CN107547272A - The system of batch deploying network devices - Google Patents
The system of batch deploying network devices Download PDFInfo
- Publication number
- CN107547272A CN107547272A CN201710708785.1A CN201710708785A CN107547272A CN 107547272 A CN107547272 A CN 107547272A CN 201710708785 A CN201710708785 A CN 201710708785A CN 107547272 A CN107547272 A CN 107547272A
- Authority
- CN
- China
- Prior art keywords
- equipment
- module
- password
- network equipment
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Small-Scale Networks (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention relates to network equipment mounting technique field, specially a kind of system of batch deploying network devices, including mounting bracket, background system, interchanger and control terminal.Mounting bracket is used for installing the network equipment, mounting bracket is provided with the port for being used for being connected with the network equipment, port connects interchanger by netting twine, image collection terminal is additionally provided with mounting bracket, acquisition terminal is connected with switch network, and image collection terminal can gather the image of the label of the network equipment, and can by interchanger by image transmitting to background system, background system can be realized by image analysis module to label image, and then network equipment login password is modified.The system of batch deploying network devices provided by the invention, can in deployment batch network device configuration, modification amount when solving the problems, such as enterprise's deploying network devices is big, process is complicated and potential safety hazard is big.
Description
Technical field
The present invention relates to network equipment mounting technique field, what it is in particular to a kind of batch deploying network devices is
System.
Background technology
With the development of wireless communication technology and the rise of Internet of Things, modern company or enterprise are carrying out new service
Or in the development process of business, generally require to dispose the substantial amounts of network equipment, such as router, exchanger, light cat, web camera
Deng.These network equipments are generally provided with Administrator account, when carrying out initial configuration or configuration modification to equipment, are required for
Authentic administrator password is to ensure the safety of equipment and network.
The manufacturer of equipment, typically one unified keeper's account password can be set for equipment when dispatching from the factory, such as route
The keeper's account and password of device are generally all admin, and user is in actual use, it is necessary to which keeper's account password is repaiied
Change, can just ensure information security.But user often seek it is convenient will not remove Modify password, it is hidden that this will have very big safety
Suffer from.
In order to ensure the security of network and information of user, present equipment manufacturers begin to use random administration person's password to make
For the password that dispatches from the factory of equipment, these passwords are attached in equipment by label, for personal user, are placed and are in due to equipment
In, and initial password is random, even if not Modify password, risk is also not too large, therefore first using random cipher as what is dispatched from the factory
Beginning password reduces the potential safety hazard of user to a certain extent.
But for enterprise, equipment is often mounted externally, enterprise is when disposing these network equipments, it is necessary to changes
Keeper's account and password are to ensure the safety of equipment and network with controllable, but because the actual deployment quantity of the network equipment is non-
Chang Ju great, and the password of each equipment is different, keeper's account to equipment one by one is modified, and its workload will be very
It is huge, and the password after apparatus modifications should be different from each other, and corresponding record is made after the completion of modification, process is cumbersome, the later stage
When managing and safeguarding, verification is searched, causes final-period management and maintenance also very cumbersome, for simplicity, some companies can incite somebody to action
Password after apparatus modifications is set to same password, and this has resulted in very big potential safety hazard.
The content of the invention
The invention is intended to provide a kind of system of batch deploying network devices, batch configuration network can be set in deployment
Standby, modification amount when solving the problems, such as enterprise's deploying network devices is big, process is complicated and potential safety hazard is big.
In order to solve the above-mentioned technical problem, this patent provides following basic technology scheme:
The system of batch deploying network devices, including:
Mounting bracket, the mounting bracket are used for installing the network equipment, and mounting bracket is provided with port and image collection terminal, the port
For being connected with the network equipment, the port is connected by network with background system, and the image collection terminal can gather net
The image of the label of network equipment simultaneously can be by image transmitting to background system.
Background system, background system include image analysis module, memory module, equipment configuration module, equipment acquisition module
And secret generation module, equipment acquisition module can obtain the IP address of the network equipment of all access networks, equipment obtains mould
Block is used for detecting the access of the network equipment and the IP address and MAC Address of the equipment can be obtained when the network equipment accesses, close
Code generation module can generate new login password for the equipment when the network equipment accesses, and image analysis module can be
Found when the network equipment accesses by IP address and image collection terminal corresponding to the support of the network equipment is installed and controls image
The label of acquisition terminal collecting device simultaneously obtains keeper's account and encrypted message on label, and equipment configuration module can be in net
Network equipment changes the login password that the login password of the equipment is generated by secret generation module, the memory module energy when accessing
Enough generate and store the corresponding relation list of MAC Address and new login password.
