. Terminal And Method For Receiving Data In A Network
CN101141245A (en) * 2007-08-29 2008-03-12 深圳市同强信息技术有限责任公司 Movable medium external connection monitoring system and method
CN104144218A (en) * 2014-08-04 2014-11-12 三星电子(中国)研发中心 End-to-end connection building method and device
CN104639536A (en) * 2015-01-05 2015-05-20 浪潮(北京)电子信息产业有限公司 Method and system for preventing network attack

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109756502A (en) * 2019-01-14 2019-05-14 郭军 Terminal prot unifies control platform
CN113347166A (en) * 2021-05-24 2021-09-03 广西电网有限责任公司 Method, device and system for preventing safety risk of optical transmission equipment of power grid
CN113347511A (en) * 2021-05-24 2021-09-03 广西电网有限责任公司 Method, device and system for defending hop-by-hop attack in optical transmission network
CN113507384A (en) * 2021-06-22 2021-10-15 深圳市亿联无限科技有限公司 System and method for switching working modes of equipment

Also Published As

Publication number Publication date
WO2016197782A2 (en) 2016-12-15
WO2016197782A3 (en) 2017-02-02

Similar Documents

Publication Publication Date Title
CN107204886A (en) A kind of method and device of serve port management
US20080219172A1 (en) Forwarding Plane Data Communications Channel for Ethernet Transport Networks
CN101771619B (en) Network system for realizing integrated security services
CN106789177A (en) A kind of system of dealing with network breakdown
CN110266550B (en) Method and device for predicting fault influence
EP1791298A1 (en) A system and method for processing the link fault of the broad band access device
CN102857388A (en) Cloud detection safety management auditing system
KR101472685B1 (en) Network connection gateway, a network isolation method and a computer network system using such a gateway
CN1722707B (en) Method for securing communication in a local area network switch
CN108243404A (en) Ratification method, device and the equipment of phone number binding state
US9077556B2 (en) Method and system for diagnosing access node
CN109639631A (en) A kind of network security cruising inspection system and method for inspecting
CN101567883B (en) Realization method for preventing MAC address forgery
CN106888184A (en) Mobile terminal payment class application security method of payment and device
US8804569B2 (en) Management session initiation with a customer premises device
CN108737407A (en) A kind of method and device for kidnapping network flow
CN101018226A (en) A method for access terminal and operator binding
CN102098269A (en) Method for filtering MAC (Media Access Control) addresses in broadband access system
CN107135185A (en) A kind of attack processing method, equipment and system
CN100401703C (en) Wide-band network system
CN100403705C (en) Loopback detecting method for PPP package interface
CN104683151B (en) The treating method and apparatus of broadband failure
CN103716192B (en) Non-inductive series connection device based on virtual IP
Cisco Cisco 800 Series - Cisco IOS Release 12.2(2)XH
Cisco Commands A through CAS

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20170926