The present invention working principle and beneficial effect be:When carrying out deployed with devices, first on the ground for needing deployment facility
Side set mounting bracket, and make mounting bracket port and image collection terminal and background system between keep network connection, pacifying
When filling the network equipment, the network equipment is connected with port first, after network equipment connecting network, the network equipment can obtain an IP
Address, equipment acquisition module can with the change according to IP address can with determine whether equipment access, equipment acquisition module
The MAC Address of the equipment can be obtained according to IP address, is then found by image analysis module by IP address and the network is installed
Image collection terminal corresponding to the support of equipment, the label of image collection terminal acquisition is then controlled, and then identify bid
The login password information signed, secret generation module generates new login password information, then by equipment configuration module according to mark
The account and encrypted message signed log in the equipment, and the login password for configuring the equipment is new login password, then by depositing
Login password information is established corresponding lists with device mac address information and stored by storage module.
Compared with prior art, in technical solution of the present invention, by setting image collection terminal and image analysis module energy
The account and password on the label of the network equipment are enough obtained, by setting equipment acquisition module, secret generation module, device configuration
Module and memory module automatic equipment information acquisition, can generate new random cipher when new equipment accesses, and according to parsing
Keeper's login password of obtained account and password the modification network equipment, and final result is stored and facilitates the later stage to tie up
Shield;Technical scheme can automatically configure login password in deploying network devices, without manually one by one change and remember
Record, process is simple and quick, safer, is easy to later maintenance and management.
Further, in addition to control terminal, control terminal and the background system and the network equipment be by network connection,
Control terminal is used for configuring the network equipment, and the background system also includes password acquisition module, the control terminal energy
Enough passwords using IP address as the network equipment corresponding to parameter to server IP address requesting, the password acquisition module can
Corresponding password is inquired about from memory module according to the request of control terminal and the password of the network equipment is sent to control terminal.
By controlling terminal directly to ask the account password of a network equipment to server, and it is close using the account
Code configures to the network equipment, makes later maintenance simpler quick, reduces later maintenance cost.
Further, the background system also includes monitoring module, and the control terminal can pass through monitoring module and image
Acquisition terminal is monitored in real time to equipment surrounding environment.
When not gathering label image, monitoring module can use using image collection terminal as monitoring camera, make every
The platform network equipment is further ensured equipment and the safety of network by video monitoring.
Further, the MD5 values for the image file that the secret generation module is obtained using image analysis module are used as equipment
New password.
File is different, and its MD5 value is also different, and the MD5 values using image file can ensure the random of password as password
Property, the security of raising network and equipment.
Further, the secret generation module can generate random number, and the secret generation module uses the MD5 of random number
It is worth the new password as equipment.
It is directly more quick and convenient using system generation random number, it can ensure keying sequence using the MD5 values of random number
Length.
Further, the background system also includes periodic refreshing module, and the periodic refreshing module can periodically control close
Code generation module regenerates the password of all-network equipment, and changes the close of all-network equipment by equipment configuration module
Code, and it is updated corresponding relation list of the memory module to MAC Address and password.
The generation time by periodic refreshing module according to password, refresh expired password, password is constantly changed, increase
The difficulty that password is cracked, make equipment and network safer.
Brief description of the drawings
Fig. 1 is the logic diagram of the system embodiment of batch deploying network devices of the present invention.
Embodiment
Below by embodiment, the present invention is further detailed explanation:
Description of reference numerals:Mounting bracket 1, the network equipment 2, image collection terminal 3, control terminal 4, background system 6, interchanger 7.
As shown in figure 1, the system of the present embodiment batch deploying network devices includes:Mounting bracket 1, background system 6, interchanger
7 and control terminal 4.
Mounting bracket 1 is used for installing the network equipment 2, and mounting bracket 1 is provided with the port for being used for being connected with the network equipment 2, port
Interchanger 7 is connected by netting twine, interchanger 7 is that each port sets fixed IP address, and being additionally provided with image on mounting bracket 1 adopts
Collect terminal 3, acquisition terminal and the network connection of interchanger 7, interchanger 7 is with setting the IP of fixation for each image collection terminal 3
Location, the port and acquisition terminal on same mounting bracket 1 are using associated IP address, for example, both use adjacent IP address,
And the IP address mantissa of image collection terminal 3 is bigger by 1 than the IP address mantissa of port, image collection terminal 3 can gather network and set
The image of standby 2 label, and can by interchanger 7 by image transmitting to background system 6;
Background system 6 and the network connection of interchanger 7, background system 6 include image analysis module, memory module, device configuration mould
Block, equipment acquisition module, secret generation module, password acquisition module and monitoring module.Equipment acquisition module is used for detecting network
Equipment 2 accesses and the IP address and MAC Address of the equipment, secret generation module energy can be obtained when the network equipment 2 accesses
Enough new login passwords generated when the network equipment 2 accesses for the equipment, image analysis module can connect in the network equipment 2
The label of the fashionable collecting device of control image collection terminal 3 simultaneously obtains keeper's account and encrypted message on label, and equipment is matched somebody with somebody
Putting module, that the login that the login password of the equipment is generated by secret generation module can be changed when the network equipment 2 accesses is close
Code, the memory module can generate and store the corresponding relation list of MAC Address and new login password, and monitoring module can
When image collection terminal 3 is idle, using image collection terminal 3 as monitoring camera, the surrounding environment of the network equipment 2 is carried out real
When monitor.Background system 6 also includes periodic refreshing module, and periodic refreshing module periodically can control secret generation module to give birth to again
Into the password of the network equipment 2 of all access switch 7, and change by equipment configuration module the net of all access switch 7
The password of network equipment 2, and it is updated corresponding relation list of the memory module to MAC Address and password.
Terminal 4 and the network connection of interchanger 7 are controlled, control terminal 4 can configure to the network equipment 2, control terminal 4
When being configured to the network equipment 2 corresponding to a certain IP address, mould can be obtained to the password of background system 6 using IP address as parameter
Block sends request, password acquisition module IP address from memory module can be inquired about according to IP geology corresponding to the network equipment 2
Password and the password that the network equipment 2 is sent to control terminal 4.
Specifically, during the system work of the present embodiment batch deploying network devices, including herein below:
Access deployment, system carry out modification and the record of password to the network equipment 2 newly accessed;
Later maintenance, user are configured and changed to the network equipment 2 accessed;
Regularly update, the password for the network equipment 2 that system at regular intervals renewal has accessed.
Access deployment comprises the following steps:
Step 1:Equipment acquisition module obtains the list of the network equipment 2 for being currently accessed interchanger 7, the list bag by interchanger 7
Include access device model, MAC Address and IP address;
Step 2:Equipment acquisition module contrasts to this list of network equipment 2 and the list of the last time network equipment 2, passes through MAC
Address determines whether that new network device 2 accesses, if so, next step is performed, if it is not, performing step 1;
Step 3:Image analysis module image collection terminal 3 according to corresponding to the IP address of new access device calculates the equipment
IP address, image analysis module controls corresponding image collection terminal 3 to gather the label figure of the network equipment 2 by IP address
Picture, image analysis module can obtain the account and password of the network equipment 2 by the parsing to image;
Step 4:Secret generation module generates the new password of the network equipment 2;
Step 5:Account that equipment configuration module is parsed by the IP address and image analysis module of the network equipment 2 and close
The code logging in network equipment 2 and login password for changing the network equipment 2 is the new password generated in step 4;
Step 6:The MAC Address of the network equipment 2 and new password are stored into the respective column of MAC Address and password by storage module
In table.
Wherein secret generation module can use the MD5 values for the image file that image analysis module obtains as the network equipment
2 new password, random digit can also be directly generated, then calculate the Xinmi City of the MD5 values of random digit as the network equipment 2
Code.
Later maintenance comprises the following steps:
Step 1:User opens control terminal 4, inputs the IP address for the network equipment 2 to be configured;
Step 2:Terminal 4 is controlled to ask login password to background system 6 using IP address as parameter;
Step 3:The MAC Address of equipment acquisition module network equipment 2 according to corresponding to IP address obtains IP address;
Step 4:Password acquisition module MAC Address from memory module inquired about according to MAC Address corresponding to password and to control eventually
End 4 returns to the password.
Step 5:Terminal 4 is controlled to match somebody with somebody using the password login network equipment 2 in step 4, user to the network equipment 2
Put.
Regularly update and comprise the following steps:
Step 1:Periodic refreshing module judges whether current timing cycle terminates, if so, next step is performed, if it is not, performing step
One;
Step 2:Step 3 is performed successively to the equipment in the corresponding relation list of memory module to step 5, after being finished
Perform step 6;
Step 3:Secret generation module generates the new password of the network equipment 2;
Step 4:Equipment configuration module is by IP address and the password login network equipment 2, and the password for repairing the network equipment 2 is
New password;
Step 5:Memory module is updated according to corresponding relation list of the new password to MAC Address and password;
Step 6:Periodic refreshing module starts a new cycle.
Above-described is only embodiments of the invention, and the general knowledge such as known concrete structure and characteristic is not made herein in scheme
Excessive description, technical field that the present invention belongs to is all before one skilled in the art know the applying date or priority date
Ordinary technical knowledge, prior art all in the field can be known, and with using normal experiment hand before the date
The ability of section, one skilled in the art can improve and implement under the enlightenment that the application provides with reference to self-ability
This programme, some typical known features or known method should not implement the application as one skilled in the art
Obstacle.It should be pointed out that for those skilled in the art, without departing from the structure of the invention, it can also make
Go out several modifications and improvements, these should also be considered as protection scope of the present invention, these effects implemented all without the influence present invention
Fruit and practical applicability.The scope of protection required by this application should be based on the content of the claims, the tool in specification
The records such as body embodiment can be used for the content for explaining claim.
Claims (7)
1. the system of batch deploying network devices, it is characterised in that:Including:
Mounting bracket, the mounting bracket are used for installing the network equipment, and mounting bracket is provided with port and image collection terminal, the port
For being connected with the network equipment, the port is connected by network with background system, and the image collection terminal can gather net
The image of the label of network equipment simultaneously can be by image transmitting to background system.
2. background system, background system include image analysis module, memory module, equipment configuration module, equipment acquisition module and
Secret generation module, equipment acquisition module can obtain the IP address of the network equipment of all access networks, equipment acquisition module
For detecting the access of the network equipment and the IP address and MAC Address of the equipment, password can be obtained when the network equipment accesses
Generation module can generate the new login password for the equipment when the network equipment accesses, and image analysis module can be in net
Found when network equipment accesses by IP address and image collection terminal corresponding to the support of the network equipment is installed and controls image to adopt
Collect the label of terminal acquisition and obtain keeper's account and encrypted message on label, equipment configuration module can be in network
Equipment changes the login password that the login password of the equipment is generated by secret generation module when accessing, and the memory module can
Generate and store the corresponding relation list of MAC Address and new login password.
3. the system of batch deploying network devices as claimed in claim 1, it is characterised in that:Also include control terminal, it is described
Terminal is controlled to be used for configuring the network equipment by network connection, control terminal with background system and the network equipment, institute
Stating background system also includes password acquisition module, and described to control terminal can be parameter using IP address to server IP address requesting
The password of the corresponding network equipment, the password acquisition module can be inquired about according to the request of control terminal from memory module
Corresponding password and the password that the network equipment is sent to control terminal.
4. the system of batch deploying network devices as claimed in claim 2, it is characterised in that:The background system also includes prison
Module is controlled, the control terminal can be monitored in real time by monitoring module and image collection terminal-pair equipment surrounding environment.
5. the system of batch deploying network devices as claimed in claim 3, it is characterised in that:The secret generation module is to scheme
New password of the MD5 values of the image file obtained as parsing module as equipment.
6. the system of batch deploying network devices as claimed in claim 3, it is characterised in that:The secret generation module can
Random number is generated, the secret generation module uses new password of the MD5 values of random number as equipment.
7. the system of batch deploying network devices as claimed in claim 4, it is characterised in that:It is fixed that the background system also includes
When refresh module, the periodic refreshing module can periodically control secret generation module to regenerate the close of all-network equipment
Code, and by the password of equipment configuration module modification all-network equipment, and make memory module corresponding with password to MAC Address
Relation list is updated.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710708785.1A CN107547272B (en) | 2017-08-17 | 2017-08-17 | System for deploying network equipment in batches |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710708785.1A CN107547272B (en) | 2017-08-17 | 2017-08-17 | System for deploying network equipment in batches |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107547272A true CN107547272A (en) | 2018-01-05 |
| CN107547272B CN107547272B (en) | 2020-06-16 |
Family
ID=60957543
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710708785.1A Active CN107547272B (en) | 2017-08-17 | 2017-08-17 | System for deploying network equipment in batches |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107547272B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110149598A (en) * | 2019-05-23 | 2019-08-20 | 海能达通信股份有限公司 | Environment control method and device, storage medium and electronic equipment |
| CN111431714A (en) * | 2020-03-27 | 2020-07-17 | 国网安徽省电力有限公司宣城供电公司 | Switch account safety management method and device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060010078A1 (en) * | 2000-09-06 | 2006-01-12 | Xanboo, Inc. | Systems and methods for the automatic registration of devices |
| CN1804744A (en) * | 2004-12-10 | 2006-07-19 | 费舍-柔斯芒特系统股份有限公司 | Wireless handheld communicator in a process control environment |
| CN106452798A (en) * | 2016-12-09 | 2017-02-22 | 吴思齐 | Password authentication method and password authentication system for network devices which are deployed massively |
| CN106775882A (en) * | 2016-12-26 | 2017-05-31 | 中国银联股份有限公司 | Cloud computing server batch dispositions method and device |
-
2017
- 2017-08-17 CN CN201710708785.1A patent/CN107547272B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060010078A1 (en) * | 2000-09-06 | 2006-01-12 | Xanboo, Inc. | Systems and methods for the automatic registration of devices |
| US20140159879A1 (en) * | 2000-09-06 | 2014-06-12 | Nest Labs, Inc. | Systems and methods for the automatic registration of devices |
| CN1804744A (en) * | 2004-12-10 | 2006-07-19 | 费舍-柔斯芒特系统股份有限公司 | Wireless handheld communicator in a process control environment |
| CN106452798A (en) * | 2016-12-09 | 2017-02-22 | 吴思齐 | Password authentication method and password authentication system for network devices which are deployed massively |
| CN106775882A (en) * | 2016-12-26 | 2017-05-31 | 中国银联股份有限公司 | Cloud computing server batch dispositions method and device |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110149598A (en) * | 2019-05-23 | 2019-08-20 | 海能达通信股份有限公司 | Environment control method and device, storage medium and electronic equipment |
| CN110149598B (en) * | 2019-05-23 | 2022-05-17 | 海能达通信股份有限公司 | Environment monitoring method and device, storage medium and electronic equipment |
| CN111431714A (en) * | 2020-03-27 | 2020-07-17 | 国网安徽省电力有限公司宣城供电公司 | Switch account safety management method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107547272B (en) | 2020-06-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104811433B (en) | The distributed Internet of things system and implementation method of a kind of C/S frameworks | |
| CN106936853A (en) | A kind of system-oriented integrated cross-domain single login system and method | |
| CN105337756A (en) | Centralized operation and maintenance method and device | |
| US9237070B2 (en) | Development, test, and demonstration of automation solutions using web-based virtual computers and VPN tunneling | |
| CN104394366B (en) | The method and system of distributed video streaming media transcoding access control | |
| CN106992903A (en) | A kind of data collecting system and method based on the network equipment | |
| CN107948027A (en) | One kind carries smart home data safety backup system and method for work | |
| CN110519306A (en) | A kind of the equipment access control method and device of Internet of Things | |
| CN107317852A (en) | Smart machine, communication system and the method extended based on MODBUS | |
| CN107517126A (en) | A kind of method of the batch installation network equipment | |
| CN107547272A (en) | The system of batch deploying network devices | |
| CN101083660A (en) | Session control based IP network authentication method of dynamic address distribution protocol | |
| CN107819657A (en) | A kind of method based on central controlled dynamic analysis Modbus agreements, things-internet gateway equipment and system | |
| CN108809702A (en) | A kind of device management method and device management platform | |
| CN105049245B (en) | The Element management system of EPON | |
| CN102427253B (en) | Method for communicating charge-discharge monitoring center of electric automobile with local monitoring modules of charging station | |
| CN102394770A (en) | Off-line configuration method for network equipment based on simple network management protocol (SNMP) | |
| US20180262502A1 (en) | Method for operating an industrial network and industrial network | |
| CN212064053U (en) | New energy station information acquisition and APT monitoring system and device | |
| CN109600395A (en) | A kind of device and implementation method of terminal network access control system | |
| CN107241202A (en) | Optical network unit service activating method and device | |
| CN102045398A (en) | Portal-based distributed control method and equipment | |
| CN101719845A (en) | Method for remotely monitoring local maintenance terminal | |
| CN103441876B (en) | A kind of based on DHCP protocol and the network device management method of snmp protocol and system | |
| CN105827667B (en) | A kind of HTTP access control method, server and monitoring system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |